CN101951403A - Classification-based centralized authentication and authorization method in information terminal - Google Patents
Classification-based centralized authentication and authorization method in information terminal Download PDFInfo
- Publication number
- CN101951403A CN101951403A CN2010102842114A CN201010284211A CN101951403A CN 101951403 A CN101951403 A CN 101951403A CN 2010102842114 A CN2010102842114 A CN 2010102842114A CN 201010284211 A CN201010284211 A CN 201010284211A CN 101951403 A CN101951403 A CN 101951403A
- Authority
- CN
- China
- Prior art keywords
- authentication
- information terminal
- centralized
- control device
- priority
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
- H04L63/205—Network architectures or network communication protocols for network security for managing network security; network security policies in general involving negotiation or determination of the one or more network security mechanisms to be used, e.g. by negotiation between the client and the server or between peers or by selection according to the capabilities of the entities involved
Abstract
The invention discloses a classification-based centralized authentication and authorization method in an information terminal. A centralized authentication and authorization controller is arranged in the information terminal, divides priorities for authentication and authorization of modules and users in the information terminal and draws a centralized classification authentication and authorization management list according to the authentication and authorization priorities; and the information terminal controls the authentication and authorization of the users in the information terminal according to a priority sequence of the centralized authentication and authorization controller. The method effectively processes authentication and authorization requests of users between different modules and in the same module in a home information machine, while the high-priority authentication and authorization requests are met and the performance and the service requirements thereof are improved.
Description
Technical field
The present invention relates to communication technical field, relate in particular in a kind of information terminal centralized authentication and authorization method based on classification.
Background technology
Domestic information machine is a kind of information terminal that is produced down in the 3G epoch, it has merged mobile phone, phone, information, the broadband, a kind of information terminal system of multiple functions such as family's security protection is the effect of one to reach " basic conversation, information service, broadband service, family's security protection, Smart Home control ".
Telephony feature: can dial, receive calls, the transmitting-receiving note.The 3G home terminal is similar to a 3G mobile that can be placed in family, can enjoy and the 3G mobile identical functions after the insertion 3G number SIM card.
Function of surfing the Net: along with the expansion of mobile 3G network, the raising of bandwidth, speed makes the wireless Internet access video tour lighter, quick.
Safety protection function: after loading onto a magnetic and Infrared Detectors, can realize the wireless remote safety protection function.When robber invasion appears, accident is caught fire or situation such as gas leak, the family information chance sends to warning message on the mobile phone that sets in advance, and allows owner in time learn and handles it.Pager can also instruct according to owner and take real-time video picture among the player whose turn comes next, and is dealt in the master cellular phone, for later evidence obtaining.
Video monitoring function: can watch the situation in the family whenever and wherever possible;
Smart Home function: can realize household Remote function.Terminal can be by being arranged on the wireless remote control head and the wireless intelligent switch in each corner of family, and arbitrarily any electric equipment of remote control family is changed television channel, adjusted various operations such as air-conditioner temperature or switch room electric light.Simultaneously, owner can also continue the various appliance switches of " control " family by the editing mobile phone note outside.
The tele-medicine function: patient can pass to situations such as blood pressure, body temperature on the corresponding platform of hospital by domestic information terminal, carries out tele-medicine.
Learning recreation function: English learning, play games, mp4, DPF, take a picture etc.
Other function: can realize speculation in stocks, gate inhibition's intercommunication, functions such as estate management.
3G notion: 3G refers to third generation digital communication.The 3G wireless network must can be supported different data transmission baudss, that is to say the transmission speed that in the environment of indoor, outdoor and driving, can support 2Mbps (Mbytes/per second), 384kbps (kilobytes/per second) at least and 144kbps respectively, be referred to as in the industry " broadband in the mobile phone ".
Summary of the invention
The objective of the invention is for addressing the above problem, and in a kind of information terminal that proposes based on the centralized authentication and the authorization method of classification.
For achieving the above object, the invention provides in a kind of information terminal, centralized authentication and authorization control device are set in information terminal based on the centralized authentication and the authorization method of classification; Described centralized authentication and authorization control device are to module in the information terminal and user's authentication and mandate prioritization; Described centralized authentication and authorization control device are made centralized classification authentication and empowerment management tabulation according to described authentication with authorizing priority; Described information terminal is according to authentication and the mandate of user in the priority orders control information terminal of centralized authentication and authorization control device.
Further, described centralized authentication specifically comprises with the authentication and the mandate prioritization of authorization control device to module in the information terminal and user: described centralized authentication and authorization control device are to the authentication and mandate prioritization of the different module in the information terminal, and centralized authentication and authorization control device are to users' dissimilar in the equal modules in the information terminal authentication and mandate prioritization.
Further, described centralized authentication and authorization control device according to described authentication with authorize priority to make centralized classification authentication specifically to comprise with the empowerment management tabulation: described centralized authentication and authorization control device according to the disparate modules authentication with authorize authentication of priority and equal modules and mandate priority to make centralized classification authentication and empowerment management is tabulated.
Further, described information terminal comprises according to authentication and the mandate of user in the priority orders control information terminal of centralized authentication and authorization control device: described information terminal is according to authentication and the mandate of user under disparate modules and the equal modules in the priority orders control information terminal of centralized authentication and authorization control device.
Further, described centralized authentication comprises with authorizing prioritization with the authentication of authorization control device to the different module in the information terminal: divide priority from high to low according to basic conversation, information service, broadband service, family's security protection, Smart Home control, when centralized authentication and authorization control device are received the authentication that comes from disparate modules and authorization requests simultaneously, will handle with authorizing priority order from high to low according to authentication.
Further, described centralized authentication and authorization control device comprise with authorizing prioritization users' dissimilar in the equal modules in the information terminal authentication: for telephony feature, according to the priority division priority from high to low that can dial, receive calls, receive and dispatch note, when centralized authentication and authorization control device are received the authentication that comes from the dissimilar users of equal modules and authorization requests simultaneously, will handle with authorizing priority order from high to low according to authentication.
Further, described centralized authentication and authorization control device are formulated a Policy List at user and module, and the user divides keeper, domestic consumer's end, guest user's end; Module is divided into basic conversation, information service, broadband service, family's security protection, Smart Home control.
Further, described centralized authentication and authorization control device are made centralized classification authentication and empowerment management tabulation with authorizing the authentication of priority and equal modules with authorizing priority according to the disparate modules authentication.
Further, when in increase/removing module and/or the equal modules in the described information terminal when increase/deletion user or user type, two types priority can be static, semi-static, half dynamically, dynamic change.
Further, described information terminal comprises domestic information machine.
The invention has the beneficial effects as follows: can carry out centralized management the authentication and the mandate of all modules in the domestic information machine, when having reduced concurrent processing when authenticating between disparate modules simultaneously with authorization requests to the requirement of processor concurrent processing requirement complexity, simultaneously, the authentication of disparate modules and equal modules and the setting of authorizing priority and the setting of tabulation, increase substantially domestic information machine and handled the disposal ability of concurrent authentication and mandate, when satisfying high priority authentication and improving its performance and business demand, handled in the domestic information machine between disparate modules effectively and user's authentication and authorization requests in the equal modules with authorization requests.
Description of drawings
Fig. 1 is based on the centralized authentication and the authorization method realization flow schematic diagram of classification in the embodiment of the invention domestic information machine.
Embodiment
The present invention relates to mobile communications network, refer more particularly to information terminal,, unified management is carried out in the authentication and the mandate of disparate modules in the information terminal in information terminal by centralized authentication and authorization control device are set based on mobile communications network.At first, centralized authentication and of the authentication and mandate prioritization of authorization control device to different modules, for example, divide priority from high to low according to basic conversation, information service, broadband service, family's security protection, Smart Home control, but be not limited thereto, when centralized authentication and authorization control device are received the authentication that comes from disparate modules and authorization requests simultaneously, will handle with authorizing priority order from high to low according to authentication; Secondly, centralized authentication and authorization control device are to users' dissimilar in the equal modules authentication and mandate prioritization, for example, for telephony feature, according to dialing, receiving calls, the priority of transmitting-receiving note is divided priority from high to low, but is not limited thereto, when centralized authentication and authorization control device are received the authentication that comes from the dissimilar users of equal modules and authorization requests simultaneously, will handle with authorizing priority order from high to low according to authentication; Then, centralized authentication of domestic information machine and authorization control device are made centralized classification authentication and empowerment management tabulation with authorizing the authentication of priority and equal modules with authorizing priority according to the disparate modules authentication; At last, domestic information machine is controlled authentication and the licensing scheme of user under domestic information machine disparate modules and the equal modules according to the priority orders of centralized authentication and authorization control device.
Centralized authentication and authorization control device are formulated a Policy List at user and module, but control method is not limited thereto, and the user is divided into 3 grades, keeper, domestic consumer's end, guest user's end.Module is divided into basic conversation, information service, broadband service, family's security protection, Smart Home control etc., and is as shown in table 1.
Centralized authentication of table 1 and authorization control device strategy are provided with
Centralized authentication of user type and authorization control device strategy
The keeper opens and controls all modules
Domestic consumer's end is opened basic conversation (not having roaming), information service, broadband service (website in the country), family's security protection, Smart Home control
The service of guest user's client information, broadband service (website in the country)
Centralized authentication and authorization control device are made centralized classification authentication and empowerment management tabulation with authorizing the authentication of priority and equal modules with authorizing priority according to the disparate modules authentication, when in increase/removing module in the information terminal and/or the equal modules when increase/deletion user or user type, two types priority can be static, semi-static, half dynamically, dynamic change, to satisfy authentication and the needs of authorizing in the information terminal.
Information terminal is according to authentication and the licensing scheme of user under the priority orders control information terminal disparate modules of centralized authentication and authorization control device and the equal modules, the authentication of disparate modules and equal modules and the setting of authorizing priority and the setting of tabulation, increase substantially information terminal and handled the disposal ability of concurrent authentication and mandate, when satisfying high priority authentication and improving its performance and business demand, handled in the information terminal between disparate modules effectively and user's authentication and authorization requests in the equal modules with authorization requests.
When the user authenticates with mandate in information terminal, order according to disparate modules priority, equal modules priority authenticates and authorizes in centralized authentication and authorization control device, when having reduced concurrent processing when authenticating between disparate modules simultaneously with authorization requests to the requirement of processor concurrent processing requirement complexity.
The present invention is described in further detail below in conjunction with accompanying drawing 1 and embodiment, and in this embodiment, described information terminal is that example describes centralized authentication and the authorization method based on classification in the information terminal with the domestic information machine.
In this embodiment, centralized authentication and the authorization method based on classification may further comprise the steps in the domestic information machine:
Step S101: centralized authentication and authorization control device are set in the domestic information machine, unified management is carried out in the authentication and the mandate of disparate modules in the domestic information machine;
Step S102: centralized authentication and of the authentication and mandate prioritization of authorization control device to different modules;
Step S103: centralized authentication and authorization control device are to user's prioritization dissimilar in the equal modules;
Step S104: centralized authentication and authorization control device are made centralized classification authentication and empowerment management tabulation with authorizing the authentication of priority and equal modules with authorizing priority according to the disparate modules authentication;
Step S105: domestic information machine is controlled authentication and the licensing scheme of user under domestic information machine disparate modules and the equal modules according to the priority orders of centralized authentication and authorization control device;
Step S106: the user authenticates in domestic information machine when authorizing, and authenticates and authorizes in centralized authentication and authorization control device according to the order of disparate modules priority, equal modules priority.
Setting by centralized authentication and authorization control device, can carry out centralized management to the authentication and the mandate of all modules in the domestic information machine, when having reduced concurrent processing when authenticating between disparate modules simultaneously with authorization requests to the requirement of processor concurrent processing requirement complexity, simultaneously, the authentication of disparate modules and equal modules and the setting of authorizing priority and the setting of tabulation, increase substantially domestic information machine and handled the disposal ability of concurrent authentication and mandate, when satisfying high priority authentication and improving its performance and business demand, handled in the domestic information machine between disparate modules effectively and user's authentication and authorization requests in the equal modules with authorization requests.
Described above only is preferred embodiments of the present invention; certainly can not limit interest field of the present invention with this; therefore; under the situation that does not deviate from spirit of the present invention and essence thereof; those of ordinary skill in the art can make various corresponding changes and distortion according to the present invention, but these corresponding changes and distortion all should belong to the protection range of the appended claim of the present invention.
Claims (10)
- In the information terminal based on the centralized authentication and the authorization method of classification, it is characterized in that: centralized authentication and authorization control device are set in information terminal; Described centralized authentication and authorization control device are to module in the information terminal and user's authentication and mandate prioritization; Described centralized authentication and authorization control device are made centralized classification authentication and empowerment management tabulation according to described authentication with authorizing priority; Described information terminal is according to authentication and the mandate of user in the priority orders control information terminal of centralized authentication and authorization control device.
- 2. the method for claim 1, it is characterized in that: described centralized authentication specifically comprises with the authentication and the mandate prioritization of authorization control device to module in the information terminal and user: described centralized authentication and authorization control device are to the authentication and mandate prioritization of the different module in the information terminal, and centralized authentication and authorization control device are to users' dissimilar in the equal modules in the information terminal authentication and mandate prioritization.
- 3. method as claimed in claim 2 is characterized in that: described centralized authentication and authorization control device make centralized classification authentication according to described authentication and mandate priority and the empowerment management tabulation specifically comprises: described centralized authentication and authorization control device authenticate with authorizing priority according to disparate modules authentication and mandate priority and equal modules and make centralized classification authentication and empowerment management tabulation.
- 4. method as claimed in claim 3 is characterized in that: described information terminal comprises according to authentication and the mandate of user in the priority orders control information terminal of centralized authentication and authorization control device: described information terminal is according to authentication and the mandate of user under disparate modules and the equal modules in the priority orders control information terminal of centralized authentication and authorization control device.
- 5. method as claimed in claim 2, it is characterized in that: described centralized authentication comprises with authorizing prioritization with the authentication of authorization control device to the different module in the information terminal: divide priority from high to low according to basic conversation, information service, broadband service, family's security protection, Smart Home control, when centralized authentication and authorization control device are received the authentication that comes from disparate modules and authorization requests simultaneously, will handle with authorizing priority order from high to low according to authentication.
- 6. method as claimed in claim 2, it is characterized in that: described centralized authentication and authorization control device comprise with authorizing prioritization users' dissimilar in the equal modules in the information terminal authentication: for telephony feature, according to the priority division priority from high to low that can dial, receive calls, receive and dispatch note, when centralized authentication and authorization control device are received the authentication that comes from the dissimilar users of equal modules and authorization requests simultaneously, will handle with authorizing priority order from high to low according to authentication.
- 7. as each described method in the claim 1 to 6, it is characterized in that: described centralized authentication and authorization control device are formulated a Policy List at user and module, and the user divides keeper, domestic consumer's end, guest user's end; Module is divided into basic conversation, information service, broadband service, family's security protection, Smart Home control.
- 8. method as claimed in claim 7 is characterized in that: described centralized authentication and authorization control device are made centralized classification authentication and empowerment management tabulation with authorizing the authentication of priority and equal modules with authorizing priority according to the disparate modules authentication.
- 9. method as claimed in claim 7, it is characterized in that: when in increase/removing module and/or the equal modules in the described information terminal when increase/deletion user or user type, two types priority can be static, semi-static, half dynamically, dynamic change.
- 10. as each described method of claim 1 to 6, it is characterized in that: described information terminal comprises domestic information machine.
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2010102842114A CN101951403A (en) | 2010-09-16 | 2010-09-16 | Classification-based centralized authentication and authorization method in information terminal |
PCT/CN2011/071158 WO2012034377A1 (en) | 2010-09-16 | 2011-02-22 | Classification-based centralized authentication and authorization method in information terminal |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2010102842114A CN101951403A (en) | 2010-09-16 | 2010-09-16 | Classification-based centralized authentication and authorization method in information terminal |
Publications (1)
Publication Number | Publication Date |
---|---|
CN101951403A true CN101951403A (en) | 2011-01-19 |
Family
ID=43454761
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2010102842114A Pending CN101951403A (en) | 2010-09-16 | 2010-09-16 | Classification-based centralized authentication and authorization method in information terminal |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN101951403A (en) |
WO (1) | WO2012034377A1 (en) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN102083060A (en) * | 2011-01-24 | 2011-06-01 | 中兴通讯股份有限公司 | Method and device for safety certification of family information machine |
WO2012034377A1 (en) * | 2010-09-16 | 2012-03-22 | 中兴通讯股份有限公司 | Classification-based centralized authentication and authorization method in information terminal |
CN102638796A (en) * | 2011-02-11 | 2012-08-15 | 中兴通讯股份有限公司 | Authentication modification and allocation method and system |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1859169A (en) * | 2005-12-01 | 2006-11-08 | 华为技术有限公司 | File managing system and method in digital household network |
CN1949864A (en) * | 2006-11-21 | 2007-04-18 | 普天信息技术研究院 | Controlling method based on user for implementing receiving television program |
CN101170409A (en) * | 2006-10-24 | 2008-04-30 | 华为技术有限公司 | Method, system, service device and certification server for realizing device access control |
CN101282254A (en) * | 2007-04-02 | 2008-10-08 | 华为技术有限公司 | Method, system and apparatus for managing household network equipment |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101951403A (en) * | 2010-09-16 | 2011-01-19 | 中兴通讯股份有限公司 | Classification-based centralized authentication and authorization method in information terminal |
-
2010
- 2010-09-16 CN CN2010102842114A patent/CN101951403A/en active Pending
-
2011
- 2011-02-22 WO PCT/CN2011/071158 patent/WO2012034377A1/en active Application Filing
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1859169A (en) * | 2005-12-01 | 2006-11-08 | 华为技术有限公司 | File managing system and method in digital household network |
CN101170409A (en) * | 2006-10-24 | 2008-04-30 | 华为技术有限公司 | Method, system, service device and certification server for realizing device access control |
CN1949864A (en) * | 2006-11-21 | 2007-04-18 | 普天信息技术研究院 | Controlling method based on user for implementing receiving television program |
CN101282254A (en) * | 2007-04-02 | 2008-10-08 | 华为技术有限公司 | Method, system and apparatus for managing household network equipment |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2012034377A1 (en) * | 2010-09-16 | 2012-03-22 | 中兴通讯股份有限公司 | Classification-based centralized authentication and authorization method in information terminal |
CN102083060A (en) * | 2011-01-24 | 2011-06-01 | 中兴通讯股份有限公司 | Method and device for safety certification of family information machine |
CN102638796A (en) * | 2011-02-11 | 2012-08-15 | 中兴通讯股份有限公司 | Authentication modification and allocation method and system |
WO2012106958A1 (en) * | 2011-02-11 | 2012-08-16 | 中兴通讯股份有限公司 | Modification and configuration method and system for authorization authentication |
Also Published As
Publication number | Publication date |
---|---|
WO2012034377A1 (en) | 2012-03-22 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN104093050B (en) | The controlled decision-making technique and device of controlled terminal based on multiple intelligent remote controllers | |
US8255564B2 (en) | Personal video network | |
CN104159076B (en) | Photographic device, video monitoring system and video monitoring method | |
CN103546294A (en) | Entrance guard authorization method, entrance guard authorization device and entrance guard authorization equipment | |
US20180054854A1 (en) | Wireless communication device and wireless communication method | |
USRE44930E1 (en) | Data exchange system with a mobile component to control consumer | |
CN105205892A (en) | Door access control method and system | |
CN104093008A (en) | Image pick-up device, video monitoring system and video monitoring method | |
CN102238688A (en) | Method based on user identity information access control and apparatus thereof | |
CN105761344B (en) | A kind of intelligent access control system based on the disconnected modes of WIFI | |
CN105227440A (en) | Terminal data share system, method and input equipment, drive recorder terminal | |
CN105119882A (en) | Intelligent household product configuration method | |
CN104158711A (en) | System and method for mobile telephone and UPNP control point integration | |
CN104581719A (en) | Method and system for conducting communication authority management on mobile terminal | |
CN108111883A (en) | A kind of method for accessing radio data system | |
CN106792823A (en) | A kind of terminal connection method and device based on Miracast | |
CN103269449A (en) | Sending terminal, receiving terminal and video resume realizing method | |
CN101951403A (en) | Classification-based centralized authentication and authorization method in information terminal | |
CN108829481A (en) | The rendering method of remote interface based on controlling electronic devices | |
CN105554518A (en) | Method and device for controlling video stream transmission | |
CN101895888A (en) | Sensor authentication method, device and sensor authentication system | |
CN105578240A (en) | Television terminal interaction method and system | |
CN103516707A (en) | Method, system and terminal for achieving access control between DLAN devices | |
CN102025747A (en) | Household information machine and authentication method thereof | |
CN113093561B (en) | Door equipment control method and device, storage medium and electronic device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20110119 |