CN101951403A - Classification-based centralized authentication and authorization method in information terminal - Google Patents

Classification-based centralized authentication and authorization method in information terminal Download PDF

Info

Publication number
CN101951403A
CN101951403A CN2010102842114A CN201010284211A CN101951403A CN 101951403 A CN101951403 A CN 101951403A CN 2010102842114 A CN2010102842114 A CN 2010102842114A CN 201010284211 A CN201010284211 A CN 201010284211A CN 101951403 A CN101951403 A CN 101951403A
Authority
CN
China
Prior art keywords
authentication
information terminal
centralized
control device
priority
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN2010102842114A
Other languages
Chinese (zh)
Inventor
魏巍
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN2010102842114A priority Critical patent/CN101951403A/en
Publication of CN101951403A publication Critical patent/CN101951403A/en
Priority to PCT/CN2011/071158 priority patent/WO2012034377A1/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • H04L63/205Network architectures or network communication protocols for network security for managing network security; network security policies in general involving negotiation or determination of the one or more network security mechanisms to be used, e.g. by negotiation between the client and the server or between peers or by selection according to the capabilities of the entities involved

Abstract

The invention discloses a classification-based centralized authentication and authorization method in an information terminal. A centralized authentication and authorization controller is arranged in the information terminal, divides priorities for authentication and authorization of modules and users in the information terminal and draws a centralized classification authentication and authorization management list according to the authentication and authorization priorities; and the information terminal controls the authentication and authorization of the users in the information terminal according to a priority sequence of the centralized authentication and authorization controller. The method effectively processes authentication and authorization requests of users between different modules and in the same module in a home information machine, while the high-priority authentication and authorization requests are met and the performance and the service requirements thereof are improved.

Description

In a kind of information terminal based on the centralized authentication and the authorization method of classification
Technical field
The present invention relates to communication technical field, relate in particular in a kind of information terminal centralized authentication and authorization method based on classification.
Background technology
Domestic information machine is a kind of information terminal that is produced down in the 3G epoch, it has merged mobile phone, phone, information, the broadband, a kind of information terminal system of multiple functions such as family's security protection is the effect of one to reach " basic conversation, information service, broadband service, family's security protection, Smart Home control ".
Telephony feature: can dial, receive calls, the transmitting-receiving note.The 3G home terminal is similar to a 3G mobile that can be placed in family, can enjoy and the 3G mobile identical functions after the insertion 3G number SIM card.
Function of surfing the Net: along with the expansion of mobile 3G network, the raising of bandwidth, speed makes the wireless Internet access video tour lighter, quick.
Safety protection function: after loading onto a magnetic and Infrared Detectors, can realize the wireless remote safety protection function.When robber invasion appears, accident is caught fire or situation such as gas leak, the family information chance sends to warning message on the mobile phone that sets in advance, and allows owner in time learn and handles it.Pager can also instruct according to owner and take real-time video picture among the player whose turn comes next, and is dealt in the master cellular phone, for later evidence obtaining.
Video monitoring function: can watch the situation in the family whenever and wherever possible;
Smart Home function: can realize household Remote function.Terminal can be by being arranged on the wireless remote control head and the wireless intelligent switch in each corner of family, and arbitrarily any electric equipment of remote control family is changed television channel, adjusted various operations such as air-conditioner temperature or switch room electric light.Simultaneously, owner can also continue the various appliance switches of " control " family by the editing mobile phone note outside.
The tele-medicine function: patient can pass to situations such as blood pressure, body temperature on the corresponding platform of hospital by domestic information terminal, carries out tele-medicine.
Learning recreation function: English learning, play games, mp4, DPF, take a picture etc.
Other function: can realize speculation in stocks, gate inhibition's intercommunication, functions such as estate management.
3G notion: 3G refers to third generation digital communication.The 3G wireless network must can be supported different data transmission baudss, that is to say the transmission speed that in the environment of indoor, outdoor and driving, can support 2Mbps (Mbytes/per second), 384kbps (kilobytes/per second) at least and 144kbps respectively, be referred to as in the industry " broadband in the mobile phone ".
Summary of the invention
The objective of the invention is for addressing the above problem, and in a kind of information terminal that proposes based on the centralized authentication and the authorization method of classification.
For achieving the above object, the invention provides in a kind of information terminal, centralized authentication and authorization control device are set in information terminal based on the centralized authentication and the authorization method of classification; Described centralized authentication and authorization control device are to module in the information terminal and user's authentication and mandate prioritization; Described centralized authentication and authorization control device are made centralized classification authentication and empowerment management tabulation according to described authentication with authorizing priority; Described information terminal is according to authentication and the mandate of user in the priority orders control information terminal of centralized authentication and authorization control device.
Further, described centralized authentication specifically comprises with the authentication and the mandate prioritization of authorization control device to module in the information terminal and user: described centralized authentication and authorization control device are to the authentication and mandate prioritization of the different module in the information terminal, and centralized authentication and authorization control device are to users' dissimilar in the equal modules in the information terminal authentication and mandate prioritization.
Further, described centralized authentication and authorization control device according to described authentication with authorize priority to make centralized classification authentication specifically to comprise with the empowerment management tabulation: described centralized authentication and authorization control device according to the disparate modules authentication with authorize authentication of priority and equal modules and mandate priority to make centralized classification authentication and empowerment management is tabulated.
Further, described information terminal comprises according to authentication and the mandate of user in the priority orders control information terminal of centralized authentication and authorization control device: described information terminal is according to authentication and the mandate of user under disparate modules and the equal modules in the priority orders control information terminal of centralized authentication and authorization control device.
Further, described centralized authentication comprises with authorizing prioritization with the authentication of authorization control device to the different module in the information terminal: divide priority from high to low according to basic conversation, information service, broadband service, family's security protection, Smart Home control, when centralized authentication and authorization control device are received the authentication that comes from disparate modules and authorization requests simultaneously, will handle with authorizing priority order from high to low according to authentication.
Further, described centralized authentication and authorization control device comprise with authorizing prioritization users' dissimilar in the equal modules in the information terminal authentication: for telephony feature, according to the priority division priority from high to low that can dial, receive calls, receive and dispatch note, when centralized authentication and authorization control device are received the authentication that comes from the dissimilar users of equal modules and authorization requests simultaneously, will handle with authorizing priority order from high to low according to authentication.
Further, described centralized authentication and authorization control device are formulated a Policy List at user and module, and the user divides keeper, domestic consumer's end, guest user's end; Module is divided into basic conversation, information service, broadband service, family's security protection, Smart Home control.
Further, described centralized authentication and authorization control device are made centralized classification authentication and empowerment management tabulation with authorizing the authentication of priority and equal modules with authorizing priority according to the disparate modules authentication.
Further, when in increase/removing module and/or the equal modules in the described information terminal when increase/deletion user or user type, two types priority can be static, semi-static, half dynamically, dynamic change.
Further, described information terminal comprises domestic information machine.
The invention has the beneficial effects as follows: can carry out centralized management the authentication and the mandate of all modules in the domestic information machine, when having reduced concurrent processing when authenticating between disparate modules simultaneously with authorization requests to the requirement of processor concurrent processing requirement complexity, simultaneously, the authentication of disparate modules and equal modules and the setting of authorizing priority and the setting of tabulation, increase substantially domestic information machine and handled the disposal ability of concurrent authentication and mandate, when satisfying high priority authentication and improving its performance and business demand, handled in the domestic information machine between disparate modules effectively and user's authentication and authorization requests in the equal modules with authorization requests.
Description of drawings
Fig. 1 is based on the centralized authentication and the authorization method realization flow schematic diagram of classification in the embodiment of the invention domestic information machine.
Embodiment
The present invention relates to mobile communications network, refer more particularly to information terminal,, unified management is carried out in the authentication and the mandate of disparate modules in the information terminal in information terminal by centralized authentication and authorization control device are set based on mobile communications network.At first, centralized authentication and of the authentication and mandate prioritization of authorization control device to different modules, for example, divide priority from high to low according to basic conversation, information service, broadband service, family's security protection, Smart Home control, but be not limited thereto, when centralized authentication and authorization control device are received the authentication that comes from disparate modules and authorization requests simultaneously, will handle with authorizing priority order from high to low according to authentication; Secondly, centralized authentication and authorization control device are to users' dissimilar in the equal modules authentication and mandate prioritization, for example, for telephony feature, according to dialing, receiving calls, the priority of transmitting-receiving note is divided priority from high to low, but is not limited thereto, when centralized authentication and authorization control device are received the authentication that comes from the dissimilar users of equal modules and authorization requests simultaneously, will handle with authorizing priority order from high to low according to authentication; Then, centralized authentication of domestic information machine and authorization control device are made centralized classification authentication and empowerment management tabulation with authorizing the authentication of priority and equal modules with authorizing priority according to the disparate modules authentication; At last, domestic information machine is controlled authentication and the licensing scheme of user under domestic information machine disparate modules and the equal modules according to the priority orders of centralized authentication and authorization control device.
Centralized authentication and authorization control device are formulated a Policy List at user and module, but control method is not limited thereto, and the user is divided into 3 grades, keeper, domestic consumer's end, guest user's end.Module is divided into basic conversation, information service, broadband service, family's security protection, Smart Home control etc., and is as shown in table 1.
Centralized authentication of table 1 and authorization control device strategy are provided with
Figure BSA00000273702500041
Centralized authentication of user type and authorization control device strategy
The keeper opens and controls all modules
Domestic consumer's end is opened basic conversation (not having roaming), information service, broadband service (website in the country), family's security protection, Smart Home control
The service of guest user's client information, broadband service (website in the country)
Centralized authentication and authorization control device are made centralized classification authentication and empowerment management tabulation with authorizing the authentication of priority and equal modules with authorizing priority according to the disparate modules authentication, when in increase/removing module in the information terminal and/or the equal modules when increase/deletion user or user type, two types priority can be static, semi-static, half dynamically, dynamic change, to satisfy authentication and the needs of authorizing in the information terminal.
Information terminal is according to authentication and the licensing scheme of user under the priority orders control information terminal disparate modules of centralized authentication and authorization control device and the equal modules, the authentication of disparate modules and equal modules and the setting of authorizing priority and the setting of tabulation, increase substantially information terminal and handled the disposal ability of concurrent authentication and mandate, when satisfying high priority authentication and improving its performance and business demand, handled in the information terminal between disparate modules effectively and user's authentication and authorization requests in the equal modules with authorization requests.
When the user authenticates with mandate in information terminal, order according to disparate modules priority, equal modules priority authenticates and authorizes in centralized authentication and authorization control device, when having reduced concurrent processing when authenticating between disparate modules simultaneously with authorization requests to the requirement of processor concurrent processing requirement complexity.
The present invention is described in further detail below in conjunction with accompanying drawing 1 and embodiment, and in this embodiment, described information terminal is that example describes centralized authentication and the authorization method based on classification in the information terminal with the domestic information machine.
In this embodiment, centralized authentication and the authorization method based on classification may further comprise the steps in the domestic information machine:
Step S101: centralized authentication and authorization control device are set in the domestic information machine, unified management is carried out in the authentication and the mandate of disparate modules in the domestic information machine;
Step S102: centralized authentication and of the authentication and mandate prioritization of authorization control device to different modules;
Step S103: centralized authentication and authorization control device are to user's prioritization dissimilar in the equal modules;
Step S104: centralized authentication and authorization control device are made centralized classification authentication and empowerment management tabulation with authorizing the authentication of priority and equal modules with authorizing priority according to the disparate modules authentication;
Step S105: domestic information machine is controlled authentication and the licensing scheme of user under domestic information machine disparate modules and the equal modules according to the priority orders of centralized authentication and authorization control device;
Step S106: the user authenticates in domestic information machine when authorizing, and authenticates and authorizes in centralized authentication and authorization control device according to the order of disparate modules priority, equal modules priority.
Setting by centralized authentication and authorization control device, can carry out centralized management to the authentication and the mandate of all modules in the domestic information machine, when having reduced concurrent processing when authenticating between disparate modules simultaneously with authorization requests to the requirement of processor concurrent processing requirement complexity, simultaneously, the authentication of disparate modules and equal modules and the setting of authorizing priority and the setting of tabulation, increase substantially domestic information machine and handled the disposal ability of concurrent authentication and mandate, when satisfying high priority authentication and improving its performance and business demand, handled in the domestic information machine between disparate modules effectively and user's authentication and authorization requests in the equal modules with authorization requests.
Described above only is preferred embodiments of the present invention; certainly can not limit interest field of the present invention with this; therefore; under the situation that does not deviate from spirit of the present invention and essence thereof; those of ordinary skill in the art can make various corresponding changes and distortion according to the present invention, but these corresponding changes and distortion all should belong to the protection range of the appended claim of the present invention.

Claims (10)

  1. In the information terminal based on the centralized authentication and the authorization method of classification, it is characterized in that: centralized authentication and authorization control device are set in information terminal; Described centralized authentication and authorization control device are to module in the information terminal and user's authentication and mandate prioritization; Described centralized authentication and authorization control device are made centralized classification authentication and empowerment management tabulation according to described authentication with authorizing priority; Described information terminal is according to authentication and the mandate of user in the priority orders control information terminal of centralized authentication and authorization control device.
  2. 2. the method for claim 1, it is characterized in that: described centralized authentication specifically comprises with the authentication and the mandate prioritization of authorization control device to module in the information terminal and user: described centralized authentication and authorization control device are to the authentication and mandate prioritization of the different module in the information terminal, and centralized authentication and authorization control device are to users' dissimilar in the equal modules in the information terminal authentication and mandate prioritization.
  3. 3. method as claimed in claim 2 is characterized in that: described centralized authentication and authorization control device make centralized classification authentication according to described authentication and mandate priority and the empowerment management tabulation specifically comprises: described centralized authentication and authorization control device authenticate with authorizing priority according to disparate modules authentication and mandate priority and equal modules and make centralized classification authentication and empowerment management tabulation.
  4. 4. method as claimed in claim 3 is characterized in that: described information terminal comprises according to authentication and the mandate of user in the priority orders control information terminal of centralized authentication and authorization control device: described information terminal is according to authentication and the mandate of user under disparate modules and the equal modules in the priority orders control information terminal of centralized authentication and authorization control device.
  5. 5. method as claimed in claim 2, it is characterized in that: described centralized authentication comprises with authorizing prioritization with the authentication of authorization control device to the different module in the information terminal: divide priority from high to low according to basic conversation, information service, broadband service, family's security protection, Smart Home control, when centralized authentication and authorization control device are received the authentication that comes from disparate modules and authorization requests simultaneously, will handle with authorizing priority order from high to low according to authentication.
  6. 6. method as claimed in claim 2, it is characterized in that: described centralized authentication and authorization control device comprise with authorizing prioritization users' dissimilar in the equal modules in the information terminal authentication: for telephony feature, according to the priority division priority from high to low that can dial, receive calls, receive and dispatch note, when centralized authentication and authorization control device are received the authentication that comes from the dissimilar users of equal modules and authorization requests simultaneously, will handle with authorizing priority order from high to low according to authentication.
  7. 7. as each described method in the claim 1 to 6, it is characterized in that: described centralized authentication and authorization control device are formulated a Policy List at user and module, and the user divides keeper, domestic consumer's end, guest user's end; Module is divided into basic conversation, information service, broadband service, family's security protection, Smart Home control.
  8. 8. method as claimed in claim 7 is characterized in that: described centralized authentication and authorization control device are made centralized classification authentication and empowerment management tabulation with authorizing the authentication of priority and equal modules with authorizing priority according to the disparate modules authentication.
  9. 9. method as claimed in claim 7, it is characterized in that: when in increase/removing module and/or the equal modules in the described information terminal when increase/deletion user or user type, two types priority can be static, semi-static, half dynamically, dynamic change.
  10. 10. as each described method of claim 1 to 6, it is characterized in that: described information terminal comprises domestic information machine.
CN2010102842114A 2010-09-16 2010-09-16 Classification-based centralized authentication and authorization method in information terminal Pending CN101951403A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN2010102842114A CN101951403A (en) 2010-09-16 2010-09-16 Classification-based centralized authentication and authorization method in information terminal
PCT/CN2011/071158 WO2012034377A1 (en) 2010-09-16 2011-02-22 Classification-based centralized authentication and authorization method in information terminal

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2010102842114A CN101951403A (en) 2010-09-16 2010-09-16 Classification-based centralized authentication and authorization method in information terminal

Publications (1)

Publication Number Publication Date
CN101951403A true CN101951403A (en) 2011-01-19

Family

ID=43454761

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2010102842114A Pending CN101951403A (en) 2010-09-16 2010-09-16 Classification-based centralized authentication and authorization method in information terminal

Country Status (2)

Country Link
CN (1) CN101951403A (en)
WO (1) WO2012034377A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102083060A (en) * 2011-01-24 2011-06-01 中兴通讯股份有限公司 Method and device for safety certification of family information machine
WO2012034377A1 (en) * 2010-09-16 2012-03-22 中兴通讯股份有限公司 Classification-based centralized authentication and authorization method in information terminal
CN102638796A (en) * 2011-02-11 2012-08-15 中兴通讯股份有限公司 Authentication modification and allocation method and system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1859169A (en) * 2005-12-01 2006-11-08 华为技术有限公司 File managing system and method in digital household network
CN1949864A (en) * 2006-11-21 2007-04-18 普天信息技术研究院 Controlling method based on user for implementing receiving television program
CN101170409A (en) * 2006-10-24 2008-04-30 华为技术有限公司 Method, system, service device and certification server for realizing device access control
CN101282254A (en) * 2007-04-02 2008-10-08 华为技术有限公司 Method, system and apparatus for managing household network equipment

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101951403A (en) * 2010-09-16 2011-01-19 中兴通讯股份有限公司 Classification-based centralized authentication and authorization method in information terminal

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1859169A (en) * 2005-12-01 2006-11-08 华为技术有限公司 File managing system and method in digital household network
CN101170409A (en) * 2006-10-24 2008-04-30 华为技术有限公司 Method, system, service device and certification server for realizing device access control
CN1949864A (en) * 2006-11-21 2007-04-18 普天信息技术研究院 Controlling method based on user for implementing receiving television program
CN101282254A (en) * 2007-04-02 2008-10-08 华为技术有限公司 Method, system and apparatus for managing household network equipment

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2012034377A1 (en) * 2010-09-16 2012-03-22 中兴通讯股份有限公司 Classification-based centralized authentication and authorization method in information terminal
CN102083060A (en) * 2011-01-24 2011-06-01 中兴通讯股份有限公司 Method and device for safety certification of family information machine
CN102638796A (en) * 2011-02-11 2012-08-15 中兴通讯股份有限公司 Authentication modification and allocation method and system
WO2012106958A1 (en) * 2011-02-11 2012-08-16 中兴通讯股份有限公司 Modification and configuration method and system for authorization authentication

Also Published As

Publication number Publication date
WO2012034377A1 (en) 2012-03-22

Similar Documents

Publication Publication Date Title
CN104093050B (en) The controlled decision-making technique and device of controlled terminal based on multiple intelligent remote controllers
US8255564B2 (en) Personal video network
CN104159076B (en) Photographic device, video monitoring system and video monitoring method
CN103546294A (en) Entrance guard authorization method, entrance guard authorization device and entrance guard authorization equipment
US20180054854A1 (en) Wireless communication device and wireless communication method
USRE44930E1 (en) Data exchange system with a mobile component to control consumer
CN105205892A (en) Door access control method and system
CN104093008A (en) Image pick-up device, video monitoring system and video monitoring method
CN102238688A (en) Method based on user identity information access control and apparatus thereof
CN105761344B (en) A kind of intelligent access control system based on the disconnected modes of WIFI
CN105227440A (en) Terminal data share system, method and input equipment, drive recorder terminal
CN105119882A (en) Intelligent household product configuration method
CN104158711A (en) System and method for mobile telephone and UPNP control point integration
CN104581719A (en) Method and system for conducting communication authority management on mobile terminal
CN108111883A (en) A kind of method for accessing radio data system
CN106792823A (en) A kind of terminal connection method and device based on Miracast
CN103269449A (en) Sending terminal, receiving terminal and video resume realizing method
CN101951403A (en) Classification-based centralized authentication and authorization method in information terminal
CN108829481A (en) The rendering method of remote interface based on controlling electronic devices
CN105554518A (en) Method and device for controlling video stream transmission
CN101895888A (en) Sensor authentication method, device and sensor authentication system
CN105578240A (en) Television terminal interaction method and system
CN103516707A (en) Method, system and terminal for achieving access control between DLAN devices
CN102025747A (en) Household information machine and authentication method thereof
CN113093561B (en) Door equipment control method and device, storage medium and electronic device

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C02 Deemed withdrawal of patent application after publication (patent law 2001)
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20110119