IoT IoT DUAL DIRECTION IoT SECURITY ACCESS CONTROL SYSTEM USING SIGNATURE REGISTRATION MECHANISM OF IoT DEVICE AND HYBRID PUBLIC KEY ENCRYPTION SCHEME AND CONTROL METHOD THEROF

摘要

The present invention relates to a bidirectional IoT security access control system using a registering method of signature information of IoT devices, and a hybrid public key encryption authenticating technique, and a control method thereof. More specifically, an IoT access control system, which connects, in wired/wireless networks, IoT devices to network data storage devices where data generated in the IoT devices are stored, comprises an IoT device security operating server comprising: a signature information generating unit which generates signature information which is an unique feature value of the IoT device; a signature information storage unit which corresponds the signature information of the IoT device generated in the signature information generating unit to an IP address of the IoT device to store the same as a mapping table; a signature information examining unit which checks the signature information of the IoT device in real time; and a network control unit which, when the signature information examining unit senses whether the signature information is changed or not, controls a network connection state of data packets between the IoT devices and the network data storage devices. If the IoT device security operating server connects to the IoT device for changing a setting value of the IoT device, a hybrid public key encryption authenticating technique is used. The purpose of the present invention is to prevent an attacker disguised as an IoT device from accessing a network data storage device where data generated in the IoT device is stored, and to prevent an attacker disguised as an IoT device operating server from accessing an IoT device.