CN105491093B - Method, server, wireless access point and the terminal that terminal authentication, network access - Google Patents

Method, server, wireless access point and the terminal that terminal authentication, network access Download PDF

Info

Publication number
CN105491093B
CN105491093B CN201410484523.8A CN201410484523A CN105491093B CN 105491093 B CN105491093 B CN 105491093B CN 201410484523 A CN201410484523 A CN 201410484523A CN 105491093 B CN105491093 B CN 105491093B
Authority
CN
China
Prior art keywords
terminal
access point
key
wireless access
termination
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201410484523.8A
Other languages
Chinese (zh)
Other versions
CN105491093A (en
Inventor
吴滨
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Mobile Communications Group Co Ltd
Original Assignee
China Mobile Communications Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Mobile Communications Group Co Ltd filed Critical China Mobile Communications Group Co Ltd
Priority to CN201410484523.8A priority Critical patent/CN105491093B/en
Publication of CN105491093A publication Critical patent/CN105491093A/en
Application granted granted Critical
Publication of CN105491093B publication Critical patent/CN105491093B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

The present invention provides method, server, wireless access point and the terminal of a kind of terminal authentication, network access, wherein, the method of terminal authentication is applied to cloud server, comprising: cloud server is the key that terminal distribution can be used in multiple wireless access point access authentications;Wherein, multiple wireless access point are in heterogeneous network;Cloud server by the delivering key to terminal and multiple wireless access point so that the key pair terminal that the key for the terminal that wireless access point is issued based on cloud server and terminal upload carries out access authentication.This method is by being included in cloud server unified management for the wireless access point of the heterogeneous networks technology of different operators, cloud server uniformly forms service key to terminal, and key information is issued to each wireless access point, Lai Jinhang access authentication of user by exit passageway;So that all wireless access point for being included in cloud server management, terminal is not necessarily to repeat to authenticate, and can be used directly, and greatly improves customer service experience.

Description

Method, server, wireless access point and the terminal that terminal authentication, network access
Technical field
The present invention relates to communication network service technical field, in particular to a kind of terminal authentication, the method for network access, clothes Business device, wireless access point and terminal.
Background technique
Currently, user mainly has by way of mobile (wireless) accessing terminal to network:
1) access mode of WiFi network: input authentication cipher key access network;Or login page authenticates portal, input User name, cryptographic acess network.
2) 2G/3G/4G cellular network: built-in SIM card, it then follows the authentication process of 3GPP standard accesses and uses net Network.
The method of above-mentioned access network exists following insufficient:
For belonging to the WiFi network of different operators, needs to re-start Web vector graphic request, obtain user key, use The information such as name in an account book/password log in again, when being moved to except current WiFi coverage area, need to search new wireless access side Formula, and authentication operation is re-executed, to continue to access network.
In the case where heterogeneous network coexists, user is it should be understood that available Radio Access Network existing for current location (such as WiFi, 3G, 4G), then (such as, if having the right to use for accessing the network according to the concrete condition of oneself terminal How limit obtains using authentication information necessary to the network etc.), manual mode connects network, brings greatly to user It is inconvenient.
Summary of the invention
The purpose of the present invention is to provide method, server, wireless access point and ends that a kind of terminal authentication, network access End, user carry out Web vector graphic under any type of network, according to the network tariff information of network push, recognize without repeating Card, the input without duplicate customer name and password and register, greatly improve user network usage experience.
In order to achieve the above object, the embodiment of the present invention provides a kind of method of terminal authentication, is applied to cloud server, Include:
The cloud server is the key that terminal distribution can be used in multiple wireless access point access authentications;Wherein, institute It states in the heterogeneous network that multiple wireless access point are in;
The cloud server gives the delivering key to the terminal and the multiple wireless access point, so that the nothing The key pair terminal that the key and terminal for the terminal that line access point is issued based on the cloud server upload is accessed Certification.
Wherein, the cloud server is the step for the key that terminal distribution can be used in multiple wireless access point access authentications Suddenly include:
The register of the cloud server response terminal, obtains the Termination ID of the terminal;
The cloud server is that each terminal distribution uniquely can be used in multiple wirelessly connecing according to the Termination ID The key of access point access authentication.
Wherein, the step of cloud server gives the delivering key to the terminal and the multiple wireless access point Include:
The cloud server passes through the Termination ID of the terminal and unique key corresponding with the Termination ID The terminal and the multiple wireless access point are handed down in one default channel, so that the terminal and the multiple wireless access point The Termination ID and corresponding key are saved respectively.
The above embodiment of the present invention also provides a kind of access method of heterogeneous network, is applied to wireless access point, comprising:
The wireless access point receive the terminal that cloud server issues for multiple wireless access point access authentications Key;
The access network request of the wireless access point response terminal, carries out access using terminal described in the key pair and recognizes Card, authenticates the terminal passed through and accesses to the wireless access point.
Wherein, the access network request of the wireless access point response terminal, is carried out using terminal described in the key pair Access authentication, authenticating the step of terminal passed through carries out network access to the wireless access point includes:
Multiple wireless access point are requested according to the pre-access that terminal is sent, the push of Xiang Suoshu terminal and this wireless access point Network services corresponding access information;
The access information that the wireless access point is selected according to the terminal determines purpose access point;
The purpose access point carries out access authentication using terminal described in the key pair, so that the terminal pair that certification passes through The purpose access point carries out network access.
Wherein, the purpose access point includes: using the step of progress access authentication of terminal described in the key pair
The purpose access point receive the Termination ID for being stored in terminal local that the terminal uploads and with the terminal The corresponding key of ID;
The purpose access point obtains the cloud service corresponding with the Termination ID according to the Termination ID of the terminal The key for the terminal that device issues;
The purpose access point issues the cloud server corresponding with the Termination ID according to the Termination ID The key of the terminal and the key of the received terminal local compare, if the key that issues of the cloud server with The key agreement that the terminal uploads, then certification passes through.
Wherein, it is tariff information that the network of the wireless access point, which services corresponding access information,.
The embodiment of the present invention also provides a kind of access method of heterogeneous network, is applied to terminal, comprising:
The terminal receives the key that can be used in multiple wireless access point access authentications that cloud server issues, In, the multiple wireless access point is in heterogeneous network;
The terminal is corresponding to the accessible network according to the accessible network in the heterogeneous network detected Wireless access point sends access network request, the wireless access point is issued using the cloud server described Terminal described in the key pair of terminal carries out access authentication, authenticates the terminal passed through and accesses to the wireless access point.
Wherein, the terminal is according to the accessible network in the heterogeneous network detected, to the accessible network Corresponding wireless access point sends access network request, and the wireless access point is issued using the cloud server The terminal key pair described in terminal carry out access authentication the step of include:
The terminal is corresponding to the accessible network according to the accessible network in the heterogeneous network detected Wireless access point sends pre-access request;
Access corresponding with the service of the network of the wireless access point letter that the terminal is pushed according to the wireless access point Breath selects an access information, so that the wireless access point responds the access information and determines purpose access point;
The terminal to the purpose access point upload be stored in terminal local Termination ID and with the Termination ID pair The key answered, so that key corresponding with the Termination ID that the wireless access point is issued based on the cloud server and end The key pair terminal corresponding with the Termination ID that end uploads carries out access authentication.
The embodiment of the present invention also provides a kind of cloud server, comprising:
Distribution module, for can be used in the key of multiple wireless access point access authentications for terminal distribution;Wherein, described Multiple wireless access point are in heterogeneous network;
Module is issued, for giving the delivering key to the terminal and the multiple wireless access point, so that the nothing The key pair terminal that the key and terminal for the terminal that line access point is issued based on the cloud server upload is accessed Certification.
Wherein, the distribution module includes:
It obtains module and obtains the Termination ID of the terminal for responding the register of terminal;
Distribution sub module, for being that each terminal distribution uniquely can be used in multiple wirelessly connecing according to the Termination ID The key of access point access authentication.
Wherein, the module that issues includes:
Submodule is issued, for leading to the Termination ID of the terminal and unique key corresponding with the Termination ID It crosses a default channel and is handed down to the terminal and the multiple wireless access point, so that the terminal and the multiple wireless access Point saves the Termination ID and corresponding key respectively.
The embodiment of the present invention also provides a kind of wireless access point, comprising:
First receiving module, for receive terminal that cloud server issues for multiple wireless access point access authentications Key;
First authentication module is connect for responding the access network request of terminal using terminal described in the key pair Enter certification, authenticates the terminal passed through and access to the wireless access point.
Wherein, first authentication module includes:
Pushing module, the pre-access request for being sent according to terminal, the push of Xiang Suoshu terminal and this wireless access point Network services corresponding access information;
Determining module, the access information for being selected according to the terminal, determines purpose access point;
First authentication sub module carries out access authentication using terminal described in the key pair for the purpose access point, So that the terminal that certification passes through carries out network access to the purpose access point.
Wherein, first authentication sub module includes:
Receiving unit, for the purpose access point receive the Termination ID for being stored in terminal local that the terminal uploads with And key corresponding with the Termination ID;
Acquiring unit obtains corresponding with the Termination ID for the purpose access point according to the Termination ID of the terminal The key of the terminal that issues of the cloud server;
Authentication unit will the cloud corresponding with the Termination ID for the purpose access point according to the Termination ID The key of the terminal and the key of the received terminal local that end server issues compare, if the cloud service The key agreement that the key and the terminal that device issues upload, then certification passes through.
The embodiment of the present invention also provides a kind of terminal, comprising:
Second receiving module, multiple wireless access point access authentications that can be used in for receiving that cloud server issues Key, wherein the multiple wireless access point is in heterogeneous network;
Second authentication module, for being can access to described according to the accessible network in the heterogeneous network detected The corresponding wireless access point of network sends access network request, and the wireless access point is enabled to utilize the cloud server Terminal described in the key pair of the terminal issued carries out access authentication, authenticates the terminal passed through and carries out to the wireless access point Access.
Wherein, second authentication module includes:
Sending module, the accessible network in the heterogeneous network detected for basis, to the accessible network Corresponding wireless access point sends pre-access request;
Selecting module corresponding with the service of the network of the wireless access point connects for what is pushed according to the wireless access point Enter information, select an access information, so that the wireless access point responds the access information and determines purpose access point;
Uploading module, for the purpose access point upload be stored in terminal local Termination ID and with the terminal The corresponding key of ID, so that the key corresponding with the Termination ID that the wireless access point is issued based on the cloud server Access authentication is carried out with the key pair terminal corresponding with the Termination ID that terminal uploads.
Above-mentioned technical proposal of the invention at least has the following beneficial effects:
In the access method of the heterogeneous network of the embodiment of the present invention, by by the heterogeneous networks technology standard of different operators Wireless access point be included in cloud server unified management, cloud server uniformly forms service key to terminal, and passes through Exit passageway issues key information to each wireless access point, Lai Jinhang access authentication of user;So that all be included in cloud server The wireless access point of management, terminal are not necessarily to repeat to authenticate, can be used directly, and greatly improve customer service experience.
Detailed description of the invention
Fig. 1 shows the basic step schematic diagrames of the method for terminal authentication in the embodiment of the present invention;
Fig. 2 indicates that the access method of heterogeneous network in the embodiment of the present invention is illustrated in the basic step of wireless access point side Figure;
Fig. 3 indicates basic step schematic diagram of the access method in terminal side of heterogeneous network in the embodiment of the present invention
Fig. 4 indicates the specific implementation step flow chart of the access method of heterogeneous network in the embodiment of the present invention;
Fig. 5 indicates the composed structure schematic diagram of cloud server in the embodiment of the present invention;
Fig. 6 indicates the composed structure schematic diagram of wireless access point in the embodiment of the present invention;
Fig. 7 indicates the composed structure schematic diagram of terminal in the embodiment of the present invention.
Specific embodiment
To keep the technical problem to be solved in the present invention, technical solution and advantage clearer, below in conjunction with attached drawing and tool Body embodiment is described in detail.
The present invention needs to re-start Web vector graphic request, weight for the network for belonging to different operators in the prior art New login brings the problem of great inconvenience to user, in the access method for providing a kind of heterogeneous network, by by different fortune The wireless access point for seeking the heterogeneous networks technology standard of quotient is included in the same management of cloud server, the same formation of cloud server Service key issues key information to each wireless access point, Lai Jinhang access authentication of user to terminal, and by exit passageway;Make All wireless access point for being included in cloud server management are obtained, terminal is not necessarily to repeat to authenticate, can be used directly, greatly improve Customer service experience.
As shown in Figure 1, the embodiment of the present invention provides a kind of method of terminal authentication, it is applied to a cloud server, comprising:
Step 10, the cloud server is the key that terminal distribution can be used in multiple wireless access point access authentications; Wherein, the multiple wireless access point is in heterogeneous network;
Step 11, the cloud server gives the delivering key to the terminal and the multiple wireless access point, makes The key pair terminal that uploads of the key of the terminal that is issued based on the cloud server of the wireless access point and terminal Carry out access authentication.
In the above embodiment of the present invention, the heterogeneous networks technology standard of the same management different operators of cloud server Wireless access point, such as base station of movement/connection/telecommunications 2G cellular network, the base station movement/connection/telecommunications 3G, shifting The base station of dynamic/connection/telecommunications 4G cellular network or movement/connection/telecommunications WiFi network AP etc..So-called heterogeneous network is Refer to that two or more wireless communication systems uses different access technologies, or using identical wireless access technology but Belong to multiple networks of different cellular carriers.The setting of the cloud server can be managed collectively wireless in heterogeneous network Access point facilitates the management of heterogeneous networks.
Specifically, in step 10 and step 11, the unified management based on cloud server, integrate and unified various isomeries without The authentication mechanism of gauze network forms unified certification key, for customer access network, is not necessarily to multiple handover network or logging in network, Improve user experience.
In the above embodiment of the present invention, step 10 includes:
Step 101, the register of the cloud server response terminal, obtains the Termination ID of the terminal;
Step 102, the cloud server uniquely can be used according to the Termination ID for each terminal distribution more The key of a wireless access point access authentication.
Specifically, each terminal has a unique Termination ID, then in concrete application of the present invention, given according to Termination ID The unique key of each terminal distribution, then each Termination ID corresponds to unique key, ensure that the uniqueness and peace of key Quan Xing;The key carries out access authentication to the terminal for multiple wireless access point.Wherein, which is that setting is regular herein It is not described in detail, all keys that can reach authentication requesting are applicable in embodiments of the present invention.
In the above embodiment of the present invention, step 11 includes:
Step 111, the cloud server is by the Termination ID of the terminal and corresponding with the Termination ID unique Key is handed down to the terminal and the multiple wireless access point by a default channel, so that the terminal and the multiple Wireless access point saves the Termination ID and corresponding key respectively.
In the embodiment of the present invention, cloud server is by Termination ID and the corresponding unique delivering key of the Termination ID to eventually Default channel when end refers to the exit passageway communicated between cloud server and terminal;Cloud server is by Termination ID and is somebody's turn to do The corresponding unique delivering key of Termination ID gives default channel when multiple wireless access point to refer to cloud server and wirelessly connect The exit passageway communicated between access point;In concrete application of the invention, user terminal is taken by a default client and cloud Device of being engaged in establishes connection, simultaneously because terminal is originally with regard in store Termination ID, then cloud server, can be only under terminal when photos and sending messages Key corresponding with Termination ID is issued, terminal is locally saving the key, and since terminal only has a Termination ID, then there is only one A terminal key, i.e. Termination ID and the key are in one-to-one relationship.
Specifically, to save in pairs when the wireless access point saves the Termination ID and the Termination ID corresponding key , i.e. a Termination ID corresponds to a unique key;Since a wireless access point has access to multiple terminals, then must save The Termination ID of multiple terminals and key corresponding with the Termination ID can reserve one for the ease of management in wireless access point The Termination ID of multiple terminals and key corresponding with the Termination ID are formed cipher key store by memory headroom, and it is reserved interior to be stored in it It deposits in space, is convenient for subsequent calls.
In order to preferably realize above-mentioned purpose, as shown in Fig. 2, the embodiment of the present invention also provides a kind of access of heterogeneous network Method is applied to wireless access point, comprising:
Step 20, the wireless access point receives accessing for multiple wireless access point for the terminal that cloud server issues The key of certification;
Step 21, the access network request of wireless access point response terminal, using terminal described in the key pair into Row access authentication authenticates the terminal passed through and accesses to the wireless access point.
In the above embodiment of the present invention, the key for multiple terminals that cloud server issues in step 20, wherein multiple Terminal refers specifically to the terminal for being equipped with the client communicated with the cloud server and being in logging state, provided by the invention different The access method of network forming network is suitable for all terminals for being equipped with above-mentioned client, and applicability is wide.
In the above embodiment of the present invention, step 21 includes:
Step 211, multiple wireless access point are requested according to the pre-access that terminal is sent, and the push of Xiang Suoshu terminal is wireless with this The network of access point services corresponding access information;
Step 212, the access information that the wireless access point is selected according to the terminal determines purpose access point;
Step 213, the purpose access point carries out access authentication using terminal described in the key pair, so that certification passes through Terminal to the purpose access point carry out network access.
In the embodiment of the present invention, multiple wireless access point are requested according to the pre-access that terminal is sent, the push of Xiang Suoshu terminal Access information corresponding with the service of the network of this wireless access point, such as expenses standard information, user terminal selecting oneself need The corresponding wireless access point of tariff information, i.e. purpose access point, then subsequent step 213 is by the complete paired terminal of purpose access point Access authentication, so that the terminal that certification passes through carries out network access to the purpose access point, while when the terminal next time selects Without carrying out authentication again when same purpose access point, direct addressable network substantially increases user experience.
Specifically, in the above embodiment of the present invention, step 213 includes:
Step 2131, the purpose access point receive the Termination ID for being stored in terminal local that the terminal uploads and with The corresponding key of the Termination ID;
Step 2132, the purpose access point obtains institute corresponding with the Termination ID according to the Termination ID of the terminal State the key for the terminal that cloud server issues;
Step 2133, the purpose access point, will the cloud clothes corresponding with the Termination ID according to the Termination ID The key of the terminal and the key of the received terminal local that business device issues compare, if under the cloud server The key agreement that the key of hair and the terminal upload, then certification passes through.
In the embodiment of the present invention, purpose access point is had been described in detail using terminal key to end in step 2131 to step 2133 End carries out the process of access authentication;Due to Termination ID one and only one key, if then the cloud server issues The key agreement that key and the terminal upload, then certification passes through;Otherwise, certification does not pass through, its terminal is forbidden wirelessly to connect this Access point carries out network access.
In order to preferably realize above-mentioned purpose, as shown in figure 3, the embodiment of the present invention also provides a kind of access of heterogeneous network Method is applied to a terminal, comprising:
Step 30, what one cloud server of the terminal reception issued can be used in multiple wireless access point access authentications Key, wherein the multiple wireless access point is in heterogeneous network;
Step 31, the terminal is according to the accessible network in the heterogeneous network detected, to the accessible net The corresponding wireless access point of network sends access network request, enables the wireless access point using under the cloud server Terminal described in the key pair of the terminal of hair carries out access authentication, authenticates the terminal passed through and visits the wireless access point It asks.
In the above embodiment of the present invention, terminal described in step 30 is corresponding with this terminal for multiple nothings in locally preservation Line access point carries out the key of access authentication to this terminal;Terminal need to first detect can access in the heterogeneous network in step 31 It include 3G the and 4G network of mobile 3G and 4G network, connection in network, such as heterogeneous network, a terminal is mobile subscriber, then The accessible network of terminal is mobile 3G and 4G network in the heterogeneous network.One terminal can support multiple network systems simultaneously Formula form, herein a different citing.Terminal sends access network request, then wireless access point is carried out based on the key pair terminal Access authentication authenticates the terminal passed through and accesses to the wireless access point.
In the above embodiment of the present invention, step 31 includes:
Step 311, the terminal is according to the accessible network in the heterogeneous network detected, to the accessible net The corresponding wireless access point of network sends pre-access request;
Step 312, the terminal responds wirelessly connecing with this for the pre-access request push according to the wireless access point The network of access point services corresponding access information, selects an access information, so that the wireless access point responds the access letter It ceases and determines purpose access point;
Step 313, the terminal to the purpose access point upload be stored in terminal local Termination ID and with it is described The corresponding key of Termination ID so that the wireless access point issued based on the cloud server it is corresponding with the Termination ID The key pair terminal corresponding with the Termination ID that key and terminal upload carries out access authentication.
In the embodiment of the present invention, terminal sends pre-access request, the nothing to the corresponding wireless access point of accessible network Line access point responds the pre-access and requests the access information for pushing network service to the terminal, which refers specifically to this The tariff information of network, terminal select corresponding rate, and wireless access point determines purpose access point;Then step 313 be terminal with Information exchange between purpose access point, i.e. terminal are sent to purpose access point is stored in the Termination ID of terminal local and corresponding Key, so that on key corresponding with the Termination ID and terminal that the wireless access point is issued based on the cloud server The key pair terminal corresponding with the Termination ID passed carries out access authentication;Its specific verification process is being wirelessly connected point side Detailed description, is not repeated to describe herein.
It is described specifically below with reference to access method of the Fig. 4 to the heterogeneous network of the embodiment of the present invention:
Step s1: user terminal installs client first, and logs in cloud server;
Step s2: cloud server records user terminal ID, and distributes keys to user terminal;
Step s3: user terminal is locally saving the key;
Step s4: while the key is also stored in cloud server;
Step s5: key is published to each wireless access point by exit passageway by cloud server;
Step s6: each wireless access point saves and is formed the cipher key store of each equipment;
Step s7: user terminal wireless front end finds to can access network, and sends pre-access request;
Step s8: wireless network pushes (can also initiate by cloud server) network service switch-in information (e.g., rate mark Standard etc.);
Step s9: user terminal selecting simultaneously confirms rate, sends access network request;
Step s10: wireless network side is based on cipher key store, authenticates to user, and start charging;
Step s11: user uses network, and in the wireless device of all ownership cloud server management, no longer needs to Secondary prompting user access, until new wireless access point or rate change appearance.
In order to preferably realize above-mentioned purpose, as shown in figure 5, the embodiment of the present invention also provides a kind of cloud server, packet It includes:
Distribution module 50, for can be used in the key of multiple wireless access point access authentications for terminal distribution;Wherein, institute It states in the heterogeneous network that multiple wireless access point are in;
Module 51 is issued, for giving the delivering key to the terminal and the multiple wireless access point, so that described The key pair terminal that the key and terminal for the terminal that wireless access point is issued based on the cloud server upload is connect Enter certification.
In the above embodiment of the present invention, the distribution module 50 includes:
It obtains module and obtains the Termination ID of the terminal for responding the register of terminal;
Distribution sub module, for being that each terminal distribution uniquely can be used in multiple wirelessly connecing according to the Termination ID The key of access point access authentication.
In the above embodiment of the present invention, the module 51 that issues includes:
Submodule is issued, for leading to the Termination ID of the terminal and unique key corresponding with the Termination ID It crosses a default channel and is handed down to the terminal and the multiple wireless access point, so that the terminal and the multiple wireless access Point saves the Termination ID and corresponding key respectively.
Cloud server provided in an embodiment of the present invention is cloud server corresponding with the method for above-mentioned terminal authentication, Then all embodiments of the method for above-mentioned terminal authentication and its advantages are suitable for the cloud server.
In order to preferably realize above-mentioned purpose, as shown in fig. 6, the embodiment of the present invention also provides a kind of wireless access point, packet It includes:
First receiving module 60 is recognized for receiving the accessing for multiple wireless access point for terminal that cloud server issues The key of card;
First authentication module 61 is carried out for responding the access network request of terminal using terminal described in the key pair Access authentication authenticates the terminal passed through and accesses to the wireless access point.
In the above embodiment of the present invention, first authentication module 61 includes:
Pushing module, the pre-access request for being sent according to terminal, the push of Xiang Suoshu terminal and this wireless access point Network services corresponding access information;
Determining module, the access information for being selected according to the terminal, determines purpose access point;
First authentication sub module carries out access authentication using terminal described in the key pair for the purpose access point, So that the terminal that certification passes through carries out network access to the purpose access point.
In the above embodiment of the present invention, first authentication sub module includes:
Receiving unit, for the purpose access point receive the Termination ID for being stored in terminal local that the terminal uploads with And key corresponding with the Termination ID;
Acquiring unit obtains corresponding with the Termination ID for the purpose access point according to the Termination ID of the terminal The key of the terminal that issues of the cloud server;
Authentication unit will the cloud corresponding with the Termination ID for the purpose access point according to the Termination ID The key of the terminal and the key of the received terminal local that end server issues compare, if the cloud service The key agreement that the key and the terminal that device issues upload, then certification passes through.
Wireless access point provided in an embodiment of the present invention is corresponding with the access method of above-mentioned heterogeneous network wirelessly to connect Access point, then all embodiments of the access method of above-mentioned heterogeneous network and its advantages are suitable for the wireless access point.
In order to preferably realize above-mentioned purpose, as shown in fig. 7, the embodiment of the present invention also provides a kind of terminal,
Include:
Second receiving module 70 is recognized for receiving multiple wireless access point accesses that can be used in that a cloud server issues The key of card, wherein the multiple wireless access point is in heterogeneous network;
Second authentication module 71, for being connect to described according to the accessible network in the heterogeneous network detected Enter the corresponding wireless access point of network and send access network request, the wireless access point is enabled to utilize the cloud service Terminal described in the key pair for the terminal that device issues carries out access authentication, authenticates the terminal passed through and clicks through to the wireless access Row access.
In the above embodiment of the present invention, second authentication module 71 includes:
Sending module, the accessible network in the heterogeneous network detected for basis, to the accessible network Corresponding wireless access point sends pre-access request;
Selecting module corresponding with the service of the network of the wireless access point connects for what is pushed according to the wireless access point Enter information, select an access information, so that the wireless access point responds the access information and determines purpose access point;
Uploading module, for the purpose access point upload be stored in terminal local Termination ID and with the terminal The corresponding key of ID, so that the key corresponding with the Termination ID that the wireless access point is issued based on the cloud server Access authentication is carried out with the key pair terminal corresponding with the Termination ID that terminal uploads.
In the access method of the heterogeneous network of the embodiment of the present invention, by by the heterogeneous networks technology standard of different operators Wireless access point be included in the same management of cloud server, the same formation service key of cloud server passes through to terminal Exit passageway issues key information to each wireless access point, Lai Jinhang access authentication of user;So that all be included in cloud server The wireless access point of management, terminal are not necessarily to repeat to authenticate, can be used directly, and greatly improve customer service experience.
Terminal provided in an embodiment of the present invention is terminal corresponding with the access method of above-mentioned heterogeneous network, then above-mentioned different All embodiments and its advantages of the access method of network forming network are suitable for the terminal.
The above is a preferred embodiment of the present invention, it is noted that for those skilled in the art For, without departing from the principles of the present invention, several improvements and modifications can also be made, these improvements and modifications It should be regarded as protection scope of the present invention.

Claims (17)

1. a kind of method of terminal authentication is applied to cloud server characterized by comprising
The cloud server is the key that terminal distribution can be used in multiple wireless access point access authentications;Wherein, described more A wireless access point is in heterogeneous network;
The cloud server gives the delivering key to the terminal and the multiple wireless access point, so that described wirelessly connect The key pair terminal that the key and terminal for the terminal that access point is issued based on the cloud server upload carries out access authentication.
2. the method for terminal authentication according to claim 1, which is characterized in that the cloud server is terminal distribution energy The step of being enough in the key of multiple wireless access point access authentications include:
The register of the cloud server response terminal, obtains the Termination ID of the terminal;
The cloud server is that each terminal distribution uniquely can be used in multiple wireless access point according to the Termination ID The key of access authentication.
3. the method for terminal authentication according to claim 2, which is characterized in that the cloud server will be under the key The step of issuing the terminal and the multiple wireless access point include:
The cloud server is by the Termination ID of the terminal and unique key corresponding with the Termination ID, in advance by one If the terminal and the multiple wireless access point are handed down in channel, so that the terminal and the multiple wireless access point difference Save the Termination ID and corresponding key.
4. a kind of access method of heterogeneous network is applied to wireless access point characterized by comprising
The wireless access point receives the key for multiple wireless access point access authentications for the terminal that cloud server issues;
The access network request of the wireless access point response terminal, carries out access authentication using terminal described in the key pair, The terminal passed through is authenticated to access to the wireless access point.
5. the access method of heterogeneous network according to claim 4, which is characterized in that the wireless access point responds terminal Access network request, using terminal described in the key pair carry out access authentication, authenticate the terminal passed through and wirelessly connect to described Access point carry out network access the step of include:
Multiple wireless access point are requested according to the pre-access that terminal is sent, the network of Xiang Suoshu terminal push and this wireless access point Service corresponding access information;
The access information that the wireless access point is selected according to the terminal determines purpose access point;
The purpose access point carries out access authentication using terminal described in the key pair, so that the terminal that certification passes through is to described Purpose access point carries out network access.
6. the access method of heterogeneous network according to claim 5, which is characterized in that described in the purpose access point utilizes Terminal described in key pair carry out access authentication the step of include:
The purpose access point receive the Termination ID for being stored in terminal local that the terminal uploads and with the Termination ID pair The key answered;
The purpose access point obtains under the cloud server corresponding with the Termination ID according to the Termination ID of the terminal The key of the terminal of hair;
Described in the purpose access point is issued according to the Termination ID, by the cloud server corresponding with the Termination ID The key of terminal and the key of the received terminal local compare, if the key that issues of the cloud server with it is described The key agreement that terminal uploads, then certification passes through.
7. the access method of heterogeneous network according to claim 5, which is characterized in that the network of the wireless access point takes Corresponding access information be engaged in as tariff information.
8. a kind of access method of heterogeneous network is applied to terminal characterized by comprising
The terminal receives the key that can be used in multiple wireless access point access authentications that cloud server issues, wherein institute Multiple wireless access point are stated to be in heterogeneous network;
The terminal is corresponding wireless to the accessible network according to the accessible network in the heterogeneous network detected Access point sends access network request, the terminal for enabling the wireless access point that the cloud server is utilized to issue Key pair described in terminal carry out access authentication, authenticate the terminal passed through and access to the wireless access point.
9. the access method of heterogeneous network according to claim 8, which is characterized in that the terminal is according to the institute detected The accessible network in heterogeneous network is stated, access network request is sent to the corresponding wireless access point of the accessible network, makes The wireless access point terminal can be accessed described in the key pair using the terminal that the cloud server issues The step of certification includes:
The terminal is corresponding wireless to the accessible network according to the accessible network in the heterogeneous network detected Access point sends pre-access request;
The access information corresponding with the service of the network of the wireless access point that the terminal is pushed according to the wireless access point, choosing An access information is selected, so that the wireless access point responds the access information and determines purpose access point;
The terminal is uploaded to the purpose access point is stored in the Termination ID of terminal local and corresponding with the Termination ID Key, so that on key corresponding with the Termination ID and terminal that the wireless access point is issued based on the cloud server The key pair terminal corresponding with the Termination ID passed carries out access authentication.
10. a kind of cloud server characterized by comprising
Distribution module, for can be used in the key of multiple wireless access point access authentications for terminal distribution;Wherein, the multiple Wireless access point is in heterogeneous network;
Module is issued, for giving the delivering key to the terminal and the multiple wireless access point, so that described wirelessly connect The key pair terminal that the key and terminal for the terminal that access point is issued based on the cloud server upload carries out access authentication.
11. cloud server according to claim 10, which is characterized in that the distribution module includes:
It obtains module and obtains the Termination ID of the terminal for responding the register of terminal;
Distribution sub module, for being that each terminal distribution uniquely can be used in multiple wireless access point according to the Termination ID The key of access authentication.
12. cloud server according to claim 10, which is characterized in that the module that issues includes:
Submodule is issued, for passing through one for the Termination ID of the terminal and unique key corresponding with the Termination ID The terminal and the multiple wireless access point are handed down in default channel, so that the terminal and the multiple wireless access point point The Termination ID and corresponding key are not saved.
13. a kind of wireless access point characterized by comprising
First receiving module, for receive terminal that cloud server issues for the close of multiple wireless access point access authentications Key;
First authentication module carries out access using terminal described in the key pair and recognizes for responding the access network request of terminal Card, authenticates the terminal passed through and accesses to the wireless access point.
14. wireless access point according to claim 13, which is characterized in that first authentication module includes:
Pushing module, the pre-access request for being sent according to terminal, the network of Xiang Suoshu terminal push and this wireless access point Service corresponding access information;
Determining module, the access information for being selected according to the terminal, determines purpose access point;
First authentication sub module carries out access authentication using terminal described in the key pair for the purpose access point, so that It authenticates the terminal passed through and network access is carried out to the purpose access point.
15. wireless access point according to claim 14, which is characterized in that first authentication sub module includes:
Receiving unit, for the purpose access point receive the Termination ID for being stored in terminal local that the terminal uploads and with The corresponding key of the Termination ID;
Acquiring unit obtains institute corresponding with the Termination ID for the purpose access point according to the Termination ID of the terminal State the key for the terminal that cloud server issues;
Authentication unit will the cloud clothes corresponding with the Termination ID for the purpose access point according to the Termination ID The key of the terminal and the key of the received terminal local that business device issues compare, if under the cloud server The key agreement that the key of hair and the terminal upload, then certification passes through.
16. a kind of terminal characterized by comprising
Second receiving module can be used in the close of multiple wireless access point access authentications for receive that cloud server issues Key, wherein the multiple wireless access point is in heterogeneous network;
Second authentication module, the accessible network in the heterogeneous network detected for basis, to the accessible network Corresponding wireless access point sends access network request, and the wireless access point is issued using the cloud server The terminal key pair described in terminal carry out access authentication, authenticate the terminal passed through and the wireless access point visited It asks.
17. terminal according to claim 16, which is characterized in that second authentication module includes:
Sending module, for being corresponded to the accessible network according to the accessible network in the heterogeneous network detected Wireless access point send pre-access request;
Selecting module, access corresponding with the service of the network of the wireless access point letter for being pushed according to the wireless access point Breath selects an access information, so that the wireless access point responds the access information and determines purpose access point;
Uploading module, for the purpose access point upload be stored in terminal local Termination ID and with the Termination ID pair The key answered, so that key corresponding with the Termination ID that the wireless access point is issued based on the cloud server and end The key pair terminal corresponding with the Termination ID that end uploads carries out access authentication.
CN201410484523.8A 2014-09-19 2014-09-19 Method, server, wireless access point and the terminal that terminal authentication, network access Active CN105491093B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410484523.8A CN105491093B (en) 2014-09-19 2014-09-19 Method, server, wireless access point and the terminal that terminal authentication, network access

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410484523.8A CN105491093B (en) 2014-09-19 2014-09-19 Method, server, wireless access point and the terminal that terminal authentication, network access

Publications (2)

Publication Number Publication Date
CN105491093A CN105491093A (en) 2016-04-13
CN105491093B true CN105491093B (en) 2019-06-25

Family

ID=55677803

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410484523.8A Active CN105491093B (en) 2014-09-19 2014-09-19 Method, server, wireless access point and the terminal that terminal authentication, network access

Country Status (1)

Country Link
CN (1) CN105491093B (en)

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105915353A (en) * 2016-04-15 2016-08-31 临沂神行通网络技术有限公司 Commercial wifi advertisement marketing billing system and billing method thereof
CN106685911B (en) * 2016-07-29 2020-12-04 腾讯科技(深圳)有限公司 Data processing method, authentication server and client
CN106302552A (en) * 2016-10-31 2017-01-04 四川安慧智城科技有限公司 A kind of processing method that can effectively supervise router and system safety under large scale deployment
CN109728901B (en) * 2017-10-31 2022-04-08 中国电信股份有限公司 Digital signature authentication method, device and system
CN109819446B (en) * 2019-03-14 2021-07-06 湖南大学 Space access authentication method and software defined edge computing system of mobile internet of things
CN110087330B (en) * 2019-04-25 2021-11-09 新华三技术有限公司 Wireless network connection establishing method, wireless access equipment and server
CN112399370B (en) * 2019-08-02 2022-07-22 华为云计算技术有限公司 Internet of vehicles safety communication method
CN112672351A (en) * 2020-12-15 2021-04-16 腾讯科技(深圳)有限公司 Wireless local area network authentication method and device, electronic equipment and storage medium
CN114040383A (en) * 2021-11-25 2022-02-11 广东电网有限责任公司广州供电局 WAPI (wireless LAN authentication and privacy infrastructure) secure network control method, device and equipment based on 5G node

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102256251A (en) * 2011-07-11 2011-11-23 上海天朗电子技术有限公司 Wireless broadband mobile terminal access method
CN102685750A (en) * 2012-06-12 2012-09-19 刘梦阳 Method for accessing wireless network, equipment and wireless network system
CN103796206A (en) * 2013-03-28 2014-05-14 深圳光启创新技术有限公司 Roaming method and communication system applied to traffic system

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101568108B (en) * 2008-04-21 2011-12-21 华为技术有限公司 Switching method and equipment between heteroid systems
US9456356B2 (en) * 2009-10-15 2016-09-27 Apple Inc. Methods for synchronizing data in a network
US9148173B2 (en) * 2012-03-30 2015-09-29 California Institute Of Technology Distributed reed-solomon codes for simple multiple access networks
TW201807961A (en) * 2012-09-27 2018-03-01 內數位專利控股公司 End-to-end architecture, API framework, discovery, and access in a virtualized network
CN103402201B (en) * 2013-08-01 2016-08-17 广州大学 A kind of WiFi-WiMAX heterogeneous wireless network authentication method based on pre-authentication
CN103747503A (en) * 2013-12-10 2014-04-23 北京智谷睿拓技术服务有限公司 Wireless network accessing method and accessing apparatus

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102256251A (en) * 2011-07-11 2011-11-23 上海天朗电子技术有限公司 Wireless broadband mobile terminal access method
CN102685750A (en) * 2012-06-12 2012-09-19 刘梦阳 Method for accessing wireless network, equipment and wireless network system
CN103796206A (en) * 2013-03-28 2014-05-14 深圳光启创新技术有限公司 Roaming method and communication system applied to traffic system

Also Published As

Publication number Publication date
CN105491093A (en) 2016-04-13

Similar Documents

Publication Publication Date Title
CN105491093B (en) Method, server, wireless access point and the terminal that terminal authentication, network access
CN106416331B (en) Method, unit and the medium of the file in eUICC for accessing storage eSIM
US9253712B2 (en) Automatic configuration of a wireless device
JP5963828B2 (en) Multi-channel communication terminal
US9992673B2 (en) Device authentication by tagging
CN101150594B (en) Integrated access method and system for mobile cellular network and WLAN
CN102111766B (en) Network accessing method, device and system
US8621577B2 (en) Method for performing multiple pre-shared key based authentication at once and system for executing the method
CN104735606B (en) Communication means and system based on wearable device
CN103428808A (en) Method and apparatus for controlling network access to guest apparatus based on presence of hosting apparatus
CN106537944A (en) Associating a device with another device's network subscription
WO2017219673A1 (en) Vowifi network access method and system, and terminal
CN101662768B (en) Authenticating method and equipment based on user identification module of personal handy phone system
JP2012054918A (en) Wi-fi access method, access point and wi-fi access system
CN101573998A (en) Method and apparatus for determining an authentication procedure
KR20160099396A (en) Using method for communication service and electronic device supporting the same
CN105050086B (en) A kind of method that terminal logs in Wifi hot spot
CN103906061A (en) Wireless access point
CN102843434B (en) A kind of equipment room shares method, the Apparatus and system of content
CN103297968A (en) Wireless terminal identifying method, wireless terminal identifying device and wireless terminal identifying system
CN103281692B (en) Method for fast roaming between a kind of AC and equipment
CN103906055A (en) Service data distribution method and service data distribution system
CN103384365A (en) Method and system for network access, method for processing business and equipment
CN101754203B (en) Method, device and network system for obtaining WAPI certificate
CN104754689B (en) home gateway access management method and system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant