CN106878020A - Network system, the authentication method of the network equipment and device - Google Patents
Network system, the authentication method of the network equipment and device Download PDFInfo
- Publication number
- CN106878020A CN106878020A CN201710055170.3A CN201710055170A CN106878020A CN 106878020 A CN106878020 A CN 106878020A CN 201710055170 A CN201710055170 A CN 201710055170A CN 106878020 A CN106878020 A CN 106878020A
- Authority
- CN
- China
- Prior art keywords
- network equipment
- network
- user
- digital certificate
- user information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/33—User authentication using certificates
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/44—Program or device authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computing Systems (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a kind of network system, the authentication method of the network equipment and device.The network system includes:Certificate server and at least one network equipment;The certificate server includes first network interface;Each described network equipment includes the second network interface, control device, digital certificate store device and user profile acquisition device;The first network interface is connected with second network interface;The control device is respectively connected with second network interface, the digital certificate store device and the user profile acquisition device.Using the present invention, it is possible to increase certification difficulty during equipment access network, so as to improve the security of network.
Description
Technical field
The present invention relates to field of computer technology, more particularly to a kind of network system, the authentication method of the network equipment and dress
Put.
Background technology
It is existing User logs in equipment to be mainly to the method that equipment is authenticated during access network in equipment
Information is authenticated or the hardware information of equipment is authenticated.Video network is accessed with IPC equipment (network shooting head apparatus)
It is existing mainly to have following three kinds to the method that the IPC equipment that accessed is authenticated as a example by network:
1) judge whether login username/password that the IPC equipment sends is correct:Using 802.1x identity identifying technologies,
The usemame/password that IPC equipment sends is authenticated, if certification does not pass through, the IPC equipment cannot access the video network
Network;
2) judge whether the IPC equipment is registered:Its 20 Termination ID number must be registered to network by IPC equipment in advance
In the networked system management platform of system, the video network cannot be otherwise accessed;
3) MAC Address (MediaAccess Control addresses or the Medium Access of the IPC equipment are judged
Control addresses, i.e. physical address, hardware address) it is whether legal:The MAC Address of IPC equipment must registration in advance to network system
In the networked system management platform of system, the video network cannot be otherwise accessed.
It is understood that on the basis of existing technology, illegal invasion person can steal legal by way of monitoring
What IPC equipment sent etc., or the usemame/password of legal IPC equipment is obtained by way of Brute Force, and by basis
Illegality equipment is accessed to video by the mode that usemame/password, Termination ID number or the MAC Address stolen imitate legal IPC equipment
Network, so as to realize the attack to video network.
As can be seen here, it is existing to will access network the method that is authenticated of equipment it is excessively simple, security is not high.
The content of the invention
The present invention proposes a kind of network system, the authentication method of the network equipment and device, it is possible to increase equipment access network
When certification difficulty, so as to improve the security of network.
A kind of network system that the present invention is provided, specifically includes:
Certificate server and at least one network equipment;
The certificate server includes first network interface;Each described network equipment include the second network interface,
Control device, digital certificate store device and user profile acquisition device;
The first network interface is connected with second network interface;The control device connects with second network
Mouth, the digital certificate store device and the user profile acquisition device are respectively connected with.
Further, the network equipment is web camera;
Then the network equipment also includes imageing sensor;
Described image sensor is connected with the control device.
Further, electric supply installation is also included in the network equipment;
The electric supply installation is obtained with the control device, the digital certificate store device and the user profile and filled
Put and be respectively connected with.
Further, the control device is MCU;The digital certificate store device is the electricity of CA digital certificates of being stored with
EPROM;The first network interface and second network interface are Ethernet interface.
The present invention also provides a kind of authentication method of the network equipment, specifically includes:
Receive the user information authentication request that the network equipment sends;Wherein, the user information authentication request includes institute
State user's name and user cipher that the network equipment is obtained by the user profile acquisition device in the network equipment;
To receive the user information authentication request in the user's name and the user cipher be authenticated,
And when certification passes through, user information authentication is sent by notifying to the network equipment;
Receive the network equipment and receive the digital certificate authentication that the user information authentication sends after notifying
Request;Wherein, the digital certificate authentication request includes that the network equipment is deposited from the digital certificate in the network equipment
The digital certificate obtained in storage device;
The digital certificate during the digital certificate authentication to receiving is asked is authenticated, and passes through in certification
When, network insertion notification of permit is sent to the network equipment, so that the network equipment is permitted receiving the network insertion
Network-in-dialing state is switched to after can notifying.
Further, before the user information authentication request that the reception network equipment sends, also include:
Receive the user profile registration request that the network equipment sends;Wherein, wrapped in the user profile registration request
Include user's name to be registered and corresponding user cipher to be registered;
The user's name to be registered and the user cipher to be registered are stored in User Information Database, and send note
Volume completion notice is to the network equipment.
Further, the network equipment is web camera;The digital certificate is CA digital certificates;The numeral card
Book storage device is EEPROM.
Correspondingly, present invention also offers a kind of authentication device of the network equipment, specifically include:
User information authentication request receiving module, the user information authentication request for receiving network equipment transmission;Wherein,
The user information authentication request includes that the network equipment is obtained by the user profile acquisition device in the network equipment
The user's name and user cipher for taking;
User information authentication passes through notification module, for the use in the user information authentication request to receiving
Name in an account book claims to be authenticated with the user cipher, and when certification passes through, sends user information authentication to the network equipment and lead to
Cross notice;
Digital certificate authentication request receiving module, the user information authentication is being received for receiving the network equipment
By the digital certificate authentication request sent after notice;Wherein, the digital certificate authentication request includes the network equipment
The digital certificate obtained from the digital certificate store device in the network equipment;And,
Network insertion notification of permit module, demonstrate,proves for the numeral in the digital certificate authentication request to receiving
Book is authenticated, and when certification passes through, network insertion notification of permit is sent to the network equipment, so that the network equipment
Network-in-dialing state is switched to after the network insertion notification of permit is received.
Further, the authentication device of the network equipment, also includes:
User profile registration request receiver module, for receiving the user profile registration request that the network equipment sends;
Wherein, the user profile registration request includes user's name to be registered and corresponding user cipher to be registered;And,
Registration completion notice sending module, for the user's name to be registered and the user cipher to be registered to be stored in
In User Information Database, and send registration completion notice to the network equipment.
Further, the network equipment is web camera;The digital certificate is CA digital certificates;The numeral card
Book storage device is EEPROM.
Implement the present invention, have the advantages that:
Network system, the authentication method of the network equipment and device that the present invention is provided, by adding number in the network device
Word certificate storage device and user profile acquisition device, and corresponding certificate server is set in network system, so that
The network equipment before the network system is accessed to, it is necessary to while carry out digital certificate authentication and user information authentication so that
Certification difficulty during network equipment connecting network system is improved, and then improves the security of network system.
Brief description of the drawings
Fig. 1 is a structural representation for preferred embodiment of the network system that the present invention is provided;
Fig. 2 is a knot for video networking system in another preferred embodiment for the network system that the present invention is provided
Structure schematic diagram;
Fig. 3 is a schematic flow sheet for preferred embodiment of the authentication method of the network equipment that the present invention is provided;
Fig. 4 is a structural representation for preferred embodiment of the authentication device of the network equipment that the present invention is provided.
Specific embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete
Site preparation is described, it is clear that described embodiment is only a part of embodiment of the invention, rather than whole embodiments.It is based on
Embodiment in the present invention, it is every other that those of ordinary skill in the art are obtained under the premise of creative work is not made
Embodiment, belongs to the scope of protection of the invention.
The present invention passes through to add digital certificate store device and user profile acquisition device in the network device, and in network
Corresponding certificate server is set in system so that the network equipment before the network system is accessed to, it is necessary to simultaneously
Digital certificate authentication and user information authentication are carried out, so that certification difficulty when improving network equipment connecting network system, and then
Improve the security of network system.
It is a structural representation for preferred embodiment of the network system that the present invention is provided referring to Fig. 1, specific bag
Include:
The network equipment 12 of certificate server 11 and at least one;
The certificate server 11 includes first network interface 111;Each described network equipment 12 includes the second net
Network interface 121, control device 122, digital certificate store device 123 and user profile acquisition device 124;
The first network interface 111 is connected with second network interface 121;The control device 122 with it is described
Second network interface 121, the digital certificate store device 123 and the user profile acquisition device 124 are respectively connected with.
Further, electric supply installation 125 is also included in the network equipment 12;
The electric supply installation 125 and the control device 122, the digital certificate store device 123 and the user
Information acquisition device 124 is respectively connected with.
Further, the control device 122 is MCU;The digital certificate store device 123 is the CA numeral cards that are stored with
The EEPROM of book;The first network interface 111 and second network interface 121 are Ethernet
Interface.
It should be noted that the network system that the present embodiment is provided includes that certificate server and at least one network set
It is standby.Control device in the network equipment is respectively connected with other each devices in the network equipment, for controlling and coordinates each
Running between device.Digital certificate store device in the network equipment is used for storage and is write simultaneously when the network equipment dispatches from the factory
The digital certificate in the digital certificate store device is cured to, wherein, the digital certificate store device can be EEPROM
(Electrically Erasable Programmable Read-Only Memory, EEPROM),
The digital certificate can be CA (CertificateAuthority, e-business certification authorized organization) digital certificate.The network
Also include independent encryption arithmetic unit in equipment, be authenticated for sending to certificate server digital certificate in the network equipment
The digital certificate is encrypted before.User profile acquisition device in the network equipment is used to obtain user profile, specifically,
The user profile acquisition device can obtain the user profile of user input by User Interface, it is also possible to by from user
The mode that the user profile for prestoring is read in information-storing device obtains user profile.User profile includes the use of user
Name in an account book and corresponding password.Also include in the network equipment control device in electric supply installation, the electric supply installation and the network equipment,
Digital certificate store device, user profile acquisition device etc. are connected, and are powered for each device in the network equipment.Network
Connect and communicate by network interface between certificate server and the network equipment in system, the network interface can be wireless network
Network interface, or wired network interface.
By adding digital certificate store device and user profile acquisition device in the network device, and in network system
Corresponding certificate server is set so that the network equipment before the network system is accessed to, it is necessary to while enter line number
Word certificate verification and user information authentication, so that certification difficulty when improving network equipment connecting network system, and then improve net
The security of network system.
In another preferred embodiment, on the basis of above-mentioned preferred embodiment, the network equipment 12 is net
Network video camera;
Then the network equipment 12 also includes imageing sensor;
Described image sensor is connected with the control device.
It should be noted that the network equipment in network system can be web camera (IPC).Then the network system can
Think video networking system.Also include the control device phase in camera, and the camera and the network equipment in the network equipment
Connection.After the network equipment is accessed in network system, the network equipment can be connect the image captured by camera by network
Mouth is sent into other network equipments of network system or network system.
As shown in Fig. 2 being a structural representation for video networking system in this preferred embodiment.
Network system provided in an embodiment of the present invention, by adding digital certificate store device and user in the network device
Information acquisition device, and corresponding certificate server is set in network system, so that the network equipment is accessing to this
, it is necessary to carry out digital certificate authentication and user information authentication simultaneously before network system, so as to improve network equipment connecting network
Certification difficulty during system, and then improve the security of network system.
The present invention also provides a kind of authentication method of the network equipment.The authentication method of the network equipment provided by the present invention by
Certificate server in the network system that any of the above-described embodiment is provided is performed.
It is that the flow of a preferred embodiment of the authentication method of the network equipment that the present invention is provided is illustrated referring to Fig. 3
Figure, specifically includes step:
S31:Receive the user information authentication request that the network equipment sends;Wherein, wrapped in the user information authentication request
Include user's name and user cipher that the network equipment is obtained by the user profile acquisition device in the network equipment;
S32:To receive the user information authentication request in the user's name and the user cipher carry out
Certification, and when certification passes through, user information authentication is sent by notifying to the network equipment;
S33:Receive the network equipment and receive the digital certificate that the user information authentication sends after notifying
Certification request;Wherein, the digital certificate authentication request includes the network equipment from the numeral card in the network equipment
The digital certificate obtained in book storage device;
S34:The digital certificate during the digital certificate authentication to receiving is asked is authenticated, and logical in certification
It is out-of-date, network insertion notification of permit is sent to the network equipment, so that the network equipment is receiving the network insertion
Network-in-dialing state is switched to after notification of permit.
Further, the network equipment is web camera;The digital certificate is CA digital certificates;The numeral card
Book storage device is EEPROM.
It should be noted that the network system that the network equipment in the embodiment of the present invention is provided by any of the above-described embodiment
In the network equipment.The network equipment is before network system is linked into, it is necessary to carry out user information authentication and digital certificate authentication.
Specifically:
1) network equipment obtains user's name and corresponding user cipher by the user profile acquisition device of itself, and
Corresponding user information authentication request is generated according to the user's name and user cipher for being obtained, and please by the user information authentication
Ask and sent to certificate server by network interface;
2) certificate server is believed after the user information authentication request for receiving network equipment transmission in the user of itself
Corresponding user's name and user cipher are searched in breath database, is recognized with to the user's name for receiving and user cipher
Card;If identical and corresponding user's name and user cipher can be found in the User Information Database, then it is assumed that
The certification passes through, so as to generate corresponding user information authentication by notifying, and the user information authentication is sent by notifying
To the foregoing network equipment;If identical and corresponding user's name and use can not be found in the User Information Database
Family password, then it is assumed that the authentification failure, so as to generate corresponding user information authentication failure notification, and by the user information authentication
Failure notification is sent to the foregoing network equipment, while in forbidding the network equipment to access to the network system;
3) network equipment receive certificate server transmission user information authentication by notify after, from the number of itself
Digital certificate is read in word certificate storage device, and the digital certificate is encrypted using independent encryption arithmetic unit, and root
Corresponding digital certificate authentication is generated according to the digital certificate after encryption to ask, the digital certificate authentication that will then generate asks to send
To certificate server;
4) certificate server extracts the digital certificate after the digital certificate authentication request for receiving network equipment transmission
In digital certificate, and the digital certificate is decrypted, is compared and certification;If the digital certificate is by certification authority
The legal digital certificate that (e.g., CA) is authorized, then it is assumed that the certification passes through, and the network equipment is the legal network equipment, therefore
Corresponding network insertion notification of permit is generated, and the network insertion notification of permit is sent to the network equipment, so that should
The network equipment is connected with network system;If the digital certificate is the illegal number authorized without certification authority (e.g., CA)
Word certificate, then it is assumed that the authentification failure, the network equipment is the illegal network equipment, therefore the corresponding network insertion of generation is forbidden
Notify, and the network insertion is forbidden notifying to send to the network equipment, while forbidding the network equipment to access to the network system
In system;
5) after the network equipment accesses to network system, the network equipment can be by network interface and the network system
Server or other network equipments communicated.
The network equipment in network system can also be web camera, and now the network equipment can be by by local shooting
Head is shot the image for obtaining and is sent into the server of network system or other network equipments by network interface.
It is understood that in some application scenarios not high to security requirement, the network equipment is being linked into network
Before system, digital certificate authentication can be singly carried out, without carrying out user information authentication.
By before the network equipment is accessed in network system, while carrying out digital certificate authentication and use to the network equipment
Family authentification of message, so that certification difficulty when improving network equipment connecting network system, and then improve the security of network system.
In another preferred embodiment, on the basis of above-mentioned preferred embodiment, in the reception network equipment
Before the user information authentication request of transmission, also include:
Receive the user profile registration request that the network equipment sends;Wherein, wrapped in the user profile registration request
Include user's name to be registered and corresponding user cipher to be registered;
The user's name to be registered and the user cipher to be registered are stored in User Information Database, and send note
Volume completion notice is to the network equipment.
It should be noted that for the network device user in access network system first, carrying out user information authentication
Before, in addition it is also necessary to carry out user profile registration.Specifically, the network equipment passed through before its user first access network system
The user profile acquisition device of itself obtains the user's name and corresponding user cipher of user to be registered, and according to acquired
User's name to be registered and user cipher to be registered generate corresponding user profile registration request, and please by user profile registration
Ask transmission to certificate server.Certificate server is extracted therein to be registered after the user profile registration request is received
User's name and user cipher to be registered, and the user's name to be registered and user cipher to be registered are stored in the user's letter of itself
In breath database, so that the registration of user profile is completed, while the corresponding registration completion notice of generation, and the registration is completed logical
Know transmission to the network equipment.
The authentication method of the network equipment provided in an embodiment of the present invention, in accessing to network system in the network equipment
Before, while digital certificate authentication and user information authentication are carried out to the network equipment, so as to improve network equipment connecting network system
Certification difficulty during system, and then improve the security of network system.
Correspondingly, the present invention also provides a kind of authentication device of the network equipment, can realize the certification of the above-mentioned network equipment
All flows of method.
It is a structural representation for preferred embodiment of the authentication device of the network equipment that the present invention is provided referring to Fig. 4
Figure, it is specific as follows:
User information authentication request receiving module 41, the user information authentication request for receiving network equipment transmission;Its
In, the user information authentication request includes the network equipment by the user profile acquisition device in the network equipment
The user's name and user cipher of acquisition;
User information authentication passes through notification module 42, described in the user information authentication request to receiving
User's name and the user cipher are authenticated, and when certification passes through, user information authentication are sent to the network equipment
By notifying;
Digital certificate authentication request receiving module 43, recognizes receiving the user profile for receiving the network equipment
The digital certificate authentication sent after notifying is demonstrate,proved to ask;Wherein, the digital certificate authentication request includes that the network sets
The standby digital certificate obtained from the digital certificate store device in the network equipment;And,
Network insertion notification of permit module 44, for the numeral in the digital certificate authentication request to receiving
Certificate is authenticated, and when certification passes through, network insertion notification of permit is sent to the network equipment, so that the network sets
It is standby to switch to network-in-dialing state after the network insertion notification of permit is received.
Further, the network equipment is web camera;The digital certificate is CA digital certificates;The numeral card
Book storage device is EEPROM.
In another preferred embodiment, on the basis of above-mentioned preferred embodiment, the certification of the network equipment
Device, also includes:
User profile registration request receiver module, for receiving the user profile registration request that the network equipment sends;
Wherein, the user profile registration request includes user's name to be registered and corresponding user cipher to be registered;And,
Registration completion notice sending module, for the user's name to be registered and the user cipher to be registered to be stored in
In User Information Database, and send registration completion notice to the network equipment.
The authentication device of the network equipment provided in an embodiment of the present invention, in accessing to network system in the network equipment
Before, while digital certificate authentication and user information authentication are carried out to the network equipment, so as to improve network equipment connecting network system
Certification difficulty during system, and then improve the security of network system.
The above is the preferred embodiment of the present invention, it is noted that for those skilled in the art
For, under the premise without departing from the principles of the invention, some improvements and modifications can also be made, these improvements and modifications are also considered as
Protection scope of the present invention.
Claims (10)
1. a kind of network system, it is characterised in that including certificate server and at least one network equipment;
The certificate server includes first network interface;Each described network equipment includes the second network interface, control
Device, digital certificate store device and user profile acquisition device;
The first network interface is connected with second network interface;The control device and second network interface,
The digital certificate store device and the user profile acquisition device are respectively connected with.
2. network system as claimed in claim 1, it is characterised in that the network equipment is web camera;
Then the network equipment also includes imageing sensor;
Described image sensor is connected with the control device.
3. network system as claimed in claim 1, it is characterised in that also include electric supply installation in the network equipment;
The electric supply installation and the control device, the digital certificate store device and the user profile acquisition device point
It is not connected.
4. network system as claimed any one in claims 1 to 3, it is characterised in that the control device is MCU;It is described
Digital certificate store device is the EEPROM of CA digital certificates of being stored with;The first network interface and
Second network interface is Ethernet interface.
5. a kind of authentication method of the network equipment, it is characterised in that including:
Receive the user information authentication request that the network equipment sends;Wherein, the user information authentication request includes the net
User's name and user cipher that network equipment is obtained by the user profile acquisition device in the network equipment;
To receive the user information authentication request in the user's name and the user cipher be authenticated, and
When certification passes through, user information authentication is sent by notifying to the network equipment;
Receive the network equipment and receive the digital certificate authentication request that the user information authentication sends after notifying;
Wherein, the digital certificate authentication request includes the network equipment from the digital certificate store device in the network equipment
The digital certificate of middle acquisition;
The digital certificate during the digital certificate authentication to receiving is asked is authenticated, and when certification passes through, to
The network equipment sends network insertion notification of permit, so that the network equipment is receiving the network insertion notification of permit
After switch to network-in-dialing state.
6. the authentication method of the network equipment as claimed in claim 5, it is characterised in that sent in the reception network equipment
Before user information authentication request, also include:
Receive the user profile registration request that the network equipment sends;Wherein, the user profile registration request includes treating
Registered user's title and corresponding user cipher to be registered;
The user's name to be registered and the user cipher to be registered are stored in User Information Database, and are sent and has been registered
Into notifying to the network equipment.
7. the authentication method of the network equipment as described in claim 5 or 6, it is characterised in that the network equipment is taken the photograph for network
Camera;The digital certificate is CA digital certificates;The digital certificate store device is EEPROM.
8. a kind of authentication device of the network equipment, it is characterised in that including:
User information authentication request receiving module, the user information authentication request for receiving network equipment transmission;Wherein, it is described
User information authentication request includes what the network equipment was obtained by the user profile acquisition device in the network equipment
User's name and user cipher;
User information authentication passes through notification module, for the user name in the user information authentication request to receiving
Claim and the user cipher is authenticated, and when certification passes through, user information authentication is sent by logical to the network equipment
Know;
Digital certificate authentication request receiving module, passes through receiving the user information authentication for receiving the network equipment
The digital certificate authentication request sent after notice;Wherein, the digital certificate authentication request includes the network equipment from institute
State the digital certificate obtained in the digital certificate store device in the network equipment;And,
Network insertion notification of permit module, enters for the digital certificate in the digital certificate authentication request to receiving
Row certification, and when certification passes through, network insertion notification of permit is sent to the network equipment, so that the network equipment is connecing
Network-in-dialing state is switched to after receiving the network insertion notification of permit.
9. the authentication device of the network equipment as claimed in claim 8, it is characterised in that the authentication device of the network equipment,
Also include:
User profile registration request receiver module, for receiving the user profile registration request that the network equipment sends;Wherein,
The user profile registration request includes user's name to be registered and corresponding user cipher to be registered;And,
Registration completion notice sending module, for the user's name to be registered and the user cipher to be registered to be stored in into user
In information database, and send registration completion notice to the network equipment.
10. the authentication device of the network equipment as claimed in claim 8 or 9, it is characterised in that the network equipment is taken the photograph for network
Camera;The digital certificate is CA digital certificates;The digital certificate store device is EEPROM.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710055170.3A CN106878020A (en) | 2017-01-24 | 2017-01-24 | Network system, the authentication method of the network equipment and device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710055170.3A CN106878020A (en) | 2017-01-24 | 2017-01-24 | Network system, the authentication method of the network equipment and device |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106878020A true CN106878020A (en) | 2017-06-20 |
Family
ID=59158989
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710055170.3A Pending CN106878020A (en) | 2017-01-24 | 2017-01-24 | Network system, the authentication method of the network equipment and device |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106878020A (en) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107580000A (en) * | 2017-10-20 | 2018-01-12 | 北京知道创宇信息技术有限公司 | Digital certificate authentication method and device |
CN110784437A (en) * | 2018-07-31 | 2020-02-11 | 横河电机株式会社 | Interface module, network device and network system |
CN113557703A (en) * | 2019-03-19 | 2021-10-26 | 华为技术有限公司 | Authentication method and device for network camera |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101212297A (en) * | 2006-12-28 | 2008-07-02 | 中国移动通信集团公司 | WEB-based WLAN access authentication method and system |
CN101753354A (en) * | 2008-12-22 | 2010-06-23 | 北京中星微电子有限公司 | Method for realizing the automatic configuration of network camera and monitoring system |
CN103096036A (en) * | 2013-01-13 | 2013-05-08 | 潘铁军 | Security and protection device and cloud service system and safety method of wide band video |
CN103701763A (en) * | 2012-09-27 | 2014-04-02 | 中国移动通信集团公司 | System, method and device for verifying client-side equipment |
CN105101194A (en) * | 2014-04-28 | 2015-11-25 | 华为技术有限公司 | Terminal security authentication method, device and system |
-
2017
- 2017-01-24 CN CN201710055170.3A patent/CN106878020A/en active Pending
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101212297A (en) * | 2006-12-28 | 2008-07-02 | 中国移动通信集团公司 | WEB-based WLAN access authentication method and system |
CN101753354A (en) * | 2008-12-22 | 2010-06-23 | 北京中星微电子有限公司 | Method for realizing the automatic configuration of network camera and monitoring system |
CN103701763A (en) * | 2012-09-27 | 2014-04-02 | 中国移动通信集团公司 | System, method and device for verifying client-side equipment |
CN103096036A (en) * | 2013-01-13 | 2013-05-08 | 潘铁军 | Security and protection device and cloud service system and safety method of wide band video |
CN105101194A (en) * | 2014-04-28 | 2015-11-25 | 华为技术有限公司 | Terminal security authentication method, device and system |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107580000A (en) * | 2017-10-20 | 2018-01-12 | 北京知道创宇信息技术有限公司 | Digital certificate authentication method and device |
CN110784437A (en) * | 2018-07-31 | 2020-02-11 | 横河电机株式会社 | Interface module, network device and network system |
CN110784437B (en) * | 2018-07-31 | 2022-01-18 | 横河电机株式会社 | Interface module, network device and network system |
CN113557703A (en) * | 2019-03-19 | 2021-10-26 | 华为技术有限公司 | Authentication method and device for network camera |
CN113557703B (en) * | 2019-03-19 | 2024-05-14 | 华为技术有限公司 | Authentication method and device of network camera |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105654580B (en) | Access control method and system, electronic lock, management and visitor's terminal | |
TWI530150B (en) | Identity authentication device and method thereof | |
CN109981689A (en) | Cross-domain logical is isolated by force and safety access control method and device under scenes of internet of things | |
CN101217575B (en) | An IP address allocation and device in user end certification process | |
CN108270571A (en) | Internet of Things identity authorization system and its method based on block chain | |
CN102624720B (en) | Method, device and system for identity authentication | |
CN107689944A (en) | Identity identifying method, device and system | |
CN108964885A (en) | Method for authenticating, device, system and storage medium | |
CN106850680A (en) | A kind of intelligent identity identification method and device for Transit Equipment | |
CN103856332A (en) | Implementation method of one-to-multiple account mapping binding of convenient and rapid multi-screen multi-factor WEB identity authentication | |
CN101986598B (en) | Authentication method, server and system | |
CN108024243B (en) | A kind of eSIM is caught in Network Communication method and its system | |
CN109347875A (en) | Internet of things equipment, platform of internet of things and the method and system for accessing platform of internet of things | |
CN108990062A (en) | Intelligent and safe Wi-Fi management method and system | |
CN107634834A (en) | A kind of trusted identity authentication method based on the more scenes in multiple terminals | |
CN108011873A (en) | A kind of illegal connection determination methods based on set covering | |
CN106878020A (en) | Network system, the authentication method of the network equipment and device | |
CN106559785A (en) | Authentication method, equipment and system and access device and terminal | |
CN109995699A (en) | Management of multimedia equipment system and management method | |
CN114079971A (en) | Service flow management and control method, system, DPI node and storage medium | |
US8219812B2 (en) | Methods and a device for associating a first device with a second device | |
CN101867588A (en) | Access control system based on 802.1x | |
CN107070918A (en) | A kind of network application login method and system | |
CN107888376B (en) | NFC authentication system based on quantum communication network | |
CN107786978B (en) | NFC authentication system based on quantum encryption |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170620 |