CN104581723A - Application method and device for networking information data of client equipment - Google Patents
Application method and device for networking information data of client equipment Download PDFInfo
- Publication number
- CN104581723A CN104581723A CN201410750461.0A CN201410750461A CN104581723A CN 104581723 A CN104581723 A CN 104581723A CN 201410750461 A CN201410750461 A CN 201410750461A CN 104581723 A CN104581723 A CN 104581723A
- Authority
- CN
- China
- Prior art keywords
- client device
- pin code
- information
- access point
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
Abstract
The invention relates to the field of network communication, and discloses an application method and device for the networking information data of client equipment. The method comprises: an information input step of inputting a PIN code of the client equipment to an AP; a step of adding the received PIN code of the client equipment into a generated PIN code list and storing the PIN code list by the AP. According to the method and the device, the list is added and stored to pre-store the PIN code of the client equipment into the AP, and after the client equipment finishes establishing connection with the AP for the first time, the client equipment can be actively connected with the AP without repeatedly and manually inputting the PIN code for network pairing after being powered on in case of power failure or using place change.
Description
Technical field
The present invention relates to network communication field, particularly relate to a kind of application process of client device networked information data and device and device.
Background technology
WPS(Wi-Fi Protected Setup, Wi-Fi protection setting) be the authentication item organized and implemented by Wi-Fi Alliance, be mainly devoted to the installation and the security performance configuration effort that simplify WLAN (wireless local area network).Define three logical role in WPS agreement, be respectively: Registrar, Enrollee, AP; Registrar: the role being registrant in WPS, all equipment that will add network all have to pass through its license; Enrollee: be authenticator role, what its represented is that those want to join the radio device of this AP place network; AP: the i.e. usual WAP (wireless access point) that we say, it is the core of WLAN (wireless local area network).General router is all Registrar and AP together.
WPS has a kind of networking mode configured by PIN code.PIN code is exactly briefly identification code, is wireless routing Crypted password, is 8 pure digi-tal.
Concrete networking mode is as follows:
1, in WPS is arranged, state is set to enable;
2 and then open client WPS network application is set, select the mode inputting PIN in the router to connect, also can the current PIN code of display client in network application simultaneously;
3, finally open router interface, select PIN pattern in WPS pattern, then manually input the PIN code of client, point adds new equipment, and later, WPS secure connection is successfully set up.
But inventor finds, above-mentioned PIN code mode, once can only add an equipment PIN code, each interpolation all needs to revise PIN code, if router resets the situation of SSID or password simultaneously, equipment will be networked again, all need repetition 1-3 step, again add PIN code in batches, because the 3rd step is all manually will add PIN code, bring very large inconvenience to user's use procedure.In addition, if access point is changed to another network environment, user also must re-start PIN code networking pairing work.
Summary of the invention
The present invention is directed to the defect of PIN code networking mode in WPS, provide a kind of application process of client device networked information data and device and device, multiple PIN code can be stored, by storing the corresponding PIN code of client device in advance at access point AP, SSID is reset, when resetting password or converting network environment at router, by PIN code corresponding relation, can the multiple equipment of fast automatic connection, simplify user operation.
For solving the problems referred to above, the present invention is solved by following technical proposals:
An application process for client device networked information data, described method of attachment comprises following steps:
Step 1), information input step: the PIN code of client device is input in access point AP;
Step 2), add list storing step: the PIN code of the client device received to be added in the PIN code list of generation and is stored by described access point AP;
By above technical scheme, time the present invention uses, by adding list and storing, the PIN code of client device is pre-deposited in access point AP, after only need connecting completing first described client device and described access point AP, after power-off or field of employment change, client device after the power-up, initiatively can be connected with access point.Original client device wants access network, need first to allow client device interconnection network, the present invention safeguards PIN code list by setting up in access point AP, can before client device failed cluster, the PIN code of client device is prestored in the access point, and the PIN code of multiple/kind of equipment can be stored simultaneously, user only needs after first time has safeguarded PIN code, after being powered on by client device, initiatively be connected with access point AP, just can directly network without the need to other operations, if after router resets SSID or password, equipment in all PIN code lists can be dynamically connected certainly, without the need to repeating the networking of input PIN code manual pairings again, simplify user operation, make networked deployment more convenient.
In order to reach further technique effect, the present invention can also adopt following technical scheme:
Before described step 1), also comprise and obtain PIN code step.Acquiring way comprises, by the display screen of mobile terminal, computer client, scanning device, described access point AP, NFC, bluetooth, iBeacon, ZigBee, RFID mode, the PIN code information of client device is input to access point AP kind.
Obtain PIN code and the facility information of client device by number of ways, add the kind of applicable client device.
Further, in described step 1), also comprise and the information of the client device of client device is input in access point AP.
Further, described step 2) in, described PIN code list also stores the information of client device.
Further, described step 2) in, described PIN code list can be maintained, and the information record in PIN code list can be modified, deletes or give authority.
Be provided with read-write mechanism in described PIN code list, can information in the list of real-time update PIN code, adding of rights management, original single realize networking functionally add more application space.
The present invention provides a kind of application apparatus of client device networked information data simultaneously, and described application apparatus comprises: client device, access point AP, and described access point AP comprises receiver module, memory module, authentication module, sending module, scan module:
Described receiver module, for receiving the information of PIN code that described client device sends and client device or receiving the access request of unlatching WPS agreement that described client device initiates;
Described memory module, for storing the PIN code and the information of client device and the authority information of client device that described client device sends, generates PIN code list;
Described sending module, for sending the result;
Described authentication module, for verifying whether the information of the PIN code that described client device sends and client device is present in the PIN code list of memory module generation, and whether the access request that WPS agreement is opened in simultaneous verification meets WPS specification;
Described scan module, for scanned picture information or RFID, obtains the PIN code of described client device and the information of client device after scan module scanning.
Described pictorial information comprises Quick Response Code, bar code, electronic tag.
Beneficial effect main manifestations of the present invention is: the application apparatus that the invention provides a kind of client device networked information data, original client device wants access network, need first to allow client device interconnection network, the present invention safeguards PIN code list by setting up in access point AP, can before client device failed cluster, the PIN code of client device is prestored in the access point, and the PIN code of multiple/kind of equipment can be stored simultaneously, user only needs after first time has safeguarded PIN code, after being powered on by client device, if find corresponding PIN code in the PIN code table of access point AP, just initiatively can be connected with access point AP, just can directly network without the need to other operations, if after router resets SSID or password, equipment in all PIN code lists can be dynamically connected certainly, without the need to repeating the networking of input PIN code manual pairings again, simplify user operation, make networked deployment more convenient.
Accompanying drawing explanation
Fig. 1 is a kind of flow chart being carried out the method for networking by applications client equipment networking information data that the embodiment of the present invention 1 provides;
Fig. 2 is the mutual schematic diagram that use EAPOL agreement that the embodiment of the present invention 1 provides sets up WPS security configuration;
Fig. 3 is a kind of flow chart being carried out the method that equipment reconnects by applications client equipment networking information data that the embodiment of the present invention 2 provides;
Fig. 4 is a kind of network access device structure chart that the embodiment of the present invention 3 provides;
Fig. 5 is a kind of network access device structure chart that the embodiment of the present invention 4 provides.
Embodiment
Below in conjunction with accompanying drawing and embodiment, the present invention is described in further detail.
embodiment 1
The present embodiment provides a kind of method of being undertaken networking by applications client equipment networking information data.As shown in Figure 1, described method comprises following steps:
S101, information input step: the PIN code of client device and facility information are input in access point AP;
In the present embodiment, the PIN code of client device and facility information are input in access point AP by scanning device by user.
Scanning device can be used for scanning Quick Response Code, bar code or RFID.
For two-dimension code image, concrete steps are as follows:
A, user obtain two-dimension code image, have the PIN code of client device to map in two-dimension code image;
B, user are by the camera scanning two-dimension code image on router;
Scanning PIN code out maps and is sent on far-end server by C, router, far-end server comprises PIN code storehouse, after far-end server receives the PIN code map information of transmission, in PIN code storehouse, find corresponding PIN code and equipment Serial Number, PIN code and equipment Serial Number are sent to access point AP simultaneously;
User, when purchase client device, may post the Quick Response Code of a facility information on a client device, and the PIN code that this Quick Response Code example contains client device maps;
In another embodiment, the PIN code of client device and equipment Serial Number are input in access point AP by mobile terminal by user, and concrete steps are as follows:
A, user open mobile terminal configuration of routers interface;
The PIN code of client device and equipment Serial Number are sent to access point AP at configuration interface by B, user;
In such cases, user directly can find PIN code and the equipment Serial Number of client device on a client device, then just above-mentioned information can be made a copy of.
In another embodiment, the PIN code of client device and facility information are input in access point AP by NFC by user, and concrete steps are as follows:
PIN code and the equipment Serial Number of client device is obtained in A, NFC device;
B, by point-to-point transmission, the PIN code of client device and equipment Serial Number are sent in access point AP;
S102, add list storing step: access point AP will receive PIN code and facility information is stored in PIN code list;
Access point AP is pre-created the list that is deposited PIN code and equipment Serial Number, after the PIN code receiving client device as access point AP and equipment Serial Number, and a newly-increased record in this list; Now user when client device is not networked, can be pre-stored in the PIN code of client device and equipment Serial Number in access point AP.
PIN code listuser wherein can be safeguarded, can client device records in delete list or to client device distribution rights, such as, can log in router management interface by computer, do aforesaid operations; Also aforesaid operations can be done by the display screen that router carries.
Authority comprises normal access, priority access, time delay access, a period of time restriction access, blacklist etc.
Such as, access point AP sets up the corresponding relation of PIN code and equipment Serial Number as shown in following table one.
Table one
| Equipment Serial Number | Corresponding PIN code |
| Deviceid1 | PIN1 |
| Deviceid2 | PIN2 |
| … | … |
S103, network connection procedure: client sends request the authentication information connecting WPS to access point AP;
In one embodiment, client device is now logical has gone up electricity, starts PIN code pattern simultaneously, now, client device initiatively will send one and detect claim frame, concrete, detects claim frame and includes WSC IE mark, the PIN code of client device, the equipment Serial Number of client device.
Authentication information is sent in certificate server by S104, access point AP;
After access point AP receives request authentication information, by UPnP (Universal Plug and Play UPnP) Event event, authentication information is forwarded in certificate server Registrar;
S105, certificate server Registrar verify the authentication information received, and then enter step S106 if the verification passes, if authentication failed, enter step S107;
Certificate server Registrar is according to the PIN code of the client device in target client device authentication information and equipment Serial Number, and whether checking PIN code and facility information exist in the PIN code list of access point AP.
S106, access point AP open the Wireless Fidelity protection setting WPS function between client device, are connected to set up network with client;
Now, certificate server Registrar have found relative recording in PIN code list, SetSelectedRegistrar notice is sent to access point AP, certification is identified SR and is set to TRUE, after access point AP is notified, outside broadcast beacon frame, concrete, beacon frame comprises the information such as login state, PIN code, authenticating address.
After client device captures beacon frame, start to perform WPS layoutprocedure, by EAPOL (Extensible Authentication Protocol over LAN, the Extensible Authentication Protocol of local area network (LAN)) protocol interaction process, set up the WPS agreement between client device and access point, see Fig. 2, the use EAPOL agreement provided for the embodiment of the present invention sets up the mutual schematic diagram of WPS security configuration, refers to and is described below:
Interaction flow, from EAPOL-Start, ends at EAP-Fail frame, relates to altogether 14 EAPOL/EAP Frame switch:
(1) client device sends an EAPOL-Start message to access point AP, starts certification access;
(2) access point AP sends EAP-Request/Identity message to client device, requires that user name is sent up by client device;
(3) client device responds the EAP-Response/Identity message that comprises user name;
(4) next start to carry out M1-M8 negotiation, set up and share secret key.EAP-Response/Identity message is encapsulated in RADIUS Access-Request message by access point AP, wherein includes EAP-Request/MD5-Challenge, message is sent to client device simultaneously, requires that client device carries out certification;
(5), after client device receives EAP-Request/MD5-Challenge message, the Challenged-Pass-word obtained after password and Challenge are done MD5 algorithm, by EAP-Response/MD5-Challenge response to access point AP;
(6) access point AP is to Challenge, Challenged Password and user name carry out certification, according to user name, do MD5 algorithm, judge that whether user is legal, then authentication success/failure message is responded to client device, if success, carry consultation parameter, and the related service attribute of user is to subscriber authorisation, if authentification failure, then flow process leaves it at that;
(7) if certification is passed through, final access point AP sends EAP-Failure message to client device;
Above-mentioned WPS secure configuration procedure belongs to prior art, no longer elaborates.
S107, not by checking, does not then set up relevant WPS agreement.
Client device and access point AP normally set up after WPS is connected, access point AP sends SSID and network insertion password to client device, client device stores SSID and network insertion password in this locality, can carry out network insertion service by SSID and network insertion password.
embodiment 2
The present embodiment provides a kind of and carries out by applications client equipment networking information data the method that equipment reconnects.Shown in Fig. 3, described method comprises following steps:
S201, when client device finds that network disconnects, the SSID that client device stores according to this locality and network insertion password, send networking request to access point AP, trial is set up network with described access point AP and is connected;
S203, cannot to realize network connect as above-mentioned steps, client device carries out WPS networking by the step in embodiment 1, obtains new networking SSID and network insertion password, and is stored in client device by above-mentioned information;
In this step, because access point AP there is an accessible client device list, when original just client device is in lists attempted carrying out networking operation time, automatic Verification PIN code, just without the need to going input PIN code again, directly networks.
Above-mentioned steps has one to access duration, such as, connected in 2 minutes and do not set up, and continues to be connected with network insertion password with local SSID.
The new networking SSID of S203, client device is connected with network insertion password;
Repeat 2,3 steps, until network successfully.
embodiment 3
The present embodiment provides a kind of network access device.As Fig. 4, described jockey comprises: receiver module 301, memory module 302, authentication module 303, sending module 304, scan module 305;
Receiver module 301, sends PIN code and facility information for receiving client terminal device; Or receive the access request of the unlatching WPS agreement that client terminal device is initiated;
Memory module 302, for storing PIN code, facility information and blacklist equipment that client terminal device sends;
Authentication module 303, whether the PIN code sent for checking client device and facility information exist in PIN list; Or whether checking unlatching WPS request meets WPS specification;
Sending module 304, for sending authentication result notice;
Scan module 305, for scanned picture or FIRD, obtains PIN code and facility information after scan module 305 scanned picture; Described picture can be Quick Response Code, bar code;
In one embodiment, user takes the Quick Response Code mark picture of client terminal device, the inside contains PIN code and maps, user holds two-dimension code image, by the camera scanning Quick Response Code of access point AP, obtain PIN code and the equipment Serial Number of the correspondence on far-end server, access point AP deposits above-mentioned information in a storage module.When access point AP receives the unlatching WPS agreement request of client terminal device transmission, access point is forwarded to authentication module solicited message, authentication module is according to the PIN code in solicited message and equipment Serial Number, inquiry request is sent to memory module, search and whether there is above-mentioned PIN code and equipment Serial Number in a storage module, finally authentication result is transmitted to sending module, the outside broadcast beacon frame of sending module.
embodiment 4
The present embodiment provides a kind of network access device.As Fig. 5, described jockey comprises: receiver module 401, memory module 402, authentication module 403, sending module 404;
Receiver module 401, sends PIN code and facility information for receiving client device; Or receive the access request of the unlatching WPS agreement that client device is initiated;
Memory module 402, for storing PIN code, facility information and blacklist equipment that client device sends;
Authentication module 403, whether the PIN code sent for verification client device and facility information exist in PIN list; Or whether checking unlatching WPS request meets WPS specification;
Sending module 404, for sending authentication result notice.
Above-described embodiment for the invention will be further described, but does not limit the invention to these embodiments.One skilled in the art would recognize that all alternatives, improvement project and the equivalents that present invention encompasses and may comprise in Claims scope.
Claims (6)
1. an application process for client device networked information data, is characterized in that, described method of attachment comprises following steps:
Step 1), information input step: the PIN code of client device and the information of client device are input in access point AP;
Step 2), add list storing step: the PIN code of the client device received to be added in the PIN code list of generation and is stored by described access point AP.
2. the application process of a kind of client device networked information data as claimed in claim 1, is characterized in that, before described step 1), also comprises and obtains PIN code step.
3. the application process of a kind of client device networked information data as claimed in claim 1, is characterized in that, in described step 1), also comprise and the information of the client device of client device being input in access point AP.
4. the application process of a kind of client device networked information data as claimed in claim 1, is characterized in that, described step 2) in, described PIN code list can be maintained, and the information record in PIN code list can be modified, deletes or give authority.
5. the application process of a kind of client device networked information data as described in claim 1 or 3, is characterized in that, described step 2) in, described PIN code list also stores the information of client device.
6. an application apparatus for client device networked information data, is characterized in that, described network access device comprises: receiver module, memory module, authentication module, sending module, scan module:
Described receiver module, for receiving the information of PIN code that described client device sends and client device or receiving the access request of unlatching WPS agreement that described client device initiates;
Described memory module, for storing the PIN code and the information of client device and the authority information of client device that described client device sends, generates PIN code list;
Described sending module, for sending the result;
Described authentication module, for verifying whether the information of the PIN code that described client device sends and client device is present in the PIN code list of memory module generation, and whether the access request that WPS agreement is opened in simultaneous verification meets WPS specification;
Described scan module, for scanned picture information or RFID, obtains the PIN code of described client device and the information of client device after scan module scanning.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410750461.0A CN104581723A (en) | 2014-12-10 | 2014-12-10 | Application method and device for networking information data of client equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410750461.0A CN104581723A (en) | 2014-12-10 | 2014-12-10 | Application method and device for networking information data of client equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104581723A true CN104581723A (en) | 2015-04-29 |
Family
ID=53096709
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410750461.0A Pending CN104581723A (en) | 2014-12-10 | 2014-12-10 | Application method and device for networking information data of client equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104581723A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104980358A (en) * | 2015-05-29 | 2015-10-14 | 上海斐讯数据通信技术有限公司 | Wireless router and wireless network management method thereof |
| CN105554023A (en) * | 2016-01-14 | 2016-05-04 | 烽火通信科技股份有限公司 | Authentication method and system of home gateway in access WPA/WPA2 authentication mode |
| CN112825574A (en) * | 2019-11-15 | 2021-05-21 | 中兴通讯股份有限公司 | Network connection establishing method, wireless access device, system and storage medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101668290A (en) * | 2008-09-04 | 2010-03-10 | 深圳华为通信技术有限公司 | Method and device for configuring wireless local area network (WLAN) |
| CN101983493A (en) * | 2008-01-31 | 2011-03-02 | 三星电子株式会社 | Method for ensuring communication security in home network and apparatus for same |
| CN102695173A (en) * | 2012-06-15 | 2012-09-26 | 华为终端有限公司 | Safety control method for accessing wireless network and terminal |
| CN103428892A (en) * | 2012-05-24 | 2013-12-04 | 巴法络股份有限公司 | Communication setup method and wireless connection device |
| US20140282960A1 (en) * | 2013-03-15 | 2014-09-18 | Qualcomm Incorporated | Seamless device configuration in a communication network |
-
2014
- 2014-12-10 CN CN201410750461.0A patent/CN104581723A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101983493A (en) * | 2008-01-31 | 2011-03-02 | 三星电子株式会社 | Method for ensuring communication security in home network and apparatus for same |
| CN101668290A (en) * | 2008-09-04 | 2010-03-10 | 深圳华为通信技术有限公司 | Method and device for configuring wireless local area network (WLAN) |
| CN103428892A (en) * | 2012-05-24 | 2013-12-04 | 巴法络股份有限公司 | Communication setup method and wireless connection device |
| CN102695173A (en) * | 2012-06-15 | 2012-09-26 | 华为终端有限公司 | Safety control method for accessing wireless network and terminal |
| US20140282960A1 (en) * | 2013-03-15 | 2014-09-18 | Qualcomm Incorporated | Seamless device configuration in a communication network |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104980358A (en) * | 2015-05-29 | 2015-10-14 | 上海斐讯数据通信技术有限公司 | Wireless router and wireless network management method thereof |
| CN105554023A (en) * | 2016-01-14 | 2016-05-04 | 烽火通信科技股份有限公司 | Authentication method and system of home gateway in access WPA/WPA2 authentication mode |
| CN105554023B (en) * | 2016-01-14 | 2019-01-04 | 烽火通信科技股份有限公司 | Access the authentication method and system of the home gateway of WPA/WPA2 certification mode |
| CN112825574A (en) * | 2019-11-15 | 2021-05-21 | 中兴通讯股份有限公司 | Network connection establishing method, wireless access device, system and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104581722A (en) | Network connection method and device based on WPS (Wireless Fidelity Protected Setup) | |
| US9131378B2 (en) | Dynamic authentication in secured wireless networks | |
| CN103222292B (en) | The dynamic account utilizing safe hot spot networks creates | |
| CN101527911B (en) | Communication device and communication method | |
| US20070098176A1 (en) | Wireless LAN security system and method | |
| CN102271133B (en) | Authentication method, device and system | |
| CN103179560A (en) | Revocable security system and method for wireless access points | |
| CN104994504A (en) | Secure and automatic connection to wireless network | |
| CN104767715A (en) | Network access control method and equipment | |
| CN108900484B (en) | Access right information generation method and device | |
| US20110055409A1 (en) | Method For Network Connection | |
| WO2007128134A1 (en) | Secure wireless guest access | |
| CN102143492B (en) | Method for establishing virtual private network (VPN) connection, mobile terminal and server | |
| CN103297968A (en) | Wireless terminal identifying method, wireless terminal identifying device and wireless terminal identifying system | |
| CN104125567A (en) | Femto and authentication method and authentication device for access of femto to network side | |
| CN108900306A (en) | A kind of production method and system of wireless router digital certificate | |
| US20220053334A1 (en) | Using a network requirements field to provide a station access to a network | |
| CN104581723A (en) | Application method and device for networking information data of client equipment | |
| CN103973637B (en) | Method for configuring permission, agent equipment and server | |
| US20090271846A1 (en) | Method and Device to Suspend the Access to a Service | |
| JP2008022208A (en) | System, method and program for mutual authentication | |
| US20220264668A1 (en) | Method and mechanism to assign a unique identifier to a station from an access point | |
| US20220086736A1 (en) | Protected pre-association station identification | |
| CN1771711B (en) | Secure distributed system for management of local community representation within network devices | |
| CN101902507B (en) | Method, device and system for distributing addresses |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20150429 |