CN113873505A - Method and system for automatically discovering distribution network by intelligent terminal - Google Patents
Method and system for automatically discovering distribution network by intelligent terminal Download PDFInfo
- Publication number
- CN113873505A CN113873505A CN202110190013.XA CN202110190013A CN113873505A CN 113873505 A CN113873505 A CN 113873505A CN 202110190013 A CN202110190013 A CN 202110190013A CN 113873505 A CN113873505 A CN 113873505A
- Authority
- CN
- China
- Prior art keywords
- distribution network
- intelligent terminal
- temporary
- home gateway
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W48/00—Access restriction; Network selection; Access point selection
- H04W48/16—Discovering, processing access restriction or access information
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/02—Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W76/00—Connection management
- H04W76/10—Connection setup
Abstract
The invention provides a method and a system for automatically discovering a distribution network by an intelligent terminal. When the intelligent terminal device scans the network, the terminal information is sent to the gateway through the VSIE by using a Probe Request frame in an IEEE802.11Wi-Fi standard protocol, and the gateway judges whether the device belongs to the ecology which allows the automatic discovery of the rapid distribution network according to the OUI. And if so, requesting user authorization, and sending the temporary distribution network information to the intelligent terminal equipment through a Probe Response frame of the AP. And the intelligent terminal equipment is connected to the temporary hotspot AP opened by the gateway according to the temporary distribution network information and establishes TCP connection with the gateway. Through TCP connection, the intelligent gateway and the intelligent terminal device further adopt a key exchange mechanism to negotiate a key, the intelligent gateway uses the negotiated key to encrypt distribution network information and then sends the distribution network information to the intelligent terminal device, and then the intelligent terminal device uses the negotiated key to decrypt and then uses the distribution network information to complete automatic distribution network.
Description
Technical Field
The invention relates to a mobile communication technology, in particular to a method and a system for automatically discovering a distribution network by an intelligent terminal based on an IEEE802.11Wi-Fi standard protocol.
Background
In recent years, with the advance of national strategies such as broadband china and integration of three networks, the problem of network configuration (for short, "distribution network") of intelligent terminals has become a pain point for industry development in the process of exploring intelligent home services. The pursuit of the safety and the high efficiency of the distribution network has become the technical improvement requirement of the intelligent terminal network configuration.
The mainstream intelligent terminal network configuration technical scheme in the industry at present comprises SmartConfig (multicast/broadcast), soft AP and IEEE802.11 protocol extension scheme. Each of these three approaches has its drawbacks.
The SmartConfig (multicast/broadcast) scheme has low success rate and low speed due to the compatibility problem of the mobile phone and the router, the instability of UDP (user datagram protocol) and the serial characteristic of a distribution network.
The soft AP scheme requires a user to switch to an AP hotspot of the network access equipment and manually input an account password, so that the operation is complex and the speed is low.
The existing IEEE802.11 protocol extension scheme is actively initiated by AP equipment such as a router and the like, the distribution network information is directly added into a Probe request frame or a Probe Response frame of Wi-Fi, the transmission of the distribution network information is realized through intermediate equipment or direct broadcasting, an interaction process with the equipment is avoided, an equipment discovery process, a user authorization process and an encryption mode are not fixed, and a safety risk exists. Meanwhile, as no equipment to be configured finds the process, the situation that other equipment is automatically configured with the network by mistake occurs.
Disclosure of Invention
This summary is provided to introduce a selection of concepts in a simplified form that are further described below in the detailed description. This summary is not intended to identify key features or essential features of the claimed subject matter, nor is it intended to be used as an aid in determining the scope of the claimed subject matter.
Aiming at the defects or improvement requirements in the prior art, the invention provides the method for automatically discovering the distribution network by the intelligent terminal based on the IEEE802.11Wi-Fi standard protocol and the temporary distribution network hotspot in order to meet good user experience, enhance the safety of the distribution network process and improve the standardization degree of the scheme.
In the invention, based on the connection process of the Wi-Fi standard, the intelligent equipment packages equipment Information through a vector-Specific Information Element (VSIE) in a Probe Request frame to Request a distribution network. The home gateway realizes device discovery and terminal ecological authentication by using the device Information encapsulated by the vector-Specific Information Element (VSIE) in the received Probe Request frame. After the user authorizes the network distribution, the gateway encapsulates the SSID Information of the temporary interactive network through a vector-Specific Information Element (VSIE) by using a Probe Response frame, and sends the SSID Information to the intelligent terminal, so that the intelligent terminal and the home gateway are temporarily connected. After the intelligent terminal is temporarily connected with the home network, the intelligent terminal and the home network acquire the SSID and the PASSWORD of the real network through encryption interaction, so that automatic discovery and rapid distribution of the intelligent terminal are realized. Meanwhile, the whole intelligent terminal encrypts and interactively acquires the SSID of the real network and generates independent key encryption distribution network information together with the PASSWORD flow through the equipment and the SPEKE negotiation algorithm of the home gateway.
According to an aspect of the present invention, there is provided a method for a smart terminal to fast access a network based on an IEEE802.11 protocol, wherein the method includes:
the intelligent terminal encapsulates terminal information in a Probe Request frame to be sent, wherein the terminal information comprises ecological OUI and terminal identity information;
the home gateway determines whether the intelligent terminal belongs to the ecology which allows automatic discovery of the rapid distribution network based on the ecology OUI encapsulated in the received Probe Request frame;
in response to determining that the intelligent terminal belongs to an ecology allowing automatic discovery of a rapid distribution network, sending a message indicating discovery of a device not having a distribution network to a user to request the user to authorize execution of the distribution network for the device;
in Response to receiving the authorization of the user, the home gateway starts a temporary distribution network hotspot AP, encapsulates temporary distribution network information for accessing the intelligent terminal to the temporary network in a Probe Response frame and sends the Probe Response frame to the intelligent terminal;
the intelligent terminal accesses the temporary network based on the temporary distribution network information encapsulated in the received Probe Response frame;
the home gateway initiates key negotiation with the intelligent terminal through the temporary network to obtain a negotiated key;
the home gateway encrypts distribution network information by using the negotiation key and sends the distribution network information to the intelligent terminal, wherein the distribution network information comprises an SSID (service set identifier) and a password of a Wi-Fi (wireless fidelity) network of the home gateway;
the intelligent terminal decrypts the distribution network information by using the negotiation key; and
and the intelligent terminal accesses the Wi-Fi network of the home gateway by using the decrypted distribution network information.
According to a further embodiment of the present invention, the intelligent terminal encapsulates the terminal information in a Probe Request frame through a vendor specific information element, vsee, and the home gateway encapsulates the temporary distribution network information in a Probe Response frame through the vsee.
According to a further embodiment of the invention, the method further comprises:
the home gateway encapsulates the ecological OUI and the temporary distribution network information together into a Probe Response frame and sends the Probe Response frame to the intelligent terminal; and is
And the intelligent terminal filters the received Probe Response frame according to the OUI in the VSIE data.
According to a further embodiment of the invention, the terminal information further comprises one or more of the following information:
open ecology ID;
a product ID;
a class ID;
self-owned ecological product identification; and
the terminal MAC address.
According to a further embodiment of the present invention, the temporary distribution network information includes an SSID of the temporary network and a channel number where the temporary network is located.
According to a further embodiment of the present invention, the accessing, by the intelligent terminal, the temporary network based on the temporary distribution network information encapsulated in the received Probe Response frame further includes:
and the intelligent terminal establishes TCP connection with the home gateway.
According to a further embodiment of the present invention, the home gateway initiating key agreement with the smart terminal through the temporary network further comprises:
and the home gateway and the intelligent terminal use a SPEKE negotiation algorithm to carry out key negotiation.
According to another aspect of the present invention, there is provided a home networking system based on IEEE802.11 protocol, wherein the system includes:
a home gateway;
one or more networking terminals connected to the home gateway; and
one or more intelligent terminals in communication interaction with the home gateway via any one of the networking terminals, wherein:
the intelligent terminal encapsulates terminal information in a Probe Request frame to be sent, wherein the terminal information comprises ecological OUI and terminal identity information;
the home gateway determines whether the intelligent terminal belongs to the ecology which allows automatic discovery of the rapid distribution network based on the ecology OUI encapsulated in the received Probe Request frame;
in response to determining that the intelligent terminal belongs to an ecology allowing automatic discovery of a rapid distribution network, sending a message indicating discovery of a device not having a distribution network to a user to request the user to authorize execution of the distribution network for the device;
in Response to receiving the authorization of the user, the home gateway starts a temporary distribution network hotspot AP, encapsulates temporary distribution network information for accessing the intelligent terminal to the temporary network in a Probe Response frame and sends the Probe Response frame to the intelligent terminal;
the intelligent terminal accesses the temporary network based on the temporary distribution network information encapsulated in the received Probe Response frame;
the home gateway initiates key negotiation with the intelligent terminal through the temporary network to obtain a negotiated key;
the home gateway encrypts distribution network information by using the negotiation key and sends the distribution network information to the intelligent terminal, wherein the distribution network information comprises an SSID (service set identifier) and a password of a Wi-Fi (wireless fidelity) network of the home gateway;
the intelligent terminal decrypts the distribution network information by using the negotiation key; and
and the intelligent terminal accesses the Wi-Fi network of the home gateway by using the decrypted distribution network information.
According to a further embodiment of the present invention, the home gateway encapsulates the ecological OUI and the temporary distribution network information together in a Probe Response frame and sends the Probe Response frame to the intelligent terminal; and is
And the intelligent terminal filters the received Probe Response frame according to the OUI in the VSIE data.
According to a further embodiment of the present invention, the accessing, by the intelligent terminal, the temporary network based on the temporary distribution network information encapsulated in the received Probe Response frame further includes: the intelligent terminal establishes TCP connection with the home gateway, and
the home gateway initiating key agreement with the intelligent terminal through the temporary network further comprises: and the home gateway and the intelligent terminal use a SPEKE negotiation algorithm to carry out key negotiation.
Compared with the existing network distribution method, the fast connection network access method of the invention at least has the following advantages:
(1) the intelligent terminal actively initiates a network distribution request to realize automatic discovery of the equipment to be distributed, and actively prompts a user that the equipment is required to be connected with a home network at present;
(2) the home gateway performs networking terminal ecological authentication through OUI information in the Probe Request, and only the OUI belonging to the cooperative ecology prompts a user that equipment actively requests to connect a network currently;
(3) after the user authorization, the VSIE in the Probe Response frame carries the SSID of the temporarily generated hotspot, so that the safety, the specifiability and the randomness of the distribution network interaction environment are realized;
(4) the equipment information is verified and returned in a fixed point mode through the interaction process of the Probe Request frame and the Probe Response frame instead of the simple broadcasting of information through the WIFI frame, so that the accuracy and the safety of the equipment to be networked are guaranteed;
(5) through the temporary SSID carried by the VSIE in the Probe Response frame, the terminal establishes TCP connection with the home gateway to complete encryption interaction and distribution network information interaction, and the method is more stable, higher in success rate and higher in safety compared with the modes of UDP, broadcasting and the like;
(6) the ecological safety factor is introduced, the equipment and the gateway jointly generate a distribution network secret key through the SPEKE protocol algorithm, the distribution network information is encrypted, the distribution network secret key is not fixed, the safety of the whole distribution network process is improved according to the generation of the terminal, and safety risks such as information leakage are avoided.
These and other features and advantages will become apparent upon reading the following detailed description and upon reference to the accompanying drawings. It is to be understood that both the foregoing general description and the following detailed description are explanatory only and are not restrictive of aspects as claimed.
Drawings
So that the manner in which the above recited features of the present invention can be understood in detail, a more particular description of the invention, briefly summarized above, may be had by reference to embodiments, some of which are illustrated in the appended drawings. It is to be noted, however, that the appended drawings illustrate only some typical aspects of this invention and are therefore not to be considered limiting of its scope, for the description may admit to other equally effective aspects.
Fig. 1 is an exemplary block diagram of a home gateway networking system according to one embodiment of the invention.
Fig. 2 is an exemplary flowchart of a method for automatically discovering a distribution network by an intelligent terminal according to an embodiment of the present invention.
Detailed Description
The present invention will be described in detail below with reference to the attached drawings, and the features of the present invention will be further apparent from the following detailed description.
Fig. 1 is an exemplary block diagram of a home gateway networking system according to one embodiment of the invention. As shown in fig. 1, a home gateway networking system may include a home gateway (102), one or more networking terminals (108a, 108b), and one or more smart terminals (110a, 110b, 110c, 110 d).
The home gateway 102 is typically provided by a telecommunications operator for accessing home networking into the internet. The home gateway 102 may also communicate with a cloud-based smart home platform via the internet. In one example, home gateway 102 includes networking plug-in 104 and quick connect plug-in 106. Networking plug-in 104 and quick connect plug-in 106 may be implemented in software (e.g., as plug-ins running on home gateway 102) or in hardware (e.g., as separate or integrated hardware modules). The networking plug-in 104 and the fast connectivity plug-in 106 may communicate via an inter-process communication mechanism (IPC).
One or more networking terminals (108a, 108b) may be connected to the home gateway 102. The networking terminals (108a, 108b) may be networking devices such as wireless routers, APs, and the like. As an example of the present invention, a networking terminal supports the IEEE802.11Wi-Fi standard protocol. It will be understood by those skilled in the art that although the networking terminal and the home gateway are shown in fig. 1 as two distinct pieces of hardware, they may be integrated together. Furthermore, although networking terminal 108a and networking terminal 108b are shown in fig. 1 as being respectively directly connected to home gateway 102, those skilled in the art will appreciate that multiple networking terminals may be connected in a hierarchy, e.g., networking terminal 108b (e.g., an AP) may be connected to networking terminal 108a (e.g., a wireless router) rather than directly to home gateway 102. Each networking terminal may be connected with one or more intelligent terminals (110a, 110b, 110c, 110 d).
The intelligent terminals (110a, 110b, 110c, 110d) can find surrounding networking terminals through scanning. In this application, the term "smart terminal" may refer to any mobile computing device having wireless communication capabilities (e.g., supporting the ieee802.11wi-Fi standard protocol), and thus may also be used interchangeably with "smart terminal device", "mobile device", or "mobile terminal" in the context of the present invention. As an example, the smart terminal (110a, 110b, 110c, 110d) may be a smart phone, a tablet computer, a laptop computer, a smart speaker, a smart television, a smart camera or other smart appliance, etc. that supports IEEE802.11Wi-Fi standard protocols.
The home gateway networking system can be configured to realize the intelligent terminal fast access network method based on the Probe frame of the IEEE802.11wi-Fi standard protocol.
The method can realize the automatic discovery of the distribution network of the intelligent terminal. When the intelligent terminal device scans the network, the Probe Request frame in the IEEE802.11Wi-Fi standard protocol is used to report the terminal Information such as the terminal open ecology ID, the terminal product ID, the terminal class ID, the unique ecology identifier of the terminal itself, and the intelligent device MAC to the surrounding networking terminals (for example, APs) through the VSIE (Vendor-Specific Information Element). After receiving the device information, the AP filters the frame according to whether the VSIE has an organization Unique Identifier (Organizationally Unique Identifier). And pushing the equipment information to the cloud/APP terminal, so that the automatic discovery of the equipment distribution network of the user terminal is realized.
After the intelligent device is found, when the user determines that the intelligent device is allowed to access the network at the client, the user sends the temporary distribution network information to the intelligent terminal device through a Probe Response frame of the AP. And the intelligent terminal equipment is connected to the temporary hotspot AP according to the temporary distribution network information issued by the AP contained in the VSIE and establishes TCP connection with the gateway. Through TCP connection, the intelligent gateway and the intelligent terminal device further adopt a key exchange mechanism to negotiate a key, the intelligent gateway encrypts the distribution network information by using the key and then sends the distribution network information to the intelligent terminal device, and then the intelligent terminal device decrypts the distribution network information and completes automatic distribution network.
The Probe/Probe Response frames mentioned above are frames specified and used in the IEEE802.11Wi-Fi standard protocol. The Probe Response frame (i.e., beacon frame) is a maintenance mechanism of considerable importance, mainly used to announce the existence of a certain network. The periodically transmitted beacons allow the mobile stations to learn of the presence of the network and thereby adjust the parameters necessary to join the network. In the basic network, the access point is responsible for sending the Probe Response frame, and the range of the Probe Response frame is the basic service area. In a basic network, all communication must pass through the access point, so the stations cannot be too far apart, or else they cannot receive beacons.
The Probe frame is divided into a Probe Request frame (i.e., a Probe Request frame) and a Probe Response frame (i.e., a Probe Response frame). The mobile station will use the Probe Request frame to scan which 802.11 networks are currently in the area. If the network probed by the Probe Request frame is compatible with it, the network will reply with a Probe Response frame.
The VSIE (Vendor-Specific Information Element) is a commonly used Information encapsulation method in the Probe/Probe Response frame, for example, the wireless multimedia (WMM) Information is the VSIE of the OUI from microsoft corporation, which can be used to represent the Information extended by a Specific Vendor. A typical composition structure of a vsee is as follows:
TABLE 1
Wherein the meaning and exemplary values of each field are as follows:
TABLE 2
The invention encapsulates the information required by the fast connection into the VSIE in a Type-Length-Value ternary data group mode, completes the interaction between the equipment information and the distribution network information between the home gateway and the intelligent terminal equipment through the Probe frame, and realizes the fast connection network access of the intelligent terminal. The type indicates the category of the ternary data set, the category comprises an open ecological ID, a product ID, a class ID, a self-owned ecological product identifier, a terminal MAC address and the like, the length indicates the length of a value in the ternary data set, and the value is actual data. As an example, an example of Data encapsulated in Probe Request is as follows:
TABLE 3
As yet another example, an example of Data encapsulated in Probe Response is as follows:
TABLE 4
Fig. 2 is an exemplary flowchart of a method 200 for automatically discovering a network distribution by an intelligent terminal according to an embodiment of the present invention.
The method 200 starts in step 202, and the intelligent terminal device encapsulates the terminal information in a Probe Request frame for transmission. According to the IEEE802.11Wi-Fi standard, the intelligent terminal can actively send a Probe Request frame to perform brand new scanning on the peripheral network and Request to join the home network. The terminal information may be encapsulated within the vsei and added to the transmitted Probe Request frame. The terminal information may include the owned ecology OUI and the terminal identity information including, but not limited to, the terminal open ecology ID, the terminal product ID, the terminal class ID, the terminal owned ecology unique identification, and the MAC address of the smart device.
In step 204, the home gateway determines whether the intelligent terminal device belongs to an ecology that allows automatic discovery of a fast distribution network based on the terminal information encapsulated in the received Probe Request frame. The Probe Request frame sent by the intelligent terminal may be received by the surrounding networking terminals, and the networking terminals report the Probe Request frame to the home gateway. As an example, the home gateway runs a fast connect plug-in after power-up, which may listen for the VSIE with a particular vendor OUI in the Probe Request frame. When the fast-connect plug-in receives the Probe Request frame, the fast-connect plug-in may initiate a VSIE service to decapsulate the information encapsulated with the VSIE in the Probe Request frame and determine whether the OUI of a specific vendor is included therein, e.g., whether the OUI has a telecom OUI. The purpose of this filtering is to identify the correct VSIE information. It can be understood that the fast connection access network of the present invention needs to be implemented by relying on the relevant information encapsulated in the VSIE, and if the OUI indicates other vendors, the subsequent fast connection process cannot be executed continuously, so that no further resource consumption is needed to process.
If it is determined at step 204 that the intelligent terminal belongs to an ecology that allows for automatic discovery of fast distribution networks, the method proceeds to step 206, where a message is sent to the user indicating that no distribution network devices are found to request the user to authorize execution of a distribution network for the device. For example, the home gateway may notify the user of finding a new device without network configuration through an APP (e.g., a telecom winglet manager APP) on the user client, ask the user whether to perform automatic network configuration on the new device, and the user may directly give an authorized reply in the APP. As an example, the user client may be at least one of smart terminals already connected to the network, such as a user's smart phone, tablet, smart tv, and so on.
In step 208, in Response to receiving the authorization of the user, the home gateway starts the temporary distribution network hotspot AP, and encapsulates the temporary distribution network information for the intelligent terminal device to access the temporary network in a Probe Response frame and sends the Probe Response frame to the intelligent terminal. If the user is not authorized, the process ends. As an example, the SSID of the temporary network is randomly generated, and the temporary distribution network information of the temporary distribution network may include the SSID of the temporary network and a channel number. In addition, when the temporary network is provided with the password, the password can be further included in the temporary distribution network information. As mentioned earlier, the temporary distribution network information and the owned ecological OUI may be encapsulated in the VSIE and added to the Probe Response frame to be sent to the intelligent terminal.
In step 210, the intelligent terminal device accesses the temporary network based on the temporary distribution network information encapsulated in the received Probe Response frame. As an example, the intelligent terminal device may switch the Station mode, and determine whether the AP hotspot is a temporary distribution network hotspot AP provided by the intelligent gateway according to the terminal owned ecological OUI included in the VSIE in the Probe Response frame. If yes, the intelligent terminal device can obtain the temporary distribution network information such as the SSID and the channel number of the temporary distribution network and the like encapsulated in the VSIE, and then the temporary distribution network information is used for connecting the temporary hotspot AP. As an embodiment of the present invention, the smart terminal device may establish a TCP connection with the home gateway to improve stability, success rate, and security. For example, the intelligent end device may call a designated port (e.g., 5883 port) in the home gateway to establish the TCP connection.
At step 212, the home gateway initiates a key agreement with the intelligent terminal device over the temporary network. As an example, the home gateway may send a distribution network request start message to the intelligent terminal device to be distributed through TCP connection, the intelligent terminal device to be distributed and the intelligent gateway may start security negotiation through a SPEKE negotiation algorithm, and the SPEKE negotiation is performed based on a security factor S code pre-stored locally at the terminal and at the platform end to generate a SPEKE negotiation key.
In step 214, the home gateway encrypts the distribution network information by using the negotiation key, and sends the distribution network information to the intelligent terminal device to be distributed. The distribution network information may include the SSID and password of the Wi-Fi network of the home gateway, and/or other extension data. In an example using the SPEKE negotiation algorithm, the distribution network information is encrypted using a SPEKE negotiation key. However, it will be understood by those skilled in the art that the SPEKE negotiation algorithm is only an example, and any other suitable key negotiation algorithm may be used to negotiate a key for encrypting the distribution network information sent by the gateway to the terminals to be distributed.
In step 216, the intelligent terminal device decrypts the distribution network information by using the negotiation key. The decrypted distribution network information may be temporarily saved locally.
Finally, in step 218, the smart terminal device connects to the Wi-Fi network of the home gateway using the decrypted distribution network information.
The method for the intelligent device to access the network quickly has the following advantages compared with the prior art:
(1) for the probe capability of the intelligent terminal without a distribution network, even if the equipment without the distribution network is not provided, the equipment can be detected and positioned;
(2) the capability of a user to sense the network is realized, the user automatically discovers the equipment, and the equipment can configure the access network without inputting an account number and a password for one-key authorization;
(3) WIFI is scanned through a Probe Request frame of the intelligent terminal, AP equipment such as a home gateway and a router returns a Probe Response frame, interaction of information of the intelligent terminal equipment and SSID information of a temporary distribution network hotspot of the AP equipment such as the home gateway and the router is completed, and the establishment of distribution network interaction TCP connection can be completed only by a small amount of message interaction;
(4) the temporary distribution network hot SSID of the AP equipment such as the home gateway and the router is randomly generated at each time, is open and hidden, cannot be directly scanned and found, is more flexible and safer compared with the distribution network hot SSID fixed by the conventional technical scheme, and prevents the situation that the performance of the home gateway and the router is reduced due to malicious connection with the distribution network AP;
(5) after the distribution network equipment establishes TCP connection with AP equipment such as a home gateway, a router and the like, safety negotiation is carried out and interaction between the SSID of the home network and PASSWORD is completed, the TCP connection is more stable and safer, and the success rate and the stability are improved compared with the modes such as broadcasting, multicasting, UDP and the like;
(6) the screening of the terminal ecological OUI by the home gateway realizes the terminal ecological authentication and reduces the occurrence of malicious distribution network requests;
(7) the intelligent terminal actively initiates a distribution network request to realize automatic discovery of the equipment to be distributed, so that a user can select authorization to the equipment distribution network according to the manufacturer ecology, the type, the model and the terminal MAC;
(8) the equipment information is verified through the interaction process of the Probe Request frame and the Probe Response frame, instead of simply broadcasting information through a Wi-Fi frame, so that the accuracy and the safety of the equipment to be networked are guaranteed;
(9) the distribution network key is generated by the equipment and the gateway together, the distribution network information is encrypted, the distribution network key is not fixed, the safety of the whole distribution network process is improved according to the generation of the terminal, and the safety risks such as information leakage are avoided;
(10) the security factor S code is encrypted through the terminal, one-machine one-secret and one-time one-secret are realized, the occurrence of a malicious distribution network of local simulation is prevented, the security of the distribution network is improved, and the security risks of the malicious distribution network and the like are reduced.
What has been described above includes examples of aspects of the claimed subject matter. It is, of course, not possible to describe every conceivable combination of components or methodologies for purposes of describing the claimed subject matter, but one of ordinary skill in the art may recognize that many further combinations and permutations of the claimed subject matter are possible. Accordingly, the disclosed subject matter is intended to embrace all such alterations, modifications and variations that fall within the spirit and scope of the appended claims.
Claims (10)
1. A method for a smart terminal to access a network quickly based on an IEEE802.11 protocol is characterized by comprising the following steps:
the intelligent terminal encapsulates terminal information in a Probe Request frame to be sent, wherein the terminal information comprises ecological OUI and terminal identity information;
the home gateway determines whether the intelligent terminal belongs to the ecology which allows automatic discovery of the rapid distribution network based on the ecology OUI encapsulated in the received Probe Request frame;
in response to determining that the intelligent terminal belongs to an ecology allowing automatic discovery of a rapid distribution network, sending a message indicating discovery of a device not having a distribution network to a user to request the user to authorize execution of the distribution network for the device;
in Response to receiving the authorization of the user, the home gateway starts a temporary distribution network hotspot AP, encapsulates temporary distribution network information for accessing the intelligent terminal to the temporary network in a Probe Response frame and sends the Probe Response frame to the intelligent terminal;
the intelligent terminal accesses the temporary network based on the temporary distribution network information encapsulated in the received Probe Response frame;
the home gateway initiates key negotiation with the intelligent terminal through the temporary network to obtain a negotiated key;
the home gateway encrypts distribution network information by using the negotiation key and sends the distribution network information to the intelligent terminal, wherein the distribution network information comprises an SSID (service set identifier) and a password of a Wi-Fi (wireless fidelity) network of the home gateway;
the intelligent terminal decrypts the distribution network information by using the negotiation key; and
and the intelligent terminal accesses the Wi-Fi network of the home gateway by using the decrypted distribution network information.
2. The method of claim 1, wherein the smart terminal encapsulates the terminal information in a Probe Request frame through a Vendor Specific Information Element (VSIE), and the home gateway encapsulates the temporary distribution network information in a Probe Response frame through the VSIE.
3. The method of claim 1, wherein the method further comprises:
the home gateway encapsulates the ecological OUI and the temporary distribution network information together into a Probe Response frame and sends the Probe Response frame to the intelligent terminal; and is
And the intelligent terminal filters the received Probe Response frame according to the OUI in the VSIE data.
4. The method of claim 1, wherein the terminal information further comprises one or more of the following information:
open ecology ID;
a product ID;
a class ID;
self-owned ecological product identification; and
the terminal MAC address.
5. The method of claim 1, wherein the temporary distribution network information comprises an SSID of the temporary network and a channel number on which the temporary network is located.
6. The method of claim 1, wherein the intelligent terminal accessing the temporary network based on the temporary distribution network information encapsulated in the received Probe Response frame further comprises:
and the intelligent terminal establishes TCP connection with the home gateway.
7. The method of claim 1, wherein the home gateway initiating key agreement with the smart terminal over the temporary network further comprises:
and the home gateway and the intelligent terminal use a SPEKE negotiation algorithm to carry out key negotiation.
8. A home networking system based on IEEE802.11 protocol, the system comprising:
a home gateway;
one or more networking terminals connected to the home gateway; and
one or more intelligent terminals in communication interaction with the home gateway via any one of the networking terminals, wherein:
the intelligent terminal encapsulates terminal information in a Probe Request frame to be sent, wherein the terminal information comprises ecological OUI and terminal identity information;
the home gateway determines whether the intelligent terminal belongs to the ecology which allows automatic discovery of the rapid distribution network based on the ecology OUI encapsulated in the received Probe Request frame;
in response to determining that the intelligent terminal belongs to an ecology allowing automatic discovery of a rapid distribution network, sending a message indicating discovery of a device not having a distribution network to a user to request the user to authorize execution of the distribution network for the device;
in Response to receiving the authorization of the user, the home gateway starts a temporary distribution network hotspot AP, encapsulates temporary distribution network information for accessing the intelligent terminal to the temporary network in a Probe Response frame and sends the Probe Response frame to the intelligent terminal;
the intelligent terminal accesses the temporary network based on the temporary distribution network information encapsulated in the received Probe Response frame;
the home gateway initiates key negotiation with the intelligent terminal through the temporary network to obtain a negotiated key;
the home gateway encrypts distribution network information by using the negotiation key and sends the distribution network information to the intelligent terminal, wherein the distribution network information comprises an SSID (service set identifier) and a password of a Wi-Fi (wireless fidelity) network of the home gateway;
the intelligent terminal decrypts the distribution network information by using the negotiation key; and
and the intelligent terminal accesses the Wi-Fi network of the home gateway by using the decrypted distribution network information.
9. The system of claim 8, wherein the home gateway encapsulates the ecological OUI together with the temporary distribution network information in a Probe Response frame and sends the Probe Response frame to the intelligent terminal; and is
And the intelligent terminal filters the received Probe Response frame according to the OUI in the VSIE data.
10. The system of claim 8, wherein the intelligent terminal accessing the temporary network based on the temporary distribution network information encapsulated in the received Probe Response frame further comprises: the intelligent terminal establishes TCP connection with the home gateway, and
the home gateway initiating key agreement with the intelligent terminal through the temporary network further comprises: and the home gateway and the intelligent terminal use a SPEKE negotiation algorithm to carry out key negotiation.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110190013.XA CN113873505B (en) | 2021-02-18 | 2021-02-18 | Method and system for automatically discovering distribution network by intelligent terminal |
| PCT/CN2021/135948 WO2022174652A1 (en) | 2021-02-18 | 2021-12-07 | Method and system for automatically discovering network configuration by smart terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110190013.XA CN113873505B (en) | 2021-02-18 | 2021-02-18 | Method and system for automatically discovering distribution network by intelligent terminal |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN113873505A true CN113873505A (en) | 2021-12-31 |
| CN113873505B CN113873505B (en) | 2023-09-01 |
Family
ID=78989815
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110190013.XA Active CN113873505B (en) | 2021-02-18 | 2021-02-18 | Method and system for automatically discovering distribution network by intelligent terminal |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN113873505B (en) |
| WO (1) | WO2022174652A1 (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20160249287A1 (en) * | 2014-09-15 | 2016-08-25 | Zhejiang Shenghui Lighting Co., Ltd | Method and system for automatically adapting to wi-fi network with hidden ssid |
| US20170135141A1 (en) * | 2015-11-06 | 2017-05-11 | Le Holdings (Beijing) Co., Ltd. | One-key connection method and system for mobile terminal and display equipment |
| CN111132135A (en) * | 2019-11-11 | 2020-05-08 | 上海思笛恩网络科技有限公司 | Wireless network distribution method and system for intelligent household terminal |
| CN112261708A (en) * | 2020-12-18 | 2021-01-22 | 深圳市晶讯技术股份有限公司 | System and method for automatically configuring WiFi equipment in batches |
Family Cites Families (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP3073774A1 (en) * | 2015-03-23 | 2016-09-28 | Thomson Licensing | Automatic configuration of a wireless residential access network |
| WO2018164486A1 (en) * | 2017-03-08 | 2018-09-13 | 삼성전자주식회사 | Electronic device and method for controlling wireless communication connection thereof |
| CN111954283A (en) * | 2019-05-17 | 2020-11-17 | 华为技术有限公司 | Method and terminal for accessing wireless local area network |
| CN112351000B (en) * | 2020-10-16 | 2024-02-09 | 深圳Tcl新技术有限公司 | Bidirectional identity verification method, system, equipment and storage medium |
| CN112261707A (en) * | 2020-10-20 | 2021-01-22 | 四川天邑康和通信股份有限公司 | Method for realizing automatic network distribution between intelligent equipment and WIFI6 router |
-
2021
- 2021-02-18 CN CN202110190013.XA patent/CN113873505B/en active Active
- 2021-12-07 WO PCT/CN2021/135948 patent/WO2022174652A1/en active Application Filing
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20160249287A1 (en) * | 2014-09-15 | 2016-08-25 | Zhejiang Shenghui Lighting Co., Ltd | Method and system for automatically adapting to wi-fi network with hidden ssid |
| US20170135141A1 (en) * | 2015-11-06 | 2017-05-11 | Le Holdings (Beijing) Co., Ltd. | One-key connection method and system for mobile terminal and display equipment |
| CN111132135A (en) * | 2019-11-11 | 2020-05-08 | 上海思笛恩网络科技有限公司 | Wireless network distribution method and system for intelligent household terminal |
| CN112261708A (en) * | 2020-12-18 | 2021-01-22 | 深圳市晶讯技术股份有限公司 | System and method for automatically configuring WiFi equipment in batches |
Also Published As
| Publication number | Publication date |
|---|---|
| CN113873505B (en) | 2023-09-01 |
| WO2022174652A1 (en) | 2022-08-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9313798B2 (en) | On-demand services by wireless base station virtualization | |
| US8208455B2 (en) | Method and system for transporting configuration protocol messages across a distribution system (DS) in a wireless local area network (WLAN) | |
| WO2020098253A1 (en) | Network access method and apparatus, related devices, and storage medium | |
| CN101621800B (en) | Method for exchanging authentication information between wireless terminal and wireless router | |
| US7990938B1 (en) | Access point configuration | |
| US7177637B2 (en) | Connectivity to public domain services of wireless local area networks | |
| EP2291017B1 (en) | Method for network connection | |
| WO2009008627A2 (en) | A method of establishing fast security association for handover between heterogeneous radio access networks | |
| KR20070021727A (en) | Apparatus and method detecting data transmission mode of access point in wireless terminal | |
| US9510130B2 (en) | Provisioning of multiple wireless devices by an access point | |
| US7961684B2 (en) | Fast transitioning resource negotiation | |
| CN104144463A (en) | Wi-fi network access method and system | |
| US8862096B1 (en) | Provisioning of multiple wireless devices by an access point | |
| US11197157B2 (en) | Method, apparatus, and system for performing authentication on terminal in wireless local area network | |
| CN113132983B (en) | Network disconnection reconnection method for intelligent terminal | |
| CN113068181B (en) | Multi-type intelligent terminal safety network access method | |
| US8312151B2 (en) | Communication systems and methods for dynamic and secure simplification of equipment networking | |
| CN105338529A (en) | Wireless network connecting method and system | |
| CN112261707A (en) | Method for realizing automatic network distribution between intelligent equipment and WIFI6 router | |
| WO2022166636A1 (en) | Device network configuration method and apparatus, devices and storage medium | |
| CN108353269A (en) | Subscriber profiles in WLAN are pre-configured | |
| US20190261436A1 (en) | Device networking method, apparatus and system | |
| CN101765181A (en) | Method, device and system for controlling mobile site to access through a designated WLAN | |
| CN113873505B (en) | Method and system for automatically discovering distribution network by intelligent terminal | |
| CN113132966A (en) | Intelligent terminal fast network access method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| TA01 | Transfer of patent application right | ||
| TA01 | Transfer of patent application right |
Effective date of registration: 20220130 Address after: Room 1423, No. 1256 and 1258, Wanrong Road, Jing'an District, Shanghai 200072 Applicant after: Tianyi Digital Life Technology Co.,Ltd. Address before: 201702 3rd floor, 158 Shuanglian Road, Qingpu District, Shanghai Applicant before: Tianyi Smart Family Technology Co.,Ltd. |
|
| GR01 | Patent grant | ||
| GR01 | Patent grant |