CN104935596A - Communication security processing method and system - Google Patents
Communication security processing method and system Download PDFInfo
- Publication number
- CN104935596A CN104935596A CN201510334456.6A CN201510334456A CN104935596A CN 104935596 A CN104935596 A CN 104935596A CN 201510334456 A CN201510334456 A CN 201510334456A CN 104935596 A CN104935596 A CN 104935596A
- Authority
- CN
- China
- Prior art keywords
- intelligent safety
- safety terminal
- reception device
- radio reception
- described intelligent
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/08—Access security
Abstract
The invention provides a communication security processing method and a communication security processing system. The method comprises the steps as follows: an intelligent security terminal transmits a connecting request to wireless access equipment after establishing a connection with the wireless access equipment; the wireless access equipment obtains visit times of the intelligent security terminal accessing the wireless access equipment according to address information of the intelligent security terminal carried in the connecting request; the wireless access equipment performs control treatment to reserved information corresponding to the address information of the intelligent security terminal according to the visit times and the address information of the intelligent security terminal. By adopting the intelligent security terminal in the above solution, a user opens a browser via the intelligent security terminal to fill in and check the reserved information to prevent the communication from being damaged by forged WIFI, thereby greatly improving the communication security.
Description
Technical field
The invention belongs to communication security control field, particularly relate to a kind of communication security method and system.
Background technology
Prior art discloses the cut-in method that a kind of mobile terminal one keyed jointing enters public WIFI, described method comprises: install a keyed jointing preserving user mobile phone account on mobile terminals and enter to apply APP, and described user mobile phone account comprises the dynamic authentication password that subscriber phone number and user access public WIFI needs, mobile terminal accesses public WIFI and runs a keyed jointing and enters APP, mobile terminal detects a keyed jointing and enters APP and run first time, detecting that a keyed jointing enters APP is that first time is when running, jump to the access authentication page, request user input handset number, and at user's input handset number and after clicking the acquisition identifying code button on the access authentication page, public WIFI certificate server sends the dynamic authentication password corresponding with the phone number that user inputs to mobile terminal, public WIFI certificate server carries out dynamic authentication password authentication according to the dynamic authentication password of user's input on the access authentication page, after being verified, one keyed jointing enters APP and automatically completes activation, the phone number input user and the dynamic authentication password of acquisition are kept at a keyed jointing as user mobile phone account and enter in APP, and enter on APP to show dynamic authentication password at a keyed jointing, detecting that a keyed jointing enters APP is not first time when running, and a keyed jointing enters APP and is presented at a keyed jointing and enters dynamic authentication password in the user account preserved in APP, one keyed jointing enters APP for user provides access button, and dynamic authentication password is sent to carry out dynamic authentication password authentication to public WIFI certificate server after receiving user to click the input signal of access button, after being verified, mobile terminal obtains networking authority.
Such scheme provides the easy communication mode of one that user accesses public WIFI, but when public WIFI is forged, the account information of user can be revealed, as phone number/username and password; Meanwhile, telex network information is completely monitored.
Summary of the invention
In order to solve the problems of the technologies described above, the invention provides a kind of communication security processing method and system, to solve the problems of the technologies described above.
In order to reach the object of the invention, the invention provides a kind of communication security processing method and system.Said method comprises the following steps:
After intelligent safety terminal and radio reception device connect, send connection request to described radio reception device;
Described radio reception device is according to the address information of the described intelligent safety terminal carried in described connection request, and before acquisition, described intelligent safety terminal accesses the access times of described radio reception device;
Described radio reception device, according to the address information of described access times, described intelligent safety terminal, carries out control treatment to the obligate information corresponding with the address information of described intelligent safety terminal.
The present invention also provides a kind of communication security treatment system, comprises intelligent safety terminal, radio reception device; Wherein, described intelligent safety terminal is connected with described radio reception device;
Described intelligent safety terminal, after connecting with radio reception device, sends connection request to described radio reception device;
Described radio reception device, for the address information according to the described intelligent safety terminal carried in described connection request, before acquisition, described intelligent safety terminal accesses the access times of described radio reception device;
Described radio reception device, also for the address information according to described access times, described intelligent safety terminal, carries out control treatment to the obligate information corresponding with the address information of described intelligent safety terminal.
By following scheme: after intelligent safety terminal and radio reception device connect, send connection request to described radio reception device; Described radio reception device is according to the address information of the described intelligent safety terminal carried in described connection request, and before acquisition, described intelligent safety terminal accesses the access times of described radio reception device; Described radio reception device, according to the address information of described access times, described intelligent safety terminal, carries out control treatment to the obligate information corresponding with the address information of described intelligent safety terminal; Such scheme adopts intelligent safety terminal user filled in by intelligent safety terminal open any browser and check obligate information, ensures not to be forged WIFI infringement, and communications security increases greatly.
By following scheme: if described access times are greater than 0, judge that described intelligent safety terminal is non-ly to access first, then described radio reception device obtains obligate information corresponding to described intelligent safety terminal MAC Address and described obligate information is sent to described intelligent safety terminal; Described intelligent safety terminal judges the described obligate information received and according to judged result, determines whether disconnect the connection with described radio reception device; In such scheme, the obligate information of intelligent safety terminal by receiving, judge that described radio reception device is not target communication device, then disconnect the connection between described radio reception device, avoid the radio reception device forged to intelligent safety terminal security threat.
By following scheme: if described access times are greater than 0, judge that described intelligent safety terminal is non-ly to access first, then described radio reception device obtains obligate information corresponding to described intelligent safety terminal MAC Address and access times scope residing for access times, determines corresponding accessory information and described obligate information, described accessory information are sent to described intelligent safety terminal; Described intelligent safety terminal judges the described obligate information received, described additional information and according to judged result, determines whether disconnect the connection with described radio reception device; Such scheme achieves the situation intercepting obligate information at third party's radio reception device, additional information is adopted to carry out the mode verified, avoid the access of third party's radio reception device malice, ensure that the communication security between intelligent safety terminal and object radio reception device.
Accompanying drawing explanation
Accompanying drawing is used to provide the further understanding to technical solution of the present invention, and forms a part for specification, is used from and explains technical scheme of the present invention, do not form the restriction to technical solution of the present invention with the embodiment one of the application.
Fig. 1 is the hardware configuration schematic diagram of the mobile terminal realizing each embodiment of the present invention;
Fig. 2 is the communication system figure that can operate according to mobile terminal of the present invention;
Figure 3 shows that the communication security process flow figure of the embodiment of the present invention 3;
Figure 4 shows that the communication security process flow figure of the embodiment of the present invention 4;
Figure 5 shows that the communication security treatment system structure chart of the embodiment of the present invention 5.
The realization of the object of the invention, functional characteristics and advantage will in conjunction with the embodiments, are described further with reference to accompanying drawing.
Embodiment
Hereinafter also describe the present invention in detail with reference to accompanying drawing in conjunction with the embodiments.It should be noted that, when not conflicting, the embodiment in the application and the feature in embodiment can combine mutually.
Should be appreciated that specific embodiment described herein only in order to explain the present invention, be not intended to limit the present invention.
Intelligent safety terminal in the present invention comprises mobile terminal, fixed terminal; Wherein, mobile terminal can be implemented in a variety of manners.Such as, the intelligent safety terminal described in the present invention can comprise the mobile terminals such as such as mobile phone, PDA (personal digital assistant), PAD (panel computer); Fixed terminal comprises desktop computer.
Hereinafter also describe the present invention in detail with reference to accompanying drawing in conjunction with the embodiments.It should be noted that, when not conflicting, the embodiment in the application and the feature in embodiment can combine mutually.
The mobile terminal realizing each embodiment of the present invention is described referring now to accompanying drawing.In follow-up description, use the suffix of such as " module ", " parts " or " unit " for representing element only in order to be conducive to explanation of the present invention, itself is specific meaning not.Therefore, " module " and " parts " can mixedly use.
Fig. 1 is the hardware configuration schematic diagram of the mobile terminal realizing each embodiment of the present invention.
Mobile terminal 100 can comprise wireless communication unit 110, A/V (audio/video) input unit 120, user input unit 130, sensing cell 140, output unit 150, memory 160, interface unit 170, controller 180 and power subsystem 190 etc.Fig. 1 shows the mobile terminal with various assembly, it should be understood that, does not require to implement all assemblies illustrated.Can alternatively implement more or less assembly.Will be discussed in more detail below the element of mobile terminal.
Wireless communication unit 110 generally includes one or more assembly, and it allows the radio communication between mobile terminal 100 and wireless communication system or network.Such as, wireless communication unit can comprise at least one in broadcast reception module 111, mobile communication module 112, wireless Internet module 113, short range communication module 114 and positional information module 115.
Broadcast reception module 111 via broadcast channel from external broadcasting management server receiving broadcast signal and/or broadcast related information.Broadcast channel can comprise satellite channel and/or terrestrial channel.Broadcast management server can be generate and send the server of broadcast singal and/or broadcast related information or the broadcast singal generated before receiving and/or broadcast related information and send it to the server of terminal.Broadcast singal can comprise TV broadcast singal, radio signals, data broadcasting signal etc.And broadcast singal may further include the broadcast singal combined with TV or radio signals.Broadcast related information also can provide via mobile communications network, and in this case, broadcast related information can be received by mobile communication module 112.Broadcast singal can exist in a variety of manners, such as, it can exist with the form of the electronic service guidebooks (ESG) of the electronic program guides of DMB (DMB) (EPG), digital video broadcast-handheld (DVB-H) etc.Broadcast reception module 111 can by using the broadcast of various types of broadcast system Received signal strength.Especially, broadcast reception module 111 can by using such as multimedia broadcasting-ground (DMB-T), DMB-satellite (DMB-S), digital video broadcasting-hand-held (DVB-H), the digit broadcasting system receiving digital broadcast of the Radio Data System, received terrestrial digital broadcasting integrated service (ISDB-T) etc. of forward link media (MediaFLO).Broadcast reception module 111 can be constructed to be applicable to providing the various broadcast system of broadcast singal and above-mentioned digit broadcasting system.The broadcast singal received via broadcast reception module 111 and/or broadcast related information can be stored in memory 160 (or storage medium of other type).
Radio signal is sent at least one in base station (such as, access point, Node B etc.), exterior terminal and server and/or receives radio signals from it by mobile communication module 112.Various types of data that such radio signal can comprise voice call signal, video calling signal or send according to text and/or Multimedia Message and/or receive.
Wireless Internet module 113 supports the Wi-Fi (Wireless Internet Access) of mobile terminal.This module can be inner or be externally couple to terminal.Wi-Fi (Wireless Internet Access) technology involved by this module can comprise WLAN (WLAN) (Wi-Fi), Wibro (WiMAX), Wimax (worldwide interoperability for microwave access), HSDPA (high-speed downlink packet access) etc.
Short range communication module 114 is the modules for supporting junction service.Some examples of short-range communication technology comprise bluetooth TM, radio-frequency (RF) identification (RFID), Infrared Data Association (IrDA), ultra broadband (UWB), purple honeybee TM etc.
Positional information module 115 is the modules of positional information for checking or obtain mobile terminal.The typical case of positional information module is GPS (global positioning system).According to current technology, GPS module 115 calculates from the range information of three or more satellite and correct time information and for the Information application triangulation calculated, thus calculates three-dimensional current location information according to longitude, latitude and pin-point accuracy.Current, the method for calculating location and temporal information uses three satellites and by the error of the position that uses an other satellite correction calculation to go out and temporal information.In addition, GPS module 115 can carry out computational speed information by Continuous plus current location information in real time.
A/V input unit 120 is for audio reception or vision signal.A/V input unit 120 can comprise camera 121 and microphone 1220, and the view data of camera 121 to the static images obtained by image capture apparatus in Video Capture pattern or image capture mode or video processes.Picture frame after process may be displayed on display unit 151.Picture frame after camera 121 processes can be stored in memory 160 (or other storage medium) or via wireless communication unit 110 and send, and can provide two or more cameras 1210 according to the structure of mobile terminal.Such acoustic processing can via microphones sound (voice data) in telephone calling model, logging mode, speech recognition mode etc. operational mode, and can be voice data by microphone 122.Audio frequency (voice) data after process can be converted to the formatted output that can be sent to mobile communication base station via mobile communication module 112 when telephone calling model.Microphone 122 can be implemented various types of noise and eliminate (or suppress) algorithm and receiving and sending to eliminate (or suppression) noise or interference that produce in the process of audio signal.
User input unit 130 can generate key input data to control the various operations of mobile terminal according to the order of user's input.User input unit 130 allows user to input various types of information, and keyboard, the young sheet of pot, touch pad (such as, detecting the touch-sensitive assembly of the change of the resistance, pressure, electric capacity etc. that cause owing to being touched), roller, rocking bar etc. can be comprised.Especially, when touch pad is superimposed upon on display unit 151 as a layer, touch-screen can be formed.
Sensing cell 140 detects the current state of mobile terminal 100, (such as, mobile terminal 100 open or close state), the position of mobile terminal 100, user for mobile terminal 100 contact (namely, touch input) presence or absence, the orientation of mobile terminal 100, the acceleration or deceleration of mobile terminal 100 move and direction etc., and generate order or the signal of the operation for controlling mobile terminal 100.Such as, when mobile terminal 100 is embodied as sliding-type mobile phone, sensing cell 140 can sense this sliding-type phone and open or close.In addition, whether whether sensing cell 140 can detect power subsystem 190 provides electric power or interface unit 170 to couple with external device (ED).Sensing cell 140 can comprise proximity transducer 1410 and will be described this in conjunction with touch-screen below.
Interface unit 170 is used as at least one external device (ED) and is connected the interface that can pass through with mobile terminal 100.Such as, external device (ED) can comprise wired or wireless head-band earphone port, external power source (or battery charger) port, wired or wireless FPDP, memory card port, for connecting the port, audio frequency I/O (I/O) port, video i/o port, ear port etc. of the device with identification module.Identification module can be that storage uses the various information of mobile terminal 100 for authentication of users and can comprise subscriber identification module (UIM), client identification module (SIM), Universal Subscriber identification module (USIM) etc.In addition, the device (hereinafter referred to " recognition device ") with identification module can take the form of smart card, and therefore, recognition device can be connected with mobile terminal 100 via port or other jockey.Interface unit 170 may be used for receive from external device (ED) input (such as, data message, electric power etc.) and the input received be transferred to the one or more element in mobile terminal 100 or may be used for transmitting data between mobile terminal and external device (ED).
In addition, when mobile terminal 100 is connected with external base, interface unit 170 can be used as to allow by it electric power to be provided to the path of mobile terminal 100 from base or can be used as the path that allows to be transferred to mobile terminal by it from the various command signals of base input.The various command signal inputted from base or electric power can be used as and identify whether mobile terminal is arranged on the signal base exactly.Output unit 150 is constructed to provide output signal (such as, audio signal, vision signal, alarm signal, vibration signal etc.) with vision, audio frequency and/or tactile manner.Output unit 150 can comprise display unit 151, dio Output Modules 152, alarm unit 153 etc.
Display unit 151 may be displayed on the information of process in mobile terminal 100.Such as, when mobile terminal 100 is in telephone calling model, display unit 151 can show with call or other communicate (such as, text messaging, multimedia file are downloaded etc.) be correlated with user interface (UI) or graphic user interface (GUI).When mobile terminal 100 is in video calling pattern or image capture mode, display unit 151 can the image of display capture and/or the image of reception, UI or GUI that video or image and correlation function are shown etc.
Meanwhile, when display unit 151 and touch pad as a layer superposed on one another to form touch-screen time, display unit 151 can be used as input unit and output device.Display unit 151 can comprise at least one in liquid crystal display (LCD), thin-film transistor LCD (TFT-LCD), Organic Light Emitting Diode (OLED) display, flexible display, three-dimensional (3D) display etc.Some in these displays can be constructed to transparence and watch from outside to allow user, and this can be called transparent display, and typical transparent display can be such as TOLED (transparent organic light emitting diode) display etc.According to the specific execution mode wanted, mobile terminal 100 can comprise two or more display units (or other display unit), such as, mobile terminal can comprise outernal display unit (not shown) and inner display unit (not shown).Touch-screen can be used for detecting touch input pressure and touch input position and touch and inputs area.
When dio Output Modules 152 can be under the isotypes such as call signal receiving mode, call mode, logging mode, speech recognition mode, broadcast reception mode at mobile terminal, voice data convert audio signals that is that wireless communication unit 110 is received or that store in memory 160 and exporting as sound.And dio Output Modules 152 can provide the audio frequency relevant to the specific function that mobile terminal 100 performs to export (such as, call signal receives sound, message sink sound etc.).Dio Output Modules 152 can comprise loud speaker, buzzer etc.
Alarm unit 153 can provide and export that event informed to mobile terminal 100.Typical event can comprise calling reception, message sink, key signals input, touch input etc.Except audio or video exports, alarm unit 153 can provide in a different manner and export with the generation of notification event.Such as, alarm unit 153 can provide output with the form of vibration, when receive calling, message or some other enter communication (incomingcommunicat ion) time, alarm unit 153 can provide sense of touch to export (that is, vibrating) to notify to user.By providing such sense of touch to export, even if when the mobile phone of user is in the pocket of user, user also can identify the generation of various event.Alarm unit 153 also can provide the output of the generation of notification event via display unit 151 or dio Output Modules 152.
Memory 160 software program that can store process and the control operation performed by controller 180 etc., or temporarily can store oneself through exporting the data (such as, telephone directory, message, still image, video etc.) that maybe will export.And, memory 160 can store about when touch be applied to touch-screen time the vibration of various modes that exports and the data of audio signal.
Memory 160 can comprise the storage medium of at least one type, described storage medium comprises flash memory, hard disk, multimedia card, card-type memory (such as, SD or DX memory etc.), random access storage device (RAM), static random-access memory (SRAM), read-only memory (ROM), Electrically Erasable Read Only Memory (EEPROM), programmable read only memory (PROM), magnetic storage, disk, CD etc.And mobile terminal 100 can be connected the memory function of execute store 160 network storage device with by network cooperates.
Controller 180 controls the overall operation of mobile terminal usually.Such as, controller 180 performs the control relevant to voice call, data communication, video calling etc. and process.In addition, controller 180 can comprise the multi-media module 1810 for reproducing (or playback) multi-medium data, and multi-media module 1810 can be configured in controller 180, or can be configured to be separated with controller 180.Controller 180 can pattern recognition process, is identified as character or image so that input is drawn in the handwriting input performed on the touchscreen or picture.
Power subsystem 190 receives external power or internal power and provides each element of operation and the suitable electric power needed for assembly under the control of controller 180.
Various execution mode described herein can to use such as computer software, the computer-readable medium of hardware or its any combination implements.For hardware implementation, execution mode described herein can by using application-specific IC (ASIC), digital signal processor (DSP), digital signal processing device (DSPD), programmable logic device (PLD), field programmable gate array (FPGA), processor, controller, microcontroller, microprocessor, being designed at least one performed in the electronic unit of function described herein and implementing, in some cases, such execution mode can be implemented in controller 180.For implement software, the execution mode of such as process or function can be implemented with allowing the independent software module performing at least one function or operation.Software code can be implemented by the software application (or program) write with any suitable programming language, and software code can be stored in memory 160 and to be performed by controller 180.
So far, oneself is through the mobile terminal according to its functional description.Below, for the sake of brevity, by the slide type mobile terminal that describes in various types of mobile terminals of such as folded form, board-type, oscillating-type, slide type mobile terminal etc. exemplarily.Therefore, the present invention can be applied to the mobile terminal of any type, and is not limited to slide type mobile terminal.
Mobile terminal 100 as shown in Figure 1 can be constructed to utilize and send the such as wired and wireless communication system of data via frame or grouping and satellite-based communication system operates.
Describe wherein according to the communication system that mobile terminal of the present invention can operate referring now to Fig. 2.
Such communication system can use different air interfaces and/or physical layer.Such as, the air interface used by communication system comprises such as frequency division multiple access (FDMA), time division multiple access (TDMA), code division multiple access (CDMA) and universal mobile telecommunications system (UMTS) (especially, Long Term Evolution (LTE)), global system for mobile communications (GSM) etc.As non-limiting example, description below relates to cdma communication system, but such instruction is equally applicable to the system of other type.
With reference to figure 2, cdma wireless communication system can comprise multiple mobile terminal 100, multiple base station (BS) 270, base station controller (BSC) 275 and mobile switching centre (MSC) 280.MSC280 is constructed to form interface with Public Switched Telephony Network (PSTN) 290.MSC280 is also constructed to form interface with the BSC275 that can be couple to base station 270 via back haul link.Back haul link can construct according to any one in some interfaces that oneself knows, described interface comprises such as E1/T1, ATM, IP, PPP, frame relay, HDSL, ADSL or xDSL.Will be appreciated that system as shown in Figure 2 can comprise multiple BSC2750.
Each BS270 can serve one or more subregion (or region), by multidirectional antenna or point to specific direction each subregion of antenna cover radially away from BS270.Or each subregion can by two or more antenna covers for diversity reception.Each BS270 can be constructed to support multiple parallel compensate, and each parallel compensate has specific frequency spectrum (such as, 1.25MHz, 5MHz etc.).
Subregion can be called as CDMA Channel with intersecting of parallel compensate.BS270 also can be called as base station transceiver subsystem (BTS) or other equivalent terms.Under these circumstances, term " base station " may be used for broadly representing single BSC275 and at least one BS270.Base station also can be called as " cellular station ".Or each subregion of particular B S270 can be called as multiple cellular station.
As shown in Figure 2, broadcast singal is sent to the mobile terminal 100 at operate within systems by broadcsting transmitter (BT) 295.Broadcast reception module 111 as shown in Figure 1 is arranged on mobile terminal 100 and sentences the broadcast singal receiving and sent by BT295.In fig. 2, several global positioning system (GPS) satellite 300 is shown.Satellite 300 helps at least one in the multiple mobile terminal 100 in location.
In fig. 2, depict multiple satellite 300, but understand, the satellite of any number can be utilized to obtain useful locating information.GPS module 115 as shown in Figure 1 is constructed to coordinate to obtain the locating information wanted with satellite 300 usually.Substitute GPS tracking technique or outside GPS tracking technique, can use can other technology of position of tracking mobile terminal.In addition, at least one gps satellite 300 optionally or extraly can process satellite dmb transmission.
As a typical operation of wireless communication system, BS270 receives the reverse link signal from various mobile terminal 100.Mobile terminal 100 participates in call usually, information receiving and transmitting communicates with other type.Each reverse link signal that certain base station 270 receives is processed by particular B S270.The data obtained are forwarded to relevant BSC275.BSC provides call Resourse Distribute and comprises the mobile management function of coordination of the soft switching process between BS270.The data received also are routed to MSC280 by BSC275, and it is provided for the extra route service forming interface with PSTN290.Similarly, PSTN290 and MSC280 forms interface, and MSC and BSC275 forms interface, and BSC275 correspondingly control BS270 so that forward link signals is sent to mobile terminal 100.
Based on above-mentioned mobile terminal hardware configuration and communication system, each embodiment of the inventive method is proposed.
Should be appreciated that specific embodiment described herein only in order to explain the present invention, be not intended to limit the present invention.
Intelligent unlocking processing terminal in the present invention comprises mobile terminal, fixed terminal; Wherein, mobile terminal can be implemented in a variety of manners.Such as, the intelligent unlocking processing terminal described in the present invention can comprise the mobile terminal of such as mobile phone, PDA (personal digital assistant), PAD (panel computer) etc.; Fixed terminal can be the fixed terminal of digital TV, desktop computer etc.
Figure 3 shows that the communication security process flow figure of the embodiment of the present invention 3, comprise the following steps:
Step 301a: after intelligent safety terminal and radio reception device connect, sends connection request to described radio reception device;
Further, described intelligent safety terminal, by the debarkation authentication page, inputs user name, password and radio reception device and connects.
Further, after described intelligent safety terminal obtains the website information in browser, send connection request to described radio reception device.
Further, described intelligent safety terminal MAC (medium accesscontrol, medium access control) address information is carried in described connection request.
Step 302b: described radio reception device is according to the mac address information of the described intelligent safety terminal carried in described connection request, and before acquisition, described intelligent safety terminal accesses the access times of described radio reception device;
Further, if access times are 0, then judge that described intelligent safety terminal is as accessing first; If access times are greater than 0, then judge that described intelligent safety terminal is non-ly to access first.
Further,
If access times are 0, then judge that described intelligent safety terminal is as accessing first, then described radio reception device issues user profile User Interface to described intelligent safety terminal;
Described intelligent safety terminal shows described user profile User Interface, and obtains the obligate information of input;
Described obligate information is sent to described radio reception device and is stored by described radio reception device by described intelligent safety terminal;
Described radio reception device preserves the corresponding relation of described intelligent safety terminal MAC Address and described obligate information.
Further, after described intelligent safety terminal accesses described radio reception device, the mac address information of intelligent safety terminal described in described radio reception device record.
Step 303c: described radio reception device, according to the mac address information of described access times, described intelligent safety terminal, carries out control treatment to the obligate information corresponding with the mac address information of described intelligent safety terminal.
Further, described radio reception device is according to the mac address information of described access times, described intelligent safety terminal, and the process of the obligate information corresponding with the mac address information of described intelligent safety terminal being carried out to control treatment is:
If described access times are greater than 0, judge that described intelligent safety terminal is non-ly to access first, then described radio reception device obtains obligate information corresponding to described intelligent safety terminal MAC Address and described obligate information is sent to described intelligent safety terminal;
Described intelligent safety terminal judges the described obligate information received and according to judged result, determines whether disconnect the connection with described radio reception device.
Further, if described access times are greater than 0, judge that described intelligent safety terminal is non-ly to access first, then described radio reception device obtains obligate information corresponding to described intelligent safety terminal MAC Address and generates a page downloading containing obligate information to described intelligent safety terminal;
Described intelligent safety terminal receives described containing after the page of obligate information, shows on a web browser, and then judges whether described radio reception device is Target Wireless access device;
If described radio reception device is not Target Wireless access device, then described intelligent safety terminal disconnects the connection with described radio reception device.
Further, described radio reception device is according to the mac address information of described access times, described intelligent safety terminal, and the process of the obligate information corresponding with the mac address information of described intelligent safety terminal being carried out to control treatment is:
If described access times are greater than 0, judge that described intelligent safety terminal is non-ly to access first, then described radio reception device obtains obligate information corresponding to described intelligent safety terminal MAC Address and access times scope residing for access times, determines corresponding accessory information and described obligate information, described accessory information are sent to described intelligent safety terminal;
Described intelligent safety terminal judges the described obligate information received, described additional information and according to judged result, determines whether disconnect the connection with described radio reception device.
Further, described intelligent safety terminal, described radio reception device be memory access numbers range and the accessory information table of comparisons respectively, as shown in table 1:
Access times scope and the accessory information table of comparisons
| Access times scope (X) | Accessory information |
| 1≤X<3 | CompanyAddress's information |
| 3≤X<6 | Telephone number information in person |
| X≥6 | Mailbox message |
Table 1
Such scheme achieves the situation intercepting obligate information at third party's radio reception device, additional information is adopted to carry out the mode verified, avoid the access of third party's radio reception device malice, ensure that the communication security between intelligent safety terminal and object radio reception device.
Figure 4 shows that the communication security process flow figure of the embodiment of the present invention 4, comprise the following steps:
Step 401: intelligent safety terminal, by the debarkation authentication page, inputs user name, password and radio reception device and connects;
Step 402: the network address of intelligent safety terminal by inputting in browser, initiates connection request to radio reception device;
Step 403: described radio reception device obtains the mac address information of intelligent safety terminal, judges whether it is that First Contact Connections arrives described radio reception device;
If not first connection, then issue the obligate information page, perform step 404:
If first connection, then issue and fill in the obligate information page, perform step 405:
Step 404: supply intelligent safety terminal user rs authentication whether to be forge radio reception device at intelligent safety terminal display obligate information;
Step 405: intelligent safety terminal user fills in user's obligate information and preserves, is sent to described radio reception device simultaneously and preserves by described obligate information;
Step 406: described radio reception device preserves the information such as intelligent safety terminal user's obligate information and intelligent safety terminal user's MAC address.
Figure 5 shows that the communication security treatment system structure chart of the embodiment of the present invention 5, comprise intelligent safety terminal 501, radio reception device 502; Wherein, described intelligent safety terminal 501 is connected with described radio reception device 502;
Described intelligent safety terminal 501, after connecting with radio reception device 502, sends connection request to described radio reception device 502;
Described radio reception device 502, for the address information according to the described intelligent safety terminal 501 carried in described connection request, before acquisition, described intelligent safety terminal 501 accesses the access times of described radio reception device 502;
Described radio reception device 502, also for the address information according to described access times, described intelligent safety terminal, carries out control treatment to the obligate information corresponding with the address information of described intelligent safety terminal 501.
By following scheme: after intelligent safety terminal and radio reception device connect, send connection request to described radio reception device; Described radio reception device is according to the address information of the described intelligent safety terminal carried in described connection request, and before acquisition, described intelligent safety terminal accesses the access times of described radio reception device; Described radio reception device, according to the address information of described access times, described intelligent safety terminal, carries out control treatment to the obligate information corresponding with the address information of described intelligent safety terminal; Such scheme adopts intelligent safety terminal user filled in by intelligent safety terminal open any browser and check obligate information, ensures not to be forged WIFI infringement, and communications security increases greatly.
By following scheme: if described access times are greater than 0, judge that described intelligent safety terminal is non-ly to access first, then described radio reception device obtains obligate information corresponding to described intelligent safety terminal MAC Address and described obligate information is sent to described intelligent safety terminal; Described intelligent safety terminal judges the described obligate information received and according to judged result, determines whether disconnect the connection with described radio reception device; In such scheme, the obligate information of intelligent safety terminal by receiving, judge that described radio reception device is not target communication device, then disconnect the connection between described radio reception device, avoid the radio reception device forged to intelligent safety terminal security threat.
By following scheme: if described access times are greater than 0, judge that described intelligent safety terminal is non-ly to access first, then described radio reception device obtains obligate information corresponding to described intelligent safety terminal MAC Address and access times scope residing for access times, determines corresponding accessory information and described obligate information, described accessory information are sent to described intelligent safety terminal; Described intelligent safety terminal judges the described obligate information received, described additional information and according to judged result, determines whether disconnect the connection with described radio reception device; Such scheme achieves the situation intercepting obligate information at third party's radio reception device, additional information is adopted to carry out the mode verified, avoid the access of third party's radio reception device malice, ensure that the communication security between intelligent safety terminal and object radio reception device.
It should be noted that, in this article, term " comprises ", " comprising " or its any other variant are intended to contain comprising of nonexcludability, thus make to comprise the process of a series of key element, method, article or device and not only comprise those key elements, but also comprise other key elements clearly do not listed, or also comprise by the intrinsic key element of this process, method, article or device.When not more restrictions, the key element limited by statement " comprising ... ", and be not precluded within process, method, article or the device comprising this key element and also there is other identical element.
The invention described above embodiment sequence number, just to describing, does not represent the quality of embodiment.
Through the above description of the embodiments, those skilled in the art can be well understood to the mode that above-described embodiment method can add required general hardware platform by software and realize, hardware can certainly be passed through, but in a lot of situation, the former is better execution mode.Based on such understanding, technical scheme of the present invention can embody with the form of software product the part that prior art contributes in essence in other words, this computer software product is stored in a storage medium (as ROM/RAM, magnetic disc, CD), comprising some instructions in order to make a station terminal equipment (can be mobile phone, computer, server, air conditioner, or the network equipment etc.) perform method described in each embodiment of the present invention.
These are only the preferred embodiments of the present invention; not thereby the scope of the claims of the present invention is limited; every utilize specification of the present invention and accompanying drawing content to do equivalent structure or equivalent flow process conversion; or be directly or indirectly used in other relevant technical fields, be all in like manner included in scope of patent protection of the present invention.
The foregoing is only the preferred embodiments of the present invention, be not limited to the present invention, for a person skilled in the art, the present invention can have various modifications and variations.Within the spirit and principles in the present invention all, any amendment done, equivalent replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (10)
1. a communication security processing method, is characterized in that, comprises the following steps:
After intelligent safety terminal and radio reception device connect, send connection request to described radio reception device;
Described radio reception device is according to the address information of the described intelligent safety terminal carried in described connection request, and before acquisition, described intelligent safety terminal accesses the access times of described radio reception device;
Described radio reception device, according to the address information of described access times, described intelligent safety terminal, carries out control treatment to the obligate information corresponding with the address information of described intelligent safety terminal.
2. method according to claim 1, it is characterized in that, described radio reception device is according to the address information of described access times, described intelligent safety terminal, and the process of the obligate information corresponding with the address information of described intelligent safety terminal being carried out to control treatment is:
If described access times are greater than 0, judge that described intelligent safety terminal is non-ly to access first, then described radio reception device obtains obligate information corresponding to described intelligent safety terminal MAC Address and described obligate information is sent to described intelligent safety terminal;
Described intelligent safety terminal judges the described obligate information received and according to judged result, determines whether disconnect the connection with described radio reception device.
3. method according to claim 2, it is characterized in that, if described access times are greater than 0, judge that described intelligent safety terminal is non-ly to access first, then described radio reception device obtains obligate information corresponding to described intelligent safety terminal MAC Address and generates a page downloading containing obligate information to described intelligent safety terminal;
Described intelligent safety terminal receives described containing after the page of obligate information, shows on a web browser, and then judges whether described radio reception device is Target Wireless access device;
If described radio reception device is not Target Wireless access device, then described intelligent safety terminal disconnects the connection with described radio reception device.
4. method according to claim 1, it is characterized in that, described radio reception device is according to the address information of described access times, described intelligent safety terminal, and the process of the obligate information corresponding with the address information of described intelligent safety terminal being carried out to control treatment is:
If described access times are greater than 0, judge that described intelligent safety terminal is non-ly to access first, then described radio reception device obtains obligate information corresponding to described intelligent safety terminal MAC Address and access times scope residing for access times, determines corresponding accessory information and described obligate information, described accessory information are sent to described intelligent safety terminal;
Described intelligent safety terminal judges the described obligate information received, described additional information and according to judged result, determines whether disconnect the connection with described radio reception device.
5. method according to claim 4, is characterized in that, described intelligent safety terminal, described radio reception device be memory access numbers range and the accessory information table of comparisons respectively.
6. method according to claim 1, is characterized in that, if access times are 0, then judges that described intelligent safety terminal is as accessing first; If access times are greater than 0, then judge that described intelligent safety terminal is non-ly to access first.
7. method according to claim 6, is characterized in that, if access times are 0, then judge that described intelligent safety terminal is as accessing first, then described radio reception device issues user profile User Interface to described intelligent safety terminal;
Described intelligent safety terminal shows described user profile User Interface, and obtains the obligate information of input;
Described obligate information is sent to described radio reception device and is stored by described radio reception device by described intelligent safety terminal.
8. according to method according to claim 7, it is characterized in that, described radio reception device preserves the corresponding relation of described intelligent safety terminal MAC Address and described obligate information.
9. method according to claim 8, is characterized in that, after described intelligent safety terminal accesses described radio reception device, and the mac address information of intelligent safety terminal described in described radio reception device record.
10. a communication security treatment system, is characterized in that, comprises intelligent safety terminal, radio reception device; Wherein, described intelligent safety terminal is connected with described radio reception device;
Described intelligent safety terminal, after connecting with radio reception device, sends connection request to described radio reception device;
Described radio reception device, for the address information according to the described intelligent safety terminal carried in described connection request, before acquisition, described intelligent safety terminal accesses the access times of described radio reception device;
Described radio reception device, also for the address information according to described access times, described intelligent safety terminal, carries out control treatment to the obligate information corresponding with the address information of described intelligent safety terminal.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510334456.6A CN104935596B (en) | 2015-06-16 | 2015-06-16 | A kind of communication security processing method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510334456.6A CN104935596B (en) | 2015-06-16 | 2015-06-16 | A kind of communication security processing method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104935596A true CN104935596A (en) | 2015-09-23 |
| CN104935596B CN104935596B (en) | 2018-06-26 |
Family
ID=54122568
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510334456.6A Active CN104935596B (en) | 2015-06-16 | 2015-06-16 | A kind of communication security processing method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104935596B (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106016591A (en) * | 2016-05-20 | 2016-10-12 | 深圳创维空调科技有限公司 | Information display method and device |
| CN106485491A (en) * | 2016-09-30 | 2017-03-08 | 努比亚技术有限公司 | A kind of payment terminal and method |
| CN112398851A (en) * | 2020-11-13 | 2021-02-23 | Oppo广东移动通信有限公司 | Data processing method, data processing device, storage medium and electronic equipment |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101217805A (en) * | 2008-01-21 | 2008-07-09 | 中兴通讯股份有限公司 | A wireless LAN access control method |
| CN101221679A (en) * | 2008-01-24 | 2008-07-16 | 中国工商银行股份有限公司 | Self-help collection vehicle, collection system and collection method |
| CN102204307A (en) * | 2011-06-15 | 2011-09-28 | 华为技术有限公司 | Wlan authentication method based on MAC address and device thereof |
| CN102394888A (en) * | 2011-11-11 | 2012-03-28 | 汉口银行股份有限公司 | Safety login method of online banking reservation information |
| CN103812836A (en) * | 2012-11-12 | 2014-05-21 | 孙银海 | System and method for website to send user reserved information |
| CN104144146A (en) * | 2013-05-10 | 2014-11-12 | 中国电信股份有限公司 | Method and system for visiting website |
-
2015
- 2015-06-16 CN CN201510334456.6A patent/CN104935596B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101217805A (en) * | 2008-01-21 | 2008-07-09 | 中兴通讯股份有限公司 | A wireless LAN access control method |
| CN101221679A (en) * | 2008-01-24 | 2008-07-16 | 中国工商银行股份有限公司 | Self-help collection vehicle, collection system and collection method |
| CN102204307A (en) * | 2011-06-15 | 2011-09-28 | 华为技术有限公司 | Wlan authentication method based on MAC address and device thereof |
| CN102394888A (en) * | 2011-11-11 | 2012-03-28 | 汉口银行股份有限公司 | Safety login method of online banking reservation information |
| CN103812836A (en) * | 2012-11-12 | 2014-05-21 | 孙银海 | System and method for website to send user reserved information |
| CN104144146A (en) * | 2013-05-10 | 2014-11-12 | 中国电信股份有限公司 | Method and system for visiting website |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106016591A (en) * | 2016-05-20 | 2016-10-12 | 深圳创维空调科技有限公司 | Information display method and device |
| CN106016591B (en) * | 2016-05-20 | 2019-04-02 | 深圳创维空调科技有限公司 | Information display method and device |
| CN106485491A (en) * | 2016-09-30 | 2017-03-08 | 努比亚技术有限公司 | A kind of payment terminal and method |
| CN112398851A (en) * | 2020-11-13 | 2021-02-23 | Oppo广东移动通信有限公司 | Data processing method, data processing device, storage medium and electronic equipment |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104935596B (en) | 2018-06-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105188101A (en) | Network switching device and method | |
| CN104660827A (en) | Method and terminal for message reminding | |
| CN104935575A (en) | Login method, and authentication method and device | |
| CN105101052A (en) | Method, system and mobile terminal for transferring SIM card | |
| CN104735255A (en) | Split screen display method and system | |
| CN104660912A (en) | Photographing method and photographing device | |
| CN105188098A (en) | Mobile terminal network switching apparatus and network switching method | |
| CN104902477A (en) | Authentication terminal, wireless router, wireless router connection method and wireless router connection system | |
| CN104883658A (en) | Virtual card information processing method and system | |
| CN104955011A (en) | Emergency number adapting method, device and terminal | |
| CN105098895A (en) | Charging control device and method | |
| CN105187521A (en) | Service processing device and method | |
| CN105100090A (en) | Communication method, server and system based on internal and external network separation | |
| CN105208011A (en) | Verification system and method | |
| CN104731512A (en) | Method, device and terminal for sharing pictures | |
| CN105159700A (en) | Application self-start control apparatus and method | |
| CN104968033A (en) | Terminal network processing method and apparatus | |
| CN104837113A (en) | Privacy information display method and terminal | |
| CN105100416A (en) | Event reminding method and wearable device | |
| CN105101294A (en) | Data transmission device and method | |
| CN104993180A (en) | Terminal charging method and device | |
| CN105138400A (en) | Application self-starting management method and apparatus | |
| CN104917899A (en) | Call prompting method and device | |
| CN104796964A (en) | Method and device for improving call completion ratio of emergency call of mobile terminal | |
| CN105100673A (en) | Voice over long term evolution (VoLTE) based desktop sharing method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |