CN101252434B - Apparatus and method for implementing mobile telephone access identification in wireless local area network - Google Patents
Apparatus and method for implementing mobile telephone access identification in wireless local area network Download PDFInfo
- Publication number
- CN101252434B CN101252434B CN2008100175848A CN200810017584A CN101252434B CN 101252434 B CN101252434 B CN 101252434B CN 2008100175848 A CN2008100175848 A CN 2008100175848A CN 200810017584 A CN200810017584 A CN 200810017584A CN 101252434 B CN101252434 B CN 101252434B
- Authority
- CN
- China
- Prior art keywords
- digital certificate
- sim card
- certificate
- access point
- mobile phone
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/068—Authentication using credential vaults, e.g. password manager applications or one time password [OTP] applications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/069—Authentication using certificates or pre-shared keys
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0853—Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
Disclosed are a device for realizing mobile-phone access authentication in WLAN and the related method. The device comprises a mobile-phone with an integrated WLAN module and a WAPI authentication module, and a SIM card arranged inside the mobile-phone; a space for memorizing a digital certificate is arranged inside the SIM card. Firstly, the digital certificate is memorized into the SIM card; the mobile-phone is linked with a access point; the access point activates the authentication; then the digital certificate is read by the WAPI authentication module from the SIM card and sent to the access point; after the authentication between the access point and the mobile-phone is done, the mobile-phone accesses to the WLAN. Using the SIM card to read the digital certificate, the invention provides the WAPI mobile-phone which can be used as a WLAN entity terminal; the WAPI mobile-phone realizes the management and authentication when the WLAN mobile-phone accesses to the WLAN, avoids the inconvenience that the digital certificate has to be re-read when the user changes the mobile-phone, and facilitates the wireless download of the digital certificate and the active updating by the user.
Description
Technical field
The present invention relates to a kind of Apparatus and method for of access authentication of WLAN, relate in particular to a kind of Apparatus and method for of the mobile telephone access identification based on WAPI.
Background technology
Along with the issuing and implementation of international standard and GB 15629.11 serial national standards, WLAN (wireless local area network) has obtained application more and more widely, not only is used for independently equipment for surfing the net, and more and more is integrated in teleworking equipment and the consumer-elcetronics devices.Integrated WLAN module has become the needs of user and market development in the present mobile phone.
The WLAN mobile phone is a kind of communication tool based on wireless lan (wlan) and Internet.When mobile phone carries out the wireless network connection by WLAN, need to support GB15629.11 series WLAN (wireless local area network) national standard, wherein security is the WAPI security protocol, the WAPI security protocol adopts certificate mechanism, can guarantee the bidirectional identity authentication between terminal and the network, and the safety of data communication.Generally be logic independently WLAN module and the authentication module that in mobile phone, adopts integrated special use, digital certificate directly deposits in the authentication module, in this case, when changing the WLAN mobile phone, the user need write digital certificate again, make troubles to the user, to operator digital certificate and user being managed concentratedly simultaneously makes troubles, and influences the fail safe of Radio Link.In addition, because mobile phone belongs to the consumer electronics series products, the design of user interface must be simplified very much, and user's management also must realize centralization, otherwise can't realize that operation is used on a large scale.
Summary of the invention
The purpose of this invention is to provide a kind of Apparatus and method at the wireless local network mobile telephone access identification, there is potential safety hazard in its access authentication method that has solved existing WLAN mobile phone, and the user uses inconvenient and the inconvenient technical problem of operator's management.
Technical solution of the present invention is:
A kind of equipment at the wireless local network mobile telephone access identification comprises the mobile phone 1 that is integrated with WLAN module 11 and WAPI authentication module 12 and is arranged on SIM card 2 in the mobile phone 1; Be provided with the digital certificate store space that keeps or keep by file by fixed address in the described SIM card 2.
Above-mentioned digital certificate comprises certificate.
Above-mentioned digital certificate also can comprise certificate and private key.
A kind of method at the wireless local network mobile telephone access identification may further comprise the steps:
1] digital certificate is downloaded;
Described digital certificate is downloaded and is comprised that the user initiatively initiates the digital certificate download and operator initiatively initiates the updating digital certificate dual mode;
Workflow when described user initiatively initiates the digital certificate download is as follows:
101] user initiates the digital certificate download request by SIM card; The OTA server receives the SIM card request;
102] the OTA server carries out descending OTA message data form packing with the digital certificate content of this SIM card; And many digital certificate data bags are sent to SIM card;
103] SIM card receives packet, treat that all packets of digital certificate receive after, carry out data parsing;
104] SIM card will be resolved good digital certificate data and will be updated to digital certificate store space in the SIM card;
105] SIM card sends updating digital certificate and responds the server to OTA;
Workflow when described operator initiatively initiates updating digital certificate is as follows:
111] operator's active issuing digital certificate update instruction; The OTA server receives update instruction;
112] the OTA server carries out the packing of RFM message data form with the digital certificate content of this SIM card; And many digital certificate data bags are sent to SIM card;
113] SIM card receives packet, treat that all packets of digital certificate receive after, carry out data parsing;
114] SIM card will be resolved good digital certificate data and will be updated to digital certificate store space in the SIM card;
115] SIM card sends updating digital certificate and responds the server to OTA;
2] digital certificate is deposited in digital certificate store space in the SIM card;
3] mobile phone association is to access point, the access point activating and authenticating;
4] the WAPI authentication module reads digital certificate from SIM card;
5] the WAPI authentication module sends to access point to digital certificate, authenticates between mobile phone and the access point;
The step that authenticates between described mobile phone and the access point is as follows:
Mobile phone sends the access authentication request to access point, is about to digital certificate and mails to access point;
After access point is received the access authentication request, send the certificate verification request, be about to the certificate of mobile phone and the certificate formation certificate verification request message of access point and send to the AS server to the AS server;
After the AS server is received access point certificate verification request, the legitimacy of the certificate of checking mobile phone and the certificate of access point;
After verifying, the AS server constitutes the certificate verification response message with mobile phone certificate verification object information and access point certificate verification object information and AS server to the signature of above-mentioned information and sends back to access point;
Access point carries out signature verification to the certificate verification response that the AS server returns, and obtains the authentication result of mobile phone certificate;
Access point is formed the access authentication response message with mobile phone certificate verification object information, access point certificate verification object information and access point to their signature and is recycled to mobile phone;
Behind the signature of mobile phone checking AS server, obtain the authentication result of access point certificate;
6] authentication success, mobile phone inserts WLAN (wireless local area network).
Above-mentioned steps 2] be by OTA system remote downloading digital certificate, and deposit digital certificate in the SIM card digital certificate store space.
Above-mentioned steps 2] can also be to deposit digital certificate in the SIM card digital certificate store space with machine card (mobile phone and the SIM card) interface instruction of local handset by SIM card.
Above-mentioned digital certificate is to be stored in the SIM card by document form.
Above-mentioned digital certificate also can directly be stored in the fixed address of SIM card.
The present invention has following advantage:
Management and authentication when 1, the scheme of the present invention by SIM card access digital certificate realized that mobile phone inserts WLAN greatly facilitate the management of operator.
2, present device based on the certificate scheme of WAPI agreement, can make wireless link security obtain tremendous increase as a kind of entity terminal of WLAN.Because remote update digital certificate, the digital certificate content just sends after encrypting and calculate CRC check by the OTA server end, and SIM card obtains just being decrypted with verification behind the complete note bag and obtains the digital certificate content, digital certificates are the ciphertext transmission in whole transmission course, thereby make the fail safe of digital certificate granting be greatly improved.Adopt the SIM card mode to manage certificate, can manage concentratedly, broken through the bottleneck that the user can't manage concentratedly when mobile phone inserted WLAN the user.
Need write the inconvenience that digital certificate brings again when 3, the present invention avoids the user to change the WLAN mobile phone, and at present the cellphone subscriber authentication and charge and all realize, the user experience before compatible by SIM card.
4, the present invention adopts the stored in file format digital certificate in SIM card, has made things convenient for the aerial download and the user of digital certificate initiatively to upgrade.
Description of drawings
Fig. 1 is the structural representation of the present invention at the equipment of wireless local network mobile telephone access identification;
Fig. 2 is the flow chart of the present invention in the method for wireless local network mobile telephone access identification.
Embodiment
With reference to shown in Figure 1, the present invention comprises the mobile phone that is integrated with WLAN module and WAPI authentication module and is arranged on SIM card in the mobile phone at the equipment of wireless local network mobile telephone access identification.Be provided with the digital certificate store space that keeps or keep by file by fixed address in the SIM card.Digital certificate can include only certificate, also can comprise certificate and private key.
With reference to shown in Figure 2, the present invention may further comprise the steps in the method for wireless local network mobile telephone access identification:
1] deposit digital certificate in the SIM card digital certificate store space by two kinds of different modes: a kind of is by OTA system remote downloading digital certificate, and deposits digital certificate in the SIM card digital certificate store space; Another kind is to deposit digital certificate in the SIM card digital certificate store space with machine card (mobile phone and the SIM card) interface instruction of local handset by SIM card.Digital certificate is to be stored in the fixed address that in the SIM card or directly is stored in SIM card by document form.
2] when mobile phone association arrives access point (AP), send authentication by access point to mobile phone and activate to start whole authentication process.
3] the WAPI authentication module reads digital certificate from SIM card.
4] authenticate between mobile phone and the access point, specifically may further comprise the steps:
Mobile phone sends the access authentication request to access point, is about to digital certificate and mails to access point;
After access point is received the access authentication request, send the certificate verification request, be about to the certificate of mobile phone and the certificate formation certificate verification request message of access point and send to the AS server to the AS server;
After the AS server is received access point certificate verification request, the legitimacy of the certificate of checking mobile phone and the certificate of access point;
After verifying, the AS server constitutes the certificate verification response message with mobile phone certificate verification object information and access point certificate verification object information and AS server to the signature of above-mentioned information and sends back to access point;
Access point carries out signature verification to the certificate verification response that the AS server returns, and obtains the authentication result of mobile phone certificate;
Access point is formed the access authentication response message with mobile phone certificate verification object information, access point certificate verification object information and access point to their signature and is recycled to mobile phone;
Behind the signature of mobile phone checking AS server, obtain the authentication result of access point certificate;
Whether mobile phone inserts this access point according to this authentication result decision.
5] so far finished the certificate verification process between mobile phone and the access point.If authentication success, then access point allows mobile phone to insert, otherwise removes its association.
The present invention uses the telemanagement that download system just can be finished mobile phone digital certificate by this OTA.
Workflow when the user initiatively initiates the digital certificate download is as follows:
1] user initiates the digital certificate download request by SIM card; The OTA server receives the SIM card request;
2] the OTA server carries out descending OTA message data form packing with the digital certificate content of this SIM card; And many digital certificate data bags are sent to SIM card;
3] SIM card receives packet, treat that all packets of digital certificate receive after, carry out data parsing;
4] SIM card will be resolved good digital certificate data and will be updated to digital certificate store space in the SIM card;
5] SIM card sends updating digital certificate and responds the server to OTA.
Workflow when operator initiatively initiates updating digital certificate is as follows:
1] operator's active issuing digital certificate update instruction; The OTA server receives update instruction;
2] the OTA server carries out the packing of RFM message data form with the digital certificate content of this SIM card; And many digital certificate data bags are sent to SIM card;
3] SIM card receives packet, treat that all packets of digital certificate receive after, carry out data parsing;
4] SIM card will be resolved good digital certificate data and will be updated to digital certificate store space in the SIM card;
5] SIM card sends updating digital certificate and responds the server to OTA.
Data Structures is as follows:
1, upgoing O TA message data form
OTA upstream data packet header | Order data |
[0059]The order data basic format is with reference to as follows:
Command type | Order length | Command parameter |
The order data definition is with reference to as follows:
A) digital certificate download request
Project | Title | Length (byte) | Value | Explanation |
Command type | The digital certificate download request | 1 | ?HEX | Distinguish other OTA up-on command data types |
Command parameter length | Length | 1 | ?HEX | The subsequent parameter length value can be 0 herein |
B) digital certificate download/renewal is confirmed
Project | Title | Length (byte) | Value | Explanation |
Command type | Digital certificate download/renewal is confirmed | 1 | HEX | Distinguish other OTA up-on command data types |
Command parameter length | Length | 1 | 1 | The subsequent parameter length value |
Command parameter | Download/renewal result | 1 | HEX | 0 failed download 1 is downloaded successfully |
2, descending OTA message data form
Packet:
OTA downlink data packet header | Order data |
Order data:
Command type | Order length | Command parameter |
Order data is with reference to as follows
A) digital certificate is downloaded
Project | Title | Length (byte) | Value | Explanation |
Command type | Digital certificate is downloaded | 1 | HEX | Distinguish other OTA up-on command data types |
Command parameter length | Length | 1 | HEX | The subsequent parameter length value comprises follow-up offset address and data herein |
Offset address | Skew | 2 | HEX | Be used for indicating the offset address of follow-up data at digital certificate |
Data | Digital certificate data | X | HEX | Above offset address place digital certificate content |
3, RFM message format
Packet:
RFM downlink data packet header | Order data |
The order data basic format is with reference to as follows:
Select File | Update instruction 1 | Update instruction 2 | …… |
The groundwork flow process of mobile phone digital certificate read method that the present invention is based on WAPI is as follows:
1] by select File Instruction Selection digital certificate file;
2] by Authority Verification instruction checking digital certificate file reservation;
3] by the file reading command specify Offsets and length certificate information is read.
The groundwork flow process of mobile phone digital certificate update method that the present invention is based on WAPI is as follows:
1] by select File Instruction Selection digital certificate file;
2] upgrade authority by Authority Verification instruction checking digital certificate file;
3] by the file update instruction specify Offsets and length certificate information is upgraded.
Part vocabulary of terms of the present invention is explained as follows:
WLAN:Wireless Local Area Network, WLAN (wireless local area network)
WAPI:WLAN?Authentication?and?Privacy?Infrastructure
SIM: user identification module (Subscriber Identify Module)
CLA:Clase, the order class
OTA:Over The Air, the aerial download
RFM:Remote File Management remote document management.
Claims (8)
1. equipment at the wireless local network mobile telephone access identification is characterized in that: comprise the mobile phone (1) that is integrated with WLAN module (11) and WAPI authentication module (12) and be arranged on SIM card (2) in the mobile phone (1); Be provided with the digital certificate store space that keeps or keep by file by fixed address in the described SIM card (2).
2. a kind of equipment at the wireless local network mobile telephone access identification according to claim 1, it is characterized in that: described digital certificate comprises certificate.
3. will want 1 described a kind of equipment at the wireless local network mobile telephone access identification according to right, it is characterized in that: described digital certificate comprises certificate and private key.
4. method at the wireless local network mobile telephone access identification, it is characterized in that: it may further comprise the steps:
1] digital certificate is downloaded;
Described digital certificate is downloaded and is comprised that the user initiatively initiates the digital certificate download and operator initiatively initiates the updating digital certificate dual mode;
Workflow when described user initiatively initiates the digital certificate download is as follows:
101] user initiates the digital certificate download request by SIM card; The OTA server receives the SIM card request;
102] the OTA server carries out descending OTA message data form packing with the digital certificate content of this SIM card; And many digital certificate data bags are sent to SIM card;
103] SIM card receives packet, treat that all packets of digital certificate receive after, carry out data parsing;
104] SIM card will be resolved good digital certificate data and will be updated to digital certificate store space in the SIM card;
105] SIM card sends updating digital certificate and responds the server to OTA;
Workflow when described operator initiatively initiates updating digital certificate is as follows:
111] operator's active issuing digital certificate update instruction; The OTA server receives update instruction;
112] the OTA server carries out the packing of RFM message data form with the digital certificate content of this SIM card; And many digital certificate data bags are sent to SIM card;
113] SIM card receives packet, treat that all packets of digital certificate receive after, carry out data parsing;
114] SIM card will be resolved good digital certificate data and will be updated to digital certificate store space in the SIM card;
115] SIM card sends updating digital certificate and responds the server to OTA;
2] digital certificate is deposited in digital certificate store space in the SIM card;
3] mobile phone association is to access point, the access point activating and authenticating;
4] the WAPI authentication module reads digital certificate from SIM card;
5] the WAPI authentication module sends to access point to digital certificate, authenticates between mobile phone and the access point;
The step that authenticates between described mobile phone and the access point is as follows:
Mobile phone sends the access authentication request to access point, is about to digital certificate and mails to access point;
After access point is received the access authentication request, send the certificate verification request, be about to the certificate of mobile phone and the certificate formation certificate verification request message of access point and send to the AS server to the AS server;
After the AS server is received access point certificate verification request, the legitimacy of the certificate of checking mobile phone and the certificate of access point;
After verifying, the AS server constitutes the certificate verification response message with mobile phone certificate verification object information and access point certificate verification object information and AS server to the signature of above-mentioned information and sends back to access point;
Access point carries out signature verification to the certificate verification response that the AS server returns, and obtains the authentication result of mobile phone certificate;
Access point is formed the access authentication response message with mobile phone certificate verification object information, access point certificate verification object information and access point to their signature and is recycled to mobile phone;
Behind the signature of mobile phone checking AS server, obtain the authentication result that access point advances book;
6] authentication success, mobile phone inserts WLAN (wireless local area network).
5. a kind of method at the wireless local network mobile telephone access identification according to claim 4 is characterized in that: described step 2] be by OTA system remote downloading digital certificate, and deposit digital certificate in the SIM card digital certificate store space.
6. a kind of method at the wireless local network mobile telephone access identification according to claim 4 is characterized in that: described step 2] be to deposit digital certificate in the SIM card digital certificate store space with the machine card instruction of local handset by SIM card.
7. a kind of method at the wireless local network mobile telephone access identification according to claim 4, it is characterized in that: described digital certificate is to be stored in the SIM card by document form.
8. a kind of equipment at the wireless local network mobile telephone access identification according to claim 4, it is characterized in that: described digital certificate directly is stored in the fixed address of SIM card.
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2008100175848A CN101252434B (en) | 2008-02-29 | 2008-02-29 | Apparatus and method for implementing mobile telephone access identification in wireless local area network |
PCT/CN2009/070546 WO2009106003A1 (en) | 2008-02-29 | 2009-02-26 | An apparatus and a method for implementing access authentication of mobile phone in wireless local area network |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2008100175848A CN101252434B (en) | 2008-02-29 | 2008-02-29 | Apparatus and method for implementing mobile telephone access identification in wireless local area network |
Publications (2)
Publication Number | Publication Date |
---|---|
CN101252434A CN101252434A (en) | 2008-08-27 |
CN101252434B true CN101252434B (en) | 2011-12-21 |
Family
ID=39955632
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2008100175848A Expired - Fee Related CN101252434B (en) | 2008-02-29 | 2008-02-29 | Apparatus and method for implementing mobile telephone access identification in wireless local area network |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN101252434B (en) |
WO (1) | WO2009106003A1 (en) |
Families Citing this family (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101252434B (en) * | 2008-02-29 | 2011-12-21 | 北京中电华大电子设计有限责任公司 | Apparatus and method for implementing mobile telephone access identification in wireless local area network |
CN101741655A (en) * | 2008-11-25 | 2010-06-16 | 中国电信股份有限公司 | WLAN authentication method and system as well as intelligent card |
CN101547444B (en) * | 2009-03-11 | 2010-11-03 | 西安西电捷通无线网络通信股份有限公司 | Method for providing special access process to different terminals in WLAN |
US8391452B2 (en) | 2009-04-30 | 2013-03-05 | Microsoft Corporation | User-based authentication for realtime communications |
CN101557588B (en) * | 2009-05-08 | 2011-10-26 | 中兴通讯股份有限公司 | User certificate management and use method and mobile terminal thereof |
CN101577926B (en) * | 2009-06-03 | 2011-05-11 | 中兴通讯股份有限公司 | Method for controlling wireless access point (AP) and system for controlling wireless AP |
CN102006589B (en) * | 2009-09-02 | 2013-07-03 | 中兴通讯股份有限公司 | Method, device and system for connecting wireless local area network authentication and privacy infrastructure modules |
CN101754203B (en) * | 2009-12-25 | 2014-04-09 | 宇龙计算机通信科技(深圳)有限公司 | Method, device and network system for obtaining WAPI certificate |
CN101977377A (en) * | 2010-09-27 | 2011-02-16 | 宇龙计算机通信科技(深圳)有限公司 | Method, system and mobile terminal for reading digital certificate in SIM (Subscriber Identity Module) card |
CN102202054A (en) * | 2011-04-27 | 2011-09-28 | 宇龙计算机通信科技(深圳)有限公司 | Mobile terminal, generation method of WLAN authentication and privacy infrastructure (WAPI) and application method thereof |
EP3541106A1 (en) * | 2012-02-14 | 2019-09-18 | Apple Inc. | Methods and apparatus for euicc certificate management |
WO2014135737A1 (en) * | 2013-03-05 | 2014-09-12 | Nokia Corporation | Method and apparatus for managing devices |
CN103259850A (en) * | 2013-04-18 | 2013-08-21 | 深圳市宏电技术股份有限公司 | Method and device for configuring intelligent terminal |
US10548009B2 (en) | 2015-08-24 | 2020-01-28 | Arris Enterprises Llc | Wireless setup procedure enabling modification of wireless credentials |
CN106559784A (en) * | 2015-09-30 | 2017-04-05 | 中兴通讯股份有限公司 | The method of method, device and access network that control device is accessed |
CN107454595A (en) * | 2017-09-28 | 2017-12-08 | 上海盈联电信科技有限公司 | Authentication method for Commercial Complex wireless connection |
CN111970120B (en) * | 2020-07-27 | 2024-03-26 | 山东华芯半导体有限公司 | Implementation method of encryption card security application mechanism based on OPENSSL |
CN116419230A (en) * | 2022-01-05 | 2023-07-11 | 西安西电捷通无线网络通信股份有限公司 | Network access method and device |
Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1437375A (en) * | 2002-02-08 | 2003-08-20 | 泰康亚洲(北京)科技有限公司 | Confirmation method for safe mobile e-business platform digital certificate |
Family Cites Families (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
DE69925732T2 (en) * | 1999-10-22 | 2006-03-16 | Telefonaktiebolaget Lm Ericsson (Publ) | Mobile phone with built-in security firmware |
CN1674497A (en) * | 2004-03-26 | 2005-09-28 | 华为技术有限公司 | Certification method for WLAN terminal switching in mobile network |
WO2006103383A1 (en) * | 2005-03-31 | 2006-10-05 | Vodafone Group Plc | Facilitating and authenticating transactions |
CN101252434B (en) * | 2008-02-29 | 2011-12-21 | 北京中电华大电子设计有限责任公司 | Apparatus and method for implementing mobile telephone access identification in wireless local area network |
-
2008
- 2008-02-29 CN CN2008100175848A patent/CN101252434B/en not_active Expired - Fee Related
-
2009
- 2009-02-26 WO PCT/CN2009/070546 patent/WO2009106003A1/en active Application Filing
Patent Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1437375A (en) * | 2002-02-08 | 2003-08-20 | 泰康亚洲(北京)科技有限公司 | Confirmation method for safe mobile e-business platform digital certificate |
Non-Patent Citations (3)
Title |
---|
刘伟.OTA系统安全性设计与实现.华中科技大学硕士学位论文.2006,2,16-19,24-26. * |
张喜蕊,辛阳.基于OTA模式的SIM卡安全技术.信息安全 5.2007,(5),148-150. |
张喜蕊,辛阳.基于OTA模式的SIM卡安全技术.信息安全 5.2007,(5),148-150. * |
Also Published As
Publication number | Publication date |
---|---|
CN101252434A (en) | 2008-08-27 |
WO2009106003A1 (en) | 2009-09-03 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN101252434B (en) | Apparatus and method for implementing mobile telephone access identification in wireless local area network | |
CN111052777B (en) | Method and apparatus for supporting inter-device profile transfer in a wireless communication system | |
CN101267307B (en) | Method for realizing remote management of mobile phone digital certificate using OTA system | |
US8737964B2 (en) | Facilitating and authenticating transactions | |
CN102202307B (en) | Mobile terminal identity authentication system and method based on digital certificate | |
CN107529160B (en) | VoWiFi network access method and system, terminal and wireless access point equipment | |
EP2384038B1 (en) | Method and system for realizing network locking and unlocking by a terminal device | |
CN100493247C (en) | Access authentication method in data packet network at high speed | |
JP5952973B2 (en) | Mutual authentication method between terminal and remote server via third-party portal | |
JP2008042862A (en) | Wireless lan communication system, method thereof and program | |
CN103297968A (en) | Wireless terminal identifying method, wireless terminal identifying device and wireless terminal identifying system | |
CN102215486B (en) | Network access method, system, network authentication method, equipment and terminal | |
CN101164276A (en) | Method for wireless access to the internet for the pre-paid customer | |
CN112533211A (en) | Certificate updating method and system for eSIM card and storage medium | |
CN102355658A (en) | Authentication parameter updating method, apparatus thereof and system thereof | |
CN113632513A (en) | Device changing method and apparatus for wireless communication system | |
CN107295510B (en) | Method, equipment and system for realizing access control of home base station based on OCSP (online charging protocol) | |
EP2365673A2 (en) | Electronic apparatus and terminal | |
JP2009237974A (en) | Issuing system, mobile information terminal and issuing server | |
CN101741655A (en) | WLAN authentication method and system as well as intelligent card | |
KR20070039372A (en) | System and method for processing security of card payment by using mobile internet communication network, devices for payment and recording medium | |
US20110034149A1 (en) | Method for releasing a mobile communication card for the use of a service of a mobile communication network and user equipment for interaction with a mobile communication network | |
KR20070039380A (en) | Method for forced-allocating communication path between affiliate terminals and van, affiliate terminals and recording medium | |
KR20070039368A (en) | System and method for processing security of card payment by using mobile internet communication network, devices for payment and recording medium | |
WO2009106004A1 (en) | Method and system for accessing digital certificate of mobile telephone based on wapi |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
DD01 | Delivery of document by public notice |
Addressee: Gai Ana Document name: Notification that Application Deemed not to be Proposed |
|
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20111221 |
|
CF01 | Termination of patent right due to non-payment of annual fee |