CN103650457A - Detection method, device and terminal device of share access - Google Patents

Detection method, device and terminal device of share access Download PDF

Info

Publication number
CN103650457A
CN103650457A CN201380000870.2A CN201380000870A CN103650457A CN 103650457 A CN103650457 A CN 103650457A CN 201380000870 A CN201380000870 A CN 201380000870A CN 103650457 A CN103650457 A CN 103650457A
Authority
CN
China
Prior art keywords
device identification
address
equipment
shared access
source
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201380000870.2A
Other languages
Chinese (zh)
Other versions
CN103650457B (en
Inventor
张仲虎
高晓峰
张翀
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Publication of CN103650457A publication Critical patent/CN103650457A/en
Application granted granted Critical
Publication of CN103650457B publication Critical patent/CN103650457B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/062Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying encryption of the keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2514Translation of Internet protocol [IP] addresses between local and global IP addresses

Abstract

The invention discloses a detection method, device and terminal device of share access, and relates to the field of mobile communication. According to the invention, quantity of share access devices in the same IP address can be precisely determined. The method comprises that data messages sent by a first terminal device is received, wherein the data messages comprise device identification encrypted information and a source IP address distributed to the first terminal device by a server; the device identification enciphered information is decrypted, so a first device identification of the first terminal device and a second device identification of a second terminal device are obtained; and if it is determined that the first device identification or the second device identification, corresponding to the source IP address are included in a preset IP address record chart, quantity of all device identifications corresponding to the source IP address in the IP address record chart are obtained and then quantity of the share access devices in the source IP address are determined.

Description

A kind of detection method of shared access, equipment and terminal equipment
Technical field
The present invention relates to moving communicating field, relate in particular to a kind of detection method, equipment and terminal equipment of shared access.
Background technology
At mobile broadband era, the universal of intelligent terminal makes peer-to-peer network application more and more general.Because peer-to-peer network application is larger to the consumption rate of Internet resources, in order to make the terminal equipment of access to LAN can fair and reasonable use Internet resources, operator will manage the terminal equipment of shared access, just need to know the information such as quantity of the terminal equipment of shared access.
So-called shared access just refers to that a plurality of terminal equipments pass through a connection jointly to network.At a plurality of terminal equipments, by same circuit, be connected under the scene of network, terminal equipment will be connected to network or during to network request data, conventionally need to by the interconnection protocol between the network of the plurality of terminal equipment (Internet Protocol, IP) address transition, be that server is the IP address that this routing device distributes by routing device.
In prior art, the transmission control protocol of the message that gateway device can send by sense terminals equipment (Transmission Control Protocol, the mode of TCP)/IP head feature information is determined the quantity of shared access equipment, for example, life span (Time to Live, TTL) detection, IP bag label detection, sequence number detection, MTU (Maximum Transmission Unit, MTU) detection etc.The mode of the system time of the message that gateway device can also send by sense terminals equipment is determined the quantity of shared access equipment, and for example timestamp detects and clock crystal oscillator detects.But, when the TCP/IP head customizing messages of the message that gateway device sends by terminal equipment and system time detect the quantity of shared access equipment, terminal equipment or routing device are easy to modify to sending TCP/IP head feature and the system time of the message of gateway device to, make gateway device can not accurately judge under same IP address whether have shared access, and then can not accurately judge the quantity of the terminal equipment of shared access.
Summary of the invention
The embodiment of the present invention provides a kind of detection method, equipment and terminal equipment of shared access, makes the checkout equipment of shared access can accurately determine the quantity of shared access equipment under same IP address.
For achieving the above object, embodiments of the invention adopt following technical scheme:
First aspect, provides a kind of detection method of shared access, and described method comprises:
Receive the data message that first terminal equipment sends, described data message comprises that device identification enciphered message and server are the interconnection protocol IP address between the source network of described first terminal devices allocation, the device identification enciphered message of the device identification enciphered message that described device identification enciphered message is described first terminal equipment or the second terminal equipment by described first terminal equipment access network;
Decipher described device identification enciphered message, obtain the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment;
If determine in default IP address record sheet and include described first device identification corresponding with described source IP address or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
In the possible implementation of the first of first aspect, according to first aspect, in the described device identification enciphered message of described deciphering, after obtaining the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment, described method also comprises:
If determine in default IP address record sheet and do not include described first device identification corresponding with described source IP address or described the second device identification, store the corresponding relation of described source IP address and described the first device identification or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
In the possible implementation of the second of first aspect, in conjunction with the possible implementation of the first of first aspect or first aspect, under described definite described source IP address, after the quantity of shared access equipment, described method also comprises:
If the quantity of shared access equipment is greater than 1 under described source IP address, determines under described source IP address and have shared access;
If the quantity of shared access equipment equals 1 under described source IP address, the device identification of further determining the shared access equipment that described source IP address the is corresponding whether device identification corresponding with source IP address described in default bearer context is identical;
If identical, determine under described source IP address and do not have shared access;
If not identical, determine under described source IP address and have shared access.
In the third possible implementation of first aspect, in conjunction with first aspect or the possible implementation of the first, described method also comprises:
By device identification corresponding with described source IP address in default bearer context record sheet, be defined as the main equipment of shared access;
By in device identification corresponding with described source IP address in described IP record sheet, the device identification except the device identification of described main equipment, be defined as shared access from equipment.
In the 4th kind of possible implementation of first aspect, the third possible implementation in conjunction with the possible implementation of the first of first aspect or first aspect to first aspect, after the data message sending at described reception first terminal equipment, also comprise:
Delete the described device identification enciphered message in described data message.
Second aspect, provides a kind of detection method of shared access, and described method comprises:
Obtain device identification;
Described device identification is encrypted, obtains device identification enciphered message;
Generation comprises the data message of described device identification enciphered message;
Send described data message.
The third aspect, provides a kind of checkout equipment of shared access, and described checkout equipment comprises: receiving element, decryption unit and determining unit;
Described receiving element, the data message sending for receiving first terminal equipment, described data message comprises that device identification enciphered message and server are the interconnection protocol IP address between the source network of described first terminal devices allocation, the device identification enciphered message of the device identification enciphered message that described device identification enciphered message is described first terminal equipment or the second terminal equipment by described first terminal equipment access network;
Described decryption unit, for deciphering described device identification enciphered message, obtains the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment;
Described determining unit, if for determining that default IP address record sheet includes described first device identification corresponding with described source IP address or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
In the possible implementation of the first of the third aspect, according to the third aspect, described determining unit, if also for determining that default IP address record sheet does not include described first device identification corresponding with described source IP address or described the second device identification, store the corresponding relation of described source IP address and described the first device identification or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
In the possible implementation of the second of the third aspect, in conjunction with the possible implementation of the first of the third aspect or the third aspect, described determining unit, also for
If the quantity of shared access equipment is greater than 1 under described source IP address, determines under described source IP address and have shared access;
If the quantity of shared access equipment equals 1 under described source IP address, the device identification of further determining the shared access equipment that described source IP address the is corresponding whether device identification corresponding with source IP address described in default bearer context is identical;
If identical, determine under described source IP address and do not have shared access;
If not identical, determine under described source IP address and have shared access.
In the third possible implementation of the third aspect, in conjunction with the third aspect or the possible implementation of the first, described determining unit, also for
By device identification corresponding with described source IP address in default bearer context record sheet, be defined as the main equipment of shared access;
By in device identification corresponding with described source IP address in described IP record sheet, the device identification except the device identification of described main equipment, be defined as shared access from equipment.
In the 4th kind of possible implementation of the third aspect, the third the possible implementation in conjunction with the possible implementation of the first of the third aspect or the third aspect to the third aspect, described checkout equipment also comprises: delete cells;
Described delete cells, for deleting the described device identification enciphered message of described data message.
Fourth aspect, provides a kind of terminal equipment, and described terminal equipment comprises: acquiring unit, ciphering unit, generation unit and transmitting element;
Described acquiring unit, for obtaining device identification;
Described ciphering unit, for described device identification is encrypted, obtains device identification enciphered message;
Described generation unit, for generating the data message that comprises described device identification enciphered message;
Described transmitting element, for sending described data message.
The detection method of a kind of shared access that the embodiment of the present invention provides, equipment and terminal equipment, receive the data message that first terminal equipment sends, described data message comprises that device identification enciphered message and server are the source IP address of described first terminal devices allocation, the device identification enciphered message of the device identification enciphered message that described device identification enciphered message is described first terminal equipment or the second terminal equipment by described first terminal equipment access network; Decipher described device identification enciphered message, obtain the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment; If determine in default IP address record sheet and include described first device identification corresponding with described source IP address or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.By this scheme, terminal equipment sends to the data message of the checkout equipment of shared access to comprise the device identification enciphered message of described terminal equipment, terminal equipment can not be modified to the device identification of shared access equipment, makes the checkout equipment of shared access can accurately determine the quantity of shared access equipment under same IP address.
Accompanying drawing explanation
In order to be illustrated more clearly in the embodiment of the present invention or technical scheme of the prior art, to the accompanying drawing of required use in embodiment or description of the Prior Art be briefly described below, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skills, do not paying under the prerequisite of creative work, can also obtain according to these accompanying drawings other accompanying drawing.
The schematic flow sheet of the detection method of a kind of shared access that Fig. 1 provides for the embodiment of the present invention;
The schematic flow sheet of the detection method of the another kind of shared access that Fig. 2 provides for the embodiment of the present invention;
The mutual schematic diagram of the detection method of a kind of shared access that Fig. 3 provides for the embodiment of the present invention;
The mutual schematic diagram of the detection method of the another kind of shared access that Fig. 4 provides for the embodiment of the present invention;
The structural representation of the checkout equipment of a kind of shared access that Fig. 5 provides for inventive embodiments;
The structural representation of the checkout equipment of the another kind of shared access that Fig. 6 provides for the embodiment of the present invention;
The structural representation of a kind of terminal equipment that Fig. 7 provides for the embodiment of the present invention;
The structural representation of the checkout equipment of another shared access that Fig. 8 provides for the embodiment of the present invention;
The structural representation of the another kind of terminal equipment that Fig. 9 provides for the embodiment of the present invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly and completely described, obviously, described embodiment is only the present invention's part embodiment, rather than whole embodiment.Embodiment based in the present invention, those of ordinary skills, not making the every other embodiment obtaining under creative work prerequisite, belong to the scope of protection of the invention.
Term "and/or", is only a kind of incidence relation of describing affiliated partner herein, and expression can exist three kinds of relations, and for example, A and/or B, can represent: individualism A exists A and B, these three kinds of situations of individualism B simultaneously.In addition, character "/", generally represents that forward-backward correlation is to liking a kind of relation of "or" herein.
Embodiment mono-,
The embodiment of the present invention provides a kind of detection method of shared access, and as shown in Figure 1, the method comprises:
101, the checkout equipment of shared access receives the data message that first terminal equipment sends, described data message comprises that device identification enciphered message and server are the source IP address of described first terminal devices allocation, the device identification enciphered message of the device identification enciphered message that described device identification enciphered message is described first terminal equipment or the second terminal equipment by described first terminal equipment access network.
It should be noted that, at the second terminal equipment request access network or before to network request data or first terminal equipment to network request data, first first terminal equipment need to carry out information interaction with network side (comprising gateway, server etc.), obtaining server is the source IP address of this first terminal devices allocation, and completing user activates.
During when the second terminal equipment request access network or to network request data, first the second terminal equipment will obtain the second Terminal Equipment Identifier of the second terminal equipment, device identification to the second terminal equipment is encrypted, obtain device identification enciphered message, generation comprises the data message of the device identification enciphered message of this second terminal equipment, and send this data message to first terminal equipment, the data message described the second terminal equipment being sent at first terminal equipment carries out the operations such as source IP address conversion, after obtaining the data message after processing, described first terminal equipment sends the data message after described processing to the checkout equipment of shared access.When first terminal equipment is during to network request data, can be encrypted the device identification of first terminal equipment, obtain device identification enciphered message, generation comprises the data message of the device identification enciphered message of this first terminal equipment, and to the checkout equipment of shared access, sends the data message of this generation.
102, the checkout equipment of described shared access is deciphered described device identification enciphered message, obtains the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment.
After the checkout equipment of shared access receives the data message of first terminal equipment transmission, can be decrypted described data message.
The technology of the present invention field personnel be understandable that, be decrypted described device identification enciphered message, first needs to determine decryption function and decruption key.This decryption function and decruption key can be the checkout equipment agreements of described the second terminal equipment or first terminal equipment and described shared access.
If include described first device identification corresponding with described source IP address or described the second device identification in 103 definite default IP address record sheets, the checkout equipment of described shared access obtains the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determines the quantity of shared access equipment under described source IP address.
In the checkout equipment of described shared access, in default IP address record sheet, store the corresponding relation of source IP address and the first device identification or the second device identification.
The embodiment of the present invention provides a kind of detection method of shared access, receive the data message that first terminal equipment sends, described data message comprises that device identification enciphered message and server are the source IP address of described first terminal devices allocation, the device identification enciphered message of the device identification enciphered message that described device identification enciphered message is described first terminal equipment or the second terminal equipment by described first terminal equipment access network; Decipher described device identification enciphered message, obtain the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment; If determine in default IP address record sheet and include described first device identification corresponding with described source IP address or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.By this scheme, terminal equipment sends to the data message of the checkout equipment of shared access to comprise the device identification enciphered message of described terminal equipment, terminal equipment can not be modified to the device identification of shared access equipment, makes the checkout equipment of shared access can accurately determine the quantity of shared access equipment under same IP address.
Embodiment bis-,
The embodiment of the present invention provides a kind of detection method of shared access, and the executive agent of the method is terminal equipment, and this terminal equipment can be the second terminal equipment or first terminal equipment, and as shown in Figure 2, described method comprises:
201, described terminal equipment obtains device identification.
Concrete, described terminal equipment can obtain international mobile subscriber identity (the International Mobile Subscriber Identification Number of this terminal equipment, IMSI) or mobile user comprehensive service digital net (Mobile Subscriber International Integrated Service Digital Network, MSISDN).
202, described terminal equipment is encrypted described device identification, obtains device identification enciphered message.
Concrete, described terminal equipment can utilize symmetry cryptographic algorithm or asymmetry cryptographic algorithm to be encrypted the device identification of described terminal equipment, obtains device identification enciphered message.
It should be noted that, symmetry cryptographic algorithm refers to that encryption and decryption are used same key, and encryption function and decryption function are the algorithms of a pair of reverse function.Asymmetry cryptographic algorithm refers to that encryption and decryption are used the algorithm of different keys.Asymmetry cryptographic algorithm has PKI and two keys of private key conventionally, and PKI is that encryption device or decryption device send to corresponding decryption device or encryption device, and private key is that encryption device or decryption device self are preserved and externally do not announced.
203, described terminal equipment generates the data message that comprises described device identification enciphered message.
Described terminal equipment can be according to the form of the data message of protocol definition, generated data message.
Concrete, described terminal equipment, when generation comprises the data message of described device identification enciphered message, can be added on described device identification enciphered message the position of arranging with the checkout equipment of described shared access.
204, described terminal equipment sends described data message.
It should be noted that, when described terminal equipment is the second terminal equipment, send to any information of the checkout equipment of described shared access all to need through described first terminal equipment.Be that described terminal equipment sends to first terminal equipment by described data message, after by described first terminal equipment, described data message being processed, send to shared access checkout equipment.
When described terminal equipment is first terminal equipment, described first terminal equipment generates after described data message, directly described data message is sent to described shared access checkout equipment.
The embodiment of the present invention provides a kind of detection method of shared access, obtains device identification; Device identification is encrypted, obtains device identification enciphered message; Generation comprises the data message of described device identification enciphered message; Send described data message.By this scheme, terminal equipment sends to the data message of the checkout equipment of shared access to comprise the device identification enciphered message of described terminal equipment, terminal equipment can not be modified to the device identification of shared access equipment, makes the checkout equipment of shared access can accurately determine the quantity of shared access equipment under same IP address.
Embodiment tri-,
The embodiment of the present invention provides a kind of detection method of shared access, and as shown in Figure 3, when described terminal equipment is the second terminal equipment, described method comprises:
301, described the second terminal equipment obtains device identification.
Described device identification can be IMSI or the MSISDN of the second terminal equipment.
Concrete, described the second terminal equipment can read the device identification of described the second terminal equipment.
302, described the second terminal equipment is encrypted described device identification, obtains device identification enciphered message.
During when the second terminal equipment request access network or to network request data, can be encrypted the device identification of the second terminal equipment, obtain device identification enciphered message.
Concrete, described the second terminal equipment can utilize symmetry cryptographic algorithm or asymmetry cryptographic algorithm to be encrypted described device identification, obtains device identification enciphered message.
It should be noted that, symmetry cryptographic algorithm refers to that encryption and decryption are used same key, and encryption function and decryption function are the algorithms of a pair of reverse function.Asymmetry cryptographic algorithm refers to that encryption and decryption are used the algorithm of different keys.Asymmetry cryptographic algorithm has PKI and two keys of private key conventionally, and PKI is that encryption device or decryption device send to corresponding decryption device or encryption device, and private key is that encryption device or decryption device self are preserved and externally do not announced.
When described the second terminal equipment utilizes symmetry cryptographic algorithm to be encrypted described device identification, described the second terminal equipment need to be according to key and the cryptographic algorithm of the checkout equipment agreement with shared access, described device identification is encrypted, obtains device identification enciphered message.When described the second terminal equipment utilizes asymmetry cryptographic algorithm to be encrypted described device identification, first described the second terminal equipment can determine PKI, then utilize PKI to generate private key, utilize the private key generating to be encrypted described device identification, obtain device identification enciphered message, and send described PKI and described device identification enciphered message to the checkout equipment of described shared access, so that the checkout equipment of described shared access utilizes described PKI to generate private key, utilize the private key generating to be decrypted the described device identification enciphered message receiving.
303, described the second terminal equipment generates the data message that comprises described device identification enciphered message.
Described the second terminal equipment can be according to the form of the data message of protocol definition, generated data message.
The technology of the present invention field personnel be understandable that, the data message that the second terminal equipment or first terminal equipment generate has certain form, described the second terminal equipment is when generation comprises the data message of described device identification enciphered message, described device identification enciphered message can be added on to the position of the checkout equipment agreement of described the second terminal equipment or first terminal equipment and described shared access, for example, after the TCP/IP head that, appointed position is data message.
304, described the second terminal equipment sends the data message that comprises described device identification enciphered message to described first terminal equipment.
Described first terminal equipment is specifically as follows routing device.
305, described first terminal equipment is processed described data message, obtains the data message after processing.
It should be noted that, at the second terminal equipment request access network or before to network request data or first terminal equipment to network request data, first first terminal equipment need to carry out information interaction with network side (comprising gateway, server etc.), obtaining server is the source IP address of this first terminal devices allocation, and completing user activates.
The data message that described first terminal equipment sends described the second terminal equipment obtains the data message after processing after carrying out the operations such as source IP address conversion.
306, described first terminal equipment sends the data message after described processing to the checkout equipment of described shared access, described data message comprises that device identification enciphered message and server are the source IP address of described first terminal devices allocation, and described device identification enciphered message is the device identification enciphered message of the second terminal equipment by described first terminal equipment access network.
307, the checkout equipment of described shared access is deciphered described device identification enciphered message, obtains the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment.
After the checkout equipment of shared access receives the data message of first terminal equipment transmission, can be decrypted described data message.
It should be noted that, when the checkout equipment of described shared access is processed the data message receiving, can to described device identification enciphered message, extract according to the point of addition that receives described device identification enciphered message, and then described device identification enciphered message is decrypted.The point of addition of described equipment identification information can be the checkout equipment agreement of described the second terminal equipment or first terminal equipment and described shared access, can be also the position of acquiescence.For example, in the time of after the TCP that the position of agreement or the position of acquiescence are data message or UDP head, the checkout equipment of described shared access can extract the information after the TCP of data message or UDP head, obtains described device identification enciphered message.
The technology of the present invention field personnel be understandable that, be decrypted described device identification enciphered message, first needs to determine decryption function and decruption key.This decryption function and decruption key can be the checkout equipment agreements of described the second terminal equipment or first terminal equipment and described shared access.
If described device identification enciphered message utilizes symmetry cryptographic algorithm to obtain, the checkout equipment of described shared access is according to decruption key and the decryption function of described the second terminal equipment or first terminal equipment agreement, described device identification enciphered message being decrypted.If described device identification enciphered message utilizes rivest, shamir, adelman to obtain, the checkout equipment of described shared access generates private key according to the PKI receiving, and utilizes the private key generating to be decrypted described device identification enciphered message.
If include described first device identification corresponding with described source IP address or described the second device identification in 308 definite default IP address record sheets, the checkout equipment of described shared access obtains the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determines the quantity of shared access equipment under described source IP address.
In the checkout equipment of described shared access, in default IP address record sheet, store the corresponding relation of source IP address and the first device identification or the second device identification.
If do not include described first device identification corresponding with described source IP address or described the second device identification in 309 definite default IP address record sheets, the checkout equipment of described shared access is stored the corresponding relation of described source IP address and described the first device identification or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
For instance, in described default IP address record sheet, not including source IP address is 123.138.26.112, device identification is 460030912121001 corresponding relation, first the checkout equipment of described shared access is stored in this source IP address and device identification in the correspondence position in described default IP address record sheet, then, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.For example, when source IP address is 123.138.26.112, corresponding device identification has 460030912121001,460030912121002 and at 460030912121003 o'clock, and the quantity of shared access equipment is 3.
Concrete, the checkout equipment of described shared access can be inquired about the number of device identification corresponding with described source IP address in default IP address record sheet, the quantity of obtaining whole device identification corresponding with described source IP address in the record sheet of described IP address, this quantity is the quantity of shared access equipment under described source IP address.Certainly, the checkout equipment of described shared access also can obtain the number of device identification corresponding with described source IP address in the record sheet of described IP address by alternate manner, and the embodiment of the present invention is not done concrete restriction to this.
The embodiment of the present invention provides a kind of detection method of shared access, and as shown in Figure 4, when described terminal equipment is first terminal equipment, described method comprises:
401, described first terminal equipment obtains device identification.
Described device identification can be IMSI or the MSISDN of first terminal equipment.
Concrete, described first terminal equipment can read the device identification of described first terminal equipment.
402, described first terminal equipment is encrypted described device identification, obtains device identification enciphered message.
When first terminal equipment is during to network request data, can be encrypted the device identification of first terminal equipment, obtain device identification enciphered message.
Concrete, described first terminal equipment can utilize symmetry cryptographic algorithm or asymmetry cryptographic algorithm to be encrypted described device identification, obtains device identification enciphered message.
403, described first terminal equipment generates the data message that comprises described device identification enciphered message.
Described first terminal equipment can be according to the form of the data message of protocol definition, generated data message.
The technology of the present invention field personnel be understandable that, the data message that the second terminal equipment or first terminal equipment generate has certain form, described first terminal equipment, when generation comprises the data message of described device identification enciphered message, can be added on described device identification enciphered message arbitrary position of legacy data message format.
Certainly, in order to reduce the modification to existing generated data message related protocol, after described device identification enciphered message can be added the TCP or UDP head of data message to.
404, described first terminal equipment sends described data message to the checkout equipment of described shared access, described data message comprises that device identification enciphered message and server are the source IP address of described first terminal devices allocation, the device identification enciphered message that described device identification enciphered message is described first terminal equipment.
It should be noted that, at described first terminal equipment to before network request data, first described first terminal equipment need to carry out information interaction with network side (comprising gateway, server etc.), and obtaining server is the source IP address of this first terminal devices allocation, and completing user activates.
307, the checkout equipment of described shared access is deciphered described device identification enciphered message, obtains the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment.
If include described first device identification corresponding with described source IP address or described the second device identification in 308 definite default IP address record sheets, the checkout equipment of described shared access obtains the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determines the quantity of shared access equipment under described source IP address.
If do not include described first device identification corresponding with described source IP address or described the second device identification in 309 definite default IP address record sheets, the checkout equipment of described shared access is stored the corresponding relation of described source IP address and described the first device identification or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
Further, after described shared access equipment is determined the quantity of shared access equipment under described source IP address, can determine under this IP address whether have shared access according to the quantity of described shared access equipment.Concrete, described shared access equipment can determine whether the quantity of shared access equipment under described source IP address is greater than 1; If the quantity of shared access equipment is greater than 1 under described source IP address, determines under described source IP address and have shared access; If the quantity of shared access equipment equals 1 under described source IP address, the device identification of further determining the shared access equipment that described source IP address the is corresponding whether device identification corresponding with source IP address described in default bearer context is identical; If identical, determine under described source IP address and do not have shared access; If not identical, determine under described source IP address and have shared access.
Further, after the checkout equipment of described shared access is determined the quantity of shared access equipment under described source IP address, can also further determine the main equipment of shared access and from the quantity of equipment.
Concrete, the checkout equipment of described shared access, by device identification corresponding with described source IP address in default bearer context record sheet, is defined as the main equipment of shared access; By in device identification corresponding with described source IP address in described IP record sheet, the device identification except the device identification of described main equipment, be defined as shared access from equipment.
It should be noted that, in described first terminal equipment and network side interactive information, completing user stores the device identification of this first terminal equipment and the corresponding relation of source IP address in the default bearer context record sheet in the checkout equipment of described shared access after activating.
In order not revise on the basis of existing protocol, proper communication between assurance equipment and network, after the checkout equipment of described shared access receives the data message of described first terminal equipment transmission, can delete the described device identification enciphered message in described data message.
Concrete, the checkout equipment of described shared access can be gateway device, for example gateway general packet radio service technology (General Packet Radio Service, GPRS) support node (Gateway GPRS Support Node, GGSN) etc.
The embodiment of the present invention provides a kind of detection method of shared access, receive the data message that first terminal equipment sends, described data message comprises that device identification enciphered message and server are the source IP address of described first terminal devices allocation, the device identification enciphered message of the device identification enciphered message that described device identification enciphered message is described first terminal equipment or the second terminal equipment by described first terminal equipment access network; Decipher described device identification enciphered message, obtain the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment; If determine in default IP address record sheet and include described first device identification corresponding with described source IP address or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.By this scheme, terminal equipment sends to the data message of the checkout equipment of shared access to comprise the device identification enciphered message of described terminal equipment, terminal equipment can not be modified to the device identification of shared access equipment, makes the checkout equipment of shared access can accurately determine the quantity of shared access equipment under same IP address.
Embodiment tetra-,
The embodiment of the present invention provides a kind of checkout equipment of shared access, and as shown in Figure 5, the checkout equipment 50 of described shared access comprises: receiving element 51, decryption unit 52 and determining unit 53.
Described receiving element 51, the data message sending for receiving first terminal equipment, described data message comprises that device identification enciphered message and server are the source IP address of described first terminal devices allocation, the device identification enciphered message of the device identification enciphered message that described device identification enciphered message is described first terminal equipment or the second terminal equipment by described first terminal equipment access network.
Described decryption unit 52, for deciphering described device identification enciphered message, obtains the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment.
Described determining unit 53, if for determining that default IP address record sheet includes described first device identification corresponding with described source IP address or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
Optionally, described determining unit 53, if also for determining that default IP address record sheet does not include described first device identification corresponding with described source IP address or described the second device identification, store the corresponding relation of described source IP address and described the first device identification or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
Optionally, described determining unit 53, also for
If the quantity of shared access equipment is greater than 1 under described source IP address, determines under described source IP address and have shared access;
If the quantity of shared access equipment equals 1 under described source IP address, the device identification of further determining the shared access equipment that described source IP address the is corresponding whether device identification corresponding with source IP address described in default bearer context is identical;
If identical, determine under described source IP address and do not have shared access;
If not identical, determine under described source IP address and have shared access.
Optionally, described determining unit 53, also for
By device identification corresponding with described source IP address in default bearer context record sheet, be defined as the main equipment of shared access;
By in device identification corresponding with described source IP address in described IP record sheet, the device identification except the device identification of described main equipment, be defined as shared access from equipment.
Further, as shown in Figure 6, described checkout equipment 50 also comprises: delete cells 54.
Described delete cells 54, for deleting the described device identification enciphered message of described data message.
The embodiment of the present invention provides a kind of checkout equipment of shared access, described receiving element receives the data message that first terminal equipment sends, described data message comprises that device identification enciphered message and server are the source IP address of described first terminal devices allocation, the device identification enciphered message of the device identification enciphered message that described device identification enciphered message is described first terminal equipment or the second terminal equipment by described first terminal equipment access network; Described decryption unit is deciphered described device identification enciphered message, obtains the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment; If determine in default IP address record sheet and include described first device identification corresponding with described source IP address or described the second device identification, described determining unit is obtained the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determines the quantity of shared access equipment under described source IP address.By this scheme, terminal equipment sends to the data message of the checkout equipment of shared access to comprise the device identification enciphered message of described terminal equipment, terminal equipment can not be modified to the device identification of shared access equipment, makes the checkout equipment of shared access can accurately determine the quantity of shared access equipment under same IP address.
Embodiment five,
The embodiment of the present invention provides a kind of terminal equipment, and as shown in Figure 7, described terminal equipment 70 comprises: acquiring unit 71, ciphering unit 72, generation unit 73 and transmitting element 74.
Described acquiring unit 71, for obtaining device identification.
Described ciphering unit 72, for described device identification is encrypted, obtains device identification enciphered message.
Described generation unit 73, for generating the data message that comprises described device identification enciphered message.
Described transmitting element 74, for sending described data message.
The embodiment of the present invention provides a kind of terminal equipment, and described acquiring unit obtains device identification; Described ciphering unit is encrypted device identification, obtains device identification enciphered message; Described generation unit generates the data message that comprises described device identification enciphered message; Described transmitting element sends described data message.By this scheme, terminal equipment sends to the data message of the checkout equipment of shared access to comprise the device identification enciphered message of described terminal equipment, terminal equipment can not be modified to the device identification of shared access equipment, makes the checkout equipment of shared access can accurately determine the quantity of shared access equipment under same IP address.
Embodiment six,
The embodiment of the present invention provides a kind of checkout equipment of shared access, and as shown in Figure 8, described checkout equipment 80 comprises: receiver 81 and processor 82.
Described receiver 81, the data message sending for receiving first terminal equipment, described data message comprises that device identification enciphered message and server are the source IP address of described first terminal devices allocation, the device identification enciphered message of the device identification enciphered message that described device identification enciphered message is described first terminal equipment or the second terminal equipment by described first terminal equipment access network.
Described processor 82, for deciphering described device identification enciphered message, obtains the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment.
Described processor 82, if also for determining that default IP address record sheet includes described first device identification corresponding with described source IP address or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
Optionally, described processor 82, if also for determining that default IP address record sheet does not include described first device identification corresponding with described source IP address or described the second device identification, store the corresponding relation of described source IP address and described the first device identification or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
Optionally, described processor 82, also for
If the quantity of shared access equipment is greater than 1 under described source IP address, determines under described source IP address and have shared access;
If the quantity of shared access equipment equals 1 under described source IP address, the device identification of further determining the shared access equipment that described source IP address the is corresponding whether device identification corresponding with source IP address described in default bearer context is identical;
If identical, determine under described source IP address and do not have shared access;
If not identical, determine under described source IP address and have shared access.
Optionally, described processor 82, also for
By device identification corresponding with described source IP address in default bearer context record sheet, be defined as the main equipment of shared access;
By in device identification corresponding with described source IP address in described IP record sheet, the device identification except the device identification of described main equipment, be defined as shared access from equipment.
Further, processor 82, also for deleting the described device identification enciphered message of described data message.
The embodiment of the present invention provides a kind of checkout equipment of shared access, described receiver receives the data message that first terminal equipment sends, described data message comprises that device identification enciphered message and server are the source IP address of described first terminal devices allocation, the device identification enciphered message of the device identification enciphered message that described device identification enciphered message is described first terminal equipment or the second terminal equipment by described first terminal equipment access network; Described processor is deciphered described device identification enciphered message, obtains the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment; If determine in default IP address record sheet and include described first device identification corresponding with described source IP address or described the second device identification, described processor obtains the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determines the quantity of shared access equipment under described source IP address.By this scheme, terminal equipment sends to the data message of the checkout equipment of shared access to comprise the device identification enciphered message of described terminal equipment, terminal equipment can not be modified to the device identification of shared access equipment, makes the checkout equipment of shared access can accurately determine the quantity of shared access equipment under same IP address.
Embodiment seven,
The embodiment of the present invention provides a kind of terminal equipment, and as shown in Figure 9, described terminal equipment 90 comprises: processor 91 and transmitter 92.
Described processor 91, for obtaining device identification.
Described processor 91, also, for described device identification is encrypted, obtains device identification enciphered message.
Described processor 91, also for generating the data message that comprises described device identification enciphered message.
Described transmitter 92, for sending described data message.
The embodiment of the present invention provides a kind of terminal equipment, and described processor obtains device identification; Described processor is encrypted device identification, obtains device identification enciphered message; Described processor generates the data message that comprises described device identification enciphered message; Described transmitter sends described data message.By this scheme, terminal equipment sends to the data message of the checkout equipment of shared access to comprise the device identification enciphered message of described terminal equipment, terminal equipment can not be modified to the device identification of shared access equipment, makes the checkout equipment of shared access can accurately determine the quantity of shared access equipment under same IP address.
Those skilled in the art can be well understood to, for convenience and simplicity of description, only the division with above-mentioned each functional module is illustrated, in practical application, can above-mentioned functions be distributed and by different functional modules, completed as required, the internal structure that is about to device is divided into different functional modules, to complete all or part of function described above.The system of foregoing description, the specific works process of device and unit, can, with reference to the corresponding process in preceding method embodiment, not repeat them here.
In the several embodiment that provide in the application, should be understood that, disclosed system, apparatus and method, can realize by another way.For example, device embodiment described above is only schematic, for example, the division of described module or unit, be only that a kind of logic function is divided, during actual realization, can have other dividing mode, for example a plurality of unit or assembly can in conjunction with or can be integrated into another system, or some features can ignore, or do not carry out.Another point, shown or discussed coupling each other or direct-coupling or communication connection can be by some interfaces, indirect coupling or the communication connection of device or unit can be electrically, machinery or other form.
The described unit as separating component explanation can or can not be also physically to separate, and the parts that show as unit can be or can not be also physical locations, can be positioned at a place, or also can be distributed in a plurality of network element.Can select according to the actual needs some or all of unit wherein to realize the object of the present embodiment scheme.
In addition, each functional unit in each embodiment of the present invention can be integrated in a processing unit, can be also that the independent physics of unit exists, and also can be integrated in a unit two or more unit.Above-mentioned integrated unit both can adopt the form of hardware to realize, and also can adopt the form of SFU software functional unit to realize.
If the form of SFU software functional unit of usining described integrated unit realizes and during as production marketing independently or use, can be stored in a computer read/write memory medium.Understanding based on such, the all or part of of the part that technical scheme of the present invention contributes to prior art in essence in other words or this technical scheme can embody with the form of software product, this computer software product is stored in a storage medium, comprise that some instructions are with so that a computer equipment (can be personal computer, server, or the network equipment etc.) or processor (processor) carry out all or part of step of method described in each embodiment of the present invention.And aforesaid storage medium comprises: various media that can be program code stored such as USB flash disk, portable hard drive, read-only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), magnetic disc or CDs.
The above; be only the specific embodiment of the present invention, but protection scope of the present invention is not limited to this, is anyly familiar with those skilled in the art in the technical scope that the present invention discloses; can expect easily changing or replacing, within all should being encompassed in protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with the protection range of described claim.
Those skilled in the art can be well understood to, for convenience and simplicity of description, only the division with above-mentioned each functional module is illustrated, in practical application, can above-mentioned functions be distributed and by different functional modules, completed as required, the internal structure that is about to device is divided into different functional modules, to complete all or part of function described above.The system of foregoing description, the specific works process of device and unit, can, with reference to the corresponding process in preceding method embodiment, not repeat them here.
In the several embodiment that provide in the application, should be understood that, disclosed system, apparatus and method, can realize by another way.For example, device embodiment described above is only schematic, for example, the division of described module or unit, be only that a kind of logic function is divided, during actual realization, can have other dividing mode, for example a plurality of unit or assembly can in conjunction with or can be integrated into another system, or some features can ignore, or do not carry out.Another point, shown or discussed coupling each other or direct-coupling or communication connection can be by some interfaces, indirect coupling or the communication connection of device or unit can be electrically, machinery or other form.
The described unit as separating component explanation can or can not be also physically to separate, and the parts that show as unit can be or can not be also physical locations, can be positioned at a place, or also can be distributed in a plurality of network element.Can select according to the actual needs some or all of unit wherein to realize the object of the present embodiment scheme.
In addition, each functional unit in each embodiment of the present invention can be integrated in a processing unit, can be also that the independent physics of unit exists, and also can be integrated in a unit two or more unit.Above-mentioned integrated unit both can adopt the form of hardware to realize, and also can adopt the form of SFU software functional unit to realize.
If the form of SFU software functional unit of usining described integrated unit realizes and during as production marketing independently or use, can be stored in a computer read/write memory medium.Understanding based on such, the all or part of of the part that technical scheme of the present invention contributes to prior art in essence in other words or this technical scheme can embody with the form of software product, this computer software product is stored in a storage medium, comprise that some instructions are with so that a computer equipment (can be personal computer, server, or the network equipment etc.) or processor (processor) carry out all or part of step of method described in each embodiment of the present invention.And aforesaid storage medium comprises: various media that can be program code stored such as USB flash disk, portable hard drive, read-only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), magnetic disc or CDs.
The above; be only the specific embodiment of the present invention, but protection scope of the present invention is not limited to this, is anyly familiar with those skilled in the art in the technical scope that the present invention discloses; can expect easily changing or replacing, within all should being encompassed in protection scope of the present invention.Therefore, protection scope of the present invention should be as the criterion with the protection range of described claim.

Claims (12)

1. a detection method for shared access, is characterized in that, described method comprises:
Receive the data message that first terminal equipment sends, described data message comprises that device identification enciphered message and server are the interconnection protocol IP address between the source network of described first terminal devices allocation, the device identification enciphered message of the device identification enciphered message that described device identification enciphered message is described first terminal equipment or the second terminal equipment by described first terminal equipment access network;
Decipher described device identification enciphered message, obtain the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment;
If determine in default IP address record sheet and include described first device identification corresponding with described source IP address or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
2. method according to claim 1, is characterized in that, in the described device identification enciphered message of described deciphering, after obtaining the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment, described method also comprises:
If determine in default IP address record sheet and do not include described first device identification corresponding with described source IP address or described the second device identification, store the corresponding relation of described source IP address and described the first device identification or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
3. method according to claim 1 and 2, is characterized in that, under described definite described source IP address, after the quantity of shared access equipment, described method also comprises:
If the quantity of shared access equipment is greater than 1 under described source IP address, determines under described source IP address and have shared access;
If the quantity of shared access equipment equals 1 under described source IP address, the device identification of further determining the shared access equipment that described source IP address the is corresponding whether device identification corresponding with source IP address described in default bearer context is identical;
If identical, determine under described source IP address and do not have shared access;
If not identical, determine under described source IP address and have shared access.
4. method according to claim 1 and 2, is characterized in that, described method also comprises:
By device identification corresponding with described source IP address in default bearer context record sheet, be defined as the main equipment of shared access;
By in device identification corresponding with described source IP address in described IP record sheet, the device identification except the device identification of described main equipment, be defined as shared access from equipment.
5. according to the method described in claim 1-4 any one, it is characterized in that, after the data message sending at described reception first terminal equipment, also comprise:
Delete the described device identification enciphered message in described data message.
6. a detection method for shared access, is characterized in that, described method comprises:
Obtain device identification;
Described device identification is encrypted, obtains device identification enciphered message;
Generation comprises the data message of described device identification enciphered message;
Send described data message.
7. a checkout equipment for shared access, is characterized in that, described checkout equipment comprises: receiving element, decryption unit and determining unit;
Described receiving element, the data message sending for receiving first terminal equipment, described data message comprises that device identification enciphered message and server are the interconnection protocol IP address between the source network of described first terminal devices allocation, the device identification enciphered message of the device identification enciphered message that described device identification enciphered message is described first terminal equipment or the second terminal equipment by described first terminal equipment access network;
Described decryption unit, for deciphering described device identification enciphered message, obtains the first device identification of described first terminal equipment or the second device identification of described the second terminal equipment;
Described determining unit, if for determining that default IP address record sheet includes described first device identification corresponding with described source IP address or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
8. checkout equipment according to claim 7, it is characterized in that, described determining unit, if also for determining that default IP address record sheet does not include described first device identification corresponding with described source IP address or described the second device identification, store the corresponding relation of described source IP address and described the first device identification or described the second device identification, obtain the quantity of whole device identification corresponding with described source IP address in the record sheet of described IP address, and then determine the quantity of shared access equipment under described source IP address.
9. according to the checkout equipment described in claim 7 or 8, it is characterized in that, described determining unit, also for
If the quantity of shared access equipment is greater than 1 under described source IP address, determines under described source IP address and have shared access;
If the quantity of shared access equipment equals 1 under described source IP address, the device identification of further determining the shared access equipment that described source IP address the is corresponding whether device identification corresponding with source IP address described in default bearer context is identical;
If identical, determine under described source IP address and do not have shared access;
If not identical, determine under described source IP address and have shared access.
10. according to the checkout equipment described in claim 7 or 8, it is characterized in that, described determining unit, also for
By device identification corresponding with described source IP address in default bearer context record sheet, be defined as the main equipment of shared access;
By in device identification corresponding with described source IP address in described IP record sheet, the device identification except the device identification of described main equipment, be defined as shared access from equipment.
11. according to the checkout equipment described in claim 7-10 any one, it is characterized in that, described checkout equipment also comprises: delete cells;
Described delete cells, for deleting the described device identification enciphered message of described data message.
12. 1 kinds of terminal equipments, is characterized in that, described terminal equipment comprises: acquiring unit, ciphering unit, generation unit and transmitting element;
Described acquiring unit, for obtaining device identification;
Described ciphering unit, for described device identification is encrypted, obtains device identification enciphered message;
Described generation unit, for generating the data message that comprises described device identification enciphered message;
Described transmitting element, for sending described data message.
CN201380000870.2A 2013-06-26 2013-06-26 The detection method of a kind of shared access, equipment and terminal unit Active CN103650457B (en)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2013/078078 WO2014205703A1 (en) 2013-06-26 2013-06-26 Method and device for detecting shared access, and terminal device

Publications (2)

Publication Number Publication Date
CN103650457A true CN103650457A (en) 2014-03-19
CN103650457B CN103650457B (en) 2016-09-28

Family

ID=50253430

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201380000870.2A Active CN103650457B (en) 2013-06-26 2013-06-26 The detection method of a kind of shared access, equipment and terminal unit

Country Status (2)

Country Link
CN (1) CN103650457B (en)
WO (1) WO2014205703A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105991630A (en) * 2015-03-26 2016-10-05 杭州迪普科技有限公司 Shared access detection method and device
WO2016201910A1 (en) * 2015-06-18 2016-12-22 中兴通讯股份有限公司 Method and apparatus for detecting number of mobile terminals sharing internet, and storage medium
CN108024291A (en) * 2016-11-01 2018-05-11 中兴通讯股份有限公司 The method and device that shared verification detects in a kind of mobile network

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109639628A (en) * 2018-10-26 2019-04-16 锐捷网络股份有限公司 Private connects behavioral value method, the network equipment, system and storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101060454A (en) * 2007-05-16 2007-10-24 杭州华三通信技术有限公司 Proxy access method, control network equipment and proxy access system
CN101112046A (en) * 2004-12-28 2008-01-23 株式会社Kt System and method for detecting and interception of ip sharer
CN101631052A (en) * 2009-08-25 2010-01-20 杭州华三通信技术有限公司 Method and device for detecting number of access terminals
CN101808018A (en) * 2010-03-26 2010-08-18 杭州华三通信技术有限公司 Method and device for detecting quantity of access terminals

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8081567B2 (en) * 2008-01-30 2011-12-20 Alcatel Lucent Method and apparatus for detecting wireless data subscribers using natted devices
CN101436965B (en) * 2008-11-29 2012-04-04 成都市华为赛门铁克科技有限公司 Detection method, apparatus and system sharing access client terminal quantity

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101112046A (en) * 2004-12-28 2008-01-23 株式会社Kt System and method for detecting and interception of ip sharer
CN101060454A (en) * 2007-05-16 2007-10-24 杭州华三通信技术有限公司 Proxy access method, control network equipment and proxy access system
CN101631052A (en) * 2009-08-25 2010-01-20 杭州华三通信技术有限公司 Method and device for detecting number of access terminals
CN101808018A (en) * 2010-03-26 2010-08-18 杭州华三通信技术有限公司 Method and device for detecting quantity of access terminals

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105991630A (en) * 2015-03-26 2016-10-05 杭州迪普科技有限公司 Shared access detection method and device
CN105991630B (en) * 2015-03-26 2019-09-06 杭州迪普科技股份有限公司 A kind of shared access detection method and device
WO2016201910A1 (en) * 2015-06-18 2016-12-22 中兴通讯股份有限公司 Method and apparatus for detecting number of mobile terminals sharing internet, and storage medium
CN108024291A (en) * 2016-11-01 2018-05-11 中兴通讯股份有限公司 The method and device that shared verification detects in a kind of mobile network
CN108024291B (en) * 2016-11-01 2023-02-24 中兴通讯股份有限公司 Method and device for detecting shared internet access in mobile network

Also Published As

Publication number Publication date
CN103650457B (en) 2016-09-28
WO2014205703A1 (en) 2014-12-31

Similar Documents

Publication Publication Date Title
CN105162772B (en) A kind of internet of things equipment certifiede-mail protocol method and apparatus
CN104935593B (en) The transmission method and device of data message
CN103797830B (en) For to the system and method for encoding with one group of exchange sharing temporary key data
CN104660602A (en) Quantum key transmission control method and system
CN104144049A (en) Encryption communication method, system and device
CN104602238A (en) Wireless network connecting method, device and system
EP3537652B1 (en) Method for securely controlling smart home appliance and terminal device
CN103391541A (en) Configuration method of wireless devices, device and system
US10505722B2 (en) Shared secret communication system with use of cloaking elements
CN103986723B (en) A kind of secret communication control, secret communication method and device
CN105208028A (en) Data transmission method and related device and equipment
CN108476131A (en) Data transmission method, device and equipment
EP3293933A1 (en) Communication content protection
CN106453246A (en) Equipment identity information distribution method, device and system
CN109194701B (en) Data processing method and device
CN103248476A (en) Data encryption key management method, system and terminal
CN103650457A (en) Detection method, device and terminal device of share access
EP2792099A1 (en) Method and apparatus for implementing key stream hierarchy
CN103747494A (en) Switching method and switching device in WLAN (Wireless Local Area Network)
CN113613227B (en) Data transmission method and device of Bluetooth equipment, storage medium and electronic device
CN113365264B (en) Block chain wireless network data transmission method, device and system
CN112534790A (en) Encryption device, communication system and method for exchanging encrypted data in communication network
CN106487761B (en) Message transmission method and network equipment
CN105450597B (en) A kind of information transferring method and device
CN115086951A (en) Message transmission system, method and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant