CN103476031A - Control method and device for network permission - Google Patents
Control method and device for network permission Download PDFInfo
- Publication number
- CN103476031A CN103476031A CN201310347296XA CN201310347296A CN103476031A CN 103476031 A CN103476031 A CN 103476031A CN 201310347296X A CN201310347296X A CN 201310347296XA CN 201310347296 A CN201310347296 A CN 201310347296A CN 103476031 A CN103476031 A CN 103476031A
- Authority
- CN
- China
- Prior art keywords
- client
- network
- management device
- control server
- described client
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Small-Scale Networks (AREA)
Abstract
The invention discloses a control method and device for network permission. The control method for network permission comprises the following steps that: a client manager transmits client information to a center control server after affirming that the client is connected to a target network; the client manager receives the client information returned back by the center control server; and the client manager breaks the connection between the client and the target network. By the control method and the control device, after the client is connected to the target network, the center control server can determine whether the client has the access permission to the target network, and the client manager can select whether to break the connection between the client and the target network according to the determination of the center control server, thus through the judgment of the center control server, it can be ensured that the client connected to the target network have the access permission, and the security of network connection is improved.
Description
Technical field
The present invention relates to internet arena, in particular to a kind of control method and device of network legal power.
Background technology
Along with popularizing of wireless network application, various application systems are more and more to the use of wireless network, terminal equipment (for example notebook computer, handwritten computer or smart mobile phone etc.) can be connected to LAN and obtain Internet resources by wireless mode, and for example handwritten computer is wirelessly connected to LAN and carries out OA office operation, receiving and dispatching mail or session discussing of company etc.In the technology of wireless connections, not only need various terminal equipments can be securely connected to various application systems, but also need to distribute different wireless network access authorities according to the function privilege difference to the user in application system.
At present, the fail safe connected due to wireless network lacks necessary guarantee, and various application systems exist safety problem to wireless connections.
For the not high problem of network connection safety in prior art, effective solution is not yet proposed at present.
Summary of the invention
The invention provides a kind of control method and device of network legal power, at least to solve the not high problem of network connection safety in prior art.
To achieve these goals, according to an aspect of the present invention, provide a kind of control method of network legal power.
According to the control method of network legal power of the present invention, comprise: the client-side management device, after confirming that client is connected to objective network, is sent to control server by client-side information; The client-side management device receives the client-side information returned by control server; And the client-side management device disconnects being connected of client and objective network.
Further, before client-side information is sent to control server, said method also comprises: the client-side management device is set up and is connected with wireless network; The client-side management device obtains the identity information of wireless network; And the client-side management device judges according to the identity information of wireless network whether wireless network is objective network.
To achieve these goals, according to an aspect of the present invention, provide a kind of control device of network legal power, this device is for carrying out the control method of any one network legal power provided by the invention.
A kind of control device of network legal power is provided according to an aspect of the present invention.The control device of this network legal power comprises: transmitting element, for after confirming that client is connected to objective network, is sent to control server by client-side information; Receiving element, for receiving the client-side information returned by control server; And switching units, for disconnecting being connected of client and objective network.
Further, said apparatus also comprises: linkage unit, for wireless network, setting up and be connected; Acquiring unit, for obtaining the identity information of wireless network; And judging unit, judge for the identity information according to wireless network whether wireless network is objective network.
To achieve these goals, according to another aspect of the present invention, provide a kind of control method of network legal power.
According to the control method of network legal power of the present invention, comprise: control server receives the client-side information from the client-side management device; Control server determines according to client-side information the client that client-side information is corresponding; And control server determines according to the access rights of client whether the client-side management device disconnects being connected of client and objective network.
Further, control server determines according to the access rights of client whether the client-side management device disconnects client and comprise with being connected of objective network: when client does not possess access rights, control server is returned to client-side information to the client-side management device and is disconnected being connected of client and objective network to control the client-side management device.
Further, control server determines according to the access rights of client whether the client-side management device disconnects client and comprise with being connected of objective network: when client possesses access rights, control server permission client is connected with objective network.
To achieve these goals, according to another aspect of the present invention, provide a kind of control device of network legal power, this device is for carrying out the control method of any one network legal power provided by the invention.
A kind of control device of network legal power is provided according to another aspect of the present invention.The control device of this network legal power comprises: receiving element, for receiving the client-side information from the client-side management device; The first determining unit, for determining the client that client-side information is corresponding according to client-side information; And second determining unit, determine for the access rights according to client whether the client-side management device disconnects being connected of client and objective network.
Further, the second determining unit is also for when client possesses access rights, returns to client-side information to the client-side management device and disconnects being connected of client and objective network to control the client-side management device.
Further, the second determining unit is also for when client possesses access rights, and the permission client is connected with objective network.
By the present invention, due to after client is connected to objective network, control server can judge whether this client possesses the access rights of objective network, the client-side management device can select whether to disconnect being connected of client and objective network according to the judgement of control server, judgement by control server, can guarantee that the client that is connected to objective network possesses access rights, therefore solve the not high problem of network connection safety in the prior art, and then improved the fail safe that network connects.
The accompanying drawing explanation
The accompanying drawing that forms the application's a part is used to provide a further understanding of the present invention, and schematic description and description of the present invention the present invention does not form inappropriate limitation of the present invention for explaining.In the accompanying drawings:
Fig. 1 is the structured flowchart according to the control device of the network legal power of the embodiment of the present invention;
Fig. 2 is the structured flowchart according to the control device of the network legal power of the embodiment of the present invention;
Fig. 3 is the flow chart according to the control method of the network legal power of the embodiment of the present invention;
Fig. 4 is the flow chart according to the control method of the network legal power of the embodiment of the present invention;
Fig. 5 is the flow chart according to the control method of the network legal power of the embodiment of the present invention.
Embodiment
It should be noted that, in the situation that do not conflict, embodiment and the feature in embodiment in the application can combine mutually.Describe below with reference to the accompanying drawings and in conjunction with the embodiments the present invention in detail.
The embodiment of the present invention provides a kind of control device of network legal power, and this control device is applied in the client-side management device, below the control device of network legal power that the embodiment of the present invention is provided be introduced.
Fig. 1 is the structured flowchart according to the control device of the network legal power of the embodiment of the present invention.
As shown in Figure 1, the control device of this network legal power comprises transmitting element 11, receiving element 12 and switching units 13.
Transmitting element 11, for after confirming that client is connected to objective network, is sent to control server by client-side information.
The function of transmitter unit 11 can be realized by the reflector of control device.
Receiving element 12 is for receiving the client-side information returned by control server.
The function of receiving element 12 can be realized by the receiver of control device.
Switching units 13 is for disconnecting being connected of client and objective network.
The function of switching units 13 can be realized by the switch of control device.
In the present embodiment, due to after client is connected to objective network, control server can judge whether this client possesses the access rights of objective network, the client-side management device can select whether to disconnect being connected of client and objective network according to the judgement of control server, judgement by control server, can guarantee that the client that is connected to objective network possesses access rights, improve the fail safe that network connects.
In order to determine whether the network that client connects is objective network, preferably, above-mentioned control device also comprises linkage unit, acquiring unit and judging unit, linkage unit is for setting up and be connected with wireless network, acquiring unit is for obtaining the identity information of wireless network, and judging unit is for judging according to the identity information of wireless network whether wireless network is objective network.
The embodiment of the present invention provides a kind of control device of network legal power, and this control device is applied in control server, below the control device of network legal power that the embodiment of the present invention is provided be introduced.
Fig. 2 is the structured flowchart according to the control device of the network legal power of the embodiment of the present invention.
As shown in Figure 2, the control device of this network legal power comprises receiving element 21, the first determining unit 22 and the second determining unit 23.
Receiving element 21 is for receiving the client-side information from the client-side management device.
The function of receiving element 21 can realize by the receiver in control server.
The first determining unit 22 is for determining the client that client-side information is corresponding according to client-side information.
The function of the first determining unit 22 can realize by the chip in control server.
The second determining unit 23 determines for the access rights according to client whether the client-side management device disconnects being connected of client and objective network.
The function of the second determining unit 23 can realize by the chip in control server.
In the present embodiment, because control server can judge whether this client possesses the access rights of objective network, and whether notice client-side management device disconnects being connected of client and objective network, judgement by control server, can guarantee that the client that is connected to objective network possesses access rights, improve the fail safe that network connects.
Particularly, the second determining unit can also be for when client possess access rights, returns to client-side information to the client-side management device and disconnects being connected of client and objective network to control the client-side management device.
Further, the second determining unit can also be for when client possesses access rights, and the permission client is connected with objective network.
The embodiment of the present invention also provides a kind of control method of network legal power, and the method can be carried out based on the above-mentioned control device that is applied in the network legal power in the client-side management device.
Fig. 3 is the flow chart according to the control method of the network legal power of the embodiment of the present invention.
As shown in the figure, the control method of this network legal power comprises that following step S302 is to step S306.
Step S302, the client-side management device, after confirming that client is connected to objective network, is sent to control server by client-side information.
In order to determine that the network that client connects is objective network, before step S302, can also comprise the following steps: at first, the client-side management device is set up and is connected with wireless network, can be connected to WLAN by wifi in this step.
Then, the client-side management device obtains the identity information of wireless network, such as the SSID of WLAN and the relevant information of gateway etc.
Finally, the client-side management device judges according to the identity information of wireless network whether wireless network is objective network.
If the WLAN that client connects is not objective network does not carry out any operation, if the network connected is objective network, client-side information being sent to control server, particularly, can be client-side information to be sent to the network legal power authentication module of control server.
Step S304, the client-side management device receives the client-side information returned by control server.
When client does not have the access rights of linking objective network, control server can be back to client-side information the client-side management device.
Step S306, client-side management device disconnection client is connected with objective network.
The embodiment of the present invention also provides a kind of control method of network legal power, and the method can be carried out based on the above-mentioned control device that is applied in the network legal power in control server.
Fig. 4 is the flow chart according to the control method of the network legal power of the embodiment of the present invention.
As shown in Figure 4, the control method of this network legal power comprises that following step S402 is to step S406.
Step S402, control server receives the client-side information from the client-side management device.
Step S404, control server determines according to client-side information the client that client-side information is corresponding.
User corresponding to client information verification client that control server sends according to the client-side management device.
Step S406, control server determines according to the access rights of client whether the client-side management device disconnects being connected of client and objective network.
Particularly, when client does not possess access rights, control server is returned to client-side information to the client-side management device and is disconnected being connected of client and objective network to control the client-side management device.
If this user does not possess the authority of access destination network at this moment, control server turns back to the client terminal manager to this client-side information, the client terminal manager, after receiving the client-side information that control server returns, can disconnect the connection of client and objective network.
When client possesses access rights, control server permission client is connected with objective network.
If now the active user possesses this WLAN authority of access, can not carry out disconnection process to the client that is connected to objective network, but allow the connection between client and wireless network.
Fig. 5 is the flow chart according to the control method of the network legal power of the embodiment of the present invention.As shown in Figure 5, the method comprises the steps that S501 is to step S508.
Step S501, the client-side management device connects WLAN.
Step S502, the client-side management device obtains connected wireless local area network information, such as the SSID of WLAN and gateway relevant information etc.
Step S503, whether the network that the judgement of client-side management device connects is objective network.
Step S504, if the network connected is objective network, the client-side management device sends to control server to client-side information.
Step S505, the purview certification module in control server is according to the user of this client of client information verification.
Step S506, the purview certification module is carried out purview certification according to the authority of user in application system to the client that is connected to network.
Step S507, if this client does not possess the authority of linking objective network, middle section server is back to the client-side management device by client-side information.
Step S508, after the client-side management device is received the client-side information returned, the disconnection client is connected with objective network.
As can be seen from the above description, the present invention has realized following technique effect:
1, the network security of guarantee application system, the embodiment of the present invention does not need, by extra hardware net facility, user and client are carried out to control of authority, reaches the distribution network access rights of Intelligent Dynamic.
2, the embodiment of the present invention need not be carried out integratedly with network hardware facility, carries out dynamic assignment according to access rights fully, not only can ensure the network security of application system, and can greatly reduce the utilization rate of Internet resources.
It should be noted that, in the step shown in the flow chart of accompanying drawing, can in the computer system such as one group of computer executable instructions, carry out, and, although there is shown logical order in flow process, but in some cases, can carry out step shown or that describe with the order be different from herein.
Obviously, those skilled in the art should be understood that, above-mentioned each module of the present invention or each step can realize with general calculation element, they can concentrate on single calculation element, perhaps be distributed on the network that a plurality of calculation elements form, alternatively, they can be realized with the executable program code of calculation element, thereby, they can be stored in storage device and be carried out by calculation element, perhaps they are made into respectively to each integrated circuit modules, perhaps a plurality of modules in them or step being made into to the single integrated circuit module realizes.Like this, the present invention is not restricted to any specific hardware and software combination.
The foregoing is only the preferred embodiments of the present invention, be not limited to the present invention, for a person skilled in the art, the present invention can have various modifications and variations.Within the spirit and principles in the present invention all, any modification of doing, be equal to replacement, improvement etc., within all should being included in protection scope of the present invention.
Claims (10)
1. the control method of a network legal power, is characterized in that, comprising:
The client-side management device, after confirming that client is connected to objective network, is sent to control server by client-side information;
Described client-side management device receives the described client-side information returned by described control server; And
Described client-side management device disconnects being connected of described client and described objective network.
2. the control method of network legal power according to claim 1, is characterized in that, before client-side information is sent to control server, described method also comprises:
Described client-side management device is set up and is connected with wireless network;
Described client-side management device obtains the identity information of described wireless network; And
Described client-side management device judges according to the identity information of described wireless network whether described wireless network is objective network.
3. the control method of a network legal power, is characterized in that, comprising:
Control server receives the client-side information from the client-side management device;
Described control server determines according to described client-side information the client that described client-side information is corresponding; And
Described control server determines according to the access rights of described client whether described client-side management device disconnects being connected of described client and described objective network.
4. the control method of network legal power according to claim 3, is characterized in that, described control server determines according to the access rights of described client whether described client-side management device disconnects described client and comprise with being connected of described objective network:
When described client does not possess described access rights, described control server is returned to client-side information to described client-side management device and is disconnected being connected of described client and described objective network to control described client-side management device.
5. the control method of network legal power according to claim 3, is characterized in that, described control server determines according to the access rights of described client whether described client-side management device disconnects described client and comprise with being connected of described objective network:
When described client possesses described access rights, described control server allows being connected of described client and described objective network.
6. the control device of a network legal power, be applied to the client-side management device, it is characterized in that, comprising:
Transmitting element, for after confirming that client is connected to objective network, be sent to control server by client-side information;
Receiving element, for receiving the described client-side information returned by described control server; And
Switching units, for disconnecting being connected of described client and described objective network.
7. the control device of network legal power according to claim 6, is characterized in that, described device also comprises:
Linkage unit, for setting up and be connected with wireless network;
Acquiring unit, for obtaining the identity information of described wireless network; And
Judging unit, judge for the identity information according to described wireless network whether described wireless network is objective network.
8. the control device of a network legal power, be applied to control server, it is characterized in that, comprising:
Receiving element, for receiving the client-side information from the client-side management device;
The first determining unit, for determining according to described client-side information the client that described client-side information is corresponding; And
The second determining unit, determine for the access rights according to described client whether described client-side management device disconnects being connected of described client and described objective network.
9. the control device of network legal power according to claim 8, it is characterized in that, described the second determining unit is not also for when described client possesses described access rights, returns to client-side information to described client-side management device and disconnects being connected of described client and described objective network to control described client-side management device.
10. the control device of network legal power according to claim 8, is characterized in that, described the second determining unit is also for when described client possesses described access rights, allows being connected of described client and described objective network.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310347296.XA CN103476031B (en) | 2012-11-20 | 2013-08-09 | The control method of network legal power and device |
Applications Claiming Priority (4)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2012104727410 | 2012-11-20 | ||
| CN201210472741.0 | 2012-11-20 | ||
| CN2012104727410A CN102916981A (en) | 2012-11-20 | 2012-11-20 | Control method and control device for network permission |
| CN201310347296.XA CN103476031B (en) | 2012-11-20 | 2013-08-09 | The control method of network legal power and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103476031A true CN103476031A (en) | 2013-12-25 |
| CN103476031B CN103476031B (en) | 2017-03-01 |
Family
ID=47615215
Family Applications (2)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2012104727410A Withdrawn CN102916981A (en) | 2012-11-20 | 2012-11-20 | Control method and control device for network permission |
| CN201310347296.XA Expired - Fee Related CN103476031B (en) | 2012-11-20 | 2013-08-09 | The control method of network legal power and device |
Family Applications Before (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2012104727410A Withdrawn CN102916981A (en) | 2012-11-20 | 2012-11-20 | Control method and control device for network permission |
Country Status (1)
| Country | Link |
|---|---|
| CN (2) | CN102916981A (en) |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2005036852A1 (en) * | 2003-10-13 | 2005-04-21 | Nokia Corporation | Apparatuses and method for authentication in heterogeneuous ip networks |
| CN1794676A (en) * | 2005-08-12 | 2006-06-28 | 华为技术有限公司 | Method of user access radio communication network and radio network cut in control device |
| CN101378358A (en) * | 2008-09-19 | 2009-03-04 | 成都市华为赛门铁克科技有限公司 | Method, system and server for safety access control |
-
2012
- 2012-11-20 CN CN2012104727410A patent/CN102916981A/en not_active Withdrawn
-
2013
- 2013-08-09 CN CN201310347296.XA patent/CN103476031B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2005036852A1 (en) * | 2003-10-13 | 2005-04-21 | Nokia Corporation | Apparatuses and method for authentication in heterogeneuous ip networks |
| CN1794676A (en) * | 2005-08-12 | 2006-06-28 | 华为技术有限公司 | Method of user access radio communication network and radio network cut in control device |
| CN101378358A (en) * | 2008-09-19 | 2009-03-04 | 成都市华为赛门铁克科技有限公司 | Method, system and server for safety access control |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102916981A (en) | 2013-02-06 |
| CN103476031B (en) | 2017-03-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9197639B2 (en) | Method for sharing data of device in M2M communication and system therefor | |
| US7664952B2 (en) | Service verifying system, authentication requesting terminal, service utilizing terminal, and service providing method | |
| CN107528733B (en) | Management method of Internet of things and Internet of things system | |
| US20040255243A1 (en) | System for creating and editing mark up language forms and documents | |
| CN110139271A (en) | A kind of method, system and device that smart home device batch configuration networks | |
| EP2590367B1 (en) | Method for terminal access and wireless communication network | |
| CN105282868A (en) | System and Method for Temporarily Joining a WiFi Network | |
| US10602356B2 (en) | Methods and apparatus for end device discovering another end device | |
| WO2013186436A1 (en) | Mechanisms for certificate revocation status verification on constrained devices | |
| WO2018045983A1 (en) | Information processing method and device, and network system | |
| US9479916B2 (en) | Method and apparatus for providing access to local services and applications to multi-agency responders | |
| CN103384365B (en) | A kind of method for network access, method for processing business, system and equipment | |
| CN105530714B (en) | MIFI communications service system and its MIFI and communication means | |
| CN105813048A (en) | Method, apparatus and system for sharing flow | |
| CN105025548B (en) | A kind of the connection control method and device of SIM card | |
| CN104581728A (en) | Mobile terminal access control method and server | |
| CN108632355B (en) | Routing method for household appliance network, control terminal, readable storage medium and equipment | |
| CN102387537B (en) | Wireless network system and wireless access points thereof | |
| CN104285458A (en) | Wireless network access method, system and terminal | |
| CN105072666A (en) | WIFI hot spot connection control method, server, and WIFI hot spot | |
| CN105636025A (en) | Secure data transmission method and system | |
| CN104426874A (en) | Authentication method and authentication device applied to ubiquitous terminal network | |
| CN103476031A (en) | Control method and device for network permission | |
| KR20110102282A (en) | System and method for authentication terminal under black list authentication | |
| CN103220157B (en) | A kind of method and system of mobile terminal automatic shutdown |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20170301 Termination date: 20170809 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |