CN109889589B - System and method for realizing embedded hardware OTA (over the air) upgrading based on block chain - Google Patents
System and method for realizing embedded hardware OTA (over the air) upgrading based on block chain Download PDFInfo
- Publication number
- CN109889589B CN109889589B CN201910119485.9A CN201910119485A CN109889589B CN 109889589 B CN109889589 B CN 109889589B CN 201910119485 A CN201910119485 A CN 201910119485A CN 109889589 B CN109889589 B CN 109889589B
- Authority
- CN
- China
- Prior art keywords
- firmware
- node
- service node
- service
- intelligent terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Information Transfer Between Computers (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a system and a method for realizing embedded hardware OTA (over the air) upgrading based on a block chain, wherein the method comprises the following steps: constructing a P2P network topology comprising a plurality of service nodes for firmware download; taking one service node as a first block node, and converting other service nodes in the P2P network into one block node on a block chain one by one through a block chain consensus verification mechanism; storing the latest firmware software on the service node, and calculating the content of the node by using a hash algorithm to obtain a hash value of the service node; the node content comprises characteristic information of the service node and firmware software stored on the service node; the intelligent terminal downloads a corresponding hash value from a service node of the P2P network, performs firmware version security verification according to the hash value, downloads and stores the verified firmware software, and performs upgrading by using the firmware software. The invention establishes a safe and credible P2P network topological structure by using a block chain technology, and improves the OTA upgrading reliability and safety of the intelligent terminal.
Description
Technical Field
The invention relates to the technical field of remote upgrading of intelligent terminals, in particular to a system and a method for realizing embedded hardware OTA upgrading based on a block chain.
Background
Along with the rapid development of the current internet of things intelligent terminal, various types of intelligent terminals appear in the market, such as intelligent household appliances, intelligent homes, intelligent sound boxes and the like, and most of the intelligent terminals support a wireless fidelity (WiFi) function so as to facilitate the networking of the devices. Due to the reasons of upgrading the functions of the products at the later stage or repairing the safety problems of the system and the like, the firmware of the intelligent terminal software needs to be upgraded remotely (OTA) in a networking state so as to facilitate the user and reduce the operation and maintenance cost of an intelligent terminal manufacturer; at present, the following technical schemes are commonly used:
(1) an intelligent terminal manufacturer provides a fixed network service address, directly uploads updated firmware, and does not regularly push OTA (over the air) upgrading information to the networked intelligent terminal; after receiving the message, the intelligent terminal compares the version number and then automatically starts a firmware upgrading program;
(2) a user can search the latest firmware software to be upgraded through a fixed network service address provided by an intelligent terminal manufacturer, download the latest firmware software to the local, and trigger a built-in firmware upgrading program through an external interface (such as a USB (universal serial bus) or a serial port) of the intelligent terminal;
(3) the user directly connects the firmware background server through the mobile terminal APP matched with the intelligent terminal, finds and downloads or pushes the corresponding intelligent terminal firmware, then uses wireless or local downloading, and pushes the firmware to be upgraded in a leading-in mode to complete OTA upgrading.
Although the prior art enables a user to remotely upgrade the firmware of the intelligent terminal, the following disadvantages exist: once a manufacturer decides not to maintain the intelligent terminal firmware or the manufacturer is bankruptcy and shut down, a user may not only lose the last chance of upgrading the intelligent terminal firmware to the latest version, so that the non-upgraded networked intelligent terminal faces potential risks of various functionalities or security, more importantly, some malicious third party companies or individuals may easily continue to perform OTA upgrade for the networked intelligent terminal by establishing the imitated OTA firmware upgrade service thereof, and if the OTA firmware upgrade program of the intelligent terminal lacks a certain security verification mechanism, the device may be maliciously controlled and cause significant security problems such as personal privacy disclosure and the like after automatically upgrading the third party firmware.
In view of this, it is urgently needed to improve the existing OTA upgrading scheme of the intelligent terminal, so as to improve the reliability and the security of OTA upgrading of the intelligent terminal and prevent the OTA firmware from being maliciously tampered by a third party.
Disclosure of Invention
The technical problems to be solved by the invention are that the OTA upgrading scheme of the existing intelligent terminal is easy to be maliciously tampered by a third party, the OTA firmware can not be ensured to be continuously stored for a long time, and the reliability and the safety are poor.
In order to solve the technical problem, the technical scheme adopted by the invention is to provide a method for realizing the embedded hardware OTA upgrading based on a block chain, which comprises the following steps:
s10, constructing a decentralized P2P network topology structure comprising a plurality of service nodes for downloading firmware, wherein each service node is used for the OTA upgrading service of the intelligent terminal hardware;
step S20, using one service node as the first blocky node, and converting other service nodes in the P2P network topology structure into one blocky node on the blocky chain one by one through a blocky chain consensus verification mechanism;
step S30, storing the latest firmware software on the service node, calculating the node content by using a hash algorithm to obtain the hash value of the service node, and constructing a firmware version security verification mechanism; the node content comprises characteristic information of the service node and firmware software stored on the service node;
and step S40, the intelligent terminal downloads a corresponding hash value from a service node of the P2P network topology structure, carries out safety verification on the firmware version according to the hash value, downloads and stores the firmware software passing the verification, and utilizes the firmware software to carry out upgrading.
In the method, when firmware software is uploaded to a service node for downloading the firmware for the first time, the firmware software is split into a plurality of parts, the parts are respectively stored on a plurality of firmware downloading service nodes, and corresponding index files are generated;
the intelligent terminal is connected with a service node and downloads part of firmware software; according to the component identification of the downloaded part of firmware software, service nodes storing other parts of firmware software are sequentially searched from the P2P network topology structure, and all the components of the firmware software are sequentially downloaded; and assembling the complete firmware software according to the index file.
In the above method, the node content includes: storing a node ID, a device type and a device model of a service node of firmware software; the firmware version number, the firmware size byte value, the firmware local download address hash value and the firmware storage timestamp of firmware software stored on the service node; the service node downloads the hash value of the last service node of the firmware software;
if there is no hash value of the last service node, the value of the part is 0.
In the method, after the intelligent terminal stores the firmware software passing the verification, a hash algorithm is used for generating a hash value of a local downloading address of the firmware;
and calculating the node content of the intelligent terminal by using a hash algorithm to obtain a hash value of the intelligent terminal, and converting the intelligent terminal into a block node on a block chain through a block chain consensus verification mechanism to become a service node for downloading firmware in a P2P network topology structure.
In the above method, step S40 specifically includes the following steps:
step S41, the user opens the intelligent terminal, and announces and discovers the service node in the P2P network topology structure according to the corresponding P2P protocol after networking;
step S42, the intelligent terminal establishes connection with any found service node, downloads the hash value of the service node from the service node, and analyzes the hash value to obtain corresponding node content;
step S43, according to the local download address of firmware in the node content, obtaining the characteristic information of firmware software stored in the service node;
step S44, judging whether the acquired characteristic information of the firmware software is consistent with the analyzed node content, if so, executing step S45; otherwise, go to step S48;
s45, downloading and storing firmware software, and generating a hash value of a firmware local download address of the intelligent terminal by using a hash algorithm;
step S46, calculating the node content of the intelligent terminal by using a hash algorithm to obtain a hash value of the intelligent terminal, and converting the intelligent terminal into a block node on a block chain through a block chain consensus verification mechanism;
step S47, upgrading the intelligent terminal by using the downloaded firmware software, and then executing step S49;
step S48, moving the service node out of the P2P network and the block chain according to the P2P protocol and the block chain consensus verification mechanism;
and step S49, finishing the upgrade.
In the method, before the hash value of the node content is calculated, the public and private key pair is used for encrypting the whole node content or only the appointed part of the node content.
In the above method, the hash algorithm includes AES, SHA, RSA, ECC.
In the above method, the blockchain consensus verification mechanism includes a workload certificate, a rights certificate, and a rights authorization certificate.
The invention also provides a system for realizing the embedded hardware OTA upgrading based on the block chain, which comprises a plurality of service nodes for providing firmware downloading service for the hardware OTA upgrading of the intelligent terminal, wherein a decentralized P2P network topology structure is formed among the plurality of service nodes;
each service node in the P2P network topology structure is provided with a consensus authentication algorithm module, a security encryption authentication algorithm and a download release module;
the consensus verification algorithm module authenticates a service node joining the P2P network as a block node of a block chain through a block chain consensus verification mechanism of a P2P network topology structure;
the secure encryption verification algorithm and download release module calculates the node content by using a hash algorithm to obtain a hash value of the service node, and releases the hash value; when the firmware software stored on the service node is downloaded by other intelligent terminals, performing firmware version safety check on the current firmware software by using the hash value, and sending a check result to the intelligent terminal; wherein the node content includes characteristic information of the service node and firmware software stored thereon.
Compared with the prior art, the invention uses the block chain technology to establish the P2P network topology structure of the safe and credible firmware downloading service node, and adds more distributed credible firmware downloading service nodes through a certain block chain consensus verification mechanism, thereby the invention has the following advantages:
(1) the whole intelligent terminal hardware OTA upgrading process does not need to depend on a specific central server, and even if a firmware downloading service node in a P2P network topological structure has a fault and firmware software on the online or above is not tampered, the intelligent terminal OTA upgrading is not influenced, as long as a corresponding firmware downloading service node for upgrading the intelligent terminal firmware OTA exists, a block chain can realize a permanent, stable and safe upgrading mechanism, and the upgrading reliability of the intelligent terminal OTA is improved;
(2) all firmware download service nodes adopt a safety verification mechanism (a blockchain consensus verification mechanism and a firmware software safety verification mechanism) of a blockchain to store firmware software, so that the firmware download service nodes cannot be tampered, prevent malicious firmware upgrade programs from causing equipment safety loopholes, and improve the OTA upgrade safety of the intelligent terminal
(3) The requirement of the scheme is low, so that each long-term networked intelligent terminal can become a block node on an intelligent hardware OTA upgrading service block chain, and the performability and the realizability of the firmware OTA upgrading service are improved.
Drawings
FIG. 1 is a block diagram of a system for implementing an OTA upgrade based on a block chain according to the present invention;
FIG. 2 is a block diagram of a service node for firmware download according to the present invention;
FIG. 3 is a flowchart of a method for implementing an OTA upgrade based on a block chain according to the present invention;
FIG. 4 is a flowchart illustrating the step S40 according to the present invention;
fig. 5 is a flowchart of firmware OTA upgrade performed by the intelligent terminal according to the present invention.
Detailed Description
A block chain is a chain data structure that combines data blocks in a sequential manner in chronological order and uses cryptography. The method associates distributed data of the data block; the blockchain technology utilizes a blockchain data structure to verify and store data, utilizes a distributed node consensus algorithm to generate and update data, utilizes a cryptography mode to ensure the security of data transmission and access, utilizes an intelligent contract consisting of automatic script codes to program and operate a brand-new distributed infrastructure and computing paradigm of the data, has the characteristics of non-tampering property, decentralization, anonymity, traceability and the like, is widely applied to the financial industry at present, and shows wide application prospect in numerous fields
The invention provides a method for realizing embedded hardware OTA (over the air) upgrading based on a block chain, which comprises the steps of firstly establishing a decentralized P2P (Peer-to-Peer) network topological structure by utilizing a block chain technology, then converting each P2P node into a corresponding firmware OTA upgrading service block node one by one after identifying through a certain block chain common identification mechanism, and then forming a firmware version security authentication and verification mechanism by utilizing a Hash (Hash) Algorithm, such as AES-128(Advanced Encryption Standard 128), SHA-256(Secure Hash Algorithm256) and the like; the intelligent terminal which needs firmware OTA upgrading only needs to establish connection with the block nodes of the block chain, and then can carry out firmware OTA upgrading operation through safety verification and version confirmation. The whole firmware OTA upgrading process does not depend on a certain central server, even if a plurality of fault or offline nodes exist in the P2P firmware downloading service node, the intelligent terminal can not be influenced to be upgraded as long as a normal online block node exists, so that the OTA upgrading mechanism is more reliable, and the OTA upgrading mechanism has the characteristic of being not falsifiable and has better safety due to the block chain technology. The invention is described in detail below with reference to the drawings and the detailed description.
As shown in fig. 1, the system for implementing an embedded hardware OTA upgrade based on a blockchain according to the present invention includes a plurality of service nodes 10 for providing a firmware download service for the hardware OTA upgrade of an intelligent terminal, where a decentralized P2P network topology is formed among the plurality of service nodes 10 for downloading firmware;
each service node 10 for downloading firmware in the P2P network topology structure is provided with a consensus verification algorithm module 11 and a security encryption verification algorithm and download release module 12;
the consensus verification algorithm module 11 authenticates the service node joining the P2P network as a block node of a block chain through a block chain consensus verification mechanism of the P2P network topology structure, so that all the service nodes of the P2P network topology structure form a block chain;
the secure encryption verification algorithm and download issuing module 12 calculates the node content by using a hash algorithm to obtain a hash value of the service node, and issues the hash value; when the firmware software stored on the service node 10 is downloaded by other intelligent terminals, performing firmware version security check on the current firmware software by using the hash value, and sending a check result to the intelligent terminal; wherein the node content includes characteristic information of the service node and firmware software stored thereon.
It can be seen that, as shown in fig. 2, if the present invention is to be implemented, each service node for downloading firmware at least needs to include:
a main control module (CPU or MCU)13, which is a core processing module of a service node based on the blockchain technology and can process all system operations, data storage and network service functions on the node;
the memory 14 supports all basic processing functions of operation, data storage reading and writing, network connection, data interaction and the like on the node;
the storage module 15 is mainly used for recording and storing firmware software of a related intelligent terminal and a hash value of a corresponding block chain distributed storage service node; meanwhile, the access of files on external pluggable equipment is supported, and the equipment can be USB equipment, card reader equipment and the like;
the network service module 16 (including HTTP, TCP, UDP, FTP, etc.) is an infrastructure for establishing a P2P network, and mainly provides a connectable network address and service port for a device or a service node, and provides functions of network service, device identification, distribution, connection, data download and interaction, etc. according to a corresponding protocol;
and the consensus verification algorithm module 11 supports the creation and confirmation of a new firmware downloading service node by using a blockchain technology, and when the service node joins the P2P network, the joined service node is authenticated through a certain consensus algorithm mechanism (consensus). In the block chain technology, common consensus mechanisms include workload Proof (POW Proof of Work), rights and interests Proof (POS Proof of stamp), rights and interests Proof (DPOS deleted Proof of stamp), and the like;
a safe encryption verification algorithm and download release module 12 supporting a key generation algorithm and a certain Hash encryption algorithm mechanism; calculating the content of the node by using a hash algorithm (various common symmetric or asymmetric encryption algorithms such as AES, SHA, RSA, ECC and the like can be used) to obtain a hash value of the service node, and issuing the hash value; when the firmware software stored on the service node is downloaded by other intelligent terminals, the hash value is used for carrying out firmware version safety check on the current firmware software, and the check result is sent to the intelligent terminal, so that the system has a certain firmware safety tamper-proof mechanism (for example, methods such as at least comparing firmware version information, firmware size and information comparison of a previous trusted block are needed), namely, the hash value is decrypted by using a corresponding hash algorithm, if the decrypted node content is consistent with the characteristic information of the currently stored firmware software and the characteristic information of the service node, the firmware software is proved not to be tampered, the intelligent terminal downloads the firmware software, otherwise, the service node is moved out of a P2P network and a block chain; the node content includes feature information of the service node and firmware software stored thereon, and specifically includes: storing a node ID, a device type and a device model of a service node of firmware software; the firmware version number, the firmware size byte value, the firmware local download address hash value and the firmware storage timestamp stamp of firmware software stored on the service node; the service node downloads the hash value of the last service node of the firmware software, wherein the hash value of the firmware downloading address is an internet downloading address which does not want to directly acquire the firmware software by using a plaintext; if there is no hash value of the last service node, the value of the part is 0.
As shown in fig. 3, the method for implementing an embedded hardware OTA upgrade based on a block chain according to the present invention includes the following steps:
s10, constructing a decentralized P2P network topology structure comprising a plurality of service nodes for downloading firmware, wherein each service node is used for the OTA upgrading service of the intelligent terminal hardware;
step S20, using one service node as the first blocky node, and converting other service nodes in the P2P network topology structure into one blocky node on the blocky chain one by one through a blocky chain consensus verification mechanism;
step S30, storing the latest firmware software on the service node, calculating the node content by using a hash algorithm to obtain the hash value of the service node, and constructing a firmware version security verification mechanism; the node content comprises characteristic information of the service node and firmware software stored on the service node;
and step S40, the intelligent terminal downloads a corresponding hash value from a service node of the P2P network topology structure, carries out safety verification on the firmware version according to the hash value, downloads and stores the firmware software passing the verification, and utilizes the firmware software to carry out upgrading.
The invention uses the block chain technology to establish the P2P network topological structure of the safe and credible firmware downloading service node, and determines more distributed credible service nodes to be added through a certain consensus mechanism so as to ensure the robustness of the P2P network topological structure; meanwhile, the safety, credibility and anti-tampering characteristics of the firmware software are maintained through the safety encryption verification mechanism of the service node for downloading the firmware.
In the invention, if the intelligent terminal has all the capabilities as shown in fig. 2, after the intelligent terminal stores the firmware software passing the verification, the hash algorithm is used for generating the local download address hash value of the firmware; and calculating the node content of the intelligent terminal by utilizing a hash algorithm to obtain a hash value of the intelligent terminal, converting the intelligent terminal into a trusted block node on a block chain through a block chain consensus verification mechanism to become a service node for downloading firmware in a P2P network topology structure, and providing firmware OTA (over the air) upgrading service for other intelligent terminals.
In the invention, in order to improve the network transmission efficiency, when the related firmware software is uploaded to the firmware downloading service node for the first time, the firmware software is split into a plurality of parts which are respectively stored on the plurality of firmware downloading service nodes, and corresponding Index (Index) files are generated;
the intelligent terminal is connected with a service node and downloads part of firmware software; according to the component identification of the downloaded part of firmware software, service nodes storing other parts of firmware software are sequentially searched from a P2P network topological structure (when each part is downloaded, firmware version safety check is respectively carried out on each part), and all the components of the firmware software are sequentially downloaded; and assembling the complete firmware software according to the index file. If the intelligent terminal has all the capabilities shown in fig. 2, after the intelligent terminal is assembled and stored, the node content is calculated by using a hash algorithm to obtain a hash value, and the intelligent terminal is converted into a block node on a block chain through a block chain consensus verification mechanism to become a service node for downloading firmware in a P2P network topology structure.
As shown in fig. 4, step S40 specifically includes the following steps:
step S41, the user opens the intelligent terminal, and announces and discovers the service node in the P2P network topology structure according to the corresponding P2P protocol after networking;
step S42, the intelligent terminal establishes connection with any found service node, downloads the hash value of the service node from the service node, and analyzes the hash value to obtain corresponding node content;
step S43, according to the local download address of firmware in the node content, obtaining the characteristic information of firmware software stored in the service node;
step S44, judging whether the acquired characteristic information of the firmware software is consistent with the analyzed node content, if so, executing step S45; otherwise, go to step S48;
s45, downloading and storing firmware software, and generating a hash value of a firmware local download address of the intelligent terminal by using a hash algorithm;
step S46, calculating the node content of the intelligent terminal by using a hash algorithm to obtain a hash value of the intelligent terminal, and converting the intelligent terminal into a block node on a block chain through a block chain consensus verification mechanism;
step S47, upgrading the intelligent terminal by using the downloaded firmware software, and then executing step S49;
step S48, moving the service node out of the P2P network and the block chain according to the P2P protocol and the block chain consensus verification mechanism;
and step S49, finishing the upgrade.
In the invention, before the hash value of the node content is calculated, the node content can be completely encrypted by using a public and private key pair method or only the appointed part of the node content is encrypted, so as to improve the anti-tamper property of the firmware.
As shown in fig. 5, the firmware OTA upgrade process of the intelligent terminal when the present invention is adopted is as follows:
001: the user opens the intelligent terminal, and the intelligent terminal automatically networks in the state that the network distribution is completed;
002: after the intelligent terminal is networked, announcing and discovering other firmware downloading service nodes in the P2P network according to a corresponding P2P protocol;
003: after finding any one firmware downloading service node, the intelligent terminal establishes connection (based on protocols such as TCP, UDP, HTTP, FTP and the like) with the firmware downloading service node;
004: downloading a hash value of a firmware downloading service node from the firmware downloading service node, analyzing the node content to obtain a firmware software downloading address and corresponding characteristic information of firmware software (storing a firmware downloading service node ID of the firmware software, an equipment type, an equipment model, a firmware version number, a firmware size byte value, a timestamp stamp and the like), then downloading the firmware software according to the firmware software downloading address, comparing the firmware software with the analyzed firmware software characteristic information, if the firmware software is consistent with the firmware software downloading address, showing that the downloaded firmware software is not tampered, storing the firmware software by the intelligent terminal, calling a hash algorithm to generate node content of the intelligent terminal, then utilizing a block chain common identification verification algorithm to perform authentication of adding a P2P network topological structure, and adding a corresponding block chain to form a credible block node; if not, moving the firmware download service node out of the P2P network and the blockchain according to the P2P protocol and the blockchain consensus verification mechanism;
005: storing the firmware software to an upgrading space, starting a general upgrading process, and analyzing related information content of the firmware software;
006: starting a security verification process for comparing the new firmware software to ensure that the new firmware is safe and reliable and is not tampered; (mainly checks that the firmware device type, device model, firmware version number, firmware size, etc. are all consistent with the actual downloaded firmware);
007: if the received firmware software is partial software, sequentially searching firmware downloading service nodes storing other parts of firmware software from the P2P network directly, returning to the step 003, connecting each firmware downloading service node to download each part of firmware software, assembling according to the index file after all files are acquired, and confirming that the final firmware version passes the safety verification;
008: starting an equipment firmware upgrading program;
009: restarting the equipment after the upgrade is completed successfully; if the failure occurs, rolling back to the original version.
The present invention is not limited to the above-mentioned preferred embodiments, and any structural changes made under the teaching of the present invention shall fall within the scope of the present invention, which is similar or similar to the technical solutions of the present invention.
Claims (7)
1. A method for realizing embedded hardware OTA upgrading based on a block chain is characterized by comprising the following steps:
s10, constructing a decentralized P2P network topology structure comprising a plurality of service nodes for downloading firmware, wherein each service node is used for the OTA upgrading service of the intelligent terminal hardware;
step S20, using one service node as the first blocky node, and converting other service nodes in the P2P network topology structure into one blocky node on the blocky chain one by one through a blocky chain consensus verification mechanism;
step S30, storing the latest firmware software on the service node, calculating the node content by using a hash algorithm to obtain the hash value of the service node, and constructing a firmware version security verification mechanism; the node content comprises characteristic information of the service node and firmware software stored on the service node;
s40, the intelligent terminal downloads a corresponding hash value from a service node of a P2P network topology structure, carries out safety verification on the firmware version according to the hash value, downloads and stores the firmware software passing the verification, and utilizes the firmware software to carry out upgrading;
step S40 specifically includes the following steps:
step S41, the user opens the intelligent terminal, and announces and discovers the service node in the P2P network topology structure according to the corresponding P2P protocol after networking;
step S42, the intelligent terminal establishes connection with any found service node, downloads the hash value of the service node from the service node, and analyzes the hash value to obtain corresponding node content;
step S43, according to the local download address of firmware in the node content, obtaining the characteristic information of firmware software stored in the service node;
step S44, judging whether the acquired characteristic information of the firmware software is consistent with the analyzed node content, if so, executing step S45; otherwise, go to step S48;
s45, downloading and storing firmware software, and generating a hash value of a firmware local download address of the intelligent terminal by using a hash algorithm;
step S46, calculating the node content of the intelligent terminal by using a hash algorithm to obtain a hash value of the intelligent terminal, and converting the intelligent terminal into a block node on a block chain through a block chain consensus verification mechanism;
step S47, upgrading the intelligent terminal by using the downloaded firmware software, and then executing step S49;
step S48, moving the service node out of the P2P network and the block chain according to the P2P protocol and the block chain consensus verification mechanism;
and step S49, finishing the upgrade.
2. The method of claim 1, wherein when the firmware software is uploaded to the service node for downloading the firmware for the first time, the firmware software is split into a plurality of parts, the parts are respectively stored on a plurality of service nodes for downloading the firmware, and corresponding index files are generated;
the intelligent terminal is connected with a service node and downloads part of firmware software; according to the component identification of the downloaded part of firmware software, service nodes storing other parts of firmware software are sequentially searched from the P2P network topology structure, and all the components of the firmware software are sequentially downloaded; and assembling the complete firmware software according to the index file.
3. The method of claim 1, wherein the node contents comprise: storing a node ID, a device type and a device model of a service node of firmware software; the firmware version number, the firmware size byte value, the firmware local download address hash value and the firmware storage timestamp of firmware software stored on the service node; the service node downloads the hash value of the last service node of the firmware software;
if there is no hash value of the last service node, the value of the part is 0.
4. The method of claim 1, wherein the node contents are encrypted using a public-private key pair for all or only a portion of the agreed upon node contents prior to the calculation of the hash value.
5. The method of claim 1, wherein the hash algorithm comprises AES, SHA, RSA, ECC.
6. The method of claim 1, wherein the blockchain consensus verification mechanism comprises a workload certificate, a rights certificate, and a rights authorization certificate.
7. A block chain-based embedded hardware OTA upgrading system is characterized by comprising a plurality of service nodes for providing firmware downloading service for hardware OTA upgrading of an intelligent terminal, wherein a decentralized P2P network topology structure is formed among the plurality of service nodes;
each service node in the P2P network topology structure is provided with a consensus authentication algorithm module, a security encryption authentication algorithm and a download release module;
the consensus verification algorithm module authenticates a service node joining the P2P network as a block node of a block chain through a block chain consensus verification mechanism of a P2P network topology structure;
the secure encryption verification algorithm and download release module calculates the node content by using a hash algorithm to obtain a hash value of the service node, and releases the hash value; the node content comprises characteristic information of the service node and firmware software stored on the service node;
when the firmware software stored on the service node is downloaded by other intelligent terminals, performing firmware version safety check on the current firmware software by using the hash value, and sending a check result to the intelligent terminal; the intelligent terminal establishes connection with any found service node, downloads a hash value of the service node from the service node, and analyzes the hash value to obtain corresponding node content; acquiring characteristic information of firmware software stored on a service node according to a local downloading address of firmware in the node content; judging whether the acquired feature information of the firmware software is consistent with the node content obtained by analysis, and downloading and storing the firmware software if the acquired feature information of the firmware software is consistent with the node content obtained by analysis; otherwise, the service node is moved out of the P2P network and blockchain according to the P2P protocol and blockchain consensus verification mechanism.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910119485.9A CN109889589B (en) | 2019-02-18 | 2019-02-18 | System and method for realizing embedded hardware OTA (over the air) upgrading based on block chain |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910119485.9A CN109889589B (en) | 2019-02-18 | 2019-02-18 | System and method for realizing embedded hardware OTA (over the air) upgrading based on block chain |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109889589A CN109889589A (en) | 2019-06-14 |
| CN109889589B true CN109889589B (en) | 2021-11-23 |
Family
ID=66928374
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910119485.9A Active CN109889589B (en) | 2019-02-18 | 2019-02-18 | System and method for realizing embedded hardware OTA (over the air) upgrading based on block chain |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109889589B (en) |
Families Citing this family (26)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110798509B (en) | 2019-07-15 | 2021-09-17 | 腾讯科技(深圳)有限公司 | Block data synchronization method, device, medium and electronic equipment |
| CN110704392B (en) * | 2019-08-21 | 2023-03-31 | 平安科技(深圳)有限公司 | Block chain network upgrading method and device, storage medium and electronic equipment |
| CN110493345A (en) * | 2019-08-23 | 2019-11-22 | 北京智芯微电子科技有限公司 | Internet-of-things terminal method for upgrading software and system based on block chain |
| CN110535938B (en) | 2019-08-29 | 2021-07-27 | 腾讯科技(深圳)有限公司 | Data processing method, equipment and storage medium based on intelligent contract |
| SG11202010203QA (en) | 2019-10-15 | 2020-11-27 | Alipay Hangzhou Inf Tech Co Ltd | Indexing and recovering encoded blockchain data |
| CN110730079B (en) * | 2019-10-16 | 2023-06-02 | 北京信长城科技发展有限公司 | System for safe starting and trusted measurement of embedded system based on trusted computing module |
| CN111522563B (en) * | 2020-04-20 | 2023-09-19 | 中国工商银行股份有限公司 | Terminal upgrading protection system and method based on block chain |
| CN111782238A (en) * | 2020-05-27 | 2020-10-16 | 华帝股份有限公司 | Software upgrading method and system for intelligent household electrical appliance |
| CN111984295B (en) * | 2020-08-22 | 2021-04-13 | 暗链科技(深圳)有限公司 | Block chain software whole-network updating method, storage medium and electronic equipment |
| US12045600B2 (en) | 2020-09-30 | 2024-07-23 | Boe Technology Group Co., Ltd. | Method for upgrading IoT terminal device and electronic device thereof |
| CN112148333B (en) * | 2020-10-10 | 2023-11-03 | 上海聪链信息科技有限公司 | Block chain server firmware updating system |
| CN112162770B (en) * | 2020-10-20 | 2023-11-10 | 深圳技术大学 | Firmware version upgrading method and device for realizing integrity verification based on block chain |
| CN112256596B (en) * | 2020-10-23 | 2022-07-05 | 英业达科技有限公司 | Method for refreshing signal repeater in electronic device firmware |
| TWI757934B (en) * | 2020-10-27 | 2022-03-11 | 英業達股份有限公司 | Method for updating redriver in firmware of electronic device |
| CN112559005A (en) * | 2020-11-27 | 2021-03-26 | 南京南瑞信息通信科技有限公司 | Internet of things equipment firmware updating method and system based on block chain and distributed storage |
| CN114327531A (en) * | 2020-11-30 | 2022-04-12 | 青岛海尔电冰箱有限公司 | Refrigerator program upgrading method based on block chain and refrigerator |
| CN112328291A (en) * | 2020-12-11 | 2021-02-05 | 上海市民信箱信息服务有限公司 | APP light application market software version control method |
| WO2022183371A1 (en) * | 2021-03-02 | 2022-09-09 | 深圳大学 | Firmware update method, apparatus and system for internet of things device, and storage medium |
| CN112947967B (en) * | 2021-03-08 | 2023-09-26 | 中国联合网络通信集团有限公司 | Software updating method, blockchain application store and software uploading terminal |
| CN113190252A (en) * | 2021-05-14 | 2021-07-30 | 广州国联通信有限公司 | Remote online firmware updating method and device based on train broadcasting system |
| CN113434170B (en) * | 2021-06-22 | 2023-03-14 | 重庆长安汽车股份有限公司 | Finished automobile OTA data downloading and deploying method and device |
| CN113849213B (en) * | 2021-10-15 | 2024-05-14 | 四川启睿克科技有限公司 | OTA upgrading system and method for edge equipment |
| CN114095538B (en) * | 2021-11-18 | 2023-03-07 | 四川启睿克科技有限公司 | Bidirectional authentication method for OTA (over the air) upgrading of Internet of things equipment based on block chain technology |
| CN114168176A (en) * | 2021-12-15 | 2022-03-11 | 四川启睿克科技有限公司 | Block chain-based cross-manufacturer equipment upgrading system and method |
| CN114637987B (en) * | 2022-05-18 | 2022-08-12 | 广州万协通信息技术有限公司 | Security chip firmware downloading method and system based on platform verification |
| CN118713816A (en) * | 2024-08-28 | 2024-09-27 | 苏州元脑智能科技有限公司 | Server system, firmware processing method, device, equipment, medium and product |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101247416A (en) * | 2008-03-25 | 2008-08-20 | 中兴通讯股份有限公司 | Firmware downloading method, preprocessing method and integrality verification method based on OTA |
| CN103092657A (en) * | 2013-01-18 | 2013-05-08 | 郑州威科姆科技股份有限公司 | Embedded device upgrade method based on peer-to-peer (P2P) |
| CN104836848A (en) * | 2015-04-14 | 2015-08-12 | 闪联信息技术工程中心有限公司 | Method for remotely upgrading intelligent household electrical appliances |
| CN105653315A (en) * | 2015-12-23 | 2016-06-08 | 北京工业大学 | Block chain technology-based node operation system downloading method |
| CN106789236A (en) * | 2016-12-20 | 2017-05-31 | 深圳盈达信息科技有限公司 | A kind of method of the FOTA remote onlines upgrading of fusion WiFiP2P |
| CN107077557A (en) * | 2016-12-29 | 2017-08-18 | 深圳前海达闼云端智能科技有限公司 | The method and device that software application is issued and verified |
| CN108270573A (en) * | 2018-01-12 | 2018-07-10 | 西安电子科技大学 | The method for secret protection of pilotless automobile |
| CN108270874A (en) * | 2018-02-05 | 2018-07-10 | 武汉斗鱼网络科技有限公司 | The update method and device of application program |
| CN108737498A (en) * | 2018-04-18 | 2018-11-02 | 中国地质大学(武汉) | A kind of P2P safety download detection method and system based on block chain |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9967334B2 (en) * | 2015-03-02 | 2018-05-08 | Dell Products Lp | Computing device configuration and management using a secure decentralized transaction ledger |
-
2019
- 2019-02-18 CN CN201910119485.9A patent/CN109889589B/en active Active
Patent Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101247416A (en) * | 2008-03-25 | 2008-08-20 | 中兴通讯股份有限公司 | Firmware downloading method, preprocessing method and integrality verification method based on OTA |
| CN103092657A (en) * | 2013-01-18 | 2013-05-08 | 郑州威科姆科技股份有限公司 | Embedded device upgrade method based on peer-to-peer (P2P) |
| CN104836848A (en) * | 2015-04-14 | 2015-08-12 | 闪联信息技术工程中心有限公司 | Method for remotely upgrading intelligent household electrical appliances |
| CN105653315A (en) * | 2015-12-23 | 2016-06-08 | 北京工业大学 | Block chain technology-based node operation system downloading method |
| CN106789236A (en) * | 2016-12-20 | 2017-05-31 | 深圳盈达信息科技有限公司 | A kind of method of the FOTA remote onlines upgrading of fusion WiFiP2P |
| CN107077557A (en) * | 2016-12-29 | 2017-08-18 | 深圳前海达闼云端智能科技有限公司 | The method and device that software application is issued and verified |
| CN108270573A (en) * | 2018-01-12 | 2018-07-10 | 西安电子科技大学 | The method for secret protection of pilotless automobile |
| CN108270874A (en) * | 2018-02-05 | 2018-07-10 | 武汉斗鱼网络科技有限公司 | The update method and device of application program |
| CN108737498A (en) * | 2018-04-18 | 2018-11-02 | 中国地质大学(武汉) | A kind of P2P safety download detection method and system based on block chain |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109889589A (en) | 2019-06-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109889589B (en) | System and method for realizing embedded hardware OTA (over the air) upgrading based on block chain | |
| Sinha et al. | Building an E Ective IoT Ecosystem for Your Business | |
| US11258792B2 (en) | Method, device, system for authenticating an accessing terminal by server, server and computer readable storage medium | |
| US20200287726A1 (en) | Remote device control | |
| CN108377272B (en) | Method and system for managing terminal of Internet of things | |
| US20200259667A1 (en) | Distributed management system for remote devices and methods thereof | |
| CN107111515B (en) | Internet of things platform, equipment and method | |
| CN109802967B (en) | Block chain information tracking method and system | |
| CN110268679B (en) | Block chain-based authentication method and system | |
| US20210314293A1 (en) | Method and system for using tunnel extensible authentication protocol (teap) for self-sovereign identity based authentication | |
| CN107172001B (en) | Control method and device of website proxy server and key proxy server | |
| CN111488372A (en) | Data processing method, device and storage medium | |
| CN111740966A (en) | Data processing method based on block chain network and related equipment | |
| CN111461720B (en) | Identity verification method and device based on blockchain, storage medium and electronic equipment | |
| CN114978635B (en) | Cross-domain authentication method and device, user registration method and device | |
| CN110912877B (en) | Data transmitting and receiving method and device based on IEC61850 model in transformer substation | |
| JP6268616B2 (en) | Authentication system and authentication method | |
| Da Silva et al. | A secure ota approach for flexible operation of emergency detection units in smart cities | |
| CN112702419A (en) | Data processing method, device, equipment and storage medium based on block chain | |
| Magnusson | Evaluation of Decentralized Alternatives to PKI for IoT Devices: A litterature study and proof of concept implementation to explore the viability of replacing PKI with decentralized alternatives | |
| CN113381855B (en) | Communication method and system | |
| CN116961973A (en) | Data transmission method, device, electronic equipment and computer readable storage medium | |
| US20230283485A1 (en) | Method and device for dynamic public key infrastructure | |
| US20240129291A1 (en) | Cross-Domain Secure Connect Transmission Method | |
| US20240340188A1 (en) | Independent identity provenance and lineage for certificates |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |