CN107846410B - Network access verification method and device - Google Patents
Network access verification method and device Download PDFInfo
- Publication number
- CN107846410B CN107846410B CN201711190222.4A CN201711190222A CN107846410B CN 107846410 B CN107846410 B CN 107846410B CN 201711190222 A CN201711190222 A CN 201711190222A CN 107846410 B CN107846410 B CN 107846410B
- Authority
- CN
- China
- Prior art keywords
- terminal
- access
- visitor
- router
- network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0861—Network architectures or network communication protocols for network security for authentication of entities using biometrical features, e.g. fingerprint, retina-scan
Abstract
The invention provides a method and a device for network access verification, wherein the method comprises the following steps: receiving access authentication information sent by an access terminal, wherein the access authentication information is generated according to a face image of an access terminal user when the access terminal is registered in a network; and performing network access verification on the access terminal based on the network access verification information, and if the verification is successful, allowing the access terminal to access the network of the router. According to the invention, the network access authentication information for replacing the traditional password is formed according to the face image of the user, and compared with the traditional password authentication mode, the authentication mode is more difficult to break. When a common visitor is connected with the router, the permission of a manager of the router needs to be obtained; when an illegal visitor accesses the router, the manager of the router is informed, so that the safety of the access visitor is ensured. The router is simple in mode, users do not need to have professional knowledge, and the router is easy to operate and convenient to manage.
Description
Technical Field
The invention relates to the technical field of internet, in particular to a method and a device for network access verification.
Background
With the rise of terminals such as mobile phones, tablet computers, intelligent hardware and the like, the network security of terminal users is more and more threatened. The router is an essential part of the home network, and is a network center of the home network, so the router must have high security. A conventional router generally adopts a password authentication method to perform network connection, a general flow of performing network setting on the router is shown in fig. 1, and a user registers through a website, sets passwords of the router and WiFi, and then connects to a network through broadband dialing. Since configuring the router generally requires professional knowledge, a general user sets the router to have a low complexity or uses a default password, so that the router is easily cracked violently, thereby causing problems of network instability and important information leakage. Due to the complexity of configuring the router, most end users do not pay attention to the network security, thereby bringing about serious hidden dangers. In addition, the router in the prior art also has the problem that the connected user information is not convenient to check and the state of the router is inconvenient.
Disclosure of Invention
The technical problem to be solved by the invention is to provide a method and a device for network access verification, which improve the security and the usability of a router and facilitate the management of the internet access behavior of a visitor terminal.
The invention adopts the technical scheme that a network access verification method is applied to a router and comprises the following steps:
receiving access authentication information sent by an access terminal, wherein the access authentication information is generated according to a face image of an access terminal user when the access terminal is registered in a network;
and performing network access verification on the access terminal based on the network access verification information, and if the verification is successful, allowing the access terminal to access the network of the router.
Optionally, when the access terminal is a router management terminal, before receiving the network access authentication information sent by the access terminal, the method further includes:
the router management terminal is registered in a network, and a face image of a management terminal user sent by the router management terminal is received;
according to the face image of the management terminal user, calculating the network access verification information of the router management terminal according to a set algorithm;
and storing the network access authentication information of the router management terminal, and sending the network access authentication information of the router management terminal to the router management terminal.
Optionally, when the access terminal is a guest terminal, before receiving the network access authentication information sent by the access terminal, the method further includes:
the method comprises the steps of performing network access registration on a visitor terminal, and receiving a face image of a visitor terminal user sent by the visitor terminal;
sending the face image of the visitor terminal user to a router management terminal so that the router management terminal can perform identity authentication on the visitor terminal according to the face image of the visitor terminal user;
when receiving the identity authentication success information sent by the router management terminal, calculating the network access verification information of the visitor terminal according to the face image of the visitor terminal user and a set algorithm;
and storing the access verification information of the visitor terminal and sending the access verification information of the visitor terminal to the visitor terminal.
Optionally, sending the face image of the user at the visitor terminal to the router management terminal includes:
judging whether the router management terminal is currently accessed to a network of the router;
if so, sending the face image of the visitor terminal user to the router management terminal;
and if not, sending the face image of the visitor terminal user to an external server, so that the external server sends the face image of the visitor terminal user to the router management terminal.
Optionally, when the access terminal is a guest terminal, the method further includes:
and sending an alarm message to the router management terminal under the condition that the access terminal fails to perform network access verification.
The invention also provides a device for network access verification, which is applied to a router and comprises:
the access terminal comprises a receiving module and a processing module, wherein the receiving module is used for receiving access authentication information sent by the access terminal, and the access authentication information is generated according to a face image of an access terminal user when the access terminal is registered in an access network;
and the verification module is used for performing network access verification on the access terminal based on the network access verification information, and if the verification is successful, allowing the access terminal to access the network of the router.
Optionally, the apparatus further comprises:
the manager registration module is used for performing network access registration on the router management terminal and receiving the face image of the management terminal user sent by the router management terminal; according to the face image of the management terminal user, calculating the network access verification information of the router management terminal according to a set algorithm; and storing the network access authentication information of the router management terminal, and sending the network access authentication information of the router management terminal to the router management terminal.
Optionally, the apparatus further comprises:
the visitor registration module is used for performing network access registration on the visitor terminal and receiving a face image of a visitor terminal user sent by the visitor terminal; sending the face image of the visitor terminal user to a router management terminal so that the router management terminal can perform identity authentication on the visitor terminal according to the face image of the visitor terminal user; when receiving the identity authentication success information sent by the router management terminal, calculating the network access verification information of the visitor terminal according to the face image of the visitor terminal user and a set algorithm; and storing the access verification information of the visitor terminal and sending the access verification information of the visitor terminal to the visitor terminal.
Optionally, the visitor registration module is specifically configured to:
judging whether the router management terminal is currently accessed to a network of the router; if so, sending the face image of the visitor terminal user to the router management terminal; and if not, sending the face image of the visitor terminal user to an external server, so that the external server sends the face image of the visitor terminal user to the router management terminal.
Optionally, the apparatus further comprises:
and the alarm module is used for sending an alarm message to the router management terminal under the condition that the access terminal fails to perform network access verification.
By adopting the technical scheme, the invention at least has the following advantages:
the network access authentication method and device provided by the invention adopt the face recognition technology, and form the network access authentication information for replacing the traditional password according to the face image of the user, and compared with the traditional password authentication mode, the authentication mode provided by the invention is more difficult to solve. When a common visitor is connected with the router, the permission of a manager of the router needs to be obtained; when an illegal visitor accesses the router, the manager of the router is informed, so that the safety of the access visitor is ensured. Corresponding to the traditional mode of setting the router, the mode of setting the router is simple, the user does not need to have professional knowledge, and the method is easy to operate and convenient to manage.
Drawings
FIG. 1 is a flow chart of a prior art network entry arrangement;
fig. 2 is a flowchart of a method for network access authentication according to a first embodiment of the present invention;
fig. 3 is a schematic diagram illustrating a manager performing internet surfing setting through a management terminal according to a second embodiment of the present invention;
fig. 4 is a flowchart illustrating a manager performing internet access setting according to a second embodiment of the present invention;
FIG. 5 is a flowchart of the administrator re-accessing the network in the second embodiment of the present invention;
fig. 6 is a schematic diagram illustrating a router authenticating an identity of a visitor in a first scenario according to a third embodiment of the present invention;
fig. 7 is a flowchart illustrating a router authenticating a visitor under a first scenario in a third embodiment of the present invention;
FIG. 8 is a flowchart illustrating the visitor re-accesses the network under the first scenario in the third embodiment of the present invention;
fig. 9 is a schematic diagram of a router authenticating a visitor under a second scenario in a third embodiment of the present invention;
FIG. 10 is a flowchart illustrating a router authenticating a visitor under a second scenario in a third embodiment of the present invention;
FIG. 11 is a flowchart of the visitor re-accessing the network in the second scenario of the third embodiment of the present invention;
fig. 12 is a schematic structural diagram of a network access authentication apparatus according to a fourth embodiment of the present invention.
Detailed Description
To further explain the technical means and effects of the present invention adopted to achieve the intended purpose, the present invention will be described in detail with reference to the accompanying drawings and preferred embodiments.
A first embodiment of the present invention provides a method for network access authentication, as shown in fig. 2, which specifically includes the following steps:
step S201: and receiving access authentication information sent by the access terminal, wherein the access authentication information is generated by the access terminal according to a face image of an access terminal user during access registration.
Wherein, the access terminal includes: a router management terminal and a visitor terminal; the router management terminal is used for managing the internet access behavior of the visitor terminal.
Specifically, when the access terminal is a router management terminal, before receiving the network access authentication information sent by the access terminal, the method further includes:
step A1: the router management terminal is registered in a network, and a face image of a management terminal user sent by the router management terminal is received; the face image of the management terminal user is acquired through a camera of the management terminal;
step A2: according to the face image of the management terminal user, calculating the network access verification information of the router management terminal according to a set algorithm;
step A3: and storing the network access authentication information of the router management terminal, and sending the network access authentication information of the router management terminal to the router management terminal.
When the router management terminal is connected with the network of the router for the first time, the face image of a management terminal user is obtained through the camera of the management terminal. The router generates network access verification information according to the face image of the management terminal user, and stores the network access verification information into the router and the router management terminal. When the router management terminal is connected with the network of the router again, the router management terminal only needs to send the network access verification information to the router, and the router carries out network access verification according to the network access verification information.
Further, when the access terminal is a visitor terminal, before receiving the network access authentication information sent by the access terminal, the method further includes:
step B1: the method comprises the steps of performing network access registration on a visitor terminal, and receiving a face image of a visitor terminal user sent by the visitor terminal; the method comprises the steps that a face image of a user of a visitor terminal is acquired through a camera of the visitor terminal;
step B2: sending the face image of the visitor terminal user to a router management terminal so that the router management terminal can perform identity authentication on the visitor terminal according to the face image of the visitor terminal user;
step B3: when receiving the identity authentication success information sent by the router management terminal, calculating the network access verification information of the visitor terminal according to the face image of the visitor terminal user and a set algorithm;
step B4: and storing the access verification information of the visitor terminal and sending the access verification information of the visitor terminal to the visitor terminal.
When the visitor terminal is connected with the network of the router for the first time, the face image of the user of the visitor terminal is obtained through the camera of the visitor terminal. And the router sends the face image of the visitor terminal user to the router management terminal. And the router management terminal judges whether the visitor terminal is a trustable user terminal or not according to the face image of the user of the guest terminal, and if so, the router calculates and generates network access verification information according to the face image of the user of the guest terminal. And storing the network access authentication information into the router and the management terminal. When the visitor terminal is connected with the network of the router again, the visitor terminal only needs to send the access verification information to the router, and the router carries out access verification according to the access verification information.
Further, the sending the face image of the visitor terminal user to the router management terminal includes:
judging whether the router management terminal is currently accessed to a network of the router;
if so, sending the face image of the visitor terminal user to the router management terminal;
and if not, sending the face image of the visitor terminal user to an external server, so that the external server sends the face image of the visitor terminal user to the router management terminal.
Step S202: and performing network access verification on the access terminal based on the network access verification information, and if the verification is successful, allowing the access terminal to access the network of the router.
Specifically, when the access terminal is a visitor terminal, the method further includes:
and sending an alarm message to the router management terminal under the condition that the access terminal fails to perform network access verification.
A second embodiment of the present invention is a method for network access authentication, which is applied between a visitor terminal, a management terminal, a router, an external server, and the internet.
The visitor is connected with the Internet through the visitor terminal, and the visitor terminal is a terminal for realizing connection with the router to surf the Internet.
And the manager manages the router through the management terminal. The management terminal is provided with a manager APP for managing the router, and the manager manages the router, performs access authorization on the visitor terminal and checks the state of the router through the manager APP.
A router is a device used to connect to the internet.
And the external server is used for forwarding the network access request of the visitor terminal and the access permission of the management terminal when the management terminal is not in the service range of the router.
When the administrator uses the router for the first time, the administrator needs to perform internet access setting on the router, as shown in fig. 3, which is a schematic diagram of the administrator performing internet access setting through the management terminal. When the administrator sets the internet through the management terminal, the face portrait of the administrator needs to be acquired. After the internet surfing setting is successful, a manager APP is installed on the management terminal, and the number of the online people currently accessing the Internet can be displayed through the manager APP.
As shown in fig. 4, the internet access setting specifically includes the following steps:
step S401: and the manager enters an internet surfing setting page through the management terminal.
As in the prior art, the administrator may enter the Internet settings page via the web site http:// 192.168.1.1.
Step S402: and acquiring a face image of a manager through a camera of the management terminal.
When the manager enters the internet access setting page, the face image information of the manager is required to be input.
Step S403: judging whether the face image of the manager meets the set requirements, if so, executing a step S404; if not, the process is ended.
The setting requirements include: whether the face image is clear and complete.
Step S404: and the management terminal sends the face image of the manager to the router.
Step S405: the router calculates the face recognition code of the manager according to the face image of the manager and a set algorithm, and sends the face recognition code to the management terminal.
The administrator face identification code in this embodiment is equivalent to the administrator network access information in the first embodiment.
Step S406: the router acquires the MAC address information and the IMEI information of the management terminal from the management terminal.
Step S407: the manager inputs the broadband account number to carry out dial-up connection.
Step S408; the router judges whether the dial-up on the internet is successful, if so, the step S409 is executed; if not, the process is ended.
Step S409: and the router sends the MAC address information, the IMEI information and the face identification code of the manager of the management terminal to an external server.
Specifically, after the administrator successfully sets the internet access, the management terminal, the router, and the external server store: MAC address information, IMEI information and manager face identification code of the management terminal.
Further, when the administrator accesses the internet again, as shown in fig. 5, the internet is accessed according to the following steps:
step S501: and the management terminal sends the network access request information to the router. Wherein, the network access request information comprises: MAC address information, IMEI information and manager face identification code of the management terminal.
Step S502: the router verifies the network access request information, if the verification is successful, step S503 is executed, and if not, the process is ended.
Step S503: the router allows the management terminal to access the internet.
A third embodiment of the present invention is a method for network access authentication, which is applied between a visitor terminal, a management terminal, a router, an external server, and the internet.
When the visitor accesses the router for the first time, identity authentication needs to be carried out on the visitor, and the router carries out identity authentication on the visitor and comprises the following two scenes:
the first method comprises the following steps: the management terminal is in the service range of the router, namely the management terminal is currently accessed to the router.
And the second method comprises the following steps: the pipe terminal is not in the service range of the router, namely the management terminal is not accessed to the router currently.
Fig. 6 is a schematic diagram illustrating that in the first scenario, the router authenticates the visitor. The router forwards the received network access request of the visitor to the management terminal, the management terminal authenticates the identity of the visitor, if the authentication is successful, the visitor is allowed to access the network through the router, and if the authentication is failed, the visitor is not allowed to access the router.
As shown in fig. 7, in the first scenario, the process of the router authenticating the identity of the visitor specifically includes the following steps:
step S701: the visitor requests access to the router through the visitor terminal.
Step S702: and acquiring a face image of the visitor through a camera of the visitor terminal.
Step S703: the router verifies whether the face image of the visitor meets the set requirements, and if so, the step S704 is executed; if not, the process is ended.
Step S704: the router sends the face image of the visitor to the management terminal.
Specifically, the router sends the face image of the visitor to the management terminal according to the stored MAC address information of the management terminal.
Step S705: and the manager judges whether the visitor terminal is allowed to access the router or not according to the face information of the visitor, if so, the step S706 is executed, and if not, the process is ended.
The manager can check the face information of the visitor through the management terminal, so that whether the visitor is a trusted visitor is judged, and the judgment result is fed back to the router.
Step S706: the router generates a visitor face identification code according to the face information of the visitor and sends the visitor face identification code to the visitor terminal.
The visitor identification code in this embodiment is equivalent to the visitor network entry information in the first embodiment.
Step S707: and the router acquires the MAC address information and the IMEI information of the visitor terminal.
Step S708: and the router sends the MAC address information, IMEI information and the face identification code of the visitor to an external server.
Further, when the visitor accesses the internet again, as shown in fig. 8, the visitor accesses the internet according to the following steps:
step S801: and the visitor terminal sends the network access request information to the router. Wherein, the network access request information comprises: MAC address information, IMEI information and visitor face identification code of visitor's terminal.
Step S802: the router verifies the network access request information, if the verification is successful, step S803 is executed, and if the verification is failed, the process is ended.
In case of a failure in authentication, the router sends a warning message to the management terminal to alert the manager.
Step S803: the router allows the guest terminal to access the internet and transmits guest access information to the management terminal. The visitor access information includes: the visitor terminal comprises a face image, MAC address information and IMEI information, wherein the face image is input by the visitor when the visitor first accesses the network.
The manager judges whether the visitor accessing the network is legal by checking the visitor access information so as to take corresponding measures when the manager finds that the illegal visitor accesses the network.
Fig. 9 is a schematic diagram illustrating the identity authentication of the visitor by the device in the second scenario. The router forwards the received network access request of the visitor to an external server, the external server sends the network access request to the management terminal, the management terminal performs identity authentication on the visitor, if the authentication is successful, the visitor is allowed to access the network through the router, and if the authentication is failed, the visitor is not allowed to access the router.
As shown in fig. 10, in the second scenario, the process of the router authenticating the identity of the visitor specifically includes the following steps:
step S1001: the visitor requests access to the router through the visitor terminal.
Step S1002: and acquiring a face image of the visitor through a camera of the visitor terminal.
Step S1003: the router verifies whether the face image of the visitor meets the set requirement, and if so, the step S1004 is executed; if not, the process is ended.
Step S1004: the router transmits the face image of the visitor to an external server.
Step S1005: and the external server sends the face image of the visitor to the management terminal.
Specifically, the external server sends the face image of the visitor to the management terminal according to the stored MAC address information of the management terminal.
Step S1006: and the manager judges whether the visitor terminal is allowed to access the router or not according to the face information of the visitor, if so, step 1007 is executed, and if not, the process is ended.
Step S1007: the router generates a visitor face identification code according to the face information of the visitor and sends the visitor face identification code to the visitor terminal.
Step S1008: and the router acquires the MAC address information and the IMEI information of the visitor terminal.
Step S1009: and the router sends the MAC address information, IMEI information and the face identification code of the visitor to an external server.
Further, when the visitor accesses the internet again, as shown in fig. 11, the visitor accesses the internet according to the following steps:
step S1101: and the visitor terminal sends the network access request information to the router. Wherein, the network access request information comprises: MAC address information, IMEI information and visitor face identification code of visitor's terminal.
Step S1102: the router verifies the network access request information, if the verification is successful, step S1103 is executed, and if the verification is unsuccessful, the process is ended.
Step S1103: the router allows the management terminal to access the internet and transmit visitor access information to an external server. The visitor access information includes: the visitor terminal comprises a face image, MAC address information and IMEI information, wherein the face image is input by the visitor when the visitor first accesses the network.
Step S1104: and the external server sends the visitor access information to the management terminal.
The manager judges whether the visitor accessing the network is legal by checking the visitor access information so as to take corresponding measures when the manager finds that the illegal visitor accesses the network.
A fourth embodiment of the present invention provides a device for network access authentication, as shown in fig. 12, which specifically includes the following components:
1) the receiving module 1201 is configured to receive access authentication information sent by an access terminal, where the access authentication information is generated according to a face image of an access terminal user when the access terminal performs access registration.
Wherein, the access terminal includes: a router management terminal and a visitor terminal; the router management terminal is used for managing the internet access behavior of the visitor terminal.
Specifically, the device further comprises:
the manager registration module is used for performing network access registration on the router management terminal and receiving the face image of the management terminal user sent by the router management terminal; the face image of the management terminal user is acquired through a camera of the management terminal; according to the face image of the management terminal user, calculating the network access verification information of the router management terminal according to a set algorithm; and storing the network access authentication information of the router management terminal, and sending the network access authentication information of the router management terminal to the router management terminal.
When the router management terminal is connected with the network of the router for the first time, the face image of a management terminal user is obtained through the camera of the management terminal. The router generates network access verification information according to the face image of the management terminal user, and stores the network access verification information into the router and the router management terminal. When the router management terminal is connected with the network of the router again, the router management terminal only needs to send the network access verification information to the router, and the router carries out network access verification according to the network access verification information.
Further, the apparatus further comprises:
the visitor registration module is used for performing network access registration on the visitor terminal and receiving a face image of a visitor terminal user sent by the visitor terminal; the method comprises the steps that a face image of a user of a visitor terminal is acquired through a camera of the visitor terminal; sending the face image of the visitor terminal user to a router management terminal so that the router management terminal can perform identity authentication on the visitor terminal according to the face image of the visitor terminal user; when receiving the identity authentication success information sent by the router management terminal, calculating the network access verification information of the visitor terminal according to the face image of the visitor terminal user and a set algorithm; and storing the access verification information of the visitor terminal and sending the access verification information of the visitor terminal to the visitor terminal.
When the visitor terminal is connected with the network of the router for the first time, the face image of the user of the visitor terminal is obtained through the camera of the visitor terminal. And the router sends the face image of the visitor terminal user to the router management terminal. And the router management terminal judges whether the visitor terminal is a trustable user terminal or not according to the face image of the user of the guest terminal, and if so, the router calculates and generates network access verification information according to the face image of the user of the guest terminal. And storing the network access authentication information into the router and the management terminal. When the visitor terminal is connected with the network of the router again, the visitor terminal only needs to send the network access verification information to the router, and the router carries out network access verification according to the network access verification information.
Further, the visitor registration module is specifically configured to:
judging whether the router management terminal is currently accessed to a network of the router; if so, sending the face image of the visitor terminal user to the router management terminal; and if not, sending the face image of the visitor terminal user to an external server, so that the external server sends the face image of the visitor terminal user to the router management terminal.
2) And the verification module 1202 is configured to perform network access verification on the access terminal based on the network access verification information, and if the verification is successful, allow the access terminal to access the network of the router.
Specifically, the device further comprises:
and the alarm module is used for sending an alarm message to the router management terminal under the condition that the access terminal fails to perform network access verification.
The network access authentication method and device introduced in the embodiment of the invention adopt the face recognition technology, and form the network access authentication information for replacing the traditional password according to the face image of the user, and compared with the traditional password authentication mode, the authentication mode of the invention is more difficult to be solved. When a common visitor is connected with the router, the permission of a manager of the router needs to be obtained; when an illegal visitor accesses the router, the manager of the router is informed, so that the safety of the access visitor is ensured. Corresponding to the traditional mode of setting the router, the mode of setting the router is simple, the user does not need to have professional knowledge, and the method is easy to operate and convenient to manage.
While the invention has been described in connection with specific embodiments thereof, it is to be understood that it is intended by the appended drawings and description that the invention may be embodied in other specific forms without departing from the spirit or scope of the invention.
Claims (8)
1. A method for network access authentication, applied to a router, the method comprising:
receiving access authentication information sent by an access terminal, wherein the access authentication information is generated according to a face image of an access terminal user when the access terminal is registered in an access network;
performing network access verification on the access terminal based on the network access verification information, and if the verification is successful, allowing the access terminal to access the network of the router;
when the access terminal is a visitor terminal, before receiving the network access authentication information sent by the access terminal, the method further includes:
the visitor terminal is registered in a network, and a face image of a visitor terminal user sent by the visitor terminal is received;
sending the face image of the visitor terminal user to a router management terminal so that the router management terminal can perform identity authentication on the visitor terminal according to the face image of the visitor terminal user;
when receiving identity authentication success information sent by the router management terminal, calculating network access verification information of the visitor terminal according to a set algorithm and a face image of a visitor terminal user;
and storing the network access verification information of the visitor terminal, and sending the network access verification information of the visitor terminal to the visitor terminal.
2. The method for network access authentication according to claim 1, wherein when the access terminal is a router management terminal, before the receiving the network access authentication information sent by the access terminal, the method further comprises:
performing network access registration on the router management terminal, and receiving a face image of a management terminal user sent by the router management terminal;
according to the face image of the management terminal user, calculating the network access verification information of the router management terminal according to a set algorithm;
and storing the network access authentication information of the router management terminal, and sending the network access authentication information of the router management terminal to the router management terminal.
3. The method for network entry authentication according to claim 1, wherein before sending the face image of the guest terminal user to a router management terminal, the method further comprises:
judging whether the router management terminal is currently accessed to the network of the router;
if so, sending the face image of the visitor terminal user to the router management terminal;
and if not, sending the face image of the visitor terminal user to an external server, so that the external server sends the face image of the visitor terminal user to the router management terminal.
4. The method of claim 1, wherein when the access terminal is a guest terminal, after performing network access authentication on the access terminal based on the network access authentication information, the method further comprises:
and sending an alarm message to the router management terminal under the condition that the access terminal fails to perform network access verification.
5. An apparatus for network access authentication, applied to a router, the apparatus comprising:
the system comprises a receiving module, a verification module and a verification module, wherein the receiving module is used for receiving access verification information sent by an access terminal, and the access verification information is generated according to a face image of an access terminal user when the access terminal is registered in an access network;
the verification module is used for carrying out network access verification on the access terminal based on the network access verification information, and if the verification is successful, the access terminal is allowed to access the network of the router;
the device further comprises:
the visitor registration module is used for carrying out network access registration on a visitor terminal and receiving a face image of a visitor terminal user sent by the visitor terminal; sending the face image of the visitor terminal user to the router management terminal so that the router management terminal can perform identity authentication on the visitor terminal according to the face image of the visitor terminal user;
when receiving identity authentication success information sent by the router management terminal, calculating network access verification information of the visitor terminal according to a set algorithm and a face image of a visitor terminal user; and storing the network access verification information of the visitor terminal, and sending the network access verification information of the visitor terminal to the visitor terminal.
6. The apparatus for network entry authentication according to claim 5, further comprising:
the manager registration module is used for performing network access registration on the router management terminal and receiving the face image of the management terminal user sent by the router management terminal; according to the face image of the management terminal user, calculating the network access verification information of the router management terminal according to a set algorithm; and storing the network access authentication information of the router management terminal, and sending the network access authentication information of the router management terminal to the router management terminal.
7. The apparatus for network entry authentication of claim 5, wherein the guest registration module is specifically configured to:
judging whether the router management terminal is currently accessed to the network of the router; if so, sending the face image of the visitor terminal user to the router management terminal; and if not, sending the face image of the visitor terminal user to an external server, so that the external server sends the face image of the visitor terminal user to the router management terminal.
8. The apparatus for network entry authentication according to claim 5, further comprising:
and the alarm module is used for sending an alarm message to the router management terminal under the condition that the access terminal fails to perform network access verification.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711190222.4A CN107846410B (en) | 2017-11-24 | 2017-11-24 | Network access verification method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711190222.4A CN107846410B (en) | 2017-11-24 | 2017-11-24 | Network access verification method and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN107846410A CN107846410A (en) | 2018-03-27 |
| CN107846410B true CN107846410B (en) | 2021-06-11 |
Family
ID=61680200
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201711190222.4A Active CN107846410B (en) | 2017-11-24 | 2017-11-24 | Network access verification method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107846410B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108540497A (en) * | 2018-06-01 | 2018-09-14 | 深圳市彬讯科技有限公司 | Intelligent gateway and its connection control method |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103475667A (en) * | 2013-09-24 | 2013-12-25 | 小米科技有限责任公司 | Method, device and system for controlling access router |
| CN105636036A (en) * | 2015-05-29 | 2016-06-01 | 宇龙计算机通信科技(深圳)有限公司 | Wi-Fi connection control method, terminal and Wi-Fi device |
| CN106572470A (en) * | 2016-10-19 | 2017-04-19 | 广东欧珀移动通信有限公司 | Network access method, mobile terminal and gateway device |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109525555B (en) * | 2014-03-27 | 2022-04-08 | 创新先进技术有限公司 | Online registration and authentication method and device |
| CN105657695A (en) * | 2015-10-22 | 2016-06-08 | 乐视移动智能信息技术(北京)有限公司 | Method, terminal and system for connecting to Wi-Fi |
-
2017
- 2017-11-24 CN CN201711190222.4A patent/CN107846410B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103475667A (en) * | 2013-09-24 | 2013-12-25 | 小米科技有限责任公司 | Method, device and system for controlling access router |
| CN105636036A (en) * | 2015-05-29 | 2016-06-01 | 宇龙计算机通信科技(深圳)有限公司 | Wi-Fi connection control method, terminal and Wi-Fi device |
| CN106572470A (en) * | 2016-10-19 | 2017-04-19 | 广东欧珀移动通信有限公司 | Network access method, mobile terminal and gateway device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN107846410A (en) | 2018-03-27 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP3691215B1 (en) | Access token management method, terminal and server | |
| KR101904338B1 (en) | Method and apparatus for user authentication and human intention verification in a mobile device | |
| CN107040927B (en) | Wireless network hotspot sharing method and device, computer device and storage medium | |
| US9781105B2 (en) | Fallback identity authentication techniques | |
| US20100197293A1 (en) | Remote computer access authentication using a mobile device | |
| EP4024809A1 (en) | Application access method and apparatus, and electronic device and storage medium | |
| CN107113613B (en) | Server, mobile terminal, network real-name authentication system and method | |
| EP2692162A1 (en) | Connecting mobile devices, internet-connected vehicles, and cloud services | |
| WO2016078419A1 (en) | Open authorization method, device and open platform | |
| WO2017166689A1 (en) | Privacy protection method and device | |
| CN106161475B (en) | Method and device for realizing user authentication | |
| CN103874065A (en) | Method and device for judging user position abnormity | |
| WO2014190853A1 (en) | Service locking method, apparatuses and systems thereof | |
| CN111405036A (en) | Service access method, device, related equipment and computer readable storage medium | |
| CN112187465B (en) | Non-inductive login method, device, computer equipment and storage medium | |
| US9235696B1 (en) | User authentication using a portable mobile device | |
| CN110730446A (en) | Login method, terminal and computer storage medium | |
| CN107645474B (en) | Method and device for logging in open platform | |
| CN107846410B (en) | Network access verification method and device | |
| KR20160027824A (en) | Method of user authentication uisng usim information and device for user authentication performing the same | |
| CN106533685B (en) | Identity authentication method, device and system | |
| CN114760082A (en) | Access control method and device | |
| CN113852958A (en) | 5G authentication method, 5G automatic account opening method, device, system and storage medium | |
| KR101879842B1 (en) | User authentication method and system using one time password | |
| CN114844674B (en) | Dynamic authorization method, system, electronic equipment and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| TA01 | Transfer of patent application right | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20191225 Address after: 100086, room 601-606, room 6, Pacific International Building, No. 106, Haidian District, Beijing, Zhichun Road Applicant after: Haier Youjia Intelligent Technology (Beijing) Co., Ltd. Applicant after: Qingdao Haier Science and Technology Co., Ltd. Address before: 100086, room 601-606, room 6, Pacific International Building, No. 106, Haidian District, Beijing, Zhichun Road Applicant before: Haier Youjia Intelligent Technology (Beijing) Co., Ltd. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |