CN102970732B - Method, system and equipment for wireless local area network (WLAN) sharing authentication - Google Patents

Method, system and equipment for wireless local area network (WLAN) sharing authentication Download PDF

Info

Publication number
CN102970732B
CN102970732B CN201210487267.9A CN201210487267A CN102970732B CN 102970732 B CN102970732 B CN 102970732B CN 201210487267 A CN201210487267 A CN 201210487267A CN 102970732 B CN102970732 B CN 102970732B
Authority
CN
China
Prior art keywords
operation network
authentication information
network access
mobile terminal
duration
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201210487267.9A
Other languages
Chinese (zh)
Other versions
CN102970732A (en
Inventor
李建勇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN201210487267.9A priority Critical patent/CN102970732B/en
Publication of CN102970732A publication Critical patent/CN102970732A/en
Priority to PCT/CN2013/081905 priority patent/WO2013189389A2/en
Application granted granted Critical
Publication of CN102970732B publication Critical patent/CN102970732B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/40Security arrangements using identity modules
    • H04W12/43Security arrangements using identity modules using shared identity modules, e.g. SIM sharing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks
    • H04W84/12WLAN [Wireless Local Area Networks]

Abstract

The invention discloses a method for wireless local area network (WLAN) sharing authentication. The method comprises the following steps: a sharing authentication server receives Wi-Fi (Wireless Fidelity) operation network sharing authentication information uploaded by a first mobile terminal and stores the Wi-Fi operation network sharing authentication information; and the sharing authentication server receives a Wi-Fi operation network access request from a second mobile terminal, locally retrieves the Wi-Fi operation network sharing authentication information meeting the Wi-Fi operation network access request according to the stored Wi-Fi operation network sharing authentication information, and enables the second mobile terminal to access a Wi-Fi operation network. The invention simultaneously discloses a system and equipment for WLAN sharing authentication. With the adoption of the method, the system and the equipment, disclosed by the invention, secondary authentication user credentials of the Wi-Fi operation network can be shared, the number of mobile terminals capable of accessing to the Wi-Fi operation network needing secondary authentication is increased, the utilization ratio of the Wi-Fi operation network is increased, and the load of a cellular network is reduced.

Description

A kind of WLAN (wireless local area network) shares the method for certification, system and equipment
Technical field
The present invention relates to wireless communication technology, particularly relate to a kind of WLAN (wireless local area network) and share the method for certification, system and equipment.
Background technology
Wireless Fidelity (Wi-Fi, Wireless Fidelity) at WLAN (wireless local area network) (WLAN, Wireless LocalArea Network) category refer to " Wireless Fidelity ", it is in fact a kind of commercial verification, also be a kind of technology of Wireless Networking, and the place can accessing Wi-Fi Operation Network is called as focus simultaneously.The local area network (LAN) of all use 802.11 standard agreements is also called Wi-Fi, and therefore, Wi-Fi almost becomes the synonym of WLAN.
In recent years, the explosive growth of mobile Internet not only causes huge flow pressure to cellular network, also cellular carrier is made to be absorbed in the predicament of high investment, low output, for effectively alleviating flow pressure and reducing operating cost, the numerous and confused extensive development WLAN of cellular carrier, Large scale construction Wi-Fi Hotspot, thus promoted the fusion of WLAN and mobile cellular network.
At present, other WLAN of carrier-class develops very fast, but needs when user enters to carry out re-authentication, i.e. WEB PORTAL certification.And there is certain region contingency in the WLAN that user uses operator to provide.Because WLAN is fixed position, only the WLAN of operator could be used to serve at ad-hoc location, but operator does not recognize the non-regularity that user uses WLAN to serve, still WLAN operation was managed according to the time, WLAN duration is all according to monthly settling accounts, for the monthly exhaustless user of WLAN duration, residue WLAN duration is a kind of waste; And concerning WLAN duration have burst and the user of non-continuous demand, monthly WLAN duration is finished, then it is restricted again to access WLAN; And then the quantity of the Wi-Fi mobile terminal causing low, the accessible WLAN of Wi-Fi Operation Network utilization rate is few, thus cause the problem that mobile cellular network load is large.
Summary of the invention
In view of this, main purpose of the present invention is the method, system and the equipment that provide a kind of WLAN (wireless local area network) to share certification, realizes different mobile terminal sharing WLAN.
For achieving the above object, technical scheme of the present invention is achieved in that
The invention provides a kind of method that WLAN (wireless local area network) shares certification, the method comprises:
Shared certificate server receives the Wi-Fi Operation Network that the first mobile terminal uploads and shares authentication information and store;
Shared certificate server receives the Wi-Fi Operation Network access request of the second mobile terminal, Wi-Fi Operation Network according to storing shares authentication information, the Wi-Fi Operation Network meeting described Wi-Fi Operation Network access request in this locality retrieval shares authentication information, and by the second mobile terminal access Wi-Fi Operation Network.
In such scheme, described shared certificate server receives the Wi-Fi Operation Network that the first mobile terminal uploads and shares authentication information and store, and comprising:
Service set SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network that shared certificate server mobile terminal receive is uploaded can be accessed by duration, can be accessed by duration for index with SSID and the Wi-Fi Operation Network received and set up list item at local data base, preserve at described list item the mapping relations that described SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration.
In such scheme, described Wi-Fi Operation Network is shared authentication information and is comprised SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration;
Described shared certificate server shares authentication information according to the Wi-Fi Operation Network stored, and the Wi-Fi Operation Network meeting described Wi-Fi Operation Network access request in this locality retrieval shares authentication information, comprising:
The SSID that SSID and Wi-Fi Operation Network access request corresponding to the Wi-Fi Operation Network access authentication information of retrieve stored is carried is consistent, and Wi-Fi Operation Network corresponding to Wi-Fi Operation Network access authentication information stored can be accessed by duration is not less than the Wi-Fi Operation Network request access duration that Wi-Fi Operation Network access request carries, and the Wi-Fi Operation Network access authentication information obtained is that the Wi-Fi Operation Network meeting described Wi-Fi Operation Network access request shares authentication information.
In such scheme, described by the second mobile terminal access Wi-Fi Operation Network, comprising:
Share certificate server and the Wi-Fi Operation Network access authentication information retrieved is sent to the second mobile terminal;
Second mobile terminal is according to described Wi-Fi Operation Network access authentication information access Wi-Fi Operation Network.
In such scheme, described by after the second mobile terminal access Wi-Fi Operation Network, the method also comprises:
The Wi-Fi Operation Network request access duration carried according to Wi-Fi Operation Network access request, upgrades the Wi-Fi Operation Network that the Wi-Fi Operation Network stored shares described Wi-Fi Operation Network access authentication information in authentication information corresponding and can be accessed by duration.
The invention provides a kind of mobile terminal, described mobile terminal comprises:
Wi-Fi sharing module, uploads to shared certificate server for Wi-Fi Operation Network is shared authentication information.
In such scheme, described mobile terminal comprises further:
Wi-Fi request authentication module, for sending Wi-Fi Operation Network access request to shared certificate server; Mobile terminal is accessed Wi-Fi Operation Network by the Wi-Fi Operation Network access authentication information utilizing shared certificate server to return.
The invention provides another kind of mobile terminal, described second mobile terminal comprises:
Wi-Fi request authentication module, for sending Wi-Fi Operation Network access request to shared certificate server, mobile terminal is accessed Wi-Fi Operation Network by the Wi-Fi Operation Network access authentication information utilizing shared certificate server to return.
The invention provides a kind of shared certificate server, described shared certificate server comprises Wi-Fi share service module and database module; Wherein,
Described database module, the Wi-Fi Operation Network uploaded for storing the first mobile terminal shares authentication information;
Described Wi-Fi share service module, for receiving the Wi-Fi Operation Network access request of the second mobile terminal, authentication information is shared according to the Wi-Fi Operation Network that described database module stores, the Wi-Fi Operation Network that retrieval meets described Wi-Fi Operation Network access request shares authentication information, by the second mobile terminal access Wi-Fi Operation Network.
In such scheme, described Wi-Fi Operation Network is shared authentication information and is comprised SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration;
Described Wi-Fi share service module, also for: can be accessed by duration for index with SSID and the Wi-Fi Operation Network received and set up list item in database module, preserve at described list item the mapping relations that described SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration.
In such scheme, described Wi-Fi Operation Network is shared authentication information and is comprised SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration;
Described Wi-Fi share service module, specifically for: in described database module, the SSID that SSID and Wi-Fi Operation Network access request corresponding to the Wi-Fi Operation Network access authentication information of retrieve stored is carried is consistent, and Wi-Fi Operation Network corresponding to Wi-Fi Operation Network access authentication information stored can be accessed by duration is not less than the Wi-Fi Operation Network request access duration that Wi-Fi Operation Network access request carries, the Wi-Fi Operation Network access authentication information obtained is that the Wi-Fi Operation Network meeting described Wi-Fi Operation Network access request shares authentication information.
In such scheme, described Wi-Fi share service module, also for the Wi-Fi Operation Network request access duration that carries according to Wi-Fi Operation Network access request, upgrade the Wi-Fi Operation Network that the Wi-Fi Operation Network stored shares described Wi-Fi Operation Network access authentication information in authentication information corresponding and can be accessed by duration.
Accordingly, present invention also offers the system that a kind of WLAN (wireless local area network) shares certification, this system comprises the first mobile terminal, the second mobile terminal and shared certificate server; Wherein,
Described first mobile terminal, shares authentication information for uploading Wi-Fi Operation Network to described shared certificate server;
Described second mobile terminal, for sending Wi-Fi Operation Network access request to shared certificate server, utilizes the Wi-Fi Operation Network access authentication information access Wi-Fi Operation Network shared certificate server and return;
Described shared certificate server, the Wi-Fi Operation Network uploaded for storing the first mobile terminal shares authentication information, also for receiving the Wi-Fi Operation Network access request of the second mobile terminal, Wi-Fi Operation Network according to storing shares authentication information, meet the Wi-Fi Operation Network access authentication information of described Wi-Fi Operation Network access request in this locality retrieval, and the Wi-Fi Operation Network access authentication information retrieved is sent to the second mobile terminal.
In such scheme, described shared certificate server, also for the Wi-Fi Operation Network request access duration that carries according to Wi-Fi Operation Network access request, upgrades the Wi-Fi Operation Network that the Wi-Fi Operation Network stored shares described Wi-Fi Operation Network access authentication information in authentication information corresponding and can be accessed by duration.
WLAN (wireless local area network) provided by the present invention shares the method for certification, system and equipment, and Wi-Fi Operation Network can be accessed by the exhaustless user of duration and uploads Wi-Fi Operation Network by mobile terminal to shared certificate server and share authentication information; Can be accessed by duration to Wi-Fi Operation Network has the user of burst non-continuous demand then can obtain the Wi-Fi Operation Network that can access this Wi-Fi Operation Network and share authentication information by sharing certificate server, to access Wi-Fi Operation Network, thus realize the multiple users share of Wi-Fi Operation Network.So, Wi-Fi Operation Network re-authentication user voucher is shared by the present invention, adds the accessible quantity needing the mobile terminal of the Wi-Fi Operation Network of re-authentication, improves Wi-Fi Operation Network utilization rate, thus alleviate cellular network load.
Accompanying drawing explanation
Fig. 1 is the composition structural representation that WLAN (wireless local area network) of the present invention shares Verification System;
Fig. 2 is the realization flow schematic diagram that WLAN (wireless local area network) of the present invention shares authentication method;
Fig. 3 is embodiment of the present invention mobile terminal UE A, UE B realizes the schematic flow sheet that WLAN (wireless local area network) shares certification.
Embodiment
Basic thought of the present invention is: the first mobile terminal is uploaded Wi-Fi Operation Network to shared certificate server and shared authentication information and stored by shared certificate server; Shared certificate server receives the Wi-Fi Operation Network access request of the second mobile terminal, Wi-Fi Operation Network according to storing shares authentication information, the Wi-Fi Operation Network meeting described Wi-Fi Operation Network access request in this locality retrieval shares authentication information, and by the second mobile terminal access Wi-Fi Operation Network.
In the present invention, the prerequisite realizing the present invention program comprises:
Mobile terminal possesses WLAN (wireless local area network) access capability and mobile cellular network packet domain access capability.
In the present invention, for convenience of describing, certification described below all refers to re-authentication, and also namely access needs the Wi-Fi Operation Network of re-authentication; Described Wi-Fi Operation Network access authentication information comprises user name (Username) and password (Key), also namely accesses the re-authentication user voucher of Wi-Fi Operation Network.
Fig. 1 is the composition structural representation that WLAN (wireless local area network) of the present invention shares Verification System, and as shown in Figure 1, this WLAN (wireless local area network) is shared Verification System and comprised the first mobile terminal 11, second mobile terminal 13 and shared certificate server 12; Wherein,
First mobile terminal 11, shares authentication information for uploading Wi-Fi Operation Network to shared certificate server 12;
Second mobile terminal 13, for sending Wi-Fi Operation Network access request to shared certificate server 12, utilizes the Wi-Fi Operation Network access authentication information access Wi-Fi Operation Network shared certificate server 12 and return;
Share certificate server 12, the Wi-Fi Operation Network uploaded for storing the first mobile terminal 11 shares authentication information; Also for receiving the Wi-Fi Operation Network access request of the second mobile terminal 13, Wi-Fi Operation Network according to storing shares authentication information, the Wi-Fi Operation Network meeting described Wi-Fi Operation Network access request in this locality retrieval shares authentication information, and the second mobile terminal 13 is accessed Wi-Fi Operation Network.
Concrete, described Wi-Fi Operation Network is shared authentication information and is comprised service set (SSID, ServiceSet Identifier), Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network and can be accessed by duration.
Concrete, share certificate server 12 specifically for SSID and the Wi-Fi Operation Network request access duration that carries according to Wi-Fi Operation Network access request, the Wi-Fi Operation Network access authentication information of described Wi-Fi Operation Network access request is met in this locality retrieval, the SSID that SSID and Wi-Fi Operation Network access request corresponding to the Wi-Fi Operation Network access authentication information namely stored is carried is consistent, and Wi-Fi Operation Network corresponding to Wi-Fi Operation Network access authentication information stored can be accessed by duration is not less than the Wi-Fi Operation Network request access duration that Wi-Fi Operation Network access request carries, and the Wi-Fi Operation Network access authentication information retrieved is sent to described second mobile terminal 13.
After the Wi-Fi Operation Network access authentication information retrieved is sent described second mobile terminal 13 by described shared certificate server 12, also for the Wi-Fi Operation Network request access duration that carries according to Wi-Fi Operation Network access request, upgrade the Wi-Fi Operation Network that the Wi-Fi Operation Network stored shares described Wi-Fi Operation Network access authentication information in authentication information corresponding and can be accessed by duration.
Described shared certificate server 12 is further used for: share authentication information according to receiving the Wi-Fi Operation Network that the first mobile terminal 11 sends again, the Wi-Fi Operation Network sent before upgrading the first mobile terminal 11 stored shares authentication information.
Concrete, the first mobile terminal 11 comprises Wi-Fi sharing module 111, described Wi-Fi sharing module 111, uploads to shared certificate server 12 for Wi-Fi Operation Network being shared authentication information;
Concrete, the second mobile terminal 13 comprises Wi-Fi request authentication module 131, described Wi-Fi request authentication module 131, for sending Wi-Fi Operation Network access request to shared certificate server 12; Second mobile terminal 13 is accessed Wi-Fi Operation Network by the Wi-Fi Operation Network access authentication information utilizing shared certificate server 12 to return.
Concrete, also propose a kind of mobile terminal in the present invention, comprise Wi-Fi sharing module and Wi-Fi request authentication, wherein,
Described Wi-Fi sharing module, uploads to shared certificate server for Wi-Fi Operation Network is shared authentication information;
Described Wi-Fi request authentication module, for sending the access of Wi-Fi Operation Network to shared certificate server; Mobile terminal is accessed Wi-Fi Operation Network by the Wi-Fi Operation Network access authentication information utilizing shared certificate server to return.
In the present invention, Wi-Fi Operation Network access authentication information comprises user name (Username) and password (Key), is also Wi-Fi Operation Network re-authentication user voucher.
Concrete, described shared certificate server 12 comprises Wi-Fi share service module 121 and database module 122; Wherein,
Described database module 122, the Wi-Fi Operation Network uploaded for storing the first mobile terminal 11 shares authentication information;
Described Wi-Fi share service module 121, for receiving the Wi-Fi Operation Network access request of the second mobile terminal 13, authentication information is shared according to the Wi-Fi Operation Network that described database module 122 stores, the Wi-Fi Operation Network that retrieval meets described Wi-Fi Operation Network access request shares authentication information, and the second mobile terminal 13 is accessed Wi-Fi Operation Network.
Concrete, described Wi-Fi Operation Network is shared authentication information and is comprised SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration; Described Wi-Fi Operation Network access request carries SSID and Wi-Fi Operation Network request access duration;
Described Wi-Fi share service module 121, specifically for receiving the Wi-Fi Operation Network access request of the second mobile terminal 13, according to SSID and the Wi-Fi Operation Network request access duration that Wi-Fi Operation Network access request is carried, in database module 122, retrieval meets the Wi-Fi Operation Network access authentication information of described Wi-Fi Operation Network access request, namely the SSID that SSID and the Wi-Fi Operation Network access request that in database module 122, the Wi-Fi Operation Network access authentication information of storage is corresponding is carried is consistent, and Wi-Fi Operation Network corresponding to Wi-Fi Operation Network access authentication information stored in database module 122 can be accessed by duration is not less than the Wi-Fi Operation Network request access duration that Wi-Fi Operation Network access request carries, the Wi-Fi Operation Network access authentication information retrieved is sent to the second mobile terminal 13.
Concrete, described Wi-Fi share service module 121, specifically for receiving SSID, Wi-Fi Operation Network access authentication information that the first mobile terminal 11 uploads and Wi-Fi Operation Network can be accessed by duration, can be accessed by duration for index with described SSID and Wi-Fi Operation Network and set up list item in database module 122, preserve at described list item the mapping relations that described SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration.
SSID and the Wi-Fi Operation Network request access duration that described Wi-Fi share service module 121 is carried according to Wi-Fi Operation Network access request, in database module 122, retrieval meets the Wi-Fi Operation Network access authentication information of described Wi-Fi Operation Network access request, comprising:
In database module 122, SSID and the Wi-Fi Operation Network request access duration carried with described Wi-Fi Operation Network access request is for index, retrieval Wi-Fi Operation Network can be accessed by duration and is not less than described Wi-Fi Operation Network request access duration, and the list item that SSID is identical with the SSID that described Wi-Fi Operation Network access request is carried, be the Wi-Fi Operation Network access authentication information meeting described Wi-Fi Operation Network access request by the Wi-Fi Operation Network access authentication message identification in described list item, send to and send described second mobile terminal 13.
After the Wi-Fi Operation Network access authentication information retrieved is sent to described second mobile terminal 13 by described Wi-Fi share service module 121, Wi-Fi Operation Network in data table items corresponding to described Wi-Fi Operation Network access authentication information stored in database module 122 be can be accessed by duration, be updated to described Wi-Fi Operation Network and can be accessed by duration and deduct duration after Wi-Fi Operation Network request access duration.
Described Wi-Fi share service module 121, also for: share authentication information according to receiving the Wi-Fi Operation Network that the first mobile terminal 11 sends, the Wi-Fi Operation Network sent before upgrading the first mobile terminal 11 stored in database module 122 shares authentication information.
Concrete, if had SSID, Wi-Fi Operation Network access authentication information that the first mobile terminal 11 uploads in database module 122 and Wi-Fi Operation Network can be accessed by duration, when it is uploaded again, Wi-Fi share service module 121 pairs of Wi-Fi Operation Networks can be accessed by while duration upgrades, if the first mobile terminal 11 user have modified Wi-Fi Operation Network access authentication information, then Wi-Fi share service module 121 also can upgrade Wi-Fi Operation Network access authentication information, as upgraded the password of the first mobile terminal 11 user amendment.
Concrete, described database module 122, for storing SSID, Wi-Fi Operation Network access authentication information that the first mobile terminal 11 is uploaded, and Wi-Fi Operation Network can be accessed by duration.
Fig. 2 is the realization flow schematic diagram that WLAN (wireless local area network) of the present invention shares authentication method, and as shown in Figure 2, the method comprises the following steps:
Step 201: the first mobile terminal is uploaded Wi-Fi Operation Network to shared certificate server and shared authentication information by sharing certificate server storage;
Concrete, self can use the relevant information of Wi-Fi Operation Network, i.e. Wi-Fi Operation Network to share authentication information and be uploaded to shared certificate server by the first mobile terminal, and described Wi-Fi Operation Network is shared authentication information and comprised SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration;
Concrete, SSID, Wi-Fi Operation Network access authentication information that shared certificate server mobile terminal receive is uploaded and Wi-Fi Operation Network can be accessed by duration, can be accessed by duration for index with described SSID and Wi-Fi Operation Network and set up list item at local data base, preserve the mapping relations that described SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration.
Step 202: shared certificate server receives the Wi-Fi Operation Network access request of the second mobile terminal, Wi-Fi Operation Network according to storing shares authentication information, meet the Wi-Fi Operation Network access authentication information of described Wi-Fi Operation Network access request in this locality retrieval, and the Wi-Fi Operation Network access authentication information retrieved is sent to the second mobile terminal;
Concrete, described Wi-Fi Operation Network access request carries SSID and Wi-Fi Operation Network request access duration, after shared certificate server receives the Wi-Fi Operation Network access request of the second mobile terminal, the Wi-Fi Operation Network access authentication information of described Wi-Fi Operation Network access request is met in this locality retrieval, the SSID that SSID and Wi-Fi Operation Network access request corresponding to the Wi-Fi Operation Network access authentication information namely stored is carried is consistent, and Wi-Fi Operation Network corresponding to Wi-Fi Operation Network access authentication information stored can be accessed by duration is not less than the Wi-Fi Operation Network request access duration that Wi-Fi Operation Network access request carries, and the Wi-Fi Operation Network access authentication information retrieved is sent to the second mobile terminal,
Here, the SSID that described shared certificate server carries according to Wi-Fi Operation Network access request accesses duration with request, meets the Wi-Fi Operation Network access authentication information of described Wi-Fi Operation Network access request, comprising in this locality retrieval:
In the local database, SSID and the Wi-Fi Operation Network request access duration carried with described Wi-Fi Operation Network access request is for index, the Wi-Fi Operation Network of retrieve stored can be accessed by duration and is not less than described Wi-Fi Operation Network request access duration, and the list item that SSID is identical with the SSID that described Wi-Fi Operation Network access request is carried, be the Wi-Fi Operation Network access authentication information meeting described Wi-Fi Operation Network access request by the Wi-Fi Operation Network access authentication message identification in described list item, to send to transmission second mobile terminal.
Here, described when the Wi-Fi Operation Network access authentication information retrieved being sent to the mobile terminal of second, the method also comprises:
The Wi-Fi Operation Network request access duration carried according to Wi-Fi Operation Network access request, upgrades the Wi-Fi Operation Network that the Wi-Fi Operation Network stored shares described Wi-Fi Operation Network access authentication information in authentication information corresponding and can be accessed by duration; Concrete, Wi-Fi Operation Network in data table items corresponding to described Wi-Fi Operation Network access authentication information stored be can be accessed by duration, be updated to described Wi-Fi Operation Network and can be accessed by duration and deduct duration after Wi-Fi Operation Network request access duration.
Step 203: the second mobile terminal receives the Wi-Fi Operation Network access authentication information shared certificate server and send, and according to described Wi-Fi Operation Network access authentication information access Wi-Fi Operation Network.
Concrete, the second mobile phone users uses the username and password access Wi-Fi Operation Network of username and password, i.e. the first mobile phone users in Wi-Fi Operation Network access authentication information.
Further, the inventive method also comprises: share certificate server and share authentication information according to receiving the Wi-Fi Operation Network that the first mobile terminal sends again, the Wi-Fi Operation Network sent before upgrading the first mobile terminal of storage shares authentication information; Concrete, if share certificate server this locality had SSID, Wi-Fi Operation Network access authentication information that the first mobile terminal uploads and Wi-Fi Operation Network can be accessed by duration, when it is uploaded again, sharing certificate server can be accessed by while duration upgrades to Wi-Fi Operation Network, if the first mobile phone users have modified Wi-Fi Operation Network access authentication information, then also can upgrade Wi-Fi Operation Network access authentication information, as upgraded the password of the first mobile phone users amendment.
Fig. 3 is the schematic flow sheet that embodiment of the present invention mobile terminal UE A, UEB realize that WLAN (wireless local area network) shares certification, and as shown in Figure 3, this flow process comprises the following steps:
The Wi-Fi switch opens of step 301: mobile terminal UE A, connects the Wi-Fi Hotspot of needs access, as focus S.
Concrete, the Wi-Fi switch opens of UE A, search the focus S needing access, user initiates the connection to focus S after inputting its Wi-Fi Operation Network access authentication information.
Step 302: after focus S successful connection, UE A initiates the certification to Wi-Fi Operation Network.
Concrete, after focus S successful connection, focus S can give UE A distributing IP address; The Wi-Fi sharing module of UE A obtains IP address, and authentication success detected, and Wi-Fi sharing module can set up HTTPS secure connection trusty with shared certificate server.
Step 303:UE A authentication success, connects Internet by focus S.
Here, after the certification of the Wi-Fi Operation Network that UEA must be provided by operator, the service of access Internet just can be provided to UEA.
Concrete, after UEA authentication success, the Wi-Fi sharing module of UEA obtains SSID, Wi-Fi Operation Network access authentication information of the focus S of current connection and Wi-Fi Operation Network can be accessed by duration.
SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network be can be accessed by duration and send to shared certificate server by HTTPS encryption by step 304:UE A, and to arrange authority be shared.
Step 305: SSID, Wi-Fi Operation Network access authentication information that UE A uploads by shared certificate server and Wi-Fi Operation Network can be accessed by duration encrypting storing to local data base.
Concrete, shared certificate server receives after SSID, Wi-Fi Operation Network access authentication information that UE A uploads and Wi-Fi Operation Network can be accessed by duration, match search is carried out in the local database according to SSID, if do not search record in the SSID table of database, can be accessed by duration for index with described SSID and Wi-Fi Operation Network and set up list item at local data base, preserve the mapping relations that described SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration; If search record in the SSID table of database, then carry out Username contrast, if Username is consistent, then carry out the renewal that Key and Wi-Fi Operation Network can be accessed by duration; Username is inconsistent, then a newly-increased record.
Here, carrying out that Key upgrades is because the user of UE A likely revised oneself password.
Above-mentioned steps 301 ~ 305 is that Wi-Fi Operation Network access authentication information is sent to the shared process of shared certificate server proposition by sharer (monthly the exhaustless user of WLAN duration).
Step 306:UE B opens Wi-Fi switch, searches focus X.
Concrete, the Wi-Fi switch opens of UE B, searches the focus X of Wi-Fi Operation Network, and focus X and focus S belongs to the focus that same operator provides, and therefore, focus S is the same with the SSID of focus X.
Step 307:UE B sets up HTTPS with shared certificate server and is connected, and initiates the Wi-Fi Operation Network access request of focus X.
Concrete, user does not input Wi-Fi Operation Network access authentication information and directly connects focus X, the Wi-Fi request authentication module of UE B starts, set up HTTPS with shared certificate server by cellular network packet domain to be connected, and SSID with the Wi-Fi Operation Network request of focus X access duration is carried at is connected encryption by HTTPS in Wi-Fi Operation Network access request and sends to shared certificate server, the acquisition of initiation Wi-Fi Operation Network access authentication information.
Step 308: share certificate server, by HTTPS connection, the Wi-Fi Operation Network access authentication information encryption of focus X is returned to UE B.
Concrete, after sharing the Wi-Fi Operation Network access request of certificate server mobile terminal receive UE B, in the local database, SSID and the Wi-Fi Operation Network request access duration carried with described Wi-Fi Operation Network access request is for index, retrieval Wi-Fi Operation Network can be accessed by duration and is not less than described Wi-Fi Operation Network request access duration, and the list item that SSID is identical with the SSID that described Wi-Fi Operation Network access request is carried, be the Wi-Fi Operation Network access authentication information meeting described Wi-Fi Operation Network access request by the Wi-Fi Operation Network access authentication message identification in described list item, send UE B.
After step 309:UE B receives the Wi-Fi Operation Network access authentication information of focus X, according to the initiation of Wi-Fi Operation Network access authentication information to the connection of focus X and certification, thus access Internet by focus X.
Concrete, UE B initiates the certification to focus X after receiving the Wi-Fi Operation Network access authentication information that shared certificate server returns; After authentication success, UE B is connected to Internet, obtains networking capability.
Step 306 ~ 309 are that user's (using duration to have burst and the user of non-continuous demand to Wi-Fi Operation Network) is not when knowing that Wi-Fi Operation Network access authentication information or the Wi-Fi Operation Network access authentication information of self cannot use (the Wi-Fi Operation Network as oneself can be accessed by duration and is finished), share, obtain the process of Wi-Fi Operation Network access authentication information to shared certificate server application, the Wi-Fi Operation Network access authentication information of acquisition is provided by sharer.
The above, be only preferred embodiment of the present invention, be not intended to limit protection scope of the present invention.

Claims (9)

1. WLAN (wireless local area network) shares a method for certification, it is characterized in that, the method comprises:
Shared certificate server receives the Wireless Fidelity Wi-Fi Operation Network that the first mobile terminal uploads and shares authentication information and store; Described Wi-Fi Operation Network is shared authentication information and is comprised SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration;
Shared certificate server receives the Wi-Fi Operation Network access request of the second mobile terminal, the SSID that SSID and Wi-Fi Operation Network access request corresponding to the Wi-Fi Operation Network access authentication information of retrieve stored is carried is consistent, and Wi-Fi Operation Network corresponding to Wi-Fi Operation Network access authentication information stored can be accessed by duration is not less than the Wi-Fi Operation Network request access duration that Wi-Fi Operation Network access request carries, the Wi-Fi Operation Network access authentication information obtained is that the Wi-Fi Operation Network meeting described Wi-Fi Operation Network access request shares authentication information, and by the second mobile terminal access Wi-Fi Operation Network.
2. method according to claim 1, is characterized in that, described shared certificate server receives the Wi-Fi Operation Network that the first mobile terminal uploads and shares authentication information and store, and comprising:
Service set SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network that shared certificate server mobile terminal receive is uploaded can be accessed by duration, can be accessed by duration for index with SSID and the Wi-Fi Operation Network received and set up list item at local data base, preserve at described list item the mapping relations that described SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration.
3. method according to claim 1, is characterized in that, described by the second mobile terminal access Wi-Fi Operation Network, comprising:
Share certificate server and the Wi-Fi Operation Network access authentication information retrieved is sent to the second mobile terminal;
Second mobile terminal is according to described Wi-Fi Operation Network access authentication information access Wi-Fi Operation Network.
4. according to the arbitrary described method of claims 1 to 3, it is characterized in that, described by after the second mobile terminal access Wi-Fi Operation Network, the method also comprises:
The Wi-Fi Operation Network request access duration carried according to Wi-Fi Operation Network access request, upgrades the Wi-Fi Operation Network that the Wi-Fi Operation Network stored shares described Wi-Fi Operation Network access authentication information in authentication information corresponding and can be accessed by duration.
5. a shared certificate server, is characterized in that, described shared certificate server comprises Wi-Fi share service module and database module; Wherein,
Described database module, the Wi-Fi Operation Network uploaded for storing the first mobile terminal shares authentication information; Described Wi-Fi Operation Network is shared authentication information and is comprised SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration;
Described Wi-Fi share service module, for receiving the Wi-Fi Operation Network access request of the second mobile terminal, in described database module, the SSID that SSID and Wi-Fi Operation Network access request corresponding to the Wi-Fi Operation Network access authentication information of retrieve stored is carried is consistent, and Wi-Fi Operation Network corresponding to Wi-Fi Operation Network access authentication information stored can be accessed by duration is not less than the Wi-Fi Operation Network request access duration that Wi-Fi Operation Network access request carries, the Wi-Fi Operation Network access authentication information obtained is that the Wi-Fi Operation Network meeting described Wi-Fi Operation Network access request shares authentication information, by the second mobile terminal access Wi-Fi Operation Network.
6. shared certificate server according to claim 5, is characterized in that,
Described Wi-Fi share service module, also for: can be accessed by duration for index with SSID and the Wi-Fi Operation Network received and set up list item in database module, preserve at described list item the mapping relations that described SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration.
7. the shared certificate server according to claim 5 or 6, it is characterized in that, described Wi-Fi share service module, also for the Wi-Fi Operation Network request access duration that carries according to Wi-Fi Operation Network access request, upgrade the Wi-Fi Operation Network that the Wi-Fi Operation Network stored shares described Wi-Fi Operation Network access authentication information in authentication information corresponding and can be accessed by duration.
8. WLAN (wireless local area network) shares a system for certification, it is characterized in that, this system comprises the first mobile terminal, the second mobile terminal and shared certificate server; Wherein,
Described first mobile terminal, shares authentication information for uploading Wi-Fi Operation Network to described shared certificate server; Described Wi-Fi Operation Network is shared authentication information and is comprised SSID, Wi-Fi Operation Network access authentication information and Wi-Fi Operation Network can be accessed by duration;
Described second mobile terminal, for sending Wi-Fi Operation Network access request to shared certificate server, utilizes the Wi-Fi Operation Network access authentication information access Wi-Fi Operation Network shared certificate server and return;
Described shared certificate server, the Wi-Fi Operation Network uploaded for storing the first mobile terminal shares authentication information, also for receiving the Wi-Fi Operation Network access request of the second mobile terminal, the SSID that SSID and Wi-Fi Operation Network access request corresponding to the Wi-Fi Operation Network access authentication information of retrieve stored is carried is consistent, and Wi-Fi Operation Network corresponding to Wi-Fi Operation Network access authentication information stored can be accessed by duration is not less than the Wi-Fi Operation Network request access duration that Wi-Fi Operation Network access request carries, the Wi-Fi Operation Network access authentication information obtained is that the Wi-Fi Operation Network meeting described Wi-Fi Operation Network access request shares authentication information, and the Wi-Fi Operation Network access authentication information retrieved is sent to the second mobile terminal.
9. system according to claim 8, it is characterized in that, described shared certificate server, also for the Wi-Fi Operation Network request access duration that carries according to Wi-Fi Operation Network access request, upgrades the Wi-Fi Operation Network that the Wi-Fi Operation Network stored shares described Wi-Fi Operation Network access authentication information in authentication information corresponding and can be accessed by duration.
CN201210487267.9A 2012-11-26 2012-11-26 Method, system and equipment for wireless local area network (WLAN) sharing authentication Active CN102970732B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201210487267.9A CN102970732B (en) 2012-11-26 2012-11-26 Method, system and equipment for wireless local area network (WLAN) sharing authentication
PCT/CN2013/081905 WO2013189389A2 (en) 2012-11-26 2013-08-20 Method, system and device for sharing authentication of wireless local area network

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201210487267.9A CN102970732B (en) 2012-11-26 2012-11-26 Method, system and equipment for wireless local area network (WLAN) sharing authentication

Publications (2)

Publication Number Publication Date
CN102970732A CN102970732A (en) 2013-03-13
CN102970732B true CN102970732B (en) 2015-06-10

Family

ID=47800524

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201210487267.9A Active CN102970732B (en) 2012-11-26 2012-11-26 Method, system and equipment for wireless local area network (WLAN) sharing authentication

Country Status (2)

Country Link
CN (1) CN102970732B (en)
WO (1) WO2013189389A2 (en)

Families Citing this family (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102970732B (en) * 2012-11-26 2015-06-10 中兴通讯股份有限公司 Method, system and equipment for wireless local area network (WLAN) sharing authentication
CN104113837A (en) * 2013-04-22 2014-10-22 中兴通讯股份有限公司 Method and device for access authentication of wireless local area network
CN103428725A (en) * 2013-08-08 2013-12-04 福州瑞芯微电子有限公司 Method and system for controlling data traffic on mobile device
US10575347B2 (en) * 2013-11-04 2020-02-25 Microsoft Technology Licensing, Llc Delivery of shared WiFi credentials
CN105745946B (en) * 2013-11-11 2019-10-18 索尼公司 Terminal device and information processing equipment
US9526032B2 (en) * 2014-09-26 2016-12-20 Apple Inc. Network bandwidth sharing for small mobile devices
CN105101433A (en) * 2015-07-02 2015-11-25 深圳平安通信科技有限公司 Control server, hotspot resource sharing control method and system
CN105007580B (en) * 2015-07-29 2018-03-02 上海斐讯数据通信技术有限公司 A kind of wireless network authentication method, system and a kind of electronic equipment
CN107846720A (en) * 2016-09-20 2018-03-27 上海掌门科技有限公司 For connecting the method and apparatus of WAP
CN108012270B (en) * 2017-12-27 2021-11-02 努比亚技术有限公司 Information processing method, equipment and computer readable storage medium
CN108521651B (en) * 2018-03-30 2022-04-22 上海尚往网络科技有限公司 Secondary authentication method of WiFi network
CN113068190A (en) * 2021-03-23 2021-07-02 Oppo广东移动通信有限公司 Information sharing method and device

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102111766A (en) * 2011-01-10 2011-06-29 中兴通讯股份有限公司 Network accessing method, device and system
CN102685750A (en) * 2012-06-12 2012-09-19 刘梦阳 Method for accessing wireless network, equipment and wireless network system

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100724882B1 (en) * 2005-02-18 2007-06-04 삼성전자주식회사 WLAN-3G interworking network structure with radio over fiber link
CN100479403C (en) * 2006-06-30 2009-04-15 华为技术有限公司 System and method for access external network of non-radio local network terminal
CN100448196C (en) * 2006-12-29 2008-12-31 西安西电捷通无线网络通信有限公司 WAPI-based wireless LAN operation method
TWI428049B (en) * 2011-04-15 2014-02-21 Realtek Semiconductor Corp Wlan access point sharing method
CN102970732B (en) * 2012-11-26 2015-06-10 中兴通讯股份有限公司 Method, system and equipment for wireless local area network (WLAN) sharing authentication

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102111766A (en) * 2011-01-10 2011-06-29 中兴通讯股份有限公司 Network accessing method, device and system
CN102685750A (en) * 2012-06-12 2012-09-19 刘梦阳 Method for accessing wireless network, equipment and wireless network system

Also Published As

Publication number Publication date
WO2013189389A3 (en) 2014-02-13
WO2013189389A2 (en) 2013-12-27
CN102970732A (en) 2013-03-13

Similar Documents

Publication Publication Date Title
CN102970732B (en) Method, system and equipment for wireless local area network (WLAN) sharing authentication
CN111052777B (en) Method and apparatus for supporting inter-device profile transfer in a wireless communication system
CN103746812B (en) A kind of access authentication method and system
CN105162748B (en) The processing of electronic user identification module application identifier
CN101895875B (en) Method and system of using gateway device to provide differentiated services in wireless network
KR20110042711A (en) Method and apparatus for providing service using personal network
CN106656547B (en) Method and device for updating network configuration of household electrical appliance
CN102695167B (en) Mobile subscriber identity management method and apparatus thereof
EP2394222B1 (en) Method for transmitting virtualized data in cloud computing environment
CN101656745B (en) Wireless communication device and system for realizing file sharing and file sharing method
JP5516591B2 (en) Base station, web application server, system and method
CN105306612A (en) Method for acquiring identifier of terminal in network and management network element
CN102833877B (en) A kind of Wi-Fi shares method and system
CN102428446A (en) Data backup system
CN102946591A (en) Method for instantly releasing information by utilizing WiFi (Wireless Fidelity)
JP2007005892A (en) Information distribution system, information distribution method, wireless lan terminal, information acquisition method of wireless lan terminal, and access point
CN102118831A (en) Wireless access method and device
CN105491093A (en) Terminal authentication method, network access methods, server, wireless access point and terminal
CN103401943A (en) Information sharing system and method based on WIFI
CN105530714A (en) MIFI communication service system and MIFI and communication method thereof
WO2010139147A1 (en) Mehtod and system for subscriber access, method and system for managing subscriber of closed subscriber group
CN103391527B (en) Implementation method, equipment and the system that in wireless access hotspot device, function is shared
CN101990218A (en) Access method, device, system and AAA server for home base station
WO2018007461A1 (en) Method, server and system for sending data from a source device to a destination device
CA2207651A1 (en) Information terminal

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant