CN110868719A - Access management system, device and method - Google Patents

Access management system, device and method Download PDF

Info

Publication number
CN110868719A
CN110868719A CN201810977353.5A CN201810977353A CN110868719A CN 110868719 A CN110868719 A CN 110868719A CN 201810977353 A CN201810977353 A CN 201810977353A CN 110868719 A CN110868719 A CN 110868719A
Authority
CN
China
Prior art keywords
equipment
authentication
network parameters
cloud server
home
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201810977353.5A
Other languages
Chinese (zh)
Other versions
CN110868719B (en
Inventor
应闻达
徐龙杰
郭涛
韩建亭
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Telecom Corp Ltd
Original Assignee
China Telecom Corp Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Telecom Corp Ltd filed Critical China Telecom Corp Ltd
Priority to CN201810977353.5A priority Critical patent/CN110868719B/en
Publication of CN110868719A publication Critical patent/CN110868719A/en
Application granted granted Critical
Publication of CN110868719B publication Critical patent/CN110868719B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1095Replication or mirroring of data, e.g. scheduling or transport for data synchronisation between network nodes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W24/00Supervisory, monitoring or testing arrangements
    • H04W24/02Arrangements for optimising operational condition
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/16Discovering, processing access restriction or access information

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The disclosure provides an access management system, equipment and a method, and relates to the field of smart home. The system comprises the following components: routing equipment and cloud server. The routing equipment can synchronize the new network parameters to the cloud server, receive a connection request initiated by the household equipment by using preset distribution network parameters to establish limited connection, receive authentication information sent by the household equipment through the limited connection, send the authentication information to the cloud server for authentication, receive the new network parameters sent by the cloud server, send the new network parameters to the household equipment through the limited connection, and receive the connection request initiated by the household equipment by using the new network parameters to establish network connection. Therefore, the home equipment can be automatically reconnected to the routing equipment without manual configuration of a user, and configuration work is reduced. And after the home equipment passes the authentication, the routing equipment is allowed to be reconnected, so that the safety of automatic reconnection is improved.

Description

Access management system, device and method
Technical Field
The present disclosure relates to the field of smart home, and in particular, to an access management system, device, and method.
Background
With the development of smart homes, there are more and more WiFi (Wireless Fidelity, Wireless local area network based on IEEE 802.11b standard) terminals in a user home, and these devices generally have no screen, Access to a Wireless Access Point (AP) of the user home through various Wireless distribution network technologies to surf the internet and be used.
In actual use, the user may modify network parameters of the wireless AP in the home, for example, modify a Service Set Identifier (SSID) and a password of the wireless AP. After the network parameters of the wireless AP are modified, the device originally connected to the wireless AP cannot be connected to the wireless AP. At this time, the network connections of the devices under the wireless AP need to be reconfigured one by one according to the modified network parameters, so that the devices can be reconnected to the wireless AP. If the number of devices is large, the configuration work is very heavy.
Disclosure of Invention
In view of this, the present disclosure provides an access management scheme that enables a home device to automatically reconnect a routing device, thereby reducing configuration work.
Some embodiments of the present disclosure provide an access management system, including: a routing device and a cloud server;
the routing equipment is configured to respond to modification of network parameters, synchronize new network parameters to the cloud server, accept a connection request initiated by the household equipment by using preset distribution network parameters to establish limited connection, receive authentication information sent by the household equipment through the limited connection, send the authentication information to the cloud server for authentication, receive the new network parameters sent by the cloud server, send the new network parameters to the household equipment through the limited connection, and accept the connection request initiated by the household equipment by using the new network parameters to establish network connection;
the cloud server is configured to store new network parameters of the routing equipment, authenticate the household equipment according to authentication information of the household equipment, and issue the new network parameters to the routing equipment after the household equipment passes the authentication.
Optionally, the routing device is further configured to send the home network white list to a cloud server; and when the cloud server is used for authenticating, judging whether the household equipment requesting authentication is in a home network white list or not according to authentication information of the household equipment, if so, judging that the household equipment requesting authentication passes the authentication, and if not, judging that the household equipment requesting authentication fails to authenticate.
Optionally, the routing device includes a wireless access point management module and a distribution network management module; the cloud server comprises an authentication module and a distribution network parameter management module; wherein the content of the first and second substances,
the wireless access point management module is configured to manage network parameters and distribution network parameters, respond to modification of the network parameters, synchronize new network parameters to the cloud server, accept connection requests initiated by the household equipment by using preset distribution network parameters to establish limited connection, and accept connection requests initiated by the household equipment by using the new network parameters to establish network connection;
the distribution network management module is configured to receive authentication information sent by the household equipment through the limited connection, send the authentication information to the cloud server, receive new network parameters sent by the cloud server, and send the new network parameters to the household equipment through the limited connection;
the authentication module is configured to authenticate the household equipment according to authentication information of the household equipment;
and the distribution network parameter management module is configured to store new network parameters of the routing equipment, and after the home equipment passes the authentication, the new network parameters are issued to the routing equipment.
Optionally, the system further comprises: the home equipment is configured to initiate a connection request to the routing equipment by using preset distribution network parameters to establish limited connection when the home equipment cannot be connected with the routing equipment, send authentication information through the limited connection, and initiate a connection request to the routing equipment by using new network parameters after the authentication is passed and new network parameters are acquired to establish network connection.
Optionally, the authentication information sent by the home device includes a media access control MAC address of the home device; the authentication information sent by the routing equipment comprises the MAC address of the household equipment and the MAC address of the routing equipment.
Some embodiments of the present disclosure provide a routing device, including a wireless access point management module and a distribution network management module;
the wireless access point management module is configured to manage network parameters and distribution network parameters, respond to modification of the network parameters, synchronize new network parameters to the cloud server, accept connection requests initiated by the household equipment by using preset distribution network parameters to establish limited connection, and accept connection requests initiated by the household equipment by using the new network parameters to establish network connection;
the distribution network management module is configured to receive authentication information sent by the household equipment through the limited connection, send the authentication information to the cloud server for authentication, receive new network parameters sent by the cloud server, and send the new network parameters to the household equipment through the limited connection.
Optionally, the distribution network management module is further configured to send the home network white list to the cloud server, so that the cloud server authenticates the home device according to the authentication information of the home device and the home network white list.
Some embodiments of the present disclosure provide a cloud server, including an authentication module and a distribution network parameter management module;
the authentication module is configured to authenticate the household equipment according to authentication information of the household equipment;
the distribution network parameter management module is configured to store new network parameters of the routing equipment, and after the home equipment passes the authentication, the new network parameters are issued to the routing equipment so that the routing equipment can send the new network parameters to the home equipment through the limited connection.
Optionally, the authentication module is configured to determine, according to the authentication information of the home device and the home network white list sent by the routing device, whether the home device requesting authentication is in the home network white list, if the home device requesting authentication is in the home network white list, determine that the home device requesting authentication passes authentication, and if the home device requesting authentication is not in the home network white list, determine that the home device requesting authentication fails to authenticate.
Some embodiments of the present disclosure provide an access management method, including:
synchronizing new network parameters of the routing device to the cloud server;
establishing a limited connection between the routing equipment and the household equipment by using preset distribution network parameters;
the home equipment sends authentication information to the routing equipment by using the limited connection, and the routing equipment sends the authentication information to the cloud server for authentication;
after the authentication is passed, the cloud server issues new network parameters, and the routing equipment sends the new network parameters to the household equipment through the limited connection;
and establishing network connection between the routing equipment and the household equipment by using the new network parameters.
Optionally, the method further comprises: the routing equipment sends the home network white name list to the cloud server; the cloud server judges whether the household equipment requesting authentication is in the household network white list or not according to the authentication information of the household equipment and the household network white list sent by the routing equipment, if so, the cloud server judges that the household equipment requesting authentication passes the authentication, and if not, the cloud server judges that the household equipment requesting authentication fails to authenticate.
Drawings
The drawings that will be used in the description of the embodiments or the related art will be briefly described below. The present disclosure will be more clearly understood from the following detailed description, which proceeds with reference to the accompanying drawings,
it is to be understood that the drawings in the following description are merely exemplary of the disclosure, and that other drawings may be derived from those drawings by one of ordinary skill in the art without undue inventive faculty.
Fig. 1 is a schematic diagram of some embodiments of an access management system of the present disclosure.
Fig. 2 is a schematic diagram of some embodiments of a routing device of the present disclosure.
Fig. 3 is a schematic diagram of some embodiments of cloud servers of the present disclosure.
Fig. 4 is a schematic view of some embodiments of the disclosed household device.
Fig. 5 is a flow diagram illustrating some embodiments of an access management method of the present disclosure.
Fig. 6 is a flow diagram illustrating some embodiments of an access management method of the present disclosure.
Detailed Description
The technical solutions in the embodiments of the present disclosure will be clearly and completely described below with reference to the drawings in the embodiments of the present disclosure.
Fig. 1 is a schematic diagram of some embodiments of an access management system of the present disclosure.
As shown in fig. 1, the system 100 of this embodiment includes: routing device 110 and cloud server 120. Additionally, system 100 may also include a household device 130.
The routing device 110 is configured to respond to modification of the network parameters, synchronize new network parameters to the cloud server, receive a connection request initiated by the home devices by using preset distribution network parameters to establish a limited connection, receive authentication information sent by the home devices through the limited connection, send the authentication information to the cloud server for authentication, receive new network parameters sent by the cloud server, send the new network parameters to the home devices through the limited connection, and receive a connection request initiated by the home devices by using the new network parameters to establish network connection.
The routing device may be, for example, a home gateway or a wireless router. The network parameters of the routing device include, for example, SSID and password information. The preset distribution network parameters may be, for example, a default SSID and password for establishing the restricted connection. The preset distribution network parameters can be set in a hidden mode, so that hotspots corresponding to the preset distribution network parameters cannot be detected during hotspot detection, and the safety is improved. The new network parameters may be, for example, a new SSID and password of the routing device, etc.
The authentication information sent by the home device to the routing device includes a Media Access Control (MAC) address of the home device. The authentication information sent by the routing equipment to the cloud server comprises the MAC address of the household equipment and the MAC address of the routing equipment.
The cloud server 120 is configured to store the new network parameters of the routing device, authenticate the home equipment according to the authentication information of the home equipment, and issue the new network parameters to the routing device after the authentication is passed.
The cloud server judges whether the household equipment requesting authentication is a legal terminal under the routing equipment, if so, the authentication is judged to be passed, and if not, the authentication is judged to be failed.
The legal terminal under the routing device may inform the cloud server by the routing device in a white list manner of the home network, for example, the routing device informs the cloud server of the MAC address of the legal terminal under the routing device.
When the cloud server authenticates, whether the household equipment requesting authentication is in the home network white list or not is judged according to the authentication information (such as the MAC address) of the household equipment, if so, the household equipment requesting authentication is judged to pass the authentication, and if not, the household equipment requesting authentication is judged to fail to be authenticated.
The home equipment 130 is configured to initiate a connection request to the routing equipment by using a preset distribution network parameter to establish a limited connection when the routing equipment cannot be connected, send authentication information through the limited connection, and initiate a connection request to the routing equipment by using a new network parameter after the authentication is passed and a new network parameter is acquired to establish network connection.
When the home equipment cannot be connected with the routing equipment through normal network parameters, the home equipment can be in limited connection with the routing equipment through the preset distribution network parameters. When the connection is limited, the home devices cannot normally surf the internet through the routing devices, the home devices can only transmit and receive information with the designated devices (routing devices), the transmitted and received information is also information related to authentication and new network parameters, and other information, such as internet surfing requests and the like, is not processed.
The home devices may be, for example, air conditioners, air purifiers, smart home devices such as stereos, sockets, hot water kettles, but are not limited to the examples given.
Fig. 2 is a schematic diagram of some embodiments of a routing device of the present disclosure.
As shown in fig. 2, the routing device 110 includes a wireless access point management module 111 and a distribution network management module 112.
The wireless access point management module 111 is configured to manage network parameters and distribution network parameters, synchronize new network parameters to the cloud server in response to modification of the network parameters, accept a connection request initiated by the home equipment by using preset distribution network parameters to establish a limited connection, and accept a connection request initiated by the home equipment by using the new network parameters to establish a network connection.
And the distribution network management module 112 is configured to receive authentication information sent by the home equipment through the limited connection, send the authentication information to the cloud server, receive new network parameters sent by the cloud server, and send the new network parameters to the home equipment through the limited connection.
In some embodiments, the distribution network management module 112 is further configured to send the home network white list to the cloud server, so that the cloud server authenticates the home device according to the authentication information of the home device and the home network white list.
Fig. 3 is a schematic diagram of some embodiments of cloud servers of the present disclosure.
As shown in fig. 3, the cloud server 120 includes an authentication module 121 and a distribution network parameter management module 122.
And the authentication module 121 is configured to authenticate the home devices according to the authentication information of the home devices.
And the distribution network parameter management module 122 is configured to store a new network parameter of the routing device, and after the home device passes the authentication, issue the new network parameter to the routing device.
In some embodiments, the authentication module 121 is configured to determine, according to the authentication information of the home device sent by the routing device and the home network white list, whether the home device requesting authentication is in the home network white list, determine that the home device requesting authentication passes the authentication if the home device requesting authentication is in the home network white list, and determine that the home device requesting authentication fails the authentication if the home device requesting authentication is not in the home network white list.
Fig. 4 is a schematic view of some embodiments of the disclosed household device.
As shown in fig. 4, the household device 130 includes a wireless connection module 131 and a wireless distribution network module 132.
And the wireless connection module 131 is configured to initiate a connection request to the routing device by using preset distribution network parameters to establish a limited connection and initiate a connection request to the routing device by using new network parameters to establish a network connection when the routing device cannot be connected.
And the wireless distribution network module 132 is configured to send authentication information through the limited connection, and new network parameters are acquired after the authentication is passed.
Fig. 5 is a flow diagram illustrating some embodiments of an access management method of the present disclosure.
As shown in fig. 5, the method includes: step 510-590.
In step 510, the routing device sends the home network whitelist to the cloud server.
For example, the routing device sends the MAC address of the routing device and the MAC address of a legitimate home device under the home network where the routing device is located to the cloud server, and the cloud server uses the home devices as a white list of the home network where the routing device is located.
At step 520, after the network parameters of the routing device are modified, the new network parameters are synchronized to the cloud server.
For example, after the SSID or password of the routing device is modified, the new SSID or password is synchronized to the cloud server, and the cloud server stores the new SSID or password.
In step 530, since the network parameters are modified, the home devices are not connected to the routing device, and therefore, a limited connection is established between the routing device and the home devices by using the preset distribution network parameters.
For example, the home device initiates a connection request to the routing device by using a preset default SSID and a password, and the routing device responds to establish a restricted connection with the home device.
At step 540, the home device sends authentication information to the routing device using the restricted connection.
For example, the home device sends its MAC address to the routing device using a restricted connection.
In step 550, the routing device sends the authentication information to the cloud server for authentication.
For example, the routing device sends the MAC address of the home device requesting authentication and its own MAC address to the cloud server, so as to authenticate the home device.
In step 560, the cloud server determines whether the home device requesting authentication is in the home network white list according to the authentication information of the home device sent by the routing device and the home network white list, if so, determines that the home device requesting authentication passes authentication, and if not, determines that the home device requesting authentication fails authentication.
In step 570, after the authentication is passed, the cloud server issues the new network parameter to the routing device.
For example, the cloud server issues a new SSID and password to the routing device.
In addition, if the authentication fails, the cloud server returns an authentication failure response to the routing equipment, and the routing equipment returns the authentication failure response to the household equipment requesting the authentication.
In step 580, the routing device sends the new network parameters to the home device via the restricted connection.
For example, the routing device sends the new SSID and password to the home device over the restricted connection.
In step 590, a network connection is established between the routing device and the home device using the new network parameters.
For example, the home device initiates a connection request to the routing device by using the new SSID and password, the routing device receives the connection request, establishes network connection with the home device, and the home device can surf the internet normally through the network connection.
According to the embodiment, the home equipment can be automatically reconnected to the routing equipment, manual configuration of a user is not needed, and configuration work is reduced. In addition, in the reconnection process, the household equipment needs to be authenticated, and the reconnection of the routing equipment is allowed after the authentication is passed, so that the safety of automatic reconnection is improved.
Fig. 6 is a flow diagram illustrating some embodiments of an access management method of the present disclosure.
As shown in fig. 6, the method includes: steps 610 to 690.
In step 610, the wireless connection module 131 of the home device 130 connects to the wireless access point management module 111 of the routing device 110, and uses the home wireless network.
In step 620, the distribution network management module 112 of the routing device 110 sends the home network white list to the cloud server 120, and the authentication module 121 of the cloud server 120 receives and stores the home network white list.
At step 630, the network parameters of the routing device 110 are modified and the wireless access point management module 111 of the routing device 110 synchronizes the new network parameters of the routing device 110 to the cloud server 120. Distribution network parameter management module 122 of cloud server 120 receives and stores the new network parameters for routing device 110.
In step 640, as the network parameter of the routing device 110 is modified, the home device 130 detects that the connection between the home device 130 and the routing device 110 is disconnected, and the wireless connection module 131 of the home device 130 enables the preset distribution network parameter to establish a limited connection with the routing device 110.
In step 650, the wireless distribution network module 132 of the home device 130 reports authentication information such as its MAC address to the routing device 110.
In step 660, the distribution network management module 112 of the routing device 110 sends authentication information, such as its MAC address and the MAC address of the home device 130, to the cloud server 120 for authentication.
In step 670, the authentication module 121 of the cloud server 120 determines whether the home device requesting authentication is in the home network white list according to the home network white list of the routing device 110 and the authentication information such as the MAC address of the home device 130 requesting authentication, determines that the home device requesting authentication passes the authentication if the home device requesting authentication is in the home network white list, and determines that the home device requesting authentication fails the authentication if the home device requesting authentication is not in the home network white list.
In step 680, the cloud server 120 returns an authentication response, which is transmitted to the home device 130 via the distribution network management module 112 of the routing device 110.
In step 690, in the case that the authentication response indicates that the authentication is passed, the wireless distribution network module 132 of the home device 130 requests to acquire a new network parameter, and the acquisition request is transmitted to the cloud server 120 via the distribution network management module 112 of the routing device 110.
In step 6100, the distribution network parameter management module 122 of the cloud server 120 issues the new network parameter, which is transmitted to the home device 130 via the distribution network management module 112 of the routing device 110.
In step 6110, the wireless connection module 131 of the home device 130 establishes a network connection with the routing device 110 using the new network parameters. The home device 130 can normally surf the internet through the network connection.
The access management scheme enables the home equipment to be automatically reconnected to the routing equipment without manual configuration of a user, and configuration work is reduced. In addition, in the reconnection process, the household equipment needs to be authenticated, and the reconnection of the routing equipment is allowed after the authentication is passed, so that the safety of automatic reconnection is improved.
As will be appreciated by one skilled in the art, embodiments of the present disclosure may be provided as a method, system, or computer program product. Accordingly, the present disclosure may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present disclosure may take the form of a computer program product embodied on one or more computer-usable non-transitory storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present disclosure is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the disclosure. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
The above description is only exemplary of the present disclosure and is not intended to limit the present disclosure, so that any modification, equivalent replacement, or improvement made within the spirit and principle of the present disclosure should be included in the scope of the present disclosure.

Claims (11)

1. An access management system, comprising: a routing device and a cloud server;
the routing equipment is configured to respond to modification of network parameters, synchronize new network parameters to the cloud server, accept a connection request initiated by the household equipment by using preset distribution network parameters to establish limited connection, receive authentication information sent by the household equipment through the limited connection, send the authentication information to the cloud server for authentication, receive the new network parameters sent by the cloud server, send the new network parameters to the household equipment through the limited connection, and accept the connection request initiated by the household equipment by using the new network parameters to establish network connection;
the cloud server is configured to store new network parameters of the routing equipment, authenticate the household equipment according to authentication information of the household equipment, and issue the new network parameters to the routing equipment after the household equipment passes the authentication.
2. The system of claim 1, wherein,
the routing device is further configured to send the home network white name list to a cloud server;
and when the cloud server is used for authenticating, judging whether the household equipment requesting authentication is in a home network white list or not according to authentication information of the household equipment, if so, judging that the household equipment requesting authentication passes the authentication, and if not, judging that the household equipment requesting authentication fails to authenticate.
3. The system of claim 1 or 2,
the routing equipment comprises a wireless access point management module and a distribution network management module;
the cloud server comprises an authentication module and a distribution network parameter management module;
wherein the content of the first and second substances,
the wireless access point management module is configured to manage network parameters and distribution network parameters, respond to modification of the network parameters, synchronize new network parameters to the cloud server, accept connection requests initiated by the household equipment by using preset distribution network parameters to establish limited connection, and accept connection requests initiated by the household equipment by using the new network parameters to establish network connection;
the distribution network management module is configured to receive authentication information sent by the household equipment through the limited connection, send the authentication information to the cloud server, receive new network parameters sent by the cloud server, and send the new network parameters to the household equipment through the limited connection;
the authentication module is configured to authenticate the household equipment according to authentication information of the household equipment;
and the distribution network parameter management module is configured to store new network parameters of the routing equipment, and after the home equipment passes the authentication, the new network parameters are issued to the routing equipment.
4. The system of claim 1, further comprising:
the home equipment is configured to initiate a connection request to the routing equipment by using preset distribution network parameters to establish limited connection when the home equipment cannot be connected with the routing equipment, send authentication information through the limited connection, and initiate a connection request to the routing equipment by using new network parameters after the authentication is passed and new network parameters are acquired to establish network connection.
5. The system of claim 1, wherein,
the authentication information sent by the household equipment comprises a Media Access Control (MAC) address of the household equipment;
the authentication information sent by the routing equipment comprises the MAC address of the household equipment and the MAC address of the routing equipment.
6. A routing device comprises a wireless access point management module and a distribution network management module;
the wireless access point management module is configured to manage network parameters and distribution network parameters, respond to modification of the network parameters, synchronize new network parameters to the cloud server, accept connection requests initiated by the household equipment by using preset distribution network parameters to establish limited connection, and accept connection requests initiated by the household equipment by using the new network parameters to establish network connection;
the distribution network management module is configured to receive authentication information sent by the household equipment through the limited connection, send the authentication information to the cloud server for authentication, receive new network parameters sent by the cloud server, and send the new network parameters to the household equipment through the limited connection.
7. The routing device of claim 6,
the distribution network management module is further configured to send the home network white list to the cloud server, so that the cloud server authenticates the home equipment according to the authentication information of the home equipment and the home network white list.
8. A cloud server comprises an authentication module and a distribution network parameter management module;
the authentication module is configured to authenticate the household equipment according to authentication information of the household equipment;
the distribution network parameter management module is configured to store new network parameters of the routing equipment, and after the home equipment passes the authentication, the new network parameters are issued to the routing equipment so that the routing equipment can send the new network parameters to the home equipment through the limited connection.
9. The cloud server of claim 8,
the authentication module is configured to judge whether the home equipment requesting authentication is in the home network white list or not according to the authentication information of the home equipment and the home network white list sent by the routing equipment, judge that the home equipment requesting authentication passes the authentication if the home equipment requesting authentication is in the home network white list, and judge that the home equipment requesting authentication fails the authentication if the home equipment requesting authentication is not in the home network white list.
10. An access management method, comprising:
synchronizing new network parameters of the routing device to the cloud server;
establishing a limited connection between the routing equipment and the household equipment by using preset distribution network parameters;
the home equipment sends authentication information to the routing equipment by using the limited connection, and the routing equipment sends the authentication information to the cloud server for authentication;
after the authentication is passed, the cloud server issues new network parameters, and the routing equipment sends the new network parameters to the household equipment through the limited connection;
and establishing network connection between the routing equipment and the household equipment by using the new network parameters.
11. The method of claim 10, further comprising:
the routing equipment sends the home network white name list to the cloud server;
the cloud server judges whether the household equipment requesting authentication is in the household network white list or not according to the authentication information of the household equipment and the household network white list sent by the routing equipment, if so, the cloud server judges that the household equipment requesting authentication passes the authentication, and if not, the cloud server judges that the household equipment requesting authentication fails to authenticate.
CN201810977353.5A 2018-08-27 2018-08-27 Access management system, device and method Active CN110868719B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810977353.5A CN110868719B (en) 2018-08-27 2018-08-27 Access management system, device and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810977353.5A CN110868719B (en) 2018-08-27 2018-08-27 Access management system, device and method

Publications (2)

Publication Number Publication Date
CN110868719A true CN110868719A (en) 2020-03-06
CN110868719B CN110868719B (en) 2023-06-09

Family

ID=69651064

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810977353.5A Active CN110868719B (en) 2018-08-27 2018-08-27 Access management system, device and method

Country Status (1)

Country Link
CN (1) CN110868719B (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111562772A (en) * 2020-05-26 2020-08-21 山东艾琳智能科技有限公司 Intelligent home system
CN112163125A (en) * 2020-09-22 2021-01-01 海尔优家智能科技(北京)有限公司 Device management method and apparatus, storage medium, and electronic device
CN112422327A (en) * 2020-11-02 2021-02-26 深圳Tcl新技术有限公司 WPS-based router network distribution method, router and storage medium
CN113891317A (en) * 2021-09-28 2022-01-04 青岛海尔科技有限公司 Network distribution method and network distribution device of intelligent equipment and electronic equipment
CN114301628A (en) * 2021-11-29 2022-04-08 广州河东科技有限公司 Smart home equipment authentication method, device, equipment, system and storage medium
CN114500263A (en) * 2020-11-11 2022-05-13 深圳Tcl新技术有限公司 Distributed network distribution method and device and computer readable storage medium

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160330825A1 (en) * 2006-03-28 2016-11-10 Wireless Environment, Llc Cloud connected motion sensor lighting grid
CN106211264A (en) * 2016-07-11 2016-12-07 九阳股份有限公司 A kind of household electrical appliances distribution method and device
CN106412960A (en) * 2016-10-31 2017-02-15 公牛集团有限公司 Control method for realizing Wi-Fi (Wireless-Fidelity) network configuration
CN106789462A (en) * 2016-12-15 2017-05-31 九阳股份有限公司 A kind of intelligent appliance networking method of controlling security
CN106993278A (en) * 2017-04-07 2017-07-28 青檬微智科技(深圳)有限公司 A kind of method, relevant device and system for automatically controlling smart machine access
US20170223807A1 (en) * 2006-03-28 2017-08-03 Wireless Environment, Llc. Cloud connected lighting system
CN107071776A (en) * 2017-05-23 2017-08-18 上海斐讯数据通信技术有限公司 It is a kind of to match somebody with somebody network method and its system, a kind of server automatically
CN107171837A (en) * 2017-05-11 2017-09-15 广东美的制冷设备有限公司 Wireless network configuration method, device and system

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160330825A1 (en) * 2006-03-28 2016-11-10 Wireless Environment, Llc Cloud connected motion sensor lighting grid
US20170223807A1 (en) * 2006-03-28 2017-08-03 Wireless Environment, Llc. Cloud connected lighting system
CN106211264A (en) * 2016-07-11 2016-12-07 九阳股份有限公司 A kind of household electrical appliances distribution method and device
CN106412960A (en) * 2016-10-31 2017-02-15 公牛集团有限公司 Control method for realizing Wi-Fi (Wireless-Fidelity) network configuration
CN106789462A (en) * 2016-12-15 2017-05-31 九阳股份有限公司 A kind of intelligent appliance networking method of controlling security
CN106993278A (en) * 2017-04-07 2017-07-28 青檬微智科技(深圳)有限公司 A kind of method, relevant device and system for automatically controlling smart machine access
CN107171837A (en) * 2017-05-11 2017-09-15 广东美的制冷设备有限公司 Wireless network configuration method, device and system
CN107071776A (en) * 2017-05-23 2017-08-18 上海斐讯数据通信技术有限公司 It is a kind of to match somebody with somebody network method and its system, a kind of server automatically

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
朱祥贤: "基于Android和ZigBee的智能家居系统设计", 《数字技术与应用》 *
王雅哲等: "IoT智能设备安全威胁及防护技术综述", 《信息安全学报》 *

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111562772A (en) * 2020-05-26 2020-08-21 山东艾琳智能科技有限公司 Intelligent home system
CN111562772B (en) * 2020-05-26 2021-07-20 山东艾琳智能科技有限公司 Intelligent home system
CN112163125A (en) * 2020-09-22 2021-01-01 海尔优家智能科技(北京)有限公司 Device management method and apparatus, storage medium, and electronic device
CN112422327A (en) * 2020-11-02 2021-02-26 深圳Tcl新技术有限公司 WPS-based router network distribution method, router and storage medium
CN112422327B (en) * 2020-11-02 2024-02-13 深圳Tcl新技术有限公司 Router network distribution method based on WPS, router and storage medium
CN114500263A (en) * 2020-11-11 2022-05-13 深圳Tcl新技术有限公司 Distributed network distribution method and device and computer readable storage medium
CN114500263B (en) * 2020-11-11 2023-10-13 深圳Tcl新技术有限公司 Distributed distribution network method, device and computer readable storage medium
CN113891317A (en) * 2021-09-28 2022-01-04 青岛海尔科技有限公司 Network distribution method and network distribution device of intelligent equipment and electronic equipment
CN114301628A (en) * 2021-11-29 2022-04-08 广州河东科技有限公司 Smart home equipment authentication method, device, equipment, system and storage medium

Also Published As

Publication number Publication date
CN110868719B (en) 2023-06-09

Similar Documents

Publication Publication Date Title
CN110868719B (en) Access management system, device and method
CN109525540B (en) Intelligent device binding method and device
CN106464690B (en) Security authentication method, configuration method and related equipment
US10171997B2 (en) Method and apparatus for interconnection between terminal device and gateway device
US11096051B2 (en) Connection establishment method, device, and system
CN106161385B (en) Remote control method and device for equipment
EP2713671A2 (en) Method and apparatus for repeater wi-fi protected setup connections
US20170141932A1 (en) Internet Access Traffic Sharing Method, Device and Terminal
CN104394051A (en) Intelligent home control system and intelligent home router
CN107567017B (en) Wireless connection system, device and method
CN104104516A (en) Portal authentication method and device
CN104519490A (en) WIFI (wireless fidelity) connection method, WIFI connection device, mobile terminal and system
CN103874065A (en) Method and device for judging user position abnormity
CN105338529A (en) Wireless network connecting method and system
CN104023001A (en) Method for AC equipment to forward unauthorized message information
CN108712743B (en) Method and system for managing wireless networking of device groups
EP3833153B1 (en) Network connection methods and devices
CN107257558B (en) Message forwarding method and device
EP3319277B1 (en) Provision of access to a network
CN112953986B (en) Edge application management method and device
CN106304050B (en) Wireless roaming method and device
CN105163313A (en) WiFi (Wireless Fidelity) connection authentication method based on hidden SSID (Service Set Identifier)
CN104285458A (en) Wireless network access method, system and terminal
CN105791066A (en) Control information sending method and device
CN108076009B (en) Resource sharing method, device and system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant