CN104243423A - Ad-hoc network encryption and authentication method and system and terminals - Google Patents
Ad-hoc network encryption and authentication method and system and terminals Download PDFInfo
- Publication number
- CN104243423A CN104243423A CN201310244521.7A CN201310244521A CN104243423A CN 104243423 A CN104243423 A CN 104243423A CN 201310244521 A CN201310244521 A CN 201310244521A CN 104243423 A CN104243423 A CN 104243423A
- Authority
- CN
- China
- Prior art keywords
- terminal
- manet
- access points
- access
- business information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/068—Authentication using credential vaults, e.g. password manager applications or one time password [OTP] applications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W84/00—Network topologies
- H04W84/18—Self-organising networks, e.g. ad-hoc networks or sensor networks
Abstract
The invention discloses an ad-hoc network encryption and authentication method which comprises the steps of generating passwords of an ad-hoc network according to all information of terminals in the ad-hoc network at present and informing all the terminals in the ad-hoc network of the passwords; encrypting business information through the passwords when all the terminals in the ad-hoc network send the business information; decrypting business information through the passwords when all the terminals in the ad-hoc network receive the business information. The invention further discloses an ad-hoc network encryption and authentication system and the terminals. By means of the ad-hoc network encryption and authentication method and system and the terminals, the communication safety of the ad-hoc network can be guaranteed.
Description
Technical field
The present invention relates to the encrypted authentication technology in MANET, particularly relate to a kind of encrypted authentication method of MANET, system and terminal.
Background technology
Along with Information Technology Development, and the popularization of the new network such as Internet of Things, ubiquitous network, increasing terminal equipment will be emerged in the space of people's life, work.In order to the multiple terminal of user's surrounding enviroment can be made full use of, for user provides real-time, efficient, high-quality service, multiple terminals collaborative work is allowed jointly to provide service to become a kind of demand.
Between multiple terminals, safety carries out the prerequisite that information interaction is multiple terminals collaborative work.At present, the pattern of multiple terminals collaborative work is: terminal room is mutually by forming a MANET after authentication, and by one of them terminal in the way selection MANET of use contrast terminal ability information as access points terminal, each terminal distribution IP address can be given by access points terminal, so, terminal room can be communicated by IP address interconnect.Sharing between end message can be realized by MANET.But the safety of communication is not protected between the terminal in MANET, and, if when new terminal request adds existing MANET, also do not have the terminal of corresponding method for authenticating to the heart to carry out authentication at present.
Summary of the invention
In view of this, main purpose of the present invention is to provide a kind of encrypted authentication method of MANET, system and terminal, can ensure the fail safe of MANET communication.
For achieving the above object, technical scheme of the present invention is achieved in that
An encrypted authentication method for MANET, comprising:
Generate the password of described MANET according to all end messages current in MANET and notify each terminal in described MANET;
When each terminal in described MANET sends business information, business information described in described codon pair is utilized to be encrypted; When each terminal in described MANET receives business information, business information described in described codon pair is utilized to be decrypted.
Preferably, receive terminal when accessing the request of described MANET, the terminal that all end-ons in described MANET enter carries out authentication; After authentication success, the terminal of described access accesses described MANET.
Preferably, the method also comprises:
When determining access terminal in described MANET or have terminal to exit, upgrade the password of described MANET according to end message current in described MANET, and by each terminal in MANET described in the password notification after renewal;
When each terminal in described MANET sends business information, business information described in the codon pair after upgrading is utilized to be encrypted; When each terminal in described MANET receives business information, business information described in the codon pair after upgrading is utilized to be decrypted.
Preferably, described generate the password of described MANET according to all end messages current in MANET before, the method also comprises:
Terminal carries out authentication to described other-end after receiving the MANET request message of other-end transmission by Wireless Fidelity WIFI network or blueteeth network; And after authentication success, connect with described other-end and generate MANET.
Preferably, the method also comprises:
In described MANET, each terminal obtains the performance parameter of other-end by described MANET, determine that a terminal is as access points terminal according to the performance parameter of terminal, and be all terminal distribution IP addresses of described MANET by described access points terminal.
Preferably, the described password generating described MANET according to all end messages current in MANET, comprising:
Described access points terminal receives the end message that non-access points terminal sends, and generates the password comprising the described MANET of described end message; Wherein, described end message comprises at least one of following information: terminal user name, IP address, Termination ID.
Preferably, the terminal that all end-ons in described MANET enter carries out authentication, comprising:
Obtain the end message of the terminal of described access, the end message of access is mated with the end message of buffer memory, after the match is successful, be defined as the terminal authentication success to described access; After it fails to match, when determining that the terminal of described access is legal terminal according to obtained end message, be defined as the terminal authentication success to described access.
An encrypted authentication system for MANET, comprising: access points terminal and non-access points terminal; Wherein,
Described access points terminal, for generating the password of described MANET according to all end messages current in MANET and notifying each described non-access points terminal in described MANET; When sending business information, business information described in described codon pair is utilized to be encrypted; When receiving business information, business information described in described codon pair is utilized to be decrypted.
Described non-access points terminal, for receiving the password of the described MANET of described access points terminal notification; When sending business information, business information described in described codon pair is utilized to be encrypted; When receiving business information, business information described in described codon pair is utilized to be decrypted.
Preferably, this system also comprises: access terminal;
Described access terminal, for sending request extremely described access points terminal or the described non-access points terminal accessing described MANET; Described access points terminal and described non-access points terminal, to after described access terminal authentication merit, access described MANET;
Described access points terminal, also for receive described access terminal access the request of described MANET time, authentication is carried out to described access terminal; And the request described access terminal being accessed described MANET pushes to described non-access points terminal;
Described non-access points terminal, also for receive described access terminal access the request of described MANET time, authentication is carried out to described access terminal; And the request described access terminal being accessed described MANET pushes to described access points terminal.
Preferably, described access points terminal, time also for determining access terminal in described MANET or have terminal to exit, the password of described MANET is upgraded according to end message current in described MANET, and by each described non-access points terminal in MANET described in the password notification after renewal; When sending business information, business information described in the codon pair after upgrading is utilized to be encrypted; When receiving business information, business information described in the codon pair after upgrading is utilized to be decrypted;
Described non-access points terminal, the password after the described MANET also for receiving described access points terminal notification upgrades; When sending business information, business information described in the codon pair after upgrading is utilized to be encrypted; When receiving business information, business information described in the codon pair after upgrading is utilized to be decrypted.
Preferably, described access points terminal, also for after received MANET request message that described non-access points terminal sends by WIFI network or blueteeth network, carries out authentication to described non-access points terminal; And after authentication success, connect with described non-access points terminal and generate MANET;
Described non-access points terminal, also for received by WIFI network or blueteeth network described access points terminal send MANET request message after, authentication is carried out to described access points terminal; And after authentication success, connect with described access points terminal and generate MANET.
Preferably, described access points terminal, also for all non-access points terminal distribution IP address for described access points terminal and described MANET.
Preferably, described access points terminal, also for receiving the end message that described non-access points terminal sends; Generate the password comprising the described MANET of described end message; Wherein, described end message comprises at least one of following information: terminal user name, IP address, Termination ID.
Preferably, described access points terminal, also for obtaining the end message of described access terminal; Obtained end message is mated with the end message of buffer memory, after the match is successful, is defined as described access terminal authentication success; After it fails to match, when determining that described access terminal is legal terminal according to obtained end message, be defined as described access terminal authentication success;
Described non-access points terminal, also for obtaining the end message of described access terminal; Obtained end message is mated with the end message of buffer memory, after the match is successful, is defined as described access terminal authentication success; After it fails to match, when determining that described access terminal is legal terminal according to obtained end message, be defined as described access terminal authentication success.
An encrypted authentication terminal for MANET, comprising: password unit and encrypting and decrypting unit; Wherein,
Described password unit, for when described terminal is defined as access points terminal, generates the password of described MANET according to all end messages current in MANET and notifies each terminal in described MANET; When described terminal is defined as non-access points terminal, receive the password of the described MANET of described access points terminal notification;
Described encrypting and decrypting unit, for when sending business information, utilizes business information described in described codon pair to be encrypted; When receiving business information, business information described in described codon pair is utilized to be decrypted.
Preferably, this terminal also comprises: the first receiving element and authenticating unit; Wherein,
Described first receiving element, accesses the request of described MANET for receiving access terminal;
Described authenticating unit, for carrying out authentication to described access terminal, and the request described access terminal being accessed described MANET pushes to other terminal of described MANET.
Preferably, described terminal also comprises: updating block, transmitting element and the second receiving element; Wherein,
Described updating block, for when described terminal is defined as access points terminal, when determining access terminal in described MANET or have terminal to exit, upgrades the password of described MANET according to end message current in described MANET;
Described transmitting element, in by each described non-access points terminal described in the password notification after upgrading in MANET;
Described second receiving element, for when described terminal is defined as non-access points terminal, receives the password of the described MANET after the renewal of described access points terminal notification;
Described encrypting and decrypting unit, also for when sending business information, utilizes business information described in the codon pair after upgrading to be encrypted; When receiving business information, business information described in the codon pair after upgrading is utilized to be decrypted.
Preferably, described terminal also comprises: the 3rd receiving element and set up unit; Wherein,
Described 3rd receiving element, for receiving the MANET request message that other terminal described sends by WIFI network or blueteeth network;
Described authenticating unit, also carries out authentication to other terminal described;
Describedly set up unit, for after authentication success, connect with other terminal described and generate MANET.
Preferably, this terminal also comprises allocation units, for when described terminal is defined as access points terminal, is all terminal distribution IP addresses of described MANET.
Preferably, described password unit comprises: receive subelement, send subelement and generate subelement; Wherein,
Described reception subelement, for when described terminal is defined as access points terminal, receives the end message that non-access points terminal sends; Generate the password comprising the described MANET of described end message; Wherein, described end message comprises at least one of following information: terminal user name, IP address, Termination ID;
Described transmission subelement, for when described terminal is defined as non-access points terminal, transmitting terminal information is to described access points terminal;
Generate subelement, for generating the password of the described MANET comprising described end message.
Preferably, described authenticating unit comprises: obtain subelement, mate subelement and determine subelement; Wherein,
Described acquisition subelement, for obtaining the end message of access terminal;
Described coupling subelement, for mating obtained end message with the end message of buffer memory;
Describedly determine subelement, for after the match is successful at described coupling subelement, be defined as described access terminal authentication success; After it fails to match, when determining that described access terminal is legal terminal according to obtained end message, be defined as described access terminal authentication success.
The encrypted authentication method of MANET provided by the invention, system and terminal, generate the password of described MANET according to all end messages current in MANET and notify each terminal in described MANET;
When each terminal in described MANET sends business information, business information described in described codon pair is utilized to be encrypted; When each terminal in described MANET receives business information, business information described in described codon pair is utilized to be decrypted.So, can be encrypted the business information of communication in MANET, ensure the fail safe of data; Receive terminal when accessing the request of described MANET, the terminal that all end-ons in described MANET enter carries out authentication; After authentication success, the terminal of described access accesses described MANET; So, authentication can be carried out by all terminals in MANET to the other-end beyond MANET, and then ensure that the fail safe of the terminal added in MANET.
Accompanying drawing explanation
Fig. 1 is the encrypted authentication method realization flow schematic diagram of embodiment of the present invention MANET;
Fig. 2 is the structure composition schematic diagram of the encrypted authentication system of embodiment of the present invention MANET;
Fig. 3 is the structure composition schematic diagram of the encrypted authentication terminal of embodiment of the present invention MANET.
Embodiment
In order to more at large understand feature of the present invention and technology contents, below in conjunction with accompanying drawing, realization of the present invention is described in detail, the use of appended accompanying drawing explanation only for reference, is not used for limiting the present invention.
Embodiments provide a kind of encrypted authentication method of MANET, as shown in Figure 1, the method comprises the following steps:
Step 101: generate the password of described MANET according to all end messages current in MANET and notify each terminal in described MANET.
Generate MANET in advance, preferably, before step 101, the method also comprises: terminal is by Wireless Fidelity (WIFI, WIreless FIdelity) after network or blueteeth network receive the MANET request message that other-end sends, authentication is carried out to described other-end; And after authentication success, connect with described other-end and generate MANET.
In described MANET, each terminal obtains the performance parameter of other-end by described MANET, determine that a terminal is as access points terminal according to the performance parameter of terminal, and be all terminal distribution IP addresses of described MANET by described access points terminal.
Here, described performance parameter can be the CPU disposal ability of terminal, memory size etc.
Preferably, the described password generating described MANET according to the end message in current MANET, comprising:
Described access points terminal receives the end message that non-access points terminal sends; Generate the password comprising the described MANET of described end message; Wherein, described end message comprises at least one of following information: terminal user name, IP address, Termination ID.
Such as, non-access points terminal will be terminal 2,3,4, and access points terminal is terminal 1; The end message of himself is issued terminal 1 by terminal 2,3,4; After terminal 1 receives the end message that terminal 2,3,4 sends, generate the password comprising described end message; Wherein, the form of password includes but not limited to terminal user name, IP address, Termination ID; As shown in table 1.
| ? | Terminal 2 | Terminal 3 | Terminal 4 | Terminal 1 |
| Terminal user name | Name2 | Name3 | Name4 | Name1 |
| IP address | 192.168.0.2 | 192.168.0.3 | 192.168.0.4 | 192.168.0.1 |
| Termination ID | SSID2 | SSID3 | SSID4 | SSID1 |
Table 1
Taking terminal 1 as the password of the MANET of access access node terminal is:
NAME (2+3+4+1)+IP (2+3+4+1)+SSID (2+3+4+1), wherein, service set (SSID, Service Set Identifier) is Termination ID; The length of password can intercept according to the needs of user oneself; This password is the unified password of MANET.
Here, include the information of user in SSID, service name, the device attribute information of such as user's input.Further, can respectively with CPU, internal memory, the disk space of a numeral equipment, these numerals can be arranged by user or developer, also can take the numerical value of standard Uniform provisions.
Step 102: when each terminal in described MANET sends business information, utilize business information described in described codon pair to be encrypted; When each terminal in described MANET receives business information, business information described in described codon pair is utilized to be decrypted.
Preferably, the method also comprises: receive terminal when accessing the request of described MANET, the terminal that all end-ons in described MANET enter carries out authentication; After authentication success, the terminal of described access accesses described MANET.
Accordingly, when determining access terminal in described MANET or have terminal to exit, upgrade the password of described MANET according to end message current in described MANET, and by each terminal in MANET described in the password notification after renewal;
When each terminal in described MANET sends business information, business information described in the codon pair after upgrading is utilized to be encrypted; When each terminal in described MANET receives business information, business information described in the codon pair after upgrading is utilized to be decrypted.
Such as, terminal 5 is the terminal beyond described MANET, terminal 5 by WIFI or bluetooth discovery in described MANET terminal 2,3,4 time, send to terminal 2,3,4 message that joins request; Terminal 2,3,4 by the described message push that joins request to terminal 1; Terminal 1,2,3,4 pairs of terminals 5 carry out authentication.Or, terminal 5 by WIFI or bluetooth discovery to terminal 1 in described MANET time, send to terminal 1 message that joins request; Terminal 1 by the described message push that joins request to terminal 2,3,4; Terminal 1,2,3,4 pairs of terminals 5 carry out authentication.
Further, the terminal that all end-ons in described MANET enter carries out authentication, comprising:
Obtain the end message of the terminal of described access;
Obtained end message is mated with the end message of buffer memory, after the match is successful, is defined as the terminal authentication success to described access; After it fails to match, when determining that the terminal of described access is legal terminal according to obtained end message, be defined as the terminal authentication success to described access.
Here, when receiving the end message of terminal transmission, all need to store end message, so that when receiving the end message of terminal transmission next time more at every turn, end message directly by storing carries out coupling and determines that described terminal is legal terminal, and then to its authentication success.
Further, the described password upgrading described MANET according to the end message in current MANET, comprising:
The end message that the terminal that described access points terminal receives access sends; Generate the password comprising the described MANET of the end message of other non-access points terminals in described end message and described MANET.
Such as, terminal 5 is access terminal, and terminal 5 adds after in MANET, has terminal 1,2,3,4,5 in MANET, and wherein, terminal 1 is access points terminal, and terminal 2,3,4,5 is non-access points terminal, and the password of the MANET of renewal is:
NAME(2+3+4+1+5)+IP(2+3+4+1+5)+SSID(2+3+4+1+5)。
For the encrypted authentication method of above-mentioned MANET, the embodiment of the present invention additionally provides a kind of encrypted authentication system of MANET, and as shown in Figure 2, this system comprises: access points terminal 21 and non-access points terminal 22; Wherein,
Described access points terminal 21, for generating the password of described MANET according to all end messages current in MANET and notifying each described non-access points terminal 22 in described MANET; When sending business information, business information described in described codon pair is utilized to be encrypted; When receiving business information, business information described in described codon pair is utilized to be decrypted;
Described non-access points terminal 22, for receiving the password of the described MANET of described access points terminal 21 notice; When sending business information, business information described in described codon pair is utilized to be encrypted; When receiving business information, business information described in described codon pair is utilized to be decrypted.
Preferably, this system also comprises: access terminal 23;
Described access terminal 23, for sending request extremely described access points terminal 21 or the described non-access points terminal 22 accessing described MANET; Described access points terminal 21 and described non-access points terminal 22, to after described access terminal authentication merit, access described MANET;
Described access points terminal 21, also for receive described access terminal 23 access the request of described MANET time, authentication is carried out to described access terminal 23; And the request that described access terminal 23 accesses described MANET is pushed to described non-access points terminal 22;
Described non-access points terminal 22, also for receive described access terminal 23 access the request of described MANET time, authentication is carried out to described access terminal 23; And the request that described access terminal 23 accesses described MANET is pushed to described access points terminal 21.
Preferably, described access points terminal 21, time also for determining access terminal in described MANET or have terminal to exit, the password of described MANET is upgraded according to end message current in described MANET, and by each described non-access points terminal 22 in MANET described in the password notification after renewal; When sending business information, business information described in the codon pair after upgrading is utilized to be encrypted; When receiving business information, business information described in the codon pair after upgrading is utilized to be decrypted;
Described non-access points terminal 22, the password after the described MANET also for receiving described access points terminal 21 notice upgrades; When sending business information, business information described in the codon pair after upgrading is utilized to be encrypted; When receiving business information, business information described in the codon pair after upgrading is utilized to be decrypted.
Preferably, described access points terminal 21, also for after received MANET request message that described non-access points terminal 22 sends by WIFI network or blueteeth network, carries out authentication to described non-access points terminal 22; And after authentication success, connect with described non-access points terminal 22 and generate MANET;
Described non-access points terminal 22, also for received by WIFI network or blueteeth network described access points terminal 21 send MANET request message after, authentication is carried out to described access points terminal 21; And after authentication success, connect with described access points terminal 22 and generate MANET.
Preferably, described access points terminal 21, also for all non-access points terminal 22 distributing IP address for described access points terminal 21 and described MANET.
Preferably, described access points terminal 21, also for receiving the end message that described non-access points terminal 22 sends; Generate the password comprising the described MANET of described end message; Wherein, described end message comprises at least one of following information: terminal user name, IP address, Termination ID; .
Preferably, described access points terminal 21, also for obtaining the end message of described access terminal 23; Obtained end message is mated with the end message of buffer memory, after the match is successful, is defined as described access terminal 23 authentication success; After it fails to match, when determining described access terminal 23 for legal terminal according to obtained end message, be defined as described access terminal 23 authentication success;
Described non-access points terminal 22, also for obtaining the end message of described access terminal 23; Obtained end message is mated with the end message of buffer memory, after the match is successful, is defined as described access terminal 23 authentication success; After it fails to match, when determining described access terminal 23 for legal terminal according to obtained end message, be defined as described access terminal 23 authentication success.
It will be appreciated by those skilled in the art that the practical function of each equipment of the encrypted authentication system of the MANET shown in Fig. 2 can refer to the associated description of the encrypted authentication method of aforementioned MANET and understands.The function of the equipment of the encrypted authentication system of the MANET shown in Fig. 2 realizes by the program run on processor, also realizes by concrete logical circuit.
For the encrypted authentication method and system of above-mentioned MANET, the embodiment of the present invention additionally provides a kind of encrypted authentication terminal of MANET, and as shown in Figure 3, this terminal comprises: password unit 31 and encrypting and decrypting unit 32; Wherein,
Described password unit 31, for when described terminal is defined as access points terminal, generates the password of described MANET according to all end messages current in MANET and notifies each terminal in described MANET; When described terminal is defined as non-access points terminal, receive the password of the described MANET of described access points terminal notification;
Described encrypting and decrypting unit 32, for when sending business information, utilizes business information described in described codon pair to be encrypted; When receiving business information, business information described in described codon pair is utilized to be decrypted.
Preferably, this terminal also comprises: the first receiving element 33 and authenticating unit 34; Wherein,
Described first receiving element 33, accesses the request of described MANET for receiving access terminal;
Described authenticating unit 34, for carrying out authentication to described access terminal, and the request described access terminal being accessed described MANET pushes to other terminal of described MANET.
Preferably, this terminal also comprises: updating block 35, transmitting element 36 and the second receiving element 37; Wherein,
Described updating block 35, for when described terminal is defined as access points terminal, when determining access terminal in described MANET or have terminal to exit, upgrades the password of described MANET according to end message current in described MANET;
Described transmitting element 36, in by each described non-access points terminal described in the password notification after upgrading in MANET;
Described second receiving element 37, for when described terminal is defined as non-access points terminal, receives the password of the described MANET after the renewal of described access points terminal notification;
Described encrypting and decrypting unit 32, also for when sending business information, utilizes business information described in the codon pair after upgrading to be encrypted; When receiving business information, business information described in the codon pair after upgrading is utilized to be decrypted.
Preferably, described terminal also comprises: the 3rd receiving element 38 and set up unit 39; Wherein,
Described 3rd receiving element 38, for receiving the MANET request message that other terminal described sends by WIFI network or blueteeth network;
Described authenticating unit 34, also carries out authentication to other terminal described;
Describedly set up unit 39, for after authentication success, connect with other terminal described and generate MANET.
Preferably, this terminal also comprises allocation units 310, for when described terminal is defined as access points terminal, is all terminal distribution IP addresses of described MANET
Preferably, described password unit 31 comprises: receive subelement 311, send subelement 312 and generate subelement 313; Wherein,
Described reception subelement 311, for when described terminal is defined as access points terminal, receives the end message that non-access points terminal sends; Generate the password comprising the described MANET of described end message; Wherein, described end message comprises at least one of following information: terminal user name, IP address, Termination ID;
Described transmission subelement 312, for when described terminal is defined as non-access points terminal, transmitting terminal information is to described access points terminal;
Generate subelement 313, for generating the password of the described MANET comprising described end message.
Preferably, described authenticating unit 34 comprises: obtain subelement 341, coupling subelement 342 and determine subelement 343; Wherein,
Described acquisition subelement 341, for obtaining the end message of access terminal;
Described coupling subelement 342, for mating obtained end message with the end message of buffer memory;
Describedly determine subelement 343, for after the match is successful at described coupling subelement 342, be defined as described access terminal authentication success; After it fails to match, when determining that described access terminal is legal terminal according to obtained end message, be defined as described access terminal authentication success.
It will be appreciated by those skilled in the art that the practical function of each unit in the encrypted authentication terminal of the MANET shown in Fig. 3 and subelement thereof can refer to the associated description of the encrypted authentication method and system of aforementioned MANET and understands.Each unit in the encrypted authentication terminal of the MANET shown in Fig. 3 and the function of subelement thereof realize by the program run on processor, also realize by concrete logical circuit.
The above, be only preferred embodiment of the present invention, be not intended to limit protection scope of the present invention.
Claims (21)
1. an encrypted authentication method for MANET, it is characterized in that, the method comprises:
Generate the password of described MANET according to all end messages current in MANET and notify each terminal in described MANET;
When each terminal in described MANET sends business information, business information described in described codon pair is utilized to be encrypted; When each terminal in described MANET receives business information, business information described in described codon pair is utilized to be decrypted.
2. encrypted authentication method according to claim 1, is characterized in that, receive terminal when accessing the request of described MANET, the terminal that all end-ons in described MANET enter carries out authentication; After authentication success, the terminal of described access accesses described MANET.
3. encrypted authentication method according to claim 1 and 2, it is characterized in that, the method also comprises:
When determining access terminal in described MANET or have terminal to exit, upgrade the password of described MANET according to end message current in described MANET, and by each terminal in MANET described in the password notification after renewal;
When each terminal in described MANET sends business information, business information described in the codon pair after upgrading is utilized to be encrypted; When each terminal in described MANET receives business information, business information described in the codon pair after upgrading is utilized to be decrypted.
4. encrypted authentication method according to claim 3, is characterized in that, described generate the password of described MANET according to all end messages current in MANET before, the method also comprises:
Terminal carries out authentication to described other-end after receiving the MANET request message of other-end transmission by Wireless Fidelity WIFI network or blueteeth network; And after authentication success, connect with described other-end and generate MANET.
5. encrypted authentication method according to claim 4, it is characterized in that, the method also comprises:
In described MANET, each terminal obtains the performance parameter of other-end by described MANET, determine that a terminal is as access points terminal according to the performance parameter of terminal, and be all terminal distribution IP addresses of described MANET by described access points terminal.
6. encrypted authentication method according to claim 5, is characterized in that, the described password generating described MANET according to all end messages current in MANET, comprising:
Described access points terminal receives the end message that non-access points terminal sends, and generates the password comprising the described MANET of described end message; Wherein, described end message comprises at least one of following information: terminal user name, IP address, Termination ID.
7. the encrypted authentication method according to claim 2,4,5 or 6, is characterized in that, the terminal that all end-ons in described MANET enter carries out authentication, comprising:
Obtain the end message of the terminal of described access, the end message of access is mated with the end message of buffer memory, after the match is successful, be defined as the terminal authentication success to described access; After it fails to match, when determining that the terminal of described access is legal terminal according to obtained end message, be defined as the terminal authentication success to described access.
8. an encrypted authentication system for MANET, is characterized in that, this system comprises: access points terminal and non-access points terminal; Wherein,
Described access points terminal, for generating the password of described MANET according to all end messages current in MANET and notifying each described non-access points terminal in described MANET; When sending business information, business information described in described codon pair is utilized to be encrypted; When receiving business information, business information described in described codon pair is utilized to be decrypted;
Described non-access points terminal, for receiving the password of the described MANET of described access points terminal notification; When sending business information, business information described in described codon pair is utilized to be encrypted; When receiving business information, business information described in described codon pair is utilized to be decrypted.
9. encrypted authentication system according to claim 8, is characterized in that, this system also comprises: access terminal;
Described access terminal, for sending request extremely described access points terminal or the described non-access points terminal accessing described MANET; Described access points terminal and described non-access points terminal, to after described access terminal authentication merit, access described MANET;
Described access points terminal, also for receive described access terminal access the request of described MANET time, authentication is carried out to described access terminal; And the request described access terminal being accessed described MANET pushes to described non-access points terminal;
Described non-access points terminal, also for receive described access terminal access the request of described MANET time, authentication is carried out to described access terminal; And the request described access terminal being accessed described MANET pushes to described access points terminal.
10. encrypted authentication system according to claim 8 or claim 9, is characterized in that,
Described access points terminal, time also for determining access terminal in described MANET or have terminal to exit, the password of described MANET is upgraded according to end message current in described MANET, and by each described non-access points terminal in MANET described in the password notification after renewal; When sending business information, business information described in the codon pair after upgrading is utilized to be encrypted; When receiving business information, business information described in the codon pair after upgrading is utilized to be decrypted;
Described non-access points terminal, the password after the described MANET also for receiving described access points terminal notification upgrades; When sending business information, business information described in the codon pair after upgrading is utilized to be encrypted; When receiving business information, business information described in the codon pair after upgrading is utilized to be decrypted.
11. encrypted authentication systems according to claim 10, is characterized in that,
Described access points terminal, also for after received MANET request message that described non-access points terminal sends by WIFI network or blueteeth network, carries out authentication to described non-access points terminal; And after authentication success, connect with described non-access points terminal and generate MANET;
Described non-access points terminal, also for received by WIFI network or blueteeth network described access points terminal send MANET request message after, authentication is carried out to described access points terminal; And after authentication success, connect with described access points terminal and generate MANET.
12. encrypted authentication systems according to claim 11, is characterized in that, described access points terminal, also for all non-access points terminal distribution IP address for described access points terminal and described MANET.
13. encrypted authentication systems according to claim 12, is characterized in that, described access points terminal, also for receiving the end message that described non-access points terminal sends; Generate the password comprising the described MANET of described end message; Wherein, described end message comprises at least one of following information: terminal user name, IP address, Termination ID.
14. encrypted authentication systems according to claim 9,11,12 or 13, is characterized in that,
Described access points terminal, also for obtaining the end message of described access terminal; Obtained end message is mated with the end message of buffer memory, after the match is successful, is defined as described access terminal authentication success; After it fails to match, when determining that described access terminal is legal terminal according to obtained end message, be defined as described access terminal authentication success;
Described non-access points terminal, also for obtaining the end message of described access terminal; Obtained end message is mated with the end message of buffer memory, after the match is successful, is defined as described access terminal authentication success; After it fails to match, when determining that described access terminal is legal terminal according to obtained end message, be defined as described access terminal authentication success.
The encrypted authentication terminal of 15. 1 kinds of MANETs, is characterized in that, this terminal comprises: password unit and encrypting and decrypting unit; Wherein,
Described password unit, for when described terminal is defined as access points terminal, generates the password of described MANET according to all end messages current in MANET and notifies each terminal in described MANET; When described terminal is defined as non-access points terminal, receive the password of the described MANET of described access points terminal notification;
Described encrypting and decrypting unit, for when sending business information, utilizes business information described in described codon pair to be encrypted; When receiving business information, business information described in described codon pair is utilized to be decrypted.
16. encrypted authentication terminals according to claim 15, it is characterized in that, this terminal also comprises: the first receiving element and authenticating unit; Wherein,
Described first receiving element, accesses the request of described MANET for receiving access terminal;
Described authenticating unit, for carrying out authentication to described access terminal, and the request described access terminal being accessed described MANET pushes to other terminal of described MANET.
17. encrypted authentication terminals according to claim 15 or 16, it is characterized in that, described terminal also comprises: updating block, transmitting element and the second receiving element; Wherein,
Described updating block, for when described terminal is defined as access points terminal, when determining access terminal in described MANET or have terminal to exit, upgrades the password of described MANET according to end message current in described MANET;
Described transmitting element, in by each described non-access points terminal described in the password notification after upgrading in MANET;
Described second receiving element, for when described terminal is defined as non-access points terminal, receives the password of the described MANET after the renewal of described access points terminal notification;
Described encrypting and decrypting unit, also for when sending business information, utilizes business information described in the codon pair after upgrading to be encrypted; When receiving business information, business information described in the codon pair after upgrading is utilized to be decrypted.
18. encrypted authentication terminals according to claim 17, it is characterized in that, described terminal also comprises: the 3rd receiving element and set up unit; Wherein,
Described 3rd receiving element, for receiving the MANET request message that other terminal described sends by WIFI network or blueteeth network;
Described authenticating unit, also carries out authentication to other terminal described;
Describedly set up unit, for after authentication success, connect with other terminal described and generate MANET.
19. encrypted authentication terminals according to claim 18, it is characterized in that, this terminal also comprises allocation units, for when described terminal is defined as access points terminal, is all terminal distribution IP addresses of described MANET.
20. encrypted authentication terminals according to claim 19, it is characterized in that, described password unit comprises: receive subelement, send subelement and generate subelement; Wherein,
Described reception subelement, for when described terminal is defined as access points terminal, receives the end message that non-access points terminal sends; Generate the password comprising the described MANET of described end message; Wherein, described end message comprises at least one of following information: terminal user name, IP address, Termination ID;
Described transmission subelement, for when described terminal is defined as non-access points terminal, transmitting terminal information is to described access points terminal;
Generate subelement, for generating the password of the described MANET comprising described end message.
21. encrypted authentication terminals according to claim 16,18,19 or 20, it is characterized in that, described authenticating unit comprises: obtain subelement, mate subelement and determine subelement; Wherein,
Described acquisition subelement, for obtaining the end message of access terminal;
Described coupling subelement, for mating obtained end message with the end message of buffer memory;
Describedly determine subelement, for after the match is successful at described coupling subelement, be defined as described access terminal authentication success; After it fails to match, when determining that described access terminal is legal terminal according to obtained end message, be defined as described access terminal authentication success.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310244521.7A CN104243423A (en) | 2013-06-19 | 2013-06-19 | Ad-hoc network encryption and authentication method and system and terminals |
| PCT/CN2013/084974 WO2014201783A1 (en) | 2013-06-19 | 2013-10-10 | Encryption and authentication method, system and terminal for ad hoc network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310244521.7A CN104243423A (en) | 2013-06-19 | 2013-06-19 | Ad-hoc network encryption and authentication method and system and terminals |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104243423A true CN104243423A (en) | 2014-12-24 |
Family
ID=52103865
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310244521.7A Pending CN104243423A (en) | 2013-06-19 | 2013-06-19 | Ad-hoc network encryption and authentication method and system and terminals |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN104243423A (en) |
| WO (1) | WO2014201783A1 (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105979475A (en) * | 2016-05-11 | 2016-09-28 | 珠海市魅族科技有限公司 | Short-distance wireless connection method and terminals |
| CN108696879A (en) * | 2018-03-21 | 2018-10-23 | 深圳市海司恩科技有限公司 | Ad hoc network method, self-organizing network system and the storage medium of ultraviolet optical-fiber network |
| CN108834121A (en) * | 2018-07-02 | 2018-11-16 | 中国联合网络通信集团有限公司 | A kind of bluetooth equipment ad hoc network method and system |
| CN110366153A (en) * | 2019-07-17 | 2019-10-22 | 苏州佩林网络科技有限公司 | A kind of method of bluetooth ad hoc network |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1098489A3 (en) * | 1999-11-03 | 2002-07-10 | Nokia Corporation | Method and system for making wireless terminal profile information accessible to a network |
| CN1564514A (en) * | 2004-03-26 | 2005-01-12 | 中兴通讯股份有限公司 | Self arranged net mode shared key authentication and conversation key consulant method of radio LAN |
| CN102256248A (en) * | 2011-07-05 | 2011-11-23 | 淮阴工学院 | Scheme for managing Ad hoc group key |
| CN102685740A (en) * | 2012-03-29 | 2012-09-19 | 公安部第三研究所 | Short-distance wireless communication node and wireless communication method |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102487503B (en) * | 2010-12-06 | 2014-04-16 | 中国航空工业集团公司第六三一研究所 | Method for managing multi-stage security dynamic group security keys |
| CN102857918A (en) * | 2012-10-12 | 2013-01-02 | 北京汽车股份有限公司 | Vehicle-mounted communication system |
-
2013
- 2013-06-19 CN CN201310244521.7A patent/CN104243423A/en active Pending
- 2013-10-10 WO PCT/CN2013/084974 patent/WO2014201783A1/en active Application Filing
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1098489A3 (en) * | 1999-11-03 | 2002-07-10 | Nokia Corporation | Method and system for making wireless terminal profile information accessible to a network |
| CN1564514A (en) * | 2004-03-26 | 2005-01-12 | 中兴通讯股份有限公司 | Self arranged net mode shared key authentication and conversation key consulant method of radio LAN |
| CN102256248A (en) * | 2011-07-05 | 2011-11-23 | 淮阴工学院 | Scheme for managing Ad hoc group key |
| CN102685740A (en) * | 2012-03-29 | 2012-09-19 | 公安部第三研究所 | Short-distance wireless communication node and wireless communication method |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105979475A (en) * | 2016-05-11 | 2016-09-28 | 珠海市魅族科技有限公司 | Short-distance wireless connection method and terminals |
| CN105979475B (en) * | 2016-05-11 | 2020-01-07 | 珠海市魅族科技有限公司 | Short-range wireless connection method and terminal |
| CN108696879A (en) * | 2018-03-21 | 2018-10-23 | 深圳市海司恩科技有限公司 | Ad hoc network method, self-organizing network system and the storage medium of ultraviolet optical-fiber network |
| CN108834121A (en) * | 2018-07-02 | 2018-11-16 | 中国联合网络通信集团有限公司 | A kind of bluetooth equipment ad hoc network method and system |
| CN108834121B (en) * | 2018-07-02 | 2021-04-02 | 中国联合网络通信集团有限公司 | Bluetooth device ad hoc network method and system |
| CN110366153A (en) * | 2019-07-17 | 2019-10-22 | 苏州佩林网络科技有限公司 | A kind of method of bluetooth ad hoc network |
| CN110366153B (en) * | 2019-07-17 | 2022-08-05 | 苏州佩林软件技术有限公司 | Bluetooth ad hoc network method |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2014201783A1 (en) | 2014-12-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| KR102142576B1 (en) | Method and apparatus for discovery of device-to-device communications | |
| US10567350B2 (en) | Virtual card downloading method, terminal, and intermediate device | |
| RU2683853C1 (en) | Method for improving gprs key, sgsn device, user device, hlr / hss and gprs system | |
| CN104821937A (en) | Token acquisition method, device and system | |
| CN112399130B (en) | Processing method and device of cloud video conference information, storage medium and communication equipment | |
| KR20110042711A (en) | Method and apparatus for providing service using personal network | |
| CN110059055B (en) | File storage and reading method and device based on distributed private cloud | |
| CN102970732A (en) | Method, system and equipment for wireless local area network (WLAN) sharing authentication | |
| TWI592046B (en) | Network sharing device, system and method | |
| KR102014108B1 (en) | Method and RSP Server Apparatus for Providing SIM Profile to eUICC Device | |
| JP2017528074A5 (en) | ||
| CN106452999B (en) | Intelligent household appliance and method and device for safely accessing intelligent household appliance | |
| JP2023165679A (en) | Device for remotely managing apparatuses, method, and program therefor | |
| CN104243423A (en) | Ad-hoc network encryption and authentication method and system and terminals | |
| KR101718775B1 (en) | Communication security processing method, and apparatus | |
| CN103139201A (en) | Network strategy acquiring method and data center switchboard | |
| CN111787514B (en) | Method and device for acquiring equipment control data, storage medium and electronic device | |
| JP5721183B2 (en) | Wireless LAN communication system, wireless LAN base unit, communication connection establishment method, and program | |
| CN105721409A (en) | Method for device with WLAN function to access network and device for realizing the same | |
| KR101517096B1 (en) | Record creation for resolution of application identifier to connectivity identifier | |
| JP6056467B2 (en) | Wireless terminal and wireless communication device | |
| CN104270737A (en) | Protection method and device for international mobile subscriber identification number (IMSI) | |
| US9462476B1 (en) | Identifying unsubscribed tethering in a wireless network | |
| CN108769989B (en) | Wireless network connection method, wireless access device and equipment | |
| CN111917763A (en) | Method, device and system for generating control scheme of Internet of things equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20141224 |
|
| RJ01 | Rejection of invention patent application after publication |