The content of the invention
Present invention seek to address that problem as described above.It is an object of the present invention to provide in a kind of solution problem above
Any one method for network access and system.
According to the first aspect of the invention, a kind of method for network access, including:
Equipment to be accessed obtains interim access information according to preset identity information, and the interim access information includes interim
Service set SSID and corresponding temporary password;
The equipment to be accessed is according to the interim access information, access control point equipment, described to control point device as
The equipment for accessing objective network;
The equipment to be accessed obtains the access information of the objective network from the control point device;
The equipment to be accessed accesses the objective network according to the access information of the objective network.
Preferably, the identity information includes unique mark and temporary information algorithm, is obtained according to preset identity information
Access information is specially temporarily:
According to preset unique mark and temporary information algorithm, the interim access information is calculated.
Preferably, the identity information includes unique mark and the interim access information, according to preset identity information
Obtaining interim access information is specially:
The identity information being locally stored is read, therefrom extracts the interim access information.
Preferably, this method further includes:
In the access information for receiving the objective network simultaneously, the control point mark of the control point device is also received
Know, point device is controlled described in the control point identification unique mark.
Preferably, this method further includes:
When accessing the objective network, the control point device is sent to the access management product of the objective network
Control point identification.
According to another aspect of the present invention, a kind of method for network access, including:
Control point device in objective network obtains the interim access letter of the equipment to be accessed when finding equipment to be accessed
Breath;
The control point device starts control point equipment mode, reception meets described face according to the interim access information
When access information equipment access;
After the equipment access to be accessed, the control point device sends connecing for objective network to the equipment to be accessed
Enter information, to indicate that the equipment to be accessed accesses the objective network according to the access information of the objective network.
Preferably, when finding equipment to be accessed, the step of interim access information for obtaining the equipment to be accessed, includes:
The unique mark of the equipment to be accessed is obtained from the equipment to be accessed;
Using the unique mark, the interim access information of the equipment to be accessed is asked to cloud system.
Preferably, when finding equipment to be accessed, the step of interim access information for obtaining the equipment to be accessed, includes:
The unique mark of the equipment to be accessed is obtained from the equipment to be accessed;
According to the unique mark and preset temporary information algorithm, the interim access information is calculated.
Preferably, when finding equipment to be accessed, the step of interim access information for obtaining the equipment to be accessed, is specially:
The unique mark of the equipment to be accessed and the interim access information are obtained from the equipment to be accessed.
Preferably, this method further includes:
When sending the access information of objective network to the equipment to be accessed, while send the control of the control point device
Point identification processed.
Preferably, this method further includes:
The checking request that the objective network access management product is sent is received, request is carried in the checking request
Access the unique mark of the equipment to be accessed of the access management product;
Confirm the unique mark whether with obtained from this control point device objective network access information it is to be accessed
Equipment matches;
Response message being sent to the objective network access management product, being passed through when there is the equipment to be accessed to match
The response message notifies the objective network access management product to be proved to be successful, there is no during the equipment to be accessed to match
The objective network access management product authentication failed is notified by the response message.
According to another aspect of the present invention, a kind of network access system, the system include accessing target network-based control
The access management product of point device and the objective network, the system further include equipment to be accessed;
The equipment to be accessed, for obtaining interim access information, the interim access letter according to preset identity information
Breath includes transient service set identifier SSID and corresponding temporary password, according to the interim access information, accesses the control point
Equipment obtains the access information of the objective network from the control point device, according to the access information of the objective network, connects
Enter the objective network;
The control point device, for when finding the equipment to be accessed, obtaining the interim access of the equipment to be accessed
Information according to the interim access information, starts control point equipment mode, and the equipment that reception meets the interim access information connects
Enter, after the equipment access to be accessed, the access that the control point device sends objective network to the equipment to be accessed is believed
Breath, to indicate that the equipment to be accessed accesses the objective network according to the access information of the objective network.
Preferably, the control point device is additionally operable to sending the access information of objective network to the equipment to be accessed
When, while send the control point identification of the control point device.
Preferably, the access management product is additionally operable to receive the control point device that the equipment to be accessed is sent
Control point identification, to it is described control point device send checking request, carried in the checking request request access described in
The unique mark of the equipment to be accessed of access management product shows to be proved to be successful in the response message that the control point device returns
When receive the access of the equipment to be accessed, refuse institute when the response message that the control point device returns shows authentication failed
State the access of access device;
The equipment to be accessed is additionally operable to, when accessing the objective network, set to the access-in management of the objective network
Preparation send the control point identification of the control point device;
The control point device is additionally operable to receive the checking request that the access management product is sent, please in the verification
The unique mark that request accesses the equipment to be accessed of the access management product is carried in asking, whether confirms the unique mark
The equipment to be accessed of access information with obtaining objective network from this control point device matches, and is accessed to the objective network
Management equipment sends response message, and the target network is notified by the response message when there is the equipment to be accessed to match
Network access management product is proved to be successful, there is no notify the mesh by the response message during equipment to be accessed to match
Mark network insertion management equipment authentication failed.
The present invention provides a kind of method for network access and system, equipment to be accessed is faced according to preset identity information acquisition
When access information, the interim access information include transient service set identifier SSID and corresponding temporary password, it is described to be accessed
Equipment is according to the interim access information, access control point equipment, described to control point device to have accessed setting for objective network
Standby, the equipment to be accessed obtains the access information of the objective network from the control point device, according to the objective network
Access information, access the objective network.Equipment to be accessed can directly acquire interim access information, pass through interim access information
Control point device with having accessed objective network, which is established, to be connected, and then the access letter of objective network is obtained by control point device
Breath, solve device hardware to be accessed configuration cause access network process be unable to full automation caused by security it is low with efficiency
The problem of lower, will realize a kind of safe and reliable network insertion mechanism.
Being described below for exemplary embodiment is read with reference to the drawings, other property features of the invention and advantage will
It is apparent from.
Specific embodiment
To make the purpose, technical scheme and advantage of the embodiment of the present invention clearer, below in conjunction with the embodiment of the present invention
In attached drawing, the technical solution in the embodiment of the present invention is clearly and completely described, it is clear that described embodiment is
Part of the embodiment of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, those of ordinary skill in the art
All other embodiments obtained without making creative work belong to the scope of protection of the invention.It needs
Illustrate, in the case where there is no conflict, the feature in embodiment and embodiment in the application can be mutually combined.
Smart machine access network means common at present are as follows:
1.Soft-AP schemes
Start Soft-AP on smart machine, access net is sent after ancillary equipment (can input equipment) access smart machine
The username and password of AP is closed to smart machine, smart machine is and guided to add in access gateway AP, so as to add in WiFi network.This
Scheme is more ripe, is the scheme that current household appliances manufacturer generally supports.Ancillary equipment needs to exit access gateway AP in this flow.
2.ad-hoc schemes
It is similar to the flow of Soft-AP schemes, but ad-hoc is P2P connections.
3. multicast, broadcasting scheme
Data are transmitted by the specific region of 802.11 data packets and complete data transmission.Such as:Due to 802.11 processing groups
Rear three byte of the sowing time with the Destination characteristic identical with three bytes after purpose multicast address, in actual use may be used
Information is transferred to use the variation of multicast address.Length this field transmission information is also based on, sender can lead to
The length for crossing transmission data packet required for changing it is very easily controlled.
4.WiFi Direct schemes
Ancillary equipment is established after WiFi Direct are connected with smart machine and the username and password of access gateway AP is sent
To smart machine, smart machine adds in access gateway AP by the above- mentioned information of reception.Ancillary equipment need not in the process
It is exited from access gateway AP.
5.WPS schemes (WiFi Direct Push Button Connection)
Connection is directly established by starting WPS patterns on smart machine and access routing, smart machine need not be defeated
Enter the SSID and password of residential gateway.But WPS is the optional authentication project of WiFi alliances, therefore the WiFi that smart machine uses
Module not necessarily passes through the certification of WiFi.WPS schemes are primarily present problems with:
PIN code is 8 bit digitals, by way of " exhaustion " general 5500 times or so with regard to PIN code can be cracked, so as to from safety
WiFi P2P connections are seriously limited in property.
WPS Push button add the complexity of system, and should in resource-constrained WiFi equipment (light bulb)
It is bad.
WPS is only that the less high domestic environment of security requirement designs, in the high field of security requirement as intelligence is cured
It treats inapplicable.
6. with outer scheme
It is side of the ancillary equipment by the non-WiFi connections such as BLE, NFC, QR, Short Label String with outer scheme
The SSID and password of access routing are sent to smart machine by formula.
To sum up, for the equipment such as the resource-constrained intelligent appliance of hardware configuration, a kind of safe and reliable network is lacked
Access mechanism.
To solve the above-mentioned problems, the embodiment provides a kind of method for network access and systems.To be accessed
Smart machine can establish connection with having accessed the control point device of objective network, so as to obtain letter needed for access objective network
Breath further completes access.Below in conjunction with the accompanying drawings, the embodiment of the present invention is described in detail.
First with reference to attached drawing, the embodiment of the present invention one is illustrated.
An embodiment of the present invention provides a kind of method for network access, use flow such as Fig. 1 of this method completion network insertion
It is shown, including:
Step 101, equipment to be accessed obtain interim access information according to preset identity information;
The interim access information includes interim SSID and corresponding temporary password.
In the embodiment of the present invention, equipment to be accessed includes smart machine, with WiFi function, can be established with access point
Connection.
When equipment to be accessed is dispatched from the factory, manufacturer generates identity information for equipment to be accessed, can be stored in equipment to be accessed
Memory module in, can be also identified on the surface of equipment to be accessed.
According to the difference that identity information configures, the means that equipment to be accessed obtains interim access information include:
1st, the identity information includes the unique mark of equipment to be accessed and temporary information algorithm, is believed according to preset identity
Breath obtains interim access information:
According to preset unique mark and temporary information algorithm, the interim access information is calculated.
2nd, the identity information includes the unique mark of equipment to be accessed and the interim access information, equipment to be accessed are led to
Cross the identity information for reading and being locally stored, you can therefrom extract the interim access information.
Control point device in step 102, objective network obtains facing for the equipment to be accessed when finding equipment to be accessed
When access information;
This step has no stringent sequential relationship with step 101, in opening of device to be accessed or enters network insertion pattern
Afterwards, you can found by control point device, then can perform this step.
Point device is controlled to have accessed objective network, having had the equipment for receiving other equipment access capability as access point,
Such as smart mobile phone, tablet computer terminal.
It is different according to the configuration mode of equipment identity information to be accessed in this step, in control point device one side, have such as
The lower mode for obtaining interim access information:
1st, the unique mark of the equipment to be accessed is obtained from the equipment to be accessed, uses the unique mark, Xiang Yun
The interim access information of the system request equipment to be accessed.
2nd, the unique mark of the equipment to be accessed is obtained from the equipment to be accessed, according to the unique mark and preset
Temporary information algorithm, the interim access information is calculated.
3rd, the unique mark of the equipment to be accessed and the interim access information are obtained from the equipment to be accessed.
Above-mentioned unique mark, interim access information etc. can be stored in the memory module of equipment to be accessed, at this point, can pass through
The modes such as equipment discovery read to obtain above- mentioned information;Also the equipment surface to be accessed can be identified in, control point device passes through to figure
Input control point is set after the identification of the forms of expression such as shape image, word, Quick Response Code obtains information or reads relevant information by user
It is standby.
Step 103, the control point device start control point equipment mode, receive symbol according to the interim access information
Close the equipment access of the interim access information;
In this step, control point device starts control point equipment mode, itself becomes an access point, receives other and set
It is standby to be accessed with interim access information.
Step 104, the equipment to be accessed are according to the interim access information, access control point equipment;
In this step, when equipment to be accessed detects the wireless signal that SSID is interim SSID, you can use temporary password
Access the control point device.
Step 105, after the equipment to be accessed access, the control point device sends target to the equipment to be accessed
The access information of network, to indicate that the equipment to be accessed accesses the target network according to the access information of the objective network
Network;
The access information of the objective network includes the SSID and access pin of objective network.
Preferably, when sending the access information of objective network to the equipment to be accessed, while the control point is sent
The control point identification of equipment.In this way, in follow-up equipment access objective network to be accessed, can be shown by sending control point identification
The identity of equipment to be accessed is further verified in the source of objective network access information, enhances security.
Step 106, the equipment to be accessed access the objective network according to the access information of the objective network;
Optionally, in the case that control point device has sent control point identification to equipment to be accessed in step 105, this step
In rapid, the control point device can be sent to the access management product of the objective network when accessing the objective network
Control point identification.
After step 106, the access management product (such as gateway) of objective network can be sent according to equipment to be accessed
The access pin of objective network is treated access device and is verified, the access of equipment to be accessed is subjected to when password is correct.
And when control point identification is also had issued when equipment to be accessed is sending password, access management product may be selected
The identity of the equipment to be accessed is further verified to corresponding control point device, specifically as described in step 107-109.
Step 107, access management product receive the control point identification for the control point device that the equipment to be accessed is sent,
Checking request is sent to control point device;
The unique mark that request accesses the equipment to be accessed of the access management product is carried in the checking request.
Whether step 108, control point device confirm the unique mark with obtaining objective network from this control point device
The equipment to be accessed of access information match, show verification result to access management product returning response;
In this step, control point device confirms that local whether there is to the unique mark marking arrangement issues objective network
The record of access information notifies the objective network when confirming the equipment to be accessed for existing and matching by the response message
Access management product is proved to be successful, there is no notify the target by the response message during equipment to be accessed to match
Network insertion management equipment authentication failed.
Step 109, access management product receive when the response message that the control point device returns shows to be proved to be successful
The access of the equipment to be accessed refuses the access when the response message that the control point device returns shows authentication failed
The access of equipment.
Below in conjunction with the accompanying drawings, the embodiment of the present invention two is illustrated.
An embodiment of the present invention provides a kind of method for network access, using home appliance as equipment to be accessed, gateway as
Access management product, the mobile phone of objective network illustrate exemplified by being used as control point device.Smart machine is completed using this method
Access objective network flow as shown in Fig. 2, including:
Step 201, manufacturer are that business is home appliance generation unique mark.
Step 202, mobile phone are found by equipment, detect home appliance, obtain the unique mark of the home appliance.
Step 203, mobile phone obtain interim access information used in home appliance access to cloud platform, including SSID1 and
Password PWD1, mobile phone are formed interim access network, are received to be accessed with PWD1 using itself as access point.Cloud platform is according to unique
Mark and random factor (such as time), dynamic generation SSID1 and PWD1.
Step 204, home appliance start networking flow, carry out time calibration and (carry out time calibration with mobile phone), and according to
Preset algorithm calculates the SSID1 and PWD1 of network to be accessed.
Step 205, home appliance send access request to mobile phone, carry PWD1 and unique mark of the home appliance wherein
Know.
Step 206, mobile phone verify the unique mark of the home appliance, agree to network after being verified, i.e. agree to household electrical appliances
Equipment accesses the casual network of mobile phone.
The access information of step 207, home appliance acquisition request objective network, including SSID2 and password PWD2.
The SSID2 and PWD2 of the objective network that oneself is preserved are sent to home appliance by step 208, mobile phone.
Step 209, home appliance show to have received SSID2 and PWD2 to handset replies response message.
Step 210, mobile phone close casual network, that is, close WiFi after the response message that step 209 is beamed back is received
Ap mode.
Step 211, home appliance request access gateway.
Step 212, gateway verify the unique mark of the home appliance to handset requests, receive the verification knot that mobile phone returns
Fruit.
Step 213, mobile phone verify the home appliance be via the mobile phone obtain objective network SSID2 and PWD2 when,
Agree to that the home appliance accesses objective network.
Below in conjunction with the accompanying drawings, the embodiment of the present invention three is illustrated.
An embodiment of the present invention provides a kind of method for network access, using home appliance as equipment to be accessed, gateway as
Access management product, the mobile phone of objective network illustrate exemplified by being used as control point device.Smart machine is completed using this method
Access objective network flow as shown in figure 3, including:
Step 301, manufacturer are the interim access information that business is home appliance generation unique mark and interim access network,
Interim access information includes SSID1 and PWD1.
Step 302, mobile phone obtain unique mark, SSID1 and the password PWD1 of the home appliance, and mobile phone is using itself as connecing
Access point is formed interim access network, receives to be accessed with PWD1.
Step 303, home appliance send access request to mobile phone, carry PWD1 and unique mark of the home appliance wherein
Know.
Step 304, mobile phone verify the unique mark of the home appliance, agree to network after being verified, i.e. agree to household electrical appliances
Equipment accesses the casual network of mobile phone.
The access information of step 305, home appliance acquisition request objective network, including SSID2 and password PWD2.
The SSID2 and PWD2 of the objective network that oneself is preserved are sent to home appliance by step 306, mobile phone.
Step 307, home appliance show to have received SSID2 and PWD2 to handset replies response message.
Step 308, mobile phone close casual network, that is, close WiFi after the response message that step 307 is beamed back is received
Ap mode.
Step 309, home appliance access gateway.
Below in conjunction with the accompanying drawings, the embodiment of the present invention four is illustrated.
An embodiment of the present invention provides a kind of method for network access, using home appliance as equipment to be accessed, gateway as
Access management product, the mobile phone of objective network illustrate exemplified by being used as control point device.Smart machine is completed using this method
Access objective network flow as shown in figure 4, including:
Step 401, manufacturer are that business is that home appliance generates unique mark and interim access information, interim access information bag
Include SSID1 and PWD1.
Step 402, mobile phone obtain the unique mark of the home appliance and interim access information.
Step 403, mobile phone are formed interim access network, are received to be accessed with PWD1 using itself as access point.
Step 404, home appliance start networking flow, and access request is sent to mobile phone, carry PWD1 and the family wherein
The unique mark of electric equipment.
Step 405, mobile phone verify the unique mark of the home appliance, agree to network after being verified, i.e. agree to household electrical appliances
Equipment accesses the casual network of mobile phone.
The access information of step 406, home appliance acquisition request objective network, including SSID2 and password PWD2.
The SSID2 and PWD2 of the objective network that oneself is preserved are sent to home appliance by step 407, mobile phone.
Step 408, home appliance show to have received SSID2 and PWD2 to handset replies response message.
Step 409, mobile phone close casual network, that is, close WiFi after the response message that step 408 is beamed back is received
Ap mode.
Step 410, home appliance request access gateway.
Step 411, gateway verify the unique mark of the home appliance to handset requests, receive the verification knot that mobile phone returns
Fruit.
Step 412, mobile phone verify the home appliance be via the mobile phone obtain objective network SSID2 and PWD2 when,
Agree to that the home appliance accesses objective network.
Below in conjunction with the accompanying drawings, the embodiment of the present invention five is illustrated.
An embodiment of the present invention provides a kind of method for network access, using home appliance as equipment to be accessed, gateway as
Access management product, the mobile phone of objective network illustrate exemplified by being used as control point device.Smart machine is completed using this method
Access objective network flow as shown in figure 5, including:
Step 501, manufacturer are that business is home appliance generation unique mark, and mark is in home appliance in the form of Quick Response Code etc.
Surface.
Step 502, mobile phone obtain the unique mark of the home appliance.Can by barcode scanning, the modes such as be manually entered and obtain.
Step 503, mobile phone and home appliance are respectively according to preset temporary information algorithm, with reference to unique mark of home appliance
Know, interim access information is calculated, interim access information includes SSID1 and PWD1.It specifically can be according to unique mark and random
The factor (such as time), dynamic generation SSID1 and PWD1.
Step 504, mobile phone are formed interim access network, are received to be accessed with PWD1 using itself as access point.
Step 505, home appliance start networking flow, and access request is sent to mobile phone, carry PWD1 and the family wherein
The unique mark of electric equipment.
Step 506, mobile phone verify the unique mark of the home appliance, agree to network after being verified, i.e. agree to household electrical appliances
Equipment accesses the casual network of mobile phone.
The access information of step 507, home appliance acquisition request objective network, including SSID2 and password PWD2.
The SSID2 and PWD2 of the objective network that oneself is preserved are sent to home appliance by step 508, mobile phone.
Step 509, home appliance show to have received SSID2 and PWD2 to handset replies response message.
Step 510, mobile phone close casual network, that is, close WiFi after the response message that step 509 is beamed back is received
Ap mode.
Step 511, home appliance request access gateway.
Step 512, gateway verify the unique mark of the home appliance to handset requests, receive the verification knot that mobile phone returns
Fruit.
Step 513, mobile phone verify the home appliance be via the mobile phone obtain objective network SSID2 and PWD2 when,
Agree to that the home appliance accesses objective network.
Below in conjunction with the accompanying drawings, the embodiment of the present invention six is illustrated.
An embodiment of the present invention provides a kind of network access system, which sets including accessing target network-based control point
The access management product of standby and described objective network, the system further include equipment to be accessed;
The equipment to be accessed, for obtaining interim access information, the interim access letter according to preset identity information
Breath includes transient service set identifier SSID and corresponding temporary password, according to the interim access information, accesses the control point
Equipment obtains the access information of the objective network from the control point device, according to the access information of the objective network, connects
Enter the objective network;
The control point device, for when finding the equipment to be accessed, obtaining the interim access of the equipment to be accessed
Information according to the interim access information, starts control point equipment mode, and the equipment that reception meets the interim access information connects
Enter, after the equipment access to be accessed, the access that the control point device sends objective network to the equipment to be accessed is believed
Breath, to indicate that the equipment to be accessed accesses the objective network according to the access information of the objective network.
Preferably, the control point device is additionally operable to sending the access information of objective network to the equipment to be accessed
When, while send the control point identification of the control point device.
Preferably, the access management product is additionally operable to receive the control point device that the equipment to be accessed is sent
Control point identification, to it is described control point device send checking request, carried in the checking request request access described in
The unique mark of the equipment to be accessed of access management product shows to be proved to be successful in the response message that the control point device returns
When receive the access of the equipment to be accessed, refuse institute when the response message that the control point device returns shows authentication failed
State the access of access device;
The equipment to be accessed is additionally operable to, when accessing the objective network, set to the access-in management of the objective network
Preparation send the control point identification of the control point device;
The control point device is additionally operable to receive the checking request that the access management product is sent, please in the verification
The unique mark that request accesses the equipment to be accessed of the access management product is carried in asking, whether confirms the unique mark
The equipment to be accessed of access information with obtaining objective network from this control point device matches, and is accessed to the objective network
Management equipment sends response message, and the target network is notified by the response message when there is the equipment to be accessed to match
Network access management product is proved to be successful, there is no notify the mesh by the response message during equipment to be accessed to match
Mark network insertion management equipment authentication failed.
The network access system that the embodiment of the present invention provides, the network access side that can be provided with the embodiment of the present invention
Method is combined, and equipment to be accessed obtains interim access information according to preset identity information, and the interim access information, which includes, to be faced
When service set SSID and corresponding temporary password, the equipment to be accessed is according to the interim access information, access control
Point device, described to control point device be the equipment for having accessed objective network, and the equipment to be accessed is from the control point device
The access information of the objective network is obtained, according to the access information of the objective network, accesses the objective network.It is to be accessed
Equipment can directly acquire interim access information, and company is established by interim access information and the control point device for having accessed objective network
It connects, and then the access information of objective network is obtained by control point device, solving device hardware configuration to be accessed causes to access
The problem of security caused by network development process is unable to full automation and inefficiency, realizes a kind of safe and reliable network and connects
Enter mechanism.
Descriptions above can combine implementation individually or in various ways, and these variants all exist
Within protection scope of the present invention.
Finally it should be noted that:The above embodiments are merely illustrative of the technical solutions of the present invention, rather than its limitations.Although
The present invention is described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that:It still may be used
To modify to the technical solution recorded in foregoing embodiments or carry out equivalent substitution to which part technical characteristic;
And these modification or replace, do not make appropriate technical solution essence depart from various embodiments of the present invention technical solution spirit and
Scope.