Method and system for authenticating iot device using mobile device
Abstract
Provided is an authentication system including: a device authentication agent installed in an Internet of things (IoT) device with a communication module and generating first device authentication information for authenticating the corresponding IoT device; an authentication server connected with the IoT device through wired or wireless communication and generating second device authentication information for authenticating the IoT device; and a mobile agent installed in a mobile device of a user, connected with the IoT device and the authentication server through the wireless communication, and verifying whether the IoT device or a message determined to be received from the IoT device is authentic according to whether the first device authentication information transmitted from the IoT device and the second device authentication information transmitted from the authentication server coincide with each other.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1 . An authentication system comprising:
a device authentication agent installed in an Internet of things (IoT) device with a communication module and acquiring first device authentication information for authenticating the corresponding IoT device; a mobile agent installed on a mobile device of a user, acquiring user authentication information for authenticating the user, and generating an authentication request message including the device authentication information received from the device authentication agent and the user authentication information; and an authentication server generating authentication information for verification corresponding to each of the device authentication information and the user authentication information included in the authentication request message to compare coincidence of the authentication information for verification and determining whether the IoT device and the user are authentic.
2 . The authentication system of claim 1 , wherein the communication module is a beacon communication module, and the device authentication agent inserts identification information usable for identifying the corresponding IoT device and the device authentication information into a beacon message and wirelessly broadcasts the beacon message.
3 . The authentication system of claim 2 , wherein the device authentication information is inserted into at least one of a major field and a minor field which follow a data field area in which a UUID as a beacon unique value is inserted into the beacon message.
4 . The authentication system of claim 3 , wherein when the device authentication information exceeds the size of the field area to be inserted, the device authentication information is converted into a value which does not exceed the size of the field area to be inserted and inserted into the beacon message.
5 . The authentication system of claim 2 , wherein the mobile agent performs authentication for an application user by driving an application executing a specific application service, and transmits to the authentication server the authentication request message which includes at least the device authentication information and further includes at least one of the user authentication information, the user identification information, and the device identification information, when the device identification information and the device authentication information are received through the beacon message.
6 . The authentication system of claim 5 , wherein the mobile agent transmits to the authentication server the authentication request message only when it is determined that a distance between the IoT device and the mobile device is within a predetermined distance based on reception intensity or sensitivity of the beacon message.
7 . The authentication system of claim 5 , wherein the mobile agent replaces and uses a user token acquired when the application user authentication is completed as the user authentication information or uses a user authentication value generated newly according to the reception of the device authentication information as the user authentication information.
8 . The authentication system of claim 5 , wherein the mobile agent transmits to the authentication server an execution command selected by the application user included in the authentication request message in relation to the application service executed through the application.
9 . The authentication system of claim 8 , wherein the authentication server generates the authentication information for verification corresponding to each of the device authentication information and the user authentication information when the authentication request message is received and generates a command message for processing the execution command included in the authentication request message to be executed when the authentication information for verification, the device authentication information and the user authentication information coincide with each other.
10 . The authentication system of claim 9 , wherein the authentication server checks whether authority corresponding to the execution command is granted to the authenticated user when the authentication information is completed through the authentication information for verification and determines generation of the command message according to the authority checked result.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.