CN105636046A - Credible access control method and system for WiFi device - Google Patents
Credible access control method and system for WiFi device Download PDFInfo
- Publication number
- CN105636046A CN105636046A CN201410690981.7A CN201410690981A CN105636046A CN 105636046 A CN105636046 A CN 105636046A CN 201410690981 A CN201410690981 A CN 201410690981A CN 105636046 A CN105636046 A CN 105636046A
- Authority
- CN
- China
- Prior art keywords
- terminal unit
- wifi equipment
- described terminal
- wifi
- main control
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Mobile Radio Communication Systems (AREA)
- Telephonic Communication Services (AREA)
Abstract
The invention discloses a credible access control method and system for a WiFi device. The method comprises the steps that when receiving a connection request of a terminal device, the WiFi device extracts verification information of the terminal device; the WiFi device sends the verification information of the terminal device to a main control terminal; the main control terminal displays the verification information of the terminal device to a user and sends a selection prompt of whether allowing to connect to the user; and when receiving a selection instruction of allowing to connect sent by the user, the main control terminal indicates the WiFi device to establish a connection of the terminal device and the WiFi device. According to the credible access control method disclosed by the invention, the right of control of establishing the connection of the WiFi device is released to the main control terminal, and any device initiating the connection request is selected by the main control terminal, so that the privacy security of a WiFi network environment and a connection party is further protected effectively.
Description
Technical field
The present invention relates to wireless communication field, particularly to a kind of credible access control method of WiFi equipment and system.
Background technology
WiFi is now ubiquitous, and intelligent WiFi equipment even also can become the access core of Smart Home etc.; Meanwhile, the safety problem of WiFi also highlights day by day. WiFi major security threat can be divided into: broadcast listening, MAC deception, refusal service and AP camouflage.
Assailant connects WiFi by Brute Force WiFi access pin and the user data of false wireless network of ining succession all can be replicated and carry out decoding analysis, including password of the online bank, speculation in stocks account number cipher etc.; Also can send containing virulent webpage or mail to the terminal unit linking false WiFi, to steal private data or injection trojan horse etc. in terminal.
Summary of the invention
In view of above technical problem, the invention provides a kind of credible access control method of WiFi equipment and system, guarantee equipment safety and privacy of user with active mode.
According to an aspect of the present invention, it is provided that a kind of credible access control method of WiFi equipment, it is characterised in that including:
WiFi equipment, when receiving the connection request of terminal unit, extracts the checking information of terminal unit;
The checking information of described terminal unit is sent to main control terminal by WiFi equipment;
Main control terminal presents the checking information of described terminal unit to user, and sends the selection prompting whether allowing to connect to user;
Main control terminal is when receiving the selection instruction allowing connection that user sends, and instruction WiFi equipment sets up the connection of described terminal unit and WiFi equipment.
In one embodiment of the invention, described method also includes: main control terminal is when receiving the selection instruction not allowing connection that user sends, and instruction WiFi equipment forbids that described terminal unit accesses WiFi equipment.
In one embodiment of the invention, described checking information includes checking password and the facility information of described terminal unit.
In one embodiment of the invention, after the checking information of described terminal unit is sent to the step of main control terminal by WiFi equipment, described method also includes:
Main control terminal verifies whether the checking password of described terminal unit is WiFi access pin;
If the checking password verifying described terminal unit is WiFi access pin, then performs instruction WiFi equipment and set up the step of described terminal unit and the connection of WiFi equipment;
If the checking password verifying described terminal unit is not WiFi access pin, then performs instruction WiFi equipment and forbid that described terminal unit accesses the step of WiFi equipment.
In one embodiment of the invention, after the step that the checking password verifying described terminal unit is WiFi access pin, described method also includes:
Judge the facility information whether comprising described terminal unit in predetermined terminal information list, wherein said predetermined terminal information list is previously stored with the end message allowing to access the terminal unit of WiFi equipment;
If predetermined terminal information list comprises the facility information of described terminal unit, then perform instruction WiFi equipment and set up the step of described terminal unit and the connection of WiFi equipment;
If predetermined terminal information list does not comprise the facility information of described terminal unit, then perform instruction WiFi equipment and forbid that described terminal unit accesses the step of WiFi equipment.
In one embodiment of the invention, after comprising the step of facility information of described terminal unit in predetermined terminal information list, described method also includes:
Obtain described terminal unit access authority in described access list;
If access authority is accessible, then performs instruction WiFi equipment and set up the step of described terminal unit and the connection of WiFi equipment.
If access authority is not for can be accessed by, then performs instruction WiFi equipment and forbid that described terminal unit accesses the step of WiFi equipment.
According to a further aspect in the invention, it is provided that a kind of credible access of WiFi equipment controls system, including WiFi equipment and main control terminal, wherein:
WiFi equipment, for when receiving the connection request of terminal unit, extracting the checking information of terminal unit; And the checking information of described terminal unit is sent to main control terminal;
Main control terminal, for presenting the checking information of described terminal unit to user, and sends the selection prompting whether allowing to connect to user; And when receiving the selection instruction allowing connection that user sends, instruction WiFi equipment sets up the connection of described terminal unit and WiFi equipment.
In one embodiment of the invention, main control terminal is additionally operable to when receiving the selection instruction not allowing connection that user sends, and instruction WiFi equipment forbids that described terminal unit accesses WiFi equipment.
In one embodiment of the invention, described checking information includes checking password and the facility information of described terminal unit.
In one embodiment of the invention, main control terminal is additionally operable to after the checking information of described terminal unit is sent to main control terminal by WiFi equipment, verifies whether the checking password of described terminal unit is WiFi access pin; When the checking password of the described terminal unit of checking is WiFi access pin, performs instruction WiFi equipment and set up the operation of described terminal unit and the connection of WiFi equipment; And when the checking password of the described terminal unit of checking is not WiFi access pin, performs instruction WiFi equipment and forbid that described terminal unit accesses the operation of WiFi equipment.
In one embodiment of the invention, main control terminal is additionally operable to after the checking password of the described terminal unit of checking is WiFi access pin, judge the facility information whether comprising described terminal unit in predetermined terminal information list, wherein said predetermined terminal information list is previously stored with the end message allowing to access the terminal unit of WiFi equipment; When predetermined terminal information list comprises the facility information of described terminal unit, perform instruction WiFi equipment and set up the operation of described terminal unit and the connection of WiFi equipment; And when not comprising the facility information of described terminal unit in predetermined terminal information list, perform instruction WiFi equipment and forbid that described terminal unit accesses the operation of WiFi equipment.
In one embodiment of the invention, main control terminal obtains described terminal unit access authority in described access list after being additionally operable to the facility information comprising described terminal unit in judging predetermined terminal information list; In access authority for, time accessible, performing instruction WiFi equipment and set up the operation of described terminal unit and the connection of WiFi equipment; And when access authority cannot not be accessible, perform instruction WiFi equipment and forbid that described terminal unit accesses the operation of WiFi equipment.
The present invention transfers to main control terminal by WiFi equipment is set up the control connected; equipment for being initiated connection request by any mode all transfers to main control terminal to select, and is further effectively protected the personal secrets of WiFi network environment and connection side.
Accompanying drawing explanation
In order to be illustrated more clearly that the embodiment of the present invention or technical scheme of the prior art, the accompanying drawing used required in embodiment or description of the prior art will be briefly described below, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the premise not paying creative work, it is also possible to obtain other accompanying drawing according to these accompanying drawings.
Fig. 1 is the schematic diagram of credible one embodiment of access control method of WiFi equipment of the present invention.
Fig. 2 is the schematic diagram of credible access another embodiment of control method of WiFi equipment of the present invention.
Fig. 3 is the schematic diagram of the WiFi equipment of the present invention credible access another embodiment of control method.
Fig. 4 is the schematic diagram of the WiFi equipment of the present invention credible access another embodiment of control method.
Fig. 5 is the schematic diagram that the credible access of WiFi equipment of the present invention controls one embodiment of system.
Fig. 6 is the schematic diagram that the credible access of WiFi equipment of the present invention controls another embodiment of system.
Fig. 7 is the schematic diagram that the credible access of WiFi equipment of the present invention controls the another embodiment of system.
Detailed description of the invention
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly and completely described, it is clear that described embodiment is only a part of embodiment of the present invention, rather than whole embodiments. Description only actually at least one exemplary embodiment is illustrative below, never as any restriction to the present invention and application or use. Based on the embodiment in the present invention, the every other embodiment that those of ordinary skill in the art obtain under not making creative work premise, broadly fall into the scope of protection of the invention.
Unless specifically stated otherwise, the parts otherwise set forth in these embodiments and positioned opposite, the numerical expression of step and numerical value do not limit the scope of the invention.
Simultaneously, it should be appreciated that for the ease of describing, the size of the various piece shown in accompanying drawing is not draw according to actual proportionate relationship.
The known technology of person of ordinary skill in the relevant, method and apparatus are likely to be not discussed in detail, but in the appropriate case, described technology, method and apparatus should be considered to authorize a part for description.
Shown here with in all examples discussed, any occurrence should be construed as merely exemplary, not as restriction. Therefore, other example of exemplary embodiment can have different values.
It should also be noted that similar label and letter below figure represent similar terms, therefore, once a certain Xiang Yi accompanying drawing is defined, then it need not be further discussed in accompanying drawing subsequently.
Fig. 1 is the schematic diagram of credible one embodiment of access control method of WiFi equipment of the present invention. Preferably, the present embodiment can be controlled system execution by the credible access of WiFi equipment of the present invention. The method comprises the following steps:
Step 101, WiFi equipment, when receiving the connection request of terminal unit, extracts the checking information of terminal unit from described connection request.
In one embodiment of the invention, described checking information includes the facility information of described terminal unit.
In one embodiment of the invention, described facility information can include MAC Address, device name, unit type, IP address, connection type, request time etc.
Step 102, the checking information of described terminal unit is sent to main control terminal by WiFi equipment.
Step 103, main control terminal presents the checking information of described terminal unit to user, and sends the selection prompting whether allowing to connect to user.
Step 104, main control terminal is when receiving the selection instruction allowing connection that user sends, and instruction WiFi equipment sets up the connection of described terminal unit and WiFi equipment.
In one embodiment of the invention, after step 103, described method also includes: main control terminal is when receiving the selection instruction not allowing connection that user sends, and instruction WiFi equipment forbids that described terminal unit accesses WiFi equipment.
Based on the credible access control method of WiFi equipment that the above embodiment of the present invention provides; main control terminal is transferred to by WiFi equipment is set up the control connected; equipment for being initiated connection request by any mode all transfers to main control terminal to select, and is further effectively protected the personal secrets of WiFi network environment and connection side.
By the present invention, can effectively promote the safety of WiFi equipment and WiFi network environment, it is possible to better protect the privacy of user of connected device.
The present invention carries out choosing whether the access request of unified terminal equipment by main control terminal, it is possible to the more convenient control realizing credible access efficiently. Such as, when user A to user B family, owner (user B) selects to agree to or refuse the access request of user A by main control terminal (mobile phone, apparatus such as computer). Thus further facilitate the control of credible access, improve Consumer's Experience.
Fig. 2 is the schematic diagram of credible access another embodiment of control method of WiFi equipment of the present invention. Described method includes:
Step 201, WiFi equipment, when receiving the connection request of terminal unit, extracts the checking information of terminal unit from described connection request.
In one embodiment of the invention, described checking information also includes the checking password of described terminal unit.
Step 202, the checking information of described terminal unit is sent to main control terminal by WiFi equipment.
Step 203, main control terminal verifies whether the checking password of described terminal unit is WiFi access pin. If the checking password verifying described terminal unit is WiFi access pin, then perform step 204; Otherwise, if verifying, the checking password of described terminal unit is not WiFi access pin, then perform step 205.
Step 204, instruction WiFi equipment sets up the connection of described terminal unit and WiFi equipment, no longer performs other step of the present embodiment afterwards.
Step 205, instruction WiFi equipment forbids that described terminal unit accesses WiFi equipment.
In one embodiment of the invention, after step 202 (namely the checking information of described terminal unit is sent to the step of main control terminal by WiFi equipment), described method can also include: the Validation Mode that detection active user selects; If what user selected is Proactive authentication pattern, then perform the step 103 in embodiment illustrated in fig. 1; Otherwise, if user selects automatic Validation Mode, then perform the step 203 in embodiment illustrated in fig. 2.
In one embodiment of the invention, if the non-selected Validation Mode of user, then the default authentication pattern of main control terminal is Proactive authentication pattern.
Namely the above embodiment of the present invention can adopt Proactive authentication pattern, is chosen whether the access request (embodiment as shown in Figure 1) of agreement terminal unit by user by main control terminal; Automatic Validation Mode can also be adopted, terminal unit verify whether WiFi access pin correctly determines whether to agree to the access request (embodiment as shown in Figure 2) of terminal unit. Thus, improve the motility that credible access controls, thus promoting the safety of WiFi equipment and WiFi network environment further, it is possible to better protect the privacy of user of connected device.
Fig. 3 is the schematic diagram of the WiFi equipment of the present invention credible access another embodiment of control method. Described method includes:
Step 301, WiFi equipment, when receiving the connection request of terminal unit, extracts the checking information of terminal unit from described connection request.
In one embodiment of the invention, described checking information also includes checking password and the facility information of described terminal unit.
Step 302, the checking information of described terminal unit is sent to main control terminal by WiFi equipment.
Step 303, main control terminal verifies whether the checking password of described terminal unit is WiFi access pin. If the checking password verifying described terminal unit is WiFi access pin, then perform step 304; Otherwise, if verifying, the checking password of described terminal unit is not WiFi access pin, then perform step 305.
Step 304, it is judged that whether comprise the facility information of described terminal unit in predetermined terminal information list, is previously stored with the end message allowing to access the terminal unit of WiFi equipment in wherein said predetermined terminal information list. If predetermined terminal information list comprises the facility information of described terminal unit, then perform step 306; Otherwise, if predetermined terminal information list does not comprise the facility information of described terminal unit, then 305 are performed.
Step 305, instruction WiFi equipment forbids that described terminal unit accesses WiFi equipment, no longer performs other step of the present embodiment afterwards.
Step 306, instruction WiFi equipment sets up the connection of described terminal unit and WiFi equipment.
Embodiment shown in Fig. 3 of the present invention; on the basis of embodiment described in Fig. 2; after the checking password of the described terminal unit of checking is WiFi access pin; also determine whether whether predetermined terminal information list comprises the facility information of described terminal unit; namely judge that described terminal unit is whether in allowing the terminal unit list accessed; thus further increasing WiFi equipment and the safety of WiFi network environment, it is possible to better protect the privacy of user of connected device.
Fig. 4 is the schematic diagram of the WiFi equipment of the present invention credible access another embodiment of control method. Described method includes:
Step 401, WiFi equipment, when receiving the connection request of terminal unit, extracts the checking information of terminal unit from described connection request.
Step 402, the checking information of described terminal unit is sent to main control terminal by WiFi equipment.
Step 403, main control terminal verifies whether the checking password of described terminal unit is WiFi access pin. If the checking password verifying described terminal unit is WiFi access pin, then perform step 404; Otherwise, if verifying, the checking password of described terminal unit is not WiFi access pin, then perform step 405.
Step 404, it is judged that whether comprise the facility information of described terminal unit in predetermined terminal information list. If predetermined terminal information list comprises the facility information of described terminal unit, then perform step 406; Otherwise, if predetermined terminal information list does not comprise the facility information of described terminal unit, then 405 are performed.
Step 405, instruction WiFi equipment forbids that described terminal unit accesses WiFi equipment, no longer performs other step of the present embodiment afterwards.
Step 406, it is judged that whether described terminal unit access authority in described access list is accessible. If access authority is accessible, then perform step 407; Otherwise, if access authority is not for can be accessed by, then perform step 405.
Step 407, instruction WiFi equipment sets up the connection of described terminal unit and WiFi equipment.
Embodiment shown in Fig. 4 of the present invention; on the basis of embodiment described in Fig. 3; after comprising the facility information of described terminal unit in judging predetermined terminal information list; also determine whether whether described terminal unit access authority in described access list is accessible; thus further increasing WiFi equipment and the safety of WiFi network environment, it is possible to protect the privacy of user of connected device better.
Fig. 5 is the schematic diagram that the credible access of WiFi equipment of the present invention controls one embodiment of system. As it is shown in figure 5, described system includes WiFi equipment 501 and main control terminal 502, wherein:
WiFi equipment 501, for when receiving the connection request of terminal unit, extracting the checking information of terminal unit; And the checking information of described terminal unit is sent to main control terminal 502.
Wherein, the WiFi equipment 501 of the present invention is newly-increased " credible access control module " in existing WiFi equipment, and carrying out binding with user terminal becomes main control terminal simultaneously.
Main control terminal 502, for presenting the checking information of described terminal unit to user, and sends the selection prompting whether allowing to connect to user; And when receiving the selection instruction allowing connection that user sends, instruction WiFi equipment 501 sets up the connection of described terminal unit and WiFi equipment 501.
The credible access of WiFi equipment provided based on the above embodiment of the present invention controls system; main control terminal is transferred to by WiFi equipment is set up the control connected; equipment for being initiated connection request by any mode all transfers to main control terminal to select, and is further effectively protected the personal secrets of WiFi network environment and connection side.
In one embodiment of the invention, main control terminal 502 can be the intelligent terminal such as mobile phone, computer.
In one embodiment of the invention, described checking information includes the facility information of described terminal unit.
In one embodiment of the invention, described facility information can include MAC Address, device name, unit type, IP address, connection type, request time etc.
In one embodiment of the invention, main control terminal 502 is additionally operable to when receiving the selection instruction not allowing connection that user sends, and instruction WiFi equipment 501 forbids that described terminal unit accesses WiFi equipment 501.
For brevity, only giving two terminal units in Figure 5, those skilled in the art are it will be appreciated that can there be multiple terminal unit to be connected with WiFi equipment foundation, interact.
In one embodiment of the invention, described checking information also includes the checking password of described terminal unit.
In one embodiment of the invention, main control terminal 502 is additionally operable to after the checking information of described terminal unit is sent to main control terminal 502 by WiFi equipment 501, verifies whether the checking password of described terminal unit is WiFi access pin; When the checking password of the described terminal unit of checking is WiFi access pin, performs instruction WiFi equipment 501 and set up the operation of described terminal unit and the connection of WiFi equipment 501; And when the checking password of the described terminal unit of checking is not WiFi access pin, performs instruction WiFi equipment 501 and forbid that described terminal unit accesses the operation of WiFi equipment 501.
In one embodiment of the invention, main control terminal 502 is additionally operable to after the checking information of described terminal unit being sent to the operation of main control terminal 502 in WiFi equipment 501, the Validation Mode that detection active user selects; If what user selected is Proactive authentication pattern, then performs main control terminal and present the checking information of described terminal unit to user, and send the operation selecting prompting whether allowing to connect to user; Otherwise, if user selects automatic Validation Mode, then perform to verify that whether the checking password of described terminal unit is the operation of WiFi access pin.
In one embodiment of the invention, if the non-selected Validation Mode of user, then the default authentication pattern of main control terminal is Proactive authentication pattern.
Namely the above embodiment of the present invention can adopt Proactive authentication pattern, is chosen whether the access request of agreement terminal unit by user by main control terminal; Automatic Validation Mode can also be adopted, terminal unit verify whether WiFi access pin correctly determines whether to agree to the access request of terminal unit. Thus, improve the motility that credible access controls, thus promoting the safety of WiFi equipment and WiFi network environment further, it is possible to better protect the privacy of user of connected device.
In one embodiment of the invention, main control terminal 502 is additionally operable to after the checking password of the described terminal unit of checking is WiFi access pin, judge the facility information whether comprising described terminal unit in predetermined terminal information list, wherein said predetermined terminal information list is previously stored with the end message allowing to access the terminal unit of WiFi equipment 501; When predetermined terminal information list comprises the facility information of described terminal unit, perform instruction WiFi equipment 501 and set up the operation of described terminal unit and the connection of WiFi equipment 501; And when not comprising the facility information of described terminal unit in predetermined terminal information list, perform instruction WiFi equipment 501 and forbid that described terminal unit accesses the operation of WiFi equipment 501.
The above embodiment of the present invention; after the checking password of the described terminal unit of checking is WiFi access pin; also determine whether whether predetermined terminal information list comprises the facility information of described terminal unit; namely judge that described terminal unit is whether in allowing the terminal unit list accessed; thus further increasing WiFi equipment and the safety of WiFi network environment, it is possible to better protect the privacy of user of connected device.
In one embodiment of the invention, main control terminal 502 obtains described terminal unit access authority in described access list after being additionally operable to the facility information comprising described terminal unit in judging predetermined terminal information list; In access authority for, time accessible, performing instruction WiFi equipment 501 and set up the operation of described terminal unit and the connection of WiFi equipment 501; And when access authority cannot not be accessible, perform instruction WiFi equipment 501 and forbid that described terminal unit accesses the operation of WiFi equipment 501.
The above embodiment of the present invention; after comprising the facility information of described terminal unit in judging predetermined terminal information list; also determine whether whether described terminal unit access authority in described access list is accessible; thus further increasing WiFi equipment and the safety of WiFi network environment, it is possible to protect the privacy of user of connected device better.
Fig. 6 is the schematic diagram that the credible access of WiFi equipment of the present invention controls another embodiment of system. System described in Fig. 6 performs credible access and controls to include following flow process:
Step 601, request accesses the terminal unit of WiFi equipment and initiates connection request to WiFi equipment.
Step 602, WiFi equipment, when receiving the connection request of terminal unit, extracts the checking information of terminal unit from described connection request.
Step 603, the checking information of described terminal unit is sent to main control terminal by WiFi equipment.
Step 604, main control terminal presents the checking information of described terminal unit to user, and sends the selection prompting whether allowing to connect to user.
Step 605, main control terminal, when receiving the selection instruction allowing connection that user sends, sends to WiFi equipment and allows described terminal unit to set up, with WiFi equipment, the instruction being connected.
Step 606, WiFi equipment sets up the connection with described terminal unit, no longer performs other step of this enforcement afterwards.
Step 607, main control terminal, when receiving the selection instruction not allowing connection that user sends, sends to WiFi equipment and does not allow described terminal unit to set up, with WiFi equipment, the instruction being connected.
Step 608, WiFi equipment is forbidden and the connection of described terminal unit.
The above embodiment of the present invention transfers to main control terminal by WiFi equipment is set up the control connected; equipment for being initiated connection request by any mode all transfers to main control terminal to select, and is further effectively protected the personal secrets of WiFi network environment and connection side.
Fig. 7 is the schematic diagram that the credible access of WiFi equipment of the present invention controls the another embodiment of system. System described in Fig. 7 performs credible access and controls to include following flow process:
Step 701, request accesses the terminal unit of WiFi equipment and initiates connection request to WiFi equipment.
Step 702, WiFi equipment, when receiving the connection request of terminal unit, extracts the checking information of terminal unit from described connection request.
Step 703, the checking information of described terminal unit is sent to main control terminal by WiFi equipment.
Step 704, main control terminal verifies whether the checking password of described terminal unit is WiFi access pin. If the checking password verifying described terminal unit is WiFi access pin, then perform step 705; Otherwise, if verifying, the checking password of described terminal unit is not WiFi access pin, then perform step 707, namely send the instruction whether allowing to connect to WiFi equipment, is specially instruction WiFi equipment and forbids that described terminal unit accesses the instruction of WiFi equipment.
Step 705, it is judged that whether comprise the facility information of described terminal unit in predetermined terminal information list. If predetermined terminal information list comprises the facility information of described terminal unit, then perform step 706; Otherwise, if predetermined terminal information list does not comprise the facility information of described terminal unit, then perform step 707, namely send the instruction whether allowing to connect to WiFi equipment, be specially instruction WiFi equipment and forbid that described terminal unit accesses the instruction of WiFi equipment.
Step 706, it is judged that whether described terminal unit access authority in described access list is accessible. If access authority is accessible, then send the instruction allowing to connect to WiFi equipment; Otherwise, if access authority is not for can be accessed by, then send the instruction not allowing to connect to WiFi equipment.
Step 707, main control terminal sends the instruction whether allowing to connect to WiFi equipment.
Step 708, sets up or forbids the connection of described terminal unit and WiFi equipment according to the instruction of main control device.
In one embodiment of the invention, after step 703 (namely the checking information of described terminal unit is sent to the step of main control terminal by WiFi equipment), described method can also include: the Validation Mode that detection active user selects; If what user selected is Proactive authentication pattern, then perform the step 604 in embodiment illustrated in fig. 6; Otherwise, if user selects automatic Validation Mode, then perform the step 704 in embodiment illustrated in fig. 7.
In one embodiment of the invention, if the non-selected Validation Mode of user, then the default authentication pattern of main control terminal is Proactive authentication pattern.
Namely the above embodiment of the present invention can adopt Proactive authentication pattern, is chosen whether the access request of agreement terminal unit by user by main control terminal; Automatic Validation Mode can also be adopted, terminal unit verify whether WiFi access pin correctly determines whether to agree to the access request of terminal unit; After the checking password of the described terminal unit of checking is WiFi access pin, also determine whether that described terminal unit is whether in allowing the terminal unit list accessed; After comprising the facility information of described terminal unit in judging predetermined terminal information list, also determine whether whether described terminal unit access authority in described access list is accessible. Thus, improve the motility that credible access controls, thus promoting the safety of WiFi equipment and WiFi network environment further, it is possible to better protect the privacy of user of connected device.
So far, the present invention is described in detail. In order to avoid covering the design of the present invention, it does not have describe details more known in the field. Those skilled in the art are as described above, complete it can be appreciated how implement technical scheme disclosed herein.
One of ordinary skill in the art will appreciate that all or part of step realizing above-described embodiment can be completed by hardware, can also be completed by the hardware that program carrys out instruction relevant, described program can be stored in a kind of computer-readable recording medium, storage medium mentioned above can be read only memory, disk or CD etc.
Description of the invention provides for example with for the purpose of describing, and is not exhaustively or limit the invention to disclosed form. Many modifications and variations are obvious for the ordinary skill in the art. Selecting and describing embodiment is in order to principles of the invention and practical application are better described, and makes those of ordinary skill in the art it will be appreciated that the present invention is thus design is suitable to the various embodiments with various amendments of special-purpose.
Claims (12)
1. the credible access control method of WiFi equipment, it is characterised in that including:
WiFi equipment, when receiving the connection request of terminal unit, extracts the checking information of terminal unit;
The checking information of described terminal unit is sent to main control terminal by WiFi equipment;
Main control terminal presents the checking information of described terminal unit to user, and sends the selection prompting whether allowing to connect to user;
Main control terminal is when receiving the selection instruction allowing connection that user sends, and instruction WiFi equipment sets up the connection of described terminal unit and WiFi equipment.
2. method according to claim 1, it is characterised in that also include:
Main control terminal is when receiving the selection instruction not allowing connection that user sends, and instruction WiFi equipment forbids that described terminal unit accesses WiFi equipment.
3. method according to claim 2, it is characterised in that
Described checking information includes checking password and the facility information of described terminal unit.
4. method according to claim 3, it is characterised in that after the checking information of described terminal unit is sent to the step of main control terminal by WiFi equipment, also include:
Main control terminal verifies whether the checking password of described terminal unit is WiFi access pin;
If the checking password verifying described terminal unit is WiFi access pin, then performs instruction WiFi equipment and set up the step of described terminal unit and the connection of WiFi equipment;
If the checking password verifying described terminal unit is not WiFi access pin, then performs instruction WiFi equipment and forbid that described terminal unit accesses the step of WiFi equipment.
5. method according to claim 4, it is characterised in that after the step that the checking password verifying described terminal unit is WiFi access pin, also include:
Judge the facility information whether comprising described terminal unit in predetermined terminal information list, wherein said predetermined terminal information list is previously stored with the end message allowing to access the terminal unit of WiFi equipment;
If predetermined terminal information list comprises the facility information of described terminal unit, then perform instruction WiFi equipment and set up the step of described terminal unit and the connection of WiFi equipment;
If predetermined terminal information list does not comprise the facility information of described terminal unit, then perform instruction WiFi equipment and forbid that described terminal unit accesses the step of WiFi equipment.
6. method according to claim 5, it is characterised in that after comprising the step of facility information of described terminal unit in predetermined terminal information list, also include:
Obtain described terminal unit access authority in described access list;
If access authority is accessible, then performs instruction WiFi equipment and set up the step of described terminal unit and the connection of WiFi equipment.
If access authority is not for can be accessed by, then performs instruction WiFi equipment and forbid that described terminal unit accesses the step of WiFi equipment.
7. the credible access of WiFi equipment controls system, it is characterised in that include WiFi equipment and main control terminal, wherein:
WiFi equipment, for when receiving the connection request of terminal unit, extracting the checking information of terminal unit; And the checking information of described terminal unit is sent to main control terminal;
Main control terminal, for presenting the checking information of described terminal unit to user, and sends the selection prompting whether allowing to connect to user; And when receiving the selection instruction allowing connection that user sends, instruction WiFi equipment sets up the connection of described terminal unit and WiFi equipment.
8. system according to claim 7, it is characterised in that
Main control terminal is additionally operable to when receiving the selection instruction not allowing connection that user sends, and instruction WiFi equipment forbids that described terminal unit accesses WiFi equipment.
9. system according to claim 8, it is characterised in that
Described checking information includes checking password and the facility information of described terminal unit.
10. system according to claim 9, it is characterised in that
Main control terminal is additionally operable to after the checking information of described terminal unit is sent to main control terminal by WiFi equipment, verifies whether the checking password of described terminal unit is WiFi access pin; When the checking password of the described terminal unit of checking is WiFi access pin, performs instruction WiFi equipment and set up the operation of described terminal unit and the connection of WiFi equipment; And when the checking password of the described terminal unit of checking is not WiFi access pin, performs instruction WiFi equipment and forbid that described terminal unit accesses the operation of WiFi equipment.
11. system according to claim 10, it is characterised in that
Main control terminal is additionally operable to after the checking password of the described terminal unit of checking is WiFi access pin, judge the facility information whether comprising described terminal unit in predetermined terminal information list, wherein said predetermined terminal information list is previously stored with the end message allowing to access the terminal unit of WiFi equipment; When predetermined terminal information list comprises the facility information of described terminal unit, perform instruction WiFi equipment and set up the operation of described terminal unit and the connection of WiFi equipment; And when not comprising the facility information of described terminal unit in predetermined terminal information list, perform instruction WiFi equipment and forbid that described terminal unit accesses the operation of WiFi equipment.
12. system according to claim 11, it is characterised in that
Main control terminal obtains described terminal unit access authority in described access list after being additionally operable to the facility information comprising described terminal unit in judging predetermined terminal information list; In access authority for, time accessible, performing instruction WiFi equipment and set up the operation of described terminal unit and the connection of WiFi equipment; And when access authority cannot not be accessible, perform instruction WiFi equipment and forbid that described terminal unit accesses the operation of WiFi equipment.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410690981.7A CN105636046A (en) | 2014-11-26 | 2014-11-26 | Credible access control method and system for WiFi device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410690981.7A CN105636046A (en) | 2014-11-26 | 2014-11-26 | Credible access control method and system for WiFi device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105636046A true CN105636046A (en) | 2016-06-01 |
Family
ID=56050436
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410690981.7A Pending CN105636046A (en) | 2014-11-26 | 2014-11-26 | Credible access control method and system for WiFi device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105636046A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105916152A (en) * | 2016-06-13 | 2016-08-31 | 腾讯科技(深圳)有限公司 | Checking method and device of network status of WiFi network |
| CN110831008A (en) * | 2019-11-04 | 2020-02-21 | Oppo广东移动通信有限公司 | Access equipment control method and related device |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040090930A1 (en) * | 2002-11-13 | 2004-05-13 | Lee Hyun-Woo | Authentication method and system for public wireless local area network system |
| CN103532946A (en) * | 2013-10-09 | 2014-01-22 | 北京奇虎科技有限公司 | Network authorizing method, system and device based on no password and any password |
| CN103532715A (en) * | 2013-10-09 | 2014-01-22 | 北京奇虎科技有限公司 | Network authorizing method, system and device based on no password and any password |
-
2014
- 2014-11-26 CN CN201410690981.7A patent/CN105636046A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040090930A1 (en) * | 2002-11-13 | 2004-05-13 | Lee Hyun-Woo | Authentication method and system for public wireless local area network system |
| CN103532946A (en) * | 2013-10-09 | 2014-01-22 | 北京奇虎科技有限公司 | Network authorizing method, system and device based on no password and any password |
| CN103532715A (en) * | 2013-10-09 | 2014-01-22 | 北京奇虎科技有限公司 | Network authorizing method, system and device based on no password and any password |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105916152A (en) * | 2016-06-13 | 2016-08-31 | 腾讯科技(深圳)有限公司 | Checking method and device of network status of WiFi network |
| CN105916152B (en) * | 2016-06-13 | 2018-09-18 | 腾讯科技(深圳)有限公司 | The inspection method and device of the network state of WiFi network |
| CN110831008A (en) * | 2019-11-04 | 2020-02-21 | Oppo广东移动通信有限公司 | Access equipment control method and related device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP2905715B1 (en) | Method, system and terminal for encrypting/decrypting application program on communication terminal | |
| US9420461B2 (en) | Access authentication method and device for wireless local area network hotspot | |
| CN103377332B (en) | The method of access application and device | |
| CN102509055A (en) | Mobile terminal and method for hiding programs of mobile terminal | |
| CN101661442B (en) | Data card information protection method and device | |
| CN101815291A (en) | Method and system for logging on client automatically | |
| CN107484152B (en) | Management method and device for terminal application | |
| CN102821112A (en) | Mobile equipment, server and mobile equipment data verification method | |
| CN107113613A (en) | Server, mobile terminal, real-name network authentication system and method | |
| CN106204003B (en) | Method, device and system for safely transferring virtual resources | |
| CN105898743A (en) | Network connection method, device and system | |
| CN104660401A (en) | Authentication method, authentication system and terminal | |
| CN104468552B (en) | A kind of connection control method and device | |
| CN106488394A (en) | A kind of method and device of equipment connection | |
| CN104955043B (en) | A kind of intelligent terminal security protection system | |
| CN105871840B (en) | A kind of certificate management method and system | |
| CN105471920A (en) | Identifying code processing method and device | |
| CN102685326A (en) | Message encryption method and device and mobile terminal | |
| CN105636046A (en) | Credible access control method and system for WiFi device | |
| CN102404305A (en) | Method for identity authentication of Internet user | |
| CN104270342B (en) | The access method and system of virtual desktop | |
| CN104883341A (en) | Application management device, terminal and application management method | |
| CN105848148A (en) | WIFI connection method, terminal and router | |
| CN102393886B (en) | Safety control method of mobile terminal, device and system | |
| CN108197940A (en) | Payment request response method, mobile terminal and the readable storage medium storing program for executing of mobile terminal |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20160601 |