WO2014075266A1 - Procédé, appareil et système d'authentification - Google Patents

Procédé, appareil et système d'authentification Download PDF

Info

Publication number
WO2014075266A1
WO2014075266A1 PCT/CN2012/084674 CN2012084674W WO2014075266A1 WO 2014075266 A1 WO2014075266 A1 WO 2014075266A1 CN 2012084674 W CN2012084674 W CN 2012084674W WO 2014075266 A1 WO2014075266 A1 WO 2014075266A1
Authority
WO
WIPO (PCT)
Prior art keywords
physical line
central office
terminal device
authentication
branch
Prior art date
Application number
PCT/CN2012/084674
Other languages
English (en)
Chinese (zh)
Inventor
张群
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Priority to CN201280002345.XA priority Critical patent/CN103222249B/zh
Priority to PCT/CN2012/084674 priority patent/WO2014075266A1/fr
Publication of WO2014075266A1 publication Critical patent/WO2014075266A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities

Definitions

  • the present invention relates to the field of communications technologies, and in particular, to an authentication method, apparatus, and system.
  • the authentication device needs to authenticate at least two terminals, and the terminal device can communicate only after the authentication is passed.
  • the method for the authentication device to authenticate the terminal device may include:
  • the terminal device sends the physical identification information of the device to the authentication device.
  • the physical identifier information may be, but not limited to: ( Serial Number, serial number 'J number) or MAC (Media Access Controller layer) address, etc. ; Among them, SN is used in GPON (Gigabi t_capable Passive Optical Networks), in EPON
  • the MAC address is used in the Ethernet Passive Optical Network (Ethernet Passive Optical Network);
  • the authentication device authenticates the terminal according to the received physical identification information.
  • the physical identification information of the replaced terminal may change.
  • the authentication device also needs to authenticate the replaced terminal. The process is cumbersome, which increases the burden on the system and reduces the performance of the system.
  • the embodiment of the present invention provides an authentication method, device, and system, which solves the problem that when the terminal is replaced, the physical identification information of the replaced terminal may change accordingly, and the authentication device needs to perform authentication on the replaced terminal.
  • the cumbersomeness increases the burden on the system, which in turn reduces the performance of the system.
  • the first aspect provides an authentication method, where the authentication method is applied to a point-to-multipoint system, including: a central office device, an intermediate device, and at least one terminal device; At least one terminal device is connected, and the central office device passes the backbone physical The method is connected to the intermediate device, and the intermediate device is connected to the at least one terminal device by using a plurality of branch physical lines, wherein the method includes:
  • the terminal device sends an authentication request to the central office device by using the intermediate device, where the authentication request includes a physical line identifier of a branch physical line where the terminal device is located, and a physical line identifier of the branch physical line is used for unique Identifying the branch physical line;
  • the terminal device receives an authentication response sent by the central office device by using the intermediate device, where the authentication response is a response returned by the central office device after authenticating the terminal device according to the authentication request.
  • the method further includes:
  • the terminal device acquires a physical line identifier of the branch physical line
  • the terminal device sends the physical line identifier of the branch physical line to the central office device.
  • the authentication request further includes: a trunk physical line identifier, and/or an intermediate device identifier, where the trunk physical line identifier is used to uniquely identify the central office device and a trunk physical line between the intermediate devices, the intermediate device identifier for uniquely identifying the intermediate device.
  • an authentication method is provided, where the authentication method is applied to a point-to-multipoint system, including: a central office device, an intermediate device, and at least one terminal device; The at least one terminal device is connected to the intermediate device, and the intermediate device is connected to the at least one terminal device through a plurality of branch physical lines, wherein the The methods include:
  • the central office device receives an authentication request sent by the terminal device by using the intermediate device, where the authentication request includes a physical line identifier of a branch physical line where the terminal device is located, and a physical line identifier of the branch physical line is used for Uniquely identifying the branch physical line;
  • the central office device authenticates the terminal device according to the physical line identifier of the branch physical line, and returns an authentication response to the terminal device by using the intermediate device.
  • the authentication method further includes: The central office device receives the physical line identifier of the branch physical line sent by the terminal device and stores the physical line identifier.
  • the determining, by the central office device, the device identifier according to the physical line identifier of the branch physical line specifically includes:
  • the authentication request further includes: a trunk physical line identifier, and/or an intermediate device identifier, where the trunk physical line identifier is used to uniquely identify the central office device and a trunk physical line between the intermediate devices, the intermediate device identifier for uniquely identifying the intermediate device.
  • a terminal device including:
  • a first sending unit configured to send, by using the intermediate device, an authentication request to the central office device, where the authentication request includes a physical line identifier of a branch physical line where the terminal device is located, and a physical line identifier of the branch physical line
  • the first receiving unit is configured to receive an authentication response that is sent by the central office device by using the intermediate device, where the authentication response is that the central office device is configured according to the authentication request. The response returned by the terminal device after authentication.
  • the terminal device further includes:
  • An acquiring unit configured to acquire a physical line identifier of the branch physical line
  • the first sending unit is further configured to send the physical line identifier of the branch physical line to the central office device.
  • the authentication request further includes: a trunk physical line identifier, and/or an intermediate device identifier, where the trunk physical line identifier is used to uniquely identify the central office device and a trunk physical line between the intermediate devices, the intermediate device identifier for uniquely identifying the intermediate device.
  • the fourth aspect provides a central office device, including:
  • a second receiving unit configured to receive, by using the intermediate device, an authentication request sent by the terminal device, where the authentication request includes a physical line identifier of a branch physical line where the terminal device is located, where the physical line identifier of the branch physical line is used
  • the processing unit is configured to authenticate the terminal device according to the physical line identifier of the branch physical line, and return an authentication response to the terminal device by using the intermediate device.
  • the second receiving unit is further configured to receive and store a physical line identifier of the branch physical line sent by the terminal device.
  • the processing unit is specifically configured to determine a physical line identifier in the authentication request and the stored branch physical line Whether the physical line identifiers are the same;
  • the authentication request further includes: a trunk physical line identifier, and/or an intermediate device identifier, where the trunk physical line identifier is used to uniquely identify the central office device and a trunk physical line between the intermediate devices, the intermediate device identifier for uniquely identifying the intermediate device.
  • an authentication system including:
  • a central office device is connected to the at least one terminal device by using the intermediate device, and the central office device is connected to the intermediate device by using a trunk physical line.
  • the intermediate device is connected to the at least one terminal device by using a plurality of branch physical lines, wherein the terminal device is the terminal device provided above, and the central office device is the central office device provided above.
  • the terminal device sends an authentication request to the central office device through the intermediate device, and the terminal device receives the authentication response sent by the central office device through the intermediate device, and the authentication response is the central office end.
  • the central office device is authenticated according to the corresponding physical line identifier, and is connected between the central office device and the terminal device.
  • the physical line is not replaced. Therefore, the central office device does not need to authenticate the replaced terminal device, which avoids the authentication of the updated terminal device, reduces the burden on the system, and increases the performance of the system.
  • FIG. 1 is a schematic structural diagram of an authentication system according to an embodiment of the present disclosure
  • FIG. 2 is a flow chart of an authentication method using a terminal device as an execution subject according to the embodiment
  • FIG. 3 is a flow chart of an authentication method using a central office device as an execution subject according to the embodiment
  • FIG. 5 is a schematic structural diagram of another authentication system according to the embodiment.
  • FIG. 6 is a flowchart of an authentication method applied to an optical network system according to an embodiment of the present invention
  • FIG. 7 is a schematic structural diagram of a terminal device according to an embodiment of the present disclosure
  • FIG. 8 is a schematic structural diagram of another terminal device according to the embodiment.
  • FIG. 9 is a schematic structural diagram of a central office device according to an embodiment of the present disclosure.
  • the embodiment provides an authentication method, which can be applied to a P2MP point-to-multipoint system.
  • the method can include: a central office device, an intermediate device, and at least one terminal device;
  • the intermediate device is connected to the at least one terminal device through the intermediate device, and the central office device is connected to the intermediate device through the trunk physical line, and the intermediate device is respectively connected to the at least one terminal device through multiple branch physical lines;
  • the execution body of the method may be the terminal device As shown in Figure 2, it can include:
  • the terminal device sends an authentication request to the central office device through the intermediate device, where the authentication request includes the physical line identifier of the branch physical line where the terminal device is located, and the physical line identifier of the branch physical line is used to uniquely identify the branch physical line.
  • the terminal device receives the authentication response sent by the central office device through the intermediate device, and the authentication response is a response returned by the central office device after authenticating the terminal device according to the authentication request.
  • the present embodiment is not limited to the functions of the P2MP and the intermediate device.
  • the intermediate device may be, but not limited to, used for splitting, and details are not described herein again.
  • the terminal device sends an authentication request to the central office device through the intermediate device; the terminal device receives the authentication response sent by the central office device through the intermediate device, and the authentication response is a response returned by the central office device after authenticating the terminal device according to the authentication request. .
  • the terminal device since the central office device is authenticated according to the corresponding physical line identifier, and the physical line connecting the central office device and the terminal device is not replaced, the central office device does not need to be replaced.
  • the terminal device is authenticated, the authentication of the updated terminal device is avoided, the burden on the system is reduced, and the performance of the system is increased.
  • This embodiment provides another authentication method, which can be applied to a P 2MP point-to-multipoint system.
  • the method may include: a central office device, an intermediate device, and at least one terminal device; The at least one terminal device is connected, and the central office device is connected to the intermediate device through the trunk physical line, and the intermediate device is connected to the at least one terminal device through multiple branch physical lines.
  • the execution body of the method may be the central office device, as shown in the figure. As shown in 3, it can include:
  • the central office device receives the authentication request sent by the terminal device by using the intermediate device, where the authentication request includes the physical line identifier of the branch physical line where the terminal device is located, and the physical line identifier of the branch physical line is used to uniquely identify the branch physical line. 302.
  • the central office device authenticates the terminal device according to the physical line identifier of the branch physical line, and returns an authentication response to the terminal device by using the intermediate device.
  • the central office device receives the authentication request sent by the terminal device through the intermediate device; the central office device authenticates the terminal device according to the physical line identifier of the branch physical line, and returns an authentication response to the terminal device through the intermediate device.
  • the central office device is authenticated according to the corresponding physical line identifier, and the physical line connecting the central office device and the terminal device is not replaced. Therefore, the central office device does not need to be replaced.
  • the latter terminal device performs authentication, which avoids the authentication of the updated terminal device, reduces the burden on the system, and further increases the performance of the system.
  • This embodiment provides another authentication method, which is a further extension of the method shown in FIG. 2 and FIG. 3. As shown in FIG. 4, the method may include:
  • the terminal device sends an authentication request to the central office device by using the intermediate device.
  • the authentication request may include, but is not limited to, the physical line identifier of the branch physical line where the terminal device is located, and the physical line identifier of the branch physical line is used to uniquely identify the branch physical line.
  • the authentication request may further include: service information required by the terminal device, and the terminal device The identity of the terminal device, etc.
  • the content included in the authentication request is not limited, and may be set according to actual needs, and details are not described herein again.
  • the terminal device Before the terminal device sends the authentication request, the terminal device also needs to obtain the physical line identifier of the branch physical line, and the terminal device sends the physical line identifier of the branch physical line to the central office device.
  • branch physical line may be, but not limited to, a branch fiber
  • physical line identifier may be, but not limited to, a fiber identifier
  • the physical line identifier of the branch physical line where the terminal device obtains may include: after the terminal device is connected to the branch fiber, the branch fiber may be obtained from the connected branch fiber. logo.
  • Different optical fibers can be set with different optical transmission parameters, so that data can be transmitted through different optical fibers. Different ways, therefore, different optical fibers can be distinguished according to optical transmission parameters; in addition, different optical fiber IDs are different, and different optical fibers can be distinguished according to optical fiber IDs.
  • the branch fiber identifier may be, but not limited to, a light transmission parameter when transmitting the authentication request, or a branch fiber ID that is a transmission authentication request.
  • the terminal device can obtain the encoded information from the branch fiber plug, and the coded information is the branch light If I D .
  • the method for obtaining the optical conduction parameter and the branch fiber I D of the terminal is not limited in this embodiment, and is a technology well known to those skilled in the art, and details are not described herein again.
  • the branch fiber identifier is not limited, and may be set according to actual needs, and details are not described herein again.
  • the terminal device may also send the branch fiber identifier to the central office device for storage by the central office device.
  • the authentication request may further include, but is not limited to: a trunk physical line identifier, and/or an intermediate device identifier, where the trunk physical line identifier is used to uniquely identify a trunk physical line between the central office device and the intermediate device, and the intermediate device identifier is used for Uniquely identifies the intermediate device.
  • the trunk physical line may be, but not limited to, a trunk fiber.
  • the physical line identifier of the trunk physical line may also be, but not limited to, an optical fiber ID, or a light transmission parameter of the backbone fiber.
  • the terminal device sending the authentication request to the central office device by using the intermediate device may include, but is not limited to: when the terminal device is connected to the optical fiber, the terminal device is actively triggered to send an authentication request to the central office device; or After the terminal device is connected to the optical fiber and starts an authentication procedure, the terminal device is triggered to send an authentication request to the central office device.
  • the central office device receives an authentication request sent by the terminal device by using the intermediate device.
  • the central office device authenticates the terminal device according to the physical line identifier of the branch physical line.
  • the central office device may further include, according to the physical line identifier of the branch physical line, the terminal device, including but not limited to: The central office device determines whether the physical line identifier in the authentication request is the same as the physical line identifier of the stored branch physical line; if the same, the authentication passes; otherwise, the authentication fails.
  • the physical line identifier of the stored branch physical line may be stored by the terminal device after being sent to the central office device after acquiring the physical line identifier of the branch physical line.
  • the method for authenticating the terminal device by the central office device is not limited, and is a technology well known to those skilled in the art, and may be set according to actual needs, and details are not described herein again.
  • the central office device may be based on the physical line identifier of the branch physical line, the physical line identifier of the trunk physical line, or the intermediate device identifier pair.
  • the terminal device performs authentication.
  • the method for authenticating the terminal device by the central office device is not limited, and is a technology that is well known to those skilled in the art, and may be set according to actual needs, and details are not described herein again.
  • the central office device sends an authentication response to the terminal device by using the intermediate device.
  • the terminal device When the authentication response received by the terminal device is used to describe whether the terminal device passes the authentication, if the authentication is passed, the terminal starts to communicate; when the authentication response received by the terminal device is used to describe the failed authentication, the terminal device may be, but is not limited to, Send an authentication request to the central office device.
  • the central office device detects the physical line identifier that is included in the received authentication request sent by the updated terminal device and transmits the authentication request. If the authentication has passed, the authentication response is successfully sent to the terminal device to describe the authentication success. If the authentication fails, the updated terminal device is authenticated according to the physical line identifier included in the authentication request, and sent. Certification response.
  • the method for authenticating the terminal device by the central office device is not limited in this embodiment, and is a technology well known to those skilled in the art, and details are not described herein again.
  • the terminal device sends an authentication request to the central office device through the intermediate device; the terminal device receives the authentication response sent by the central office device through the intermediate device, and the authentication response is a response returned by the central office device after authenticating the terminal device according to the authentication request. .
  • the terminal device since the central office device is authenticated according to the corresponding physical line identifier, and The physical line between the receiving end device and the terminal device is not replaced. Therefore, the central office device does not need to authenticate the replaced terminal device, thereby avoiding the authentication of the updated terminal device, thereby reducing the burden on the system, thereby increasing the burden. System performance.
  • the terminal device may be an optical network unit (Optical Network Unit)
  • the central office device may be an optical line terminal (OLT)
  • the intermediate device may be a splitter.
  • the embodiment provides an authentication method, which may be, but is not limited to, being applied to an optical network system.
  • the optical network system includes: at least one ONU optical access terminal device, 0LT optical access head end device, and optical splitter;
  • the 0LT is connected to the optical splitter through the main fiber, and the optical splitter is respectively connected to the at least one ONU through the plurality of branch fibers, wherein the main fiber and the branch fiber are both configured with the optical fiber identifier;
  • the method includes :
  • the 601, 0 sends an authentication request to the 0LT through the optical splitter, and the authentication request includes the optical fiber identifier of the backbone fiber and the branch fiber for transmitting the authentication request;
  • 0LT receives an authentication request sent by the optical splitter, and the authentication request includes a fiber identifier of the backbone fiber and the branch fiber for transmitting the authentication request;
  • optical network system and the optical splitter are not limited in this embodiment, and are well known to those skilled in the art, and are not described herein again.
  • 0LT is connected to six 0NUs.
  • Each trunk fiber is used to connect three branch fibers through a splitter, and each branch fiber is used to connect a volume.
  • the specific steps of the authentication may be To include:
  • 0NU 1 sends an authentication request to the OLT through the branch fiber 1 and the backbone fiber 1.
  • the authentication request includes the fiber identifiers of the branch fiber 1 and the backbone fiber 1;
  • 0LT authenticates the ONU 1 according to the fiber identifiers of the branch fiber 1 and the backbone fiber 1, and
  • the authentication response is sent to the ONU 1; if the authentication is passed, the ONU 1 can communicate.
  • 0LT since 0LT authenticates 0NU 1 according to the fiber identifiers of branch fiber 1 and trunk fiber 1, when 0NU 1 is replaced with 0NU7, it is transmitted by branch fiber 1 and trunk fiber 1 The authentication request, therefore, 0LT does not need to authenticate to the ONU7, and can directly send an authentication response for the authentication pass to the ONU7.
  • the central office device does not need to authenticate the replaced ONU, which avoids the authentication of the updated ONU, reduces the burden on the system, and thus increases the performance of the system.
  • the terminal device may include: a sending unit 7 1 configured to send an authentication request to the central office device by using the intermediate device, where the authentication request includes the physical of the branch physical line where the terminal device is located.
  • the line identifier, the physical line identifier of the branch physical line is used to uniquely identify the branch physical line;
  • the first receiving unit 72 is configured to receive an authentication response sent by the central office device by using the intermediate device, where the authentication response is a response returned by the central office device after authenticating the terminal device according to the authentication request.
  • the sending unit sends an authentication request to the central office device through the intermediate device; the first receiving unit receives the authentication response sent by the central office device through the intermediate device, and the authentication response is that the central office device performs authentication on the terminal device according to the authentication request, and then returns. the response to.
  • the central office device is authenticated according to the corresponding physical line identifier, and the physical line connecting the central office device and the terminal device is not replaced. Therefore, the central office device does not need to replace the replaced terminal device.
  • the authentication of the updated terminal device is avoided, the burden on the system is reduced, and the performance of the system is increased.
  • the terminal device may include:
  • the sending unit 81 is configured to send an authentication request to the central office device by using the intermediate device, where the authentication request includes a physical line identifier of the branch physical line where the terminal device is located, and the physical line identifier of the branch physical line is used to uniquely identify the branch physical line;
  • the first receiving unit 82 is configured to receive an authentication response sent by the central office device by using the intermediate device, where the authentication response is a response returned by the central office device after authenticating the terminal device according to the authentication request.
  • the terminal device further includes:
  • An obtaining unit 83 configured to acquire a physical line identifier of the branch physical line
  • the sending unit 81 is further configured to send the physical line identifier of the branch physical line to the central office device.
  • the authentication request further includes: a trunk physical line identifier, and/or an intermediate device identifier, where the trunk physical line identifier is used to uniquely identify a trunk physical line between the central office device and the intermediate device, and the intermediate device identifier is used to uniquely identify the intermediate device. .
  • the sending unit sends an authentication request to the central office device through the intermediate device; the first receiving unit receives the authentication response sent by the central office device through the intermediate device, and the authentication response is that the central office device performs authentication on the terminal device according to the authentication request, and then returns. the response to.
  • the central office device since the central office device is authenticated according to the corresponding physical line identifier, and the physical line connecting the central office device and the terminal device is not replaced, the central office device does not need to be replaced.
  • the terminal device is authenticated, the authentication of the updated terminal device is avoided, the burden on the system is reduced, and the performance of the system is increased.
  • the embodiment provides a central office device.
  • the central office device may include: a second receiving unit 91, configured to receive, by using an intermediate device, an authentication request sent by the terminal device, where the authentication request includes a branch physics where the terminal device is located.
  • Physical line identification of the line, branch physical line The physical line identifier of the road is used to uniquely identify the branch physical line;
  • the processing unit 92 is configured to perform authentication on the terminal device according to the physical line identifier of the branch physical line, and return an authentication response to the terminal device by using the intermediate device.
  • the second receiving unit 91 is further configured to receive and store the physical line identifier of the branch physical line sent by the terminal device.
  • processing unit 92 is specifically configured to determine whether the physical line identifier in the authentication request is the same as the physical line identifier of the stored branch physical line;
  • the authentication request further includes: a trunk physical line identifier, and/or an intermediate device identifier, where the trunk physical line identifier is used to uniquely identify a trunk physical line between the central office device and the intermediate device, and the intermediate device identifier is used to uniquely identify the intermediate device. .
  • the second receiving unit receives the authentication request sent by the terminal device by using the intermediate device; the processing unit authenticates the terminal device according to the physical line identifier of the branch physical line, and returns an authentication response to the terminal device by using the intermediate device.
  • the processing unit authenticates the terminal device according to the physical line identifier of the branch physical line, and returns an authentication response to the terminal device by using the intermediate device.
  • This embodiment provides an authentication system, as shown in FIG. 1, which may include: a central office device 1 2, an intermediate device 1 3, at least one terminal device 1 1;
  • the central office device 1 2 is connected to the at least one terminal device 11 through the intermediate device 13 , and the central office device 12 is connected to the intermediate device 13 through the trunk physical line, and the intermediate device 13 respectively and at least through the plurality of branch physical lines
  • a terminal device 1 1 is connected, and the terminal device 1 1 may be the terminal device shown in FIG. 7 or FIG. 8 , and the central office device 12 may be the optical line terminal shown in FIG. 9 .
  • the terminal device sends an authentication request to the central office device through the intermediate device; the terminal device receives the authentication response sent by the central office device through the intermediate device, and the authentication response is the central office setting.
  • the response returned after the terminal device is authenticated according to the authentication request.
  • the terminal device since the central office device is authenticated according to the corresponding physical line identifier, and the physical line connecting the central office device and the terminal device is not replaced, the central office device does not need to be replaced.
  • the terminal device is authenticated, the authentication of the updated terminal device is avoided, the burden on the system is reduced, and the performance of the system is increased.
  • the present invention can be implemented by means of software plus necessary general hardware, and of course, by hardware, but in many cases, the former is a better implementation. .
  • the technical solution of the present invention which is essential or contributes to the prior art, may be embodied in the form of a software product stored in a readable storage medium, such as a floppy disk of a computer.
  • a hard disk or optical disk or the like includes instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to perform the methods described in various embodiments of the present invention.

Abstract

Des modes de réalisation de la présente invention, qui se rapportent au domaine technique des communications, concernent un procédé, un appareil et un système d'authentification et résolvent un problème selon lequel, lorsqu'un terminal est remplacé, des informations d'identification physique du terminal après son remplacement peuvent par conséquent changer, un dispositif d'authentification nécessite d'authentifier le terminal après le remplacement et un processus est compliqué, ce qui augmente la charge du système et en réduit les performances. Les étapes concrètes du procédé de la présente invention peuvent être les suivantes : un dispositif terminal envoie une demande d'authentification à un dispositif côté central par le biais d'un dispositif intermédiaire ; le dispositif terminal reçoit une réponse d'authentification envoyée par le dispositif côté central par le biais du dispositif intermédiaire et la réponse d'authentification est une réponse renvoyée par le dispositif côté central après l'authentification du dispositif terminal selon la demande d'authentification. La présente invention peut s'appliquer à un processus d'authentification du terminal.
PCT/CN2012/084674 2012-11-15 2012-11-15 Procédé, appareil et système d'authentification WO2014075266A1 (fr)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201280002345.XA CN103222249B (zh) 2012-11-15 2012-11-15 认证方法、装置和系统
PCT/CN2012/084674 WO2014075266A1 (fr) 2012-11-15 2012-11-15 Procédé, appareil et système d'authentification

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2012/084674 WO2014075266A1 (fr) 2012-11-15 2012-11-15 Procédé, appareil et système d'authentification

Publications (1)

Publication Number Publication Date
WO2014075266A1 true WO2014075266A1 (fr) 2014-05-22

Family

ID=48818204

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2012/084674 WO2014075266A1 (fr) 2012-11-15 2012-11-15 Procédé, appareil et système d'authentification

Country Status (2)

Country Link
CN (1) CN103222249B (fr)
WO (1) WO2014075266A1 (fr)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2018058624A1 (fr) * 2016-09-30 2018-04-05 华为技术有限公司 Procédé d'accès à un réseau optique par une unité de réseau optique, dispositif et système d'authentification

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1863199A (zh) * 2005-09-30 2006-11-15 华为技术有限公司 宽带网络中开展业务的方法
CN102025702A (zh) * 2009-09-17 2011-04-20 中兴通讯股份有限公司 基于身份标识和位置分离架构的网络及其骨干网和网元
CN102474508A (zh) * 2009-10-20 2012-05-23 阿瓦雅公司 点对点网络中的节点的层次结构

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1863199A (zh) * 2005-09-30 2006-11-15 华为技术有限公司 宽带网络中开展业务的方法
CN102025702A (zh) * 2009-09-17 2011-04-20 中兴通讯股份有限公司 基于身份标识和位置分离架构的网络及其骨干网和网元
CN102474508A (zh) * 2009-10-20 2012-05-23 阿瓦雅公司 点对点网络中的节点的层次结构

Also Published As

Publication number Publication date
CN103222249A (zh) 2013-07-24
CN103222249B (zh) 2016-01-13

Similar Documents

Publication Publication Date Title
WO2010135936A1 (fr) Procédé et appareil d'authentification dans un réseau optique passif et réseau optique passif associé
JP5068495B2 (ja) 分散型認証機能
WO2018177143A1 (fr) Procédé et système d'authentification d'identité, serveur et terminal
US10819708B2 (en) Method for authenticating optical network unit, optical line terminal, and optical network unit
WO2009052676A1 (fr) Procédé et système d'authentification d'utilisateur
WO2009009999A1 (fr) Procédé, dispositif et système de gestion opérationnelle d'authentification de détection de terminal dans un réseau optique passif
US9083465B2 (en) Method for acquiring PON port association relationship, optical network device, and optical network system
CN104584478B (zh) 无源光网络中的终端认证方法、装置及系统
CN102571353B (zh) 无源光网络中验证家庭网关合法性的方法
WO2011127731A1 (fr) Procédé et système d'activation de référencement pour une unité de réseau optique
US20170155449A1 (en) Service Processing Method and Apparatus and Optical Line Terminal
WO2010031269A1 (fr) Procédé, système et dispositif pour réaliser l’obtention d’un mot de passe par un terminal côté utilisateur
CN109104475A (zh) 连接恢复方法、装置及系统
WO2014114065A1 (fr) Procédé et système d'authentification de gestion de licence destinés à un dispositif de réseau optique passif
CN103369529A (zh) 身份认证方法、访问点及访问控制器
US8769623B2 (en) Grouping multiple network addresses of a subscriber into a single communication session
CN101980496A (zh) 报文处理方法和系统、交换机和接入服务器设备
CN106162387B (zh) 光接入模块的认证注册方法、装置及系统
WO2017005163A1 (fr) Dispositif d'authentification de sécurité en fonction d'une communication sans fil
WO2017076146A1 (fr) Procédé et système d'authentification d'accès au réseau
WO2014075266A1 (fr) Procédé, appareil et système d'authentification
CN111526107A (zh) 一种网络设备认证方法、装置和存储介质
CN101478554A (zh) 802.1x认证方法、装置、系统、客户端和网络设备
CN113742701B (zh) 开通ar/vr业务的系统及方法、网关设备、ar/vr设备和存储介质
CN105610667B (zh) 建立虚拟专用网通道的方法和装置

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12888506

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 12888506

Country of ref document: EP

Kind code of ref document: A1