Blockchain-based smart home device identity trust authentication and traceability method

By building a distributed architecture in the smart home management platform using blockchain technology, device identity identifiers and authentication certificates are generated. Combined with a dual verification mechanism and multi-dimensional traceability rules, the problems of insecure device identity authentication and untraceable data are solved, realizing trusted authentication of device identity and data traceability throughout the entire lifecycle, thereby improving the security and operation and maintenance efficiency of the smart home system.

CN122179220APending Publication Date: 2026-06-09四川长虹新网科技有限责任公司

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Applications(China)
Current Assignee / Owner
四川长虹新网科技有限责任公司
Filing Date
2026-03-31
Publication Date
2026-06-09

AI Technical Summary

Technical Problem

In existing smart home management platforms, device identity authentication is insecure, easily forged, and data is easily tampered with and cannot be traced throughout the entire process, leading to user privacy leaks and device control risks. Furthermore, traditional blockchain technology consumes a lot of computing power, making it difficult to apply on a large scale.

Method used

By employing blockchain technology and a distributed architecture consisting of a smart home management platform, edge gateway nodes, and trusted verification nodes, irreversible device identity identifiers and authentication certificates are generated. Combined with a dual verification mechanism, trusted device identity authentication is achieved, key data is stored on the blockchain, and multi-dimensional traceability rules are configured to generate traceability reports.

Benefits of technology

It effectively prevents device identity forgery, ensures data immutability, enables full lifecycle device traceability, improves security, reduces operation and maintenance costs, and adapts to dynamic changes in equipment.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure CN122179220A_ABST
    Figure CN122179220A_ABST
Patent Text Reader

Abstract

This invention primarily relates to the field of smart home technology. To address the issues of unreliable data authenticity and lack of end-to-end data traceability in smart home management platforms, this invention provides a blockchain-based method for trusted authentication and traceability of smart home devices. The core of this method involves using the smart home management platform as the blockchain master node. After binding the access nodes of smart home devices to edge gateways, their hardware information is transmitted to the smart home management platform via the edge gateways. The smart home management platform generates blockchain identifiers and authentication certificates based on the hardware information. Preliminary verification is performed by the edge gateway nodes, followed by secondary verification by trusted verification nodes, thus authenticating the identity of the smart home devices. Simultaneously, the smart home management platform configures the data types, consensus mechanisms, and data traceability rules for on-chain storage. After verification via a requester's data request, traceability information is retrieved from the blockchain ledger according to the traceability rules.
Need to check novelty before this filing date? Find Prior Art

Description

Technical Field

[0001] The present invention mainly relates to the technical field of smart home, and in particular to a method for trusted authentication and traceability of the identity of smart home devices based on blockchain. Background Art

[0002] With the rapid development of the smart home industry, whole-house intelligence and multi-device collaboration have become the mainstream trend. Devices such as air conditioners, lights, security devices, and home appliances are connected to the smart home management platform to achieve centralized control and scene linkage. However, the device identity authentication of the current smart home management platform mostly adopts a centralized authentication method, which only verifies through simple account passwords and device serial numbers, and is prone to security risks such as identity forgery and illegal device access, resulting in problems such as user home privacy leakage and devices being illegally controlled; at the same time, key information such as device identity authentication records, operation records, operation data, and transmission data are mostly stored in a centralized server, which is easy to be tampered with and cannot achieve full-process traceability. When problems such as device failures, data leaks, and illegal operations occur, it is difficult to trace the root cause of the problems, bringing great inconvenience to users, administrators, and device manufacturers.

[0003] Some smart home platforms introduce data encryption technology to protect the security of data transmission and storage, but it can only achieve data encryption and cannot solve the core problems of device identity forgery, easy data tampering, and inability to trace. Some other technologies try to introduce blockchain technology, but mostly focus on encrypted data storage, do not form a complete closed-loop of trusted device identity authentication and data traceability, and use traditional blockchain consensus algorithms, which consume a large amount of computing power and cannot adapt to the computing power requirements of smart home platforms, making it difficult to achieve large-scale applications. Summary of the Invention

[0004] The present invention provides a method for trusted authentication and traceability of the identity of smart home devices based on blockchain, aiming to solve the problems of ensuring the authenticity of device data and the inability to trace data in the whole process in the smart home management platform.

[0005] The technical solutions adopted by the present invention to solve the above technical problems are as follows: A method for trusted authentication and traceability of the identity of smart home devices based on blockchain, including the following steps: Taking the smart home management platform as the main node of the blockchain, establishing connections with the edge gateway node and the trusted verification node, and binding the device access node to the edge gateway node; The device access node collects the hardware information of the device, transmits it to the smart home management platform through the edge gateway. The smart home management platform generates a blockchain identity identifier and an authentication certificate based on the hardware information, and conducts a preliminary verification through the edge gateway node and a secondary verification through the trusted verification node to perform trusted authentication on the device; Configure the data types and consensus mechanisms for on-chain storage through the smart home management platform, and store the data verified by the consensus mechanism on the blockchain. The smart home management platform configures data traceability rules. After verifying the request from the requester, it retrieves the blockchain ledger according to the traceability rules, extracts traceability information, and generates a traceability report.

[0006] Furthermore, when the number of connected devices exceeds a preset threshold, multiple sub-access nodes are set up for the edge gateway node, with each sub-access node corresponding to a group of devices.

[0007] Furthermore, the smart home management platform communicates with terminal devices through reserved communication interfaces, including HTTP and MQTT interfaces.

[0008] Furthermore, the preliminary verification through the edge gateway node includes: the edge gateway node encrypts the real-time hardware information of the smart hardware using a hash algorithm, compares the encrypted digest with the hardware information baseline digest pre-stored in the smart home management platform, and if the comparison is consistent, the preliminary verification is passed.

[0009] Furthermore, the trusted verification node performs secondary verification, which includes: after receiving the authentication request, the trusted verification node first compares the consistency between the generated blockchain identity identifier and the identity identifier stored in the blockchain ledger, and then verifies the smart home management platform signature and authentication validity period in the authentication certificate. If the identity identifier is consistent and the signature and authentication validity period pass the verification, the secondary verification is successful.

[0010] Furthermore, the configuration data tracing rules include: Generate a unique data traceability identifier for each piece of on-chain data; Configure the traceability query dimensions, which include time dimension, device dimension and operation dimension; Configure query permission levels, which include user level, administrator level and vendor level, with different query permissions corresponding to different traceability query scopes.

[0011] Furthermore, the method also includes: maintaining and updating the blockchain ledger, wherein the maintenance and updating includes: Data cleanup: Clean up expired temporary cache data; Node status detection: Detects the operating status of each blockchain node, determines whether the node is faulty, and if so, the smart home management platform automatically sends the fault notification of the faulty node to the administrator terminal and switches the relevant tasks of the faulty node to the set backup node; the operating status includes CPU utilization, memory utilization, and communication status; Ledger Synchronization: The smart home management platform regularly synchronizes the updated data of the blockchain ledger to each edge gateway node and trusted verification node.

[0012] Furthermore, the hardware information includes the device model, MAC address, hardware serial number, and manufacturer information; the blockchain identity identifier is generated using the SHA-256 algorithm; and the authentication certificate includes the blockchain identity identifier, hardware information digest, authentication validity period, and signature of the smart home management platform.

[0013] Furthermore, the on-chain data types include device identity authentication records, device operation records, device operation data, and data transmission records; device identity authentication records include authentication time, authentication node, authentication result, and device identity identifier.

[0014] Furthermore, the traceability report uses JSON format and supports exporting to PDF format.

[0015] The beneficial effects of this invention are: This invention collects device hardware information through device access nodes and generates irreversible blockchain identity identifiers and authentication certificates by the master node, strongly binding device identity with hardware information and eliminating device identity forgery at the source; combined with the dual verification mechanism formed by edge gateway nodes and trusted verification nodes, it realizes preliminary verification of hardware information and deep secondary verification of identity identifiers and authentication certificates, which can effectively prevent unauthorized device access and greatly improve the security of smart home backend management platform. This invention stores key device information on the blockchain, leveraging the distributed ledger characteristics of blockchain to ensure that key smart home data is tamper-proof; it also configures multi-dimensional traceability rules and query permissions, supporting hierarchical traceability of different data query needs by time, device, operation, and other dimensions, generating standardized traceability reports, and enabling traceability of data throughout the entire lifecycle of the device. This invention periodically cleans the blockchain ledger, detects node status, and synchronizes the ledger to ensure efficient operation of device authentication and traceability. It also supports updating the identity identifier after device repair or replacement, as well as dynamically adding and deleting trusted items. It has good dynamic adaptability and self-maintenance capabilities, which can effectively reduce management and maintenance costs. Attached Figure Description

[0016] Figure 1 A flowchart for the identity authentication process of smart home devices; Figure 2 A flowchart for data uploading and traceability of smart home devices on the blockchain. Detailed Implementation

[0017] Existing technologies that connect smart home devices to smart home management platforms suffer from problems such as insecure device authentication, susceptibility to data tampering, lack of traceability, and high computational consumption. The core of this invention addresses these issues by using the smart home management platform as a blockchain master node and binding device access nodes to edge gateways. Device access nodes transmit collected hardware information to the smart home management platform via the edge gateway, preventing device identity forgery. The smart home management platform generates a blockchain identifier and authentication certificate based on the hardware information, and performs dual verification through edge gateway nodes and trusted verification nodes to ensure reliable device identity authentication. By configuring the data types to be uploaded to the blockchain, the consensus mechanism between blockchain nodes, and data traceability rules on the smart home management platform, data verified through the consensus mechanism is stored on the blockchain. After the data traceability request from the requesting party is verified, the traceability information is retrieved from the blockchain ledger according to the traceability rules, generating a traceability report.

[0018] The technical solutions of this embodiment will now be clearly and completely described with reference to the accompanying drawings. It should be understood that the described embodiments are merely some embodiments of the present invention, and not all embodiments.

[0019] The blockchain-based smart home device identity trusted authentication and traceability method described in this invention mainly includes four parts: building a blockchain node architecture, device identity identifier configuration and authentication process, data on-chain and traceability configuration, data traceability process, and blockchain ledger maintenance and update.

[0020] S1: Building a Blockchain Node Architecture The blockchain node architecture in this invention mainly consists of a smart home management platform, edge gateway nodes, device access nodes, and trusted verification nodes. The smart home management platform, acting as the blockchain master node, establishes distributed communication connections with each edge gateway node and trusted verification node using an encrypted communication protocol.

[0021] The device access node is connected to the hardware identification reading module of the smart home device, and collects hardware information such as device model, MAC address, hardware serial number, and manufacturer information through the hardware identification reading module.

[0022] The device access node is bound to the edge gateway node, and each device access node corresponds to a unique edge gateway node. The hardware information collected by the hardware identification reading module is transmitted to the smart home management platform through the edge gateway node.

[0023] As the master node of the blockchain, the smart home management platform is responsible for blockchain ledger management, identity generation, consensus mechanism scheduling, and full node data synchronization. It also stores a trusted list of devices and historical traceability data. The smart home management platform is deployed on high-performance servers, supports multi-threaded concurrent processing, and can handle the needs of a large number of connected devices and data processing.

[0024] Edge gateway nodes are responsible for access control of devices within their jurisdiction, data preprocessing, and local data uploading and caching to reduce the computing power burden on the smart home management platform. Deployed in home or community server rooms, edge gateway nodes can cover devices within a certain range, enabling localized data processing and reducing data transmission latency.

[0025] The trusted verification node has a built-in verification algorithm and is responsible for secondary verification of device identity authentication. The trusted verification node adopts a distributed deployment and maintains real-time communication with the smart home management platform and edge gateway nodes.

[0026] The device access node is responsible for collecting device hardware information, transmitting authentication requests, and synchronizing device operation data. The device access node can be integrated into the edge gateway node or deployed independently, with flexible configuration based on the number of devices.

[0027] If the number of devices in the jurisdiction exceeds a preset threshold, the edge gateway node can be split into multiple sub-access nodes. Each sub-access node corresponds to a group of devices. All data from the sub-access nodes is aggregated to their respective edge gateway nodes, which then synchronize with the smart home management platform to ensure orderly data transmission and avoid data congestion. If the number of devices is small, there is no need to split into sub-access nodes. The edge gateway node directly connects to all device access needs, simplifying the architecture and reducing deployment costs.

[0028] The smart home management platform establishes connections with user terminals and property management terminals through reserved HTTP or MQTT interfaces to provide authentication results and traceability information feedback; it also supports user terminals initiating traceability query requests.

[0029] S2: Device Identification Configuration and Authentication like Figure 1 As shown, before a device connects to the smart home management platform, the device access node collects the device's hardware information and transmits it to the smart home management platform through the edge gateway node. After receiving the hardware information, the smart home management platform encrypts the hardware information using the SHA-256 algorithm to generate a blockchain identity identifier. At the same time, the smart home management platform generates an identity authentication certificate, which contains the device's blockchain identity identifier, hardware information digest, authentication validity period, and signature information signed with the smart home management platform's private key, thus completing the binding configuration between the identity identifier and the authentication certificate.

[0030] The configuration information for identity identification and authentication certificates includes: an identification configuration header that marks the beginning of the configuration information, data length, number of devices, device identity information, and CRC checksum. Device identity information includes the device blockchain identity identifier, hardware information digest, authentication certificate content, associated edge gateway node ID, trusted verification node ID, authentication validity period, and bound user account ID.

[0031] Each time a device connects to the smart home management platform, it automatically initiates an identity authentication request based on its blockchain identity and real-time hardware information. Upon receiving the request, the edge gateway node first performs a preliminary verification of the hardware information: it encrypts the real-time hardware information using a hash algorithm and compares the encrypted digest with the hardware information baseline digest pre-stored synchronously on the smart home management platform. After the preliminary verification passes, the authentication request carrying the identity, hardware information, and preliminary verification result is pushed to a trusted verification node for secondary verification.

[0032] After receiving a request, the trusted verification node first verifies the legality of the identity identifier stored in the blockchain ledger, then verifies the validity of the authentication certificate, and finally verifies the consistency of the hardware information. After the second verification is passed, the node sends an authentication pass instruction to the edge gateway node. The edge gateway node allows the device to access the smart home management platform and pushes the authentication record to the smart home management platform, which then synchronizes it to the blockchain ledger, completing a closed loop of identity authentication.

[0033] If the initial or secondary verification fails, the device access will be rejected, the reason for the failure will be recorded, and the information will be archived on the smart home management platform. Administrators can view the failure records through the administrator terminal to troubleshoot the problem.

[0034] S3: Smart Home Data On-Chain and Traceability Configuration The data upload and traceability rules are primarily configured by the smart home management platform, with edge gateway nodes and device access nodes collaborating to complete the process. This includes three parts: on-chain data configuration, traceability rule configuration, and consensus mechanism configuration. On-chain data configuration must clearly define the types of smart home-related data to be uploaded to the blockchain to avoid wasting computing power on non-critical data. Traceability rule configuration clearly defines the traceability dimensions and query permissions for various types of data to ensure accurate traceability and controllable permissions.

[0035] The on-chain data includes: device identity authentication records, device operation records, device operating data, and data transmission records. Specifically, device identity authentication records include authentication time, authentication node, authentication result, and reason for failure; device operation records include operating terminal ID, operation time, operation command, operation result, and operator account ID; device operating data includes the operating status of smart home devices, parameter changes, fault information, and energy consumption data; and data transmission records include transmission node ID, transmission time, data summary, and transmission status.

[0036] The traceability rules include a data traceability identifier that uniquely corresponds to the on-chain data, traceability query dimensions, and query permission levels.

[0037] The traceability query dimensions include: time dimension, used to query relevant data within a specified time period; device dimension, used to query relevant data for a specified device; and operation dimension, used to query relevant data corresponding to a specified operation command.

[0038] Query permissions are divided into user level, administrator level and vendor level. Different permissions correspond to different traceability query scopes to ensure data privacy and security and avoid leakage of traceability information.

[0039] In this embodiment, users can only query the identity authentication records, operation records, and running data of their own bound devices; administrators can query various on-chain data of all devices within their jurisdiction, and can view failed authentication records and traceability reports; manufacturers can only query the running data and fault-related records of their own production equipment for equipment fault diagnosis and optimization.

[0040] The consensus mechanism among nodes is configured to meet the computing power requirements of the smart home platform, employing a lightweight consensus algorithm to reduce computing power consumption. The smart terminal management platform, edge gateway nodes, and trusted verification nodes all have voting rights, with each node having one vote. Once the set vote threshold is exceeded, the data is confirmed as valid, and the data is uploaded to the blockchain. Simultaneously, during the consensus process, each node synchronously verifies the data digest to ensure the authenticity and integrity of the uploaded data, preventing tampered data from being uploaded.

[0041] S4: Smart Home On-Chain Data Traceability like Figure 2 As shown, the data traceability process specifically includes: Source tracing request initiation: User terminals, administrator terminals, or manufacturer terminals initiate data source tracing requests through communication interfaces such as HTTP and MQTT interfaces reserved by the backend platform. The data source tracing request carries query conditions such as device blockchain identity identifier, query time range, data type, and query permission proof; the permission proof is the key corresponding to each terminal, used for permission verification.

[0042] Request verification: Using an asymmetric encryption algorithm, the permission proof in the request is compared with the preset permission level standard to verify the legality of the permission proof and the corresponding permission level. The query permission is verified. If the permission verification is successful, the corresponding on-chain data in the blockchain ledger is retrieved according to the query conditions, and the traceability information is extracted. If the permission verification fails, the traceability request is rejected and an insufficient permission prompt is given. At the same time, the query terminal, query time and failure reason are recorded and synchronized to the smart home management platform for archiving.

[0043] Source tracing information integration: After extracting source tracing information, the smart terminal management platform integrates the source tracing links according to the dimensions configured in the source tracing rules, generating a standardized source tracing report. The source tracing report includes basic data information (data type, generation time, data summary, data content), link information (processing time of each node, processing result, node ID), and association information (blockchain identity identifier of associated devices, associated operation records, associated authentication records). The source tracing report uses JSON format for easy terminal parsing and display, and also supports exporting to PDF format for archiving and problem investigation.

[0044] Source tracing result feedback: The smart terminal management platform pushes a standardized source tracing report to the terminal that initiated the source tracing request. After receiving the report, the terminal can display it on the interface for users, administrators, or manufacturers to view. At the same time, the smart terminal management platform records the source tracing query records and synchronizes them to the blockchain ledger, completing one source tracing loop. If no corresponding on-chain data is found, a message indicating no relevant source tracing information is displayed, and the query failure record is recorded and archived on the smart terminal management platform for administrators to troubleshoot query problems.

[0045] S5: Blockchain Ledger Maintenance and Updates The smart terminal management platform regularly maintains the blockchain ledger. The maintenance cycle is configurable, and the maintenance content includes three parts: data cleanup, node status detection, and ledger synchronization.

[0046] Data cleanup: Retain core on-chain data such as device identification, authentication records, operation records, running data, and traceability records, and clean up temporary data that failed to be uploaded to the chain and expired authentication cache data.

[0047] Node Status Detection: This function detects the operational status of the smart terminal management platform, edge gateway nodes, and trusted verification nodes, including CPU utilization, memory utilization, and communication status, to identify faulty nodes. If a faulty node is detected, the smart terminal management platform automatically sends a fault notification to the administrator terminal and simultaneously switches the relevant tasks of the faulty node to a backup node to ensure the normal operation of the blockchain architecture.

[0048] Ledger synchronization: The smart terminal management platform regularly synchronizes the updated data of the blockchain ledger to each edge gateway node and trusted verification node to ensure that the ledger data of all blockchain nodes is consistent and avoid authentication failure and traceability errors caused by data inconsistency.

[0049] Meanwhile, the smart terminal management platform supports the updating of blockchain identity identifiers and the dynamic updating of the trusted list. When a device is replaced or repaired, the user or administrator can initiate an identity identifier update request through the terminal, carrying the new hardware information and the old identity identifier. After the smart terminal management platform approves the request, it generates a new blockchain identity identifier and authentication certificate. The old identifier is invalidated, but the binding relationship between the new identifier and the original device is retained and synchronized to all blockchain nodes to ensure the uniqueness and validity of the identity identifier. If a new device is added or an illegal device is removed, the smart terminal management platform adds or deletes the device in the trusted list based on the device authentication record and operating status. After the trusted list is updated, it is synchronized to each edge gateway node and trusted verification node for device access verification and data traceability verification, further enhancing platform security.

Claims

1. A blockchain-based method for trusted authentication and traceability of smart home devices, characterized in that, Includes the following steps: The smart home management platform is used as the blockchain master node, and it is connected to the edge gateway node and the trusted verification node. The device access node is bound to the edge gateway node. The device access node collects the device's hardware information and transmits it to the smart home management platform through the edge gateway. The smart home management platform generates a blockchain identity identifier and authentication certificate based on the hardware information. The edge gateway node performs preliminary verification, and the trusted verification node performs secondary verification to perform trusted identity authentication of the device. Configure the data types and consensus mechanisms for on-chain storage through the smart home management platform, and store the data verified by the consensus mechanism on the blockchain. The smart home management platform configures data traceability rules. After verifying the request from the requester, it retrieves the blockchain ledger according to the traceability rules, extracts traceability information, and generates a traceability report.

2. The blockchain-based smart home device identity trusted authentication and traceability method according to claim 1, characterized in that, When the number of connected devices exceeds a preset threshold, multiple sub-access nodes are set up for the edge gateway node, with each sub-access node corresponding to a group of devices.

3. The blockchain-based smart home device identity trusted authentication and traceability method according to claim 1, characterized in that, The smart home management platform communicates with terminal devices through reserved communication interfaces, including HTTP and MQTT interfaces.

4. The blockchain-based smart home device identity trusted authentication and traceability method according to claim 1, characterized in that, The preliminary verification via the edge gateway node includes: the edge gateway node encrypts the real-time hardware information of the smart hardware using a hash algorithm, compares the encrypted digest with the hardware information baseline digest pre-stored in the smart home management platform, and if the comparison is consistent, the preliminary verification is passed.

5. The blockchain-based smart home device identity trusted authentication and traceability method according to claim 1, characterized in that, The trusted verification node performs secondary verification as follows: After receiving the authentication request, the trusted verification node first compares the consistency between the generated blockchain identity identifier and the identity identifier stored in the blockchain ledger, and then verifies the smart home management platform signature and authentication validity period in the authentication certificate. If the identity identifier is consistent and the signature and authentication validity period pass the verification, the secondary verification is successful.

6. The blockchain-based smart home device identity trusted authentication and traceability method according to claim 1, characterized in that, The configuration data tracing rules include: Generate a unique data traceability identifier for each piece of on-chain data; Configure the traceability query dimensions, which include time dimension, device dimension and operation dimension; Configure query permission levels, which include user level, administrator level and vendor level, with different query permissions corresponding to different traceability query scopes.

7. The blockchain-based smart home device identity trusted authentication and traceability method according to claim 1, characterized in that, The method further includes: maintaining and updating the blockchain ledger, wherein the maintenance and updating include: Data cleanup: Clean up expired temporary cache data; Node status detection: Detects the operating status of each blockchain node, determines whether the node is faulty, and if so, the smart home management platform automatically sends the fault notification of the faulty node to the administrator terminal and switches the relevant tasks of the faulty node to the set backup node; the operating status includes CPU utilization, memory utilization, and communication status; Ledger Synchronization: The smart home management platform regularly synchronizes the updated data of the blockchain ledger to each edge gateway node and trusted verification node.

8. The blockchain-based smart home device identity trusted authentication and traceability method according to claim 1, characterized in that, Hardware information includes device model, MAC address, hardware serial number, and manufacturer information; the blockchain identity identifier is generated using the SHA-256 algorithm; the authentication certificate includes the blockchain identity identifier, hardware information digest, authentication validity period, and signature of the smart home management platform.

9. The blockchain-based smart home device identity trusted authentication and traceability method according to claim 1, characterized in that, The types of data on the blockchain include device identity authentication records, device operation records, device operation data, and data transmission records; device identity authentication records include authentication time, authentication node, authentication result, and device identity identifier.

10. The blockchain-based smart home device identity trusted authentication and traceability method according to claim 1, characterized in that, The traceability report is in JSON format and can be exported as a PDF.