CN104518874A - Network access control method and system - Google Patents
Network access control method and system Download PDFInfo
- Publication number
- CN104518874A CN104518874A CN201310461292.4A CN201310461292A CN104518874A CN 104518874 A CN104518874 A CN 104518874A CN 201310461292 A CN201310461292 A CN 201310461292A CN 104518874 A CN104518874 A CN 104518874A
- Authority
- CN
- China
- Prior art keywords
- identification information
- unique identification
- equipment
- terminal equipment
- network management
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L47/00—Traffic control in data switching networks
- H04L47/70—Admission control; Resource allocation
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
- H04W12/069—Authentication using certificates or pre-shared keys
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/40—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks using virtualisation of network functions or resources, e.g. SDN or NFV entities
Abstract
The invention provides a network access control method. A terminal device transmits its own unique identifier to a security certification device; the security certification device certificates a digital certificate of the terminal device; after the digital certificate passes the certification, the unique identifier of the terminal device is certificated to determine whether or not the terminal device has a right of access. The invention further discloses a network access control system. The use of the method or the system ensures that the terminal gained access to the network has a valid identity, thus the access of the terminal to the network is safer and more legal and more key protocols are compatible.
Description
Technical field
The present invention relates to Network access control technology, particularly relate to a kind of access control method and system.Background technology
When wired and wireless network merge further, wireless base station is especially at forth generation (4G, Fourth Generation) Long Term Evolution (LTE, Long Term Evolution) epoch, in order to improve the coverage rate meeting numerous little base station of large scale deployment (Small Cell), return network (Backhaul) major part that Small Cell arrives core net is deployed in enterprise and user family, no longer through operator's dedicated bearing net, but select common transmission network to be connected to the core net of operator, like this, operator requires just very high to the access security of the SmallCell of access, unwarranted base station is not allowed to be linked into the core net of oneself.
For the safety certification of equipment; third generation partner program (3GPP; The3rd GenerationPartnership Project) recommendation IPSec(IP Security) communication security between technical protection base station to core net; and between base station and security gateway (SeGW, Security Gateway) identity identifying technology generally based on the certification of digital certificate.Although ipsec protocol can solve the demand of communicating pair authenticated encryption, can not digital certificate be solved stolen, then the scene of disguise as validated user access, like this, if someone usurps digital certificate, then can walk around security gateway access core net, carry out unwarranted access or attack.
Summary of the invention
In view of this, the main purpose of the embodiment of the present invention is to provide a kind of access control method and system, can improve fail safe and the legitimacy of accessing terminal to network, can also compatible more key protocol.
For achieving the above object, technical scheme of the present invention is achieved in that
The invention provides a kind of access control method, described method comprises:
The unique identification information of self is sent to safety certificate equipment by terminal equipment; Safety certificate equipment carries out the certification of digital certificate to terminal equipment; After digital certificate authentication passes through, certification is carried out to the unique identification information of terminal equipment, determine the access authority of described terminal.
In such scheme, before the unique identification information of self is sent to safety certificate equipment by described terminal equipment, described method also comprises: described Network Management Equipment batch stores the unique identification information of each legal terminal equipment, sets up unique identification information database.
In such scheme, the unique identification information of self sends to safety certificate equipment to be by described terminal equipment: the unique identification information of self is placed in IKE message and sends to safety certificate equipment by described terminal equipment.
In such scheme, the described unique identification information to terminal equipment carries out certification, determines the access authority of described terminal, comprising:
Described safety certificate equipment resolves the IKE message received, and obtains the unique identification information of terminal equipment in IKE message, and the unique identification information of acquisition is sent to Network Management Equipment; The unique identification information of each legal terminal equipment that the unique identification information received and self prestore by Network Management Equipment mates, and after the match is successful, confirms to allow described terminal equipment access network.
In such scheme, described unique identification information is equipment unique identifier (Device ID) and/or source IP address.
Present invention also offers a kind of network access control system, described system comprises: terminal equipment, safety certificate equipment and Network Management Equipment; Wherein,
Terminal equipment, for sending to safety certificate equipment by the unique identification information of self;
Safety certificate equipment, for carrying out the certification of digital certificate to terminal equipment;
Network Management Equipment, for carrying out certification to the unique identification information of terminal equipment, determines the access authority of terminal equipment.
In such scheme, described safety certificate equipment, also for receiving and resolving the unique identification information of terminal equipment, and sends to Network Management Equipment by the unique identification information parsed after confirmation digital certificate authentication passes through.
In such scheme, described Network Management Equipment, also stores the unique identification information of each legal terminal equipment, sets up unique identification information database for batch.
In such scheme, described Network Management Equipment, also for retrieving unique identification information database according to the unique identification information received, and the unique identification information received is mated with the unique identification information stored in unique identification information database, if the match is successful, then determine to allow described terminal equipment access network; Otherwise, determine to refuse described terminal equipment access network.
The access control method that the embodiment of the present invention provides and system, the unique identification information of self is sent to safety certificate equipment by terminal equipment, and safety certificate equipment carries out the certification of digital certificate to terminal equipment; After digital certificate authentication passes through, certification is carried out to the unique identification information of terminal equipment, determine the access authority of described terminal.So, the effective identity of the terminal of access network can be ensured, thus improve fail safe and the legitimacy of accessing terminal to network; And, IKE technology involved by the embodiment of the present invention, both can compatible Internet Key exchange agreement version 2 (IKEv2, Internet key exchange version2), again can compatible Internet Key exchange agreement version 1(IKEv1, Internet key exchange version1).
Accompanying drawing explanation
Fig. 1 is the basic realization flow schematic diagram of embodiment of the present invention access control method;
Fig. 2 is the realization flow schematic diagram of one embodiment of the invention access control method;
Fig. 3 is the realization flow schematic diagram of another embodiment of the present invention access control method;
Fig. 4 is the composition structural representation of embodiment of the present invention network access control system.
Embodiment
The basic thought of the embodiment of the present invention is: the unique identification information of self is sent to safety certificate equipment by terminal equipment; Safety certificate equipment carries out the certification of digital certificate to terminal equipment; After digital certificate authentication passes through, certification is carried out to the unique identification information of terminal equipment, determine the access authority of terminal equipment.
Concrete, the unique identification information of self can be placed in Internet Key exchange (IKE, Internet key exchange) message and send to safety certificate equipment by terminal equipment; Wherein, described IKE message can be the message of IKEv2 version;
The described unique identification information to terminal equipment carries out certification, determine that the access authority of terminal equipment comprises: safety certificate equipment resolves the IKE message received, obtain the unique identification information of the terminal equipment in IKE message, and the unique identification information of acquisition is sent to Network Management Equipment, the unique identification information of each legal terminal equipment this unique identification information and self prestored by Network Management Equipment mates, after the match is successful, confirm to allow this terminal equipment access network.
Wherein, described terminal equipment can be the little base station of wireless telecommunications (Small Cell); Described unique identification information can be equipment unique identifier (Device ID) and/or the source IP address of terminal equipment;
Described safety certificate equipment can be security gateway or high-end router; Described Network Management Equipment can be server or the computer possessing network management function.
Below in conjunction with drawings and the specific embodiments, the present invention is further described in detail again.
Fig. 1 is the basic realization flow figure of embodiment of the present invention access control method, and as shown in Figure 1, this access control method comprises:
Step 101: the unique identification information of self is sent to safety certificate equipment by terminal equipment;
Here, described unique identification information can comprise one or more, can be Device ID and/or source IP address;
Here, the unique identification information of self is sent to safety certificate equipment by described terminal equipment, is specially: the unique identification information of self is placed in IKE message and sends to safety certificate equipment by terminal equipment; Wherein, described IKE message can be the message of IKEv2 version in actual applications, also can be the message of IKEv1 version;
Before the unique identification information of self is sent to safety certificate equipment by described terminal equipment, the method also comprises: Network Management Equipment batch stores the unique identification information of each legal terminal equipment, set up unique identification information database, so that the follow-up terminal equipment to request access carries out the safety certification of unique identification information.
Here, described safety certificate equipment can be security gateway or high-end router; Described Network Management Equipment can be server or the computer possessing network management function; Described terminal equipment can be Small Cell.
Step 102: safety certificate equipment carries out the certification of digital certificate to terminal equipment; After digital certificate authentication passes through, certification is carried out to the unique identification information of terminal equipment, determine the access authority of terminal equipment;
Here, described safety certificate equipment to the certification that terminal equipment carries out digital certificate is: safety certificate equipment and terminal equipment carry out ike negotiation, first terminal equipment are carried out to the certification of digital certificate.
The described unique identification information to terminal equipment carries out certification, determine the access authority of terminal equipment, be specially: safety certificate equipment resolves the IKE message received, obtain the unique identification information of terminal equipment in IKE message, and the unique identification information of acquisition is sent to Network Management Equipment, the unique identification information of each legal terminal equipment this unique identification information and self prestored by Network Management Equipment mates, and after the match is successful, confirms to allow this terminal equipment access network.
Fig. 2 is the realization flow figure of one embodiment of the invention access control method, and in the present embodiment, described unique identification information is Device ID, and described terminal equipment is Small Cell, and described safety certificate equipment is security gateway; As shown in Figure 2, the present embodiment access control method comprises:
Step 201: Network Management Equipment batch stores the Device ID of each legal Small Cell, sets up unique identification information database;
Here, described Network Management Equipment can be server or the computer possessing network management function;
This step is the process carried out in advance, can before terminal equipment access network any moment carry out.
When step 202:Small Cell needs access network, the Device ID of self to be filled in IKE message and to send to security gateway;
Here, described being filled in IKE message by Device ID is: Device ID is filled up in the ID payload field in IKE message by the form recommended according to 3GPP, and wherein, described IKE message is at the message that can be IKEv2 version.
Step 203: security gateway and Small Cell carry out ike negotiation, first carries out the certification of digital certificate to described Small Cell, and judges whether certification is passed through, if certification is passed through, then performs step 204; Otherwise, perform step 208, terminate current handling process.
Step 204: security gateway parses Device ID from IKE message, and the DeviceID parsed is sent to Network Management Equipment;
Step 205 ~ 207: Network Management Equipment retrieval unique identification information database, the Device ID received is mated with the unique identification information stored in unique identification information database, judge that whether coupling is successful, if the match is successful, then determine that the access right of Small Cell is limited to and allow Small Cell core network access; Otherwise, determine that the access right of Small Cell is limited to refusal Small Cell core network access, and perform step 208, terminate current handling process.
The realization flow schematic diagram of Fig. 3 another embodiment of the present invention access control method, in the present embodiment, described unique identification information is Device ID and source IP address, and described terminal equipment is Small Cell, and described safety certificate equipment is security gateway; As shown in Figure 3, the method flow of this Network access control comprises:
Step 301: Network Management Equipment batch stores Device ID and the source IP address of each legal Small Cell, sets up unique identification information database;
Network Management Equipment described here can be server or the computer possessing network management function;
This step is the process carried out in advance, can before terminal equipment access network any moment carry out.
When step 302:Small Cell needs access network, the Device ID of self and source IP address to be filled in IKE message and to send to security gateway;
Here, described being filled in IKE message by Device ID is: Device ID is filled up in the ID payload field in IKE message by the form recommended according to 3GPP; Source IP address is filled in IKE message and be: source IP address is filled up to the source IP address field in IKE message by the form recommended according to 3GPP, and wherein, described IKE message is at the message that can be IKEv2 version.
Step 303: security gateway and Small Cell carry out ike negotiation, first carries out the certification of digital certificate, and judges whether that certification is passed through to described Small Cell, if certification is passed through, then perform step 304; Otherwise, perform step 308, terminate current handling process.
Step 304: security gateway parses Device ID and source IP address from IKE message, and the Device ID parsed and source IP address are sent to Network Management Equipment.
Step 305 ~ 307: Network Management Equipment retrieval unique identification information database, the Device ID received and source IP address are mated with the unique identification information stored in unique identification information database, judge whether that the match is successful, if the match is successful, then determine that the access right of Small Cell is limited to and allow Small Cell core network access; Otherwise, determine that the access right of Small Cell is limited to refusal Small Cell core network access, and perform step 308, terminate current handling process.
It should be noted that, the present invention can apply but be not limited to the multiple communication scenes of Small Cell, and ADSL (Asymmetric Digital Subscriber Line) (ADSL, the Asymmetric Digital SubscriberLine) application scenarios etc. for broadband access is suitable for equally.
Fig. 4 is the composition structural representation of embodiment of the present invention network access control system, and as shown in Figure 4, this network access control system comprises: terminal equipment 40, safety certificate equipment 41 and Network Management Equipment 42; Wherein,
Terminal equipment 40, for sending to safety certificate equipment 41 by the unique identification information of self;
Here, be sent as described in: the unique identification information of self is filled in IKE message and sends;
Safety certificate equipment 41, for carrying out the certification of digital certificate to terminal equipment 40;
Network Management Equipment 42, for carrying out certification to the unique identification information of terminal equipment 40, determines the access authority of terminal equipment 40.
Further, described safety certificate equipment 41, also for receiving and resolving the unique identification information of terminal equipment 40, and sends to Network Management Equipment 42 by the unique identification information parsed after confirmation digital certificate authentication passes through;
Described safety certificate equipment 41, also for carrying out ike negotiation with terminal equipment 40.
Described Network Management Equipment 42, also stores the unique identification information of each legal terminal equipment, sets up unique identification information database for batch.
Described Network Management Equipment 42, also for retrieving unique identification information database according to the unique identification information received, and the unique identification information received is mated with the unique identification information stored in unique identification information database, if the match is successful, then determine to allow terminal equipment access network; Otherwise, determine to refuse terminal equipment access network;
Wherein, described unique identification information can be Device ID and/or source IP address; Described safety certificate equipment can be security gateway or high-end router; Described Network Management Equipment can be server or the computer possessing network management function; Described terminal equipment can be Small Cell.
The above, be only preferred embodiment of the present invention, be not intended to limit protection scope of the present invention.
Claims (10)
1. an access control method, is characterized in that, described method comprises:
The unique identification information of self is sent to safety certificate equipment by terminal equipment;
Safety certificate equipment carries out the certification of digital certificate to terminal equipment;
After digital certificate authentication passes through, certification is carried out to the unique identification information of terminal equipment, determine the access authority of described terminal.
2. method according to claim 1, it is characterized in that, before the unique identification information of self is sent to safety certificate equipment by described terminal equipment, described method also comprises: described Network Management Equipment batch stores the unique identification information of each legal terminal equipment, sets up unique identification information database.
3. method according to claim 1, is characterized in that, the unique identification information of self sends to safety certificate equipment to be by described terminal equipment: the unique identification information of self is placed in IKE message and sends to safety certificate equipment by described terminal equipment.
4. method according to claim 3, it is characterized in that, the described unique identification information to terminal equipment carries out certification, determines the access authority of described terminal, comprising:
Described safety certificate equipment resolves the IKE message received, and obtains the unique identification information of terminal equipment in IKE message, and the unique identification information of acquisition is sent to Network Management Equipment; The unique identification information of each legal terminal equipment that the unique identification information received and self prestore by Network Management Equipment mates, and after the match is successful, confirms to allow described terminal equipment access network.
5. method according to any one of Claims 1-4, is characterized in that, described unique identification information is equipment unique identifier (Device ID) and/or source IP address.
6. a network access control system, is characterized in that, described system comprises: terminal equipment, safety certificate equipment and Network Management Equipment; Wherein,
Terminal equipment, for sending to safety certificate equipment by the unique identification information of self;
Safety certificate equipment, for carrying out the certification of digital certificate to terminal equipment;
Network Management Equipment, for carrying out certification to the unique identification information of terminal equipment, determines the access authority of terminal equipment.
7. system according to claim 6, is characterized in that, described safety certificate equipment, also for receiving and resolving the unique identification information of terminal equipment, and after confirmation digital certificate authentication passes through, the unique identification information parsed is sent to Network Management Equipment.
8. system according to claim 6, is characterized in that, described Network Management Equipment, also stores the unique identification information of each legal terminal equipment for batch, sets up unique identification information database.
9. system according to claim 8, it is characterized in that, described Network Management Equipment, also for retrieving unique identification information database according to the unique identification information received, and the unique identification information received is mated with the unique identification information stored in unique identification information database, if the match is successful, then determine to allow described terminal equipment access network; Otherwise, determine to refuse described terminal equipment access network.
10. system according to any one of claim 6 to 9, is characterized in that, described unique identification information is Device ID and/or source IP address.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310461292.4A CN104518874A (en) | 2013-09-26 | 2013-09-26 | Network access control method and system |
| PCT/CN2014/079248 WO2014177106A1 (en) | 2013-09-26 | 2014-06-05 | Network access control method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310461292.4A CN104518874A (en) | 2013-09-26 | 2013-09-26 | Network access control method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104518874A true CN104518874A (en) | 2015-04-15 |
Family
ID=51843180
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310461292.4A Pending CN104518874A (en) | 2013-09-26 | 2013-09-26 | Network access control method and system |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN104518874A (en) |
| WO (1) | WO2014177106A1 (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106454836A (en) * | 2015-08-06 | 2017-02-22 | 中兴通讯股份有限公司 | Method and device for enhancing use security of equipment certificate |
| CN106603461A (en) * | 2015-10-14 | 2017-04-26 | 阿里巴巴集团控股有限公司 | Business authentication method, apparatus and system |
| CN109379354A (en) * | 2018-10-10 | 2019-02-22 | 小雅智能平台(深圳)有限公司 | A kind of methods, devices and systems for binding smart machine |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105847234B (en) * | 2016-03-11 | 2018-11-20 | 中国联合网络通信集团有限公司 | Suspicious terminal access method for early warning, gateway management platform and gateway |
| CN115086085B (en) * | 2022-08-19 | 2023-01-10 | 南京华盾电力信息安全测评有限公司 | New energy platform terminal security access authentication method and system |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN200941622Y (en) * | 2006-06-19 | 2007-08-29 | 福建星网锐捷网络有限公司 | Network authentication authorization system and used exchanger thereof |
| CN101064611A (en) * | 2006-04-24 | 2007-10-31 | 维豪信息技术有限公司 | Application integration method based on register and call control |
| CN101656738A (en) * | 2009-09-22 | 2010-02-24 | 中兴通讯股份有限公司 | Method and device for verifying terminal accessed to network |
| CN102984173A (en) * | 2012-12-13 | 2013-03-20 | 迈普通信技术股份有限公司 | Network access control method and system |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1863048B (en) * | 2005-05-11 | 2012-04-11 | 中兴通讯股份有限公司 | Method of internet key exchange consultation between user and cut-in apparatus |
| WO2013109417A2 (en) * | 2012-01-18 | 2013-07-25 | Zte Corporation | Notarized ike-client identity and info via ike configuration payload support |
-
2013
- 2013-09-26 CN CN201310461292.4A patent/CN104518874A/en active Pending
-
2014
- 2014-06-05 WO PCT/CN2014/079248 patent/WO2014177106A1/en active Application Filing
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101064611A (en) * | 2006-04-24 | 2007-10-31 | 维豪信息技术有限公司 | Application integration method based on register and call control |
| CN200941622Y (en) * | 2006-06-19 | 2007-08-29 | 福建星网锐捷网络有限公司 | Network authentication authorization system and used exchanger thereof |
| CN101656738A (en) * | 2009-09-22 | 2010-02-24 | 中兴通讯股份有限公司 | Method and device for verifying terminal accessed to network |
| CN102984173A (en) * | 2012-12-13 | 2013-03-20 | 迈普通信技术股份有限公司 | Network access control method and system |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106454836A (en) * | 2015-08-06 | 2017-02-22 | 中兴通讯股份有限公司 | Method and device for enhancing use security of equipment certificate |
| CN106603461A (en) * | 2015-10-14 | 2017-04-26 | 阿里巴巴集团控股有限公司 | Business authentication method, apparatus and system |
| CN109379354A (en) * | 2018-10-10 | 2019-02-22 | 小雅智能平台(深圳)有限公司 | A kind of methods, devices and systems for binding smart machine |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2014177106A1 (en) | 2014-11-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110800331B (en) | Network verification method, related equipment and system | |
| KR102315881B1 (en) | Mutual authentication between user equipment and an evolved packet core | |
| US10003965B2 (en) | Subscriber profile transfer method, subscriber profile transfer system, and user equipment | |
| EP3082354B1 (en) | Location privacy protection methods and devices | |
| JP6632713B2 (en) | Method and apparatus for establishing a direct communication key | |
| CN100454876C (en) | Method for applying for certificate in wireless LAN WAPI safety mechanism | |
| JP5364796B2 (en) | Encryption information transmission terminal | |
| KR102100159B1 (en) | Security supporting method and system for service discovery and group communication in mobile telecommunication system environment | |
| CN113596828A (en) | End-to-end service layer authentication | |
| CN109831783B (en) | Method and system for opening micro base station | |
| CN105307108A (en) | Internet of things information interactive communication method and system | |
| EP2432265A1 (en) | Method and apparatus for sending a key on a wireless local area network | |
| CN105577680A (en) | Key generation method, encrypted data analyzing method, devices and key managing center | |
| KR20120091635A (en) | Authentication method and apparatus in wireless communication system | |
| KR20150051568A (en) | Security supporting method and system for proximity based service device to device discovery and communication in mobile telecommunication system environment | |
| CN103973658A (en) | Static user terminal authentication processing method and device | |
| CN102547701A (en) | Authentication method and wireless access point as well as authentication server | |
| CN108243413B (en) | Method and system for wireless access to railway information network | |
| CN102611597A (en) | Method for accessing internet through broadband in free of inputting account and password in different family environments | |
| CN104518874A (en) | Network access control method and system | |
| KR20080086127A (en) | A method and apparatus of security and authentication for mobile telecommunication system | |
| WO2018000867A1 (en) | Method and apparatus for configuring key and determining security policy | |
| CN102143492B (en) | Method for establishing virtual private network (VPN) connection, mobile terminal and server | |
| CN103297968A (en) | Wireless terminal identifying method, wireless terminal identifying device and wireless terminal identifying system | |
| WO2016109609A1 (en) | System and method for providing authenticated communications from a remote device to a local device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20150415 |