CN110999356A - 网络安全管理的方法及装置 - Google Patents
网络安全管理的方法及装置 Download PDFInfo
- Publication number
- CN110999356A CN110999356A CN201780093005.5A CN201780093005A CN110999356A CN 110999356 A CN110999356 A CN 110999356A CN 201780093005 A CN201780093005 A CN 201780093005A CN 110999356 A CN110999356 A CN 110999356A
- Authority
- CN
- China
- Prior art keywords
- session
- network
- authentication
- data network
- terminal device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0815—Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/60—Context-dependent security
- H04W12/69—Identity-dependent
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W76/00—Connection management
- H04W76/10—Connection setup
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W80/00—Wireless network protocols or protocol adaptations to wireless operation
- H04W80/08—Upper layer protocols
- H04W80/10—Upper layer protocols adapted for application session management, e.g. SIP [Session Initiation Protocol]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Mobile Radio Communication Systems (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Computer And Data Communications (AREA)
- Telephonic Communication Services (AREA)
Abstract
本申请实施例提供了一种网络安全管理的方法及装置,所述方法包括:第一网络设备接收终端设备发送的会话请求,所述会话请求用于请求建立与第一数据网络的第一会话,所述会话请求中包括第一会话的第一认证信息,所述第一认证信息包括所述第一数据网络的标识信息;第一网络设备获取所述终端设备的第二会话的第二认证信息,所述第二认证信息中包括所述第二会话所连接的第二数据网络的标识信息;若所述第一数据网络的标识信息与第二数据网络的标识信息相同,所述第一网络设备则授权所述终端设备与所述第一数据网络建立所述第一会话。采用本申请实施例,具有可提高终端设备的认证效率,节省终端设备认证的资源消耗,增强网络安全管理的适用性的优点。
Description
PCT国内申请,说明书已公开。
Claims (1)
- PCT国内申请,权利要求书已公开。
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211413375.1A CN115835203A (zh) | 2017-07-20 | 2017-07-20 | 网络安全管理的方法及装置 |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| PCT/SG2017/050368 WO2019017837A1 (zh) | 2017-07-20 | 2017-07-20 | 网络安全管理的方法及装置 |
Related Child Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211413375.1A Division CN115835203A (zh) | 2017-07-20 | 2017-07-20 | 网络安全管理的方法及装置 |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110999356A true CN110999356A (zh) | 2020-04-10 |
| CN110999356B CN110999356B (zh) | 2022-11-18 |
Family
ID=65015167
Family Applications (2)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211413375.1A Pending CN115835203A (zh) | 2017-07-20 | 2017-07-20 | 网络安全管理的方法及装置 |
| CN201780093005.5A Active CN110999356B (zh) | 2017-07-20 | 2017-07-20 | 网络安全管理的方法及装置 |
Family Applications Before (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211413375.1A Pending CN115835203A (zh) | 2017-07-20 | 2017-07-20 | 网络安全管理的方法及装置 |
Country Status (8)
| Country | Link |
|---|---|
| US (2) | US11477242B2 (zh) |
| EP (2) | EP3657894B1 (zh) |
| JP (1) | JP7035163B2 (zh) |
| KR (1) | KR102345932B1 (zh) |
| CN (2) | CN115835203A (zh) |
| AU (1) | AU2017423732B2 (zh) |
| BR (1) | BR112020000932A2 (zh) |
| WO (1) | WO2019017837A1 (zh) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111639116A (zh) * | 2020-05-15 | 2020-09-08 | 中国银联股份有限公司 | 数据访问连接会话保护方法以及装置 |
| CN111638997A (zh) * | 2020-05-28 | 2020-09-08 | 中国联合网络通信集团有限公司 | 数据恢复方法、装置及网络设备 |
| CN112039838A (zh) * | 2020-07-15 | 2020-12-04 | 中国电子科技集团公司第三十研究所 | 一种适用于移动通信不同应用场景的二次认证方法和系统 |
| CN113489747A (zh) * | 2021-08-17 | 2021-10-08 | 中国联合网络通信集团有限公司 | 会话连接方法、装置及终端 |
| CN113784346A (zh) * | 2020-05-22 | 2021-12-10 | 华为技术有限公司 | 认证授权的方法和装置 |
| CN114640994A (zh) * | 2020-12-16 | 2022-06-17 | 中国电信股份有限公司 | 协议数据单元会话鉴权认证方法、系统和相关设备 |
| CN114697963A (zh) * | 2022-03-29 | 2022-07-01 | 中国南方电网有限责任公司 | 终端的身份认证方法、装置、计算机设备和存储介质 |
| CN114978747A (zh) * | 2022-06-10 | 2022-08-30 | 中国电信股份有限公司 | 注册认证方法、装置、电子设备及存储介质 |
| CN117134947A (zh) * | 2023-07-31 | 2023-11-28 | 广州迪迪信息科技有限公司 | 一种网络信息安全分析管理系统 |
| WO2024065705A1 (zh) * | 2022-09-30 | 2024-04-04 | 北京小米移动软件有限公司 | 应用功能授权方法及装置 |
Families Citing this family (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111641949B (zh) * | 2019-03-01 | 2022-05-31 | 华为技术有限公司 | 一种认证结果更新的方法和通信装置 |
| CN112672336B (zh) * | 2019-09-30 | 2024-04-30 | 华为技术有限公司 | 实现外部认证的方法、通信装置及通信系统 |
| US11777935B2 (en) | 2020-01-15 | 2023-10-03 | Cisco Technology, Inc. | Extending secondary authentication for fast roaming between service provider and enterprise network |
| CN113395238B (zh) * | 2020-03-12 | 2022-09-23 | 华为技术有限公司 | 一种认证授权方法及对应装置 |
| US11706619B2 (en) | 2020-03-31 | 2023-07-18 | Cisco Technology, Inc. | Techniques to facilitate fast roaming between a mobile network operator public wireless wide area access network and an enterprise private wireless wide area access network |
| US11765581B2 (en) | 2020-03-31 | 2023-09-19 | Cisco Technology, Inc. | Bootstrapping fast transition (FT) keys on wireless local area access network nodes based on private wireless wide area access network information |
| CN113472724B (zh) * | 2020-03-31 | 2023-03-24 | 中国联合网络通信集团有限公司 | 一种网络认证方法、设备及系统 |
| US11778463B2 (en) | 2020-03-31 | 2023-10-03 | Cisco Technology, Inc. | Techniques to generate wireless local area access network fast transition key material based on authentication to a private wireless wide area access network |
| CN113573298B (zh) * | 2020-04-10 | 2022-05-24 | 华为技术有限公司 | 一种通信方法及装置 |
| WO2022134089A1 (zh) * | 2020-12-25 | 2022-06-30 | 华为技术有限公司 | 一种安全上下文生成方法、装置及计算机可读存储介质 |
| CN118119037A (zh) * | 2022-11-29 | 2024-05-31 | 中移(成都)信息通信科技有限公司 | 通信系统、方法、装置、相关设备及存储介质 |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101656956A (zh) * | 2008-08-22 | 2010-02-24 | 华为技术有限公司 | 一种接入3gpp网络的方法、系统和网关 |
| US20120102174A1 (en) * | 2009-06-19 | 2012-04-26 | Zte Corporation | Policy And Charging Control Method And System For Multi-PDN Connections Of Single APN |
| CN103533666A (zh) * | 2012-07-02 | 2014-01-22 | 中兴通讯股份有限公司 | 分组数据网络连接建立方法及装置 |
| CN106302376A (zh) * | 2015-06-29 | 2017-01-04 | 中兴通讯股份有限公司 | 重认证识别方法、演进分组数据网关及系统 |
| US20170027007A1 (en) * | 2011-11-04 | 2017-01-26 | Telefonaktiebolaget Lm Ericsson (Publ) | Method and Apparatus for Establishing and Using PDN Connections |
Family Cites Families (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7769838B2 (en) | 2001-08-23 | 2010-08-03 | The Directv Group, Inc. | Single-modem multi-user virtual private network |
| WO2008099254A2 (en) * | 2007-02-12 | 2008-08-21 | Nokia Corporation | Authorizing n0n-3gpp ip access during tunnel establishment |
| US8780856B2 (en) * | 2007-09-18 | 2014-07-15 | Telefonaktiebolaget Lm Ericsson (Publ) | Inter-system handoffs in multi-access environments |
| CN101827112B (zh) * | 2010-05-25 | 2016-05-11 | 中兴通讯股份有限公司 | 上网认证服务器识别客户端软件的方法及系统 |
| US9439067B2 (en) | 2011-09-12 | 2016-09-06 | George Cherian | Systems and methods of performing link setup and authentication |
| EP2675203B1 (en) | 2012-06-11 | 2019-11-27 | BlackBerry Limited | Enabling multiple authentication applications |
| US9479934B2 (en) * | 2013-12-13 | 2016-10-25 | Parallel Wireless, Inc. | Virtualization of the evolved packet core to create a local EPC |
| CN103944737B (zh) | 2014-05-06 | 2018-11-02 | 中国联合网络通信集团有限公司 | 用户身份认证方法、第三方认证平台、运营商认证平台 |
| KR101795786B1 (ko) * | 2015-11-19 | 2017-11-08 | 에스케이 텔레콤주식회사 | 이동통신 시스템에서 코어 네트워크를 선택하는 방법 및 장치 |
| CN105873059A (zh) | 2016-06-08 | 2016-08-17 | 中国南方电网有限责任公司电网技术研究中心 | 配电通信无线专网的联合身份认证方法和系统 |
| KR102408155B1 (ko) * | 2016-07-18 | 2022-06-14 | 텔레호낙티에볼라게트 엘엠 에릭슨(피유비엘) | 비밀 식별자를 사용하는 사용자 장비에 관련된 동작 |
| US10560879B2 (en) * | 2016-08-05 | 2020-02-11 | Qualcomm Incorporated | Techniques for establishing a secure connection between a wireless device and a local area network via an access node |
| WO2018137873A1 (en) | 2017-01-27 | 2018-08-02 | Telefonaktiebolaget Lm Ericsson (Publ) | Secondary authentication of a user equipment |
| US11196728B1 (en) * | 2021-03-29 | 2021-12-07 | Fmr Llc | Caching login sessions to access a software testing environment |
-
2017
- 2017-07-20 AU AU2017423732A patent/AU2017423732B2/en active Active
- 2017-07-20 EP EP17918260.5A patent/EP3657894B1/en active Active
- 2017-07-20 CN CN202211413375.1A patent/CN115835203A/zh active Pending
- 2017-07-20 KR KR1020207004389A patent/KR102345932B1/ko active IP Right Grant
- 2017-07-20 CN CN201780093005.5A patent/CN110999356B/zh active Active
- 2017-07-20 JP JP2020502612A patent/JP7035163B2/ja active Active
- 2017-07-20 EP EP22194130.5A patent/EP4167678A1/en active Pending
- 2017-07-20 WO PCT/SG2017/050368 patent/WO2019017837A1/zh unknown
- 2017-07-20 BR BR112020000932-6A patent/BR112020000932A2/pt unknown
-
2020
- 2020-01-17 US US16/746,479 patent/US11477242B2/en active Active
-
2022
- 2022-09-07 US US17/939,637 patent/US11895157B2/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101656956A (zh) * | 2008-08-22 | 2010-02-24 | 华为技术有限公司 | 一种接入3gpp网络的方法、系统和网关 |
| US20120102174A1 (en) * | 2009-06-19 | 2012-04-26 | Zte Corporation | Policy And Charging Control Method And System For Multi-PDN Connections Of Single APN |
| US20170027007A1 (en) * | 2011-11-04 | 2017-01-26 | Telefonaktiebolaget Lm Ericsson (Publ) | Method and Apparatus for Establishing and Using PDN Connections |
| CN103533666A (zh) * | 2012-07-02 | 2014-01-22 | 中兴通讯股份有限公司 | 分组数据网络连接建立方法及装置 |
| CN106302376A (zh) * | 2015-06-29 | 2017-01-04 | 中兴通讯股份有限公司 | 重认证识别方法、演进分组数据网关及系统 |
Non-Patent Citations (4)
| Title |
|---|
| ""23501-030_cl"", 《3GPP TSG_RAN\TSG_RAN》 * |
| ""23502-020_cl"", 《3GPP TSG_RAN\TSG_RAN》 * |
| 3GPP工作组: "3rd Generation Partnership Project;Technical Specification Group Services And System Aspects;Study On Architecture For Next Generation System(Release 14)", 《3GPP STANDARD》 * |
| 曾梦岐等: "5G通信安全进展研究", 《通信技术》 * |
Cited By (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111639116B (zh) * | 2020-05-15 | 2023-06-09 | 中国银联股份有限公司 | 数据访问连接会话保护方法以及装置 |
| CN111639116A (zh) * | 2020-05-15 | 2020-09-08 | 中国银联股份有限公司 | 数据访问连接会话保护方法以及装置 |
| CN113784346A (zh) * | 2020-05-22 | 2021-12-10 | 华为技术有限公司 | 认证授权的方法和装置 |
| CN111638997A (zh) * | 2020-05-28 | 2020-09-08 | 中国联合网络通信集团有限公司 | 数据恢复方法、装置及网络设备 |
| CN112039838A (zh) * | 2020-07-15 | 2020-12-04 | 中国电子科技集团公司第三十研究所 | 一种适用于移动通信不同应用场景的二次认证方法和系统 |
| CN114640994A (zh) * | 2020-12-16 | 2022-06-17 | 中国电信股份有限公司 | 协议数据单元会话鉴权认证方法、系统和相关设备 |
| CN113489747A (zh) * | 2021-08-17 | 2021-10-08 | 中国联合网络通信集团有限公司 | 会话连接方法、装置及终端 |
| CN114697963A (zh) * | 2022-03-29 | 2022-07-01 | 中国南方电网有限责任公司 | 终端的身份认证方法、装置、计算机设备和存储介质 |
| CN114978747A (zh) * | 2022-06-10 | 2022-08-30 | 中国电信股份有限公司 | 注册认证方法、装置、电子设备及存储介质 |
| CN114978747B (zh) * | 2022-06-10 | 2024-02-06 | 中国电信股份有限公司 | 注册认证方法、装置、电子设备及存储介质 |
| WO2024065705A1 (zh) * | 2022-09-30 | 2024-04-04 | 北京小米移动软件有限公司 | 应用功能授权方法及装置 |
| CN117134947A (zh) * | 2023-07-31 | 2023-11-28 | 广州迪迪信息科技有限公司 | 一种网络信息安全分析管理系统 |
| CN117134947B (zh) * | 2023-07-31 | 2024-04-12 | 深圳市卓青科技有限公司 | 一种网络信息安全分析管理系统 |
Also Published As
| Publication number | Publication date |
|---|---|
| JP7035163B2 (ja) | 2022-03-14 |
| EP3657894A1 (en) | 2020-05-27 |
| US20200153871A1 (en) | 2020-05-14 |
| CN115835203A (zh) | 2023-03-21 |
| US20230076628A1 (en) | 2023-03-09 |
| JP2020527914A (ja) | 2020-09-10 |
| EP3657894B1 (en) | 2022-09-07 |
| US11895157B2 (en) | 2024-02-06 |
| KR102345932B1 (ko) | 2021-12-30 |
| AU2017423732B2 (en) | 2021-07-15 |
| KR20200022512A (ko) | 2020-03-03 |
| EP3657894A4 (en) | 2020-06-24 |
| EP4167678A1 (en) | 2023-04-19 |
| BR112020000932A2 (pt) | 2020-07-21 |
| WO2019017837A1 (zh) | 2019-01-24 |
| AU2017423732A1 (en) | 2020-02-20 |
| US11477242B2 (en) | 2022-10-18 |
| CN110999356B (zh) | 2022-11-18 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110999356B (zh) | 网络安全管理的方法及装置 | |
| JP6889263B2 (ja) | ユーザ機器の二次認証 | |
| US10856135B2 (en) | Method and apparatus for network access | |
| CN102396203B (zh) | 根据通信网络中的认证过程的紧急呼叫处理 | |
| EP2547134A1 (en) | Improved subscriber authentication for unlicensed mobile access signaling | |
| US8611859B2 (en) | System and method for providing secure network access in fixed mobile converged telecommunications networks | |
| US9325566B2 (en) | Seamless Wi-Fi subscription remediation | |
| EP3737032B1 (en) | Key updating method and apparatus | |
| EP2215803B1 (en) | Network access authentication | |
| CN113676904B (zh) | 切片认证方法及装置 | |
| CN114600487B (zh) | 身份认证方法及通信装置 | |
| CN111669750B (zh) | 一种pdu会话二次验证的方法及装置 | |
| US20240223613A1 (en) | Network security management method, and apparatus | |
| CN113904781B (zh) | 切片认证方法及系统 | |
| CN113498055B (zh) | 接入控制方法及通信设备 | |
| EP4262149A1 (en) | Method and apparatus for authenticating user equipment in wireless communication system | |
| CN117997541A (zh) | 通信方法和通信装置 |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |