CN106332076A - wireless access method, device and system - Google Patents

wireless access method, device and system Download PDF

Info

Publication number
CN106332076A
CN106332076A CN201510350762.9A CN201510350762A CN106332076A CN 106332076 A CN106332076 A CN 106332076A CN 201510350762 A CN201510350762 A CN 201510350762A CN 106332076 A CN106332076 A CN 106332076A
Authority
CN
China
Prior art keywords
subscriber equipment
gesture path
ciphertext
information
sends
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201510350762.9A
Other languages
Chinese (zh)
Inventor
赵华成
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Xian Zhongxing New Software Co Ltd
Original Assignee
Xian Zhongxing New Software Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Xian Zhongxing New Software Co Ltd filed Critical Xian Zhongxing New Software Co Ltd
Priority to CN201510350762.9A priority Critical patent/CN106332076A/en
Priority to PCT/CN2015/085804 priority patent/WO2016206169A1/en
Publication of CN106332076A publication Critical patent/CN106332076A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W76/00Connection management
    • H04W76/10Connection setup
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • User Interface Of Digital Computer (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses a wireless access method. The wireless access method comprises the steps of: receiving gesture trajectory information transmitted by user equipment, wherein the gesture trajectory information is information of a motion trajectory generated by touching the user equipment, or information generated by acquiring a motion trajectory in a preset aerial range; and transmitting a trust certificate to the user equipment if the received gesture trajectory information is the same as preset trajectory information, such that the user equipment can access a wireless network according to the trust certificate. The invention further discloses an access point (AP), user equipment and a wireless access system.

Description

A kind of radio switch-in method, device and system
Technical field
The present invention relates to the access technology of wireless communication field, particularly to a kind of radio switch-in method, device And system.
Background technology
Along with the development of wireless technology, wireless network transmissions, particularly get online without being tethered to a cable more and more universal.Wherein, Wireless Fidelity (Wireless-Fidelity, Wi-Fi) online is a kind of wireless network transmissions that current use is the widest Technology.
In prior art, Wi-Fi online be by PIN (Personal Identification Number, PIN) mode connects intelligent terminal and wireless network.Concrete, using which, user has only to hands Move in Wi-Fi equipment input Wi-Fi Hotspot, i.e. wireless access points (Wireless Access Point, AP) PIN, completes the interconnection between terminal.Meanwhile, user can also input Wi-Fi on focus and sets Standby PIN.But, a requirement of the latter is: focus must possess can carry out the aobvious of input operation Display screen or control client.Here, PIN is digital or alphabetical combination mostly, and such combination is not It is easy to user, particularly person in middle and old age user's input, therefore, reduce Consumer's Experience.
Summary of the invention
For solving the technical problem of existing existence, a kind of radio switch-in method of embodiment of the present invention expectation offer, Device and system, it is possible to simplify user's input, improve Consumer's Experience.
The technical scheme of the embodiment of the present invention is achieved in that
First aspect, it is provided that a kind of radio switch-in method, described method includes:
Receiving the gesture path information that subscriber equipment sends, described gesture path information is by using described in touch-control The information of the movement locus that family equipment produces or gather the information of movement locus in aerial preset range;
When the described gesture path information received is identical with the trace information preset, send out to described subscriber equipment Send trusted certificate, make described subscriber equipment access wireless network according to described trusted certificate.
In conjunction with first aspect, can be in implementation at the first, the gesture rail that described reception subscriber equipment sends Before mark information, described method also includes:
To described subscriber equipment send PKI, make described subscriber equipment according to PKI to described gesture path information, Physical address and the described random sequence of described subscriber equipment are encrypted, and obtain the first ciphertext;
The gesture information that described reception subscriber equipment sends includes:
Receive described first ciphertext that described subscriber equipment sends;
After the first ciphertext that the described subscriber equipment of described reception sends, described method also includes:
According to the default private key corresponding with described PKI, to described first ciphertext deciphering, obtain described gesture Trace information, the physical address of described subscriber equipment and described random sequence;
Described before described subscriber equipment sends trusted certificate, described method also includes:
Using the physical address of described subscriber equipment and described random sequence as key, described trusted certificate is entered Row encryption, obtains the second ciphertext;
Described to described subscriber equipment send trusted certificate include:
Send described second ciphertext to described subscriber equipment, make described subscriber equipment according to described subscriber equipment Described second ciphertext is decrypted by physical address and described random sequence, obtains described trusted certificate.
In conjunction with the first can implementation, can implementation described be sent out to described subscriber equipment at the second Before sending PKI, described method also includes:
Receive the access request that described subscriber equipment sends;
Request success response is sent to described subscriber equipment;
Receive the gesture path access way that described subscriber equipment sends;
Send to described subscriber equipment and receive success response.
Second aspect, it is provided that a kind of radio switch-in method, described method includes:
Obtaining gesture path information, described gesture path information is the fortune produced by subscriber equipment described in touch-control The information of dynamic track or gather the information of movement locus in aerial preset range;
Send described gesture path information to AP, make described AP at described gesture path information and the rail preset Trusted certificate is obtained when mark information is identical;
Receive the trusted certificate that described AP sends, and access wireless network according to described trusted certificate.
In conjunction with second aspect, can be in implementation at the first, after described acquisition gesture path information, institute Method of stating also includes:
Receive the PKI that described AP sends;
Obtain the physical address of described subscriber equipment;
Generate a string random sequence;
According to PKI to described gesture path information, the physical address of described subscriber equipment and described random sequence It is encrypted, obtains the first ciphertext;
Described to AP send described gesture path information include:
Send described first ciphertext to described AP, make described AP according to the private corresponding with described PKI preset Key, to described first ciphertext deciphering, obtains described gesture path information, the physical address of described subscriber equipment With described random sequence, then using the physical address of described subscriber equipment and described random sequence as key, right Trusted certificate is encrypted, and obtains the second ciphertext, and sends described second ciphertext;
The trusted certificate that the described AP of described reception sends includes:
Receive described second ciphertext that described AP sends;
Described according to described trusted certificate, before accessing wireless network, described method also includes:
Using the physical address of described subscriber equipment and described random sequence as key, described second ciphertext is entered Row deciphering, obtains described trusted certificate.
In conjunction with the first can implementation, can be in implementation at the second, the described AP of described reception sends PKI before, described method also includes:
Access request is sent to described AP;
Receive the request success response that described AP sends;
The gesture path access way sent to described AP;
Receive the reception success response that described AP sends.
The third aspect, it is provided that a kind of AP, described AP include:
Receiving unit, for receiving the gesture path information that subscriber equipment sends, described gesture path information is The information of movement locus that produced by subscriber equipment described in touch-control or gather the motion in aerial preset range The information of track;
Transmitting element, when the described gesture path information that receives is identical with default trace information, to Described subscriber equipment sends trusted certificate, makes described subscriber equipment access wireless network according to described trusted certificate.
In conjunction with the third aspect, can be in implementation at the first, described transmitting element, it is additionally operable to described use Family equipment sends PKI, makes described subscriber equipment set described gesture path information, described user according to PKI Standby physical address and described random sequence are encrypted, and obtain the first ciphertext;
Described reception unit specifically for:
Receive described first ciphertext that described subscriber equipment sends;
Described AP also includes:
Decryption unit, for according to the private key corresponding with described PKI preset, to described first ciphertext deciphering, Obtain described gesture path information, the physical address of described subscriber equipment and described random sequence;
Ciphering unit, for using the physical address of described subscriber equipment and described random sequence as key, right Described trusted certificate is encrypted, and obtains the second ciphertext;
Described transmitting element specifically for:
Send described second ciphertext to described subscriber equipment, make described subscriber equipment by the thing of described subscriber equipment Described trusted certificate, as key, is decrypted, obtains described credentials by reason address and described random sequence Book.
In conjunction with the first can implementation, can be in implementation at the second, described reception unit, be additionally operable to Receive the access request that described subscriber equipment sends;
Described transmitting element, is additionally operable to send request success response to described subscriber equipment;
Described reception unit, is additionally operable to receive the gesture path access way that described subscriber equipment sends;
Described transmitting element, is additionally operable to send to described subscriber equipment receive success response.
Fourth aspect, it is provided that a kind of subscriber equipment, described subscriber equipment includes:
Acquiring unit, is used for obtaining gesture path information, and described gesture path information is by using described in touch-control The information of the movement locus that family equipment produces or gather the information of movement locus in aerial preset range;
Transmitting element, for sending described gesture path information to AP, makes described AP in described gesture path Trusted certificate is obtained when information is identical with the trace information preset;
Receive unit, for receiving the trusted certificate that described AP sends, and access according to described trusted certificate Wireless network.
In conjunction with fourth aspect, can be in implementation at the first, described reception unit, it is additionally operable to receive described The PKI that AP sends;
Described acquiring unit, is additionally operable to obtain the physical address of described subscriber equipment;
Described subscriber equipment also includes:
Signal generating unit, is used for generating a string random sequence;
Ciphering unit, is used for according to PKI described gesture path information, the physical address of described subscriber equipment It is encrypted with described random sequence, obtains the first ciphertext;
Described transmitting element specifically for:
Send described first ciphertext to described AP, make described AP according to the private corresponding with described PKI preset Key, to described first ciphertext deciphering, obtains described gesture path information, the physical address of described subscriber equipment With described random sequence, then using the physical address of described subscriber equipment and described random sequence as key, right Trusted certificate is encrypted, and obtains the second ciphertext, and sends described second ciphertext;
Described reception unit specifically for:
Receive described second ciphertext that described AP sends;
Described subscriber equipment also includes:
Decryption unit, for using the physical address of described subscriber equipment and described random sequence as key, right Described second ciphertext is decrypted, and obtains described trusted certificate.
In conjunction with the first can implementation, the second can in implementation,
Described transmitting element, is additionally operable to send access request to described AP;
Described reception unit, is additionally operable to receive the request success response that described AP sends;
Described transmitting element, is additionally operable to the gesture path access way sent to described AP;
Described reception unit, is additionally operable to receive the reception success response that described AP sends.
5th aspect, it is provided that a kind of wireless access system, described wireless access system includes:
AP, for receiving the gesture path information that subscriber equipment sends;The described gesture path information received Time identical with default trace information, send trusted certificate to described subscriber equipment, make described subscriber equipment root Wireless network is accessed according to described trusted certificate;
Subscriber equipment, is used for obtaining gesture path information;Send described gesture path information to AP, make institute State AP and obtain trusted certificate when described gesture path information is identical with the trace information preset;Receive described The trusted certificate that AP sends, and access wireless network according to described trusted certificate;
Wherein, described gesture path information be by described in touch-control subscriber equipment produce movement locus information, Or gather the information of movement locus in aerial preset range.
Radio switch-in method, device and the system that the embodiment of the present invention is provided, in AP side, first receives use The gesture path information that family equipment sends, this gesture path information is produced by subscriber equipment described in touch-control The information of movement locus or gather the information of movement locus in aerial preset range;When the gesture received When trace information is identical with the trace information preset, then send trusted certificate to subscriber equipment, make subscriber equipment Wireless network is accessed according to trusted certificate.So, it is not necessary to when Wi-Fi networks, input by letter or The PIN of numeral composition, only needs user at the touch screen of subscriber equipment or aloft to mark one or more motion Track, after AP receives the gesture information that this movement locus is corresponding, it is possible to come according to gesture path information Carry out WiMAX connection.Visible, the input of this movement locus is suitable for the people of each age aspect and uses, Do not have input problem, and movement locus input is more convenient, and then Consumer's Experience can be greatly improved.
Accompanying drawing explanation
The flow chart of a kind of radio switch-in method that Fig. 1 provides for the embodiment of the present invention;
The schematic diagram of the touch input that Fig. 2 provides for the embodiment of the present invention;
The flow chart of the another kind of radio switch-in method that Fig. 3 provides for the embodiment of the present invention;
The interaction diagrams of another radio switch-in method that Fig. 4 provides for the embodiment of the present invention;
The structural representation of a kind of AP that Fig. 5 provides for the embodiment of the present invention;
The structural representation of the another kind of AP that Fig. 6 provides for the embodiment of the present invention;
The structural representation of a kind of subscriber equipment that Fig. 7 provides for the embodiment of the present invention;
The structural representation of the another kind of subscriber equipment that Fig. 8 provides for the embodiment of the present invention;
The structural representation of a kind of wireless access system that Fig. 9 provides for the embodiment of the present invention.
Detailed description of the invention
Embodiment one
The embodiment of the present invention provides a kind of radio switch-in method, is applied on AP, and the method includes:
The gesture path information that step 101, reception subscriber equipment send.
Here, gesture path information is the information of the movement locus produced by touch-control subscriber equipment or gathers The information of the movement locus in aerial preset range;Concrete, touch-control subscriber equipment is touch-control subscriber equipment Touch screen.
In the present embodiment, user selects wireless network connected mode can have two kinds: one is to touch connected mode; One is aerial gesture connected mode.
Wherein, described touch connected mode is the touch screen touch generation that user passes through pointer and subscriber equipment Movement locus accesses wireless network.Example, the input that contact input can unlock with the pattern of user terminal Mode is identical, and user can arrange button with the Wi-Fi on point touching screen, enters Wi-Fi and arranges interface, Clicking on the Wi-Fi Hotspot or the title of Wi-Fi equipment needing to connect, one interface of automatic spring, at this Movement locus is marked at interface, and this interface can be as in figure 2 it is shown, movement locus be as shown in the thick line in Fig. 2. Here, the concrete grammar of the contact input in the present embodiment is exemplary illustration, and the method for contact input is also It is not limited to this.
Described aerial gesture connected mode is next by drawing one or more track in user aloft preset range Connect wireless network.Concrete, user can arrange button with the Wi-Fi on point touching screen, enters Wi-Fi Arranging interface, click on the Wi-Fi Hotspot or the title of Wi-Fi equipment needing to connect, now, terminal sets Standby unlatching gesture identification function, opens photographic head and infrared inductor, waits user's input, and user is in gesture Marking one or more movement locus in identifying the space that function limits, subscriber equipment is according to photographic head and infrared Induction apparatus collects corresponding gesture path information.Here, the tool of the aerial gesture connected mode of the present embodiment Body method is exemplary illustration, and the method for aerial gesture connected mode is not limited to this.
When step 102, the gesture path information received are identical with the trace information preset, to subscriber equipment Send trusted certificate, make subscriber equipment access wireless network according to trusted certificate.
Here, preset trace information be that operation maintenance personnel pre-sets, the acquisition methods of this trace information with The method obtaining gesture path information is identical, and trusted certificate is to ensure that the trust of the safety accessing wireless network The digital certificate of certificate.
Compared to prior art, it is not necessary to when Wi-Fi networks, the PIN that input is made up of letter or number, But at the touch screen of subscriber equipment or one or more movement locus that aloft marks, subscriber equipment is received After the gesture information that this movement locus is corresponding, it is possible to carry out WiMAX according to gesture path information Connect.Therefore, the input of this movement locus is suitable for the people of each age aspect and uses, and does not haves defeated Enter problem, and movement locus input is more convenient, it is thus possible to be greatly improved Consumer's Experience.
Further, before step 101, in order to ensure that the gesture path information of transmission is not intercepted, be Needing before transmission to be encrypted gesture information, described method also includes:
Send PKI to subscriber equipment, make subscriber equipment according to PKI to gesture trace information, subscriber equipment Physical address and described random sequence are encrypted, and obtain the first ciphertext.In the present embodiment, encryption is to use Rivest, shamir, adelman, accordingly even when PKI is intercepted by other people in transmitting procedure, other people still can not obtain The ciphertext of encryption is decrypted, thus ensure that the safety of transmission.
Here, two keys of rivest, shamir, adelman needs: PKI (publickey) and private key (privatekey). PKI and private key are a pair, if be encrypted data with PKI, only could decipher with corresponding private key; If data are encrypted with private key, then only could decipher with corresponding PKI.Because encryption is conciliate Close use two different keys, so this algorithm is called rivest, shamir, adelman.
Further, step 101 specifically includes: receive described first ciphertext that subscriber equipment sends.
Accordingly, after step 101, described method also includes: according to the default private corresponding with PKI Key, to the first ciphertext deciphering, obtains gesture path information, the physical address of subscriber equipment and random sequence. Here, private key is for being decrypted the ciphertext of public key encryption, and PKI and private key are paired in asymmetric encryption Occur.
Further, in order to ensure that trusted certificate is not intercepted, before step 102, described method also includes:
Using the physical address of subscriber equipment and described random sequence as key, described trusted certificate is added Close, obtain the second ciphertext.In the present embodiment, encryption uses symmetric encipherment algorithm.Owing to key is without again Secondary it is transmitted, does not just worry that key is intercepted in the transmission, therefore, use symmetric cryptography more here Easy.
Here, symmetric encipherment algorithm is to apply AES earlier, technology maturation.At symmetric encipherment algorithm In, (initial data) in plain text is processed together with the key of encryption by data transmission side through special AES After, make to become complicated encrypted cipher text in plain text and send;After destination receives ciphertext, if wanting to understand original text, Then need to use the algorithm for inversion encrypting used key and identical algorithms that ciphertext is decrypted, it just can be made extensive Become readable plaintext again.In a symmetric encryption algorithm, the key only one of which of use, send out collection of letters both sides and all use This data key encrypts and decrypts, and this will ask decryption side to must be known by encryption key in advance.With Sample, encryption can also use symmetric cryptography, and simply its confidentiality is not as asymmetric encryption.
Accordingly, step 102 specifically includes: send the second ciphertext to subscriber equipment, make subscriber equipment according to Second ciphertext is decrypted by physical address and the random sequence of subscriber equipment, certificate of establishing trust.Here, The physical address of subscriber equipment and random sequence are the key of deciphering the second ciphertext.
Further, before sending PKI to subscriber equipment, described method also includes:
Receive the access request that subscriber equipment sends;Request success response is sent to subscriber equipment;Receive user The gesture path access way that equipment sends;Send to subscriber equipment and receive success response.
Embodiment two
The embodiment of the present invention provides a kind of radio switch-in method, is applied to subscriber equipment, as it is shown on figure 3, should Method includes:
Step 201, acquisition gesture path information.
Here, this gesture path information be by touch-control subscriber equipment touch screen produce movement locus information, Or gather the information of movement locus in aerial preset range.
User selects wireless network connected mode can have two kinds: one is to touch connected mode;One is aerial Gesture connected mode.
When using touch connected mode, as a example by capacitance plate, due to human body electric field, the finger of user is clicked on During touch screen, finger and touch screen form a coupling electric capacity, because being connected to high-frequency signal on touch screen, in It is that finger walks a electric current the least, this electric current electrode from the four of touch screen angles respectively flows Go out, and it is proportional to the distance of the contact point of pointer to corner to flow through the electric current of four electrodes in theory, use Family equipment, by the accurate calculating to four current ratios, obtains out position, and subscriber equipment is by the letter of these positions Breath saves as gesture path information.
When using aerial gesture connected mode, the Three dimensions control device of subscriber equipment can periodically obtain indication The three-dimensional coordinate information of thing, so that it is determined that go out the three-dimensional coordinate information of the movement locus of pointer, so that it is determined that Go out the gesture path information of pointer.Here, Three dimensions control device is prior art, and the present embodiment is the most detailed State, and the input method of the present embodiment is not restricted to Three dimensions control device, it is also possible to control to guard against by gesture Refer to as input, finger is carried out input etc..
Step 202, to AP send gesture path information, make AP gesture path information with preset track Trusted certificate is obtained when information is identical.
The trusted certificate that step 203, reception AP send, and access wireless network according to trusted certificate.
Compared to prior art, it is not necessary to when Wi-Fi networks, the PIN that input is made up of letter or number, But at the touch screen of subscriber equipment or one or more movement locus that aloft marks, receive this motion After the gesture information that track is corresponding, it is possible to carry out WiMAX connection according to gesture path information.Cause This, the input of this movement locus is suitable for the people of each age aspect and uses, and does not haves input problem, And movement locus input is more convenient, it is thus possible to be greatly improved Consumer's Experience.
Further, after step 201, described method also includes: receive the PKI that AP sends;Obtain The physical address of subscriber equipment;Generate a string random sequence;According to PKI to described gesture path information, institute Physical address and the described random sequence of stating subscriber equipment are encrypted, and obtain the first ciphertext.
Further, step 202 may include that and sends the first ciphertext to AP, make AP according to preset with The private key that PKI is corresponding, to the first ciphertext deciphering, obtains the physical address of gesture path information, subscriber equipment And random sequence, then using the physical address of subscriber equipment and random sequence as key, trusted certificate is carried out Encryption, obtains the second ciphertext, and sends described second ciphertext.
Further, step 203 may include that and receives the second ciphertext that described AP sends.
Further, before step 203, described method also includes:
Using the physical address of subscriber equipment and described random sequence as key, the second ciphertext is decrypted, Establish trust certificate.
Further, before the PKI that the described AP of described reception sends, described method also includes: to AP Send access request;Receive the request success response that AP sends;The gesture path access way sent to AP; Receive the reception success response that AP sends.
Embodiment three
The embodiment of the present invention provides a kind of radio switch-in method, is applied to wireless access system, and this system is permissible Including an AP and multiple subscriber equipment, as shown in Figure 4, the aerial gesture connection side of selection is clicked on as user After formula, the method may include that
Step 301, subscriber equipment obtain the gesture path information of user's input.
Here, the gesture path information of user's input collects in being the skyborne preset range of Three dimensions control device The information of movement locus.
Step 302, subscriber equipment send the authentication request frames of an open systems identity to AP Authentication Request。
Step 303, AP send corresponding authentication response according to Authentication Request to subscriber equipment Frame Authentication Response.If Authentication Response represents certification success, then perform Step 304;Otherwise, step 317 is performed.
Step 304, subscriber equipment send the association request frame of the connected mode carrying self to AP Association Request。
Here, connected mode is aerial gesture connected mode.
Step 305, AP send association response frame Association Response to subscriber equipment.If Association Response represents and sends successfully, then perform step 306;Otherwise, step 317 is performed.
Step 306, subscriber equipment send the frame of aerial gesture configuration protocol to AP, start aerial gesture motion Verification process.
Step 307, AP send the frame carrying PKI to subscriber equipment.If sending successfully, then perform step 309; Otherwise, step 317 is performed.
Step 308, subscriber equipment produce random number sequence R.
Step 309, subscriber equipment use PKI to gesture trace information, the physical address of subscriber equipment and with Machine Number Sequence R is encrypted, and obtains ciphertext E1.
Here, the physical address of subscriber equipment can be that subscriber equipment obtains in advance.
Step 310, subscriber equipment send the response frame carrying ciphertext E1 to AP.If sending successfully, Then perform step 311;Otherwise, then step 317 is performed.
Ciphertext E1, according to the private key corresponding with PKI preset, is deciphered, is obtained gesture by step 311:AP Trace information, the physical address of subscriber equipment and random sequence.
Step 312, AP judge that gesture path information is the most identical with default trace information;The most then hold Row step 313;If it is not, then perform step 317.
Step 313:AP using the physical address of subscriber equipment and random sequence R as key, to trusted certificate It is encrypted, obtains ciphertext E2.
Step 314, AP send the request frame carrying ciphertext E2 to subscriber equipment;If sending successfully, Then perform step 315;Otherwise, step 317 is performed.
Step 315, subscriber equipment using self physical address and random sequence R as key, to ciphertext E2 Deciphering, certificate of establishing trust.
Step 316, subscriber equipment, according to trusted certificate, are handed in the Wi-Fi link enterprising row data being successfully established Change.
Step 317, on screen, show connection failure.
What deserves to be explained is, the flow process of the step 301 that the embodiment of the present invention provides to step 317 can conduct Aerial gesture accesses the flow process of the agreement of wireless network.
It can be seen that in the embodiment of the present invention without getting trusted certificate at subscriber equipment after, again enter Row once " detection-certification-association " process, could finally set up Wi-Fi and connect, but be directly accessed wireless Net, therefore, the process of the present embodiment is easier.
Embodiment four
The embodiment of the present invention provides a kind of AP40, as it is shown in figure 5, this AP40 includes:
Receiving unit 401, for receiving the gesture path information that subscriber equipment sends, described gesture path is believed Breath is the information by the movement locus of subscriber equipment generation described in touch-control or gathers in aerial preset range The information of movement locus.
Transmitting element 402, when the described gesture path information that receives is identical with default trace information, Send trusted certificate to described subscriber equipment, make described subscriber equipment access wireless network according to described trusted certificate Network.
Compared to prior art, it is not necessary to when Wi-Fi networks, the PIN that input is made up of letter or number, Only needing user at the touch screen of subscriber equipment or aloft to mark one or more movement locus, AP receives this After the gesture information that movement locus is corresponding, it is possible to carry out WiMAX connection according to gesture path information. Visible, the input of this movement locus is suitable for the people of each age aspect and uses, and does not haves input problem, And movement locus input is more convenient, and then Consumer's Experience can be greatly improved.
Further, described transmitting element 402, it is additionally operable to send PKI to described subscriber equipment, makes described Subscriber equipment according to PKI to described gesture path information, the physical address of described subscriber equipment and described at random Sequence is encrypted, and obtains the first ciphertext.
Described reception unit 401 specifically for:
Receive described first ciphertext that described subscriber equipment sends.
Further, as shown in Figure 6, described AP also includes:
Decryption unit 403, for according to the private key corresponding with described PKI preset, to described first ciphertext Deciphering, obtains described gesture path information, the physical address of described subscriber equipment and described random sequence.
Ciphering unit 404, for using the physical address of described subscriber equipment and described random sequence as key, Described trusted certificate is encrypted, obtains the second ciphertext.
Further, described transmitting element 402 specifically for:
Send described second ciphertext to described subscriber equipment, make described subscriber equipment by the thing of described subscriber equipment Described trusted certificate, as key, is decrypted, obtains described credentials by reason address and described random sequence Book.
Further, described reception unit 401, it is additionally operable to receive the access request that described subscriber equipment sends.
Described transmitting element 402, is additionally operable to send request success response to described subscriber equipment.
Described reception unit 401, is additionally operable to receive the gesture path access way that described subscriber equipment sends.
Described transmitting element 402, is additionally operable to send to described subscriber equipment receive success response.
In actual applications, described reception unit 401, transmitting element 402, ciphering unit 404 and deciphering are single Unit 403 can be by the central processing unit (Central Processing Unit, CPU) being positioned in terminal, micro-process Device (Micro Processor Unit, MPU), digital signal processor (Digital Signal Processor, Or field programmable gate array (Field Programmable Gate Array, FPGA) etc. realizes DSP).
Embodiment five
The embodiment of the present invention provides a kind of subscriber equipment 50, as it is shown in fig. 7, this subscriber equipment 50 can wrap Include:
Acquiring unit 501, is used for obtaining gesture path information, and described gesture path information is by touch-control institute State the information of movement locus that subscriber equipment produces or gather the information of movement locus in aerial preset range.
Transmitting element 502, for sending described gesture path information to AP, makes described AP in described gesture Trusted certificate is obtained when trace information is identical with the trace information preset.
Receive unit 503, for receiving the trusted certificate that described AP sends, and connect according to described trusted certificate Enter wireless network.
Compared to prior art, it is not necessary to when Wi-Fi networks, the PIN that input is made up of letter or number, But at the touch screen of subscriber equipment or one or more movement locus that aloft marks, therefore, AP After receiving the gesture information that this movement locus is corresponding, it is possible to carry out without live width according to gesture path information Band connects.Therefore, the input of this movement locus is suitable for the people of each age aspect and uses, and does not haves Input problem, and movement locus input is more convenient, therefore, is greatly improved Consumer's Experience.
Further, described reception unit 503, it is additionally operable to receive the PKI that described AP sends;
Described acquiring unit 501, is additionally operable to obtain the physical address of described subscriber equipment;
Further, as shown in Figure 8, described subscriber equipment 50 also includes:
Signal generating unit 504, is used for generating a string random sequence;
Ciphering unit 505, is used for according to PKI described gesture path information, the physics of described subscriber equipment Address and described random sequence are encrypted, and obtain the first ciphertext;
Further, described transmitting element 502 specifically for:
Send described first ciphertext to described AP, make described AP according to the private corresponding with described PKI preset Key, to described first ciphertext deciphering, obtains described gesture path information, the physical address of described subscriber equipment With described random sequence, then using the physical address of described subscriber equipment and described random sequence as key, right Trusted certificate is encrypted, and obtains the second ciphertext, and sends described second ciphertext;
Described reception unit 503 specifically for:
Receive described second ciphertext that described AP sends;
Further, as shown in Figure 8, described subscriber equipment 50 also includes:
Decryption unit 506, for using the physical address of described subscriber equipment and described random sequence as key, Described second ciphertext is decrypted, obtains described trusted certificate.
In actual applications, described acquiring unit 501, transmitting element 502, reception unit 503, access list Unit 504, signal generating unit 505, ciphering unit 506 and decryption unit 507 all can be by the central authorities being positioned in terminal Processor (Central Processing Unit, CPU), microprocessor (Micro Processor Unit, MPU), Digital signal processor (Digital Signal Processor, DSP) or field programmable gate array (Field Programmable Gate Array, FPGA) etc. realize.
Embodiment six
The embodiment of the present invention provides a kind of wireless access system 60, as it is shown in figure 9, this wireless access system 60 May include that
AP40, for receiving the gesture path information that subscriber equipment sends;The described gesture path letter received When breath and the trace information preset are identical, send trusted certificate to described subscriber equipment, make described subscriber equipment Wireless network is accessed according to described trusted certificate;
Subscriber equipment 50, is used for obtaining gesture path information;Send described gesture path information to AP, make Described AP obtains trusted certificate when described gesture path information is identical with the trace information preset;Receive institute State the trusted certificate that AP sends, and access wireless network according to described trusted certificate;
Wherein, described gesture path information be by described in touch-control subscriber equipment produce movement locus information, Or gather the information of movement locus in aerial preset range.
Wherein, particular make-up structure, function and the principle of described AP can use any one of above-mentioned AP40;Institute Particular make-up structure, function and the principle of stating subscriber equipment can use any one of above-mentioned subscriber equipment 50.
Compared to prior art, the wireless access system that the embodiment of the present invention provides can be without at Wi-Fi even During net, the PIN that is made up of letter or number of input, only need user at the touch screen of subscriber equipment or aloft Mark one or more movement locus, after AP receives the gesture information that this movement locus is corresponding, it is possible to WiMAX connection is carried out according to gesture path information.Visible, the input of this movement locus is suitable for respectively The people of individual age aspect uses, and does not haves input problem, and movement locus input is more convenient, enters And Consumer's Experience can be greatly improved.
The above, only presently preferred embodiments of the present invention, it is not intended to limit the protection model of the present invention Enclose.

Claims (13)

1. a radio switch-in method, it is characterised in that described method includes:
Receiving the gesture path information that subscriber equipment sends, described gesture path information is by using described in touch-control The information of the movement locus that family equipment produces or gather the information of movement locus in aerial preset range;
When the described gesture path information received is identical with the trace information preset, send out to described subscriber equipment Send trusted certificate, make described subscriber equipment access wireless network according to described trusted certificate.
Method the most according to claim 1, it is characterised in that described reception subscriber equipment sends Before gesture path information, described method also includes:
To described subscriber equipment send PKI, make described subscriber equipment according to PKI to described gesture path information, Physical address and the described random sequence of described subscriber equipment are encrypted, and obtain the first ciphertext;
The gesture information that described reception subscriber equipment sends includes:
Receive described first ciphertext that described subscriber equipment sends;
After the first ciphertext that the described subscriber equipment of described reception sends, described method also includes:
According to the default private key corresponding with described PKI, to described first ciphertext deciphering, obtain described gesture Trace information, the physical address of described subscriber equipment and described random sequence;
Described before described subscriber equipment sends trusted certificate, described method also includes:
Using the physical address of described subscriber equipment and described random sequence as key, described trusted certificate is entered Row encryption, obtains the second ciphertext;
Described to described subscriber equipment send trusted certificate include:
Send described second ciphertext to described subscriber equipment, make described subscriber equipment according to described subscriber equipment Described second ciphertext is decrypted by physical address and described random sequence, obtains described trusted certificate.
Method the most according to claim 2, it is characterised in that described to described subscriber equipment transmission public affairs Before key, described method also includes:
Receive the access request that described subscriber equipment sends;
Request success response is sent to described subscriber equipment;
Receive the gesture path access way that described subscriber equipment sends;
Send to described subscriber equipment and receive success response.
4. a radio switch-in method, it is characterised in that described method includes:
Obtaining gesture path information, described gesture path information is the fortune produced by subscriber equipment described in touch-control The information of dynamic track or gather the information of movement locus in aerial preset range;
Send described gesture path information to wireless access points AP, make described AP in described gesture path Trusted certificate is obtained when information is identical with the trace information preset;
Receive the trusted certificate that described AP sends, and access wireless network according to described trusted certificate.
Method the most according to claim 4, it is characterised in that after described acquisition gesture path information, Described method also includes:
Receive the PKI that described AP sends;
Obtain the physical address of described subscriber equipment;
Generate a string random sequence;
According to PKI to described gesture path information, the physical address of described subscriber equipment and described random sequence It is encrypted, obtains the first ciphertext;
Described to AP send described gesture path information include:
Send described first ciphertext to described AP, make described AP according to the private corresponding with described PKI preset Key, to described first ciphertext deciphering, obtains described gesture path information, the physical address of described subscriber equipment With described random sequence, then using the physical address of described subscriber equipment and described random sequence as key, right Trusted certificate is encrypted, and obtains the second ciphertext, and sends described second ciphertext;
The trusted certificate that the described AP of described reception sends includes:
Receive described second ciphertext that described AP sends;
Described according to described trusted certificate, before accessing wireless network, described method also includes:
Using the physical address of described subscriber equipment and described random sequence as key, described second ciphertext is entered Row deciphering, obtains described trusted certificate.
Method the most according to claim 5, it is characterised in that the public affairs that the described AP of described reception sends Before key, described method also includes:
Access request is sent to described AP;
Receive the request success response that described AP sends;
The gesture path access way sent to described AP;
Receive the reception success response that described AP sends.
7. an AP, it is characterised in that described AP includes:
Receiving unit, for receiving the gesture path information that subscriber equipment sends, described gesture path information is The information of movement locus that produced by subscriber equipment described in touch-control or gather the motion in aerial preset range The information of track;
Transmitting element, when the described gesture path information that receives is identical with default trace information, to Described subscriber equipment sends trusted certificate, makes described subscriber equipment access wireless network according to described trusted certificate.
AP the most according to claim 7, it is characterised in that
Described transmitting element, is additionally operable to send PKI to described subscriber equipment, makes described subscriber equipment according to public affairs Described gesture path information, the physical address of described subscriber equipment and described random sequence are encrypted by key, Obtain the first ciphertext;
Described reception unit specifically for:
Receive described first ciphertext that described subscriber equipment sends;
Described AP also includes:
Decryption unit, for according to the private key corresponding with described PKI preset, to described first ciphertext deciphering, Obtain described gesture path information, the physical address of described subscriber equipment and described random sequence;
Ciphering unit, for using the physical address of described subscriber equipment and described random sequence as key, right Described trusted certificate is encrypted, and obtains the second ciphertext;
Described transmitting element specifically for:
Send described second ciphertext to described subscriber equipment, make described subscriber equipment by the thing of described subscriber equipment Described trusted certificate, as key, is decrypted, obtains described credentials by reason address and described random sequence Book.
AP the most according to claim 8, it is characterised in that
Described reception unit, is additionally operable to receive the access request that described subscriber equipment sends;
Described transmitting element, is additionally operable to send request success response to described subscriber equipment;
Described reception unit, is additionally operable to receive the gesture path access way that described subscriber equipment sends;
Described transmitting element, is additionally operable to send to described subscriber equipment receive success response.
10. a subscriber equipment, it is characterised in that described subscriber equipment includes:
Acquiring unit, is used for obtaining gesture path information, and described gesture path information is by using described in touch-control The information of the movement locus that family equipment produces or gather the information of movement locus in aerial preset range;
Transmitting element, for sending described gesture path information to AP, makes described AP in described gesture path Trusted certificate is obtained when information is identical with the trace information preset;
Receive unit, for receiving the trusted certificate that described AP sends, and access according to described trusted certificate Wireless network.
11. subscriber equipmenies according to claim 10, it is characterised in that
Described reception unit, is additionally operable to receive the PKI that described AP sends;
Described acquiring unit, is additionally operable to obtain the physical address of described subscriber equipment;
Described subscriber equipment also includes:
Signal generating unit, is used for generating a string random sequence;
Ciphering unit, is used for according to PKI described gesture path information, the physical address of described subscriber equipment It is encrypted with described random sequence, obtains the first ciphertext;
Described transmitting element specifically for:
Send described first ciphertext to described AP, make described AP according to the private corresponding with described PKI preset Key, to described first ciphertext deciphering, obtains described gesture path information, the physical address of described subscriber equipment With described random sequence, then using the physical address of described subscriber equipment and described random sequence as key, right Trusted certificate is encrypted, and obtains the second ciphertext, and sends described second ciphertext;
Described reception unit specifically for:
Receive described second ciphertext that described AP sends;
Described subscriber equipment also includes:
Decryption unit, for using the physical address of described subscriber equipment and described random sequence as key, right Described second ciphertext is decrypted, and obtains described trusted certificate.
12. subscriber equipmenies according to claim 11, it is characterised in that
Described transmitting element, is additionally operable to send access request to described AP;
Described reception unit, is additionally operable to receive the request success response that described AP sends;
Described transmitting element, is additionally operable to the gesture path access way sent to described AP;
Described reception unit, is additionally operable to receive the reception success response that described AP sends.
13. 1 kinds of wireless access systems, it is characterised in that described wireless access system includes:
AP, for receiving the gesture path information that subscriber equipment sends;The described gesture path information received Time identical with default trace information, send trusted certificate to described subscriber equipment, make described subscriber equipment root Wireless network is accessed according to described trusted certificate;
Subscriber equipment, is used for obtaining gesture path information;Send described gesture path information to AP, make institute State AP and obtain trusted certificate when described gesture path information is identical with the trace information preset;Receive described The trusted certificate that AP sends, and access wireless network according to described trusted certificate;
Wherein, described gesture path information be by described in touch-control subscriber equipment produce movement locus information, Or gather the information of movement locus in aerial preset range.
CN201510350762.9A 2015-06-23 2015-06-23 wireless access method, device and system Pending CN106332076A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201510350762.9A CN106332076A (en) 2015-06-23 2015-06-23 wireless access method, device and system
PCT/CN2015/085804 WO2016206169A1 (en) 2015-06-23 2015-07-31 Wireless access method, device and system, and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510350762.9A CN106332076A (en) 2015-06-23 2015-06-23 wireless access method, device and system

Publications (1)

Publication Number Publication Date
CN106332076A true CN106332076A (en) 2017-01-11

Family

ID=57584490

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510350762.9A Pending CN106332076A (en) 2015-06-23 2015-06-23 wireless access method, device and system

Country Status (2)

Country Link
CN (1) CN106332076A (en)
WO (1) WO2016206169A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107484162A (en) * 2017-07-13 2017-12-15 上海斐讯数据通信技术有限公司 A kind of method and system for accessing wireless network

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111131190B (en) * 2019-12-09 2024-03-26 上海传英信息技术有限公司 Network hotspot sharing method, mobile terminal and computer readable storage medium
CN115421174B (en) * 2022-08-31 2023-05-12 杭州数聚链科技有限公司 Unmanned aerial vehicle motion trail recognition system and method based on space-time information

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102984704A (en) * 2012-12-24 2013-03-20 中国地质大学(武汉) Authentication and key agreement method and system between light-weight smart mobile phones
US20130182845A1 (en) * 2012-01-18 2013-07-18 Square, Inc. Secure communications between devices using a trusted server
EP2736230A1 (en) * 2012-11-22 2014-05-28 NEC Corporation Direct wireless connection between two terminals
CN104050402A (en) * 2014-06-12 2014-09-17 深圳市汇顶科技股份有限公司 Mobile terminal security certification method and system and mobile terminal
CN104284331A (en) * 2013-07-10 2015-01-14 中兴通讯股份有限公司 Method and system for connecting with portable WLAN hotspot

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9654977B2 (en) * 2012-11-16 2017-05-16 Visa International Service Association Contextualized access control
CN103476030B (en) * 2013-08-29 2016-12-28 小米科技有限责任公司 Mobile terminal connects the method for network, mobile terminal and terminal unit

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20130182845A1 (en) * 2012-01-18 2013-07-18 Square, Inc. Secure communications between devices using a trusted server
EP2736230A1 (en) * 2012-11-22 2014-05-28 NEC Corporation Direct wireless connection between two terminals
CN102984704A (en) * 2012-12-24 2013-03-20 中国地质大学(武汉) Authentication and key agreement method and system between light-weight smart mobile phones
CN104284331A (en) * 2013-07-10 2015-01-14 中兴通讯股份有限公司 Method and system for connecting with portable WLAN hotspot
CN104050402A (en) * 2014-06-12 2014-09-17 深圳市汇顶科技股份有限公司 Mobile terminal security certification method and system and mobile terminal

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107484162A (en) * 2017-07-13 2017-12-15 上海斐讯数据通信技术有限公司 A kind of method and system for accessing wireless network

Also Published As

Publication number Publication date
WO2016206169A1 (en) 2016-12-29

Similar Documents

Publication Publication Date Title
Henriques et al. Using symmetric and asymmetric cryptography to secure communication between devices in IoT
CN105684344B (en) A kind of cipher key configuration method and apparatus
TWI536790B (en) Communication method using fingerprint information authentication
CN104754581B (en) A kind of safety certifying method of the LTE wireless networks based on public-key cryptosystem
US11882226B1 (en) Gesture-extracted passwords for authenticated key exchange
CN107959688B (en) Security authentication method and system for mutual authentication of terminal and camera equipment
CN108347404B (en) Identity authentication method and device
CN106664554A (en) Secure provisioning of an authentication credential
CN107800539A (en) Authentication method, authentication device and Verification System
CN104253801B (en) Realize the methods, devices and systems of login authentication
CN102299797A (en) Authentication method, key distribution method and authentication and key distribution method
CN106452750B (en) A kind of quantum encryption communication method for mobile device
CN106162537B (en) A kind of method, wireless telecom equipment and the terminal of safety certification connection
KR20150079489A (en) Instant messaging method and system
CN105577365B (en) A kind of user accesses the cryptographic key negotiation method and device of WLAN
CN107682152B (en) Group key negotiation method based on symmetric cipher
CN109618334A (en) Control method and relevant device
CN104284331B (en) A kind of method and system connecting portable WLAN hot spot
CN105142134A (en) Parameter obtaining and transmission methods/devices
CN106332076A (en) wireless access method, device and system
Elemam et al. Formal verification for a PMQTT protocol
CN109802834A (en) The method and system that a kind of pair of business layer data is encrypted, decrypted
CN109547303A (en) Control method and relevant device
Diallo et al. A secure authentication scheme for bluetooth connection
CN104618362B (en) A kind of method and device of Resource Server and client interactive sessions message

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WD01 Invention patent application deemed withdrawn after publication
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20170111