Open Supervised Device Protocol (OSDP) 总结

最新推荐文章于 2024-06-22 09:47:59 发布
置顶 最新推荐文章于 2024-06-22 09:47:59 发布
阅读量5.6k 收藏 11
点赞数 2
分类专栏: 开发分享 文章标签: 其他 c语言
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/xiyuan255/article/details/107173842
版权

简介性资料

What Is OSDP?

开放监视设备协议(OSDP)是安全行业协会(SIA)为提高访问控制和安全产品之间的互操作性而开发的访问控制通信标准。OSDP v2.1.7目前正在成为美国国家标准协会(ANSI)认可的标准,并且OSDP正在不断改进以保持行业领先地位。

Benefits of OSDP

与普通的低安全性传统协议相比,新兴的OSDP标准提供:

  1. 安全性更高
  1. OSDP比最常见的访问控制通信协议更安全。
  2. OSDP安全通道支持高端AES-128加密
  3. OSDP持续监控布线以防范攻击威胁。
  1. 高级功能
  1. 支持先进的智能卡技术应用,包括PKI / FICAM和生物识别技术
  2. 支持设备之间的双向通信
  3. OSDP支持高级用户界面,包括欢迎消息和文本提示。
  4. OSDP使用2线而不是12线允许多点安装,监控连接以指示读卡器故障,以及连接更多现场设备的可扩展性
  1. 使用方便
  1. 视听用户反馈机制提供丰富的,以用户为中心的访问控制环境。
  2. 由于预定义了加密和身份验证,因此消除了猜测。
  3. 嵌入式设备的低成本实施。
  1. 更多互操作性
  1. 使用OSDP可以实现不同制造商的设备和解决方案之间的通信
  2. 该标准适用于外设设备(PD),如读卡器和连接安全的门及其控制面板(CP)上的其他设备。
  3. SIA在制造商和InteropFest的常规“plugfest”中推广标准 - 每年春天在内华达州拉斯维加斯举行的ISC West展会上举办的年度互操作性活动。
  4. 当TCP / IP,USB或其他常见协议不适合应用程序时,建议使用OSDP规范。
  5. OSDP规范可扩展到IP环境,OSDP WG正在努力尽快部署基于IP的OSDP。

 

所有消息,无论来源如何,都共享相同的结构。

字节

名称

含义

0

SOM

消息开始

0x53

1

ADDR

物理地址

0x00 - 0x7E

(0x7F可配置)

2

LEN_LSB

数据包长度低字节

 

3

LEN_MSB

数据包长度高字节

 
最低0.47元/天 解锁文章
CetXiyuan
关注
  • 2
    点赞
  • 11
    收藏
    觉得还不错? 一键收藏
  • 2
    评论
专栏目录
p6s与onvif_ONVIF与安全协会联手推门禁接口标准
weixin_30407555的博客
12-23 452
【中国安防展览网 企业关注】昨天我们还在说高清网络监控的标准在ONVIF在与PSIA协议、GB/T28181竞争中不负众望,成为现如今的主要标准。近日,我们就发现,原来,ONVIF不仅在网络视频监控行业统一标准,现在已经将矛头指向了门禁行业。日前,ONVIF和安全产业协会(Security Industry Association,SIA)签署一份备忘录,双方将合作推动基于IP的门禁互通标准发展。...
OSDP2 1.7 Final Draft
12-06
OSDP:英文全称Open Supervised Device Protocol,意为:“公开监控设备协议”。美国半导体业协会(SIA)的下属委员会“门禁控制和身份认证委员会”审查通过OSDP协议,OSDP协议将成为SIA的标准协议。
Device Provisioning Protocol v1.0
12-05
Table of contents 1 INTRODUCTION .......................................................................................................................................................... 8 1.1 Scope ............................................................................................................................................................ 8 1.2 References.................................................................................................................................................... 8 1.3 Definitions and acronyms............................................................................................................................ 10 1.3.1 Shall/should/may/might word usage .............................................................................................. 10 1.3.2 Conventions ................................................................................................................................... 10 1.3.3 Abbreviations and acronyms.......................................................................................................... 11 1.3.4 Definitions ...................................................................................................................................... 12 1.3.5 Symbols ......................................................................................................................................... 13 1.4 Architecture ................................................................................................................................................. 14 1.5 Device roles ................................................................................................................................................ 14 1.5.1 Authentication roles........................................................................................................................ 14 1.5.2 Configurator delegation.................................................................................................................. 15 1.6 Security considerations............................................................................................................................... 15 1.6.1 Overview ........................................................................................................................................ 15 1.6.2 Threat profile .................................................................................................................................. 15 1.6.3 Trust model .................................................................................................................................... 18 2 DPP PROTOCOL USAGE.......................................................................................................................................... 20 2.1 Overview ..................................................................................................................................................... 20 2.2 Infrastructure setup and connectivity .......................................................................................................... 20 2.2.1 AP configuration............................................................................................................................. 20 2.2.2 STA configuration........................................................................................................................... 20 2.2.3 Infrastructure connectivity .............................................................................................................. 20 2.2.4 Message flows for infrastructure connectivity ................................................................................ 20 2.3 Wi-Fi Direct ................................................................................................................................................. 23 2.3.1 Establishing a P2P group using DPP............................................................................................. 24 2.3.2 P2P Group operation ..................................................................................................................... 26 3 SECURITY.................................................................................................................................................................. 27 3.1 Properties.................................................................................................................................................... 27 3.2 Public key cryptography.............................................................................................................................. 27 3.2.1 Supported public key cryptosystem ............................................................................................... 27 3.2.2 Notation.......................................................................................................................................... 27 3.2.3 Cryptographic suites ...................................................................................................................... 28 3.2.4 Point representation....................................................................................................................... 28 4 DATA STRUCTURES................................................................................................................................................. 29 4.1 Public keys .................................................................................................................................................. 29 4.2 Connectors.................................................................................................................................................. 29 4.3 DPP Configuration object............................................................................................................................ 30 4.3.1 Wi-Fi Technology ........................................................................................................................... 30 4.3.2 DPP Discovery ............................................................................................................................... 30 4.3.3 DPP Credential .............................................................................................................................. 30 5 BOOTSTRAPPING OF TRUST.................................................................................................................................. 32 5.1 Overview ..................................................................................................................................................... 32 5.2 Bootstrapping information ........................................................................................................................... 32 5.2.1 Bootstrapping information format................................................................................................... 32 5.3 Scanning a QR code................................................................................................................................... 33 5.4 NFC............................................................................................................................................................. 34 5.4.1 Overview ........................................................................................................................................ 34 5.4.2 NFC Connection Handover............................................................................................................ 35 5.4.3 DPP bootstrapping via NFC URI record ........................................................................................ 37 5.5 Bluetooth ..................................................................................................................................................... 38 5.5.1 Overview ........................................................................................................................................ 38 5.5.2 Responder procedures .................................................................................................................. 40 5.5.3 Initiator procedures ........................................................................................................................ 40 Device Provisioning Protocol Specification v1.0 © 2018 Wi-Fi Alliance. All Rights Reserved. Used with the permission of Wi-Fi Alliance under the terms as stated in this document. Page 4 of 124 5.6 PKEX: Proof of knowledge of a shared code, key, phrase, or word...........................................................41 5.6.1 PKEX preliminaries ........................................................................................................................ 41 5.6.2 PKEX exchange phase .................................................................................................................. 42 5.6.3 PKEX commit-reveal phase ........................................................................................................... 43 6 DPP AUTHENTICATION............................................................................................................................................ 45 6.1 Overview ..................................................................................................................................................... 45 6.2 DPP Authentication protocol ....................................................................................................................... 45 6.2.1 DPP capabilities negotiation .......................................................................................................... 46 6.2.2 DPP authentication request ........................................................................................................... 47 6.2.3 DPP authentication response ........................................................................................................ 47 6.2.4 DPP authentication confirm ........................................................................................................... 49 6.3 DPP Configuration protocol ........................................................................................................................ 50 6.3.1 Overview ........................................................................................................................................ 50 6.3.2 DPP configuration request ............................................................................................................. 50 6.3.3 DPP configuration response .......................................................................................................... 51 6.3.4 DPP Configuration Attributes object .............................................................................................. 51 6.3.5 Connector....................................................................................................................................... 52 6.3.6 DPP Configuration object............................................................................................................... 53 6.4 Network introduction protocol ..................................................................................................................... 55 6.4.1 Introduction .................................................................................................................................... 55 6.4.2 Connector group comparison......................................................................................................... 56 6.5 Network access protocols ........................................................................................................................... 56 7 STATE MACHINES .................................................................................................................................................... 57 7.1 Initiator state machine................................................................................................................................. 57 7.1.1 States ............................................................................................................................................. 57 7.1.2 Events and output .......................................................................................................................... 57 7.1.3 Variables ........................................................................................................................................ 57 7.1.4 Parent process behavior ................................................................................................................ 57 7.1.5 State machine behavior ................................................................................................................. 57 7.2 Responder state machine ........................................................................................................................... 59 7.2.1 States ............................................................................................................................................. 59 7.2.2 Events and output .......................................................................................................................... 59 7.2.3 Variables ........................................................................................................................................ 59 7.2.4 State machine behavior ................................................................................................................. 60 7.3 Configurator state machine......................................................................................................................... 62 7.3.1 States ............................................................................................................................................. 62 7.3.2 Events and output .......................................................................................................................... 62 7.3.3 Variables ........................................................................................................................................ 62 7.3.4 Parent process behavior ................................................................................................................ 62 7.3.5 State machine behavior ................................................................................................................. 62 7.4 Enrollee state machine................................................................................................................................ 64 7.4.1 States ............................................................................................................................................. 64 7.4.2 Events and output .......................................................................................................................... 64 7.4.3 Variables ........................................................................................................................................ 64 7.4.4 State machine behavior ................................................................................................................. 64 7.5 Detailed protocol description....................................................................................................................... 66 7.5.1 DPP bootstrapping......................................................................................................................... 66 7.5.2 DPP authentication exchange........................................................................................................ 66 7.5.3 DPP configuration exchange ......................................................................................................... 68 7.5.4 DPP network introduction exchange.............................................................................................. 69 7.5.5 Network access.............................................................................................................................. 70 8 DPP ATTRIBUTE, FRAME, AND ELEMENT FORMATS .......................................................................................... 71 8.1 DPP attributes ............................................................................................................................................. 71 8.1.1 DPP attribute body field definitions................................................................................................ 72 8.2 DPP frames................................................................................................................................................. 74 8.2.1 DPP Public Action frames.............................................................................................................. 74 8.2.2 DPP Generic Advertisement Service (GAS) frames...................................................................... 78 Device Provisioning Protocol Specification v1.0 © 2018 Wi-Fi Alliance. All Rights Reserved. Used with the permission of Wi-Fi Alliance under the terms as stated in this document. Page 5 of 124 8.3 DPP status and error codes........................................................................................................................ 81 8.4 Network Introduction protocol elements...................................................................................................... 82 8.4.1 Overview ........................................................................................................................................ 82 8.4.2 Network Introduction protocol AKM suite....................................................................................... 82 9 DPP CONFIGURATION BACKUP AND RESTORE.................................................................................................. 83 9.1 Overview ..................................................................................................................................................... 83 9.2 DPP AsymmetricKeyPackage..................................................................................................................... 83 9.3 DPPEnvelopedData .................................................................................................................................... 84 9.3.1 DPPAsymmetricKeyPackage encryption....................................................................................... 86 9.3.2 DPPEnvelopedData decryption ..................................................................................................... 86 9.4 DPP configuration backup .......................................................................................................................... 86 9.5 DPP configuration restore........................................................................................................................... 86 9.6 Enabling multiple Configurators in DPP...................................................................................................... 87 APPENDIX A (INFORMATIVE) TEST VECTORS ............................................................................................................ 88 A.1 Test vectors for DPP Authentication using P-256 for mutual authentication..............................................88 A.2 Test vectors for DPP Authentication using P-256 for Responder-only authentication ...............................91 A.3 Test vectors for DPP Authentication using P-384 for mutual authentication..............................................94 A.4 Test vectors for DPP Authentication using P-521 for mutual authentication..............................................98 A.5 Test vectors for DPP Authentication using Brainpool P-256r1 for mutual authentication ........................103 A.6 Test vectors for DPP Authentication using Brainpool P-384r1 using mutual authentication....................106 A.7 A.7 Test vectors for DPP Authentication using Brainpool P-512r1 for mutual authentication ..................110 APPENDIX B ROLE-SPECIFIC ELEMENTS FOR PKEX............................................................................................... 115 B.1 Role-specific elements for NIST p256 ...................................................................................................... 115 B.2 Role-specific elements for NIST p384 ...................................................................................................... 115 B.3 Role-specific elements for NIST p521 ...................................................................................................... 116 B.4 Role-specific elements for Brainpool p256r1 ............................................................................................ 117 B.5 Role-specific elements for Brainpool p384r1 ............................................................................................ 117 B.6 Role-specific elements for Brainpool p512r1 ............................................................................................ 118 APPENDIX C PKEX TEST VECTOR FOR NIST P256................................................................................................... 119 C.1 Initial state of Initiator and Responder ...................................................................................................... 119 C.2 Initiator generates PKEX Exchange Request frame................................................................................. 119 C.3 Responder processes PKEX Exchange Request frame........................................................................... 120 C.4 Responder generates PKEX Exchange Response frame ........................................................................ 120 C.5 Initiator processess PKEX Exchange Response frame............................................................................ 121 C.6 Initiator generates PKEX Commit/Reveal request.................................................................................... 121 C.7 Responder processes PKEX Commit/Reveal Request frame.................................................................. 122 C.8 Responder generates PKEX Commit/Reveal Response frame................................................................ 123 C.9 Initiator processes PKEX Commit/Reveal Response frame..................................................................... 124
Open Supervised Device Protocol (OSDP)协议
02-08
门禁行业
linux下的线程池的实现
xiyuan255的博客
07-08 163
/* * File name : cetthreadpool.c * * Created on : 2020年5月13日 17:02:20 * Author : Firmware of xiyuan255 * Version : 2.0 * Language : C * Copyright : Copyright (C) 2019, xiyuan255 Inc. * */ #include <stdio.h> #include <stdlib.h> #inc.
OSPF协议
lq_ioi_pl的博客
01-10 113
OSPF
推荐项目: LibOSDP - 开源安全设备通信库
最新发布
gitblog_00022的博客
06-22 506
推荐项目: LibOSDP - 开源安全设备通信库 项目地址:https://gitcode.com/goToMain/libosdp 在当今复杂的网络安全环境中,确保设备间的安全通信成为了一项至关重要的任务。对于那些专注于访问控制和安防产品的开发者们来说,LibOSDP无疑是一个强大的工具箱,它基于IEC 60839-11-5标准的开放式监督设备协议(OSDP),旨在提升不同品牌产品间的互操作性...
无线传感网络MAC协议:R-MAC
qq_39211215的博客
03-27 1163
为了满足无线传感器网络对能量的要求,人们提出了占空比MAC协议.虽然现有的占空比MAC协议,如S-MAC是节能的,但是它们造成了显著的端到端延迟问题,并在解决流量争用问题中有较差的性能。在本文中,我们提出了一种新的占空比MAC协议RMAC(路由增强MAC协议),利用交叉层路由信息方法在不牺牲能量效率的同时来避免这些问题。在RMAC中,一个设置控制帧可以跨越多个跳点,并沿着这条路线调度对即将到来的数据包传送。沿着这些跳的每个中间中继节点在预定的时间休眠和智能唤醒数据包,以便它的上游节点可以发送数据包给它,它可
如何建立安全通道
啊浪的博客
06-05 6637
建立安全通道遇到的问题钓鱼、木马(神都救不了你,赶紧改密码吧)脱裤、撞库(祈祷别人不是存明文密码吧)暴力破解(如彩虹表、简单密码暴力破解)重放、伪造登录窃听(伪造服务器、伪造客户端、中间人攻击)前向安全如何设计一个安全的登录过程第一阶段(裸奔)数据库直接存储密码、请求包、回包均为明文且带上了密码和key。解决不了上面的任务问题,登录设计的所有大忌均犯了。第二阶段(简单加密)请求包和回包使用密...
【程序1】题目:古典问题:有一对兔子,从出生后第3个月起每个月都生一对兔子, 小兔子长到第三个月后每个月又生一对兔子,假如兔子都不死, 问每个月的兔子对数为多少?
xiyuan255的博客
03-13 1万+
/* 【 java基础50道经典练习题 】 中的每个题目的都有两份软体:其中第一份软体为本人所写或参考所写, *  第二份软体为网上材料答案,非本人所写,只是转载,两份软体均测试过可用!! */ /* /* 2017年2月15日13:32:10 java基础50道经典练习题 例1 Author: ZJY Purpose: 菲波拉契数列应用 【程序1】 题目:古典问题:有一
Supervised learning
07-18
Supervised Learning Supervised learning是一种机器学习算法,在该算法中,我们预先知道每个样本的标签,以便模型可以学习how to map the input to the correct output。这种类型的学习算法是最常见的机器学习算法...
libosdp-conformance-guide_osdp_
09-28
标题中的“libosdp-conformance-guide_osdp_”暗示了一个关于OSDPOpen Supervised Device Protocol)的合规性指南,而“libosdp”可能是一个与OSDP协议相关的开源库。描述中的“conference hamdam gol nemishavad...
好用实用的 串口助手(QT)
xiyuan255的博客
06-09 218
自己用QT编写的串口助手 漂亮好用
SSDP 简单服务发现协议
热门推荐
lilypp的专栏
07-26 4万+
【参考】http://www.cnblogs.com/debin/archive/2009/12/01/1614543.html
RIP/BGP/OSPF 比较
liuhongxian的专栏
02-12 5128
http://bbs.c114.net/thread-376129-1-1.html RIP( Routing Information Protocol )路由信息协议:是在一个AS系统中使用地内部路由选择协议,是个非常简单的基于距离向量路由选择的协议。 它路由器生产商之间使用的第一个开放标准,是最广泛的路由协议,在所有IP路由平台上都可以得到。当使用RIP时,一台Cisco路由器可以与其他
GlobalPlatform Technology Secure Channel Protocol ‘03‘ 标准 - 安全通道协议简介
mmmx777的专栏
04-24 4346
按照GlobalPlatform Technology Secure Channel Protocol '03' (SCP03)标准,描述了如何利用S-MAC,S-RMAC,S-ENC进行安全通信的过程。
Sensor (draft)
weixin_33913332的博客
04-06 98
1.sensor type TYPE_ACCELEROMETER=1 TYPE_MAGNETIC_FIELD=2 (what's value mean at x and z axis) TYPE_ORIENTATION=3 TYPE_GYROSCOPE=4 TYPE_LIGHT=5(in ) TYPE_PRESSURE=6 TYPE_TEMPERATURE=7 TYPE_PROXIMITY=8...
UEFI Spec chapter10 protocols-Device Path Protocol
china_seaman的博客
02-07 1097
提示:文章写完后,目录可以自动生成,如何生成可参考右边的帮助文档 文章目录 前言 一、pandas是什么? 二、使用步骤 1.引入库 2.读入数据 总结 前言 本节包含设备路径协议的定义,以及在UEFI环境中构建和管理设备路径所需的信息。固件构造并使用设备路径来传递重要设备的位置,如引导设备和控制台,这与系统的软件可见拓扑结构一致。 提示:以下是本篇文章正文内容,下面案例可供参考 一、Device Path Overview 设备路径用于定义到设备的编程路径。设备路
QT属性动画--设置样式属性(其他属性)
lizequan的博客
03-02 5203
这里写自定义目录标题故事背景遇到的问题解决过程最终方法感悟 故事背景   最近在制作一个按钮切换的动画特效中接触了属性动画这部分内容,并由此产生了一些思考。 遇到的问题 解决过程 最终方法 感悟 ...
osdp 协议实现 代码
01-03
OSDPOpen Supervised Device Protocol)协议是一种用于安全存取控制系统的通信协议,它使用加密和认证技术保护通信安全。OSDP协议实现代码需要包括消息的组装和解析、加密和认证算法、通信协议的处理等功能模块。 首先,实现代码需要包括OSDP消息的组装和解析模块。这些模块负责将待发送的数据按照OSDP协议的格式组装成消息,并将接收到的消息按照协议格式进行解析,提取其中的信息。 其次,加密和认证算法是OSDP协议的重要组成部分,实现代码需要包括相关的算法模块。例如,采用AES加密算法对消息进行加密,使用HMAC算法对消息进行认证,确保通信内容的机密性和完整性。 此外,通信协议处理模块也是OSDP协议实现代码中的关键部分。它负责建立与读卡器或门禁设备的通信连接,发送和接收消息,并对通信异常进行处理。 最后,为了提高代码的可维护性和可扩展性,实现代码应该包括适当的异常处理、日志记录和配置管理等功能。 总之,OSDP协议实现代码需要包括消息的组装和解析、加密和认证算法、通信协议处理等功能模块,以确保安全存取控制系统的通信安全。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论 2
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值