CN101304571B - Method for communication authentication between split type mobile terminal host and pickaback plane as well as mobile device - Google Patents

Method for communication authentication between split type mobile terminal host and pickaback plane as well as mobile device Download PDF

Info

Publication number
CN101304571B
CN101304571B CN 200810029166 CN200810029166A CN101304571B CN 101304571 B CN101304571 B CN 101304571B CN 200810029166 CN200810029166 CN 200810029166 CN 200810029166 A CN200810029166 A CN 200810029166A CN 101304571 B CN101304571 B CN 101304571B
Authority
CN
Grant status
Grant
Patent type
Prior art keywords
host
slave
communication
module
authentication
Prior art date
Application number
CN 200810029166
Other languages
Chinese (zh)
Other versions
CN101304571A (en )
Inventor
张伟
方春冬
赵言涛
Original Assignee
宇龙计算机通信科技(深圳)有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Grant date

Links

Abstract

The invention discloses a method of communication certification between a host machine and a sub-machine of a detachable mobile terminal, which includes that: the host machine sets communication certification permission for the sub-machine; the host machine judges whether the application request sent by the sub-machine to the host machine is in the allowable range of the communication certification permission according to the set communication certification permission; if so, the host machine carries out the application request of the sub-machine to the host machine; if not, the host machine is disconnected with the sub-machine. The invention further discloses a detachable mobile device, including a host machine control unit and a communication judging unit. By applying the method of communication certification between the host machine and the sub-machine of a detachable mobile terminal and the mobile device of the invention, the host machine can give specific function permissions so that different sub-machines can obtain different certifications, thereby realizing different functions, having convenient management, and simultaneously enhancing the flexibility by the host machine being capable of changing permissions.

Description

分体式移动终端主机和子机间通信认证的方法及移动装置 The mobile terminal split between the master and slave communication method and a mobile authentication device

技术领域 FIELD

[0001] 本发明涉及移动通信领域,具体地涉及一种分体式移动终端主机和子机间通信认证的方法及移动装置。 [0001] The present invention relates to a method of mobile communications, and particularly relates to a separate-type mobile terminal between the master and slave mobile communication device and authenticated.

背景技术 Background technique

[0002] 随着智能手机终端功能的不断增强,体积及重量不断增加便携性方面下降,为解决这一问题,提出了分体式移动终端结构,为智能手机终端配备了一个或多个子机,主机具有通信功能,子机无通信功能,主机和子机两者之间通过无线通信模块连接,以完成常用的通信和控制功能; [0002] With the growing smart phone terminal function, volume and weight decrease increased portability, in order to solve this problem, the split structure of a mobile terminal equipped with a smart phone or terminal sub-unit of the host having a communication function, no slave communication function between the master and slave are connected through the wireless communication module, used to complete the communication and control functions;

[0003] 但目前市面上的分体式移动终端没有涉及到各子机的权限问题,即具有相同功能的子机均可以实现与主机的所有通信功能,那么当出现有几个主机和子机在附近时,就会产生混乱,或当使用者希望对其中一个或几个子机的功能有所限制以及不同的子机可以获得不同的认证、实现不同的功能时,往往达不到预想的效果,也没有理想的解决方案。 Slave [0003] but does not split the mobile terminal market relate to the respective slave of authority, i.e., having the same function may be implemented for all communication functions with the host, it appears there are several in the vicinity when the master and slave when, confusion results, or when the user wishes for the function of one or several sub-machine restrictions and different sub-machine can obtain different authentication, different functions, often not produce the desired effect, there is no ideal solution.

发明内容 SUMMARY

[0004] 本发明所要解决的技术问题在于,提供一种分体式移动终端主机和子机间通信认证的方法及移动装置,通过主机与子机之间在连接进程中进行认证绑定,可以赋予子机特定的功能权限,使得不同的子机可以获得不同的认证,实现不同的功能。 [0004] The present invention solves the technical problem is to provide a split between the master and slave mobile terminal authentication method and a mobile communication device, authentication of the connection process by binding between the host and slave, the child can be imparted machine-specific functional competence, so that the different sub-machine can obtain different authentication, perform different functions.

[0005] 为了解决上述技术问题,本发明提出了一种分体式移动终端主机和子机间通信认证的方法,其包括以下步骤: [0005] To solve the above problems, the present invention provides a mobile terminal is split between the master and slave authentication communication method comprising the steps of:

[0006] 主机与子机进行绑定; [0006] The host and the slave bind;

[0007] 所述主机与绑定后的所述子机建立连接; [0007] After the host and slave connection is established binding;

[0008] 所述主机对所述子机设置通信认证权限; [0008] The host authentication is provided a communication permission to the slave;

[0009] 所述主机根据设置的所述通信认证权限判断所述子机对所述主机发送的应用请求是否在所述通信认证权限允许的范围内,如果判断为是,所述主机执行所述子机岁所述主机的应用请求,如果判断为否,所述主机与所述子机断开连接。 [0009] The host authentication of the communication permission settings determined according to the application request sent by the slave to the host in the range of the communication authentication permission allows, if it is determined that the host perform the the age of the host application requests the slave machine, if the determination is negative, the host and the slave disconnected.

[0010] 本发明还提供了一种分体式移动装置,包括:主机与子机,其包括: [0010] The present invention further provides a separate-type mobile device, comprising: master and slave, comprising:

[0011] 主机控制单元:用于所述主机对所述子机设置通信认证权限; [0011] The host control unit: means for setting said host communication authentication permission to the slave;

[0012] 通信判断单元:与主机控制单元相连接用于所述主机根据设置的所述通信认证权限判断所述子机对所述主机发送的应用请求是否在所述通信认证权限允许的范围内,如果判断为是,所述主机执行所述子机对所述主机发送的应用请求,如果判断为否,所述主机与所述子机断开连接。 [0012] The communication judgment unit: the control unit is connected to the host for the host according to the communication range of the authentication authority judging request to the slave application is provided to the host whether the communication authentication permission allows If it is determined that the host application requesting the execution of the sub-transmission to the host machine, if the determination is negative, the host and the slave disconnected.

[0013] 实施本发明一种分体式移动终端主机和子机间通信认证的方法及移动装置,具有如下有益效果: [0013] The method and apparatus of a mobile terminal a separate-type mobile communication between the master and slave authentication embodiment of the present invention has the following advantages:

[0014] 分体式移动终端主机对子机设置通信认证权限,为子机和其它无线连接模块分配不同的权限,使得子机与主机之间只能在权限允许的范围内进行通信,子机在其允许的范围内工作,避免多子机相互干扰,不变于管理,使得主机与子机可以在各自的授权范围内有序的工作,同时通过主机可更改权限,增加灵活性。 [0014] Split host mobile terminal authentication permission set the communication slave unit, assign permissions to different slave and other wireless connection module, so that only communication within the scope of privilege allowed between slave and master, the slave work within its allowed range, avoiding multiple handset interfere with each other, in the same management, so that the host and sub-machine can orderly work within their respective mandates, and change the permissions through the host, to increase flexibility.

附图说明 BRIEF DESCRIPTION

[0015] 图1是本发明实施例一种分体式移动终端主机和子机间通信认证的方法流程示意图; [0015] FIG. 1 is a separate-type embodiment of the present invention, a mobile communication authentication method between terminals a schematic flow chart master and slave units;

[0016] 图2是本发明实施例一种分体式移动终端主机和子机间通信认证的方法具体实现过程流程示意图; [0016] FIG 2 is an embodiment of the present invention is a separate-type mobile communication authentication method flow diagram showing a specific implementation process between the master and slave terminals;

[0017] 图3是本发明实施例分体式移动终端主机对子机设置通信认证权限流程示意图; [0017] FIG. 3 is an embodiment of the present invention, a mobile terminal split pair host machine disposed schematic flow communication authentication authority;

[0018] 图4是本发明实施例分体式移动终端主机可授予子机权限的服务信息功能图; [0018] FIG. 4 is a functional diagram of the service information may be granted permission to the slave mobile terminal according to a split embodiment of the present invention, the host;

[0019] 图5是本发明实施例分体移动终端子机对主机发起的应用请求进行通信认证的流程图; [0019] FIG. 5 is a flowchart of a mobile terminal body slave application requests the host-initiated communication authentication sub-embodiment of embodiment of the present invention;

[0020] 图6是本发明实施例一种分体式移动装置结构示意图。 [0020] FIG. 6 is a schematic view of embodiments of the present invention embodiment of a split structure of a mobile device. 具体实施方式 detailed description

[0021] 下面参考附图对本发明的优选实施例进行描述。 [0021] The following preferred embodiments with reference to the accompanying drawings of embodiments of the present invention will be described.

[0022] 本发明分体式移动终端主机和子机间通信认证的方法,用于在主机授予子机权限允许的范围内,所述主机执行所述子机的应用请求,包括以下步骤: [0022] The mobile terminal split between the master and slave communication method of the present invention, the authentication for the host in the range of authority granted to allow the slave, the host executes an application requesting the slave device, comprising the steps of:

[0023] 所述主机对所述子机设置通信认证权限; [0023] The host authentication is provided a communication permission to the slave;

[0024] 所述主机根据设置的所述通信认证权限判断所述子机对所述主机发送的应用请求是否在所述通信认证权限允许的范围内,如果判断为是,所述主机执行所述子机对所述主机的应用请求,如果判断为否,所述主机与所述子机断开连接。 [0024] The host authentication of the communication permission settings determined according to the application request sent by the slave to the host in the range of the communication authentication permission allows, if it is determined that the host perform the the slave host application request, if the determination is negative, the host and the slave disconnected.

[0025] 参见图1,为本发明实施例一种分体式移动终端主机和子机间通信认证的方法流程示意图; [0025] Referring to Figure 1, a schematic diagram of a separate-type mobile terminal communication between the master and slave authentication process flow embodiment of the present invention;

[0026] 步骤S201中,所述主机对所述子机设置通信认证权限; [0026] In step S201, the host communication authentication permission provided to said slave;

[0027] 步骤S301中,所述主机根据设置的所述通信认证权限判断所述子机对所述主机发送的应用请求是否在所述通信认证权限允许的范围内,如果判断为是,则转到步骤S401, 如果判断为否,则转到步骤S501 ; [0027] In step S301, the host is determined according to the communication setting of the certification authority and the slave application request sent by the host in the range of the permissible communication authentication authority, if yes, then go to to step S401, the determination as if no, go to step S501;

[0028] 其中,步骤S401中,所述主机执行所述子机对所述主机的应用请求; [0028] wherein, in step S401, the host performs the request for the slave host application;

[0029] 步骤S501中,所述主机与所述子机断开连接。 [0029] In step S501, the host and the slave disconnected.

[0030] 参见图2,是本发明实施例一种分体式移动终端主机和子机间通信认证的方法具体实现过程流程示意图; [0030] Referring to Figure 2, a method embodiment of the invention a separate-type mobile terminal communication between the master and slave authentication process flow schematic diagram of a specific implementation;

[0031] 所述主机对所述子机设置通信认证权限之前还包括以下步骤: [0031] The host communication is provided before the slave of the certification authority and further comprising the step of:

[0032] 步骤S102中,所述主机与所述子机进行绑定; [0032] In step S102, the host and the slave bind;

[0033] 步骤S103中,所述主机与绑定后的所述子机建立连接。 [0033] In step S103, the host to establish a connection with the slave after binding.

[0034] 参见图3,为本发明实施例所述主机对所述子机设置通信认证权限流程示意图,其中,所述主机与所述子机进行绑定还包括以下步骤: [0034] Referring to Figure 3, a schematic diagram of the host provided the slave communication permission authentication process embodiment of the present invention, wherein the host and the slave bind further comprising the step of:

[0035] 步骤S121中,所述主机初始化无线通信模块,为主机与子机的无线通信连接做好准备。 [0035] In step S121, initializing the host wireless communication module to prepare for the wireless communication host and slave connection. [0036] 步骤S122中,所述主机对一定范围内可建立链路密钥的所述子机进行查询,主机发起设备查询,子机进行查询扫描,通过设备查询,主机就可以找到有效范围内的子机。 [0036] In step S122, the host of the slave link key may be established within a certain range of a query, the host device initiates the query, the slave inquiry scan through the device query, the host can find a valid range sub-machine. 然后主机通过呼叫与子机建立连接,就能够发起绑定流程;查询过程中,查询消息不含查询设备的任何消息,但可以指定GIAC和DIAC两种查询方式; Then the call is established by the host and slave connection, it can bind to initiate flow; query process, the query message does not contain any query message device, but can be specified GIAC and DIAC query methods;

[0037] 步骤S123中,所述主机根据查询周围子机的情况,如果查询到,则转入步骤SlM ; 如果没有查询到,则转入步骤S122。 [0037] In step S123, the host according to the situation around the slave query, if the query, the process proceeds to step SLM; if not queried, the process proceeds to step S122. 由于设备识别码在全球的唯一性,据此可进行设备的查询; Due to the uniqueness of the device identifier in the world, whereby the device can query;

[0038] 其中,步骤SlM为,所述主机与所述子机进行绑定,第一次使用主机和子机系统时需进行绑定,用户需要在主机一方输入正确的PIN码来创建链路密钥,设备一方通过检查链路密钥来验证对方设备的合法性,用户输入正确的密码后,绑定即告成功,绑定完成后,可以由分体移动终端子机或者主机任何一方发起连接请求,没有固定的主从设备之分。 [0038] wherein the step of binding SlM to the host and the slave need to be bound to the first use of the master and slave systems, the user needs to enter the correct PIN code to create one host link density after the key, one device to verify the legitimacy of the other device by checking the link key, the user enters the correct password, will come to a successful binding, the binding is completed, the mobile terminal may be a host or slave separately either initiate a connection request, no fixed points from the master equipment.

[0039] 所述主机对所述子机设置通信认证权限包括以下步骤: [0039] the host of the slave communication authentication authority provided comprising the steps of:

[0040] 步骤S211中,所述主机选择授予与所述主机绑定成功的所述子机的权限;主机授权服务过程为不同的子机分配不同的权限,为主机建立一个信任域,主机就可以据此判断各子机是否具有某权限,如子机1既可以通过主机拨打、接听电话,也可以收发短消息;子机2只能实现收发短消息;其它同类无线通信设备只能交换数据,甚至只能发送数据给主机等; [0040] In step S211, the host selects granted to bind succeeds and the host authority of the sub-machine; authorized service host process is different in different sub-machine distribution rights, the establishment of a trust domain, the host for the host each slave can judge whether a given permission, either as a slave by the host make and receive calls, may receive and send messages; slave 2 can receive and send messages implemented; other similar wireless communication device only exchange data, even only send data to the host and the like;

[0041] 步骤S212中,所述主机生成信任域记录所述授予子机的权限;信任域中记录的所述主机可授予子机的权限包括但不限于:拨打、接听电话、收发短信、来电显示、和同步联系人、短信、通话记录、记事查询、闹钟提醒等不同的应用服务 [0041] In step S212, the host generates a trusted authority granted to the slave recording domain; said slave host permission grants trust recording domains include, but are not limited to: make and receive calls, send and receive text messages, calls display, and synchronize contacts, text messages, call history, notes queries, alarm clock reminder different application services

[0042] 步骤S213中,所述主机将所述授予子机的权限发送给子机; [0042] In step S213, the host transmits the permissions granted to the slave slave;

[0043] 步骤S214中,所述主机与所述子机断开连接。 [0043] In step S214, the host and the slave disconnected.

[0044] 参见图4,为本发明实施例分体式移动终端所述主机授予所述子机的服务信息功能图,以下举例说明主机对设置通信权限的具体流程: [0044] Referring to FIG. 4, for this example embodiment of the host mobile terminal split granting the service information of the slave function FIG invention, the following illustrative process for setting the communication host specific permissions:

[0045] 设置开始前,主机初始化无线通信模块,为与子机建立无线通信连接做好准备,然后,主机发起子机设备查询,即主机与子机的绑定过程,主机对一定范围内可建立链路密钥的所述子机进行查询,主机发起设备查询,子机进行查询扫描,通过设备查询,主机就可以找到有效范围内的子机,查找到子机后,进行数据链路连接、配对、绑定,并将一定范围内的主机和子机设备连接起来,主机和子机能够通过无线通信模块更方便更快速地进行语音和数据的交换; Before [0045] The start is provided, the master initiates a wireless communication module for establishing a wireless communication connection with the slave ready, and then, master slave device initiates a query, i.e. the binding process of the host and slave, the host range of a certain after the slave to establish a link key to query the host device initiates the query, the slave inquiry scan through the device query, the host can be found within the effective range of the slave, slave found, the data link connection pairing, binding, and connect the master and slave devices together within a certain range, the master and slave can be more easily exchange voice and data more quickly through the wireless communication module;

[0046] 绑定成功后,用户选择主机提供的授予该子机的服务及权限,即转到图4所示页面,生成信任域,主机在信任域中记录授予该子机的服务及权限,所述主机可授予子机的权限包括但不限于:拨打、接听电话、收发短信、来电显示、和同步联系人、短信、通话记录、记事查询、闹钟提醒等不同的应用服务。 After the [0046] binding is successful, the user selects the host provides services and privileges granted to the slave unit that go to the page shown in Figure 4, to generate trust domain, host services and privileges granted to the sub-machine recording trusted domain, the slave host permission grants include, but are not limited to: make and receive calls, text messaging, caller ID, and sync contacts, SMS, call history, notes query, alarm reminder different application services.

[0047] 参见图5,为本发明实施例分体式移动终端子机对主机发起的应用请求进行通信认证的流程图,所述子机对所述主机的应用请求包括以下步骤: [0047] Referring to Figure 5, a flowchart of the slave mobile terminal requests the host application initiated communication authentication split embodiment according to the invention, the slave machine to said host application request includes the steps of:

[0048] 所述子机对所述主机发送应用请求,进行通信认证; [0048] The sub-application sends the request to the host, communicating authentication;

[0049] 所述主机判断所述子机对所述主机的应用请求是否记录在所述主机的信任域中, 如果判断为是,则通过通信认证,所述主机执行所述子机应用请求,如果判断为否,则断开连接。 [0049] The master determines the slave of the host application request to the host whether the recording trusted domain, if yes, the authentication by the communication, the host machine to execute the sub-application request, If the judgment is NO, then disconnect.

[0050] 以下以子机拨打电话为例,具体说明分体式移动终端主机和子机之间的通信认证的流程: [0050] In the following an example call slave specifically described authentication communication between the mobile terminal split master and slave process:

[0051] 步骤S131中,所述子机初始化无线通信模块,为子机与主机的无线通信连接做好准备; [0051] In step S131, initializing the slave wireless communication module to prepare for the slave wireless communication connection with a host;

[0052] 步骤S132中,子机通过键盘输入电话号码,并在显示屏上显示,按下“通话”键; [0052] step S132, slave input telephone number via the keyboard, and displayed on the screen, press the "call" button;

[0053] 步骤S133中,所述子机对一定范围内主机进行查询,子机发起设备查询,主机进行查询扫描,通过设备查询,子机就可以找到有效范围内与其绑定过的主机; [0053] In step S133, the slave within a certain range of the host is queried, the slave device initiates a query, the host inquiry scanning, inquiry through the device, the slave can find the effective range of hosts that bind thereto;

[0054] 步骤S134中,所述子机判断是否查询到与其绑定过的主机,如果判断为是,转到步骤S135,如果判断为否,转到步骤S133 ; [0054] In step S134, the slave machine determines whether the query through binding to its host, if yes, go to step S135, the determination if NO, proceeds to step S133;

[0055] 其中,步骤S135为,子机查询到与其绑定的所述主机后,与主机建立数据和语音连接; After [0055] wherein, for the step S135, the slave queries to the bound host, establishing a voice connection and data with a host;

[0056] 步骤S311中,所述子机对所述主机发送应用请求,进行通信认证,子机将拨号信息传送给主机; [0056] In step S311, the slave sends an application request to the host, the authentication communication, the slave transmits dialing information to the host;

[0057] 步骤S312中,所述主机判断所述子机对所述主机的应用请求是否记录在所述主机的信任域中,如果该子机具有拨打电话的功能,即:判断为是,转入步骤S401,如果该子机没有拨打电话的功能,判断为否,转入步骤S501。 [0057] In step S312, the host application determines that the request for the slave machine host are recorded in the trusted domain of the host, if the call has slave functions, namely: it is determined that the switch the step S401, the slave does not if the function of a telephone call, it is determined nO, proceeds to step S501.

[0058] 其中,步骤S401为,通过通信认证,有此功能,所述主机执行所述子机应用请求, 拨出电话号码,并以应答的方式将呼叫状态传达给从机上显示; [0058] wherein, for the step S401, through the communication authentication, this function, the host machine to execute the sub-application request, dial a phone number, and so as to communicate the response to the call status display on the slave;

[0059] 步骤S501中,子机没有得到主机的通话授权,没有拨出电话的功能,主机与子机断开无线通信连接。 [0059] Step S501, the slave has not been authorized to call the host, there is no outgoing call function, the host and slave wireless communication connection is disconnected.

[0060] 步骤S411中,子机在主机授予的可拨打电话权限范围内,主机执行应用请求,此时如果对方挂掉电话,转到步骤S412 ; [0060] In step S411, the slave host can call granted permission range, the host executes an application request, if the other party hang up at this time, go to step S412;

[0061] 步骤S412中,主机将此信息传送给从机,并断开主机与从机之间的无线连接; [0061] In step S412, the host transmits this information to a slave, and disconnect from the wireless connection between the host machine;

[0062] 步骤S413中,子机在主机授予的可拨打电话权限范围内,主机执行应用请求,此时如果分体式移动终端子机接听电话,转到步骤S414 ; [0062] In step S413, the slave host can call granted permission range, the host executes an application request, the mobile terminal at this time if the split handset to answer the call, go to step S414;

[0063] 其中,步骤S414为,主机与从机之间通过无线通信模块传送语音信号。 [0063] wherein, for the step S414, the host through the wireless communication module to transmit voice signals between a slave.

[0064] 步骤S415中,主机判断是否要继续保持通话,如果判断为是,转到步骤S414,如果判断为否,转到步骤S416 ; [0064] In step S415, the host determines whether to continue the call, if yes, go to step S414, the determination if NO, proceeds to step S416;

[0065] 其中,步骤S416为,主机判断是否为子机主动挂断电话,如果判断为是,则转到步骤S417,如果判断为否,转到步骤S411 ; [0065] wherein, for the step S416, the host determines whether a telephone handset hang up, if yes, then go to step S417, if the judgment is no, go to step S411;

[0066] 步骤S417为,子机主动挂掉电话; [0066] step S417, for active slave hung up;

[0067] 步骤S418中,子机请求主机挂掉电话; [0067] In step S418, the slave requests the host to hang up;

[0068] 步骤S419中,主机与子机断开无线通信连接。 [0068] In step S419, the host and slave wireless communication connection is disconnected.

[0069] 相应地,本发明还提供一种分体式移动装置,包括:主机与子机,用于在主机授予子机权限允许的范围内,所述主机执行所述子机的应用请求; [0069] Accordingly, the present invention further provides a separate-type mobile device, comprising: master and slave, a slave to grant permission to the range allowed in a host, the host application requesting the execution of the slave;

[0070] 参见图6,为本发明实施例一种分体式移动装置结构示意图,其包括: [0070] Referring to Figure 6, a schematic diagram of a separate-type structure according to the invention a mobile device, comprising:

[0071] 主机控制单元2 :用于所述主机对所述子机设置通信认证权限; [0071] The host control unit 2: communication setting for the certification authority and said host to said slave;

[0072] 通信判断单元4 :与所述主机控制单元2相连接用于所述主机根据设置的所述通信认证权限判断所述子机对所述主机发送的应用请求是否在所述通信认证权限允许的范围内,如果判断为是,所述主机执行所述子机对所述主机的应用请求,如果判断为否,所述主机与所述子机断开连接。 [0072] The communication unit 4 is determined: the host control unit 2 is connected to the host for authentication permission settings according to the communication application judgment request sent by the slave to the host whether the communication authentication authority within the allowable range, if it is determined that the host application to perform the request for the slave host, if the determination is negative, the host and the slave disconnected.

[0073] 所述分体式移动装置还包括: [0073] The split moving means further comprises:

[0074] 绑定单元6 :用于所述主机与所述子机进行绑定; [0074] The binding unit 6: the host for binding to the slave;

[0075] 连接单元8 :与绑定单元相连接用于所述主机与绑定后的所述子机建立连接; [0075] The connection unit 8: a binding unit connected to the slave after binding to establish a connection with the host;

[0076] 所述绑定单元6与所述连接单元8分别与所述主机控制单元2相连接。 [0076] The binding unit 68 2 are connected to the connecting unit to the host control unit. 所述绑定单元6包括: 6 the binding unit comprises:

[0077] 主机初始模块62 :用于所述主机初始化无线通信模块; [0077] Host initial module 62: for initializing the host wireless communication module;

[0078] 查询模块64 :与所述主机初始模块62相连接用于所述主机对所述子机进行查询; [0078] Query module 64: a host connected to said host for said initial module 62 to query the slave;

[0079] 绑定判定模块66 :与所述查询模块64相连接用于所述主机根据输入的密码,如PIN码判断所述主机与所述子机是否建立链路密钥连接,如果判断为是,所述主机与所述子机进行绑定; [0079] Binding module 66 determines that: the query module 64 is connected to the host for the entered password, a PIN code is determined as the host and to establish whether the slave link key connection, if it is determined is the host and the slave bind;

[0080] 所述主机控制单元2包括: [0080] The main control unit 2 comprises:

[0081] 选择授予模块22 :用于所述主机选择授予所述子机的权限,所述子机为与所述主机绑定成功的子机; [0081] The selection module 22 is granted: selecting a host for the permissions granted to the slave, the slave is the slave successful host binding;

[0082] 权限记录模块M :用于所述主机生成信任域记录所述授予子机的权限; [0082] The recording permission module M: ​​trusted domain for generating the recording master grant permission to the slave device;

[0083] 权限发送模块沈:用于所述主机将所述授予子机的权限发送给子机; [0083] Shen permission to send module: for the host to grant permission to the slave transmits to the slave unit;

[0084] 所述选择授予模块22、所述权限记录模块M、所述权限发送模块沈依次相连接。 [0084] The grant selection module 22, the module M recording permission, permission to send the sink modules are connected in sequence.

[0085] 所述通信判断单元4包括: [0085] The communication determination unit 4 comprising:

[0086] 请求发送模块42 :用于所述子机发送对所述主机的应用请求,进行通信认证; [0086] request sending module 42: for the sub-application sends a request to the host, the authentication communication;

[0087] 请求判断模块44 :用于所述主机判断所述子机对所述主机的应用请求是否记录在所述主机的信任域中,如果判断为是,则通过通信认证,所述主机执行所述子机应用请求,如果判断为否,所述主机与所述子机断开连接; [0087] request determination module 44: for the host application to determine whether the slave machine a request for the host are recorded in the trusted domain of the host, if it is determined that the communication through the authentication, the host performs the slave application request, if the determination is negative, the host and the slave disconnected;

[0088] 所述请求发送模块42、所述请求判断模块44依次相连接。 [0088] The request sending module 42, a request determination module 44 are connected in sequence.

[0089] 以下举例说明主机对设置通信权限的具体流程: [0089] The following examples illustrate specific process for setting the communication master authority:

[0090] 设置开始前,主机初始模块62初始化无线通信模块,为与子机建立无线通信连接做好准备,然后,查询模块64发起主机对移动终端子机设备的查询,即主机与子机的绑定过程,主机对一定范围内的所述子机进行查询,主机发起设备查询,子机进行查询扫描,通过设备查询,主机就可以找到有效范围内的子机,查询过程中,查询消息不含查询设备的任何消息,但可以指定GIAC和DIAC两种查询方式; [0090] provided before the start of the initial module 62 initializes the host wireless communication module for establishing a wireless communication connection with the slave ready, then the query module 64 initiates a query to the mobile host slave terminal device, i.e. master and slave units binding process, the master slave within a certain range of a query, the host device initiates the query, the slave inquiry scan through the device query, the host can be found within the effective range of the slave, during the query is not a query message any query message containing the device but can be specified GIAC and DIAC query methods;

[0091] 查询模块64查询的到子机后,由于设备识别码在全球的唯一性,据此可进行设备的查询,设备一方通过检查链路密钥来验证对方设备的合法性;链路密钥由主机和子机通过配对过程产生。 After the [0091] query to slave module 64 queries, since the apparatus of the global unique identification code, whereby the device can be a query, to verify the legitimacy of the device side, the other device by checking the link key; link density key generated by the master and slave through a pairing process. 在这个过程中,用户需要在主机一方输入正确的PIN码来创建链路密钥, 用户输入正确的密码后,绑定即告成功,绑定后一定范围内的主机和子机设备连接起来,主机和子机能够通过无线通信模块更方便更快速地进行语音和数据的交换; In this process, the user needs to enter the correct PIN one host to create a link key, the user enters the correct password, will come to a successful binding, the bound master and slave devices are connected together within a certain range, the host and it easier slave exchange voice and data more quickly through the wireless communication module;

[0092] 绑定成功后,选择授予模块22提供用户选择主机授予该子机的服务及权限,即转到图4所示页面,并生成信任域,权限记录模块M在信任域中记录授予该子机的服务及权限,所述主机可授予子机的权限包括但不限于:拨打、接听电话、收发短信、来电显示、和同步联系人、短信、通话记录、记事查询、闹钟提醒等不同的应用服务,例如,可以选择子机1 既可以通过主机拨打、接听电话,也可以收发短消息;子机2只能实现收发短消息;其它同类无线通信设备只能交换数据,甚至只能发送数据给主机等; After [0092] the binding is successful, the module 22 provides the option to grant the user selects the slave master grant privileges and services, i.e. to the page shown in FIG. 4, and generates a trust domain, the permissions granted to the M recording module recording trusted domain service and authority of the slave, the slave host permission grants include, but are not limited to: make and receive calls, text messaging, caller ID, and sync contacts, SMS, call history, notes query, such as different alarm reminder application services, e.g., a slave may be selected by either the host make and receive calls, can receive and send messages; slave 2 can receive and send messages implemented; other similar wireless communication device can exchange data, even only send data to the host and the like;

[0093] 权限记录模块M记录主机授予子机的权限后,又权限记录模块沈将主机授予子机的权限发送给子机。 After Permissions [0093] recording rights record of the host module M grant sub-machine, but also rights record module sends the host Shen grant permission to the child slave machine.

[0094] 以下举例说明子机对主机发起的应用请求进行通信认证的过程: [0094] The following Examples illustrate the process of the slave application requests the host-initiated communication authentication:

[0095] 当子机需要向主机发起拨打电话这一应用请求时,子机初始化无线通信模块,为子机与主机的无线通信连接做好准备,接下来,子机通过键盘输入电话号码,并在显示屏上显示,按下“通话”键; [0095] When the slave needs to initiate a call to the host when the application requests initialization of slave wireless communication module to prepare for the slave wireless communication with the host connection, then, slave input telephone number via the keyboard, and display on the display screen, press the "call" button;

[0096] 通话请求输入后,子机对一定范围内主机进行查询,子机发起设备查询,主机进行查询扫描,通过设备查询,子机判断是否查询到与其绑定过的主机,如果判断为是,与主机建立数据和语音连接,请求发送模块42将子机应用请求发送给主机,进行通信认证,子机将拨号信息传送给主机,主机接收到应用请求后,请求判断模块44判断所述子机对所述主机的应用请求是否记录在所述主机的信任域中,即:进行通信认证,判断该子机是否具有拨打电话的功能; [0096] After the call request input, slave to master query within a certain range, the slave device initiates a query, inquiry scanning host, through the device query, the query to the slave determines whether the host had bound thereto, if yes establishing voice and data connection with the host, a request sending module 42 requests the slave to the host application, the authentication communication, the handset dialing information to the host, the host application after receiving the request, the request determination module 44 determines the sub- application of the host machine to the host request is recorded in the trusted domain, i.e.: communicating authentication, the slave determines whether the function call;

[0097] 如果判断为是,通过通信认证,有此功能,所述主机执行所述子机应用请求,拨出电话号码,并以应答的方式将呼叫状态传达给从机上显示; [0097] If it is determined that the authentication by the communication, this function, the host machine to execute the sub-application request, dial a phone number, and so as to communicate the response to the call status display on the slave;

[0098] 如果有此功能,拨出电话号码,并以应答的方式将呼叫状态传达给从机上显示; [0098] If you have this feature, dial a phone number, and answer the call as to convey the status display on the slave;

[0099] 如果对方挂掉电话,主机将此信息传送给从机,并断开主机与从机之间的无线连接; [0099] If the other party hangs up, this information is transmitted to the host machine, the host connection and disconnect from the wireless connection between the machine;

[0100] 如果对方接听电话,主机与从机之间通过无线通信模块传送语音信号,并断开主机与从机之间的无线连接; [0100] If the person answers, between the host machine and the transmitting voice signal through the wireless communication module, and disconnect from the wireless connection between the host machine;

[0101] 如果判断为否,子机没有得到主机的通话授权,没有拨出电话的功能,主机与子机断开无线通信连接。 [0101] If the judgment is NO, the slave has not been authorized to call the host, there is no outgoing call function, the host and slave wireless communication connection is disconnected.

[0102] 本发明通过一种分体式移动终端主机和子机间通信认证的方法及移动装置,使主机建立了信任域,为从机和其它无线连接模块分配不同的权限,与主机之间只能在权限允许的范围内进行通信;为子机授权,让子机在其允许的范围内工作,避免多子机相互干扰, 不变于管理,使得主机与子机可以在各自的授权范围内有序的工作,同时,为不同的子机以及其它同类无线通信设备建立不同的权限,便于管理,同时通过主机可更改权限,增加灵活性。 [0102] The present invention is achieved by a split between the master and slave mobile terminal authentication method and a mobile communication device, cause the host to establish a trust domain, only between the slave and the other wireless connection module assigned different rights, the host communicate within the allowable range of authority; is the sub license to operate within the handset which allows to avoid mutual interference multiple handset, to manage the same, so that the host and slave can have, within their respective mandates work order, while establishing different sub-machine and other similar wireless communication device different permissions, easy to manage, and can be changed by the host authority and increase flexibility.

[0103] 以上所揭露的仅为本发明较佳实施例而已,当然不能以此来限定本发明之权利范围,因此依本发明权利要求所作的等同变化,仍属本发明所涵盖的范围。 [0103] the preferred embodiments disclosed above are merely embodiments of the present invention, it, of course, not intended to limit the scope of the invention, therefore equivalent changes made under this invention as claimed in claim still covered by the scope of the present invention.

Claims (9)

  1. 1. 一种分体式移动终端主机和子机间通信认证的方法,其特征在于:包括以下步骤: 主机与子机进行绑定;所述主机与绑定后的所述子机建立连接; 所述主机对所述子机设置通信认证权限;所述主机根据设置的所述通信认证权限判断所述子机对所述主机发送的应用请求是否在所述通信认证权限允许的范围内,如果判断为是,所述主机执行所述子机对所述主机发送的应用请求,如果判断为否,所述主机与所述子机断开连接。 The method of authentication of communications between the mobile terminal 1. A split master and slave, characterized by: comprising the steps of: the host and slave bind; establishing a connection to the slave after binding with the host; the setting the master slave communication authentication authority; within the scope of the host authentication authority according to the communication setting determination requesting the slave application of the host whether the transmitted authentication permission allows the communication, if it is determined that that the host application requesting the execution of the sub-transmission to the host machine, if the determination is negative, the host and the slave disconnected.
  2. 2.如权利要求1所述的分体式移动终端主机和子机间通信认证的方法,其特征在于: 所述主机与所述子机进行绑定包括以下步骤:所述主机初始化无线通信模块;所述主机对一定范围内可建立链路密钥的所述子机进行查询; 所述主机根据输入的密码判断所述主机与所述子机是否建立有链路密钥连接,如果判断为是,所述主机与所述子机进行绑定。 2. The method of the mobile terminal split between the master and slave communication authentication according to claim 1, wherein: the host and the slave binding comprising the steps of: initializing the host wireless communication module; the the said master slave link key may be established for a range of query; there is the host connected according to a link key of the host determines whether the password input from the slave to establish, if yes, the host and the slave bind.
  3. 3.如权利要求2所述的分体式移动终端主机和子机间通信认证的方法,其特征在于: 所述主机对所述子机设置通信认证权限包括以下步骤:所述主机选择授予所述子机权限,所述子机为与所述主机建立绑定的子机; 所述主机生成信任域记录授予所述子机的权限信息; 所述主机将授予所述子机的权限信息发送给所述子机。 3. The communication method of the mobile terminal authentication split between the master and slave according to claim 2, wherein: said host communication is provided to the slave authentication authority comprising the steps of: selecting the host of the sub-grant privileges, the slave is a slave to establish the binding with the host; the host generating a trust domain of the slave recording granting authority information; the host will grant the child machine information to the authority said slave.
  4. 4.如权利要求3所述的分体式移动终端主机和子机间通信认证的方法,其特征在于: 所述主机根据设置的所述通信认证权限判断所述子机对所述主机发送的应用请求是否在所述通信认证权限允许的范围内,如果判断为是,所述主机执行所述子机对所述主机发送的应用请求,如果判断为否,所述主机与所述子机断开连接包括以下步骤:所述子机对所述主机发送应用请求,进行通信认证;所述主机判断所述子机对所述主机的应用请求是否记录在所述主机的信任域中,如果判断为是,则通过通信认证,所述主机执行所述子机应用请求,如果判断为否,则断开连接。 4. Split authentication method for communicating between master and slave mobile terminal according to claim 3, wherein: the host application requesting the slave unit determines the transmission according to the communication to the host authentication permission setting in the range of the communication authentication permission allows, if it is determined that the host application requesting the execution of the sub-transmission to the host machine, if the determination is negative, the host and the slave disconnected comprising the steps of: said sub-application sends a request to the host, communicating authentication; Analyzing the host application request to the slave of the host are recorded in the trusted domain of the host, if yes , through the communication authentication, the host machine to execute the sub-application request, if the judgment is NO, then disconnect.
  5. 5. 一种分体式移动装置,包括:主机与子机,其特征在于:包括: 主机控制单元:用于所述主机对所述子机设置通信认证权限;通信判断单元:与主机控制单元相连接用于所述主机根据设置的所述通信认证权限判断所述子机对所述主机发送的应用请求是否在所述通信认证权限允许的范围内,如果判断为是,所述主机执行所述子机对所述主机的应用请求,如果判断为否,所述主机与所述子机断开连接。 A split-type mobile device, comprising: master and slave, characterized by: comprising: a main control unit: the host for setting the slave communication authentication authority; communication judgment unit: the master control unit with the connection to the host computer for the communication authentication permission setting determines the range of the application request sent by the slave to the host whether the communication authentication permission allows, if it is determined that the host perform the the slave host application request, if the determination is negative, the host and the slave disconnected.
  6. 6.如权利要求5所述的分体式移动装置,其特征在于:包括: 绑定单元:用于所述主机与所述子机进行绑定;连接单元:与所述绑定单元相连接用于所述主机与绑定后的所述子机建立连接; 所述绑定单元与所述连接单元分别与所述主机控制单元相连接。 6. The split-type mobile device according to claim 5, characterized in that: comprising: a binding unit: for the host and the slave bind; connecting means: the binding unit is connected with establishing a connection to the slave after binding with the host; the binding unit and the connecting unit are connected to said host control unit.
  7. 7.如权利要求6所述的分体式移动装置,其特征在于:所述绑定单元包括: 主机初始模块:用于所述主机初始化无线通信模块;查询模块:与所述主机初始模块相连接用于所述主机对一定范围内可建立链路密钥的所述子机进行查询;绑定判定模块:与所述查询模块相连接用于所述主机根据输入的密码判断所述主机与所述子机是否建立有链路密钥连接,如果判断为是,所述主机与所述子机进行绑定。 7. The split of the mobile device according to claim 6, characterized in that: said binding means comprising: a host module Initial: means for initializing the host wireless communication module; query module: connected with the host initial module for the slave to the master within a certain range can establish a link key query; determining binding modules: the query module is connected to said host for said host input password is determined in accordance with the said slave is there a connection link key, if it is determined that the host and the slave bind.
  8. 8.如权利要求5所述的分体式移动装置,其特征在于:所述主机控制单元包括: 选择授予模块:用于所述主机选择授予所述子机的权限,所述子机为与所述主机建立绑定的子机;权限记录模块:用于所述主机生成信任域记录所述授予子机的权限; 权限发送模块:用于所述主机将授予所述子机的权限信息发送给所述子机; 所述选择授予模块、所述权限记录模块、所述权限发送模块依次相连接。 8. The split-type mobile device according to claim 5, wherein: said main control unit comprises: a selection module to grant: selecting a host for the privileges granted to the slave, and the slave is the said slave host establishes bindings; permissions record module: for the host to generate the trusted domain to grant permissions record slave; permission to send module: for the host to the slave grant permission information to the slave; granting the selection module, said recording module authority, permission to send the module are connected in sequence.
  9. 9.如权利要求8所述的分体式移动装置,其特征在于:所述通信判断单元包括: 请求发送模块:用于所述子机发送对所述主机的应用请求;请求判断模块:用于所述主机判断所述子机对所述主机的应用请求是否记录在所述主机的信任域中,如果判断为是,所述主机执行所述子机应用请求,如果判断为否,所述主机与所述子机断开连接;所述请求发送模块、所述请求判断模块依次相连接。 9. The mobile device of claim split claimed in claim 8, wherein: said communication determination unit comprises: a request sending module: means for transmitting to the slave of the host application request; request determination module: for the host application determines that the request for the slave machine host are recorded in the trusted domain host, if it is determined that the host machine to execute the sub-application request, if the determination is negative, the host disconnect the slave; module sending the request, the request determination module are connected in sequence.
CN 200810029166 2008-07-01 2008-07-01 Method for communication authentication between split type mobile terminal host and pickaback plane as well as mobile device CN101304571B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 200810029166 CN101304571B (en) 2008-07-01 2008-07-01 Method for communication authentication between split type mobile terminal host and pickaback plane as well as mobile device

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
CN 200810029166 CN101304571B (en) 2008-07-01 2008-07-01 Method for communication authentication between split type mobile terminal host and pickaback plane as well as mobile device
PCT/CN2009/070188 WO2009097781A8 (en) 2008-02-02 2009-01-16 Method for monitoring host machines, monitoring device and host machine
CN 200980103895 CN101919184B (en) 2008-02-02 2009-01-16 Method for monitoring host machines, monitoring device and host machine
US12848902 US20100302002A1 (en) 2008-02-02 2010-08-02 Method for Monitoring Main Machine, Monitoring Apparatus and Main Machine

Publications (2)

Publication Number Publication Date
CN101304571A true CN101304571A (en) 2008-11-12
CN101304571B true CN101304571B (en) 2011-11-23

Family

ID=40114236

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 200810029166 CN101304571B (en) 2008-07-01 2008-07-01 Method for communication authentication between split type mobile terminal host and pickaback plane as well as mobile device

Country Status (1)

Country Link
CN (1) CN101304571B (en)

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2009097781A8 (en) * 2008-02-02 2009-11-19 宇龙计算机通信科技(深圳)有限公司 Method for monitoring host machines, monitoring device and host machine
CN101854301A (en) * 2010-06-02 2010-10-06 中兴通讯股份有限公司 Method and device for disconnecting link of network nodes
DE102012009128A1 (en) * 2012-05-05 2013-11-07 Abb Ag A method of communication between a mobile terminal and a device of the building system technology or the door communication
CN103442124B (en) * 2013-08-01 2016-05-04 宇龙计算机通信科技(深圳)有限公司 A separate-type mobile terminal and a method and system for theft
CN105024887A (en) * 2014-04-16 2015-11-04 宇龙计算机通信科技(深圳)有限公司 Terminal group, terminal and terminal communication method
CN105635101A (en) * 2015-08-28 2016-06-01 宇龙计算机通信科技(深圳)有限公司 The invention discloses a roaming register processing method, a multi-domain split-type mobile terminal control device and system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1161031A2 (en) 2000-06-01 2001-12-05 Sharp Kabushiki Kaisha Access point device and authentication method thereof
CN1187909C (en) 2001-10-09 2005-02-02 英群企业股份有限公司 Transmission method of radio virtual channel
CN1581873A (en) 2003-08-06 2005-02-16 华为技术有限公司 Method for realizing network-visit control
CN1705245A (en) 2004-06-01 2005-12-07 上海迪比特实业有限公司 Authentication and connection method between mobile phones having bluetooth module

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1161031A2 (en) 2000-06-01 2001-12-05 Sharp Kabushiki Kaisha Access point device and authentication method thereof
CN1187909C (en) 2001-10-09 2005-02-02 英群企业股份有限公司 Transmission method of radio virtual channel
CN1581873A (en) 2003-08-06 2005-02-16 华为技术有限公司 Method for realizing network-visit control
CN1705245A (en) 2004-06-01 2005-12-07 上海迪比特实业有限公司 Authentication and connection method between mobile phones having bluetooth module

Also Published As

Publication number Publication date Type
CN101304571A (en) 2008-11-12 application

Similar Documents

Publication Publication Date Title
US8823494B1 (en) Systems and methods for wireless device connection and pairing
EP1111527A2 (en) Communication method for data sychronization processing and electronic device therefor
US20040180657A1 (en) Authenticating multiple devices simultaneously using a single wireless subscriber identity module
US20040168081A1 (en) Apparatus and method simplifying an encrypted network
US20060174121A1 (en) Security group management system
US20060075222A1 (en) System for personal group management based on subscriber certificates
US20070049265A1 (en) Apparatus and method for local device management
WO2006106393A2 (en) Access management in a wireless local area network
US7835510B2 (en) Conference system and terminal apparatus
US20070123165A1 (en) Methods, systems and devices for assisted discovery in bluetooth enabled devices
CN101807944A (en) Mobile terminal and data sharing method thereof
US20090109963A1 (en) Apparatus, method, and computer program product for registering user address information
US20130191902A1 (en) Network mediated multi-device shared authentication
US20110093938A1 (en) Methods, apparatuses, and computer program products for bootstrapping device and user authentication
US20140094124A1 (en) Transferring data over bluetooth using intermittent bridge
JP2003309558A (en) Method for authenticating communication on network medium
US20140196112A1 (en) Deploying wireless docking as a service
CN103716795A (en) Wireless network safe access method, apparatus and system
CN1705245A (en) Authentication and connection method between mobile phones having bluetooth module
US20040179687A1 (en) Method for transmitting copyrighted electronic documents in a wireless communication system
JP2005286783A (en) Wireless lan connection method and wireless lan client software
US20050287985A1 (en) Using a portable security token to facilitate public key certification for devices in a network
JP2007058260A (en) Content distribution method, and mobile terminal
JP2005309860A (en) Authenticating system and method
JP2004297759A (en) Connection authentication in wireless communication network system

Legal Events

Date Code Title Description
C06 Publication
C10 Request of examination as to substance
C14 Granted