CN115696635A - Satellite network connection method, device, equipment and storage medium - Google Patents

Satellite network connection method, device, equipment and storage medium Download PDF

Info

Publication number
CN115696635A
CN115696635A CN202211350389.3A CN202211350389A CN115696635A CN 115696635 A CN115696635 A CN 115696635A CN 202211350389 A CN202211350389 A CN 202211350389A CN 115696635 A CN115696635 A CN 115696635A
Authority
CN
China
Prior art keywords
vehicle
enterprise
satellite
mounted terminal
identity
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202211350389.3A
Other languages
Chinese (zh)
Inventor
赵兴祥
高斯雄
刁楷
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Chongqing Changan Automobile Co Ltd
Original Assignee
Chongqing Changan Automobile Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Chongqing Changan Automobile Co Ltd filed Critical Chongqing Changan Automobile Co Ltd
Priority to CN202211350389.3A priority Critical patent/CN115696635A/en
Publication of CN115696635A publication Critical patent/CN115696635A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

The invention provides a satellite network connection method, a satellite network connection device, satellite network connection equipment and a storage medium, and relates to the field of satellite communication. Includes initiating a wireless connection request to the satellite over the common channel to cause the satellite to assign a dedicated channel; receiving configuration information sent by a satellite, and configuring a dedicated channel according to the configuration information; sending wireless connection establishment completion information through a dedicated channel so as to identify the enterprise to which the vehicle-mounted terminal identification code belongs through the vehicle-mounted terminal identification code and initiate an identity authentication request to a corresponding enterprise cloud platform; receiving an authentication and encryption command; and sending the identity authentication information to the enterprise cloud platform, and establishing a special communication tunnel with the enterprise cloud platform. The method can support the construction of enterprise private networks independent of operator networks, and can also solve the problem of vehicle networking services when the vehicle SIM is invalid due to some reason, in particular, when the vehicle is sold abroad, if the vehicle is installed with a foreign SIM card, an automobile production enterprise can also normally perform vehicle networking services with the vehicle SIM, such as software upgrading, fault diagnosis and the like.

Description

Satellite network connection method, device, equipment and storage medium
Technical Field
The present application relates to the field of satellite communications technologies, and in particular, to a satellite network connection method, apparatus, device, and storage medium.
Background
With the wide application of vehicle networks, the service requirements of accessing a vehicle-mounted terminal to a network, reporting a vehicle state in time, receiving remote control and the like are increasing. However, as domestic vehicles in China exit from the country and are spread all over the world, telecommunication operators in part of countries cannot access the core network system in China, and the network coverage rate in part of countries is low, so that the vehicles cannot normally access the cloud service platform of the vehicle enterprises, the software versions of the vehicles cannot be updated in time, and public praise influence is caused to vehicle manufacturers to a certain extent.
At present, the application of satellite communication is gradually deepened into various industries, and the application of internet of vehicles based on satellite communication is a necessary trend in the future. The network access mode based on the SIM card has the problem of interconnection and intercommunication barriers among telecommunication systems of various countries, and particularly, the ground network access is difficult in the countries with poor network coverage. Therefore, a network access mode which is based on a satellite communication network and does not depend on a SIM card needs to be considered to solve the problem of global car networking access.
Disclosure of Invention
In view of the above-mentioned shortcomings of the prior art, the present invention provides a satellite network connection method to solve the above-mentioned technical problems.
The satellite network connection method provided by the invention comprises the following steps: initiating a wireless connection request to the satellite over the common channel to cause the satellite to assign a dedicated channel;
receiving configuration information sent by a satellite, and configuring a dedicated channel according to the configuration information;
sending wireless connection establishment completion information through a dedicated channel, wherein the wireless connection establishment completion information carries a vehicle-mounted terminal identification code and is used for identifying the enterprise to which the wireless connection establishment completion information belongs through the vehicle-mounted terminal identification code and initiating an identity authentication request to a corresponding enterprise cloud platform;
receiving an authentication and encryption command;
and calculating a corresponding secret key or key according to the authentication and encryption command, sending the secret key or key to the enterprise cloud platform so as to enable the enterprise cloud platform to identify a legal identity, and sending identity authentication information, wherein the identity authentication information comprises a legal identity or an illegal identity, and when the identity authentication information is the legal identity, establishing a special communication tunnel with the enterprise cloud platform.
In an exemplary embodiment of the application, the method is used for identifying the enterprise to which the vehicle-mounted terminal identification code belongs and initiating an identity authentication request to a corresponding enterprise cloud platform, and comprises the following steps of;
sending a user access initialization request to a gateway station, sending configuration information and a vehicle-mounted terminal identification code to the gateway station so as to identify an enterprise to which the vehicle-mounted terminal identification code belongs according to the vehicle-mounted terminal identification code, and sending an identity authentication request to a corresponding enterprise cloud platform;
and after the identification code of the vehicle-mounted terminal is identified to be the enterprise equipment, an identity authentication success command or an identity authentication failure command is sent out so that the gateway station judges whether the associated enterprise is correct or not, and when the associated enterprise is correct, an authentication and encryption command is sent out.
In an exemplary embodiment of the present application, after determining whether the device corresponding to the vehicle-mounted terminal identification code is the enterprise device, the device sends out the identity authentication information, so that the gateway station determines whether the associated enterprise is correct, and when the associated enterprise is correct, sends the authentication and encryption command, including:
and the vehicle-mounted terminal identification code corresponds to the enterprise equipment or the vehicle-mounted terminal identification code is invalid, and an identity authentication failure command is sent, wherein the identity authentication failure command comprises a failure reason code, so that the gateway station informs the satellite of disconnecting from the vehicle-mounted terminal and sends the failure reason code.
In an exemplary embodiment of the present application, calculating a corresponding key or key according to an authentication and encryption command, and sending the key or key to an enterprise cloud platform includes:
calculating a corresponding secret key or key according to the authentication and encryption command;
and encrypting a response message, wherein the response message comprises a corresponding secret key or key, and sending the response message to the enterprise cloud platform.
In an exemplary embodiment of the present application, an enterprise cloud platform is enabled to recognize a legal identity and send identity authentication information, where the identity authentication information includes that the identity is legal or the identity is illegal, and when the identity authentication information is that the identity is legal, a dedicated communication tunnel with the enterprise cloud platform is established, including:
and if the enterprise cloud platform fails to decrypt the response message normally, the authentication process fails, and the gateway station is informed that the identity authentication is illegal, so that the gateway station informs the satellite of disconnecting from the vehicle-mounted terminal and sends a failure reason code.
In an exemplary embodiment of the application, when the identity authentication information is that the identity is legal, the gateway station establishes a dedicated communication tunnel for the vehicle-mounted terminal and the enterprise cloud platform, and the dedicated communication tunnel is used for service data transmission.
In an exemplary embodiment of the application, the vehicle-mounted terminal identification code includes a manufacturer code, a production year, a production month, a production day, a terminal supplier code, and a check code.
The present application further provides a satellite network connection device, the device comprising:
the satellite access module initiates a wireless connection request to the satellite through the public channel so that the satellite allocates a special channel; receiving configuration information sent by a satellite, and configuring a dedicated channel according to the configuration information; sending wireless connection establishment completion information through a dedicated channel, wherein the wireless connection establishment completion information carries a vehicle-mounted terminal identification code and is used for identifying the enterprise to which the wireless connection establishment completion information belongs through the vehicle-mounted terminal identification code and sending an identity authentication request to a corresponding enterprise cloud platform; receiving an authentication and encryption command;
and the information response module calculates a corresponding secret key or key according to the authentication and encryption command, and sends the secret key or key to the enterprise cloud platform so that the enterprise cloud platform can identify a legal identity and send identity authentication information, wherein the identity authentication information comprises a legal identity or an illegal identity, and when the identity authentication information is the legal identity, a special communication tunnel with the enterprise cloud platform is established.
The present application further provides an electronic device, which includes:
one or more processors;
a storage device to store one or more programs that, when executed by the one or more processors, cause the electronic device to implement the satellite network connection method as in any one of the above.
The present application also provides a machine-readable storage medium, having stored thereon a computer program which, when executed by a processor of a machine, causes the machine to perform any of the satellite network connection methods described above.
The invention has the beneficial effects that: the vehicle-mounted terminal is accessed to the network through the satellite, and after identity authentication and encryption are completed based on the vehicle-mounted terminal identification code and the enterprise cloud platform, vehicle networking service transmission can be directly performed with the enterprise cloud platform. In such a way, the construction of an enterprise private network independent of an operator network can be supported, the problem of the car networking service when the vehicle SIM is invalid due to some reason can be solved, and particularly, when the vehicle is sold abroad, if the vehicle is installed with a foreign SIM card, an automobile production enterprise can also normally perform the car networking service with the vehicle SIM card, such as software upgrading, fault diagnosis and the like.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the application.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the present application and together with the description, serve to explain the principles of the application. It is obvious that the drawings in the following description are only some embodiments of the application, and that for a person skilled in the art, other drawings can be derived from them without inventive effort. In the drawings:
FIG. 1 is a schematic diagram of a satellite network connection link shown in an exemplary embodiment of the present application;
fig. 2 is a schematic diagram illustrating a satellite network connection method based on a vehicle-mounted terminal identification code according to an exemplary embodiment of the present application;
FIG. 3 is a flow chart of step S230 in an exemplary embodiment in the embodiment shown in FIG. 2 of the present application;
FIG. 4 is an authentication and encryption flow diagram shown in an exemplary embodiment of the present application;
FIG. 5 is a schematic diagram illustrating a satellite network connection system according to an exemplary embodiment of the present application;
fig. 6 is a schematic diagram illustrating a satellite network connection system authentication failure according to an exemplary embodiment of the present application;
fig. 7 is a schematic diagram illustrating an illegal authentication of an identity of a satellite network connection system according to an exemplary embodiment of the application.
FIG. 8 illustrates a schematic structural diagram of a computer system suitable for use to implement the electronic device of the embodiments of the present application.
Detailed Description
Other advantages and effects of the present invention will become apparent to those skilled in the art from the disclosure herein, wherein the embodiments of the present invention are described in detail with reference to the accompanying drawings and preferred embodiments. The invention is capable of other and different embodiments and of being practiced or of being carried out in various ways, and its several details are capable of modification in various respects, all without departing from the spirit and scope of the present invention. It should be understood that the preferred embodiments are only for illustrating the present invention, and are not intended to limit the scope of the present invention.
It should be noted that the drawings provided in the following embodiments are only for illustrating the basic idea of the present invention, and the components related to the present invention are only shown in the drawings rather than drawn according to the number, shape and size of the components in actual implementation, and the type, quantity and proportion of the components in actual implementation may be changed freely, and the layout of the components may be more complicated.
In the following description, numerous details are set forth to provide a more thorough explanation of embodiments of the present invention, however, it will be apparent to one skilled in the art that embodiments of the present invention may be practiced without these specific details, and in other embodiments, well-known structures and devices are shown in block diagram form, rather than in detail, to avoid obscuring embodiments of the present invention.
Satellite communication is communication between radio communication stations on earth (including in the ground and the lower atmosphere) using a satellite as a relay. The satellite communication system consists of two parts, a satellite and an earth station. The satellite communication is characterized in that: the communication range is large; communication can be performed from any two points as long as the range covered by the electric wave transmitted by the satellite is covered; the device is not easily affected by land disasters (high reliability); the earth station circuit can be switched on (the circuit is switched on quickly) only by setting the earth station circuit; meanwhile, the system can receive at multiple places, and can economically realize broadcasting and multiple access communication (multiple access characteristic); the circuit is very flexible in arrangement, and excessively centralized telephone traffic can be dispersed at any time; the same channel may be used for different directions or for different intervals (multiple access).
Satellite communication terrestrial systems typically employ a star architecture comprising gateway stations, subscriber stations, and the like. The gateway stations have a relatively large capacity and are generally equipped with large-aperture antennas for connecting a ground network to a satellite feed beam. The subscriber station communicates with the gateway station via a communications satellite. Typically, subscriber stations transmit less traffic to a gateway station and backhaul data traffic is greater. In addition, the satellite communication terrestrial system includes a network operation center for managing the satellite network and user services.
With the wide application of satellite communication networks, areas with insufficient ground network coverage can access the network through a satellite communication system, and besides identity authentication of an SIM card, identity authentication of access equipment is also needed to ensure that a legal user accesses the network.
Vehicles sold to foreign countries in China are increased, if local SIM cards are installed on vehicles in foreign countries, when such vehicles are accessed to a satellite network and a core network of an operator in China, the vehicles are similar to the SIM cards in foreign countries, and are accessed to the operator network in China, but an identity authentication mechanism depending on the SIM cards and the core network may consider that the user is an illegal user and does not support service transmission, or when the interconnection and intercommunication of part of foreign operators and the network in China are difficult, the identity identification cannot be performed.
Fig. 1 is a schematic diagram of a satellite network connection link shown in an exemplary embodiment of the present application. The vehicle has a satellite access function and has a globally unique vehicle-mounted terminal identification code, in one embodiment, the vehicle-mounted terminal identification code can be TUID and consists of 32 digits, and the encoding rule is as follows:
GGGTTMMMYYYYMMDDSSXXXXXXXXXXXXVV
wherein:
GGG denotes the country number;
TT represents the device type, the type takes value;
MMM represents an automobile manufacturer;
YYYY denotes year of encoded production, e.g., 2016 for 2016;
MM denotes the encoded production month, such as 12 for 12 months;
DD denotes a code production day, e.g. 31 denotes 31 days;
the SS two-digit number represents the terminal provider;
XXXXXXXXXXX: represents 12 10-system numbers (which can be serial numbers);
VV represents a check code for the first 30 digit string of the TUID.
The satellite has functions of radio resource management, radio link maintenance, mobility management and the like, and is similar to functions of eNodeB in an LTE system and gNodeB in a 5G system. The gateway station is used for connecting a satellite link with a ground system, and has the functions of accessing a satellite terminal into a management function, accessing a satellite network into a ground network into a gateway function, identifying enterprise cloud corresponding to a vehicle-mounted terminal identification code and the like. The enterprise cloud platform has the functions of vehicle identity failure and encryption, TSP service and the like.
Aiming at the problems, the invention provides a satellite network connection method based on a vehicle-mounted terminal identification code under the environment of a global satellite communication system so as to solve the application problem that no network coverage exists or a foreign vehicle-mounted terminal can not access a domestic network.
Fig. 2 is a schematic diagram of a satellite network connection method based on a vehicle-mounted terminal identification code according to an exemplary embodiment of the present application, where the satellite network connection method based on the vehicle-mounted terminal identification code at least includes steps S210 to S240, and the following steps are described in detail:
step S210, a wireless connection request is initiated to the satellite through the common channel, so that the satellite allocates a dedicated channel.
The vehicle-mounted terminal starts a satellite access function, and after the vehicle-mounted terminal and the satellite complete immediate access, a wireless connection request is sent to the satellite through a public satellite, so that the satellite is enabled to distribute a special channel.
And step S220, receiving configuration information sent by the satellite, and configuring a dedicated channel according to the configuration information.
And after receiving the wireless connection request, the satellite allocates a special channel for the vehicle-mounted terminal and issues the configuration information to the vehicle-mounted terminal through the wireless connection establishment information. And after receiving the configuration information, the vehicle-mounted terminal configures a special channel.
Step S230, sending wireless connection establishment completion information through a dedicated channel, where the wireless connection establishment completion information carries a vehicle-mounted terminal identification code, and is used to identify the enterprise to which the wireless connection establishment completion information belongs through the vehicle-mounted terminal identification code, and initiate an identity authentication request to the corresponding enterprise cloud platform.
After the vehicle-mounted terminal is configured with the special channel, the vehicle-mounted terminal sends wireless connection establishment completion information to the satellite through the special channel, and the establishment completion information carries a vehicle-mounted terminal identification code. The satellite receives the information of completing the establishment of the wireless connection in the dedicated channel, the wireless connection is successful, the satellite sends a user access initialization request to the gateway station for identity authentication, fig. 3 is a flowchart of identity authentication in an exemplary embodiment, and the specific process is as follows:
step S310, sending a user access initialization request to the gateway station.
And the satellite sends a user access initialization request to the gateway station so as to establish connection with the enterprise cloud platform through the gateway station, and identity recognition and identity authentication are carried out.
And step S320, sending the configuration information and the vehicle-mounted terminal identification code to a gateway station.
The satellite sends the wireless resource configuration information of the vehicle-mounted terminal and the vehicle-mounted terminal identification code to the gateway station, so that the gateway station can identify the enterprise to which the vehicle-mounted terminal identification code belongs, and connection is established with the enterprise cloud platform corresponding to the vehicle-mounted terminal identification code.
And S330, identifying the enterprise to which the vehicle-mounted terminal belongs according to the vehicle-mounted terminal identification code, and initiating an identity authentication request to the corresponding enterprise cloud platform.
And identifying the enterprise to which the vehicle-mounted terminal belongs according to the manufacturer information in the vehicle-mounted terminal identification code, so as to initiate an identity authentication request to a corresponding enterprise cloud platform.
And step S340, judging whether the vehicle-mounted terminal identification code is the enterprise terminal.
The enterprise cloud platform identifies the vehicle-mounted terminal identification code, when the vehicle-mounted terminal identification code book enterprise terminal is confirmed, an identity authentication success command is sent, and after the gateway station receives the identity authentication success command, an authentication and encryption command is sent.
When the enterprise cloud platform verifies that the vehicle-mounted terminal identification code is not all of the enterprise terminal or the vehicle-mounted terminal identification code is invalid, the enterprise cloud platform informs the gateway station that the identity authentication is failed and sends a failure reason code. The gateway station then notifies the satellite of the disconnection of the wireless connection with the terminal and sends a failure cause code.
As shown in fig. 4, fig. 4 is a flowchart illustrating an authentication and encryption process according to an exemplary embodiment of the present application, which illustrates that after a terminal receives an authentication and encryption command, the terminal performs related authentication and encryption, and the following is specifically introduced:
step S410, receiving an authentication and encryption command.
And the terminal receives the authentication and encryption command sent by the gateway station and carries out corresponding response.
In step S420, a corresponding key or key is calculated.
After receiving the authentication and encryption commands, the corresponding key or key is calculated for the corresponding command.
And step S430, encrypting the response message, wherein the response message comprises a corresponding secret key or key, and sending the encrypted response message to the enterprise cloud platform.
In order to ensure the safety of the information data, the response message is encrypted, the response message comprises a corresponding secret key or a key, and the encrypted response message is sent to the enterprise cloud platform, so that the enterprise cloud platform performs authentication.
The authentication and encryption design method may be an IPSEC, an LTE authentication and encryption method, an AKA authentication method in a 5G system, or the like, and the authentication and encryption technology is not limited in this application.
Step S440, whether the response message is correctly decrypted.
And after the gateway station receives the identity authentication legal information, a special communication tunnel between the vehicle-mounted terminal and the enterprise cloud platform is established for service data transmission.
And if the enterprise cloud platform fails to decrypt and authenticate after receiving the encrypted response message, the identity of the vehicle-mounted terminal is considered to be illegal, identity authentication illegal information is sent to the gateway station, and a failure reason code is sent. And after receiving the illegal identity authentication information, the gateway station determines that the identity of the vehicle-mounted terminal is illegal, informs the satellite of disconnecting from the vehicle-mounted terminal, and sends a failure reason code to the vehicle-mounted terminal.
The vehicle is accessed to the network through the satellite, and after identity authentication and encryption are completed based on the vehicle-mounted terminal identification code and the enterprise cloud platform, vehicle networking service transmission can be directly performed with the enterprise cloud platform. In such a way, the construction of an enterprise private network independent of an operator network can be supported, the problem of the car networking service when the SIM of the car is invalid due to some reason can be solved, and particularly, when the car is sold abroad, if the car is installed with a foreign SIM card, car production enterprises can also normally perform the car networking service with the car production enterprise, such as software upgrading, fault diagnosis and the like.
The application also provides a satellite network connection device, which comprises a satellite access module, a satellite network connection module and a satellite network connection module, wherein the satellite access module initiates a wireless connection request to a satellite through a public channel so that the satellite allocates a special channel; receiving configuration information sent by a satellite, and configuring a dedicated channel according to the configuration information; sending wireless connection establishment completion information through a dedicated channel, wherein the wireless connection establishment completion information carries a vehicle-mounted terminal identification code and is used for identifying the enterprise to which the wireless connection establishment completion information belongs through the vehicle-mounted terminal identification code and initiating an identity authentication request to a corresponding enterprise cloud platform; receiving an authentication and encryption command;
the information response module calculates a corresponding secret key or key according to the authentication and encryption command, and sends the secret key or key to the enterprise cloud platform so that the enterprise cloud platform can identify a legal identity and send identity authentication information, wherein the identity authentication information comprises a legal identity or an illegal identity, and when the identity authentication information is the legal identity, a special communication tunnel with the enterprise cloud platform is established.
In another exemplary embodiment, the apparatus is applied to a terminal device installed with a satellite network connection application, and the apparatus is implemented as a functional module provided by the satellite network connection application.
It should be noted that the satellite network connection device provided in the foregoing embodiment and the satellite network connection method provided in the foregoing embodiment belong to the same concept, and specific ways of performing operations by each module and unit have been described in detail in the method embodiment, and are not described herein again. In practical applications, the satellite network connection device provided in the above embodiment may distribute the above functions by different functional modules according to needs, that is, divide the internal structure of the device into different functional modules to complete all or part of the above described functions, which is not limited herein.
An embodiment of the present application further provides an electronic device, including: one or more processors; a storage device, configured to store one or more programs, which when executed by the one or more processors, cause the electronic device to implement the satellite network connection method provided in the above-described embodiments.
FIG. 8 illustrates a schematic structural diagram of a computer system suitable for use in implementing the electronic device of an embodiment of the present application. It should be noted that the computer system 800 of the electronic device shown in fig. 8 is only an example, and should not bring any limitation to the functions and the scope of use of the embodiments of the present application.
As shown in fig. 8, the computer system 800 includes a Central Processing Unit (CPU) 801, which can perform various appropriate actions and processes, such as executing the method described in the above embodiments, according to a program stored in a Read-only Memory (ROM) 802 or a program loaded from a storage portion 808 into a Random Access Memory (RAM) 803. In the RAM 803, various programs and data necessary for system operation are also stored. The CPU 801, ROM 802, and RAM 803 are connected to each other via a bus 804. An Input/Output (I/O) interface 805 is also connected to the bus 804.
The following components are connected to the I/O interface 805: an input portion 806 including a keyboard, a mouse, and the like; an output section 807 including a Cathode Ray Tube (CRT), a Liquid Crystal Display (LCD), and the like, a speaker, and the like; a storage section 808 including a hard disk and the like; and a communication section 809 including a network interface card such as a LAN (Local area network) card, a modem, and the like. The communication section 809 performs communication processing via a network such as the internet. A drive 810 is also connected to the I/O interface 805 as necessary. A removable medium 811 such as a magnetic disk, an optical disk, a magneto-optical disk, a semiconductor memory, or the like is mounted on the drive 810 as necessary, so that a computer program read out therefrom is mounted on the storage section 808 as necessary.
In particular, according to embodiments of the present application, the processes described above with reference to the flow diagrams may be implemented as computer software programs. For example, embodiments of the present application include a computer program product comprising a computer program embodied on a computer readable medium, the computer program comprising a computer program for performing the method illustrated by the flow chart. In such an embodiment, the computer program can be downloaded and installed from a network through the communication section 809 and/or installed from the removable medium 811. When the computer program is executed by the Central Processing Unit (CPU) 801, various functions defined in the system of the present application are executed.
It should be noted that the computer readable medium shown in the embodiments of the present application may be a computer readable signal medium or a computer readable storage medium or any combination of the two. The computer readable storage medium may be, for example, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination of the foregoing. More specific examples of the computer readable storage medium may include, but are not limited to: an electrical connection having one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a Read-Only Memory (ROM), an Erasable Programmable Read-Only Memory (EPROM), a flash Memory, an optical fiber, a portable Compact Disc Read-Only Memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing. In the present application, a computer-readable signal medium may comprise a propagated data signal with a computer-readable computer program embodied therein, either in baseband or as part of a carrier wave. Such a propagated data signal may take any of a variety of forms, including, but not limited to, electro-magnetic, optical, or any suitable combination thereof. A computer readable signal medium may be any computer readable medium that is not a computer readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device. The computer program embodied on the computer readable medium may be transmitted using any appropriate medium, including but not limited to: wireless, wired, etc., or any suitable combination of the foregoing.
The flowchart and block diagrams in the figures illustrate the architecture, functionality, and operation of possible implementations of systems, methods and computer program products according to various embodiments of the present application. Each block in the flowchart or block diagrams may represent a module, segment, or portion of code, which comprises one or more executable instructions for implementing the specified logical function(s). It should also be noted that, in some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved. It will also be noted that each block of the block diagrams or flowchart illustration, and combinations of blocks in the block diagrams or flowchart illustration, can be implemented by special purpose hardware-based systems which perform the specified functions or acts, or combinations of special purpose hardware and computer instructions.
The units described in the embodiments of the present application may be implemented by software or hardware, and the described units may also be disposed in a processor. Wherein the names of the elements do not in some way constitute a limitation on the elements themselves.
Another aspect of the present application also provides a machine-readable storage medium having stored thereon a machine program which, when executed by a processor of a machine, causes the machine to perform the satellite network connection method as described above. The machine-readable storage medium may be included in the electronic device described in the above embodiment, or may exist alone without being assembled into the electronic device.
Another aspect of the application also provides a computer program product or computer program comprising computer instructions stored in a computer readable storage medium. The processor of the computer device reads the computer instructions from the computer-readable storage medium, and the processor executes the computer instructions, so that the computer device executes the satellite network connection method provided in the above embodiments.
The foregoing embodiments are merely illustrative of the principles of the present invention and its efficacy, and are not to be construed as limiting the invention. Any person skilled in the art can modify or change the above-mentioned embodiments without departing from the spirit and scope of the present invention. Accordingly, it is intended that all equivalent modifications or changes which can be made by those skilled in the art without departing from the spirit and technical spirit of the present invention be covered by the claims of the present invention.

Claims (10)

1. A method for connecting to a satellite network, the method comprising:
initiating a radio connection request to a satellite over a common channel to cause the satellite to assign a dedicated channel;
receiving configuration information sent by the satellite, and configuring the dedicated channel according to the configuration information;
sending wireless connection establishment completion information through the dedicated channel, wherein the wireless connection establishment completion information carries a vehicle-mounted terminal identification code and is used for identifying the enterprise to which the wireless connection establishment completion information belongs through the vehicle-mounted terminal identification code and initiating an identity authentication request to a corresponding enterprise cloud platform;
receiving an authentication and encryption command;
and calculating a corresponding key or key according to the authentication and encryption command, and sending the key or key to the enterprise cloud platform so that the enterprise cloud platform can identify a legal identity and send identity authentication information, wherein the identity authentication information comprises a legal identity or an illegal identity, and when the identity authentication information is a legal identity, a special communication tunnel with the enterprise cloud platform is established.
2. The satellite network connection method according to claim 1, wherein the method is used for identifying the enterprise to which the vehicle-mounted terminal identifier belongs and initiating an identity authentication request to a corresponding enterprise cloud platform, and includes;
sending a user access initialization request to a gateway station, sending the configuration information and the vehicle-mounted terminal identification code to the gateway station so as to identify the enterprise to which the vehicle-mounted terminal identification code belongs according to the vehicle-mounted terminal identification code, and sending an identity authentication request to a corresponding enterprise cloud platform;
and after identifying whether the vehicle-mounted terminal identification code corresponds to the enterprise equipment, sending an identity authentication success command or an identity authentication failure command so that the gateway station judges whether the associated enterprise is correct or not, and when the associated enterprise is correct, sending an authentication and encryption command.
3. The satellite network connection method according to claim 2, wherein the step of sending identity authentication information after determining whether the device of the enterprise corresponding to the vehicle-mounted terminal identification code is correct, so that the gateway station determines whether the associated enterprise is correct, and when the associated enterprise is correct, sending an authentication and encryption command includes:
and if the vehicle-mounted terminal identification code corresponds to the enterprise equipment or the vehicle-mounted terminal identification code is invalid, sending an identity authentication failure command, wherein the identity authentication failure command comprises a failure reason code, so that the gateway station informs the satellite of disconnecting from the vehicle-mounted terminal and sends the failure reason code.
4. The satellite network connection method according to claim 1, wherein calculating a corresponding key or key according to the authentication and encryption command, and sending the key or key to the enterprise cloud platform includes:
calculating a corresponding secret key or key according to the authentication and encryption command;
and encrypting a response message, wherein the response message comprises a corresponding secret key or key, and sending the response message to the enterprise cloud platform.
5. The satellite network connection method according to claim 4, wherein the enabling of the enterprise cloud platform to recognize a legal identity and send identity authentication information, the identity authentication information including a legal identity or an illegal identity, and the establishing of the dedicated communication tunnel with the enterprise cloud platform when the identity authentication information is a legal identity comprises:
and the enterprise cloud platform fails to decrypt the response message normally, fails in the authentication process, informs the gateway station that the identity authentication is illegal, so that the gateway station informs the satellite of disconnecting from the vehicle-mounted terminal and sends a failure reason code.
6. The satellite network connection method according to claim 4, wherein when the identity authentication information is that the identity is legal, the gateway station establishes a dedicated communication tunnel for the vehicle-mounted terminal and the enterprise cloud platform for service data transmission.
7. The satellite network connection method according to claim 1, wherein the vehicle-mounted terminal identification code includes a manufacturer code, a year of production, a month of production, a day of production, a terminal supplier code, and a check code.
8. A satellite network connection device, the device comprising:
a satellite access module which initiates a wireless connection request to a satellite through a common channel so that the satellite allocates a dedicated channel; receiving configuration information sent by the satellite, and configuring the dedicated channel according to the configuration information; sending wireless connection establishment completion information through the dedicated channel, wherein the wireless connection establishment completion information carries a vehicle-mounted terminal identification code and is used for identifying the enterprise to which the wireless connection establishment completion information belongs through the vehicle-mounted terminal identification code and initiating an identity authentication request to a corresponding enterprise cloud platform; receiving an authentication and encryption command;
and the information response module calculates a corresponding secret key or key according to the authentication and encryption command, and sends the secret key or key to the enterprise cloud platform so as to enable the enterprise cloud platform to identify a legal identity and send identity authentication information, wherein the identity authentication information comprises a legal identity or an illegal identity, and when the identity authentication information is a legal identity, a special communication tunnel with the enterprise cloud platform is established.
9. An electronic device, characterized in that the electronic device comprises:
one or more processors;
storage means for storing one or more programs that, when executed by the one or more processors, cause the electronic device to implement the satellite network connection method of any one of claims 1-7.
10. A machine readable storage medium having stored thereon a computer program which, when executed by a processor of a machine, causes the machine to perform the satellite network connection method of any one of claims 1 to 7.
CN202211350389.3A 2022-10-31 2022-10-31 Satellite network connection method, device, equipment and storage medium Pending CN115696635A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202211350389.3A CN115696635A (en) 2022-10-31 2022-10-31 Satellite network connection method, device, equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202211350389.3A CN115696635A (en) 2022-10-31 2022-10-31 Satellite network connection method, device, equipment and storage medium

Publications (1)

Publication Number Publication Date
CN115696635A true CN115696635A (en) 2023-02-03

Family

ID=85046991

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202211350389.3A Pending CN115696635A (en) 2022-10-31 2022-10-31 Satellite network connection method, device, equipment and storage medium

Country Status (1)

Country Link
CN (1) CN115696635A (en)

Similar Documents

Publication Publication Date Title
FI104681B (en) Method of administering a subscriber identity module in a telecommunication system and telecommunication system
CN110381103B (en) Method, device and system for downloading operator configuration file
US7584360B2 (en) Data sending/receiving device and digital certificate issuing method
EP3824594B1 (en) Apparatus and method for ssp device and server to negotiate digital certificates
CN104380764A (en) Method for entering identification data of vehicle into user database of internet server device
EP3852414B1 (en) Data processing method and data processing device thereof
CN103188677A (en) Client software authentication method and client software authentication device and client software authentication system
CN113543121A (en) Protection method for updating terminal parameter and communication device
JP2023519997A (en) Method and communication apparatus for securing terminal parameter updates
US7502367B2 (en) Method for providing a program module in a communications system
CN104796891A (en) Security certification system by means of service provider's network and corresponding method
CN106899542B (en) Secure access method, device and system
CN115696635A (en) Satellite network connection method, device, equipment and storage medium
CN113439449A (en) Privacy enhancement method for linking ESIM profiles
CN115150162B (en) Root certificate updating method and device
CN113691973B (en) Number portability method based on block chain network and operator system
CN108616861B (en) Over-the-air card writing method and device
CN106888447B (en) Method and system for processing auxiliary USIM application information
KR102658615B1 (en) Method for ssp device to interoperate between bundle donwload procedure and profile donwload procedure
CN114980012A (en) Internet of vehicles equipment authentication method, device and storage medium
CN115438353A (en) User data management method and related equipment
KR20230118151A (en) Target information acquisition method, transmission method, device, equipment and storage medium
CN105101338A (en) Access network method and apparatus
CN112867004B (en) Remote configuration system and user data replacement method
CN113242545B (en) Updating method and updating system for equipment network locking list

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination