Internet of Things safety management system

Abstract

The invention relates to an Internet of Things security management system. A private key center and an application server perform communication authentication data transmission through a soft shield;the application server side performs mutual communication of key distribution, identity authentication and data encryption with the client control terminal and the Internet of Things terminal at the same time; mutual communication of identity authentication and data encryption is carried out between the client control terminal and the Internet of Things terminal, wherein the private key center comprises a KPC key production assembly, a KMC key management assembly and a key authentication assembly, the application server comprises a security edge computing SDK module and a server application module, and the client control terminal comprises an encryption and decryption security module and a client application module, and the Internet of Things terminal comprises an Internet of Things communication module, a security algorithm module and an SE chip. According to the Internet of Things security management system, only the user is completely autonomous and controllable in the Internet of Things system, the cloud system does not have the authority of directly operating the user equipment, and the Internet of Things control security level can be effectively improved.

Description

technical field [0001] The invention relates to the technical field of the Internet of Things, in particular to an Internet of Things security management system. Background technique [0002] With the rapid development of Internet technology, the era of Internet of Everything is gradually coming to us. The existing Internet of Things system will involve a variety of software and hardware products such as cloud systems, embedded software, embedded hardware, and mobile app software. The urgent problem to be solved, especially how to ensure the security interaction management of the Internet of Things, can provide more secure protection for the data interaction between the Internet of Things device and the cloud system, the mobile app and the cloud system, and the Internet of Things device and the mobile app. [0003] In the prior art, when protecting data and applications on the Internet of Things, the trusted execution environment in the computing node is used to safely start...

AI Technical Summary

Problems solved by technology

[0004] However, the shortcomings of the existing security management include: (1) The trusted execution environment can only protect the local applications and data of the computing node from being damaged during the operation process, but cannot protect the security of data entering and exiting the device and cannot verify the security of each device. (2) The IoT device only performs identity authentication with the cloud system, but cannot perform end-to-end identity authentication with the end user who legally holds the device. When the cloud system is controlled by illegal personnel At the same time, illegal personnel can operate IoT devices through the cloud system; (3) illegal users can operate IoT terminals on other mobile phones or PCs after obtaining the user name and password of legitimate users, which poses a major security problem

Images