CN109121136B - Network access method, terminal connection method, terminal verification method, gateway and system - Google Patents
Network access method, terminal connection method, terminal verification method, gateway and system Download PDFInfo
- Publication number
- CN109121136B CN109121136B CN201710480781.2A CN201710480781A CN109121136B CN 109121136 B CN109121136 B CN 109121136B CN 201710480781 A CN201710480781 A CN 201710480781A CN 109121136 B CN109121136 B CN 109121136B
- Authority
- CN
- China
- Prior art keywords
- terminal
- home gateway
- request
- address information
- verification
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/66—Arrangements for connecting between networks having differing types of switching systems, e.g. gateways
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/101—Access control lists [ACL]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W48/00—Access restriction; Network selection; Access point selection
- H04W48/16—Discovering, processing access restriction or access information
Abstract
The invention provides a network access method, a terminal connection method, a terminal verification method, a terminal, a gateway and a system, and relates to the technical field of intelligent home. The network access method comprises the following steps: sending an access request to the home gateway so as to connect the home gateway under the condition of successful matching with the white list of the home gateway; if the connection is unsuccessful, sending a verification request to the home gateway so that the home gateway forwards the verification request to a verification server, and adding the predetermined address information of the terminal to a home gateway white list when the verification of the verification server is passed. By the method, the intelligent home terminal can directly request for connection to the home gateway, and provides information to the home gateway to initiate authentication under the condition that the intelligent home terminal cannot be successfully matched with the white list, so that the home can verify the information by the verification server, a user does not need to download application cooperation operation or perform equipment networking in a manual button mode, and the network access efficiency of the intelligent home terminal is improved.
Description
Technical Field
The application relates to the technical field of intelligent home, in particular to a network access method, a terminal connection method, a terminal verification method, a gateway and a system.
Background
At present, more and more household devices are equipped with a network connection function, and a user can monitor and operate the intelligent household devices through a network, so that the household life is more intelligent and convenient. In view of cost saving, appearance, functional limitation and the like, some smart home terminals are screen-less, and in the process of WiFi (Wireless Fidelity) distribution network, the smart home screen-less terminals generally adopt a Wireless distribution network mode such as multicast, broadcast, WPS (WiFi Protected Setup), and the like, and users need to download APP (Application) for cooperating operation or manually press buttons for device networking. The mode has certain requirements on the operation level of the user, the user use threshold is high, the problem of low activation rate of equipment networking exists, and the intelligent home screen-free terminal cannot be effectively applied.
Disclosure of Invention
An object of the application is to provide a network access scheme of an intelligent home terminal, which improves the network access efficiency of the intelligent home terminal.
According to an aspect of the present application, a network access method is provided, including: sending an access request to the home gateway so as to connect the home gateway under the condition of successful matching with the white list of the home gateway; and if the connection is unsuccessful, sending a verification request to the home gateway so that the home gateway forwards the verification request to a verification server, and adding the predetermined address information of the terminal to a home gateway white list when the verification of the verification server is passed.
Optionally, the access request includes predetermined address information of the terminal; the home gateway whitelist includes predetermined address information of terminals allowed to access.
Optionally, the verification request includes a terminal identifier and a password; the authentication server comprises the terminal identification, the password and the preset address information of the legal terminal.
Optionally, the method further comprises: after the authentication request is transmitted, an access request or network data is transmitted to the home gateway after a predetermined time.
By the method, the intelligent home terminal can directly request for connection to the home gateway, and provides information to the home gateway to initiate authentication under the condition that the intelligent home terminal cannot be successfully matched with the white list, so that the home gateway can verify the information to the verification server, the user does not need to download APP (application) cooperation operation or perform equipment networking in a manual button mode, and the network access efficiency of the intelligent home terminal is improved.
According to another aspect of the present invention, there is provided a terminal connection method, including: receiving an authentication request from a terminal, and forwarding the authentication request to an authentication server so as to perform authentication at the authentication server; when the authentication server passes the authentication, predetermined address information of the terminal from the authentication server is received and added to the home gateway white list.
Optionally, the method further comprises: receiving an access request and/or network data from a terminal; matching the access request and/or the network data with a white list of the home gateway; if the matching is successful, allowing the terminal to access the network; and if the matching is unsuccessful, rejecting the terminal to access the network.
Optionally, the authentication request includes a terminal identifier and a password; the authentication server comprises the terminal identification, the password and the preset address information of the legal terminal.
Optionally, matching the access request and/or the network data with a white list comprises: and matching the preset address information of the terminal in the access request and/or the network data with the preset address information of the terminal allowed to be accessed in the white list of the home gateway.
By the method, the gateway can forward the verification request from the intelligent home terminal to the verification server for verification, and the intelligent home terminal is added into the white list when the verification is passed, so that the intelligent home terminal can be connected in time when the intelligent home terminal requests connection again, and the network access efficiency of the intelligent home terminal is improved.
According to another aspect of the present invention, a terminal verification method is provided, including: receiving an authentication request from a home gateway, wherein the authentication request comprises a terminal identifier and a password; matching the terminal identification and the password with the terminal identification and the password of the legal terminal stored in the verification server; and if the matching is successful, feeding back the preset address information of the terminal to the home gateway.
By the method, the verification request from the home gateway can be authenticated, the preset address information of the terminal is fed back to the home gateway under the condition that the authentication is passed, the home gateway can conveniently add the intelligent home terminal into a white list, and therefore the intelligent home terminal can be connected in time when the intelligent home terminal requests connection again, and the network access efficiency of the intelligent home terminal is improved.
According to another aspect of the present invention, an intelligent home terminal is provided, which includes: the access request sending module is used for sending an access request to the home gateway so as to connect the home gateway under the condition of successful matching with the white list of the home gateway; and the verification request sending module is used for sending a verification request to the home gateway when the connection is unsuccessful so that the home gateway forwards the verification request to a verification server, and adding the preset address information of the terminal to a home gateway white list when the verification of the verification server is passed.
Optionally, the access request includes predetermined address information of the terminal, and the home gateway white list includes predetermined address information of the terminal allowed to be accessed.
Optionally, the authentication request includes a terminal identifier and a password, and the authentication server includes a terminal identifier, a password, and predetermined address information of a valid terminal.
Optionally, the access request sending module is further configured to send the access request or the network data to the home gateway after the authentication request sending module sends the authentication request and within a predetermined time.
The intelligent home terminal can directly request connection to the home gateway, information is provided for the home gateway to initiate authentication under the condition that the information cannot be successfully matched with the white list, the home gateway can verify the information by the verification server, the user does not need to download APP cooperation operation, or equipment networking is carried out in a manual button mode, and the network access efficiency of the intelligent home terminal is improved.
According to another aspect of the present invention, there is provided a home gateway, comprising: the authentication request receiving module is used for receiving an authentication request from the terminal and forwarding the authentication request to the authentication server so as to carry out authentication at the authentication server; and a white list generation unit for receiving predetermined address information of the terminal from the authentication server and adding to the home gateway white list when the authentication by the authentication server is passed.
Optionally, the method further comprises: an access request receiving module, configured to receive an access request from a terminal; the white list matching module is used for matching the access request with a home gateway white list; if the matching is successful, allowing the terminal to access the network; and if the matching is unsuccessful, rejecting the terminal to access the network.
Optionally, the authentication request includes a terminal identifier and a password, and the authentication server includes a terminal identifier, a password, and predetermined address information of a valid terminal.
Optionally, the white list matching module is configured to match the predetermined address information of the terminal in the access request and/or the network data with the predetermined address information of the terminal allowed to be accessed in the white list of the home gateway.
The home gateway can forward the verification request from the intelligent home terminal to the verification server for verification, and adds the intelligent home terminal into the white list when the verification is passed, so that the intelligent home terminal can be connected in time when the intelligent home terminal requests connection again, and the network access efficiency of the intelligent home terminal is improved.
According to another aspect of the present invention, a terminal access system is provided, including: the intelligent terminal is used for any one of the network access methods mentioned above; a home gateway for performing any one of the above-mentioned terminal connection methods; and an authentication server for performing the above-mentioned terminal authentication method.
In the terminal access system, the intelligent home terminal can directly request connection to the home gateway, information is provided for the home gateway to initiate authentication under the condition that the intelligent home terminal cannot be successfully matched with the white list, the home gateway can forward the authentication request from the intelligent home terminal to the authentication server to carry out authentication, the authentication server feeds the preset address information of the terminal back to the home gateway under the condition that the authentication is passed, the home gateway adds the intelligent home terminal into the white list, so that the intelligent home terminal can be connected in time when the intelligent home terminal requests connection again, and the network access efficiency of the intelligent home terminal is improved.
According to still another aspect of the present invention, a terminal access system is provided, including: a memory; and a processor coupled to the memory, the processor configured to perform any of the methods mentioned above based on instructions stored in the memory.
According to the terminal access system, a user does not need to download APP cooperation operation or a manual button for equipment networking, and the network access efficiency of the intelligent home terminal is improved.
Further, according to an aspect of the invention, a computer-readable storage medium is proposed, on which computer program instructions are stored, which instructions, when executed by a processor, implement any of the methods mentioned above.
By executing the instructions on the computer-readable storage medium, equipment networking can be performed without downloading APP cooperation or manual buttons by a user, and the network access efficiency of the intelligent home terminal is improved.
Drawings
The accompanying drawings, which are included to provide a further understanding of the application and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the application and together with the description serve to explain the application and not to limit the application. In the drawings:
fig. 1 is a schematic diagram of a terminal access system according to an embodiment of the present invention.
Fig. 2 is a schematic diagram of another embodiment of the terminal access system of the present invention.
Fig. 3 is a flowchart of an embodiment of a network access method of the present invention.
Fig. 4 is a flowchart of an embodiment of a terminal connection method of the present invention.
Fig. 5 is a flowchart of another embodiment of a terminal connection method of the present invention.
Fig. 6 is a flowchart of an embodiment of a terminal authentication method of the present invention.
Fig. 7 is a schematic diagram of an embodiment of an intelligent home terminal of the present invention.
Fig. 8 is a schematic diagram of an embodiment of a home gateway of the present invention.
Fig. 9 is a schematic diagram of another embodiment of the home gateway of the present invention.
Fig. 10 is a diagram of a terminal access system according to another embodiment of the present invention.
Fig. 11 is a signaling flow diagram of a terminal access system according to still another embodiment of the present invention.
Detailed Description
The technical solution of the present application is further described in detail by the accompanying drawings and examples.
Fig. 1 is a schematic structural diagram of an embodiment of a terminal access system according to the present application. The terminal access system includes a memory 110 and a processor 120. Wherein: the memory 110 may be a magnetic disk, flash memory, or any other non-volatile storage medium. The memory is for storing instructions in corresponding embodiments of the methods hereinafter. Processor 120 is coupled to memory 110 and may be implemented as one or more integrated circuits, such as a microprocessor or microcontroller. The processor 120 is configured to execute the instructions stored in the memory, so as to improve the network access efficiency of the smart home terminal.
In one embodiment, as also shown in fig. 2, the terminal access system 200 includes a memory 210 and a processor 220. Processor 220 is coupled to memory 210 by a BUS 230. The terminal access system 200 may also be connected to an external storage device 250 through a storage interface 240 for calling external data, and may also be connected to a network or another computer system (not shown) through a network interface 260. And will not be described in detail herein.
In this embodiment, the data instruction is stored in the memory, and the processor processes the instruction, so that the network access efficiency of the smart home terminal can be improved.
In another embodiment, a computer-readable storage medium has stored thereon computer program instructions which, when executed by a processor, implement the steps of the method in the corresponding embodiment of the method described below. As will be appreciated by one skilled in the art, embodiments of the present application may be provided as a method, apparatus, or computer program product. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable non-transitory storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
A flow chart of one embodiment of the network access method of the present invention is shown in fig. 3.
In step 301, the smart home terminal sends an access request to the home gateway. The Access request may include MAC (Medium Access Control) address information of the terminal. The home gateway allows the intelligent home terminal to be connected with the external network under the condition that the MAC address of the verification terminal is successfully matched in the white list; and if the MAC address of the terminal cannot be successfully matched in the white list, the intelligent home terminal is not allowed to be connected with the external network.
In step 302, the smart home terminal determines whether the connection is successful. In one embodiment, whether the connection is successful or not may be confirmed through a feedback message of the home gateway. In another embodiment, data may be sent to the internet, and a determination may be made as to whether the data can be successfully arrived, and if not, a determination may be made that the data cannot be successfully arrived. If the connection is not successful, go to step 303; if the connection is successful, normal communication can be performed.
In step 303, the smart home terminal sends an authentication request to the home gateway. In one embodiment, the authentication request may include a terminal identifier and a password, and the authentication server includes the terminal identifier of the legitimate terminal, the password, and the predetermined address information. The home gateway sends the authentication request to the authentication server, and adds the predetermined address information of the terminal fed back by the authentication server to a home gateway white list if the authentication is passed. In one embodiment, the predetermined address information may be MAC address information of the terminal.
By the method, the intelligent home terminal can directly request for connection to the home gateway, and provides information to the home gateway to initiate authentication under the condition that the intelligent home terminal cannot be successfully matched with the white list, so that the home gateway can verify the information to the verification server, the user does not need to download APP (application) cooperation operation or perform equipment networking in a manual button mode, and the network access efficiency of the intelligent home terminal is improved.
In an embodiment, as shown in step 304 in fig. 3, after sending the authentication request to the home gateway, the smart home terminal waits for a predetermined time period, and after the time period ends, re-executes step 301, and sends an access request to the home gateway. In another embodiment, the smart home terminal may directly send data to the internet, and the home gateway sends the data to the external network when the MAC address of the verification terminal is successfully matched in the white list.
By the method, the intelligent home terminal can confirm the successful connection in time, so that the access efficiency is further improved.
A flowchart of one embodiment of the terminal connection method of the present invention is shown in fig. 4.
In step 401, the home gateway receives an authentication request from a terminal and forwards the authentication request to an authentication server. In one embodiment, the authentication request may include a terminal identifier and a password, and the authentication server includes the terminal identifier of the legitimate terminal, the password, and the predetermined address information.
In step 402, when the authentication server passes the authentication, the home gateway receives predetermined address information of the terminal from the authentication server and adds to a home gateway white list. In one embodiment, the predetermined address information may be MAC address information of the terminal.
By the method, the home gateway can forward the verification request from the intelligent home terminal to the verification server for verification, and the intelligent home terminal is added into the white list when the verification is passed, so that the intelligent home terminal can be connected in time when the intelligent home terminal requests connection again, and the network access efficiency of the intelligent home terminal is improved.
A flowchart of another embodiment of the terminal connection method of the present invention is shown in fig. 5.
In step 501, the home gateway receives an access request from a terminal. The access request may include predetermined address information of the terminal.
In step 502, the predetermined address information in the access request is matched with the predetermined address information of the terminal allowed to access in the white list of the home gateway.
In step 503, if the matching is successful, go to step 504; if the matching is not successful, go to step 505.
In step 504, the terminal is allowed to access the network, and data addressed to the external network from the terminal is transmitted to the external network.
In step 505, the terminal is denied access to the network. In one embodiment, data sent by a terminal to an external network can be intercepted; in another embodiment, an access unsuccessful message may be fed back to the terminal so that the terminal sends the authentication request in a timely manner.
By the method, the white list can be established in the home gateway, the verification is convenient, the verification of the verification server is avoided when the access is performed every time, and the access efficiency of the intelligent home terminal is improved.
A flowchart of one embodiment of a terminal authentication method of the present invention is shown in fig. 6.
In step 601, an authentication request is received from a home gateway. The authentication request may include a terminal identification and a password.
In step 602, the terminal identification and the password are matched with the terminal identification and the password of the legitimate terminal stored in the authentication server. In one embodiment, the authentication server may store therein a terminal identification, a password, and predetermined address information of a legitimate terminal
In step 603, it is determined whether the matching is successful. If the matching is successful, go to step 604; if the matching is unsuccessful, no reaction can be made, and verification failure information can also be fed back.
In step 604, the predetermined address information of the terminal is fed back to the home gateway.
By the method, the verification server can authenticate the verification request from the home gateway and feed back the preset address information of the terminal to the home gateway under the condition that the authentication is passed, so that the home gateway can conveniently add the intelligent home terminal into a white list, the intelligent home terminal can be connected in time when the intelligent home terminal requests connection again, and the network access efficiency of the intelligent home terminal is improved.
A schematic diagram of an embodiment of the smart home terminal of the present invention is shown in fig. 7. The access request transmission module 701 can transmit an access request to the home gateway. The access request may include MAC address information of the terminal. The home gateway allows the intelligent home terminal to be connected with an external network under the condition that the MAC address of the verification terminal is successfully matched in the white list; and if the MAC address of the terminal cannot be successfully matched in the white list, the intelligent home terminal is not allowed to be connected with the external network. The authentication request sending module 702 can send an authentication request to the home gateway in case of unsuccessful connection. In one embodiment, the authentication request may include a terminal identifier and a password, and the authentication server includes the terminal identifier of the legitimate terminal, the password, and the predetermined address information. The home gateway sends the authentication request to the authentication server, and adds the predetermined address information of the terminal fed back by the authentication server to a home gateway white list if the authentication is passed. In one embodiment, the predetermined address information may be MAC address information of the terminal.
The intelligent home terminal can directly request connection to the home gateway, information is provided for the home gateway to initiate authentication under the condition that the information cannot be successfully matched with the white list, the home gateway can verify the information by the verification server, the user does not need to download APP cooperation operation, or equipment networking is carried out in a manual button mode, and the network access efficiency of the intelligent home terminal is improved.
In one embodiment, after the verification request sending module 702 sends the verification request to the home gateway, the verification request sending module 702 waits for a predetermined time period, and after the time period is over, the access request sending module 701 sends the access request to the home gateway again. In another embodiment, the access request sending module 701 may send the data directly to the internet, and the home gateway sends the data to the external network if the MAC address of the authentication terminal is successfully matched in the white list.
The intelligent home terminal can confirm the successful connection in time, so that the access efficiency is further improved.
A schematic diagram of an embodiment of the home gateway of the present invention is shown in fig. 8. The authentication request receiving module 801 can receive an authentication request from a terminal and forward the authentication request to an authentication server. In one embodiment, the authentication request may include a terminal identifier and a password, and the authentication server includes the terminal identifier of the legitimate terminal, the password, and the predetermined address information. The white list generation unit 802 is capable of receiving predetermined address information of a terminal from the authentication server and adding to the home gateway white list when the authentication by the authentication server passes. In one embodiment, the predetermined address information may be MAC address information of the terminal.
The home gateway can forward the verification request from the intelligent home terminal to the verification server for verification, and adds the intelligent home terminal into the white list when the verification is passed, so that the intelligent home terminal can be connected in time when the intelligent home terminal requests connection again, and the network access efficiency of the intelligent home terminal is improved.
A schematic diagram of another embodiment of the home gateway of the present invention is shown in fig. 9. The structure and function of the verification request receiving module 901 and the white list generating unit 902 are similar to those in the embodiment of fig. 8. The home gateway further comprises an access request receiving module 903 and a white list matching module 904. The access request receiving module 903 is capable of receiving an access request from a terminal. The access request may include predetermined address information of the terminal. The white list matching module 904 can match the predetermined address information in the access request with the predetermined address information of the terminal allowed to access in the home gateway white list. If the matching is successful, allowing the terminal to access the network, and sending the data of which the target address is the external network from the terminal to the external network; and if the matching is unsuccessful, rejecting the terminal to access the network. In one embodiment, data sent by a terminal to an external network can be intercepted; in another embodiment, an access unsuccessful message may be fed back to the terminal so that the terminal sends the authentication request in a timely manner.
The home gateway can establish the white list, is convenient to verify, avoids the need of verifying the verification server during each access, and improves the access efficiency of the intelligent home terminal.
A schematic diagram of yet another embodiment of the terminal access system of the present invention is shown in fig. 10. The home gateway 1010 is capable of performing any of the network access methods mentioned above; the smart home terminal 1020 may be capable of performing any one of the above-mentioned terminal connection methods; the authentication server 1030 is capable of performing the terminal authentication method mentioned above. In the terminal access system, the intelligent home terminal can directly request connection to the home gateway, information is provided for the home gateway to initiate authentication under the condition that the intelligent home terminal cannot be successfully matched with the white list, the home gateway can forward the authentication request from the intelligent home terminal to the authentication server to carry out authentication, the authentication server feeds the preset address information of the terminal back to the home gateway under the condition that the authentication is passed, the home gateway adds the intelligent home terminal into the white list, so that the intelligent home terminal can be connected in time when the intelligent home terminal requests connection again, and the network access efficiency of the intelligent home terminal is improved.
In one embodiment, the authentication server 1030 may be constructed or operated by an organization similar to an operator, and provides information authentication support for the smart home terminal. The intelligent gateway and the intelligent home platform based on scale deployment can open a rapid networking capability for an industrial chain, realize that the intelligent home terminal accesses a WiFi network of the home gateway without authentication, improve the networking rate of the intelligent terminal and reduce the networking operation threshold of a user.
In one embodiment, as shown in fig. 10, the home gateway 1010 starts a Service Set Identifier (SSID) of a private wireless network, configures IPTABLES to be in a white list mode for a network interface corresponding to the SSID, and blocks internet connection by default. After the intelligent home terminal 1020 is connected with the SSID, the preset terminal identification and the preset key are sent to the networking verification service module of the home gateway, the networking verification service module forwards a terminal networking verification request to the verification server 1030, after the terminal identification and the key information are verified successfully through the cloud verification server 1030, the networking verification service module adds the MAC of the intelligent terminal into a networking white list, and then the terminal can normally perform internet connection.
Such terminal access system can improve on current home gateway's basis, need not the user and downloads APP cooperation operation, or equipment networking is carried out to the mode of manual button, has improved intelligent house terminal's network access efficiency, also is favorable to popularizing and applying simultaneously.
A signaling flow diagram of yet another embodiment of the terminal access system of the present invention is shown in fig. 11.
In 1101, the smart home terminal discovers the network and sends an access request to the home gateway. The access request may include predetermined address information of the terminal. In one embodiment, the predetermined address information is MAC address information.
In 1102, the smart home terminal sends network data to the home gateway, and the target address is the external internet.
In 1103, the home gateway matches the predetermined address information of the smart home terminal with the predetermined address information allowed to be accessed in the white list of the home gateway, and if the matching is unsuccessful, the data is intercepted. In one embodiment, the home gateway may also feed back the access unsuccessful information to the smart home terminal.
At 1104, the smart home terminal sends an authentication request to the home gateway. In one embodiment, the authentication request may include a terminal identification and a password.
In 1105, the home gateway forwards the authentication request to a dedicated authentication server. In one embodiment, the authentication server includes a terminal identification of a legitimate terminal, a password, and predetermined address information.
In 1106, the authentication server transmits the predetermined address information of the terminal to the home gateway in case the authentication is passed.
In 1107, the home gateway stores the predetermined address information of the terminal in a white list.
In 1108, the home gateway notifies the smart home terminal that the authentication is successful.
In 1109, the smart home terminal sends network data to the home gateway.
In 1110, the home gateway matches the predetermined address information of the smart home terminal with the predetermined address information allowed to be accessed in the white list of the home gateway. And if the matching is successful, releasing the data and sending the network data to the external Internet.
In the terminal access system, the intelligent home terminal can directly request connection to the home gateway, information is provided for the home gateway to initiate authentication under the condition that the intelligent home terminal cannot be successfully matched with the white list, the home gateway can forward the authentication request from the intelligent home terminal to the authentication server to carry out authentication, the authentication server feeds the preset address information of the terminal back to the home gateway under the condition that the authentication is passed, the home gateway adds the intelligent home terminal into the white list, so that the intelligent home terminal can be connected in time when the intelligent home terminal requests connection again, and the network access efficiency of the intelligent home terminal is improved.
The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems) and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
The present application has been described in detail so far. Some details well known in the art have not been described in order to avoid obscuring the concepts of the present application. It will be fully apparent to those skilled in the art from the foregoing description how to practice the presently disclosed embodiments.
The methods and apparatus of the present application may be implemented in a number of ways. For example, the methods and apparatus of the present application may be implemented by software, hardware, firmware, or any combination of software, hardware, and firmware. The above-described order for the steps of the method is for illustration only, and the steps of the method of the present application are not limited to the order specifically described above unless specifically stated otherwise. Further, in some embodiments, the present application may also be embodied as a program recorded in a recording medium, the program including machine-readable instructions for implementing a method according to the present application. Thus, the present application also covers a recording medium storing a program for executing the method according to the present application.
Finally, it should be noted that: the above examples are only intended to illustrate the technical solutions of the present application and not to limit them; although the present application has been described in detail with reference to preferred embodiments, those of ordinary skill in the art will understand that: modifications to the specific embodiments of the application or equivalent replacements of some of the technical features may still be made; all of which are intended to be encompassed within the scope of the claims appended hereto without departing from the spirit and scope of the present disclosure.
Claims (8)
1. A network access method, comprising:
the method comprises the steps that a terminal sends an access request to a home gateway so as to be connected with the home gateway under the condition that the white list of the home gateway is successfully matched, wherein the access request comprises preset address information of the terminal; the home gateway white list comprises preset address information of terminals allowing access;
if the connection is unsuccessful, the terminal sends a verification request to the home gateway so that the home gateway can forward the verification request to a verification server, and when the verification of the verification server is passed, the home gateway adds the preset address information of the terminal to a home gateway white list, wherein the verification request comprises a terminal identifier and a password; the authentication server comprises a terminal identification, a password and preset address information of a legal terminal;
after the verification request is sent, the terminal sends the access request or the network data to the home gateway after a preset time, so that the home gateway matches the preset address information of the terminal in the access request and the network data with the preset address information of the terminal which is allowed to be accessed in the home gateway white list.
2. A terminal connection method includes:
the home gateway receives an access request and/or network data from a terminal, wherein the access request comprises the preset address information of the terminal;
matching the preset address information of the terminal in the access request and/or the network data with the preset address information of the terminal allowed to be accessed in a white list of a home gateway;
if the matching is successful, allowing the terminal to access the network;
if the matching is unsuccessful, rejecting the terminal to access the network;
the home gateway receives an authentication request from a terminal, forwards the authentication request to an authentication server so as to perform authentication at the authentication server, wherein the terminal sends the authentication request under the condition that the terminal is refused to access a network, and the authentication request comprises a terminal identification and a password; the authentication server comprises a terminal identification, a password and preset address information of a legal terminal;
and when the verification of the verification server is passed, receiving the preset address information of the terminal from the verification server and adding the preset address information to a home gateway white list positioned in the home gateway.
3. The method of claim 2, further comprising:
the authentication server receives an authentication request from a home gateway, wherein the authentication request comprises a terminal identifier and a password;
the authentication server matches the terminal identification and the password with the terminal identification and the password of the legal terminal stored in the authentication server;
and if the matching is successful, feeding back the preset address information of the terminal to the home gateway.
4. An intelligent home terminal, comprising:
an access request sending module, configured to send an access request to a home gateway to connect to the home gateway when matching with a home gateway white list is successful, where the access request includes predetermined address information of a terminal; the home gateway white list comprises the preset address information of the terminals allowed to be accessed;
a verification request sending module, configured to send a verification request to the home gateway when connection is unsuccessful, so that the home gateway forwards the verification request to a verification server, and adds predetermined address information of the terminal to a home gateway white list when verification by the verification server is passed, where the verification request includes a terminal identifier and a password; the authentication server comprises a terminal identification, a password and preset address information of a legal terminal;
the access request sending module is further configured to send the access request or the network data to the home gateway after the verification request sending module sends the verification request and after a predetermined time, so that the home gateway matches predetermined address information of terminals allowed to be accessed in the white list of the home gateway with predetermined address information of terminals in the access request and the network data.
5. A home gateway, comprising:
an access request receiving module, configured to receive an access request and/or network data from a terminal;
the white list matching module is used for matching the preset address information of the terminal in the access request and/or the network data with the preset address information of the terminal allowed to be accessed in the white list of the home gateway; if the matching is successful, allowing the terminal to access the network; if the matching is unsuccessful, rejecting the terminal to access the network;
the authentication request receiving module is used for receiving an authentication request from a terminal and forwarding the authentication request to an authentication server so as to perform authentication at the authentication server, wherein the terminal sends the authentication request under the condition that the terminal is refused to access a network, and the authentication request comprises a terminal identification and a password; the authentication server comprises a terminal identification, a password and preset address information of a legal terminal;
and a white list generating unit for receiving predetermined address information of the terminal from the authentication server and adding the predetermined address information to a home gateway white list located at a home gateway when the authentication of the authentication server passes.
6. A terminal access system, comprising:
a smart terminal for performing the method of claim 1;
a home gateway for performing the method of claim 2 or 3; and the combination of (a) and (b),
the authentication server is used for receiving an authentication request from the home gateway, wherein the authentication request comprises a terminal identifier and a password; matching the terminal identification and the password with the terminal identification and the password of the legal terminal stored in the verification server; and if the matching is successful, feeding back the preset address information of the terminal to the home gateway.
7. A terminal access system, comprising:
a memory; and
a processor coupled to the memory, the processor configured to perform the method of any of claims 1-3 based on instructions stored in the memory.
8. A computer readable storage medium having stored thereon computer program instructions which, when executed by a processor, implement the steps of the method of any one of claims 1 to 3.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710480781.2A CN109121136B (en) | 2017-06-22 | 2017-06-22 | Network access method, terminal connection method, terminal verification method, gateway and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710480781.2A CN109121136B (en) | 2017-06-22 | 2017-06-22 | Network access method, terminal connection method, terminal verification method, gateway and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109121136A CN109121136A (en) | 2019-01-01 |
| CN109121136B true CN109121136B (en) | 2022-07-05 |
Family
ID=64732761
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710480781.2A Active CN109121136B (en) | 2017-06-22 | 2017-06-22 | Network access method, terminal connection method, terminal verification method, gateway and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109121136B (en) |
Families Citing this family (17)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110022556A (en) * | 2019-03-08 | 2019-07-16 | 佛山市云米电器科技有限公司 | A kind of method and system for realizing household electrical appliance networking by identiflication number |
| CN111757323A (en) * | 2019-03-27 | 2020-10-09 | 海湾安全技术有限公司 | Method for matching wireless networking of equipment, control terminal and fire protection and security system |
| CN109922160B (en) * | 2019-03-28 | 2021-07-06 | 全球能源互联网研究院有限公司 | Terminal secure access method, device and system based on power Internet of things |
| CN110740490A (en) * | 2019-10-22 | 2020-01-31 | 深圳市信锐网科技术有限公司 | Terminal network access method, gateway equipment, system, storage medium and device |
| CN112995092A (en) * | 2019-12-02 | 2021-06-18 | 阿里巴巴集团控股有限公司 | Data transmission method and device |
| CN111077788A (en) * | 2019-12-24 | 2020-04-28 | 翱捷科技(深圳)有限公司 | Method, device and system for controlling access of intelligent equipment |
| CN111800302B (en) * | 2020-08-25 | 2023-08-11 | 翱捷科技(深圳)有限公司 | Automatic network distribution method and system, central control gateway and Internet of things terminal |
| CN112333030B (en) * | 2020-11-24 | 2023-07-18 | 北京百度网讯科技有限公司 | Method, device, electronic equipment and storage medium for communication between private networks |
| CN112738041A (en) * | 2020-12-18 | 2021-04-30 | 南安昌晟消防科技有限公司 | Networking method for intelligent household equipment |
| CN112838949A (en) * | 2020-12-31 | 2021-05-25 | 欧普照明股份有限公司 | Network distribution method for gateway far end |
| CN112887982B (en) * | 2021-01-25 | 2022-01-25 | 绍兴文理学院元培学院 | Intelligent authority management method, system, terminal and storage medium based on network |
| CN113055385A (en) * | 2021-03-12 | 2021-06-29 | 绍兴文理学院元培学院 | WiFi network management method and system |
| CN113709739A (en) * | 2021-09-03 | 2021-11-26 | 四川启睿克科技有限公司 | Reliable management and rapid network access method and system for intelligent equipment |
| CN113852474B (en) * | 2021-09-23 | 2024-04-05 | 京东方科技集团股份有限公司 | Task processing method, gateway, computer readable storage medium and electronic device |
| CN114363104A (en) * | 2022-01-06 | 2022-04-15 | 武汉天常乐科技有限公司 | Method for automatically switching local area network control and Internet control in intelligent home control |
| CN114221822B (en) * | 2022-01-12 | 2023-10-27 | 杭州涂鸦信息技术有限公司 | Distribution network method, gateway device and computer readable storage medium |
| CN114698066A (en) * | 2022-03-17 | 2022-07-01 | 杭州控客信息技术有限公司 | Automatic network access method and system for intelligent household equipment |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103347030A (en) * | 2013-07-23 | 2013-10-09 | 熔点网讯(北京)科技有限公司 | Network sharing method |
| CN103607372A (en) * | 2013-08-19 | 2014-02-26 | 深信服网络科技(深圳)有限公司 | Authentication method and device for network access |
| CN104967997A (en) * | 2015-05-28 | 2015-10-07 | 广东欧珀移动通信有限公司 | Wireless network accessing method, Wi-Fi equipment, terminal equipment and system |
| CN105429933A (en) * | 2014-09-19 | 2016-03-23 | 中国电信股份有限公司 | Access method of network equipment in local area network, access equipment and system |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9167505B2 (en) * | 2007-10-08 | 2015-10-20 | Qualcomm Incorporated | Access management for wireless communication |
| CN102694704B (en) * | 2012-05-08 | 2015-07-15 | 北京邮电大学 | Home gateway, and distinguishing method of user identities thereof |
| CN104917775A (en) * | 2015-06-17 | 2015-09-16 | 北京汇为永兴科技有限公司 | Internet access method |
| CN106550360B (en) * | 2015-09-23 | 2020-06-23 | 中国电信股份有限公司 | WiFi connection method and system |
-
2017
- 2017-06-22 CN CN201710480781.2A patent/CN109121136B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103347030A (en) * | 2013-07-23 | 2013-10-09 | 熔点网讯(北京)科技有限公司 | Network sharing method |
| CN103607372A (en) * | 2013-08-19 | 2014-02-26 | 深信服网络科技(深圳)有限公司 | Authentication method and device for network access |
| CN105429933A (en) * | 2014-09-19 | 2016-03-23 | 中国电信股份有限公司 | Access method of network equipment in local area network, access equipment and system |
| CN104967997A (en) * | 2015-05-28 | 2015-10-07 | 广东欧珀移动通信有限公司 | Wireless network accessing method, Wi-Fi equipment, terminal equipment and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109121136A (en) | 2019-01-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109121136B (en) | Network access method, terminal connection method, terminal verification method, gateway and system | |
| EP3565369B1 (en) | Esim card activation method, wireless router and computer storage medium | |
| CN106656547B (en) | Method and device for updating network configuration of household electrical appliance | |
| CN104703170A (en) | Methods and equipment for downloading file of operator | |
| EP3038292B1 (en) | Method, apparatus and system for device management | |
| CN108306938B (en) | Method and device for automatically accessing internet of things product and gateway | |
| EP3824594B1 (en) | Apparatus and method for ssp device and server to negotiate digital certificates | |
| CN104683461B (en) | A kind of method, device and equipment that device configuration networks | |
| CN106550360B (en) | WiFi connection method and system | |
| US11356841B2 (en) | Method and apparatus for handling remote profile management exception | |
| CN108135022B (en) | Equipment control method, device, terminal and computer readable storage medium | |
| CN111353141B (en) | Intelligent device authority control method, server, user side device and electronic device | |
| CN110011885B (en) | Control authority binding method and device of electric appliance, storage medium and electric appliance | |
| EP3284310B1 (en) | Method and apparatus for end device discovering another end device | |
| CN106131834B (en) | Network connection method, network connection device and terminal | |
| WO2015131689A1 (en) | Sensor code-pairing processing method, apparatus, network platform device, and internet of things gateway | |
| CN104394050A (en) | Connection method and connection device for intelligent housing system | |
| CN110831245B (en) | Network connection method, device and router | |
| CN108541077B (en) | WPS-based rapid network distribution method and system for intelligent hardware equipment | |
| CN112040484A (en) | Password updating method and device, storage medium and electronic device | |
| CN111818528A (en) | Connection method and device of wireless local area network, storage medium and wireless access equipment | |
| CN107257558B (en) | Message forwarding method and device | |
| CN113810899A (en) | eSIM device configuration system, method, apparatus and storage medium | |
| CN111212428A (en) | Method for accessing household appliance to wireless local area network and household appliance | |
| CN109729515B (en) | Method for realizing machine-card binding, user identification card and Internet of things terminal |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |