CN110808996B - Network authentication method and device, electronic equipment and storage medium - Google Patents

Network authentication method and device, electronic equipment and storage medium Download PDF

Info

Publication number
CN110808996B
CN110808996B CN201911094640.2A CN201911094640A CN110808996B CN 110808996 B CN110808996 B CN 110808996B CN 201911094640 A CN201911094640 A CN 201911094640A CN 110808996 B CN110808996 B CN 110808996B
Authority
CN
China
Prior art keywords
top box
authenticated
set top
public network
network
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201911094640.2A
Other languages
Chinese (zh)
Other versions
CN110808996A (en
Inventor
匡心意
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Skyworth Digital Technology Co Ltd
Original Assignee
Shenzhen Skyworth Digital Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Skyworth Digital Technology Co Ltd filed Critical Shenzhen Skyworth Digital Technology Co Ltd
Priority to CN201911094640.2A priority Critical patent/CN110808996B/en
Publication of CN110808996A publication Critical patent/CN110808996A/en
Application granted granted Critical
Publication of CN110808996B publication Critical patent/CN110808996B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/436Interfacing a local distribution network, e.g. communicating with another STB or one or more peripheral devices inside the home
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication

Landscapes

  • Engineering & Computer Science (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Multimedia (AREA)
  • Small-Scale Networks (AREA)

Abstract

The embodiment of the invention discloses a network authentication method, a network authentication device, electronic equipment and a storage medium. When the set-top box to be authenticated is connected with the public network, establishing a port mapping relation with the public network to be interconnected with the public network, the set-top box to be authenticated can establish interconnection with the public network, the set-top box to be authenticated starts a set-top box hotspot, so that the terminal device is connected with the hotspot of the set-top box, receives the internet access request sent by the terminal device, the set-top box to be authenticated converts the device address of the terminal device into the external address of the set-top box according to the internet access request and the port mapping relation, and an authentication request is sent to the terminal equipment, so that the terminal equipment sends authentication information through the external address of the set-top box, and the set-top box to be authenticated performs authentication according to the authentication information, thereby solving the problem that the policy is violated and the authentication can be performed only by installing a browser on the set-top box to be authenticated in the prior art, achieving the purpose of meeting the policy and realizing the effect of helping the set-top box to be authenticated perform authentication through the authentication information input by the terminal equipment.

Description

Network authentication method and device, electronic equipment and storage medium
Technical Field
Embodiments of the present invention relate to communications technologies, and in particular, to a network authentication method and apparatus, an electronic device, and a storage medium.
Background
In recent years, when a mainstream broadband operator in china develops an interactive network television service, a set-top box gradually accesses to a dedicated network of the interactive network television in order to ensure service quality. At present, the set-top box is basically used in families, and only a password needs to be input when the set-top box is connected with an external network.
With the rise of services, more and more users purchase set top boxes to be used in public places, such as hospitals, hotels, trains and other public places. When the public network is used in a public place, the set-top box and the terminal are required to be connected with the public network together, a browser is used for accessing the authentication server, and then the authenticated password is input to allow the public network to be accessed. However, for policy reasons, the box does not allow installation of a browser, and it is difficult to enter a password into the box, which prevents authentication of the set-top box with the public network.
Disclosure of Invention
The embodiment of the invention provides a network authentication method, a network authentication device, electronic equipment and a storage medium, so as to achieve the purpose that authentication can be carried out on a set top box without a browser.
In a first aspect, an embodiment of the present invention provides a network authentication method, where the method includes:
when the set top box to be authenticated is connected with a public network, establishing a port mapping relation with the public network and interconnecting with the public network;
the set top box to be authenticated starts a set top box hotspot so that a terminal device is connected with the set top box hotspot and receives an internet access request sent by the terminal device;
the set-top box to be authenticated converts the equipment address of the terminal equipment into a set-top box external address according to the internet access request and the port mapping relation, and sends an authentication request to the terminal equipment so that the terminal equipment sends authentication information through the set-top box external address;
and the set top box to be authenticated authenticates according to the authentication information.
In a second aspect, an embodiment of the present invention further provides a network authentication apparatus, where the network authentication apparatus includes:
the system comprises a port mapping relation establishing module, a public network establishing module and a public network establishing module, wherein the port mapping relation establishing module is used for establishing the port mapping relation with the public network and interconnecting the public network when a set top box to be authenticated is connected with the public network;
the set top box hotspot starting module is used for starting a set top box hotspot by the set top box to be authenticated so as to enable the terminal equipment connected with the set top box to be authenticated to be connected with the set top box hotspot and receive an internet surfing request sent by the terminal equipment;
The equipment address conversion module is used for converting the equipment address of the terminal equipment into an external address of the set top box according to the internet access request and the port mapping relation and sending an authentication request to the terminal equipment if the set top box to be authenticated and the public network are successfully interconnected, so that the terminal equipment sends authentication information through the external address of the set top box;
and the authentication module is used for authenticating the set top box to be authenticated according to the authentication information.
In a third aspect, an embodiment of the present invention further provides an electronic device, including a memory, a processor, and a computer program stored on the memory and executable on the processor, where the processor implements the network authentication method according to any one of the first aspect when executing the computer program.
In a fourth aspect, an embodiment of the present invention further provides a storage medium containing computer-executable instructions, where the computer-executable instructions, when executed by a computer processor, implement the network authentication method according to any one of the first aspect.
The technical proposal provided by the embodiment of the invention establishes the port mapping relation with the public network and the interconnection with the public network when the set-top box to be authenticated is connected with the public network, can establish the interconnection between the set-top box to be authenticated and the public network, then the set-top box to be authenticated starts the set-top box hotspot so as to enable the terminal equipment to be connected with the set-top box hotspot and receive the internet access request sent by the terminal equipment, the set-top box to be authenticated converts the equipment address of the terminal equipment into the external address of the set-top box according to the internet access request and the port mapping relation and sends the authentication request to the terminal equipment, the terminal equipment sends the authentication information through the external address of the set top box, and the set top box to be authenticated performs authentication according to the authentication information, so that the problem that the set top box to be authenticated can be authenticated only by violating the policy and installing a browser on the set top box to be authenticated in the prior art is solved, the purpose of meeting the policy is achieved, and the effect of helping the set top box to be authenticated to perform authentication through the authentication information input by the terminal equipment is achieved.
Drawings
Fig. 1 is a schematic flowchart of a network authentication method according to an embodiment of the present invention;
fig. 2 is a schematic flowchart of a network authentication method according to a second embodiment of the present invention;
fig. 3 is a logic diagram of a network authentication method according to a second embodiment of the present invention;
fig. 4 is a flowchart illustrating a network authentication method according to a third embodiment of the present invention;
fig. 5 is a flowchart illustrating a network authentication apparatus according to a fourth embodiment of the present invention;
fig. 6 is a schematic structural diagram of an electronic device according to a fifth embodiment of the present invention.
Detailed Description
The present invention will be described in further detail with reference to the drawings and examples. It is to be understood that the specific embodiments described herein are merely illustrative of the invention and are not limiting of the invention. It should be further noted that, for the convenience of description, only some of the structures related to the present invention are shown in the drawings, not all of the structures.
Example one
Fig. 1 is a schematic flowchart of a network authentication method according to an embodiment of the present invention, where the embodiment is applicable to a situation where a terminal device assists a set-top box to be authenticated in performing authentication on the premise that the terminal device is connected to a hotspot of the set-top box to be authenticated, and the method may be executed by a network authentication apparatus, where the apparatus may be implemented by software and/or hardware and is generally integrated in an electronic device. Referring specifically to fig. 1, the method may include the steps of:
S110, when the set-top box to be authenticated is connected with the public network, establishing a port mapping relation with the public network and interconnecting with the public network.
A public network is understood to be a communication network used by public users, and is typically installed in public places such as hotels, stations, hospitals, and the like. The set-top box to be authenticated can be a network conversion device arranged between a public network and the terminal device, and can convert the network address of the public network into an address which can be directly accessed by the terminal device.
It can be understood that the set-top box to be authenticated cannot directly surf the internet after being connected to the public network, authentication needs to be performed through the authentication information, and the public network can be normally accessed only after the authentication is passed. In the prior art, after the set-top box to be authenticated is connected to the public network, a browser needs to be installed on the set-top box to be authenticated and a corresponding webpage needs to be accessed for authentication, but the mode violates a relevant policy. Different from the prior art, in the embodiment, when the set top box to be authenticated is connected to the public network, the set top box to be authenticated establishes a port mapping relationship with the public network to interconnect with the public network, that is, the set top box to be authenticated establishes a bridging relationship with the public network, so that the set top box to be authenticated can perform authentication subsequently according to the port mapping relationship.
And S120, the set top box to be authenticated starts the set top box hotspot so as to enable the terminal equipment to be connected with the set top box hotspot and receive an internet surfing request sent by the terminal equipment.
In this embodiment, the set top box to be authenticated may include a hotspot module and a WiFi module. The WiFi module can be responsible for being connected with a public network, the hotspot module can be responsible for being connected with the terminal device, and the set-top box hotspot can be started after the set-top box to be authenticated is connected with the public network and a port mapping relation with the public network is established, so that the terminal device is connected with the set-top box hotspot. Compared with the prior art, the set top box to be authenticated can be connected with the terminal equipment, authentication is carried out by using a browser of the terminal equipment, and the purpose of inputting the password on the set top box to be authenticated is avoided while the policy is obeyed.
Further, after the terminal device connects to the hotspot of the set-top box to be authenticated, a network access request, for example, a request for accessing a web page may be sent to the public network, and the set-top box to be authenticated receives the network access request, so as to perform subsequent authentication. The terminal equipment can be a mobile phone, a computer and other intelligent equipment.
S130, the set-top box to be authenticated converts the equipment address of the terminal equipment into the external address of the set-top box according to the internet access request and the port mapping relation, and sends the authentication request to the terminal equipment so that the terminal equipment sends authentication information through the external address of the set-top box.
It can be understood that the device address may be understood as an address allocated by the hotspot module of the set top box to be authenticated to the terminal device, and the terminal device may not access the public network through the device address. Therefore, the set top box to be authenticated needs to convert the device address into a set top box external address capable of accessing the public network, and can access the public network through the set top box external address and the port mapping relationship. Wherein the set-top box external address can be understood as the address of the public network connection located at the WiFi module.
Because the set-top box external address and the public network have a port mapping relation, the set-top box to be authenticated converts the equipment address into the set-top box external address, the terminal equipment can send a network surfing request to the public network through the set-top box external address, namely, the terminal equipment can be used as the set-top box to be authenticated to access the public network, the public network receives the network surfing request and sends the authentication request to the terminal equipment through the set-top box to be authenticated, so that the terminal equipment sends authentication information through the set-top box external address.
Illustratively, the present embodiment includes: the public network comprises a public network 1, a set top box 2 to be authenticated and a terminal device 3, wherein the public network address of the public network 1 is 202.20.54.4, the set top box external address of the set top box 2 to be authenticated is 202.20.54.5, the hotspot module address of the set top box 2 to be authenticated is 192.168.1.1, the device address of the terminal device 3 is 192.168.1.2, and after the port mapping relationship is established between the public network 1 and the set top box 2 to be authenticated, the set top box 2 to be authenticated can obtain the public network address: 202.20.54.4. it will be appreciated that the terminal device 3 cannot pass the device address: 192.168.1.2 access public network address: 202.20.54.4, the set-top box 2 to be authenticated sends the device address of the terminal device 3: 192.168.1.2 to set-top box external address: 202.20.54.5, so that the terminal device 3 can access the set-top box via the external address: 202.20.54.5 sends a request for surfing the internet to the public network 1, and the public network 1 sends the request to the public network 1 through the public network address: 202.20.54.4 to set top box external address: 202.20.54.5, to cause terminal device 3 to pass, via the set-top box external address: 202.20.54.5 receives the authentication request and sends authentication information to the public network 1.
And S140, the set top box to be authenticated authenticates according to the authentication information.
And after receiving the authentication information, the set top box to be authenticated can perform authentication according to the authentication information. Through the process, the set top box to be authenticated can transmit authentication information to be authenticated by using the terminal equipment for authentication.
The technical proposal provided by the embodiment of the invention establishes the port mapping relation with the public network and the interconnection with the public network when the set-top box to be authenticated is connected with the public network, can establish the interconnection between the set-top box to be authenticated and the public network, then the set-top box to be authenticated starts the set-top box hotspot so as to enable the terminal equipment to be connected with the set-top box hotspot and receive the internet access request sent by the terminal equipment, the set-top box to be authenticated converts the equipment address of the terminal equipment into the external address of the set-top box according to the internet access request and the port mapping relation and sends the authentication request to the terminal equipment, the terminal equipment sends the authentication information through the external address of the set top box, and the set top box to be authenticated performs authentication according to the authentication information, so that the problem that the set top box to be authenticated can perform authentication only by violating the policy and installing a browser on the set top box to be authenticated in the prior art is solved, the purpose of complying with the policy is achieved, and the effect of assisting the set top box to be authenticated to perform authentication through the authentication information input by the terminal equipment is achieved.
Example two
Fig. 3 is a flowchart illustrating a network authentication method according to a second embodiment of the present invention. The technical solution of this embodiment is refined based on the foregoing embodiment, and optionally, the establishing a port mapping relationship with the public network includes: acquiring the public network address and the public network port, and the external network address and the set top box port of the set top box to be authenticated; and according to the public network address and the public network port, converting the external network address into a target public network address and converting the set top box port into a target public network port. Referring specifically to fig. 2, the method of the present embodiment may include the following steps:
s210, when the set-top box to be authenticated is connected with a public network, the public network address and the public network port, and the external network address and the set-top box port of the set-top box to be authenticated are obtained.
Generally, when a set-top box to be authenticated is used to surf the internet, the set-top box to be authenticated needs to be connected with an external network and to judge the connected external network. The external network may include a public network and a private network, where the network address of the public network is generally a public network address, and the network address of the private network is generally a private network address. Thus, prior to establishing a port mapping relationship with a public network, the public network may be determined by: the set-top box to be authenticated is connected with an external network and acquires an external network address, and if the set-top box to be authenticated judges that the external network address is a public network address, the external network is determined to be a public network.
It is understood that the port mapping may be understood as mapping a port of an IP Address (Internet Protocol Address) of an external network host to a machine in an internal network and providing a corresponding service. Therefore, when the set top box to be authenticated establishes the port mapping relationship with the public network, the public network address and the public network port of the public network, and the external network address and the set top box port of the set top box to be authenticated, which are responsible for being connected with the public network, can be obtained, so that the set top box to be authenticated can establish the port mapping relationship according to the public network address, the public network port, the external network address and the set top box port.
S220, according to the public network address and the public network port, the external network address is converted into a target public network address and the set top box port is converted into a target public network port.
The target public network address can be understood as the public network address, and the target public network port can be understood as the public network port, that is, the set-top box to be authenticated can replace the IP address and the port information of the set-top box to be authenticated with the IP address and the port information of the public network by establishing a port mapping relationship with the public network.
And S230, starting the set-top box hotspot by the set-top box to be authenticated so that the terminal equipment is connected with the set-top box hotspot and receives the internet access request sent by the terminal equipment.
S240, the set-top box to be authenticated converts the equipment address of the terminal equipment into the external address of the set-top box according to the internet access request and the port mapping relation, and sends the authentication request to the terminal equipment so that the terminal equipment sends authentication information through the external address of the set-top box.
It should be noted that, in order to ensure that the set-top box to be authenticated and the public network are successfully interconnected, before the terminal device converts the device address, the internal network control module of the set-top box to be authenticated needs to send an interconnection data packet to the external network control module, and if the external network control module successfully receives the interconnection data packet, the set-top box to be authenticated determines that the set-top box to be authenticated is interconnected with the public network. The intranet control module can be understood as a hotspot module of the set top box to be authenticated, and the extranet control module can be understood as a WiFi module of the set top box to be authenticated.
Optionally, if the set-top box to be authenticated determines that the set-top box to be authenticated fails to be interconnected with the public network, the set-top box to be authenticated restarts the set-top box hotspot, and the intranet control module sends the interconnection data packet to the extranet control module again until the set-top box to be authenticated is interconnected with the public network.
And S250, the set top box to be authenticated authenticates according to the authentication information.
Exemplarily, referring to a logic schematic diagram of the network authentication method shown in fig. 3, fig. 3 provides a distribution network flow for this embodiment, when a to-be-authenticated set-top box is successfully connected to WiFi, establishing a port mapping relationship with a public network to interconnect with the public network, and determining whether the WiFi is in a hotel mode, wherein the WiFi in the hotel mode is the public network, if the WiFi is in the hotel mode, the to-be-authenticated set-top box starts a set-top box hotspot so that a terminal device is connected to the set-top box hotspot, the to-be-authenticated set-top box determines whether the interconnection with the public network is successful, if the interconnection is successful, an internet access request sent by the terminal device can be received, an address conversion module is started to convert a device address into a set-top box external address, and prompt the terminal device to connect to a corresponding hotspot, i.e. send an authentication request, prompt a user to input authentication information, and then the user inputs the authentication information to the terminal device, and sending the authentication information to the set top box to be authenticated so that the set top box to be authenticated completes authentication according to the authentication information.
According to the technical scheme provided by the embodiment of the invention, the external network address is converted into the target public network address and the set top box port is converted into the target public network port according to the public network address and the public network port by acquiring the public network address and the public network port as well as the external network address and the set top box port of the set top box to be authenticated, the IP address and the port information of the set top box to be authenticated can be replaced by the IP address and the port information of the public network, the aim of bridging with the public network is achieved, so that the set top box to be authenticated can be authenticated according to the port mapping relation subsequently, the aim of meeting the policy can be achieved, the terminal equipment is taken as the set top box to be authenticated, and the authentication information is sent by the terminal equipment to help the set top box to be authenticated to perform authentication.
EXAMPLE III
Fig. 4 is a flowchart illustrating a network authentication method according to a second embodiment of the present invention. The technical solution of this embodiment adds a new step on the basis of the above embodiment, and optionally, the set-top box to be authenticated authenticates according to the authentication information, and further includes: if the set top box to be authenticated is successfully authenticated, the set top box to be authenticated determines the antenna performance of the public network as the external network connection performance; and if the set top box to be authenticated is not successfully authenticated, determining the antenna performance of the public network as the hotspot authentication performance by the set top box to be authenticated. Referring specifically to fig. 4, the method of this embodiment may include the following steps:
s410, when the set top box to be authenticated is connected with the public network, establishing a port mapping relation with the public network and interconnecting the public network.
And S420, starting the set-top box hotspot by the set-top box to be authenticated so that the terminal equipment is connected with the set-top box hotspot and receives the internet access request sent by the terminal equipment.
And S430, the set-top box to be authenticated converts the equipment address of the terminal equipment into the external address of the set-top box according to the internet access request and the port mapping relation, and sends an authentication request to the terminal equipment so that the terminal equipment sends authentication information through the external address of the set-top box.
And S440, the set top box to be authenticated authenticates according to the authentication information.
S450, if the set top box to be authenticated is successfully authenticated, the set top box to be authenticated determines the antenna performance of the public network as the external network connection performance.
And S460, if the set top box to be authenticated is not successfully authenticated, determining the antenna performance of the public network as the hotspot authentication performance by the set top box to be authenticated.
It should be noted that, due to the constraint of hardware cost, the public network has only one WiFi antenna, so that the performance of the WiFi antenna is easily constrained, and the specific constraint condition can be understood as that if a hotspot of the public network is started when the set-top box to be authenticated is connected to the WiFi (i.e., the public network), the performance of the external network of the public network will be reduced by half. In order to solve the problem, the present embodiment divides the WiFi antenna performance into two cases, namely wlan0 (responsible for external network connection) and P2P (responsible for authentication hotspot), and in the authentication process of the set top box to be authenticated, the WiFi antenna performance includes wlan0 and P2P, that is, at this time, the WiFi antenna performance is averagely divided into wlan0 and P2P, and a check thread is used to determine whether the authentication is successful.
If the set top box to be authenticated is successfully authenticated and the set top box to be authenticated detects information passing authentication, the set top box to be authenticated determines the antenna performance as the external network connection performance, namely the terminal equipment can access the internet through the public network, so that the problems of low WiFi connection speed, low downloading speed and low signal intensity caused by opening a hot spot of the public network can be avoided; if the set top box to be authenticated is not successfully authenticated, namely the set top box to be authenticated does not detect information passing authentication, the set top box to be authenticated determines the antenna performance of the common network as the hotspot authentication performance, so that a hotspot signal is stronger, and terminal equipment can be connected to a hotspot of the common network more quickly.
Optionally, after the set-top box to be authenticated passes the authentication, in order to reduce the communication pressure of the wlan0, the set-top box to be authenticated may modify the local area network broadcast address of the local screen-casting protocol into a hotspot gateway broadcast, so that the terminal device may conveniently find the local screen-casting protocol in a hotspot, the influence on the wlan0 is reduced, and the network speed and the play smoothness of the terminal device are improved.
According to the technical scheme provided by the embodiment of the invention, when the set top box to be authenticated is authenticated according to the authentication information, the antenna performance of the public network can be controlled according to whether the authentication is successful, the WiFi connection speed, the downloading speed, the WiFi signal strength and the hot spot signal strength are ensured, the aim of selectively controlling the antenna performance is achieved, and the effect of more quickly connecting the WiFi or improving the hot spot signal strength is achieved. In addition, the local area network broadcasting address of the local screen projection protocol is modified into the hot spot gateway broadcasting, so that the effects of improving the network speed and the playing fluency of the terminal equipment can be achieved.
Example four
Fig. 5 is a schematic structural diagram of a network authentication apparatus according to a fourth embodiment of the present invention. Referring to fig. 5, the apparatus includes: a port mapping relationship establishing module 51, a set-top box hot spot starting module 52, a device address translation module 53 and an authentication module 54.
On the basis of the above technical solutions, the network authentication apparatus further includes: a public network determination module; the public network determining module is used for connecting the set top box to be authenticated with an external network and acquiring an external network address;
and if the set top box to be authenticated judges that the external network address is the public network address, determining the external network as the public network.
On the basis of the above technical solutions, the port mapping relationship establishing module 51 is further configured to obtain a public network address and a public network port, and an external network address and a set-top box port of the set-top box to be authenticated;
according to the public network address and the public network port, the external network address is converted into a target public network address, and the set top box port is converted into a target public network port.
On the basis of the above technical solutions, the network authentication apparatus further includes: an interconnection authentication module; the interconnection authentication module is used for sending an interconnection data packet to the external network control module by the internal network control module of the set top box to be authenticated;
and if the external network control module successfully receives the interconnection data packet, the set top box to be authenticated determines that the set top box to be authenticated is interconnected with the public network.
On the basis of the above technical solutions, the network authentication apparatus further includes: restarting the hot spot module of the set top box; and the set-top box hot spot module is restarted for restarting the set-top box hot spot if the set-top box to be authenticated determines that the set-top box to be authenticated fails to be interconnected with the public network, and the internal network control module sends the interconnection data packet to the external network control module again until the set-top box to be authenticated is interconnected with the public network.
On the basis of the above technical solutions, the network authentication apparatus further includes: an outer network performance determination module; the external network performance determining module is used for determining the antenna performance of the public network as the external network connection performance by the set top box to be authenticated if the set top box to be authenticated is successfully authenticated;
and if the set top box to be authenticated is not successfully authenticated, the set top box to be authenticated determines the antenna performance of the public network as the hotspot authentication performance.
On the basis of the above technical solutions, the network authentication apparatus further includes: a local screen projection protocol modification module; the local screen projection protocol modification module is used for modifying the local area network broadcast address of the local screen projection protocol into hot spot gateway broadcast by the set top box to be authenticated.
The technical proposal provided by the embodiment of the invention establishes the port mapping relation with the public network and the interconnection with the public network when the set-top box to be authenticated is connected with the public network, can establish the interconnection between the set-top box to be authenticated and the public network, then the set-top box to be authenticated starts the set-top box hotspot so as to enable the terminal equipment to be connected with the set-top box hotspot and receive the internet access request sent by the terminal equipment, the set-top box to be authenticated converts the equipment address of the terminal equipment into the external address of the set-top box according to the internet access request and the port mapping relation and sends the authentication request to the terminal equipment, the terminal equipment sends the authentication information through the external address of the set top box, and the set top box to be authenticated performs authentication according to the authentication information, so that the problem that the set top box to be authenticated can be authenticated only by violating the policy and installing a browser on the set top box to be authenticated in the prior art is solved, the purpose of meeting the policy is achieved, and the effect of helping the set top box to be authenticated to perform authentication through the authentication information input by the terminal equipment is achieved.
EXAMPLE five
Fig. 6 is a schematic structural diagram of an electronic device according to a fifth embodiment of the present invention. FIG. 6 illustrates a block diagram of an exemplary electronic device 12 suitable for use in implementing embodiments of the present invention. The electronic device 12 shown in fig. 6 is only an example and should not bring any limitation to the function and the scope of use of the embodiment of the present invention.
As shown in FIG. 6, electronic device 12 is embodied in the form of a general purpose computing device. The components of electronic device 12 may include, but are not limited to: one or more processors or processing units 16, a system memory 28, and a bus 18 that couples various system components including the system memory 28 and the processing unit 16.
Bus 18 represents one or more of any of several types of bus structures, including a memory bus or memory controller, a peripheral bus, an accelerated graphics port, and a processor or local bus using any of a variety of bus architectures. By way of example, such architectures include, but are not limited to, Industry Standard Architecture (ISA) bus, micro-channel architecture (MAC) bus, enhanced ISA bus, Video Electronics Standards Association (VESA) local bus, and Peripheral Component Interconnect (PCI) bus.
Electronic device 12 typically includes a variety of computer system readable media. Such media may be any available media that is accessible by electronic device 12 and includes both volatile and nonvolatile media, removable and non-removable media.
The system memory 28 may include computer system readable media in the form of volatile memory, such as Random Access Memory (RAM)30 and/or cache memory 32. The electronic device 12 may further include other removable/non-removable, volatile/nonvolatile computer system storage media. By way of example only, storage system 34 may be used to read from and write to non-removable, nonvolatile magnetic media (not shown in FIG. 6, commonly referred to as a "hard drive"). Although not shown in FIG. 6, a magnetic disk drive for reading from and writing to a removable, nonvolatile magnetic disk (e.g., a "floppy disk") and an optical disk drive for reading from or writing to a removable, nonvolatile optical disk (e.g., a CD-ROM, DVD-ROM, or other optical media) may be provided. In these cases, each drive may be connected to bus 18 by one or more data media interfaces. Memory 28 may include at least one program product having a set of program modules (e.g., a port mapping relationship establishing module 51, a set-top box hotspot initiating module 52, a device address translation module 53 and an authentication module 54 of a network authentication device) configured to perform the functions of embodiments of the invention.
A program/utility 44 having a set of program modules 46 (e.g., a port mapping establishment module 51, a set-top box hotspot initiation module 52, a device address translation module 53, and an authentication module 54 of a network authentication device) may be stored, for example, in memory 28, such program modules 46 including, but not limited to, an operating system, one or more application programs, other program modules, and program data, each of which, or some combination thereof, may comprise an implementation of a network environment. Program modules 46 generally carry out the functions and/or methodologies of the described embodiments of the invention.
The electronic device 12 may also communicate with one or more external devices 14 (e.g., keyboard, pointing device, display 24, etc.), one or more devices that enable a user to interact with the electronic device 12, and/or any device (e.g., network card, modem, etc.) that enables the electronic device 12 to communicate with one or more other computing devices. Such communication may be through an input/output (I/O) interface 22. Also, the electronic device 12 may communicate with one or more networks (e.g., a Local Area Network (LAN), a Wide Area Network (WAN), and/or a public network such as the Internet) via the network adapter 20. As shown, the network adapter 20 communicates with the other modules of the electronic device 12 over the bus 18. It should be understood that although not shown in the figures, other hardware and/or software modules may be used in conjunction with electronic device 12, including but not limited to: microcode, device drivers, redundant processing units, external disk drive arrays, RAID systems, tape drives, and data backup storage systems, among others.
The processing unit 16 executes various functional applications and data processing by executing programs stored in the system memory 28, for example, to implement a network authentication method provided by an embodiment of the present invention, the method including:
when the set top box to be authenticated is connected with a public network, establishing a port mapping relation with the public network to be interconnected with the public network;
the set top box to be authenticated starts a set top box hotspot so that the terminal equipment is connected with the set top box hotspot and receives an internet surfing request sent by the terminal equipment;
the set-top box to be authenticated converts the equipment address of the terminal equipment into the external address of the set-top box according to the internet access request and the port mapping relation, and sends an authentication request to the terminal equipment so that the terminal equipment sends authentication information through the external address of the set-top box;
and the set top box to be authenticated authenticates according to the authentication information.
The processing unit 16 executes various functional applications and data processing by executing programs stored in the system memory 28, for example, to implement a network authentication method provided by an embodiment of the present invention.
Of course, those skilled in the art can understand that the processor may also implement the technical solution of the network authentication method provided in any embodiment of the present invention.
EXAMPLE six
An embodiment of the present invention further provides a computer-readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, implements a network authentication method provided in an embodiment of the present invention, where the method includes:
when the set top box to be authenticated is connected with a public network, establishing a port mapping relation with the public network to be interconnected with the public network;
the set top box to be authenticated starts a set top box hotspot so that the terminal equipment is connected with the set top box hotspot and receives an internet surfing request sent by the terminal equipment;
the set-top box to be authenticated converts the equipment address of the terminal equipment into the external address of the set-top box according to the internet access request and the port mapping relation, and sends an authentication request to the terminal equipment so that the terminal equipment sends authentication information through the external address of the set-top box;
and the set top box to be authenticated authenticates according to the authentication information.
Of course, the computer program stored on the computer-readable storage medium provided in the embodiments of the present invention is not limited to the above method operations, and may also perform related operations in a network authentication method provided in any embodiment of the present invention.
Computer storage media for embodiments of the invention may employ any combination of one or more computer-readable media. The computer readable medium may be a computer readable signal medium or a computer readable storage medium. A computer readable storage medium may be, for example, but not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, or device, or any combination of the foregoing. More specific examples (a non-exhaustive list) of the computer readable storage medium would include the following: an electrical connection having one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing. In the context of this document, a computer readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, or device.
The computer readable signal medium may include a port map, a web request, a device address, a set-top box external address, authentication information, etc. carrying computer readable program code. The propagated port mapping relation, the network access request, the equipment address, the external address of the set-top box, the authentication information and other forms. A computer readable signal medium may be any computer readable medium that is not a computer readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, or device.
Program code embodied on a computer readable medium may be transmitted using any appropriate medium, including but not limited to wireless, wireline, optical fiber cable, RF, etc., or any suitable combination of the foregoing.
Computer program code for carrying out operations for aspects of the present invention may be written in any combination of one or more programming languages, including an object oriented programming language such as Java, Smalltalk, C + +, or the like, as well as conventional procedural programming languages, such as the "C" programming language or similar programming languages. The program code may execute entirely on the user's computer, partly on the user's computer, as a stand-alone software package, partly on the user's computer and partly on a remote computer or entirely on the remote computer or server. In the case of a remote computer, the remote computer may be connected to the user's computer through any type of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or the connection may be made to an external computer (for example, through the Internet using an Internet service provider).
It should be noted that, in the embodiment of the network authentication apparatus, the included modules are only divided according to functional logic, but are not limited to the above division, as long as the corresponding functions can be implemented; in addition, the specific names of the functional units are only for the convenience of distinguishing from each other, and are not used for limiting the protection scope of the present invention.
It is to be noted that the foregoing description is only exemplary of the invention and that the principles of the technology may be employed. It will be understood by those skilled in the art that the present invention is not limited to the particular embodiments described herein, but is capable of various obvious changes, rearrangements and substitutions as will now become apparent to those skilled in the art without departing from the scope of the invention. Therefore, although the present invention has been described in greater detail by the above embodiments, the present invention is not limited to the above embodiments, and may include other equivalent embodiments without departing from the spirit of the present invention, and the scope of the present invention is determined by the scope of the appended claims.

Claims (9)

1. A method of network authentication, comprising:
when the set top box to be authenticated is connected with a public network, establishing a port mapping relation with the public network and interconnecting with the public network;
The set top box to be authenticated starts a set top box hotspot so that a terminal device is connected with the set top box hotspot and receives an internet access request sent by the terminal device;
the set top box to be authenticated converts the equipment address of the terminal equipment into a set top box external address according to the internet access request and the port mapping relation, and sends an authentication request to the terminal equipment so that the terminal equipment sends authentication information through the set top box external address;
the set top box to be authenticated authenticates according to the authentication information;
if the set top box to be authenticated is successfully authenticated, the set top box to be authenticated determines the antenna performance of the public network as the external network connection performance;
if the set top box to be authenticated is not successfully authenticated, determining the antenna performance of the public network as the hotspot authentication performance by the set top box to be authenticated;
during the authentication process of the set top box to be authenticated, the antenna performance comprises wlan0 and P2P.
2. The method of claim 1, wherein prior to said establishing a port mapping relationship with said public network, said method further comprises:
the set top box to be authenticated is connected with an external network and acquires an external network address;
And if the set top box to be authenticated judges that the external network address is a public network address, determining the external network as the public network.
3. The method of claim 2, wherein establishing the port mapping relationship with the public network comprises:
acquiring the public network address and the public network port, and the external address and the set top box port of the set top box to be authenticated;
and according to the public network address and the public network port, converting the external address into a target public network address and converting the set top box port into a target public network port.
4. The method according to claim 1 or 2, wherein before the set-top box to be authenticated converts the device address of the terminal device into a set-top box external address according to the internet access request and the port mapping relationship, the method further comprises:
the internal network control module of the set top box to be authenticated sends an interconnection data packet to the external network control module;
and if the external network control module successfully receives the interconnection data packet, the set top box to be authenticated determines that the set top box to be authenticated is interconnected with the public network.
5. The method of claim 4, further comprising:
And if the set top box to be authenticated determines that the interconnection between the set top box to be authenticated and the public network fails, restarting a set top box hot spot by the set top box to be authenticated, and sending the interconnection data packet to the outer network control module again by the inner network control module until the interconnection between the set top box to be authenticated and the public network is established.
6. The method of claim 1, wherein if the set-top box to be authenticated is successfully authenticated, the method further comprises:
and the set top box to be authenticated modifies the local area network broadcast address of the local screen projection protocol into hot spot gateway broadcast.
7. A network authentication apparatus, comprising:
the terminal mapping relation establishing module is used for establishing a terminal mapping relation with a public network and interconnecting the terminal mapping relation with the public network when the set top box to be authenticated is connected with the public network;
the set top box hotspot starting module is used for starting the set top box hotspot by the set top box to be authenticated so as to enable the terminal equipment connected with the set top box to be authenticated to be connected with the set top box hotspot and receive an internet surfing request sent by the terminal equipment;
the equipment address conversion module is used for converting the equipment address of the terminal equipment into an external address of the set top box according to the internet access request and the port mapping relation and sending an authentication request to the terminal equipment so that the terminal equipment sends authentication information through the external address of the set top box if the set top box to be authenticated is successfully interconnected with the public network;
The authentication module is used for authenticating the set top box to be authenticated according to the authentication information;
an outer network performance determination module; the external network performance determining module is used for determining the antenna performance of the public network as the external network connection performance by the set top box to be authenticated if the set top box to be authenticated is successfully authenticated;
if the set top box to be authenticated is not successfully authenticated, determining the antenna performance of the public network as the hotspot authentication performance by the set top box to be authenticated;
during the authentication process of the set top box to be authenticated, the antenna performance comprises wlan0 and P2P.
8. An electronic device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, wherein the processor implements the network authentication method according to any one of claims 1 to 6 when executing the computer program.
9. A storage medium containing computer-executable instructions which, when executed by a computer processor, implement the network authentication method of any one of claims 1-6.
CN201911094640.2A 2019-11-11 2019-11-11 Network authentication method and device, electronic equipment and storage medium Active CN110808996B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201911094640.2A CN110808996B (en) 2019-11-11 2019-11-11 Network authentication method and device, electronic equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201911094640.2A CN110808996B (en) 2019-11-11 2019-11-11 Network authentication method and device, electronic equipment and storage medium

Publications (2)

Publication Number Publication Date
CN110808996A CN110808996A (en) 2020-02-18
CN110808996B true CN110808996B (en) 2022-06-28

Family

ID=69501817

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201911094640.2A Active CN110808996B (en) 2019-11-11 2019-11-11 Network authentication method and device, electronic equipment and storage medium

Country Status (1)

Country Link
CN (1) CN110808996B (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111385631B (en) * 2020-03-04 2022-05-24 海信视像科技股份有限公司 Display device, communication method and storage medium
CN111930329B (en) * 2020-09-15 2021-02-19 深圳乐播科技有限公司 Screen projection method, device and equipment based on PIN code and storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101360010A (en) * 2008-09-19 2009-02-04 中山大学 Set-top box remote monitoring method based on internet service station
CN102148767A (en) * 2011-05-12 2011-08-10 杭州华三通信技术有限公司 Network address translation (NAT)-based data routing method and device
CN105553931A (en) * 2015-11-27 2016-05-04 深圳市美贝壳科技有限公司 Mobile phone and household intelligent equipment rapid activation and binding method
CN106899710A (en) * 2017-04-26 2017-06-27 上海优刻得信息科技有限公司 IP address conversion method, IP address conversion device and gateway system

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7631325B2 (en) * 2005-11-02 2009-12-08 At&T Intellectual Property I, L.P. System and method of authorizing a set top box device in an internet protocol television system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101360010A (en) * 2008-09-19 2009-02-04 中山大学 Set-top box remote monitoring method based on internet service station
CN102148767A (en) * 2011-05-12 2011-08-10 杭州华三通信技术有限公司 Network address translation (NAT)-based data routing method and device
CN105553931A (en) * 2015-11-27 2016-05-04 深圳市美贝壳科技有限公司 Mobile phone and household intelligent equipment rapid activation and binding method
CN106899710A (en) * 2017-04-26 2017-06-27 上海优刻得信息科技有限公司 IP address conversion method, IP address conversion device and gateway system

Also Published As

Publication number Publication date
CN110808996A (en) 2020-02-18

Similar Documents

Publication Publication Date Title
US10448082B2 (en) Information exchanging method and device, audio terminal and computer-readable storage medium
US10193971B2 (en) Method, server and system for application synchronization
RU2631137C2 (en) Connection of devices
US10516666B2 (en) Authentication method, apparatus, and system
CN114025021B (en) Communication method, system, medium and electronic equipment crossing Kubernetes cluster
US20220022036A1 (en) Security verification method and system, computer device and medium
US8848670B2 (en) Authentication system and authentication method in wireless LAN environment
CN110808996B (en) Network authentication method and device, electronic equipment and storage medium
JP2009009330A (en) Information processor, information processing system and control method for information processor
KR101620254B1 (en) Method and apparatus for controlling access
CN111049946B (en) Portal authentication method, portal authentication system, electronic equipment and storage medium
CN101321174A (en) Interactive network television terminal supporting multi-service and its implementing method
US20170054765A1 (en) Systems and methods for establishing a control channel between a virtualization server and a client device
WO2017202261A1 (en) Network backup reconnection method and apparatus, and set-top box
WO2016150191A1 (en) Data sharing method and device
US8560817B2 (en) Information processing apparatus, information processing system, computer program and information processing method, determining whether operating environment can be assigned
US20180337922A1 (en) Method and device for controlling smart device, server and storage medium
US20160285949A1 (en) Wireless login-based remote control method and device
US11303506B2 (en) Method, remote device and computer-readable medium for reselecting principal core device
CN113038192B (en) Video processing method and device, electronic equipment and storage medium
WO2021121040A1 (en) Broadband access method and apparatus, device, and storage medium
CN114866247B (en) Communication method, device, system, terminal and server
KR102566262B1 (en) Service server and operating method thereof
KR101905492B1 (en) Apparatus and method for supporting multiple standard protocols in media terminal
US20230308448A1 (en) System, method, and pattern for integrating incompatible oidc implementations

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant