TWI730355B - Dynamic key generating method for wireless communication - Google Patents

Abstract

A dynamic key generating method for wireless communication is provided. For each time transmitting encrypted data, a communication key obtains from a first key array to encrypt the data. Generating information which indicates a second key array and includes first verification information is randomly generated. The number of the byte of the generating information is different from the number of the byte of the encrypted data. A communication key obtains from the first key array to encrypt the generating information. Send the encrypted generating information and ask second verification information. The second verification information should be sent when the first verification information is verified. Compare the second verification information when it is received. When the second verification information is correct, the first key array is replaced by the second key array which the communication key obtains from for each time transmitting encrypted data.

Description

Dynamic key generation method for wireless communication

The present invention relates to a method for generating a dynamic key, in particular to a method for generating a dynamic key for a wireless communication environment.

Humans use the Internet to access network data, communicate with people, and objects are now beginning to communicate with each other through the Internet of Things (Internet of Things). The energy consumption meters set up by the energy industry in different regions can return users' energy usage status at any time through the Internet of Things, allowing energy companies to analyze the energy usage status, and adjust the energy conversion and supply transmission volume in different periods to make energy use The rate is higher. The food industry uses the Internet of Things to obtain the sensing data detected by the temperature and humidity meters and soil detectors in various farmlands, statistically analyze the production situation of agricultural works, and plan and adjust the types of food or production capacity produced in each season according to the production situation of the crops, and Pre-plan the follow-up marketing plan according to the production line status.

Accurate statistical analysis and precise business decisions require a large amount of sensory data as support. In order to obtain a large amount of sensing data, data users need to build sensors extensively and rely on the Internet of Things and cloud space to transmit and store data. This will consume a lot of the construction cost of the data user, and also make the collected sensing data become an important asset of the data user. Therefore, how to improve the information security of the sensor data and protect the important asset of the data user is Another important topic of IoT technology.

The present invention is to provide a dynamic key generation method for wireless communication, which encrypts the sensing data by the dynamic key, improves the data security of the sensing data in the wireless communication environment, and protects the important assets of the data owner.

The method for generating a dynamic key for wireless communication disclosed in the present invention includes obtaining a communication key from the first key array every time an encrypted data is transmitted, and encrypting the data with the obtained communication key. Randomly generate generated messages that are different from the number of encrypted data bytes. The generated message indicates the second key array and includes the first verification message. Obtain the communication key from the first key array and encrypt it to generate a message. Send the encrypted generated message and request a second verification message. The second verification message is sent after the first verification message is verified correctly. Compare the received second verification message. When the second verification message is correctly compared, replace the first key array with the second key array, so that every time encrypted data is transmitted, from the second key array Obtain the communication key to encrypt data.

The method for generating a dynamic key for wireless communication disclosed in the present invention includes determining the type of the data packet according to the number of bytes of the data packet each time an encrypted data packet is received. Obtain one of a plurality of communication keys from the current key array corresponding to the data packet, and decrypt the data packet. When the data packet is of the generated message type, it is determined whether the decrypted data content of the data packet is correct. When the content of the decrypted data is correctly compared, a verification message is sent. Determine the new key array based on the decrypted data content of the data packet of the generated message type, and replace the current key array with the new key array, so that every time an encrypted data packet is received, the new key array is replaced Obtain one of multiple communication keys to decrypt data.

According to the dynamic key generation method for wireless communication disclosed in the present invention, the data is encrypted by the communication key selected from the key array during data transmission, avoiding the use of fixed communication key encryption, so that the data The security of encryption is higher, and the data is not easy to be read correctly when monitored. In addition, the dynamic key generation method more irregularly replaces the key array based on randomly generated messages, so that the communication key is more diversified.

The above description of the disclosure and the following description of the embodiments are used to demonstrate and explain the spirit and principle of the present invention, and to provide a further explanation of the scope of the patent application of the present invention.

1: Wireless sensing device

2: base station

3: server

4: Data use side

S101~S111, S301~S317, S501~S509, S701~S713: steps

Figure 1 is a schematic diagram of a wireless communication network system according to an embodiment of the present invention.

FIG. 2 is a flowchart of the steps of a method for generating a dynamic key for wireless communication according to an embodiment of the present invention.

FIG. 3 is a flowchart of the steps of a method for generating a dynamic key for wireless communication according to another embodiment of the present invention.

FIG. 4 is a flowchart of the steps of a method for generating a dynamic key for wireless communication according to another embodiment of the present invention.

FIG. 5 is a flowchart of the steps of a method for generating a dynamic key for wireless communication according to another embodiment of the present invention.

The detailed features and advantages of the present invention will be described in detail in the following embodiments. The content is sufficient to enable anyone familiar with the relevant art to understand the technical content of the present invention and implement it accordingly, and according to the content disclosed in this specification, the scope of patent application and the drawings. Anyone who is familiar with relevant skills can easily understand the purpose and advantages of the present invention. The following examples further illustrate the viewpoints of the present invention in detail, but do not limit the scope of the present invention by any viewpoint.

Please refer to Figures 1 and 2. Figure 1 is a schematic diagram of a wireless communication network system according to an embodiment of the present invention, and Figure 2 is a dynamic key generation method for wireless communications according to an embodiment of the present invention Flow chart of the steps. As shown in the figure, the dynamic key generation method is used in a wireless communication network environment. The wireless communication network environment includes, for example, a wireless sensing device 1, a base station 2, a server 3, and a data user terminal 4. The wireless sensing device 1 has a wireless communication function and a sensor function. For example, the wireless communication function is realized by a communication module. The communication module can be transmitted through a Low-Power Wide-Area Network (LPWAN) such as SigFox, LoRa (Long Range), NB-IoT (narrow range). The base station 2 that matches the communication technology and the communication technology is connected to each other to transmit data and instructions. In addition to LPWAN, the wireless communication function of the wireless sensing device 1 can also be achieved through other communication technologies such as LTE (Long Term Evolution), LTE-A (LTE-Advanced), GSM, UMTS, W-CDMA, CDMA2000, WiMAX, WiMAX2, IEEE802.16 or WiFi (Wireless Fidelity), Z-wave, etc., this embodiment No restrictions.

The sensor function of the wireless sensor device 1 can be implemented by installing a sensor in the wireless sensor device 1, but is not limited to this. The sensor is, for example, a temperature sensor, a humidity sensor, a Hall sensor, a magnetic sensor, a geomagnetic sensor, and an acceleration sensor. ), Vibration sensor, IR sensor or other suitable sensors. Taking temperature sensors and humidity sensors as examples, the temperature sensors and humidity sensors of the wireless sensing device 1 sense the temperature and humidity of the environment, and are based on the communication frequency and data volume standards of the wireless communication protocol , To transmit the sensed temperature and humidity data to the base station 2 to receive it. The types and number of sensors of the wireless sensor device 1 can be configured by persons with ordinary knowledge in the relevant technical field according to actual requirements, and this embodiment is not limited.

After the base station 2 receives the sensing data generated by the wireless sensing device 1, it is transmitted to the server 3 via the wireless or wired Internet, and the server 3 organizes and stores the data. The data consumer 4 also connects to the server 3 through a wired or wireless Internet, and obtains sensing data from the server 3 according to the different data access permissions of each data consumer 4. The data user 4 is, for example, a computer, a mobile device, a server, a cloud host, or other suitable device of a business or individual user, which is not limited in this embodiment. Generally speaking, the wireless communication network environment using the dynamic key generation method refers to the wireless sensing device 1 transmitting its sensing data to the base station 2 through wireless communication, but it does not limit the base station 2, the server 3, and the base station 2. There is wired transmission or wireless transmission between the data use terminals 4.

In addition, the embodiment of the present case also does not limit the respective numbers of the wireless sensing device 1, the base station 2, the server 3, and the data user 4 in the wireless communication network environment. For example, one or more base stations 2 within the wireless transmission range of the wireless sensing device 1 can receive the sensing data encrypted by the wireless sensing device 1. The sensing data collected by base station 2 can be sent to the first The layer server 3 is then accessed from the second layer server 3 to the first layer server 3. The first-tier server 3 or the second-tier server 3 can be provided to one or more data users 4 to access data. The data consumer 4 can also provide the sensing data to another data consumer 4. Those with ordinary knowledge in the relevant technical field can set the access authority, the number of devices, and the data access process according to actual needs, which is not limited in this embodiment.

On the other hand, the dynamic key generation method can also be used differently according to different wireless communication network environments. For example, when the sensing data generated by the wireless sensing device 1 is encrypted with a communication key, it is transmitted by broadcasting. After being received by one or more base stations 2 within the wireless transmission range of the wireless sensing device 1, and transmitted to the first layer server 3, the first layer server 3 decodes the data according to the decryption key of the sensed data, then The dynamic key generation method is executed by the wireless sensor device 1 and the first layer server 3. In other words, when the first layer server 3 receives the sensed data, but does not decrypt it, it sends the sensed data to the second layer server 3 according to the owner of the sensed data, and the second layer server 3 3 Decode according to the decryption key of the sensing data, and the dynamic key generation method is executed by the wireless sensing device 1 and the second layer server 3. In addition to the foregoing methods, the dynamic key generation method can also be executed by the wireless sensor device 1 and the data consumer 4, or executed by the first-tier server 3 and the data consumer 4, and the embodiment of this case is not limited.

For the convenience of description, the following embodiments take the wireless sensing device 1 to encrypt the sensing data and the server 3 to decrypt the sensing data as examples, but it does not limit the ways in which the embodiments of the present invention can be applied. Those with ordinary knowledge in the technical field can apply the following embodiments to different wireless communication network environments and different data access procedures.

The dynamic key generation method is shown in Figure 2. In step S101, the wireless sensor device 1 obtains one of a plurality of communication keys from the first key array Ka each time when transmitting encrypted data, and uses The obtained communication key is used for data encryption. In other words, each time the wireless sensor device 1 transmits the sensing data to be encrypted, it obtains a communication key from the first key array Ka, and encrypts the sensing data with the communication key obtained at that time. When the wireless sensing device 1 transmits the next sensing data, it will obtain another communication key from the first key array Ka to compare the sensing data. The test data is encrypted. In one embodiment, when the wireless sensing device 1 transmits the next sensing data, the communication key obtained from the first key array Ka is the next communication key in the sequence, but it is not limited thereto. In addition, in step S101, the wireless sensor device 1 obtains the communication key to encrypt the data when the encrypted data is transmitted. In other words, this embodiment does not restrict the wireless sensor device 1 to encrypt every piece of sensing data to be transmitted. The wireless sensor device 1 can selectively encrypt each piece of sensing data according to the importance of the transmitted data, or it can also perform the encryption on every piece of sensing data. The data is encrypted. For the convenience of description, the following embodiments only describe the situation where the sensing data is to be encrypted, but it does not limit that every sensing data of the wireless sensing device 1 needs to be encrypted.

In one embodiment, the first key array Ka may be stored in the wireless sensor device 1 in a table. In consideration of more security, the first key array Ka is not stored in the wireless sensing device 1 in a list, but is implemented in the wireless sensing device 1 by software or other suitable methods. Taking software as an example, the first key array Ka corresponds to the first function. Each time the wireless sensor device 1 wants to transmit encrypted data, the software will execute the first function so that the first function generates a key sequence as the communication key. In this embodiment, software is not used to limit data security.

The length of the key array can be set to be the same as the maximum payload of the sensing data, so that after the key array encrypts sensing data of different lengths, the encrypted sensing data have the same length. For example, when the maximum payload of the sensing data is 12 bytes, the length of the key sequence generated by the first function is 12 bytes. When the payload of some sensed data is less than 12bytes, bits will be added to the payload of the sensed data, so that the sensed data becomes 12bytes and then encrypted with a 12bytes key sequence. In another example, when the sensing data transmitted by the wireless sensor device 1 is only 9 bytes, it is also possible to set the key array generated by the first function to 9 bytes each time, or to generate a 12-byte key array and then use it. Take out 9bytes as the communication key.

In other embodiments, when the wireless sensor device 1 is limited by the computing performance of the processor, the size of the memory, etc., the length of the key sequence generated each time the first function is executed is 4 bytes. In order to generate a 12-byte communication key, the wireless sensor device 1 generates multiple 4-byte key arrays, and concatenates the key arrays to form a 12-byte communication key. For another example, when the length of the key sequence generated by the first function each time is 8 bytes, in order to generate a 12-byte communication key, the wireless sensor device 1 will generate multiple 8-byte key sequences and concatenate the key sequences. After that, take 12 bytes of it as the communication key. For the convenience of explanation, the nth communication key in the first key array Ka will be represented by (Ka,n), and the n+1th communication key in the first key array Ka will be represented by (Ka,n+ 1) Representation. In other words, (Ka,n), (Ka,n+1),..., (Ka,n+i) and other communication keys can be the key sequence directly generated by the first function, and the key sequence takes some bits. Tuple composition, multiple key arrays connected in series, or multiple key arrays connected in series with partial bytes, the embodiment is not limited. Furthermore, the number of communication keys in the first key array Ka is also not limited, that is, the present embodiment does not limit the number of times the wireless sensor device 1 executes the first function. In this way, it is possible to avoid the situation that when the number of communication keys is limited, after all the communication keys are used, the communication keys will be reused in the same order, which further reduces the encrypted data after being intercepted and stolen, and the encrypted data is cracked and read. Possibility.

When the wireless sensing device 1 transmits encrypted sensing data each time and obtains the communication key from the first key array Ka, the communication key taken out each time is not restricted to be the same or different. In consideration of making the data more secure, the communication key obtained each time can be different. Since the sensing data generated by the wireless sensing device 1 may be the same or similar to the previous and subsequent sensing data, when each sensing data is encrypted with a different communication key, the encrypted sensing data will be It is different from the encrypted sensing data before and after, so as to avoid the risk of repeated transmission of the same data content, which is easy to be monitored and interpreted.

When the server 3 receives the sensing data of the wireless sensing device 1, the server 3 will generate a communication key that can decrypt the sensing data in a dynamic key generation method that matches the technology of the wireless sensing device 1, and then Decrypt the sensing data, the specific instructions will be described later.

In step S103, the wireless sensor device 1 randomly generates a message. When the wireless sensing device 1 uses the first key array Ka for a period of time, the wireless sensing device 1 will turn on The process of replacing the first key array Ka is started. The wireless sensing device 1 triggers the mechanism for replacing the first key array Ka, such as periodically replacing at a fixed time point, or replacing according to the software execution sequence, or triggering software replacement by other mechanisms, which is not limited in this embodiment . In other words, when the wireless sensor device 1 wants to replace the first key array Ka, the wireless sensor device 1 randomly generates a generated message, and prepares to send the generated message to the server 3, so that the server 3 enters and prepares to replace the first key array Ka. The procedure of the key array Ka. In one embodiment, the number of payload bytes of the generated message is different from the number of payload bytes of the sensed data, so that the server 3 can determine that the received message is not sensed data, but is used to inform preparation Replace the generated message of the first key array Ka. For example, when the encrypted sensing data transmitted by the wireless sensor device 1 is 12 bytes each time, the number of payload bytes of the generated message can be 11 bytes, 10 bytes, 90 bits or other numbers, which is not limited in this embodiment. .

In addition, the generated message includes the message seed _b indicating the second key array and the first verification message Va. _{The message seed b} indicating the second key array is generated randomly, and the first verification message Va does not limit whether it is generated randomly. In step S105, the wireless sensor device 1 obtains another communication key from the first key array Ka, and encrypts the obtained communication key to generate a message. In one embodiment, before the wireless sensor device 1 generates a message, the last piece of sensing data transmitted by the wireless sensor device 1 is encrypted with the communication key (Ka, n+i), the wireless sensor device 1 Then, the next communication key (Ka, n+i+1) in the first key array Ka can be used to encrypt the generated message. In one embodiment, the wireless sensing device 1 takes part of the bytes of the communication key (Ka, n+i+1) to generate the message for encryption. But not limited to this.

In step S107, the encrypted generated message is sent and the second verification message Vb is requested. In other words, the generated message is sent after being included in a data packet, and the data packet containing the generated message further requires the server 3 to reply to the message. In one embodiment, the bit in the header of the data packet containing the generated message can enable the server 3 to determine that the message is to be returned to the wireless sensor device 1 based on this bit. Therefore, when the server 3 receives the data packet containing the generated message, it first verifies whether the generated message is correct, and then verifies that the generated message is correct Then, the data packet containing the second verification message Vb is returned to the wireless sensor device 1.

In step S109, after the wireless sensor device 1 receives the data packet containing the second verification message Vb, the wireless sensor device 1 compares the second verification message Vb to determine whether the second verification message Vb is correct. In one embodiment, the first verification message Va and the second verification message Vb are, for example, fixed content stored in the wireless sensor device 1 and the server 3. In other words, the wireless sensor device 1 _{connects the message seed b} randomly generated to indicate the second key array and the first verification message Va with fixed content as the generated message, encrypts the generated message, and sends it to the server 3 so that The server 3 determines whether the received message really comes from the wireless sensor device 1 according to whether the generated message has the fixed content of the first verification message Va, that is, determines whether the generated message is correct. When the wireless sensing device 1 receives the data packet replies from the server 3, the wireless sensing device 1 also determines whether the second verification message Vb is correct according to whether the content in the data packet has a preset second verification message Vb. That is, it is judged whether the data packet really comes from the server 3.

In addition, the generated message may additionally include a test message, so that the wireless sensor device 1 can determine whether the generated message is correct according to the test message. The verification message is, for example, implicit in _{the format of the message seed b} indicating the second key array and the first verification message Va, or the byte of the generated message part is set as the location of the verification message, which is not limited in this embodiment.

In another embodiment, the second verification message Vb is generated based on the first verification message Va. In other words, when the first verification message Va is randomly generated, after verifying that the generated message is correct, the server 3 takes the first verification message Va from the generated message as the second verification message Vb and sends it back to the wireless sensor. Device 1. When the wireless sensor device 1 receives a message containing the second verification message Vb from the server 3 and verifies that the second verification message Vb is the same as the first verification message Va, it means that the second verification message Vb is correctly compared.

In other embodiments, the second verification message may also be a partial byte of the first verification message Va. In other words, the server 3 takes some bytes from the first verification message Va as the second verification message Vb, and sends it back to the wireless sensor device 1 for comparison. The second verification message Vb is used to allow the wireless sensor device 1 to confirm that the received message is sent from the secure server 3. It can also allow the wireless sensing device 1 to confirm that the server 3 has received the generated message. Those with ordinary knowledge in the relevant technical field can design a method for using the wireless sensor device 1 to confirm the correct source of the message according to actual needs, which is not limited in this embodiment.

When the second verification message Vb is correctly compared, in step S111, the wireless sensor device 1 replaces the first key array Ka with the second key array Kb, so that every time encrypted data is transmitted in the subsequent period of time, the wireless sensor device 1 replaces the first key array Ka with the second key array Kb. The wireless sensor device 1 obtains the communication key from the second key array Kb to encrypt the data, that is, uses the communication key in the second key array Kb to encrypt the sensing data, which is common in the technical field. The knowledgeable person can implement it based on the foregoing content, and the description will not be repeated in this embodiment.

In the foregoing embodiments, randomly generated seed _b in addition to the message server 3 according to derive a second key array Kb outside, the wireless sensing device 1 also based on randomly generated seed _b message, generating a second key array Kb . In one example, the wireless sensor device 1 has an array generation function, and the array generation function generates a second function related to the second key array Kb _{according to a randomly generated message seed b.} That is to say, when the wireless sensor device 1 replaces the first key array Ka with the second key array Kb, then every time the wireless sensor device 1 wants to transmit encrypted data, the software will execute the second function so that The second function generates a key sequence as the communication key for encrypting the sensing data. Similarly, when the server 3 receives the message seed _b indicating the second key array, the server 3 can also use the message seed _b indicating the second key array to generate the second key array Kb, and change it to the first key array Kb. The communication key in the two key array Kb is used to decrypt the received message.

In practice, when the wireless sensor device 1 does not receive the reply message from the server 3 in step S107, the wireless sensor device 1 sends the encrypted generated message again. In one embodiment, the wireless sensor device 1 repeats step S105 again, and re-encrypts the message with another communication key to generate a message. Specifically, when the wireless sensor device 1 encrypts the generated message with the communication key (Ka, n+i+1), and after sending the encrypted generated message, it still does not receive a reply from the server 3, the wireless sensor device 1 Then encrypt the generated message with the next communication key (Ka, n+i+2) in the sequence, send the re-encrypted generated message, and request the server 3 to reply. Yu Owned Technology Those with ordinary knowledge in the technical field can design by themselves the communication key used to re-send the generated message. This embodiment does not limit the use of the next communication key in the sequence for encryption.

In addition, in consideration of security, when the server 3 replies to the second verification message Vb, the server 3 may choose to encrypt the second verification message Vb. The server 3 encrypts the second verification message Vb, for example, obtains a communication key from the first key array Ka, and encrypts the second verification message Vb with the obtained communication key. Specifically, when the generated message received by the server 3 is encrypted with the communication key (Ka,n+i+1), then the server 3 can sequence the next communication key (Ka,n+i+1). i+2) Encrypt the second verification message Vb. When the generated message received by the server 3 is encrypted with the communication key (Ka,n+i+2), the server 3 uses the next communication key (Ka,n+i+3) in the sequence The second verification message Vb is encrypted, but not limited to this. In other words, when the server 3 chooses to encrypt the second verification message Vb, and the wireless sensor device 1 receives the data packet containing the second verification message Vb, the wireless sensor device 1 will further have the ability to decrypt the second verification message Vb A step of.

Please refer to FIG. 1 and FIG. 3. FIG. 3 is a flowchart of a method for generating a dynamic key for wireless communication according to another embodiment of the present invention. As shown in the figure, in step S301, each time the wireless sensor device 1 wants to transmit encrypted sensing data, it obtains one of a plurality of communication keys from the first key array Ka, and obtains The communication key encrypts the sensing data. After the wireless sensor device 1 uses the first key array Ka to encrypt the sensing data for a period of time, the wireless sensor device 1 starts to perform the procedure of replacing the first key array Ka. Therefore, in step S303, the wireless sensor device 1 randomly generates a generated message, and the generated message includes a message indicating the second key array Kb and the first verification message Va. In step S305, the wireless sensor device 1 obtains a communication key from the first key array Ka, and encrypts the obtained communication key to generate a message. In step S307, the wireless sensing device 1 sends the encrypted generated message and requests the second verification message Vb. When the server 3 receives the data packet containing the generated message and verifies the generated message, it returns the data packet containing the second verification message Vb to the wireless sensor device 1. In step S309, the wireless sensor device 1 receives the second verification message Vb, and compares it to determine whether the second verification message Vb is correct.

In the embodiment of Fig. 3, steps S301 to S309 are substantially the same as those of the embodiment of Fig. 1, and those with ordinary knowledge in the relevant technical field can refer to the embodiment of Fig. 1 and apply them to steps S301 to S309. Do not repeat it again. Next, in step S311, when the second verification message Vb is correctly compared, the wireless sensor device 1 generates a standby message, and obtains communication funds from one of the first key array Ka or the second key array Kb Key to encrypt the standby message.

The standby message can be fixed data content, or obtained from a communication key in the first key array Ka, or obtained from a communication key in the second key array Kb, which is not limited in this embodiment. Specifically, when the standby message is a fixed data content, the wireless sensor device 1 can be configured to obtain a communication key from one of the first key array Ka or the second key array Kb to encrypt the standby message. When the standby message is obtained from a communication key in the first key array Ka, the wireless sensor device 1 can obtain the communication key from the second key array Kb to encrypt the standby message. When the standby message is obtained from a communication key in the second key array Kb, the wireless sensor device 1 can obtain the communication key from the first key array Ka to encrypt the standby message. This embodiment does not limit the message content of the standby message and the communication key used to encrypt the standby message.

Then, in step S313, the wireless sensor device 1 sends the encrypted standby message and requests a response message. In other words, the standby message is sent after being included in a data packet, and the data packet containing the standby message requires the server 3 to reply to the message. In one embodiment, the data packet with the standby message has a bit used to request the server 3 to return a message, so that when the server 3 receives the data packet, it determines that it should return a response message to the wireless sensor based on this bit.测装置1。 Measuring device 1. In one embodiment, the number of bytes of the standby message is different from the number of bytes of the generated message and the number of bytes of the payload of the sensing data. The server 3 can determine that the received data packet is about a standby message based on the number of bytes of the received data packet. In other words, the server 3 can determine whether to return the second verification message Vb or the response message to the wireless sensor device 1 according to the type of the data packet.

When the wireless sensor device 1 receives the response message returned by the server 3, in step S315, the wireless sensor device 1 compares the response message. When the response message is correctly compared, in step S317, the wireless sensor device 1 replaces the first key array Ka with the second key array Kb, so that every time encrypted data is transmitted within a period of time, the wireless sensor device 1 The device 1 obtains the communication key from the second key array Kb to perform data encryption.

For more specific description, take a practical example, when the wireless sensor device 1 encrypts a message with the communication key (Ka, n+i+1) in step S305, and receives the message from the server 3 in step S309 When the second verification message Vb is returned, and the second verification message Vb is correctly compared, the wireless sensor device 1 will use a portion of the bytes taken from the communication key (Kb, 1) as the standby message in step S311 , And encrypt the standby message with the next communication key (Ka, n+i+2) in the sequence of the first key array Ka, and send the encrypted standby message to wait for the reply from the server 3. The response message from the server 3 can be encrypted with the same or the next sequence of communication keys according to the communication key used by the standby message, that is, for example, with the communication key (Ka, n+i+2) or communication key The key (Ka, n+i+3) encrypts the standby message. Since the number of bytes of the communication key is different from the number of bytes of the standby message and response message, the wireless sensor device 1 and server 3 can be configured to encrypt the standby message and response only with the bytes of the communication key part message.

When the wireless sensor device 1 sends the standby message but does not receive a reply from the server 3, the wireless sensor device 1 can retransmit the encrypted standby message to the server 3 again, or repeat step S311 to first The next communication key (Ka, n+i+3) in the key array Ka sequence re-encrypts the standby message, and sends the re-encrypted standby message to request a reply from the server 3. At this time, when the server 3 receives the standby message encrypted with the communication key (Ka, n+i+3), the server 3 can also use the communication key (Ka, n+i+3) or the communication key ( Ka,n+i+4) Encrypt the response message and reply to the wireless sensor device 1.

In another example, when the wireless sensor device 1 generates a message encrypted with the communication key (Ka, n+i+1) in step S305, and receives the second verification returned by the server 3 in step S309 Message Vb, and when the second verification message Vb is correctly compared, in step S311 The wireless sensor device 1 takes a portion of the bytes from the next communication key (Ka, n+i+2) in the sequence as a standby message, and uses the first communication key ( Kb, 1) Encrypt the standby message, and send the encrypted standby message to wait for the reply from the server 3. At this time, the response message replies from the server 3 can be encrypted with the same or next communication key according to the communication key used by the standby message, for example, using the communication key (Kb, 1) or the communication key (Kb , 2) Encrypt the response message.

When the wireless sensor device 1 sends the standby message but still does not receive a reply from the server 3, the wireless sensor device 1 can retransmit the encrypted standby message to the server 3 again, or repeat step S311, The next communication key (Ka, n+i+3) in the sequence of a key array Ka takes part of the byte as the standby message, and re-encrypts the standby message with the same communication key (Kb, 1), Re-send the encrypted standby message and request a reply from the server 3.

Those with ordinary knowledge in the technical field should understand that when the response message from the server 3 is encrypted, the wireless sensor device 1 should have a step of decrypting the response message before step S315, which will not be repeated here.

The server 3 can confirm that the wireless sensor device 1 has received the second verification message Vb according to whether the standby message is received, or according to the data content of the standby message, reconfirm the second key derived from the generated message. Whether the array Kb is correct. The content of the response message replies from the server 3 can be fixed content or can be taken from the content of the standby message, which is not limited in this embodiment.

In one embodiment, after the wireless sensor device 1 confirms that the response message is correctly compared, the wireless sensor device 1 replaces the first key array Ka with the second key array Kb, and replaces the second key array Kb with no data in the second key array Kb. The used communication key is used to encrypt the sensing data for data transmission. Specifically, when the wireless sensor device 1 takes part of the bytes from the communication key (Kb, 1) as the standby message in step S311, the wireless sensor device 1 replaces the second key array Kb with the second key array Kb. A key array Ka. When the sensor data is resumed, the wireless sensor device 1 uses the communication key (Kb, 2) to encrypt the first data after the sensor data is sent. When the wireless sensing device 1 is in step In step S311, some bytes from the communication key (Ka, n+i+2) are taken as the standby message, and the communication key (Kb, 1) is used to encrypt the standby message. Replace the first key array Ka with the second key array Kb. After the sensor data is resumed, the wireless sensor device 1 encrypts and recovers the first data after the sensor data is sent with the communication key (Kb, 2).

Next, an embodiment in which the dynamic key generation method of wireless communication is applied to the server 3 will be explained. Please refer to FIG. 1 and FIG. 4. FIG. 4 is a flowchart of a method for generating a dynamic key for wireless communication according to another embodiment of the present invention. As shown in the figure, in step S501, each time the server 3 receives an encrypted data packet, it determines the type of the data packet according to the number of bytes of the data packet. Since the number of payload bytes of the generated message is different from the number of payload bytes of the sensing data, the server 3 can determine the type of the data packet according to the number of bytes of the received data packet. For example, when the server 3 receives a data packet with a payload of 12 bytes, it determines that the data packet is a sensing data type. When the server 3 receives a data packet with a payload of 11 bytes, it determines that the data packet is a generated message type, but it is not limited to this.

In step S503, the server 3 obtains one of a plurality of communication keys from the current key array corresponding to the data packet, and decrypts the data packet. Because the wireless sensor device 1 obtains a communication key from the first key array Kc every time it transmits data to be encrypted, and encrypts the data with the communication key obtained at that time. Therefore, the server 3 also decrypts the data packet through the dynamic key generation method corresponding to the wireless sensor device 1. Specifically, every time the server 3 receives an encrypted data packet from the wireless sensor device 1 through the base station 2, the server 3 will determine the source of the wireless sensor device 1 according to the data packet, and then obtain the data from the wireless sensor device 1. In the corresponding current key array, obtain the communication key to decrypt the data packet. In one embodiment, the server 3 may only use part of the bytes of the communication key to decrypt the data packet, which is not limited in this embodiment. For the convenience of description, the following description will replace the current key array in the server 3 with the first key array Kc.

In one embodiment, the server 3 according to the serial number of the data packet (Sequence Number) to guess the communication key used by the data packet. When the first key array Kc is stored in the server 3 in the form of a list, for example, the server 3 can search for the communication key of the data packet from the list of the first key array Kc according to the serial number of the data packet. In another embodiment, the first key array Kc is not stored in the server 3 in the form of a list, but is implemented in software or other suitable methods. Taking software as an example, every time it receives encrypted data, the software of the server 3 will execute the first function, and use the key sequence generated by the first function as the communication key to decrypt the data packet. Therefore, the server 3 compares the serial number of the data packet received last time with the serial number of the data packet received this time, and selects the number of times to execute the first function based on the key generated at the end of the execution of the first function. The sequence is used as the communication key. Taking a practical example, when the serial number of the data packet received by the server 3 last time is 5, and the serial number of the data packet received this time is 6, after the server 3 compares the two serial numbers, it is based on the difference between the serial numbers. Value 1, execute the first function once to obtain the communication key of this data packet. For another example, the last time the server 3 received a data packet with a serial number of 5, and the data packet received this time with a serial number of 8, the server 3 compares the serial numbers twice. According to the difference 3 of the serial number, execute the first function three times, and use the key sequence obtained by executing the first function the third time as the communication key to decrypt the data packet. The implementation method of the first function executed by this software and the numerical value of the serial number are for illustrative purposes only, and do not limit the specific implementation method and the scope of rights covered by the present invention.

In some cases, the server 3 is limited by the computing performance of the processor, the size of the memory, and so on. Therefore, when the first function is executed, the length of the key sequence generated is limited. For example, the server 3 can only generate a 4bytes key sequence every time the first function is executed. In order to obtain a communication key with a longer length such as 12 bytes, the server 3 will execute the first function multiple times and concatenate the key sequence as the communication key, that is, concatenate multiple 4bytes of key sequence Become a 12bytes communication key. For another example, when the length of the key sequence generated by the first function is 8 bytes each time, in order to generate a 12-byte communication key, the server 3 will generate multiple 8-byte key sequences and concatenate the key sequence. Take 12 bytes of it as the communication key. In other words, when the server 3 compares the serial number of the data packet received last time with the data packet received this time After the serial number of the data packet, the number of times the first function is selected for execution will also depend on the length of the sequence that the first function can generate. Take the example where server 3 executes the first function to generate a 4bytes key sequence each time, and the communication key is set to 12bytes, the last time server 3 received a data packet with a serial number of 5, and this time it received The serial number of the data packet is 6. The server 3 will execute the first function three times according to the difference of 1 of the serial number, and concatenate the sequence of generated keys from the 1st to the 3rd as the communication key for decrypting the data packet. For another example, the last time the server 3 received a data packet with a serial number of 5, and the data packet received this time with a serial number of 8, the server 3 executes the first function 9 times according to the difference 3 of the serial numbers. And concatenate the key sequence generated from the 7th to 9th time as the communication key for decrypting the data packet.

In practice, by using software to implement the first key array Kc, the number of communication keys that can be in the first key array Kc is not limited, that is, the number of times the server 3 executes the first function is not limited . In this way, it is possible to avoid the situation that when the number of communication keys is limited, after all the communication keys are used, the communication keys will be reused in the same order, which further reduces the encrypted data after being intercepted and stolen, and the encrypted data is cracked and read. Possibility.

When the server 3 has determined that the data packet is a sensing data type, the server 3 will store the decrypted data content after decrypting the data packet and provide it to the data user 4 with corresponding data access rights to access. When the data packet is of the message generation type, after decrypting the data packet, the server 3 will further cooperate with the wireless sensor device 1 to execute the procedure of preparing to replace the first key array Kc. Therefore, in step S505, the server 3 determines the data Whether the data content after decryption of the packet is correct.

In one embodiment, the server 3 has a preset first verification message V1, and it has been set that part of the bytes in the data content after decryption is the position where the wireless sensor device 1 places the first verification message V1, so the server The device 3 can read the to-be-verified message Vc from the bytes of the preset first verification message V1, and compare the to-be-verified message Vc with the preset first verification message V1. According to whether the to-be-verified message Vc and the first verification message V1 are the same, it is determined whether the data content after the decryption of the data packet is correct. In another embodiment, the server 3 can decrypt by default The correct format of the content of the post data. When the format of the data content after decryption by the server 3 conforms to the preset format, it is determined that the data content after the decryption of the data packet is correct. In other embodiments, the server 3 may also preset part of the bytes in the data content after decryption as the location where the verification message is placed. The server 3 judges whether the decrypted data content is correct according to whether the check message is correct.

When the server 3 determines that the received data packet is correct, it means that the decrypted data content includes the generated message generated by the wireless sensor device 1, that is, the message seed _d indicating the new key array and the first verification message V1. And the data packet requires the server 3 to reply to the message. That is, when the decrypted data content is correctly compared, in step S507, the server 3 will send the verification message Vd to the wireless sensor device 1 in response to the request of the wireless sensor device 1. In one embodiment, the server 3 uses the retrieved message Vc to be verified as the verification message Vd to be replied to the wireless sensor device 1, and includes the verification message Vd in a data packet to reply to the wireless sensor device 1. In another embodiment, the server 3 may only take out a part of the bytes from the to-be-verified message Vc and send it back to the wireless sensor device 1 as the verification message Vd. The server 3 uses the to-be-verified message Vc in the decrypted data content to reply, allowing the wireless sensor device 1 to confirm that the received message is sent from the secure server 3, and the server 3 has received the generated message. Those with ordinary knowledge in the relevant technical field can design and use the server 3 to reply to the content of the wireless sensing device 1 according to actual needs, and this embodiment is not limited.

In an example, the server 3 can obtain the communication key from the first key array Kc, encrypt the verification message Vd with the obtained communication key, and then send it back to the wireless sensor device 1. In a practical example, when the data packet received by the server 3 is encrypted with the communication key (Kc,n+i+1), then the server 3 can sequence the next communication key (Kc,n+i+1). +2) Encrypt the verification message Vd. When the data packet received by the server 3 is encrypted with the communication key (Kc,n+i+2), the server 3 uses the next communication key (Kc,n+i+3) in the sequence to verify the message Vd Encryption, but not limited to this. In practice, because the number of bytes of the communication key and the verification message Vd are different, the bytes of the communication key part can be used to encrypt the verification message Vd, which is not limited in this embodiment.

In step S509, the server 3 determines the new key array based on the decrypted data content of the data packet of the generated message type, and replaces the current key array with the new key array. According to the following period of time, the server 3 Each time an encrypted data packet is received, one of a plurality of communication keys is obtained from the new key array to decrypt the data. Specifically, the server 3 has configured that part of the bytes in the decrypted data content is the message seed _d used by the wireless sensor device 1 to indicate the new key array, so the server 3 can follow the message indicating the new key array seed _d , which determines the new key array that the wireless sensor device 1 will replace. The new key array is the same as the second key array Kd used to replace the first key array Kc in the wireless sensor device 1. For the convenience of description, the following description will replace the new key array generated by the server 3 with the second key array Kd.

In one example, the server 3 has an array generation function, and the array generation function generates a second function related to the second key array Kd according to the message seed _d indicating the second key array Kd. In other words, when the server 3 replaces the first key array Kc with the second key array Kd, every time the server 3 wants to decrypt the encrypted data, the software will change to execute the second function so that the second function The key sequence is generated by the formula as the communication key for decrypting data. The method for generating the sequence of keys by the second function can refer to the foregoing embodiment, and will not be repeated here.

Please refer to FIG. 1 and FIG. 5. FIG. 5 is a flowchart of a method for generating a dynamic key for wireless communication according to another embodiment of the present invention. As shown in the figure, in step S701, each time the server 3 receives an encrypted data packet, it determines the type of the data packet according to the number of bytes of the data packet. In step S703, the server 3 obtains one of a plurality of communication keys from the current key array corresponding to the data packet, and decrypts the data packet. When the server 3 has determined that the data packet is a sensing data type, the server 3 will store the decrypted data content after decrypting the data packet and provide it to the data user 4 with corresponding data access rights to access. When the data packet is of the message generation type, the server 3 will cooperate with the wireless sensor device 1 to start the process of replacing the first key array Kc. Therefore, in step S705, it is determined whether the decrypted data content of the data packet is correct, and When it is judged that the data content after decryption of the data packet is correct, in step In S707, the verification message Vd is sent to the wireless sensing device 1.

In this embodiment, the contents of the foregoing steps S701 to S707 are substantially the same as those of the foregoing embodiment, and those with ordinary knowledge in the relevant technical field can implement modifications based on the content of the foregoing embodiment, and this embodiment will not be repeated. In the embodiment of FIG. 5, since the wireless sensor device 1 receives the verification message Vd and confirms that the verification message Vd is correct, it will send a standby message again, so that the wireless sensor device 1 and the server 3 can confirm again. Change to the procedure of the second key array Kd. Therefore, when the server 3 receives the encrypted data packet, it returns to step S701, and the server 3 determines the type of the data packet according to the number of bytes of the data packet. In other words, the number of bytes in the standby message, the number of bytes in the generated message, and the number of payload bytes in the sensed data are all different. Therefore, the server 3 can determine the number of bytes in the received data packet. The determination of the type of the data packet can also be used to obtain the progress of the process of replacing the first key array Kc by the wireless sensor device 1.

When the server 3 receives the data packet of the standby message type, in step S703, the server 3 will still obtain the communication key from one of the first key array Kc or the second key array Kd, that is, from the data The communication key is obtained from the current key array corresponding to the packet, and the data packet is decrypted with the obtained communication key. In step S709, the server 3 determines whether the decrypted data content of the data packet is correct. In other words, in one embodiment, the standby message generated by the wireless sensor device 1 is a fixed data content. The server 3 can determine whether the decrypted data content of the data packet is correct according to the standby message of the fixed content. At this time, the standby message generated by the wireless sensor device 1 can choose to encrypt the standby message with the communication key in the first key array Kc, or choose to encrypt the standby message with the communication key in the second key array Kd. . Therefore, in step S703, the server 3 cooperates with the wireless sensor device 1 to encrypt the source of the communication key, and is configured to obtain the communication key from the first key array Kc or the second key array Kd to decrypt the standby message type The data packet of is not limited in this embodiment.

In another embodiment, the standby message generated by the wireless sensor device 1 is generated based on a communication key in the second key array Kd, and is based on the communication key in the first key array Kc. Key encryption. Therefore, when the server 3 receives a data packet of the standby message type, in step S703, it obtains the communication key from the first key array Kc, and decrypts the data packet with the obtained communication key. In step S709, the server 3 compares the decrypted data content with the communication key in the second key array Kd, and determines whether the data packet of the standby message type is correct according to the comparison result.

In another embodiment, the standby message generated by the wireless sensor device 1 is generated based on a communication key in the first key array Kc and encrypted with the communication key in the second key array Kd. Therefore, when the server 3 receives the data packet of the standby message type, in step S703, it obtains the communication key from the second key array Kd, and decrypts the data packet with the obtained communication key. In step S709, the server 3 compares the decrypted data content with the communication key of the first key array Kc, and determines whether the data packet of the standby message type is correct according to the comparison result. The standby message can be composed of part of the bytes of the communication key, or it can be encrypted with only part of the bits of the communication key, which will not be repeated in this embodiment.

In step S711, when the server 3 confirms that the standby message is correct, it sends a response message to the wireless sensor device 1. The response message may be a fixed content or part of the byte taken from the standby message, which is not limited in this embodiment. In addition, the server 3 can also encrypt the response message. For example, when the received data packet of the standby message type is encrypted with the communication key (Kc,n+i+2) in the first key array Kc, the server 3 can use the communication key (Kc,n +i+3) Encrypt the response message. When the received data packet of the standby message type is encrypted with the communication key (Kd, 1) in the second key array Kd, the server 3 can encrypt the response message with the communication key (Kd, 2).

In step S713, the server 3 determines the new key array based on the decrypted data content of the data packet of the generated message type, and replaces the current key array with the new key array. According to the following period of time, the server 3 every time When an encrypted data packet is received, one of the multiple communication keys is obtained from the new key array to decrypt the data. Take the example that the wireless sensor device 1 takes part of the bytes from the communication key (Kd, 1) as the standby message, when there is no After receiving the response message sent by the server 3, the line sensing device 1 sends back the sensing data, and encrypts the sensing data with the next communication key (Kd, 2) in the sequence of the second key array Kd. Therefore, when the server 3 receives the encrypted data packet, it will decrypt the data packet with the next communication key (Kd, 2) in the sequence of the second key array Kd. In the example in which the wireless sensor device 1 takes part of the bytes from the communication key in the first key array Kc as the standby message, when the wireless sensor device 1 receives the response message sent by the server 3, it resumes sending When sensing data, since the first communication key (Kd, 1) in the second key array Kd is used as the content of the standby message, when the server 3 receives the encrypted data packet, it will use the second The next communication key (Kd, 2) in the key array Kd sequence decrypts the data packet.

In summary, the embodiment of the present invention provides a dynamic key generation method for wireless communication, which encrypts the data by obtaining a communication key that is not necessarily the same from the key array during data transmission, so that the data is encrypted. Security is higher. In addition, the dynamic key generation method irregularly replaces the key array based on randomly generated messages, so that the communication key used for encrypting data is less likely to be guessed. Even if the key array originally used is obtained by monitoring, after the dynamic key generation method replaces the key array, the key array that has been monitored and obtained will be unusable, thereby improving the security of data transmission in the wireless communication environment and protecting An important asset of the data owner.

Although the present invention is disclosed in the foregoing embodiments, it is not intended to limit the present invention. All changes and modifications made without departing from the spirit and scope of the present invention fall within the scope of the patent protection of the present invention. For the scope of protection defined by the present invention, please refer to the attached scope of patent application.

S101~S111: steps

Claims (25)

A method for generating a dynamic key for wireless communication includes: obtaining one of a plurality of communication keys from a first key array every time encrypted data is transmitted, and encrypting data with the obtained communication key; Randomly generating a generated message indicating a second key array and including a first verification message; obtaining one of the communication keys from the first key array, encrypting the generated message; sending The generated message is encrypted and requires a second verification message, wherein the second verification message is sent after the first verification message is verified correctly; the received second verification message is compared; and when the second verification message is received When the message comparison is correct, the first key array is replaced by the second key array, so that each time encrypted data is transmitted, one of a plurality of communication keys is obtained from the second key array. Data encryption; the number of bytes in the generated message is different from the number of bytes in each transmission of encrypted data. The method for generating a dynamic key for wireless communication as described in claim 1, further comprising: when the second verification message is not received, reacquiring one of the communication keys from the first key array, and restarting Encrypting the generated message; and sending the re-encrypted generated message and requesting the second verification message. The method for generating a dynamic key for wireless communication according to claim 1, further comprising using one of the communication keys in the first key array to decrypt the received second verification message. The method for generating a dynamic key for wireless communication according to claim 1, wherein the step of obtaining one of the communication keys from the first key array to encrypt the generated message includes using the obtained communication At least part of the bytes of the key encrypts the generated message. The dynamic key generation method for wireless communication according to claim 1, wherein the first key array is associated with a first function, and each time encrypted data is transmitted, the first key array is obtained One of the steps of the communication key further includes using the first function to generate a key array each time the encrypted data is transmitted, and the key array is used as the communication key. The dynamic key generation method for wireless communication according to claim 1, wherein the first key array is associated with a first function, and each time encrypted data is transmitted, the first key array is obtained One of the steps of the communication key further includes: using the first function to generate a plurality of key sequences each time the encrypted data is transmitted; concatenating the key sequences; and using the concatenated ones At least part of the byte of the key sequence is used as the communication key. The method for generating a dynamic key for wireless communication according to claim 1, wherein the second verification message is generated based on the first verification message, and in the step of comparing the received second verification message, when the received When the second verification message includes at least a part of the first verification message, the second verification message is correctly compared. The dynamic key generation method for wireless communication according to claim 1, wherein when the second verification message is correctly compared, the step of replacing the first key array with the second key array further includes: When the second verification message is correctly compared, obtain the communication key from one of the first key array or the second key array, encrypt a standby message; send the encrypted standby message and request a response Message; compare the received response message; and when the response message is compared correctly, replace the first key array with the second key array. For example, the method for generating a dynamic key for wireless communication as described in claim 8, further includes when the response message is not received, resending the encrypted standby message and requesting the response message. The dynamic key generation method for wireless communication according to claim 8, further comprising: obtaining one of the communication keys from the first key array, and using the obtained communication key to generate the standby message; When the response message is not received, re-obtain one of the communication keys from the first key array, and use the re-obtained communication key to generate the standby message; use the original method to encrypt the standby message Encrypt the regenerated standby message, wherein the communication key originally used to encrypt the standby message is taken from the second key array; and send the regenerated and encrypted standby message, and Request the response message. The method for generating a dynamic key for wireless communication according to claim 8, further comprising: obtaining one of the communication keys from the second key array, and using the obtained communication key to generate the standby message; When the response message is not received, reacquire one of the communication keys from the first key array, encrypt the standby message; and send the regenerated and encrypted standby message, and request the response message. The method for generating a dynamic key for wireless communication according to claim 8, wherein the number of bytes of the generated message is different from the number of bytes of the standby message. The method for generating a dynamic key for wireless communication according to claim 8, wherein the step of encrypting the standby message with a communication key obtained in one of the first key array or the second key array includes Use at least part of the bytes of the obtained communication key to encrypt the standby message. A method for generating a dynamic key for wireless communication includes: each time an encrypted data packet is received, judging the type of the data packet according to the number of bytes of the data packet; from a current data packet corresponding to the data packet Obtain one of a plurality of communication keys from the key array to decrypt the data packet; when the data packet is a generated message type, determine whether the decrypted data content of the data packet is correct; when the decrypted data content is compared correctly When the time, send a verification message; and determine a new key array based on the decrypted data content of the data packet of the generated message type, and replace the current key array with the new key array, based on each received When encrypting the data packet, one of a plurality of communication keys is obtained from the new key array to decrypt the data. The method for generating a dynamic key for wireless communication according to claim 14, wherein when the data packet is of the generated message type, the step of judging whether the data content after decryption of the data packet is correct further includes: Determine a message to be verified; and compare the message to be verified, wherein when the message to be verified is correct, it means that the decrypted data content is correct. The method for generating a dynamic key for wireless communication according to claim 15 further includes generating the verification message based on the to-be-verified message. The method for generating a dynamic key for wireless communication according to claim 15 further includes using a partial byte of one of the communication keys in the current key array to encrypt the verification message. The method for generating a dynamic key for wireless communication according to claim 14, wherein the step of obtaining one of the communication keys from the current key array corresponding to the data packet and decrypting the data packet further includes Use the obtained partial bytes of the communication key to decrypt the data packet. The method for generating a dynamic key for wireless communication according to claim 14, wherein the current key array is associated with a first function, and each time an encrypted data packet is received, the current key array is obtained The step of using one of the communication keys to decrypt the data packet further includes using the first function to generate a key sequence each time an encrypted data packet is received, and the key sequence is used as the communication Key. The dynamic key generation method for wireless communication according to claim 14, wherein the current key array is associated with a first function, and the current key corresponding to the data packet The step of obtaining one of the communication keys from the key array to decrypt the data packet further includes: each time the encrypted data is transmitted, the first function is used to generate a plurality of key sequences; Key sequence; and using at least part of the bytes of the concatenated key sequence as the communication key. For example, the method for generating a dynamic key for wireless communication according to claim 14, further includes: when the received data packet is of a standby message type, determining whether the data content after decryption of the data packet is correct; and when the data packet is of the standby message type When the decrypted data content of the data packet is correct, a response message is sent; wherein the number of data packet bytes of the standby message type is different from the number of data packet bytes of the generated message type. As described in claim 21, the method for generating a dynamic key for wireless communication further includes comparing the data content after decrypting the data packet of the standby message type with one of the communication keys in the new key array. When the content of the latter data is the same as the partial byte of one of the communication keys in the new key array, the data packet is correctly compared after decryption. The method for generating a dynamic key for wireless communication according to claim 22, wherein when the received data packet is of the standby message type, a partial byte of one of the communication keys of the current key array is used for decryption. As described in claim 21, the method for generating a dynamic key for wireless communication further includes comparing the data content after decrypting the data packet of the standby message type with the current key When one of the communication keys in the array, when the decrypted data content is the same as the partial byte of one of the communication keys in the current key array, the data packet is correctly compared after decryption. The method for generating a dynamic key for wireless communication according to claim 24, wherein when the received data packet is a standby message type, a partial byte of one of the communication keys of the new key array is used for decryption.

Images