CN102347957A - Cloud network admission identifying system and admission identifying technology - Google Patents
Cloud network admission identifying system and admission identifying technology Download PDFInfo
- Publication number
- CN102347957A CN102347957A CN2011103692829A CN201110369282A CN102347957A CN 102347957 A CN102347957 A CN 102347957A CN 2011103692829 A CN2011103692829 A CN 2011103692829A CN 201110369282 A CN201110369282 A CN 201110369282A CN 102347957 A CN102347957 A CN 102347957A
- Authority
- CN
- China
- Prior art keywords
- portable terminal
- access
- mobile terminal
- terminal
- service system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention relates to the technical field of cloud network access admission, and discloses a cloud network admission identifying system and a cloud network admission identifying technology. The system comprises a mobile terminal application module, a cloud system access system and an admission service system. The method comprises the steps that: a mobile terminal applies for registering of terminal equipment; the admission service system allocates a code to a mobile terminal network; the mobile terminal applies for accessing a cloud network; the admission service system generates an authentication parameter sequence through calculation; the mobile terminal verifies the validity of the cloud network; the mobile terminal generates verification feedback result information through calculation; the admission system verifies and determines the validity of mobile terminal access authority; an access server enables a cloud terminal communication secret key; and the mobile terminal enables a terminal communication secret key. According to the related system and method of the invention, the cloud network can effectively identify the validity of the mobile terminal access authority, and the mobile terminal can test and verify the validity of the cloud network in which the mobile terminal is resided.
Description
Technical field
Relate generally to cloud network access authentication technique of the present invention.Be specifically related to a kind of cloud network access identification system, and cloud network access authentication technique method.
Background technology
Along with rapid development of Internet, network is played the part of more and more important role people in live and work in recent years.The cloud network further provides more information and service for people as a kind of emerging network.Simultaneously, be accompanied by the development of the universal and radio network technique of mobile electronic devices such as PC and smart mobile phone, people can not be subjected to site limitation, anywhere or anytime through mobile electronic device visit cloud network.
In the access to netwoks process, the cloud network carries out access to visitor's access rights usually and differentiates whether have legal access rights with the authentication-access person.Access for access rights differentiates that the method that adopts is at present, and the visitor inputs account and password, and the cloud network judges whether to allow the visitor to login and visit the cloud network through check account and password.
But complicated account and password are difficult to memory usually, and need loaded down with trivial details input operation.And account and password are very easily by other people unauthorized theft.On the other hand, check the access identification method of account and password at present, the cloud network can't distinguish that the visitor is real validated user, or account's appropriator.
In addition, do not have the method that the visitor differentiates the legitimacy of cloud network at present, the visitor can't differentiate the legitimacy of institute's accesses network.This makes illegal person to gain visitor's login by cheating through the illegal network of forging, and then gains visitor's personal information such as account and password by cheating.
Summary of the invention
In order to solve the limitation that existing cloud network access authority access is differentiated, the present invention provides a kind of cloud network access identification system and cloud network access authentication technique method.This system and method has portable terminal and cloud network bi-directional identification function, its advantage be portable terminal can verify differentiate its resident cloud network whether safety is legal, and the cloud network can differentiate effectively whether portable terminal is legal visitor.Another advantage of the present invention is to use between portable terminal and cloud network dynamic key to communicate encryption.The visitor visits the cloud network at every turn, and cloud network access service system all can be for this visitor distributes a new key, and the data of transmitting between visitor and cloud network will be done further to encrypt through this key.This measure has further strengthened the confidentiality of information.
In order to realize these and other advantage of the present invention, cloud network access identification system provided by the invention comprises: portable terminal application module, cloud network access system and access service system.
The portable terminal application module that native system relates to comprises:
Logical processing unit, various processes and logic state that the handle mobile terminal application module is inner;
Operation processing unit has mathematics and logical operation function;
Data storage cell, memory mobile terminal related data and recorded information;
The encryption/decryption process unit carries out encryption/decryption process to data;
Communication unit has the communication protocol of foundation linkage function.
The cloud network access system that native system relates to is made up of several access servers.
Related access server comprises:
Central processing module is handled access server inner various processes and logic state;
The calculation process module has mathematics and logical operation function;
Data memory module, storing data information and historical record;
The encryption/decryption process module is carried out encryption/decryption process to data;
Communication module has the communication protocol of foundation linkage function.
The access service system that native system relates to comprises:
Central processing module, the various processes and the logic state of processing access service system;
The calculation process module has mathematics and logical operation function;
Data memory module, storing data information and historical record;
The encryption/decryption process module is carried out encryption/decryption process to data;
Communication module has the communication protocol of foundation linkage function.
Another aspect of the present invention provides a kind of cloud network access discrimination method, and this method comprises:
Portable terminal is set up communication protocol with access server and is connected;
Portable terminal sends application for registration message, the registration of application mobile terminal device;
The access service system is that portable terminal distributes the mobile terminal network code;
Portable terminal sends the terminal to the access service system and inserts request message, application visit cloud network;
The computing of access service system produces the authentication parameter sequence, and the authentication parameter sequence is sent to portable terminal;
Portable terminal utilizes terminal authentication key-parsing authentication parameter sequence;
Portable terminal is judged the legitimacy of cloud network through the network verification computing;
Portable terminal produces the feedback result information of differentiating through terminal checking computing;
Portable terminal sends identification result information to the access service system;
The access service system is judged the legitimacy of mobile terminal accessing authority through verification identification result information;
If portable terminal has legal access rights, the access service system is sent the high in the clouds communication key to access server;
Access server is launched the high in the clouds communication key;
Portable terminal utilizes the authentication parameter sequence to calculate and produces the terminal communication key, and launches the terminal communication key;
Cloud network access identification system provided by the invention and access authentication technique method can effectively be made discriminating to cloud web visitor's identity.Simultaneously, the visitor also can differentiate the legitimacy of cloud network.
Description of drawings
Shown in Figure 1 is cloud network access identification system sketch map of the present invention;
Shown in Figure 2 is portable terminal application module structural representation of the present invention;
Shown in Figure 3 is access server structural representation of the present invention;
Shown in Figure 4 is access service system structural representation of the present invention;
Shown in Figure 5 is mobile terminal registers process sketch map of the present invention;
Shown in Figure 6 is access service system processing register request message process sketch map of the present invention;
Shown in Figure 7 is mobile terminal accessing cloud network development process sketch map of the present invention.
Embodiment
Portable terminal involved in the present invention comprises various portable electric appts, personal electronic equipments and mobile electronic device etc.
It is communicating pair or communication protocol Network Based in many ways or wireless communication protocol foundation that communication protocol involved in the present invention connects, and can be used for the connection of transfer of data.Said communication protocol can be industrywide standard communication protocol, also non-standard communication agreement.
Mobile terminal identification involved in the present invention be can the unique identification mobile terminal device identifying information; It can be the identification information of portable terminal hardware, like portable terminal hardware device sequence number, central processing unit product ID, communication network interface card hardware sequence number, network interface card MAC (Media Access Control) address information, SIM card (Subscriber Identity Module client identification module) card number; Or the software certificate information of portable terminal institute install software, the digital certificate that is had like software licensing card information, software product sequence number, software; Or portable terminal had, through the digital certificate of licensing.
Mobile terminal network code involved in the present invention is in the cloud network, but the identifying information of unique identification mobile terminal device.It is that portable terminal distributes by cloud network access service system.Each portable terminal only has a network code, and the network code between portable terminal is all inequality arbitrarily.
Access server code involved in the present invention is in the cloud network access system, but the identifying information of unique identification access server equipment.Each access server only has a code, and the code between access server is all inequality arbitrarily.
Algorithm involved in the present invention is the operational formula of mathematics and logic, calculating process and operation method.
Shown in Figure 1 is cloud network access identification system sketch map of the present invention.Cloud network 101 is cloud networks of broad scope, can be portable terminal multiple information and service are provided.Several access servers 102 constitute the cloud network access system.Access server is connected with the cloud network, can set up communication protocol with portable terminal and be connected 107.Each access server all can be used as the connected node that portable terminal inserts the cloud network.The common branch of access server is in different regions, and a plurality of portable terminals that can be in the region provide cloud network insertion service.Portable terminal 103,104 and 105 is equipped with the portable terminal application module, can set up communication protocol with access server and be connected.Access service system 106 is connected with access server, and can be the cloud network access system provides the access rights access to differentiate service.When mobile terminal accessing cloud network, portable terminal send to insert request to the access service system, and the access service system will be differentiated the portable terminal authority access that conducts interviews.Have only access to differentiate and pass through, portable terminal could continue visit cloud network.Otherwise portable terminal will be rejected visit cloud network.
Shown in Figure 2 is portable terminal application module structural representation of the present invention.Portable terminal application module 200 is installed on portable terminal.The portable terminal application module can be made up of software or hardware, to adapt to the portable terminal of different performance and type.Each portable terminal only can be installed a portable terminal application module.Each portable terminal application module has and only has unique digital certificate, but this portable terminal application module of this digital certificate unique identification.Each portable terminal application module all has a terminal authentication key, and the terminal authentication key between the different mobile terminal application module is all inequality.The mutual unique coupling of access end KI of this terminal authentication key and access service system is carried out encrypt/decrypt.Each portable terminal application module all stores particular network verification algorithm, terminal verification algorithm and terminal communication key algorithm.Portable terminal can calculate parameter fan-in network verification algorithm, verifies the legitimacy of institute's residing network.Portable terminal can calculate parameter input terminal verification algorithm, produces feedback result, and feedback result is sent to the access service system.Portable terminal can calculate parameter input terminal communication key algorithm, produces the terminal communication key.
Shown in the portable terminal application module structure, Logical processing unit 201 is responsible for handling application module inner various processes and logic state.Operation processing unit 202 has mathematics and logical operation function.Encryption/decryption process unit 203, the data that can send portable terminal/receive are carried out encryption/decryption process.Data storage cell 204, data and recorded information that memory mobile terminal is relevant.Communication unit 205 has the communication protocol of foundation linkage function: when portable terminal had the communication protocol of foundation linkage function, communication unit was connected with the communication of mobile terminal protocol interface, set up communication protocol and connected; When portable terminal did not have the communication protocol of foundation linkage function, communication unit can be set up communication protocol and connect.
Shown in Figure 3 is access server structural representation of the present invention.Access server 102 is the internetwork connected nodes of portable terminal and cloud.Each access server all have one can unique this equipment of identification the access server code.Central processing module 301 is responsible for handling access server inner various processes and logic state.Calculation process module 302 has mathematics and logical operation function.Data memory module 303 has data storage function, can store related data and recorded information.Encryption/decryption process module 304 is carried out encryption/decryption process to the data of access server transmission/reception.Communication module 305 has the communication protocol of foundation linkage function.
Shown in Figure 4 is access service system structural representation of the present invention.Access service system 106 is used for mobile phone users to the visit cloud network authority access that conducts interviews and differentiates.The various processes and the logic state of central processing module 401 control and treatment access service systems.Calculation process module 402 has mathematics and logical operation function.Data memory module 403 can be stored data and recorded information.The data of 404 pairs of access service systems of encryption/decryption process module transmission/reception are carried out encryption/decryption process.Communication module 405 has the communication protocol of foundation linkage function.
In the data memory module of access service system; Write down all known portable terminal application module digital certificate, and with the corresponding access end of this digital certificate KI, network verification algorithm information, access end verification algorithm information and high in the clouds communication key algorithm information.
The mutual unique coupling of the terminal authentication key of described access end KI and portable terminal application module is carried out encrypt/decrypt.And the ciphering process of access end KI has irreversibility, have only use with it the terminal authentication key of unique coupling could decipher.In like manner, the ciphering process of terminal authentication key has irreversibility, have only use with it the access end KI of unique coupling could decipher.Said access end verification algorithm is used for the feedback result of verification from portable terminal.Feedback result is produced by the terminal verification algorithm computing of this portable terminal application module.The mutual unique coupling of the terminal communication key of said high in the clouds communication key and this portable terminal application module data are carried out encryption/decryption process, and its process has irreversibility.
The access service system can be according to portable terminal application module digital certificate, and the data query record obtains access end KI, network verification algorithm information, access end verification algorithm information and high in the clouds communication key algorithm information.
Shown in Figure 5 is mobile terminal registers process sketch map of the present invention.The portable terminal 103 that the portable terminal application module is installed is set up communication protocol with 102 of cloud network access servers and is connected 107.Portable terminal sends application for registration message 501 to access server.The content of application for registration message comprises: information such as timestamp, mobile terminal identification, portable terminal application module digital certificate.After access server is received application for registration message, send login request message 502 to access service system 106, message content comprises timestamp, information such as access server code, mobile terminal identification, portable terminal application module digital certificate.Step 503 access service system judges whether to allow this mobile terminal registers according to the login request message content.If the application for registration request of this portable terminal of access service system refusal, the access service system is sent registration feedback message 504 to access server, and message content is a registration failure.Otherwise the access service system is distributed the mobile terminal network code, and sends registration feedback message 504 to access server, and message content comprises the information of succeeding in registration and mobile terminal network code.
Access server is filled registration answer message 505 according to registration feedback message content, and sends to portable terminal.After step 506 portable terminal is received the registration answer message,, then stop subsequent operation if registration answer message content is a registration failure.If registration answer message content is for succeeding in registration, then portable terminal is preserved the mobile terminal network code.
Shown in Figure 6 is access service system processing register request message process sketch map of the present invention.Step 601 access service system is received login request message 502.Step 602 access service system is according to mobile terminal identification in the login request message content, and the inquiry and registration record judges whether this portable terminal is registered.Step 603 is registered as if this portable terminal; In the access service system check login request message; Mobile terminal identification of carrying and portable terminal application module digital certificate, whether with registration incidence relation record in mobile terminal identification and portable terminal application module digital certificate be complementary.If do not match, the register requirement of this portable terminal of step 604 access service system refusal, and to access server transmission registration feedback message 504, message content is a registration failure.If mobile terminal identification and portable terminal application module digital certificate and registration incidence relation record coupling; Step 605 access service system inquiry and registration incidence relation record; The mobile terminal network code that acquisition has distributed for this portable terminal, and get into step 607.
Step 606 is if the inquiry and registration record finds that this portable terminal has not yet registered, and the access service system is that portable terminal distributes the mobile terminal network code.The mobile terminal network code can the unique identification mobile terminal device.The access service system is set up registration incidence relation record.In the registration incidence relation record, between mobile terminal identification and the portable terminal application module digital certificate, have mutual unique corresponding relation, and between mobile terminal identification and the mobile terminal network code, have mutual unique corresponding relation.Step 607 access service system is with the mobile terminal network code, and the information of succeeding in registration is inserted registration feedback message 504, and sends to access server.
Shown in Figure 7 is mobile terminal accessing cloud network development process sketch map of the present invention.When portable terminal 103 visit cloud networks 101, at first portable terminal is set up communication protocol with cloud network access server 102 and is connected 107.Portable terminal sends the terminal to access server and inserts request message 701.The terminal is inserted the request message content and is comprised information such as timestamp, mobile terminal identification.After access server is received message, send access request message 702 to the access service system.Insert the request message content and comprise information such as timestamp, access server code, mobile terminal identification.Step 703 access service system is according to inserting mobile terminal identification information in the request message content; The data query record obtains and the corresponding access end of this portable terminal KI, network verification algorithm information, access end verification algorithm information and high in the clouds communication key algorithm information.
Step 704 access service system is according to network verification algorithm information, access end verification algorithm information and high in the clouds communication key algorithm information; Computing generates one group of authentication parameter, comprising: authentication parameter sequence number, authentication parameter, checking token, check code and high in the clouds communication key.These parameters have following characteristic: portable terminal can carry out the verification computing with the network verification algorithm of checking token input portable terminal application module, in order to check the legitimacy of resident cloud network; Portable terminal can carry out computing with the terminal verification algorithm of authentication parameter and checking token input portable terminal application module, obtains differentiating feedback result, and will differentiate that feedback result is sent to the access service system.The access service system comes verification to differentiate feedback result through check code, checks the legitimacy of mobile terminal accessing authority with this; Portable terminal can carry out computing with the terminal communication key algorithm of terminal authentication key, authentication parameter, checking token input portable terminal application module, obtains the terminal communication key.The mutual unique coupling of the high in the clouds communication key of terminal communication key and access service system data mutual between portable terminal and access server are carried out encrypt/decrypt, and its encryption has irreversibility.
Step 705 access service system is utilized access end KI, and authentication parameter sequence number, authentication parameter and checking token are encrypted, and produces the authentication parameter sequence.The access service system is inserted access server code, mobile terminal network code and authentication parameter sequence and is differentiated in the request message 706, and message is sent to access server.After access server is received and differentiated request message, mobile terminal network code and authentication parameter sequence are inserted in the terminal discriminating request message 707, sent to portable terminal.
Step 708 portable terminal utilizes terminal authentication key-parsing authentication parameter sequence after receiving that request message is differentiated at the terminal, obtains original authentication parameter sequence number, authentication parameter and checking token.Step 709 portable terminal will verify that token fan-in network verification algorithm carries out the verification computing, with this judge the legitimacy of resident cloud network.Step 710; After network verification was passed through, portable terminal carried out computing with authentication parameter and checking token input terminal verification algorithm, obtains differentiating feedback result; And the mobile terminal network code is inserted the terminal with the discriminating feedback result differentiate in the feedback message 711, issue access server.After access server receives that feedback message is differentiated at the terminal, access server code and terminal discriminating feedback message content are inserted in the discriminating feedback message 712, issued the access service system.
After step 713 access service system was received and differentiated feedback message, according to mobile terminal network code in the message content, the check code that computing generates before utilizing came discriminating feedback result in the message is carried out the verification computing.If the verification failure thinks that then this portable terminal does not have the right of visit cloud network, the access service system is inserted mobile terminal network code and refusal access information in the identification result feedback message 714, issues access server.If verification is passed through, think that then this portable terminal has the right of visit cloud network.The access service system is with mobile terminal network code, high in the clouds communication key and allow access information to insert in the identification result feedback message 714, issues access server.
After step 715 access server is received the identification result feedback message, insert if message content is a refusal, then access server is inserted mobile terminal network code and refusal access information in the terminal access answer message 716, sends to portable terminal.If identification result feedback message content inserts for allowing; Then access server is inserted mobile terminal network code, permission access information in the terminal answer message 716; Send to portable terminal, and preserve mobile terminal network code and high in the clouds communication key information in the identification result feedback message.Access server is launched the high in the clouds communication key.
After step 717 portable terminal received that answer message is inserted at the terminal, if message content inserts for refusal, relevant authentication parameter sequence number, authentication parameter and the checking token of portable terminal deletion stopped the visit to the cloud network.If message content inserts for allowing, then portable terminal carries out computing with the terminal communication key algorithm of authentication parameter and checking token input portable terminal application module, obtains the terminal communication key.Portable terminal is launched the terminal communication key, can visit the cloud network smoothly.
The access discrimination process of mobile terminal accessing cloud network finishes.
More than detailed elaboration has been done by system involved in the present invention and technical method.This paper adopts the formal description of going forward one by one, but identical similar part cross-references between each instance.More than elaboration is used for helping to understand system and method for the present invention, for those skilled in the art, according to the thought of this name, can change to some extent in embodiment and range of application.In sum, this description should not be construed as limitation of the present invention.
Claims (10)
1. a cloud network access authentication technique method is characterized in that, comprising:
Portable terminal installation and moving terminal applies module;
Portable terminal can be set up communication protocol with access server and be connected;
Portable terminal sends application for registration message, the registration of application mobile terminal device;
The access service system is that portable terminal distributes the mobile terminal network code, sets up registration incidence relation record;
Portable terminal sends the terminal and inserts request message, application visit cloud network;
The computing of access service system produces the authentication parameter sequence;
Portable terminal utilizes terminal authentication key-parsing authentication parameter sequence;
Portable terminal is judged the legitimacy of cloud network through the network verification algorithm;
Portable terminal produces through terminal verification algorithm computing and differentiates feedback result;
Portable terminal sends differentiates that feedback result information is to the access service system;
The access service system is differentiated feedback result information through verification, judges the legitimacy of mobile terminal accessing authority;
If portable terminal has the Lawful access identity, the access service system is sent the high in the clouds communication key to access server;
Access server is launched the high in the clouds communication key;
Portable terminal calculates and produces the terminal communication key, and launches the terminal communication key.
2. method according to claim 1 is characterized in that:
Said application for registration message content comprises timestamp, mobile terminal identification, portable terminal application module digital certificate;
Said registration incidence relation is that mobile terminal identification and portable terminal application module digital certificate have mutual unique corresponding relation, mobile terminal identification and mobile terminal network code and have mutual unique corresponding relation;
Said terminal is inserted the request message content and is comprised timestamp, mobile terminal identification;
Said authentication parameter sequence is obtained through access end KI computations by authentication parameter sequence number, authentication parameter and checking token;
Said network verification algorithm uses the checking token to carry out computing, in order to check the legitimacy of resident cloud network;
Said terminal verification algorithm uses authentication parameter and checking token to carry out computing, generates and differentiates feedback result.
3. method according to claim 1 is characterized in that:
Said terminal authentication key is had by portable terminal, and the mutual unique coupling of access end KI with the access service system carry out encrypt/decrypt, and its process has irreversibility;
Said discriminating feedback result is carried out verification computing according to corresponding check code to it by the access service system, and the legitimacy of check mobile terminal accessing authority;
Said authentication parameter sequence number, authentication parameter, checking token and check code produce by the computing of access service system;
Said high in the clouds communication key is produced by the computing of access service system;
Said terminal communication key uses authentication parameter and checking token by portable terminal, produces according to the computing of terminal communication key algorithm;
The mutual unique coupling of said high in the clouds communication key and terminal communication key data mutual between access server and portable terminal are carried out encryption/decryption process, and its encryption has irreversibility.
4. method according to claim 3 is characterized in that:
Said access service system is only distributed a mobile terminal network code for each portable terminal;
Said each portable terminal application module has unique terminal authentication key, and the terminal authentication key between the different mobile terminal application module is all inequality;
Said access service system writes down all known portable terminal application module digital certificate, and with the corresponding access end of this digital certificate KI, network verification algorithm information, access end verification algorithm information and high in the clouds communication key algorithm information.
5. method according to claim 4 is characterized in that:
Said portable terminal application module only has a movable terminal digital certificates, and the digital certificate that any two portable terminal application modules are had is all inequality;
Said each portable terminal is only installed a portable terminal application module;
Said each portable terminal application module only is installed on a portable terminal;
Said mobile terminal network code is distributed by the access service system, can the unique identification portable terminal, and the mobile terminal network code of any two portable terminals is all inequality;
Said algorithm comprises the operational formula of mathematics and logic, calculating process and operation method.
6. according to each described method of claim 1 to 5, it is characterized in that:
Said cloud network comprises that the Internet, wide area network, local area network (LAN), cable network, wireless network etc. can provide the network of cloud computing and cloud service;
Said communication protocol connects, and by communicating pair perhaps in many ways, communication protocol Network Based or wireless communication protocol are set up, and can be used for the connection of transfer of data;
Said communication protocol can be industrywide standard communication protocol, also non-standard communication agreement;
Said portable terminal comprises: portable electric appts, personal electronic equipments and mobile electronic device;
Said mobile terminal network code is distributed by the access service system, identification information that can the unique identification mobile terminal device;
Said mobile terminal identification; Mobile terminal identification be can the unique identification mobile terminal device identifying information, can comprise: the digital certificate that the software certificate information of the identification information of portable terminal internal hardware devices, portable terminal institute install software, the process that portable terminal had are licensed;
The identification information of said portable terminal internal hardware devices can be unique mark portable terminal internal hardware devices, can comprise: central processing unit product ID, NFC (Near Field Communication) card sign, communication network interface card hardware sequence number, network interface card MAC (Media Access Control) address information, SIM card number hardware identification information such as (Subscriber Identity Module client identification modules);
Said software certificate information comprises: software licensing card information, the information such as digital certificate that software had;
Said through the digital certificate licensed through legal authorization, the digital certificate that portable terminal had.
7. a cloud network access identification system is characterized in that, comprising: portable terminal application module, cloud network access system, access service system;
Said portable terminal application module comprises:
Logical processing unit, various processes and logic state that the handle mobile terminal application module is inner;
Operation processing unit has mathematics and logical operation function;
Data storage cell, memory mobile terminal related data and recorded information;
The encryption/decryption process unit carries out encryption/decryption process to data;
Communication unit has the communication protocol of foundation linkage function;
Said cloud network access system is made up of some access servers;
Said access server comprises:
Related access server comprises:
Central processing module is handled access server inner various processes and logic state;
The calculation process module has mathematics and logical operation function;
Data memory module, storing data information and historical record;
The encryption/decryption process module is carried out encryption/decryption process to data;
Communication module has the communication protocol of foundation linkage function;
Said access service system comprises:
Central processing module, the various processes and the logic state of processing access service system;
The calculation process module has mathematics and logical operation function;
Data memory module, storing data information and historical record;
The encryption/decryption process module is carried out encryption/decryption process to data;
Communication module has the communication protocol of foundation linkage function.
8. portable terminal application module according to claim 7 is characterized in that:
Said portable terminal can only be installed a portable terminal application module;
When portable terminal had the communication protocol of foundation linkage function, said portable terminal application module was connected with the communication of mobile terminal protocol interface;
When portable terminal did not have the communication protocol of foundation linkage function, said portable terminal application module can be set up communication protocol and connect.
9. according to the said access server of claim 7, it is characterized in that:
Said a plurality of access server interconnects, and forms the cloud network access system;
Said access server can be set up communication protocol with portable terminal and be connected;
Said access server can provide cloud network insertion service for a plurality of portable terminals simultaneously;
Said access server can be connected with the access service system.
10. according to the said access service system of claim 7, it is characterized in that:
Said access service system can be connected with a plurality of access servers;
Said access service system can be used for the access of some or all of cloud network and differentiates application;
Said access service system can write down the log-on message and the Visitor Logs information of portable terminal.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011103692829A CN102347957A (en) | 2011-11-18 | 2011-11-18 | Cloud network admission identifying system and admission identifying technology |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011103692829A CN102347957A (en) | 2011-11-18 | 2011-11-18 | Cloud network admission identifying system and admission identifying technology |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102347957A true CN102347957A (en) | 2012-02-08 |
Family
ID=45546245
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2011103692829A Pending CN102347957A (en) | 2011-11-18 | 2011-11-18 | Cloud network admission identifying system and admission identifying technology |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102347957A (en) |
Cited By (22)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102611483A (en) * | 2012-03-29 | 2012-07-25 | 上海华勤通讯技术有限公司 | Service terminal as well as wireless data transmission system and method |
| CN102802156A (en) * | 2012-08-31 | 2012-11-28 | 珠海市魅族科技有限公司 | Authentication method and relevant device |
| CN102857910A (en) * | 2012-06-01 | 2013-01-02 | 王鑫 | Wireless communication system based on a plurality of types of wireless networks |
| CN103179210A (en) * | 2013-03-26 | 2013-06-26 | 太原罗克佳华工业有限公司 | Internet of Things cloud access method and system based on Web Service |
| CN103309308A (en) * | 2013-05-17 | 2013-09-18 | 华为技术有限公司 | Equipment intelligent control method, device, system and plug-and-play equipment |
| CN103441997A (en) * | 2013-08-20 | 2013-12-11 | 华为技术有限公司 | Content sharing method, device and system |
| CN104185176A (en) * | 2014-08-28 | 2014-12-03 | 中国联合网络通信集团有限公司 | Method and system for remote initialization of Internet of Things virtual subscriber identity module card |
| CN104243532A (en) * | 2013-06-21 | 2014-12-24 | 鸿富锦精密工业(深圳)有限公司 | Data access method and system |
| CN104854596A (en) * | 2012-10-31 | 2015-08-19 | 谷歌公司 | Providing network access to device associated with user account |
| CN105184081A (en) * | 2015-09-09 | 2015-12-23 | 徐州工程学院 | Blood pressure measurement data access method |
| CN105323235A (en) * | 2015-02-02 | 2016-02-10 | 北京中油瑞飞信息技术有限责任公司 | Security encryption type voice communication system and method |
| CN106060087A (en) * | 2016-07-26 | 2016-10-26 | 中国南方电网有限责任公司信息中心 | Multi-factor host security access control system and method |
| CN106131085A (en) * | 2016-08-31 | 2016-11-16 | 江苏蓝创智能科技股份有限公司 | The communication means of remote intelligent control system |
| CN106357404A (en) * | 2016-08-26 | 2017-01-25 | 易联(北京)物联网科技有限公司 | Data encryption method based on NFC chip security authentication |
| US9980304B2 (en) | 2015-04-03 | 2018-05-22 | Google Llc | Adaptive on-demand tethering |
| US10009068B2 (en) | 2012-11-02 | 2018-06-26 | Google Llc | Seamless tethering setup between phone and laptop using peer-to-peer mechanisms |
| CN108600214A (en) * | 2018-04-19 | 2018-09-28 | 深圳市联软科技股份有限公司 | A kind of network admittance method and system based on NAT |
| CN108881228A (en) * | 2018-06-20 | 2018-11-23 | 上海庆科信息技术有限公司 | Cloud registration activation method, device, equipment and storage medium |
| CN110602218A (en) * | 2019-09-17 | 2019-12-20 | 深圳市迅雷网络技术有限公司 | Method and related device for assembling cloud service in user-defined manner |
| CN111510917A (en) * | 2020-04-10 | 2020-08-07 | 中国联合网络通信集团有限公司 | Network access method and device for virtual USIM |
| CN114172687A (en) * | 2021-11-03 | 2022-03-11 | 杭州涂鸦信息技术有限公司 | Cloud connection method, method for auxiliary equipment to be connected with cloud and electronic equipment |
| CN114866982A (en) * | 2021-02-04 | 2022-08-05 | 广州汽车集团股份有限公司 | Method and system for data interaction by accessing public network through vehicle-end ECU |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101123778A (en) * | 2007-09-29 | 2008-02-13 | 大唐微电子技术有限公司 | Network access authentication method and its USIM card |
| CN102088353A (en) * | 2011-03-11 | 2011-06-08 | 道里云信息技术(北京)有限公司 | Two-factor authentication method and system based on mobile terminal |
| CN102195775A (en) * | 2010-03-15 | 2011-09-21 | 中兴通讯股份有限公司 | Encryption and decryption method and device for cloud computing key |
| WO2011141579A2 (en) * | 2010-05-14 | 2011-11-17 | Gemalto Sa | System and method for providing security for cloud computing resources using portable security devices |
-
2011
- 2011-11-18 CN CN2011103692829A patent/CN102347957A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101123778A (en) * | 2007-09-29 | 2008-02-13 | 大唐微电子技术有限公司 | Network access authentication method and its USIM card |
| CN102195775A (en) * | 2010-03-15 | 2011-09-21 | 中兴通讯股份有限公司 | Encryption and decryption method and device for cloud computing key |
| WO2011141579A2 (en) * | 2010-05-14 | 2011-11-17 | Gemalto Sa | System and method for providing security for cloud computing resources using portable security devices |
| CN102088353A (en) * | 2011-03-11 | 2011-06-08 | 道里云信息技术(北京)有限公司 | Two-factor authentication method and system based on mobile terminal |
Cited By (37)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102611483A (en) * | 2012-03-29 | 2012-07-25 | 上海华勤通讯技术有限公司 | Service terminal as well as wireless data transmission system and method |
| CN102857910A (en) * | 2012-06-01 | 2013-01-02 | 王鑫 | Wireless communication system based on a plurality of types of wireless networks |
| CN102802156A (en) * | 2012-08-31 | 2012-11-28 | 珠海市魅族科技有限公司 | Authentication method and relevant device |
| CN102802156B (en) * | 2012-08-31 | 2015-11-04 | 魅族科技(中国)有限公司 | A kind of method for authenticating and relevant device |
| CN104854596A (en) * | 2012-10-31 | 2015-08-19 | 谷歌公司 | Providing network access to device associated with user account |
| CN104854596B (en) * | 2012-10-31 | 2018-08-17 | 谷歌有限责任公司 | Network insertion is provided to equipment associated with user account |
| US10009068B2 (en) | 2012-11-02 | 2018-06-26 | Google Llc | Seamless tethering setup between phone and laptop using peer-to-peer mechanisms |
| CN103179210A (en) * | 2013-03-26 | 2013-06-26 | 太原罗克佳华工业有限公司 | Internet of Things cloud access method and system based on Web Service |
| CN103179210B (en) * | 2013-03-26 | 2016-04-13 | 太原罗克佳华工业有限公司 | The Internet of Things high in the clouds cut-in method of a kind of sing on web Service and system |
| CN103309308A (en) * | 2013-05-17 | 2013-09-18 | 华为技术有限公司 | Equipment intelligent control method, device, system and plug-and-play equipment |
| CN103309308B (en) * | 2013-05-17 | 2016-08-10 | 华为技术有限公司 | A kind of device intelligence control method and device, system, PnP device |
| CN104243532A (en) * | 2013-06-21 | 2014-12-24 | 鸿富锦精密工业(深圳)有限公司 | Data access method and system |
| WO2015024419A1 (en) * | 2013-08-20 | 2015-02-26 | 华为技术有限公司 | Content sharing method, device and system |
| CN103441997A (en) * | 2013-08-20 | 2013-12-11 | 华为技术有限公司 | Content sharing method, device and system |
| US9473938B2 (en) | 2013-08-20 | 2016-10-18 | Huawei Technologies Co., Ltd. | Content sharing method, apparatus, and system |
| CN103441997B (en) * | 2013-08-20 | 2017-02-22 | 华为技术有限公司 | Content sharing method, device and system |
| CN104185176A (en) * | 2014-08-28 | 2014-12-03 | 中国联合网络通信集团有限公司 | Method and system for remote initialization of Internet of Things virtual subscriber identity module card |
| CN104185176B (en) * | 2014-08-28 | 2017-10-20 | 中国联合网络通信集团有限公司 | A kind of long-range initial method of Internet of Things virtual user identification module card and system |
| CN105323235B (en) * | 2015-02-02 | 2018-12-25 | 北京中油瑞飞信息技术有限责任公司 | A kind of safe ciphering type voice communication system and method |
| CN105323235A (en) * | 2015-02-02 | 2016-02-10 | 北京中油瑞飞信息技术有限责任公司 | Security encryption type voice communication system and method |
| US11089643B2 (en) | 2015-04-03 | 2021-08-10 | Google Llc | Adaptive on-demand tethering |
| US9980304B2 (en) | 2015-04-03 | 2018-05-22 | Google Llc | Adaptive on-demand tethering |
| CN105184081B (en) * | 2015-09-09 | 2018-06-05 | 徐州工程学院 | A kind of access method of blood-pressure measurement data |
| CN105184081A (en) * | 2015-09-09 | 2015-12-23 | 徐州工程学院 | Blood pressure measurement data access method |
| CN106060087A (en) * | 2016-07-26 | 2016-10-26 | 中国南方电网有限责任公司信息中心 | Multi-factor host security access control system and method |
| CN106357404A (en) * | 2016-08-26 | 2017-01-25 | 易联(北京)物联网科技有限公司 | Data encryption method based on NFC chip security authentication |
| CN106357404B (en) * | 2016-08-26 | 2019-06-18 | 北京易联网络科技集团有限公司 | Data ciphering method based on NFC chip anti-fake certificate |
| CN106131085B (en) * | 2016-08-31 | 2019-09-17 | 江苏蓝创智能科技股份有限公司 | The communication means of remote intelligent control system |
| CN106131085A (en) * | 2016-08-31 | 2016-11-16 | 江苏蓝创智能科技股份有限公司 | The communication means of remote intelligent control system |
| CN108600214A (en) * | 2018-04-19 | 2018-09-28 | 深圳市联软科技股份有限公司 | A kind of network admittance method and system based on NAT |
| CN108881228A (en) * | 2018-06-20 | 2018-11-23 | 上海庆科信息技术有限公司 | Cloud registration activation method, device, equipment and storage medium |
| CN108881228B (en) * | 2018-06-20 | 2021-05-04 | 上海庆科信息技术有限公司 | Cloud registration activation method, device, equipment and storage medium |
| CN110602218A (en) * | 2019-09-17 | 2019-12-20 | 深圳市迅雷网络技术有限公司 | Method and related device for assembling cloud service in user-defined manner |
| CN110602218B (en) * | 2019-09-17 | 2023-02-14 | 深圳市迅雷网络技术有限公司 | Method and related device for assembling cloud service in user-defined manner |
| CN111510917A (en) * | 2020-04-10 | 2020-08-07 | 中国联合网络通信集团有限公司 | Network access method and device for virtual USIM |
| CN114866982A (en) * | 2021-02-04 | 2022-08-05 | 广州汽车集团股份有限公司 | Method and system for data interaction by accessing public network through vehicle-end ECU |
| CN114172687A (en) * | 2021-11-03 | 2022-03-11 | 杭州涂鸦信息技术有限公司 | Cloud connection method, method for auxiliary equipment to be connected with cloud and electronic equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102347957A (en) | Cloud network admission identifying system and admission identifying technology | |
| CN106656907B (en) | Method, device, terminal equipment and system for authentication | |
| CN1714529B (en) | Domain-based digital-rights management system with easy and secure device enrollment | |
| CN101112039B (en) | Wireless network system and communication method for external device to temporarily access wireless network | |
| CN111935714B (en) | Identity authentication method in mobile edge computing network | |
| CN102685749B (en) | Wireless safety authentication method orienting to mobile terminal | |
| CN108282779B (en) | Space-ground integrated space information network low-delay anonymous access authentication method | |
| CN110990827A (en) | Identity information verification method, server and storage medium | |
| CN105553666B (en) | Intelligent power terminal safety authentication system and method | |
| CN101777978A (en) | Method and system based on wireless terminal for applying digital certificate and wireless terminal | |
| JP2015515168A (en) | Method for confirming identification information of user of communication terminal and related system | |
| CN107612949B (en) | Wireless intelligent terminal access authentication method and system based on radio frequency fingerprint | |
| CN108667801A (en) | A kind of Internet of Things access identity safety certifying method and system | |
| CN107786978B (en) | NFC authentication system based on quantum encryption | |
| CN110572392A (en) | Identity authentication method based on HyperLegger network | |
| CN112437068B (en) | Authentication and key agreement method, device and system | |
| CN107888376B (en) | NFC authentication system based on quantum communication network | |
| CN113965425B (en) | Access method, device and equipment of Internet of things equipment and computer readable storage medium | |
| CN111698203A (en) | Cloud data encryption method | |
| KR101326243B1 (en) | User authenticaiton method | |
| KR20160146090A (en) | Communication method and apparatus in smart-home system | |
| CN105071993A (en) | Encryption state detection method and system | |
| KR101490638B1 (en) | Method of authenticating smart card, server performing the same and system performint the same | |
| CN116709325B (en) | Mobile equipment security authentication method based on high-speed encryption algorithm | |
| KR101298216B1 (en) | Authentication system and method using multiple category |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20120208 |