CN107294977A - The method and device of Wi Fi secure connections - Google Patents

The method and device of Wi Fi secure connections Download PDF

Info

Publication number
CN107294977A
CN107294977A CN201710507517.3A CN201710507517A CN107294977A CN 107294977 A CN107294977 A CN 107294977A CN 201710507517 A CN201710507517 A CN 201710507517A CN 107294977 A CN107294977 A CN 107294977A
Authority
CN
China
Prior art keywords
fingerprints
wap
cloud platform
terminal
access point
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710507517.3A
Other languages
Chinese (zh)
Inventor
陈武溢
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Maipu Communication Technology Co Ltd
Original Assignee
Maipu Communication Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Maipu Communication Technology Co Ltd filed Critical Maipu Communication Technology Co Ltd
Priority to CN201710507517.3A priority Critical patent/CN107294977A/en
Publication of CN107294977A publication Critical patent/CN107294977A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/16Discovering, processing access restriction or access information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The present invention relates to Internet technical field, specifically related to a kind of method and device of Wi Fi secure connections, the method of the Wi Fi secure connections includes the wireless messages that terminal obtains current wireless access point, generate the Wi Fi fingerprints of the current wireless access point, terminal sends Wi Fi fingerprints to cloud platform, the Wi Fi fingerprints are compared by cloud platform with pre-stored Wi Fi fingerprints, the information of WAP corresponding with the Wi Fi fingerprints of pre-stored Wi Fi fingerprint matchings is sent to terminal, and then terminal response user is to the selection operation of WAP, the WAP of accessing user's selection.In this programme, WAP can not only send wireless signal with so that terminal is connected, it can also judge whether the current wireless access point of access is safe, and the safety detection accessed to Wi Fi is realized in the case of without increase extras, cost has been saved by cloud platform simultaneously.

Description

The method and device of Wi-Fi secure connections
Technical field
The present invention relates to Internet technical field, in particular to a kind of method and device of Wi-Fi secure connections.
Background technology
With the popularization of intelligent terminal, many banks and government all widely popularize and disposed public WiFi, but are limited to nothing Line technology and lower deployment cost, current WAP only enable some simple security functions, it is impossible to ensure wireless terminal Access safety.The raising realized with public security, wireless security is increasingly concerned by people, and how to ensure that WiFi pacifies Complete has been the problem that numerous equipment vendors have to consider.The existing illegal WiFi of detection is typically WIDS/WIPS, but if will , it is necessary to which individually deployment WAP is used to detect and break through if ensureing effect, and covered as normal wireless access point Whole region, the hardware cost of customer devotion is higher, and acceptance is very low.Therefore it provides a kind of energy is cost-effective and Wi- can be realized The method of Fi secure connections is very necessary.
The content of the invention
It is an object of the invention to provide a kind of method of Wi-Fi secure connections, to realize Wi-Fi secure connection, together When it is cost-effective.
Another object of the present invention is to provide a kind of device of Wi-Fi secure connections, connected with the safety for realizing Wi-Fi Connect, while cost-effective.
To achieve these goals, the technical scheme that the embodiment of the present invention is used is as follows:
In a first aspect, the embodiments of the invention provide a kind of method of Wi-Fi secure connections, methods described includes:
Terminal obtains the wireless messages of current wireless access point, generates the Wi-Fi fingerprints of the current wireless access point;
Terminal sends the Wi-Fi fingerprints to cloud platform;
The Wi-Fi fingerprints are compared by cloud platform with pre-stored Wi-Fi fingerprints, by with the pre-stored Wi- The information of the corresponding WAP of Wi-Fi fingerprints of Fi fingerprint matchings is sent to the terminal;
The information for the WAP that terminal is sent according to cloud platform, the WAP of accessing user's selection.
Second aspect, the embodiment of the present invention additionally provides a kind of method of Wi-Fi secure connections, described applied to terminal Method includes:
The wireless messages of current wireless access point are obtained, the Wi-Fi fingerprints of the current wireless access point are generated;
The Wi-Fi fingerprints are sent to cloud platform;
Receive the Wi-Fi fingerprints pair for the Wi-Fi fingerprint matchings with being pre-stored in the cloud platform that the cloud platform is sent The information for the WAP answered;
The information of the WAP sent according to cloud platform, the WAP of accessing user's selection.
The third aspect, the embodiment of the present invention additionally provides a kind of method of Wi-Fi secure connections, applied to cloud platform, institute The method of stating includes:
The Wi-Fi fingerprints that receiving terminal is sent, the Wi-Fi fingerprints are obtained the wireless communication of current wireless access point by terminal Cease to generate the Wi-Fi fingerprints of the current wireless access point;
The Wi-Fi fingerprints of reception are compared with pre-stored Wi-Fi fingerprints, by with pre-stored Wi-Fi fingerprints The information for the corresponding WAP of Wi-Fi fingerprints matched somebody with somebody is sent to terminal, in order to which terminal response user is to WAP Selection operation, accessing user selection the WAP.
Fourth aspect, the embodiment of the present invention additionally provides a kind of device of Wi-Fi secure connections, described applied to terminal Device includes:
Acquisition module, the wireless messages for obtaining current wireless access point generate the Wi- of the current wireless access point Fi fingerprints;
Sending module, for the Wi-Fi fingerprints to be sent to cloud platform;
First receiving module, for receiving the Wi-Fi fingerprints with being pre-stored in the cloud platform that the cloud platform is sent The information of the corresponding WAP of Wi-Fi fingerprints of matching;
AM access module, for the information of the WAP sent according to cloud platform, the wireless access of accessing user's selection Point.
5th aspect, the embodiment of the present invention additionally provides a kind of device of Wi-Fi secure connections, applied to cloud platform, institute Stating device includes:
Second receiving module, the Wi-Fi fingerprints sent for receiving terminal, the Wi-Fi fingerprints obtain current by terminal The wireless messages of WAP are to generate the Wi-Fi fingerprints of the current wireless access point;
Comparison module, will be with being pre-stored for the Wi-Fi fingerprints of reception to be compared with pre-stored Wi-Fi fingerprints The information of the corresponding WAP of Wi-Fi fingerprints of Wi-Fi fingerprint matchings send to terminal, in order to terminal response user To the selection operation of WAP, the line access point of accessing user's selection.
A kind of method and device of Wi-Fi secure connections provided in an embodiment of the present invention, the method for the Wi-Fi secure connections The wireless messages of current wireless access point are obtained including terminal, the Wi-Fi fingerprints of the current wireless access point are generated, terminal will Wi-Fi fingerprints are sent to cloud platform, and the Wi-Fi fingerprints are compared by cloud platform with pre-stored Wi-Fi fingerprints, will with it is pre- The information of the corresponding current wireless access point of Wi-Fi fingerprints of the Wi-Fi fingerprint matchings of storage is sent to terminal, and then terminal sound Using selection operation of the family to current wireless access point, the current wireless access point of accessing user's selection.In this programme, currently WAP can not only send wireless signal with so that terminal is connected, while can also judge working as access by cloud platform Whether preceding WAP is safe, and the safety detection accessed to Wi-Fi, section are realized in the case of without increase extras About cost.
To enable the above objects, features and advantages of the present invention to become apparent, preferred embodiment cited below particularly, and coordinate Appended accompanying drawing, is described in detail below.
Brief description of the drawings
In order to illustrate the technical solution of the embodiments of the present invention more clearly, below will be attached to what is used required in embodiment Figure is briefly described, it will be appreciated that the following drawings illustrate only certain embodiments of the present invention, therefore is not construed as pair The restriction of scope, for those of ordinary skill in the art, on the premise of not paying creative work, can also be according to this A little accompanying drawings obtain other related accompanying drawings.
Fig. 1 shows a kind of structural representation of the method application environment of Wi-Fi secure connections provided in an embodiment of the present invention Figure.
Fig. 2 shows a kind of schematic flow sheet of the method for Wi-Fi secure connections provided in an embodiment of the present invention.
Fig. 3 shows the schematic flow sheet of the method for another Wi-Fi secure connections provided in an embodiment of the present invention.
Fig. 4 shows the schematic flow sheet of the method for another Wi-Fi secure connections provided in an embodiment of the present invention.
Fig. 5 shows a kind of high-level schematic functional block diagram of the device of Wi-Fi secure connections provided in an embodiment of the present invention.
Fig. 6 shows the high-level schematic functional block diagram of the device of another Wi-Fi secure connections provided in an embodiment of the present invention.
Diagram:100- terminals;200- cloud platforms;300- wireless controllers;400- WAPs;110-Wi-Fi safety The device of connection;111- acquisition modules;112- sets up module;113- sending modules;The receiving modules of 114- first;115- accesses mould Block;The device of 210-Wi-Fi secure connections;211- memory modules;The receiving modules of 212- second;213- comparison modules.
Embodiment
Below in conjunction with accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete Ground is described, it is clear that described embodiment is only a part of embodiment of the invention, rather than whole embodiments.Generally exist The component of the embodiment of the present invention described and illustrated in accompanying drawing can be arranged and designed with a variety of configurations herein.Cause This, the detailed description of the embodiments of the invention to providing in the accompanying drawings is not intended to limit claimed invention below Scope, but it is merely representative of the selected embodiment of the present invention.Based on embodiments of the invention, those skilled in the art are not doing The every other embodiment obtained on the premise of going out creative work, belongs to the scope of protection of the invention.
It should be noted that:Similar label and letter represents similar terms in following accompanying drawing, therefore, once a certain Xiang Yi It is defined in individual accompanying drawing, then it further need not be defined and explained in subsequent accompanying drawing.Meanwhile, the present invention's In description, term " first ", " second " etc. are only used for distinguishing description, and it is not intended that indicating or implying relative importance.
Fig. 1 is refer to, is that a kind of structure of the application environment of Wi-Fi secure connections method provided in an embodiment of the present invention is shown It is intended to.The Wi-Fi secure connections method is applied to terminal 100 and cloud platform 200, and the terminal 100 can pass through network and cloud platform 200 connections, the network can be, Wi-Fi network or, 4G or 3G network.In addition, (the Access of WAP 400 Point, AP) can be multiple, in embodiments of the present invention, the Wi-Fi module of terminal 100 connects to obtain multiple different radios The wireless messages of access point 400, the wireless messages include but is not limited to, MAC Address, the WAP 400 of WAP 400 BSSID (Basic Service Set Identifier, BSSID), channel, signal power, wireless access Geographical position, the title of WAP 400, one-level branch title of point 400 etc., the wireless messages life that the terminal 100 is obtained Include one or more wireless messages into the Wi-Fi fingerprints of the WAP 400, i.e. the Wi-Fi fingerprints, and by the nothing of generation The Wi-Fi fingerprints of line access point 400 are sent to cloud platform 200.
In addition, wireless controller 300 (Wireless Access Point Controller, AC) and cloud platform 200 with And multiple WAPs 400 are communicated to connect.The wireless controller 300 is used to manage multiple different WAPs 400, And the Wi-Fi fingerprints of multiple different radio access points 400 are recorded, the Wi-Fi fingerprints of each WAP 400 include nothing MAC Address, the BSSID of WAP 400, channel, signal power, the WAP of line access point 400 400 geographical position, the title of WAP 400, one-level branch title, frequency range, the service set of WAP 400 (Service Set Identifier, SSID) etc., the Wi-Fi fingerprints can be used for each WAP 400 of unique mark. The wireless controller 400 is gone back to be safeguarded to the Wi-Fi finger print informations of multiple different radio access points 400 of storage in real time, such as The operation such as it is added, deletes, updating to the Wi-Fi fingerprints of multiple different radio access points 400, and update will for timing or triggering The Wi-Fi fingerprints of multiple different radio access points 400 send and stored to cloud platform 200.
The cloud platform 200 will be received after the Wi-Fi fingerprints for the WAP 400 that real-time reception to terminal 100 is sent To Wi-Fi fingerprints be compared with pre-stored Wi-Fi fingerprints, by the Wi-Fi fingerprints with pre-stored Wi-Fi fingerprint matchings The information of WAP 400 send to terminal 100, the Wi-Fi fingerprints that terminal 100 is received then are shown to be safe Wi- Fi fingerprints, then user according to selection the need for oneself WAP 400 connected can be needed to connect to set up safe Wi-Fi Connect, it is ensured that the safety of online.
Fig. 2 is refer to, is a kind of schematic flow sheet of Wi-Fi secure connections method provided in an embodiment of the present invention, the Wi- Fi secure connections method is applied to terminal 100 and cloud platform 200, and the Wi-Fi secure connection methods include:
Step S110, terminal obtains the wireless messages of current wireless access point, generates the Wi- of the current wireless access point Fi fingerprints.
When terminal 100 enters the radiation scope of the WAP 400 of a site or regional deployment, the terminal 100 The Wi-Fi module that can be set by itself receives at least one (most of situation deployment more than one) WAP 400 and sent out The wireless messages gone out, the wireless messages include MAC Address, the Basic Service Set mark of WAP 400 of WAP 400 Know in symbol, channel, signal power, the geographical position of WAP 400, the title of WAP 400, one-level branch title At least one.The terminal 100 generates the Wi-Fi of WAP 400 according to the wireless messages of whole WAPs of reception Fingerprint.
Step S120, terminal sets up the secure connection with the cloud platform.
The terminal 100 sets up the secure connection with cloud platform 200 by 4G networks, 3G network or wireless network, if eventually Connection failure is set up in end 100 with cloud platform 200, and terminal 100 can send prompting, and such as terminal 100 does not open 4G or network delay is led Cause connection failure etc..
Step S130, terminal sends the Wi-Fi fingerprints to the cloud platform.
After the terminal 100 and cloud platform 200 are set up and be connected, the terminal 100 is by the fingerprint of the WAP 400 of acquisition Send to cloud platform 200.
The Wi-Fi fingerprints are compared by step S140, cloud platform with pre-stored Wi-Fi fingerprints, will be with being pre-stored Wi-Fi fingerprint matchings Wi-Fi fingerprints correspondence WAP information send to the terminal.
The cloud platform 200 refers to the Wi-Fi fingerprints of the WAP 400 received from terminal 100 with pre-stored Wi-Fi Line is compared.The Wi-Fi fingerprints being pre-stored in the cloud platform 200 are multiple WAPs that wireless controller 300 is sent 400 Wi-Fi fingerprints.Specially:Wireless controller 300 is set up with cloud platform 200 by network and is connected;In WAP 400 are successfully registered to after wireless controller 300, discharge SSID, and the wireless controller 300 is used to manage many of successful registration Individual different WAP 400, and record the Wi-Fi fingerprints of multiple different radio access points 400, each WAP 400 Wi-Fi the fingerprints MAC Address including WAP 400, the BSSID of WAP 400, letter Road, signal power, the geographical position of WAP 400, the title of WAP 400, one-level branch title, frequency range, nothing Service set of line access point 400 etc., the Wi-Fi fingerprints can be used for each WAP 400 of unique mark.This is wireless Controller 400 is also safeguarded to the Wi-Fi finger print informations of multiple different radio access points 400 of storage in real time, such as to multiple The Wi-Fi fingerprints of different radio access point 400 such as are added, deleted, updating at the operation, and timing or triggering update by it is multiple not Wi-Fi fingerprints with WAP 400 send and stored to cloud platform 200.
Therefore, the Wi-Fi fingerprints received are compared by the cloud platform 200 successively with pre-stored Wi-Fi fingerprints, and The information of WAP 400 corresponding with the Wi-Fi fingerprints of pre-stored Wi-Fi fingerprint matchings is sent to terminal 100, such as Cloud platform 200 sends the title of WAP 400 to terminal 100.The Wi-Fi fingerprints of cloud platform transmission are corresponding wirelessly to be connect The number of access point is less than or equal to the number of the corresponding WAP for the Wi-Fi fingerprint matchings that terminal is sent.Here if The rogue AP pretended to be, although WIFI titles are identical, but the key message such as BSSID, channel is different, and cloud platform can be by illegal WIFI Filter out.Even if success can not be filtered, cloud platform can also will include legal WIFI fingerprints and the WIFI fingerprints are pushed to terminal, Legal AP is selected by terminal user.
Step S150, the information for the WAP that terminal is sent according to cloud platform, the wireless access of accessing user's selection Point.
The terminal 100 will receive the name of the information, such as WAP 400 for the WAP 400 that cloud platform 200 is sent Claim, in order to which user selects to need the WAP 400 of connection, the terminal 100 will respond the selection operation of user, to access The WAP 400 of user's selection.For example, when terminal 100 receives the letter of the WAP 400 of the transmission of cloud platform 200 After breath, user can also independently check whether multiple WAPs 400 are safe, if the environment where user only deploys one But the information of multiple WAPs 400 is shown in individual WAP 400, terminal 100, user is by recognizing that site is disposed Whether true AP BSSID OUI is legal WAP 400 that the selection such as equipment supplier needs to connect, can be with this There is unsafe WAP 400 in judgement.
Fig. 3 is refer to, is the schematic flow sheet of the method for another Wi-Fi secure connections provided in an embodiment of the present invention, The method of the Wi-Fi secure connections is applied to terminal 100, and the method for the Wi-Fi secure connections includes:
Step S210, obtains the wireless messages of current wireless access point, and the Wi-Fi for generating the current wireless access point refers to Line.
When terminal 100 enters the radiation scope of the WAP 400 of a site or regional deployment, the terminal 100 The Wi-Fi module that can be set by itself receives at least one (most of situation deployment more than one) WAP 400 and sent out The wireless messages gone out, the wireless messages include MAC Address, the Basic Service Set mark of WAP 400 of WAP 400 Know in symbol, channel, signal power, the geographical position of WAP 400, the title of WAP 400, one-level branch title At least one.The terminal 100 generates the Wi-Fi of WAP 400 according to the wireless messages of whole WAPs of reception Fingerprint.
Step S220, sets up the secure connection with the cloud platform.
The terminal 100 sets up the secure connection with cloud platform 200 by 4G networks, 3G network or wireless network, if eventually Connection failure is set up in end 100 with cloud platform 200, and terminal 100 can send prompting, and such as terminal 100 does not open 4G or network delay is led Cause connection failure etc..
Step S230, the Wi-Fi fingerprints are sent to cloud platform.
Wi-Fi fingerprints according to the WAP 400 of the wireless messages generation received are sent to cloud and put down by the terminal 100 Platform 200.
Step S240, the Wi-Fi for receiving the Wi-Fi fingerprint matchings with being pre-stored in cloud platform that the cloud platform is sent refers to The information of the corresponding WAP of line.
The cloud platform 200 refers to the Wi-Fi fingerprints of the WAP 400 received from terminal 100 with pre-stored Wi-Fi Line is compared.The WAP 400 that the Wi-Fi fingerprints being pre-stored in the cloud platform 200 send for wireless controller 300 Wi-Fi fingerprints.Specially:Wireless controller 300 is set up with cloud platform 200 by network and is connected;In the success of WAP 400 It is registered to after wireless controller 300, discharges SSID, the wireless controller 300 is used for the multiple differences for managing successful registration WAP 400, and record the Wi-Fi fingerprints of multiple different radio access points 400.Each WAP 400 Wi-Fi fingerprints include MAC Address, the BSSID of WAP 400, channel, the letter of WAP 400 Number power, the geographical position of WAP 400, the title of WAP 400, one-level branch title, frequency range, wireless access Service set of point 400 etc., the Wi-Fi fingerprints can be used for each WAP 400 of unique mark.The wireless controller 400 also safeguard to the Wi-Fi finger print informations of multiple different radio access points 400 of storage in real time, such as to multiple different nothings The Wi-Fi fingerprints of line access point 400 such as are added, deleted, updating at the operation, and timing or triggering are updated multiple different radios The Wi-Fi fingerprints of access point 400 send and stored to cloud platform 200.
Therefore, the cloud platform 200 reports the terminal received Wi-Fi fingerprints with pre-stored Wi-Fi fingerprints successively It is compared, and the information of WAP 400 corresponding with the Wi-Fi fingerprints of pre-stored Wi-Fi fingerprint matchings is sent To terminal 100, such as cloud platform 200 sends the title of WAP 400 to terminal 100.The Wi-Fi fingerprints that cloud platform is sent The number of corresponding WAP is less than or equal to of the corresponding WAP for the Wi-Fi fingerprint matchings that terminal is sent Number.Here if the rogue AP pretended to be, although WIFI titles are identical, but the key message such as BSSID, channel is different, cloud platform Illegal WIFI can be filtered out.Even if success can not be filtered, cloud platform can also will include legal WIFI fingerprints and the WIFI Fingerprint is pushed to terminal, and legal AP is selected by terminal user.
Step S250, the information of the WAP sent according to cloud platform, the WAP of accessing user's selection.
It is such as many when showing the information of multiple multiple WAPs 400 sent by cloud platform 200 in the terminal 100 Whether the title of individual WAP 400, user can be that equipment is supplied by the OUI for recognizing the BSSID that true AP is disposed in site The selection such as business is answered to need the legal WAP 400 accessed, the terminal 100 will respond choosing of the user to WAP 400 Select operation, the WAP 400 of accessing user's selection.
Fig. 4 is refer to, is the schematic flow sheet of the method for another Wi-Fi secure connections provided in an embodiment of the present invention, The method of the Wi-Fi secure connections is applied to cloud platform 200, and the method for the Wi-Fi secure connections includes:
Step S310, the WAP Wi-Fi for receiving and storing all successful registrations of wireless controller transmission refers to Line.
The wireless controller 300 is set up with cloud platform 200 by network and is connected, and is successfully registered in WAP 400 After wireless controller 300, SSID is discharged, the wireless controller 300 is used to managing the multiple different wireless of successful registration Access point 400, and record the Wi-Fi fingerprints of multiple different radio access points 400.The Wi-Fi of each WAP 400 refers to Line including the MAC Address of WAP 400, the BSSID of WAP 400, channel, signal power, The geographical position of WAP 400, the title of WAP 400, one-level branch title, frequency range, WAP 400 Service set etc., the Wi-Fi fingerprints can be used for each WAP 400 of unique mark.The wireless controller 400 is also real When the Wi-Fi finger print informations of multiple different radio access points 400 of storage are safeguarded, such as to multiple different radio access points 400 Wi-Fi fingerprints such as are added, deleted, updating at the operation, and timing or triggering are updated multiple different radio access points 400 Wi-Fi fingerprints send and stored to cloud platform 200.
Step S320, the Wi-Fi fingerprints that receiving terminal is sent, the Wi-Fi fingerprints obtain current wireless access by terminal The wireless messages of point are to generate the Wi-Fi fingerprints of the current wireless access point.
When terminal 100 enters the radiation scope of the WAP 400 of a site or regional deployment, the terminal 100 The Wi-Fi module that can be set by itself receives at least one (most of situation deployment more than one) WAP 400 and sent out The wireless messages gone out, the wireless messages include MAC Address, the Basic Service Set mark of WAP 400 of WAP 400 Know in symbol, channel, signal power, the geographical position of WAP 400, the title of WAP 400, one-level branch title At least one.The terminal 100 generates the Wi-Fi of WAP 400 according to the wireless messages of whole WAPs of reception Fingerprint.
The terminal 100 sends the Wi-Fi fingerprints of the WAP 400 of generation to cloud platform 200.
Step S330, the Wi-Fi fingerprints of reception are compared with pre-stored Wi-Fi fingerprints, by with pre-stored Wi- The information of the corresponding WAP of Wi-Fi fingerprints of Fi fingerprint matchings is sent to terminal, in order to which terminal response user is to nothing The selection operation of line access point, the WAP of accessing user's selection.
The Wi-Fi fingerprints received are compared by the cloud platform 200 successively with pre-stored Wi-Fi fingerprints, and will be with The information of the corresponding WAP 400 of Wi-Fi fingerprints of pre-stored Wi-Fi fingerprint matchings is sent to terminal 100, such as by cloud Platform 200 sends the title of WAP 400 to terminal 100.
The information of multiple multiple WAPs 400 sent by cloud platform 200 will be shown in such as terminal 100, it is such as many Whether the title of individual WAP 400, user can be that equipment is supplied by the OUI for recognizing the BSSID that true AP is disposed in site The selection such as business is answered to need the legal WAP 400 accessed, the terminal 100 will respond choosing of the user to WAP 400 Select operation, the WAP 400 of accessing user's selection.
Fig. 5 is refer to, is that a kind of functional module of the device 110 of Wi-Fi secure connections provided in an embodiment of the present invention is shown It is intended to, the device 110 of the Wi-Fi secure connections is applied to terminal 100, and the device 110 of the Wi-Fi secure connections includes obtaining mould Block 111, set up module 112, sending module 113, the first receiving module 114 and AM access module 115.
Wherein, acquisition module 111 is used for the wireless messages for obtaining current wireless access point, generates the current wireless access The Wi-Fi fingerprints of point.
In embodiments of the present invention, step S210 can be performed by acquisition module 111.
Set up module 112 be used for set up and the cloud platform secure connection.
In embodiments of the present invention, step S220 can be performed by setting up module 112.
Sending module 113 is used to send the Wi-Fi fingerprints to cloud platform.
In embodiments of the present invention, step S230 can be performed by sending module 113.
The Wi-Fi with being pre-stored in the cloud platform that first receiving module 114 is used to receive the cloud platform transmission refers to The information of the corresponding WAP of Wi-Fi fingerprints of line matching.
In embodiments of the present invention, step S240 can be performed by the first receiving module 114.
AM access module 115 is used for the information of the WAP sent according to cloud platform, and the wireless of accessing user's selection connects Access point.
In embodiments of the present invention, step S250 can be performed by AM access module 115.
Fig. 6 is refer to, is the functional module of the device 210 of another Wi-Fi secure connections provided in an embodiment of the present invention Schematic diagram, the device 210 of the Wi-Fi secure connections is applied to cloud platform 200, and the device 210 of the Wi-Fi secure connections includes depositing Store up module 211, the second receiving module 212 and comparison module 213.
Wherein, memory module 211 is used for wirelessly connecing for all successful registrations for receiving and storing wireless controller transmission The Wi-Fi fingerprints of access point.
In embodiments of the present invention, step S310 can be performed by memory module 211.
Second receiving module 212 is used for the Wi-Fi fingerprints that receiving terminal is sent, and the Wi-Fi fingerprints are obtained by terminal works as The wireless messages of preceding WAP are to generate the Wi-Fi fingerprints of the current wireless access point.
In embodiments of the present invention, step S320 can be performed by the second receiving module 212.
Comparison module 213 is used to the Wi-Fi fingerprints of reception being compared with pre-stored Wi-Fi fingerprints, will be with prestoring The information of the corresponding WAP of Wi-Fi fingerprints of the Wi-Fi fingerprint matchings of storage is sent to terminal, in order to which terminal response is used Family is to the selection operation of WAP, the WAP of accessing user's selection.
In embodiments of the present invention, step S330 can be performed by comparison module 213.
Because the method part in Wi-Fi secure connections has been described in, it will not be repeated here.
In summary, the embodiment of the present invention provides a kind of method and device of Wi-Fi secure connections, and the Wi-Fi connects safely The method connect includes the wireless messages that terminal obtains current wireless access point, generates the Wi-Fi fingerprints of current wireless access point, eventually End sends Wi-Fi fingerprints to cloud platform, and the Wi-Fi fingerprints of reception are compared by cloud platform with pre-stored Wi-Fi fingerprints, And send WAP information corresponding with the Wi-Fi fingerprints of pre-stored Wi-Fi fingerprint matchings to terminal, and then terminal Respond selection operation of the user to current wireless access point, the current wireless access point of accessing user's selection.This programme is in equipment Realize on the basis of original function, while realizing the function of Wi-Fi secure connections, do not increase extra equipment, saved into This.
In several embodiments provided herein, it should be understood that disclosed apparatus and method, it can also pass through Other modes are realized.Device embodiment described above is only schematical, for example, flow chart and block diagram in accompanying drawing Show according to the device of multiple embodiments of the present invention, the architectural framework in the cards of method and computer program product, Function and operation.At this point, each square frame in flow chart or block diagram can represent the one of a module, program segment or code Part a, part for the module, program segment or code is used to realize holding for defined logic function comprising one or more Row instruction.It should also be noted that in some implementations as replacement, the function of being marked in square frame can also with different from The order marked in accompanying drawing occurs.For example, two continuous square frames can essentially be performed substantially in parallel, they are sometimes It can perform in the opposite order, this is depending on involved function.It is also noted that every in block diagram and/or flow chart The combination of individual square frame and block diagram and/or the square frame in flow chart, can use the special base for performing defined function or action Realize, or can be realized with the combination of specialized hardware and computer instruction in the system of hardware.
In addition, each functional module in each embodiment of the invention can integrate to form an independent portion Point or modules individualism, can also two or more modules be integrated to form an independent part.
If the function is realized using in the form of software function module and is used as independent production marketing or in use, can be with It is stored in a computer read/write memory medium.Understood based on such, technical scheme is substantially in other words The part contributed to prior art or the part of the technical scheme can be embodied in the form of software product, the meter Calculation machine software product is stored in a storage medium, including some instructions are to cause a computer equipment (can be individual People's computer, server, or network equipment etc.) perform all or part of step of each of the invention embodiment methods described. It should be noted that herein, such as first and second or the like relational terms are used merely to an entity or behaviour Make with another entity or operation make a distinction, and not necessarily require or imply these entities or operate between exist it is any this Plant actual relation or order.Moreover, term " comprising ", "comprising" or its any other variant are intended to nonexcludability Include so that process, method, article or equipment including a series of key elements not only include those key elements, but also Including other key elements being not expressly set out, or also include for this process, method, article or equipment intrinsic want Element.In the absence of more restrictions, the key element limited by sentence "including a ...", it is not excluded that wanted including described Also there is other identical element in process, method, article or the equipment of element.
The preferred embodiments of the present invention are the foregoing is only, are not intended to limit the invention, for the skill of this area For art personnel, the present invention can have various modifications and variations.Within the spirit and principles of the invention, that is made any repaiies Change, equivalent substitution, improvement etc., should be included in the scope of the protection.It should be noted that:Similar label and letter exists Similar terms is represented in following accompanying drawing, therefore, once being defined in a certain Xiang Yi accompanying drawing, is then not required in subsequent accompanying drawing It is further defined and explained.
The foregoing is only a specific embodiment of the invention, but protection scope of the present invention is not limited thereto, any Those familiar with the art the invention discloses technical scope in, change or replacement can be readily occurred in, should all be contained Cover within protection scope of the present invention.Therefore, protection scope of the present invention described should be defined by scope of the claims.

Claims (12)

1. a kind of method of Wi-Fi secure connections, it is characterised in that methods described includes:
Terminal obtains the wireless messages of current wireless access point, generates the Wi-Fi fingerprints of the current wireless access point;
Terminal sends the Wi-Fi fingerprints to cloud platform;
The Wi-Fi fingerprints are compared by cloud platform with pre-stored Wi-Fi fingerprints, will be referred to the pre-stored Wi-Fi The information of the corresponding WAP of Wi-Fi fingerprints of line matching is sent to the terminal;
The information for the WAP that terminal is sent according to cloud platform, the WAP of accessing user's selection.
2. the method for Wi-Fi secure connections as claimed in claim 1, it is characterised in that the terminal is by the Wi-Fi fingerprints Sending also includes step to before the step of the cloud platform:
Terminal sets up the secure connection with the cloud platform.
3. the method for Wi-Fi secure connections as claimed in claim 1, it is characterised in that the pre-stored Wi-Fi fingerprints For:
Cloud platform receives and stored the Wi-Fi fingerprints of the WAP of all successful registrations of wireless controller transmission.
4. the method for the Wi-Fi secure connections as described in any one of claim 1-3 claim, it is characterised in that the Wi- Fi fingerprints include wireless access point names, channel, signal power, the geographical position of current wireless access point, current wireless access The MAC Address of point, at least one in the BSSID of current wireless access point.
5. a kind of method of Wi-Fi secure connections, it is characterised in that applied to terminal, methods described includes:
The wireless messages of current wireless access point are obtained, the Wi-Fi fingerprints of the current wireless access point are generated;
The Wi-Fi fingerprints are sent to cloud platform;
The Wi-Fi fingerprints for receiving the Wi-Fi fingerprint matchings with being pre-stored in the cloud platform that the cloud platform is sent are corresponding The information of WAP;
The information of the WAP sent according to cloud platform, the WAP of accessing user's selection.
6. the method for Wi-Fi secure connections as claimed in claim 5, it is characterised in that described to send the Wi-Fi fingerprints Also include step to before the step of cloud platform:
Set up the secure connection with the cloud platform.
7. a kind of method of Wi-Fi secure connections, it is characterised in that applied to cloud platform, methods described includes:
Receiving terminal send Wi-Fi fingerprints, the Wi-Fi fingerprints by terminal obtain current wireless access point wireless messages with Generate the Wi-Fi fingerprints of the current wireless access point;
The Wi-Fi fingerprints of reception are compared with pre-stored Wi-Fi fingerprints, by with pre-stored Wi-Fi fingerprint matchings The information of the corresponding WAP of Wi-Fi fingerprints is sent to terminal, the choosing in order to terminal response user to WAP Select operation, the WAP of accessing user's selection.
8. the method for Wi-Fi secure connections as claimed in claim 7, it is characterised in that methods described also includes:
Receive and store the Wi-Fi fingerprints of the WAP of all successful registrations of wireless controller transmission.
9. a kind of device of Wi-Fi secure connections, it is characterised in that applied to terminal, described device includes:
Acquisition module, the wireless messages for obtaining current wireless access point, the Wi-Fi for generating the current wireless access point refers to Line;
Sending module, for the Wi-Fi fingerprints to be sent to cloud platform;
First receiving module, for receiving the Wi-Fi fingerprint matchings with being pre-stored in the cloud platform that the cloud platform is sent The corresponding WAP of Wi-Fi fingerprints information;
AM access module, for the information of the WAP sent according to cloud platform, the WAP of accessing user's selection.
10. the device of Wi-Fi secure connections as claimed in claim 9, it is characterised in that described device also includes:
Module is set up, for setting up the secure connection with the cloud platform.
11. a kind of device of Wi-Fi secure connections, it is characterised in that applied to cloud platform, described device includes:
Second receiving module, the Wi-Fi fingerprints sent for receiving terminal, the Wi-Fi fingerprints obtain current wireless by terminal The wireless messages of access point are to generate the Wi-Fi fingerprints of the current wireless access point;
Comparison module, for the Wi-Fi fingerprints of reception to be compared with pre-stored Wi-Fi fingerprints, by with pre-stored Wi- The information of the corresponding WAP of Wi-Fi fingerprints of Fi fingerprint matchings is sent to terminal, in order to which terminal response user is to nothing The selection operation of line access point, the WAP of accessing user's selection.
12. the device of Wi-Fi secure connections as claimed in claim 11, it is characterised in that described device also includes:
Memory module, the Wi-Fi of the WAP of all successful registrations for receiving and storing wireless controller transmission Fingerprint.
CN201710507517.3A 2017-06-28 2017-06-28 The method and device of Wi Fi secure connections Pending CN107294977A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710507517.3A CN107294977A (en) 2017-06-28 2017-06-28 The method and device of Wi Fi secure connections

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710507517.3A CN107294977A (en) 2017-06-28 2017-06-28 The method and device of Wi Fi secure connections

Publications (1)

Publication Number Publication Date
CN107294977A true CN107294977A (en) 2017-10-24

Family

ID=60098723

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710507517.3A Pending CN107294977A (en) 2017-06-28 2017-06-28 The method and device of Wi Fi secure connections

Country Status (1)

Country Link
CN (1) CN107294977A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108093493A (en) * 2017-12-29 2018-05-29 上海爱优威软件开发有限公司 A kind of wireless network connecting method, Radio Network System and terminal
CN109379741A (en) * 2018-09-17 2019-02-22 北京泰迪熊移动科技有限公司 A kind of method for network access and system
WO2023011289A1 (en) * 2021-08-06 2023-02-09 华为技术有限公司 Wi-fi connection method and apparatus based on location information

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1588878A (en) * 2004-08-05 2005-03-02 Ut斯达康通讯有限公司 Method for detecting illegally cut-in point in radio cocal network
US7453839B2 (en) * 2001-12-21 2008-11-18 Broadcom Corporation Wireless local area network channel resource management
CN102843682A (en) * 2012-08-20 2012-12-26 中国联合网络通信集团有限公司 Access point authorizing method, device and system
CN103891332A (en) * 2011-08-12 2014-06-25 F-赛酷公司 Detection of suspect wireless access points
CN105163368A (en) * 2015-07-31 2015-12-16 腾讯科技(深圳)有限公司 Wireless network access method and device
CN105357742A (en) * 2015-11-12 2016-02-24 小米科技有限责任公司 Accessing method, device and system for wireless local area network
CN105873174A (en) * 2015-08-05 2016-08-17 上海连尚网络科技有限公司 Method and device for providing access point information of wireless access points
CN106330828A (en) * 2015-06-25 2017-01-11 联芯科技有限公司 Method for network secure access, terminal device and authentication server
CN106559790A (en) * 2015-09-25 2017-04-05 中国电信股份有限公司 The detection method of pseudo- WAP, equipment and system

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7453839B2 (en) * 2001-12-21 2008-11-18 Broadcom Corporation Wireless local area network channel resource management
CN1588878A (en) * 2004-08-05 2005-03-02 Ut斯达康通讯有限公司 Method for detecting illegally cut-in point in radio cocal network
CN103891332A (en) * 2011-08-12 2014-06-25 F-赛酷公司 Detection of suspect wireless access points
CN102843682A (en) * 2012-08-20 2012-12-26 中国联合网络通信集团有限公司 Access point authorizing method, device and system
CN106330828A (en) * 2015-06-25 2017-01-11 联芯科技有限公司 Method for network secure access, terminal device and authentication server
CN105163368A (en) * 2015-07-31 2015-12-16 腾讯科技(深圳)有限公司 Wireless network access method and device
CN105873174A (en) * 2015-08-05 2016-08-17 上海连尚网络科技有限公司 Method and device for providing access point information of wireless access points
CN106559790A (en) * 2015-09-25 2017-04-05 中国电信股份有限公司 The detection method of pseudo- WAP, equipment and system
CN105357742A (en) * 2015-11-12 2016-02-24 小米科技有限责任公司 Accessing method, device and system for wireless local area network

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108093493A (en) * 2017-12-29 2018-05-29 上海爱优威软件开发有限公司 A kind of wireless network connecting method, Radio Network System and terminal
CN109379741A (en) * 2018-09-17 2019-02-22 北京泰迪熊移动科技有限公司 A kind of method for network access and system
CN109379741B (en) * 2018-09-17 2022-03-01 北京泰迪熊移动科技有限公司 Network access method and system
WO2023011289A1 (en) * 2021-08-06 2023-02-09 华为技术有限公司 Wi-fi connection method and apparatus based on location information

Similar Documents

Publication Publication Date Title
CN104144420B (en) A kind of radio switch-in method and relevant device, system
CN106211167B (en) A kind of terminal, pseudo-base station recognition methods and system
CN106792707A (en) The detection method and device of counterfeit WAP
CN104639907A (en) Intelligent security and protection method and system based on mobile terminal
CN106162804A (en) For providing the method and apparatus of the access information of wireless access focus
CN107294977A (en) The method and device of Wi Fi secure connections
CN106920307A (en) Gate inhibition's open method, device and mobile terminal
CN103856957A (en) Method and device for detecting counterfeit AP in wireless local area network
CN101119589A (en) Network login control method and system of multi-card mobile terminal
EP3675541A1 (en) Authentication method and device
CN108510612A (en) Parking lot night watching method, system and computer readable storage medium
CN103415004A (en) Method and device for detecting junk short message
CN106658568A (en) Method and device for providing information of available wireless access point
CN103581441A (en) Mobile terminal tracking anti-theft system and method
CN105207881A (en) Message sending method and equipment
CN105677782A (en) Case information search and statistics method and system
CN106713522A (en) Wireless fidelity (Wi-Fi) connection method and mobile terminal
CN103686651A (en) Emergency call based authentication method, device and system
CN107769978A (en) Management method, system, router and the server that a kind of terminal device networks
CN106657154A (en) Wireless access method and system, WiFi platform and operator number taking platform
CN106447242A (en) Power consumption service acceptance time limit management method and device
CN107306388A (en) A kind of APN APN collocation method and device
CN109379741A (en) A kind of method for network access and system
CN107071778A (en) Pseudo-base station recognition methods and data analysing method
CN104812019A (en) Wireless network access method, wireless access equipment and wireless control equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20171024

RJ01 Rejection of invention patent application after publication