CN106385683A - Wireless hot spot safety detection method, apparatus and user equipment thereof - Google Patents
Wireless hot spot safety detection method, apparatus and user equipment thereof Download PDFInfo
- Publication number
- CN106385683A CN106385683A CN201510451434.8A CN201510451434A CN106385683A CN 106385683 A CN106385683 A CN 106385683A CN 201510451434 A CN201510451434 A CN 201510451434A CN 106385683 A CN106385683 A CN 106385683A
- Authority
- CN
- China
- Prior art keywords
- hotspot
- safety
- user equipment
- association
- safe class
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/08—Access security
Abstract
The invention provides a wireless hot spot safety detection method, an apparatus and user equipment thereof. The method comprises the following steps of receiving a broadcast message of at least one wireless hot spot, wherein the broadcast message includes safety information of a first wireless hot spot; and according to the safety information, determining safety of the first wireless hot spot. In the invention, a problem that the safety of the wireless hot spot can not be detected in the correlation technology is solved and detection of wireless hot spot safety is realized.
Description
Technical field
The present invention relates to the communications field, in particular to a kind of hotspot safety detecting method, device and user
Equipment.
Background technology
At present, user is when using mobile terminal Internet access, often using Wireless Fidelity (Wireless-Fidelity, referred to as
For WIFI) carry out network connection.More prevalent with WIFI, there is now substantial amounts of public place to provide free
WIFI for users to use, greatly facilitate user use.But the potential safety hazard thus causing can not be ignored,
For example, some lawless persons juggle things on WIFI hot spot equipment, are stolen by monitoring mobile terminal all plaintexts flow
Take password, the Cookies at family, flow abduction can also be carried out, compromise the safety of the mobile device accessing this focus.
Wherein, so-called flow is kidnapped it is simply that the request that sends of user, and when receiving targeted website and replying, the content receiving is illegal
Focus flows into or is substituted for hostile content, script and then steals the website account right of user.
For a user, when carrying out network connection using WIFI, it is that acquiescence trusts WIFI hot spot, that is, moves
All-network is pass-through to focus using request by WIFI by terminal, and then sends request sum by focus to the Internet
According to it is most likely that exposing privacy information during data transfer, there is potential safety hazard.
Existing technology, when mobile terminal (being also called client, user equipment) accesses WIFI hot spot, more
That legitimacy for client is verified, to prevent illegal user from accessing WIFI hot spot, to WIFI hot spot or
Other clients with WLAN are protected.And the legitimacy of WIFI hot spot, safety are not accounted for.
For the problem of the safety that cannot detect hotspot in correlation technique, effective solution is not yet proposed at present.
Content of the invention
The invention provides a kind of hotspot safety detecting method, device and user equipment, at least to solve related skill
The problem of the safety of hotspot cannot be detected in art.
According to an aspect of the invention, it is provided a kind of hotspot safety detecting method, including:Receive at least one
The broadcast of individual hotspot, wherein, described broadcast includes:The safety information of the first hotspot;According to
Described safety information, determines the safety of described first hotspot.
Preferably, according to described safety information, determine that the safety of described first hotspot includes:In described safety
Property information indicate described first hotspot safety be non-security in the case of, determine the peace of described first hotspot
Full property is non-security;And/or indicate that the safety of described first hotspot is safe situation in described safety information
Under, determine that the safety of described first hotspot is safety.
Preferably, after the safety determining described first hotspot is non-security, methods described also includes:Still
In the case of not asking for user equipment to access described first hotspot, described user equipment is accessed by no longer execution request
The operation of described first hotspot;And/or in the case of having requested that user equipment is accessed described first hotspot,
Terminate the operation that described user equipment is accessed described first hotspot by execution request.
Preferably, after the safety determining described first hotspot is non-security, methods described also includes:Start
The focus broadcast of user equipment, and broadcast described broadcast.
Preferably, after the safety determining described first hotspot is safety, methods described also includes:By user
Equipment accesses described first hotspot.
Preferably, before or after described user equipment is accessed described first hotspot, methods described also includes:
Send pre-association to ask to described first hotspot, wherein, described pre-association is asked for asking the described first wireless heat
The identity information of point;Receive the pre-association response that described first hotspot is asked, wherein, institute in response to described pre-association
State in pre-association response and carry the described identity information of described first hotspot, described identity information is used for determining described
The safe class of the first hotspot.
Preferably, send described pre-association to ask also to include to described first hotspot:Sending described pre-association request
When, start timer;Wherein, after the described pre-association of transmission is asked to described first hotspot, methods described is also
Including:Judge after described timer expired, if receive described pre-association response;In described timer expired and do not receive
To in the case of the response of described pre-association, determine that the described safe class of described first hotspot is lower security grade.
Preferably, the described safe class of described first hotspot accessing in described user equipment is described lower security etc.
In the case of level, methods described also includes:In the case that the process of described user equipment initiates networking request, judge institute
Whether the described safe class stating the first hotspot is less than the safe class required by described process;In described safe class
In the case of the safe class required by described process, by cellular network, described process is networked.
Preferably, after described user equipment is accessed described first hotspot, methods described also includes:Send institute
The safety evaluatio stating the first hotspot is to server.
According to another aspect of the present invention, additionally provide a kind of hotspot safety detection device, including:Receive mould
Block, for receiving the broadcast of at least one hotspot, wherein, described broadcast includes:First hotspot
Safety information;Determining module, for according to described safety information, determining the safety of described first hotspot.
Preferably, described determining module is used for:In the safety of described safety information described first hotspot of instruction it is
In the case of non-security, determine that the safety of described first hotspot is non-security;And/or in described safety information
In the case of indicating that the safety of described first hotspot is safety, determine that the safety of described first hotspot is peace
Entirely.
Preferably, described device also includes:Processing module, for being non-in the safety determining described first hotspot
After safety:In the case of not yet asking user equipment accesses described first hotspot, no longer execution is asked institute
State the operation that user equipment accesses described first hotspot;And/or having requested that, user equipment is accessed described first no
In the case of line focus, terminate the operation that described user equipment is accessed described first hotspot by execution request.
Preferably, described device also includes:Broadcast module, for being non-in the safety determining described first hotspot
After safety, start the focus broadcast of user equipment, and broadcast described broadcast.
Preferably, described device also includes:AM access module, for being peace in the safety determining described first hotspot
After complete, user equipment is accessed described first hotspot.
Preferably, described device also includes:Pre-association request sending module, for will described user equipment access described
Before or after first hotspot, send pre-association and ask to described first hotspot, wherein, described pre-association
Ask the identity information for asking described first hotspot;Pre-association responds receiver module, for receiving described first
The pre-association that hotspot is asked in response to described pre-association responds, and wherein, carries described the in described pre-association response
The described identity information of one hotspot, described identity information is used for determining the safe class of described first hotspot.
Preferably, described pre-association request sending module is additionally operable to:When sending described pre-association request, start timer;
Wherein, described device also includes:Pre-association responds judge module, for asking to described first in the described pre-association of transmission
After hotspot, judge after described timer expired, if receive described pre-association response;Safe class determines mould
Block, in described timer expired and in the case of not receiving the response of described pre-association, determining described first hotspot
Described safe class be lower security grade.
Preferably, described device also includes:Safe class judge module, for access in described user equipment described
The described safe class of one hotspot is described lower security grade and the process initiation networking request of described user equipment
In the case of, whether the described safe class judging described first hotspot is less than the safe class required by described process;
Networking module, for be less than the safe class required by described process in described safe class in the case of, by Cellular Networks
Network is networked to described process.
Preferably, described device also includes:Safety evaluatio sending module, for will described user equipment access described
After first hotspot, the safety evaluatio sending described first hotspot is to server.
According to another aspect of the present invention, additionally provide a kind of user equipment, including:Above-mentioned hotspot safety
Detection means.
By the present invention, using the broadcast receiving at least one hotspot, wherein, broadcast includes:First
The safety information of hotspot;According to safety information, determine the mode of the safety of the first hotspot, solve
The problem of the safety of hotspot cannot be detected it is achieved that the detection of hotspot safety in correlation technique.
Brief description
Accompanying drawing described herein is used for providing a further understanding of the present invention, constitutes the part of the application, the present invention
Schematic description and description be used for explaining the present invention, do not constitute inappropriate limitation of the present invention.In the accompanying drawings:
Fig. 1 is the flow chart of hotspot safety detecting method according to embodiments of the present invention;
Fig. 2 is the structural representation of hotspot safety detection device according to embodiments of the present invention;
Fig. 3 is the flow chart of the method for STA secure accessing WIFI hot spot of the preferred embodiment of the present invention;
Fig. 4 is the early warning frame structure schematic diagram of the high-risk focus early warning information of the preferred embodiment of the present invention;
Fig. 5 is the frame structure schematic diagram of the pre-association solicited message of the preferred embodiment of the present invention;
Fig. 6 is the frame structure schematic diagram of the pre-association response message of the preferred embodiment of the present invention;
Fig. 7 is the security attribute of target AP of the preferred embodiment of the present invention is the flow chart accessing the Internet during middle level security;
Fig. 8 is the structural representation of the device of secure accessing WIFI hot spot of the preferred embodiment of the present invention.
Specific embodiment
To describe the present invention in detail below with reference to accompanying drawing and in conjunction with the embodiments.It should be noted that in the feelings do not conflicted
Under condition, the embodiment in the application and the feature in embodiment can be mutually combined.
It should be noted that term " first " in description and claims of this specification and above-mentioned accompanying drawing, " second "
Etc. being for distinguishing similar object, without for describing specific order or precedence.
Provide a kind of hotspot safety detecting method in the present embodiment, Fig. 1 is nothing according to embodiments of the present invention
The flow chart of line focus safety detecting method, as shown in figure 1, this flow process comprises the steps:
Step S102, receives the broadcast of at least one hotspot, and wherein, broadcast includes:First is wireless
The safety information of focus;
Step S104, according to safety information, determines the safety of the first hotspot.
By above-mentioned steps, the safety information of hotspot can be obtained by the broadcast of at least one hotspot,
And then the safety of the first hotspot is determined according to this safety information, solve and wireless heat in correlation technique, cannot be detected
The problem of the safety of point is it is achieved that the detection of hotspot safety.
Hotspot in embodiments of the present invention includes but is not limited to:Hotspot based on WIFI, based on purple honeybee association
The hotspot of view (ZigBee), the hotspot Ji Yu bluetooth (BlueTooth).According to based on agreement difference,
Focus mark can have different addresses, but its essence is all as this hotspot identification information, in a network
One hotspot of unique mark or the equipment that this hotspot is provided.
Above-mentioned safety information, represents whether the safety of this first hotspot is the safe class that suggestion accesses.Example
As safety information can include two instructions:Secure accessing can indicate, can not secure accessing indicate;Or claim respectively
For:The instruction of safe wireless focus, dangerous hotspot instruction.Certainly, can also include in safety information wireless to this
The safe class rating information of focus, for example, it is possible to safe class is divided into:High safety grade, lower security grade, no
Possess safety Three Estate, wherein it is possible to using high safety grade, lower security grade as can secure accessing instruction, and
Using the safe class of layout safety as can not secure accessing grade.
Carry out broadcast hotspot can be fixing focus provide that equipment is provided or other
Mobile terminal provides.For example, current mobile terminal is provided with opening focus, the function of establishment WLAN, leads to
Cross have open focus function mobile terminal then can open hotspot and carry out the broadcast of broadcast.
Said method can be applied on a user device, and in the embodiment of the present invention, alleged user equipment includes possessing wireless heat
The fixation of point access function or portable set.Preferably, the embodiment of the present invention is applied in portable user equipment,
For example:The mobile terminals such as smart mobile phone, panel computer.However, applying in possess hotspot access function desk-top
Also possible in the fixing equipments such as people's computer, this is not limited in embodiments of the present invention.Implement in the present invention
It is described in example taking user equipment as a example and illustrate.
Preferably, in step S104, indicate that in safety information the safety of the first hotspot is non-security feelings
Under condition, determine that the safety of the first hotspot is non-security;And/or indicate the first hotspot in safety information
In the case that safety is safety, determine that the safety of the first hotspot is safety.
Preferably, above-mentioned steps are applied in the access procedure of hotspot, then can send certification to hotspot
Before or after request, and before the access completing hotspot, carry out the detection of hotspot safety.Wherein,
It is non-security in the safety determining the first hotspot, and not yet ask user equipment accesses the feelings of the first hotspot
Under condition, user equipment is accessed the operation of the first hotspot by no longer execution request;Preferably, determining the first wireless heat
The safety of point is non-security, and has requested that in the case of user equipment access the first hotspot, then can also terminate
User equipment is accessed the operation of the first hotspot by execution request.
At that time, the first wireless heat can be shown when user operation user equipment requests access the first hotspot to user
The warning information of point, in the case that user confirms no longer to access the first hotspot according to this warning information, user equipment
Do not access to the first hotspot request.Preferably, the focus of the first hotspot can also be identified and pacify by user equipment
Full property information Store local, sets up hotspot blacklist, before next time accesses hotspot, can to arrive first
Mated in hotspot blacklist, can directly refuse to access for the hotspot matching.In addition, in user
After receiving warning information, if user still selects to access this first hotspot, can be according to the safety being pre-configured with
Strategy, is finally confirmed whether to access the first hotspot.
Preferably, after the safety determining the first hotspot is non-security, user equipment can also start user and set
Standby focus broadcast, and broadcast broadcast.User equipment enables focus when broadcasting this broadcast, can be periodically wide
Broadcast it is also possible to only broadcast once or for several times;Preferably, user equipment can be combined with the status of equipment decision of itself is
The no cycle broadcasted and broadcasted.For example, in the case that the electricity of user equipment is low, the longer cycle can be selected
Broadcast, or do not broadcasted.
Preferably, when broadcasting broadcast, can the only hotspot that broadcasting user equipment can detect safety
Information, and undetectable hotspot can not carry out the broadcast of safety information for user equipment.
Preferably, after the safety determining the first hotspot is safety, then can needed according to the instruction of user
In the case of hotspot to be accessed, user equipment is accessed the first hotspot.
Preferably, before or after user equipment is accessed the first hotspot, user equipment can pass through Cellular Networks
Network or the first hotspot, send pre-association and ask to the first hotspot, and wherein, pre-association is asked for request the
The identity information of one hotspot;These identity informations include focus mark, and other are used for confirming focus identity security
The information of property.For example, hotspot supplier can provide hotspot to carry to server application authentication during certification
The true identity information of donor is as guarantee.After certification, server will promulgate certification certificate to hotspot supplier,
Wherein, server can be according to the credit grade (such as bank credit grade, illegal record) of hotspot supplier
Or assets information etc., generates the safe class of hotspot supplier, and by this safe class record in certification certificate.
After hotspot receives pre-association request, can be by this certificate response to user equipment;Receive the first hotspot to ring
Wherein, should can carry the authentication proof of the first hotspot in the pre-association response of pre-association request in pre-association response
Book or other identity informations are so that user equipment can determine the first hotspot according to certification certificate or identity information
Safe class.
Preferably, when sending pre-association request, user equipment can also start timer;Send pre-association ask to
After first hotspot, user equipment judges after timer expired, if receive pre-association response;Surpass in timer
When and do not receive pre-association response in the case of, determine the first hotspot safe class be lower security grade.Now,
User equipment can also access the first hotspot, but the process higher to safety is protected.
Preferably, user equipment access the first hotspot safe class be lower security grade in the case of, with
In the case that the process of family equipment initiates networking request, user equipment judges whether the safe class of the first hotspot is less than
Safe class required by process;In the case of the safe class that safe class is less than required by process, user equipment can
With being switched to cellular network, this process is networked, to realize the information exchange of this process and network by cellular network.
When being switched to cellular network, hotspot can be closed, then enable the data-transformation facility of cellular network.Therein
Cellular network includes but is not limited to:Based on general packet radio service technology (GPRS), enhanced data rates for gsm
Evolution technology (EDGE), High Speed Packet Access (HSPA), High Speed Packet Access evolution version (HSPA+),
The wireless data communication network of forth generation mobile communication technology (4G), and the wireless data communication network of follow-up evolution.
Preferably, after user equipment is accessed the first hotspot, user equipment can also send the first hotspot
Safety evaluatio to server.Wherein, safety evaluatio is by user input user equipment.User input safety
During evaluation, can be actively entered, for example, user is during using the first hotspot, or is using first
After hotspot, according to the safe condition of experience, user account, by a use calling user equipment to provide
Family interface, input safety evaluation.User input safety evaluatio can also be passive, for example, in user equipment eventually
Only during the access of the first hotspot, user interface provides a user with an interface, for user input safety evaluatio.
Wherein, safety evaluatio can be the safe class description that text reviews or supply server reference.
For server, can determine or update the safe class of the first hotspot according to safety evaluatio;Example
As, during the safety evaluatio of the dangerous grade receiving the first hotspot of predetermined quantity/predetermined ratio in server,
The safe class of the first hotspot can be updated to dangerous.As a kind of supplementary meanss, server can also pass through
Cellular network provides the safety information of the first hotspot to user equipment.
Through the above description of the embodiments, those skilled in the art can be understood that according to above-described embodiment
Method can realize by the mode of software plus necessary general hardware platform naturally it is also possible to pass through hardware, but a lot
In the case of the former is more preferably embodiment.Based on such understanding, technical scheme is substantially in other words to existing
Have what technology contributed partly can embody in the form of software product, this computer software product is stored in one
In storage medium (as ROM/RAM, magnetic disc, CD), including some instructions with so that a station terminal equipment (can
To be mobile phone, computer, server, or the network equipment etc.) method described in execution each embodiment of the present invention.
Additionally provide a kind of hotspot safety detection device in the present embodiment, this device is used for realizing above-described embodiment
And preferred implementation, carried out repeating no more of explanation.As used below, term " module " can be real
The existing software of predetermined function and/or the combination of hardware.Although the device described by following examples is preferably come real with software
Existing, but hardware, or the realization of the combination of software and hardware is also may and to be contemplated.
Fig. 2 is the structured flowchart of hotspot safety detection device according to embodiments of the present invention, as shown in Fig. 2 should
Device includes:Receiver module 22 and determining module 24, wherein, receiver module 22 is wirelessly warm for receiving at least one
The broadcast of point, wherein, broadcast includes:The safety information of the first hotspot;Determining module 24, connects
To receiver module 22, for according to safety information, judging the safety of the first hotspot.
Preferably, determining module 24 includes:First determining unit, for indicating the first hotspot in safety information
Safety be non-security in the case of, determine the first hotspot safety be non-security;And/or second determine single
Unit, in the case that the safety for indicating the first hotspot in safety information is safety, determines the first hotspot
Safety be safety.
Preferably, device also includes:Processing module, after being non-security in the safety determining the first hotspot:
In the case of not yet asking for user equipment to access the first hotspot, user equipment is accessed first by no longer execution request
The operation of hotspot;And/or in the case of having requested that user equipment access the first hotspot, terminating execution please
Ask the operation that user equipment is accessed the first hotspot.
Preferably, device also includes:Broadcast module, connects to the first determining unit, for starting the focus of user equipment
Broadcast, and broadcast broadcast.
Preferably, device also includes:AM access module, connects to the second determining unit, for user equipment is accessed first
Hotspot.
Preferably, device also includes:Pre-association request sending module, the connection and first being provided by the first hotspot
Hotspot connects, and asks to the first hotspot for sending pre-association, wherein, pre-association is asked for request first
The identity information of hotspot;Pre-association responds receiver module, and the connection being provided by the first hotspot is wireless with first
Focus connects, and responds for receiving the pre-association that the first hotspot is asked in response to pre-association, wherein, pre-association responds
In carry the identity information of the first hotspot, identity information is used for determining the safe class of the first hotspot.
Preferably, pre-association request sending module is additionally operable to:When sending pre-association request, start timer;Wherein,
Device also includes:Pre-association responds judge module, is connected with pre-association request sending module, for asking in transmission pre-association
Ask to after the first hotspot, judge after timer expired, if receive pre-association response;Safe class determines mould
Block, is connected with pre-association response judge module, in timer expired and do not receive in the case that pre-association responds, determines the
The safe class of one hotspot is lower security grade.
Preferably, device also includes:Safe class judge module, for the first hotspot of accessing in user equipment
In the case that safe class is lower security grade, and in the case that the process of user equipment initiates networking request, judge the
Whether the safe class of one hotspot is less than the safe class required by process;Networking module, judges mould with safe class
Block connects, and for be less than the safe class required by process in safe class in the case of, by cellular network, process is entered
Row networking.
Preferably, device also includes:Safety evaluatio sending module, for accessing the first hotspot by user equipment
Afterwards, send the safety evaluatio of the first hotspot to server.
It should be noted that above-mentioned modules can be by software or hardware to realize, for the latter, Ke Yitong
Cross in the following manner to realize, but not limited to this:Above-mentioned module is respectively positioned in same processor;Or, above-mentioned module position respectively
In multiple processors.
Embodiments of the invention additionally provide a kind of user equipment, including above-mentioned hotspot safety detection device, use
In realizing above-mentioned hotspot safety detecting method.
Embodiments of the invention additionally provide a kind of software, and this software is used for executing in above-described embodiment and preferred implementation
The technical scheme of description.
Embodiments of the invention additionally provide a kind of storage medium.In the present embodiment, above-mentioned storage medium can be set
For storage for executing the program code of following steps:
S1, receives the broadcast of at least one hotspot, and wherein, broadcast includes:Focus identifies, has heat
The safety information of the first hotspot of point identification;
S2, according to safety information, judges the safety of the first hotspot.
Alternatively, in the present embodiment, above-mentioned storage medium can include but is not limited to:USB flash disk, read only memory (ROM,
Read-Only Memory), random access memory (RAM, Random Access Memory), portable hard drive,
Magnetic disc or CD etc. are various can be with the medium of store program codes.
Alternatively, the specific example in the present embodiment may be referred to showing described in above-described embodiment and optional embodiment
Example, the present embodiment will not be described here.
In order that the description of the embodiment of the present invention is clearer, it is described with reference to preferred embodiment and illustrates.
In the related, cannot be to WIFI heat especially before illegal WIFI hot spot is attacked to client
The safety of point is detected, illegaller WIFI hot spot cannot be shared to other clients in time (preferred in the present invention
It is also called STA) in embodiment.
Not enough for these, taking WIFI hot spot as a example, a kind of secure accessing WIFI is proposed in a preferred embodiment of the invention
The method and apparatus of focus, wherein, the method for secure accessing WIFI hot spot, comprise the steps:
Step 1, the broadcast that client receives target WIFI hot spot (being equivalent to above-mentioned first hotspot) from the beginning disappears
Breath and the broadcast from surrounding other focus;
Step 2, client parses broadcast, and extracts high-risk focus early warning information therein.
It should be noted that outside this step, client can also be by cloud server to credit of target focus etc.
Level inquired about, using diagnose as target access (Access Point, referred to as AP, i.e. focus) safety one
Individual supplementary source.
Step 3, the high-risk focus early warning information that client inquires according to step 1, judged, if this target
WIFI hot spot belongs to high-risk focus, turns to step 4;Otherwise turn to step 5.
Step 4, client refusal accesses target WIFI hot spot, stops certification request, and starts high-risk focus broadcast,
Report this high-risk focus by sending broadcast message to neighbouring other clients.
Step 5, client initiates certification request to target WIFI hot spot;
Step 6, client receives after the authentication response of target WIFI hot spot, initiates pre- closing to target WIFI hot spot
Connection request, wherein asks key message to target WIFI hot spot, wherein, key message refers to can effectively represent WIFI
Hotspot device and the information of holder's identity, for example, the mobile device international identity code (IMEI) of WIFI hot spot, hold
People's perfect instrument number etc.;
Step 7, client waits the pre-association response from target WIFI hot spot, and starts intervalometer, if fixed
When device time-out before receive effective pre-association response from target WIFI hot spot, turn to step 8;Otherwise turn to step 9.
Step 8, client receives the effective pre-association response from target WIFI hot spot before timer expiry, and carries
Take the key message in authentication response information, preserve to local data base.And according to this key message to this target WIFI
The security attribute of focus is defined, and is uploaded to cloud server.
Step 9, client fails to receive the effective pre-association response from target WIFI hot spot before timer expiry,
This target WIFI hot spot security attribute is defined as middle level security, turns to step 10.
Step 10, client carries out security leveldefinition to the application program needing networking;
By process, step 11, when client initiates networking request, judges that this networking asks whether corresponding process belongs to
In sensitive process;Wherein, sensitive process refers to the process that security performance is had high demands.
Step 12, judges to the application program of step 11, when the networking request of client is derived from sensitive applications,
Disconnect the connection with target WIFI hot spot, switch to cellular mobile network, otherwise transparent transmission is asked in the networking of application program
To target WIFI hot spot.
Step 13, when client terminates the connection with target WIFI hot spot, client is carried to user by display module
Show and the safety that this connects is evaluated.
Step 14, client combines the safety evaluatio of user in step 13, to credit of this target WIFI hot spot etc.
Level is defined, and is uploaded to cloud server.
It should be noted that the safety evaluatio to target WIFI hot spot for the client, actively can be initiated by user,
I.e. when user after certain time in find connect this target AP during itself safety once encroached on, Ke Yizhu
The dynamic safety initiating upload target focus, with the safety evaluatio to target AP uploading before updating.
Accordingly, present invention also offers a kind of device of secure accessing WIFI hot spot (hereinafter referred to as client terminal device),
This client terminal device includes:
Transceiver module:Send and receive for carrying out message with server, WIFI hot spot or other client.
Parsing module:It is transmitted from server, WIFI hot spot or other client message for parsing and receive.
Control module:For controlling local process to access network, according to the level of security of current connected WIFI hot spot,
Control section sensitivity process accesses network by WIFI;Or it is switched to cellular mobile network, control this sensitive process to lead to
Cross cellular mobile network and access the Internet.Wherein, sensitive process refers to the process that security performance is had high demands.
Display module:For displaying to the user that the level of security of WIFI hot spot;For collecting related WIFI heat to user
The safety information of point.
The such scheme being provided by the preferred embodiment of the present invention, can be according to the safe level of the WIFI hot spot that will access
Not, the optimum access data transmission strategy of intelligent selection, is effectively protected privacy and the safety of client user, improves
The safety of product.
Below in conjunction with the accompanying drawings the preferred embodiment of the present invention is described and illustrates.
Fig. 3 is the method flow schematic diagram of secure accessing WIFI hot spot in preferred embodiment of the present invention.As shown in figure 3,
The method includes:
Step S3001, STA receives beacon frame (Beacon) message and the early warning message that the focus of local ambient sends,
To detect available AP around this STA.
Step S3002, the Beacon message receiving in STA analyzing step S3001 and early warning message extract wherein
High-risk focus early warning information, and judge whether the AP of indication is target AP.
Fig. 4 is the early warning frame structure of high-risk focus early warning information in the preferred embodiment of the present invention, as shown in figure 4, including:
Frame controls (Frame Control) field:The Frame Control field of standard frame is improved, from this field
Type=00 can see, this frame belongs to management frame;
The standard definition of each field in standard management frame:
Frame Control field includes:Protocol version (Protocol) position, To DS and From DS position, more
Segmentation (More Fragment) position, retry (Retry) position, power management (Power Management) position, more
Many data (More Data) positions, protection frame (Protected Frame) position and order (Order) position;Duration (Duration/ID)
Field, address 1 (Address1) field, address 2 (Address2) field, address 3 (Address3) field,
Sequential control (Sequence Control) field address 4 (Address4) field, Frame Check Sequence (FCS) field.
Compared with standard, here is no longer repeated for the definition of above-mentioned each field.
Have modified standard management frame in a preferred embodiment of the invention, to realize the broadcast of high-risk focus early warning information.Modification
Management frame includes afterwards:
Subtype (Sub Type) field:The Sub the type field of standard frame is improved, constitutes the present embodiment
Special frames, for the link information of broadcast radio AP itself, and the wireless apss receiving this radio frames also can be entered to it
Row parsing.Sub Type value 0110~0111 due to management frame in standard agreement is not defined with 1101~1111, this
Place can use any one value therein, distinguishes with other standard value phases.Preferably, the present embodiment can be Sub Type
It is entered as 0110, show that this management frame is high-risk early warning frame.
Frame main body (Frame body) field:Frame body field is the data field of frame, in the preferred embodiment
By the identity of high-risk AP, for example, medium education (MAC) address, service set identifier (SSID)
Information encapsulation is in the field.
Step S3003, STA inquires about the safety credit grade of target focus to cloud server.
Wherein, safety credit grade, is the data generating and uploading onto the server according to the STA being once connected to this AP.
Preferably, taking STA1 as a example, once it was connected to target AP and the Internet was connected to by this AP, after completing to use,
User carries out objective evaluation to the safety of target AP it is believed that the safety credit grade of this target AP is by STA1
Certain rank Security_Level_STA1, simultaneously STA1 this safety credit grade is uploaded to cloud server, if should
Before STA on be transmitted through the safety credit grade of this target AP, then before the new safety credit grade uploading covers
Old safety credit grade.
Preferably, safety credit grade may be configured as the safety credit grade of 0,1,2, wherein 0 this target AP of expression
For low, during the safety credit grade of 1 this target AP of expression is, the safety credit grade of 2 this target AP of expression is height.
It should be noted that in this step STA to cloud server inquire about target AP safety credit grade when, be to carry
Take the MAC Address in standard Beacon frame, ask the equipment of this MAC representative as index to cloud server
Safety credit grade.
Step S3004, STA judges to the security attribute of target AP, judges whether this target AP belongs to high-risk
AP.When STA judges that target AP is not belonging to high-risk AP, turn to step S3101, otherwise turn to step S3201.
It should be noted that when AP security attribute being judged, input is high-risk in step S3002 respectively herein
Safety credit grade in early warning information and step S3003.Once detect in step S3002 high-risk early warning information or
The credit safe class inquiring target AP in step S3003 is low level, you can judge this target AP as high-risk AP,
Belong to safely and be defined as low-level security.
Step S3101, STA initiates certification request to target AP;
Step S3102, STA receives the authentication response message from target AP;
Step S3103, STA initiates pre-association request to target AP, and arranges intervalometer (Timer).
Pre-association request refers to that STA asks the key message with regard to target AP to target AP.Key message is to refer to
Effectively identify this target AP equipment or its holder.For example, the IMEI information of this AP equipment or hold with regard to this AP
The traditional perfect instrument information of people.
Fig. 5 is the frame structure of pre-association solicited message in the preferred embodiment of the present invention, as shown in figure 5, including:
Frame Control field:The Frame Control field of standard frame is improved, from the Type=of this field
00 can see, this frame belongs to management frame;
The standard definition of each field in standard management frame:
Frame Control field includes:Protocol position, To DS and From DS position, More Fragment position,
Retry position, Power Management position, More Data position, Protected Frame position and Order position;Duration/ID
Field, Address1 field, Address2 field, Address3 field, Sequence Control field Address4
Field, FCS field.
Compared with standard, here is no longer repeated for the definition of above-mentioned each field.
It is below the field in the preferred embodiment of the present invention, standard management frame modified, including:
Sub Type:The Sub the type field of standard frame is improved, constitutes the special frames of this preferred embodiment, with complete
STA is become to send pre-association request to AP;
Sub Type value 0110~0111 due to management frame in standard agreement is not defined with 1101~1111, may be used herein
Using any one value therein, distinguish with other standard value phases.Preferably, in this preferred embodiment it is Sub Type
It is entered as 0111, show that this management frame is pre-association claim frame.
Step S3104, STA judges whether that the effective pre-association that have received before Timer time-out from target AP is rung
Answer information.If STA does not have, before Timer time-out, the effective quadratic response information that have received from target AP, turn to
Step S3111, otherwise turns to step S3121.Wherein, effective pre-association response message refers to pre-association response message
In contain key message with regard to target AP.
Fig. 6 is the frame structure of pre-association response message according to the preferred embodiment of the invention, as shown in fig. 6, including:
Frame Control field:The Frame Control field of standard frame is improved, from the Type=of this field
00 can see, this frame belongs to management frame;
The standard definition of each field in standard management frame:
Frame Control field includes:Protocol position, To DS and From DS position, More Fragment position,
Retry position, Power Management position, More Data position, Protected Frame position and Order position;Duration/ID
Field, Address1 field, Address2 field, Address3 field, Sequence Control field Address4
Field, FCS field.
Compared with standard, here is no longer repeated for the definition of above-mentioned each field.
It is below the field in the preferred embodiment of the present invention, standard management frame modified, including:
Sub Type:The Sub the type field of standard frame is improved, constitutes the special frames of this preferred embodiment, be used for
The link information of broadcast radio AP itself, and the wireless apss receiving this radio frames also can parse to it;
Sub Type value 0110~0111 due to management frame in standard agreement is not defined with 1101~1111, herein
Any one value therein can be used, distinguish with other standard value phases.Preferably, this preferred embodiment is Sub Type
It is entered as 0110, show that this management frame is pre-association response frame.
Frame body field:Frame body field is the data field of frame, in this preferred embodiment seals key message
Dress is in this field.Key message is to refer to effectively identify this target AP equipment or its holder.For example, this AP
The IMEI information of equipment or the traditional perfect instrument information with regard to this AP holder.
Step S3111, the security attribute of target AP is defined as middle level security by STA.
Step S3112, turns to the flow process shown in Fig. 7.
Step S3121, the security attribute of target AP is defined as advanced security by STA;And this security attribute is uploaded to
Cloud server.
Step S3122, STA initiates connection request to target AP, according to existing WiFi technology regulation, with target AP
Between complete data transfer.
It should be noted that being uploaded to the data of cloud server, also include MAC Address, the IMEI information of STA.
Step S3201, STA refusal accesses target AP, stops initiating certification request.STA closes itself WIFI simultaneously,
And start the machine focus function.
Step S3202, STA broadcasts high-risk focus early warning information by Beacon frame.It should be noted that broadcast is high
Danger hot information can be periodic.
Fig. 7 is in the method for secure accessing WIFI hot spot in the preferred embodiment of the present invention, and the security attribute of target AP is
During middle level security, STA accesses the method flow diagram of the Internet by target AP, as shown in fig. 7, comprises following steps:
Step S701, when certain process accesses the Internet by STA, STA sentences to the security sensitive degree of this process
Disconnected, judge whether this process belongs to security sensitive process.
Wherein, security sensitive process, refers to that the application belonging to process is higher to security level required, and such as mail etc. is applied,
Or the application program that user specifies temporarily, it is high to security level required that such as user thinks that certain time is applied, then this should
Belong to security sensitive process with corresponding process.
Step S702, when the process of step step S701 decision request internet access belongs to security sensitive process, turns to
Step S711, otherwise turns to step S721.
Step S711, the mode accessing the Internet is switched to cellular network mode from WIFI mode by STA, treats this process
After the completion of accessing the Internet, revert to WIFI mode.
Step S721, the process data asking internet access is pass-through to target AP by STA.
Fig. 8 is the composition schematic diagram of the device of secure accessing WIFI hot spot that the preferred embodiment of the present invention is provided, and such as schemes
Shown in 8, device includes:
Parsing module 801:It is transmitted from server, WIFI hot spot or other client message for parsing and connect
Receive.
Control module 802:For controlling local process to access network, according to the safe level of current connected WIFI hot spot
Not, sensitivity process in control section accesses network by WIFI, is switched to cellular mobile network, controls this sensitive process to lead to
Cross cellular mobile network and access the Internet.
Display module 803:For displaying to the user that the level of security of WIFI hot spot;For collecting related WIFI to user
The safety information of focus.
Transceiver module 804:Send and receive for carrying out message with server, WIFI hot spot or other client.
In sum, by the above embodiment of the present invention or preferred embodiment, can effectively detect that client will connect
The security attribute of the target WIFI hot spot entering, and the security attribute according to target AP, intelligence accesses this target focus simultaneously
The Internet is accessed by this WIFI hot spot, simultaneously for the WIFI hot spot that level of security is not high enough, ensure that safety
The access the Internet of sensitive application safety.In addition, when client detects unsafe WIFI hot spot it is also possible in time
By this information sharing to surrounding other clients.Largely protect the network security of client, protect user
Personal secrets.
Obviously, those skilled in the art should be understood that each module of the above-mentioned present invention or each step can be with general
Realizing, they can concentrate on single computing device computing device, or be distributed in multiple computing devices and formed
Network on, alternatively, they can be realized with the executable program code of computing device, it is thus possible to by they
Storage to be executed by computing device in the storage device, and in some cases, can be to hold different from order herein
The shown or described step of row, or they are fabricated to respectively each integrated circuit modules, or will be many in them
Individual module or step are fabricated to single integrated circuit module to realize.So, the present invention is not restricted to any specific hardware
Combine with software.
The foregoing is only the preferred embodiments of the present invention, be not limited to the present invention, for the technology of this area
For personnel, the present invention can have various modifications and variations.All within the spirit and principles in the present invention, made any
Modification, equivalent, improvement etc., should be included within the scope of the present invention.
Claims (19)
1. a kind of hotspot safety detecting method is it is characterised in that include:
Receive the broadcast of at least one hotspot, wherein, described broadcast includes:First hotspot
Safety information;
According to described safety information, determine the safety of described first hotspot.
2. method according to claim 1 is it is characterised in that according to described safety information, determine described first no
The safety of line focus includes:
In the case that the safety that described safety information indicates described first hotspot is non-security, determine institute
The safety stating the first hotspot is non-security;And/or
In the case that the safety that described safety information indicates described first hotspot is safety, determine described
The safety of the first hotspot is safety.
3. method according to claim 2 is it is characterised in that be non-in the safety determining described first hotspot
After safety, methods described also includes:
In the case of not yet asking user equipment accesses described first hotspot, no longer execution request will be described
User equipment accesses the operation of described first hotspot;And/or
In the case of having requested that user equipment is accessed described first hotspot, terminate execution request by described use
Family equipment accesses the operation of described first hotspot.
4. method according to claim 2 is it is characterised in that be non-in the safety determining described first hotspot
After safety, methods described also includes:
Start the focus broadcast of user equipment, and broadcast described broadcast.
5. the method according to any one of claim 2 to 4 is it is characterised in that determining described first hotspot
Safety be safety after, methods described also includes:
User equipment is accessed described first hotspot.
6. method according to claim 5 is it is characterised in that accessing the described first wireless heat by described user equipment
Before or after point, methods described also includes:
Send pre-association to ask to described first hotspot, wherein, described pre-association is asked for asking described the
The identity information of one hotspot;
Receive the pre-association response that described first hotspot is asked, wherein, described pre- pass in response to described pre-association
The described identity information of described first hotspot is carried, described identity information is used for determining described the in connection response
The safe class of one hotspot.
7. method according to claim 6 it is characterised in that
Send described pre-association to ask also to include to described first hotspot:When sending described pre-association request,
Start timer;
Wherein, after the described pre-association of transmission is asked to described first hotspot, methods described also includes:Sentence
Break after described timer expired, if receive described pre-association response;In described timer expired and do not receive institute
In the case of stating pre-association response, determine that the described safe class of described first hotspot is lower security grade.
8. method according to claim 7 it is characterised in that described user equipment access the described first wireless heat
In the case that the described safe class of point is described lower security grade, methods described also includes:
In the case that the process of described user equipment initiates networking request, judge the described of described first hotspot
Whether safe class is less than the safe class required by described process;
In the case of the safe class that described safe class is less than required by described process, by cellular network to institute
The process of stating is networked.
9. method according to claim 5 is it is characterised in that accessing the described first wireless heat by described user equipment
After point, methods described also includes:
The safety evaluatio sending described first hotspot is to server.
10. a kind of hotspot safety detection device is it is characterised in that include:
Receiver module, for receiving the broadcast of at least one hotspot, wherein, described broadcast includes:
Focus identifies, has the safety information of the first hotspot of described focus mark;
Determining module, for according to described safety information, determining the safety of described first hotspot.
11. devices according to claim 10 are it is characterised in that described determining module is used for:
In the case that the safety that described safety information indicates described first hotspot is non-security, determine institute
The safety stating the first hotspot is non-security;And/or
In the case that the safety that described safety information indicates described first hotspot is safety, determine described
The safety of the first hotspot is safety.
12. devices according to claim 11 are it is characterised in that described device also includes:
Processing module, after being non-security in the safety determining described first hotspot:Not yet asking
In the case that user equipment is accessed described first hotspot, described user equipment is accessed institute by no longer execution request
State the operation of the first hotspot;And/or having requested that the situation that user equipment is accessed described first hotspot
Under, terminate the operation that described user equipment is accessed described first hotspot by execution request.
13. devices according to claim 11 are it is characterised in that described device also includes:
Broadcast module, after being non-security in the safety determining described first hotspot, starts user and sets
Standby focus broadcast, and broadcast described broadcast.
14. devices according to any one of claim 11 to 13 are it is characterised in that described device also includes:
AM access module, after being safety in the safety determining described first hotspot, user equipment is connect
Enter described first hotspot.
15. devices according to claim 14 are it is characterised in that described device also includes:
Pre-association request sending module, for by described user equipment access described first hotspot before or
Afterwards, send pre-association to ask to described first hotspot, wherein, described pre-association is asked described for asking
The identity information of the first hotspot;
Pre-association respond receiver module, for receive described first hotspot in response to described pre-association ask pre-
Associated response, wherein, carries the described identity information of described first hotspot, institute in described pre-association response
State identity information for determining the safe class of described first hotspot.
16. devices according to claim 15 it is characterised in that
Described pre-association request sending module is additionally operable to:When sending described pre-association request, start timer;
Wherein, described device also includes:Pre-association respond judge module, for send described pre-association ask to
After described first hotspot, judge after described timer expired, if receive described pre-association response;Peace
Full level determination module, in described timer expired and in the case of not receiving described pre-association response, determining
The described safe class of described first hotspot is lower security grade.
17. devices according to claim 16 are it is characterised in that described device also includes:
Safe class judge module, the described safety of described first hotspot for accessing in described user equipment
Grade be described lower security grade and described user equipment process initiate networking request in the case of, judge described the
Whether the described safe class of one hotspot is less than the safe class required by described process;
Networking module, for be less than the safe class required by described process in described safe class in the case of, leads to
Cross cellular network described process is networked.
18. devices according to claim 14 are it is characterised in that described device also includes:
Safety evaluatio sending module, for, after described user equipment is accessed described first hotspot, sending out
The safety evaluatio sending described first hotspot is to server.
A kind of 19. user equipmenies are it is characterised in that include:Hotspot as any one of claim 10 to 18
Safety detection device.
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510451434.8A CN106385683A (en) | 2015-07-28 | 2015-07-28 | Wireless hot spot safety detection method, apparatus and user equipment thereof |
PCT/CN2015/092218 WO2016131289A1 (en) | 2015-07-28 | 2015-10-19 | Method, device and user equipment for testing security of wireless hotspot |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201510451434.8A CN106385683A (en) | 2015-07-28 | 2015-07-28 | Wireless hot spot safety detection method, apparatus and user equipment thereof |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106385683A true CN106385683A (en) | 2017-02-08 |
Family
ID=56688686
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201510451434.8A Pending CN106385683A (en) | 2015-07-28 | 2015-07-28 | Wireless hot spot safety detection method, apparatus and user equipment thereof |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN106385683A (en) |
WO (1) | WO2016131289A1 (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107182055A (en) * | 2017-06-22 | 2017-09-19 | 深圳传音通讯有限公司 | Mobile terminal network connection processing method and mobile terminal |
CN111148103A (en) * | 2018-11-06 | 2020-05-12 | 奇酷互联网络科技(深圳)有限公司 | Method for detecting safety connectivity of Bluetooth device, mobile terminal and storage medium |
Families Citing this family (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
BE1025148B1 (en) * | 2017-09-12 | 2018-11-20 | Telenet Besloten Vennootschap Met Beperkte Aansprakelijkheid | METHOD FOR CONNECTING TO AN ACCESS POINT EQUIPPED WITH A PUBLIC AND PRIVATE WIRELESS NETWORK CONNECTION |
CN108848066B (en) * | 2018-05-25 | 2021-07-13 | 上海芯爱智能科技有限公司 | Terminal communication method, terminal and storage medium |
CN114598543B (en) * | 2019-01-16 | 2023-06-23 | 创新先进技术有限公司 | Network environment monitoring method, system, device and electronic equipment |
CN111698693B (en) * | 2020-06-08 | 2023-08-01 | 浙江大华技术股份有限公司 | Wireless distribution network method, device and storage medium |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20140165180A1 (en) * | 2012-12-06 | 2014-06-12 | Mark Sauther | Secure Identification of Internet Hotspots for the Passage of Sensitive Information |
WO2015042917A1 (en) * | 2013-09-29 | 2015-04-02 | 华为技术有限公司 | Wireless secure access method, apparatus and system |
CN104506561A (en) * | 2015-01-13 | 2015-04-08 | 深圳市中兴移动通信有限公司 | Terminal data access control method and device |
CN104519490A (en) * | 2013-09-27 | 2015-04-15 | 中兴通讯股份有限公司 | WIFI (wireless fidelity) connection method, WIFI connection device, mobile terminal and system |
CN104540183A (en) * | 2014-12-03 | 2015-04-22 | 北京奇虎科技有限公司 | Control method and control device for wireless hotspots |
-
2015
- 2015-07-28 CN CN201510451434.8A patent/CN106385683A/en active Pending
- 2015-10-19 WO PCT/CN2015/092218 patent/WO2016131289A1/en active Application Filing
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20140165180A1 (en) * | 2012-12-06 | 2014-06-12 | Mark Sauther | Secure Identification of Internet Hotspots for the Passage of Sensitive Information |
CN104519490A (en) * | 2013-09-27 | 2015-04-15 | 中兴通讯股份有限公司 | WIFI (wireless fidelity) connection method, WIFI connection device, mobile terminal and system |
WO2015042917A1 (en) * | 2013-09-29 | 2015-04-02 | 华为技术有限公司 | Wireless secure access method, apparatus and system |
CN104540183A (en) * | 2014-12-03 | 2015-04-22 | 北京奇虎科技有限公司 | Control method and control device for wireless hotspots |
CN104506561A (en) * | 2015-01-13 | 2015-04-08 | 深圳市中兴移动通信有限公司 | Terminal data access control method and device |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107182055A (en) * | 2017-06-22 | 2017-09-19 | 深圳传音通讯有限公司 | Mobile terminal network connection processing method and mobile terminal |
CN111148103A (en) * | 2018-11-06 | 2020-05-12 | 奇酷互联网络科技(深圳)有限公司 | Method for detecting safety connectivity of Bluetooth device, mobile terminal and storage medium |
Also Published As
Publication number | Publication date |
---|---|
WO2016131289A1 (en) | 2016-08-25 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US20230164540A1 (en) | Method and apparatus for accessing cellular network for sim profile | |
CN106385683A (en) | Wireless hot spot safety detection method, apparatus and user equipment thereof | |
US8611318B2 (en) | Method and system for connecting mobile communication terminal with access point | |
CN102204307B (en) | WLAN authentication method based on MAC address and device thereof | |
US10484928B2 (en) | Apparatus and method for providing operator specific service | |
TWI748952B (en) | Supporting multiple concurrent service contexts with a single connectivity context | |
US11233817B2 (en) | Methods and apparatus for end device discovering another end device | |
CN105684546A (en) | Mobile network operator (mno) control of wifi qos based on traffic detection and dscp mapping in trusted wlan access and networks | |
US9949116B2 (en) | Method and apparatus for establishing SSID-based connection between terminal device and gateway device | |
CN103384392A (en) | Method for enabling mobile terminal to have access to wireless access points and wireless access points | |
EP3113547A1 (en) | Method of and apparatus for network access in wireless communication system supporting isolated e-utran operation for public safety | |
CN104105155A (en) | Device discovery information receiving method, device discovery information transmitting method and user device | |
CN102415072A (en) | Methods and apparatus to discover authentication information in wireless networking environment | |
CN101785343B (en) | Method, system and device for fast transitioning resource negotiation | |
US20200084711A1 (en) | Access processing method, base station and mobile communication terminal | |
CN103297968A (en) | Wireless terminal identifying method, wireless terminal identifying device and wireless terminal identifying system | |
CN108293055A (en) | Method, apparatus and system for authenticating to mobile network and for by the server of device authentication to mobile network | |
CN107659935B (en) | Authentication method, authentication server, network management system and authentication system | |
US9584604B2 (en) | Utilization of subscriber data in a telecommunication system | |
CN108243631B (en) | Network access method and equipment | |
CN113965334A (en) | Online signing method, device and system | |
CN111031545A (en) | Wireless network access control method and device, relay equipment and electronic equipment | |
CN111770094B (en) | Access control method of wireless network and related device | |
KR20200077259A (en) | Apparatus and method for connetcting a network | |
CN103281693A (en) | Wireless communication authentication method, network translation equipment and terminal |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170208 |
|
RJ01 | Rejection of invention patent application after publication |