CN106878020A - Network system, the authentication method of the network equipment and device - Google Patents

Network system, the authentication method of the network equipment and device Download PDF

Info

Publication number
CN106878020A
CN106878020A CN201710055170.3A CN201710055170A CN106878020A CN 106878020 A CN106878020 A CN 106878020A CN 201710055170 A CN201710055170 A CN 201710055170A CN 106878020 A CN106878020 A CN 106878020A
Authority
CN
China
Prior art keywords
network equipment
network
user
digital certificate
user information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710055170.3A
Other languages
Chinese (zh)
Inventor
方榆
曾雄伟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Guangzhou Hong Du Information Technology Co Ltd
Original Assignee
Guangzhou Hong Du Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Guangzhou Hong Du Information Technology Co Ltd filed Critical Guangzhou Hong Du Information Technology Co Ltd
Priority to CN201710055170.3A priority Critical patent/CN106878020A/en
Publication of CN106878020A publication Critical patent/CN106878020A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/44Program or device authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computing Systems (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The invention discloses a kind of network system, the authentication method of the network equipment and device.The network system includes:Certificate server and at least one network equipment;The certificate server includes first network interface;Each described network equipment includes the second network interface, control device, digital certificate store device and user profile acquisition device;The first network interface is connected with second network interface;The control device is respectively connected with second network interface, the digital certificate store device and the user profile acquisition device.Using the present invention, it is possible to increase certification difficulty during equipment access network, so as to improve the security of network.

Description

Network system, the authentication method of the network equipment and device
Technical field
The present invention relates to field of computer technology, more particularly to a kind of network system, the authentication method of the network equipment and dress Put.
Background technology
It is existing User logs in equipment to be mainly to the method that equipment is authenticated during access network in equipment Information is authenticated or the hardware information of equipment is authenticated.Video network is accessed with IPC equipment (network shooting head apparatus) It is existing mainly to have following three kinds to the method that the IPC equipment that accessed is authenticated as a example by network:
1) judge whether login username/password that the IPC equipment sends is correct:Using 802.1x identity identifying technologies, The usemame/password that IPC equipment sends is authenticated, if certification does not pass through, the IPC equipment cannot access the video network Network;
2) judge whether the IPC equipment is registered:Its 20 Termination ID number must be registered to network by IPC equipment in advance In the networked system management platform of system, the video network cannot be otherwise accessed;
3) MAC Address (MediaAccess Control addresses or the Medium Access of the IPC equipment are judged Control addresses, i.e. physical address, hardware address) it is whether legal:The MAC Address of IPC equipment must registration in advance to network system In the networked system management platform of system, the video network cannot be otherwise accessed.
It is understood that on the basis of existing technology, illegal invasion person can steal legal by way of monitoring What IPC equipment sent etc., or the usemame/password of legal IPC equipment is obtained by way of Brute Force, and by basis Illegality equipment is accessed to video by the mode that usemame/password, Termination ID number or the MAC Address stolen imitate legal IPC equipment Network, so as to realize the attack to video network.
As can be seen here, it is existing to will access network the method that is authenticated of equipment it is excessively simple, security is not high.
The content of the invention
The present invention proposes a kind of network system, the authentication method of the network equipment and device, it is possible to increase equipment access network When certification difficulty, so as to improve the security of network.
A kind of network system that the present invention is provided, specifically includes:
Certificate server and at least one network equipment;
The certificate server includes first network interface;Each described network equipment include the second network interface, Control device, digital certificate store device and user profile acquisition device;
The first network interface is connected with second network interface;The control device connects with second network Mouth, the digital certificate store device and the user profile acquisition device are respectively connected with.
Further, the network equipment is web camera;
Then the network equipment also includes imageing sensor;
Described image sensor is connected with the control device.
Further, electric supply installation is also included in the network equipment;
The electric supply installation is obtained with the control device, the digital certificate store device and the user profile and filled Put and be respectively connected with.
Further, the control device is MCU;The digital certificate store device is the electricity of CA digital certificates of being stored with EPROM;The first network interface and second network interface are Ethernet interface.
The present invention also provides a kind of authentication method of the network equipment, specifically includes:
Receive the user information authentication request that the network equipment sends;Wherein, the user information authentication request includes institute State user's name and user cipher that the network equipment is obtained by the user profile acquisition device in the network equipment;
To receive the user information authentication request in the user's name and the user cipher be authenticated, And when certification passes through, user information authentication is sent by notifying to the network equipment;
Receive the network equipment and receive the digital certificate authentication that the user information authentication sends after notifying Request;Wherein, the digital certificate authentication request includes that the network equipment is deposited from the digital certificate in the network equipment The digital certificate obtained in storage device;
The digital certificate during the digital certificate authentication to receiving is asked is authenticated, and passes through in certification When, network insertion notification of permit is sent to the network equipment, so that the network equipment is permitted receiving the network insertion Network-in-dialing state is switched to after can notifying.
Further, before the user information authentication request that the reception network equipment sends, also include:
Receive the user profile registration request that the network equipment sends;Wherein, wrapped in the user profile registration request Include user's name to be registered and corresponding user cipher to be registered;
The user's name to be registered and the user cipher to be registered are stored in User Information Database, and send note Volume completion notice is to the network equipment.
Further, the network equipment is web camera;The digital certificate is CA digital certificates;The numeral card Book storage device is EEPROM.
Correspondingly, present invention also offers a kind of authentication device of the network equipment, specifically include:
User information authentication request receiving module, the user information authentication request for receiving network equipment transmission;Wherein, The user information authentication request includes that the network equipment is obtained by the user profile acquisition device in the network equipment The user's name and user cipher for taking;
User information authentication passes through notification module, for the use in the user information authentication request to receiving Name in an account book claims to be authenticated with the user cipher, and when certification passes through, sends user information authentication to the network equipment and lead to Cross notice;
Digital certificate authentication request receiving module, the user information authentication is being received for receiving the network equipment By the digital certificate authentication request sent after notice;Wherein, the digital certificate authentication request includes the network equipment The digital certificate obtained from the digital certificate store device in the network equipment;And,
Network insertion notification of permit module, demonstrate,proves for the numeral in the digital certificate authentication request to receiving Book is authenticated, and when certification passes through, network insertion notification of permit is sent to the network equipment, so that the network equipment Network-in-dialing state is switched to after the network insertion notification of permit is received.
Further, the authentication device of the network equipment, also includes:
User profile registration request receiver module, for receiving the user profile registration request that the network equipment sends; Wherein, the user profile registration request includes user's name to be registered and corresponding user cipher to be registered;And,
Registration completion notice sending module, for the user's name to be registered and the user cipher to be registered to be stored in In User Information Database, and send registration completion notice to the network equipment.
Further, the network equipment is web camera;The digital certificate is CA digital certificates;The numeral card Book storage device is EEPROM.
Implement the present invention, have the advantages that:
Network system, the authentication method of the network equipment and device that the present invention is provided, by adding number in the network device Word certificate storage device and user profile acquisition device, and corresponding certificate server is set in network system, so that The network equipment before the network system is accessed to, it is necessary to while carry out digital certificate authentication and user information authentication so that Certification difficulty during network equipment connecting network system is improved, and then improves the security of network system.
Brief description of the drawings
Fig. 1 is a structural representation for preferred embodiment of the network system that the present invention is provided;
Fig. 2 is a knot for video networking system in another preferred embodiment for the network system that the present invention is provided Structure schematic diagram;
Fig. 3 is a schematic flow sheet for preferred embodiment of the authentication method of the network equipment that the present invention is provided;
Fig. 4 is a structural representation for preferred embodiment of the authentication device of the network equipment that the present invention is provided.
Specific embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete Site preparation is described, it is clear that described embodiment is only a part of embodiment of the invention, rather than whole embodiments.It is based on Embodiment in the present invention, it is every other that those of ordinary skill in the art are obtained under the premise of creative work is not made Embodiment, belongs to the scope of protection of the invention.
The present invention passes through to add digital certificate store device and user profile acquisition device in the network device, and in network Corresponding certificate server is set in system so that the network equipment before the network system is accessed to, it is necessary to simultaneously Digital certificate authentication and user information authentication are carried out, so that certification difficulty when improving network equipment connecting network system, and then Improve the security of network system.
It is a structural representation for preferred embodiment of the network system that the present invention is provided referring to Fig. 1, specific bag Include:
The network equipment 12 of certificate server 11 and at least one;
The certificate server 11 includes first network interface 111;Each described network equipment 12 includes the second net Network interface 121, control device 122, digital certificate store device 123 and user profile acquisition device 124;
The first network interface 111 is connected with second network interface 121;The control device 122 with it is described Second network interface 121, the digital certificate store device 123 and the user profile acquisition device 124 are respectively connected with.
Further, electric supply installation 125 is also included in the network equipment 12;
The electric supply installation 125 and the control device 122, the digital certificate store device 123 and the user Information acquisition device 124 is respectively connected with.
Further, the control device 122 is MCU;The digital certificate store device 123 is the CA numeral cards that are stored with The EEPROM of book;The first network interface 111 and second network interface 121 are Ethernet Interface.
It should be noted that the network system that the present embodiment is provided includes that certificate server and at least one network set It is standby.Control device in the network equipment is respectively connected with other each devices in the network equipment, for controlling and coordinates each Running between device.Digital certificate store device in the network equipment is used for storage and is write simultaneously when the network equipment dispatches from the factory The digital certificate in the digital certificate store device is cured to, wherein, the digital certificate store device can be EEPROM (Electrically Erasable Programmable Read-Only Memory, EEPROM), The digital certificate can be CA (CertificateAuthority, e-business certification authorized organization) digital certificate.The network Also include independent encryption arithmetic unit in equipment, be authenticated for sending to certificate server digital certificate in the network equipment The digital certificate is encrypted before.User profile acquisition device in the network equipment is used to obtain user profile, specifically, The user profile acquisition device can obtain the user profile of user input by User Interface, it is also possible to by from user The mode that the user profile for prestoring is read in information-storing device obtains user profile.User profile includes the use of user Name in an account book and corresponding password.Also include in the network equipment control device in electric supply installation, the electric supply installation and the network equipment, Digital certificate store device, user profile acquisition device etc. are connected, and are powered for each device in the network equipment.Network Connect and communicate by network interface between certificate server and the network equipment in system, the network interface can be wireless network Network interface, or wired network interface.
By adding digital certificate store device and user profile acquisition device in the network device, and in network system Corresponding certificate server is set so that the network equipment before the network system is accessed to, it is necessary to while enter line number Word certificate verification and user information authentication, so that certification difficulty when improving network equipment connecting network system, and then improve net The security of network system.
In another preferred embodiment, on the basis of above-mentioned preferred embodiment, the network equipment 12 is net Network video camera;
Then the network equipment 12 also includes imageing sensor;
Described image sensor is connected with the control device.
It should be noted that the network equipment in network system can be web camera (IPC).Then the network system can Think video networking system.Also include the control device phase in camera, and the camera and the network equipment in the network equipment Connection.After the network equipment is accessed in network system, the network equipment can be connect the image captured by camera by network Mouth is sent into other network equipments of network system or network system.
As shown in Fig. 2 being a structural representation for video networking system in this preferred embodiment.
Network system provided in an embodiment of the present invention, by adding digital certificate store device and user in the network device Information acquisition device, and corresponding certificate server is set in network system, so that the network equipment is accessing to this , it is necessary to carry out digital certificate authentication and user information authentication simultaneously before network system, so as to improve network equipment connecting network Certification difficulty during system, and then improve the security of network system.
The present invention also provides a kind of authentication method of the network equipment.The authentication method of the network equipment provided by the present invention by Certificate server in the network system that any of the above-described embodiment is provided is performed.
It is that the flow of a preferred embodiment of the authentication method of the network equipment that the present invention is provided is illustrated referring to Fig. 3 Figure, specifically includes step:
S31:Receive the user information authentication request that the network equipment sends;Wherein, wrapped in the user information authentication request Include user's name and user cipher that the network equipment is obtained by the user profile acquisition device in the network equipment;
S32:To receive the user information authentication request in the user's name and the user cipher carry out Certification, and when certification passes through, user information authentication is sent by notifying to the network equipment;
S33:Receive the network equipment and receive the digital certificate that the user information authentication sends after notifying Certification request;Wherein, the digital certificate authentication request includes the network equipment from the numeral card in the network equipment The digital certificate obtained in book storage device;
S34:The digital certificate during the digital certificate authentication to receiving is asked is authenticated, and logical in certification It is out-of-date, network insertion notification of permit is sent to the network equipment, so that the network equipment is receiving the network insertion Network-in-dialing state is switched to after notification of permit.
Further, the network equipment is web camera;The digital certificate is CA digital certificates;The numeral card Book storage device is EEPROM.
It should be noted that the network system that the network equipment in the embodiment of the present invention is provided by any of the above-described embodiment In the network equipment.The network equipment is before network system is linked into, it is necessary to carry out user information authentication and digital certificate authentication. Specifically:
1) network equipment obtains user's name and corresponding user cipher by the user profile acquisition device of itself, and Corresponding user information authentication request is generated according to the user's name and user cipher for being obtained, and please by the user information authentication Ask and sent to certificate server by network interface;
2) certificate server is believed after the user information authentication request for receiving network equipment transmission in the user of itself Corresponding user's name and user cipher are searched in breath database, is recognized with to the user's name for receiving and user cipher Card;If identical and corresponding user's name and user cipher can be found in the User Information Database, then it is assumed that The certification passes through, so as to generate corresponding user information authentication by notifying, and the user information authentication is sent by notifying To the foregoing network equipment;If identical and corresponding user's name and use can not be found in the User Information Database Family password, then it is assumed that the authentification failure, so as to generate corresponding user information authentication failure notification, and by the user information authentication Failure notification is sent to the foregoing network equipment, while in forbidding the network equipment to access to the network system;
3) network equipment receive certificate server transmission user information authentication by notify after, from the number of itself Digital certificate is read in word certificate storage device, and the digital certificate is encrypted using independent encryption arithmetic unit, and root Corresponding digital certificate authentication is generated according to the digital certificate after encryption to ask, the digital certificate authentication that will then generate asks to send To certificate server;
4) certificate server extracts the digital certificate after the digital certificate authentication request for receiving network equipment transmission In digital certificate, and the digital certificate is decrypted, is compared and certification;If the digital certificate is by certification authority The legal digital certificate that (e.g., CA) is authorized, then it is assumed that the certification passes through, and the network equipment is the legal network equipment, therefore Corresponding network insertion notification of permit is generated, and the network insertion notification of permit is sent to the network equipment, so that should The network equipment is connected with network system;If the digital certificate is the illegal number authorized without certification authority (e.g., CA) Word certificate, then it is assumed that the authentification failure, the network equipment is the illegal network equipment, therefore the corresponding network insertion of generation is forbidden Notify, and the network insertion is forbidden notifying to send to the network equipment, while forbidding the network equipment to access to the network system In system;
5) after the network equipment accesses to network system, the network equipment can be by network interface and the network system Server or other network equipments communicated.
The network equipment in network system can also be web camera, and now the network equipment can be by by local shooting Head is shot the image for obtaining and is sent into the server of network system or other network equipments by network interface.
It is understood that in some application scenarios not high to security requirement, the network equipment is being linked into network Before system, digital certificate authentication can be singly carried out, without carrying out user information authentication.
By before the network equipment is accessed in network system, while carrying out digital certificate authentication and use to the network equipment Family authentification of message, so that certification difficulty when improving network equipment connecting network system, and then improve the security of network system.
In another preferred embodiment, on the basis of above-mentioned preferred embodiment, in the reception network equipment Before the user information authentication request of transmission, also include:
Receive the user profile registration request that the network equipment sends;Wherein, wrapped in the user profile registration request Include user's name to be registered and corresponding user cipher to be registered;
The user's name to be registered and the user cipher to be registered are stored in User Information Database, and send note Volume completion notice is to the network equipment.
It should be noted that for the network device user in access network system first, carrying out user information authentication Before, in addition it is also necessary to carry out user profile registration.Specifically, the network equipment passed through before its user first access network system The user profile acquisition device of itself obtains the user's name and corresponding user cipher of user to be registered, and according to acquired User's name to be registered and user cipher to be registered generate corresponding user profile registration request, and please by user profile registration Ask transmission to certificate server.Certificate server is extracted therein to be registered after the user profile registration request is received User's name and user cipher to be registered, and the user's name to be registered and user cipher to be registered are stored in the user's letter of itself In breath database, so that the registration of user profile is completed, while the corresponding registration completion notice of generation, and the registration is completed logical Know transmission to the network equipment.
The authentication method of the network equipment provided in an embodiment of the present invention, in accessing to network system in the network equipment Before, while digital certificate authentication and user information authentication are carried out to the network equipment, so as to improve network equipment connecting network system Certification difficulty during system, and then improve the security of network system.
Correspondingly, the present invention also provides a kind of authentication device of the network equipment, can realize the certification of the above-mentioned network equipment All flows of method.
It is a structural representation for preferred embodiment of the authentication device of the network equipment that the present invention is provided referring to Fig. 4 Figure, it is specific as follows:
User information authentication request receiving module 41, the user information authentication request for receiving network equipment transmission;Its In, the user information authentication request includes the network equipment by the user profile acquisition device in the network equipment The user's name and user cipher of acquisition;
User information authentication passes through notification module 42, described in the user information authentication request to receiving User's name and the user cipher are authenticated, and when certification passes through, user information authentication are sent to the network equipment By notifying;
Digital certificate authentication request receiving module 43, recognizes receiving the user profile for receiving the network equipment The digital certificate authentication sent after notifying is demonstrate,proved to ask;Wherein, the digital certificate authentication request includes that the network sets The standby digital certificate obtained from the digital certificate store device in the network equipment;And,
Network insertion notification of permit module 44, for the numeral in the digital certificate authentication request to receiving Certificate is authenticated, and when certification passes through, network insertion notification of permit is sent to the network equipment, so that the network sets It is standby to switch to network-in-dialing state after the network insertion notification of permit is received.
Further, the network equipment is web camera;The digital certificate is CA digital certificates;The numeral card Book storage device is EEPROM.
In another preferred embodiment, on the basis of above-mentioned preferred embodiment, the certification of the network equipment Device, also includes:
User profile registration request receiver module, for receiving the user profile registration request that the network equipment sends; Wherein, the user profile registration request includes user's name to be registered and corresponding user cipher to be registered;And,
Registration completion notice sending module, for the user's name to be registered and the user cipher to be registered to be stored in In User Information Database, and send registration completion notice to the network equipment.
The authentication device of the network equipment provided in an embodiment of the present invention, in accessing to network system in the network equipment Before, while digital certificate authentication and user information authentication are carried out to the network equipment, so as to improve network equipment connecting network system Certification difficulty during system, and then improve the security of network system.
The above is the preferred embodiment of the present invention, it is noted that for those skilled in the art For, under the premise without departing from the principles of the invention, some improvements and modifications can also be made, these improvements and modifications are also considered as Protection scope of the present invention.

Claims (10)

1. a kind of network system, it is characterised in that including certificate server and at least one network equipment;
The certificate server includes first network interface;Each described network equipment includes the second network interface, control Device, digital certificate store device and user profile acquisition device;
The first network interface is connected with second network interface;The control device and second network interface, The digital certificate store device and the user profile acquisition device are respectively connected with.
2. network system as claimed in claim 1, it is characterised in that the network equipment is web camera;
Then the network equipment also includes imageing sensor;
Described image sensor is connected with the control device.
3. network system as claimed in claim 1, it is characterised in that also include electric supply installation in the network equipment;
The electric supply installation and the control device, the digital certificate store device and the user profile acquisition device point It is not connected.
4. network system as claimed any one in claims 1 to 3, it is characterised in that the control device is MCU;It is described Digital certificate store device is the EEPROM of CA digital certificates of being stored with;The first network interface and Second network interface is Ethernet interface.
5. a kind of authentication method of the network equipment, it is characterised in that including:
Receive the user information authentication request that the network equipment sends;Wherein, the user information authentication request includes the net User's name and user cipher that network equipment is obtained by the user profile acquisition device in the network equipment;
To receive the user information authentication request in the user's name and the user cipher be authenticated, and When certification passes through, user information authentication is sent by notifying to the network equipment;
Receive the network equipment and receive the digital certificate authentication request that the user information authentication sends after notifying; Wherein, the digital certificate authentication request includes the network equipment from the digital certificate store device in the network equipment The digital certificate of middle acquisition;
The digital certificate during the digital certificate authentication to receiving is asked is authenticated, and when certification passes through, to The network equipment sends network insertion notification of permit, so that the network equipment is receiving the network insertion notification of permit After switch to network-in-dialing state.
6. the authentication method of the network equipment as claimed in claim 5, it is characterised in that sent in the reception network equipment Before user information authentication request, also include:
Receive the user profile registration request that the network equipment sends;Wherein, the user profile registration request includes treating Registered user's title and corresponding user cipher to be registered;
The user's name to be registered and the user cipher to be registered are stored in User Information Database, and are sent and has been registered Into notifying to the network equipment.
7. the authentication method of the network equipment as described in claim 5 or 6, it is characterised in that the network equipment is taken the photograph for network Camera;The digital certificate is CA digital certificates;The digital certificate store device is EEPROM.
8. a kind of authentication device of the network equipment, it is characterised in that including:
User information authentication request receiving module, the user information authentication request for receiving network equipment transmission;Wherein, it is described User information authentication request includes what the network equipment was obtained by the user profile acquisition device in the network equipment User's name and user cipher;
User information authentication passes through notification module, for the user name in the user information authentication request to receiving Claim and the user cipher is authenticated, and when certification passes through, user information authentication is sent by logical to the network equipment Know;
Digital certificate authentication request receiving module, passes through receiving the user information authentication for receiving the network equipment The digital certificate authentication request sent after notice;Wherein, the digital certificate authentication request includes the network equipment from institute State the digital certificate obtained in the digital certificate store device in the network equipment;And,
Network insertion notification of permit module, enters for the digital certificate in the digital certificate authentication request to receiving Row certification, and when certification passes through, network insertion notification of permit is sent to the network equipment, so that the network equipment is connecing Network-in-dialing state is switched to after receiving the network insertion notification of permit.
9. the authentication device of the network equipment as claimed in claim 8, it is characterised in that the authentication device of the network equipment, Also include:
User profile registration request receiver module, for receiving the user profile registration request that the network equipment sends;Wherein, The user profile registration request includes user's name to be registered and corresponding user cipher to be registered;And,
Registration completion notice sending module, for the user's name to be registered and the user cipher to be registered to be stored in into user In information database, and send registration completion notice to the network equipment.
10. the authentication device of the network equipment as claimed in claim 8 or 9, it is characterised in that the network equipment is taken the photograph for network Camera;The digital certificate is CA digital certificates;The digital certificate store device is EEPROM.
CN201710055170.3A 2017-01-24 2017-01-24 Network system, the authentication method of the network equipment and device Pending CN106878020A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710055170.3A CN106878020A (en) 2017-01-24 2017-01-24 Network system, the authentication method of the network equipment and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710055170.3A CN106878020A (en) 2017-01-24 2017-01-24 Network system, the authentication method of the network equipment and device

Publications (1)

Publication Number Publication Date
CN106878020A true CN106878020A (en) 2017-06-20

Family

ID=59158989

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710055170.3A Pending CN106878020A (en) 2017-01-24 2017-01-24 Network system, the authentication method of the network equipment and device

Country Status (1)

Country Link
CN (1) CN106878020A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107580000A (en) * 2017-10-20 2018-01-12 北京知道创宇信息技术有限公司 Digital certificate authentication method and device
CN110784437A (en) * 2018-07-31 2020-02-11 横河电机株式会社 Interface module, network device and network system
CN113557703A (en) * 2019-03-19 2021-10-26 华为技术有限公司 Authentication method and device for network camera

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101212297A (en) * 2006-12-28 2008-07-02 中国移动通信集团公司 WEB-based WLAN access authentication method and system
CN101753354A (en) * 2008-12-22 2010-06-23 北京中星微电子有限公司 Method for realizing the automatic configuration of network camera and monitoring system
CN103096036A (en) * 2013-01-13 2013-05-08 潘铁军 Security and protection device and cloud service system and safety method of wide band video
CN103701763A (en) * 2012-09-27 2014-04-02 中国移动通信集团公司 System, method and device for verifying client-side equipment
CN105101194A (en) * 2014-04-28 2015-11-25 华为技术有限公司 Terminal security authentication method, device and system

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101212297A (en) * 2006-12-28 2008-07-02 中国移动通信集团公司 WEB-based WLAN access authentication method and system
CN101753354A (en) * 2008-12-22 2010-06-23 北京中星微电子有限公司 Method for realizing the automatic configuration of network camera and monitoring system
CN103701763A (en) * 2012-09-27 2014-04-02 中国移动通信集团公司 System, method and device for verifying client-side equipment
CN103096036A (en) * 2013-01-13 2013-05-08 潘铁军 Security and protection device and cloud service system and safety method of wide band video
CN105101194A (en) * 2014-04-28 2015-11-25 华为技术有限公司 Terminal security authentication method, device and system

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107580000A (en) * 2017-10-20 2018-01-12 北京知道创宇信息技术有限公司 Digital certificate authentication method and device
CN110784437A (en) * 2018-07-31 2020-02-11 横河电机株式会社 Interface module, network device and network system
CN110784437B (en) * 2018-07-31 2022-01-18 横河电机株式会社 Interface module, network device and network system
CN113557703A (en) * 2019-03-19 2021-10-26 华为技术有限公司 Authentication method and device for network camera
CN113557703B (en) * 2019-03-19 2024-05-14 华为技术有限公司 Authentication method and device of network camera

Similar Documents

Publication Publication Date Title
CN105654580B (en) Access control method and system, electronic lock, management and visitor's terminal
TWI530150B (en) Identity authentication device and method thereof
CN109981689A (en) Cross-domain logical is isolated by force and safety access control method and device under scenes of internet of things
CN101217575B (en) An IP address allocation and device in user end certification process
CN108270571A (en) Internet of Things identity authorization system and its method based on block chain
CN102624720B (en) Method, device and system for identity authentication
CN107689944A (en) Identity identifying method, device and system
CN108964885A (en) Method for authenticating, device, system and storage medium
CN106850680A (en) A kind of intelligent identity identification method and device for Transit Equipment
CN103856332A (en) Implementation method of one-to-multiple account mapping binding of convenient and rapid multi-screen multi-factor WEB identity authentication
CN101986598B (en) Authentication method, server and system
CN108024243B (en) A kind of eSIM is caught in Network Communication method and its system
CN109347875A (en) Internet of things equipment, platform of internet of things and the method and system for accessing platform of internet of things
CN108990062A (en) Intelligent and safe Wi-Fi management method and system
CN107634834A (en) A kind of trusted identity authentication method based on the more scenes in multiple terminals
CN108011873A (en) A kind of illegal connection determination methods based on set covering
CN106878020A (en) Network system, the authentication method of the network equipment and device
CN106559785A (en) Authentication method, equipment and system and access device and terminal
CN109995699A (en) Management of multimedia equipment system and management method
CN114079971A (en) Service flow management and control method, system, DPI node and storage medium
US8219812B2 (en) Methods and a device for associating a first device with a second device
CN101867588A (en) Access control system based on 802.1x
CN107070918A (en) A kind of network application login method and system
CN107888376B (en) NFC authentication system based on quantum communication network
CN107786978B (en) NFC authentication system based on quantum encryption

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20170620