Data security authentication transmission method and device for Internet of Things terminal

Abstract

The invention discloses a data security certification transmission method and device for an Internet of Things terminal. The method comprises the steps: presetting identification key pairs in a factory of an Internet of Things terminal, and presetting a corresponding public key matrix in an edge gateway; according to a preset identification key pair of the Internet of Things terminal and a presetpublic key matrix of the edge gateway, completing the bidirectional authentication of the Internet of Things terminal and the edge gateway, and acquiring a communication encryption/decryption key; andcompleting the encryption and decryption of transmission data between the Internet of Things terminal and the edge gateway by using the communication encryption/decryption key. And the problem that the traditional safety means is difficult to meet the Internet-of-Things scene is effectively solved. A key management system which is realized based on a public key cryptography technology and can beapplied to an Internet of Things terminal is constructed through a lightweight authentication system, online support of a third party is not needed, large-scale key generation is conveniently realized, the authentication efficiency is high, the authentication process is simple, a cryptographic protocol and a cryptographic module are realized on the basis of a national cryptographic algorithm, andthe interactive authentication and data encryption of the Internet of Things terminal are realized.

Description

technical field [0001] The invention relates to a data security authentication transmission method for an Internet of Things terminal, and also relates to a corresponding data security authentication transmission device, belonging to the technical field of network security. Background technique [0002] With the gradual construction of a large number of IoT terminals, ubiquitous IoT terminal devices connected to the IoT network pose a huge threat to the security system based on traditional border security methods. In the overall Internet of Things construction, devices can be divided into perception layer, network layer, platform layer and application layer. At present, mainstream security vendors at home and abroad have relatively mature and complete solutions for network security, cloud security, data security and application The security integrated solution corresponds to the network layer, platform layer, and application layer, so the biggest shortcoming of security capa...

AI Technical Summary

Problems solved by technology

[0005] (1) It is mainly aimed at the security authentication of the upper computer and the business background, and can be applied to the authentication of the gateway and the background, but it is not suitable for the security authentication of the IoT terminal and the gateway

[0006] (2) Since the public key generation of PKI technology does not have a large scale, it is difficult to issue certificates for a large number of Internet of Things terminals with multiple communication protocols.

[0007] (3) The certificate directory needs to be run online, and the public key is stored in the online directory library in the form of a directory, which requires a lot of maintenance and cannot solve the needs of offline authentication between IoT terminals and gateways

[0008] (4) The reliability of authentication depends on the trusted third-party certificate authority (Certificate Authority, CA) authentication chain, which limits the flexibility of authentication

Images