WO2012034377A1 - 一种信息终端中基于分级的集中式认证与授权方法 - Google Patents

一种信息终端中基于分级的集中式认证与授权方法 Download PDF

Info

Publication number
WO2012034377A1
WO2012034377A1 PCT/CN2011/071158 CN2011071158W WO2012034377A1 WO 2012034377 A1 WO2012034377 A1 WO 2012034377A1 CN 2011071158 W CN2011071158 W CN 2011071158W WO 2012034377 A1 WO2012034377 A1 WO 2012034377A1
Authority
WO
WIPO (PCT)
Prior art keywords
authentication
authorization
centralized
information terminal
controller
Prior art date
Application number
PCT/CN2011/071158
Other languages
English (en)
French (fr)
Inventor
魏巍
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2012034377A1 publication Critical patent/WO2012034377A1/zh

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • H04L63/205Network architectures or network communication protocols for network security for managing network security; network security policies in general involving negotiation or determination of the one or more network security mechanisms to be used, e.g. by negotiation between the client and the server or between peers or by selection according to the capabilities of the entities involved

Definitions

  • the present invention relates to authentication and authorization technologies in a terminal, and in particular, to a hierarchical centralized authentication and authorization method in an information terminal. Background technique
  • the home information machine is an information terminal generated by the third generation communication technology (3G, 3rd Generation) era. It integrates a variety of functions such as mobile phone, telephone, information, broadband, home security, etc. Achieve the effects of "basic call, information service, broadband service, home security, smart home control". among them,
  • the 3G home terminal is similar to a 3G mobile phone that can be placed at home. When the 3G number SIM card is inserted, it can enjoy the same functions as the 3G mobile phone.
  • wireless remote security function After installing the magnetic door and infrared detector, wireless remote security function can be realized. When there is a situation such as a thief intrusion, an accidental fire or a gas leak, the family information opportunity sends the alarm message to the pre-set mobile phone, so that the owner can be informed and deal with it in time. The information machine can also take a live video of the next home according to the owner's instructions and send it to the owner's mobile phone for later verification.
  • Video surveillance function You can watch your home anytime, anywhere;
  • Smart home function It can realize home remote control function.
  • the terminal can remotely control any electrical equipment in the home through wireless remote heads and wireless smart switches installed in all corners of the home to perform various operations such as changing TV channels, adjusting air conditioning temperature, or switching room lights. Simultaneously, The owner can also continue to "control" various electrical switches in the home by editing the mobile phone text message.
  • Telemedicine function The patient can transmit blood pressure, body temperature, etc. to the corresponding platform of the hospital through the home information terminal for telemedicine.
  • Learn entertainment features Learn English, play games, mp4, digital photo frames, take photos, and more.
  • 3G refers to the third generation of digital communications.
  • 3G wireless networks must be able to support different data transmission speeds, which means that at least 2Mbps (megabits per second), 384kbps (kilobbits per second) and 144kbps transmission speeds can be supported in indoor, outdoor and driving environments.
  • the industry calls it "broadband in mobile phones.” Summary of the invention
  • An object of the present invention is to provide a hierarchical centralized authentication and authorization method in an information terminal for solving the above problems.
  • the present invention provides a hierarchical centralized authentication and authorization method in an information terminal, and a centralized authentication and authorization controller is set in the information terminal; the centralized authentication and authorization controller is in the information terminal.
  • the module and the user's authentication and authorization are prioritized; the centralized authentication and authorization controller creates a centralized hierarchical authentication and authorization management list according to the authentication and authorization priority; the information terminal is based on the centralized authentication and authorization controller
  • the priority order controls the authentication and authorization of users in the information terminal.
  • the prioritizing the authentication and authorization of the module and the user in the information terminal by the centralized authentication and authorization controller specifically includes: the centralized authentication and authorization controller authenticating different modules in the information terminal Authorization is prioritized.
  • the centralized authentication and authorization controller prioritizes the authentication and authorization of different types of users in the same module in the information terminal.
  • the centralized authentication and authorization controller creates a centralized hierarchical authentication and authorization management list according to the authentication and authorization priority, and specifically includes: the centralized authentication and authorization controller according to different module authentication and authorization priorities and Same module authentication and authorization priority production set Chinese hierarchical authentication and authorization management list.
  • the information terminal controls the authentication and authorization of the user in the information terminal according to the priority order of the centralized authentication and the authorization controller.
  • the information terminal controls the information terminal according to the priority order of the centralized authentication and authorization controller. Authentication and authorization of users under different modules and the same module.
  • the centralized authentication and authorization controller prioritizes authentication and authorization of different modules in the information terminal, including: according to basic calls, information services, broadband services, home security, and smart home control, high to low Priority, when the centralized authentication and authorization controllers receive authentication and authorization requests from different modules at the same time, they will be processed in descending order of authentication and authorization priorities.
  • the centralized authentication and authorization controller prioritizes the authentication and authorization of different types of users in the same module in the information terminal, including: for the phone function, according to the priority of dialing, answering, and sending and receiving short messages. High to low priority.
  • the centralized authentication and authorization controller receives authentication and authorization requests from different types of users of the same module at the same time, the authentication and authorization priorities are processed in descending order.
  • the centralized authentication and authorization controller formulates a policy list for the user and the module, and the user divides the administrator, the common user, and the guest user; the module is divided into basic call, information service, broadband service, home security, and intelligence. Home control.
  • the centralized authentication and authorization controller creates a centralized hierarchical authentication and authorization management list according to different module authentication and authorization priorities and the same module authentication and authorization priorities.
  • the two types of priorities may be static, semi-static, semi-dynamic, dynamic changes.
  • the information terminal includes a home information machine.
  • the invention has the beneficial effects of being able to authenticate and authorize all modules in the home information machine.
  • Centralized management of rows reduces the requirements for concurrent processing requirements of concurrent processing of authentication and authorization requests between different modules.
  • the authentication and authorization priority settings and list settings of different modules and modules are The processing capability of concurrent processing and authorization of the home information machine is greatly improved, and the high-priority authentication and authorization request is improved to improve its performance and service requirements, and the users in different modules and the same module in the home information machine are effectively processed.
  • Authentication and authorization request is DRAWINGS
  • FIG. 1 is a schematic flow chart showing the implementation of a hierarchical centralized authentication and authorization method in a home information machine according to an embodiment of the present invention. detailed description
  • the invention relates to a mobile communication network, in particular to an information terminal based on a mobile communication network, and provides centralized management of authentication and authorization of different modules in the information terminal by setting a centralized authentication and authorization controller in the information terminal.
  • the centralized authentication and authorization controller prioritizes the authentication and authorization of different modules, for example, according to the basic call, information service, broadband service, home security, smart home control, high to low priority, but not
  • the centralized authentication and authorization controller receives the authentication and authorization requests from different modules at the same time, the authentication and authorization priorities are processed in descending order;
  • the centralized authentication and authorization controller Prioritize authentication and authorization for different types of users in the same module.
  • the priority of sending and receiving text messages is high-to-low priority, but not limited to this.
  • the authentication and authorization controller receives the authentication and authorization requests from different types of users of the same module, it will process the authentication and authorization priorities from high to low.
  • the centralized authentication and authorization control of the home information machine According to different module authentication and authorization priorities and the same module authentication and authorization Prioritize the production of centralized hierarchical authentication and authorization management lists;
  • the home information machine is based on the priority of centralized authentication and authorization controllers. The sequence controls the authentication and authorization mechanisms of different modules of the home information machine and users under the same module.
  • the centralized authentication and authorization controller formulates a policy list for users and modules, but the control method is not limited to this.
  • the users are divided into three levels: administrator, normal user, and guest user.
  • the modules are divided into basic calls, information services, broadband services, home security, smart home control, etc., as shown in Table 1.
  • the centralized authentication and authorization controller creates a centralized hierarchical authentication and authorization management list according to different module authentication and authorization priorities and the same module authentication and authorization priorities.
  • the two types of priorities can be static, semi-static, semi-dynamic, dynamic, to meet the needs of authentication and authorization in the information terminal.
  • the information terminal controls the authentication and authorization mechanism of the different modules of the information terminal and the users under the same module according to the priority order of the centralized authentication and the authorization controller, and the setting of the authentication and authorization priority of different modules and the same module and the setting of the list are greatly
  • the processing capability of the information terminal to process concurrent authentication and authorization is improved, and the high-priority authentication and authorization request is improved to improve its performance and service requirements, and the authentication and authorization of users in different modules and in the same module in the information terminal are effectively processed. request.
  • the authentication and authorization are performed in the centralized authentication and authorization controller according to the priority of the different modules and the priority of the same module, which reduces the concurrent processing when the authentication and authorization requests are simultaneously performed between different modules. Complicated processing complexity for processor concurrent processing Requirements.
  • the information terminal uses a home information machine as an example to describe a hierarchical centralized authentication and authorization method in an information terminal.
  • the hierarchical centralized authentication and authorization method in the home information machine includes the following steps:
  • Step S101 A centralized authentication and authorization controller is set in the home information machine, and the authentication and authorization of different modules in the home information machine are unifiedly managed;
  • Step S102 The centralized authentication and authorization controller divides the authentication and authorization of different modules into priorities.
  • Step S103 The centralized authentication and authorization controller prioritizes different types of users in the same module
  • Step S104 The centralized authentication and authorization controller creates a centralized hierarchical authentication and authorization management list according to different module authentication and authorization priorities and the same module authentication and authorization priority;
  • Step S105 The home information machine controls the authentication and authorization mechanism of the different modules of the home information machine and the users under the same module according to the priority order of the centralized authentication and the authorization controller;
  • Step S106 When the user authenticates and authorizes in the home information machine, the user performs authentication and authorization in the centralized authentication and authorization controller according to different module priorities and the same module priority.
  • the authentication and authorization of all modules in the home information machine can be managed centrally, which reduces the complexity of concurrent processing of the processor when concurrently performing authentication and authorization requests between different modules.
  • the authentication and authorization priority setting and list setting of different modules and the same module greatly improve the processing capability of the home information machine to handle concurrent authentication and authorization, and improve the high priority authentication and authorization request.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Telephonic Communication Services (AREA)

Abstract

本发明公开一种信息终端中基于分级的集中式认证与授权方法,在信息终端中设置集中式认证与授权控制器;所述集中式认证与授权控制器对信息终端中的模块和用户的认证与授权划分优先级;所述集中式认证与授权控制器按照所述认证与授权优先级制作集中式分级认证与授权管理列表;所述信息终端根据集中式认证与授权控制器的优先级顺序控制信息终端中用户的认证与授权。在满足高优先级认证与授权请求提高其性能及业务需求的同时,有效地处理了家庭信息机内不同模块间及相同模块内用户的认证与授权请求。

Description

一种信息终端中基于分级的集中式认证与授权方法 技术领域
本发明涉及终端中的认证与授权技术, 尤其涉及一种信息终端中基于 分级的集中式认证与授权方法。 背景技术
家庭信息机是第三代通信技术(3G, 3rd Generation ) 时代下所产生的 一种信息终端, 其融合了手机, 电话, 信息, 宽带, 家庭安防等多种功能 的一种信息终端系统, 以达到 "基本通话、 信息服务、 宽带服务、 家庭安 防、 智能家居控制" 为一体的效果。 其中,
电话功能: 能拨打、 接听电话, 收发短信。 3G家庭终端类似于一个能 摆放在家里的 3G手机, 插入 3G号码 SIM卡后即能享受和 3G手机相同的 功能。
上网功能: 随着移动 3G网络的扩展, 带宽、 速度的提高, 使无线上网 视频浏览更轻松、 快捷。
安防功能: 装上门磁和红外探测器后, 可实现无线远程安防功能。 当 出现盗贼入侵、 意外失火或是煤气泄漏等状况, 家庭信息机会把报警信息 发送到预先设置的手机上, 让主人及时获悉并做出处理。 信息机还可以根 据主人指令拍摄下家中的实时视频画面, 并发到主人手机中, 以供以后取 证。
视频监控功能: 可随时随地观看家中的情况;
智能家居功能: 可实现家居远程遥控功能。 终端可以通过设置在家庭 各个角落的无线遥控头和无线智能开关, 随意遥控家里的任何电器设备, 来进行更换电视频道、 调整空调温度或开关房间电灯等各种操作。 同时, 主人在外还能通过编辑手机短信来继续 "控制" 家里各种电器开关。
远程医疗功能: 病人可通过家庭信息终端将血压、 体温等情况传到医 院的相应平台上, 进行远程医疗。
学习娱乐功能: 学英语、 玩游戏、 mp4、 数码相框、 拍照片等。
其它功能: 可实现炒股、 门禁对讲, 物业管理等功能。
3G概念: 3G指第三代数字通信。 3G无线网络必须能够支持不同的数 据传输速度, 也就是说在室内、 室外和行车的环境中能够分别支持至少 2Mbps (兆比特 /每秒 )、 384kbps (千比特 /每秒) 以及 144kbps的传输速 度, 业内称之为 "手机中的宽带"。 发明内容
本发明的目的是为解决上述问题, 而提出的一种信息终端中基于分级 的集中式认证与授权方法。
为实现上述目的, 本发明提供一种信息终端中基于分级的集中式认证 与授权方法, 在信息终端中设置集中式认证与授权控制器; 所述集中式认 证与授权控制器对信息终端中的模块和用户的认证与授权划分优先级; 所 述集中式认证与授权控制器按照所述认证与授权优先级制作集中式分级认 证与授权管理列表; 所述信息终端根据集中式认证与授权控制器的优先级 顺序控制信息终端中用户的认证与授权。
进一步地, 所述集中式认证与授权控制器对信息终端中的模块和用户 的认证与授权划分优先级具体包括: 所述集中式认证与授权控制器对信息 终端中的不同的模块的认证与授权划分优先级, 集中式认证与授权控制器 对信息终端中相同模块中不同类型的用户的认证与授权划分优先级。
进一步地, 所述集中式认证与授权控制器按照所述认证与授权优先级 制作集中式分级认证与授权管理列表具体包括: 所述集中式认证与授权控 制器按照不同模块认证与授权优先级和相同模块认证与授权优先级制作集 中式分级认证与授权管理列表。
进一步地, 所述信息终端根据集中式认证与授权控制器的优先级顺序 控制信息终端中用户的认证与授权包括: 所述信息终端根据集中式认证与 授权控制器的优先级顺序控制信息终端中不同模块与相同模块下用户的认 证与授权。
进一步地, 所述集中式认证与授权控制器对信息终端中的不同的模块 的认证与授权划分优先级包括: 按照基本通话、 信息服务、 宽带服务、 家 庭安防、 智能家居控制划分由高到低的优先级, 当集中式认证与授权控制 器同时收到来自于不同模块的认证与授权请求时, 将按照认证与授权优先 级由高到低的顺序进行处理。
进一步地, 所述集中式认证与授权控制器对信息终端中相同模块中不 同类型的用户的认证与授权划分优先级包括: 对于电话功能, 按照能拨打、 接听电话、 收发短信的优先级划分由高到低的优先级, 当集中式认证与授 权控制器同时收到来自于相同模块不同类型用户的认证与授权请求时, 将 按照认证与授权优先级由高到低的顺序进行处理。
进一步地, 所述集中式认证与授权控制器针对用户和模块制定一个策 略列表, 用户划分管理员、 普通用户端、 来宾用户端; 模块分为基本通话、 信息服务、 宽带服务、 家庭安防、 智能家居控制。
进一步地, 所述集中式认证与授权控制器按照不同模块认证与授权优 先级和相同模块认证与授权优先级制作集中式分级认证与授权管理列表。
进一步地,当所述信息终端中增加 /删除模块和 /或相同模块中增加 /删除 用户或用户类型时, 两种类型的优先级可以静态、 半静态、 半动态、 动态 的变更。
进一步地, 所述信息终端包括家庭信息机。
本发明的有益效果是: 能够对家庭信息机中所有模块的认证与授权进 行集中式管理, 降低了不同模块间同时进行认证与授权请求并发处理时对 处理器并发处理要求复杂度的要求, 同时, 不同模块和相同模块的认证与 授权优先级的设置及列表的设置, 大幅度提高了家庭信息机处理并发认证 与授权的处理能力, 在满足高优先级认证与授权请求提高其性能及业务需 求的同时, 有效地处理了家庭信息机内不同模块间及相同模块内用户的认 证与授权请求。 附图说明
图 1 是本发明实施例家庭信息机中基于分级的集中式认证与授权方法 实现流程示意图。 具体实施方式
本发明涉及移动通信网络, 尤其涉及到基于移动通信网络的信息终端, 通过在信息终端中设置集中式认证与授权控制器, 对信息终端中不同模块 的认证与授权进行统一管理。 首先, 集中式认证与授权控制器对不同的模 块的认证与授权划分优先级, 例如, 按照基本通话、 信息服务、 宽带服务、 家庭安防、 智能家居控制划分由高到低的优先级, 但不限于此, 当集中式 认证与授权控制器同时收到来自于不同模块的认证与授权请求时, 将按照 认证与授权优先级由高到低的顺序进行处理; 其次, 集中式认证与授权控 制器对相同模块中不同类型的用户的认证与授权划分优先级, 例如, 对于 电话功能, 按照能拨打、 接听电话, 收发短信的优先级划分由高到低的优 先级, 但不限于此, 当集中式认证与授权控制器同时收到来自于相同模块 不同类型用户的认证与授权请求时, 将按照认证与授权优先级由高到低的 顺序进行处理; 然后, 家庭信息机集中式认证与授权控制器按照不同模块 认证与授权优先级和相同模块认证与授权优先级制作集中式分级认证与授 权管理列表; 最后, 家庭信息机根据集中式认证与授权控制器的优先级顺 序控制家庭信息机不同模块与相同模块下用户的认证与授权机制。
集中式认证与授权控制器针对用户和模块制定一个策略列表, 但控制 方法不限于此, 用户划分为 3 级, 管理员、 普通用户端、 来宾用户端。 模 块分为基本通话、 信息服务、 宽带服务、 家庭安防、 智能家居控制等, 如 表 1所示。
表 1 : 集中式认证与授权控制器策略设置
Figure imgf000007_0001
集中式认证与授权控制器按照不同模块认证与授权优先级和相同模块 认证与授权优先级制作集中式分级认证与授权管理列表, 当信息终端中增 加 /删除模块和 /或相同模块中增加 /删除用户或用户类型时,两种类型的优先 级可以静态、 半静态、 半动态、 动态的变更, 以满足信息终端中认证与授 权的需要。
信息终端根据集中式认证与授权控制器的优先级顺序控制信息终端不 同模块与相同模块下用户的认证与授权机制, 不同模块和相同模块的认证 与授权优先级的设置及列表的设置, 大幅度提高了信息终端处理并发认证 与授权的处理能力, 在满足高优先级认证与授权请求提高其性能及业务需 求的同时, 有效地处理了信息终端内不同模块间及相同模块内用户的认证 与授权请求。
用户在信息终端中认证与授权时, 按照不同模块优先级、 相同模块优 先级的顺序在集中式认证与授权控制器中进行认证与授权, 降低了不同模 块间同时进行认证与授权请求时并发处理时对处理器并发处理要求复杂度 的要求。
下面结合附图 1 及实施例对本发明作进一步详细的描述, 在该实施例 中, 所述信息终端以家庭信息机为例对信息终端中基于分级的集中式认证 与授权方法进行说明。
在该实施例中, 家庭信息机中基于分级的集中式认证与授权方法包括 以下步骤:
步骤 S101 : 家庭信息机中设置集中式认证与授权控制器, 对家庭信息 机中不同模块的认证与授权进行统一管理;
步骤 S102: 集中式认证与授权控制器对不同的模块的认证与授权划分 优先级;
步骤 S103 : 集中式认证与授权控制器对相同模块中不同类型的用户划 分优先级;
步骤 S104: 集中式认证与授权控制器按照不同模块认证与授权优先级 和相同模块认证与授权优先级制作集中式分级认证与授权管理列表;
步骤 S105: 家庭信息机根据集中式认证与授权控制器的优先级顺序控 制家庭信息机不同模块与相同模块下用户的认证与授权机制;
步骤 S106: 用户在家庭信息机中认证与授权时,按照不同模块优先级、 相同模块优先级的顺序在集中式认证与授权控制器中进行认证与授权。
通过集中式认证与授权控制器的设置, 能够对家庭信息机中所有模块 的认证与授权进行集中式管理, 降低了不同模块间同时进行认证与授权请 求并发处理时对处理器并发处理要求复杂度的要求, 同时, 不同模块和相 同模块的认证与授权优先级的设置及列表的设置, 大幅度提高了家庭信息 机处理并发认证与授权的处理能力, 在满足高优先级认证与授权请求提高 其性能及业务需求的同时, 有效地处理了家庭信息机内不同模块间及相同 模块内用户的认证与授权请求。 以上所描述的仅为本发明较佳实例, 当然不能以此来限定本发明的权 利范围, 因此, 在不背离本发明精神及其实质的情况下, 熟悉本领域的技 术人员都可根据本发明做出各种相应的改变和变形, 但这些相应的改变和 变形都应当属于本发明所附的权利要求的保护范围。

Claims

权利要求书
1、 一种信息终端中基于分级的集中式认证与授权方法, 其特征在于: 在信息终端中设置集中式认证与授权控制器; 所述集中式认证与授权控制 器对信息终端中的模块和用户的认证与授权划分优先级; 所述集中式认证 与授权控制器按照所述认证与授权优先级制作集中式分级认证与授权管理 列表; 所述信息终端根据集中式认证与授权控制器的优先级顺序控制信息 终端中用户的认证与授权。
2、 根据权利要求 1所述的方法, 其特征在于: 所述集中式认证与授权 控制器对信息终端中的模块和用户的认证与授权划分优先级具体包括: 所 述集中式认证与授权控制器对信息终端中的不同的模块的认证与授权划分 优先级, 集中式认证与授权控制器对信息终端中相同模块中不同类型的用 户的认证与授权划分优先级。
3、 根据权利要求 2所述的方法, 其特征在于: 所述集中式认证与授权 控制器按照所述认证与授权优先级制作集中式分级认证与授权管理列表具 体包括: 所述集中式认证与授权控制器按照不同模块认证与授权优先级和 相同模块认证与授权优先级制作集中式分级认证与授权管理列表。
4、 根据权利要求 3所述的方法, 其特征在于: 所述信息终端根据集中 式认证与授权控制器的优先级顺序控制信息终端中用户的认证与授权包 括: 所述信息终端根据集中式认证与授权控制器的优先级顺序控制信息终 端中不同模块与相同模块下用户的认证与授权。
5、 根据权利要求 2所述的方法, 其特征在于: 所述集中式认证与授权 控制器对信息终端中的不同的模块的认证与授权划分优先级包括: 按照基 本通话、 信息服务、 宽带服务、 家庭安防、 智能家居控制划分由高到低的 优先级, 当集中式认证与授权控制器同时收到来自于不同模块的认证与授 权请求时, 将按照认证与授权优先级由高到低的顺序进行处理。
6、 根据权利要求 2所述的方法, 其特征在于: 所述集中式认证与授权 控制器对信息终端中相同模块中不同类型的用户的认证与授权划分优先级 包括: 对于电话功能, 按照能拨打、 接听电话、 收发短信的优先级划分由 高到低的优先级, 当集中式认证与授权控制器同时收到来自于相同模块不 同类型用户的认证与授权请求时, 将按照认证与授权优先级由高到低的顺 序进行处理。
7、 根据权利要求 1至 6任一项所述的方法, 其特征在于: 所述集中式 认证与授权控制器针对用户和模块制定一个策略列表, 用户划分管理员、 普通用户端、 来宾用户端; 模块分为基本通话、 信息服务、 宽带服务、 家 庭安防、 智能家居控制。
8、 根据权利要求 7所述的方法, 其特征在于: 所述集中式认证与授权 控制器按照不同模块认证与授权优先级和相同模块认证与授权优先级制作 集中式分级认证与授权管理列表。
9、 根据权利要求 7所述的方法, 其特征在于: 当所述信息终端中增加 /删除模块和 /或相同模块中增加 /删除用户或用户类型时,两种类型的优先级 可以静态、 半静态、 半动态、 动态的变更。
10、 根据权利要求 1至 6任一项所述的方法, 其特征在于: 所述信息 终端包括家庭信息机。
PCT/CN2011/071158 2010-09-16 2011-02-22 一种信息终端中基于分级的集中式认证与授权方法 WO2012034377A1 (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN2010102842114A CN101951403A (zh) 2010-09-16 2010-09-16 一种信息终端中基于分级的集中式认证与授权方法
CN201010284211.4 2010-09-16

Publications (1)

Publication Number Publication Date
WO2012034377A1 true WO2012034377A1 (zh) 2012-03-22

Family

ID=43454761

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2011/071158 WO2012034377A1 (zh) 2010-09-16 2011-02-22 一种信息终端中基于分级的集中式认证与授权方法

Country Status (2)

Country Link
CN (1) CN101951403A (zh)
WO (1) WO2012034377A1 (zh)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101951403A (zh) * 2010-09-16 2011-01-19 中兴通讯股份有限公司 一种信息终端中基于分级的集中式认证与授权方法
CN102083060A (zh) * 2011-01-24 2011-06-01 中兴通讯股份有限公司 一种家庭信息机安全认证方法及装置
CN102638796A (zh) * 2011-02-11 2012-08-15 中兴通讯股份有限公司 授权认证的变更配置方法及系统

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1859169A (zh) * 2005-12-01 2006-11-08 华为技术有限公司 一种数字家庭网络中的文件管理系统及方法
CN1949864A (zh) * 2006-11-21 2007-04-18 普天信息技术研究院 一种基于用户实现电视节目收视的控制方法
CN101282254A (zh) * 2007-04-02 2008-10-08 华为技术有限公司 家庭网络设备管理方法、系统及装置
CN101951403A (zh) * 2010-09-16 2011-01-19 中兴通讯股份有限公司 一种信息终端中基于分级的集中式认证与授权方法

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101170409B (zh) * 2006-10-24 2010-11-03 华为技术有限公司 实现设备访问控制的方法、系统、业务设备和认证服务器

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1859169A (zh) * 2005-12-01 2006-11-08 华为技术有限公司 一种数字家庭网络中的文件管理系统及方法
CN1949864A (zh) * 2006-11-21 2007-04-18 普天信息技术研究院 一种基于用户实现电视节目收视的控制方法
CN101282254A (zh) * 2007-04-02 2008-10-08 华为技术有限公司 家庭网络设备管理方法、系统及装置
CN101951403A (zh) * 2010-09-16 2011-01-19 中兴通讯股份有限公司 一种信息终端中基于分级的集中式认证与授权方法

Also Published As

Publication number Publication date
CN101951403A (zh) 2011-01-19

Similar Documents

Publication Publication Date Title
US7904074B2 (en) Remote configuration and control of local devices via a broadband access gateway
EP1587292B1 (en) Remote configuration and control of local devices via a broadband access gateway
KR101289530B1 (ko) 스마트폰의 관리하에서 스마트폰의 베어러 및 서버 독립 부모 제어를 위한 방법 및 장치
US7778234B2 (en) Local provisioning of bandwidth and other network resources
TWI397278B (zh) 用於無線存取控制的方法及裝置
US20180054854A1 (en) Wireless communication device and wireless communication method
JP6347107B2 (ja) 通信管理システム、通信制御システム、通信システム、中継装置、通信方法、及びプログラム
CN102047214A (zh) 具有对用户接口的前台访问的确定性控制的无线通信装置
EP3149951A1 (en) Interactive display telecommunication method and system
WO2006116916A1 (fr) Méthode de gestion de réseau domestique et système de gestion de réseau domestique
US9848448B2 (en) Communication management method, management server, and communication system
CN105493527B (zh) 无线通信设备和无线通信方法
CN104683320A (zh) 一种家庭网络多媒体内容共享的访问控制方法和装置
US20140286323A1 (en) Wireless network system and connecting method thereof
WO2021036725A1 (zh) 参数修改方法及设备
CN106792823A (zh) 一种基于Miracast的终端连接方法和装置
WO2012034377A1 (zh) 一种信息终端中基于分级的集中式认证与授权方法
WO2012080763A1 (en) Communication apparatus and associated methods
CN104158954B (zh) 移动终端之间进行控制的方法及系统
WO2012106958A1 (zh) 授权认证的变更配置方法及系统
CN1288934C (zh) 一种通过移动电话操作多网络的实现方法
US11855831B1 (en) Enabling an operator to resolve an issue associated with a 5G wireless telecommunication network using AR glasses
US20170359617A1 (en) Device and method for managing priorities for the downloading of multimedia contents
EP4290842A1 (en) Incoming call alert system and method, and electronic device
CN102098297A (zh) 一种家庭信息机及其认证方法

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11824448

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11824448

Country of ref document: EP

Kind code of ref document: A1