CN101902507B - Method, device and system for distributing addresses - Google Patents
Method, device and system for distributing addresses Download PDFInfo
- Publication number
- CN101902507B CN101902507B CN 201010244577 CN201010244577A CN101902507B CN 101902507 B CN101902507 B CN 101902507B CN 201010244577 CN201010244577 CN 201010244577 CN 201010244577 A CN201010244577 A CN 201010244577A CN 101902507 B CN101902507 B CN 101902507B
- Authority
- CN
- China
- Prior art keywords
- address
- subscriber equipment
- authentication
- eap
- expectation
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The embodiment of the invention discloses a method, a device and a system for distributing addresses. The method comprises the following steps of: executing a webpage authentication (WEB) process to transmit addresses which user equipment expects to an access controller (AC); executing extensible authentication protocol (EAP) authentication; after passing the EAP authentication, transmitting a dynamic host configuration protocol (DHCP) request to the AC and requiring the AC to distribute the addresses; and then receiving the addresses distributed by the AC, wherein the addresses distributed by the AC are the same as the expected addresses. Under the condition that the WEB authentication and the EAP-SIM authentication exist in the same network, the WEB authentication process and the EAP authentication process are performed independently and parallelly, so the aim of correctly acquiring an internet protocol (IP) address under the condition that the WEB authentication and the EAP-SIM authentication exist in the same network is fulfilled.
Description
Technical field
The present invention relates to communication technical field, particularly a kind of address distribution method, device and system.
Background technology
Subscriber equipment can be realized comprehensive access by client software.Above-mentioned comprehensive access refers to that subscriber equipment can access the second generation/third generation (2G/3G) network by mobile broadband product on the one hand, can pass through on the other hand Wireless Fidelity (Wireless Fidelity, Wi-Fi) function access Wi-Fi network.
Wi-Fi network and 2G/3G network exist simultaneously now, and need to realize unified certification, mandate, the charging implementation of two kinds of networks when runing simultaneously Wi-Fi network and 2G/3G network.The certificate scheme of current Wi-Fi network is generally: the input usemame/password is come by authentication in the IE browser, i.e. webpage (WEB) authentication.In the scheme of WEB authentication, as long as WLAN (wireless local area network) (the Wireless Local Area Network of subscriber equipment, WLAN) network interface card is associated with wlan network, will initiate DHCP (Dynamic Host Configuration Protocol, DHCP) request, to obtain dynamic internet protocol (Internet Protoco1, IP) address.
Internet Engineering task groups draft (Internet Engineering Task Force Internet RFC, IETF RFC 4186) defined a kind of Extensible Authentication Protocol-Subscriber Identity Module (Extensible Authentication Protocol, EAP-SIM) agreement, existing SIM card has identified unique identity of user in the 2G/3G network, Wi-Fi network utilisation SIM card is finished authentication, be the EAP-SIM/AKA authentication, can not need like this user manually to input usemame/password.In the EAP-SIM/AKA certificate scheme, after the WLAN network interface card of subscriber equipment is associated with wlan network, need then just can initiate the DHCP request by EAP-SIM/ key agreement (Authentication and Key Agreement, AKA) authentication.
Existing WEB authentication has again under the scene of EAP-SIM authentication under consolidated network, and the scheme of address assignment is generally: user device association is to the wlan network of open (Open) pattern; After being associated with wlan network, subscriber equipment (User Equipment, UE) sends EAP authentication beginning (EAPoL-Start) message to AC, initiates the EAP authentication; After the EAP authentication is initiated, UE and network side carry out the identifying procedure of Extensible Authentication Protocol Authentication and Key Agreement (Extensible Authentication Protocol Method for 3G Authentication and Key Agreement, EAP-AKA) EAP-AKA/SIM; Authenticated/authorized/book keeping operation protocol server (Authentication, Authorization, Accounting, AAA) after authentication is passed through, to WAP (wireless access point) (Access Point, AP) AP sends EAP authentication success (EAP-Success) message, and has been with key information, so that can eat dishes without rice or wine to encrypt by this key information and UE; AP sends EAP authentication success (EAP-Success) message to UE, informs the UE authentication success; Behind the authentication success, UE initiates the DHCP request, obtains the IP address.
Existing WEB authentication has again under the scene of EAP-SIM authentication under consolidated network; Because in the EAP identifying procedure, only just can obtain the IP address by the DHCP request in authentication by rear, and in the situation of WEB authentication, subscriber equipment can be initiated the DHCP request at once after the WLAN network interface card of subscriber equipment was associated with wlan network, and this moment subscriber equipment not authentication pass through, thereby can't obtain the IP address.So in existing WEB authentication, have again that prior art can't obtain the IP address under the scene of EAP-SIM authentication.
Summary of the invention
The technical problem that the embodiment of the invention will solve provides a kind of address distribution method, device and system, realizes that subscriber equipment successfully obtains the IP address under the scene of multiple authentication mode coexistence.
For solving the problems of the technologies described above, address acquiring method embodiment provided by the present invention can be achieved through the following technical solutions:
Execution webpage authentication WEB flow process sends to access controller AC with the address of subscriber equipment expectation;
Carry out Extensible Authentication Protocol EAP authentication;
After the EAP authentication is passed through, send the dynamic host configuration protocol DHCP request to AC, request AC distributes the address; Then receive the address that AC distributes, the address that described AC distributes is identical with the address of described expectation.
A kind of address distribution method comprises:
Carry out webpage authentication WEB flow process and receive the address that subscriber equipment is expected;
Carry out Extensible Authentication Protocol EAP authentication;
EAP authentication by and receive the DHCP request that subscriber equipment sends after, with the address assignment of described expectation to subscriber equipment.
A kind of subscriber equipment comprises:
The address transmitting element sends to AC for carrying out the address of webpage authentication WEB flow process with the subscriber equipment expectation;
The EAP authentication ' unit is used for carrying out Extensible Authentication Protocol EAP authentication;
The DHCP request unit is used for sending the dynamic host configuration protocol DHCP request to AC after the EAP authentication is passed through, and request AC distributes the address;
The address receiving element is used for receiving the address that AC distributes, and the address that described AC distributes is identical with the address of described expectation.
A kind of access controller comprises:
Expectation address receiving element is used for carrying out the address that webpage authentication WEB flow process receives the subscriber equipment expectation;
The EAP authentication ' unit is used for carrying out Extensible Authentication Protocol EAP authentication;
Allocation unit, be used for the EAP authentication by and receive the DHCP request that subscriber equipment sends after, with the address assignment of described expectation to subscriber equipment.
A kind of address allocation system comprises: the access controller that the subscriber equipment that the embodiment of the invention provides and the embodiment of the invention provide.
Technique scheme has following beneficial effect: existing WEB authentication under consolidated network, have again under the scene of EAP-SIM authentication, flow process and the EAP identifying procedure independent parallel of WEB authentication authenticate, realize existing WEB authentication, correctly obtained the purpose of IP address under the scene that has again EAP-SIM to authenticate.
Description of drawings
In order to be illustrated more clearly in the embodiment of the invention or technical scheme of the prior art, the below will do to introduce simply to the accompanying drawing of required use in embodiment or the description of the Prior Art, apparently, accompanying drawing in the following describes only is some embodiments of the present invention, for those of ordinary skills, under the prerequisite of not paying creative work, can also obtain according to these accompanying drawings other accompanying drawing.
Figure 1A embodiment of the invention method flow schematic diagram;
Figure 1B embodiment of the invention method flow schematic diagram;
Fig. 2 embodiment of the invention method flow schematic diagram;
Fig. 3 is embodiment of the invention user device architecture schematic diagram;
Fig. 4 is embodiment of the invention user device architecture schematic diagram;
Fig. 5 is embodiment of the invention AC structural representation;
Fig. 6 is embodiment of the invention AC structural representation;
Fig. 7 is embodiment of the invention system configuration schematic diagram.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the invention, the technical scheme in the embodiment of the invention is clearly and completely described, obviously, described embodiment only is the present invention's part embodiment, rather than whole embodiment.Based on the embodiment among the present invention, those of ordinary skills belong to the scope of protection of the invention not making the every other embodiment that obtains under the creative work prerequisite.
The embodiment of the invention provides a kind of address acquiring method, shown in Figure 1A, comprising:
101A: execution webpage authentication WEB flow process sends to access controller AC with the address of subscriber equipment expectation;
Above-mentioned 101A can be: after being associated with WLAN (wireless local area network) WLAN, by the AC transmission address assignment request message of dynamic host configuration protocol DHCP client to above-mentioned WLAN; Receive the address list that AC distributes, and choose the address of subscriber equipment expectation from the address above mentioned tabulation, the address of expecting is sent should be to AC.
102A: carry out Extensible Authentication Protocol EAP authentication;
Above-mentioned 102A can be: after being associated with above-mentioned WLAN and receiving the instruction of the initiation EAP authentication that the user inputs, by the AC transmission EAP authentication request message of wlan client to above-mentioned WLAN; Receive report of user equipment identity information that AC returns according to above-mentioned EAP authentication request report request message after, send the identity information of subscriber equipment to certificate server, carry out the EAP authentication.
After the 103A:EAP authentication is passed through, send the dynamic host configuration protocol DHCP request to AC, request AC distributes the address; Then receive the address that AC distributes, the address that above-mentioned AC distributes is identical with the address of above-mentioned expectation.
Above method flow is carried out in user equipment side, and the embodiment of the invention also provides the implementation in AC side executive address distribution method, as shown in Figure 1B, may further comprise the steps:
101B: carry out the address that webpage authentication WEB flow process receives the subscriber equipment expectation;
Above-mentioned 101B can for: after receiving the address assignment request message from subscriber equipment, be above-mentioned user equipment allocation address list, send the address above mentioned tabulation to above-mentioned subscriber equipment, and receive the address of the expectation of from the address above mentioned tabulation, selecting of above-mentioned subscriber equipment transmission.
102B: carry out Extensible Authentication Protocol EAP authentication;
Above-mentioned 102B can for: after receiving the EAP authentication request message from above-mentioned subscriber equipment, send the request message that reports of report of user equipment identity information to above-mentioned subscriber equipment, and the identity information of the above-mentioned subscriber equipment of reception subscriber equipment transmission, carry out the EAP authentication.
103B:EAP authentication by and receive the DHCP request that subscriber equipment sends after, with the address assignment of above-mentioned expectation to subscriber equipment.
The method of present embodiment address acquisition, existing WEB authentication has again under the scene of EAP-SIM authentication under consolidated network, and flow process and the EAP identifying procedure independent parallel of WEB authentication authenticate, realize existing WEB authentication, correctly obtained the purpose of IP address under the scene that has again EAP-SIM to authenticate.
Below will be illustrated with regard to the application of above-described embodiment method under the WEB-AKA network, the embodiment of the invention can also be applied in other any networks that can use the EAP authentication, such as EAP-TLS network, EAP-TTLS network etc., so the WEB-AKA network should not be construed as the restriction to the embodiment of the invention.As shown in Figure 2, comprising:
201: the wlan network that is associated with open (Open) pattern.
202:UE sends DHCP and explores (DHCP discover) message to AC, request distributing IP address.
203:UE sends EAP authentication beginning (EAP-Start) message to AC, request beginning EAP authentication.
Need to prove that DHCP discover message is initiated by the dhcp client on the PC, EAP-Start message is initiated by wlan client software, and the order of DHCP discover message and EAP-Start message does not have precedence relationship.Therefore follow-up response for DHCP discover message and EAP-Start message is carried out and is not also had sequential relationship.
After 204:AC receives DHCP discover message, reply DHCP supply (DHCP offer) message, carry the IP of suggestion to UE.
205:AC initiates EAP and requires/identification (EAP-Request/Identity) message, identity information on the request UE newspaper.
After 206:UE receives EAP-Request/Identity message, initiate EAP response/identity (EAP-Response/Identity) message, reply the UE identity information, this message reaches AAA, then enters 207.
207:AAA carries out the EAP-AKA/SIM identifying procedure.
After 208:UE receives DHCP offer message, initiate DHCP and require (DHCP request) message, carry the IP address of UE expectation.
After 209:AC receives DHCP request message, reply DHCP and confirm (DHCP ACK) message, so far DHCP IP address assignment finishes.After obtaining the IP address under the WEB authentication mode, can send message initiated WEB identifying procedure to portal website (Portal).
210:UE receives EAP authentication success (EAP-Success) message that AC sends, and EAP authenticates end; Behind the EAP authentication success, UE can initiate the DHCP request, obtains the IP address, and the IP address of UE expectation is identical in this IP address and 208.
The method of present embodiment address acquisition, existing WEB authentication has again under the scene of EAP-SIM authentication under consolidated network, and flow process and the EAP identifying procedure independent parallel of WEB authentication authenticate, realize existing WEB authentication, correctly obtained the purpose of IP address under the scene that has again EAP-SIM to authenticate.
The embodiment of the invention provides a kind of subscriber equipment, as shown in Figure 3, comprising:
Address transmitting element 301 sends to AC for carrying out the address of webpage authentication WEB flow process with the subscriber equipment expectation;
EAP authentication ' unit 302 is used for carrying out Extensible Authentication Protocol EAP authentication;
Address receiving element 304 is used for receiving the address that AC distributes, and the address that above-mentioned AC distributes is identical with the address of above-mentioned expectation.
Alternatively, address transmitting element 301 can adopt dhcp client to realize, the EAP authentication ' unit can adopt the WLAN network interface card to realize; Address above mentioned transmitting element 301 comprises as shown in Figure 4:
Address assignment request transmitting element 3011 is after being used for being associated with WLAN (wireless local area network) WLAN, by the AC transmission address assignment request message of dynamic host configuration protocol DHCP client to above-mentioned WLAN;
Expectation address transmitting element 3012 is used for choosing the address that subscriber equipment is expected from the address list that receives, should be to AC with the address transmission of expectation;
Above-mentioned EAP authentication ' unit 302 comprises:
EAP authentication request unit 3021 is after being used for being associated with above-mentioned WLAN and receiving the instruction of the initiation EAP authentication that the user inputs, by the AC transmission EAP authentication request message of wlan client to above-mentioned WLAN;
EAP authenticates subelement 3022, be used for receiving report of user equipment identity information that AC returns according to above-mentioned EAP authentication request report request message after, send the identity information of subscriber equipment to certificate server, carry out the EAP authentication.
The embodiment of the invention also provides a kind of access controller, as shown in Figure 5, comprising:
Expectation address receiving element 501 is used for carrying out the address that webpage authentication WEB flow process receives the subscriber equipment expectation;
EAP authentication ' unit 502 is used for carrying out Extensible Authentication Protocol EAP authentication;
Alternatively, as shown in Figure 6, above-mentioned expectation address receiving element 501 comprises:
Address list allocation units 5011 after the address assignment request message that receives from subscriber equipment, are above-mentioned user equipment allocation address list;
Address list transmitting element 5012 is used for sending the address above mentioned tabulation to above-mentioned subscriber equipment;
The expectation address receives subelement 5013, is used for receiving the address of the expectation that above-mentioned subscriber equipment sends selects from the address above mentioned tabulation;
EAP authentication ' unit 502 comprises:
Request message transmitting element 5021 after the EAP authentication request message that receives from above-mentioned subscriber equipment, sends the request message that reports of report of user equipment identity information to above-mentioned subscriber equipment;
Identity information receiving element 5022 is for the identity information of the above-mentioned subscriber equipment that receives the subscriber equipment transmission;
EAP authenticates subelement 5023, is used for carrying out the EAP authentication according to the identity information that receives.
The embodiment of the invention also provides a kind of address allocation system, as shown in Figure 7, comprising: any one subscriber equipment 601 and access controller 602 that the embodiment of the invention provides.
The method of present embodiment address acquisition, existing WEB authentication has again under the scene of EAP-SIM authentication under consolidated network, and flow process and the EAP identifying procedure independent parallel of WEB authentication authenticate, realize existing WEB authentication, correctly obtained the purpose of IP address under the scene that has again EAP-SIM to authenticate.
One of ordinary skill in the art will appreciate that all or part of step that realizes in above-described embodiment method is to come the relevant hardware of instruction to finish by program, above-mentioned program can be stored in a kind of computer-readable recording medium, the above-mentioned storage medium of mentioning can be read-only memory, disk or CD etc.
More than a kind of address acquiring method, device and system that the embodiment of the invention is provided be described in detail, used specific case herein principle of the present invention and execution mode are set forth, the explanation of above embodiment just is used for helping to understand method of the present invention and core concept thereof; Simultaneously, for one of ordinary skill in the art, according to thought of the present invention, all will change in specific embodiments and applications, to sum up, this description should not be construed as limitation of the present invention.
Claims (9)
1. an address distribution method is characterized in that, comprising:
Execution webpage authentication WEB flow process sends to access controller AC with the address of subscriber equipment expectation; The address of described subscriber equipment expectation is chosen from the address list that AC distributes and is obtained;
Carry out Extensible Authentication Protocol EAP authentication;
After the EAP authentication is passed through, send the dynamic host configuration protocol DHCP request to AC, request AC distributes the address; Then receive the address that AC distributes, the address that described AC distributes is identical with the address of described expectation.
2. described method according to claim 1 is characterized in that,
The address that execution webpage authentication WEB flow process is expected subscriber equipment sends to AC and comprises:
After being associated with WLAN (wireless local area network) WLAN, by the AC transmission address assignment request message of dynamic host configuration protocol DHCP client to described WLAN; Receive the address list that AC distributes, and from described address list, choose the address of subscriber equipment expectation, the address of expecting is sent to this AC;
Carrying out Extensible Authentication Protocol EAP authentication comprises:
After being associated with described WLAN and receiving the instruction of the initiation EAP authentication that the user inputs, by the AC transmission EAP authentication request message of wlan client to described WLAN; Receive report of user equipment identity information that AC returns according to described EAP authentication request report request message after, send the identity information of subscriber equipment to certificate server, carry out the EAP authentication.
3. an address distribution method is characterized in that, comprising:
Carry out webpage authentication WEB flow process and receive the address that subscriber equipment is expected; The address of described subscriber equipment expectation is chosen from the address list that access controller AC distributes and is obtained;
Carry out Extensible Authentication Protocol EAP authentication;
EAP authentication by and receive the DHCP request that subscriber equipment sends after, with the address assignment of described expectation to subscriber equipment.
4. described method according to claim 3 is characterized in that,
The address of carrying out the expectation of webpage authentication WEB flow process reception subscriber equipment comprises:
After receiving the address assignment request message from subscriber equipment, for described user equipment allocation address list, send described address list to described subscriber equipment, and receive the address of the expectation of from described address list, selecting of described subscriber equipment transmission;
Carrying out Extensible Authentication Protocol EAP authentication comprises:
After receiving the EAP authentication request message from described subscriber equipment, send the request message that reports of report of user equipment identity information to described subscriber equipment, and receive the identity information of the described subscriber equipment of subscriber equipment transmission, carry out the EAP authentication.
5. a subscriber equipment is characterized in that, comprising:
The address transmitting element sends to AC for carrying out the address of webpage authentication WEB flow process with the subscriber equipment expectation; The address of described subscriber equipment expectation is chosen from the address list that access controller AC distributes and is obtained;
The EAP authentication ' unit is used for carrying out Extensible Authentication Protocol EAP authentication;
The DHCP request unit is used for sending the dynamic host configuration protocol DHCP request to AC after the EAP authentication is passed through, and request AC distributes the address;
The address receiving element is used for receiving the address that AC distributes, and the address that described AC distributes is identical with the address of described expectation.
6. described subscriber equipment according to claim 5 is characterized in that,
Described address transmitting element comprises:
The address assignment request transmitting element is after being used for being associated with WLAN (wireless local area network) WLAN, by the AC transmission address assignment request message of dynamic host configuration protocol DHCP client to described WLAN;
Expectation address transmitting element is used for choosing the address that subscriber equipment is expected from the address list that receives, and the address of expecting is sent to this AC;
Described EAP authentication ' unit comprises:
EAP authentication request unit is after being used for being associated with described WLAN and receiving the instruction of the initiation EAP authentication that the user inputs, by the AC transmission EAP authentication request message of wlan client to described WLAN;
EAP authenticates subelement, be used for receiving report of user equipment identity information that AC returns according to described EAP authentication request report request message after, send the identity information of subscriber equipment to certificate server, carry out the EAP authentication.
7. an access controller is characterized in that, comprising:
Expectation address receiving element is used for carrying out the address that webpage authentication WEB flow process receives the subscriber equipment expectation; The address of described subscriber equipment expectation is chosen from the address list that access controller AC distributes and is obtained;
The EAP authentication ' unit is used for carrying out Extensible Authentication Protocol EAP authentication;
Allocation unit, be used for the EAP authentication by and receive the DHCP request that subscriber equipment sends after, with the address assignment of described expectation to subscriber equipment.
8. described access controller according to claim 7 is characterized in that,
Described expectation address receiving element comprises:
The address list allocation units after the address assignment request message that receives from subscriber equipment, are described user equipment allocation address list;
The address list transmitting element is used for sending described address list to described subscriber equipment;
The expectation address receives subelement, is used for receiving the address of the expectation that described subscriber equipment sends selects from described address list;
The EAP authentication ' unit comprises:
The request message transmitting element after the EAP authentication request message that receives from described subscriber equipment, sends the request message that reports of report of user equipment identity information to described subscriber equipment;
The identity information receiving element is for the identity information of the described subscriber equipment that receives the subscriber equipment transmission;
EAP authenticates subelement, is used for carrying out the EAP authentication according to the identity information that receives.
9. an address allocation system is characterized in that, comprising: the subscriber equipment of claim 5 and the access controller of claim 7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201010244577 CN101902507B (en) | 2010-08-02 | 2010-08-02 | Method, device and system for distributing addresses |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201010244577 CN101902507B (en) | 2010-08-02 | 2010-08-02 | Method, device and system for distributing addresses |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101902507A CN101902507A (en) | 2010-12-01 |
| CN101902507B true CN101902507B (en) | 2013-01-23 |
Family
ID=43227705
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 201010244577 Active CN101902507B (en) | 2010-08-02 | 2010-08-02 | Method, device and system for distributing addresses |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101902507B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102282800A (en) * | 2011-06-03 | 2011-12-14 | 华为终端有限公司 | Terminal authentication method and apparatus |
| CN103533598B (en) * | 2012-07-02 | 2019-01-15 | 中兴通讯股份有限公司 | Access acquisition processing, acquisition methods and the device of net network capabilities |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101296081A (en) * | 2007-04-29 | 2008-10-29 | 华为技术有限公司 | Authentication, method, system, access body and device for distributing IP address after authentication |
| CN101340334A (en) * | 2007-07-02 | 2009-01-07 | 华为技术有限公司 | Network access method, system and apparatus |
| WO2009126083A1 (en) * | 2008-04-11 | 2009-10-15 | Telefonaktiebolaget L M Ericsson (Publ) | Access through non-3gpp access networks |
-
2010
- 2010-08-02 CN CN 201010244577 patent/CN101902507B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101296081A (en) * | 2007-04-29 | 2008-10-29 | 华为技术有限公司 | Authentication, method, system, access body and device for distributing IP address after authentication |
| CN101340334A (en) * | 2007-07-02 | 2009-01-07 | 华为技术有限公司 | Network access method, system and apparatus |
| WO2009126083A1 (en) * | 2008-04-11 | 2009-10-15 | Telefonaktiebolaget L M Ericsson (Publ) | Access through non-3gpp access networks |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101902507A (en) | 2010-12-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11272361B2 (en) | Zero-touch onboarding in a network | |
| CN101163000B (en) | Secondary authentication method and system | |
| US8543814B2 (en) | Method and apparatus for using generic authentication architecture procedures in personal computers | |
| US9948647B2 (en) | Method and device for authenticating static user terminal | |
| CN106105134B (en) | Method and apparatus for improving end-to-end data protection | |
| US9775032B2 (en) | Method for controlling access point in wireless local area network, and communication system | |
| CN104580116B (en) | A kind of management method and equipment of security strategy | |
| CN103888265A (en) | Login system and method based on mobile terminal | |
| CN101621801A (en) | Method, system, server and terminal for authenticating wireless local area network | |
| KR20130034649A (en) | Secure registration of group of clients using single registration procedure | |
| CN102196434A (en) | Authentication method and system for wireless local area network terminal | |
| US9473489B2 (en) | Private simultaneous authentication of equals | |
| CN103222292A (en) | Dynamic account creation with secured hotspot network | |
| EP3143780B1 (en) | Device authentication to capillary gateway | |
| WO2006097041A1 (en) | A general authentication former and a method for implementing the authentication | |
| US9736156B2 (en) | WLAN user fixed network accessing method and system | |
| CN1567868A (en) | Authentication method based on Ethernet authentication system | |
| CN106534050A (en) | Method and device for realizing key agreement of virtual private network (VPN) | |
| CN104581722A (en) | Network connection method and device based on WPS (Wireless Fidelity Protected Setup) | |
| Matos et al. | Secure hotspot authentication through a near field communication side-channel | |
| CN101902507B (en) | Method, device and system for distributing addresses | |
| CN109361659B (en) | Authentication method and device | |
| CN101272297B (en) | EAP authentication method of WiMAX network user | |
| CN102143601B (en) | Broadband access processing method, radio access network (RAN) and communication system | |
| CN102282800A (en) | Terminal authentication method and apparatus |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |