CN102791011A - Flexible networking access control method and system - Google Patents
Flexible networking access control method and system Download PDFInfo
- Publication number
- CN102791011A CN102791011A CN2012101103379A CN201210110337A CN102791011A CN 102791011 A CN102791011 A CN 102791011A CN 2012101103379 A CN2012101103379 A CN 2012101103379A CN 201210110337 A CN201210110337 A CN 201210110337A CN 102791011 A CN102791011 A CN 102791011A
- Authority
- CN
- China
- Prior art keywords
- user
- bunch
- zone
- gate inhibition
- cluster knot
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/08—Access security
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W84/00—Network topologies
- H04W84/18—Self-organising networks, e.g. ad-hoc networks or sensor networks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Small-Scale Networks (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a flexible networking access control method and a system. The method includes that an ad hoc network is established in an area which requires access control and used for achieving ad hoc communication among regions in the area, the ad hoc network comprises cluster heads and cluster nodes, the cluster heads are established in the regions and used for achieving ad hoc communication among the regions, and the cluster nodes are established in independent function domains of the regions and used for achieving ad hoc communication with the cluster heads in the same regions; the cluster heads in the regions obtain user information from cluster nodes of the cluster heads through the ad hoc network and inquire the user information to obtain a user access control permission; and the cluster heads in the regions send access control instructions to the cluster nodes according to the obtained user access control permission to enable the cluster nodes to perform access control. According to the flexible networking access control method and the system, the ad hoc network is used for networking so that flexible networking and distribution of various permissions of users are achieved.
Description
Technical field
The present invention relates to the mobile radio telecommunications application, particularly a kind of guard method and relevant system thereof that can flexible networking.
Background technology
Ad Hoc net is a kind of multi-hop, acentric, ad hoc deployed wireless networks, is called multihop network (Multi-hop Network), foundation-free facility network or self-organization network again.Whole network does not have fixing infrastructure, and each node all moves, and can both dynamically keep and the getting in touch of other node with any-mode.In this network, because terminal wireless covers the finiteness of span, two user terminals that can't directly communicate can carry out packet forward by other node.Each node is again a router simultaneously, and they can accomplish the function of finding and being maintained to other node route.
Ad Hoc network is a kind of special mobile radio network.All nodes is equal in the network, need not to be provided with any center control nodes.Node in the network not only has the required function of common mobile terminal, and has the message transfer capability.Compare with fixed network with common mobile network, it has following characteristics:
1) independence of network
The support that the relative general communication network of Ad Hoc network, maximum difference exactly can be at any time, any place does not need the hardware foundation network facilities builds a mobile communications network fast.Its foundation does not rely on existing network service facility, has certain independence.
2) network topology structure of dynamic change
In Ad Hoc network, mobile host can arbitrarily move in net.The mobile meeting of main frame causes the link between the main frame to increase or disappears, and the relation between the main frame constantly changes.In MANET, main frame possibly still be a router simultaneously, and therefore, mobile meeting constantly changes network topology structure, and the mode and the speed that change all are uncertain.
3) the self-organizing characteristic of network
The cloth of Ad Hoc network is if launch to need not to depend on any preset network facilities.Node is coordinated behavior separately through layered protocol and distributed algorithm, and an independently network just can be formed fast and automatically in node start back.
Ad Hoc network generally has two kinds of structures: planar structure and hierarchy.In planar structure, all nodes equal is so can be called equation structures again.In the hierarchy, network is divided into bunch.Each bunch is by a bunch of head and a plurality of cluster knot point member composition, and these bunches capitiform has become higher leveled network.In high primary network station, again can sub-clustering, form more higher leveled network once more, until the superlative degree.
The basic means that gate control system is carried out control of authority as enterprise more and more general is applied to various types of occasions.But along with the fast development of some enterprises, the rapid expansion and the adjustment of its scale make traditional gate control system, more demonstrate its limitation.
1) height to fixed network relies on
Existing gate control system; Have high dependency for fixed network infrastructure, if enterprise need adjust its scale, what at first need do is exactly again the layout static infrastructure; To realize the integrality of whole enterprises gate control system; Therefore, lack enough flexibilities, also significantly increased the input of enterprise simultaneously.
2) single access permission is controlled
Along with the high speed development of enterprise, its composition of personnel structure is also all the more complicated, for different personnel's various authorities, like right assignment and control problems such as equipment use, level of securitys, also becomes suitable important.Traditional gate control system is merely able to single realization and visits the control in fixed physical zone for personnel, and can't realize the unified control of various authority.
Summary of the invention
The object of the present invention is to provide a kind of guard method and system of flexible networking, can solve the problem of the low usefulness of the employed gate control system of present numerous large enterprise, high investment, single control of authority better.
The guard method of a kind of flexible networking that provides according to an aspect of the present invention, comprises:
Carry out gate inhibition's area at needs and set up the Ad Hoc network of realizing each regional Ad Hoc communication in this area; Being included in being used to of setting up respectively in said each zone makes each zone carry out a bunch of head of Ad Hoc communication, and in each standalone feature district in said each zone, set up respectively carry out the cluster knot point that Ad Hoc communicates by letter with its zone bunch head;
Each zone bunch head obtains user's user profile through Ad Hoc network from its cluster knot point, and it is inquired about, and obtains user's access permission;
Each zone bunch head sends gate inhibition's control command according to resulting user's access permission to said cluster knot point, carries out gate inhibition's control by it.
Preferably, cluster knot point obtains customer identification number information through its gate inhibition terminal, and the user profile bag that will comprise said customer identification number information and address information is sent to its zone bunch head.
Preferably; Bunch its said user profile bag of receiving of header parsing; Obtain comprising the user profile of said customer identification number information and said address information, and carry out local search, obtain user's access permission according to customer identification number information wherein; According to resulting user's access permission, send gate inhibition's control command to cluster knot point.
Preferably, cluster knot point is controlled its gate inhibition terminal and is opened according to said gate inhibition's control command of receiving, and notifies its zone bunch first watch new user data information.
Preferably; Said user data information comprises customer identification number information, user right information, current region bunch header, current cluster knot dot information, last time cluster knot dot information and history information; Said bunch of head be according to said customer identification number information and said address information, upgrades the current region bunch header of relative users, current cluster knot dot information, last time cluster knot dot information and history information.
Preferably; The user data information of its maintenance of bunch head inquiry; And judges belong to current cluster knot point with last time cluster knot point whether consistent; When judged result when being inconsistent, send to current cluster knot point and to be used to the peripheral hardware control command that the user distributes the peripheral hardware rights of using, and to last time cluster knot point send the peripheral hardware that is used to cancel for the peripheral hardware rights of using of said user's distribution and release order.
Preferably, said method also comprises:
Whether bunch head obtains user's customer identification number information through its gate inhibition terminal, and according to said customer identification number information, be that authorized user carries out local search or carries out Ad Hoc network inquiry through communicating by letter with other bunch head to said user;
When Query Result was authorized user, opened at bunch its gate inhibition terminal of head control;
When Query Result is unauthorized user, said user is authorized, and control its gate inhibition and open.
Preferably, when bunch head carries out Ad Hoc network inquiry,, then the said user data of users information reproduction of other bunch head maintenance is preserved to local if inquiring said user at other bunch head place is authorized user.
The gate control system of a kind of flexible networking that provides according to a further aspect in the invention, comprises:
Be arranged on and need carry out in the gate inhibition area so that the Ad Hoc network that Ad Hoc communication is carried out in each zone in this area, said Ad Hoc network comprises:
A bunch of head that in said each zone, is provided with respectively is used to make each its bunch of zone passage head to carry out Ad Hoc communication;
The a plurality of cluster knot points that in each standalone feature district in said each zone, are provided with respectively, its each cluster knot point carry out Ad Hoc with bunch head in its zone and communicate by letter;
Wherein, bunch head in each zone obtains user's user profile through Ad Hoc network from its cluster knot point, and it is inquired about, and obtains user's access permission;
Wherein, each zone bunch head sends gate inhibition's control command according to resulting user's access permission to said cluster knot point, carries out gate inhibition's control by it.
Preferably, said bunch of head also is used for obtaining through its gate inhibition terminal user's customer identification number information, and according to said customer identification number information; Whether to said user is that authorized user carries out local search or carries out Ad Hoc network inquiry through communicating by letter with other bunch head; When Query Result was authorized user, opened at bunch its gate inhibition terminal of head control, when Query Result is unauthorized user; Said user is authorized, and control its gate inhibition and open.
Compared with prior art, beneficial effect of the present invention is:
1, the network organizing mode of the present invention through Ad Hoc can flexible networking, has reduced enterprise's input;
2, the present invention has realized the unified control of the various authority of user, comprises different personnel's various authorities, like right assignment such as equipment uses.
Description of drawings
Fig. 1 is the guard method schematic diagram of the flexible networking that provides of the embodiment of the invention;
Fig. 2 is the Ad Hoc clustering architecture network topological diagram that the embodiment of the invention provides;
Fig. 3 is the cluster knot spot net topological diagram that the embodiment of the invention provides;
Fig. 4 is the user data information structure chart of bunch head maintenance that provides of the embodiment of the invention;
Fig. 5 is the subscriber authorisation flow chart that the embodiment of the invention provides;
Fig. 6 is the gate control system control flow chart that the embodiment of the invention provides.
Embodiment
, should be appreciated that following illustrated preferred embodiment only is used for explanation and explains the present invention, and be not used in qualification the present invention a preferred embodiment of the present invention will be described in detail below in conjunction with accompanying drawing.
Realization of the present invention has utilized the hierarchy of Ad Hoc network, carries out the topology of real network.Each plant area of standalone feature is divided into a bunch head, becomes a high level network between bunch head and bunch head, carry out data communication through the AdHoc network; Standalone feature area dividing in each plant area is the cluster knot point, is the sane level structure between each cluster knot point, constitutes new Ad Hoc network with unified bunch head.
Fig. 1 is the guard method schematic diagram of the flexible networking that provides of the embodiment of the invention, and is as shown in Figure 1, comprising:
Step S101, set up to realize the Ad Hoc network of each regional Ad Hoc communication in this area in the area that needs carry out the gate inhibition; Being included in being used to of setting up respectively in said each zone makes each zone carry out a bunch of head of Ad Hoc communication, and in each standalone feature district in said each zone, set up respectively carry out the cluster knot point that Ad Hoc communicates by letter with its zone bunch head.
Step S102, each zone bunch head obtain user's user profile through Ad Hoc network from its cluster knot point, and it is inquired about, and obtain user's access permission.
Cluster knot point obtains customer identification number information through its gate inhibition terminal, and the user profile bag that will comprise said customer identification number information and address information is sent to its zone bunch head.Bunch its said user profile bag of receiving of header parsing obtains comprising the user profile of said customer identification number information and said address information, and carries out local search according to customer identification number information wherein, obtains user's access permission.
Step S103, each zone bunch head send gate inhibition's control command according to resulting user's access permission to said cluster knot point, carry out gate inhibition's control by it.
Bunch head sends gate inhibition's control command according to resulting user's access permission to cluster knot point, so that cluster knot point, is controlled its gate inhibition terminal unlatching according to said gate inhibition's control command of receiving.
Fig. 2 is the Ad Hoc clustering architecture network topological diagram that the embodiment of the invention provides, and as shown in Figure 2, this figure is a model with a large enterprise, and as a bunch head, each standalone feature zone in the plant area is as the cluster knot point with each plant area of enterprise.
The zone has independently groups of building of five in dining room, office building, test department, production area and research and development district in 101, and as bunch head in the whole network topology structure, they belong to the Ad Hoc network with one deck.When carrying out Ad Hoc communication between five bunches of heads of zone in 101,, just can utilize the data communication between remote bunch of head of multi-hop performance realization of Ad Hoc network if the wireless communication distance of certain cluster head can't arrive should other bunch of zone the time.For example, the research and development district hopes to carry out data communication with office building, and mutual physical distance is far away; AdHoc network wireless communication distance is not enough; Can't realize the data wireless intercommunication, at this moment, research and development districts can through with the test department intercommunication; Jump to the office building in the test department wireless network scope, finally realize that with the multi-hop of Ad Hoc network the research and development district communicates by letter with the remote-wireless of office building.
The zone that research and development A district in the zone 102, research and development B district, meeting room and four in laboratory have standalone feature is under the jurisdiction of the research and development district; Belong to the consolidated network level; All belong to bunch cluster knot point in head research and development district, they distinguish the Ad Hoc network that has constituted another level with bunch head research and development.Each cluster knot point in the zone 102; The customer identification number information real-time of all oneself being obtained send to its zone bunch head; (said routing iinformation comprises that cluster knot puts the routing information of its zone bunch head for customer identification number information that bunch head transmits according to cluster knot point and the routing iinformation in sending said customer identification number information process; Bunch head obtains said routing iinformation when obtaining customer identification number); The user is handled and safeguards in the visit situation of each cluster knot point, and the data query service is provided for each cluster knot point.Further, this bunch head also is other bunches head in the zone 101, and corresponding message reference, inquiry service are provided.
Need add a special logistics district like enterprise development, then only need in zone 101, increase a logistics district, as new bunch head in the network.Make full use of the self-organization of Ad Hoc network, need not layout fixed network again, and only need to add independently wireless network bunch head, utilize the coordination of layered protocol and distributed algorithm, can accomplish the dilatation of network in new zone.Likewise, also be applicable to the interpolation of cluster knot point, because the difference of belonging network level is just slightly different on Distribution Algorithm.
Fig. 3 is the cluster knot spot net topological diagram that the embodiment of the invention provides; Because each Ad Hoc network node will possess the function and the message transfer capability of common mobile terminal; The function that promptly will possess router; Therefore, the single network node among the present invention will comprise main frame, gate inhibition terminal and wireless device at least.Wherein, main frame is accomplished the function of common mobile terminal, comprises functions such as human interface function, intra-node equipment control of authority function, data processing; Reading of ID and gate inhibition's control mainly are responsible in the gate inhibition terminal; Wireless device is that message transmission provides the wireless channel support.
With a conventional office is prototype; As shown in Figure 3; An Ad Hoc network cluster meshed network topological diagram is provided; Said cluster knot spot net comprises: main frame 201, wireless device 202, RFID gate inhibition terminal 203 and other network peripheral hardware, and like PC 204, photocopier 205, phone 206 and printer 207.
Carry out bidirectional data communication between main frame 201 and the wireless device 202; Main frame will comprise customer identification number information and address information (address of user bunch address of node, place and zone bunch head thereof) is passed through wireless device 202, utilizes Ad Hoc network to offer its zone bunch head; Simultaneously, wireless device 202 through Ad Hoc network obtain bunch head be used to open or close the instruction at RFID gate inhibition terminal and the authority information that the user uses cluster knot spot net peripheral hardware, send to main frame, to realize associated user's control of authority.
Carry out bidirectional data interaction between RFID gate inhibition terminal 203 and the main frame 201; RFID gate inhibition terminal 203 offers main frame 201 with the customer identification number information that it obtains; Be used for the user profile inquiry, and receive the access permission Query Result that main frame 201 provides, with decision gate inhibition's open and close.
Comprise between other network peripheral hardware and the main frame of PC 204, photocopier 205, phone 206, printer 207 being one-way process, main frame sends control command and gives peripheral hardware according to the authority information from its bunch head, and the decision user is for the rights of using of relative peripheral.Particularly, main frame, perhaps, releases order according to the peripheral hardware from its bunch head for the user distributes the peripheral hardware rights of using according to the peripheral hardware control command from its bunch head, cancels the peripheral hardware rights of using of distributing for the user.
For the sensing equipment that uses in the gate control system, present embodiment has used RFID gate inhibition terminal, but is not limited in this wireless technology, as sensing equipments commonly used such as near-field communication NFC, all is applicable to the present invention.
Fig. 4 is the user data information structure chart of bunch head maintenance that provides of the embodiment of the invention; The present invention has made clear and definite definition to the user data information structure, comprises customer identification number information, corresponding user right information, this user's current region bunch header, this user's current cluster knot dot information, this user's cluster knot dot information and this user's gate inhibition's history information last time.Main frame in each bunch head needs to be responsible for user data information and safeguards, so that distribute peripheral hardware rights of using, supervisory user position and access history thereof for the user in real time.As shown in Figure 4, this figure describes the relevant information of user in gate control system in detail, by each bunch main frame these data is carried out uniform maintenance.
Said customer identification number information is used to identify unique user, and the device identifier that obtains with the gate inhibition terminal is corresponding one by one.
Said user right information is used to identify the various authorities that bunch head distributes for this user.
Said current region bunch header is used to identify the affiliated bunch head of the current place of this user cluster knot point, is convenient to the location, user area.
Said current cluster knot dot information is used to identify the active user position that gate inhibition's capture terminal arrives; Said last time, the cluster knot dot information was used to identify the last user position that gate inhibition's capture terminal arrives; These two message segments can be confirmed the repeatedly visit of user at the same area, whether need repeatedly right assignment.
User history information is used for the record that recording user is visited each node.
A bunch main frame can be from the routing iinformation of receiving intercepting current region bunch head and current cluster knot point, and the pertinent user data information that is stored in bunch head safeguarded, and need not the data passes that each node carries out individual event.Administrative staff can navigate to related personnel's regional location of living in fast through the inquiry to above-mentioned two message segments in bunch main frame, and the realization personnel are location and tracking fast.Cooperate corresponding watch-dog, can realize personnel control efficiently, improve entrance guard management greatly.
The present invention needs two flow processs of experience: subscriber authorisation flow process and gate inhibition's control flow in actual use.
Fig. 5 is the subscriber authorisation flow chart that the embodiment of the invention provides; In the subscriber authorisation flow process, whether bunch head is authorized it through Ad Hoc network and to be inquired about after reading this ID; Determine it is to distribute brand-new authority with this for this user; Still obtain the log-on message of this user at other bunches head through network, as shown in Figure 5, step comprises:
Step S501, user get into a bunch of head;
The RFID gate inhibition terminal of step S502, bunch head obtains the device identifier that the user holds RFID equipment, and according to said device identifier, obtains customer identification number information, sends it to a bunch main frame;
Step S503, a bunch main frame obtain customer identification number information through RFID gate inhibition terminal; Carry out user data query in a bunch head this locality, confirm whether this user carried out mandate at this bunch head, if authorize then execution in step S508 at this bunch head; Otherwise, execution in step S504;
Step S504, other bunch head is carried out user data query through Ad Hoc network;
Whether step S505, affirmation user obtain authorizing in other bunch head, if authorize then execution in step S507 at this bunch head, otherwise, execution in step S506;
Step S506, duplicate this user data of users information, be kept at this bunch head from a corresponding bunch head, and execution in step S508;
Step S507, all the user is not authorized, then this user is authorized, in this bunch main frame, set up this user data of users information and execution in step S508 by this bunch main frame like other bunch head;
Step S508, open gate inhibition this user that lets pass.
Fig. 6 is the gate control system control flow chart that the embodiment of the invention provides, and the gate control system control flow realizes that mainly the user has distributed the use of authority, and according to the routing iinformation of user in each cluster knot point visit, maintenance customer's data message, as shown in Figure 6, step comprises:
Step S601, user get into a cluster knot point;
RFID gate inhibition's equipment of step S602, this cluster knot point reads the device identifier that this user holds RFID equipment, and according to said device identifier, obtains customer identification number information, sends it to its main frame;
The main frame of step S603, this cluster knot point to bunch head inquiry of its zone, obtains the gate inhibition's control command from its zone bunch head through Ad Hoc network;
Step S604, cluster knot point judge according to said gate inhibition's control command whether this user has the access permission of this cluster knot point, if having, and execution in step S605 then, otherwise, execution in step S606;
Step S605, for this user opens the gate inhibition, simultaneously notice bunch head revise in this user data of users information current cluster knot point field information and last time cluster knot point field information;
Step S606, gate inhibition do not make any response to this user;
Step S607, this user data of users information of bunch head inquiry, confirm its current cluster knot point whether with last time cluster knot point consistent, if unanimity, execution in step S609 process ends then, otherwise execution in step S608;
Step S608, this cluster knot point main frame of a bunch host notification; For this user distributes corresponding network peripheral hardware rights of using; Promptly have which equipment authority, put inner various peripheral hardware by the control of the hypervisor in cluster knot point main frame cluster knot, for this user distributes the relevant device rights of using at the cluster knot point;
Step S610, a bunch main frame are according to this user's cluster knot last time dot information, and notice cluster knot point main frame last time is cancelled the rights of using of the relative peripheral of distribution before.
In sum, the present invention has following technique effect:
1, the present invention makes full use of the self-organization of Ad Hoc network, only needs in new region, to add independently bunch head and/or in new standalone feature district, adds independently cluster knot point, can accomplish the dilatation of network, need not layout fixed network again.
2, the present invention can unify control to the various authority of user through the user data information of bunch head maintenance.
3, the present invention can realize personnel control efficiently through the user data information of bunch head maintenance, improves entrance guard management greatly.
Although preceding text specify the present invention, the invention is not restricted to this, those skilled in the art of the present technique can carry out various modifications according to principle of the present invention.Therefore, all modifications of doing according to the principle of the invention all are to be understood that to falling into protection scope of the present invention.
Claims (10)
1. the guard method of a flexible networking is characterized in that, comprising:
Carry out gate inhibition's area at needs and set up the Ad Hoc network of realizing each regional Ad Hoc communication in this area; Being included in being used to of setting up respectively in said each zone makes each zone carry out a bunch of head of Ad Hoc communication, and in each standalone feature district in said each zone, set up respectively carry out the cluster knot point that Ad Hoc communicates by letter with its zone bunch head;
Each zone bunch head obtains user's user profile through Ad Hoc network from its cluster knot point, and it is inquired about, and obtains user's access permission;
Each zone bunch head sends gate inhibition's control command according to resulting user's access permission to said cluster knot point, carries out gate inhibition's control by it.
2. method according to claim 1 is characterized in that, cluster knot point obtains customer identification number information through its gate inhibition terminal, and the user profile bag that will comprise said customer identification number information and address information is sent to its zone bunch head.
3. method according to claim 2; It is characterized in that its said user profile bag of receiving of bunch header parsing obtains comprising the user profile of said customer identification number information and said address information; And carry out local search according to customer identification number information wherein; Obtain user's access permission,, send gate inhibition's control command to cluster knot point according to resulting user's access permission.
4. method according to claim 3 is characterized in that, cluster knot point is controlled its gate inhibition terminal and opened according to said gate inhibition's control command of receiving, and notifies its zone bunch first watch new user data information.
5. method according to claim 4; It is characterized in that; Said user data information comprises customer identification number information, user right information, current region bunch header, current cluster knot dot information, last time cluster knot dot information and history information; Said bunch of head be according to said customer identification number information and said address information, upgrades the current region bunch header of relative users, current cluster knot dot information, last time cluster knot dot information and history information.
6. method according to claim 5; It is characterized in that; The user data information of its maintenance of bunch head inquiry, and judges belong to current cluster knot point with last time cluster knot point whether consistent, when judged result when being inconsistent; Send to current cluster knot point and to be used to the peripheral hardware control command that the user distributes the peripheral hardware rights of using, and to last time cluster knot point send the peripheral hardware that is used to cancel for the peripheral hardware rights of using of said user's distribution and release order.
7. according to any described method of claim 1-6, it is characterized in that, also comprise:
Whether bunch head obtains user's customer identification number information through its gate inhibition terminal, and according to said customer identification number information, be that authorized user carries out local search or carries out Ad Hoc network inquiry through communicating by letter with other bunch head to said user;
When Query Result was authorized user, opened at bunch its gate inhibition terminal of head control;
When Query Result is unauthorized user, said user is authorized, and control its gate inhibition and open.
8. method according to claim 7 is characterized in that, when bunch head carries out Ad Hoc network inquiry, if inquiring said user at other bunch head place is authorized user, then the said user data of users information reproduction of other bunch head maintenance is preserved to local.
9. the gate control system of a flexible networking is characterized in that, comprising:
Be arranged on and need carry out in the gate inhibition area so that the Ad Hoc network that Ad Hoc communication is carried out in each zone in this area, said Ad Hoc network comprises:
A bunch of head that in said each zone, is provided with respectively is used to make each its bunch of zone passage head to carry out Ad Hoc communication;
The a plurality of cluster knot points that in each standalone feature district in said each zone, are provided with respectively, its each cluster knot point carry out Ad Hoc with bunch head in its zone and communicate by letter;
Wherein, bunch head in each zone obtains user's user profile through Ad Hoc network from its cluster knot point, and it is inquired about, and obtains user's access permission;
Wherein, each zone bunch head sends gate inhibition's control command according to resulting user's access permission to said cluster knot point, carries out gate inhibition's control by it.
10. system according to claim 9 is characterized in that, said bunch of head also is used for obtaining through its gate inhibition terminal user's customer identification number information; And, whether be that authorized user carries out local search or carries out Ad Hoc network inquiry through communicating by letter with other bunch head to said user, when Query Result is authorized user according to said customer identification number information; Open at its gate inhibition terminal of bunch head control; When Query Result is unauthorized user, said user is authorized, and control its gate inhibition and open.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210110337.9A CN102791011B (en) | 2012-04-16 | 2012-04-16 | A kind of guard method and system of flexible networking |
| PCT/CN2012/077216 WO2013155783A1 (en) | 2012-04-16 | 2012-06-20 | Flexible networking access control method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210110337.9A CN102791011B (en) | 2012-04-16 | 2012-04-16 | A kind of guard method and system of flexible networking |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102791011A true CN102791011A (en) | 2012-11-21 |
| CN102791011B CN102791011B (en) | 2019-01-04 |
Family
ID=47156290
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210110337.9A Active - Reinstated CN102791011B (en) | 2012-04-16 | 2012-04-16 | A kind of guard method and system of flexible networking |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN102791011B (en) |
| WO (1) | WO2013155783A1 (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107295533A (en) * | 2017-06-20 | 2017-10-24 | 海信集团有限公司 | A kind of method and apparatus for electing leader cluster node |
| CN112685606A (en) * | 2020-12-31 | 2021-04-20 | 上海氪邦智能技术有限公司 | Authority rule configuration/management method, system, computer medium and terminal |
| CN115050123A (en) * | 2021-12-08 | 2022-09-13 | 全民认证科技(杭州)有限公司 | Intelligent access control method and system suitable for multiple scenes |
| CN115238257A (en) * | 2022-09-26 | 2022-10-25 | 深圳市亲邻科技有限公司 | Access control face permission updating method and device, computer equipment and storage medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1643862A (en) * | 2002-03-27 | 2005-07-20 | 摩托罗拉公司 | Method and apparatus for a communication network with nodes capable of selective cluster head operation |
| US20070030120A1 (en) * | 2005-08-02 | 2007-02-08 | Echolock, Inc. | Security access control system and associated methods |
| CN101477720A (en) * | 2009-01-13 | 2009-07-08 | 许仁德 | Gate inhibition system |
| CN101916464A (en) * | 2010-08-25 | 2010-12-15 | 华南理工大学 | Zigbee technology-based access control management method and device |
| CN202306667U (en) * | 2011-10-09 | 2012-07-04 | 苏州元澄智能科技有限公司 | Zigbee wireless access control system |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102088522A (en) * | 2009-12-04 | 2011-06-08 | 中国移动通信集团公司 | System and method for modifying state of mobile terminal, and relevant equipment |
-
2012
- 2012-04-16 CN CN201210110337.9A patent/CN102791011B/en active Active - Reinstated
- 2012-06-20 WO PCT/CN2012/077216 patent/WO2013155783A1/en active Application Filing
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1643862A (en) * | 2002-03-27 | 2005-07-20 | 摩托罗拉公司 | Method and apparatus for a communication network with nodes capable of selective cluster head operation |
| US20070030120A1 (en) * | 2005-08-02 | 2007-02-08 | Echolock, Inc. | Security access control system and associated methods |
| CN101477720A (en) * | 2009-01-13 | 2009-07-08 | 许仁德 | Gate inhibition system |
| CN101916464A (en) * | 2010-08-25 | 2010-12-15 | 华南理工大学 | Zigbee technology-based access control management method and device |
| CN202306667U (en) * | 2011-10-09 | 2012-07-04 | 苏州元澄智能科技有限公司 | Zigbee wireless access control system |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107295533A (en) * | 2017-06-20 | 2017-10-24 | 海信集团有限公司 | A kind of method and apparatus for electing leader cluster node |
| WO2018233138A1 (en) * | 2017-06-20 | 2018-12-27 | 海信集团有限公司 | Method, computer apparatus, and storage medium for selecting cluster head node |
| CN112685606A (en) * | 2020-12-31 | 2021-04-20 | 上海氪邦智能技术有限公司 | Authority rule configuration/management method, system, computer medium and terminal |
| CN115050123A (en) * | 2021-12-08 | 2022-09-13 | 全民认证科技(杭州)有限公司 | Intelligent access control method and system suitable for multiple scenes |
| CN115050123B (en) * | 2021-12-08 | 2024-02-27 | 全民认证科技(杭州)有限公司 | Intelligent access control method and system suitable for multiple scenes |
| CN115238257A (en) * | 2022-09-26 | 2022-10-25 | 深圳市亲邻科技有限公司 | Access control face permission updating method and device, computer equipment and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102791011B (en) | 2019-01-04 |
| WO2013155783A1 (en) | 2013-10-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| Marjanović et al. | Edge computing architecture for mobile crowdsensing | |
| Polese et al. | Machine learning at the edge: A data-driven architecture with applications to 5G cellular networks | |
| Baek et al. | Energy-efficient UAV routing for wireless sensor networks | |
| Faheem et al. | Energy efficient and reliable data gathering using internet of software-defined mobile sinks for WSNs-based smart grid applications | |
| CN106063298B (en) | System and method for for customized 5th generation network | |
| Stojmenovic | Handbook of wireless networks and mobile computing | |
| CN102209316B (en) | Methods and devices for interworking of wireless wide area networks and wireless local area networks or wireless personal area networks | |
| JP4756865B2 (en) | Security group management system | |
| CN104145445B (en) | Method, equipment and computer-readable recording medium for being securely accessed by social network data | |
| CN109922469A (en) | For supporting the method, apparatus and system of radio roaming | |
| CN101447910B (en) | Distributed network storage control method, device and distribution system | |
| CN106488525B (en) | A kind of wireless network construction method and corresponding network framework of IP dynamic binding | |
| CN102202298A (en) | Combined network and method for wireless sensor network terminal to join network | |
| CN101647237A (en) | Communications in relay networks | |
| CN102791011A (en) | Flexible networking access control method and system | |
| CN101690023A (en) | routing in a network | |
| US20180054791A1 (en) | Techniques for device registration and prioritization in a cellular as a service environment | |
| Kumar et al. | Obstacle-aware connectivity establishment in wireless sensor networks | |
| Bai | Industrial Internet of things over tactile Internet in the context of intelligent manufacturing | |
| CN102196529A (en) | Access method and system for wireless sensor network | |
| CN102685786A (en) | Method and system for accessing wireless sensor network (WSN) to telecommunication network | |
| US10038729B1 (en) | Cooperative network access | |
| CN105744524B (en) | Mobile device networking authentication method in a kind of WIA-PA industry wireless network | |
| CN109842442A (en) | It is a kind of using airport as the quantum key service network and method of regional center | |
| Tashtarian et al. | Multihop data gathering in wireless sensor networks with a mobile sink |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20190104 Termination date: 20190416 |
|
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| RR01 | Reinstatement of patent right |
Former decision: termination of patent right due to unpaid annual fee Former decision publication date: 20200403 |
|
| RR01 | Reinstatement of patent right |