CN107708182A - A kind of gateway authentication system for business WIFI - Google Patents

A kind of gateway authentication system for business WIFI Download PDF

Info

Publication number
CN107708182A
CN107708182A CN201610643300.0A CN201610643300A CN107708182A CN 107708182 A CN107708182 A CN 107708182A CN 201610643300 A CN201610643300 A CN 201610643300A CN 107708182 A CN107708182 A CN 107708182A
Authority
CN
China
Prior art keywords
client
gateway
certificate server
wireless network
information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201610643300.0A
Other languages
Chinese (zh)
Inventor
张剑锋
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Guanzhuo Technology Co Ltd
Original Assignee
Shenzhen Guanzhuo Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Guanzhuo Technology Co Ltd filed Critical Shenzhen Guanzhuo Technology Co Ltd
Priority to CN201610643300.0A priority Critical patent/CN107708182A/en
Publication of CN107708182A publication Critical patent/CN107708182A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/16Discovering, processing access restriction or access information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/02Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
    • H04W84/10Small scale networks; Flat hierarchical networks
    • H04W84/12WLAN [Wireless Local Area Networks]

Abstract

The present invention discloses a kind of gateway authentication system for business WIFI, it is characterised in that the system is made up of three client, gateway and certificate server parts.Gateway authentication system of the present invention, during client request accesses wireless network, gateway and certificate server all employs BASE64 and client-side information is encrypted md5 encryption mode ensures the security of client-side information;In gateway heartbeat mechanism, interacting for data is carried out with certificate server using JSON form, improves the execution efficiency of authentication business.

Description

A kind of gateway authentication system for business WIFI
Technical field
The system is related to communication technical field, relate particularly to a kind of communication means for business WIFI and Verification System.
Background technology
With the popularization of mobile terminal device and the development of Mobile solution, WIFI hot spot in hotel, food and drink, stop Not busy three big service industries and larger application prospect in fields such as supermarket, transport hubs be present.Therefore it is commercial WIFI value is also gradually showing, and commercial WIFI can provide network intelligent management and marketing program for trade company Etc. a series of functions, but commercial WIFI safety issues increasingly highlight.
The content of the invention
To solve the not high technological deficiency of commercial WIFI securities at present, the present invention provides one kind and is used for business WIFI gateway authentication system.
The technical scheme that the present invention solves the technical problem is to design a kind of gateway for business WIFI to recognize Card system, the system are made up of three client, gateway and certificate server parts, and its operation steps is as follows :
(1) client sends the request of access wireless network to gateway;
(2) access request of client is redirected to the wireless network login page of certificate server by gateway , and carry the relevant information of client;
(3) client asks the login page of wireless network to certificate server;
(4) login page of the certificate server to client push wireless network;
(5) client fills in user account and password on login page, and is submitted to certificate server;
(6) relevant information that certificate server verification client is submitted, after success to be verified, by client Request is redirected to gateway, and carries the relevant information and token of client;
(7) client sends the request of access wireless network to gateway again;
(8) gateway customer in response end is asked, and verifies the token information of client, after success to be verified, Change firewall policy, it is allowed to which client accesses wireless network.
Compared with prior art, the beneficial effects of the present invention are:
(1) during client request accesses wireless network, gateway and certificate server all employ Client-side information is encrypted for BASE64 and md5 encryption mode, ensures client-side information Security;
(2) in gateway heartbeat mechanism, interacting for data is carried out with certificate server using JSON form , improve the execution efficiency of authentication business.
Embodiment
A kind of gateway authentication system for business WIFI, it is characterised in that the system is by client, gateway Formed with three parts of certificate server, its operation steps is as follows:
(1) client sends the request of access wireless network to gateway;
(2) access request of client is redirected to the wireless network login page of certificate server by gateway, And carry the relevant information of client;
(3) client asks the login page of wireless network to certificate server;
(4) login page of the certificate server to client push wireless network;
(5) client fills in user account and password on login page, and is submitted to certificate server;
(6) relevant information that certificate server verification client is submitted, please by client after success to be verified Ask and be redirected to gateway, and carry the relevant information and token of client;
(7) client sends the request of access wireless network to gateway again;
(8) gateway customer in response end is asked, and verifies the token information of client, after success to be verified, is repaiied Change firewall policy, it is allowed to which client accesses wireless network.
The gateway sets the client line duration upper limit, and timing detects the authentication information of online client, If client authentication information is expired, the client is kicked offline, return to client unverified State.
The gateway timing submits online client information and system load information to certificate server, and in fact Every renewal configuration order that Shi Zhihang certificate servers return.
The present invention is used for business WIFI gateway authentication system, can effectively ensure that commercial WIFI's uses ring Border safety, has larger market prospects.
The announcement and teaching of book, those skilled in the art in the invention can also be to above-mentioned according to the above description Embodiment is changed and changed.Therefore, the invention is not limited in disclosed and described above specific real Mode is applied, should also be as falling into the scope of the claims of the present invention to some modifications and changes of the present invention It is interior.In addition, although used some specific terms in this specification, but these terms are intended merely to conveniently Illustrate, any restrictions are not formed to the present invention.
The present invention does not address part and is applied to prior art.

Claims (3)

1. a kind of gateway authentication system for business WIFI, it is characterised in that the system is by client, net Close and three parts of certificate server form, its operation steps is as follows:
(1) client sends the request of access wireless network to gateway;
(2) access request of client is redirected to the wireless network login page of certificate server by gateway, And carry the relevant information of client;
(3) client asks the login page of wireless network to certificate server;
(4) login page of the certificate server to client push wireless network;
(5) client fills in user account and password on login page, and is submitted to certificate server;
(6) relevant information that certificate server verification client is submitted, please by client after success to be verified Ask and be redirected to gateway, and carry the relevant information and token of client;
(7) client sends the request of access wireless network to gateway again;
(8) gateway customer in response end is asked, and verifies the token information of client, after success to be verified, is repaiied Change firewall policy, it is allowed to which client accesses wireless network.
2. the gateway authentication system according to claim 1 for business WIFI, it is characterised in that institute The gateway setting client line duration upper limit is stated, and timing detects the authentication information of online client, if objective Family end authentication information is expired, then kicks the client offline, client is returned to unverified state.
3. the gateway authentication system according to claim 1 for business WIFI, it is characterised in that institute State gateway timing and submit online client information and system load information to certificate server, and perform in real time Every renewal configuration order that certificate server returns.
CN201610643300.0A 2016-08-09 2016-08-09 A kind of gateway authentication system for business WIFI Pending CN107708182A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610643300.0A CN107708182A (en) 2016-08-09 2016-08-09 A kind of gateway authentication system for business WIFI

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610643300.0A CN107708182A (en) 2016-08-09 2016-08-09 A kind of gateway authentication system for business WIFI

Publications (1)

Publication Number Publication Date
CN107708182A true CN107708182A (en) 2018-02-16

Family

ID=61168655

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610643300.0A Pending CN107708182A (en) 2016-08-09 2016-08-09 A kind of gateway authentication system for business WIFI

Country Status (1)

Country Link
CN (1) CN107708182A (en)

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101442793A (en) * 2008-12-30 2009-05-27 杭州华三通信技术有限公司 Access method, apparatus and system for wireless network
US20120144189A1 (en) * 2009-08-11 2012-06-07 Zhong Zhen Wlan authentication method, wlan authentication server, and terminal
CN104080085A (en) * 2014-07-15 2014-10-01 中国电建集团华东勘测设计研究院有限公司 Double authentication method, device and system for wireless network access
CN104185181A (en) * 2014-08-20 2014-12-03 成都千牛信息技术有限公司 WiFi user access control method based on iptables
CN105119939A (en) * 2015-09-14 2015-12-02 北京奇虎科技有限公司 Access method and device, providing method, device and system of wireless network

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101442793A (en) * 2008-12-30 2009-05-27 杭州华三通信技术有限公司 Access method, apparatus and system for wireless network
US20120144189A1 (en) * 2009-08-11 2012-06-07 Zhong Zhen Wlan authentication method, wlan authentication server, and terminal
CN104080085A (en) * 2014-07-15 2014-10-01 中国电建集团华东勘测设计研究院有限公司 Double authentication method, device and system for wireless network access
CN104185181A (en) * 2014-08-20 2014-12-03 成都千牛信息技术有限公司 WiFi user access control method based on iptables
CN105119939A (en) * 2015-09-14 2015-12-02 北京奇虎科技有限公司 Access method and device, providing method, device and system of wireless network

Similar Documents

Publication Publication Date Title
TWI659313B (en) Automatic login method and device between multiple websites
JP7308756B2 (en) Blockchain compatible service provider system
US8925053B1 (en) Internet-accessible service for dynamic authentication and continuous assertion of trust level in identities
CN106096343B (en) Message access control method and equipment
RU2648594C2 (en) Systems, apparatus and methods for advanced authentication
US10778668B2 (en) HTTP session validation module
US9473501B2 (en) System and method for associating a universal user identification and a domain specific user identification
US8881306B2 (en) Architecture system for in-store reading
US11070556B2 (en) Context-based possession-less access of secure information
CN103501344B (en) The method and system of single-sign-on are realized in many applications
CN104205923B (en) For correcting the method and apparatus with the associated error event of identity supply
CN106716960A (en) Method and system for authenticating a user
CN104735078B (en) A kind of Portal access authentication system and method
WO2017177691A1 (en) Portal authentication method and system
WO2014008764A1 (en) Information processing system and method that utilize social network to implement network transaction
US20170345009A1 (en) Systems and Methods for Use in Facilitating Network Transactions
CN108092988A (en) Unaware Certificate Authority network system and method based on dynamic creation temporary password
CN105306210A (en) Method, device and system for realizing authorization through application
US9210155B2 (en) System and method of extending a host website
CN106452774A (en) Method and device for controlling access authority based on single-point logging-on protocol
CN105991610B (en) Log in the method and device of application server
US10185985B1 (en) Techniques for item procurement
CN105119916B (en) A kind of authentication method and system based on http
CN107708182A (en) A kind of gateway authentication system for business WIFI
CN109361639A (en) Dynamic shares HTTPS request method for authenticating, storage medium and mobile terminal

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WD01 Invention patent application deemed withdrawn after publication
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20180216