CN115277001A - Certificate distribution method, device, system and medium for co-building shared network - Google Patents
Certificate distribution method, device, system and medium for co-building shared network Download PDFInfo
- Publication number
- CN115277001A CN115277001A CN202210699587.4A CN202210699587A CN115277001A CN 115277001 A CN115277001 A CN 115277001A CN 202210699587 A CN202210699587 A CN 202210699587A CN 115277001 A CN115277001 A CN 115277001A
- Authority
- CN
- China
- Prior art keywords
- certificate
- operator
- network
- equipment
- target
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
- H04L9/3268—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
Abstract
The invention provides a certificate distribution method, a device, a system and a medium of a co-established shared network, wherein the method comprises the following steps: when detecting that the target equipment newly accesses the network, sending a certificate replacement request to second certificate management equipment so as to enable the second certificate management equipment to judge whether the target equipment can interact with second operator network equipment after receiving the certificate replacement request, and acquiring a certificate issued by a first operator to the target equipment and a prestored root certificate of the second operator when a judgment result is yes; receiving a certificate issued by a first operator for target equipment and a root certificate of a second operator, which are sent by second certificate management equipment; forwarding a certificate issued by a first operator for target equipment and a root certificate of a second operator to the target equipment; the method, the device, the system and the medium can solve the problem that an automatic distribution mechanism of the operator certificate under a co-construction sharing scene is lacked in the industry in the related technology.
Description
Technical Field
The present invention relates to the field of network technologies, and in particular, to a method, an apparatus, a system, and a medium for distributing certificates of a co-established shared network.
Background
The co-construction sharing scene breaks through the network closure, the requirement on identity authentication of both communication parties is stricter, when equipment of different manufacturers interacts, a root certificate of an opposite-end equipment manufacturer needs to be introduced, the equipment is more, the configuration is more complex, however, the existing certificate distribution method is generally the certificate distribution and replacement of a single operator, the operator certificate distribution under the co-construction sharing scene is not involved, and therefore an efficient and feasible automatic certificate distribution mechanism needs to be designed for the co-construction shared network architecture.
Disclosure of Invention
The technical problem to be solved by the present invention is to provide a method, an apparatus, a system and a medium for distributing a certificate of a co-established shared network, which can realize automatic distribution of an operator certificate in a co-established shared scenario, in view of the above-mentioned deficiencies of the prior art.
In a first aspect, the present invention provides a certificate distribution method for a co-established shared network, which is applied to a first certificate management device in a first operator network system, where the first operator network system further includes a second certificate management device, and the method includes:
when detecting that the target equipment newly accesses the network, sending a certificate replacement request to second certificate management equipment so as to enable the second certificate management equipment to judge whether the target equipment can interact with second operator network equipment after receiving the certificate replacement request, and acquiring a certificate issued by a first operator to the target equipment and a prestored root certificate of the second operator when a judgment result is yes;
receiving a certificate issued by the first operator for a target device and a root certificate of the second operator, which are sent by the second certificate management device;
forwarding the certificate issued by the first operator for the target equipment and the root certificate of the second operator to the target equipment so that the target equipment replaces the preset manufacturer certificate with the certificate issued by the first operator for the target equipment and prestores the root certificate of the second operator;
if the first operator is a sharing party in the co-established sharing network, the second operator is a construction party in the co-established sharing network, and if the first operator is a construction party in the co-established sharing network, the second operator is a sharing party in the co-established sharing network.
Further, when it is detected that the target device newly accesses the network, sending a certificate replacement request to the second certificate management device specifically includes:
when detecting that the target equipment is newly accessed to the network, carrying out identity authentication on the target equipment;
and sending a certificate replacement request to the second certificate management equipment in response to the authentication passing.
Further, the first certificate management device is a professional network manager in the first operator network system, and the second certificate management device is a comprehensive network manager in the first operator network system.
In a second aspect, the present invention provides a certificate distribution method for a co-established shared network, which is applied to a second certificate management device in a first operator network system, where the first operator network system further includes the first certificate management device, and the method includes:
receiving a certificate replacement request sent by first certificate management equipment, wherein the certificate replacement request is sent when the first certificate management equipment detects that target equipment is newly accessed to a network;
judging whether the target equipment interacts with second operator network equipment or not;
if yes, acquiring a certificate issued by the first operator for the target device and a pre-stored root certificate of the second operator;
sending a certificate issued by the first operator for target equipment and a root certificate of the second operator to the first certificate management equipment, so that the first certificate management equipment forwards the certificate issued by the first operator for the target equipment and the root certificate of the second operator to the target equipment, the target equipment replaces a preset manufacturer certificate with the certificate issued by the first operator for the target equipment, and the root certificate of the second operator is prestored;
if the first operator is a sharing party in the co-established sharing network, the second operator is a construction party in the co-established sharing network, and if the first operator is a construction party in the co-established sharing network, the second operator is a sharing party in the co-established sharing network.
Further, the determining whether the target device interacts with a second operator network device specifically includes:
and judging whether the target equipment can interact with the second operator network equipment or not according to the networking topology of the co-established shared network.
Further, the method further comprises:
if the target device does not interact with the second operator network device, acquiring a certificate issued by a first operator for the target device, and sending the certificate issued by the first operator for the target device to the first certificate management device, so that the first certificate management device forwards the certificate issued by the first operator for the target device to the target device, and the target device replaces a preset manufacturer certificate with the certificate issued by the first operator for the target device.
Further, the acquiring a certificate issued by the first operator for the target device specifically includes:
sending an operator certificate application request to a CA server of a certificate authority of a first operator, so that the CA server generates a certificate issued by the first operator for target equipment after receiving the operator certificate application request;
and receiving a certificate which is sent by the CA server and issued by the first operator for a target device.
Further, before acquiring the certificate issued by the first operator for the target device and the pre-stored root certificate of the second operator, the method further includes:
the method comprises the steps of docking with a comprehensive network manager in a second operator network system, and acquiring and storing a root certificate of a second operator; alternatively, the first and second liquid crystal display panels may be,
and receiving and storing the root certificate of the second operator sent after the CA server of the first operator is in butt joint with the CA server of the second operator.
Further, the first certificate management device is a professional network manager in the first operator network system, and the second certificate management device is a comprehensive network manager in the first operator network system.
In a third aspect, the present invention provides a certificate distribution apparatus for a co-established shared network, where the apparatus is arranged in a first certificate management device in a first operator network system, and the first operator network system further includes a second certificate management device, and the apparatus includes:
the request sending module is used for sending a certificate replacement request to second certificate management equipment when detecting that the target equipment is newly accessed to the network, so that the second certificate management equipment judges whether the target equipment can interact with second operator network equipment after receiving the certificate replacement request, and acquires a certificate issued by a first operator for the target equipment and a prestored root certificate of the second operator when a judgment result is yes;
the certificate receiving module is connected with the request sending module and used for receiving a certificate which is sent by the second certificate management device and is issued by the first operator for the target device and a root certificate of the second operator;
the certificate forwarding module is connected with the certificate receiving module and is used for forwarding the certificate issued by the first operator for the target equipment and the root certificate of the second operator to the target equipment so that the target equipment replaces a preset manufacturer certificate with the certificate issued by the first operator for the target equipment and prestores the root certificate of the second operator;
if the first operator is a sharing party in the co-established sharing network, the second operator is a construction party in the co-established sharing network, and if the first operator is a construction party in the co-established sharing network, the second operator is a sharing party in the co-established sharing network.
In a fourth aspect, the present invention provides a certificate distribution apparatus for a co-established shared network, where the apparatus is disposed in a second certificate management device in a first operator network system, the first operator network system further includes the first certificate management device, and the apparatus includes:
a request receiving module, configured to receive a certificate replacement request sent by a first certificate management device, where the certificate replacement request is sent when the first certificate management device detects that a target device newly accesses a network;
the interaction judging module is connected with the request receiving module and used for judging whether the target equipment interacts with second operator network equipment or not;
the certificate acquisition module is connected with the interaction judgment module and used for acquiring a certificate issued by a first operator for the target equipment and a prestored root certificate of a second operator if the interaction judgment module is yes;
a certificate sending module, connected to the certificate acquiring module, configured to send, to the first certificate management device, a certificate that is issued by the first operator for a target device and a root certificate of the second operator, so that the first certificate management device forwards, to the target device, the certificate that is issued by the first operator for the target device and the root certificate of the second operator, and the target device replaces, by the target device, a preset manufacturer certificate with the certificate that is issued by the first operator for the target device, and prestores the root certificate of the second operator;
if the first operator is a sharing party in the co-established shared network, the second operator is a contractor in the co-established shared network, and if the first operator is the contractor in the co-established shared network, the second operator is the sharing party in the co-established shared network.
In a fifth aspect, the present invention provides a certificate distribution apparatus for a co-established shared network, including a memory and a processor, where the memory stores a computer program, and the processor is configured to execute the computer program to implement the certificate distribution method for the co-established shared network according to the first aspect or the second aspect.
In a sixth aspect, the present invention provides a first operator network system, including: a first certificate management apparatus and a second certificate management apparatus;
the first certificate management device is configured to execute the certificate distribution method of the co-established shared network according to the first aspect;
the second certificate management apparatus is configured to execute the certificate distribution method of the co-established shared network according to the second aspect.
In a seventh aspect, the present invention provides a computer-readable storage medium, where a computer program is stored, and when executed by a processor, the computer program implements the certificate distribution method for a co-established shared network according to the first aspect or the second aspect.
When a first certificate management device detects that a target device newly accesses a network, sending a certificate replacement request to a second certificate management device, judging whether the target device interacts with a second operator network device after the second certificate management device receives the certificate replacement request, and acquiring a certificate issued by a first operator for the target device and a prestored root certificate of the second operator if the judgment result is yes; after receiving a certificate issued by a first operator to target equipment and a root certificate of a second operator, which are sent by a second certificate management device, by a first certificate management device, forwarding the certificate issued by the first operator to the target equipment and the root certificate of the second operator to the target equipment, so that the target equipment replaces a preset manufacturer certificate with the certificate issued by the first operator to the target equipment and prestores the root certificate of the second operator, thereby realizing authentication before interaction of new network access equipment through the certificate issued by the first operator to the target equipment or the root certificate of the second operator under a co-construction sharing scene. The problem of the industry lacks the automatic distribution mechanism of operator's certificate under the shared scene of building together in the correlation technique is solved.
Drawings
Fig. 1 is a flowchart of a certificate distribution method of a co-established shared network according to embodiment 1 of the present invention;
fig. 2 is an interaction diagram of a certificate distribution method for a co-established shared network according to an embodiment of the present invention;
fig. 3 is an interaction diagram of another certificate distribution method for a co-established shared network according to an embodiment of the present invention;
fig. 4 is a flowchart of a certificate distribution method of a co-established shared network according to embodiment 2 of the present invention;
fig. 5 is a schematic structural diagram of a certificate distribution apparatus of a co-established shared network according to embodiment 3 of the present invention;
fig. 6 is a schematic structural diagram of a certificate distribution apparatus of a co-established shared network according to embodiment 4 of the present invention;
fig. 7 is a schematic structural diagram of a certificate distribution apparatus of a co-established shared network according to embodiment 5 of the present invention;
fig. 8 is a schematic structural diagram of a first operator network system according to embodiment 6 of the present invention.
Detailed Description
In order to make those skilled in the art better understand the technical solution of the present invention, the following detailed description will be made with reference to the accompanying drawings.
It is to be understood that the specific embodiments and figures described herein are merely illustrative of the invention and are not limiting of the invention.
It is to be understood that the embodiments and features of the embodiments can be combined with each other without conflict.
It is to be understood that, for the convenience of description, only parts related to the present invention are shown in the drawings of the present invention, and parts not related to the present invention are not shown in the drawings.
It should be understood that each unit and module related in the embodiments of the present invention may correspond to only one physical structure, may also be composed of multiple physical structures, or multiple units and modules may also be integrated into one physical structure.
It will be understood that, without conflict, the functions, steps, etc. noted in the flowchart and block diagrams of the present invention may occur in an order different from that noted in the figures.
It is to be understood that the flowchart and block diagrams of the present invention illustrate the architecture, functionality, and operation of possible implementations of systems, apparatus, devices and methods according to various embodiments of the present invention. Each block in the flowchart or block diagrams may represent a unit, module, segment, code, or portion thereof, which comprises executable instructions for implementing the specified function(s). Furthermore, each block or combination of blocks in the block diagrams and flowchart illustrations can be implemented by a hardware-based system that performs the specified functions or by a combination of hardware and computer instructions.
It is to be understood that the units and modules involved in the embodiments of the present invention may be implemented by software, and may also be implemented by hardware, for example, the units and modules may be located in a processor.
Summary of the application
With the increase of the construction cost of the 5G network, the market demand for the co-construction sharing of the 5G network is stronger and stronger. The Chinese Unicom and the Chinese telecom jointly develop exploration and practice of a co-established shared Network in an MOCN (Multi-Operator Core Network) mode, the co-establishment and sharing of the 5G networks of both sides adopt a 5G MOCN shared Network architecture, namely, the 5G Core networks of a plurality of operators are connected to the same NG-RAN (NG Radio Access Network,5G Radio Access Network), share Radio Access networks and share Radio resources. One base station is physically, logically, two base stations A and B, and are respectively accessed to respective core networks through a return network, and simultaneously, service is provided for users of both sides.
The 5G MOCN shared network architecture changes the network system from closed to open sharing, and the requirement of authentication and identity confirmation is more urgent when the base station established by each of the two parties communicates with the base station of the other party or the 5GC (5 th Generation Mobile Communication Technology core,5G core network). Currently, the industry authenticates a base station by using a certificate, a manufacturer certificate is preset in a base station device when the base station device leaves a factory, and an opposite terminal device (other base stations or 5GC devices, etc.) needs to be pre-installed with a certificate issued by the same manufacturer CA to authenticate each other. When the base station and the opposite terminal equipment initiate connection, the two parties perform identity authentication through the certificate. The certificate is a certificate trusted by both parties, namely the certificate can pass authentication. After the authentication is passed, the two parties can perform subsequent connection and communication.
In the certificate authentication process, mutual trust of certificates of both parties is required, and generally, the certificates of both parties are issued by the same trusted CA or are imported into a root certificate of the CA of the opposite party equipment in advance. And the configuration of the certificate is very complicated by millions of base stations in the 5G network. In the co-established shared network, in order to successfully authenticate the devices of different operators, root certificates of the devices of the different operators need to be imported, so that more devices are required, and the configuration is more complicated. In the prior art, most of certificates of a single operator are distributed and replaced, and operator certificate interaction under a co-construction sharing scene is not involved, so that an efficient and feasible automatic certificate distribution mechanism needs to be designed for a co-construction shared network architecture.
In view of the above technical problems, the present application provides a certificate distribution method, apparatus, system, and medium for a co-established shared network, where when a target device is newly connected to a network, a first certificate management device sends a certificate replacement request to a second certificate management device, so that when the second certificate management device determines that the target device interacts with a second operator network device, a certificate issued by a first operator for the target device and a pre-stored root certificate of the second operator are obtained, and the certificate is forwarded to the target device through the first certificate management device, so that the target device can replace a preset manufacturer certificate with a certificate issued by the first operator for the target device, and pre-store the root certificate of the second operator, thereby implementing authentication before interaction by the target device through the certificate issued by the first operator for the target device or the root certificate of the second operator in a co-established shared scenario, and being suitable for large-scale automatic distribution and replacement of certificates of a 5G network, and avoiding complex configuration of root certificates of multiple manufacturers that need to be imported into the target device when multiple different manufacturer devices interact.
Having described the general principles of the present application, various non-limiting embodiments of the present application will now be described with reference to the accompanying drawings.
Example 1:
this embodiment provides a certificate distribution method for a co-established shared network, which is applied to a first certificate management device in a first operator network system, where the first operator network system further includes a second certificate management device, and as shown in fig. 1, the method includes:
step S101: when detecting that the target device newly accesses the network, sending a certificate replacement request to a second certificate management device, so that the second certificate management device judges whether the target device interacts with a second operator network device after receiving the certificate replacement request, and if so, acquiring a certificate issued by a first operator to the target device and a pre-stored root certificate of the second operator.
In this embodiment, the target device refers to a device that is newly currently accessed to the network, such as a base station, a 5GC network element, and the like, and the first operator and the second operator are a sharing party and a construction accepting party in the co-construction sharing network, that is, when the first operator is the sharing party, the second operator is the construction accepting party, and when the first operator is the construction accepting party, the second operator is the sharing party. The first certificate management device may be a newly added device in a network system of a first operator, or an existing device with a built-in relevant function module, where the relevant function includes detecting a newly accessed device, performing identity authentication on the newly accessed device, and sending a certificate replacement request to a second certificate management device, and the device is generally configured through a professional network manager of a corresponding manufacturer, so that the first certificate management device is preferably a professional network manager, that is, a relevant function module is built in the professional network manager, it needs to be noted that a device of an operator usually corresponds to multiple manufacturers, and each manufacturer corresponds to a different professional network manager, and is managed by the operator in a unified manner, so that one operator may correspond to multiple first certificate management devices, such as an a operator, and when a base station is newly accessed, the professional network manager corresponding to the base station (i.e., the first certificate management device) performs detection, and sends a certificate replacement request to the second certificate management device, and when a network element of a 5GC is newly accessed, the professional network manager performs detection by the core network manager (i.e., the first certificate management device), and sends a certificate replacement request to the second certificate management device.
Optionally, when it is detected that the target device newly accesses the network, sending a certificate replacement request to the second certificate management device specifically includes:
when detecting that the target equipment is newly accessed to the network, carrying out identity authentication on the target equipment;
and sending a certificate replacement request to the second certificate management equipment in response to the authentication passing.
In this embodiment, in order to reduce the risk of counterfeiting, when it is detected that the target device newly accesses the network, first perform identity verification on the target device, for example, perform identity verification on the target device by verifying a preset certificate of a manufacturer, and if the identity verification passes, then send a certificate replacement request to the second certificate management device, so that the preset certificate of the manufacturer in the target device can be subsequently replaced with a certificate issued by the first operator for the target device.
In this embodiment, after receiving a certificate replacement request sent by a first certificate management device, a second certificate management device determines whether a target device will interact with a second operator network device, for example, determines whether the target device will interact with the second operator network device according to a networking topology of a co-established shared network, and when it is determined that the target device will interact with the second operator network device, the second certificate management device obtains a certificate issued by the first operator for the target device and a pre-stored root certificate of the second operator. It should be noted that the second certificate management device may be in advance in butt joint with a second certificate management device in the second operator network system, and acquire and store the root certificate of the second operator, where the second certificate management device in the second operator network system is preferably an integrated network management device, or the CA server of the first operator may be in advance in butt joint with the CA server of the second operator, interact both root certificates in advance, and forward the root certificate of the second operator to the second certificate management device, so that the second certificate management device may pre-store the root certificate of the second operator.
Step S102: and receiving a certificate issued by the first operator for a target device and a root certificate of the second operator, which are sent by the second certificate management device.
Step S103: and forwarding the certificate issued by the first operator for the target equipment and the root certificate of the second operator to the target equipment, so that the target equipment replaces a preset manufacturer certificate with the certificate issued by the first operator for the target equipment, and prestores the root certificate of the second operator.
In this embodiment, after acquiring a certificate issued by a first operator to a target device and a pre-stored root certificate of a second operator, a second certificate management device sends the certificate issued by the first operator to the target device and the root certificate of the second operator to the first certificate management device, the first certificate management device forwards the certificate issued by the first operator to the target device and the root certificate of the second operator to the target device, and after receiving the certificate issued by the first operator to the target device and the root certificate of the second operator, the target device replaces a preset manufacturer certificate with the certificate issued by the first operator to the target device and pre-stores the root certificate of the second operator, so that when the target device needs to interact with a network device of the second operator, the target device can pass authentication through the pre-stored root certificate of the second operator, thereby achieving communication between the two parties.
In this embodiment, when the second certificate management device determines that the target device does not interact with the second operator network device, the certificate issued by the first operator for the target device is acquired, and the certificate issued by the first operator for the target device is sent to the first certificate management device, so that the first certificate management device forwards the certificate issued by the first operator for the target device to the target device, and after receiving the certificate issued by the first operator for the target device, the target device replaces the preset manufacturer certificate with the certificate issued by the first operator for the target device, so that when the target device needs to interact with other network devices of the first operator, the certificate issued by the first operator for the target device, which is prestored, passes authentication, and thus communication between the target device and the other network devices is achieved.
In this embodiment, the second certificate management device may be a newly added device in the first operator network system, or may be an existing device with a built-in related function module, such as an integrated network management, where the related functions include receiving a certificate replacement request, determining whether a target device interacts with the second operator network device, sending an operator certificate application request to the CA server, receiving a certificate issued by the first operator for the target device and sent to the first certificate management device, where one operator generally corresponds to one integrated network management device, such as an a operator, and corresponds to an integrated network management system a; and the operator B corresponds to the comprehensive network management B, and each comprehensive network management can correspond to a plurality of professional network management. The first certificate management apparatus and the second certificate management apparatus may be combined into the same apparatus.
In this embodiment, for an old device that is not newly networked, a first certificate management device or a second certificate management device may actively initiate a replacement process, so that the old device replaces a preset vendor certificate with a certificate issued by a first operator for a target device, and prestores a root certificate of the second operator.
In a specific embodiment, taking a first certificate management device as a professional network manager and a second certificate management device as an integrated network manager as an example, referring to fig. 2, an interaction diagram of a certificate distribution method for a co-established shared network provided by an embodiment of the present invention is shown. In this embodiment, the method includes the following steps:
(1) The comprehensive network management of the two parties is in butt joint, and the two parties interact the certificate in advance.
Specifically, the comprehensive network manager A is in butt joint with the comprehensive network manager B, and the double-root certificate is interacted in advance.
(2) And newly accessing the equipment, and carrying out identity verification on the equipment by a professional network manager.
Specifically, the equipment is newly accessed, the identity of the equipment is verified by se:Sub>A professional network manager of the same manufacturer, if the base station-A is newly accessed, the identity of the equipment is verified by the professional network manager A1, if the base station-A is newly accessed, the identity of the equipment is verified by the professional network manager A2, and if the base station-B is newly accessed, the identity of the equipment is verified by the professional network manager B1. The identity verification specifically can verify the equipment identity in a mode of verifying a preset certificate of a manufacturer.
(3) After the professional network management verifies that the equipment identity is valid, a certificate replacement request is sent to the comprehensive network management, so that a manufacturer certificate preset in the equipment can be replaced by a certificate issued by a first operator for target equipment in the following process. It should be noted that an operator usually corresponds to one integrated network manager, and each integrated network manager may correspond to a plurality of professional network managers.
Specifically, after the professional webmaster A1 verifies the identity of the base station-a is valid, the professional webmaster A1 can send a certificate replacement request to the comprehensive webmaster a, and after the professional webmaster B1 verifies the identity of the base station-B is valid, the professional webmaster B1 can send a certificate replacement request to the comprehensive webmaster B.
(4) The comprehensive network management judges whether the newly accessed equipment interacts with a second operator, and if so, the newly accessed equipment interacts with the second operator to carry out the steps (5), (6), (7), (9) and (11); and (5) if the newly-accessed network equipment is judged not to interact with the second operator, performing the steps (5), (6), (8), (10) and (11).
Specifically, the integrated network manager judges whether the newly-accessed device interacts with the second operator network device according to the networking topology of the co-established shared network.
(5) The comprehensive network management sends an operator certificate application request to the CA server, and requests the CA server of the first operator for a certificate issued by the first operator for the target equipment.
(6) And the CA server generates a certificate issued by the first operator for the target equipment and forwards the certificate issued by the first operator for the target equipment to the comprehensive network management system.
(7) And the comprehensive network management system forwards the generated certificate issued by the first operator for the target equipment to the professional network management system.
(8) And the comprehensive network management forwards the generated certificate issued by the first operator for the target equipment and the pre-stored root certificate of the second operator to the professional network management.
(9) And the professional network manager forwards the generated certificate issued by the first operator for the target equipment to the new network access equipment.
(10) And the professional network manager forwards the generated certificate issued by the first operator for the target equipment and the pre-stored root certificate of the second operator to the new network access equipment.
(11) And the new network access equipment stores the root certificate forwarded by the professional network manager, and replaces the preset manufacturer certificate with the generated certificate issued by the first operator for the target equipment. Therefore, the new network access equipment can perform authentication before interaction through the operator root certificate under the co-construction sharing scene.
In a specific embodiment, taking a first certificate management device as a professional network manager and a second certificate management device as an integrated network manager as an example, referring to fig. 3, an interaction diagram of another certificate distribution method for a co-established shared network provided in the embodiment of the present invention is shown. In this embodiment, the method includes the following steps:
0) The CA servers of the two parties are in butt joint, and the two parties interact with the certificate in advance.
Specifically, CA server-A interfaces with CA server-B, interacting the dual root certificate in advance.
1) And each CA server forwards the root certificate of the other party to the comprehensive network management.
Specifically, the CA server-A sends the root certificate of the operator B to the comprehensive network management A, and the CA server-B sends the root certificate of the operator A to the comprehensive network management B.
2) And newly accessing the equipment, and carrying out identity verification on the equipment by a professional network manager.
Specifically, the equipment is newly accessed, the identity of the equipment is verified by se:Sub>A professional network manager of the same manufacturer, if the base station-A is newly accessed, the identity of the equipment is verified by the professional network manager A1, if the base station-A is newly accessed, the identity of the equipment is verified by the professional network manager A2, and if the base station-B is newly accessed, the identity of the equipment is verified by the professional network manager B1. The identity verification specifically can verify the equipment identity in a mode of verifying a preset certificate of a manufacturer.
3) After the professional network management verifies that the equipment identity is valid, a certificate replacement request is sent to the comprehensive network management, so that a manufacturer certificate preset in the equipment can be replaced by a certificate issued by a first operator for target equipment in the following process.
Specifically, after the professional network manager A1 verifies that the identity of the base station-a is valid, a certificate replacement request can be sent to the comprehensive network manager a, and after the professional network manager B1 verifies that the identity of the base station-B is valid, a certificate replacement request can be sent to the comprehensive network manager B.
4) The comprehensive network management judges whether the newly accessed equipment can interact with a second operator, and if the newly accessed equipment can interact with the second operator, the steps of 5), 6), 7), 9) and 11) are carried out; and if the newly-accessed network equipment is judged not to interact with the second operator, the steps 5), 6), 8), 10) and 11) are carried out.
Specifically, the integrated network manager judges whether the newly-accessed device interacts with the second operator network device according to the networking topology of the co-established shared network.
5) The comprehensive network management sends an operator certificate application request to the CA server, and requests the CA server of the first operator for a certificate issued by the first operator for the target equipment.
6) And the CA server generates a certificate issued by the first operator for the target device and forwards the certificate issued by the first operator for the target device to the comprehensive network management system.
7) And the comprehensive network management forwards the generated certificate issued by the first operator for the target equipment to the professional network management.
8) And the comprehensive network management forwards the generated certificate issued by the first operator for the target equipment and the pre-stored root certificate of the second operator to the professional network management.
9) And the professional network manager forwards the generated certificate issued by the first operator for the target equipment to the new network access equipment.
10 The professional network manager forwards the generated certificate issued by the first operator for the target device and the pre-stored root certificate of the second operator to the new network access device.
11 The new network access device stores the root certificate forwarded by the professional network manager, and replaces the preset manufacturer certificate with the generated certificate issued by the first operator for the target device. Therefore, the new network access equipment can perform authentication before interaction through the operator root certificate under the co-construction sharing scene.
In the certificate distribution method of the co-established shared network provided by the embodiment of the present invention, when a first certificate management device detects that a target device newly accesses a network, a certificate replacement request is sent to a second certificate management device, and after receiving the certificate replacement request, the second certificate management device determines whether the target device interacts with a second operator network device, and when the determination result is yes, acquires a certificate issued by the first operator to the target device and a pre-stored root certificate of the second operator; after receiving the certificate issued by the first operator to the target device and the root certificate of the second operator, which are sent by the second certificate management device, the first certificate management device forwards the certificate issued by the first operator to the target device and the root certificate of the second operator to enable the target device to replace the preset manufacturer certificate with the certificate issued by the first operator to the target device, and pre-stores the root certificate of the second operator, so that authentication before interaction can be performed by newly-accessed network equipment under a co-construction sharing scene through the certificate issued by the first operator to the target device or the root certificate of the second operator. The problem of the industry lacks the automatic distribution mechanism of operator's certificate under the shared scene of building together in the correlation technique is solved.
Example 2:
as shown in fig. 4, this embodiment provides a certificate distribution method for a co-established shared network, which is applied to a second certificate management device in a first operator network system, where the first operator network system further includes the first certificate management device, and the method includes:
step S201: receiving a certificate replacement request sent by a first certificate management device, wherein the certificate replacement request is sent when the first certificate management device detects that a target device newly accesses a network.
In this embodiment, the target device refers to a device that is newly connected to a network, such as a base station, a 5GC network element, and the like, and the first certificate management device may be a newly added device in a network system of a first operator or an existing device with a built-in related function module, where the related function includes detecting the newly connected device, performing identity authentication on the newly connected device, sending a certificate replacement request to the second certificate management device, and the like.
Step S202: and judging whether the target equipment interacts with second operator network equipment or not.
In this embodiment, the second certificate management device may determine, according to a networking topology of the co-established shared network, whether the target device will interact with the second operator network device. If the first operator is a sharing party in the co-established sharing network, the second operator is a construction party in the co-established sharing network, and if the first operator is a construction party in the co-established sharing network, the second operator is a sharing party in the co-established sharing network.
Step S203: if so, acquiring a certificate issued by the first operator for the target device and a pre-stored root certificate of the second operator.
Optionally, the acquiring a certificate issued by the first operator for the target device specifically includes:
sending an operator certificate application request to a CA server of a certificate authority of a first operator, so that the CA server generates a certificate issued by the first operator for target equipment after receiving the operator certificate application request;
and receiving a certificate which is sent by the CA server and issued by the first operator for a target device.
Optionally, before obtaining the certificate issued by the first operator for the target device and the pre-stored root certificate of the second operator, the method further includes:
the method comprises the steps of docking with a comprehensive network manager in a second operator network system, and acquiring and storing a root certificate of a second operator; alternatively, the first and second electrodes may be,
and receiving and storing the root certificate of the second operator sent after the CA server of the first operator is in butt joint with the CA server of the second operator.
In this embodiment, the second certificate management device may be a newly added device in the first operator network system, or may be an existing device with a built-in relevant function module, such as an integrated network management system, where the relevant functions include receiving a certificate replacement request, determining whether a target device will interact with a second operator network device, sending an operator certificate application request to the CA server, receiving a certificate sent by the CA server and issued by a first operator for the target device, and sending a certificate issued by the first operator for the target device and a root certificate of a second operator to the first certificate management device. The first certificate management apparatus and the second certificate management apparatus may be combined into the same apparatus.
Step S204: sending a certificate issued by the first operator for target equipment and a root certificate of the second operator to the first certificate management equipment, so that the first certificate management equipment forwards the certificate issued by the first operator for the target equipment and the root certificate of the second operator to the target equipment, the target equipment replaces a preset manufacturer certificate with the certificate issued by the first operator for the target equipment, and the root certificate of the second operator is prestored.
Optionally, the method further comprises:
if the target device does not interact with the second operator network device, acquiring a certificate issued by a first operator for the target device, and sending the certificate issued by the first operator for the target device to the first certificate management device, so that the first certificate management device forwards the certificate issued by the first operator for the target device to the target device, and the target device replaces a preset manufacturer certificate with the certificate issued by the first operator for the target device.
In this embodiment, when the target device needs to interact with the second operator network device, the target device may pass authentication through a pre-stored root certificate of the second operator, so as to implement communication between the target device and the second operator. When the target device needs to interact with other network devices of the first operator, the target device can pass the certification through a certificate issued by the first operator to the target device, which is prestored in advance, so that the communication between the target device and the other network devices is realized.
Example 3:
as shown in fig. 5, this embodiment provides a certificate distribution apparatus for a co-established shared network, where the first certificate management device is disposed in a first operator network system, and is configured to execute the certificate distribution method for the co-established shared network in embodiment 1, where the first operator network system further includes a second certificate management device, and the apparatus includes:
a request sending module 11, configured to send a certificate replacement request to a second certificate management device when it is detected that a target device newly accesses a network, so that the second certificate management device determines, after receiving the certificate replacement request, whether the target device interacts with a second operator network device, and if a determination result is yes, obtains a certificate issued by a first operator for the target device and a pre-stored root certificate of the second operator;
a certificate receiving module 12, connected to the request sending module 11, configured to receive a certificate issued by the second certificate management device to the target device by the first operator and a root certificate of the second operator;
a certificate forwarding module 13, connected to the certificate receiving module 12, configured to forward the certificate issued by the first operator for the target device and the root certificate of the second operator to the target device, so that the target device replaces a preset manufacturer certificate with the certificate issued by the first operator for the target device, and prestores the root certificate of the second operator;
if the first operator is a sharing party in the co-established sharing network, the second operator is a construction party in the co-established sharing network, and if the first operator is a construction party in the co-established sharing network, the second operator is a sharing party in the co-established sharing network.
Optionally, the request sending module 11 specifically includes:
the identity authentication unit is used for authenticating the identity of the target equipment when detecting that the target equipment is newly accessed to the network;
and the request sending unit is used for responding to the passing of the identity authentication and sending a certificate replacing request to the second certificate management equipment.
Optionally, the first certificate management device is a professional network manager in the first operator network system, and the second certificate management device is a comprehensive network manager in the first operator network system.
Example 4:
as shown in fig. 6, this embodiment provides a certificate distribution apparatus for a co-established shared network, where the second certificate management device is disposed in a first operator network system, and is configured to execute the certificate distribution method for the co-established shared network in embodiment 2, where the first operator network system further includes a first certificate management device, and the apparatus includes:
a request receiving module 21, configured to receive a certificate replacement request sent by a first certificate management device, where the certificate replacement request is sent when the first certificate management device detects that a target device newly accesses a network;
an interaction determining module 22, connected to the request receiving module 21, configured to determine whether the target device will interact with a second operator network device;
the certificate acquisition module 23 is connected to the interaction judgment module 22, and configured to acquire, if yes, a certificate issued by the first operator for the target device and a pre-stored root certificate of the second operator;
a certificate sending module 24, connected to the certificate obtaining module 23, configured to send the certificate issued by the first operator for the target device and the root certificate of the second operator to the first certificate management device, so that the first certificate management device forwards the certificate issued by the first operator for the target device and the root certificate of the second operator to the target device, and the target device replaces the preset manufacturer certificate with the certificate issued by the first operator for the target device, and prestores the root certificate of the second operator;
if the first operator is a sharing party in the co-established shared network, the second operator is a contractor in the co-established shared network, and if the first operator is the contractor in the co-established shared network, the second operator is the sharing party in the co-established shared network.
Optionally, the interaction determining module 22 is specifically configured to determine, according to a networking topology of the co-established shared network, whether the target device will interact with a second operator network device.
Optionally, the apparatus further comprises:
a first sending module, configured to, if the target device does not interact with a second operator network device, obtain a certificate issued by a first operator for the target device, and send the certificate issued by the first operator for the target device to the first certificate management device, so that the first certificate management device forwards the certificate issued by the first operator for the target device to the target device, and the target device replaces a preset vendor certificate with the certificate issued by the first operator for the target device.
Optionally, the certificate obtaining module 23 specifically includes:
an application sending unit, configured to send an operator certificate application request to a certificate authority CA server of a first operator when the interaction determining module 22 determines that the result is yes, so that the CA server generates a certificate that the first operator issues to a target device after receiving the operator certificate application request;
a certificate receiving unit, configured to receive a certificate issued by the first operator for a target device and sent by the CA server;
and a first obtaining unit, configured to obtain a pre-stored root certificate of the second operator when the interaction determining module 22 determines that the result is yes.
Optionally, the apparatus further comprises:
the certificate storage module is used for being in butt joint with a comprehensive network manager in a second operator network system, and acquiring and storing a root certificate of a second operator; alternatively, the first and second electrodes may be,
and receiving and storing the root certificate of the second operator sent after the CA server of the first operator is in butt joint with the CA server of the second operator.
Optionally, the first certificate management device is a professional network manager in the first operator network system, and the second certificate management device is a comprehensive network manager in the first operator network system.
Example 5:
referring to fig. 7, the present embodiment provides a certificate distribution apparatus for a co-established shared network, including a memory 31 and a processor 32, where the memory 31 stores therein a computer program, and the processor 32 is configured to run the computer program to perform the certificate distribution method for the co-established shared network in embodiment 1 or embodiment 2.
The memory 31 is connected to the processor 32, the memory 31 may be a flash memory, a read-only memory or other memories, and the processor 32 may be a central processing unit or a single chip microcomputer.
Example 6:
referring to fig. 8, the present embodiment provides a first operator network system including: a first certificate management apparatus 41 and a second certificate management apparatus 42;
the first certificate management apparatus 41 is configured to execute a certificate distribution method of a co-established shared network in embodiment 1;
the second certificate management apparatus 42 is configured to execute the certificate distribution method of the co-established shared network in embodiment 2.
Example 7:
the present embodiment provides a computer-readable storage medium, where a computer program is stored, and when the computer program is executed by a processor, the computer program implements the certificate distribution method for a co-established shared network in embodiment 1 or embodiment 2.
The computer-readable storage media include volatile or nonvolatile, removable or non-removable media implemented in any method or technology for storage of information such as computer-readable instructions, data structures, computer program modules or other data. Computer-readable storage media include, but are not limited to, RAM (Random Access Memory), ROM (Read-Only Memory), EEPROM (Electrically Erasable Programmable Read-Only Memory), flash Memory or other Memory technology, CD-ROM (Compact disk Read-Only Memory), digital Versatile Disks (DVD) or other optical disk storage, magnetic cassettes, magnetic tape, magnetic disk storage or other magnetic storage devices, or any other medium which can be used to store the desired information and which can be accessed by a computer.
It will be understood that the above embodiments are merely exemplary embodiments taken to illustrate the principles of the present invention, which is not limited thereto. It will be apparent to those skilled in the art that various modifications and improvements can be made without departing from the spirit and substance of the invention, and these modifications and improvements are also considered to be within the scope of the invention.
Claims (14)
1. A certificate distribution method for a co-established shared network, the method being applied to a first certificate management device in a first operator network system, the first operator network system further including a second certificate management device, the method comprising:
when detecting that the target equipment is newly accessed to the network, sending a certificate replacement request to second certificate management equipment so as to enable the second certificate management equipment to judge whether the target equipment can interact with second operator network equipment or not after receiving the certificate replacement request, and acquiring a certificate issued by a first operator for the target equipment and a prestored root certificate of the second operator if the judgment result is yes;
receiving a certificate issued by the first operator for a target device and a root certificate of the second operator, which are sent by the second certificate management device;
the certificate issued by the first operator for the target equipment and the root certificate of the second operator are forwarded to the target equipment, so that the target equipment replaces a preset manufacturer certificate with the certificate issued by the first operator for the target equipment, and the root certificate of the second operator is prestored;
if the first operator is a sharing party in the co-established sharing network, the second operator is a construction party in the co-established sharing network, and if the first operator is a construction party in the co-established sharing network, the second operator is a sharing party in the co-established sharing network.
2. The certificate distribution method for the co-established shared network according to claim 1, wherein the sending a certificate replacement request to the second certificate management device when detecting that the target device newly accesses the network specifically includes:
when detecting that the target equipment is newly accessed to the network, carrying out identity authentication on the target equipment;
and sending a certificate replacement request to the second certificate management equipment in response to the authentication passing.
3. The certificate distribution method of the co-established shared network according to claim 1, wherein the first certificate management device is a professional network manager in a first operator network system, and the second certificate management device is a comprehensive network manager in the first operator network system.
4. A certificate distribution method for a co-established shared network, which is applied to a second certificate management device in a first operator network system, wherein the first operator network system further includes a first certificate management device, and the method includes:
receiving a certificate replacement request sent by first certificate management equipment, wherein the certificate replacement request is sent when the first certificate management equipment detects that target equipment newly accesses a network;
judging whether the target equipment interacts with second operator network equipment or not;
if so, acquiring a certificate issued by the first operator for the target equipment and a prestored root certificate of the second operator;
sending a certificate issued by the first operator for target equipment and a root certificate of the second operator to the first certificate management equipment, so that the first certificate management equipment forwards the certificate issued by the first operator for the target equipment and the root certificate of the second operator to the target equipment, the target equipment replaces a preset manufacturer certificate with the certificate issued by the first operator for the target equipment, and the root certificate of the second operator is prestored;
if the first operator is a sharing party in the co-established sharing network, the second operator is a construction party in the co-established sharing network, and if the first operator is a construction party in the co-established sharing network, the second operator is a sharing party in the co-established sharing network.
5. The certificate distribution method for the co-established shared network according to claim 4, wherein the determining whether the target device interacts with a second operator network device specifically includes:
and judging whether the target equipment can interact with the second operator network equipment or not according to the networking topology of the co-established shared network.
6. The method for certificate distribution of a co-established shared network according to claim 4, wherein the method further comprises:
if the target device does not interact with the second operator network device, acquiring a certificate issued by a first operator for the target device, and sending the certificate issued by the first operator for the target device to the first certificate management device, so that the first certificate management device forwards the certificate issued by the first operator for the target device to the target device, and the target device replaces a preset manufacturer certificate with the certificate issued by the first operator for the target device.
7. The certificate distribution method for the co-established shared network according to claim 4 or 6, wherein the acquiring a certificate issued by the first operator for the target device specifically includes:
sending an operator certificate application request to a CA server of a certificate authority of a first operator, so that the CA server generates a certificate issued by the first operator for target equipment after receiving the operator certificate application request;
and receiving a certificate which is sent by the CA server and issued by the first operator for a target device.
8. The method according to claim 4, wherein before acquiring the certificate issued by the first operator for the target device and the pre-stored root certificate of the second operator, the method further comprises:
the method comprises the steps of docking with a comprehensive network manager in a second operator network system, and acquiring and storing a root certificate of a second operator; alternatively, the first and second electrodes may be,
and receiving and storing the root certificate of the second operator sent after the CA server of the first operator is in butt joint with the CA server of the second operator.
9. The certificate distribution method of the co-established shared network according to claim 4, wherein the first certificate management device is a professional network manager in the first operator network system, and the second certificate management device is a comprehensive network manager in the first operator network system.
10. A certificate distribution apparatus for a co-established shared network, wherein the apparatus is a first certificate management device provided in a first operator network system, the first operator network system further includes a second certificate management device, and the apparatus includes:
the request sending module is used for sending a certificate replacement request to second certificate management equipment when detecting that the target equipment is newly accessed to the network, so that the second certificate management equipment judges whether the target equipment can interact with second operator network equipment after receiving the certificate replacement request, and acquires a certificate issued by a first operator for the target equipment and a prestored root certificate of the second operator when a judgment result is yes;
the certificate receiving module is connected with the request sending module and used for receiving a certificate which is sent by the second certificate management device and is issued by the first operator for the target device and a root certificate of the second operator;
the certificate forwarding module is connected with the certificate receiving module and is used for forwarding the certificate issued by the first operator for the target equipment and the root certificate of the second operator to the target equipment so that the target equipment replaces a preset manufacturer certificate with the certificate issued by the first operator for the target equipment and prestores the root certificate of the second operator;
if the first operator is a sharing party in the co-established shared network, the second operator is a contractor in the co-established shared network, and if the first operator is the contractor in the co-established shared network, the second operator is the sharing party in the co-established shared network.
11. A certificate distribution apparatus for a co-established shared network, wherein the apparatus is a second certificate management device disposed in a first operator network system, the first operator network system further includes a first certificate management device, and the apparatus includes:
a request receiving module, configured to receive a certificate replacement request sent by a first certificate management device, where the certificate replacement request is sent when the first certificate management device detects that a target device newly accesses a network;
the interaction judging module is connected with the request receiving module and is used for judging whether the target equipment can interact with second operator network equipment or not;
the certificate acquisition module is connected with the interaction judgment module and used for acquiring a certificate issued by a first operator for the target equipment and a prestored root certificate of a second operator if the interaction judgment module is yes;
a certificate sending module, connected to the certificate acquiring module, configured to send, to the first certificate management device, a certificate that is issued by the first operator for a target device and a root certificate of the second operator, so that the first certificate management device forwards, to the target device, the certificate that is issued by the first operator for the target device and the root certificate of the second operator, and the target device replaces, by the target device, a preset manufacturer certificate with the certificate that is issued by the first operator for the target device, and prestores the root certificate of the second operator;
if the first operator is a sharing party in the co-established sharing network, the second operator is a construction party in the co-established sharing network, and if the first operator is a construction party in the co-established sharing network, the second operator is a sharing party in the co-established sharing network.
12. A certificate distribution apparatus of a co-established shared network, comprising a memory and a processor, wherein the memory stores a computer program, and the processor is configured to execute the computer program to implement the certificate distribution method of the co-established shared network according to any one of claims 1 to 3, or to implement the certificate distribution method of the co-established shared network according to any one of claims 4 to 9.
13. A first carrier network system, comprising: a first certificate management apparatus and a second certificate management apparatus;
the first certificate management device is used for executing the certificate distribution method of the co-established shared network in any one of claims 1-3;
the second certificate management apparatus is configured to execute the certificate distribution method of the co-established shared network according to any one of claims 4 to 9.
14. A computer-readable storage medium, characterized in that the computer-readable storage medium has stored thereon a computer program which, when executed by a processor, implements the certificate distribution method of the co-established shared network according to any one of claims 1 to 3, or implements the certificate distribution method of the co-established shared network according to any one of claims 4 to 9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210699587.4A CN115277001A (en) | 2022-06-20 | 2022-06-20 | Certificate distribution method, device, system and medium for co-building shared network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210699587.4A CN115277001A (en) | 2022-06-20 | 2022-06-20 | Certificate distribution method, device, system and medium for co-building shared network |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115277001A true CN115277001A (en) | 2022-11-01 |
Family
ID=83761122
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210699587.4A Pending CN115277001A (en) | 2022-06-20 | 2022-06-20 | Certificate distribution method, device, system and medium for co-building shared network |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115277001A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115665747A (en) * | 2022-12-26 | 2023-01-31 | 深圳市亲邻科技有限公司 | Terminal equipment operator network switching method, device, medium and terminal equipment |
-
2022
- 2022-06-20 CN CN202210699587.4A patent/CN115277001A/en active Pending
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115665747A (en) * | 2022-12-26 | 2023-01-31 | 深圳市亲邻科技有限公司 | Terminal equipment operator network switching method, device, medium and terminal equipment |
| CN115665747B (en) * | 2022-12-26 | 2023-03-03 | 深圳市亲邻科技有限公司 | Terminal equipment operator network switching method, device, medium and terminal equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111865598B (en) | Identity verification method and related device for network function service | |
| US9391969B2 (en) | Dynamic radius | |
| US8966584B2 (en) | Dynamic authentication gateway | |
| US9380038B2 (en) | Bootstrap authentication framework | |
| US7809940B2 (en) | Remote certificate management | |
| KR102001544B1 (en) | Apparatus and method to enable a user authentication in a communication system | |
| CN106878135B (en) | Connection method and device | |
| KR20080053298A (en) | Creating secure interactive connections with remote resources | |
| CN113746633B (en) | Internet of things equipment binding method, device, system, cloud server and storage medium | |
| US11245577B2 (en) | Template-based onboarding of internet-connectible devices | |
| CN110247758B (en) | Password management method and device and password manager | |
| CN105450582A (en) | Business processing method, terminal, server and system | |
| US9455972B1 (en) | Provisioning a mobile device with a security application on the fly | |
| CN115277001A (en) | Certificate distribution method, device, system and medium for co-building shared network | |
| CN114513829A (en) | Network access method, device, core network, server and terminal | |
| CN111614476A (en) | Equipment configuration method, system and device | |
| CN111245791B (en) | Single sign-on method for realizing management and IT service through reverse proxy | |
| US9723436B2 (en) | Mobile device location | |
| CN115412294A (en) | Platform service-based access method and device, storage medium and electronic equipment | |
| CN105721397A (en) | CM registration method and device | |
| US20220413885A1 (en) | Virtual Machine Provisioning and Directory Service Management | |
| CN115278671A (en) | Network element authentication method, device, storage medium and electronic equipment | |
| CN114786170A (en) | Method, terminal, USIM and system for switching uplink data security processing entity | |
| CN115460084A (en) | Security acceleration service deployment method, device, medium and equipment | |
| CN108306807B (en) | Account opening management method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |