CN108881113B - Network connection control method and device - Google Patents

Network connection control method and device Download PDF

Info

Publication number
CN108881113B
CN108881113B CN201710326898.5A CN201710326898A CN108881113B CN 108881113 B CN108881113 B CN 108881113B CN 201710326898 A CN201710326898 A CN 201710326898A CN 108881113 B CN108881113 B CN 108881113B
Authority
CN
China
Prior art keywords
network
application program
connectable
identifier
configuration information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201710326898.5A
Other languages
Chinese (zh)
Other versions
CN108881113A (en
Inventor
石国潮
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to CN202110613830.1A priority Critical patent/CN113473473A/en
Priority to CN201710326898.5A priority patent/CN108881113B/en
Publication of CN108881113A publication Critical patent/CN108881113A/en
Application granted granted Critical
Publication of CN108881113B publication Critical patent/CN108881113B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/30Security of mobile devices; Security of mobile applications
    • H04W12/35Protecting application or service provisioning, e.g. securing SIM application provisioning
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/30Security of mobile devices; Security of mobile applications
    • H04W12/37Managing security policies for mobile devices or for controlling mobile applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/16Discovering, processing access restriction or access information

Abstract

The application provides a network connection control method and device. The method comprises the following steps: when the application program needs to interact with the network side, acquiring the identifier of the connectable network, determining whether the application program is allowed to be connected with the connectable network according to the identifier of the connectable network, when determining that the application program is not allowed to be connected with the connectable network, the application program is prohibited from interacting with the network side through the connectable network, so that whether the application program is allowed to be connected with the connectable network or not can be determined according to the identifier of the connectable network, when the application program is not allowed to establish connection with the network side through the connectable network, the application program is prohibited from interacting with the network side through the connectable network, when the connectable network is an untrusted network, the application program can not establish connection with the network side through the untrusted network, therefore, the information of the user is prevented from being stolen by an untrusted network, and the information safety of the user is improved.

Description

Network connection control method and device
Technical Field
The present application relates to communications technologies, and in particular, to a network connection control method and apparatus.
Background
With the development of communication technology and electronic technology, the application scenarios of terminal devices are becoming more and more extensive. For example, when the user is at home, the terminal device may interact with the network side through a Wireless-Fidelity (WiFi) network at home; when the user goes out, the terminal equipment can interact with the network side through the WiFi network in the public place. With the increasing user information related to the application program in the terminal device, how to protect the user information in the running process after the application program interacts with the network side becomes more and more important.
The user information in a certain application program in the terminal equipment can be protected by setting whether the application program in the terminal equipment allows interaction with the network side or not: if the application program is allowed to interact with the network side, the network side can read the user information in the application program when the application program runs on the terminal equipment; if the application program is not allowed to interact with the network side, when the application program runs on the terminal equipment, the network side cannot read the user information in the application program.
However, in the foregoing implementation, if a certain application is set to allow interaction with the network side, after the application interacts with the network side through the network in an untrusted network, user information in the application may be illegally acquired, so that information security of the user is threatened.
Disclosure of Invention
The application provides a network connection control method and device, which are used for improving information security of a user.
In a first aspect, the present application provides a network connection control method, including: when the application program is determined to need to interact with the network side, the identifier of the connectable network is obtained, whether the application program is allowed to be connected with the connectable network is determined according to the identifier of the connectable network, and when the application program is determined not to be allowed to be connected with the connectable network, the application program is prohibited from interacting with the network side through the connectable network. When the connectable network is an untrusted network, the application program can not be connected with the network side through the untrusted network, so that the information of the user is prevented from being stolen by the untrusted network, and the information safety of the user is improved.
In one possible design of the first aspect, determining whether the application is allowed to connect to the connectable network based on the identification of the connectable network includes: determining configuration information of an application program in configuration information of a network group to which a connectable network belongs according to an identifier of the connectable network and an identifier of the application program, wherein the configuration information of the application program comprises a networking policy of the application program; when the networking policy is to prohibit the application program from interacting with the network side, determining that the application program is not allowed to be connected with the connectable network; when the networking policy is to allow the application to interact with the network side, it is determined that the application is allowed to connect with the connectable network. At least two network packets are preset on the terminal device. These network packets are provided with configuration information. The configuration information of each network packet includes configuration information of at least one application. The network packet includes an identification of at least one connectable network. The batch management of whether the application program can be interacted with the network side through some connectable networks is realized, and the networking efficiency is improved.
In one possible design of the first aspect, the method further includes: when it is determined that the application program is allowed to connect to the connectable network, the application program is allowed to interact with the network side through the connectable network.
In a possible design of the first aspect, the configuration information of the application further includes an authorization right of the application, where the authorization right includes permission of the application to operate the terminal device, and the method further includes: when the application program needs to perform target operation, determining whether the application program is allowed to perform the target operation according to the authorization authority in the configuration information of the application program; when determining that the application program allows the target operation, allowing the application program to perform the target operation; and when the application program is determined to be prohibited from performing the target operation, prohibiting the application program from performing the target operation. The method and the device realize the batch control of the authorization authority of the application program in the running process under some connectable networks, realize the more precise control of the running process of the application program, and improve the running stability and reliability of the terminal equipment.
In one possible design of the first aspect, before determining the configuration information of the application program in the configuration information of the network packet to which the connectable network belongs according to the identifier of the connectable network and the identifier of the application program, the method further includes: determining whether the connectable network belongs to an existing network group according to the identifier of the connectable network; when the identifier of the connectable network is determined not to belong to the existing network group, prompting a user to group the connectable network, and grouping the connectable network according to a first instruction input by the user; when the connectable network identifier is determined to belong to the existing network packet, determining to perform an operation of determining the configuration information of the application program in the configuration information of the network packet to which the connectable network belongs, based on the connectable network identifier and the application program identifier.
In one possible design of the first aspect, grouping the connectable networks according to a first instruction input by a user includes: when the first instruction comprises the identifier of the existing network packet, determining the network packet to which the connectable network belongs as the network packet corresponding to the identifier of the existing network packet included in the first instruction; adding an identifier of a connectable network in a network packet corresponding to the identifier of the existing network packet included in the first instruction; when the first instruction does not include the identifier of the existing network packet, prompting a user to establish the network packet for the connectable network, receiving a second instruction input by the user, and distributing the configuration information included in the second instruction for the established network packet.
In the two implementation modes, the new connectable networks can be grouped according to the instructions of the user, and the user experience is improved.
In one possible design of the first aspect, the method further includes: when it is determined that a user needs to switch network packets of a network packet, acquiring a third instruction input by the user, wherein the third instruction comprises an identifier of the network to be switched and an identifier of the switched network packet; and setting the network packet to which the network to be switched belongs as the switched network packet according to the third instruction. The network grouping adjustment method and the network grouping adjustment device realize the adjustment of certain network-connectable network groupings, and improve the usability and convenience of the terminal equipment in network connection.
In a second aspect, the present application provides a network connection control apparatus, comprising: the first acquisition module is used for acquiring an identifier of a connectable network when the application program is determined to need to interact with a network side; a first determining module, configured to determine whether the application is allowed to connect to the connectable network according to the identifier of the connectable network; and the connection forbidding module is used for forbidding the application program to interact with the network side through the connectable network when the application program is determined not to be allowed to be connected with the connectable network.
In a possible design of the second aspect, the first determining module specifically includes: the first determining submodule is used for determining the configuration information of the application program in the configuration information of the network grouping to which the connectable network belongs according to the identifier of the connectable network and the identifier of the application program, wherein the configuration information of the application program comprises the networking strategy of the application program; the second determining submodule is used for determining that the application program is not allowed to be connected with the connectable network when the networking strategy is that the application program is forbidden to interact with the network side; and the third determining submodule is used for determining that the application program is allowed to be connected with the connectable network when the networking strategy is to allow the application program to interact with the network side.
In a possible design of the second aspect, the configuration information of the application further includes authorization authority of the application, and the authorization authority includes permission of the application to operate the network connection control device. The device still includes: the second determining module is used for determining whether the application program is allowed to perform the target operation according to the authorization authority in the configuration information of the application program when the application program is determined to need to perform the target operation; the operation allowing module is used for allowing the application program to perform target operation when the fact that the application program allows the target operation is determined; and the operation prohibiting module is used for prohibiting the application program from performing the target operation when the fact that the application program prohibits the target operation is determined.
In one possible design of the second aspect, the apparatus further comprises: a third determining module, configured to determine whether the connectable network belongs to an existing network group according to the identifier of the connectable network; the prompting module is used for prompting a user to group the connectable network when the identifier of the connectable network is determined not to belong to the existing network group; the grouping module is used for grouping the connectable networks according to a first instruction input by a user; and the fourth determining module is used for determining to execute the operation of determining the configuration information of the application program in the configuration information of the network grouping to which the connectable network belongs according to the identifier of the connectable network and the identifier of the application program when the identifier of the connectable network is determined to belong to the existing network grouping.
In a possible design of the second aspect, the grouping module is specifically configured to: when the first instruction comprises the identifier of the existing network packet, determining the network packet to which the connectable network belongs as the network packet corresponding to the identifier of the existing network packet included in the first instruction; adding an identifier of a connectable network in a network packet corresponding to the identifier of the existing network packet included in the first instruction; when the first instruction does not include the identifier of the existing network packet, prompting a user to establish the network packet for the connectable network, receiving a second instruction input by the user, and distributing configuration information included in the second instruction for the established network packet.
In one possible design of the second aspect, the apparatus further comprises: the second acquisition module is used for acquiring a third instruction input by a user, wherein the third instruction comprises an identifier of a network to be switched and an identifier of a switched network group; and the switching module is used for setting the network packet to which the network to be switched belongs as the switched network packet according to the third instruction.
In a third aspect, the present application also provides a computer-readable storage medium, which may be non-volatile, containing computer-readable instructions, which when read and executed by a computer, implement the method indicated by any of the foregoing aspects or possible designs.
In a fourth aspect, the present application further provides a computer apparatus comprising a storage medium for storing computer-readable instructions and a processor for reading the computer-readable instructions and implementing a method as indicated in any of the preceding aspects or possible designs.
In a fourth aspect, the present application further provides a program product comprising computer readable instructions stored in a computer readable storage medium. The computer-readable instructions may be readable from a readable storage medium by at least one processor of a network connection control apparatus, the computer-readable instructions being executable by the at least one processor to implement a method as indicated by any of the foregoing aspects or possible designs.
Drawings
Fig. 1 is a schematic diagram of an application scenario of a network connection control method provided in the present application;
fig. 2 is a schematic flowchart of a first embodiment of a network connection control method provided in the present application;
fig. 3 is a schematic flowchart of a second embodiment of a network connection control method provided in the present application;
FIG. 4A is a schematic diagram of a user interface of the embodiment shown in FIG. 3;
FIG. 4B is a schematic view of another user interface in the embodiment shown in FIG. 3;
FIG. 4C is a schematic illustration of yet another user interface in the embodiment shown in FIG. 3;
fig. 5 is a schematic structural diagram of a first embodiment of a network connection control apparatus provided in the present application;
fig. 6 is a schematic structural diagram of a second embodiment of a network connection control apparatus provided in the present application;
fig. 7 is a schematic structural diagram of a third embodiment of a network connection control apparatus provided in the present application.
Detailed Description
The network connection control method provided by the application can be executed by the terminal equipment. The terminal device in the application can be a handheld device, a vehicle-mounted device, a wearable device, a computing device, various forms of User Equipment (UE), a Mobile Station (MS), a terminal (terminal), and the like. The network connection control method provided by the application can be applied to a scene that the terminal equipment is switched among a plurality of connectable networks to realize interaction with a network side. Fig. 1 is a schematic view of an application scenario of a network connection control method provided in the present application. As shown in fig. 1, when the terminal device 11 is at home, it can interact with the network side through the WiFi network 12 in the home lan. When the terminal device 11 moves into the library, it can interact with the network side through the network 13 formed by Wireless Access Points (APs) in the library. When the terminal device 11 moves to the mall, it can interact with the network side through the network 14 formed by the APs in the mall. If an Application in the terminal device, for example, an online shopping Application (APP), allows interaction with the network side, the online shopping APP may interact with the network side through the network 12, the network 13, or the network 14. However, if the network 14 is a network forged by hackers, when the online shopping APP interacts with the network side through the network 14, the network 14 may steal information of the terminal device user in the online shopping APP, for example, sensitive information such as an account password, which may threaten information security of the user.
Therefore, the present application proposes a network connection control method, aiming to solve the problem. The network connection control method provided by the application can determine whether the application program is allowed to be connected with the connectable network or not according to the identifier of the connectable network by acquiring the identifier of the connectable network when the application program is determined to be required to interact with the network side, and forbid the application program from interacting with the network side through the connectable network when the application program is determined not to be allowed to be connected with the connectable network, so that whether the application program is allowed to be connected with the connectable network or not can be determined according to the identifier of the connectable network, and forbid the application program from interacting with the network side through the connectable network when the application program is not allowed to be connected with the network side through the connectable network, and when the connectable network is an untrusted network, the application program can not establish connection with the network side through the untrusted network, thereby avoiding the information of a user from being stolen by the untrusted network, the information security of the user is improved.
The technical solution of the present application will be described in detail below with specific examples. The following several specific embodiments may be combined with each other, and details of the same or similar concepts or processes may not be repeated in some embodiments.
Fig. 2 is a flowchart illustrating a first embodiment of a network connection control method provided in the present application. As shown in fig. 2, the network connection control method provided in this embodiment includes the following steps:
s201: and when the application program is determined to need to interact with the network side, acquiring the identifier of the connectable network.
Specifically, a plurality of application programs are installed on the terminal device in the present application. The application program in the application can be an application program carried by an operating system of the terminal equipment, such as an application program of an address book, a calendar, an alarm clock and the like, and can also be a third-party application program, such as an online payment APP, an online shopping APP, an online banking APP, an instant messaging APP and a mail APP. After the application program on the terminal device is started, in the running process of the application program, some application programs need to interact with the network side, for example, the instant messaging APP needs to obtain messages sent by other users through a server, and some application programs do not need to interact with the network side, for example, an address book. When the application needs to interact with the network side, the application may send a networking request to the terminal device. Or, the terminal device may read information of a corresponding port of the application program according to a preset time interval, and determine whether the application program needs to interact with the network side according to a preset rule and the information.
Therefore, the terminal device determines whether the application needs to interact with the network side in the following two ways:
a first possible implementation: in the running process of the application program, when the terminal equipment receives a networking request of the application program, the application program is determined to need to interact with a network side.
A second possible implementation: and the terminal equipment reads the information of the corresponding port of the application program according to a preset time interval, and determines that the application program needs to interact with the network side according to a preset rule and the information. For example, the information of the corresponding port of the application program read by the terminal device is 1, the corresponding port is a port that identifies whether the application program needs to be networked, and the preset rule is as follows: 0-indicating that the application does not need to be networked, and 1-indicating that the application needs to be networked, it can be determined that the application needs to interact with the network side.
The interaction between the application program and the network side in the application can be that the application program sends information to a server on the network side, or the application program receives information from the server on the network side. This is not limited by the present application.
And after determining that the application program needs to interact with the network side, the terminal equipment acquires the identifier of the connectable network. The connectable network in this application means a network through which the terminal device can interact with the network side. For example, a mobile communication network, a WiFi network in a home lan, and a Light Fidelity (LiFi) network, etc. The terminal device may acquire the identifier of the connectable network when establishing connection with the connectable network. The Identifier of the connectable network may be a Media Access Control (MAC) address of an AP in the network, a Service Set Identifier (SSID) of the network, or a name of the network.
If there are a plurality of connectable networks, the identifications of these connectable networks can be acquired separately.
S202: determining whether the application is allowed to connect to the connectable network based on the identification of the connectable network.
Specifically, after acquiring the identifier of the connectable network, it is determined whether the application is allowed to connect to the connectable network according to the identifier of the connectable network.
In one implementation, the terminal device may store an identifier of the connectable network and a mapping relationship between whether the application is allowed to connect to the connectable network. The terminal device may determine whether the application is allowed to connect to the connectable network according to the identifier and the mapping relationship of the connectable network.
In another implementation, there may be multiple network packets on the terminal device, where the network packets include at least one connectable network. The network packet has configuration information that may indicate whether an application is allowed to connect to the connectable network. In such implementations, the network packet to which the connectable network belongs may be determined based on the identity of the connectable network, and whether the application is allowed to connect to the connectable network may be determined based on configuration information of the network packet. This implementation will be described in detail in the next embodiment.
In another implementation manner, after acquiring the identifier of the connectable network, the terminal device may display the identifier of the connectable network and an interface indicating whether to allow the application to be connected to the connectable network to the user, and then acquire a user input instruction, and determine whether to allow the application to be connected to the connectable network according to the instruction.
S203: and when the application program is determined not to be allowed to be connected with the connectable network, the application program is prohibited from interacting with the network side through the connectable network.
Specifically, when it is determined that the application is not allowed to connect to the connectable network, the terminal device may prohibit the application from interacting with the network side through the connectable network. Optionally, the terminal device does not send out the data sent by the application program to the network side, or the terminal device does not receive the data sent by the network side to the application program.
When there are a plurality of connectable networks, the terminal device may determine one by one until the application program interacts with the network side through a certain connectable network, or until the determination is completed, the application program is prohibited from interacting with the network side.
The network connection control method provided by the application can determine whether the application program is allowed to be connected with the connectable network or not according to the identifier of the connectable network by acquiring the identifier of the connectable network when the application program is determined to be required to interact with the network side, and forbid the application program from interacting with the network side through the connectable network when the application program is determined not to be allowed to be connected with the connectable network, so that whether the application program is allowed to be connected with the connectable network or not can be determined according to the identifier of the connectable network, and forbid the application program from interacting with the network side through the connectable network when the application program is not allowed to be connected with the network side through the connectable network, and when the connectable network is an untrusted network, the application program can not establish connection with the network side through the untrusted network, thereby avoiding the information of a user from being stolen by the untrusted network, the information security of the user is improved.
Fig. 3 is a flowchart illustrating a second embodiment of a network connection control method provided in the present application. This embodiment provides a detailed description of how to determine whether the application is allowed to connect to the connectable network according to the identifier of the connectable network, based on the embodiment shown in fig. 2. As shown in fig. 3, the network connection control method provided in this embodiment includes the following steps:
s301: and when the application program is determined to need to interact with the network side, acquiring the identifier of the connectable network.
The implementation process and the technical principle of S301 and S201 are similar, and are not described herein again.
S302: and determining the configuration information of the application program in the configuration information of the network group to which the connectable network belongs according to the identifier of the connectable network and the identifier of the application program.
The configuration information of the application program comprises the networking strategy of the application program.
Specifically, at least two network packets are preset on the terminal device. These network packets are provided with configuration information. The configuration information of each network packet includes configuration information of at least one application. The network packet includes an identification of at least one connectable network. The configuration information of the application includes the networking policy of the application, i.e., whether the application is allowed to interact with the network side through the connectable network included in the network packet. It will be appreciated that a connectable network belongs to only one network packet. In a more specific implementation, the network packet may be divided into: trusted network packets and untrusted network packets, or divided into highest security level network packets, second highest security level network packets, and unsecure network packets. The configuration information of the network packet to which the connectable network belongs may be determined according to the identifier of the connectable network, and then the configuration information of the application program in the configuration information of the network packet to which the connectable network belongs may be determined according to the identifier of the application program. The identifier of the application program in the present application may be a name of the application program or a hash code of a name of an installation package of the application program, which is not limited in the present application. When the application program starts to run on the terminal device, the terminal device can acquire the identifier of the application program.
Table 1 shows one configuration information of network packet a. Table 2 shows one configuration information of network packet B.
Table 1 a configuration information of network packet a
Figure BDA0001291454070000061
Table 2 a configuration information of network packet B
Figure BDA0001291454070000071
As shown in table 1, the network packet a includes three connectable networks, home WiFi, mobile communication network, and library WiFi. When the identifier of the connectable network acquired in S301 is the mobile communication network, it is determined that the network packet to which it belongs is the network packet a. The configuration information of network packet a includes the configuration information of the three applications X, Y and Z, i.e., the networking policies of the three applications. Assuming that the application program in S301 is application program Y, it is determined from the configuration information of network packet a that the networking policy of application program Y is "networking enabled", that is, the application program is allowed to interact with the network side through the mobile communication network. When the identifier of the connectable network acquired in S301 is WiFi in the mall, it is determined that the network group to which the connectable network belongs is network group B. The configuration information of network packet B also includes the networking policies of the three applications X, Y and Z. Assuming that the application program in S301 is application program Z, it is determined from the configuration information of network packet B that the networking policy of application program Z is "networking prohibited". It should be noted that, for convenience of description, the identifier of the connectable network in tables 1 and 2 is a name of the connectable network, in practical applications, the identifier of the connectable network may also be a MAC address or SSID, and the identifier of the application is a name of the application, and in practical applications, the identifier of the application may also be in other forms.
Which connectable networks are included in the network packet on the terminal device and the configuration information of the network packet may be input by the user through an input module of the terminal device, for example, a touch screen or a key, or may be set by default by the terminal device.
S303: and when the networking policy is to prohibit the application program from interacting with the network side, determining that the application program is not allowed to be connected with the connectable network.
S304: when the networking policy is to allow the application to interact with the network side, it is determined that the application is allowed to connect with the connectable network.
S305: and when the application program is determined not to be allowed to be connected with the connectable network, the application program is prohibited from interacting with the network side through the connectable network.
S306: when it is determined that the application program is allowed to connect to the connectable network, the application program is allowed to interact with the network side through the connectable network.
In S303, when the networking policy is to prohibit the application from interacting with the network side, which indicates that the application is not allowed to connect to the connectable network, in S305, the application is prohibited from interacting with the network side through the connectable network.
When the networking policy is to allow the application to interact with the network side in S304, indicating that the application is allowed to connect with the connectable network, then in S306, the application is allowed to interact with the network side through the connectable network. Then, the application program may send data to the network side through the connectable network, or receive data sent by the network side through the connectable network.
Optionally, the configuration information of the application program may further include an authorization right of the application program, where the authorization right includes allowing the application program to operate the terminal device. Table 3 shows another configuration information of network packet a. Table 4 shows another configuration information of network packet B.
Table 3 another configuration information for network packet a
Figure BDA0001291454070000081
Table 4 another configuration information of network packet B
Figure BDA0001291454070000082
As shown in table 3, in the network group a, under all connectable networks, the application program X can call an address book, call a camera, start recording, read and write a short message, make a call, and call an album. The application program Y can call an address book, call a camera, start recording, read and write short messages and call an album, but is forbidden to make a call. The application program Z can call an address book, start recording, read and write short messages and call an album, but forbids calling a camera and making a call. As shown in table 4, in network group B, applications X, Y and Z allow calling of an address book, calling of a camera, enabling recording, reading and writing of a text message, making a call, and calling of an album under all connectable networks.
S307: and when the application program needs to perform the target operation, determining whether the application program is allowed to perform the target operation according to the authorization authority in the configuration information of the application program.
S308: and when the application program is determined to allow the target operation, allowing the application program to perform the target operation.
S309: and when the application program is determined to be prohibited from performing the target operation, prohibiting the application program from performing the target operation.
In S307-S309, the terminal device may determine that the application needs to perform the target operation. The target operation in this application may be to invoke a camera. For example, during the running process of the instant messaging APP, a camera can be called to take a picture, and the picture is sent to other users. The target operation differs according to the service run by the application. The application program can send a request for carrying out target operation to the terminal equipment so as to request for carrying out the target operation. And the terminal equipment determines whether the application program is allowed to carry out the target operation according to the authorization authority in the configuration information of the application program in the configuration information of the network group to which the connectable network belongs. In S308, when it is determined that the application allows the target operation, the terminal device allows the application to perform the target operation. In S309, when it is determined that the application program is prohibited from performing the target operation, the terminal device prohibits the application program from performing the target operation.
Based on S305 and S306, the terminal device can perform the target operation and generate the following four cases:
in the first case, the execution flow of the terminal device is S305-S307-S308, that is, after the application program is prohibited from interacting with the network side through the connectable network, the application program is permitted to perform the target operation.
In the second case, the execution flow of the terminal device is S305-S307-S309, that is, after the application program is prohibited from interacting with the network side through the connectable network, the application program is prohibited from performing the target operation.
In the third case, the execution flow of the terminal device is S306-S307-S308, that is, after the application program is allowed to interact with the network side through the connectable network, the application program is allowed to perform the target operation.
In the fourth case, the execution flow of the terminal device is S306-S307-S309, and after the application program is allowed to interact with the network side through the connectable network, the application program is prohibited from performing the target operation.
In the third and fourth cases, the running process of the application program can be more finely controlled. When the application program interacts with the network side through different connectable networks, the application program can perform different operations on the terminal device, that is, the authorization rights of the terminal device are different. When the application program interacts with the network side through different connectable networks, the authorization authority matched with the connectable networks can be obtained, the authorization authority is not overlarge, and therefore the stability and reliability of the operation of the terminal equipment and the information safety of users are improved. For example, the stability and security of the home WiFi are higher than those of the library WiFi, and when the home WiFi and the library WiFi belong to the same network group, and if the authorization authority of the instant messaging APP in the configuration information of the network group is to allow the photo album to be called, when the instant messaging APP on the terminal device interacts with the network side through the library WiFi, due to unstable network quality, reading failure in the process of calling the photo album or even system breakdown of the terminal device may be caused, which may cause reduction of the operation stability of the terminal device. When the household WiFi belongs to the network group A ', the library WiFi belongs to the network group B', the networking strategies of the instant messaging APP in the configuration information of the network group A 'and the network group B' are all networks which are allowed to be connected, the authorization authority of the instant messaging APP in the configuration information of the network group A 'is an album which is allowed to be called, and the authorization authority of the instant messaging APP in the configuration information of the network group B' is a prohibition of calling the album, the problem that the operation stability of the terminal equipment is reduced due to unstable quality of the connectable network can not occur when the instant messaging APP on the terminal equipment interacts with the network side through the library WiFi.
Optionally, before S302, the present application provides further including: determining whether the connectable network belongs to an existing network packet based on the identity of the connectable network. When the connectable network identification is determined not to belong to an existing network grouping, the user is prompted to group the connectable network. That is, when the connectable network is a network that the terminal device has never accessed, or a network that is not included in the existing network packets on the terminal device, the terminal device may prompt the user to group the connectable network, and group the connectable network according to the first instruction input by the user. When it is determined that the connectable network identification belongs to an existing network packet, the determination is performed S302.
The terminal device prompts the user in a manner that a user interface is displayed on the display screen. FIG. 4A is a diagram of a user interface according to the embodiment shown in FIG. 3. As shown in fig. 4A, the user interface 401 shows that the user can group the connectable networks 31 and provides the option of dividing the connectable networks 31 into existing network groups. The user may enter a first instruction on the user interface 401.
When the first instruction includes the identifier of the existing network packet, determining that the network packet to which the connectable network belongs is the network packet corresponding to the identifier of the existing network packet included in the first instruction. And adding the identifier of the connectable network in the network packet corresponding to the identifier of the existing network packet included in the first instruction so as to realize grouping of the connectable network. When the first instruction does not include the identifier of the existing network packet, prompting a user to establish the network packet for the connectable network, receiving a second instruction input by the user, and distributing the configuration information included in the second instruction for the established network packet.
The user may select an existing network packet in user interface 401. As shown in fig. 4A, the user selects an existing network packet a, and the terminal device may divide the connectable network 31 into the network packets a. In this process, the network packet a is an identification of an existing network packet included in the first instruction. The user may also click to determine directly without selecting an existing network packet in user interface 401. After the terminal device obtains the first instruction, it is determined that the first instruction does not include the identifier of the existing network packet, and the terminal device prompts a user to establish a network packet for the connectable network, that is, to establish a new network packet different from the existing network packet. FIG. 4B is a schematic diagram of another user interface in the embodiment shown in FIG. 3. As shown in fig. 4B, the user interface 402 shows that a network packet is established for the connectable network 31, and the user interface 402 shows that a network packet F to which the connectable network 31 belongs is established. The user can continue to enter second instructions on the user interface 402, which include configuration information assigned by the user to the network packet F, i.e., networking policies and authorization rights for the respective application. And the terminal equipment determines the configuration information included in the second instruction as the configuration information of the established network grouping.
During the process of using the terminal device, the user needs to adjust some network packets capable of connecting to the network, so as to improve the usability and convenience of the terminal device in connecting to the network. When determining that the network packet connectable to the network needs to be adjusted, the user may input a determination switching message on the user interface, or may input a determination switching message through a shortcut key. And the terminal equipment acquires a third instruction input by the user when determining that the user needs to switch the network packet of the network packet. The third instruction comprises the identifier of the network to be switched and the identifier of the switched network grouping. And setting the network packet to which the network to be switched belongs as the switched network packet according to the third instruction.
FIG. 4C is a schematic diagram of yet another user interface of the embodiment shown in FIG. 3. As shown in fig. 4C, an interface for switching connectable networks is shown on the user interface 403. An input box on the user interface 403 includes an identification of the network to be switched and an identification of the network packet after switching. The user may enter in the input box an identification of the network to be switched and an identification of the network packet after switching. And the terminal equipment completes the switching of the network packet of the network to be switched after receiving a third instruction input by the user.
The network connection control method provided by the application comprises the steps of acquiring an identifier of a connectable network when an application program needs to interact with a network side, determining configuration information of the application program in configuration information of a network group to which the connectable network belongs according to the identifier of the connectable network and the identifier of the application program, wherein the configuration information of the application program comprises a networking strategy of the application program, determining that the application program is not allowed to be connected with the connectable network when the networking strategy is that the application program is forbidden to interact with the network side, determining that the application program is allowed to be connected with the connectable network when the networking strategy is that the application program is allowed to interact with the network side, forbidding the application program to interact with the network side through the connectable network when the application program is determined not allowed to be connected with the connectable network, and allowing the application program to interact with the network side through the connectable network when the application program is determined to be allowed to be connected with the connectable network, when determining that the application program needs to perform target operation, determining whether the application program is allowed to perform the target operation according to the authorization authority in the configuration information of the application program, when determining that the application program is allowed to perform the target operation, allowing the application program to perform the target operation, and when determining that the application program is prohibited from performing the target operation, prohibiting the application program from performing the target operation, so that connectable networks can be grouped to form a plurality of network groups, each network group is allocated with the configuration information, the configuration information comprises a networking policy and the authorization authority of each application program, batch management of whether the application program can interact with a network side through some connectable networks is realized, the authorization authority of the application program in the operation process is realized, and the operation process of the application program is more finely controlled, so that the reliability and the stability of the terminal device in the operation process are improved, and, the information security of the user is further improved.
Fig. 5 is a schematic structural diagram of a first network connection control apparatus according to an embodiment of the present disclosure. As shown in fig. 5, the network connection control apparatus provided in the present application includes the following modules:
the first obtaining module 51 is configured to obtain an identifier of a connectable network when it is determined that the application needs to interact with the network side.
A first determining module 52, configured to determine whether the application is allowed to connect to the connectable network according to the identifier of the connectable network.
And a connection prohibiting module 53, configured to prohibit the application program from interacting with the network side through the connectable network when it is determined that the application program is not allowed to connect with the connectable network.
The network connection control apparatus provided in the present application may be specifically configured to execute the network connection control method in the embodiment shown in fig. 2, and the technical principle and the implementation process thereof are similar and will not be described herein again.
The network connection control device provided by the application can determine whether the application program is allowed to be connected with the connectable network according to the identifier of the connectable network by arranging a first acquisition module for acquiring the identifier of the connectable network when the application program is determined to be required to interact with the network side, a connection forbidding module for forbidding the application program to interact with the network side through the connectable network when the application program is determined not to be allowed to be connected with the connectable network, so that the application program is prevented from interacting with the network side through the connectable network when the application program is not allowed to be connected with the network side through the connectable network, and the application program is prevented from establishing connection with the network side through the untrusted network when the connectable network is an untrusted network, therefore, the information of the user is prevented from being stolen by an untrusted network, and the information safety of the user is improved.
Fig. 6 is a schematic structural diagram of a second embodiment of a network connection control apparatus according to the present application. The network connection control apparatus provided in this embodiment describes the specific components and other modules of the first determining module 52 in detail based on the embodiment shown in fig. 5. As shown in fig. 6, in the network connection control apparatus provided by the present application, the first determining module 52 includes:
the first determining submodule 521 is configured to determine, according to the identifier of the connectable network and the identifier of the application program, the configuration information of the application program in the configuration information of the network packet to which the connectable network belongs.
The configuration information of the application program comprises the networking strategy of the application program.
A second determining sub-module 522, configured to determine that the application is not allowed to connect to the connectable network when the networking policy is to prohibit the application from interacting with the network side.
A third determining submodule 523 configured to determine that the application is allowed to connect to the connectable network when the networking policy is to allow the application to interact with the network side.
Optionally, the apparatus further comprises a connection allowing module 65 for allowing the application to interact with the network side via the connectable network when it is determined that the application is allowed to connect with the connectable network.
In this application, the configuration information of the application program further includes an authorization right of the application program, where the authorization right includes allowing the application program to operate the network connection control device. The device also includes:
and the second determining module 61 is configured to determine whether the application program is allowed to perform the target operation according to the authorization authority in the configuration information of the application program when it is determined that the application program needs to perform the target operation.
And an operation allowing module 63, configured to allow the application program to perform the target operation when it is determined that the application program is allowed to perform the target operation.
And an operation prohibition module 64, configured to prohibit the application from performing the target operation when it is determined that the application is prohibited from performing the target operation.
Optionally, the apparatus further comprises: a third determining module, configured to determine whether the connectable network belongs to an existing network group according to the identifier of the connectable network; the prompting module is used for prompting a user to group the connectable network when the identifier of the connectable network is determined not to belong to the existing network group; the grouping module is used for grouping the connectable networks according to a first instruction input by a user; and the fourth determining module is used for determining to execute the operation of determining the configuration information of the application program in the configuration information of the network grouping to which the connectable network belongs according to the identifier of the connectable network and the identifier of the application program when the identifier of the connectable network is determined to belong to the existing network grouping.
Wherein, the grouping module is specifically configured to: when the first instruction comprises the identifier of the existing network packet, determining the network packet to which the connectable network belongs as the network packet corresponding to the identifier of the existing network packet included in the first instruction; adding an identifier of a connectable network in a network packet corresponding to the identifier of the existing network packet included in the first instruction; when the first instruction does not include the identifier of the existing network packet, prompting a user to establish the network packet for the connectable network, receiving a second instruction input by the user, and distributing configuration information included in the second instruction for the established network packet.
Optionally, the apparatus further comprises: the second acquisition module is used for acquiring a third instruction input by a user, wherein the third instruction comprises an identifier of a network to be switched and an identifier of a switched network group; and the switching module is used for setting the network packet to which the network to be switched belongs as the switched network packet according to the third instruction.
The network connection control apparatus provided in the present application may be specifically configured to execute the network connection control method in the embodiment shown in fig. 3, and the technical principle and the implementation process thereof are similar and will not be described herein again.
The network connection control device provided by the application comprises a first acquisition module, a first determination submodule and a third determination submodule, wherein the first acquisition module is used for acquiring the identifier of a connectable network when determining that an application program needs to interact with the network side, the first determination submodule is used for determining the configuration information of the application program in the configuration information of a network group to which the connectable network belongs according to the identifier of the connectable network and the identifier of the application program, the configuration information of the application program comprises the networking strategy of the application program, the second determination submodule is used for determining that the application program is not allowed to be connected with the connectable network when the networking strategy is that the application program is forbidden to interact with the network side, the third determination submodule is used for determining that the application program is allowed to be connected with the connectable network when the networking strategy is that the application program is allowed to interact with the network side, the connection forbidding module is used for determining that the application program is not allowed to be connected with the, the system comprises a first determining module, a second determining module, an operation permitting module and an operation inhibiting module, wherein the first determining module is used for determining whether the application program is allowed to carry out target operation according to authorization authority in configuration information of the application program when the application program is determined to be required to carry out the target operation, the operation permitting module is used for permitting the application program to carry out the target operation when the application program is determined to be allowed to carry out the target operation, the operation inhibiting module is used for inhibiting the application program from carrying out the target operation when the application program is determined to be prevented from carrying out the target operation, the connectable network can be grouped to form a plurality of network groups, each network group is allocated with configuration information, the configuration information comprises networking strategies and authorization authorities of each application program, batch management of whether the application program can be interacted with a network side through some connectable networks is realized, and, the authorization authority of the application program in the running process is controlled more finely, so that the reliability and stability of the network connection control device in the running process are improved, and the information safety of a user is further improved.
Fig. 7 is a schematic structural diagram of a third embodiment of a network connection control apparatus provided in the present application. As shown in fig. 7, the network connection control apparatus provided in the present application includes:
a memory 71 and a processor 72. The memory 71 is used for storing executable instructions of the processor 72.
The processor 72 may be a Central Processing Unit (CPU), an Application Specific Integrated Circuit (ASIC), or one or more Integrated circuits that implement embodiments of the present invention. When the network connection control program is running, the processor 72 communicates with the memory 71, and the processor 72 calls the executable instructions for performing the following operations:
when the application program is determined to need to interact with a network side, acquiring an identifier capable of connecting a network; determining whether the application is allowed to connect with the connectable network according to the identifier of the connectable network; and when the application program is determined not to be allowed to be connected with the connectable network, the application program is prohibited from interacting with the network side through the connectable network.
Optionally, in determining whether the application is allowed to connect to the connectable network according to the identifier of the connectable network, the processor 72 is specifically configured to: determining configuration information of an application program in configuration information of a network group to which a connectable network belongs according to an identifier of the connectable network and an identifier of the application program, wherein the configuration information of the application program comprises a networking policy of the application program; when the networking policy is to prohibit the application program from interacting with the network side, determining that the application program is not allowed to be connected with the connectable network; when the networking policy is to allow the application to interact with the network side, it is determined that the application is allowed to connect with the connectable network.
Optionally, the configuration information of the application further includes an authorization right of the application, where the authorization right includes allowing the application to operate the terminal device. The processor 72 is further configured to: when the application program needs to perform target operation, determining whether the application program is allowed to perform the target operation according to the authorization authority in the configuration information of the application program; when determining that the application program allows the target operation, allowing the application program to perform the target operation; and when the application program is determined to be prohibited from performing the target operation, prohibiting the application program from performing the target operation.
Optionally, before determining the configuration information of the application program in the configuration information of the network packet to which the connectable network belongs according to the identifier of the connectable network and the identifier of the application program, the processor 72 is further configured to: determining whether the connectable network belongs to an existing network group according to the identifier of the connectable network; when the identifier of the connectable network is determined not to belong to the existing network group, prompting the user to group the connectable network; grouping connectable networks according to a first instruction input by a user; when the connectable network identifier is determined to belong to the existing network packet, determining to perform an operation of determining the configuration information of the application program in the configuration information of the network packet to which the connectable network belongs, based on the connectable network identifier and the application program identifier.
In aspects where the connectable networks are grouped according to a first instruction input by a user, the processor 72 includes: when the first instruction comprises the identifier of the existing network packet, determining the network packet to which the connectable network belongs as the network packet corresponding to the identifier of the existing network packet included in the first instruction; adding an identifier of a connectable network in a network packet corresponding to the identifier of the existing network packet included in the first instruction; when the first instruction does not include the identifier of the existing network packet, prompting a user to establish the network packet for the connectable network, receiving a second instruction input by the user, and distributing configuration information included in the second instruction for the established network packet.
The processor 72 is further configured to: acquiring a third instruction input by a user, wherein the third instruction comprises an identifier of a network to be switched and an identifier of a switched network group; and setting the network packet to which the network to be switched belongs as the switched network packet according to the third instruction.
The network connection control apparatus provided in the present application may be specifically configured to execute the network connection control method in the embodiment shown in fig. 2 or fig. 3, and the technical principle, implementation process, and technical effect are similar, which are not described herein again.
The present application also provides a computer-readable storage medium containing computer-executable instructions for causing a network connection control apparatus to perform the network connection control method in the embodiment shown in fig. 2 or fig. 3.
The present application also provides a program product comprising execution instructions stored in a computer-readable storage medium. The at least one processor of the network connection control apparatus may read the computer executable instructions from the readable storage medium, and the at least one processor executes the executable instructions to cause the network connection control apparatus to implement the network connection control method in the embodiment shown in fig. 2 or fig. 3.
Those of ordinary skill in the art will understand that: all or a portion of the steps of implementing the above-described method embodiments may be performed by hardware associated with program instructions. The program may be stored in a computer-readable storage medium. When executed, the program performs steps comprising the method embodiments described above; and the aforementioned storage medium includes: various media that can store program codes, such as ROM, RAM, magnetic or optical disks.

Claims (8)

1. A network connection control method, comprising:
when the application program is determined to need to interact with a network side, acquiring an identifier capable of connecting a network;
determining whether the application is allowed to connect to the connectable network based on the identity of the connectable network;
when the application program is determined not to be allowed to be connected with the connectable network, the application program is prohibited from interacting with the network side through the connectable network;
the determining whether the application is allowed to connect to the connectable network according to the identifier of the connectable network includes:
determining configuration information of the application program in configuration information of a network group to which the connectable network belongs according to the identifier of the connectable network and the identifier of the application program, wherein the configuration information of the application program comprises a networking policy of the application program;
when the networking policy is to prohibit the application program from interacting with the network side, determining that the application program is not allowed to be connected with the connectable network;
when the networking policy is to allow the application program to interact with a network side, determining that the application program is allowed to be connected with the connectable network; the configuration information of the application program also comprises an authorization authority of the application program, wherein the authorization authority comprises the operation of the application program on the terminal equipment;
the method further comprises the following steps:
when the application program is determined to need to carry out target operation, determining whether the application program is allowed to carry out the target operation according to the authorization authority in the configuration information of the application program;
when the target operation is determined to be allowed to be carried out by the application program, allowing the application program to carry out the target operation;
and when the application program is determined to be prohibited from performing the target operation, prohibiting the application program from performing the target operation.
2. The method according to claim 1, wherein before determining the configuration information of the application program in the configuration information of the network packet to which the connectable network belongs according to the identifier of the connectable network and the identifier of the application program, the method further comprises:
determining whether the connectable network belongs to an existing network packet according to the identifier of the connectable network;
when the identifier of the connectable network is determined not to belong to the existing network group, prompting a user to group the connectable network;
grouping the connectable networks according to a first instruction input by the user;
and when the identifier of the connectable network is determined to belong to the existing network group, determining to execute the operation of determining the configuration information of the application program in the configuration information of the network group to which the connectable network belongs according to the identifier of the connectable network and the identifier of the application program.
3. The method of claim 2, wherein the grouping the connectable networks according to the first instruction input by the user comprises:
when the first instruction comprises the identification of the existing network packet, determining that the network packet to which the connectable network belongs is the network packet corresponding to the identification of the existing network packet included in the first instruction;
adding the identifier of the connectable network to the network packet corresponding to the identifier of the existing network packet included in the first instruction;
and when the first instruction does not comprise the identifier of the existing network packet, prompting the user to establish the network packet for the connectable network, receiving a second instruction input by the user, and distributing configuration information included in the second instruction for the established network packet.
4. The method of claim 2, further comprising:
acquiring a third instruction input by a user, wherein the third instruction comprises an identifier of a network to be switched and an identifier of a switched network group;
and setting the network packet to which the network to be switched belongs as the switched network packet according to the third instruction.
5. A network connection control apparatus, comprising:
the first acquisition module is used for acquiring an identifier of a connectable network when the application program is determined to need to interact with a network side;
a first determining module, configured to determine whether the application is allowed to connect to the connectable network according to the identifier of the connectable network;
a connection forbidding module, configured to forbid the application program from interacting with the network side through the connectable network when it is determined that the application program is not allowed to connect with the connectable network;
the first determining module specifically includes:
a first determining submodule, configured to determine, according to an identifier of the connectable network and an identifier of the application program, configuration information of the application program in configuration information of a network packet to which the connectable network belongs, where the configuration information of the application program includes a networking policy of the application program;
a second determining submodule, configured to determine that the application is not allowed to connect to the connectable network when the networking policy is to prohibit the application from interacting with the network side;
a third determining submodule, configured to determine that the application program is allowed to connect to the connectable network when the networking policy is to allow the application program to interact with the network side; the configuration information of the application program also comprises authorization authority of the application program, wherein the authorization authority comprises the operation of the network connection control device allowed by the application program;
the device further comprises:
the second determination module is used for determining whether the application program is allowed to perform the target operation according to the authorization authority in the configuration information of the application program when the application program is determined to need to perform the target operation;
an operation allowing module, configured to allow the application program to perform the target operation when it is determined that the application program is allowed to perform the target operation;
and the operation prohibiting module is used for prohibiting the application program from performing the target operation when the fact that the application program prohibits the target operation is determined.
6. The apparatus of claim 5, further comprising:
a third determining module, configured to determine whether the connectable network belongs to an existing network group according to the identifier of the connectable network;
the prompting module is used for prompting a user to group the connectable network when the identifier of the connectable network is determined not to belong to the existing network group;
the grouping module is used for grouping the connectable networks according to a first instruction input by the user;
and the fourth determination module is used for determining to execute the operation of determining the configuration information of the application program in the configuration information of the network grouping to which the connectable network belongs according to the identifier of the connectable network and the identifier of the application program when the identifier of the connectable network is determined to belong to the existing network grouping.
7. The apparatus of claim 6, wherein the grouping module is specifically configured to:
when the first instruction comprises the identification of the existing network packet, determining that the network packet to which the connectable network belongs is the network packet corresponding to the identification of the existing network packet included in the first instruction;
adding the identifier of the connectable network to the network packet corresponding to the identifier of the existing network packet included in the first instruction;
and when the first instruction does not comprise the identifier of the existing network packet, prompting the user to establish the network packet for the connectable network, receiving a second instruction input by the user, and distributing configuration information included in the second instruction for the established network packet.
8. The apparatus of claim 6, further comprising:
the second obtaining module is used for obtaining a third instruction input by a user, wherein the third instruction comprises an identifier of a network to be switched and an identifier of a switched network group;
and the switching module is used for setting the network packet to which the network to be switched belongs as the switched network packet according to the third instruction.
CN201710326898.5A 2017-05-10 2017-05-10 Network connection control method and device Active CN108881113B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN202110613830.1A CN113473473A (en) 2017-05-10 2017-05-10 Network connection control method and device
CN201710326898.5A CN108881113B (en) 2017-05-10 2017-05-10 Network connection control method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710326898.5A CN108881113B (en) 2017-05-10 2017-05-10 Network connection control method and device

Related Child Applications (1)

Application Number Title Priority Date Filing Date
CN202110613830.1A Division CN113473473A (en) 2017-05-10 2017-05-10 Network connection control method and device

Publications (2)

Publication Number Publication Date
CN108881113A CN108881113A (en) 2018-11-23
CN108881113B true CN108881113B (en) 2021-06-04

Family

ID=64319106

Family Applications (2)

Application Number Title Priority Date Filing Date
CN201710326898.5A Active CN108881113B (en) 2017-05-10 2017-05-10 Network connection control method and device
CN202110613830.1A Pending CN113473473A (en) 2017-05-10 2017-05-10 Network connection control method and device

Family Applications After (1)

Application Number Title Priority Date Filing Date
CN202110613830.1A Pending CN113473473A (en) 2017-05-10 2017-05-10 Network connection control method and device

Country Status (1)

Country Link
CN (2) CN108881113B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110162347B (en) * 2019-05-15 2023-05-16 苏州达家迎信息技术有限公司 Application program starting method, device, equipment and storage medium
CN110765482A (en) * 2019-09-19 2020-02-07 维沃移动通信有限公司 Information processing method and terminal equipment
CN110636080B (en) * 2019-10-18 2020-06-30 深圳小辣椒科技有限责任公司 Application program network connection control method and system in mobile intelligent terminal system
CN111885561B (en) * 2020-06-30 2024-02-13 北京小米移动软件有限公司 Wireless network connection, NFC information writing method, device and storage medium

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101523808A (en) * 2006-10-13 2009-09-02 阿尔卡特朗讯公司 Network service usage management systems and methods
CN104244227A (en) * 2013-06-09 2014-12-24 中国移动通信集团公司 Terminal access authentication method and device in internet of things system

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2886803B1 (en) * 2005-06-07 2007-08-10 Alcatel Sa MULTIMODES MOBILE TERMINAL WITH AUTOMATIC SELECTION OF RADIO ACCESS NETWORK INTERFACE DURING A SERVICE SESSION
US9532222B2 (en) * 2010-03-03 2016-12-27 Duo Security, Inc. System and method of notifying mobile devices to complete transactions after additional agent verification
CN102469093B (en) * 2010-11-19 2015-02-18 中国电信股份有限公司 System and method for controlling networking authorization on networking application
CN103607372B (en) * 2013-08-19 2016-12-28 深信服网络科技(深圳)有限公司 The authentication method of network insertion and device
CN104516783B (en) * 2013-09-27 2019-04-23 华为终端(东莞)有限公司 Authority control method and device
CN104869569A (en) * 2015-03-31 2015-08-26 小米科技有限责任公司 Network permission control method and apparatus of application program
CN106096393A (en) * 2016-06-07 2016-11-09 广东欧珀移动通信有限公司 A kind of application control method and device
CN106096450A (en) * 2016-06-21 2016-11-09 依偎科技(南昌)有限公司 A kind of application program freezing method and mobile terminal

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101523808A (en) * 2006-10-13 2009-09-02 阿尔卡特朗讯公司 Network service usage management systems and methods
CN104244227A (en) * 2013-06-09 2014-12-24 中国移动通信集团公司 Terminal access authentication method and device in internet of things system

Also Published As

Publication number Publication date
CN108881113A (en) 2018-11-23
CN113473473A (en) 2021-10-01

Similar Documents

Publication Publication Date Title
CN108881113B (en) Network connection control method and device
US8600355B1 (en) Systems and methods for authenticating applications for access to secure data using identity modules
US9198026B2 (en) SIM lock for multi-SIM environment
US9049597B2 (en) Telecommunications device security
KR102325912B1 (en) Holistic module authentication with a device
US11662990B2 (en) Techniques for dynamically provisioning electronic subscriber identity modules to mobile devices
JP2014524073A (en) Service access authentication method and system
US11405788B2 (en) Wireless network service access control with subscriber identity protection
KR101919111B1 (en) Advance personalization of eSIM to support massive eSIM delivery
EP2874367B1 (en) Call authentication method, device, and system
TW201830949A (en) Methods for sharing sim card and mobile terminals
JP2009055454A (en) Base station apparatus
WO2011124051A1 (en) Method and system for terminal authentication
US9900446B2 (en) Information processing method using virtual subscriber identification card information, electronic apparatus and server
AU2010288520A1 (en) A chip card, an electronic system, a method being implemented by a chip card and a computer program product
KR20090065975A (en) Method and system for protection of personal information in a stolen mobile equipment
US8965343B1 (en) Security key based authorization of transceivers in wireless communication devices
CN108769989B (en) Wireless network connection method, wireless access device and equipment
JP2005521271A (en) Peripherals with secure drivers
KR20190044104A (en) A method for transmitting data to at least one device, a data transmission control server, a storage server, a processing server and a system
CN110062440B (en) WLAN connection control method, electronic device and storage medium
US11431713B2 (en) Methods, apparatus, and system for controlling access to a local network
CN117692902A (en) Intelligent home interaction method and system based on embedded home gateway
CN106416323A (en) Method and device for sending data service, and terminal
CN114554480A (en) Method for storing cloud mobile phone application data, cloud mobile phone and system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant