CN112311766A - Method and device for acquiring user certificate and terminal equipment - Google Patents
Method and device for acquiring user certificate and terminal equipment Download PDFInfo
- Publication number
- CN112311766A CN112311766A CN202011049704.XA CN202011049704A CN112311766A CN 112311766 A CN112311766 A CN 112311766A CN 202011049704 A CN202011049704 A CN 202011049704A CN 112311766 A CN112311766 A CN 112311766A
- Authority
- CN
- China
- Prior art keywords
- certificate
- terminal
- authentication
- client
- receiving
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Power Engineering (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The specification provides a method and a device for acquiring a user certificate and a terminal device, wherein the method comprises the following steps: the terminal triggers MAC authentication when a certificate is not installed or expires, the access device redirects a page to a client downloading page after the terminal accesses any website, and the application and installation of the certificate are completed through the interaction of the client and the authentication server after the terminal downloads the client. Therefore, complicated configuration and manual acquisition are not needed, and the acquisition flow of the certificate is simplified.
Description
Technical Field
The present disclosure relates to the field of access of terminal devices, and in particular, to a method and an apparatus for acquiring a user certificate, and a terminal device.
Background
With the development of mobile terminals, terminals accessing to a network are becoming more and more diverse. Using user credentials to protect user access is one of the most secure wireless authentication methods.
In the existing authentication mode, a user needs to find an administrator or download an installation certificate by accessing a specified webpage, mailbox or other modes, then manually configure a mobile hotspot wifi (wireless fidelity), and then authenticate by using the certificate.
The existing process mainly comprises the following operation steps:
during first authentication, a user acquires a certificate file in a mode of a U disk, a mode of accessing a specified webpage and the like; or the administrator sends the certificate file to the user through the mailbox;
after the certificate is taken, clicking the certificate file, and installing the certificate file on the terminal;
the network connection attributes are manually configured, e.g., authentication type selected, credentials selected, etc.
The above process is complicated and is not easy to use.
Disclosure of Invention
In order to overcome the problems in the related art, the present specification provides a method and an apparatus for acquiring a user certificate, and a terminal device.
According to a first aspect of embodiments of the present specification, there is provided a method for obtaining user credentials, the method including:
the access equipment receives an MAC authentication request sent by a terminal;
the access equipment inquires whether the terminal applies for the user certificate from an authentication server;
if the access equipment receives a result that the authentication server returns that the terminal does not apply for the certificate, when receiving an access request sent by the terminal through a Web browser, the access device redirects the access request of the terminal to a client downloading page so that the terminal downloads the client and initiates a certificate application request through the client.
According to a second aspect of embodiments of the present specification, there is provided an apparatus for acquiring user credentials, the apparatus including:
the device comprises a receiving module, a sending module, a judging module and a redirecting module;
the receiving module is used for receiving the MAC authentication request sent by the terminal;
a sending module, configured to query an authentication server whether the terminal has applied for a user certificate;
if the judging module determines that the receiving module receives a result that the terminal does not apply for the certificate, which is returned by the authentication server, the redirecting module redirects the access request of the terminal to a client downloading page when the receiving module receives the access request sent by the terminal through a Web browser, so that the terminal downloads the client and initiates a certificate application request through the client.
According to a third aspect of embodiments herein, there is provided a method for acquiring a user certificate, the method including:
receiving an MAC authentication request which is sent by authentication equipment and is originated from terminal equipment;
inquiring whether the MAC carried in the authentication request applies for a user certificate;
if the user certificate is not applied, sending a result of not applying the certificate to the authentication equipment;
receiving a certificate application request sent by a terminal device through a client;
applying for a certificate to the certificate server;
and sending the applied certificate to the terminal equipment.
According to a fourth aspect of embodiments of the present specification, there is provided an apparatus for acquiring user credentials, the apparatus including: the second receiving module, the second sending module and the second judging module;
the second receiving module is used for receiving the MAC authentication request which is sent by the authentication equipment and is originated from the terminal equipment;
the second sending module is used for inquiring whether the MAC carried in the authentication request applies for the user certificate or not;
the second judging module is used for enabling the second sending module to send a result of the non-application certificate to the authentication equipment when judging that the terminal does not apply for the user certificate;
the second receiving module is further used for receiving a certificate application request sent by the terminal device through the client;
the second sending module is further configured to apply for a certificate to the certificate server;
the second sending module is further used for sending the applied certificate to the terminal equipment.
In a fifth aspect of the present disclosure, there is also provided a terminal device that, after connecting to a network, transmits a MAC authentication request to an authentication server; sending an access request to the access equipment through a web browser on the terminal, wherein the access request can be an access request for an external network;
responding to the client downloading interface after the access equipment is redirected;
after downloading a client, initiating a certificate application request to an authentication server through the client;
and receiving and installing the certificate, and sending a certificate authentication request of 802.1x to an authentication server through a client.
The technical scheme provided by the embodiment of the specification can have the following beneficial effects: the terminal triggers MAC authentication when a certificate is not installed or expires, the access equipment redirects a page to a client downloading page after the terminal accesses any website, and application and installation of the certificate are completed through interaction between the client and an authentication server after the client is downloaded. Therefore, complicated configuration and manual acquisition are not needed, and the acquisition flow of the certificate is simplified.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the specification.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the present specification and together with the description, serve to explain the principles of the specification.
Fig. 1 is a schematic flow chart diagram of a user certificate acquisition method provided by the present disclosure;
fig. 2 is a signaling interaction diagram of a user certificate acquisition method provided by the present disclosure;
fig. 3 is a signaling interaction diagram of a method for acquiring a user certificate during non-primary authentication according to the present disclosure;
fig. 4 is a flowchart illustrating a method for obtaining a user certificate according to another embodiment of the present disclosure;
fig. 5 is a schematic structural diagram of an apparatus for acquiring a user certificate according to the present disclosure;
fig. 6 is a schematic structural diagram of an apparatus for acquiring a user certificate according to yet another embodiment of the present disclosure.
Detailed Description
Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the accompanying drawings, like numbers in different drawings represent the same or similar elements unless otherwise indicated. The embodiments described in the following exemplary embodiments do not represent all embodiments consistent with the present specification. Rather, they are merely examples of apparatus and methods consistent with certain aspects of the specification, as detailed in the appended claims.
The utility model discloses a method for obtaining user certificate, when the terminal does not install the certificate, redirect the page to the download interface of the client, thereby make the user can carry on subsequent certificate application, certificate installation etc. through the client and all accomplish through the client, thereby can accomplish subsequent authentication fast.
The method for acquiring a user certificate provided by the present disclosure may be applied to an access device, and specifically, the method for acquiring a user certificate executed by an access device may refer to fig. 1, where fig. 1 is a schematic flow diagram of the method for acquiring a user certificate provided by the present disclosure.
After accessing the network, the terminal device first triggers MAC authentication. The MAC authentication is also called MAC address authentication and is an authentication method for controlling the network access authority of a user based on a port and an MAC address, and the user is not required to install any client software. The device starts an authentication operation for a user after detecting the MAC address of the user for the first time. In the authentication process, the user is not required to manually input the user name or the password.
The access device sends a query request to the authentication server and judges whether the user terminal corresponding to the MAC address applies for the user certificate.
The result of non-application of a certificate here also includes the case of expired certificate.
For the first authentication of the terminal, the authentication server sends a result that the terminal does not apply for the user certificate to the access device.
Subsequently, when the user terminal sends an access request to the access device through the web browser, the access device redirects the access request to a download page of the client. Thereby enabling the user to download the client via the download page.
Therefore, when the terminal does not install the certificate, the page is redirected to the downloading interface of the client, so that the user can complete subsequent certificate application, certificate installation and the like through the client, and subsequent authentication can be quickly completed.
After the user downloads and installs the client on the terminal, the user uses the client to complete the application of the certificate based on HTTP (HyperText Transfer Protocol). After the application of the certificate is completed, the client interacts with the Authentication server based on an Extensible Authentication Protocol EAP-TLS (Extensible Authentication Protocol-Transport Layer Security) of a secure Transport Layer Protocol, and finally completes the mutual identity Authentication with the Authentication server by using the certificate, so that the purpose of accessing the user terminal to the network to realize the internet is finally realized.
Specifically, a user opens a client, inputs an account name and a password, and initiates a request for applying for a certificate to an authentication server, wherein the request for applying for the certificate also carries an MAC address of a terminal. The authentication server firstly checks the account name and the password, and after the check is passed, the account name and the MAC address are used as certificate subjects to initiate a certificate application request to a Certificate Authority (CA). And then the authentication server returns the applied certificate to the terminal. And the terminal performs subsequent authentication processes after the security certificate. That is, after the terminal installs the client and the certificate, the user can perform 802.1x certificate authentication through the client.
Fig. 2 shows a specific signaling diagram of interaction among a terminal, an access device and an authentication server. For each specific step, reference may be made to fig. 2, and details are not described here.
In the embodiment of the disclosure, an authentication mode combining MAC authentication and 802.1X authentication is provided, in a traditional 802.1X authentication networking, a user can only manually add uniform Resource locator (url) (uniform Resource locator) to download a client, and in the present application, by combining MAC authentication, an access device can redirect to a client download interface when the user terminal accesses any website. In addition, the traditional method only adopts 802.1x authentication, and before the authentication is passed, the network is not accessible, so that the terminal cannot acquire and install the certificate through the network.
The above embodiment describes the case of the first authentication at the terminal. Fig. 3 shows an interaction signaling diagram among the terminal, the access device and the authentication server when the terminal is not authenticated for the first time.
As can be seen from fig. 3, when the authentication device receives the MAC authentication request sent by the terminal again, the access device sends an inquiry request to the authentication server, where the inquiry request is used to inquire whether the MAC address has applied for a user certificate; for the case where the terminal is not authenticated for the first time. The authentication server will return the result that the terminal has applied for the certificate. After receiving the result sent by the authentication server, the access device returns a response of failure of MAC authentication to the terminal. Thereby prompting the user to open the client, again initiating an 802.1x certificate authentication request to the authentication server via the client.
In addition, in an optional implementation manner, before the terminal formally accesses the network, the terminal may be restricted from accessing the network through an access Control list acl (access Control lists). Specifically, the access device receives an isolation ACL issued by the authentication server, where the isolation ACL is used to isolate a message sent by the terminal before the terminal passes authentication. Here, the isolation of the message means that when the access device receives various messages sent by the terminal, the message is not forwarded out.
In addition, the isolation ACL is also used to determine whether the received message belongs to a message sent by a specified terminal. For example, when the access device receives an access request sent by the terminal through a web page, the access device determines, according to the isolation ACL, that the access request belongs to the access request sent by the terminal specified by the isolation ACL, so that the page can be redirected to the client download interface.
In the embodiment of the present disclosure, a method for acquiring a user certificate, which is executed correspondingly on the side of the authentication server, is introduced in cooperation with the access device.
Specifically, fig. 4 is a schematic flowchart of a method for acquiring a user certificate according to this embodiment, and as shown in fig. 4, the method includes:
in step 401, the authentication server receives a MAC authentication request sent by the authentication device and originating from the terminal device.
In step 404, the authentication server receives a certificate application request sent by the terminal device through the client.
The certificate application request comprises an account name, a password and the MAC address of the terminal.
The authentication server firstly verifies the account name and the password, and after the verification is passed, the account name and the MAC address are used as certificate subjects to initiate a certificate application request to the certificate server. The certificate server is also referred to herein as a CA server, i.e., a certificate authority.
And when the issuing condition of the certificate is met, the certificate server issues the certificate to the terminal equipment.
And if the certificate information carried in the authentication request is matched with the certificate information issued by the certificate server, sending a response that the authentication is passed to the terminal equipment.
Optionally, on the basis of the above embodiment, after the terminal acquires the certificate, the authentication server in the present disclosure may also receive an 802.1x authentication request initiated by the terminal device through the client;
in the embodiment of the disclosure, the authentication server receives the MAC authentication request sent by the access device, and subsequently after the terminal receives the certificate, the authentication server also receives an 802.1X authentication request sent by the terminal device through the client, thereby implementing the combination of the two authentication modes.
The present disclosure also provides a terminal device that sends an MAC authentication request to an authentication server after connecting to a network; sending an access request to the access equipment through a web browser on the terminal, wherein the access request can be an access request for an external network; responding to the client downloading interface after the access equipment is redirected; after downloading a client, the terminal initiates a certificate application request to an authentication server through the client; and the terminal receives and installs the certificate and sends a certificate authentication request of 802.1x to the authentication server through the client.
Example two
On the basis of the foregoing embodiment, the present disclosure further provides an apparatus for obtaining a user certificate, where the apparatus may be configured to execute the method performed by the access device in the first embodiment, and fig. 5 is a schematic structural diagram of the apparatus for obtaining a user certificate provided by the present disclosure, and as shown in fig. 5, the apparatus includes: a receiving module 501, a sending module 502, a judging module 503 and a redirecting module 504;
a receiving module 501, configured to receive an MAC authentication request sent by a terminal;
a sending module 502, configured to query an authentication server whether the terminal has applied for a user certificate;
if the determining module 503 determines that the receiving module 501 receives the result of the terminal not applying for the certificate, which is returned by the authentication server, when the receiving module 501 receives the access request sent by the terminal through the Web browser, the redirecting module 504 redirects the access request of the terminal to the client downloading page, so that the terminal downloads the client, and initiates a request for applying for the certificate through the client.
Optionally, when the receiving module 501 receives the MAC authentication request sent by the terminal device again, the sending module 502 queries, to the authentication server, whether the terminal has applied for the user certificate;
the receiving module 501 is further configured to receive a certificate that is sent by an authentication server and applied by the terminal;
the sending module 502 is further configured to return a response of MAC authentication failure to the terminal;
the receiving module 501 is further configured to receive an 802.1x certificate authentication request sent by a client.
Optionally, the receiving module 501 is further configured to receive an isolation ACL issued by the authentication server, where the isolation ACL is used to isolate a message sent by the terminal before the terminal passes authentication.
The device provided by the disclosure redirects the page to the download interface of the client when the terminal does not install the certificate, so that the user can complete subsequent certificate application, certificate installation and the like through the client, and the subsequent authentication can be rapidly completed.
In another embodiment of the present disclosure, an apparatus for obtaining a user certificate is further provided, where the apparatus may be configured to execute the method performed by the authentication server in the first embodiment. Fig. 6 is a schematic structural diagram of an apparatus in the present disclosure, as shown in fig. 6, the apparatus includes: a second receiving module 601, a second sending module 602, and a second determining module 603;
a second receiving module 601, configured to receive a MAC authentication request sent by an authentication device and originating from a terminal device;
the second sending module 602 is configured to query whether the MAC carried in the authentication request has applied for a user certificate;
the second determining module 603 is configured to, when determining that the terminal does not apply for the user certificate, enable the second sending module 602 to send a result of applying for the certificate to the authentication device;
the second receiving module 601 is further configured to receive a certificate application request sent by a terminal device through a client;
the second sending module 602 is further configured to apply for a certificate to the certificate server;
the second sending module 602 is further configured to send the applied certificate to the terminal device.
Optionally, the second receiving module 601 is further configured to receive an 802.1x authentication request initiated by the terminal device through a client; the second determining module 603 is further configured to, when it is determined that the certificate information carried in the authentication request matches the certificate information issued by the certificate server, enable the second sending module to send 603 a response that the authentication is passed to the terminal device.
It will be understood that the present description is not limited to the precise arrangements described above and shown in the drawings, and that various modifications and changes may be made without departing from the scope thereof. The scope of the present description is limited only by the appended claims.
The above description is only a preferred embodiment of the present disclosure, and should not be taken as limiting the present disclosure, and any modifications, equivalents, improvements, etc. made within the spirit and principle of the present disclosure should be included in the scope of the present disclosure.
Claims (10)
1. A method for obtaining user certificate is applied to access equipment, and is characterized by comprising the following steps:
the access equipment receives an MAC authentication request sent by a terminal;
the access equipment inquires whether the terminal applies for the user certificate from an authentication server;
if the access equipment receives a result that the authentication server returns that the terminal does not apply for the certificate, when receiving an access request sent by the terminal through a Web browser, the access device redirects the access request of the terminal to a client downloading page so that the terminal downloads the client and initiates a certificate application request through the client.
2. The method of claim 1, further comprising: when an MAC authentication request sent by the terminal equipment is received again, whether the terminal applies for a user certificate or not is inquired from an authentication server;
receiving a certificate which is sent by an authentication server and applied by the terminal;
returning a response of MAC authentication failure to the terminal;
and receiving an 802.1x certificate authentication request sent by a client.
3. The method of claim 1, further comprising:
and receiving an isolation ACL issued by the authentication server, wherein the isolation ACL is used for isolating the message sent by the terminal before the terminal passes the authentication.
4. A method for obtaining user certificate is applied to an authentication server, and is characterized by comprising the following steps:
receiving an MAC authentication request which is sent by authentication equipment and is originated from terminal equipment;
inquiring whether the MAC carried in the authentication request applies for a user certificate;
if the user certificate is not applied, sending a result of not applying the certificate to the authentication equipment;
receiving a certificate application request sent by a terminal device through a client;
applying for a certificate to the certificate server;
and sending the applied certificate to the terminal equipment.
5. The method of claim 4, further comprising:
receiving an 802.1x authentication request initiated by the terminal equipment through a client;
and if the certificate information carried in the authentication request is matched with the certificate information issued by the certificate server, sending a response that the authentication is passed to the terminal equipment.
6. An apparatus for obtaining user credentials, the apparatus comprising: the device comprises a receiving module, a sending module, a judging module and a redirecting module;
the receiving module is used for receiving the MAC authentication request sent by the terminal;
a sending module, configured to query an authentication server whether the terminal has applied for a user certificate;
if the judging module determines that the receiving module receives a result that the terminal does not apply for the certificate, which is returned by the authentication server, the redirecting module redirects the access request of the terminal to a client downloading page when the receiving module receives the access request sent by the terminal through a Web browser, so that the terminal downloads the client and initiates a certificate application request through the client.
7. The apparatus according to claim 6, wherein when the receiving module receives the MAC authentication request sent by the terminal device again, the sending module queries the authentication server whether the terminal has applied for the user certificate;
the receiving module is also used for receiving the certificate applied by the terminal and sent by the authentication server;
the sending module is also used for returning a response of MAC authentication failure to the terminal;
the receiving module is further used for receiving an 802.1x certificate authentication request sent by the client.
8. The apparatus according to claim 6, wherein the receiving module is further configured to receive an isolation ACL issued by the authentication server, and the isolation ACL is configured to isolate the message sent by the terminal before the terminal passes the authentication.
9. An apparatus for acquiring user credentials, comprising: the second receiving module, the second sending module and the second judging module;
the second receiving module is used for receiving the MAC authentication request which is sent by the authentication equipment and is originated from the terminal equipment;
the second sending module is used for inquiring whether the MAC carried in the authentication request applies for the user certificate or not;
the second judging module is used for enabling the second sending module to send a result of the non-application certificate to the authentication equipment when judging that the terminal does not apply for the user certificate;
the second receiving module is further used for receiving a certificate application request sent by the terminal device through the client;
the second sending module is further configured to apply for a certificate to the certificate server;
the second sending module is further used for sending the applied certificate to the terminal equipment;
the second receiving module is further configured to receive an 802.1x authentication request initiated by the terminal device through a client; the second judging module is further configured to enable the second sending module to send a response that the authentication is passed to the terminal device when it is judged that the certificate information carried in the authentication request matches the certificate information issued by the certificate server.
10. A terminal device, characterized in that the terminal device sends a MAC authentication request to an authentication server after connecting to a network; sending an access request to access equipment through a web browser on a terminal, wherein the access request is an access request aiming at an external network;
responding to the client downloading interface after the access equipment is redirected;
after downloading a client, initiating a certificate application request to an authentication server through the client;
and receiving and installing the certificate, and sending a certificate authentication request of 802.1x to an authentication server through a client.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011049704.XA CN112311766B (en) | 2020-09-29 | 2020-09-29 | Method and device for acquiring user certificate and terminal equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011049704.XA CN112311766B (en) | 2020-09-29 | 2020-09-29 | Method and device for acquiring user certificate and terminal equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112311766A true CN112311766A (en) | 2021-02-02 |
| CN112311766B CN112311766B (en) | 2022-04-01 |
Family
ID=74489265
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011049704.XA Active CN112311766B (en) | 2020-09-29 | 2020-09-29 | Method and device for acquiring user certificate and terminal equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112311766B (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113630405A (en) * | 2021-07-30 | 2021-11-09 | 北京达佳互联信息技术有限公司 | Network access authentication method and device, electronic equipment and storage medium |
| CN114513314A (en) * | 2022-04-20 | 2022-05-17 | 北京亿赛通科技发展有限责任公司 | Digital certificate detection method and device, electronic equipment and storage medium |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2006067515A (en) * | 2004-08-30 | 2006-03-09 | Ntt Communications Kk | Electronic certificate issuing apparatus, electronic certificate issuing method, electronic certificate issuing program, and electronic certificate download program |
| US20080104401A1 (en) * | 2006-10-27 | 2008-05-01 | International Business Machines Corporation | System, Apparatus, Method, And Program Product For Authenticating Communication Partner Using Electronic Certificate Containing Personal Information |
| CN101188616A (en) * | 2007-12-12 | 2008-05-28 | 四川长虹电器股份有限公司 | Method for terminal to apply for certificate |
| CN105007579A (en) * | 2014-04-24 | 2015-10-28 | 中国移动通信集团广东有限公司 | Wireless local area network access authentication method and terminal |
| CN107229877A (en) * | 2017-06-05 | 2017-10-03 | 北京凤凰理理它信息技术有限公司 | Certificate management, acquisition methods, device, computer program and electronic equipment |
| CN108763967A (en) * | 2018-06-05 | 2018-11-06 | 苏州科达科技股份有限公司 | Obtain system, method, apparatus and the storage medium of device certificate |
| CN110602123A (en) * | 2019-09-21 | 2019-12-20 | 苏州浪潮智能科技有限公司 | Single-point certificate authentication system and method based on micro-service |
| CN111049835A (en) * | 2019-12-16 | 2020-04-21 | 朱亚农 | Unified identity management system of distributed public certificate service network |
| CN111491298A (en) * | 2019-01-28 | 2020-08-04 | 上海擎感智能科技有限公司 | Authentication method and system based on EMQTT server access, server and client |
-
2020
- 2020-09-29 CN CN202011049704.XA patent/CN112311766B/en active Active
Patent Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2006067515A (en) * | 2004-08-30 | 2006-03-09 | Ntt Communications Kk | Electronic certificate issuing apparatus, electronic certificate issuing method, electronic certificate issuing program, and electronic certificate download program |
| US20080104401A1 (en) * | 2006-10-27 | 2008-05-01 | International Business Machines Corporation | System, Apparatus, Method, And Program Product For Authenticating Communication Partner Using Electronic Certificate Containing Personal Information |
| CN101188616A (en) * | 2007-12-12 | 2008-05-28 | 四川长虹电器股份有限公司 | Method for terminal to apply for certificate |
| CN105007579A (en) * | 2014-04-24 | 2015-10-28 | 中国移动通信集团广东有限公司 | Wireless local area network access authentication method and terminal |
| CN107229877A (en) * | 2017-06-05 | 2017-10-03 | 北京凤凰理理它信息技术有限公司 | Certificate management, acquisition methods, device, computer program and electronic equipment |
| CN108763967A (en) * | 2018-06-05 | 2018-11-06 | 苏州科达科技股份有限公司 | Obtain system, method, apparatus and the storage medium of device certificate |
| CN111491298A (en) * | 2019-01-28 | 2020-08-04 | 上海擎感智能科技有限公司 | Authentication method and system based on EMQTT server access, server and client |
| CN110602123A (en) * | 2019-09-21 | 2019-12-20 | 苏州浪潮智能科技有限公司 | Single-point certificate authentication system and method based on micro-service |
| CN111049835A (en) * | 2019-12-16 | 2020-04-21 | 朱亚农 | Unified identity management system of distributed public certificate service network |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113630405A (en) * | 2021-07-30 | 2021-11-09 | 北京达佳互联信息技术有限公司 | Network access authentication method and device, electronic equipment and storage medium |
| CN114513314A (en) * | 2022-04-20 | 2022-05-17 | 北京亿赛通科技发展有限责任公司 | Digital certificate detection method and device, electronic equipment and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112311766B (en) | 2022-04-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110300117B (en) | IOT device and user binding authentication method, device and medium | |
| CN110800331B (en) | Network verification method, related equipment and system | |
| CN112566050B (en) | Cellular service account transfer for an accessory wireless device | |
| EP3120591B1 (en) | User identifier based device, identity and activity management system | |
| JP3526435B2 (en) | Network system | |
| US8108903B2 (en) | Arrangement and a method relating to IP network access | |
| CN105981345B (en) | The Lawful intercept of WI-FI/ packet-based core networks access | |
| CN101702717B (en) | Method, system and equipment for authenticating Portal | |
| US20060218396A1 (en) | Method and apparatus for using generic authentication architecture procedures in personal computers | |
| WO2018058982A1 (en) | Control information pushing method and pushing device, intelligent router and server | |
| CN103796278A (en) | Mobile terminal wireless network access control method | |
| WO2017177691A1 (en) | Portal authentication method and system | |
| CN103200159B (en) | A kind of Network Access Method and equipment | |
| CN104158808A (en) | Portal authentication method based on APP application and device | |
| CN107864475B (en) | WiFi (Wireless Fidelity) shortcut authentication method based on Portal + dynamic password | |
| CN103825881A (en) | Method and apparatus for realizing redirection of WLAN user based on wireless access controller (AC) | |
| CN105873055B (en) | Wireless network access authentication method and device | |
| CN112311766B (en) | Method and device for acquiring user certificate and terminal equipment | |
| WO2012110694A1 (en) | Seamless wi-fi subscription remediation | |
| CN110730174A (en) | Network access control method, device, equipment and medium | |
| WO2018045798A1 (en) | Network authentication method and related device | |
| US8516136B2 (en) | Web-based over-the-air provisioning and activation of mobile terminals | |
| EP2693691B1 (en) | Method and apparatus for initializing gateway in device management system | |
| WO2013189398A2 (en) | Application data push method, device, and system | |
| JP2003242109A (en) | Certification access control server device, gateway device, certification access control method, gateway control method, certification access control program and recording medium with the program recorded thereon, and gateway control program and recording medium with the program recorded thereon |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |