CN107295504A - The control method and gateway device of a kind of Wi Fi protection settings - Google Patents

The control method and gateway device of a kind of Wi Fi protection settings Download PDF

Info

Publication number
CN107295504A
CN107295504A CN201710486221.8A CN201710486221A CN107295504A CN 107295504 A CN107295504 A CN 107295504A CN 201710486221 A CN201710486221 A CN 201710486221A CN 107295504 A CN107295504 A CN 107295504A
Authority
CN
China
Prior art keywords
ssid
interim
client
address
corresponding relation
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201710486221.8A
Other languages
Chinese (zh)
Other versions
CN107295504B (en
Inventor
单晓森
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hisense Broadband Multimedia Technology Co Ltd
Original Assignee
Hisense Broadband Multimedia Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hisense Broadband Multimedia Technology Co Ltd filed Critical Hisense Broadband Multimedia Technology Co Ltd
Priority to CN201710486221.8A priority Critical patent/CN107295504B/en
Publication of CN107295504A publication Critical patent/CN107295504A/en
Application granted granted Critical
Publication of CN107295504B publication Critical patent/CN107295504B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/26Network addressing or numbering for mobility support

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Databases & Information Systems (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The application provides the control method and gateway device of a kind of Wi Fi protection settings.The control method for the Wi Fi protection settings that the application is provided, including:When receiving transient service set identifier SSID triggerings, generate and record interim SSID;If it is determined that client is connected to wireless network by the interim SSID, then request dynamic host configuration Dynamic Host Configuration Protocol server is that the client distributes internet protocol address, and records the Dynamic Host Configuration Protocol server and distribute to corresponding relation between the IP address of the client and the interim SSID;If it is determined that the client disconnection of wireless network connection, then delete the corresponding relation and the interim SSID recorded.The control method and gateway device for the Wi Fi protection settings that the application is provided, it is possible to increase the security of network connection.

Description

The control method and gateway device of a kind of Wi-Fi protection settings
Technical field
The application is related to network safety filed, more particularly to a kind of Wi-Fi protection settings control method and gateway device.
Background technology
Wi-Fi protection settings (Wi-Fi Protected Setup, abbreviation WPS) are by recognizing that Wi-Fi Alliance is organized and implemented Card project, is mainly used to solve the problem of the step of wireless network encryption is set is excessively cumbersome.
Under traditional mode, during the newly-built wireless network of user, it is necessary to which services set is set manually on gateway device Identify (Service Set Identifier, abbreviation SSID, i.e. wireless network name) and wireless network connection password.Work as setting After the completion of, when client needs to connect this wireless network, it is necessary to which inputting tediously long wireless network connection password could access wirelessly Network.Wi-Fi protection settings can simplify this process.At present, the gateway device for possessing WPS functions is often set on fuselage There is a WPS button.So, after SSID and wireless network connection password has been configured, when client needs to access wireless network When, it is only necessary to gently press the button, you can easily and quickly complete the connection of wireless network (specifically, when pressed When, the SSID configured and wireless network connection password can be sent to the client for opening WPS functions by gateway device, so, The client of unlatching WPS functions, which need not be manually entered tediously long wireless network connection password, can quickly complete wireless network Connection).
When client sets up wireless network by WPS buttons to be connected, although user need not search SSID manually, also not Need to be manually entered wireless network connection password.But, after client accesses wireless network by WPS buttons, in client The SSID and wireless network connection password of this wireless network can be preserved, especially when visitor's client accesses the wireless network, The SSID and wireless network that preserve the wireless network are connected password by visitor's client, so, easily cause password leakage, password After leakage, the password by leakage is accessed the wireless network by other clients, and network connection security is relatively low.
The content of the invention
In view of this, the application provides the control method and gateway device of a kind of Wi-Fi protection settings, existing to solve The problem of Wi-Fi protection setting securities are relatively low.
The application first aspect provides a kind of control method of Wi-Fi protection settings, and methods described is applied to gateway device, Methods described includes:
When receiving transient service set identifier SSID triggerings, generate and record interim SSID;
If it is determined that client is connected to wireless network by the interim SSID, then request dynamic host configuration DHCP Server is that the client distributes internet protocol address, and records the Dynamic Host Configuration Protocol server and distribute to the client Corresponding relation between IP address and the interim SSID;
If it is determined that the client disconnection of wireless network connection, then the corresponding relation that has recorded is deleted and described interim SSID。
Further, it is described to delete the interim SSID recorded, specifically include:
When the detection cycle of setting is reached, for each interim SSID recorded, from the corresponding relation recorded Search the corresponding relation for including the corresponding IP address of the interim SSID;
If not finding, the interim SSID is deleted.
Further, it is described to record IP address and the interim SSID that the Dynamic Host Configuration Protocol server distributes to the client Between corresponding relation after, methods described also includes:
When the update condition of IP address occurs, the IP address in the corresponding relation is updated.
Further, the interim SSID of generation, is specifically included:
Random string is automatically generated, and the random string is added to the master stored in the gateway device SSID specified location constitutes interim SSID.
Further, it is described generate and record interim SSID after, methods described also includes:
The access rights of the interim SSID are set, to pass through the interim SSID connections by the access privilege control Client to wireless network accesses Internet resources.
Further, the transient service set identifier SSID triggerings are the physical buttons or virtual on the gateway device What button was generated when being performed setting operation;Either,
The transient service set identifier SSID triggerings are in the corresponding application APP of the gateway device or webpage What virtual key was generated when being performed setting operation.
The application second aspect provides a kind of gateway device, including:Creation module, processing module and removing module, wherein,
The creation module, for when receiving transient service set identifier SSID triggerings, generating and recording interim SSID;
The processing module, for if it is determined that client is connected to wireless network by the interim SSID, then request to be dynamic State host configuration Dynamic Host Configuration Protocol server is that the client distributes internet protocol address, and records the Dynamic Host Configuration Protocol server Distribute to the corresponding relation between the IP address of the client and the interim SSID;
The removing module, what is recorded for if it is determined that the client disconnection of wireless network connection, then deleting is described Corresponding relation and the interim SSID.
Further, the removing module includes searching unit and deletes unit, wherein,
The searching unit, for when the detection cycle of setting is reached, for each interim SSID recorded, from The corresponding relation for including the corresponding IP address of the interim SSID is searched in the corresponding relation of record;
The deletion unit, it is interim comprising this for not found from the corresponding relation recorded in the searching unit During the corresponding relation of the corresponding IP address of SSID, the interim SSID is deleted.
Further, the processing module, is additionally operable to recording the Dynamic Host Configuration Protocol server and distribute to the IP of the client After corresponding relation between address and the interim SSID, when the update condition of IP address occurs, update the correspondence and close IP address in system.
Further, the creation module, adds specifically for automatically generating random string, and by the random string The specified location for being added to the main SSID stored in the gateway device constitutes interim SSID.
Further, the processing module, is additionally operable to generate and record in the creation module after interim SSID, sets The access rights of the interim SSID, to be connected to wireless network by the interim SSID by the access privilege control Client accesses Internet resources.
Further, the transient service set identifier SSID triggerings are the physical buttons or virtual on the gateway device What button was generated when being performed setting operation;Either,
The transient service set identifier SSID triggerings are in the corresponding application APP of the gateway device or webpage What virtual key was generated when being performed setting operation.
The control method and gateway device for the Wi-Fi protection settings that the application is provided, when receiving transient service set identifier When SSID is triggered, generate and record interim SSID, so, visitor's client can be made to pass through interim SSID connections wireless network.Enter One step, however, it is determined that client is connected to wireless network by above-mentioned interim SSID, then passes through request dynamic host configuration Dynamic Host Configuration Protocol server is that above-mentioned client distributes internet protocol address, and records the Dynamic Host Configuration Protocol server and distribute to the client Corresponding relation between the IP address at end and the interim SSID, and then if it is determined that above-mentioned client disconnection of wireless network connection When, the above-mentioned corresponding relation recorded is deleted, and delete the above-mentioned interim SSID recorded.So, recorded by deleting Above-mentioned interim SSID, can make above-mentioned interim SSID failures.So, even if above-mentioned interim SSID is compromised, due in gateway device Above-mentioned interim SSID is not present, other clients also can not be connected to wireless network by above-mentioned interim SSID, can improve The security of network connection.
Brief description of the drawings
Fig. 1 is the flow chart of the control method embodiment one of the application Wi-Fi protection settings;
Fig. 2 is the flow chart of the control method embodiment two of the application Wi-Fi protection settings;
Fig. 3 is the application scenarios schematic diagram of the control method of the application Wi-Fi protection settings;
Fig. 4 is the structural representation of the application gateway device embodiment one;
Fig. 5 is the structural representation of the application gateway device embodiment two.
Embodiment
Here exemplary embodiment will be illustrated in detail, its example is illustrated in the accompanying drawings.Following description is related to During accompanying drawing, unless otherwise indicated, the same numbers in different accompanying drawings represent same or analogous key element.Following exemplary embodiment Described in embodiment do not represent all embodiments consistent with the application.On the contrary, they be only with it is such as appended The example of the consistent apparatus and method of some aspects be described in detail in claims, the application.
It is the purpose only merely for description specific embodiment in term used in this application, and is not intended to be limiting the application. " one kind ", " described " and "the" of singulative used in the application and appended claims are also intended to including majority Form, unless context clearly shows that other implications.It is also understood that term "and/or" used herein refers to and wrapped It may be combined containing one or more associated any or all of project listed.
It will be appreciated that though various information, but this may be described using term first, second, third, etc. in the application A little information should not necessarily be limited by these terms.These terms are only used for same type of information being distinguished from each other out.For example, not departing from In the case of the application scope, the first information can also be referred to as the second information, similarly, and the second information can also be referred to as One information.Depending on linguistic context, word as used in this " if " can be construed to " ... when " or " when ... When " or " in response to determining ".
The application provides the control method and gateway device of a kind of Wi-Fi protection settings, is protected with solving existing Wi-Fi The problem of network connection security is relatively low is set.
The control method for the Wi-Fi protection settings that the application is provided, can apply in gateway device.For example, can answer For home gateway (for example, it may be router), it can also be applied to using passive optical-fiber network (Passive Optical Network, PON) equipment integration of three networks product.
The technical scheme of the application is described in detail with specific embodiment below.These specific implementations below Example can be combined with each other, and may be repeated no more for same or analogous concept or process in some embodiments.
Fig. 1 is the flow chart of the control method embodiment one of the application Wi-Fi protection settings.The executive agent of the present embodiment For gateway device.Fig. 1 is refer to, the method that the present embodiment is provided can include:
S101, when receive transient service set identifier SSID triggering when, generate and record interim SSID;Wherein, it is above-mentioned to face When SSID be used for client connect wireless network.
It should be noted that client described in the present embodiment refers in particular to the client of visitor.Alternatively, above-mentioned interim clothes The SSID triggerings of business set identifier can be that physical button or virtual key on gateway device are generated when being performed setting operation 's.For example, in a possible implementation, transient service set identifier SSID triggerings are that the WPS buttons on gateway device exist Generated during by Continued depression more than 2 seconds.For another example transient service set identifier SSID triggerings be WPS on gateway device by What key was generated when being continuously pressed twice.Touched for another example being also provided with transient service set identifier SSID on gateway device Button is sent out, now, transient service set identifier SSID is generated when triggering is pressed by the button.It should be noted that above-mentioned Transient service set identifier SSID triggerings can also be that the virtual key in the corresponding application APP of gateway device or webpage exists It is performed what is generated during setting operation.For example, can be in the corresponding application program of gateway device (Application, abbreviation APP) One virtual key of upper setting, when the virtual key is pressed, the SSID triggerings of generation transient service set identifier.Below " to face When service set SSID triggering be that WPS buttons on gateway device are generated when being continuously pressed twice " exemplified by carry out Explanation.
It should be noted that for ensure internet security, generate interim SSID when, can also generate simultaneously for State the password that interim SSID is encrypted.
Alternatively, in one embodiment, interim SSID can be generated as follows, and this method includes:Automatically generate Random string, and it is interim that above-mentioned random string is added to the main SSID stored in gateway device specified location composition SSID。
Specifically, specified location is set according to actual needs, in the present embodiment, specified location is not defined. Interim SSID is constituted for example, above-mentioned random string can be added to after main SSID;For another example can be by random string Interim SSID is constituted before being added to main SSID.Below so that " composition is interim after above-mentioned random string is added into main SSID Illustrated exemplified by SSID ".It should be noted that main SSID is used for the client connection wireless network of kinsfolk.
Specifically, above-mentioned interim SSID and for the password record to above-mentioned interim SSID encryption gateway device configuration In file.
With reference to description above, for example, when visitor 1 comes to visit, in order to allow the client 1 of visitor 1 to connect wireless network.This When, (the WPS buttons on gateway device are being continuously pressed the WPS buttons that kinsfolk can continuously press on two secondary gateway devices Transient service set identifier SSID triggerings are generated when twice) so that gateway device receives transient service set identifier SSID triggerings.Phase Ying Di, when gateway device receives transient service set identifier SSID triggerings, just produces and connects nothing for the client 1 of visitor 1 (now, when the client 1 of visitor 1 opens WPS functions, the client 1 of visitor 1 can be by this by the interim SSID of gauze network Interim SSID connections wireless network).For example, in one embodiment, main SSID is family, the interim SSID of generation is family123。
S102, if it is determined that client is connected to wireless network by above-mentioned interim SSID, then request dynamic main frame configuration association Discuss Dynamic Host Configuration Protocol server and distribute internet protocol address for above-mentioned client, and record above-mentioned Dynamic Host Configuration Protocol server and distribute to above-mentioned visitor Corresponding relation between the IP address at family end and above-mentioned interim SSID.
It should be noted that after gateway device generates interim SSID, above-mentioned interim SSID can be sent to unlatching WPS work( (if it should be noted that gateway device is while interim SSID is generated, also create is used for above-mentioned interim the client of energy The password of SSID encryptions, now, gateway device can be by the interim SSID of generation and for the passwords to above-mentioned interim SSID encryptions Be sent to open WPS functions client), so, client can be connected to by the interim SSID wireless network (with reference to Above example, the client 1 of visitor 1 opens WPS functions, now, gateway device can by the interim SSID of generation and for pair The password of above-mentioned interim SSID (family123) encryption is sent to the client 1 for opening WPS functions, so, the client of visitor 1 End 1 just can be by the SSID connections wireless network).It should be noted that triggering each time, only a client is allowed to be connected to Wireless network, when there is other clients to require connect to wireless network, it is necessary to again operation (for example, when visitor 2 comes to visit, Now, in order to allow visitor 2 client 2 connect wireless network.Now, two secondary gateways of continuous pressing are set kinsfolk's needs again Standby upper WPS buttons, so that gateway device produces the interim SSID that wireless network is connected for the client 2 of visitor 2).
With reference to above example, in this step, when it is determined that client 1 is connected to wireless network by above-mentioned interim SSID When, it is that above-mentioned client 1 distributes internet protocol address with regard to request dynamic host configuration Dynamic Host Configuration Protocol server.Need explanation , Dynamic Host Configuration Protocol server can be integrated in the gateway device, can also be not integrated into the gateway device.When in gateway device When there is no integrated Dynamic Host Configuration Protocol server, when it is that above-mentioned client device distributes IP address to ask Dynamic Host Configuration Protocol server, while can ask Dynamic Host Configuration Protocol server returns to distribution information (asking Dynamic Host Configuration Protocol server to inform the IP address for distributing to above-mentioned client).
Further, after Dynamic Host Configuration Protocol server distributes IP address to above-mentioned client, in this step, above-mentioned DHCP is just recorded Server-assignment to above-mentioned client IP address and above-mentioned interim SSID between corresponding relation, i.e., will above-mentioned interim SSID with Dynamic Host Configuration Protocol server is distributed to is used as a node note by the IP address of the above-mentioned interim SSID clients 1 for being connected to wireless network Record is got off.For example, in one embodiment, client 1 by above-mentioned interim SSID (family123) be connected to wireless network and Dynamic Host Configuration Protocol server is to the IP address that the client 1 is distributed:192.168.1.12, now, then the corresponding relation recorded is as follows:Visitor Family end 1, family123,192.168.1.12.
S103, if it is determined that above-mentioned client disconnection of wireless network connection, then delete the above-mentioned corresponding relation recorded, and delete Except the above-mentioned interim SSID recorded.
Specifically, when gateway device is integrated with Dynamic Host Configuration Protocol server, can determine that above-mentioned client is as follows No disconnection network connection:Dynamic Host Configuration Protocol server i.e. in gateway device gives the above-mentioned visitor for distributing IP address according to prefixed time interval Family end sends query messages;When continuous preset times (for example, can be 3 times) are all not received by the sound that above-mentioned client is returned When answering message, above-mentioned client disconnection of wireless network connection is determined.Certainly, when gateway device does not have integrated Dynamic Host Configuration Protocol server, At this point it is possible to determined according to WiFi agreements above-mentioned client whether disconnection of wireless network connection.On according to WiFi agreements come Determine above-mentioned client whether disconnection of wireless network connection implement process and realization principle may refer in the prior art Description, no longer describe herein.
Specifically, with reference to above example, when it is determined that during 1 disconnection of wireless network connection of above-mentioned client, in this step, just The above-mentioned corresponding relation (client 1, family123,192.168.1.12) that has recorded is deleted, and deletes recorded above-mentioned and is faced When SSID (family123).It should be noted that when implementing, multiple client (visitor's client) may connect simultaneously Wireless network (each client is connected to wireless network by an interim SSID) is connected to, now, is recorded in gateway device There is multigroup corresponding relation.Therefore, now, when client 1 disconnects network connection, the above-mentioned corresponding relation recorded in deletion When, it is necessary to according to the client 1 of now disconnection of wireless network discharge IP address, find and include from the corresponding relation recorded The corresponding relation of the IP address, and be deleted, and then the corresponding interim SSID of the IP address recorded is deleted.Need It is bright,, should deleting if generate in the password for being encrypted to the SSID, this step simultaneously when generating the SSID During SSID, while will also be deleted for the password encrypted to the SSID.
The method that the present embodiment is provided, when receiving transient service set identifier SSID triggerings, generates and records interim SSID and the password for being encrypted to above-mentioned interim SSID, so, can make visitor's client pass through interim SSID connections wireless network Network.Further, however, it is determined that client is connected to wireless network by above-mentioned interim SSID, then is configured by request dynamic main frame Protocol DHCP server be above-mentioned client distribute internet protocol address, and record above-mentioned Dynamic Host Configuration Protocol server distribute to it is above-mentioned Corresponding relation between the IP address of client and above-mentioned interim SSID, and then if it is determined that above-mentioned client disconnection of wireless network connects Connect, then delete the above-mentioned corresponding relation recorded, and delete the above-mentioned interim SSID recorded.So, recorded by deleting Above-mentioned interim SSID, above-mentioned interim SSID failure can be made.So, even if above-mentioned interim SSID is compromised, due to gateway device In above-mentioned interim SSID is not present, other clients also can not be connected to wireless network by above-mentioned interim SSID, can carry The security of high network connection.
Further, in the possible implementation of the application one, after step S103, methods described also includes:
When the update condition of IP address occurs, the IP address in the corresponding relation is updated.
Specifically, the update condition of IP address can be the rental period for the IP address that Dynamic Host Configuration Protocol server distributes to above-mentioned client Expire, Dynamic Host Configuration Protocol server is assigned with new IP address to above-mentioned client;Can also be that the IP address distributed before is clashed, Dynamic Host Configuration Protocol server is assigned with new IP address to above-mentioned client.For example, in one embodiment, Dynamic Host Configuration Protocol server is distributed to above-mentioned The rental period of the IP address of client expire after, Dynamic Host Configuration Protocol server to above-mentioned client distribute new IP address be 192.198.1.15, now, the IP address in above-mentioned corresponding relation is just updated, the above-mentioned corresponding relation after renewal is:Client 1、family123、192.168.1.15.It should be noted that in the IP address in updating corresponding relation, can be according to old IP The corresponding relation for including old IP address is found, and then the IP address in the corresponding relation found is updated to new IP address.
The method that the present embodiment is provided, when the update condition of IP address occurs, by updating the corresponding relation recorded In IP address.So, after client disconnects network connection, the IP address that can be discharged according to the client, which is accurately found, to be included The corresponding relation of the IP address, and then be deleted.So, efficiency can be improved.
Alternatively, in the possible implementation of the application one, after step S101, it can also include:
Above-mentioned interim SSID access rights are set, to pass through above-mentioned interim SSID connections by above-mentioned access privilege control Client to wireless network accesses Internet resources.
For example, can prevent to access by the client that above-mentioned interim SSID is connected to wireless network by above-mentioned access rights Internal network.It should be noted that the access rights on how to set above-mentioned interim SSID, to pass through above-mentioned access rights control System implements process and realization principle by the above-mentioned interim SSID client access Internet resources for being connected to wireless network Description of the prior art is may refer to, here is omitted.
The method that the present embodiment is provided, after above-mentioned interim SSID is generated, by the access for setting above-mentioned interim SSID Authority, is provided with accessing network by the above-mentioned interim SSID clients for being connected to wireless network by above-mentioned access privilege control Source.So, the access rights of visitor's client can be effectively controlled, internet security are further improved (for example, being accessed by setting Authority, can prevent the client of visitor from accessing internal network, so, internal information can be avoided to reveal).
Fig. 2 is the flow chart of the control method embodiment two of the application Wi-Fi protection settings.The present embodiment refers to delete Except the interim SSID recorded detailed process, on the basis of above-described embodiment, the above-mentioned interim SSID recorded, tool are deleted Body includes:
S201, when the detection cycle of setting is reached, for each interim SSID recorded, closed from the correspondence recorded The corresponding relation for including the corresponding IP address of the interim SSID is searched in system.
If S202, not finding, the interim SSID is deleted.
It should be noted that the detection cycle of setting is set according to actual needs, in the present embodiment, not to setting Detection cycle is defined.For example, the detection cycle of setting can be 1800 seconds.
A specific example is given below, the controlling party of the Wi-Fi protection settings for the application offer to be discussed in detail Method.Fig. 3 is the application scenarios schematic diagram of the control method of the application Wi-Fi protection settings.Fig. 3 is refer to, for example, implementing one In example, there are three visitors to come to visit, the client of three visitors is respectively client 1, client 2 and client 3, now, three The client of visitor is connected to the interim SSID recorded in wireless network, gateway device such as institutes of table one by interim SSID Show, the corresponding relation recorded is as shown in Table 2:
The SSID that table one has been recorded
Interim SSID For the password encrypted to interim SSID
family123 123456
family456 1234567
family789 12345678
The corresponding relation that table two has been recorded
At a certain moment, after visitor 1 leaves, now, client 1 disconnects network connection, and client 1 will distribute to its IP Address (192.168.1.12) discharges, and gateway device finds the corresponding relation comprising the IP address from the corresponding relation recorded (visitor 1, family123,192.168.1.12), and the corresponding relation is deleted, now, the corresponding relation recorded is changed into table Shown in three:
The corresponding relation that table three has been recorded
Identity Interim SSID The IP address of distribution
Visitor 2 family456 192.168.1.13
Visitor 3 family789 192.168.1.14
Further, when the detection cycle of setting is reached, for each the interim SSID recorded, from what is recorded The corresponding relation for including the corresponding IP address of the interim SSID is searched in corresponding relation.With reference to above example, that is, it is directed to Family123, searches the corresponding relation for including the corresponding IP address of family123 from the corresponding relation recorded;For Family456, searches the corresponding relation for including the corresponding IP address of family456 from the corresponding relation recorded;For Family789, searches the corresponding relation for including the corresponding IP address of family789 from the corresponding relation recorded.Now, by Had been moved off in visitor 1, the corresponding relation recorded has been changed to as shown in Table 3, now, through searching, discovery does not find bag The corresponding relation of the corresponding IP address containing family123.Now, the family123 recorded is just deleted.At this moment, recorded SSID is changed into shown in table four:
The SSID that table four has been recorded
Interim SSID For the password encrypted to interim SSID
family456 1234567
family789 12345678
It should be noted that after visitor 1 leaves, by the way that the client 1 for visitor 1 is connected into the interim of wireless network SSID (family123) is deleted, so, the SSID is failed.So, even if the SSID is compromised, other clients also can not Can be by the SSID connection wireless networks, the security of network connection is higher.
For another example subsequent time, if visitor 2 also leaves, now, client 2 disconnects network connection, and client 2 will be distributed Discharged to its IP address (192.168.1.13), gateway device is found comprising the IP address from the corresponding relation recorded Corresponding relation (visitor 2, family456,192.168.1.13), and the corresponding relation is deleted, now, the correspondence pass recorded System is changed into table five:
The corresponding relation that table five has been recorded
Identity Interim SSID The IP address of distribution
Visitor 3 family789 192.168.1.14
Hereafter, when the detection cycle of setting is reached, for each the interim SSID recorded, from the correspondence recorded The corresponding relation for including the corresponding IP address of the interim SSID is searched in relation.With reference to above example, that is, it is directed to Family456, searches the corresponding relation for including the corresponding IP address of family456 from the corresponding relation recorded;For Family789, searches the corresponding relation for including the corresponding IP address of family789 from the corresponding relation recorded.Now, by Had been moved off in visitor 2, the corresponding relation recorded is changed into as shown in Table 5, now, through searching, discovery, which is not found, to be included The corresponding relation of the corresponding IP address of family456.At this moment, just the family456 recorded is deleted, so, recorded The SSID such as institutes of table six:
The SSID that table six has been recorded
Interim SSID For the password encrypted to interim SSID
family789 12345678
Similarly, after visitor 2 leaves, by the interim SSID that the client 2 for visitor 2 is connected to wireless network (family456) delete, so, the SSID is failed.So, even if the SSID is compromised, other clients are also impossible to lead to The SSID connection wireless networks are crossed, the security of network connection is higher.
The method that the present embodiment is provided, when the detection cycle of setting is reached, for each interim SSID recorded, leads to The corresponding relation searched from the corresponding relation recorded and include the corresponding IP address of the interim SSID is crossed, and then is not being found When, delete the interim SSID.So, the SSID can be made to fail.So, even if above-mentioned interim SSID is compromised, because gateway is set Above-mentioned interim SSID is not present in standby, other clients also can not be connected to wireless network by above-mentioned interim SSID, can Improve the security of network connection.
Fig. 4 is the structural representation of the application gateway device embodiment one.The gateway device can by software, hardware or The mode of the soft or hard combination of person is realized.It refer to Fig. 4, the gateway device that the present embodiment is provided, including:Creation module 100, processing mould Block 200 and removing module 300, wherein,
The creation module 100, for when receiving transient service set identifier SSID triggerings, generating and recording interim SSID;Wherein, the interim SSID is used for client connection wireless network;
The processing module 200, for if it is determined that client is connected to wireless network by the interim SSID, then asking Dynamic host configuration protocol DHCP server is that the client distributes internet protocol address, and records the DHCP service Device distributes to the corresponding relation between the IP address of the client and the interim SSID;
The removing module 300, for if it is determined that the client disconnection of wireless network connection, then delete the institute recorded Corresponding relation is stated, and deletes the interim SSID recorded.
The gateway device of the present embodiment, can be used for the technical scheme for performing embodiment of the method shown in Fig. 1, its realization principle Similar with technique effect, here is omitted.
Fig. 5 is the structural representation of the application gateway device embodiment two.Fig. 5 is refer to, on the basis of above-described embodiment On, the gateway device that the present embodiment is provided, the removing module 300 includes searching unit 301 and deletes unit 302, wherein,
The searching unit 301, for when the detection cycle of setting is reached, for each interim SSID recorded, The corresponding relation for including the corresponding IP address of the interim SSID is searched from the corresponding relation recorded;
The deletion unit 302, is included for not found from the corresponding relation recorded in the searching unit 301 During the corresponding relation of the corresponding IP address of the interim SSID, the interim SSID is deleted.
The gateway device of the present embodiment, can be used for the technical scheme for performing embodiment of the method shown in Fig. 2, its realization principle Similar with technique effect, here is omitted.
Further, the processing module 200, is additionally operable to distribute to the client recording the Dynamic Host Configuration Protocol server After corresponding relation between IP address and the interim SSID, when the update condition of IP address occurs, the correspondence is updated IP address in relation.
Further, the creation module 100, specifically for automatically generating random string, and by the random character The specified location that string is added to the main SSID stored in the gateway device constitutes interim SSID.
Further, the processing module 200, be additionally operable to generate and record in the creation module 100 interim SSID it Afterwards, the access rights of the interim SSID are set, to be connected to nothing by the interim SSID by the access privilege control The client of gauze network accesses Internet resources.
Further, the transient service set identifier SSID triggerings are the physical buttons or virtual on the gateway device What button was generated when being performed setting operation;Either,
The transient service set identifier SSID triggerings are in the corresponding application APP of the gateway device or webpage What virtual key was generated when being performed setting operation.
One of ordinary skill in the art will appreciate that:Realizing all or part of step of above-mentioned each method embodiment can lead to The related hardware of programmed instruction is crossed to complete.Foregoing program can be stored in read/write memory medium.The program is being performed When, the step of execution includes above-mentioned each method embodiment;And foregoing storage medium includes:ROM, RAM, magnetic disc or CD etc. It is various can be with the medium of store program codes.
Finally it should be noted that:Various embodiments above is only to the technical scheme for illustrating the application, rather than its limitations;To the greatest extent The application is described in detail with reference to foregoing embodiments for pipe, it will be understood by those within the art that:Its according to The technical scheme described in foregoing embodiments can so be modified, or which part or all technical characteristic are entered Row equivalent substitution;And these modifications or replacement, the essence of appropriate technical solution is departed from each embodiment technology of the application The scope of scheme.

Claims (10)

1. a kind of control method of Wi-Fi protection settings, it is characterised in that methods described is applied to gateway device, methods described Including:
When receiving transient service set identifier SSID triggerings, generate and record interim SSID;
If it is determined that client is connected to wireless network by the interim SSID, then request dynamic host configuration DHCP service Device is that the client distributes internet protocol address, and records the IP that the Dynamic Host Configuration Protocol server distributes to the client Corresponding relation between location and the interim SSID;
If it is determined that the client disconnection of wireless network connection, then the corresponding relation that has recorded is deleted and described interim SSID。
2. according to the method described in claim 1, it is characterised in that described to delete the interim SSID recorded, specific bag Include:
When the detection cycle of setting is reached, for each interim SSID recorded, searched from the corresponding relation recorded Include the corresponding relation of the corresponding IP address of the interim SSID;
If not finding, the interim SSID is deleted.
3. according to the method described in claim 1, it is characterised in that described to record the Dynamic Host Configuration Protocol server and distribute to the client After corresponding relation between the IP address at end and the interim SSID, methods described also includes:
When the update condition of IP address occurs, the IP address in the corresponding relation is updated.
4. according to the method described in claim 1, it is characterised in that the interim SSID of generation, specifically include:
Random string is automatically generated, and the random string is added to the main SSID's stored in the gateway device Specified location constitutes interim SSID.
5. according to the method described in claim 1, it is characterised in that it is described generate and record interim SSID after, methods described Also include:
The access rights of the interim SSID are set, to be connected to nothing by the interim SSID by the access privilege control The client of gauze network accesses Internet resources.
6. according to the method described in claim 1, it is characterised in that
The transient service set identifier SSID triggerings are that physical button or virtual key on the gateway device are being performed Generated during setting operation;Either,
The transient service set identifier SSID triggerings are virtual in the corresponding application APP of the gateway device or webpage What button was generated when being performed setting operation.
7. a kind of gateway device, it is characterised in that including:Creation module, processing module and removing module, wherein,
The creation module, for when receiving transient service set identifier SSID triggerings, generating and recording interim SSID;
The processing module, for if it is determined that client is connected to wireless network by the interim SSID, then request dynamic master Machine configuration protocol DHCP server is that the client distributes internet protocol address, and records the Dynamic Host Configuration Protocol server distribution To the corresponding relation between the IP address and the interim SSID of the client;
The removing module, for if it is determined that the client disconnection of wireless network connection, then delete the correspondence recorded Relation and the interim SSID.
8. gateway device according to claim 7, it is characterised in that the removing module includes searching unit and deletes single Member, wherein,
The searching unit, during for detection cycle arrival in setting, for each interim SSID recorded, from having recorded Corresponding relation in search the corresponding relation for including the corresponding IP address of the interim SSID;
The deletion unit, for not found from the corresponding relation recorded comprising the interim SSID in the searching unit During the corresponding relation of corresponding IP address, the interim SSID is deleted.
9. gateway device according to claim 7, it is characterised in that
The processing module, is additionally operable to distribute to the IP address of the client and described interim recording the Dynamic Host Configuration Protocol server After corresponding relation between SSID, when the update condition of IP address occurs, the IP address in the corresponding relation is updated.
10. gateway device according to claim 7, it is characterised in that
The creation module, the gateway is added to specifically for automatically generating random string, and by the random string The main SSID stored in equipment specified location constitutes interim SSID.
CN201710486221.8A 2017-06-23 2017-06-23 Control method for Wi-Fi protection setting and gateway equipment Active CN107295504B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710486221.8A CN107295504B (en) 2017-06-23 2017-06-23 Control method for Wi-Fi protection setting and gateway equipment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710486221.8A CN107295504B (en) 2017-06-23 2017-06-23 Control method for Wi-Fi protection setting and gateway equipment

Publications (2)

Publication Number Publication Date
CN107295504A true CN107295504A (en) 2017-10-24
CN107295504B CN107295504B (en) 2020-03-10

Family

ID=60098152

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710486221.8A Active CN107295504B (en) 2017-06-23 2017-06-23 Control method for Wi-Fi protection setting and gateway equipment

Country Status (1)

Country Link
CN (1) CN107295504B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110366173A (en) * 2019-08-23 2019-10-22 中国联合网络通信集团有限公司 A kind of method that realizing terminal equipment access network and gateway
CN113727336A (en) * 2021-09-13 2021-11-30 深圳市联洲国际技术有限公司 IOT device and intelligent gateway operation method, terminal device and storage medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101860856A (en) * 2010-04-21 2010-10-13 杭州华三通信技术有限公司 Method and equipment for providing differentiated service in wireless local area network
CN101895875A (en) * 2010-07-29 2010-11-24 杭州华三通信技术有限公司 Method and system of using gateway device to provide differentiated services in wireless network
CN102711215A (en) * 2012-05-23 2012-10-03 海信集团有限公司 Method and system for automatically connecting wireless network and smart television
US20160337922A1 (en) * 2015-05-14 2016-11-17 Nokia Technologies Oy RAN-WLAN Traffic Steering
CN106547496A (en) * 2015-09-17 2017-03-29 佳能株式会社 The control method of the communicator with direct wireless communication function and communicator

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101860856A (en) * 2010-04-21 2010-10-13 杭州华三通信技术有限公司 Method and equipment for providing differentiated service in wireless local area network
CN101895875A (en) * 2010-07-29 2010-11-24 杭州华三通信技术有限公司 Method and system of using gateway device to provide differentiated services in wireless network
CN102711215A (en) * 2012-05-23 2012-10-03 海信集团有限公司 Method and system for automatically connecting wireless network and smart television
US20160337922A1 (en) * 2015-05-14 2016-11-17 Nokia Technologies Oy RAN-WLAN Traffic Steering
CN106547496A (en) * 2015-09-17 2017-03-29 佳能株式会社 The control method of the communicator with direct wireless communication function and communicator

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110366173A (en) * 2019-08-23 2019-10-22 中国联合网络通信集团有限公司 A kind of method that realizing terminal equipment access network and gateway
CN113727336A (en) * 2021-09-13 2021-11-30 深圳市联洲国际技术有限公司 IOT device and intelligent gateway operation method, terminal device and storage medium
CN113727336B (en) * 2021-09-13 2024-01-16 深圳市联洲国际技术有限公司 Operation method of IOT equipment and intelligent gateway, terminal equipment and storage medium

Also Published As

Publication number Publication date
CN107295504B (en) 2020-03-10

Similar Documents

Publication Publication Date Title
US10250613B2 (en) Data access method based on cloud computing platform, and user terminal
RU2009133260A (en) SUPPORT CALLS WITHOUT UICC
WO2015058680A1 (en) Network access control
CN111447220B (en) Authentication information management method, server of application system and computer storage medium
US11483395B2 (en) Wireless event correlation using anonymous data
US20140215217A1 (en) Secure Communication
CA3087924C (en) Methods for securing data
CN107359990A (en) A kind of secret information processing method, apparatus and system
CN106878084A (en) A kind of authority control method and device
WO2018024176A1 (en) Device and method preventing repeated logins of same user
CN107196917A (en) A kind of service response method and its middleware
CN101986598A (en) Authentication method, server and system
KR20220128993A (en) Method, device, and system for generating and managing anchor keys in a communication network for encrypted communication with service applications
CN106685785A (en) Intranet access system based on IPsec VPN proxy
CN107295504A (en) The control method and gateway device of a kind of Wi Fi protection settings
CN105224262A (en) Data processing method
CN105183402A (en) Data storage method
CN108156111A (en) The treating method and apparatus of network service permission
WO2021098213A1 (en) Trusted state monitoring method, device, and medium
WO2020147854A1 (en) Authentication method, apparatus and system, and storage medium
JP2001282667A (en) Authentication server-client system
CN105407091A (en) Data processing method
CN205080542U (en) Data storage device
CN105302490A (en) Data storage method
CN107888383A (en) Login authentication method and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant