CN103281693A - Wireless communication authentication method, network translation equipment and terminal - Google Patents
Wireless communication authentication method, network translation equipment and terminal Download PDFInfo
- Publication number
- CN103281693A CN103281693A CN2013101708643A CN201310170864A CN103281693A CN 103281693 A CN103281693 A CN 103281693A CN 2013101708643 A CN2013101708643 A CN 2013101708643A CN 201310170864 A CN201310170864 A CN 201310170864A CN 103281693 A CN103281693 A CN 103281693A
- Authority
- CN
- China
- Prior art keywords
- smart card
- authentication
- sign
- terminal
- authentication request
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention provides a wireless communication authentication method, network translation equipment and a terminal. The method comprises the following steps: receiving a first connection authentication request including the logo of a first smart card sent by the terminal provided with the first smart card; according to the first connection authentication request, sending an authentication request including the logo of the first smart card to a network terminal; receiving and transmitting a verification request returned by the network terminal to the terminal, wherein the verification request includes the random number and the authentication vector corresponding to the logo of the first smart card; and receiving and sending a verification response returned by the terminal to the network terminal, wherein the verification response includes the logo of the first smart card and the number of verification responses to be authenticated corresponding to the logo of the first smart card, and the number of verification responses to be authenticated is obtained through the terminal according to the verification request and a verification key corresponding to the logo of the first smart card. According to the method, the safety of wireless communication data connection can be ensured, and the smart card does not need to be arranged in the network translation equipment, therefore the cost is reduced.
Description
Technical field
The present invention relates to the communications field, relate in particular to a kind of wireless communication authentication method, link switch equipment and terminal.
Background technology
In current wireless communication technology, link switch equipment, 3G (Third Generation) Moblie technology (3rd-generation for example, be called for short 3G) wireless router, at first the mobile communication network that network terminal is provided is converted to wireless network signal, for example, is converted to Wireless Fidelity (Wireless-Fidelity, be called for short WI-FI) signal, then the wireless network signal that is converted to is offered terminal.In said process, in order to improve the fail safe that data connect, network terminal need authenticate link switch equipment usually, concrete, smart card is set in link switch equipment, network terminal realizes the authentication to described link switch equipment by the smart card in the link switch equipment is authenticated.Correspondingly, for smart card is set, also need hardware configuration and the circuit relevant with smart card are set in link switch equipment, as smart card draw-in groove and smart card adapter circuit etc.
Yet, because hardware configuration and the circuit relevant with smart card are set in equipment, can cause the heaviness of equipment usually, and cause the increase of cost.But if at link switch equipment smart card is not set, then network terminal can't authenticate link switch equipment, causes the fail safe that can't guarantee that wireless communication data connects.
Summary of the invention
The invention provides a kind of wireless communication authentication method, link switch equipment and terminal, be used for solving existing wireless communication authentication scheme, if link switch equipment does not possess the problem that smart card then can't guarantee the data connection safety.
First aspect of the present invention provides a kind of wireless communication authentication method, comprising:
Link switch equipment receives the first connection authentication request of the terminal transmission that is provided with first smart card, and described first connects the sign that authentication request comprises described first smart card;
According to the described first connection authentication request, send authentication request to network terminal, described authentication request comprises the sign of described first smart card;
Receive authentication request that described network terminal returns and send described authentication request to the described terminal that is provided with described first smart card, described authentication request comprises the Ciphering Key of the sign correspondence of the sign random number corresponding of described first smart card and described first smart card, and to be described network terminal obtain the sign random number corresponding of described first smart card according to the authentication key of the sign correspondence of described authentication request and described first smart card that prestores to described authentication request, return behind the Authentication Response number of the Ciphering Key of the sign correspondence of described first smart card and the sign correspondence of described first smart card;
Receive Authentication Response that the described terminal that is provided with described first smart card returns and send described Authentication Response to described network terminal, described Authentication Response comprises the Authentication Response number to be certified of the sign correspondence of the sign of described first smart card and described first smart card, and to be the described terminal that is provided with described first smart card obtain according to the authentication key of the sign correspondence of described authentication request and described first smart card described Authentication Response number to be certified.
Another aspect of the present invention provides another kind of wireless communication authentication method, comprising:
The terminal that is provided with first smart card sends first to link switch equipment and connects authentication request, send authentication request so that described link switch equipment connects authentication request according to described first to network terminal, described authentication request comprises the sign of described first smart card;
Receive the authentication request that described link switch equipment returns, described authentication request comprises the Ciphering Key of the sign correspondence of the sign random number corresponding of described first smart card and described first smart card, and to be described network terminal obtain to send to described link switch equipment behind the Authentication Response number of sign correspondence of the Ciphering Key of sign correspondence of the sign random number corresponding of described first smart card, described first smart card and described first smart card according to the authentication key of the sign correspondence of described authentication request and described first smart card that prestores described authentication request;
According to described authentication request, obtain the Authentication Response number to be certified of the sign correspondence of described first smart card;
Return Authentication Response to described link switch equipment, carry out authentication so that the described Authentication Response that described link switch equipment will receive sends to described network terminal, described Authentication Response comprises the Authentication Response number to be certified of the sign correspondence of the sign of described first smart card and described first smart card.
Another aspect of the present invention provides a kind of link switch equipment, comprising:
Receiver module is used for the first connection authentication request that reception is provided with the terminal transmission of first smart card, and described first connects the sign that authentication request comprises described first smart card;
Sending module is used for sending authentication request according to the described first connection authentication request to network terminal, and described authentication request comprises the sign of described first smart card;
Described receiver module, also be used for receiving the authentication request that described network terminal is returned, described authentication request comprises the Ciphering Key of the sign correspondence of the sign random number corresponding of described first smart card and described first smart card, and to be described network terminal obtain to return behind the Authentication Response number of sign correspondence of the Ciphering Key of sign correspondence of the sign random number corresponding of described first smart card, described first smart card and described first smart card according to the authentication key of the sign correspondence of described authentication request and described first smart card that prestores described authentication request;
Described sending module also is used for sending described authentication request to the described terminal that is provided with described first smart card
Described receiver module, also be used for receiving the Authentication Response that the described terminal that is provided with described first smart card is returned, described Authentication Response comprises the Authentication Response number to be certified of the sign correspondence of the sign of described first smart card and described first smart card, and to be the described terminal that is provided with described first smart card obtain according to the authentication key of the sign correspondence of described authentication request and described first smart card described Authentication Response number to be certified;
Described sending module also is used for sending described Authentication Response to described network terminal.
Another aspect of the present invention provides a kind of terminal, and described terminal is provided with first smart card, and described terminal comprises:
Sending module is used for sending first to link switch equipment and connects authentication request, sends authentication request so that described link switch equipment connects authentication request according to described first to network terminal, and described authentication request comprises the sign of described first smart card;
Receiver module, be used for receiving the authentication request that described link switch equipment returns, described authentication request comprises the Ciphering Key of the sign correspondence of the sign random number corresponding of described first smart card and described first smart card, and to be described network terminal obtain the sign random number corresponding of described first smart card according to the authentication key of the sign correspondence of described authentication request and described first smart card that prestores to described authentication request, send to described link switch equipment behind the Authentication Response number of the Ciphering Key of the sign correspondence of described first smart card and the sign correspondence of described first smart card;
Processing module is used for according to described authentication request, obtains the Authentication Response number to be certified of the sign correspondence of described first smart card;
Described sending module, also be used for returning Authentication Response to described link switch equipment, carry out authentication so that the described Authentication Response that described link switch equipment will receive sends to described network terminal, described Authentication Response comprises the Authentication Response number to be certified of the sign correspondence of the sign of described first smart card and described first smart card.
Wireless communication authentication method provided by the invention, link switch equipment and terminal, when receiving the connection authentication request that the terminal that is provided with smart card sends when link switch equipment, then send the authentication request of the sign that comprises described smart card to network terminal, so that described network terminal is carried out authentication according to described authentication request to described smart card, and after the authentication success, set up the scheme that data are connected with described network terminal, guarantee the fail safe that wireless communication data connects, and need not smart card is set in link switch equipment, thereby reduce cost.
Description of drawings
The schematic flow sheet of a kind of wireless communication authentication method that Fig. 1 provides for the embodiment of the invention one;
The schematic flow sheet of the another kind of wireless communication authentication method that Fig. 2 provides for the embodiment of the invention two;
The schematic flow sheet of another wireless communication authentication method that Fig. 3 provides for the embodiment of the invention four;
The schematic flow sheet of another wireless communication authentication method that Fig. 4 provides for the embodiment of the invention five;
The structural representation of the link switch equipment that Fig. 5 provides for the embodiment of the invention seven;
The structural representation of the terminal that Fig. 6 provides for the embodiment of the invention eight.
Embodiment
For the purpose, technical scheme and the advantage that make the embodiment of the invention is clearer, below in conjunction with the accompanying drawing in the embodiment of the invention, the technical scheme in the embodiment of the invention is clearly and completely described.
The schematic flow sheet of a kind of wireless communication authentication method that Fig. 1 provides for the embodiment of the invention one, as shown in Figure 1, described method comprises:
101, link switch equipment receives the first connection authentication request of the terminal transmission that is provided with first smart card, and described first connects the sign that authentication request comprises described first smart card.
Wherein, described link switch equipment possesses the function that mobile communication network is converted to wireless network signal, for example, be converted to Wireless Fidelity (Wireless-Fidelity, be called for short WI-FI) signal, concrete, described mobile communication network includes but not limited to: Long Term Evolution (Long Term Evolution, be called for short LTE), second generation mobile communication technology (second-generation, be called for short 2G), 3G (Third Generation) Moblie technology (3rd-generation, be called for short 3G) and global system for mobile communications enhancing data transfer rate evolution (Enhanced Data Rate for GSM Evolution is called for short EDGE) etc.More specifically, smart card and hardware configuration and the circuit relevant with smart card can be set in the described link switch equipment.
Wherein, the described terminal that is provided with smart card can be mobile phone, panel computer etc.Described smart card can be subscriber identification card (Subscriber Identity Module is called for short SIM) or global Subscriber Identity Module (Universal Subscriber Identity Module is called for short USIM).Accordingly, the sign of described smart card can be international mobile subscriber identity (International Mobile Subscriber Identity is called for short IMSI).
Concrete, the mode that described terminal and described link switch equipment can pass through WLAN (wireless local area network) (Wireless LAN is called for short WLAN), bluetooth or near-field communication (Near Field Communication is called for short NFC) realizes that data connect.
102, connect authentication request according to described first, send authentication request to network terminal, described authentication request comprises the sign of described first smart card.
Concrete, described network terminal can be LTE server net (Evolved Package Core is called for short EPC).
103, receive authentication request that described network terminal returns and send described authentication request to the described terminal that is provided with described first smart card, described authentication request comprises the Ciphering Key of the sign correspondence of the sign random number corresponding of described first smart card and described first smart card, and to be described network terminal obtain the sign random number corresponding of described first smart card according to the authentication key of the sign correspondence of described authentication request and described first smart card that prestores to described authentication request, return behind the Authentication Response number of the Ciphering Key of the sign correspondence of described first smart card and the sign correspondence of described first smart card.
104, receive Authentication Response that the described terminal that is provided with described first smart card returns and send described Authentication Response to described network terminal, described Authentication Response comprises the Authentication Response number to be certified of the sign correspondence of the sign of described first smart card and described first smart card, and to be the described terminal that is provided with described first smart card obtain according to the authentication key of the sign correspondence of described authentication request and described first smart card described Authentication Response number to be certified.
In actual applications, described authentication request can realize by adhering to request (Attach Request) message, and encapsulate the sign of described first smart card in the described Attach Request message; Described authentication request can be passed through authentication request (Authentication Request) message and realize, and the Ciphering Key of the sign correspondence of the sign random number corresponding of described first smart card of encapsulation and described first smart card in the described Authentication Request message; Accordingly, described Authentication Response can pass through Authentication Response (Authentication Response) message to be realized, and the Authentication Response number to be certified of the sign correspondence of the sign of described first smart card of encapsulation and described first smart card in the described Authentication Response message.
The wireless communication authentication method that present embodiment provides, when receiving the connection authentication request that the terminal that is provided with smart card sends when link switch equipment, then send the authentication request of the sign that comprises described smart card to network terminal, so that described network terminal is carried out the scheme of authentication to described smart card according to described authentication request, guarantee the fail safe that wireless communication data connects, and need not smart card is set in link switch equipment, thereby reduce cost.
The schematic flow sheet of the another kind of wireless communication authentication method that Fig. 2 provides for the embodiment of the invention two, as shown in Figure 2, according to embodiment one described wireless communication authentication method, if described network terminal then after 104, can also comprise the intelligent card authentication success:
201, receive the authentication success message that described network terminal returns and set up data with described network terminal and be connected, described authentication success message comprises the sign of described first smart card, and to be described network terminal return after to described first intelligent card authentication success according to the Authentication Response number of the sign correspondence of described Authentication Response and described first smart card described authentication success message;
202, according to described authentication success message, determine that described first smart card is for activating smart card and to the terminal return authentication success message that is provided with described activation smart card and set up data with the described terminal that is provided with described activation smart card and be connected.
In actual applications, described authentication success message can be realized by adhering to acceptance (Attach Accept) message, and encapsulate the sign of described first smart card in the described Attach Accept message.
In the practical application, after 202, arbitrary terminal all can be by carrying out WLAN scanning to the zone at its current place, get access to service set (the Service Set Identifier that described link switch equipment provides, be called for short SSID), and according to described SSID and default verification algorithm, obtain corresponding encryption key and send to described link switch equipment to authenticate, if authentication success, then can set up with the data of described link switch equipment and be connected.
Concrete, the process of setting up the data connection can comprise: described link switch equipment is by DynamicHost setting (Dynamic Host Configuration Protocol, abbreviation DHCP) agreement is terminal distribution internet protocol address (Internet Protocol Address, be called for short the IP address), so that described terminal is according to described IP address, thereby self networks configuration arranged to use that described link switch equipment provides and mobile communication network, namely and the data channel between the described network terminal.
Optionally, in a kind of embodiment of present embodiment, described authentication request can also comprise the described sign that is provided with the terminal of described first smart card, and is then corresponding, before described network terminal is returned described authentication request to described link switch equipment, also comprise:
Described network terminal is according to the sign of the sign of a plurality of smart cards of this locality storage and the described a plurality of smart cards sign of corresponding terminal respectively, and whether the sign that detects described first smart card in the described authentication request and the described terminal that is provided with described first smart card is corresponding;
If corresponding, then return described authentication request to described link switch equipment.
Whether present embodiment detected earlier the terminal at this smart card and its current place before network terminal is carried out authentication to smart card corresponding, if corresponding, further it carried out authentication again.Can further improve the fail safe that radio communication connects by this programme.
Optionally, after 201, described link switch equipment can be according to the disconnection request of terminal initiation, and disconnection is connected with the data of described network terminal, and corresponding concrete grammar comprises:
Receive the disconnection request that arbitrary terminal sends;
According to described disconnection request, disconnection is connected with the data of described network terminal.
In this execution mode, when terminal need not to carry out the data connection, can initiate to disconnect request to described link switch equipment again, be connected with the data of described network terminal so that described link switch equipment disconnects.Wherein, described terminal can be the aforesaid terminal that is provided with described activation smart card, also can be provided with the terminal of smart card for other, and can effectively avoid waste of network resources by this execution mode.
The wireless communication authentication method that present embodiment provides after described network terminal is to the intelligent card authentication success, is then set up the scheme that is connected with the data of described network terminal by described link switch equipment, guarantees the fail safe that wireless communication data connects.
The embodiment of the invention three provides another wireless communication authentication method, according to embodiment two described wireless communication authentication methods, described in 202 according to described authentication success message, determine that described first smart card for activating after the smart card, can also comprise:
Store the sign of described activation smart card;
Accordingly, connecting authentication request according to described first described in 102, send authentication request to described network terminal, specifically can comprise:
According to the described first connection authentication request, if current sign of not storing described activation smart card then sends authentication request to described network terminal.
The application scenarios of above-mentioned execution mode is, when described link switch equipment receives the connection authentication request of terminal transmission, if detect the current sign that activates smart card that do not store, that is to say, the connection authentication request that described link switch equipment sends according to terminal, if detect the current network terminal smart card of authentication success that do not have, then the sign of the smart card that arranges on this terminal is issued described network terminal, so that described network terminal is carried out authentication to this smart card.
Optionally, in a kind of embodiment of present embodiment, after 201, can also comprise:
Reception is provided with the second connection authentication request of the terminal transmission of second smart card, and described second connects the sign that authentication request comprises described second smart card, and the sign of described second smart card is different with the sign of described activation smart card;
Send described second to the terminal that is provided with described activation smart card and connect authentication request, so that the described terminal that is provided with described activation smart card authenticates described second smart card;
If receive the authentication success message of the sign that comprises described second smart card that the described terminal that is provided with described activation smart card returns, then return to connect authentication response and set up data with the described terminal that is provided with described second smart card to the described terminal that is provided with described second smart card and be connected.
The application scenarios of present embodiment is, store the link switch equipment of the sign that activates smart card according to the connection authentication request that receives, detect storage described activation smart card sign and should be connected the sign difference of the smart card in the authentication request, then will connect authentication request and be transmitted to the terminal that is provided with described activation smart card and authenticate.By this execution mode, can authenticate other terminal that is provided with smart card, improve the fail safe of radio communication.
Optionally, in above-mentioned arbitrary execution mode of present embodiment, after 202, can also comprise:
Reception is provided with that the terminal of described activation smart card sends goes authentication request, described sign of going authentication request to comprise described activation smart card;
According to described sign of removing the described activation smart card in the authentication request, sign and the disconnection of the described activation smart card of deletion storage are connected with the data of described network terminal.
In the practical application, the described authentication request of going can be passed through the realization of detach request (Detach Request) message, and encapsulates the sign of described activation smart card in the described Detach Request message.
Wherein, described according to described sign of removing the described activation smart card in the authentication request, the sign of the described activation smart card of deletion storage, specifically comprise: when described link switch equipment receive the sign that comprises smart card that terminal sends go authentication request the time, if it is identical to detect the sign of activation smart card of described sign of removing the smart card in the authentication request and storage, then the sign of the described activation smart card of deletion storage; Accordingly, if it is different to detect the sign of activation smart card of described sign of removing the smart card in the authentication request and storage, does not then carry out and remove authentication operation accordingly.Can avoid the frequent operation that goes authentication request to cause because of other terminal by this scheme.
In the present embodiment, link switch equipment is according to the sign of removing the activation smart card in the authentication request that is provided with the terminal transmission that activates smart card, remove accordingly authentication operation, thereby realize to activate smart card go authenticate and disconnection is connected with the data of network terminal, avoid network resources waste.
The wireless communication authentication method that present embodiment provides, by link switch equipment in network terminal to after the intelligent card authentication success, store the sign of this smart card, thereby the scheme that can authenticate and go authentication operation to other smart card by the sign of this smart card further effectively guarantees the fail safe that wireless communication data connects.
The schematic flow sheet of another wireless communication authentication method that Fig. 3 provides for the embodiment of the invention four, as shown in Figure 3, described method comprises:
301, be provided with the terminal of first smart card to the link switch equipment transmission first connection authentication request, send authentication request so that described link switch equipment connects authentication request according to described first to network terminal, described authentication request comprises the sign of described first smart card;
302, receive the authentication request that described link switch equipment returns, described authentication request comprises the Ciphering Key of the sign correspondence of the sign random number corresponding of described first smart card and described first smart card, and to be described network terminal obtain to send to described link switch equipment behind the Authentication Response number of sign correspondence of the Ciphering Key of sign correspondence of the sign random number corresponding of described first smart card, described first smart card and described first smart card according to the authentication key of the sign correspondence of described authentication request and described first smart card that prestores described authentication request;
303, according to described authentication request, obtain the Authentication Response number to be certified of the sign correspondence of described first smart card;
304, return Authentication Response to described link switch equipment, carry out authentication so that the described Authentication Response that described link switch equipment will receive sends to described network terminal, described Authentication Response comprises the Authentication Response number to be certified of the sign correspondence of the sign of described first smart card and described first smart card.
Optionally, as a kind of enforceable mode of present embodiment, 303 specifically can comprise:
Send described authentication request to described first smart card, so that described first smart card obtains the Authentication Response number to be certified of the sign correspondence of described first smart card according to the authentication key of the sign correspondence of described first smart card of described authentication request and storage;
Receive the Authentication Response number to be certified of the sign correspondence of described first smart card that described first smart card returns.
In this embodiment, the Authentication Response number to be certified of the sign correspondence of described first smart card is to send to described first smart card by the described authentication request that the terminal that described first smart card is set will receive, so that its authentication key according to self storage obtains.This execution mode can obtain Authentication Response number to be certified easily, but in some cases, for example, during as if the hardware configuration relevant with this smart card or circuit transmission fault, described terminal just possibly can't be sent to this smart card with described authentication request.
Optionally, in order further to guarantee to realize that the authentication to smart card activates, improve the reliability of wireless communication authentication, as the another kind of enforceable mode of present embodiment, 303 specifically can comprise:
Send authentication key call request to aerial download (Over the AirTechnology is called for short OTA) server, described authentication key call request comprises the sign of described first smart card;
Receive the authentication key that described OTA server returns and call response, described authentication key calls the authentication key of sign correspondence that response comprises described first smart card, and described authentication key calls the described OTA server of response and returns after to described first smart card authentication success according to described authentication key call request;
According to authentication key and the described authentication request of the sign correspondence of described first smart card, obtain the Authentication Response number to be certified of the sign correspondence of described first smart card.
In the practical application, can store the sign of the smart card of a plurality of process in advance authentication in the described OTA server, then corresponding, described OTA server specifically can comprise the authentication method of described first smart card: if detect the sign of described first smart card in the described authentication key call request, one of sign of a plurality of smart cards that prestore for this locality, then successful to described first smart card authentication, otherwise, authentification failure.
The wireless communication authentication method that present embodiment provides, send the connection authentication request by the terminal that is provided with smart card to link switch equipment, so that described link switch equipment sends authentication request according to described connection authentication request to network terminal, thereby make described network terminal carry out authentication to described smart card, and after the authentication success, set up the scheme that described link switch equipment is connected with described network terminal data, guarantee the fail safe that wireless communication data connects, and need not smart card is set in link switch equipment, thereby reduce cost.
The schematic flow sheet of another wireless communication authentication method that Fig. 4 provides for the embodiment of the invention five, as shown in Figure 4, according to embodiment four described wireless communication authentication methods, if described network terminal is to described first intelligent card authentication success, after 304, can also comprise:
401, receive the authentication success message that described link switch equipment returns and set up data with described link switch equipment and is connected, described authentication success message is that described link switch equipment is determined to return after described first smart card is for the activation smart card according to the authentication success message of the sign of receiving from described network termination that comprises described first smart card.
Optionally, do not connect if described terminal does not need to carry out data again, then after 401, can also comprise:
Send the request of disconnection to described link switch equipment, be connected with the data of described network terminal so that described link switch equipment disconnects according to described disconnection request.
In this execution mode, when terminal need not to carry out the data connection, can initiate to disconnect request to described link switch equipment again, be connected with the data of described network terminal so that described link switch equipment disconnects, effectively avoid waste of network resources.
The wireless communication authentication method that present embodiment provides after receiving the authentication success message that described link switch equipment returns, is set up the scheme that is connected with the data of described link switch equipment by terminal, the fail safe of assurance wireless communication data connection.
The embodiment of the invention six provides another wireless communication authentication method, according to embodiment five described wireless communication authentication methods, to be described link switch equipment determine described first smart card for activating smart card according to described authentication success message to the message of authentication success described in 401, and store and return after the sign of described activation smart card;
Accordingly, the first connection authentication request described in 301 specifically is used for making described link switch equipment to send described authentication request to network terminal according to the described first connection authentication request when detecting the sign of current storage activation smart card.
Concrete, when link switch equipment receives the connection authentication request of the terminal transmission that is provided with smart card, if detect the sign that current not storage activates smart card, that is to say, if the current smart card that does not also pass through the success of network terminal authentication then sends corresponding authentication request to realize the authentication to this smart card to network terminal; But if detect the current sign that activates smart card that stored, then no longer other smart card is carried out authentication.
Optionally, in a kind of embodiment of present embodiment, after 401, can also comprise:
Receive the second connection authentication request that described link switch equipment sends, described second connects the sign that authentication request comprises second smart card, the described second connection authentication request is that the terminal that is provided with described second smart card sends to described link switch equipment, and the sign of described second smart card is different with the sign of described activation smart card;
If receive user's authentication success instruction, then return the authentication success message of the sign that comprises described second smart card to described link switch equipment, be connected so that described link switch equipment returns to connect authentication response and set up data with the described terminal that is provided with described second smart card to the described terminal that is provided with described second smart card according to described authentication success message.
Wherein, described user is specifically as follows current use this is provided with the user of the terminal that activates smart card.The application scenarios of this embodiment can for, when link switch equipment according to the connection authentication request that receives, detecting this smart card is not when activating smart card, then will connect authentication request and be transmitted to the terminal that is provided with the activation smart card, to realize the authentication to this smart card.Further, in actual applications, when the terminal that is provided with the activation smart card receives the connection authentication request, described user can authenticate it according to this sign that connects the smart card in the authentication request, specifically for instance, if the user that the user judges this smart card correspondence according to the sign of this smart card is the friend of oneself, then the user can send the authentication success instruction to being provided with the terminal that activates smart card by corresponding operation; Opposite, if the user judges that the user of this smart card correspondence is the stranger, then do not send the authentication success instruction.
Optionally, in above-mentioned arbitrary execution mode of present embodiment, after 401, can also comprise:
Send the authentication request of going of the sign that comprises described activation smart card to described link switch equipment, so that described link switch equipment is connected with the data of described network terminal according to sign and the disconnection of the described activation smart card of described sign deletion storage of removing the described activation smart card in the authentication request.
In the present embodiment, be provided with the terminal that activates smart card and go authentication request to the link switch equipment transmission, so that it removes authentication operation accordingly, thus realize to activate smart card go authenticate and disconnection is connected with the data of network terminal, avoid network resources waste.
The wireless communication authentication method that present embodiment provides, by after network terminal is to the intelligent card authentication success, link switch equipment is stored the sign of this smart card, thereby the scheme that can authenticate other smart card by the smart card of this authentication success further effectively guarantees the fail safe that wireless communication data connects.
The structural representation of the link switch equipment that Fig. 5 provides for the embodiment of the invention seven, as shown in Figure 5, described link switch equipment comprises: receiver module 51 and sending module 52, wherein,
Sending module 52 is used for sending authentication request according to the described first connection authentication request to network terminal, and described authentication request comprises the sign of described first smart card;
Sending module 52 also is used for sending described authentication request to the described terminal that is provided with described first smart card
Sending module 52 also is used for sending described Authentication Response to described network terminal.
Wherein, described link switch equipment possesses the function that mobile communication network is converted to wireless network signal, and smart card and hardware configuration and the circuit relevant with smart card are not set.The described terminal that is provided with smart card can be smart mobile phone, intelligent panel computer etc., and described smart card can be SIM or USIM.Accordingly, the sign of described smart card can be international mobile subscriber identity IMSI.
Further, if described network terminal is to the intelligent card authentication success, then receiver module 51, also be used for to receive the authentication success message that described network terminal returns and set up data with described network terminal and be connected, described authentication success message comprises the sign of described first smart card, and to be described network terminal return after to described first intelligent card authentication success according to the Authentication Response number of the sign correspondence of described Authentication Response and described first smart card described authentication success message; Accordingly, described link switch equipment also comprises:
Sending module 52 also is used for to the terminal return authentication success message that is provided with described activation smart card and sets up data with the described terminal that is provided with described activation smart card being connected.
By this execution mode, described link switch equipment is then set up the scheme that is connected with the data of described network terminal after described network terminal is to the intelligent card authentication success, guarantee the fail safe that wireless communication data connects.
Optionally, when connecting in order to need not to carry out data when terminal, described link switch equipment can disconnect with the data of described network terminal and being connected, in a kind of embodiment of above-mentioned execution mode again, receiver module 51 also is used for receiving the disconnection request that arbitrary terminal sends; Processing module 53 also is used for according to described disconnection request, disconnects being connected with the data of described network terminal.
Optionally, in the another kind of embodiment of above-mentioned execution mode, processing module 53 also is used for determining described first smart card for after the activation smart card, the sign of storing described activation smart card according to described authentication success message; Accordingly, sending module 52, concrete being used for according to the described first connection authentication request, if current sign of not storing described activation smart card then sends authentication request to described network terminal.
Concrete, when receiver module 51 receives the connection authentication request of terminal transmission, if the processing module 53 current signs that activate smart card that do not store, then sending module 52 is issued described network terminal with the sign of the smart card that arranges on this terminal, so that described network terminal is carried out authentication to this smart card.
Further, in above-mentioned embodiment, for the terminal that other is provided with smart card further authenticates, receiver module 51, also be used for receiving the second connection authentication request of the terminal transmission that is provided with second smart card, described second connects the sign that authentication request comprises described second smart card, and the sign of described second smart card is different with the sign of described activation smart card; Sending module 52 also is used for sending described second to the terminal that is provided with described activation smart card and connects authentication request, so that the described terminal that is provided with described activation smart card authenticates described second smart card; Sending module 52, also be used for if receiver module 51 receives the authentication success message of the sign that comprises described second smart card that the described terminal that is provided with described activation smart card returns, then return to connect authentication response and set up data with the described terminal that is provided with described second smart card to the described terminal that is provided with described second smart card and be connected.
Optionally, in above-mentioned arbitrary execution mode of this embodiment, receiver module 51, what be used for to receive also that the terminal that is provided with described activation smart card sends goes authentication request, described sign of going authentication request to comprise described activation smart card;
Concrete, when receiver module 51 receive the sign that comprises smart card that terminal sends go authentication request the time, processing module 53 is identical if detect the sign of activation smart card of described sign of removing the smart card in the authentication request and storage, then delete the sign of the described activation smart card of storage, otherwise, do not carry out and remove authentication operation accordingly.Can avoid the frequent operation that goes authentication request to cause because of other terminal by this scheme.
The link switch equipment that present embodiment provides, by when receiving the connection authentication request of the terminal transmission that is provided with smart card, then send the authentication request of the sign that comprises described smart card to network terminal, so that described network terminal is carried out authentication according to described authentication request to described smart card, guarantee the fail safe that wireless communication data connects, and need not smart card is set in link switch equipment, thereby reduce cost.
The structural representation of the terminal that Fig. 6 provides for the embodiment of the invention eight, as shown in Figure 8, described terminal is provided with first smart card, comprising: sending module 61, receiver module 62 and processing module 63; Wherein, sending module 61 is used for sending first to link switch equipment and connects authentication request, sends authentication request so that described link switch equipment connects authentication request according to described first to network terminal, and described authentication request comprises the sign of described first smart card;
Sending module 61, also be used for returning Authentication Response to described link switch equipment, carry out authentication so that the described Authentication Response that described link switch equipment will receive sends to described network terminal, described Authentication Response comprises the Authentication Response number to be certified of the sign correspondence of the sign of described first smart card and described first smart card.
Optionally, as a kind of enforceable mode of present embodiment, processing module 63 comprises:
First transmitting element, be used for sending described authentication request to described first smart card, so that described first smart card obtains the Authentication Response number to be certified of the sign correspondence of described first smart card according to the authentication key of the sign correspondence of described first smart card of described authentication request and storage;
First receiving element be used for to receive the Authentication Response number to be certified of the sign correspondence of described first smart card that described first smart card returns.
Concrete, described first transmitting element sends to described first smart card with described authentication request, so that it obtains Authentication Response number to be certified according to the authentication key of self storing, further, described first receiving element receives the Authentication Response number described to be certified that first smart card returns.
This execution mode can more directly obtain Authentication Response number to be certified, but in some cases, described terminal just possibly can't be obtained Authentication Response number to be certified from smart card.Therefore, in order further to improve the reliability of wireless communication authentication, optional, processing module 63 can comprise:
Second transmitting element is used for sending authentication key call request to aerial download OTA server, and described authentication key call request comprises the sign of described first smart card;
Second receiving element, the authentication key that returns for the described OTA server of reception calls response, described authentication key calls the authentication key of sign correspondence that response comprises described first smart card, and described authentication key calls the described OTA server of response and returns after to described first smart card authentication success according to described authentication key call request;
Processing unit is used for authentication key and described authentication request according to the sign correspondence of described first smart card, obtains the Authentication Response number to be certified of the sign correspondence of described first smart card.
Above-mentioned arbitrary execution mode according to present embodiment, if described network terminal is to described first intelligent card authentication success, then receiver module 62, also be used for to receive the authentication success message that described link switch equipment returns and set up data with described link switch equipment and is connected, described authentication success message is that described link switch equipment is determined to return after described first smart card is for the activation smart card according to the authentication success message of the sign of receiving from described network termination that comprises described first smart card.
By present embodiment, terminal is set up and is connected the fail safe of assurance wireless communication data connection with the data of described link switch equipment after receiving the authentication success message that described link switch equipment returns.
Optionally, in a kind of embodiment of this execution mode, if not needing to carry out data again, described terminal do not connect, then sending module 61, also be used for sending the request of disconnection to described link switch equipment, be connected with the data of described network terminal so that described link switch equipment disconnects according to described disconnection request.
By this embodiment, when terminal need not to carry out the data connection again, can initiate to disconnect request to described link switch equipment, so that disconnecting, described link switch equipment is connected with the data of described network terminal, effectively avoid waste of network resources.
Optionally, in the another kind of embodiment of this execution mode, to be described link switch equipment determine described first smart card for activating smart card according to described authentication success message to described authentication success message, and store and return after the sign of described activation smart card; Accordingly, the described first connection authentication request specifically is used for making described link switch equipment to send described authentication request to network terminal according to the described first connection authentication request when detecting the sign of current storage activation smart card.
Under this embodiment, receiver module 62, also can be used for receiving the second connection authentication request that described link switch equipment sends, described second connects the sign that authentication request comprises second smart card, the described second connection authentication request is that the terminal that is provided with described second smart card sends to described link switch equipment, and the sign of described second smart card is different with the sign of described activation smart card;
Sending module 61, also can be used for if receiver module 62 receives user's authentication success instruction, then return the authentication success message of the sign that comprises described second smart card to described link switch equipment, be connected so that described link switch equipment returns to connect authentication response and set up data with the described terminal that is provided with described second smart card to the described terminal that is provided with described second smart card according to described authentication success message.
By above-mentioned execution mode, can other terminal that is provided with smart card be authenticated by the described terminal that is provided with described activation smart card, improve the fail safe of radio communication.
Optionally, under above-mentioned arbitrary embodiment, when the terminal that is provided with described activation smart card need not to carry out the data connection again, sending module 62, also be used for sending to described link switch equipment the authentication request of going of the sign that comprises described activation smart card, so that described link switch equipment is connected with the data of described network terminal according to sign and the disconnection of the described activation smart card of described sign deletion storage of removing the described activation smart card in the authentication request.
In the present embodiment, terminal sends to link switch equipment and goes authentication request so that it removes authentication operation accordingly, thereby realize to activate smart card go authenticate and disconnection is connected with the data of network terminal, avoid network resources waste.
The terminal that is provided with smart card that present embodiment provides, connect authentication request by sending to link switch equipment, so that described link switch equipment sends authentication request according to described connection authentication request to network terminal, thereby make described network terminal carry out authentication to described smart card, and after authentication success, set up described link switch equipment and be connected with described network terminal data, guarantee the fail safe that wireless communication data connects, and need not smart card is set in link switch equipment, thereby reduce cost.
Need to prove that the link switch equipment that above-described embodiment provides and terminal all can realize the step of the wireless communication authentication method that the arbitrary embodiment of the present invention provides, the specific implementation method does not repeat them here.
One of ordinary skill in the art will appreciate that: all or part of step that realizes above-mentioned each method embodiment can be finished by the relevant hardware of program command.Aforesaid program can be stored in the computer read/write memory medium.This program is carried out the step that comprises above-mentioned each method embodiment when carrying out; And aforesaid storage medium comprises: various media that can be program code stored such as ROM, RAM, magnetic disc or CD.
It should be noted that at last: above each embodiment is not intended to limit only in order to technical scheme of the present invention to be described; Although the present invention has been described in detail with reference to aforementioned each embodiment, those of ordinary skill in the art is to be understood that: it still can be made amendment to the technical scheme that aforementioned each embodiment puts down in writing, and perhaps some or all of technical characterictic wherein is equal to replacement; And these modifications or replacement do not make the essence of appropriate technical solution break away from the scope of various embodiments of the present invention technical scheme.
Claims (28)
1. a wireless communication authentication method is characterized in that, comprising:
Link switch equipment receives the first connection authentication request of the terminal transmission that is provided with first smart card, and described first connects the sign that authentication request comprises described first smart card;
According to the described first connection authentication request, send authentication request to network terminal, described authentication request comprises the sign of described first smart card;
Receive authentication request that described network terminal returns and send described authentication request to the described terminal that is provided with described first smart card, described authentication request comprises the Ciphering Key of the sign correspondence of the sign random number corresponding of described first smart card and described first smart card, and to be described network terminal obtain the sign random number corresponding of described first smart card according to the authentication key of the sign correspondence of described authentication request and described first smart card that prestores to described authentication request, return behind the Authentication Response number of the Ciphering Key of the sign correspondence of described first smart card and the sign correspondence of described first smart card;
Receive Authentication Response that the described terminal that is provided with described first smart card returns and send described Authentication Response to described network terminal, described Authentication Response comprises the Authentication Response number to be certified of the sign correspondence of the sign of described first smart card and described first smart card, and to be the described terminal that is provided with described first smart card obtain according to the authentication key of the sign correspondence of described authentication request and described first smart card described Authentication Response number to be certified.
2. method according to claim 1 is characterized in that, and is described after described network terminal sends described Authentication Response, also comprises:
Receive the authentication success message that described network terminal returns and set up data with described network terminal and be connected, described authentication success message comprises the sign of described first smart card, and to be described network terminal return after to described first intelligent card authentication success according to the Authentication Response number of the sign correspondence of described Authentication Response and described first smart card described authentication success message;
According to described authentication success message, determine described first smart card for activating smart card, to the terminal return authentication success message that is provided with described activation smart card and set up data with the described terminal that is provided with described activation smart card and be connected.
3. method according to claim 2 is characterized in that, and is described according to described authentication success message, determines that described first smart card for after the activation smart card, also comprises:
Store the sign of described activation smart card;
Described according to the described first connection authentication request, to described network terminal transmission authentication request, comprising:
According to the described first connection authentication request, if current sign of not storing described activation smart card then sends authentication request to described network terminal.
4. method according to claim 3 is characterized in that, the authentication success message that the described network terminal of described reception is returned is also set up after data are connected with described network terminal, also comprises:
Reception is provided with the second connection authentication request of the terminal transmission of second smart card, and described second connects the sign that authentication request comprises described second smart card, and the sign of described second smart card is different with the sign of described activation smart card;
Send described second to the terminal that is provided with described activation smart card and connect authentication request, so that the described terminal that is provided with described activation smart card authenticates described second smart card;
If receive the authentication success message of the sign that comprises described second smart card that the described terminal that is provided with described activation smart card returns, then return to connect authentication response and set up data with the described terminal that is provided with described second smart card to the described terminal that is provided with described second smart card and be connected.
5. according to claim 3 or 4 described methods, it is characterized in that, described after the terminal return authentication success message that is provided with described activation smart card, also comprise:
Reception is provided with that the terminal of described activation smart card sends goes authentication request, described sign of going authentication request to comprise described activation smart card;
According to described sign of removing the described activation smart card in the authentication request, sign and the disconnection of the described activation smart card of deletion storage are connected with the data of described network terminal.
6. method according to claim 2 is characterized in that, the authentication success message that the described network terminal of described reception is returned is also set up after data are connected with described network terminal, also comprises:
Receive the disconnection request that arbitrary terminal sends;
According to described disconnection request, disconnection is connected with the data of described network terminal.
7. a wireless communication authentication method is characterized in that, comprising:
The terminal that is provided with first smart card sends first to link switch equipment and connects authentication request, send authentication request so that described link switch equipment connects authentication request according to described first to network terminal, described authentication request comprises the sign of described first smart card;
Receive the authentication request that described link switch equipment returns, described authentication request comprises the Ciphering Key of the sign correspondence of the sign random number corresponding of described first smart card and described first smart card, and to be described network terminal obtain to send to described link switch equipment behind the Authentication Response number of sign correspondence of the Ciphering Key of sign correspondence of the sign random number corresponding of described first smart card, described first smart card and described first smart card according to the authentication key of the sign correspondence of described authentication request and described first smart card that prestores described authentication request;
According to described authentication request, obtain the Authentication Response number to be certified of the sign correspondence of described first smart card;
Return Authentication Response to described link switch equipment, carry out authentication so that the described Authentication Response that described link switch equipment will receive sends to described network terminal, described Authentication Response comprises the Authentication Response number to be certified of the sign correspondence of the sign of described first smart card and described first smart card.
8. method according to claim 7 is characterized in that, and is described according to described authentication request, obtains the Authentication Response number to be certified of the sign correspondence of described first smart card, comprising:
Send described authentication request to described first smart card, so that described first smart card obtains the Authentication Response number to be certified of the sign correspondence of described first smart card according to the authentication key of the sign correspondence of described first smart card of described authentication request and storage;
Receive the Authentication Response number to be certified of the sign correspondence of described first smart card that described first smart card returns.
9. method according to claim 7 is characterized in that, and is described according to described authentication request, obtains the Authentication Response number to be certified of the sign correspondence of described first smart card, comprising:
Send authentication key call request to aerial download OTA server, described authentication key call request comprises the sign of described first smart card;
Receive the authentication key that described OTA server returns and call response, described authentication key calls the authentication key of sign correspondence that response comprises described first smart card, and described authentication key calls the described OTA server of response and returns after to described first smart card authentication success according to described authentication key call request;
According to authentication key and the described authentication request of the sign correspondence of described first smart card, obtain the Authentication Response number to be certified of the sign correspondence of described first smart card.
10. according to each described method of claim 7-9, it is characterized in that, described after described link switch equipment returns Authentication Response, also comprise:
Receive the authentication success message that described link switch equipment returns and set up data with described link switch equipment and be connected, described authentication success message is that described link switch equipment determines that according to the authentication success message of the sign of receiving from described network termination that comprises described first smart card described first smart card returns after activating smart card.
11. method according to claim 10, it is characterized in that, to be described link switch equipment determine described first smart card for activating smart card according to described authentication success message to described authentication success message, and store and return after the sign of described activation smart card;
The described first connection authentication request specifically is used for making described link switch equipment to send described authentication request to network terminal according to the described first connection authentication request when detecting the sign of current storage activation smart card.
12. method according to claim 11 is characterized in that, after the authentication success message that the described link switch equipment of described reception returns, also comprises:
Receive the second connection authentication request that described link switch equipment sends, described second connects the sign that authentication request comprises second smart card, the described second connection authentication request is that the terminal that is provided with described second smart card sends to described link switch equipment, and the sign of described second smart card is different with the sign of described activation smart card;
If receive user's authentication success instruction, then return the authentication success message of the sign that comprises described second smart card to described link switch equipment, be connected so that described link switch equipment returns to connect authentication response and set up data with the described terminal that is provided with described second smart card to the described terminal that is provided with described second smart card according to described authentication success message.
13., it is characterized in that the authentication success message that the described link switch equipment of described reception returns is also set up after data are connected with described link switch equipment, also comprises according to claim 11 or 12 described methods:
Send the authentication request of going of the sign that comprises described activation smart card to described link switch equipment, so that described link switch equipment is connected with the data of described network terminal according to sign and the disconnection of the described activation smart card of described sign deletion storage of removing the described activation smart card in the authentication request.
14. method according to claim 10 is characterized in that, the authentication success message that the described link switch equipment of described reception returns is also set up after data are connected with described link switch equipment, also comprises:
Send the request of disconnection to described link switch equipment, be connected with the data of described network terminal so that described link switch equipment disconnects according to described disconnection request.
15. a link switch equipment is characterized in that, comprising:
Receiver module is used for the first connection authentication request that reception is provided with the terminal transmission of first smart card, and described first connects the sign that authentication request comprises described first smart card;
Sending module is used for sending authentication request according to the described first connection authentication request to network terminal, and described authentication request comprises the sign of described first smart card;
Described receiver module, also be used for receiving the authentication request that described network terminal is returned, described authentication request comprises the Ciphering Key of the sign correspondence of the sign random number corresponding of described first smart card and described first smart card, and to be described network terminal obtain to return behind the Authentication Response number of sign correspondence of the Ciphering Key of sign correspondence of the sign random number corresponding of described first smart card, described first smart card and described first smart card according to the authentication key of the sign correspondence of described authentication request and described first smart card that prestores described authentication request;
Described sending module also is used for sending described authentication request to the described terminal that is provided with described first smart card
Described receiver module, also be used for receiving the Authentication Response that the described terminal that is provided with described first smart card is returned, described Authentication Response comprises the Authentication Response number to be certified of the sign correspondence of the sign of described first smart card and described first smart card, and to be the described terminal that is provided with described first smart card obtain according to the authentication key of the sign correspondence of described authentication request and described first smart card described Authentication Response number to be certified;
Described sending module also is used for sending described Authentication Response to described network terminal.
16. link switch equipment according to claim 15 is characterized in that,
Described receiver module, also be used for to receive the authentication success message that described network terminal returns and set up data with described network terminal and be connected, described authentication success message comprises the sign of described first smart card, and to be described network terminal return after to described first intelligent card authentication success according to the Authentication Response number of the sign correspondence of described Authentication Response and described first smart card described authentication success message;
Described link switch equipment also comprises:
Processing module is used for according to described authentication success message, determines that described first smart card is for activating smart card;
Described sending module also is used for to the terminal return authentication success message that is provided with described activation smart card and sets up data with the described terminal that is provided with described activation smart card being connected.
17. link switch equipment according to claim 16 is characterized in that,
Described processing module also is used for determining described first smart card for after the activation smart card, the sign of storing described activation smart card according to described authentication success message;
Described sending module, concrete being used for according to the described first connection authentication request, if current sign of not storing described activation smart card then sends authentication request to described network terminal.
18. link switch equipment according to claim 17 is characterized in that,
Described receiver module, also be used for receiving the second connection authentication request of the terminal transmission that is provided with second smart card, described second connects the sign that authentication request comprises described second smart card, and the sign of described second smart card is different with the sign of described activation smart card;
Described sending module also is used for sending described second to the terminal that is provided with described activation smart card and connects authentication request, so that the described terminal that is provided with described activation smart card authenticates described second smart card;
Described sending module, also be used for if described receiver module receives the authentication success message of the sign that comprises described second smart card that the described terminal that is provided with described activation smart card returns, then return to connect authentication response and set up data with the described terminal that is provided with described second smart card to the described terminal that is provided with described second smart card and be connected.
19. according to claim 17 or 18 described link switch equipments, it is characterized in that,
Described receiver module, what be used for to receive also that the terminal that is provided with described activation smart card sends goes authentication request, described sign of going authentication request to comprise described activation smart card;
Described processing module also is used for according to described sign of removing the described activation smart card of authentication request, and sign and the disconnection of the described activation smart card of deletion storage are connected with the data of described network terminal.
20. link switch equipment according to claim 16 is characterized in that,
Described receiver module also is used for receiving the disconnection request that arbitrary terminal sends;
Described processing module also is used for according to described disconnection request, disconnects being connected with the data of described network terminal.
21. a terminal is characterized in that described terminal is provided with first smart card, described terminal comprises:
Sending module is used for sending first to link switch equipment and connects authentication request, sends authentication request so that described link switch equipment connects authentication request according to described first to network terminal, and described authentication request comprises the sign of described first smart card;
Receiver module, be used for receiving the authentication request that described link switch equipment returns, described authentication request comprises the Ciphering Key of the sign correspondence of the sign random number corresponding of described first smart card and described first smart card, and to be described network terminal obtain the sign random number corresponding of described first smart card according to the authentication key of the sign correspondence of described authentication request and described first smart card that prestores to described authentication request, send to described link switch equipment behind the Authentication Response number of the Ciphering Key of the sign correspondence of described first smart card and the sign correspondence of described first smart card;
Processing module is used for according to described authentication request, obtains the Authentication Response number to be certified of the sign correspondence of described first smart card;
Described sending module, also be used for returning Authentication Response to described link switch equipment, carry out authentication so that the described Authentication Response that described link switch equipment will receive sends to described network terminal, described Authentication Response comprises the Authentication Response number to be certified of the sign correspondence of the sign of described first smart card and described first smart card.
22. terminal according to claim 21 is characterized in that, described processing module comprises:
First transmitting element, be used for sending described authentication request to described first smart card, so that described first smart card obtains the Authentication Response number to be certified of the sign correspondence of described first smart card according to the authentication key of the sign correspondence of described first smart card of described authentication request and storage;
First receiving element be used for to receive the Authentication Response number to be certified of the sign correspondence of described first smart card that described first smart card returns.
23. terminal according to claim 22 is characterized in that, described processing module comprises:
Second transmitting element is used for sending authentication key call request to aerial download OTA server, and described authentication key call request comprises the sign of described first smart card;
Second receiving element, the authentication key that returns for the described OTA server of reception calls response, described authentication key calls the authentication key of sign correspondence that response comprises described first smart card, and described authentication key calls the described OTA server of response and returns after to described first smart card authentication success according to described authentication key call request;
Processing unit is used for authentication key and described authentication request according to the sign correspondence of described first smart card, obtains the Authentication Response number to be certified of the sign correspondence of described first smart card.
24. according to each described terminal of claim 21-23, it is characterized in that, described receiver module, also be used for to receive the authentication success message that described link switch equipment returns and set up data with described link switch equipment and is connected, described authentication success message is that described link switch equipment is determined to return after described first smart card is for the activation smart card according to the authentication success message of the sign of receiving from described network termination that comprises described first smart card.
25. terminal according to claim 24, it is characterized in that, to be described link switch equipment determine described first smart card for activating smart card according to described authentication success message to described authentication success message, and store and return after the sign of described activation smart card; The described first connection authentication request specifically is used for making described link switch equipment to send described authentication request to network terminal according to the described first connection authentication request when detecting the sign of current storage activation smart card.
26. terminal according to claim 25 is characterized in that,
Described receiver module, also be used for receiving the second connection authentication request that described link switch equipment sends, described second connects the sign that authentication request comprises second smart card, the described second connection authentication request is that the terminal that is provided with described second smart card sends to described link switch equipment, and the sign of described second smart card is different with the sign of described activation smart card;
Described sending module, also be used for if described receiver module receives user's authentication success instruction, then return the authentication success message of the sign that comprises described second smart card to described link switch equipment, be connected so that described link switch equipment returns to connect authentication response and set up data with the described terminal that is provided with described second smart card to the described terminal that is provided with described second smart card according to described authentication success message.
27. according to claim 25 or 26 described terminals, it is characterized in that,
Described sending module, also be used for sending to described link switch equipment the authentication request of going of the sign that comprises described activation smart card, so that described link switch equipment is connected with the data of described network terminal according to sign and the disconnection of the described activation smart card of described sign deletion storage of removing the described activation smart card in the authentication request.
28. terminal according to claim 24 is characterized in that,
Described sending module also is used for sending the request of disconnection to described link switch equipment, is connected with the data of described network terminal so that described link switch equipment disconnects according to described disconnection request.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013101708643A CN103281693A (en) | 2013-05-10 | 2013-05-10 | Wireless communication authentication method, network translation equipment and terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013101708643A CN103281693A (en) | 2013-05-10 | 2013-05-10 | Wireless communication authentication method, network translation equipment and terminal |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103281693A true CN103281693A (en) | 2013-09-04 |
Family
ID=49064105
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2013101708643A Pending CN103281693A (en) | 2013-05-10 | 2013-05-10 | Wireless communication authentication method, network translation equipment and terminal |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103281693A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2016086355A1 (en) * | 2014-12-02 | 2016-06-09 | 华为技术有限公司 | Authentication method within wireless communication network, related apparatus and system |
| WO2016131272A1 (en) * | 2015-08-03 | 2016-08-25 | 中兴通讯股份有限公司 | Online authentication method based on smart card, smart card and authentication server |
| CN109348457A (en) * | 2018-10-22 | 2019-02-15 | 四川长虹电器股份有限公司 | A kind of Wi-Fi equipment distribution network systems and match network method |
| WO2019085723A1 (en) * | 2017-10-31 | 2019-05-09 | 上海连尚网络科技有限公司 | Wireless access authentication method |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101287298A (en) * | 2008-05-29 | 2008-10-15 | 德信无线通讯科技(北京)有限公司 | Authentication method and system for mobile communication terminal |
| CN101621801A (en) * | 2009-08-11 | 2010-01-06 | 深圳华为通信技术有限公司 | Method, system, server and terminal for authenticating wireless local area network |
| CN102711275A (en) * | 2011-03-28 | 2012-10-03 | 中兴通讯股份有限公司 | Access point and terminal access method |
-
2013
- 2013-05-10 CN CN2013101708643A patent/CN103281693A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101287298A (en) * | 2008-05-29 | 2008-10-15 | 德信无线通讯科技(北京)有限公司 | Authentication method and system for mobile communication terminal |
| CN101621801A (en) * | 2009-08-11 | 2010-01-06 | 深圳华为通信技术有限公司 | Method, system, server and terminal for authenticating wireless local area network |
| CN102711275A (en) * | 2011-03-28 | 2012-10-03 | 中兴通讯股份有限公司 | Access point and terminal access method |
Non-Patent Citations (1)
| Title |
|---|
| 程美娅: "WLAN和3G系统融合网络的安全性研究", 《信息科技辑》, 15 September 2006 (2006-09-15) * |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2016086355A1 (en) * | 2014-12-02 | 2016-06-09 | 华为技术有限公司 | Authentication method within wireless communication network, related apparatus and system |
| WO2016131272A1 (en) * | 2015-08-03 | 2016-08-25 | 中兴通讯股份有限公司 | Online authentication method based on smart card, smart card and authentication server |
| CN106411522A (en) * | 2015-08-03 | 2017-02-15 | 中兴通讯股份有限公司 | Online authentication method based on intelligent card, the intelligent card and authentication server |
| WO2019085723A1 (en) * | 2017-10-31 | 2019-05-09 | 上海连尚网络科技有限公司 | Wireless access authentication method |
| CN109348457A (en) * | 2018-10-22 | 2019-02-15 | 四川长虹电器股份有限公司 | A kind of Wi-Fi equipment distribution network systems and match network method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102843682B (en) | Access point authorizing method, device and system | |
| EP3565369B1 (en) | Esim card activation method, wireless router and computer storage medium | |
| JP5897137B2 (en) | Wireless local area network authentication method and mobile terminal | |
| CN102348209B (en) | Method and device for wireless network access and authentication | |
| CN106921963A (en) | A kind of smart machine accesses the method and device of WLAN | |
| CN101621800B (en) | Method for exchanging authentication information between wireless terminal and wireless router | |
| CN107529160B (en) | VoWiFi network access method and system, terminal and wireless access point equipment | |
| CN107006049A (en) | A kind of smart machine and its set up the method for equipment room bluetooth connection, device | |
| CN105682093A (en) | Wireless network access method and access device, and client | |
| US9949116B2 (en) | Method and apparatus for establishing SSID-based connection between terminal device and gateway device | |
| JP6697075B2 (en) | Method for data transmission in vehicle-to-vehicle / road-to-vehicle communication system | |
| CN104144463A (en) | Wi-fi network access method and system | |
| CN111132305B (en) | Method for 5G user terminal to access 5G network, user terminal equipment and medium | |
| CN109891921B (en) | Method, apparatus and computer-readable storage medium for authentication of next generation system | |
| CN108293055A (en) | Method, apparatus and system for authenticating to mobile network and for by the server of device authentication to mobile network | |
| CN103281693A (en) | Wireless communication authentication method, network translation equipment and terminal | |
| CN103379490A (en) | Authentication method, device and system of user equipment | |
| CN111770094B (en) | Access control method of wireless network and related device | |
| CN106341374B (en) | Method and device for limiting access of unlicensed user equipment to home gateway | |
| CN103152721A (en) | Terminal, mobility management entity, system and network access method | |
| CN103546873A (en) | Push-to-talk processing method and device | |
| CN106888447B (en) | Method and system for processing auxiliary USIM application information | |
| KR102658615B1 (en) | Method for ssp device to interoperate between bundle donwload procedure and profile donwload procedure | |
| EP4054220A1 (en) | Mobile service access method, device, and system, storage medium, and electronic device | |
| CN112584378A (en) | Identity card information reading method and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20130904 |