CN104735050B - A kind of fusion mac certifications and the authentication method of web authentication - Google Patents

A kind of fusion mac certifications and the authentication method of web authentication Download PDF

Info

Publication number
CN104735050B
CN104735050B CN201410804759.5A CN201410804759A CN104735050B CN 104735050 B CN104735050 B CN 104735050B CN 201410804759 A CN201410804759 A CN 201410804759A CN 104735050 B CN104735050 B CN 104735050B
Authority
CN
China
Prior art keywords
mac
authentication
network entity
logical network
web authentication
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201410804759.5A
Other languages
Chinese (zh)
Other versions
CN104735050A (en
Inventor
程焱辉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Fiberhome Telecommunication Technologies Co Ltd
Original Assignee
Wuhan FiberHome Networks Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Wuhan FiberHome Networks Co Ltd filed Critical Wuhan FiberHome Networks Co Ltd
Priority to CN201410804759.5A priority Critical patent/CN104735050B/en
Publication of CN104735050A publication Critical patent/CN104735050A/en
Application granted granted Critical
Publication of CN104735050B publication Critical patent/CN104735050B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint

Landscapes

  • Engineering & Computer Science (AREA)
  • Power Engineering (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The present invention is applied to internet arena, there is provided the authentication method of a kind of fusion mac certifications and web authentication, including:Logical network entity sends the first mac authentication request packets to certificate server;Certificate server returns to the first mac certification response messages, and Redirect URL and session identification value are carried in response message;Logical network entity returns to Redirect URL to terminal device;Certificate server confirms terminal user's web authentication by rear, the response message that return web authentication passes through is to logical network entity according to web authentication information;Logical network entity sends the 2nd mac authentication request packets to certificate server, session identification value is carried in the 2nd mac authentication request packets after the response message that web authentication passes through is received;Certificate server returns to the message that mac certifications pass through when carrying session identification value in confirming the 2nd mac authentication request packets that receive, to logical network entity.The present invention is mainly that server issues redirection url, can avoid the human configuration on logical network entity, reduce configuration amount.

Description

A kind of fusion mac certifications and the authentication method of web authentication
Technical field
The invention belongs to internet arena, more particularly to the authentication method of a kind of fusion mac certifications and web authentication.
Background technology
In existing access side network, common terminal user authentication method has mac certifications, 802.1x certifications and web Certification.802.1x certifications need terminal user to install specific Authentication Client, and web authentication is IP address-based, to terminal The control dynamics of user are unable to reach mac addresses rank, and mac certifications are a kind of authentication modes for terminal device.
Either the common authentication mode in network insertion side is to be directed to terminal device at present, or it is to be directed to terminal user 's.The method for not relating to two ways being effectively combined together.
The content of the invention
The purpose of the embodiment of the present invention is the authentication method for providing a kind of fusion mac certifications and web authentication, existing to solve There is the problem of technical certification mode is single.
The embodiment of the present invention is achieved in that the authentication method of a kind of fusion mac certifications and web authentication, wherein, terminal The certification of equipment contains mac certifications and web authentication, and the terminal device triggers mac address verifications, and methods described includes:
The logical network entity sends the first mac authentication request packets to certificate server;The certificate server returns The first mac certification response messages are returned, is carried in the response message and redirects uniform resource position mark URL and session identification value; The logical network entity returns to the Redirect URL and gives the terminal device, so that the terminal device is reset according to The web authentication page is accessed to URL, and the input of web authentication information is completed by terminal user;The certificate server is according to institute Web authentication information is stated, confirms terminal user's web authentication by rear, the response message that return web authentication passes through is to the Logic Networks Network entity;For the logical network entity after the response message that the web authentication passes through is received, sending the 2nd mac certifications please Message is sought to the certificate server, the session identification value is carried in the 2nd mac authentication request packets;The certification clothes When business device carries the session identification value in the 2nd mac authentication request packets for confirming to receive, returned to logical network entity Return the message that mac certifications pass through.
The beneficial effect of the authentication method of a kind of fusion mac certifications provided in an embodiment of the present invention and web authentication includes:This A kind of described fusion mac certifications of invention and the method for web authentication, can realize and terminal device and the dual of terminal user are recognized Card, significantly improve the security of network insertion side;The configuration amount of webmaster personnel can be reduced, reduces network operation cost.
Brief description of the drawings
Technical scheme in order to illustrate the embodiments of the present invention more clearly, below will be to embodiment or description of the prior art In the required accompanying drawing used be briefly described, it should be apparent that, drawings in the following description be only the present invention some Embodiment, for those of ordinary skill in the art, on the premise of not paying creative work, can also be attached according to these Figure obtains other accompanying drawings.
Fig. 1 is the flow chart of the authentication method of a kind of fusion mac certifications provided in an embodiment of the present invention and web authentication;
Fig. 2 is the flow chart of the authentication method of a kind of fusion mac certifications provided in an embodiment of the present invention and web authentication;
Fig. 3 is the flow chart of the authentication method of a kind of fusion mac certifications provided in an embodiment of the present invention and web authentication;
Fig. 4 is the flow chart of the authentication method of a kind of fusion mac certifications provided in an embodiment of the present invention and web authentication;
Fig. 5 is the signaling process of the authentication method of a kind of fusion mac certifications provided in an embodiment of the present invention and web authentication Figure.
Embodiment
In order to make the purpose , technical scheme and advantage of the present invention be clearer, it is right below in conjunction with drawings and Examples The present invention is further elaborated.It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, and It is not used in the restriction present invention.
In various embodiments of the present invention, two kinds of address modes of terminal device and terminal user are used, primarily to and holding Action is made logically more to match, and wherein terminal user is to possess the people that the terminal device uses ability.In order to illustrate this The described technical scheme of invention, is illustrated below by specific embodiment.
Embodiment one
It is as shown in Figure 1 a kind of fusion mac certifications provided by the invention and the flow chart of the authentication method of web authentication, its In, the certification of terminal device contains mac certifications and web authentication, the terminal user trigger logical network entity to end The mac certifications of end equipment, the mode of the first mac certification message of the triggering can be specifically:Terminal user sends DynamicHost Configuration protocol (Dynamic host configuration protocol, DHCP) request, HTTP (Hyper Text Transport Protocol, HTTP) request or hypertext transfer protocol secure (Hyper Text Transfer Protocol, HTTPS) request.As shown in figure 1, it the described method comprises the following steps:
In a step 101, the logical network entity sends the first mac authentication request packets to certificate server.
In a step 102, the certificate server returns to the first mac certification response messages, is carried in the response message Redirect uniform resource position mark URL and session identification value.
In step 103, the logical network entity returns to the Redirect URL and gives the terminal device, so as to described Terminal device accesses the web authentication page according to the Redirect URL, and the input of web authentication information is completed by terminal user.
At step 104, the certificate server confirms that terminal user's web authentication passes through according to the web authentication information Afterwards, the response message that return web authentication passes through is to the logical network entity.
In step 105, the logical network entity is sent after the response message that the web authentication passes through is received 2nd mac authentication request packets give the certificate server, and the session identification is carried in the 2nd mac authentication request packets Value.
In step 106, the certificate server carries session in the 2nd mac authentication request packets for confirming to receive During ident value, and the message that passes through of mac certifications is returned to logical network entity.
A kind of fusion mac certifications of the present invention and the method for web authentication, can be realized to terminal device and terminal user Double authentication, significantly improve the security of network insertion side;Can reduce the configuration amount of webmaster personnel, reduce network operation into This.
Preferably, a kind of scheme be present with reference to the present embodiment, wherein, the logical network entity is sent to certificate server Before first mac authentication request packets, in addition to:
The logical network entity judges to whether there is the mac addresses of the terminal device in the conversational list of itself storage Session entry;If session entry is not present, the storage terminal is created in the conversational list of the logical network entity and is set The session entry of standby mac addresses.
Preferably, a kind of scheme be present with reference to the present embodiment, wherein, the logical network entity is receiving the first mac After certification response message, in addition to:
Logical network entity records the Redirect URL and meeting in the session entry of the mac addresses of the terminal device Talk about ident value.
Preferably, a kind of scheme be present with reference to the present embodiment, wherein, the web authentication page terminal device is according to Redirect URL accesses the web authentication page, and the input of web authentication information is completed by terminal user, specifically includes:
Terminal device is after carrying Redirect URL message is received;Initiate to access the web corresponding to Redirect URL address The request of certification page;Terminal user inputs user account and user cipher in the web authentication page, and submits, by recognizing Demonstrate,prove server and complete web authentication.
Preferably, a kind of scheme be present with reference to the present embodiment, wherein, confirmation terminal user's web authentication is by specifically Including:
It is legal that checking, which receives user account and user cipher, then confirms that terminal user's web authentication passes through.
Preferably, a kind of scheme be present with reference to the present embodiment, wherein, the mac certifications for carrying out the terminal device, tool Body includes:
The certificate server verifies in the 2nd mac authentication request packets whether carry the session that certificate server issues Ident value, if carrying the session identification value that server issues in the 2nd mac authentication request packets, the 2nd mac certifications pass through.
Preferably, a kind of scheme be present with reference to the present embodiment, wherein, the mode of the terminal triggering mac certifications, including:
Terminal device sends dynamic host configuration protocol DHCP request, HTTP request or hypertext and passed Defeated protocol security HTTPS request.
Preferably, a kind of scheme be present with reference to the present embodiment, wherein, the cellular logic entity, it is specially:Ethernet is handed over Change planes, router or modem.
Embodiment two
It is illustrated in figure 2 the stream of the authentication method of a kind of fusion mac certifications provided in an embodiment of the present invention and web authentication Journey, as shown in Figure 2, the present embodiment, which is laid particular emphasis on, illustrates logical network entity in the operation before sending the first mac certification requests Hold, specifically include:
In step 201, the mac certifications of triggering terminal equipment.
The mode of the mac certifications of triggering terminal equipment can be terminal device to logical network entity send DHCP request, When HTTP request or HTTPS request, but the mode of terminal device triggering mac certifications is not limited to aforesaid way.Terminal device After triggering mac certifications, step 202 is performed.
In step 202, after terminal device triggering mac certifications, report of the logical network entity from the terminal device received The source mac addresses of outgoing packet are extracted in text.The source mac addresses of described message are actually the mac addresses of terminal device, with Session entry is searched in this source mac addresses as search key, if the source mac addresses in session entry be present, performs step Rapid 203, otherwise, perform step 204.
In step 203, if session entry in logical network entity be present, continue to judge the terminal in the session entry Whether user authentication status is certification success, i.e. whether mac certifications and web authentication all passes through.If the authentication state of terminal user For certification success, then step 205 is performed, otherwise, perform step 206.
In step 204, if session entry is not present in logical network entity, session entry is created, then performs step Rapid 206.
In step 205, the packet of logical network entity forwarding terminal user.If session in logical network entity be present List item, and the terminal user authentication state in session entry is certification success, then logical network entity no longer intercepts terminal user Packet, but the directly packet of forwarding terminal user.
In step 206, handling process (enters step 301) into the web authentication flow of terminal user.The present embodiment leads to Introducing user authentication status is crossed, mac certifications and web authentication are managed collectively, optimizes and determines whether that the terminal is set Standby the step of packet forwarding service is provided, also, the content about mac certifications in embodiment one has been done into specific elaboration.
Embodiment three
As shown in figure 3, the present embodiment is to be directed to the refinement about web authentication content in embodiment one, reality is specifically engaged on After the step 206 for applying example two, scheme is combined into embodiment two.Specifically include:
In step 301, logical network entity sends the first mac certification requests to certificate server.
Wherein, the logical network entity is after the HTTP request of terminal device or HTTPS request is received, triggering pair The mac certifications of terminal device, before the first mac certification requests are sent, also specifically include a counterfeit operation of TCP, institute After the operation counterfeit TCP that states refers to that logical network entity intercepts HTTP request or HTTPS request from terminal device, repair Change destination address in HTTP request message (or HTTPS request message) and local that destination slogan is logical network entity Address and local port number, the local address of described logical network entity includes VLAN interface address, but is not limited to VLAN Interface IP address.
In step 302, web authentication page certificate server returns to the first mac certification response messages, the response message Middle carry redirects uniform resource position mark URL and session identification value.
The session entry of counterpart terminal equipment in the conversational list of web authentication page logic network entity searching storage, and The web authentication page adds the Redirect URL in the session entry.The Redirect URL is issued by certificate server, note In the session entry of logical network entity, the Redirect URL points to the web authentication page of web authentication for record.
In step 303, the Redirect URL is returned to terminal device by logical network entity.
In step 304, terminal device initiates access request to the web authentication page that the Redirect URL points to.
Logical network entity intercept terminal user HTTP request or HTTPS request after, the HTTP request or HTTPS request points to the Redirect URL.Specifically, logical network entity carry out TCP it is counterfeit, will the HTTP request or Reception address in HTTPS request is adjusted to the address web authentication page web authentication page of logical network entity.
After the browser of terminal user jumps to the web authentication page, step 305 is performed.
In step 305, certificate server returns to the web authentication page by logical network entity to terminal device.
Within step 306, terminal user inputs username and password on the web authentication page, carries out web authentication.Terminal After user inputs username and password on the web authentication page, step 307 is performed.
In step 307, judge terminal user's web authentication whether by if terminal user's web authentication is by performing Step 308, otherwise, step 305 is performed.If the success of terminal user's web authentication, certificate server is to terminal device pushing certification Success page;If terminal user's web authentication fails, server is to terminal device pushing certification failure page.Under normal circumstances, Terminal user can input username and password again on the authentification failure page and carry out web authentication.
In the specific implementation, after the success of terminal user's web authentication, web authentication server can keep message or stream with heartbeat The mode of monitoring is measured, to judge whether terminal user is offline.Described web authentication server by utilizing heartbeat keeps message to judge The whether offline mode of terminal user, after referring to terminal user by web authentication, terminal device timing is sent to certificate server Heartbeat keeps message, if the heartbeat that certificate server does not receive terminal device transmission within a period of time keeps message, then it is assumed that Terminal user is offline.Described certificate server judges the whether online mode of terminal user using traffic monitoring, refers to patrol Volume network entity just counts the real-time traffic information of terminal user at regular intervals, and by the real-time traffic information of terminal user Certificate server is sent to, if the flow value of terminal user is less than the default threshold value of server in a period of time, server is thought Terminal user is offline.
In a step 309, terminal user's web authentication is by the way that after terminal user is by web authentication, certificate server can be to Logical network entity return authentication passes through corresponding message.Handling process enters the processing stream that terminal device carries out mac certifications again Journey (enters step 401).
Example IV
The present embodiment is to be directed to terminal device in embodiment one to send the 2nd mac certification message, combines concrete implementation The elaboration of environment, session identification value is specially session-id values in the present embodiment, as shown in figure 4, specifically including following steps:
In step 401, terminal user has passed through web authentication in step 304, and logical network entity is to certificate server Send the 2nd mac authentication request packets for terminal device.
Specifically, when logical network entity receives the information that passes through of terminal user's web authentication of web authentication server transmission Afterwards, the 2nd mac authentication request packets are just sent.Session-id values are carried in the 2nd mac authentication request packets.
In step 402, certificate server judges whether carried in the 2nd mac authentication request packets under server The session-id of hair, if carrying the session-id that server issues in the 2nd mac authentication request packets, perform step Rapid 403, otherwise, perform step 404.
In step 403, in the 2nd mac authentication request packets, the session-id that certificate server issues is carried, eventually The mac certifications of end equipment are by the way that the mac certifications of logical network entity confirmation terminal device and web authentication are all by rear, and forwarding is eventually The flow of end subscriber.
In step 404, in the 2nd mac authentication request packets, the session-id that server issues, terminal are not carried The mac certifications of equipment are not by return authentication failed message.
The authentification failure message includes:Caused by due to username and password input error, due to network connection shakiness Caused by fixed, caused by due to mac address errors etc..
In summary, these flows, which organically combine, constitutes the function that the patent of invention is wanted to realize.The present invention has following Two advantages:First, it is possible to reduce the configuration amount of webmaster personnel, specifically, without artificial input in logical network entity Redirect URL, but the first mac certification response messages are make use of, acquisition of the logical network entity for the parameter is realized, from And reduce network operation cost;Second, it is possible to achieve to terminal device and the double authentication of terminal user, significantly improve network and connect Enter the security of side.
Embodiment five
As shown in figure 5, method of the present embodiment based on embodiment one, combines in embodiment two, three, four and implements hand Section, in a manner of signaling diagram, illustrate terminal device, logical network entity and the certification clothes as the inventive method executive agent Signalling exchange relation between business device, is specifically included:
In step 501, terminal device triggering mac certifications.
In step 502, with the presence or absence of the mac addresses of the corresponding terminal device in logical network entity checking conversational list Session entry.
The specific content performed in embodiment two between step 202 to step 206.
In step 503, logical network entity sends the first mac authentication request packets to certificate server.
Wherein, the first mac authentication request packets are only that one kind of message is called, and it is not substantially for completing Mac certifications, but used to obtain Redirect URL and session identification value.
In step 504, certificate server returns to the first mac certification response messages, carries Redirect URL and session- Id values.
In step 505, logical network entity sends the message for carrying Redirect URL to terminal device.
In the specific implementation, usually terminal device has initiated http request, logical network entity can just be imitated by TCP Emit, return to http responses, carried in response and redirect url.
In step 506, terminal user is by addressing the web authentication page on the Redirect URL access registrar server Face, and by the input authentication information on the web authentication page, to realize web authentication.
In step 507, certificate server verifies the web of the terminal user according to the authentication information obtained in step 506 Certification passes through.
In step 508, certificate server passes through message to logical network entity transmission web authentication.
In step 509, logical network entity confirm the terminal device web authentication by rear, to certificate server The 2nd mac authentication request packets are sent, session-id is carried in the message.
In step 510, certificate server verifies whether carried in the 2nd mac authentication request packets under certificate server The session identification value of hair, if carrying the session identification value that server issues in the 2nd mac authentication request packets, the 2nd mac Certification passes through.
In step 511, the 2nd mac certification response messages are returned to logical network entity, the message leads to comprising mac certifications Cross message.
In step 512, logical network entity is receiving the 2nd mac certification response messages, and confirms mac certifications With web authentication all by rear, start to forward the packet of the terminal device.
The specific implementation of correlation step and scalable approach can use for reference embodiment two, three, four, no longer superfluous in the present embodiment State.
The present embodiment and coherent flow, describes the reality of method proposed by the present invention in a particular embodiment by detailed Existing mode, compare prior art, can realize the double authentication to terminal device and terminal user, significantly improve network insertion side Security;The configuration amount of webmaster personnel can be reduced, reduces network operation cost.
Those of ordinary skill in the art are further appreciated that all or part of step realized in above-described embodiment method is can To instruct the hardware of correlation to complete by program, described program can be stored in a computer read/write memory medium In, described storage medium, including ROM/RAM, disk, CD etc..
The foregoing is merely illustrative of the preferred embodiments of the present invention, is not intended to limit the invention, all essences in the present invention All any modification, equivalent and improvement made within refreshing and principle etc., should be included in the scope of the protection.

Claims (7)

1. a kind of fusion mac certifications and the authentication method of web authentication, wherein, the certification of terminal device contain mac certifications and Web authentication two parts, the terminal device trigger mac address verifications, it is characterised in that methods described includes:
Logical network entity sends the first mac authentication request packets to certificate server;
The certificate server returns to the first mac certification response messages, and redirection unified resource is carried in the response message and is determined Position symbol URL and session identification value;
The logical network entity returns to the Redirect URL and gives the terminal device, so that the terminal device is according to Redirect URL accesses the web authentication page, and the input of web authentication information is completed by terminal user;
The certificate server confirms terminal user's web authentication by rear, return web authentication is led to according to the web authentication information The response message crossed gives the logical network entity;
The logical network entity sends the 2nd mac certification request reports after the response message that the web authentication passes through is received Text gives the certificate server, and the session identification value is carried in the 2nd mac authentication request packets;
When the certificate server carries the session identification value in the 2nd mac authentication request packets for confirming to receive, to Logical network entity returns to the message that mac certifications pass through;
The logical network entity after the first mac certification response messages are received, in addition to:
Logical network entity records the Redirect URL and session mark in the session entry of the mac addresses of the terminal device Knowledge value.
2. the method as described in claim 1, it is characterised in that the logical network entity sends first to certificate server Before mac authentication request packets, in addition to:
The logical network entity judges to whether there is the session of the mac addresses of the terminal device in the conversational list of itself storage List item;
If session entry is not present, is created in the conversational list of the logical network entity and store the terminal device The session entry of mac addresses.
3. the method as described in claim 1, it is characterised in that the terminal device accesses web according to the Redirect URL to be recognized The page is demonstrate,proved, and the input web authentication page of web authentication information is completed by terminal user, is specifically included:
Terminal device is after carrying Redirect URL message is received;
Initiate the request of the web authentication page corresponding to access Redirect URL address;
Terminal user inputs user account and user cipher in the web authentication page, and submits, and is completed by certificate server Web authentication.
4. method as claimed in claim 3, it is characterised in that confirmation terminal user's web authentication is by specifically including:
It is legal that checking, which receives user account and user cipher, then confirms that terminal user's web authentication passes through.
5. the method as described in claim 1, it is characterised in that the mac certifications for carrying out the terminal device, specific bag Include:
The certificate server verifies in the 2nd mac authentication request packets whether carry the session identification that certificate server issues Value, if carrying the session identification value that server issues in the 2nd mac authentication request packets, the 2nd mac certifications pass through.
6. the method as described in claim 1, it is characterised in that the mode of the terminal triggering mac certifications, including:
Terminal device sends dynamic host configuration protocol DHCP request, HTTP request or Hyper text transfer association Discuss secure HTTP S requests.
7. the method as described in claim 1, it is characterised in that the cellular logic entity, be specially:
Ethernet switch, router or modem.
CN201410804759.5A 2014-12-19 2014-12-19 A kind of fusion mac certifications and the authentication method of web authentication Active CN104735050B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410804759.5A CN104735050B (en) 2014-12-19 2014-12-19 A kind of fusion mac certifications and the authentication method of web authentication

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410804759.5A CN104735050B (en) 2014-12-19 2014-12-19 A kind of fusion mac certifications and the authentication method of web authentication

Publications (2)

Publication Number Publication Date
CN104735050A CN104735050A (en) 2015-06-24
CN104735050B true CN104735050B (en) 2018-03-20

Family

ID=53458486

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410804759.5A Active CN104735050B (en) 2014-12-19 2014-12-19 A kind of fusion mac certifications and the authentication method of web authentication

Country Status (1)

Country Link
CN (1) CN104735050B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105915565B (en) * 2016-06-30 2020-11-17 浙江宇视科技有限公司 Authentication method, device and system
CN106878337A (en) * 2017-03-29 2017-06-20 华南理工大学 A kind of Web authentication method and system for realizing access network source address validation
CN107438113A (en) * 2017-07-04 2017-12-05 上海斐讯数据通信技术有限公司 A kind of method and system redirected by DHCP
CN113626736B (en) * 2021-08-10 2023-11-17 迈普通信技术股份有限公司 URL feature learning method, device, electronic equipment and computer readable storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101436936A (en) * 2008-12-15 2009-05-20 中兴通讯股份有限公司 Access authentication method and system based on DHCP protocol
CN102111406A (en) * 2010-12-20 2011-06-29 杭州华三通信技术有限公司 Authentication method, system and DHCP proxy server
CN102710667A (en) * 2012-06-25 2012-10-03 杭州华三通信技术有限公司 Method for realizing Portal authentication server attack prevention and broadband access server

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101436936A (en) * 2008-12-15 2009-05-20 中兴通讯股份有限公司 Access authentication method and system based on DHCP protocol
CN102111406A (en) * 2010-12-20 2011-06-29 杭州华三通信技术有限公司 Authentication method, system and DHCP proxy server
CN102710667A (en) * 2012-06-25 2012-10-03 杭州华三通信技术有限公司 Method for realizing Portal authentication server attack prevention and broadband access server

Also Published As

Publication number Publication date
CN104735050A (en) 2015-06-24

Similar Documents

Publication Publication Date Title
CN101465856B (en) Method and system for controlling user access
CN101582856B (en) Session setup method of portal server and BAS (broadband access server) device and system thereof
CN106603491A (en) Portal authentication method based on https protocol, and router
WO2017124837A1 (en) Proxy method, server and client for sslvpn, and processing method thereof
US20030236896A1 (en) Authentication and protection for IP application protocols based on 3GPP IMS procedures
CN104735050B (en) A kind of fusion mac certifications and the authentication method of web authentication
CN108092988B (en) Non-perception authentication and authorization network system and method based on dynamic temporary password creation
CN102739684B (en) Portal authentication method based on virtual IP address, and server thereof
CA2419853A1 (en) Location-independent packet routing and secure access in a short-range wireless networking environment
CN105516171B (en) Portal keep-alive system and method, Verification System and method based on authentication service cluster
CN104967590B (en) A kind of methods, devices and systems for transmitting communication information
WO2006025989B1 (en) Method and apparatus for automatically re-validating multiple clients of an authentication system
CN106656911A (en) Portal authentication method, access device and management server
CN105592046B (en) A kind of authentication-exempt access method and device
CN102790808A (en) Domain name resolution method and system, client
CN104601566B (en) authentication method and device
CN103905399A (en) Account registration management method and apparatus
CN109413649A (en) A kind of access authentication method and device
CN101986598A (en) Authentication method, server and system
CN108200039B (en) Non-perception authentication and authorization system and method based on dynamic establishment of temporary account password
CN108156092A (en) message transmission control method and device
CN102638472B (en) Portal authentication method and equipment
CN107547618A (en) A kind of session teardown method and apparatus
CN107070947A (en) A kind of method and system of the access network based on access authentication
CN104396216A (en) Methods for identifying network traffic characteristics to correlate and manage one or more subsequent flows and devices thereof

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right

Effective date of registration: 20190116

Address after: 430074 No. 6, High-tech Fourth Road, Donghu High-tech Development Zone, Wuhan City, Hubei Province

Patentee after: Fenghuo Communication Science &. Technology Co., Ltd.

Address before: 430074 3rd Floor, Optical Communication Building, 67 Guanggu Pioneer Street, Donghu Development Zone, Wuhan City, Hubei Province

Patentee before: Wuhan Fenghuo Network Co., Ltd.

TR01 Transfer of patent right