KR20240151572A - Security system for managing apartment house and method for operating thereof - Google Patents

Abstract

According to one embodiment, a storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, the at least one operation including: identifying identification information associated with at least one hardware included in the electronic device; generating a seed based on at least a portion of the identified identification information; generating a code based on the generated seed; obtaining a command set to cause an external electronic device capable of communicating with the electronic device to perform at least one operation; and transmitting the obtained command and the code to the external electronic device.

Description

SECURITY SYSTEM FOR MANAGING APARTMENT HOUSE AND METHOD FOR OPERATING THEREOF

Various embodiments of the present disclosure relate to a security system for code-based apartment management and its operating method.

In modern apartment complexes, various facilities and services are provided to enhance the convenience of living. However, there are inconveniences in the management and use of these facilities and services. In particular, information transmission within apartment complexes is generally provided through notice boards, etc., so information transmission is inconvenient and there is a high possibility of information being omitted. In addition, responses to accidents or emergencies occurring within apartment complexes may not be made quickly.

Accordingly, a wall pad, which is a device for information transmission and safety management within an apartment complex, was developed to solve this problem. A wall pad is an electronic device installed on a wall inside a house, and can perform various functions necessary for information transmission and safety management within an apartment complex. For example, an access control function can be performed using a wall pad. An access control device can be connected to a wall pad, and the access control device can be controlled according to the operation of the wall pad, so that access control can be performed. For example, communication with other households can be performed using a wall pad. For example, a wall pad of one household can be directly or indirectly connected to a wall pad of another household, and communication between the wall pads can be performed through the corresponding communication line. Accordingly, a household member of one household can communicate with another household (or an apartment complex manager) using a wall pad. For example, emergency response can be possible using a wall pad. For example, a wall pad can be connected to various types of sensors within a house, either wired or wirelessly. The wall pad can determine whether an emergency situation exists based on sensing data from sensors, and can respond directly based on the determination results, or through other alarm devices or communication devices.

A wall pad may be connected to a management server that manages, for example, multiple wall pads. The management server may process data from each of the wall pads and may also communicate with external devices (e.g., the Internet, or a third-party server within the complex).

As described above, communication can be performed between the wall pad and the home devices, and data related to safety can be transmitted and received through the communication. For example, an access control device can be controlled through the wall pad, and the opening and closing of the front door of the home can be controlled by operating the access control device. Accordingly, if security between the wall pad and the access control device is not secured, the access control device can be controlled by an external unauthorized person, and thus safety may not be secured.

In addition, the security of communication by the single server that manages multiple wall pads must also be guaranteed. For example, if an unauthorized person accesses the single server, he or she may access the wall pad, which may result in the above-mentioned problems. In addition, if the security of communication between the single server and the third-party server is not guaranteed, the security of the service by the third-party server may not be guaranteed.

Various embodiments of the present disclosure relate to a code-based security system capable of ensuring security between multiple entities of the above-described apartment complex, and entities included in the security system and their operating methods.

According to one embodiment, a storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, the at least one operation including: identifying identification information associated with at least one hardware included in the electronic device; generating a seed based on at least a portion of the identified identification information; generating a code based on the generated seed; obtaining a command set to cause an external electronic device capable of communicating with the electronic device to perform at least one operation; and transmitting the obtained command and the code to the external electronic device.

According to one embodiment, a storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, the at least one operation including: identifying identification information associated with at least one hardware included in the electronic device; generating a seed based on at least a portion of the identified identification information; generating a code based on the generated seed; receiving, from an external electronic device capable of communicating with the electronic device, a command and a verification code set to cause the electronic device to perform the at least one operation; and performing the at least one operation based on the command based on the verification code and the generated code being identical.

According to one embodiment, a storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, the at least one operation including: identifying identification information associated with at least one hardware included in the electronic device, generating a seed based on at least a portion of the identified identification information, generating a code based on the generated seed, obtaining a command set to cause an external electronic device capable of communicating with the electronic device to perform at least one operation, encrypting the obtained command using the code, and transmitting the encrypted command to the external electronic device.

According to one embodiment, a storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, wherein the at least one operation includes: identifying identification information associated with at least one hardware included in the electronic device; generating a seed based on at least a portion of the identified identification information; generating a code based on the generated seed; receiving, from an external electronic device capable of communicating with the electronic device, encrypted information in which the command is set to cause the performance of the at least one operation by the electronic device; decrypting the encrypted information based on the generated code to obtain the command; and performing the at least one operation based on the obtained command.

According to various embodiments of the present disclosure, a security system and entities included in the security system and their operating methods can be provided, which can ensure security between multiple entities in an apartment complex.

FIG. 1 is a drawing for explaining a security system according to one embodiment.
FIG. 2 illustrates a block diagram of a wall pad and a single server according to one embodiment.
FIG. 3 illustrates a flowchart for explaining the operation of a security system according to one embodiment.
FIG. 4 is a flowchart illustrating the operation of a security system according to one embodiment.
FIG. 5 is a drawing for explaining a security system according to one embodiment.
FIG. 6 is a drawing for explaining a security system according to one embodiment.
FIG. 7 is a drawing for explaining an operation method of a security system according to one embodiment.
FIG. 8a is a drawing for explaining an operation method of a security system according to one embodiment.
FIG. 8b is an example of a data format defined between two or more entities according to one embodiment.
Figure 9 is a flowchart for explaining the operation of a security system according to one embodiment.
FIG. 10 is a flowchart for explaining an operation method of a security system according to one embodiment.
Figure 11 is an example of a data format according to one embodiment.
FIG. 12a is a diagram for explaining an operation method of a security system according to one embodiment.
FIG. 12b is a flowchart for explaining an operation method of a security system according to one embodiment.
FIG. 12c is a flowchart for explaining a method of operating a security system according to one embodiment.
FIG. 12d is a flowchart for explaining an operation method of a security system according to one embodiment.
FIG. 13 is a diagram for explaining information associated with at least one hardware according to one embodiment.
FIG. 14a is a flowchart for explaining an operation method of a security system according to one embodiment.
Figure 14b is a diagram for explaining code generation according to one embodiment.
FIG. 15a is a flowchart for explaining an operation method of a security system according to one embodiment.
Figure 15b is a diagram for explaining code generation according to one embodiment.
FIG. 16a is a flowchart for explaining an operation method of a security system according to one embodiment.
Figure 16b is a diagram for explaining code generation according to one embodiment.
FIGS. 17A to 17D are drawings for explaining a security system according to one embodiment.

Hereinafter, exemplary embodiments according to the present invention will be described in detail with reference to the contents described in the attached drawings. However, the present invention is not limited or restricted by the exemplary embodiments. The same reference numerals presented in each drawing represent components that perform substantially the same function.

It will be appreciated that embodiments of the present invention may be realized in the form of hardware, software, or a combination of hardware and software. Any such software may be stored in a volatile or nonvolatile storage device, such as a ROM, for example, regardless of whether it is erasable or rewritable, or a memory, such as a RAM, a memory chip, a device, or an integrated circuit, or an optically or magnetically recordable and machine-readable storage medium, such as a CD, a DVD, a magnetic disk, or a magnetic tape. It will be appreciated that the graphic screen updating method of the present invention may be implemented by a computer or a portable terminal including a control unit and a memory, and that the memory is an example of a machine-readable storage medium suitable for storing a program or programs including instructions for implementing embodiments of the present invention. Accordingly, the present invention includes a program including a code for implementing a device or method described in any claim of this specification, and a machine-readable storage medium (such as a computer) storing such a program. Additionally, these programs may be transmitted electronically via any medium, such as communication signals transmitted via wired or wireless connections, and the present invention suitably includes equivalents thereof.

FIG. 1 is a drawing for explaining a security system according to one embodiment.

As illustrated in FIG. 1, the security system may include at least some of a wall pad (101), home appliance/control devices (103a, 103b, 103c), a complex server (110), a security means (112), a module (114), a third-party server (116, 117), a construction company application (130), an administrator device (135), or an authentication cloud (137).

Referring to FIG. 1, a security system according to one embodiment may include a wall pad (101). The wall pad (101) may be placed, for example, in each household of an apartment complex. The wall pad (101) may be installed, for example, on a wall of an household of an apartment complex, but there is no limitation on the installation location. The wall pad (101) is a smart device having various functions such as an intercom, a door opening function, and a home network, which are mainly used in apartment complexes, and is a product developed to improve the convenience and safety of living in apartment complexes by using the same.

For example, the wall pad (101) can provide various functions. Although not shown, the wall pad (101) can include a display that can provide (or express, or display) a user interface (hereinafter referred to as UI). Here, the display can be implemented to include, for example, a touch panel (or, together with a touch panel), and in this case, the wall pad (101) can also be implemented to include a touchscreen. In the present embodiment, the wall pad (101) is described as including a touchscreen, but those skilled in the art will understand that there is no limitation as long as it includes hardware (for example, a display, a speaker, etc., but not limited) for expressing data for user recognition (for example, graphic data) and hardware (for example, a touch panel, a microphone, etc., but not limited) for receiving user input. The wall pad (101) can provide a UI for various functions, for example, through a touchscreen.

For example, the wall pad (101) can provide a UI for an access control function. There is no limitation on the implementation method of the access control function. In the first example, the access control function UI can simply include at least one visual object (e.g., an open button and/or a close button) for controlling the opening and closing of the door. For example, when it is confirmed that the open button is designated, the wall pad (101) can transmit data for the opening function to the first home appliance/control device (103a). The first home appliance/control device (103a) can be, for example, a door opening/closing device. The door opening/closing device can open (or unlock) the exit door based on the reception of the data for the opening function. In the second example, the wall pad (101) can also implement an access control function based on a password input. The wall pad (101) can manage a password set (or adjusted) by a user. The wall pad (101) may, for example, represent a UI for entering a password. When a password is entered through the UI, the wall pad (101) may compare the entered password with a password that is managing the password, and if the two passwords are the same, may transmit data for an opening function to the first home appliance/control device (103a). The first home appliance/control device (103a) may, for example, be a door opening/closing device. The door opening/closing device may open (or unlock) the exit door based on the reception of data for the opening function. In a third example, the wall pad (101) may implement an access control function based on security information. The security information is not limited to information generated based on a conventional method for deactivating security, such as biometric information, an OTP (onetime password), or a code generated in another way. The wall pad (101) may manage security information, or may store information for generating security information and an algorithm for generating security information. The wall pad (101) can compare security information received through the UI, sensor, or communication with security information managed or generated. If both pieces of security information are the same, data for an opening function can be transmitted to the first home appliance/control device (103a). The first home appliance/control device (103a) can be, for example, a door opening/closing device. The door opening/closing device can open (or unlock) the exit door based on the data for the opening function being received.

Meanwhile, the above-described UI input method may be performed based on voice recognition rather than a visual object. For example, the wall pad (101) may support a standalone (SA) type voice recognition function (or a voice recognition AI model) or a non-standalone (NSA) type voice recognition function. In the case of the SA type, the wall pad (101) may analyze the meaning of a voice input by the wall pad (101) alone, identify a control target device, and identify a control command. The wall pad (101) may transmit a control command to the identified control target device. The control target device that receives the control command may perform at least one operation corresponding to the received control command. In the case of the NSA type, the wall pad (101) may query voice recognition to an external entity having more computing power (for example, it may be just a server or a dedicated server for voice recognition connected via the Internet, but there is no limitation on the type of the external entity). The external entity can analyze the meaning of the queried voice, identify the controlled device, and identify the control command. The external entity can provide information about the controlled device and/or the control command to the wall pad (101). The wall pad (101) can transmit a control command to the identified controlled device based on the received information. The controlled device that has received the control command can perform at least one operation corresponding to the received control command. Those skilled in the art will understand that the user input in various embodiments of the present disclosure can be performed based on voice recognition as well as input/output through the touch screen as described above, and can also be implemented by various other user control methods.

For example, the wall pad (101) can perform a home appliance control function. For example, various types of smart home appliances may be included in a home, and at least some of the home appliances/control devices (103a, 103b, 103c) of FIG. 1 may be smart home appliances. Here, the smart home appliances may include lighting devices, cooling devices, heating devices, fuel (e.g., gas) opening/closing control devices, heating devices such as induction, and the like, and there is no limitation on the type thereof. The wall pad (101) can provide at least one UI capable of controlling various types of home appliances. Each of the at least one UIs may be implemented to include at least one visual object for controlling the function of the home appliance, but there is no limitation on the form of implementation.

Meanwhile, although not shown, the wall pad (101) can communicate with a smart phone or a wearable device (for example, a smart watch, smart glasses, VST device, HMD, smart contact lens, etc., but there is no limitation on the form of implementation). The function provided by the above-described wall pad (101) can also be implemented with, for example, a smart phone or a wearable device. For example, when a home appliance control function is performed, a UI for the home appliance control function can be provided by a smart phone or a wearable device. A control command can be input through the UI provided by the smart phone or the wearable device. The smart phone or the wearable device can transmit the received control command to the corresponding controlled device. For example, the wall pad (101) can first receive a control command from a smart phone or a wearable device and transmit the received control command to the corresponding controlled device. In this case, the wall pad (101) can be implemented as a controller of a home network. Meanwhile, this is an example, and those skilled in the art will understand that depending on the implementation, a smart phone or wearable device may communicate directly with the corresponding controlled device without going through the wall pad (101).

The wall pad (101) according to one embodiment can communicate with home appliances/control devices (103a, 103b, 103c) in order to perform various functions as described above. The wall pad (101) can communicate with home appliances/control devices (103a, 103b, 103c) through, for example, wired communication (for example, wired communication of the RS-485 standard, but there is no limitation). Alternatively, the wall pad (101) can communicate with home appliances/control devices (103a, 103b, 103c) through wireless communication. For example, the wireless communication can be based on various standards such as Bluetooth (for example, basic rate/enhanced data rate/low energy, but there is no limitation), NFC, Zig-bee, thread, UWB, Wifi-direct, and the like, but there is no limitation in the implementation method. Meanwhile, the wall pad (101) may be implemented based on a manufacturer's own method and/or may support a standard for overall home network connection (e.g., Matter standard), and there is no limitation on the implementation method.

According to one embodiment, the wall pad (101) can provide data corresponding to a user command received through a UI to at least some of the home appliances/control devices (103a, 103b, 103c) via wired and/or wireless communication. The wall pad (101) can identify a control target device among the home appliances/control devices (103a, 103b, 103c) and provide data corresponding to the user command to the identified control target device.

Alternatively, the wall pad (101) may represent information received from home appliances/control devices (103a, 103b, 103c) or transmit the information to another entity. For example, the wall pad (101) may receive a temperature from a temperature measurement sensor, and may represent the received temperature through a UI or provide the temperature to another entity (e.g., a smart phone, a wearable device, or just a server (110)). The user may thus check the currently sensed information and control an external entity or the wall pad (101) to provide an appropriate command, and the external entity may relay the command to the wall pad (101). The wall pad (101) may provide the received command to a controlled target device among the home appliances/control devices (103a, 103b, 103c). For example, when the temperature is low, the user command may be to increase the temperature through the heating device, and the wall pad (101) may transmit at least one command to cause the temperature to increase through the heating device. Alternatively, the wall pad (101) may control at least some of the home appliances/control devices (103a, 103b, 103c) on its own based on the received sensing information, rule-based or artificial intelligence-based, without a user command.

As described above, the wall pad (101) can transmit and receive data for control and/or sensing data with the home appliances/control devices (103a, 103b, 103c). If the communication is not secured, there is a possibility of an accident occurring in the home or a possibility of personal information leakage. For example, if an access control device is stolen by an unauthorized person, the door may be opened and closed arbitrarily. For example, if a gas control device is stolen by an unauthorized person, it may be controlled to leak gas. For example, if an in-home video recording device is stolen by an unauthorized person, there is a possibility that the captured video may be leaked, and various other security risks may exist in addition to the examples described above. Accordingly, secure communication between the wall pad (101) and the home appliances/control devices (103a, 103b, 103c) must be performed, which will be described in more detail later.

According to one embodiment, the wall pad (101) may only perform communication with the server (110). For example, the wall pad (101) may only perform LAN-based communication with the server (110), but there is no limitation on the communication method. Meanwhile, in FIG. 1, the server (110) is illustrated as being functionally connected to one wall pad (101), but this is for convenience of explanation, and one server (110) may be connected to multiple wall pads (101). For example, each of the multiple wall pads (101) may be placed in each of the multiple households. The server (110) may only perform at least one operation for managing the multiple households. If the wall pad (110) serves as a controller of a home network within a single generation, the server (110) may serve as a controller of a network of multiple wall pads (110), and/or may serve as a relay between the wall pads (110) and external entities. Meanwhile, although not shown, multiple wall pads (101) may be connected to a switch device, and an implementation in which the switch device is connected only to the server (110) may also be possible.

The communication between the wall pad (101) and the complex server (110) needs to be secured. For example, if the security of the communication between the wall pad (101) and the complex server (110) is compromised, various types of problems or personal information leaks as described above may occur when an external attacker manipulates the wall pad (101). As described above, if the wall pad (101) and the complex server (110) perform LAN-based communication, the security of the communication between the wall pad (101) and the complex server (110) can be enhanced by using a VPN. For example, a device for a VPN can be implemented physically independently from the wall pad (101). In this case, the VPN device can be connected to the wall pad (101). In another example, a function for a VPN can be supported in the wall pad (101). In this case, the VPN device can be physically included in the wall pad (101), or the wall pad (101) can be implemented to support the function. In addition, the device for server-side VPN may be implemented to be connected only to the server (110) or included only in the server (110). As described above, the wall pad (101) and only the server (110) can perform VPN-based communication, and thus security can be enhanced.

The communication between the wall pad (101) and the just server (110) can replace the above-described VPN, or can additionally transmit data with a code included in it. For example, the wall pad (101) and the just server (110) can generate a one-time password, and transmit the one-time password as a code in data (for example, it can be a header, but there is no limitation on the included area). The wall pad (101) and the just server (110) can verify whether the code included in the received data is transmitted from an authorized device. For example, the wall pad (101) and the just server (110) can generate a one-time password in the same manner, compare it with the received one-time password, and verify whether the data is transmitted from an authorized device based on the comparison result. Meanwhile, the above-described OTP method is merely exemplary, and there is no limitation on the method of generating a code for security. For example, the wall pad (101) and the server (110) may also generate a code based on at least one piece of identification information of at least one component included therein, as will be described in more detail below.

According to one embodiment, only the server (110) may communicate with third-party servers (116, 117). The third-party servers (116, 117) may be operated, for example, by a company associated with the common service of an apartment complex. At least some of the third-party servers (116, 117) may be operated, for example, by an elevator management company within the apartment complex. The third-party servers may perform, for example, the current location of an elevator and/or the calling function of an elevator. For example, when an elevator call command is input to the wall pad (101), the wall pad (101) may transmit the elevator call command, which is a command to an external entity, to the server (110). The elevator call command may include, for example, identification information of the wall pad (101), location information of the wall pad (101), and/or identification information and/or location information of a household in which the wall pad (101) is installed, but there is no limitation on the type of data included. The server (110) can verify the third-party server that is the recipient of the command for the received external entity. The server (110) can transmit a command for the external entity (e.g., an elevator call command) to the verified third-party server. The third-party server can perform an operation based on the received command. For example, the third-party server can perform the received command, which is an elevator call, and accordingly, the elevator can be moved to the floor of the household corresponding to the wall pad (101). Alternatively, at least some of the third-party servers (116, 117) can be parcel management servers. The parcel management server can provide a parcel arrival notification to the wall pad (101) corresponding to the household through the server (110), for example, based on the arrival of a parcel for a specific household. The parcel arrival notification can include, for example, information on the parcel arrival location, but there is no limitation on the type of data included.

As described above, only the server (110) and the third-party servers (116, 117) can communicate with each other, and the security of the communication needs to be guaranteed. If the security of the communication is not guaranteed, there is a possibility that a thief can access the wall pad (101) through the server (110), and accordingly, if the security of the communication is not guaranteed, there is a possibility that various types of accidents or personal information leaks described above may occur. According to one embodiment, only the server (110) and the third-party servers (116, 117) can perform VPN-based communication. According to one embodiment, only the server (110) and the third-party servers (116, 117) can perform secure communication based on transmitting and receiving packets including codes.

According to one embodiment, a module (114) may act as a mediator of communication between only the server (110) and the third-party servers (116, 117). The module (114) may be implemented to include, for example, sub-modules (114a, 114b) corresponding to each of the third-party servers (116, 117). The sub-module (114a) may store (or be accessible to) information about commands defined between only the server (110) and the third-party server (116), for example. For example, when the third-party server (116) is a server for calling an elevator, the sub-module (114a) may store information about at least one command associated with calling an elevator (for example, an elevator call command, an elevator location notification command, etc.).

For example, the sub-module (114a) can check the command included in the data based on the data received from the outside. If the included command is included in commands related to a pre-stored function, the sub-module (114a) can transmit the command only to the server (110). For example, if the command received from the third-party server (116) is an elevator position notification command, since the command is included in the pre-stored command list, the command can be transmitted only to the server (110). The server (110) can provide the command to the wall pad (101). Accordingly, the wall pad (101) can express an operation based on the command, for example, the position of the elevator.

Meanwhile, there is also a possibility that the device by the hijacker may connect to the third-party server (116). For example, the server (110) and/or the third-party server (116) may support wired and/or wireless Internet, and accordingly, there is also a possibility that the device by the hijacker may connect to the third-party server (116). In this case, the device by the hijacker may attempt to connect to the server (110) and the wall pad (101) through the third-party server (116). In this case, the data according to the attempt may include a code for the purpose of hijacking, and the data may be provided to the sub-module (114a). The sub-module (114a) may check the information in the data to determine whether it is included in the existing command list. The sub-module (114a) may confirm that the code for the purpose of hijacking is not included in the existing command list. The sub-module (114a) can block the data based on the information identified in the received data not being included in the existing command list, so that the code for the purpose of hijacking may not be provided to the server (110). According to the above-described method, the module (114) can only filter out unauthorized data between the server (110) and the third-party server (116), so that security can be increased.

According to one embodiment, the manager device (135) may connect to the server (110) based on executing the construction company application (130). The construction company application (130) may be, for example, an application manufactured by (or managed by) a company that builds apartments and/or manages the server (110), but is not limited thereto. There is a possibility that an error may occur in the management server (110), and the error may need to be managed by the manager device (135). Alternatively, firmware may be added to the management server (110), in which case the firmware addition may need to be performed via the manager device (135). The manager device (135) may perform authentication via, for example, the authentication cloud (137), and may connect to the server (110) after the authentication success is confirmed. Authentication methods may include, but are not limited to, password-based authentication, biometric-based authentication, token-based authentication, social media authentication, and/or public key-based authentication.

The communication between the server (110) and the construction company application (130) needs to be secured. If the security of the communication is not secured, there is a possibility that a thief can access the wall pad (101) through the server (110), and accordingly, if the security of the communication is not secured, there is a possibility that various types of accidents or personal information leaks described above may occur. According to one embodiment, the server (110) and the construction company application (130) can perform VPN-based communication. According to one embodiment, the server (110) and the construction company application (130) can perform secure communication based on transmitting and receiving packets including codes.

According to one embodiment, a security means (112) may operate only between the server (110) and the construction application (130). The security means (112) may be executed, for example, only by the server (110), and/or may be executed by an entity physically and/or logically independent from the server (110), but there is no limitation on the execution entity. The security means (112) may transmit and receive data, for example, based on a VPN. The security means (112) may be implemented, for example, as software executed only by the server (110). The security means (112) may be implemented, for example, as a device supporting a VPN that is physically connected to the server (110), but there is no limitation on the type. The security means (112) may be, for example, software executed only by the server (110), and may enhance security based on the code described below.

FIG. 2 illustrates a block diagram of a wall pad and a single server according to one embodiment.

According to various embodiments, the wall pad (101) may include at least one of a processor (120), a communication circuit (122), or a memory (121). According to various embodiments, only the server (110) may include at least one of a processor (140), a communication circuit (142), or a memory (141).

According to various embodiments, at least one of the processor (120) or the processor (140) may include at least one of a CPU, a GPU, an NPU, an ASIC, an FPGA, an MCU, a ROM in which a control program for control is stored, and a RAM that stores signals or data input from the outside or is used as a memory area for a task performed in the electronic device (101). The CPU may include a single core, a dual core, a triple core, or a quad core. The CPU, the ROM, and the RAM may be interconnected through an internal bus. An operation performed by the wall pad (101) according to various embodiments may be performed by, for example, the processor (120), or may be performed by other hardware under the control of the processor (120). Alternatively, the performance of a specific operation by the wall pad (101) may mean that the specific operation is performed as an instruction stored in the memory (121) is executed. The operation performed by the server (110) according to various embodiments may be performed by, for example, the processor (140), or may be performed by other hardware under the control of the processor (140). Alternatively, the fact that a specific operation is performed by the server (110) may mean that the specific operation is performed as an instruction stored in the memory (141) is executed.

According to various embodiments, at least one of the memory (121) or the memory (141) may include both the ROM and the RAM described above, and may store instructions (or, without limitation, programs, applications, and/or algorithms) for performing various operations as described above. For example, at least one of the memory (121) or the memory (141) may include instructions (or, without limitation, programs, applications, and/or algorithms) for generating a code included in a packet between the two entities and/or information for generating the code (for example, without limitation, a secret and/or a key). At least one of the memory (121) or the memory (141) may be implemented as at least one of a volatile memory or a non-volatile memory, and there is no limitation in the form of implementation thereof.

According to various embodiments, at least one of the communication circuit (122) or the communication circuit (142) may transmit and receive data through communication. There is no limitation on the method of communication performed in at least one of the communication circuit (122) or the communication circuit (142). For example, at least one of the communication circuit (122) or the communication circuit (142) may be connected based on a LAN. Meanwhile, as described above, the communication circuit (122) and the communication circuit (142) may perform communication based on a VPN. In one embodiment, the communication circuit (122) and the communication circuit (142) may be implemented to support a VPN, or in another embodiment, at least one external entity for supporting a VPN function may be further intervened between the communication circuit (122) and the communication circuit (142). Meanwhile, in another embodiment, the communication circuit (122) and the communication circuit (142) may be implemented to perform communication wirelessly.

Meanwhile, although not shown, the wall pad (101) may include at least one input module and/or output module for providing a UI, such as a touchscreen, a display, a button, a microphone, a speaker, and/or a lamp, and there is no limitation on the means for providing the UI.

FIG. 3 illustrates a flowchart for explaining the operation of a security system according to one embodiment.

According to one embodiment, the manager device (135) may execute a management application in operation 301. Based on the management application (which may also be named a construction company application, for example, as described in FIG. 1, but is not limited to the issuing and/or managing entity thereof), the manager device (135) may only connect to the server (110). The management application may be, for example, an application produced by (or managed by) a company that builds apartment complexes and/or manages the server (110), but is not limited to. There is a possibility that an error may occur in the management server (110), and such an error needs to be managed by the manager device (135). Alternatively, firmware may be added to the management server (110), in which case the firmware addition needs to be performed via the manager device (135).

According to one embodiment, the manager device (135) may perform an authentication procedure based on the authentication cloud (137) in operation 303. The manager device (135) may perform authentication through, for example, the authentication cloud (137), and may only connect to the server (110) after successful authentication is confirmed. The authentication method may include, but is not limited to, a password-based authentication method, a biometric-based authentication method, a token-based authentication, a social media authentication, and/or a public key-based authentication. The manager device (135) may obtain authentication information based on, for example, the authentication procedure in operation 305. The manager device (135) may only connect to the server based on the authentication information in operation 307. The manager device (135) may only interact with the server (110) in operation 309. Although security can be ensured by only allowing access to the server (110) based on the authentication information verified based on authentication, there is a possibility that the authentication information may be stolen and/or an attacker may access the server (110) based on various hacking programs. In another embodiment, the server (110) may execute a security means (112), and/or an entity for executing the security means (112) may be operatively connected between the server (110) and the administrator device (135).

FIG. 4 is a flowchart illustrating the operation of a security system according to one embodiment.

Referring to FIG. 4, only the server (110) can execute the security means (112) in operation 401. In the example of FIG. 4, only the server (110) is described as executing the security means (112), but this is only an example, and as described above, those skilled in the art will understand that the entity for executing the security means (112) may be operatively connected between only the server (110) and the administrator device (135). Meanwhile, the administrator device (135) having authority can request access to only the server (110) in operation 403. The access request may include, for example, transmission of data and/or a request for data, but is not limited in its type. In operation 405, only the server (110) can determine whether to allow or deny access to the administrator device (135) based on the security means (112). If, based on the result of operation 405, it is determined to allow the administrator device (135), only the server (110) can perform communication for the allowed administrator device (135) in operation 407. For example, the security means (112) may operate based on a VPN and/or based on a code, but there is no limitation on the implementation method thereof. Meanwhile, as described above, the security means (112) may be executed by an external entity of the server (110). Here, those skilled in the art will understand that there is no limitation on the external entity as long as it is an entity that can be physically and/or logically separated from the server (110).

In one example, the unauthorized device (400) may request access in operation 409. For example, the server (110) may allow access from the outside for various purposes as described above, and thus the unauthorized device (400) may request access through a point where there is a security leak. The server (110) may determine whether to allow the unauthorized device (400) based on the app filter in operation 411. For example, the unauthorized device (400) may request access using a different application other than the management application. Since the management application does not have a function for an illicit purpose, the unauthorized device (400) may request access based on data that is not provided by the management application. The unauthorized device (400) cannot connect to the server (110) because it cannot establish a tunnel with the server (110) based on a VPN and/or fails the security authentication verification procedure by the code for security. Only the server (110) can, in operation 413, restrict communication to unauthorized devices (400) that are not permitted. For example, only the server (110) can not process information received from unauthorized devices (400) and/or not provide requested data, and there is no limitation on the method of restriction. As described above, the server (110) can prevent theft through paths that allow external access for various purposes.

FIG. 5 is a drawing for explaining a security system according to one embodiment.

According to one embodiment, only the server (110) may communicate with a third-party server (116). The third-party server (116) may be operated by, for example, a company associated with the common service of an apartment complex. The third-party server (116) may be operated by, for example, an elevator management company within the apartment complex as described above. The third-party server may perform, for example, the current location of the elevator and/or the calling function of the elevator. For example, when an elevator call command is input to the wall pad (101), the wall pad (101) may transmit the elevator call command, which is a command to an external entity, to the server (110). The elevator call command may include, for example, identification information of the wall pad (101), location information of the wall pad (101), and/or identification information and/or location information of a household in which the wall pad (101) is installed, but there is no limitation on the type of data included. The server (110) can verify the third-party server that is the recipient of the command for the received external entity. The server (110) can transmit the command for the external entity (e.g., an elevator call command) to the verified third-party server (117). The third-party server (117) can perform an operation based on the received command. For example, the third-party server (117) can perform an operation (or control another entity (e.g., an elevator control device)) to move the elevator to the floor corresponding to the household where the wall pad (101) is installed.

Meanwhile, the third-party server (117) may perform external communication for various purposes. In this case, the third-party server (117) may perform external communication via wired or wireless means. In particular, depending on the vendor, there may be an example in which the third-party server (117) is implemented to support a function of performing external communication based on cellular communication such as LTE. In this case, access by an unauthorized device (501) may be requested through a path for the outside of the third-party server (117). If the device (501) accesses the server (110) only through the third-party server (117), there may be a possibility of an accident and/or a possibility of personal information leakage. For example, by manipulating the server (110) only through the device (501), information obtainable by the wall pad (101) may be provided to the device (501), and/or a function of a device controllable by the wall pad (101) may be controlled. Accordingly, there is a risk that the image captured by the camera connected to the wall pad (101) may be stolen and/or the gas control device connected to the wall pad (101) may be manipulated.

In the example of FIG. 5, only the server (110) and the third-party server (117) can communicate with each other, and the security of the communication needs to be guaranteed. According to one embodiment, only the server (110) and the third-party server (117) can perform VPN-based communication. For example, only the server (110) can support the function of VPN, and/or can be connected to an external entity that supports the function of VPN. For example, the third-party server (117) can support the function of VPN, and/or can be connected to an external entity that supports the function of VPN. A VPN-based tunnel can be established between only the server (110) and the third-party server (117) (or between entities connected to each of them), and since data can be transmitted/received through the tunnel, the security can be increased. Alternatively, only the server (110) and the third-party server (117) can perform secure communication based on sending and receiving packets containing codes, and the generation of the codes will be described in more detail later.

FIG. 6 is a drawing for explaining a security system according to one embodiment.

In contrast to FIG. 5, in the embodiment of FIG. 6, the module (114) may only perform a relay of communication between the server (110) and the third-party server (117). The module (114) may be implemented exclusively for the third-party server (117), for example, but this is exemplary, and the module (114) may be implemented to manage two or more third-party servers. The module (114) may check information about commands that can be processed by the third-party server (117), for example. Table 1 may be an example of commands that can be processed by the third-party server for elevator management, for example.

cord Command 1001 Call the elevator 1010 Elevator location notification 1011 Elevator emergency alert

The above table is merely exemplary, and it will be understood by those skilled in the art that there may be many more types of commands, and that some of Table 1 may not be supported. The above commands may be processed by a third party server (117), and may be relatively small in number. The module (114) may store (or be able to access) information about commands (e.g., a list of commands), such as those in Table 1, for example.

According to one embodiment, the module (114) may receive data only from the server (110), or may receive data from a third-party server (117). The module (114) may, for example, verify whether the received data corresponds to a pre-specified command.

For example, a command of “elevator location notification” may be transmitted from a third-party server (117) to a module (114). The module (114) may confirm that the received command of “elevator location notification” is included in a list of commands being managed. Accordingly, the module (114) may transmit the received command of “elevator location notification” to the server (110). The server (110) may transmit the received command of “elevator location notification” to the wall pad (101) of the corresponding household, and the wall pad (101) may provide content that notifies the elevator location based on the command.

For example, a malicious code may be transmitted from a third-party server (117) to module (114). Module (114) may verify that the received malicious code is not included in the list of commands being managed. Accordingly, module (114) may simply transmit the received malicious code to server (110).

For example, a command of “elevator call” may be transmitted from the server (110) to the module (114). The module (114) may confirm that the received command of “elevator call” is included in the list of commands being managed. Accordingly, the module (114) may transmit the received command of “elevator call” to the third-party server (117). The third-party server (117) may perform an operation for calling an elevator to the corresponding household based on the received command of “elevator call.”

For example, an image captured by a home camera may be transmitted from a server (110) to a module (114). The module (114) may confirm that the received image is not included in a list of commands being managed. Accordingly, the module (114) may not transmit the received image to a third-party server (117). Accordingly, external leakage of information that should be managed within a home network including a wall pad (101) may be prevented.

Meanwhile, it is an example that the module (114) operates only between the server (110) and the third-party server (117), and the present disclosure is not limited thereto. For example, the module (114) may be connected to the wall pad (101) and the wall server (110), and/or may operate between the wall pad (101) and the wall server (110). For example, the module (114) may pre-store and/or access a type of data (e.g., a type of command) that may be transmitted and received between the wall pad (101) and the wall server (110). In this case, the module (114) may check whether the data transmitted from the wall pad (101) to the wall server (110) is of a predefined type. Alternatively, the module (114) may check whether the data transmitted from the wall server (110) to the wall pad (101) is of a predefined type. If the data is of a predefined type, the module (114) can transmit the received data. If the data is not of a predefined type, the module (114) may not transmit the received data. Meanwhile, there is no limitation on the location where the module (114) is connected and/or operates. For example, the module (114) may be connected between, and/or operate between, an in-home appliance/control device (103) and a wall pad (101). Accordingly, only data of a defined type can be transmitted and received between the in-home appliance/control device (103) and the wall pad (101), and transmission and reception of other types of data may be blocked. For example, the module (114) may be connected between, and/or operate between, only the server (110) and the construction application (130). Accordingly, only data of a defined type can be transmitted and received between the server (110) and the construction application (130), and transmission and reception of other types of data may be blocked.

FIG. 7 is a drawing for explaining an operation method of a security system according to one embodiment.

According to one embodiment, the module (114) may receive the first data from the third-party server (117). If the module (114) is included in a specific entity (e.g., if the module (114) is included only in the server (110) and/or is executed only by the server (110), the operation of the module (117) may be understood as an operation by the specific entity. The module (114) may, in operation 703, verify information in the received data. The module (114) may, in operation 705, verify whether the verified information satisfies a specified filtering condition. If the specified filtering condition is satisfied (705-Yes), the module (114) may block the first data in operation 707. If the specified filtering condition is not satisfied (705-No), the module (114) may provide the first data only to the server (110) in operation 709. For example, the module (114) can only check the data type defined between the server (110) and the third-party server (117). The module (114) can check whether the first data is included in (or corresponds to) the predefined data type. If the first data is not included in (or corresponds to) the predefined data type, the module (114) can check that the filtering condition is satisfied and block the first data in operation 707. If the first data is included in (or corresponds to) the predefined data type, the module (114) can check that the filtering condition is not satisfied and provide the first data to the server (110) in operation 709. Meanwhile, in FIG. 7, the determination of whether to transmit or receive data from a third-party server (117) to only the server (110) by the module (114) is described, but those skilled in the art will understand that in a similar (or identical) manner, the determination of whether to transmit or receive data from only the server (110) to only the third-party server (117) may also be made by the module (114). In addition, as described above, those skilled in the art will understand that the module (114) is not defined only between the server (110) and the third-party server (117), and that the module (114) may be defined between various entities.

FIG. 8A is a diagram for explaining an operation method of a security system according to one embodiment. The embodiment of FIG. 8A will be explained with reference to FIG. 8B. FIG. 8B is an example of a data format defined between two or more entities according to one embodiment.

According to one embodiment, the module (114) may receive first data from a third-party server (117) in operation 801. The module (114) may parse specified data from the received first data in operation 803. For example, referring to FIG. 8B , data (820) may include a header area (821) and a payload area (822), but it will be understood by those skilled in the art that the structure of the corresponding data fields is merely exemplary and that there is no limitation on the form of implementation. For example, the payload area (822) may include various types of specified commands (in the example of FIG. 8B , information related to delivery such as a delivery notification, a delivery number, a long-term storage notification, etc.). The part of the payload area (822) that includes the type of the command and/or information related to the command may be defined in advance between the two entities. The module (114) may parse only the data in the pre-specified part, for example. The module (114) may, in operation 805, only provide the parsed data to the server (110). Accordingly, only a portion of the payload (821), not the entire data (820), may be transmitted to the server (110). Here, there is no limitation on at least a portion of the payload (821), for example, if it is an area including a command.

Meanwhile, let us assume a case where malicious code is provided to module (114) through a third-party server (117). Module (114) can parse only at least a part of the payload containing malicious code and transmit only to server (110). In this case, only a part of malicious code can be selected and transmitted only to server (110), and accordingly, malicious code cannot operate, and security can be increased.

Figure 9 is a flowchart illustrating the operation of a security system according to one embodiment.

According to one embodiment, the module (114) may receive the first data only from the server (110) in operation 901. For example, a user may input an elevator call command by operating the wall pad (101). The wall pad (101) may transmit the command of “elevator call” to the server (110). The server (110) may be configured to transmit the command of “elevator call” to a third-party server (177). Accordingly, the server (110) may transmit a command such as “elevator call” to the third-party server (117) through the module (114). Accordingly, the module (114) may receive the first data from the server (110) as in operation 901.

According to one embodiment, the module (114) can verify information in the received first data at operation 903. The module (114) can verify whether the first data is data that is allowed to be leaked externally at operation 905. For example, the module (114) may pre-store or be accessible at least one command that is defined only between the server (110) and the third-party server (117). The module (114) can verify whether the first data is included in at least one predefined command as whether the first data is data that is allowed to be leaked externally. Accordingly, if the first data is included in at least one predefined command, the first data can be verified as data that is allowed to be leaked externally. If the first data is not included in at least one predefined command, the first data can be verified as data that is not allowed to be leaked externally. If the first data is confirmed as data that is allowed to leak externally (905-Yes), the module (114) can provide the first data to a third-party server (117) in operation 907. If the first data is confirmed as data that is not allowed to leak externally (905-No), the module (114) can block the leak of the first data in operation 909.

If a command such as “elevator call” is received by the module (114), the module (114) can confirm that “elevator call” is included in the commands defined between the server (110) and the third-party server (117) for elevator management. In this case, the module (114) can transmit the allowed “elevator call” command to the third-party server (117). If a malicious code is installed in the wall pad (101), the wall pad (101) may transmit an image captured by an in-house camera to the outside through the server (110). In this case, the module (114) may receive an image from the server (110). In this case, the module (114) can confirm that the received image is not included in the commands defined between the server (110) and the third-party server (117) for elevator management. In this case, the module (114) can block the leakage of the image. Accordingly, only the commands defined between the two entities can be transmitted and received through the module (114), and the transmission and reception of other commands or data can be blocked, thereby increasing security. This may be possible because the third-party server supports only a relatively small number of commands for a specific service.

FIG. 10 is a flowchart for explaining an operation method of a security system according to one embodiment. The embodiment of FIG. 10 will be explained with reference to FIG. 11. FIG. 11 is an example of a data format according to one embodiment.

According to one embodiment, the module (114) may receive only the first data from the server (110) in operation 1001. The module (114) may parse the specified data from the first data in operation 1003. For example, referring to FIG. 11, the first data (1100) may include a header area (1101) and a payload area (1102). Various types of commands may be included in the specified area of the payload area (1102). For example, in the embodiment of FIG. 11, the payload area (1102) may include a command defined for a third-party server for parcel management, such as an inquiry about whether a parcel has been received or an inquiry about a parcel number, but the type is merely exemplary. For example, the type of the command and/or the part where the content is located in the payload (1102) may be predefined, and the module (114) may parse at least a part of the corresponding area. Module (114) can check, in operation 1005, whether the parsed designated data corresponds to at least some of the plurality of designated types. The plurality of designated types here may be, for example, types predefined between the server (110) and the third-party server (117). If the parsed designated data corresponds to at least some of the plurality of designated types (1005-Yes), module (114) can provide the designated data to the third-party server (117) in operation 1007. If the parsed designated data does not correspond to at least some of the plurality of designated types (1005-No), module (114) can block data leakage in operation 1009.

If a command such as “inquiry about delivery number” is received by the module (114), the module (114) can confirm that “inquiry about delivery number” corresponds to some of the types defined between the server (110) and the third-party server (117) for delivery management. In this case, the module (114) can transmit the allowed “elevator call” command to the third-party server (117). If a malicious code is installed in the wall pad (101), the wall pad (101) may transmit images captured by an in-house camera to the outside through the server (110). In this case, the module (114) may receive images from the server (110). In this case, the module (114) can parse some of the received images. Module (114) can verify that the parsing result does not correspond to at least some of the types defined between the server (110) and the third-party server (117) for parcel management. In this case, module (114) can block the leakage of the image. Accordingly, only data of types corresponding to the types defined between the two entities can be transmitted and received through module (114), and transmission and reception of other commands or data can be blocked, thereby increasing security.

FIG. 12A is a drawing for explaining an operation method of a security system according to one embodiment. The embodiment of FIG. 12A will be explained with reference to FIG. 13. FIG. 13 is a drawing for explaining information associated with at least one hardware according to one embodiment.

According to one embodiment, the wall pad (101) and the home appliance (103) may share information associated with at least one hardware in operation 1201. In one example, the wall pad (101) and the home appliance (103) may share information associated with at least one hardware through communication. For example, referring to FIG. 13, the information associated with at least one hardware corresponding to the wall pad (101) may include a serial number (1301) of a processor of the wall pad (101), a serial number (1302) of a memory of the wall pad (101), and/or a serial number (1303) of a communication circuit of the wall pad (101). In addition, those skilled in the art will understand that any information assigned in association with hardware, such as a MAC address of the hardware and a LAN port number, may be used. For example, information associated with at least one hardware corresponding to the home appliance (103) may include a serial number (1311) of a processor of the home appliance (103), a serial number (1312) of a memory of the home appliance (103), and/or a serial number (1313) of a communication circuit of the home appliance (103). In addition, those skilled in the art will understand that any information assigned in association with hardware, such as a MAC address of the hardware and a LAN port number, may be used. In this case, the wall pad (101) and the home appliance (103) may share information through a secure information sharing method (for example, DH, but without limitation), but there is no limitation on the method. Alternatively, the server (110) may simply manage information associated with at least one hardware of the home appliance (103) and/or the wall pad (101), and the server (110) may simply provide information associated with the at least one hardware to the wall pad (101) and/or the home appliance (103). In another example, the wall pad (101) and the home appliance (103) may share information associated with the at least one hardware in a manner other than communication. For example, the wall pad (101) may provide a UI that allows input of information associated with at least one hardware of the home appliance (103). The manager may input information associated with the at least one hardware, for example, through the UI of the wall pad (101).

According to one embodiment, the wall pad (101) may generate a seed using at least a portion of the information associated with at least one hardware in operation 1203. In one example, the wall pad (101) may use, for example, the entire information associated with at least one hardware as a seed. In one example, the wall pad (101) may use, for example, information that has changed the entire information associated with at least one hardware as a seed. For example, the wall pad (101) may also generate a seed by performing a modification algorithm, such as applying a hash function to the entire information. In one example, the wall pad (101) may use, for example, a portion of the entire information associated with at least one hardware as a seed. An algorithm for selecting a portion of the entire information associated with at least one hardware may be stored in advance by, for example, the wall pad (101) and the home appliance (103). For example, the algorithm may be an algorithm that selects a combination of even letters of the entire SNs. For example, the algorithm may be an algorithm that selects one of a plurality of SNs. For example, an algorithm may be possible to select a memory SN among the processor SN, the memory SN, and the communication device SN, and there is no limitation. Alternatively, the algorithm may be an algorithm that selects some of the processor SNs, some of the memory SNs, and some of the communication device SNs and combines them. Meanwhile, the algorithm may be implemented dynamically. For example, if a memory SN is selected among the processor SN, the memory SN, and the communication device SN at a first time point, a communication device SN may be selected among the processor SN, the memory SN, and the communication device SN at a second time point. The wall pad (101) may generate a first OTP based on a seed in operation 1205, and there is no limitation on a method of generating the OTP. The wall pad (101) may encrypt plaintext, which is data to be transmitted, using the first OTP in operation 1207, and a ciphertext may be generated. Meanwhile, the above-described OTP generation is merely exemplary, and those skilled in the art will understand that there is no limitation to the method of generating a code for encryption other than OTP.

According to one embodiment, the wall pad (101) may transmit a ciphertext to the home appliance (103) in operation 1209. For example, the plaintext may be “a command for increasing the boiler temperature by 3 degrees.” The ciphertext may be generated based on encryption using a code verified through the above-described process of the plaintext “a command for increasing the boiler temperature by 3 degrees.” The home appliance (103) may generate a seed using at least a portion of information associated with at least one hardware in operation 1211. In operation 1213, the home appliance (103) may generate a first OTP based on the seed. In operation 1215, the home appliance (103) may decrypt the ciphertext based on the first OTP. The process of the home appliance (103) generating the seed and/or the process of generating the first OTP may be identical to the process performed by the wall pad (101). Accordingly, the home appliance (103) can confirm the plaintext “command to increase the boiler temperature by 3 degrees.” The home appliance (103) can perform an operation corresponding to the command.

Meanwhile, the wall pad (101) may be implemented to transmit the first OTP and the command together to the home appliance (103) without operating in a manner of encrypting a plaintext command using the first OTP. In this case, the home appliance (103) may generate the first OTP. If the generated first OTP is identical to the first OTP received from the wall pad (101), the home appliance (103) may perform an operation corresponding to the command. If the generated first OTP is not identical to the first OTP received from the wall pad (101), the home appliance (103) may not perform an operation corresponding to the command. Accordingly, even if a thief accesses the wall pad (101) and inputs a command such as “to increase the boiler temperature by 20 degrees” and transmits it to the home appliance (103), the unauthorized command cannot be executed unless at least one piece of hardware-related information, a seed generation method, a code generation method, and/or an encryption method is stolen. In particular, the information associated with at least one piece of hardware is described in the internal components of the wall pad (101) and/or the home appliance (103), and cannot be stolen online unless the corresponding components are disassembled offline. In addition, if the method for generating a seed, the method for generating a code, the method for generating a cryptogram, etc. are dynamically implemented, it is impossible for an unauthorized person to manipulate the wall pad (101) and the home appliance (103). Meanwhile, in Fig. 12a, the process of transmitting data from the wall pad (101) to the home appliance (103) is described, but it will be understood by those skilled in the art that the home appliance (103) may also transmit data to the wall pad (101), and the above-described matters may be applied to this.

Meanwhile, in FIG. 12A, the data transmission/reception and processing method between the wall pad (101) and the home appliance device (103) has been described, but those skilled in the art will understand that the same data transmission/reception and processing method may also be performed between a pair of entities described in FIG. 1. For example, the data transmission/reception and processing method described in FIG. 12A may also be applied between the wall pad (101) and the complex server (110). For example, the data transmission/reception and processing method described in FIG. 12A may also be applied between the complex server (110) and the third-party server (117). For example, the data transmission/reception and processing method described in FIG. 12A may also be applied between the complex server (110) and the manager device (115).

FIG. 12b is a flowchart for explaining an operation method of a security system according to one embodiment.

According to one embodiment, the wall pad (101) and the just server (110) may share information associated with at least one hardware in operation 1221. In one example, the wall pad (101) and the just server (110) may share information associated with at least one hardware through communication. In this case, the wall pad (101) and the just server (110) may share information through a secure information sharing method (for example, DH, but without limitation), but there is no limitation on the method. In another example, the wall pad (101) and the just server (110) may share information associated with at least one hardware through another method, without communication. For example, the wall pad (101) may provide a UI that allows input of information associated with at least one piece of hardware of the server (110) (e.g., SN (1321) of the processor, SN (1322) of the memory, and/or SN (1323) of the communication circuit). An administrator may also input information associated with at least one piece of hardware, for example, through the UI of the wall pad (101).

According to one embodiment, the wall pad (101) may generate a seed using at least a portion of the information associated with at least one hardware in operation 1223. In one example, the wall pad (101) may use, for example, the entire information associated with at least one hardware as a seed. In one example, the wall pad (101) may use, for example, information that has changed the entire information associated with at least one hardware as a seed. For example, the wall pad (101) may also generate a seed by performing a modification algorithm, such as applying a hash function to the entire information. In one example, the wall pad (101) may use, for example, a portion of the entire information associated with at least one hardware as a seed. An algorithm for selecting a portion of the entire information associated with at least one hardware may be stored in advance by, for example, the wall pad (101) and the server (110). For example, the algorithm may be an algorithm that selects a combination of even letters of all SNs. For example, the algorithm may be an algorithm that selects one of a plurality of SNs. For example, an algorithm may be possible to select a memory SN among the processor SN, the memory SN, and the communication device SN, and there is no limitation thereon. Alternatively, the algorithm may be an algorithm that selects some of the processor SNs, some of the memory SNs, and some of the communication device SNs and combines them. Meanwhile, the algorithm may be implemented dynamically. For example, if a memory SN is selected among the processor SN, the memory SN, and the communication device SN at a first time point, a communication device SN may be selected among the processor SN, the memory SN, and the communication device SN at a second time point. The wall pad (101) may generate a first OTP based on a seed in operation 1225, and there is no limitation on a method of generating the OTP. The wall pad (101) may encrypt plaintext, which is data to be transmitted, using the first OTP in operation 1227, and a ciphertext may be generated. Meanwhile, the above-described OTP generation is merely exemplary, and those skilled in the art will understand that there is no limitation to the method of generating a code for encryption other than OTP.

According to one embodiment, the wall pad (101) may, in operation 1229, transmit a ciphertext to the server (110). For example, the plaintext may be “elevator call.” The ciphertext may be generated based on encryption using a code verified through the above-described process of the plaintext “elevator call.” The server (110) may, in operation 1231, generate a seed using at least some of the information associated with at least one hardware. In operation 1233, the server (110) may generate a first OTP based on the seed. In operation 1235, the server (110) may decrypt the ciphertext based on the first OTP. The process of the server (110) generating the seed and/or the process of generating the first OTP may be identical to the process performed by the wall pad (101). Accordingly, the server (110) can verify the plaintext “elevator call”. The server (110) can transmit the verified command to a third-party server corresponding to the command. If a connection to the server (110) is requested by a thief, the thief may fail to generate a code, and thus, the connection to the server (110) may fail. In this case, the server (110) cannot verify the command because it fails to decrypt the encrypted text. Meanwhile, the wall pad (101) may be implemented so that the first OTP and the command are transmitted together to the server (110) without operating in a manner of encrypting the plaintext command using the first OTP. In this case, the home appliance device (103) can generate the first OTP. If the generated first OTP is identical to the first OTP received from the wall pad (101), the server (110) may perform an operation corresponding to the command. If the generated first OTP is not identical to the first OTP received from the wall pad (101), the server (110) may not perform an operation corresponding to the command. Accordingly, even if a thief accesses the wall pad (101) and inputs “open external door” or the like and transmits it to the server (110), the unauthorized command cannot be executed unless at least one piece of hardware-related information, a seed generation method, a code generation method, and/or an encryption method is stolen. In particular, the information associated with at least one piece of hardware is described in the internal components of the wall pad (101) and/or the server (110), and cannot be stolen online unless the corresponding components are disassembled offline. In addition, if the method of generating a seed, the method of generating a code, the method of generating a ciphertext, etc. are dynamically implemented, it is impossible for an unauthorized person to manipulate the wall pad (101) and the server (110). Meanwhile, in FIG. 12b, the process in which the wall pad (101) transmits data to the server (110) has been described, but the server (110) may also transmit data to the wall pad (101), and those skilled in the art will understand that the aforementioned matters may be applied to this. For example, a thief may hack the server (110) and cause the server (110) to falsely transmit a “delivery notification” to the wall pad (101). Even in this case, as long as the code is not stolen, the wall pad (101) may fail to decrypt the command from the server (110) and/or may confirm that the command is unauthorized.

FIG. 12c is a drawing for explaining an operation method of a security system according to one embodiment.

According to one embodiment, the wall pad (101) and the home appliance (103) may share information associated with at least one hardware in operation 1241. The wall pad (101) may generate a seed using at least some of the information associated with the at least one hardware in operation 1243. The wall pad (101) may generate a first OTP based on the seed in operation 1245, and there is no limitation on a method of generating the OTP. The wall pad (101) may transmit the acquired command and the first OTP together to the home appliance (103) in operation 1247. Both pieces of information may be included in one packet or may be divided and included in multiple packets, but there is no limitation on a method of transmission.

The home appliance (103), in operation 1249, may generate a seed using at least some of the information associated with at least one hardware. In operation 1251, the home appliance (103) may generate a first OTP based on the seed. In operation 1253, the home appliance (103) may process plaintext, i.e., a command, based on confirming that the generated first OTP and the received first OTP are identical. If the two OTPs are not identical, the home appliance (103) may ignore the command. Meanwhile, in FIG. 12c, a process in which the wall pad (101) transmits data to the home appliance (103) side has been described, but the home appliance (103) may also transmit data to the wall pad (101), and those skilled in the art will understand that the foregoing may apply to this.

FIG. 12D is a flowchart for explaining an operation method of a security system according to one embodiment. According to one embodiment, the wall pad (101) and the complex server (110) may share information associated with at least one hardware in operation 1261. The wall pad (101) may generate a seed using at least some of the information associated with the at least one hardware in operation 1263. The wall pad (101) may generate a first OTP based on the seed in operation 1265, and there is no limitation on the method of generating the OTP. The wall pad (101) may transmit the command and the generated first OTP together to the complex server (110) in operation 1267. Each piece of information may be included in one packet or may be divided and included in multiple packets.

According to one embodiment, the server (110) may, at operation 1269, generate a seed using at least some of the information associated with at least one hardware. At operation 1271, the server (110) may generate a first OTP based on the seed. At operation 1273, the server (110) may process the plaintext, i.e., the command, based on verifying that the generated OTP and the received OTP are identical. If the two OTPs are different, the server (110) may ignore the command.

FIG. 14A is a flowchart for explaining an operation method of a security system according to one embodiment. The embodiment of FIG. 14 assumes that it is performed by, for example, a wall pad (101). Meanwhile, as described above, those skilled in the art will understand that the embodiment of FIG. 14 may also be performed by a home appliance device (103) that exchanges data with the wall pad (101). In addition, since there is no limitation on the type of entity, those skilled in the art will understand that the embodiment of FIG. 14A may also be performed by only a server (110), a third-party server (117), and/or an administrator device (115).

According to one embodiment, the wall pad (101) may, in operation 1401, obtain information associated with at least one hardware. For example, it is assumed that the wall pad (101) obtains information associated with at least one hardware of the home appliance (103). The wall pad (101) may, in operation 1403, select any one of the at least one hardware. For example, the wall pad (101) may select at least one of the processor, the memory, and/or the communication module of the home appliance (103). For example, the wall pad (101) may select one hardware. For example, the wall pad (101) may select a plurality of hardware, which will be described in more detail later. For example, the selection method may be implemented in a manner of selecting a specific hardware. For example, the selection method may be implemented dynamically, in which case the selected hardware may be changed. The wall pad (101) can generate a seed based on information about the selected hardware in operation 1405. For example, the wall pad (101) can select an SN of a memory of the home appliance (103) and generate a seed based on the SN of the selected memory. In one example, the wall pad (101) can use the SN of the selected memory as the seed. In one example, the wall pad (101) can select at least a part of the SN of the selected memory and use it as the seed. In one example, the wall pad (101) can obtain the seed by applying a change algorithm (e.g., a hash function, etc.) to the SN of the selected memory. There is no limitation on the method of generating the seed based on the information associated with the selected hardware.

Meanwhile, although the above-described method of generating a seed by using at least one piece of hardware information of the counterpart home appliance device (103) has been described, this is exemplary. The wall pad (101) may also generate a seed by using at least one piece of hardware information of its own, and in this case, may transmit at least one piece of hardware information of its own to the home appliance device (103). In another example, the wall pad (101) may initially refer to both at least one piece of hardware information of its own and at least one piece of hardware information of the counterpart home appliance device (103). For example, the wall pad (101) may select any one of the SN of its processor, the SN of its memory, the SN of its communication device, the SN of the processor of the home appliance device (103), the SN of the memory of the home appliance device (103), and the SN of the communication device of the home appliance device (103).

Figure 14b is a diagram for explaining code generation according to one embodiment.

Referring to FIG. 14b, a code generating entity (e.g., a home appliance (103), a wall pad (101), a server (110), a third-party server (116), a security means (112), and/or an administrator device (135)) may select any one of a plurality of hardware information (1301, 1302, 1303). For example, the code generating entity may pre-store an algorithm for selecting an SN of a specific hardware (e.g., a processor) from among the identified hardware information (1301, 1302, 1303). For example, the code generating entity may select hardware that is selected based on a current point in time, etc. from among the identified hardware information (1301, 1302, 1303). The code generating entity may generate an OTP using, for example, the selected information (1301) as a seed. Alternatively, the code generating entity may, for example, select only a portion of the selected information (1301) and use it as a seed to generate an OTP. Alternatively, the code generating entity may, for example, generate a seed by changing the selected information (1301) (for example, by applying a hash function, but there is no limitation), and use the generated seed to generate an OTP. There is no limitation to the above-described method of generating an OTP.

FIG. 15A is a flowchart for explaining an operation method of a security system according to one embodiment. The embodiment of FIG. 15A assumes that it is performed by, for example, a wall pad (101). Meanwhile, as described above, those skilled in the art will understand that the embodiment of FIG. 15A may also be performed by a home appliance device (103) that exchanges data with the wall pad (101). In addition, since there is no limitation on the type of entity, those skilled in the art will understand that the embodiment of FIG. 15A may also be performed by only a server (110), a third-party server (117), and/or an administrator device (115).

According to one embodiment, the wall pad (101) may, in operation 1501, obtain information associated with at least one hardware. For example, it is assumed that the wall pad (101) obtains information associated with at least one hardware of the home appliance (103). The wall pad (101) may, in operation 1503, select a plurality of hardware from among the at least one hardware. For example, the wall pad (101) may select a plurality of processors, memories, and/or communication modules of the home appliance (103). For example, the selection method may be implemented in a manner of selecting specific hardware. For example, the selection method may be implemented dynamically, in which case the selected hardware may be changed. The wall pad (101) may, in operation 1505, generate a seed based on the information about the selected hardware. For example, the wall pad (101) can select the SN of the memory of the home appliance (103) and the SN of the communication device, and generate a seed based on the SN of the selected memory and the SN of the communication device. In one example, the wall pad (101) can use the SN of the selected memory and the SN of the communication device as the seed. In one example, the wall pad (101) can select at least a part of the SN of the selected memory and the SN of the communication device and use them as the seed. In one example, the wall pad (101) can obtain the seed by applying a change algorithm (e.g., a hash function, etc.) to the SN of the selected memory and the SN of the communication device. There is no limitation on the method of generating the seed based on the information associated with the selected hardware.

Meanwhile, although the above-described method of generating a seed by using multiple pieces of hardware information of the counterpart home appliance device (103) has been described, this is exemplary. The wall pad (101) may also generate a seed by using at least one piece of hardware information of its own, and in this case, may transmit at least one piece of hardware information of its own to the home appliance device (103). In another example, the wall pad (101) may initially refer to both at least one piece of hardware information of its own and at least one piece of hardware information of the counterpart home appliance device (103). For example, the wall pad (101) may select multiple pieces of information from among the SN of its own processor, the SN of its own memory, the SN of its own communication device, the SN of the processor of the home appliance device (103), the SN of the memory of the home appliance device (103), and the SN of the communication device of the home appliance device (103).

Figure 15b is a diagram for explaining code generation according to one embodiment.

Referring to FIG. 15b, a code generating entity (e.g., a home appliance (103), a wall pad (101), a server (110), a third-party server (116), a security means (112), and/or an administrator device (135)) may select a plurality of pieces of hardware information (1301, 1302, 1303). For example, the code generating entity may pre-store an algorithm for selecting SNs of specific pieces of hardware (e.g., a processor and a memory) from among the identified hardware information (1301, 1302, 1303). For example, the code generating entity may select a plurality of pieces of hardware selected based on a current point in time, etc. from among the identified hardware information (1301, 1302, 1303). The code generating entity may generate an OTP using, for example, the selected information (1301, 1302) as a seed. Alternatively, the code generating entity may, for example, select only a portion of the selected information (1301, 1302) and use it as a seed to generate an OTP. Alternatively, the code generating entity may, for example, generate a seed by changing the selected information (1301, 1302) (for example, by applying a hash function, but there is no limitation), and use the generated seed to generate an OTP. There is no limitation to the above-described method of generating an OTP.

FIG. 16A is a flowchart for explaining an operation method of a security system according to one embodiment. The embodiment of FIG. 16A assumes that it is performed by, for example, a wall pad (101). Meanwhile, as described above, those skilled in the art will understand that the embodiment of FIG. 16A may also be performed by a home appliance device (103) that exchanges data with the wall pad (101). In addition, since there is no limitation on the type of entity, those skilled in the art will understand that the embodiment of FIG. 16 may also be performed by only a server (110), a third-party server (117), and/or an administrator device (115).

According to one embodiment, the wall pad (101) may obtain information associated with at least one hardware in operation 1601. The wall pad (101) may identify a seed generation rule for generating a seed from the information associated with at least one hardware in operation 1603. In one example, the seed generation rule may be selected from a plurality of seed generation rules. In one example, the seed generation rule may be determined based on, for example, a dynamic parameter (e.g., a current time). For example, the seed generation rule may be selecting a combination of the “n”th, “n+1”th, …, “n+k”th characters from the information associated with at least one hardware, where n may be a dynamic parameter that may be generated based on the current time, and various dynamic seed generation rules may be possible in addition to the present example. The wall pad (101) may generate a seed based on the information associated with at least one hardware based on the identified seed generation rule in operation 1605.

Figure 16b is a diagram for explaining code generation according to one embodiment.

Referring to FIG. 16b, in the first round (ROUND #1), a code generating entity (e.g., a home appliance (103), a wall pad (101), a server (110), a third-party server (116), a security means (112), and/or an administrator device (135)) may select a first code generating method from among a plurality of code generating methods. The first code generating method may be, for example, a method of selecting one of a plurality of hardware information (1301, 1302, 1303), as in “ROUND #1” of FIG. 16b. For example, the code generating entity may select a method of selecting an SN of a specific hardware (e.g., a processor) from among the verified hardware information (1301, 1302, 1303) as the first code generating method. For example, the code generation entity may select hardware selected based on the current time, etc., among the verified hardware information (1301, 1302, 1303). The code generation entity may generate an OTP using, for example, the selected information (1301) as a seed. Alternatively, the code generation entity may generate an OTP by selecting only a part of the selected information (1301) and using the same as a seed. Alternatively, the code generation entity may generate a seed by changing, for example, the selected information (1301) (for example, by applying a hash function, but there is no limitation), and may generate an OTP using the generated seed. There is no limitation on the above-described OTP generation method.

In the second round (ROUND #2), the code generating entity (e.g., the home appliance (103), the wall pad (101), the complex server (110), the third-party server (116), the security means (112), and/or the administrator device (135)) may select a second code generating method from among a plurality of code generating methods. The second code generating method may be, for example, a method of selecting a plurality of pieces of hardware information (1301, 1302, 1303), as in “ROUND #2” of FIG. 16b. For example, the code generating entity may select a method of selecting an SN of specific hardware (e.g., a processor and a memory) from among the verified hardware information (1301, 1302, 1303) as the second code generating method. A code generating entity (e.g., a home appliance (103), a wall pad (101), a server (110), a third-party server (116), a security means (112), and/or an administrator device (135)) may select a plurality of pieces of hardware information (1301, 1302, 1303). For example, the code generating entity may pre-store an algorithm for selecting SNs of specific pieces of hardware (e.g., a processor and a memory) from among the identified hardware information (1301, 1302, 1303). For example, the code generating entity may select a plurality of pieces of hardware selected based on a current point in time, etc. from among the identified hardware information (1301, 1302, 1303). The code generating entity may generate an OTP using, for example, the selected information (1301, 1302) as a seed. Alternatively, the code generating entity may, for example, select only some of the selected information (1301, 1302) and use them as seeds to generate an OTP. Alternatively, the code generating entity may, for example, generate a seed by changing the selected information (1301, 1302) (for example, by applying a hash function, but there is no limitation), and use the generated seed to generate an OTP. There is no limitation to the above-described method of generating an OTP.

As described above, the code generation method according to various embodiments may change the code generation method for each round.

FIGS. 17A to 17D are drawings for explaining a security system according to one embodiment.

As in FIG. 17a, according to one embodiment, a home appliance/control device (103a) may be wiredly connected to a first terminal (1701) of a wall pad (101). For example, the wired interface may be RS 485, but there is no limitation on its type. The home appliance/control device (103a) may be wiredly connected to a home appliance/control device (103b), the home appliance/control device (103b) may be wiredly connected to a home appliance/control device (103c), and the home appliance/control device (103c) may be wiredly connected to a second terminal (1702) of the wall pad (101). Accordingly, the home appliance/control devices (103a, 103b, 103c) may be connected to the wall pad (101) by forming a loop.

As in FIG. 17b, according to one embodiment, home appliances/control devices (103a, 103b, 103c) may be directly wired to the wall pad (101) in a 1:1 manner, rather than in a loop configuration. For example, home appliances/control devices (103a, 103b, 103c) may be connected to the wall pad (101) via an interface such as RS 485 or another interface.

In the embodiments of FIG. 17a and/or FIG. 17b, the wall pad (101) and the home appliances/control devices (103a, 103b, 103c) may communicate via wired communication. For example, those skilled in the art will appreciate that a packet for wired communication may include a code and/or a cryptogram generated based on a seed generated based on the process described above.

As in FIG. 17c, according to one embodiment, home appliances/control devices (103a, 103b) may wirelessly communicate with the wall pad (101). For example, home appliances/control devices (103a, 103b) may communicate with the wall pad (101) based on various standards such as Bluetooth (which may be implemented in various ways, such as basic rate/enhanced data rate/low energy, and is not limited thereto), NFC, Zig-bee, thread, UWB, and Wifi-direct, but is not limited thereto. Accordingly, a wireless home network including the wall pad (101) may be configured, and a controller (or group owner) of the wireless home network may be, for example, the wall pad (101), but is not limited thereto, and the home network may be included as a sub-home network in a controller (or group owner) of another home network.

Alternatively, as in FIG. 17d, the wall pad (101) may wirelessly communicate not only with the home appliance/control device (103a), but also with the smart phone (1740) (or, it may be replaced with a tablet, a wearable electronic device, etc., without limitation). For example, the smart phone (1740) may provide a UI for controlling the wall pad (101) and/or the home appliance/control device (103a). When a control command of the wall pad (101) and/or the home appliance/control device (103a) is input through the UI, the smart phone (1740) may provide the corresponding control command to the wall pad (101) and/or the home appliance/control device (103a). For example, a smart phone (1740) can provide a control command to a wall pad (101), and the wall pad (101) can provide the control command to a home appliance/control device (103a). For example, a smart phone (1740) can also provide a control command directly to a home appliance/control device (103a).

In the embodiments of FIG. 17c and/or FIG. 17d, the wall pad (101), the home appliances/control devices (103a, 103b, 103c), and/or the smart phone (1740) may communicate wirelessly. For example, those skilled in the art will appreciate that a code and/or a cryptogram generated based on a seed generated based on the process described above may be included in a packet for wireless communication.

According to one embodiment, a storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, the at least one operation including: identifying identification information associated with at least one hardware included in the electronic device; generating a seed based on at least a portion of the identified identification information; generating a code based on the generated seed; obtaining a command set to cause an external electronic device capable of communicating with the electronic device to perform at least one operation; and transmitting the obtained command and the code to the external electronic device.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may include the operation of selecting one of the identification information associated with the at least one hardware, and generating the seed based on the selected identification information.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may include the operation of selecting a plurality of identification information from among the identification information associated with the at least one hardware, and the operation of generating the seed based on the selected plurality of identification information.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may identify at least a portion of the identified identification information as the seed.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may include the operation of generating first information based on at least a portion of the identified identification information, and the operation of generating the seed based on the first information.

According to one embodiment, a storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, wherein the at least one operation may include: identifying identification information associated with at least one hardware included in the electronic device; generating a seed based on at least a portion of the identified identification information; generating a code based on the generated seed; receiving, from an external electronic device capable of communicating with the electronic device, a command and a verification code set to cause the electronic device to perform the at least one operation; and performing the at least one operation based on the command based on the verification code and the generated code being identical.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may include the operation of selecting one of the identification information associated with the at least one hardware, and generating the seed based on the selected identification information.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may include the operation of selecting a plurality of identification information from among the identification information associated with the at least one hardware, and the operation of generating the seed based on the selected plurality of identification information.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may identify at least a portion of the identified identification information as the seed.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may include the operation of generating first information based on at least a portion of the identified identification information, and the operation of generating the seed based on the first information.

According to one embodiment, a storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, the at least one operation including: identifying identification information associated with at least one hardware included in the electronic device, generating a seed based on at least a portion of the identified identification information, generating a code based on the generated seed, obtaining a command set to cause performance of at least one operation by an external electronic device capable of communicating with the electronic device, encrypting the obtained command using the code, and transmitting the encrypted command to the external electronic device.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may include the operation of selecting one of the identification information associated with the at least one hardware, and generating the seed based on the selected identification information.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may include the operation of selecting a plurality of identification information from among the identification information associated with the at least one hardware, and the operation of generating the seed based on the selected plurality of identification information.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may identify at least a portion of the identified identification information as the seed.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may include the operation of generating first information based on at least a portion of the identified identification information, and the operation of generating the seed based on the first information.

According to one embodiment, a storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, wherein the at least one operation includes: identifying identification information associated with at least one hardware included in the electronic device; generating a seed based on at least a portion of the identified identification information; generating a code based on the generated seed; receiving, from an external electronic device capable of communicating with the electronic device, encrypted information in which the command is set to cause the performance of the at least one operation by the electronic device; decrypting the encrypted information based on the generated code to obtain the command; and performing the at least one operation based on the obtained command.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may include the operation of selecting one of the identification information associated with the at least one hardware, and generating the seed based on the selected identification information.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may include the operation of selecting a plurality of identification information from among the identification information associated with the at least one hardware, and the operation of generating the seed based on the selected plurality of identification information.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may identify at least a portion of the identified identification information as the seed.

According to one embodiment, the operation of generating a seed based on at least a portion of the identified identification information may include the operation of generating first information based on at least a portion of the identified identification information, and the operation of generating the seed based on the first information.

Claims (20)

A storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, the at least one operation being:
An action to verify identification information associated with at least one hardware included in said electronic device;
An action of generating a seed based on at least a portion of the identified identification information;
An action of generating code based on the above generated seed;
An operation of obtaining a command set to cause at least one operation to be performed by an external electronic device capable of communicating with said electronic device; and
An operation of transmitting the acquired command and the code to the external electronic device.
A storage medium containing. In paragraph 1,
Based on at least a portion of the above identified identification information, the operation of generating a seed comprises:
An operation of selecting any one of the identification information associated with said at least one hardware; and
An action to generate the seed based on the above selected identification information.
A storage medium containing. In paragraph 1,
Based on at least a portion of the above identified identification information, the operation of generating a seed comprises:
An operation of selecting a plurality of identification information from among identification information associated with at least one hardware; and
An operation of generating the seed based on the above-mentioned selected plurality of identification information.
A storage medium containing. In paragraph 1,
A storage medium for generating a seed based on at least a portion of the identified identification information, wherein the operation verifies at least a portion of the identified identification information as the seed. In paragraph 1,
Based on at least a portion of the above identified identification information, the operation of generating a seed comprises:
An action of generating first information based on at least a portion of the above-determined identification information;
An operation of generating the seed based on the first information above.
A storage medium containing. A storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, the at least one operation being:
An action to verify identification information associated with at least one hardware included in said electronic device;
An action of generating a seed based on at least a portion of the identified identification information;
An action of generating code based on the above generated seed;
An operation of receiving, from an external electronic device capable of communicating with said electronic device, a command and a verification code set to cause at least one operation to be performed by said electronic device; and
An operation of performing at least one operation based on the command based on the fact that the verification code and the generated code are identical.
A storage medium containing. In paragraph 6,
Based on at least a portion of the above identified identification information, the operation of generating a seed comprises:
An operation of selecting any one of the identification information associated with said at least one hardware; and
An action to generate the seed based on the above selected identification information.
A storage medium containing. In paragraph 1,
Based on at least a portion of the above identified identification information, the operation of generating a seed comprises:
An operation of selecting a plurality of identification information from among identification information associated with at least one hardware; and
An operation of generating the seed based on the above-mentioned selected plurality of identification information.
A storage medium containing. In paragraph 6,
A storage medium for generating a seed based on at least a portion of the identified identification information, wherein the operation verifies at least a portion of the identified identification information as the seed. In paragraph 6,
Based on at least a portion of the above identified identification information, the operation of generating a seed comprises:
An action of generating first information based on at least a portion of the above-determined identification information;
An operation of generating the seed based on the first information above.
A storage medium containing. A storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, the at least one operation being:
An action to verify identification information associated with at least one hardware included in said electronic device;
An action of generating a seed based on at least a portion of the identified identification information;
An action of generating code based on the above generated seed;
An action of obtaining a command set to cause at least one action to be performed by an external electronic device capable of communicating with said electronic device;
An operation of encrypting the obtained command using the above code; and
An action of transmitting the encrypted command to the external electronic device.
A storage medium containing. In Article 11,
Based on at least a portion of the above identified identification information, the operation of generating a seed comprises:
An operation of selecting any one of the identification information associated with said at least one hardware; and
An action to generate the seed based on the above selected identification information.
A storage medium containing. In Article 11,
Based on at least a portion of the above identified identification information, the operation of generating a seed comprises:
An operation of selecting a plurality of identification information from among identification information associated with at least one hardware; and
An operation of generating the seed based on the above-mentioned selected plurality of identification information.
A storage medium containing. In Article 11,
A storage medium for generating a seed based on at least a portion of the identified identification information, wherein the operation verifies at least a portion of the identified identification information as the seed. In Article 11,
Based on at least a portion of the above identified identification information, the operation of generating a seed comprises:
An action of generating first information based on at least a portion of the above-determined identification information;
An operation of generating the seed based on the first information above.
A storage medium containing. A storage medium storing at least one computer-readable instruction, wherein the at least one instruction, when executed by at least one processor of a wall pad, causes the wall pad to perform at least one operation, the at least one operation being:
An action to verify identification information associated with at least one hardware included in said electronic device;
An action of generating a seed based on at least a portion of the identified identification information;
An action of generating code based on the above generated seed;
An action of receiving encrypted information from an external electronic device capable of communicating with said electronic device, said information comprising a command set to cause performance of at least one action by said electronic device;
An operation of decrypting the encrypted information based on the generated code to obtain the command; and
An action of performing at least one operation based on the acquired command.
A storage medium containing. In Article 16,
Based on at least a portion of the above identified identification information, the operation of generating a seed comprises:
An operation of selecting any one of the identification information associated with said at least one hardware; and
An action to generate the seed based on the above selected identification information.
A storage medium containing. In Article 11,
Based on at least a portion of the above identified identification information, the operation of generating a seed comprises:
An operation of selecting a plurality of identification information from among identification information associated with at least one hardware; and
An operation of generating the seed based on the above-mentioned selected plurality of identification information.
A storage medium containing. In Article 16,
A storage medium for generating a seed based on at least a portion of the identified identification information, wherein the operation verifies at least a portion of the identified identification information as the seed. In Article 16,
Based on at least a portion of the above identified identification information, the operation of generating a seed comprises:
An action of generating first information based on at least a portion of the above-determined identification information;
An operation of generating the seed based on the first information above.
A storage medium containing.

Images