CN104540127A - Anti-free-network-use router access network right control method based on dynamic two-dimensional code - Google Patents
Anti-free-network-use router access network right control method based on dynamic two-dimensional code Download PDFInfo
- Publication number
- CN104540127A CN104540127A CN201410746626.7A CN201410746626A CN104540127A CN 104540127 A CN104540127 A CN 104540127A CN 201410746626 A CN201410746626 A CN 201410746626A CN 104540127 A CN104540127 A CN 104540127A
- Authority
- CN
- China
- Prior art keywords
- access
- network
- accessed
- router
- equipment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W24/00—Supervisory, monitoring or testing arrangements
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06K—GRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
- G06K19/00—Record carriers for use with machines and with at least a part designed to carry digital markings
- G06K19/06—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
- G06K19/06009—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code with optically detectable marking
- G06K19/06037—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code with optically detectable marking multi-dimensional coding
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer And Data Communications (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention relates to an anti-free-network-use router access network right control method based on a dynamic two-dimensional code. A router is provided with a router connection control unit and an authentication service unit. The method is characterized by including the steps that first, after HTTP connection is established between a device to have access to a network and the router connection control unit, the authentication service unit generates a two-dimensional code image and sends the two-dimensional code image to a two-dimensional code display device; second, after the device to have access to the network scans the two-dimensional code image on the two-dimensional code display device and performs decoding, the device to have access to the network sends original two-dimensional code information back to the authentication service unit; third, the device to have access to the network sends authentication information to the authentication service unit which performs authentication on the device to have access to the network, network access right is awarded to the device, passing the authentication, to have access to the network, and the router connection control unit controls the device to have access to the network to have access to the network.
Description
Technical field
The present invention relates to and a kind ofly rub network router access network authority control method based on the anti-of dynamic two-dimension code.
Background technology
Along with the development of Internet technology, people get more and more for the demand of network.In order to the demand of satisfied masses, it is for people to use that a lot of public place is provided with WIFI.While facilitating masses, also bringing one is side effect.Such as, in public place such as some restaurant or airports etc., after the network that people connect, username and password can be kept in connection device.Like this, some people often will arrive these places and rub net, if the network traffics taken are large, can have a strong impact on the normal operation in these public places.
Summary of the invention
The object of the invention is that providing a kind of rubs network router access network authority control method based on the anti-of dynamic two-dimension code, effectively can solve lack of competence user and rub net problem.
Realize the object of the invention technical scheme:
Rub a network router access network authority control method based on the anti-of dynamic two-dimension code, router has router connection control unit and authentication service unit, it is characterized in that:
Step 1: equipment to be accessed and router connection control unit are set up after HTTP is connected, and authentication service unit generates image in 2 D code, and image in 2 D code is sent to two dimensional code display device;
Step 2: after the image in 2 D code on device scan two dimensional code display device to be accessed is also decoded, by the Quick Response Code raw information loopback of acquisition to authentication service unit;
Step 3: equipment to be accessed sends authentication information to authentication service unit, authentication service unit is treated access device and is carried out certification, and the authority to the equipment granted access network to be accessed by certification, router connection control unit controls equipment access network to be accessed.
After equipment access, the network access time length of router to access device judges, regains the network access authority exceeding setting access duration access device, and deletes access device information.
In step 1, equipment to be accessed and router connection control unit are set up after HTTP is connected, and router connection control unit sends link information to authentication service unit; Authentication service unit produces the random number of a n position, using the URL address of the checking page and the n position random number that produces as input, generates image in 2 D code.
In step 2, after image in 2 D code on device scan two dimensional code display device to be accessed is also decoded, obtain Quick Response Code raw information comprise random number and checking the page authentication authorization and accounting address, URL address, equipment to be accessed by Quick Response Code raw information with the loopback of POST mode to authentication service unit.
In step 3, equipment to be accessed is according to the authenticating address obtained, the webpage that device navigator to be accessed is accessed is directed to authenticating address, under certification page, obtain the random number in Quick Response Code raw information by GET mode, then send to authentication service unit to carry out certification the random number authentication authorization and accounting information received.
In step 3, first router carries out device authentication according to the MAC Address of equipment to be accessed, if this equipment has permanent access rights, then without the need to continuing checking.
The beneficial effect that the present invention has:
The present invention's equipment to be accessed and router connection control unit are set up after HTTP is connected, and authentication service unit generates image in 2 D code, and image in 2 D code is sent to two dimensional code display device; After image in 2 D code on device scan two dimensional code display device to be accessed is also decoded, by the Quick Response Code raw information loopback of acquisition to authentication service unit; Equipment to be accessed sends authentication information to authentication service unit, and authentication service unit is treated access device and carried out certification, and the authority to the equipment granted access network to be accessed by certification, router connection control unit controls equipment access network to be accessed.The present invention does not need by other special algorithm and agreement, and can realize preventing from rubbing net, method is simple.
The present invention's equipment to be accessed and router connection control unit are set up after HTTP is connected, and router connection control unit sends link information to authentication service unit; Authentication service unit produces the random number of a n position, using the URL address of the checking page and the n position random number that produces as input, generates image in 2 D code.The present invention utilizes planar bar code technology to encapsulate and fills the random number of unit generation and the URL address of certification page by authentication service, and the method such as copy two-dimension code image or photograph etc. that effectively prevent obtains couple in router authority.
After present device access, the network access time length of router to access device judges, regain the network access authority exceeding setting access duration access device, and delete access device information, effectively management can be realized to the online duration of access device.
Accompanying drawing explanation
Accompanying drawing is inventive method theory diagram of the present invention.
Embodiment
As shown in the figure, router has router connection control unit and authentication service unit, and the anti-network router access network authority control method that rubs that the present invention is based on dynamic two-dimension code comprises the steps:
Step 1: equipment to be accessed and router connection control unit are set up after HTTP is connected, and authentication service unit generates image in 2 D code, and image in 2 D code is sent to two dimensional code display device;
Equipment to be accessed can scan neighbouring wireless network, if after scanning, HTTP can be set up by Intranet with the router connection control device controlling wireless network to be connected, equipment to be accessed and router connection control unit are set up after HTTP is connected, and router connection control unit sends link information to authentication service unit; Authentication service unit produces the random number (comprising numeral and letter) of a n position, and utilize QR encoding mechanism that the URL information of n position random number and the checking page is changed into 0 and 1 bit stream, and use the data message of certain specific geometric figure record 0 and 1, generate image in 2 D code.Two dimensional code display device is set up a HTTP as equipment to be accessed and authentication service unit and is connected, when display unit clicks the refresh button in Web page, the dynamic page that image in 2 D code is embedded into by authentication service unit is sent on two dimensional code display device as data.Two dimensional code display device resolves the dynamic page data message received, and the image in 2 D code wherein comprised is presented at the middle position of display screen.
Step 2: after the image in 2 D code on device scan two dimensional code display device to be accessed is also decoded, by the Quick Response Code raw information loopback of acquisition to authentication service unit;
Equipment to be accessed starts decoding software by driving, and makes the camera of equipment to be accessed aim at the position of Quick Response Code, utilizing the infrared probe of decoding software to capture the image of Quick Response Code, being automatically identified as original data by being coded in 0 and 1 information in Quick Response Code.After having decoded, equipment to be accessed gets raw information in Quick Response Code, raw information comprises the authentication authorization and accounting address, URL address of random number and the checking page, the HTTP that equipment utilization to be accessed is set up with authentication service unit is connected, by the raw information in Quick Response Code with the mode loopback of POST to authentication service unit.
Step 3: equipment to be accessed sends authentication information to authentication service unit, authentication service unit is treated access device and is carried out certification, and the authority to the equipment granted access network to be accessed by certification, router connection control unit controls equipment access network to be accessed.
Equipment utilization decoding software scanning Quick Response Code to be accessed, obtains the authenticating address of router, the webpage that device navigator to be accessed is accessed is directed to authenticating address, is redirected to certification page by NAT mode.Router carries out device authentication according to the MAC Address of equipment to be accessed, if this equipment has permanent access rights, then without the need to continuing checking.If this equipment does not have permanent access rights, then connectivity verification work is carried out to this equipment.Certification page obtains the random number comprised in Quick Response Code by GET mode, and this random number is filled in the receiving position of specifying.Certification page is set up Web by HTTP mode with authentication service device and is connected, and sends to authentication service unit to carry out certification the random train received.The random train A* preserved in the random train A received and array compares by authentication service unit, if two random trains are equal, so certification is passed through, after authentication success, router connection control unit can to router connection control unit successful connection order, access device information and link information are added in " router white list ", routing link monitor performs this event of process, and start DHCP to go to obtain IP address, then radio network Status Change message, finally change state and interface information, access device obtains the authority of accesses network.Equipment to be accessed obtains network legal power, and is joined by the facility information (IP address of equipment, device mac address and equipment log in initial time) of this access device system " allowing access client list ".Authentication service unit produces new random train simultaneously, waits for the connection of next user; If the unequal words of A and A*, then authentication service unit can return to access device and log in the wrong page, and equipment to be accessed carries out rescaning connection.
After equipment access, the network access time length of router to access device judges, regains the network access authority exceeding setting access duration access device, and deletes access device information.Consider that access device initiatively rolls off the production line and access device logs in duration and expires and be forced to the two kinds of situations that roll off the production line.When access device initiatively rolls off the production line, when router detection disconnects to access device and router device, then in " allowing access client list ", delete the access credentials information of access device.Be forced to the situation of rolling off the production line, after connection device authentication success, router obtains the random symbol mark of access device, sends to authentication service unit to verify the information (IP address of equipment, device mac address and equipment log in initial time) of random identification and connection.According to the value that authentication service unit returns, judge whether this equipment has the authority continuing to connect.If authority expires, then this equipment is rejected and roll off the production line, and by the information deletion of this equipment in " allowing access client list ".
Claims (6)
1. rub a network router access network authority control method based on the anti-of dynamic two-dimension code, router has router connection control unit and authentication service unit, it is characterized in that:
Step 1: equipment to be accessed and router connection control unit are set up after HTTP is connected, and authentication service unit generates image in 2 D code, and image in 2 D code is sent to two dimensional code display device;
Step 2: after the image in 2 D code on device scan two dimensional code display device to be accessed is also decoded, by the Quick Response Code raw information loopback of acquisition to authentication service unit;
Step 3: equipment to be accessed sends authentication information to authentication service unit, authentication service unit is treated access device and is carried out certification, and the authority to the equipment granted access network to be accessed by certification, router connection control unit controls equipment access network to be accessed.
2. according to claim 1ly rub network router access network authority control method based on the anti-of dynamic two-dimension code, it is characterized in that: after equipment access, the network access time length of router to access device judges, regain the network access authority exceeding setting access duration access device, and delete access device information.
3. according to claim 2ly rub network router access network authority control method based on the anti-of dynamic two-dimension code, it is characterized in that: in step 1, equipment to be accessed and router connection control unit are set up after HTTP is connected, and router connection control unit sends link information to authentication service unit; Authentication service unit produces the random number of a n position, using the URL address of the checking page and the n position random number that produces as input, generates image in 2 D code.
4. according to claim 3ly rub network router access network authority control method based on the anti-of dynamic two-dimension code, it is characterized in that: in step 2, after image in 2 D code on device scan two dimensional code display device to be accessed is also decoded, obtain Quick Response Code raw information comprise random number and checking the page authentication authorization and accounting address, URL address, equipment to be accessed by Quick Response Code raw information with the loopback of POST mode to authentication service unit.
5. according to claim 4ly described rub network router access network authority control method based on the anti-of dynamic two-dimension code, it is characterized in that: in step 3, equipment to be accessed is according to the authenticating address obtained, the webpage that device navigator to be accessed is accessed is directed to authenticating address, under certification page, obtain the random number in Quick Response Code raw information by GET mode, then send to authentication service unit to carry out certification the random number authentication authorization and accounting information received.
6. according to claim 5ly described rub network router access network authority control method based on the anti-of dynamic two-dimension code, it is characterized in that: in step 3, first router carries out device authentication according to the MAC Address of equipment to be accessed, if this equipment has permanent access rights, then without the need to continuing checking.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410746626.7A CN104540127A (en) | 2014-12-08 | 2014-12-08 | Anti-free-network-use router access network right control method based on dynamic two-dimensional code |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410746626.7A CN104540127A (en) | 2014-12-08 | 2014-12-08 | Anti-free-network-use router access network right control method based on dynamic two-dimensional code |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104540127A true CN104540127A (en) | 2015-04-22 |
Family
ID=52855562
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410746626.7A Pending CN104540127A (en) | 2014-12-08 | 2014-12-08 | Anti-free-network-use router access network right control method based on dynamic two-dimensional code |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104540127A (en) |
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105227561A (en) * | 2015-10-14 | 2016-01-06 | 上海斐讯数据通信技术有限公司 | A kind of network access authentication is anti-rubs network method and device |
| CN105263193A (en) * | 2015-09-11 | 2016-01-20 | 上海斐讯数据通信技术有限公司 | WIFI connection method and system for mobile terminal |
| CN105873051A (en) * | 2016-03-28 | 2016-08-17 | 深圳市双赢伟业科技股份有限公司 | Display method and device for router password |
| CN106130977A (en) * | 2016-06-27 | 2016-11-16 | 上海斐讯数据通信技术有限公司 | The connection control method of a kind of wireless router and wireless router |
| CN106385114A (en) * | 2016-10-31 | 2017-02-08 | 上海斐讯数据通信技术有限公司 | Wireless charging method of router through charging permission acquisition based on dynamic two-dimensional code |
| CN106934644A (en) * | 2015-12-29 | 2017-07-07 | 成都英黎科技有限公司 | A kind of method and system of passive dynamic two-dimension code location coding checking |
| CN107294995A (en) * | 2017-07-06 | 2017-10-24 | 上海斐讯数据通信技术有限公司 | Prevent application authentication method and system, the radio reception device of Portal ejections |
| CN107396319A (en) * | 2017-09-01 | 2017-11-24 | 深圳回收宝科技有限公司 | A kind of method of wireless network authentication, equipment, storage medium and terminal reclaimer |
| WO2018036220A1 (en) * | 2016-08-24 | 2018-03-01 | 上海斐讯数据通信技术有限公司 | Authority authentication method and system for accessing wireless device |
| CN109219045A (en) * | 2018-09-17 | 2019-01-15 | 北京奇艺世纪科技有限公司 | A kind of router connection method, device, electronic equipment and system |
| CN109313827A (en) * | 2018-08-28 | 2019-02-05 | 深圳大学 | Classroom is registered method, apparatus, terminal and storage medium |
| CN113741330A (en) * | 2021-09-08 | 2021-12-03 | 珠海格力电器股份有限公司 | Networking safety verification system and method based on PLC power line communication technology |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102801724A (en) * | 2012-08-09 | 2012-11-28 | 长城瑞通(北京)科技有限公司 | Identity authentication method combining graphic image with dynamic password |
| CN102932793A (en) * | 2012-11-15 | 2013-02-13 | 北京易和迅科技有限公司 | Wireless network authentication method and system based on two-dimension code |
| CN103428203A (en) * | 2013-07-24 | 2013-12-04 | 福建星网锐捷网络有限公司 | Access control method and device |
| CN103745151A (en) * | 2014-01-08 | 2014-04-23 | 杭州晟元芯片技术有限公司 | System and method for authenticating identity through combination of two-dimension codes and dynamic passwords |
| CN103796278A (en) * | 2014-02-27 | 2014-05-14 | 成都悟空科技有限公司 | Mobile terminal wireless network access control method |
| CN103973448A (en) * | 2014-04-22 | 2014-08-06 | 贵州中科汉天下电子有限公司 | Operating authorization method and system based on dynamic two-dimensional code |
| CN104008325A (en) * | 2014-05-09 | 2014-08-27 | 武汉世纪金桥安全技术有限公司 | Mobile phone Wi-Fi network-connecting real name identity authentication platform and method based on two-dimension codes |
| CN104144419A (en) * | 2014-01-24 | 2014-11-12 | 腾讯科技(深圳)有限公司 | Identity authentication method, device and system |
-
2014
- 2014-12-08 CN CN201410746626.7A patent/CN104540127A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102801724A (en) * | 2012-08-09 | 2012-11-28 | 长城瑞通(北京)科技有限公司 | Identity authentication method combining graphic image with dynamic password |
| CN102932793A (en) * | 2012-11-15 | 2013-02-13 | 北京易和迅科技有限公司 | Wireless network authentication method and system based on two-dimension code |
| CN103428203A (en) * | 2013-07-24 | 2013-12-04 | 福建星网锐捷网络有限公司 | Access control method and device |
| CN103745151A (en) * | 2014-01-08 | 2014-04-23 | 杭州晟元芯片技术有限公司 | System and method for authenticating identity through combination of two-dimension codes and dynamic passwords |
| CN104144419A (en) * | 2014-01-24 | 2014-11-12 | 腾讯科技(深圳)有限公司 | Identity authentication method, device and system |
| CN103796278A (en) * | 2014-02-27 | 2014-05-14 | 成都悟空科技有限公司 | Mobile terminal wireless network access control method |
| CN103973448A (en) * | 2014-04-22 | 2014-08-06 | 贵州中科汉天下电子有限公司 | Operating authorization method and system based on dynamic two-dimensional code |
| CN104008325A (en) * | 2014-05-09 | 2014-08-27 | 武汉世纪金桥安全技术有限公司 | Mobile phone Wi-Fi network-connecting real name identity authentication platform and method based on two-dimension codes |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105263193A (en) * | 2015-09-11 | 2016-01-20 | 上海斐讯数据通信技术有限公司 | WIFI connection method and system for mobile terminal |
| CN105263193B (en) * | 2015-09-11 | 2018-09-28 | 上海斐讯数据通信技术有限公司 | The WIFI connection methods of mobile terminal and system |
| CN105227561A (en) * | 2015-10-14 | 2016-01-06 | 上海斐讯数据通信技术有限公司 | A kind of network access authentication is anti-rubs network method and device |
| CN106934644A (en) * | 2015-12-29 | 2017-07-07 | 成都英黎科技有限公司 | A kind of method and system of passive dynamic two-dimension code location coding checking |
| CN105873051A (en) * | 2016-03-28 | 2016-08-17 | 深圳市双赢伟业科技股份有限公司 | Display method and device for router password |
| CN106130977A (en) * | 2016-06-27 | 2016-11-16 | 上海斐讯数据通信技术有限公司 | The connection control method of a kind of wireless router and wireless router |
| WO2018036220A1 (en) * | 2016-08-24 | 2018-03-01 | 上海斐讯数据通信技术有限公司 | Authority authentication method and system for accessing wireless device |
| CN106385114A (en) * | 2016-10-31 | 2017-02-08 | 上海斐讯数据通信技术有限公司 | Wireless charging method of router through charging permission acquisition based on dynamic two-dimensional code |
| CN107294995A (en) * | 2017-07-06 | 2017-10-24 | 上海斐讯数据通信技术有限公司 | Prevent application authentication method and system, the radio reception device of Portal ejections |
| CN107396319A (en) * | 2017-09-01 | 2017-11-24 | 深圳回收宝科技有限公司 | A kind of method of wireless network authentication, equipment, storage medium and terminal reclaimer |
| CN107396319B (en) * | 2017-09-01 | 2019-09-20 | 深圳回收宝科技有限公司 | A kind of method of wireless network authentication, equipment, storage medium and terminal reclaimer |
| CN109313827A (en) * | 2018-08-28 | 2019-02-05 | 深圳大学 | Classroom is registered method, apparatus, terminal and storage medium |
| WO2020041958A1 (en) * | 2018-08-28 | 2020-03-05 | 深圳大学 | Class sign-in method and apparatus, terminal, and storage medium |
| CN109219045A (en) * | 2018-09-17 | 2019-01-15 | 北京奇艺世纪科技有限公司 | A kind of router connection method, device, electronic equipment and system |
| CN113741330A (en) * | 2021-09-08 | 2021-12-03 | 珠海格力电器股份有限公司 | Networking safety verification system and method based on PLC power line communication technology |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104540127A (en) | Anti-free-network-use router access network right control method based on dynamic two-dimensional code | |
| CN103795731B (en) | A kind of user account login method | |
| CN103609090B (en) | Identity logs method and apparatus | |
| CN104468531B (en) | The authorization method of sensitive data, device and system | |
| US9055313B2 (en) | Device activation using encoded representation | |
| CN104717218B (en) | A kind of Wifi Verification Systems and method | |
| CN103428203A (en) | Access control method and device | |
| US10637650B2 (en) | Active authentication session transfer | |
| CN103916637B (en) | A kind of method and apparatus for safely sharing monitoring frontend | |
| CN105072617B (en) | A kind of authentication method based on WIFI access | |
| CN106656952B (en) | Authentication method, device and system for login equipment | |
| CN101917289B (en) | System for remotely supervising internet surfing of minors based on computer and mobile phone | |
| CN104253801B (en) | Realize the methods, devices and systems of login authentication | |
| CN104917727A (en) | Account authentication method, system and apparatus | |
| CN105392136A (en) | Method and device for access to router based on two-dimensional code | |
| CN103986720A (en) | Log-in method and device | |
| CN103428221A (en) | Safety logging method, system and device of mobile application | |
| KR20130072790A (en) | User authentication system and method thereof | |
| CN106162641B (en) | A kind of safe public WiFi authentication method and system | |
| CN106453303A (en) | Method and system for storing user login status for IOS client | |
| CN103874069A (en) | MAC authentication device and method of wireless terminal | |
| WO2015039589A1 (en) | User identity authorization system and authorization method based on bar codes | |
| CN103327034A (en) | Safe login method, system and device | |
| CN103200159A (en) | Network access method and equipment | |
| CN105208013A (en) | Cross-device high-security non-password login method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20150422 |
|
| RJ01 | Rejection of invention patent application after publication |