CN112788025A - Network access control method and display device - Google Patents
Network access control method and display device Download PDFInfo
- Publication number
- CN112788025A CN112788025A CN202110004798.7A CN202110004798A CN112788025A CN 112788025 A CN112788025 A CN 112788025A CN 202110004798 A CN202110004798 A CN 202110004798A CN 112788025 A CN112788025 A CN 112788025A
- Authority
- CN
- China
- Prior art keywords
- network
- network access
- data
- access data
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer And Data Communications (AREA)
Abstract
The application discloses a network access control method and display equipment, which are used for implementing the function of exceptional release on certain network connection data under the condition that permission of an end user in the display equipment is not granted, avoiding the risk of application process permission expansion and reducing workload. The method comprises the following steps: and under the condition that the end user permission agreement is closed, if the network data connection in the network access data is identified to contain the preset label parameter, performing an exception release function on the network access data.
Description
Technical Field
The present application relates to the field of display technologies, and in particular, to a network access control method and a display device.
Background
In the display device, in order to secure the privacy right of the User, a system level "EULA (End User License Agreement) switch" is provided. When the user does not turn on the "EULA switch", i.e., "noulla", the display device is required to be used as a function machine, and the system cannot implement application networking.
However, in order to ensure that some special functions of the system can operate, and some special network accesses can be released as exceptions, the system needs to ensure that the exception release authority is minimized and no redundant network access data is available.
In the related art, all network applications re-refine application modules according to connections, all application modules are associated with an "EULA switch", and each application performs corresponding autonomous access control according to a state change of the "EULA switch". Such changes would add significant effort.
Disclosure of Invention
The embodiment of the application provides a network access control method and display equipment, which are used for implementing the function of performing exception release on some network connection data under the condition that permission of an end user in the display equipment is not granted, avoiding the risk of application process permission expansion and reducing workload.
In a first aspect, there is provided a display device comprising:
a display;
a controller for performing:
and under the condition that the end user permission agreement is closed, if the network data connection in the network access data is identified to contain the preset label parameter, performing an exception release function on the network access data.
In some embodiments, the controller is further configured to perform:
and if the network data connection in the network access data is identified not to contain the preset label parameter, performing the forwarding refusing treatment on the network access data.
In some embodiments, the controller is configured to:
and under the condition that the end user permission agreement is closed, if the network data connection in the network access data is identified to contain the preset label parameter, the network firewall executes an exception release function on the network access data.
In some embodiments, the controller is configured to:
and if the network data connection in the network access data is identified not to contain the preset label parameter, the network firewall executes the forwarding refusing processing on the network access data.
In some embodiments, the closing or opening of the end user license agreement is configured by default or based on user input.
In a second aspect, a network access control method is provided, the method including:
and under the condition that the end user permission agreement is closed, if the network data connection in the network access data is identified to contain the preset label parameter, performing an exception release function on the network access data.
In some embodiments, the method further comprises:
and if the network data connection in the network access data is identified not to contain the preset label parameter, performing the forwarding refusing treatment on the network access data.
In some embodiments, the method specifically comprises:
and under the condition that the end user permission agreement is closed, if the network data connection in the network access data is identified to contain the preset label parameter, the network firewall executes an exception release function on the network access data.
In some embodiments, the method specifically comprises:
and if the network data connection in the network access data is identified not to contain the preset label parameter, the network firewall executes the forwarding refusing processing on the network access data.
In some embodiments, the closing or opening of the end user license agreement is configured by default or based on user input.
In the embodiment, in the data of the existing application (process) accessing the network, for the special data which needs to be subjected to exception clearance, the preset tagging processing is performed on the original data, and the exception clearance operation is performed on the corresponding data when the preset tag is identified. The data label only exists in the operating system, and the normal route forwarding of the data in an external network is not influenced. The application has zero modification to non-relevant modules in the system. For network connections that do not require the execution of exceptional authorization, no changes need to be made in the program calls. And marking the network data with special requirements at the source, and realizing special network access exception release processing when the final user permission agreement is closed by utilizing a system firewall.
Drawings
FIG. 1 illustrates a usage scenario of a display device according to some embodiments;
fig. 2 illustrates a hardware configuration block diagram of the control apparatus 100 according to some embodiments;
fig. 3 illustrates a hardware configuration block diagram of the display apparatus 200 according to some embodiments;
FIG. 4 illustrates a software configuration diagram in the display device 200 according to some embodiments;
5-7 illustrate a user interface diagram according to some embodiments;
a flow chart of a method of network access control according to some embodiments is illustrated in fig. 8.
Detailed Description
To make the purpose and embodiments of the present application clearer, the following will clearly and completely describe the exemplary embodiments of the present application with reference to the attached drawings in the exemplary embodiments of the present application, and it is obvious that the described exemplary embodiments are only a part of the embodiments of the present application, and not all of the embodiments.
It should be noted that the brief descriptions of the terms in the present application are only for the convenience of understanding the embodiments described below, and are not intended to limit the embodiments of the present application. These terms should be understood in their ordinary and customary meaning unless otherwise indicated.
The terms "first," "second," "third," and the like in the description and claims of this application and in the above-described drawings are used for distinguishing between similar or analogous objects or entities and not necessarily for describing a particular sequential or chronological order, unless otherwise indicated. It is to be understood that the terms so used are interchangeable under appropriate circumstances.
The terms "comprises" and "comprising," and any variations thereof, are intended to cover a non-exclusive inclusion, such that a product or apparatus that comprises a list of elements is not necessarily limited to all elements expressly listed, but may include other elements not expressly listed or inherent to such product or apparatus.
The term "module" refers to any known or later developed hardware, software, firmware, artificial intelligence, fuzzy logic, or combination of hardware or/and software code that is capable of performing the functionality associated with that element.
Fig. 1 is a schematic diagram of a usage scenario of a display device according to an embodiment. As shown in fig. 1, the display apparatus 200 is also in data communication with a server 400, and a user can operate the display apparatus 200 through the smart device 300 or the control device 100.
In some embodiments, the control apparatus 100 may be a remote controller, and the communication between the remote controller and the display device includes at least one of an infrared protocol communication or a bluetooth protocol communication, and other short-distance communication methods, and controls the display device 200 in a wireless or wired manner. The user may control the display apparatus 200 by inputting a user instruction through at least one of a key on a remote controller, a voice input, a control panel input, and the like.
In some embodiments, the smart device 300 may include any of a mobile terminal, a tablet, a computer, a laptop, an AR/VR device, and the like.
In some embodiments, the smart device 300 may also be used to control the display device 200. For example, the display device 200 is controlled using an application program running on the smart device.
In some embodiments, the smart device 300 and the display device may also be used for communication of data.
In some embodiments, the display device 200 may also be controlled in a manner other than the control apparatus 100 and the smart device 300, for example, the voice instruction control of the user may be directly received by a module configured inside the display device 200 to obtain a voice instruction, or may be received by a voice control apparatus provided outside the display device 200.
In some embodiments, the display device 200 is also in data communication with a server 400. The display device 200 may be allowed to be communicatively connected through a Local Area Network (LAN), a Wireless Local Area Network (WLAN), and other networks. The server 400 may provide various contents and interactions to the display apparatus 200. The server 400 may be a cluster or a plurality of clusters, and may include one or more types of servers.
In some embodiments, software steps executed by one step execution agent may be migrated on demand to another step execution agent in data communication therewith for execution. Illustratively, software steps performed by the server may be migrated to be performed on a display device in data communication therewith, and vice versa, as desired.
Fig. 2 exemplarily shows a block diagram of a configuration of the control apparatus 100 according to an exemplary embodiment. As shown in fig. 2, the control device 100 includes a controller 110, a communication interface 130, a user input/output interface 140, a memory, and a power supply. The control apparatus 100 may receive an input operation instruction from a user and convert the operation instruction into an instruction recognizable and responsive by the display device 200, serving as an interaction intermediary between the user and the display device 200.
In some embodiments, the communication interface 130 is used for external communication, and includes at least one of a WIFI chip, a bluetooth module, NFC, or an alternative module.
In some embodiments, the user input/output interface 140 includes at least one of a microphone, a touchpad, a sensor, a key, or an alternative module.
Fig. 3 shows a hardware configuration block diagram of the display apparatus 200 according to an exemplary embodiment.
In some embodiments, the display apparatus 200 includes at least one of a tuner demodulator 210, a communicator 220, a detector 230, an external device interface 240, a controller 250, a display 260, an audio output interface 270, a memory, a power supply, a user interface.
In some embodiments the controller comprises a central processor, a video processor, an audio processor, a graphics processor, a RAM, a ROM, a first interface to an nth interface for input/output.
In some embodiments, the display 260 includes a display screen component for displaying pictures, and a driving component for driving image display, a component for receiving image signals from the controller output, displaying video content, image content, and menu manipulation interface, and a user manipulation UI interface, etc.
In some embodiments, the display 260 may be at least one of a liquid crystal display, an OLED display, and a projection display, and may also be a projection device and a projection screen.
In some embodiments, the tuner demodulator 210 receives broadcast television signals via wired or wireless reception, and demodulates audio/video signals, such as EPG data signals, from a plurality of wireless or wired broadcast television signals.
In some embodiments, communicator 220 is a component for communicating with external devices or servers according to various communication protocol types. For example: the communicator may include at least one of a Wifi module, a bluetooth module, a wired ethernet module, and other network communication protocol chips or near field communication protocol chips, and an infrared receiver. The display apparatus 200 may establish transmission and reception of control signals and data signals with the control device 100 or the server 400 through the communicator 220.
In some embodiments, the detector 230 is used to collect signals of the external environment or interaction with the outside. For example, detector 230 includes a light receiver, a sensor for collecting ambient light intensity; alternatively, the detector 230 includes an image collector, such as a camera, which may be used to collect external environment scenes, attributes of the user, or user interaction gestures, or the detector 230 includes a sound collector, such as a microphone, which is used to receive external sounds.
In some embodiments, the external device interface 240 may include, but is not limited to, the following: high Definition Multimedia Interface (HDMI), analog or data high definition component input interface (component), composite video input interface (CVBS), USB input interface (USB), RGB port, and the like. The interface may be a composite input/output interface formed by the plurality of interfaces.
In some embodiments, the controller 250 and the modem 210 may be located in different separate devices, that is, the modem 210 may also be located in an external device of the main device where the controller 250 is located, such as an external set-top box.
In some embodiments, the controller 250 controls the operation of the display device and responds to user operations through various software control programs stored in memory. The controller 250 controls the overall operation of the display apparatus 200. For example: in response to receiving a user command for selecting a UI object to be displayed on the display 260, the controller 250 may perform an operation related to the object selected by the user command.
In some embodiments, the object may be any one of selectable objects, such as a hyperlink, an icon, or other actionable control. The operations related to the selected object are: displaying an operation connected to a hyperlink page, document, image, or the like, or performing an operation of a program corresponding to the icon.
In some embodiments the controller comprises at least one of a Central Processing Unit (CPU), a video processor, an audio processor, a Graphics Processing Unit (GPU), a RAM Random Access Memory (RAM), a ROM (Read-Only Memory), a first to nth interface for input/output, a communication Bus (Bus), and the like.
A CPU processor. For executing operating system and application program instructions stored in the memory, and executing various application programs, data and contents according to various interactive instructions receiving external input, so as to finally display and play various audio-video contents. The CPU processor may include a plurality of processors. E.g. comprising a main processor and one or more sub-processors.
In some embodiments, a graphics processor for generating various graphics objects, such as: at least one of an icon, an operation menu, and a user input instruction display figure. The graphic processor comprises an arithmetic unit, which performs operation by receiving various interactive instructions input by a user and displays various objects according to display attributes; the system also comprises a renderer for rendering various objects obtained based on the arithmetic unit, wherein the rendered objects are used for being displayed on a display.
In some embodiments, the video processor is configured to receive an external video signal, and perform at least one of video processing such as decompression, decoding, scaling, noise reduction, frame rate conversion, resolution conversion, and image synthesis according to a standard codec protocol of the input signal, so as to obtain a signal displayed or played on the direct display device 200.
In some embodiments, the video processor includes at least one of a demultiplexing module, a video decoding module, an image composition module, a frame rate conversion module, a display formatting module, and the like. The demultiplexing module is used for demultiplexing the input audio and video data stream. And the video decoding module is used for processing the video signal after demultiplexing, including decoding, scaling and the like. And the image synthesis module is used for carrying out superposition mixing processing on the GUI signal input by the user or generated by the user and the video image after the zooming processing by the graphic generator so as to generate an image signal for display. And the frame rate conversion module is used for converting the frame rate of the input video. And the display formatting module is used for converting the received video output signal after the frame rate conversion, and changing the signal to be in accordance with the signal of the display format, such as an output RGB data signal.
In some embodiments, the audio processor is configured to receive an external audio signal, decompress and decode the received audio signal according to a standard codec protocol of the input signal, and perform at least one of noise reduction, digital-to-analog conversion, and amplification processing to obtain a sound signal that can be played in the speaker.
In some embodiments, a user may enter user commands on a Graphical User Interface (GUI) displayed on display 260, and the user input interface receives the user input commands through the Graphical User Interface (GUI). Alternatively, the user may input the user command by inputting a specific sound or gesture, and the user input interface receives the user input command by recognizing the sound or gesture through the sensor.
In some embodiments, a "user interface" is a media interface for interaction and information exchange between an application or operating system and a user that enables conversion between an internal form of information and a form that is acceptable to the user. A commonly used presentation form of the User Interface is a Graphical User Interface (GUI), which refers to a User Interface related to computer operations and displayed in a graphical manner. It may be an interface element such as an icon, a window, a control, etc. displayed in the display screen of the electronic device, where the control may include at least one of an icon, a button, a menu, a tab, a text box, a dialog box, a status bar, a navigation bar, a Widget, etc. visual interface elements.
In some embodiments, user interface 280 is an interface that may be used to receive control inputs (e.g., physical buttons on the body of the display device, or the like).
In some embodiments, a system of a display device may include a Kernel (Kernel), a command parser (shell), a file system, and an application program. The kernel, shell, and file system together make up the basic operating system structure that allows users to manage files, run programs, and use the system. After power-on, the kernel is started, kernel space is activated, hardware is abstracted, hardware parameters are initialized, and virtual memory, a scheduler, signals and interprocess communication (IPC) are operated and maintained. And after the kernel is started, loading the Shell and the user application program. The application program is compiled into machine code after being started, and a process is formed.
As shown in fig. 4, the system of the display device is divided into three layers, i.e., an application layer, a middleware layer and a hardware layer from top to bottom.
The Application layer mainly includes common applications on the television and an Application Framework (Application Framework), wherein the common applications are mainly applications developed based on the Browser, such as: HTML5 APPs; and Native APPs (Native APPs);
an Application Framework (Application Framework) is a complete program model, and has all basic functions required by standard Application software, such as: file access, data exchange …, and interfaces (toolbars, status bars, menus, dialog boxes) for use of these functions.
Native APPs (Native APPs) may support online or offline, message push, or local resource access.
The middleware layer comprises various television protocols, multimedia protocols, system components and other middleware. The middleware can use basic service (function) provided by system software to connect each part of an application system or different applications on a network, and can achieve the purposes of resource sharing and function sharing.
The hardware layer mainly comprises an HAL interface, hardware and a driver, wherein the HAL interface is a unified interface for butting all the television chips, and specific logic is realized by each chip. The driving mainly comprises: audio drive, display driver, bluetooth drive, camera drive, WIFI drive, USB drive, HDMI drive, sensor drive (like fingerprint sensor, temperature sensor, pressure sensor etc.) and power drive etc..
A schematic diagram of one user interface provided by the display device 200 is illustrated in fig. 5-7.
In some embodiments, the display device enters the power-on navigation interface when it is first powered on, and fig. 5 is a schematic diagram of one of the power-on navigation user interfaces. As shown in FIG. 5, the user may check in the "end user license Agreement" control 51 whether the end user license Agreement is approved. If the user does not check and approve the end user license agreement in the "end user license agreement" control 51, the exception releasing operation is performed on the corresponding network data only when the preset label is identified, and the rest network data is subjected to the rejection forwarding processing. If the user colludes within the "end user license agreement" control 51 to agree to the end user license agreement, then all or most of the network data may be passed.
In some embodiments, rather than first powering on the display device, the user may select a support control in the display settings user interface, as shown in FIG. 6, and select a "terms and conditions, privacy policy" control 61 via the control device, as shown in FIG. 7, and the user may check whether the end user license agreement is approved or not in an "accept end user license agreement" control 71. If the user does not check and approve the end user license agreement in the control 71 for accepting the end user license agreement, the exception releasing operation is carried out on the corresponding network data only when the preset label is identified, and the rest network data execute the rejection forwarding processing. If the user colludes to agree to the end user license agreement within the "accept end user license agreement" control 71, then all or most of the network data may be passed.
When the user does not turn on the switch of the end user license agreement, the display device is required to be used as a functional machine, and the system cannot realize application networking. But to ensure that some special functions of the system can operate, and to require that some special network access can be released as an exception; meanwhile, the system needs to ensure that the exception clearance right is minimized, and redundant network access data cannot exist. In the related art, all network applications re-refine the application modules according to the connections; all application modules are associated with an "end user license agreement switch"; according to the state change of the 'end user permission protocol switch', each application executes corresponding autonomous access control, and the change increases huge workload and expands the authority of application process.
In order to solve the above technical problem, an embodiment of the present application provides a network access control method, where the method includes:
judging whether the end user license agreement is closed or not;
an end-user license agreement refers to an agreement between a company's software and the user of the software, which typically occurs at the time of software installation. If the user refuses to accept the company's end-user license agreement, the software cannot be installed. An end-user license agreement is a legal contract between a software application author or publisher and an application user.
In some embodiments, the turning on or off of the end user license agreement switch may be provided in a user interface for power-on navigation, as shown in FIG. 5. The end user license agreement switch may also be changed in real time within the "support" user interface "terms and conditions, privacy policy". The end user permits the protocol switch to change while triggering a change in the network firewall policy rules.
If the end user permission agreement is closed, the network firewall identifies the network data connection label parameter in the network access data;
in some embodiments, different network application connections generate labeled distinct packets, and firewall rules process distinct packets for different network data.
The firewall technology is a technology for protecting the security of user data and information by organically combining various software and hardware devices for security management and screening to help a computer network to construct a relatively isolated protection barrier between an internal network and an external network. The firewall technology has the functions of discovering and processing the problems of security risk, data transmission and the like which may exist during the operation of the computer network in time, wherein the processing measures comprise isolation and protection, and meanwhile, the firewall technology can record and detect various operations in the security of the computer network so as to ensure the operation security of the computer network, ensure the integrity of user data and information and provide better and safer computer network use experience for users.
If the network data connection in the network access data is identified to contain the preset label parameter, the network firewall executes an exception release function on the network access data;
and if the network data connection in the network access data is identified not to contain the preset label parameter, the network firewall executes the forwarding refusing processing on the network access data.
In some embodiments, for network access data that requires application for exception rights, the application needs to use "private label interface A" and specify the pre-assigned "label parameter X" when creating "network data connection L". The special label interface A is provided by a system basic network SDK (Software Development Kit), and each application is called after being authorized in a required scene; the "tag parameter X" is an integer value that is distributed for use after registration and assignment at the programming stage. The operating system ensures that data in the "network data connection L" labeled by the "private label interface a" contains the "label parameter X" when being streamed in the television system to ensure that the "label parameter X" is still recognized at the "network data connection L" after the data stream is streamed to the network firewall.
In some embodiments, for network access data that does not require application for exception rights, the application needs to use a "regular interface" when creating a "network data connection" and has no tag parameters assigned for pre-allocation.
In some embodiments, a network firewall is enabled in the display device system, and a label parameter identification mechanism for network data connection is added. The network firewall checks each network data connection, and performs an exception passing process for the "network data connection L" containing the "label parameter X", and performs a rejection forwarding process for the normal network data connection not containing the "label parameter X".
In some embodiments, the network access request is triggered at any time in the display device system by a user operation or system program.
If the end user permission agreement is opened, the network firewall does not need to identify the network data connection label parameter in the network access data, and passes all or most of the network access data.
In some embodiments, the network access control method specifically includes:
step S801: judging whether the end user license agreement is closed or not;
if the end user license agreement is closed, step S802 is performed.
Step S802: the network firewall identifies whether the network data connection in the network access data contains a preset label or not; if it is recognized that the network data connection in the network access data contains the preset tag parameter, step S803 is performed.
Step S803: the network firewall executes an exception release function on the network access data;
if it is recognized that the network data connection in the network access data does not include the preset tag parameter, step S804 is performed.
Step S804: and the network firewall executes the forwarding refusing processing on the network access data.
If the end user license agreement is on, step S805 is performed.
Step S805: the network firewall passes all or most of the network access data.
In the application, the data label parameters are based on network connection, and the access control is not simple large-range coarse-grained operation of the whole application; and the data label only exists in the operating system, and the normal route forwarding of the data in an external network is not influenced.
In some embodiments, the network access data for which exception permissions need to be applied includes network access data generated by OTA (Over the Air) upgrade.
In some embodiments, the OTA upgrade may be actively triggered by user operation, and may also be triggered by a system program interval at a preset time.
The network access generated by the upgrade package detection is typical exceptional network data, and in some embodiments, the upgrade package detection specifically comprises the following steps:
the user closes the end-user license agreement by power-on navigation or by the "terms and conditions, privacy policy" user interface while updating the network firewall rules.
The user operates the network access data actively triggered or triggered by the system program to generate the upgrade package detection, which is called the detection upgrade package for short.
Based on the detection upgrade package, using a special label interface A containing a specified preassigned label parameter X to establish a network data connection, namely labeling the detection upgrade package;
the network firewall checks whether the network data connection in the network access data contains the "tag parameter X", and performs an exception release process to connect the server since it detects that the network data connection in the upgrade package contains the "tag parameter X".
If the upgrade package exists in the server after the server is connected;
the system program triggers the network access data which generates the upgrade package to download, and the upgrade package is called as download upgrade package for short.
Creating a network data connection based on the download upgrade package by using a special label interface A containing a specified pre-allocated label parameter X, namely labeling the download upgrade package;
the network firewall checks whether the network data connection in the network access data contains "tag parameter X", performs an exceptional release process since the network data connection in the download upgrade package contains "tag parameter X", can connect the server, and downloads the upgrade package in the server to the display device.
In some embodiments, the upgrade package detection specific steps include:
the user closes the end-user license agreement by power-on navigation or by the "terms and conditions, privacy policy" user interface while updating the network firewall rules.
The user operates the active trigger or the trigger by the system program to generate the network access data for detecting and downloading the upgrade package, which is called the detection and downloading upgrade package for short.
Creating a network data connection based on the detection and download upgrade package using a "dedicated tag interface A" containing a designated pre-assigned "tag parameter X", i.e. tagging the detection and download upgrade package;
the network firewall checks whether the network data connection in the network access data contains the "tag parameter X", performs an exceptional release process due to detecting and downloading that the network data connection in the upgrade package contains the "tag parameter X", connects to the server, and downloads the upgrade package to the display device if the upgrade package exists in the server.
In the embodiment, in the data of the existing application (process) accessing the network, for the special data which needs to be subjected to exception clearance, the preset tagging processing is performed on the original data, and the exception clearance operation is performed on the corresponding data when the preset tag is identified. The data label only exists in the operating system, and the normal route forwarding of the data in an external network is not influenced. The application has zero modification to non-relevant modules in the system. For network connections that do not require the execution of exceptional authorization, no changes need to be made in the program calls. And marking the network data with special requirements at the source, and realizing special network access exception release processing when the final user permission agreement is closed by utilizing a system firewall.
Finally, it should be noted that: the above embodiments are only used for illustrating the technical solutions of the present application, and not for limiting the same; although the present application has been described in detail with reference to the foregoing embodiments, it should be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some or all of the technical features may be equivalently replaced; and the modifications or the substitutions do not make the essence of the corresponding technical solutions depart from the scope of the technical solutions of the embodiments of the present application.
The foregoing description, for purposes of explanation, has been presented in conjunction with specific embodiments. However, the illustrative discussions above are not intended to be exhaustive or to limit the embodiments to the precise forms disclosed above. Many modifications and variations are possible in light of the above teaching. The embodiments were chosen and described in order to best explain the principles and the practical application, to thereby enable others skilled in the art to best utilize the embodiments and various embodiments with various modifications as are suited to the particular use contemplated.
Claims (10)
1. A display device, comprising:
a display;
a controller for performing:
and under the condition that the end user permission agreement is closed, if the network data connection in the network access data is identified to contain the preset label parameter, performing an exception release function on the network access data.
2. The display device according to claim 1, wherein the controller is further configured to perform:
and if the network data connection in the network access data is identified not to contain the preset label parameter, performing the forwarding refusing treatment on the network access data.
3. The display device according to claim 1, wherein the controller specifically performs:
and under the condition that the end user permission agreement is closed, if the network data connection in the network access data is identified to contain the preset label parameter, the network firewall executes an exception release function on the network access data.
4. The display device according to claim 2, wherein the controller specifically performs:
and if the network data connection in the network access data is identified not to contain the preset label parameter, the network firewall executes the forwarding refusing processing on the network access data.
5. The display device of claim 1, wherein the turning off or on of the end user license agreement is configured by default or based on user input.
6. A method for network access control, the method comprising:
and under the condition that the end user permission agreement is closed, if the network data connection in the network access data is identified to contain the preset label parameter, performing an exception release function on the network access data.
7. The method of claim 6, further comprising:
and if the network data connection in the network access data is identified not to contain the preset label parameter, performing the forwarding refusing treatment on the network access data.
8. The method according to claim 6, characterized in that the method comprises in particular:
and under the condition that the end user permission agreement is closed, if the network data connection in the network access data is identified to contain the preset label parameter, the network firewall executes an exception release function on the network access data.
9. The method according to claim 7, characterized in that it comprises in particular:
and if the network data connection in the network access data is identified not to contain the preset label parameter, the network firewall executes the forwarding refusing processing on the network access data.
10. The method of claim 6, wherein the closing or opening of the end user license agreement is configured by default or based on user input.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110004798.7A CN112788025B (en) | 2021-01-04 | 2021-01-04 | Network access control method and display device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110004798.7A CN112788025B (en) | 2021-01-04 | 2021-01-04 | Network access control method and display device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112788025A true CN112788025A (en) | 2021-05-11 |
| CN112788025B CN112788025B (en) | 2022-08-09 |
Family
ID=75754012
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110004798.7A Active CN112788025B (en) | 2021-01-04 | 2021-01-04 | Network access control method and display device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112788025B (en) |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101005401A (en) * | 2006-12-31 | 2007-07-25 | 深圳市中科新业信息科技发展有限公司 | Network data analysis and control system and method |
| US20070233607A1 (en) * | 2006-03-28 | 2007-10-04 | Burkhart Michael J | Identifying whether material is subject to an end-user license agreement |
| CN102792309A (en) * | 2010-03-10 | 2012-11-21 | 微软公司 | End user license agreement on demand |
| US20140085674A1 (en) * | 2012-09-27 | 2014-03-27 | Canon Kabushiki Kaisha | Information processing apparatus, control method, and program |
| CN108270782A (en) * | 2018-01-15 | 2018-07-10 | 中国科学院信息工程研究所 | A kind of access control method and system based on safety label |
| CN109474560A (en) * | 2017-09-07 | 2019-03-15 | 中国电信股份有限公司 | Control method, device and the computer readable storage medium of network access |
| WO2019139297A1 (en) * | 2018-01-09 | 2019-07-18 | 삼성전자주식회사 | Technology and method for selectively providing network function to application of device |
| CN111988829A (en) * | 2020-08-19 | 2020-11-24 | 上海连尚网络科技有限公司 | Access method and device of wireless local area network |
-
2021
- 2021-01-04 CN CN202110004798.7A patent/CN112788025B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070233607A1 (en) * | 2006-03-28 | 2007-10-04 | Burkhart Michael J | Identifying whether material is subject to an end-user license agreement |
| CN101005401A (en) * | 2006-12-31 | 2007-07-25 | 深圳市中科新业信息科技发展有限公司 | Network data analysis and control system and method |
| CN102792309A (en) * | 2010-03-10 | 2012-11-21 | 微软公司 | End user license agreement on demand |
| US20140085674A1 (en) * | 2012-09-27 | 2014-03-27 | Canon Kabushiki Kaisha | Information processing apparatus, control method, and program |
| CN109474560A (en) * | 2017-09-07 | 2019-03-15 | 中国电信股份有限公司 | Control method, device and the computer readable storage medium of network access |
| WO2019139297A1 (en) * | 2018-01-09 | 2019-07-18 | 삼성전자주식회사 | Technology and method for selectively providing network function to application of device |
| CN108270782A (en) * | 2018-01-15 | 2018-07-10 | 中国科学院信息工程研究所 | A kind of access control method and system based on safety label |
| CN111988829A (en) * | 2020-08-19 | 2020-11-24 | 上海连尚网络科技有限公司 | Access method and device of wireless local area network |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112788025B (en) | 2022-08-09 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN112672195A (en) | Remote controller key setting method and display equipment | |
| WO2021121051A1 (en) | Display method and display device | |
| CN113268199A (en) | Display device and function item setting method | |
| CN112612525A (en) | Display device and display device starting method | |
| CN112256449B (en) | Interface calling method of webpage application program, display equipment and server | |
| CN113490024A (en) | Control device key setting method and display equipment | |
| CN112860331A (en) | Display device and voice interaction prompting method | |
| CN114077724A (en) | Account management method and display device | |
| CN112788025B (en) | Network access control method and display device | |
| CN113542882B (en) | Method for waking up standby display device, display device and terminal | |
| CN112667285B (en) | Application upgrading method, display device and server | |
| CN112965677B (en) | Display device and information prompting method | |
| CN113064691B (en) | Display method and display equipment for starting user interface | |
| CN113589990A (en) | Application management method of display device, display device and mobile terminal | |
| CN112882780A (en) | Setting page display method and display device | |
| CN114302101A (en) | Display apparatus and data sharing method | |
| CN113608715A (en) | Display device and voice service switching method | |
| CN112882631A (en) | Display method of electronic specification on display device and display device | |
| CN113064534A (en) | Display method and display equipment of user interface | |
| CN113132809A (en) | Channel switching method, channel program playing method and display equipment | |
| CN112668546A (en) | Video thumbnail display method and display equipment | |
| CN112732396A (en) | Media asset data display method and display device | |
| CN112637683A (en) | Display equipment system optimization method and display equipment | |
| CN112601116A (en) | Display device and content display method | |
| CN113076042B (en) | Local media resource access method and display device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20221013 Address after: 83 Intekte Street, Devon, Netherlands Patentee after: VIDAA (Netherlands) International Holdings Ltd. Address before: 266100 Songling Road, Laoshan District, Qingdao, Shandong Province, No. 399 Patentee before: QINGDAO HISENSE MEDIA NETWORKS Ltd. |