CN102611712A - Digital home network access and authentication method - Google Patents
Digital home network access and authentication method Download PDFInfo
- Publication number
- CN102611712A CN102611712A CN2012101026546A CN201210102654A CN102611712A CN 102611712 A CN102611712 A CN 102611712A CN 2012101026546 A CN2012101026546 A CN 2012101026546A CN 201210102654 A CN201210102654 A CN 201210102654A CN 102611712 A CN102611712 A CN 102611712A
- Authority
- CN
- China
- Prior art keywords
- router
- network
- couple
- portable terminal
- home
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a digital home network access and authentication method which is characterized by comprising the following steps that: a mobile terminal makes a network access request for an access router by using the existing home IP address and configuration thereof; the access router judges whether a latest access record of the terminal exists, if so, the access router directly provides a network access service, otherwise, the access router starts a temporary unconditional access service; in the stage of implementing the temporary unconditional access service, the access router provides an unconditional data forwarding and receiving service for the mobile terminal within a limited time or a limited number of times; the mobile terminal completes the registration or verification with a home router through the unconditional access service of the access router; after the registration or verification is passed, the home router establishes a bound mapping correlation with the access router, and the network registration and configuration information of the mobile terminal is sent to the access router; through a virtual technology, the access router locally forms the network registration and configuration information into a virtual router for the services of the mobile terminal, and provides formal access services; and the mobile terminal formally accesses the network through the existing home IP address and configuration thereof.
Description
Technical field
The present invention relates to networking technology area, particularly be applied to the network insertion and the authentication method of digital home network.
Background technology
Along with the support of country in digital home's industry, the digital home of networking progressively forms.Along with the development that mobile communication technology is advanced by leaps and bounds, more and more mobile user hopes to be linked in the internet with flexible way more and goes, and not limited by space-time.Mobile IPv 6 protocol lets the user can all use same IPv6 address all over the world for the user provides movably IP data, services, has realized that radio data network strides subnet roaming and switch.But because present most of different home is all realized network insertion through different routers.A portable terminal moves in the another one family subnet from original family sub-network, must know the network cipher of router in the new family and carries out new configuration and could realize that the internet inserts.This strides the subnet roaming for radio data network undoubtedly and switching has brought many troubles.In addition,, certainly will bring potential safety hazard, cause freely being taken of own broadband resource simultaneously by others if the router of each family all provides free open network insertion service.
Summary of the invention
The object of the invention overcomes the prior art deficiency; Proposing a kind of digital home network inserts and authentication method; It can make portable terminal realize the network insertion of exempting to land through the router of different home; Keep original household IP address and network configuration simultaneously, the realization radio data network is striden subnet free-roaming and switching.
The object of the invention realizes through following scheme:
A kind of digital home network inserts and authentication method, it is characterized in that: comprise step:
Portable terminal uses existing household IP address and configuration to couple in router request network insertion;
Couple in router judges whether to exist the nearest access record at this terminal, if having, the network insertion service is provided directly then, otherwise starts provisional unconditional access service;
In the provisional unconditional access service stage, couple in router provides unconditional data forwarding and receives service for portable terminal in the limited time or in the limited number of times;
Portable terminal is through the unconditional access service completion of couple in router and the registration or the checking of home router end;
Registration or checking are passed through, and home router and couple in router are set up network registry and the configuration information of binding mapping incidence relation and this portable terminal and sent couple in router;
The couple in router virtual technology forms the virtual router that this portable terminal is served with this network registry and configuration information this locality, and formal access service is provided;
Portable terminal formally carries out access network with its existing household IP address and configuration.
Further, in the registration or proof procedure of said portable terminal and home router end, it is the logon message of user name that portable terminal has been filled with the household IP address to the home router transmission through couple in router; Home router is received the logon message that couple in router is transmitted, and produces a random number and is sent to couple in router and is forwarded to portable terminal through couple in router through message; Portable terminal is received message, and will be configured in local network cipher and through encrypting after, send and pass through couple in router with the random number of receiving and be forwarded to home router; Home router is searched this user name and is checked this random number and network cipher from local data base, if checking through set up to bind the mapping incidence relation with couple in router and with the network registry and the configuration information transmission couple in router of this portable terminal; Otherwise the registration of refusal portable terminal.
Portable terminal, couple in router and home router adopt or support the IPV6 agreement.
In sum, the inventive method has following distinguishing feature and progress:
1), whole network insertion has two stages, i.e. unconditional access service stage and formally network insertion stage;
2), during access network, portable terminal need not carry out network and reconfigure and import password authentification, realizes striding subnet free-roaming and switching;
3), remote login or checking through home router, and combined with virtual route technology has kept portable terminal to use the free internet access of existing household IP address.
Description of drawings
Fig. 1 moves the structural representation that inserts digital home network;
Fig. 2 is the network insertion process sketch map of portable terminal.
Embodiment
Do when implementing in the face of the present invention down and further describe:
Definition: home router, be meant that mobile phone users belongs to original family, the router of network insertion service is provided for family diverse network terminal.It adopts or supports the IPV6 agreement.When portable terminal uses this home router first, home router will be distributed permanent household IP address for portable terminal, and accomplish network configuration each other.The home router that portable terminal inserts later on will adopt fixing IP and configuration to network.
Family's link refers to have with the household IP address of portable terminal the link of identical network prefix.
Couple in router is meant that portable terminal leaves original family, when getting into new family, is used for being implemented in the router of realizing network insertion under the new home network environment.It adopts or supports the IPV6 agreement.
Foreign link is meant the link except that family's link, just network prefix and the different link of portable terminal household IP address network prefix.
The communication opposite end, the peer-entities of communication of mobile terminal, realization and communications of Mobile Terminals relation. it can be the node device of mobile node equipment or fixed-site.It adopts or supports the IPV6 agreement.
With reference to figure 1, in digital home network, the network terminal of different home carries out network insertion through router separately.Wherein, integral body comprises home router and couple in router two big classes.Following digital home network will develop into the network with IPV6 from the hybrid network of IPV4 and IPV6.Permanent IP address can be distributed in the terminal of network.Portable terminal inserts digital home network has dual mode, and the one, through family's link and family's route, the 2nd, through foreign link and access route.The object of the invention mainly is to realize no matter being the sort of mode, and portable terminal can use fixing household IP address to carry out the networking and insert, and need not change network configuration simultaneously.
With reference to figure 2, the key step when realizing network insertion or authentication for the present invention comprises:
Portable terminal uses existing household IP address and configuration to couple in router request network insertion;
Couple in router judges whether to exist the nearest access record at this terminal, if having, the network insertion service is provided directly then, otherwise starts provisional unconditional access service;
In the provisional unconditional access service stage, couple in router provides unconditional data forwarding and receives service for portable terminal in the limited time or in the limited number of times; The limited time is in 1~30 second; Or limited number of times is 3 times to 6 times.
Portable terminal is through the unconditional access service completion of couple in router and the registration or the checking of home router end; In the registration or proof procedure of portable terminal and home router end, it is the logon message of user name that portable terminal has been filled with the household IP address to the home router transmission through couple in router; Home router is received the logon message that couple in router is transmitted, and produces a random number and is sent to couple in router and is forwarded to portable terminal through couple in router through message; Portable terminal is received message, and will be configured in local network cipher and through encrypting after, send and pass through couple in router with the random number of receiving and be forwarded to home router; Home router is searched this user name and is checked this random number from local data base, if checking through set up to bind the mapping incidence relation with couple in router and with the network registry and the configuration information transmission couple in router of this portable terminal; Otherwise the registration of refusal portable terminal.
Registration or checking are passed through, and home router and couple in router are set up network registry and the configuration information of binding mapping incidence relation and this portable terminal and sent couple in router;
The couple in router virtual technology forms the virtual router that this portable terminal is served with this network registry and configuration information this locality, and formal access service is provided;
Portable terminal formally carries out access network with its existing household IP address and configuration, and carries out data interaction with the communication opposite end.
In sum, the details that the present invention does not have to describe can be implemented with reference to prior art, in the scheme that does not break away from core technology characteristic of the present invention, should belong to its protection range.
Claims (4)
1. a digital home network inserts and authentication method, it is characterized in that: comprise step:
Portable terminal uses existing household IP address and configuration to couple in router request network insertion;
Couple in router judges whether to exist the nearest access record at this terminal, if having, the network insertion service is provided directly then, otherwise starts provisional unconditional access service;
In the provisional unconditional access service stage, couple in router provides unconditional data forwarding and receives service for portable terminal in the limited time or in the limited number of times;
Portable terminal is through the unconditional access service completion of couple in router and the registration or the checking of home router end;
Registration or checking are passed through, and home router and couple in router are set up network registry and the configuration information of binding mapping incidence relation and this portable terminal and sent couple in router;
The couple in router virtual technology forms the virtual router that this portable terminal is served with this network registry and configuration information this locality, and formal access service is provided;
Portable terminal formally carries out access network with its existing household IP address and configuration.
2. digital home network as claimed in claim 1 inserts and authentication method; It is characterized in that; In the registration or proof procedure of said portable terminal and home router end, it is the logon message of user name that portable terminal has been filled with the household IP address to the home router transmission through couple in router; Home router is received the logon message that couple in router is transmitted, and produces a random number and is sent to couple in router and is forwarded to portable terminal through couple in router through message; Portable terminal is received message, and will be configured in local network cipher and through encrypting after, send and pass through couple in router with the random number of receiving and be forwarded to home router; Home router is searched this user name and is checked this random number and network cipher from local data base, if checking through set up to bind the mapping incidence relation with couple in router and with the network registry and the configuration information transmission couple in router of this portable terminal; Otherwise the registration of refusal portable terminal.
3. according to claim 1 or claim 2 digital home network inserts and authentication method, it is characterized in that portable terminal, couple in router and home router adopt or support the IPV6 agreement.
4. digital home network as claimed in claim 1 inserts and authentication method, it is characterized in that the limited time of the unconditional access service that said startup is provisional is in 1~30 second; Or limited number of times is 3 times to 6 times.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012101026546A CN102611712A (en) | 2012-04-10 | 2012-04-10 | Digital home network access and authentication method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012101026546A CN102611712A (en) | 2012-04-10 | 2012-04-10 | Digital home network access and authentication method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102611712A true CN102611712A (en) | 2012-07-25 |
Family
ID=46528865
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2012101026546A Pending CN102611712A (en) | 2012-04-10 | 2012-04-10 | Digital home network access and authentication method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102611712A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103796278A (en) * | 2014-02-27 | 2014-05-14 | 成都悟空科技有限公司 | Mobile terminal wireless network access control method |
| CN106535171A (en) * | 2016-12-07 | 2017-03-22 | 北京小米移动软件有限公司 | Method and device for making wireless terminal access network and equipment |
| CN106973063A (en) * | 2017-04-27 | 2017-07-21 | 新华三技术有限公司 | Method for network authorization and device |
| CN107359991A (en) * | 2017-08-22 | 2017-11-17 | 上海斐讯数据通信技术有限公司 | A kind of router, the method for generating cipher code of router guest network and system |
| CN107463099A (en) * | 2016-06-01 | 2017-12-12 | 北京京东尚科信息技术有限公司 | The method of network entry of intelligent control device and intelligent terminal |
| CN109819466A (en) * | 2019-03-12 | 2019-05-28 | 深圳市伟文无线通讯技术有限公司 | A method of the mobile flow of saving for mobile router |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20050228894A1 (en) * | 2003-05-12 | 2005-10-13 | Kazuhiko Takabayashi | Inter-device authentication system, inter-device authentication method, communication device, and computer program |
| US6977917B2 (en) * | 2000-03-10 | 2005-12-20 | Telefonaktiebolaget Lm Ericsson (Publ) | Method and apparatus for mapping an IP address to an MSISDN number within a service network |
| CN1756209A (en) * | 2004-09-29 | 2006-04-05 | 上海贝尔阿尔卡特股份有限公司 | Method, broadband access device and system for user terminal obtaining multi service |
| CN101374295A (en) * | 2007-08-21 | 2009-02-25 | 华为技术有限公司 | Method and terminal for selecting access network |
| CN101400098A (en) * | 2007-09-27 | 2009-04-01 | 上海贝尔阿尔卡特股份有限公司 | Physical network recognition information notifying method in fixed communication network and apparatus thereof |
| CN101772109A (en) * | 2008-12-30 | 2010-07-07 | 上海贝尔阿尔卡特股份有限公司 | Method for supporting WLAN roaming switching between different subnets, device and system |
-
2012
- 2012-04-10 CN CN2012101026546A patent/CN102611712A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6977917B2 (en) * | 2000-03-10 | 2005-12-20 | Telefonaktiebolaget Lm Ericsson (Publ) | Method and apparatus for mapping an IP address to an MSISDN number within a service network |
| US20050228894A1 (en) * | 2003-05-12 | 2005-10-13 | Kazuhiko Takabayashi | Inter-device authentication system, inter-device authentication method, communication device, and computer program |
| CN1756209A (en) * | 2004-09-29 | 2006-04-05 | 上海贝尔阿尔卡特股份有限公司 | Method, broadband access device and system for user terminal obtaining multi service |
| CN101374295A (en) * | 2007-08-21 | 2009-02-25 | 华为技术有限公司 | Method and terminal for selecting access network |
| CN101400098A (en) * | 2007-09-27 | 2009-04-01 | 上海贝尔阿尔卡特股份有限公司 | Physical network recognition information notifying method in fixed communication network and apparatus thereof |
| CN101772109A (en) * | 2008-12-30 | 2010-07-07 | 上海贝尔阿尔卡特股份有限公司 | Method for supporting WLAN roaming switching between different subnets, device and system |
Non-Patent Citations (1)
| Title |
|---|
| 万婵: "《支持IPv6的网络访问控制网关的设计与实现》", 《计算机与网络》 * |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103796278A (en) * | 2014-02-27 | 2014-05-14 | 成都悟空科技有限公司 | Mobile terminal wireless network access control method |
| CN107463099A (en) * | 2016-06-01 | 2017-12-12 | 北京京东尚科信息技术有限公司 | The method of network entry of intelligent control device and intelligent terminal |
| CN106535171A (en) * | 2016-12-07 | 2017-03-22 | 北京小米移动软件有限公司 | Method and device for making wireless terminal access network and equipment |
| CN106973063A (en) * | 2017-04-27 | 2017-07-21 | 新华三技术有限公司 | Method for network authorization and device |
| CN106973063B (en) * | 2017-04-27 | 2020-03-06 | 新华三技术有限公司 | Network authentication method and device |
| CN107359991A (en) * | 2017-08-22 | 2017-11-17 | 上海斐讯数据通信技术有限公司 | A kind of router, the method for generating cipher code of router guest network and system |
| CN109819466A (en) * | 2019-03-12 | 2019-05-28 | 深圳市伟文无线通讯技术有限公司 | A method of the mobile flow of saving for mobile router |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP4927939B2 (en) | Automatic home agent selection | |
| RU2409907C2 (en) | Internet protocol combination and mobility method | |
| CN100507895C (en) | Serving network selection and multihoming using IP access network | |
| KR100996983B1 (en) | Method and apparatus enabling reauthentication in a cellular communication system | |
| CN104080084B (en) | Run the method and system of parallel PANA sessions | |
| CN101212393B (en) | Medium independent switching message transmission method, system, and device | |
| CN112997454A (en) | Connecting to a home local area network via a mobile communication network | |
| CN102611712A (en) | Digital home network access and authentication method | |
| CN102172059A (en) | Handling of local breakout traffic in a home base station | |
| JP2004153392A (en) | Communication system | |
| CN102611597A (en) | Method for accessing internet through broadband in free of inputting account and password in different family environments | |
| KR20120055647A (en) | Method, apparatus and system for forwarding messages | |
| WO2012070990A1 (en) | Methods and arrangements for enabling data transmission between a mobile device and a static destination address | |
| WO2014176964A1 (en) | Communication managing method and communication system | |
| IL271911B1 (en) | Terminal information transfer method and relevant products | |
| CN102695236A (en) | Method and system of data routing | |
| CN101621433B (en) | Method, device and system for configuring access equipment | |
| CN107733764B (en) | Method, system and related equipment for establishing virtual extensible local area network tunnel | |
| CN102026163A (en) | Method and device for selecting access to Internet through wireless fidelity access network | |
| CN114070597B (en) | Private network cross-network authentication method and device | |
| CN101447976B (en) | Method for accessing dynamic IP session, system and device thereof | |
| WO2011032478A1 (en) | Method, device and terminal for obtaining terminal identifier | |
| CN103634221A (en) | Access control method of environmental protection and technology service network | |
| CN101931611B (en) | HIP (Host Identity Protocol) based method and system for achieving user mobility | |
| KR100737140B1 (en) | The processing apparatus and method for providing internet protocol virtual private network service on mobile communication |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20120725 |