CN101030908A - Method for applying for certificate in wireless LAN WAPI safety mechanism - Google Patents

Method for applying for certificate in wireless LAN WAPI safety mechanism Download PDF

Info

Publication number
CN101030908A
CN101030908A CNA2007100174130A CN200710017413A CN101030908A CN 101030908 A CN101030908 A CN 101030908A CN A2007100174130 A CNA2007100174130 A CN A2007100174130A CN 200710017413 A CN200710017413 A CN 200710017413A CN 101030908 A CN101030908 A CN 101030908A
Authority
CN
China
Prior art keywords
certificate
user
terminal sta
password
user name
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CNA2007100174130A
Other languages
Chinese (zh)
Other versions
CN100454876C (en
Inventor
张变玲
曹军
叶续茂
李波
涂学锋
窦向阳
马奔腾
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Iwncomm Co Ltd
China Mobile Group Design Institute Co Ltd
Original Assignee
China Iwncomm Co Ltd
China Mobile Group Design Institute Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Iwncomm Co Ltd, China Mobile Group Design Institute Co Ltd filed Critical China Iwncomm Co Ltd
Priority to CNB2007100174130A priority Critical patent/CN100454876C/en
Publication of CN101030908A publication Critical patent/CN101030908A/en
Priority to PCT/CN2008/070241 priority patent/WO2008098496A1/en
Application granted granted Critical
Publication of CN100454876C publication Critical patent/CN100454876C/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/321Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/041Key generation or derivation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/068Authentication using credential vaults, e.g. password manager applications or one time password [OTP] applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/069Authentication using certificates or pre-shared keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks
    • H04W84/12WLAN [Wireless Local Area Networks]

Abstract

The method comprises: getting the users' name and password; using enforced PORTAL WEB authentication approach to authenticate users' name and password; if the authentication is successful, the terminal STA can accesses the Internet through wireless access point (AP); applying the users' certificate is made after the terminal STA gets the IP address of authentication server (AS); locally generating private key and public key, and sending the users' certificate applying message to the AS; according to the information in the users' certificate applying message, AS makes authentication; if the authentication is successful, AS generates the terminal users, certificate; after receiving the users' certificate, the terminal STA automatically installs the users' certificate.

Description

The application method of certificate in the wireless LAN WAPI safety mechanism
Technical field
The present invention relates to the application method of certificate in a kind of communication network, automatic application, the installation method of certificate in the WAPI mechanism among especially a kind of WLAN (wireless local area network) WLAN.
Background technology
WLAN (wireless local area network) WLAN (Wireless Local Area Network) with flexibility, agility and the extensibility of its framework, has been widely used in hot zones operation, enterprise, industry and family field in recent years.In May, 2003, China issued the standard GB 15629.11 and the GB15629.1102 in WLAN (wireless local area network) field first.WLAN (wireless local area network) national standards in 2006 are revised the issuing and implementation of single GB15629.11-2003/XG1-2006 and relevant subitem standard GB15629.1101, GB/T15629.1103 and GB15629.1104 for No. 1, begun to take shape WLAN (wireless local area network) national standard system, this national standard system has comprised brand-new WAPI (WLAN Authentication and Privacy Infrastructure) security mechanism.
The WAPI security mechanism is based on certificate and wildcard.When using, terminal, wireless access point AP (Authentication and Privacy) all need install certificate based on the security mechanism of certificate, and prescribed terminal and wireless access point AP are not obtained mode with install certificate in the national standard.The installation method that obtains of user certificate commonly used has two kinds in the practical application:
(1) obtains installation on the spot.The user carries certificate is handled the application user certificate to the place of business of certificate server AS (Authentication Server) relevant account opening procedure, obtain simultaneously with certain storage medium is the user certificate of carrier, take back end, user certificate file in control, the selection storage medium, manual operation is installed step by step.
Use the WAPI security mechanism under operating environment, because the wireless lan network scale covers each geographic area, the whole nation, number of users is huge, and the situation of roaming takes place frequent.Therefore, obtain user certificate on the spot, the user needs directly to arrive the place of business application of certificate server AS, and time-consuming, effort is extremely inconvenient.
(2) long-rangely obtain installation.The user passes through certain access way in terminal, as visit Internet networks such as wired lan access or Dial-up Networks, login authentication server certificate application interface, import the information of every application user certificate requirement, obtain the user certificate file, downloaded stored is in local disk again, and manual operation is installed step by step.
The long-range user certificate that obtains, the user must learn the network address of certificate server AS in advance, and will be familiar with the certificates of recognition application process.
Also there is following shortcoming in the installation of obtaining of above-mentioned two kinds of WAPI security mechanism user certificates:
1. obtain inconvenience is installed, restricted applying that wlan network inserts to a certain extent.
2. fail safe is lower.The private key of certificate correspondence is the key of whole system safe operation, can only be known by the user of certificate correspondence, can not leak.When the private key information of certificate correspondence is passed through the Network Transmission private key, can't guarantee the fail safe of user's private information.
3. fitting operation is complicated.Need artificial step by step interventional procedure during installation, promptly need carry out manual operations such as Artificial Control, selection, input.
Summary of the invention
The object of the present invention is to provide the application method of certificate in a kind of wireless LAN WAPI safety mechanism, it has solved and has obtained the user certificate inconvenience in the background technology, fitting operation complexity, the technical problem that fail safe is lower.
Technical solution of the present invention is:
The application method of certificate in a kind of wireless LAN WAPI safety mechanism, this method comprises following performing step:
(i) obtains the address of certificate server AS:
1. obtain user name and password;
When 2. terminal STA inserts wlan network first, be associated with the wireless access point AP of not enabling WAPI security mechanism pattern;
3. carry out user name and password authentication by the WEB authentication mode of forcing PORTAL; User name and password authentication success, then terminal STA can be visited Internet net NET by wireless access point AP; Access controller AC or PORTAL server PS are sent to user terminal STA to the IP address of certificate server AS in user name and password authentication process or behind the authentication success;
(ii) applies for user certificate:
1. after terminal STA obtains the IP address of certificate server AS, generate private key in this locality, and calculate corresponding PKI;
2. terminal STA sends to certificate server AS to PKI and user name and password information composition user certificate application message that this locality generates, the application user certificate;
3. certificate server AS is according to the information in the terminal STA user certificate application message, and the legitimacy of checking user name and password is proved to be successful the back and generates end-user certificate, and sends to terminal STA;
(iii) installs user certificate:
After terminal STA was received the end-user certificate of certificate server AS transmission, the installation procedure that promptly starts end-user certificate was automatically installed, and end-user certificate is stored in this locality.
After above-mentioned terminal STA obtains the IP address of certificate server AS, generate private key in this locality, and calculate corresponding PKI, all carry out to good with the algorithm of stipulating in the WLAN GB.
Generally be by HTTPS protocol transmission information between above-mentioned terminal STA and the certificate server AS.
Above-mentionedly obtain user name and but the password user obtains user name and password by SMS, also can obtain user name and password by opening an account.
Public key information in the above-mentioned end-user certificate is good to adopt the PKI in the terminal STA user certificate application message.
Above-mentioned private key is stored in terminal STA, and described private key can adopt the password of opening an account that obtains when opening an account to carry out encipherment protection when terminal STA is preserved, and also can point out the user to import new password private key is carried out encipherment protection.
The present invention has the following advantages:
1. be complementary with present WLAN (wireless local area network) national standard, practical, be easy to promote, use.
2. it is convenient to obtain, install: the user need not the place of business and goes through the formalities on the spot, also need not to know certificate server AS network address, can apply for automatically and install certificate.
3. fail safe is good.The private key and the PKI of certificate correspondence are generated by subscriber's local, and private key is not in transmission over networks, transmission over networks only be the public key information of ostensible private key correspondence, user name, password etc. have been guaranteed the fail safe of user's private information by escape way transmission.
Description of drawings
Fig. 1 is the network topological diagram of application example of the present invention.
The drawing reference numeral explanation:
Wireless access point AP, certificate server AS, access controller AC, certificate server RS, terminal STA, the PORTAL server PS, Internet nets NET.
Embodiment
The present invention is on the basis that meets present WLAN (wireless local area network) national standard, the expansion that the application and the installation of user certificate are carried out.Performing step of the present invention is as follows:
(i) obtains the address of certificate server AS:
1. obtain user name and password.Obtaining user name and password is that the user obtains user name and password by SMS, or obtains user name and password by opening an account.
When 2. terminal STA inserts wlan network first, not enable WAPI security mechanism pattern association to wireless access point AP;
3. carry out user name and password authentication by the WEB authentication mode of forcing PORTAL.User name and password authentication success, then terminal STA can be visited Internet net NET by wireless access point AP.Access controller AC or PORTAL server PS are sent to terminal STA to the IP address of certificate server AS in the verification process of user name and password or behind the authentication success.The WEB authentication mode of PORTAL is known authentication mode.
(ii) applies for user certificate:
1. after terminal STA obtained the IP address of certificate server AS, the algorithm of stipulating in according to the WLAN GB in this locality generated private key, and calculated corresponding PKI.Private key and PKI are one to one, and password is used to protect the fail safe of private key.
2. terminal STA is issued certificate server AS to PKI and user name and password information composition user certificate application message that this locality generates, the application user certificate.Pass through HTTPS protocol transmission information between terminal STA and the certificate server AS, to guarantee the fail safe of user's private information.The HTTPS agreement is a Secure Hypertext Transfer Protocol.
3. certificate server AS is according to the information in the terminal STA user certificate application message, and the legitimacy of checking user name and password is proved to be successful the back and generates end-user certificate, sends to terminal STA.Public key information in the end-user certificate adopts the PKI in the terminal STA user certificate application message.
(iii) installs user certificate
After terminal STA was received the end-user certificate of certificate server AS transmission, the installation procedure that promptly starts end-user certificate was automatically installed, and end-user certificate is stored in this locality.
Private key is stored in terminal STA.Private key can adopt the password of opening an account that obtains when opening an account that private key is carried out encipherment protection when terminal STA is preserved, or points out the user to import new password private key is carried out encipherment protection.
The manual operation that participates in of user of the present invention only is the input the user name and password, and the application of end-user certificate, download and installation are and finish automatically, have therefore simplified user's operation, have improved fail safe simultaneously again.

Claims (6)

1. the application method of certificate in the wireless LAN WAPI safety mechanism is characterized in that this method comprises following performing step:
(i) obtains the address of certificate server AS:
1. obtain user name and password;
When 2. terminal STA inserts wlan network first, be associated with the wireless access point AP of not enabling WAPI security mechanism pattern;
3. carry out user name and password authentication by the WEB authentication mode of forcing PORTAL; User name and password authentication success, then terminal STA can be visited Internet net NET by wireless access point AP; Access controller AC or PORTAL server PS are sent to user terminal STA to the IP address of certificate server AS in user name and password authentication process or behind the authentication success;
(ii) applies for user certificate:
1. after terminal STA obtains the IP address of certificate server AS, generate private key in this locality, and calculate corresponding PKI;
2. terminal STA sends to certificate server AS to PKI and user name and password information composition user certificate application message that this locality generates, the application user certificate;
3. certificate server AS is according to the information in the terminal STA user certificate application message, and the legitimacy of checking user name and password is proved to be successful the back and generates end-user certificate, and sends to terminal STA;
(iii) installs user certificate:
After terminal STA was received the end-user certificate of certificate server AS transmission, the installation procedure that promptly starts end-user certificate was automatically installed, and end-user certificate is stored in this locality.
2. the application method of certificate in the wireless LAN WAPI safety mechanism according to claim 1, it is characterized in that: after described terminal STA obtains the IP address of certificate server AS, generate private key in this locality, and calculate corresponding PKI, all carry out according to the algorithm of stipulating in the WLAN GB.
3. the application method of certificate in the wireless LAN WAPI safety mechanism according to claim 1 and 2 is characterized in that: be by HTTPS protocol transmission information between described terminal STA and the certificate server AS.
4. the application method of certificate in the wireless LAN WAPI safety mechanism according to claim 3 is characterized in that: describedly obtain user name and password is that the user obtains user name and password by SMS, or obtain user name and password by opening an account.
5. the application method of certificate in the wireless LAN WAPI safety mechanism according to claim 4 is characterized in that: the public key information in the described end-user certificate adopts the PKI in the terminal STA user certificate application message.
6. the application method of certificate in the wireless LAN WAPI safety mechanism according to claim 5, it is characterized in that: described private key is stored in terminal STA; Described private key adopts the password of opening an account that obtains when opening an account to carry out encipherment protection when terminal STA is preserved, or points out the user to import new password private key is carried out encipherment protection.
CNB2007100174130A 2007-02-06 2007-02-06 Method for applying for certificate in wireless LAN WAPI safety mechanism Expired - Fee Related CN100454876C (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CNB2007100174130A CN100454876C (en) 2007-02-06 2007-02-06 Method for applying for certificate in wireless LAN WAPI safety mechanism
PCT/CN2008/070241 WO2008098496A1 (en) 2007-02-06 2008-02-02 Application method for certificate in wapi safety mechanism of wireless local area network

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CNB2007100174130A CN100454876C (en) 2007-02-06 2007-02-06 Method for applying for certificate in wireless LAN WAPI safety mechanism

Publications (2)

Publication Number Publication Date
CN101030908A true CN101030908A (en) 2007-09-05
CN100454876C CN100454876C (en) 2009-01-21

Family

ID=38716002

Family Applications (1)

Application Number Title Priority Date Filing Date
CNB2007100174130A Expired - Fee Related CN100454876C (en) 2007-02-06 2007-02-06 Method for applying for certificate in wireless LAN WAPI safety mechanism

Country Status (2)

Country Link
CN (1) CN100454876C (en)
WO (1) WO2008098496A1 (en)

Cited By (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2008098496A1 (en) * 2007-02-06 2008-08-21 China Iwncomm Co., Ltd. Application method for certificate in wapi safety mechanism of wireless local area network
CN101783806A (en) * 2010-03-15 2010-07-21 杭州华三通信技术有限公司 Portal certificate authentication method and device
WO2010124490A1 (en) * 2009-04-30 2010-11-04 中兴通讯股份有限公司 Wireless local area network authentication and privacy infrastructure certificate obtaining method and system
CN101895831A (en) * 2009-05-20 2010-11-24 中国电信股份有限公司 Realization method for wireless local area network (WLAN) verification and communication terminal
WO2010148804A1 (en) * 2009-12-25 2010-12-29 中兴通讯股份有限公司 System and method for visiting web application site
CN102045716A (en) * 2010-12-06 2011-05-04 西安西电捷通无线网络通信股份有限公司 Method and system for safe configuration of station (STA) in wireless local area network (WLAN)
CN101582856B (en) * 2009-06-29 2012-01-11 杭州华三通信技术有限公司 Session setup method of portal server and BAS (broadband access server) device and system thereof
CN102547695A (en) * 2012-03-09 2012-07-04 成都飞鱼星科技开发有限公司 Security authentication method for wireless network
CN101699894B (en) * 2009-11-10 2012-07-25 广州杰赛科技股份有限公司 Method and device for processing authentication request in authentication server cluster
CN101662766B (en) * 2009-09-25 2012-09-05 中国电信股份有限公司 Method for realizing WAPI and centralized access controller device
CN102833744A (en) * 2012-06-28 2012-12-19 宇龙计算机通信科技(深圳)有限公司 Method and system for obtaining wireless LAN authentication and privacy Infrastructure (WAPI) certificate
WO2013189234A1 (en) * 2012-06-21 2013-12-27 中兴通讯股份有限公司 Sta rejection method and device
CN104994118A (en) * 2015-08-11 2015-10-21 吴培希 WiFi authentication system and method based on dynamic password
WO2015168913A1 (en) * 2014-05-08 2015-11-12 华为技术有限公司 Certificate acquisition method and device
CN105553671A (en) * 2015-12-23 2016-05-04 北京奇虎科技有限公司 Digital certificate managing method, device and system
CN106789884A (en) * 2016-11-16 2017-05-31 上海斐讯数据通信技术有限公司 A kind of portal authentication method and system
CN107360124A (en) * 2016-05-10 2017-11-17 普天信息技术有限公司 Access authentication method and device, WAP and user terminal
CN107517475A (en) * 2016-06-16 2017-12-26 艾默生网络能源有限公司 A kind of method for monitoring power supply and device
CN112312395A (en) * 2019-07-17 2021-02-02 中国电信股份有限公司 WAPI certificate centralized distribution method and system
CN114760070A (en) * 2022-04-22 2022-07-15 深圳市永达电子信息股份有限公司 Digital certificate issuing method, digital certificate issuing center and readable storage medium

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101547444B (en) * 2009-03-11 2010-11-03 西安西电捷通无线网络通信股份有限公司 Method for providing special access process to different terminals in WLAN
CN102026196A (en) * 2010-12-30 2011-04-20 东莞宇龙通信科技有限公司 Authentication method based on WAPI ( wireless LAN authentication and privacy infrastructure), access point and mobile terminal
KR102098239B1 (en) * 2012-12-04 2020-04-08 삼성전자주식회사 Method and apparatus for setting up internet protocol address in a wireless communication system

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1191703C (en) * 2001-12-31 2005-03-02 西安西电捷通无线网络通信有限公司 Safe inserting method of wide-band wireless IP system mobile terminal
CN1191696C (en) * 2002-11-06 2005-03-02 西安西电捷通无线网络通信有限公司 Sefe access of movable terminal in radio local area network and secrete data communication method in radio link
US20050135622A1 (en) * 2003-12-18 2005-06-23 Fors Chad M. Upper layer security based on lower layer keying
CN1674497A (en) * 2004-03-26 2005-09-28 华为技术有限公司 Certification method for WLAN terminal switching in mobile network
CN1697370A (en) * 2004-05-14 2005-11-16 华为技术有限公司 Method for mobile terminal in WLAN to apply for certificate
CN1700639A (en) * 2004-05-21 2005-11-23 华为技术有限公司 Method for leading-in and leading-out WLAN authentication and privacy infrastructure certificate information
FI20050491A0 (en) * 2005-05-09 2005-05-09 Nokia Corp System for delivery of certificates in a communication system
CN100454876C (en) * 2007-02-06 2009-01-21 西安西电捷通无线网络通信有限公司 Method for applying for certificate in wireless LAN WAPI safety mechanism

Cited By (32)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2008098496A1 (en) * 2007-02-06 2008-08-21 China Iwncomm Co., Ltd. Application method for certificate in wapi safety mechanism of wireless local area network
CN101540679B (en) * 2009-04-30 2011-09-21 中兴通讯股份有限公司 Method for acquiring WLAN authentication and privacy infrastructure certificate and system thereof
WO2010124490A1 (en) * 2009-04-30 2010-11-04 中兴通讯股份有限公司 Wireless local area network authentication and privacy infrastructure certificate obtaining method and system
CN101895831A (en) * 2009-05-20 2010-11-24 中国电信股份有限公司 Realization method for wireless local area network (WLAN) verification and communication terminal
CN101895831B (en) * 2009-05-20 2014-06-25 中国电信股份有限公司 Realization method for wireless local area network (WLAN) verification and communication terminal
CN101582856B (en) * 2009-06-29 2012-01-11 杭州华三通信技术有限公司 Session setup method of portal server and BAS (broadband access server) device and system thereof
CN101662766B (en) * 2009-09-25 2012-09-05 中国电信股份有限公司 Method for realizing WAPI and centralized access controller device
CN101699894B (en) * 2009-11-10 2012-07-25 广州杰赛科技股份有限公司 Method and device for processing authentication request in authentication server cluster
WO2010148804A1 (en) * 2009-12-25 2010-12-29 中兴通讯股份有限公司 System and method for visiting web application site
CN101771722B (en) * 2009-12-25 2014-05-28 中兴通讯股份有限公司南京分公司 System and method for WAPI terminal to access Web application site
CN101783806A (en) * 2010-03-15 2010-07-21 杭州华三通信技术有限公司 Portal certificate authentication method and device
CN101783806B (en) * 2010-03-15 2014-06-25 杭州华三通信技术有限公司 Portal certificate authentication method and device
CN102045716A (en) * 2010-12-06 2011-05-04 西安西电捷通无线网络通信股份有限公司 Method and system for safe configuration of station (STA) in wireless local area network (WLAN)
CN102045716B (en) * 2010-12-06 2012-11-28 西安西电捷通无线网络通信股份有限公司 Method and system for safe configuration of station (STA) in wireless local area network (WLAN)
CN102547695A (en) * 2012-03-09 2012-07-04 成都飞鱼星科技开发有限公司 Security authentication method for wireless network
CN102547695B (en) * 2012-03-09 2014-11-26 成都飞鱼星科技股份有限公司 Security authentication method for wireless network
WO2013189234A1 (en) * 2012-06-21 2013-12-27 中兴通讯股份有限公司 Sta rejection method and device
CN102833744B (en) * 2012-06-28 2016-01-13 宇龙计算机通信科技(深圳)有限公司 Obtain the method and system of WAPI certificate
CN102833744A (en) * 2012-06-28 2012-12-19 宇龙计算机通信科技(深圳)有限公司 Method and system for obtaining wireless LAN authentication and privacy Infrastructure (WAPI) certificate
CN105264818B (en) * 2014-05-08 2018-10-30 华为技术有限公司 A kind of certificate acquisition method and apparatus
WO2015168913A1 (en) * 2014-05-08 2015-11-12 华为技术有限公司 Certificate acquisition method and device
CN105264818A (en) * 2014-05-08 2016-01-20 华为技术有限公司 Certificate acquisition method and device
RU2646317C1 (en) * 2014-05-08 2018-03-02 Хуавэй Текнолоджиз Ко., Лтд. Method and device for receiving certificate
US10367647B2 (en) 2014-05-08 2019-07-30 Huawei Technologies Co., Ltd. Certificate acquiring method and device
CN104994118A (en) * 2015-08-11 2015-10-21 吴培希 WiFi authentication system and method based on dynamic password
CN105553671A (en) * 2015-12-23 2016-05-04 北京奇虎科技有限公司 Digital certificate managing method, device and system
CN105553671B (en) * 2015-12-23 2019-05-14 北京奇虎科技有限公司 A kind of management method of digital certificate, apparatus and system
CN107360124A (en) * 2016-05-10 2017-11-17 普天信息技术有限公司 Access authentication method and device, WAP and user terminal
CN107517475A (en) * 2016-06-16 2017-12-26 艾默生网络能源有限公司 A kind of method for monitoring power supply and device
CN106789884A (en) * 2016-11-16 2017-05-31 上海斐讯数据通信技术有限公司 A kind of portal authentication method and system
CN112312395A (en) * 2019-07-17 2021-02-02 中国电信股份有限公司 WAPI certificate centralized distribution method and system
CN114760070A (en) * 2022-04-22 2022-07-15 深圳市永达电子信息股份有限公司 Digital certificate issuing method, digital certificate issuing center and readable storage medium

Also Published As

Publication number Publication date
CN100454876C (en) 2009-01-21
WO2008098496A1 (en) 2008-08-21

Similar Documents

Publication Publication Date Title
CN101030908A (en) Method for applying for certificate in wireless LAN WAPI safety mechanism
US7788703B2 (en) Dynamic authentication in secured wireless networks
CN1186906C (en) Wireless LAN safety connecting-in control method
CN1788244A (en) An arrangement and a method relating to IP network access
CN1753364A (en) Method of controlling network access and its system
CN102111326B (en) Method, system and device for realizing mobility in layer 2 tunnel protocol virtual private network
CN1977514A (en) Authenticating users
CN1444386A (en) Safe inserting method of wide-band wireless IP system mobile terminal
DK2924944T3 (en) Presence authentication
CN1668005A (en) An access authentication method suitable for wired and wireless network
JP2010504670A (en) How to get and check public key certificate status
CN1649435A (en) Method for realizing roaming user to visit network inner service
CN1662092A (en) Access authentication method and equipment in data packet network at high speed
WO2008034355A1 (en) The method, device and system for network service authenticating
CN1725687A (en) Security identification method
CN1885770B (en) Authentication method
CN109274579A (en) It is a kind of that user's uniform authentication method is applied based on wechat platform more
CN104683296A (en) Safe authentication method and safe authentication system
CN107295510B (en) Method, equipment and system for realizing access control of home base station based on OCSP (online charging protocol)
CN1725685A (en) Security identification method for mobiole terminal of radio cocal network
CN1659558A (en) Broker-based interworking using hierarchical certificates
US8655318B2 (en) Method and system for anonymous operation of a mobile node
CN1874222A (en) Method, terminal device and access point for providing security communication conversation
CN101232371B (en) Verification method of digital signature under stream media business level networking architecture
CN1225941C (en) Roaming access method of mobile node in radio IP system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
C56 Change in the name or address of the patentee

Owner name: XI'AN IWNCOMM CO., LTD.

Free format text: FORMER NAME: XIDIAN JIETONG WIRELESS NETWORK COMMUNICATION CO LTD, XI'AN

CP01 Change in the name or title of a patent holder

Address after: High tech Zone technology two road 710075 Shaanxi city of Xi'an Province, No. 68 Xi'an Software Park A201

Co-patentee after: CHINA MOBILE GROUP DESIGN INSTITUTE Co.,Ltd.

Patentee after: CHINA IWNCOMM Co.,Ltd.

Address before: High tech Zone technology two road 710075 Shaanxi city of Xi'an Province, No. 68 Xi'an Software Park A201

Co-patentee before: CHINA MOBILE GROUP DESIGN INSTITUTE Co.,Ltd.

Patentee before: CHINA IWNCOMM Co.,Ltd.

CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20090121

Termination date: 20220206