CN103873270B - Intelligent meter infrastructure network system and its message broadcasting method - Google Patents

A kind of intelligent meter infrastructure (Advanced Metering Infrastructure, AMI) server, AMI network node, AMI network system and its message broadcasting method.AMI servers are for broadcast message, broadcast key is produced by hash function, broadcast message is encrypted as encrypted broadcast messages using key is broadcasted, Encryption Key is encrypted as by key is broadcasted using symmetric key, and encrypted broadcast messages and Encryption Key are broadcasted to AMI network node.Encryption Key decryption is broadcast key using symmetric key by AMI network node, is broadcast message using broadcasting key and decrypting encrypted broadcast messages, and corresponds to broadcast key post processing broadcast message in judging to broadcast the message using the hash function.

智慧型电表基础建设网络系统及其消息广播方法Smart meter infrastructure network system and its message broadcasting method

技术领域technical field

本发明关于一种智慧型电表基础建设(Advanced Metering Infrastructure，AMI)服务器、AMI网络节点、AMI网络系统及其消息广播方法。更具体而言，本发明关于应用于AMI服务器、AMI网络节点及AMI网络系统的安全且快速的消息广播方法。The invention relates to an intelligent electric meter infrastructure (Advanced Metering Infrastructure, AMI) server, an AMI network node, an AMI network system and a message broadcasting method thereof. More specifically, the present invention relates to a safe and fast message broadcasting method applied to an AMI server, an AMI network node and an AMI network system.

背景技术Background technique

智慧型电表基础建设(Advanced Metering Infrastructure，AMI)主要由电表数据管理系统(Meter Data Management System，MDMS)与智慧型电表(Smart Meter)组成，并通过通信网络传递消息，进而达成电力相关资讯的管理及控制。而与一般网络类似，为确保网络消息内容的正确性，通常需一并考量消息传递的过程是否安全。其中，以金钥系统的应用最为广泛。The Advanced Metering Infrastructure (AMI) is mainly composed of the Meter Data Management System (MDMS) and the Smart Meter, and transmits messages through the communication network to achieve the management of power-related information and control. Similar to the general network, in order to ensure the correctness of the network message content, it is usually necessary to consider whether the process of message transmission is safe or not. Among them, the key system is the most widely used.

具体而言，已知利用金钥系统的AMI中，当服务端(如MDMS或集中器)欲广播电力相关控制消息时，会先利用金钥针对消息进行加密，随后，再由客户端(如集中器或智慧型电表)利用金钥进行解密并处理消息内容。同样地，应用于AMI的金钥架构亦为传统的金钥加密方式。Specifically, in the known AMI using the key system, when the server (such as MDMS or concentrator) intends to broadcast a power-related control message, it will first use the key to encrypt the message, and then the client (such as concentrator or smart meter) use the key to decrypt and process the message content. Similarly, the key structure applied to AMI is also a traditional key encryption method.

然而，当于AMI架构中，服务端以及所有的客户端皆使用同一把共同金钥K_C进行消息加密，则当有任一客户端被恶意攻击且操控时，其将可直接利用共同金钥K_C加密错误消息并据以散布。另一方面，当于AMI架构中，服务端与不同的客户端皆使用传统的对称式金钥进行消息加密时，虽其安全性较高，然由于服务端所需储存及处理的对称式金钥的数量正比于客户端的数量，因此，当网络中的客户端大幅增加时，服务端需耗费更多时间于处理广播消息的加密，使得网络整体消息传递效率降低。However, in the AMI architecture, when the server and all clients use the same common key K _C for message encryption, when any client is maliciously attacked and manipulated, it will directly use the common key K _C encrypts the error message and distributes it accordingly. On the other hand, in the AMI architecture, when both the server and different clients use the traditional symmetric key for message encryption, although its security is relatively high, due to the symmetric key that the server needs to store and process The number of keys is proportional to the number of clients. Therefore, when the number of clients in the network increases significantly, the server needs to spend more time processing the encryption of broadcast messages, which reduces the overall message delivery efficiency of the network.

更者，已知技术亦有同时利用共同金钥K_C以及对称式金钥K_i完成加密的方式。详细来说，服务端同时具有共同金钥K_C以及对称式金钥K_i，而客户端具有对称式金钥K_i。其中，服务端先以共同金钥K_C加密网络消息M得到E_kc(M)，再以对称式金钥K_i加密共同金钥K_C得到E_ki(K_C)，随后，便将串接(concatenate)后的E_kc(M)及E_ki(K_C)传送至客户端。What's more, the known technology also has a method of using the common key K _C and the symmetric key K _i to complete the encryption at the same time. In detail, the server has both the common key K _C and the symmetric key K _i , while the client has the symmetric key K _i . Among them, the server first encrypts the network message M with the common key K _C to obtain E _kc (M), and then encrypts the common key K _C with the symmetric key K _i to obtain E _ki (K _C ), and then concatenates (concatenate) E _kc (M) and E _ki (K _C ) are sent to the client.

接着，客户端便可先行利用对称式金钥K_i解密E_ki(K_C)得共同金钥K_C，随后再以共同金钥K_C解密E_kc(M)得网络消息M，如此一来，通过此种机制，便可提升单独使用共同金钥的安全性，并同时降低单独使用对称式金钥的金钥处理复杂度。Then, the client can first use the symmetric key K _i to decrypt the common key K _C of E _ki (K _C ), and then use the common key K _C to decrypt the network message M of E _kc (M). , through this mechanism, the security of using a common key alone can be improved, and at the same time, the complexity of key processing using a symmetric key alone can be reduced.

然而，类似地，于前述机制中若有任一节点被恶意攻击及操纵，则此恶意节点仍可先通过其原有的对称式金钥K_i解密E_ki(K_C)得到共同金钥K_C，并进一步在利用共同金钥K_C加密恶意消息M’得E_kc(M’)后，以E_kc(M’)替换串接消息的E_kc(M)，并将修改后的消息传送至其他客户端。如此一来，其他客户端仍无法得知其所接收的消息的可靠性。再者，虽前述机制可稍微降低单独使用对称式金钥的金钥处理复杂度，然服务端于前置作业处理各客户端的E_ki(K_C)时，其处理时间仍受到节点数量的影响。However, similarly, if any node in the aforementioned mechanism is maliciously attacked and manipulated, the malicious node can still decrypt E _ki (K _C ) through its original symmetric key K _i to obtain the common key K _C , and further use the common key K _C to encrypt the malicious message M' to obtain E _kc (M'), replace the E _kc (M) of the concatenated message with E _kc (M'), and transmit the modified message to other clients. In this way, other clients still cannot know the reliability of the messages they receive. Furthermore, although the aforementioned mechanism can slightly reduce the key processing complexity of using symmetric keys alone, when the server processes the E _ki (K _C ) of each client in the pre-job, its processing time is still affected by the number of nodes .

综上所述，如何于AMI架构中更安全且有效率地传输数据，以确保AMI架构正常快速运作，乃业界亟需努力的目标。To sum up, how to transmit data more securely and efficiently in the AMI architecture to ensure the normal and fast operation of the AMI architecture is an urgent goal for the industry.

发明内容Contents of the invention

为解决前述问题，本发明提供了一种智慧型电表基础建设(AdvancedMeteringInfrastructure，AMI)服务器、AMI网络节点、AMI网络系统及其消息广播方法，其主要利用杂凑函数(Hash Function)完成网络消息与对称金钥的配对，并搭配对称金钥的使用以确保消息的正确性。同时，本发明亦利用分段的加密型态加速加密过程。In order to solve the foregoing problems, the present invention provides a smart meter infrastructure (Advanced Metering Infrastructure, AMI) server, AMI network node, AMI network system and its message broadcasting method, which mainly uses a hash function (Hash Function) to complete the network message and symmetric The pairing of keys and the use of symmetric keys to ensure the correctness of messages. At the same time, the present invention also utilizes segmented encryption to speed up the encryption process.

为完成前述目的，本发明提供了一种用于AMI网络系统的消息广播方法。AMI网络系统包含AMI服务器以及AMI网络节点。消息广播方法包含下列步骤：(a)令AMI服务器针对广播消息，通过杂凑函数产生广播金钥；(b)令AMI服务器利用广播金钥将广播消息加密为加密广播消息；(c)令AMI服务器利用相应于AMI网络节点的对称金钥将广播金钥加密为加密金钥；(d)令AMI服务器将加密广播消息以及加密金钥广播至AMI网络节点；(e)令AMI网络节点利用对称金钥将加密金钥解密为广播金钥；(f)令AMI网络节点利用广播金钥将加密广播消息解密为广播消息；(g)令AMI网络节点于利用杂凑函数判断广播消息对应于广播金钥后，处理广播消息。In order to achieve the aforementioned purpose, the present invention provides a message broadcasting method for an AMI network system. The AMI network system includes the AMI server and the AMI network nodes. The message broadcasting method comprises the following steps: (a) making the AMI server generate a broadcast key through a hash function for the broadcast message; (b) making the AMI server use the broadcast key to encrypt the broadcast message into an encrypted broadcast message; (c) making the AMI server Use the symmetric key corresponding to the AMI network node to encrypt the broadcast key into an encrypted key; (d) make the AMI server broadcast the encrypted broadcast message and the encrypted key to the AMI network node; (e) make the AMI network node use the symmetric key key to decrypt the encryption key into a broadcast key; (f) make the AMI network node use the broadcast key to decrypt the encrypted broadcast message into a broadcast message; (g) make the AMI network node use the hash function to judge that the broadcast message corresponds to the broadcast key After that, process the broadcast message.

为完成前述目的，本发明又提供了一种用于AMI网络系统的消息广播方法。AMI网络系统包含AMI服务器以及AMI网络节点。AMI服务器利用广播金钥加密传送至AMI网络节点的消息。消息广播方法包含下列步骤：(a)令AMI服务器利用初阶密钥将广播金钥转换为第一初步密文；(b)令AMI服务器利用相应于AMI网络节点的对称金钥将第一初步密文转换成加密金钥消息；(c)令AMI服务器广播加密金钥消息；(d)令AMI网络节点于接收加密金钥消息后，利用初阶金钥将加密金钥消息转换成第二初步密文；(e)令AMI网络节点利用对称金钥将第二初步密文转换成用以解密AMI服务器广播的加密消息的广播金钥。In order to achieve the aforementioned purpose, the present invention further provides a message broadcasting method for an AMI network system. The AMI network system includes the AMI server and the AMI network nodes. The AMI server uses the broadcast key to encrypt messages sent to the AMI network nodes. The message broadcasting method includes the following steps: (a) making the AMI server use the primary key to convert the broadcast key into a first preliminary ciphertext; (b) making the AMI server convert the first preliminary ciphertext using the symmetric key corresponding to the AMI network node Convert the ciphertext into an encrypted key message; (c) make the AMI server broadcast the encrypted key message; (d) make the AMI network node convert the encrypted key message into a second encrypted key message using the primary key after receiving the encrypted key message; The preliminary ciphertext; (e) causing the AMI network node to convert the second preliminary ciphertext into a broadcast key for decrypting the encrypted message broadcast by the AMI server using the symmetric key.

为完成前述目的，本发明再提供了一种AMI网络系统，包含AMI服务器以及AMI网络节点。AMI服务器针对广播消息，通过杂凑函数产生广播金钥，利用广播金钥将广播消息加密为加密广播消息，利用相应于AMI网络节点的至少一对称金钥将广播金钥加密为加密金钥，并将加密广播消息以及加密金钥广播至AMI网络节点。AMI网络节点利用对称金钥将加密金钥解密为广播金钥，利用广播金钥将加密广播消息解密为广播消息，并于利用杂凑函数判断广播消息对应于广播金钥后，处理广播消息。In order to achieve the aforementioned purpose, the present invention further provides an AMI network system, including an AMI server and an AMI network node. For the broadcast message, the AMI server generates a broadcast key through a hash function, uses the broadcast key to encrypt the broadcast message into an encrypted broadcast message, uses at least one symmetric key corresponding to the AMI network node to encrypt the broadcast key into an encrypted key, and Broadcast encrypted broadcast messages and encrypted keys to AMI network nodes. The AMI network node uses the symmetric key to decrypt the encryption key into a broadcast key, uses the broadcast key to decrypt the encrypted broadcast message into a broadcast message, and processes the broadcast message after using a hash function to determine that the broadcast message corresponds to the broadcast key.

为完成前述目的，本发明另提供了一种AMI网络系统，包含AMI网络节点以及AMI服务器。AMI服务器具有用以加密传送至AMI网络节点的消息的广播金钥。AMI服务器利用初阶密钥将广播金钥转换为第一初步密文，并利用相应于AMI网络节点的对称金钥将第一初步密文转换成加密金钥消息。AMI服务器更用以广播加密金钥消息。AMI网络节点于接收加密金钥消息后，利用初阶金钥将加密金钥消息转换成第二初步密文，并利用对称金钥将第二初步密文转换成用以解密AMI服务器广播的加密消息的广播金钥。In order to achieve the aforementioned purpose, the present invention further provides an AMI network system, which includes an AMI network node and an AMI server. The AMI server has a broadcast key that is used to encrypt messages sent to the AMI network nodes. The AMI server converts the broadcast key into a first preliminary ciphertext using the primary key, and converts the first preliminary ciphertext into an encrypted key message using the symmetric key corresponding to the AMI network node. The AMI server is also used to broadcast encrypted key messages. After receiving the encrypted key message, the AMI network node uses the primary key to convert the encrypted key message into a second preliminary ciphertext, and uses the symmetric key to convert the second preliminary ciphertext into encrypted data for decrypting the broadcast of the AMI server. The broadcast key for the message.

通过上述所揭露的技术特征，本发明的AMI服务器、AMI网络节点、AMI网络系统及其消息广播方法将得以更安全且有效率的方式完成网络消息的传递。Through the technical features disclosed above, the AMI server, AMI network node, AMI network system and message broadcasting method of the present invention can complete the transmission of network messages in a more secure and efficient manner.

附图说明Description of drawings

图1A本发明的第一实施例的AMI网络系统的示意图；Fig. 1A is a schematic diagram of the AMI network system of the first embodiment of the present invention;

图1B本发明的第一实施例的AMI服务器的示意图；Fig. 1B is a schematic diagram of the AMI server of the first embodiment of the present invention;

图1C本发明的第一实施例的AMI网络节点的示意图；Fig. 1C is a schematic diagram of an AMI network node according to the first embodiment of the present invention;

图1D本发明的第一实施例的AMI服务器以及AMI网络节点加解密的示意图；Fig. 1D is a schematic diagram of the encryption and decryption of the AMI server and the AMI network node of the first embodiment of the present invention;

图2A本发明的第二实施例的AMI网络系统的示意图；2A is a schematic diagram of the AMI network system of the second embodiment of the present invention;

图2B本发明的第二实施例的快速加密与传统加密的比较图；Fig. 2B is a comparison diagram of fast encryption and traditional encryption of the second embodiment of the present invention;

图3本发明的第三实施例的消息广播方法的流程图；以及Fig. 3 is a flow chart of the message broadcasting method of the third embodiment of the present invention; and

图4本发明的第四实施例的消息广播方法的流程图。Fig. 4 is a flowchart of a message broadcasting method according to the fourth embodiment of the present invention.

主要元件符号说明：Description of main component symbols:

1、2AMI网络系统1. 2AMI network system

11AMI服务器11AMI server

111收发器111 Transceiver

113处理器113 processors

13、13a、13b、13c AMI网络节点13, 13a, 13b, 13c AMI network nodes

131收发器131 Transceiver

133处理器133 processors

K_B广播金钥 _KB broadcast key

K_i、K_a、K_b、K_c对称金钥K _i , K _a , K _b , K _c symmetric key

M广播消息M broadcast message

EK_B(M)加密广播消息EK _B (M) encrypted broadcast message

EK_i(K_B)、EK_a(K_B)、EK_b(K_B)、EK_c(K_B)加密金钥消息EK _i (K _B ), EK _a (K _B ), EK _b (K _B ), EK _c (K _B ) encrypted key messages

具体实施方式detailed description

以下将通过实施例来解释本发明内容。然而，本发明的实施例并非用以限制本发明需在如实施例所述的任何环境、应用或方式方能实施。因此，关于实施例的说明仅为阐释本发明的目的，而非用以直接限制本发明。需说明者，以下实施例及图示中，与本发明非直接相关的元件已省略而未绘示。The content of the present invention will be explained below through examples. However, the embodiments of the present invention are not intended to limit the present invention to be implemented in any environment, application or manner as described in the embodiments. Therefore, the descriptions about the embodiments are only for the purpose of illustrating the present invention, rather than directly limiting the present invention. It should be noted that in the following embodiments and illustrations, elements not directly related to the present invention have been omitted and not shown.

请参考图1A-1C。其中，图1A为本发明第一实施例的一智慧型电表基础建设(Advanced Metering Infrastructure，AMI)网络系统1的示意图，AMI网络系统包含一AMI服务器11以及一AMI网络节点13。图1B本发明第一实施例的AMI服务器11的示意图，AMI服务器包含一收发器111以及一处理器113。图1C本发明第一实施例的AMI网络节点13的示意图，AMI网络节点13包含一收发器131以及一处理器133。Please refer to Figures 1A-1C. 1A is a schematic diagram of an Advanced Metering Infrastructure (AMI) network system 1 according to the first embodiment of the present invention. The AMI network system includes an AMI server 11 and an AMI network node 13 . FIG. 1B is a schematic diagram of the AMI server 11 according to the first embodiment of the present invention. The AMI server includes a transceiver 111 and a processor 113 . FIG. 1C is a schematic diagram of the AMI network node 13 according to the first embodiment of the present invention. The AMI network node 13 includes a transceiver 131 and a processor 133 .

需特别说明者，为便于本发明技术特征的说明，于第一实施例中，AMI服务器11为集中器(Concentrator)，AMI网络节点13为智慧型电表。然而，其并非用以限制本发明的硬件方面，本领域技术人员可通过本发明揭示内容，轻易于其他实施例中思及，当AMI服务器11为后端网络服务器时，AMI网络节点13则相对应为集中器。第一实施例的网络元件互动将于下文中予以进一步阐述。In particular, to facilitate the description of the technical features of the present invention, in the first embodiment, the AMI server 11 is a concentrator, and the AMI network node 13 is a smart meter. However, it is not intended to limit the hardware aspects of the present invention. Those skilled in the art can easily think of other embodiments through the disclosure of the present invention. When the AMI server 11 is a backend network server, the AMI network node 13 is the same Corresponds to the concentrator. The network element interaction of the first embodiment will be further described below.

请一并参阅图1D，其为本发明第一实施例的AMI服务器11以及AMI网络节点13加解密的示意图。首先，当AMI服务器11欲进行消息广播时，其需先针对消息进行加密。具体而言，AMI服务器11的处理器113于广播一广播消息M前，先将广播消息M通过一杂凑函数(HashFunction)H计算产生一广播金钥K_B，如此一来，广播金钥K_B与广播消息M将因为杂凑函数的计算而具有对应关系。Please also refer to FIG. 1D , which is a schematic diagram of encryption and decryption of the AMI server 11 and the AMI network node 13 according to the first embodiment of the present invention. First, when the AMI server 11 intends to broadcast a message, it needs to encrypt the message first. Specifically, before broadcasting a broadcast message M, the processor 113 of the AMI server 11 calculates the broadcast message _M through a hash function (HashFunction) H to generate a broadcast key KB , so that the broadcast key _KB There will be a corresponding relationship with the broadcast message M due to the calculation of the hash function.

接着，AMI服务器11的处理器113利用广播金钥K_B加密广播消息M得到一加密广播消息EK_B(M)，并利用相应于AMI网络节点13的一对称金钥K_i，对广播金钥K_B加密得一加密金钥消息EK_i(K_B)。随后，收发器111便于处理器113将加密广播消息EK_B(M)以及加密金钥消息EK_i(K_B)串接为消息EK_B(M)||EK_i(K_B)后，进行消息广播。Next, the processor 113 of the AMI server 11 uses the broadcast key _{KB to encrypt the broadcast message M to obtain an encrypted broadcast message EK B (} M), and uses a symmetric key K _i corresponding to the AMI network node 13 to encrypt the broadcast key _KB is encrypted to obtain an encryption key message EK _i ( _KB ). Subsequently, the transceiver 111 facilitates the processor 113 to concatenate the encrypted broadcast message EK _B (M) and the encrypted key message EK _i ( _{KB ) into a message EK B (} M)||EK _i ( _KB ), and then perform message broadcast.

而AMI网络节点13的收发器131于接收加密广播消息EK_B(M)以及加密金钥消息EK_i(K_B)串接而成的消息EK_B(M)||EK_i(K_B)后，AMI网络节点13的处理器133则利用对称金钥K_i将加密金钥消息EK_i(K_B)解密得到广播金钥K_B，并利用广播金钥K_B将加密广播消息EK_B(M)解密得到广播消息M。And the transceiver 131 of the AMI network node 13 receives the message EK _B (M)||EK _i ( _KB ) formed by concatenating the encrypted broadcast message EK _B (M) and the encrypted key message EK _i ( _KB ) , the processor 133 of the AMI network node 13 uses the symmetric key K _i to decrypt the encrypted key message EK _i (KB ) to obtain the broadcast key _KB , and uses the broadcast key _KB to decrypt the encrypted broadcast message EK _B ( _M ) to decrypt the broadcast message M.

随即，AMI网络节点13的处理器133便可利用杂凑函数，判断广播消息M与广播金钥K_B是否对应，并据以判断广播消息M的正确性。详言之，AMI网络节点13的处理器133分别将加密金钥消息EK_i(K_B)以及加密广播消息EK_B(M)解密得到广播金钥K_B以及广播消息M后，AMI网络节点13的处理器133便可先将广播消息M通过杂凑函数计算产生一广播金钥K_B’。Immediately, the processor 133 of the AMI network node 13 can use the hash function to judge whether the broadcast message _M corresponds to the broadcast key KB, and judge the correctness of the broadcast message M accordingly. Specifically, after the processor 133 of the AMI network node 13 decrypts the encrypted key message EK _i ( _{KB ) and the encrypted broadcast message EK B (} M) respectively to obtain the broadcast key _KB and the broadcast message M, the AMI network node 13 The processor 133 of the broadcast message M can first generate a broadcast key _KB ' through hash function calculation.

据此，若广播金钥K_B’等于广播金钥K_B，代表广播消息M与广播金钥K_B确具对应性，则广播消息M为正确消息。反之，若广播金钥K_B’不等于广播金钥K_B，代表广播消息M与广播金钥K_B不具对应性，则广播消息M可能为遭窜改过的消息。如此一来，网络消息传递的可靠性将得以确保。Accordingly, if the broadcast key KB _' is equal to the broadcast key KB , it means that the broadcast message _M is indeed corresponding to the broadcast key KB , and the broadcast message _M is a correct message. Conversely, if the broadcast key KB _' is not equal to the broadcast key KB , it means that the broadcast message _M does not correspond to the broadcast key KB , and the broadcast message _M may be a falsified message. In this way, the reliability of network message delivery will be ensured.

需特别强调者，于其他实施方面中，为增加广播消息M与广播金钥K_B配对性的强度，则可于产生广播金钥K_B时加入乱数(Random Number)参数的应用。具体而言，AMI服务器11的处理器113可于通过杂凑函数计算产生广播金钥K_B时，进一步于计算过程中搭配一乱数参数的使用。如此一来，广播消息M与广播金钥K_B的配对将因为乱数参数的加入而具有更高的不可预测性。接着，为使AMI网络节点13得利用相同的乱数参数进行解密，AMI服务器11的处理器113可将乱数参数与广播消息M同时加密为加密广播消息，一并广播至AMI网络节点13。It should be emphasized that in other implementation aspects, in order to increase the matching strength between the broadcast message _M and the broadcast key _KB , a random number (Random Number) parameter can be added when generating the broadcast key KB. Specifically, when the processor 113 of the AMI server 11 calculates and generates the broadcast key _KB through the hash function, it can further use a random number parameter in the calculation process. In this way, the pairing of the broadcast message _M and the broadcast key KB will have higher unpredictability due to the addition of random number parameters. Next, in order for the AMI network node 13 to use the same random number parameter for decryption, the processor 113 of the AMI server 11 can simultaneously encrypt the random number parameter and the broadcast message M into an encrypted broadcast message, and broadcast to the AMI network node 13 together.

据此，AMI网络节点13的处理器133便可利用广播金钥K_B将加密广播消息解密得到乱数参数以及广播消息M，并于利用乱数参数产生广播金钥K_B’后，根据其与广播金钥K_B是否相符的结果，判断广播消息M的正确性。需另外说明，于第一实施例所使用的金钥系统以及乱数参数，其相关应用乃本领域技术人员熟知的技术，因此将不再赘述。Accordingly, the processor 133 of the AMI network node 13 can use the broadcast key _KB to decrypt the encrypted broadcast message to obtain the random number parameter and the broadcast message M, and after using the random number parameter to generate the broadcast key KB _' , according to its relationship with the broadcast _The result of whether the key KB matches or not determines the correctness of the broadcast message M. It should be further explained that the relevant application of the key system and random number parameters used in the first embodiment is well known to those skilled in the art, so details will not be repeated here.

请参考图2A，其为本发明第二实施例的一AMI网络系统2的示意图。其中，须特别说明者，第二实施例中与先前实施例的系统架构及网络连接环境相同，因此符号相同的元件功能亦同，于此不再赘述。而第二实施例与先前实施例的差异在于，第二实施例描述多个AMI网络节点13a、13b、13c的实施方面。Please refer to FIG. 2A , which is a schematic diagram of an AMI network system 2 according to a second embodiment of the present invention. Wherein, it should be noted that the system structure and network connection environment of the second embodiment are the same as those of the previous embodiments, so components with the same symbols have the same functions, and will not be repeated here. Whereas the second embodiment differs from the previous embodiments in that the second embodiment describes implementation aspects of a plurality of AMI network nodes 13a, 13b, 13c.

类似地，于第二实施例中，当AMI服务器11欲进行消息广播时，其需先针对消息进行加密。具体而言，AMI服务器11的处理器113于广播广播消息M前，先将广播消息M通过杂凑函数计算产生广播金钥K_B，如此一来，广播金钥K_B与广播消息M将通过杂凑函数产生对应关系。Similarly, in the second embodiment, when the AMI server 11 intends to broadcast a message, it needs to encrypt the message first. Specifically, before broadcasting the broadcast message M, the processor 113 of the AMI server 11 calculates the broadcast message M through a hash function to generate the broadcast key _KB . In this way, the broadcast key _KB and the broadcast message M will be hashed Functions generate correspondences.

接着，AMI服务器11的处理器113利用广播金钥K_B加密广播消息M得到加密广播消息EK_B(M)，并利用相应于AMI网络节点13a、13b、13c的对称金钥K_a、K_b、K_c，分别对广播金钥K_B加密得加密金钥消息EK_a(K_B)、EK_b(K_B)、EK_c(K_B)。随后，AMI服务器11的收发器111便于处理器113将加密广播消息EK_B(M)以及加密金钥消息EK_a(K_B)、EK_b(K_B)、EK_c(K_B)串接为消息EK_B(M)||EK_a(K_B)||K_b(K_B)||EK_c(K_B)后，进行消息广播。Next, the processor 113 of the AMI server 11 uses the broadcast key KB to encrypt the broadcast message M to obtain an encrypted broadcast message EK _B (M), and uses the symmetric keys K _a , K _b corresponding to the AMI network nodes 13a, _13b , 13c , K _c , respectively encrypt the broadcast key KB to obtain encrypted key messages EK _a ( _KB ), EK _b ( _KB ), and EK _c ( _{KB )} . Subsequently, the transceiver 111 of the AMI server 11 facilitates the processor 113 to concatenate the encrypted broadcast message EK _B (M) and the encrypted key messages EK _a ( _KB ), EK _b ( _KB ), EK _c ( _KB ) into After the message EK _B (M)||EK _a (K _B )||K _b (K _B )||EK _c (K _B ), broadcast the message.

以AMI网络节点13a为例，当AMI网络节点13a的收发器于接收AMI服务器11广播的加密广播消息EK_B(M)以及加密金钥消息EK_a(K_B)、EK_b(K_B)、EK_c(K_B)串接的消息EK_B(M)||EK_a(K_B)||EK_b(K_B)||EK_c(K_B)后，AMI网络节点13a的处理器则利用对称金钥K_a将加密金钥消息EK_a(K_B)解密得到广播金钥K_B，并利用广播金钥K_B将加密广播消息EK_B(M)解密得到广播消息M。类似地，AMI网络节点13b、13c亦可利用对称金钥K_a、K_b得到广播消息M。Taking the AMI network node 13a as an example, when the transceiver of the AMI network node 13a receives the encrypted broadcast message EK _B (M) broadcast by the AMI server 11 and the encrypted key messages EK _a ( _KB ), EK _b ( _KB ), After the messages EK _B (M)||EK _a ( _KB )||EK _b ( _KB )||EK _c ( _KB ) concatenated by EK _c ( _KB ), the processor of the AMI network node 13a uses The symmetric key K _a decrypts the encrypted key message EK _a (KB ) to obtain the broadcast key _KB , and uses the broadcast key _KB to decrypt the encrypted broadcast message EK _B ( _M ) to obtain the broadcast message M. Similarly, the AMI network nodes _13b , 13c can also use the symmetric keys Ka, _Kb to obtain the broadcast message M.

随即，AMI网络节点13a、13b、13c的处理器便可根据第一实施例详述的内容，分别利用杂凑函数判断广播消息M与广播金钥K_B是否对应，并据以判断广播消息M的正确性。同样地，若广播金钥K_B’等于广播金钥K_B，代表广播消息M与广播金钥K_B确具对应性，则广播消息M为正确消息；若广播金钥K_B’不等于广播金钥K_B，代表广播消息M与广播金钥K_B不具对应性，则广播消息M可能为遭窜改过的消息。Immediately, the processors of the AMI network nodes 13a, 13b, and 13c can respectively use the hash function to judge whether the broadcast message _M corresponds to the broadcast key KB according to the content detailed in the first embodiment, and judge the broadcast message M accordingly. correctness. Similarly, if the broadcast key KB _' is equal to the broadcast key KB , it means that the broadcast message _M does correspond to the broadcast key _KB , and the broadcast message M is the correct message; if the broadcast key KB _' is not equal to the broadcast key The key KB means that the broadcast message _M does not correspond to the broadcast key KB, and the broadcast message _M may be a falsified message.

另一方面，由于传统的金钥加密方式，如加密标准(Data Encryption Standard，DES)或进阶加密标准(Advanced Encryption Standard，AES)，其皆利用同一对称金钥，针对消息进行多回合的数据位元调整，换言之，若AMI服务器需针对多个AMI网络节点，利用多个对称金钥进行广播金钥的加密时，其所耗费的时间将相当可观。据此，于其他实施方面中，可通过加速加密金钥消息的计算速度提升整体加密及数据传输的速度。On the other hand, due to traditional key encryption methods, such as Data Encryption Standard (DES) or Advanced Encryption Standard (AES), they all use the same symmetric key to perform multiple rounds of data encryption for messages. Bit adjustment, in other words, if the AMI server needs to use multiple symmetric keys to encrypt the broadcast key for multiple AMI network nodes, it will take considerable time. Accordingly, in other implementation aspects, the overall encryption and data transmission speed can be improved by accelerating the calculation speed of the encryption key message.

请一并参考图2B，其为本发明第二实施例的快速加密与传统加密的比较图。具体而言，利用已知的加密方式，每次针对不同网络节点的金钥进行加密时，皆需重复进行完整(X回合位元调整动作)的加密程序，而本发明主要将已知完整的动作调整为二阶段(y回合位元调整动作加上z回合位元调整动作)。Please also refer to FIG. 2B , which is a comparison diagram between the fast encryption and the traditional encryption according to the second embodiment of the present invention. Specifically, using known encryption methods, each time when encrypting keys of different network nodes, a complete (X round of bit adjustment action) encryption procedure needs to be repeated, and the present invention mainly uses the known complete The action adjustment is in two stages (y round of bit adjustment action plus z round of bit adjustment action).

更详细来说，于广播金钥K_B加密成加密金钥消息的过程中，AMI服务器11的处理器111先利用一初阶密钥，将广播金钥K_B初步地加密转换为一第一初步密文(其过程为y回合的位元调整动作)，随后，AMI服务器11的处理器111再利用相应于AMI网络节点13a、13b、13c的对称金钥K_a、K_b、K_c，将第一初步密文分别转换成加密金钥消息EK_a(K_B)、EK_b(K_B)、EK_c(K_B)(其过程分别为z回合的位元调整动作)。More specifically, in the process of encrypting the broadcast key _KB into an encrypted key message, the processor 111 of the AMI server 11 uses a primary key to initially encrypt and convert the broadcast key _KB into a first Preliminary ciphertext (the process of which is y rounds of bit adjustment actions), and then, the processor 111 of the AMI server 11 reuses the symmetric keys Ka, _Kb , and _Kc corresponding to the AMI network nodes 13a, _13b , and 13c, The first preliminary ciphertext is respectively converted into encryption key messages EK _a (KB ), EK _b ( _KB ), EK _c ( _{KB )} (the processes are respectively z rounds of bit adjustment actions).

反向地，以AMI网络节点13a为例，AMI网络节点13a的处理器便可先利用初阶金钥将加密金钥消息EK_a(K_B)转换成一第二初步密文，再利用对称金钥K_a将第二初步密文转换成广播金钥K_B。同样地，AMI网络节点13b、13c亦可二阶段式地将加密金钥消息EK_b(K_B)、EK_c(K_B)分别解密得到K_B。Conversely, taking the AMI network node 13a as an example, the processor of the AMI network node 13a can first use the primary key to convert the encrypted key message EK _a ( _KB ) into a second preliminary ciphertext, and then use the symmetric key to The key K _a converts the second preliminary ciphertext into the broadcast key _KB . Similarly, the AMI network nodes 13b and 13c can also decrypt the encrypted key messages EK _b ( _KB ) and EK _c ( _KB ) respectively in two stages to obtain _KB .

据此，通过图2B可清楚得知，利用已知的加密方式，每次针对不同网络节点的金钥进行加密时，皆需重复进行完整(X回合位元调整动作)的加密程序。然通过本发明二阶段密文转换过程的好处在于，由于第一初步密文的内容相较于不同的AMI网络节点具相同内容，因此，AMI服务器11便可于计算加密金钥消息EK_a(K_B)、EK_b(K_B)、EK_c(K_B)的过程中，重复利用第一初步密文，如此一来，将可使得AMI服务器11于计算不同节点的加密金钥消息时，大幅降低其运算负担。Accordingly, it can be clearly seen from FIG. 2B that, using known encryption methods, each time encryption is performed on a key of a different network node, a complete (X rounds of bit adjustment) encryption procedure needs to be repeated. However, the benefit of the two-stage ciphertext conversion process of the present invention is that, since the content of the first preliminary ciphertext has the same content compared with different AMI network nodes, the AMI server 11 can calculate the encryption key message EK _a ( In the process of KB ), EK _b ( _KB ), EK _c ( _{KB )} , the first preliminary ciphertext is reused. In this way, when the AMI server 11 calculates the encrypted key messages of different nodes, Significantly reduce its computing burden.

举例而言，当前述的y＝5且z＝5时，则于传统加密程序中，其主要利用同一对称金钥，针对消息进行X＝10回合(y+z)的数据位元调整，因此，当AMI服务器欲计算三个AMI网络节点的加密金钥消息时，AMI服务器需分别针对三个AMI网络节点进行10回合的数据位元调整，如此，针对三个AMI网络节点，AMI服务器总共须进行3x10＝30回合的数据位元调整。For example, when the aforementioned y=5 and z=5, then in the traditional encryption program, it mainly uses the same symmetric key to perform X=10 rounds (y+z) of data bit adjustments for the message, so , when the AMI server intends to calculate the encrypted key messages of the three AMI network nodes, the AMI server needs to perform 10 rounds of data bit adjustments for the three AMI network nodes respectively. In this way, for the three AMI network nodes, the AMI server needs to Perform 3x10=30 rounds of data bit adjustment.

然若通过本发明的二阶段加密，AMI服务器可先利用初阶密钥，针对消息进行y＝5回合的数据位元调整以获得初步密文，随后，当AMI服务器欲计算三个AMI网络节点的加密金钥消息时，AMI服务器可直接利用已经过5回合数据位元调整的初步密文，针对三个AMI网络节点再分别进行z＝5回合的数据位元调整，如此，AMI服务器总共仅需进行5+5x3＝20回合的数据位元调整便可达到同样的加密功效。However, through the two-stage encryption of the present invention, the AMI server can first use the primary key to perform y=5 rounds of data bit adjustments for the message to obtain the preliminary ciphertext, and then, when the AMI server intends to calculate three AMI network nodes When encrypting the key message, the AMI server can directly use the preliminary ciphertext that has undergone 5 rounds of data bit adjustment, and then perform z=5 rounds of data bit adjustment for the three AMI network nodes. In this way, the AMI server can only The same encryption effect can be achieved by performing 5+5x3=20 rounds of data bit adjustment.

本发明的一第三实施例为一消息广播方法，其流程图请参考图3。第三实施例的方法用于一AMI网络系统(例如前述实施例的AMI网络系统1)及其所包含的一AMI服务器以及至少一AMI网络节点(如前述实施例的AMI服务器11以及AMI网络节点13)。第三实施例的详细步骤如下所述。A third embodiment of the present invention is a message broadcasting method, and its flow chart please refer to FIG. 3 . The method of the third embodiment is used in an AMI network system (such as the AMI network system 1 of the foregoing embodiment) and an AMI server and at least one AMI network node included therein (such as the AMI server 11 and the AMI network node of the foregoing embodiment) 13). The detailed steps of the third embodiment are as follows.

首先，执行步骤301，令该AMI服务器针对一广播消息，通过一杂凑函数产生一广播金钥。执行步骤302，令该AMI服务器利用该广播金钥将该广播消息加密为一加密广播消息。执行步骤303，令该AMI服务器利用相应于该至少一AMI网络节点的至少一对称金钥，将该广播金钥加密为至少一加密金钥消息。执行步骤304，令该AMI服务器将该加密广播消息以及该至少一加密金钥消息广播至该至少一AMI网络节点。执行步骤305，令该至少一AMI网络节点利用该至少一对称金钥将该至少一加密金钥解密为该广播金钥。First, step 301 is executed to enable the AMI server to generate a broadcast key through a hash function for a broadcast message. Step 302 is executed to enable the AMI server to use the broadcast key to encrypt the broadcast message into an encrypted broadcast message. Step 303 is executed to enable the AMI server to use at least one symmetric key corresponding to the at least one AMI network node to encrypt the broadcast key into at least one encrypted key message. Step 304 is executed to enable the AMI server to broadcast the encrypted broadcast message and the at least one encrypted key message to the at least one AMI network node. Step 305 is executed to enable the at least one AMI network node to use the at least one symmetric key to decrypt the at least one encrypted key into the broadcast key.

接着，执行步骤306，令该至少一AMI网络节点利用该广播金钥将该加密广播消息解密为该广播消息。执行步骤307，令该至少一AMI网络节点于利用该杂凑函数判断该广播消息是否对应该广播金钥，若对应，表示该广播消息具正确性，则执行步骤308，处理该广播消息，若不对应，则表示该广播消息可能遭到窜改，则执行步骤309，忽略该广播消息。Next, step 306 is executed to enable the at least one AMI network node to decrypt the encrypted broadcast message into the broadcast message by using the broadcast key. Execute step 307, make the at least one AMI network node use the hash function to judge whether the broadcast message corresponds to the broadcast key, if yes, it means that the broadcast message is correct, then perform step 308, process the broadcast message, if not If it is corresponding, it means that the broadcast message may be tampered with, and step 309 is executed to ignore the broadcast message.

同样地，为增加该广播消息与该广播金钥配对性的强度，则可于产生该广播金钥时加入乱数参数的应用。具体而言，步骤301中，该AMI服务器更可针对该广播消息，通过该杂凑函数以及一乱数参数产生该广播金钥，而步骤302中，该AMI服务器便可利用该广播金钥将该广播消息以及该乱数参数加密为该加密广播消息。Similarly, in order to increase the matching strength between the broadcast message and the broadcast key, random number parameters can be added when generating the broadcast key. Specifically, in step 301, the AMI server can further generate the broadcast key through the hash function and a random number parameter for the broadcast message, and in step 302, the AMI server can use the broadcast key to broadcast the broadcast message The message and the nonce parameter are encrypted into the encrypted broadcast message.

据此，步骤306中，该至少一AMI网络节点则可利用该广播金钥将该加密广播消息解密为该广播消息以及该乱数参数，而步骤307中，该至少一AMI网络节点便可于利用该杂凑函数以及该乱数参数判断该广播消息对应于该广播金钥后，处理该广播消息。如此一来，由于该乱数参数具有随机性质，因此，该广播消息与该广播金钥的配对将因为该乱数参数的加入而具有更高的不可预测性。Accordingly, in step 306, the at least one AMI network node can use the broadcast key to decrypt the encrypted broadcast message into the broadcast message and the random parameter, and in step 307, the at least one AMI network node can use After the hash function and the random parameter determine that the broadcast message corresponds to the broadcast key, the broadcast message is processed. In this way, due to the randomness of the random number parameter, the pairing of the broadcast message and the broadcast key will have higher unpredictability due to the addition of the random number parameter.

本发明的一第四实施例为一消息广播方法，其流程图请参考图4。第四实施例的方法用于一AMI网络系统(例如前述实施例的AMI网络系统2)及其所包含的一AMI服务器以及至少一AMI网络节点(如前述实施例的AMI服务器11以及AMI网络节点13a、13b、13c)。第四实施例的详细步骤如下所述。A fourth embodiment of the present invention is a message broadcasting method, the flowchart of which please refer to FIG. 4 . The method of the fourth embodiment is used in an AMI network system (such as the AMI network system 2 of the foregoing embodiment) and an AMI server and at least one AMI network node included therein (such as the AMI server 11 and the AMI network node of the foregoing embodiment) 13a, 13b, 13c). The detailed steps of the fourth embodiment are as follows.

首先，执行步骤401，令该AMI服务器针对一广播消息，通过一杂凑函数产生一广播金钥。执行步骤402，令该AMI服务器利用该广播金钥将该广播消息加密为一加密广播消息。执行步骤403，令该AMI服务器利用一初阶密钥将该广播金钥转换为一第一初步密文。执行步骤404，令该AMI服务器利用相应于该至少一AMI网络节点的该至少一对称金钥将该第一初步密文转换成该至少一加密金钥消息。First, step 401 is executed to enable the AMI server to generate a broadcast key through a hash function for a broadcast message. Step 402 is executed to enable the AMI server to use the broadcast key to encrypt the broadcast message into an encrypted broadcast message. Step 403 is executed to enable the AMI server to use a preliminary key to convert the broadcast key into a first preliminary ciphertext. Step 404 is executed to enable the AMI server to convert the first preliminary ciphertext into the at least one encrypted key message by using the at least one symmetric key corresponding to the at least one AMI network node.

接着，执行步骤405，令该AMI服务器将该加密广播消息以及该至少一加密金钥消息广播至该至少一AMI网络节点。执行步骤406，令该至少一AMI网络节点利用该初阶金钥将该加密金钥消息转换成一第二初步密文。执行步骤407，令该至少一AMI网络节点利用该对称金钥将该第二初步密文转换成该广播金钥。Next, step 405 is executed to enable the AMI server to broadcast the encrypted broadcast message and the at least one encrypted key message to the at least one AMI network node. Step 406 is executed to enable the at least one AMI network node to convert the encrypted key message into a second preliminary ciphertext by using the preliminary key. Step 407 is executed to enable the at least one AMI network node to use the symmetric key to convert the second preliminary ciphertext into the broadcast key.

随即，执行步骤408，令该至少一AMI网络节点利用该广播金钥将该加密广播消息解密为该广播消息。执行步骤409，令该至少一AMI网络节点于利用该杂凑函数判断该广播消息是否对应该广播金钥，若对应，表示该广播消息具正确性，则执行步骤410，处理该广播消息，若不对应，则表示该广播消息可能遭到窜改，则执行步骤411，忽略该广播消息。Then, step 408 is executed to enable the at least one AMI network node to decrypt the encrypted broadcast message into the broadcast message by using the broadcast key. Execute step 409, make the at least one AMI network node judge whether the broadcast message corresponds to the broadcast key by using the hash function, if yes, it means that the broadcast message is correct, then execute step 410, process the broadcast message, if not If it is corresponding, it means that the broadcast message may be tampered with, and step 411 is executed to ignore the broadcast message.

综上所述，本发明的AMI服务器、AMI网络节点、AMI网络系统及其消息广播方法，将得以更具安全性且更有效率的方式完成网络消息的传递，以确保AMI网络系统的运作正常。In summary, the AMI server, AMI network node, AMI network system and message broadcasting method of the present invention will be able to complete the transmission of network messages in a more secure and efficient manner, so as to ensure the normal operation of the AMI network system .

惟上述实施例仅为例示性说明本发明的实施方面，以及阐释本发明的技术特征，并非用来限制本发明的保护范畴。任何熟悉此技艺的人士可轻易完成的改变或均等性的安排均属于本发明所主张的范围，本发明的权利保护范围应以权利要求书为准。However, the above-mentioned embodiments are only for illustrating the implementation aspects of the present invention and explaining the technical features of the present invention, and are not intended to limit the scope of protection of the present invention. Any change or equivalence arrangement that can be easily accomplished by any person familiar with the art belongs to the scope of the present invention, and the protection scope of the present invention should be determined by the claims.