CN102761630B - Real user identity information-oriented IPv6 (Internet Protocol Version 6) address distribution method - Google Patents
Real user identity information-oriented IPv6 (Internet Protocol Version 6) address distribution method Download PDFInfo
- Publication number
- CN102761630B CN102761630B CN201210254314.5A CN201210254314A CN102761630B CN 102761630 B CN102761630 B CN 102761630B CN 201210254314 A CN201210254314 A CN 201210254314A CN 102761630 B CN102761630 B CN 102761630B
- Authority
- CN
- China
- Prior art keywords
- ipv6 address
- client
- user
- dhcpv6 server
- message
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The invention discloses a real user identity information-oriented IPv6 (Internet Protocol Version 6) address distribution method. The method comprises a sending step, a verification step, and a distribution step, wherein in the sending step, a client sends a request message requesting distributing IPv6 address to a DHCPv6 (Dynamic Host Configuration Protocol for IPv6) server; in the validating step, the DHCPv6 server interacts with the client to validate whether the user of the client is legal or not by utilizing the user name information in the request message, if the validated result is that the user is legal, a distribution step is executed; and in the distribution step, the DHCPv6 server distributes IPv6 address for the client. According to the method provided by the invention, as the process used for validating the real user identity is arranged, after the real user identity is determined, the identity information of the user is mapped in the setting position of the IPv6 address, so that a complete 128 bits IPv6 address is formed finally to be distributed to the DHCPv6 client, thus realizing bonding between the IPv6 address and the real user identity information, and further enhancing the manageability of the network.
Description
Technical field
The present invention relates to Internet technical field, particularly relate to a kind of IPv6 address distribution method towards real user identity information.
Background technology
DHCP (Dynamic Host Configuration Protocol for IPv6, hereinafter referred to as DHCPv6 agreement) for the design of IPv6 addressing scheme, be the agreement of host assignment IPv6 prefix, IPv6 address and other network configuration parameters.It can provide address configuration or the stateless configuration setting of state to IPv6 main frame.
DHCPv6 typical case networking comprises following Three role:
DHCPv6 client: the equipment of Dynamic Acquisition IPv6 address, IPv6 prefix or other network configuration parameters.
DHCPv6 server: the equipment being responsible for DHCPv6 client distributing IP v6 address, IPv6 prefix and other network configuration parameters.
DHCPv6 relaying: DHCPv6 client passes through multicast address and the DHCPv6 server communication of link-local scope, to obtain IPv6 address and other network configuration parameters.If server and client side is not in same link range, then need to be E-Packeted by DHCPv6 relaying, can avoid like this disposing DHCPv6 server in each link range.
In address configuration process, the complete IPv6 address of DHCPv6 server-assignment one to main frame, and provides other configuration informations such as dns server address and domain name.Because DHCPv6 server is in address allocation procedure, just select available IPv6 address assignment to DHCPv6 client randomly, the contents such as real user identity information are not carried in IPv6 address, and this is unfavorable for the manageability strengthening network.
Therefore, need a kind of new IPv6 address distribution method badly, solve the problem the manageability strengthening network.
Summary of the invention
One of technical problem to be solved by this invention needs to provide a kind of IPv6 address distribution method towards real user identity information that can realize the binding of IPv6 address and real user identity information.
In order to solve the problems of the technologies described above, the invention provides a kind of IPv6 address distribution method towards real user identity information, the method comprises: forwarding step, client sends request the request message of distributing IP v6 address in DHCPv6 server, and described request message comprises username information; Verification step, utilizes the username information in described request message, and whether described DHCPv6 server and described client carry out mutual legal to verify the user of described client, if the result is described user is legal, then perform allocation step; Allocation step, described DHCPv6 server is client distributing IP v6 address.
IPv6 address distribution method according to a further aspect of the invention, has set up user name option in described request message, to carry described username information.
IPv6 address distribution method according to a further aspect of the invention, in described verification step, further comprising the steps: described DHCPv6 server inquires about the encrypted message corresponding with described username information from database; Described DHCPv6 server generates a random number as encrypted word, calculates to obtain server end cryptographic summary to described encrypted message based on described encrypted word; Described encrypted word is sent to described client by described DHCPv6 server; Described client calculates to obtain client password summary to the encrypted message that user inputs based on described encrypted word; Described client password summary is returned to described DHCPv6 server by described client; Whether described DHCPv6 server more described server end cryptographic summary is identical with described client password summary, if comparative result is identical, then the result is described user is legal.
IPv6 address distribution method according to a further aspect of the invention, sends to described client by notice message by described encrypted word at described DHCPv6 server, wherein, in described notice message, has set up random number option, to carry described encrypted word.
IPv6 address distribution method according to a further aspect of the invention, described client password summary is returned to described DHCPv6 server by solicitation message by described client, wherein, in described solicitation message, set up cryptographic summary option, to carry described client password summary.
IPv6 address distribution method according to a further aspect of the invention, described DHCPv6 server by utilizing HMAC-MD5 algorithm, calculates to obtain server end cryptographic summary to described encrypted message based on described encrypted word.
IPv6 address distribution method according to a further aspect of the invention, described client utilizes HMAC-MD5 algorithm, calculates to obtain client password summary to the encrypted message that user inputs based on described encrypted word.
IPv6 address distribution method according to a further aspect of the invention, in described allocation step, the described DHCPv6 server by utilizing subscriber identity information corresponding with described user name generates User Identity number; Described DHCPv6 server based on described User Identity number to generate IPv6 address; The IPv6 address of described generation is back to described client by described DHCPv6 server.
IPv6 address distribution method according to a further aspect of the invention, generate in the step of User Identity number at the subscriber identity information that described DHCPv6 server by utilizing is corresponding with described user name, further comprising the steps: to utilize MD5 Message Digest 5 to carry out Hash operation to obtain the string of binary characters of the first setting figure place to described subscriber identity information; Stochastic generation first key; Based on described first key, the string of binary characters equal with the figure place of the primary importance of described IPv6 address is chosen using as described User Identity number from the string of binary characters of described first setting figure place, wherein, described first key is a string of binary characters, comprises the binary number 1 equal with the figure place of the primary importance of described IPv6 address.
IPv6 address distribution method according to a further aspect of the invention, at described DHCPv6 server based on described User Identity number to generate in the step of IPv6 address, specifically comprise the following steps: the primary importance of described IPv6 address is set to described User Identity number; The second place of described IPv6 address is set to subnet prefix; 3rd position of described IPv6 address is set to the QoS in traffic engineering; 4th position of described IPv6 address is set to check code.
IPv6 address distribution method according to a further aspect of the invention, be set in the step of check code by the 4th position of described IPv6 address, the information based on the primary importance of described IPv6 address, the second place and the 3rd position generates the check code of the 4th position.
IPv6 address distribution method according to a further aspect of the invention, generate in the step of the check code of the 4th position in the information based on the primary importance of described IPv6 address, the second place and the 3rd position, specifically comprise the following steps: utilize the information of MD5 Message Digest 5 to the primary importance of described IPv6 address, the second place and the 3rd position to carry out Hash operation to obtain the string of binary characters of the second setting figure place; Stochastic generation second key; Based on described second key, the string of binary characters equal with the figure place of the 4th position of described IPv6 address is chosen using as described check code from the string of binary characters of described second setting figure place, wherein, described second key is a string of binary characters, comprises the binary number 1 equal with the figure place of the 4th position of described IPv6 address.
IPv6 address distribution method according to a further aspect of the invention, described subscriber identity information comprises ID card No., officer's identity card number or network identity information.
Compared with prior art, one or more embodiment tool of the present invention has the following advantages:
The present invention is by arranging the process verified real user identity, after determining real user identity, the identity information of user is mapped as in the desired location of IPv6 address, complete 128 the IPv6 address assignment of final formation one are to DHCPv6 client, realize the binding of IPv6 address and real user identity information, strengthen the manageability of network further.
Other features and advantages of the present invention will be set forth in the following description, and, partly become apparent from specification, or understand by implementing the present invention.Object of the present invention and other advantages realize by structure specifically noted in specification, claims and accompanying drawing and obtain.
Accompanying drawing explanation
Accompanying drawing is used to provide a further understanding of the present invention, and forms a part for specification, with embodiments of the invention jointly for explaining the present invention, is not construed as limiting the invention.In the accompanying drawings:
Fig. 1 is the schematic flow sheet of the IPv6 address distribution method according to the embodiment of the present invention;
Fig. 2 is the exemplary plot of the IPv6 address distribution method according to the embodiment of the present invention;
Fig. 3, Fig. 4, Fig. 5 are the structural representation of user name choice format, random number choice format and cryptographic summary choice format in the DHCP Option according to the embodiment of the present invention respectively.
Embodiment
Describe embodiments of the present invention in detail below with reference to drawings and Examples, to the present invention, how application technology means solve technical problem whereby, and the implementation procedure reaching technique effect can fully understand and implement according to this.It should be noted that, only otherwise form conflict, each embodiment in the present invention and each feature in each embodiment can be combined with each other, and the technical scheme formed is all within protection scope of the present invention.
In addition, can perform in the computer system of such as one group of computer executable instructions in the step shown in the flow chart of accompanying drawing, and, although show logical order in flow charts, but in some cases, can be different from the step shown or described by order execution herein.
Fig. 1 is the schematic flow sheet of the IPv6 address distribution method according to the embodiment of the present invention, and Fig. 2 is the exemplary plot of the IPv6 address distribution method according to the embodiment of the present invention.
In order to whether authentication of users is legitimate authorized user, in the present embodiment, be provided with the process of real user identity certification, ensure application IPv6 address user be true validated user, instead of others palm off.
It should be noted that, in the present embodiment, building database in DHCPv6 server, the data such as user name, password, subscriber identity information of input when registering for recording user, realize the binding of user name and password, user name and subscriber identity information.
Each step of the present embodiment is described in detail below with reference to Fig. 1 and Fig. 2.
Step S110, client sends request the request message (hereinafter referred to as Solicit message) of distributing IP v6 address to DHCPv6 server, and wherein, request message comprises username information.
Particularly, client sends Solicit message, and request DHCPv6 server is its distributing IP v6 address/prefix and network configuration parameters.The dynamic host machine configuring protocol option that name is called user name option (hereinafter referred to as User Name Option) has been set up, to carry username information in the message of this Solicit message.
It should be noted that, dynamic host machine configuring protocol option (Dynamic Host Configuration Protocol Option, hereinafter referred to as DHCP Option), is used in DHCP message, carry relevant information and parameter.Add the DHCP Option named with User Name Option in this step.User Name Option is used for indicating that DHCPv6 agreement Solicit message carries is username information.
Fig. 3 is the structural representation of User Name Option form in the DHCP Option according to the embodiment of the present invention, its formal definition is as follows: what user name option code (user-name-option-code) indicated that this option carries is username information, and value is defined as 31; Option (option-len) indicates the length in option data (option-data) territory, measures in units of 8 bytes; Option data (option-data) indicates the user name that this option (option) carries.
Step S120, utilizes the username information in request message, and whether DHCPv6 server and client carry out mutual legal with the user of checking client, if the result is user is legal, then performs step S130.
After DHCPv6 server receives the username information in request message, inquire about the encrypted message corresponding with username information, according to username information and encrypted message, certification is carried out to user.
Particularly, as shown in Figure 2, this step comprises following sub-step:
Sub-step S121, after DHCPv6 server receives username information, user name list item in this information and date storehouse is compared, find the encrypted message that this user name is corresponding, generate a random number as encrypted word, calculate to obtain server password summary to encrypted message based on encrypted word, preferably, use HMAC-MD5 algorithm to carry out computing to generate user cipher summary to user cipher and encrypted word.
Sub-step S122, DHCPv6 server replys notice message (being called for short Advertise message), and notice client can be its allocation address/prefix and network configuration parameters.Increase random number option (being called for short Nonce option) within the message, to carry encrypted word, send encrypted word to client by this option.
As shown in Figure 4, what wherein random number option code (nonce-option-code) indicated that this option (option) carries is random number to the form of random number option (Nonce option), and value is defined as 32; Option (option-len) indicates the length in option data (option-data) territory, measures in units of 8 bytes; Option data (option-data) indicates the value of the random number that this option (option) carries.
Sub-step S123, after client receives the Advertise message of server reply, the encrypted word utilizing server to transmit calculates to obtain client password summary to the encrypted message that user inputs.Preferably, the same HMAC-MD5 algorithm that uses carries out computing to obtain client password summary to the password that user inputs.
Sub-step S124, user end to server sends solicitation message (being called for short Request message), and request server confirms as its allocation address/prefix and network configuration parameters.In Request message, increase cryptographic summary option (being called for short Password Digest Option), carry user cipher summary by this option.
The form of cryptographic summary option (Password Digest Option) as shown in Figure 5, what wherein cryptographic summary option code (password-digest-option-code) indicated that this option (option) carries is cryptographic summary, and value is defined as 33; Option (option-len) indicates the length in option data (option-data) territory, measures in units of 8 bytes; Option data (option-data) indicates the value of the user cipher summary that this option (option) carries.
Sub-step S125, DHCPv6 server is by comparing to carry out certification to user by the client password received summary with the server end cryptographic summary that server calculates.
Particularly, if client password summary is identical with server end cryptographic summary, then this user is true validated user, then enter step S130, otherwise namely both are not identical, then abandon Request message to disregard, no longer give user distributing IP v6 address/prefix and network configuration parameters.
This step is by adopting the authentication mode based on shared key, and increase User Name Option, Nonce Option, Password Digest Option tri-DHCP Option, the information such as user name, encrypted word, cryptographic summary are carried respectively in its Solicit, Advertise, Request message, make certificate server receive client send IPv6 address/prefix and network configuration parameters application time, whether be true validated user, realize the function of real user identity certification if starting verification process inspection user simultaneously.
Step S130, DHCPv6 server is client distributing IP v6 address.
Particularly, first, the DHCPv6 server by utilizing subscriber identity information corresponding with user name generates User Identity number (being called for short user identity ID), then, DHCPv6 server based on User Identity number to generate IPv6 address, finally, the IPv6 address of generation is back to client by DHCPv6 server.
Generate in the step of User Identity number for the utilization subscriber identity information corresponding with user name, further comprising the steps: to utilize MD5 Message Digest 5 to carry out Hash operation to obtain the string of binary characters of the first setting figure place to subscriber identity information; Stochastic generation first key; Based on the first key, the string of binary characters equal with the figure place of the primary importance of IPv6 address is chosen using as User Identity number from the string of binary characters of the first setting figure place, wherein, first key is a string of binary characters, comprises the binary number 1 equal with the figure place of the primary importance of IPv6 address.
The real user identity information that server lookup is corresponding with this username information, this information can be ID card No., officer's identity card number, or network identity information etc., and the subscriber identity information based on user distributes an IPv6 address for user.Particularly, the primary importance of IPv6 address is set to User Identity number; The second place of IPv6 address is set to subnet prefix; 3rd position of IPv6 address is set to the QoS in traffic engineering; 4th position of IPv6 address is set to check code.
Wherein, user identity ID is for realizing the binding of IPv6 address and real user identity information, Qos class letter is used for indicating user gradation in traffic engineering, whether check code is authentic and valid for verifying this IPv6 address, by designing the method to set up of IPv6 address and improving the method for salary distribution of IPv6 address, strengthen the manageability of network further.
In the present embodiment, server uses the MD5 Message Digest 5 identity information corresponding to user name to carry out Hash operation, obtain the 01 Bit String Q1 of 128, then in order random selecting wherein 56 as user identity ID, specifically generate the 01 Bit String Q2 of 128, wherein random selecting 56 position 1 in Bit String Q2, remain 72 positions 0, using in Q1 with Q2 value be 1 position same position on value take out as user identity ID, and as the 65th to 120 of IPv6 address, Bit String Q2 is as key key1, the corresponding relation of server record user identity ID and identification card number.
The 1 to 62, address is set to the subnet prefix of this user place network, is set to traffic engineering Qos class letter by the 63 to 64.
Be set in the step of check code by the 4th position of IPv6 address, the information based on the primary importance of IPv6 address, the second place and the 3rd position generates the check code of the 4th position.Particularly, the information of MD5 Message Digest 5 to the primary importance of IPv6 address, the second place and the 3rd position is utilized to carry out Hash operation to obtain the string of binary characters of the second setting figure place; Stochastic generation second key; Based on the second key, the string of binary characters equal with the figure place of the 4th position of IPv6 address is chosen using as check code from the string of binary characters of the second setting figure place, wherein, second key is a string of binary characters, comprises the binary number 1 equal with the figure place of the 4th position of IPv6 address.
In the present embodiment, after determining 120 bit address above, MD5 Message Digest 5 is used to carry out Hash operation to this 120 bit address again, obtain the 01 Bit String Q3 of 128, random selecting wherein 8, as check code, specifically generate the 01 Bit String Q4 of 128, wherein Bit String Q4 random selecting 8 position 1, all the other 120 positions 0, using being that value in 1 position same position is taken out as check code with Q4 value in Q3, and using Bit String Q4 as key key2.Using the 8 bit check codes generated as last 8 of IPv6 address, so far obtain complete 128 IPv6 addresses.
For example, if subscriber identity information is " 41092219840310xxxx ", server uses MD5 Message Digest 5 to the 01 Bit String Q1 " 101010-0010100001100011001110111000001111001011101001110 000110110001010-1101101101101111101010100001100001111000 010001000000101111 " obtaining 128 after its computing, then the 01 Bit String Q2 " 000100100001000010100100011001-1001011100100100110010011 100001100100110000111100010010011001110-0000111111100000 111111100001111000 " of stochastic generation one 128, 56 are wherein had to be 1 in Q2, in Q1 with Q2 value be 1 position same position on numeral take out, namely 01 Bit String " 00010111110011001001000100111011110101100001101000100101 " of 56 is generated
As the 65-120 position of IPv6 address, character string Q2 is key key1.
Suppose that the subnet prefix of 62 is for " 10101000101000011000110011101110000011-11001011101001110 0001101 ", QoS class letter is " 10 ", " 000101111100110010010001001110111101011-0000110100010010 1 " in 56 upper examples of user ID employing, MD5 Message Digest 5 is then used to carry out Hash operation to above-mentioned 120 bit address, obtain the 01 Bit String Q3 " 0001001000010010100010101-000011110111011101111001010011 0100011000011111000110100001000101-011101010110110011001 011011101010011100 " of 128, then the 01 Bit String Q4 " 000000000000000010000000001100000000001000000000000-0000 00000000001000000000000000100000000000000000000000000000 0000-0011000000000 " of 128 is generated, 8 are wherein had to be 1 in Q4, all the other 120 is 0, in Q3 with Q4 value be 1 position same position on numeral take out, namely the check code " 10010001 " of 8 is generated, character string Q4 position key key2.So far, complete 128 IPv6 addresses " 1010100010100001100011001110111000001111001011101001110-00011011000010111110011001001000100111011110101100001101 00010010-110010001 " are obtained.
Then, other network configuration parameters (as dns server, domain name etc.) that IPv6 address and server are provided by response message (being called for short Reply message) by server are sent to client.
In addition, it should be noted that, be used for realizing generating User Identity number based on subscriber identity information or generating the algorithm of check code based on the information of first, second, third position of IPv6, as long as the requirements such as openness, the anti-property guessed can be met, make domestic consumer to inquire about from User Identity ID or to extrapolate subscriber identity information, only have authorized user (as public security department) just can inquire subscriber identity information from User Identity ID.
The inventive method, for the limitation of DHCPv6 server random selecting IPv6 address in address allocation procedure, devises a kind of IPv6 address distribution method towards real user identity information.The method adopts certain mapping algorithm that subscriber identity information is mapped as user identity ID, and using the part of user identity ID as IPv6 address, user anywhere logging in network all uses this user identity ID, achieve the binding of IPv6 address and real user identity information, and add the verification process of real user identity, extend the function of DHCPv6 server, for internet management system provides basic identify label service.
Those skilled in the art should be understood that, above-mentioned of the present invention each module or each step can realize with general calculation element, they can concentrate on single calculation element, or be distributed on network that multiple calculation element forms, alternatively, they can realize with the executable program code of calculation element, thus, they can be stored and be performed by calculation element in the storage device, or they are made into each integrated circuit modules respectively, or the multiple module in them or step are made into single integrated circuit module to realize.Like this, the present invention is not restricted to any specific hardware and software combination.
Although the execution mode disclosed by the present invention is as above, the execution mode that described content just adopts for the ease of understanding the present invention, and be not used to limit the present invention.Technical staff in any the technical field of the invention; under the prerequisite not departing from the spirit and scope disclosed by the present invention; any amendment and change can be done what implement in form and in details; but scope of patent protection of the present invention, the scope that still must define with appending claims is as the criterion.
Claims (11)
1., towards an IPv6 address distribution method for real user identity information, it is characterized in that, comprising:
Forwarding step, client sends request the request message of distributing IP v6 address in DHCPv6 server, and described request message comprises username information;
Verification step, utilizes the username information in described request message, and whether described DHCPv6 server and described client carry out mutual legal to verify the user of described client, if the result is described user is legal, then perform allocation step;
Allocation step, described DHCPv6 server is client distributing IP v6 address, comprises the described DHCPv6 server by utilizing subscriber identity information corresponding with described user name to generate User Identity number; Described DHCPv6 server based on described User Identity number to generate IPv6 address; The IPv6 address of described generation is back to described client by described DHCPv6 server;
Wherein, the subscriber identity information that described DHCPv6 server by utilizing is corresponding with described user name generates User Identity number and comprises further:
MD5 Message Digest 5 is utilized to carry out Hash operation to obtain the string of binary characters of the first setting figure place to described subscriber identity information;
Stochastic generation first key;
Based on described first key, the string of binary characters equal with the figure place of the primary importance of described IPv6 address is chosen using as described User Identity number from the string of binary characters of described first setting figure place, wherein, described first key is a string of binary characters, comprises the binary number 1 equal with the figure place of the primary importance of described IPv6 address.
2. IPv6 address distribution method according to claim 1, is characterized in that,
User name option has been set up, to carry described username information in described request message.
3. IPv6 address distribution method according to claim 1, is characterized in that, in described verification step, further comprising the steps:
Described DHCPv6 server inquires about the encrypted message corresponding with described username information from database;
Described DHCPv6 server generates a random number as encrypted word, calculates to obtain server end cryptographic summary to described encrypted message based on described encrypted word;
Described encrypted word is sent to described client by described DHCPv6 server;
Described client calculates to obtain client password summary to the encrypted message that user inputs based on described encrypted word;
Described client password summary is returned to described DHCPv6 server by described client;
Whether described DHCPv6 server more described server end cryptographic summary is identical with described client password summary, if comparative result is identical, then the result is described user is legal.
4. IPv6 address distribution method according to claim 3, is characterized in that,
Described encrypted word is sent to described client by notice message by described DHCPv6 server, wherein, in described notice message, has set up random number option, to carry described encrypted word.
5. IPv6 address distribution method according to claim 3, is characterized in that,
Described client password summary is returned to described DHCPv6 server by solicitation message by described client, wherein, in described solicitation message, has set up cryptographic summary option, to carry described client password summary.
6. IPv6 address distribution method according to claim 3, is characterized in that,
Described DHCPv6 server by utilizing HMAC-MD5 algorithm, calculates to obtain server end cryptographic summary to described encrypted message based on described encrypted word.
7. IPv6 address distribution method according to claim 6, is characterized in that,
Described client utilizes HMAC-MD5 algorithm, calculates to obtain client password summary to the encrypted message that user inputs based on described encrypted word.
8. IPv6 address distribution method according to claim 1, is characterized in that, at described DHCPv6 server based on described User Identity number to generate in the step of IPv6 address, specifically comprise the following steps:
The primary importance of described IPv6 address is set to described User Identity number;
The second place of described IPv6 address is set to subnet prefix;
3rd position of described IPv6 address is set to the QoS in traffic engineering;
4th position of described IPv6 address is set to check code.
9. IPv6 address distribution method according to claim 8, is characterized in that, is being set in the step of check code by the 4th position of described IPv6 address,
Information based on the primary importance of described IPv6 address, the second place and the 3rd position generates the check code of the 4th position.
10. IPv6 address distribution method according to claim 9, is characterized in that, generates in the step of the check code of the 4th position, specifically comprise the following steps in the information based on the primary importance of described IPv6 address, the second place and the 3rd position:
The information of MD5 Message Digest 5 to the primary importance of described IPv6 address, the second place and the 3rd position is utilized to carry out Hash operation to obtain the string of binary characters of the second setting figure place;
Stochastic generation second key;
Based on described second key, from the string of binary characters of described second setting figure place, choose the string of binary characters equal with the figure place of the 4th position of described IPv6 address using as described check code, wherein,
Described second key is a string of binary characters, comprises the binary number 1 equal with the figure place of the 4th position of described IPv6 address.
11. IPv6 address distribution methods according to claim 1, is characterized in that,
Described subscriber identity information comprises ID card No., officer's identity card number or network identity information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210254314.5A CN102761630B (en) | 2012-07-20 | 2012-07-20 | Real user identity information-oriented IPv6 (Internet Protocol Version 6) address distribution method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210254314.5A CN102761630B (en) | 2012-07-20 | 2012-07-20 | Real user identity information-oriented IPv6 (Internet Protocol Version 6) address distribution method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102761630A CN102761630A (en) | 2012-10-31 |
| CN102761630B true CN102761630B (en) | 2015-01-14 |
Family
ID=47055948
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210254314.5A Active CN102761630B (en) | 2012-07-20 | 2012-07-20 | Real user identity information-oriented IPv6 (Internet Protocol Version 6) address distribution method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102761630B (en) |
Families Citing this family (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104253798A (en) * | 2013-06-27 | 2014-12-31 | 中兴通讯股份有限公司 | Network security monitoring method and system |
| CN104184847B (en) * | 2014-09-11 | 2017-11-17 | 赛尔网络有限公司 | Method of the IPv6 addresses distribution with tracing to the source based on IPv4 authentication informations |
| CN105491558A (en) * | 2014-09-18 | 2016-04-13 | 北京信威通信技术股份有限公司 | Method for generating IPv6 multicast address of cluster group |
| CN104468605A (en) * | 2014-12-22 | 2015-03-25 | 北京极科极客科技有限公司 | Distributed safety authentication method |
| CN107194613B (en) * | 2017-06-20 | 2020-12-08 | 无锡井通网络科技有限公司 | Digital asset coding method |
| CN108540586B (en) * | 2018-03-06 | 2020-12-18 | 南京邮电大学 | Campus network IPv6 address partitioning method based on Merkle tree |
| CN109088956A (en) * | 2018-08-02 | 2018-12-25 | 杭州安恒信息技术股份有限公司 | IPv6 address approach and device are generated based on the information of Item Information or people |
| CN109120611B (en) * | 2018-08-03 | 2021-07-06 | 下一代互联网重大应用技术(北京)工程研究中心有限公司 | User authentication method, apparatus, system and medium for address generation server |
| CN109120740B (en) * | 2018-08-24 | 2021-05-07 | 赛尔网络有限公司 | Server, system and method for generating IPv6 address |
| CN109040299A (en) * | 2018-09-03 | 2018-12-18 | 夸克链科技(深圳)有限公司 | A kind of ip v6 server is to the client active means of communication |
| CN111343088B (en) * | 2020-02-21 | 2021-01-29 | 清华大学 | Message transmission method and device, terminal and storage medium |
| CN111787130B (en) * | 2020-05-28 | 2022-06-24 | 武汉思普崚技术有限公司 | IPv6 address and prefix distribution method, device and computer readable storage medium |
| CN114520802A (en) * | 2020-11-18 | 2022-05-20 | 青岛海信宽带多媒体技术有限公司 | Communication method, client, gateway and system |
| CN114401249B (en) * | 2021-12-08 | 2024-01-23 | 云南电网有限责任公司红河供电局 | IPv6 address allocation method and system |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1937499A (en) * | 2006-10-13 | 2007-03-28 | 清华大学 | Domainname-based unified identification mark and authentication method |
| CN101656725A (en) * | 2009-09-24 | 2010-02-24 | 杭州华三通信技术有限公司 | Method for implementing safety access and access equipment |
| CN101924801A (en) * | 2010-05-21 | 2010-12-22 | 中国科学院计算机网络信息中心 | IP (Internet Protocol) address management method and system as well as DHCP (Dynamic Host Configuration Protocol) server |
| CN102404293A (en) * | 2010-09-15 | 2012-04-04 | 中兴通讯股份有限公司 | Dual-stack user managing method and broadband access server |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8625609B2 (en) * | 2006-05-19 | 2014-01-07 | Futurewei Technologies Inc. | Using DHCPv6 and AAA for mobile station prefix delegation and enhanced neighbor discovery |
-
2012
- 2012-07-20 CN CN201210254314.5A patent/CN102761630B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1937499A (en) * | 2006-10-13 | 2007-03-28 | 清华大学 | Domainname-based unified identification mark and authentication method |
| CN101656725A (en) * | 2009-09-24 | 2010-02-24 | 杭州华三通信技术有限公司 | Method for implementing safety access and access equipment |
| CN101924801A (en) * | 2010-05-21 | 2010-12-22 | 中国科学院计算机网络信息中心 | IP (Internet Protocol) address management method and system as well as DHCP (Dynamic Host Configuration Protocol) server |
| CN102404293A (en) * | 2010-09-15 | 2012-04-04 | 中兴通讯股份有限公司 | Dual-stack user managing method and broadband access server |
Non-Patent Citations (1)
| Title |
|---|
| 边林,唐雄燕,张震.IPv6宽带接入技术的研究与实验.《中国科技论文在线》.2011, * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102761630A (en) | 2012-10-31 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102761630B (en) | Real user identity information-oriented IPv6 (Internet Protocol Version 6) address distribution method | |
| US10009181B2 (en) | Extending DNSSEC trust chains to objects outside the DNS | |
| CN108476246B (en) | Secure domain name resolution in computer networks | |
| CN102045413B (en) | DHT expanded DNS mapping system and method for realizing DNS security | |
| US9088415B2 (en) | Authentication of cache DNS server responses | |
| US7653813B2 (en) | Method and apparatus for address creation and validation | |
| US7962584B2 (en) | Usage of host generating interface identifiers in DHCPv6 | |
| CN101960814B (en) | IP address delegation | |
| KR20130031660A (en) | Network apparatus based contents name and method for generate and authenticate contents name | |
| WO2008116416A1 (en) | Method, device and system for domain name system to update dynamically | |
| CN101594230B (en) | Method, device and system for processing dynamic host configuration protocol (DHCP) message | |
| CN109688243B (en) | Sensing node IPv 6address allocation method based on trusted identity | |
| CN101039181B (en) | Method for preventing service function entity of general authentication framework from attack | |
| CN102255983A (en) | Entity identifier allocation system, source tracing and authentication methods and server | |
| CN101741851A (en) | Token updating method for enhancing guarantee of source address authenticity | |
| CN102231766B (en) | Method and system for analyzing and verifying domain name | |
| CN102769677B (en) | Towards IPv6 address setting method and the server of real user identity information | |
| CN106936945A (en) | Distributed domain name analysis method and device | |
| CN112099964A (en) | Interface calling method and device, storage medium and electronic device | |
| CN115622817B (en) | Processing system and method of network identification | |
| CN110417758B (en) | Secure neighbor discovery operation mode detection method based on certificate request | |
| CN117014887A (en) | Multi-factor verifiable low-power consumption Bluetooth equipment IPv6 address automatic configuration method and system | |
| CN104468605A (en) | Distributed safety authentication method | |
| CN102769621B (en) | Real user identity-oriented host moving method | |
| Mantoro et al. | An implementation on Domain Name System security extensions framework for the support of IPv6 environment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |