CN104125568A - Wireless access point safe authentication method and system - Google Patents
Wireless access point safe authentication method and system Download PDFInfo
- Publication number
- CN104125568A CN104125568A CN201410392596.4A CN201410392596A CN104125568A CN 104125568 A CN104125568 A CN 104125568A CN 201410392596 A CN201410392596 A CN 201410392596A CN 104125568 A CN104125568 A CN 104125568A
- Authority
- CN
- China
- Prior art keywords
- access point
- wap
- wireless access
- wireless
- wireless controller
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Mobile Radio Communication Systems (AREA)
- Small-Scale Networks (AREA)
Abstract
Disclosed is a wireless access point safe authentication method and system. The method comprises transmitting a discovery request message from a wireless access point to a wireless controller; receiving the discovery request message from the wireless controller, analyzing the discovery request message to obtain the serial number and the MAC (media access control) address of the wireless access point, and transmitting a discovery responding message to the wireless access point; receiving the discovery responding message from the wireless access point and analyzing the discovery responding message to obtain the IP (Internet protocol) address information of the wireless controller, binding the IP address information with the wireless controller, and transmitting a connection request message to the wireless controller; after receiving the connection request message from the wireless controller, determining whether the serial number and the MAC address of the wireless access point are matched with a prestored serial number and a prestored MAC address; if so, establishing a communication channel between the wireless controller and the wireless access point. By taking that whether the serial number and the MAC address of the wireless access point are matched as the access basis, the wireless access point safe authentication method and system prevents unallowed wireless access points from access to the wireless controller, thereby improving the authentication accuracy.
Description
Technical field
The present invention relates to wireless communication technology field, particularly relate to a kind of WAP (wireless access point) safety certifying method and system.
Background technology
CAPWAP (Control and Provision for Wireless Access Point Protocol, wireless access point control and configuration protocol) agreement is WAP (wireless access point) and the wireless controller intercommunication problem of reply different manufacturers, and a kind of general encapsulation and the transmission mechanism that propose.How mutual control between CAPWAP protocol definition WAP (wireless access point) and wireless controller and data message be.
A wireless controller can be managed multiple WAP (wireless access point), and wireless controller can be connected with multiple WAP (wireless access point).Along with the development of WLAN (wireless local area network), the deployment of WAP (wireless access point) is more and more, may other not allow the WAP (wireless access point) connecting can connect wireless controller thus yet, be that illegal wireless access point connects, thereby can upset the stability of WLAN (wireless local area network), therefore need WAP (wireless access point) to carry out safety certification.
Traditional WAP (wireless access point) safety certifying method is mainly by entering access phase DTLS (Datagram Transport Layer Security before in CAPWAP agreement, data packet transmission layer security protocol) the dohandshake action communication that ensures safety, when the DTLS key agreement of wireless controller and WAP (wireless access point) end just can be connected.All giving tacit consent to due to the key of wireless controller and WAP (wireless access point) generally, is all in most cases consistent.Traditional WAP (wireless access point) safety certifying method only relies on the encryption mechanism on basis in agreement to carry out safety certification, has the low shortcoming of certification accuracy.
Summary of the invention
Based on this, be necessary for the problems referred to above, a kind of WAP (wireless access point) safety certifying method and system that improves certification accuracy is provided.
A kind of WAP (wireless access point) safety certifying method, comprises the following steps:
Send and find that request message is to wireless controller from WAP (wireless access point); Described discovery request message comprises sequence number and the MAC Address of WAP (wireless access point);
Receive described discovery request message and resolve sequence number and the MAC Address of obtaining described WAP (wireless access point) from described wireless controller, and send discovery response message to described WAP (wireless access point); Described discovery response message comprises the IP address information of described wireless controller;
Receive described discovery back message using and resolve the IP address information of obtaining described wireless controller from described WAP (wireless access point), and according to the IP address information of described wireless controller, described WAP (wireless access point) and wireless controller are bound, and send connection request message to described wireless controller;
From described wireless controller receives described connection request message, judge sequence number and the MAC Address of described WAP (wireless access point), whether mate with the sequence number prestoring and MAC Address;
If so, set up the communication tunnel between WAP (wireless access point) from described wireless controller.
A kind of WAP (wireless access point) security certification system, comprising:
Sending module, finds that for sending from WAP (wireless access point) request message is to wireless controller; Described discovery request message comprises sequence number and the MAC Address of WAP (wireless access point);
Request message parsing module, for receiving described discovery request message from described wireless controller and resolving sequence number and the MAC Address of obtaining described WAP (wireless access point), and sends discovery response message to described WAP (wireless access point); Described discovery response message comprises the IP address information of described wireless controller;
Response message parsing module, for receiving described discovery response message and resolve the IP address information that obtains described wireless controller from described WAP (wireless access point), and according to the IP address information of described wireless controller, described WAP (wireless access point) and wireless controller are bound, and send connection request message to described wireless controller;
Whether judge module, for receiving described connection request message from described wireless controller, judges sequence number and the MAC Address of described WAP (wireless access point), mate with the sequence number prestoring and MAC Address;
Communication connection module, when judging that at described judge module the sequence number of described WAP (wireless access point) and MAC Address are mated with the sequence number prestoring and MAC Address, from the communication tunnel between described wireless controller foundation and WAP (wireless access point).
Above-mentioned WAP (wireless access point) safety certifying method and system, send and find that request message is to wireless controller from WAP (wireless access point); Receive and find request message and resolve sequence number and the MAC Address of obtaining WAP (wireless access point) from wireless controller, and send discovery response message to WAP (wireless access point).Receive and find back message using and resolve the IP address information of obtaining wireless controller from WAP (wireless access point), and according to the IP address information of wireless controller, WAP (wireless access point) and wireless controller are bound, and send connection request message to wireless controller.From wireless controller receives connection request message, judge sequence number and the MAC Address of WAP (wireless access point), whether mate with the sequence number prestoring and MAC Address; If so, set up and the communication tunnel of WAP (wireless access point) from wireless controller.Whether the sequence number and the MAC Address that judge WAP (wireless access point) are mated with the sequence number prestoring and MAC Address, as the foundation that whether allows WAP (wireless access point) access, avoid unallowed WAP (wireless access point) to connect wireless controller.Compared with traditional WAP (wireless access point) safety certifying method, improve certification accuracy.
Brief description of the drawings
Fig. 1 is the flow chart of WAP (wireless access point) safety certifying method in an embodiment;
Fig. 2 is the flow chart of WAP (wireless access point) safety certifying method in another embodiment;
Fig. 3 is the structure chart of WAP (wireless access point) security certification system in an embodiment;
Fig. 4 is the structure chart of WAP (wireless access point) security certification system in another embodiment.
Embodiment
For above-mentioned purpose of the present invention, feature and advantage can be become apparent more, below in conjunction with accompanying drawing, the specific embodiment of the present invention is described in detail.A lot of details are set forth in the following description so that fully understand the present invention.But the present invention can implement to be much different from alternate manner described here, and those skilled in the art can do similar improvement without prejudice to intension of the present invention in the situation that, and therefore the present invention is not subject to the restriction of following public specific embodiment.
Unless otherwise defined, all technology that use are herein identical with the implication that belongs to the common understanding of those skilled in the art of the present invention with scientific terminology.The term using in specification of the present invention herein, just in order to describe the object of specific embodiment, is not intended to be restriction the present invention.
A kind of WAP (wireless access point) safety certifying method, as shown in Figure 1, comprises the following steps:
Step S120: send and find that request message is to wireless controller from WAP (wireless access point).
Find that request message comprises sequence number and MAC (Media Access Control, the medium access control) address of WAP (wireless access point), carries out the basis for estimation of safety certification for subsequent step.Can pass through WAP (wireless access point) searching and detecting wireless controller, and send discovery request message to wireless controller.Find that from WAP (wireless access point) transmission the mode of request message has multiple, specifically can send and find that request message is to wireless controller by static mode, mode of unicast, broadcast mode or OPTION43 mode.
Further, find that request message specifically can comprise type of message, server numbering, identification code, message element and five parts of message element length, wherein message element is used for hardware version information and the MAC Address of the WAP (wireless access point) of carrying WAP (wireless access point), hardware version information comprises the sequence number of WAP (wireless access point), and with opposing, different WAP (wireless access point) is identified.Hardware version information also can comprise the hardware version numbers of model, manufacturer's extended sequence number and the WAP (wireless access point) of WAP (wireless access point) etc.In addition one or more in the message element tunnel type that also portability discovery types value, hardware configuration information and WAP (wireless access point) are supported.
Step S130: receive and find request message and resolve sequence number and the MAC Address of obtaining WAP (wireless access point) from wireless controller, and send discovery response message to WAP (wireless access point).
The discovery request message that wireless controller is received is resolved, and extracts and finds that the data message that carries of request message carries out buffer memory, sends and finds that response message is to WAP (wireless access point) obtaining after finding data message that request message carries.Find that response message comprises the IP address information of wireless controller, bind as WAP (wireless access point) in subsequent step and wireless controller, IP address information specifically can comprise that the usable interface address of wireless controller and the wireless access that usable interface has accessed count out, so that WAP (wireless access point) to be accessed is bound selection.In addition, find that response message also can comprise one or more in state information, identifier and the priority number of wireless controller, wherein the state information of wireless controller is used for illustrating its current state, as operating state or dead status etc., the identifier of wireless controller plays recognition reaction, and priority number can be used as the wireless controller of wireless access point selection limit priority and binds.
Step S140: receive and find back message using and resolve the IP address information of obtaining wireless controller from WAP (wireless access point), and according to the IP address information of wireless controller, WAP (wireless access point) and wireless controller are bound, and send connection request message to wireless controller.
Receive and find back message using resolving by WAP (wireless access point), obtain binding with wireless controller after the IP address information of wireless controller.Comprise that with IP address information the usable interface address of wireless controller and the wireless access that usable interface has accessed count out as example, count out to select suitable usable interface address according to accessing wireless access, the usable interface address binding of the wireless controller of WAP (wireless access point) and selection, for certification by after carry out data interactive communication provide basis.By after the usable interface address binding of the wireless controller of WAP (wireless access point) and selection, send connection request message to wireless controller from WAP (wireless access point).
Step S150: from wireless controller receives connection request message, judge sequence number and the MAC Address of WAP (wireless access point), whether mate with the sequence number prestoring and MAC Address.
From wireless controller receives connection request message, judge that whether the sequence number of WAP (wireless access point) and MAC Address mate with the sequence number prestoring and MAC Address, if so, carry out step S160.
The sequence number prestoring and the quantity of MAC Address can be one, can be also more than two.In an embodiment, the sequence number prestoring in wireless controller and MAC Address are stored by the form of list, obtain allowing access control list therein.Specifically can be by building SQLITE database, in this database, set up and allow Access Control List (ACL) to come storage sequence number and MAC Address.Allow Access Control List (ACL) can comprise three of numbering, WAP (wireless access point) sequence number and WAP (wireless access point) MAC Address, storage allows the numbering of the WAP (wireless access point) of access respectively, and sequence number and the MAC Address of correspondence.With the form storage sequence of list number and MAC Address, so that follow-up matching operation, convenient and swift and be difficult for makeing mistakes, improve coupling reliability.
Step S160: set up the communication tunnel between WAP (wireless access point) from wireless controller.
If the sequence number of WAP (wireless access point) and MAC Address are mated with the sequence number prestoring and MAC Address, illustrate that WAP (wireless access point) to be accessed is legal, carry out DTLS dohandshake action, set up the communication tunnel between WAP (wireless access point) and wireless controller.
Above-mentioned WAP (wireless access point) safety certifying method, whether the sequence number and the MAC Address that judge WAP (wireless access point) are mated with the sequence number prestoring and MAC Address, as the foundation that whether allows WAP (wireless access point) access, avoid unallowed WAP (wireless access point) to connect wireless controller.Compared with traditional WAP (wireless access point) safety certifying method, improve certification accuracy.
In an embodiment, before step S120, also comprise from WAP (wireless access point) and set up the step of finding request message therein.
The sequence number of different radio access point is different, and can directly from the hardware version information of WAP (wireless access point), obtain.In the present embodiment, obtain the MAC Address of WAP (wireless access point) by sockets interface.Can deposit the sequence number of WAP (wireless access point) and MAC Address in WTP (wireless terminator point, wireless terminal point) plate data structure, then sequence number and MAC Address in WTP plate data structure are recombinated, obtain finding request message.
Sockets interface is the interface that web application uses while utilizing network protocol stack to communicate, allows multiple program process to export transmission, has portable good feature.The IP address of communication target, the transport layer protocol of use and the port numbers of use are combined with sockets interface and bound, application layer can be distinguished the communication from different application process or network connection by sockets interface, realizes the concurrent service of transfer of data.Utilize sockets interface to obtain the MAC Address of WAP (wireless access point), convenient to operation, and implementation cost is low.
In an embodiment, as shown in Figure 2, if the sequence number of WAP (wireless access point) and MAC Address are not mated with the sequence number prestoring and MAC Address, also comprise step S170 therein.
Step S170: export default warning message from wireless controller.
If judge, sequence number and MAC Address do not mate, and illustrates that WAP (wireless access point) to be accessed is illegal, output alarm information reminding staff.Warning message can be picture, word or audio-frequency information etc., in the present embodiment, step S170 is specially simultaneously and shows default picture character by display, and plays default audio file by loud speaker and report to the police, and is convenient to staff and knows in time.
Continue with reference to Fig. 2, in an embodiment, after step S160, also can comprise step S180 therein.
Step S180: send connection response message to WAP (wireless access point) from wireless controller.
After judging that WAP (wireless access point) to be accessed is legal, send connection response message to WAP (wireless access point) by wireless controller, to inform that WAP (wireless access point) safety certification passes through, can carry out data communication flow process.
In an embodiment, after step S130, also can comprise step S132 therein.
Step S132: store finding request message from wireless controller.
The discovery request message that utilizes wireless controller that WAP (wireless access point) is sent is stored, and carrying out the operations such as system rectification maintenance for staff is follow-up provides data basis.
The present invention also provides a kind of WAP (wireless access point) security certification system, as shown in Figure 3, comprises sending module 120, request message parsing module 130, response message parsing module 140, judge module 150 and communication connection module 160.
Sending module 120 finds that for sending from WAP (wireless access point) request message is to wireless controller.
Find that request message comprises sequence number and the MAC Address of WAP (wireless access point), carries out the basis for estimation of safety certification for subsequent step.Find that from WAP (wireless access point) transmission the mode of request message has multiple, specifically can send and find that request message is to wireless controller by static mode, mode of unicast, broadcast mode or OPTION43 mode.
Further, find that request message specifically can comprise type of message, server numbering, identification code, message element and five parts of message element length, wherein message element is for carrying hardware version information and the MAC Address of WAP (wireless access point), hardware version information comprises the sequence number of WAP (wireless access point), and with opposing, different WAP (wireless access point) is identified.Hardware version information also can comprise the hardware version numbers of model, manufacturer's extended sequence number and the WAP (wireless access point) of WAP (wireless access point) etc.In addition one or more in the message element tunnel type that also portability discovery types value, hardware configuration information and WAP (wireless access point) are supported.
Request message parsing module 130 is for receiving and find request message and resolve sequence number and the MAC Address of obtaining WAP (wireless access point) from wireless controller, and transmission finds that response message is to WAP (wireless access point).
Find that response message comprises the IP address information of wireless controller, binds as WAP (wireless access point) in subsequent step and wireless controller.IP address information specifically can comprise that the usable interface address of wireless controller and the wireless access that usable interface has accessed count out, so that WAP (wireless access point) to be accessed is bound selection.In addition, find that response message also can comprise one or more in state information, identifier and the priority number of wireless controller, wherein the state information of wireless controller is used for illustrating its current state, as operating state or dead status etc., the identifier of wireless controller plays recognition reaction, and priority number can be used as the wireless controller of wireless access point selection limit priority and binds.
Response message parsing module 140 is for receiving and find response message and resolve the IP address information that obtains wireless controller from WAP (wireless access point), and according to the IP address information of wireless controller, WAP (wireless access point) and wireless controller are bound, and send connection request message to wireless controller.
Comprise that with IP address information the usable interface address of wireless controller and the wireless access that usable interface has accessed count out as example, count out to select suitable usable interface address according to accessing wireless access, the usable interface address binding of the wireless controller of WAP (wireless access point) and selection, for certification by after carry out data interactive communication provide basis.By after the usable interface address binding of the wireless controller of WAP (wireless access point) and selection, send connection request message to wireless controller from WAP (wireless access point).
Whether judge module 150, for from wireless controller receives connection request message, judges sequence number and the MAC Address of WAP (wireless access point), mate with the sequence number prestoring and MAC Address.
The sequence number prestoring and the quantity of MAC Address can be one, can be also more than two.In an embodiment, the sequence number prestoring in wireless controller and MAC Address are stored by the form of list, obtain allowing access control list therein.Specifically can be by building SQLITE database, in this database, set up and allow Access Control List (ACL) to come storage sequence number and MAC Address.Allow Access Control List (ACL) can comprise three of numbering, WAP (wireless access point) sequence number and WAP (wireless access point) MAC Address, storage allows the numbering of the WAP (wireless access point) of access respectively, and sequence number and the MAC Address of correspondence.With the form storage sequence of list number and MAC Address, so that follow-up matching operation, convenient and swift and be difficult for makeing mistakes, improve coupling reliability.
Communication connection module 160 is when judging that at judge module 150 sequence number of WAP (wireless access point) and MAC Address are mated with the sequence number prestoring and MAC Address, from the communication tunnel between wireless controller foundation and WAP (wireless access point).
If the sequence number of WAP (wireless access point) and MAC Address are mated with the sequence number prestoring and MAC Address, illustrate that WAP (wireless access point) to be accessed is legal, carry out DTLS dohandshake action, set up the communication tunnel between WAP (wireless access point) and wireless controller.
Above-mentioned WAP (wireless access point) security certification system, whether the sequence number and the MAC Address that judge WAP (wireless access point) are mated with the sequence number prestoring and MAC Address, as the foundation that whether allows WAP (wireless access point) access, avoid unallowed WAP (wireless access point) to connect wireless controller.Compared with traditional WAP (wireless access point) safety certifying method, improve certification accuracy.
Therein in an embodiment, WAP (wireless access point) security certification system also comprises message establishment module, message is set up module for before sending module 120 is from WAP (wireless access point) transmission discovery request message to wireless controller, sets up and finds request message from WAP (wireless access point).
The sequence number of different radio access point is different, and can directly from the hardware version information of WAP (wireless access point), obtain.In the present embodiment, obtain the MAC Address of WAP (wireless access point) by sockets interface.Can deposit the sequence number of WAP (wireless access point) and MAC Address in WTP plate data structure, then sequence number and MAC Address in WTP plate data structure be recombinated, obtain finding request message.Utilize sockets interface to obtain the MAC Address of WAP (wireless access point), convenient to operation, and implementation cost is low.
Therein in an embodiment, as shown in Figure 4, WAP (wireless access point) security certification system also comprises alarm module 170, alarm module 170 when judging that at judge module 150 sequence number of WAP (wireless access point) and MAC Address are not mated with the sequence number prestoring and MAC Address, is exported default warning message from wireless controller.
If judge, sequence number and MAC Address do not mate, and illustrates that WAP (wireless access point) to be accessed is illegal, output alarm information reminding staff.Warning message can be picture, word or audio-frequency information etc., in the present embodiment, is specially and shows default picture character by display simultaneously, and play default audio file by loud speaker and report to the police, and is convenient to staff and knows in time.
Continue with reference to Fig. 4, therein in an embodiment, WAP (wireless access point) security certification system also comprises and returns to module 180, return to module 180 for communicating to connect module 160 after wireless controller is set up the communication tunnel between WAP (wireless access point), send connection response message to WAP (wireless access point) from wireless controller.
After judging that WAP (wireless access point) to be accessed is legal, send connection response message to WAP (wireless access point) by wireless controller, to inform that WAP (wireless access point) safety certification passes through, can carry out data communication flow process.
Therein in an embodiment, WAP (wireless access point) security certification system also comprises memory module 190, memory module 190 is for receiving and find request message and resolve sequence number and the MAC Address of obtaining WAP (wireless access point) from wireless controller at request message parsing module 130, and send discovery response message to WAP (wireless access point), store finding request message from wireless controller.
The discovery request message that WAP (wireless access point) is sent is stored, and carrying out the operations such as system rectification maintenance for staff is follow-up provides data basis.
The above embodiment has only expressed several execution mode of the present invention, and it describes comparatively concrete and detailed, but can not therefore be interpreted as the restriction to the scope of the claims of the present invention.It should be pointed out that for the person of ordinary skill of the art, without departing from the inventive concept of the premise, can also make some distortion and improvement, these all belong to protection scope of the present invention.Therefore, the protection range of patent of the present invention should be as the criterion with claims.
Claims (10)
1. a WAP (wireless access point) safety certifying method, is characterized in that, comprises the following steps:
Send and find that request message is to wireless controller from WAP (wireless access point); Described discovery request message comprises sequence number and the MAC Address of WAP (wireless access point);
Receive described discovery request message and resolve sequence number and the MAC Address of obtaining described WAP (wireless access point) from described wireless controller, and send discovery response message to described WAP (wireless access point); Described discovery response message comprises the IP address information of described wireless controller;
Receive described discovery back message using and resolve the IP address information of obtaining described wireless controller from described WAP (wireless access point), and according to the IP address information of described wireless controller, described WAP (wireless access point) and wireless controller are bound, and send connection request message to described wireless controller;
From described wireless controller receives described connection request message, judge sequence number and the MAC Address of described WAP (wireless access point), whether mate with the sequence number prestoring and MAC Address;
If so, set up the communication tunnel between WAP (wireless access point) from described wireless controller.
2. WAP (wireless access point) safety certifying method according to claim 1, it is characterized in that, described is to send described discovery request message to wireless controller with static mode, mode of unicast, broadcast mode or OPTION43 mode from WAP (wireless access point) transmission discovery request message to wireless controller.
3. WAP (wireless access point) safety certifying method according to claim 1, it is characterized in that, after described wireless controller is set up the communication tunnel between WAP (wireless access point), also comprise from described wireless controller and send the step of connection response message to described WAP (wireless access point).
4. WAP (wireless access point) safety certifying method according to claim 1, it is characterized in that, if the sequence number of described WAP (wireless access point) and MAC Address, do not mate with the sequence number prestoring and MAC Address, described method also comprises the step of exporting default warning message from described wireless controller.
5. WAP (wireless access point) safety certifying method according to claim 1, is characterized in that, described in the sequence number that prestores and MAC Address for to store with tabular form correspondence, obtain allowing access control list.
6. WAP (wireless access point) safety certifying method according to claim 1, it is characterized in that, describedly receive described discovery request message and resolve sequence number and the MAC Address of obtaining described WAP (wireless access point) from described wireless controller, and send discovery response message to the step of described WAP (wireless access point), also comprise the step of described discovery request message being stored from described wireless controller.
7. a WAP (wireless access point) security certification system, is characterized in that, comprising:
Sending module, finds that for sending from WAP (wireless access point) request message is to wireless controller; Described discovery request message comprises sequence number and the MAC Address of WAP (wireless access point);
Request message parsing module, for receiving described discovery request message from described wireless controller and resolving sequence number and the MAC Address of obtaining described WAP (wireless access point), and sends discovery response message to described WAP (wireless access point); Described discovery response message comprises the IP address information of described wireless controller;
Response message parsing module, for receiving described discovery response message and resolve the IP address information that obtains described wireless controller from described WAP (wireless access point), and according to the IP address information of described wireless controller, described WAP (wireless access point) and wireless controller are bound, and send connection request message to described wireless controller;
Whether judge module, for receiving described connection request message from described wireless controller, judges sequence number and the MAC Address of described WAP (wireless access point), mate with the sequence number prestoring and MAC Address;
Communication connection module, when judging that at described judge module the sequence number of described WAP (wireless access point) and MAC Address are mated with the sequence number prestoring and MAC Address, from the communication tunnel between described wireless controller foundation and WAP (wireless access point).
8. WAP (wireless access point) security certification system according to claim 7, it is characterized in that, also comprise and return to module, described return module in described communication connection module after described wireless controller is set up the communication tunnel between WAP (wireless access point), send connection response message to described WAP (wireless access point) from described wireless controller.
9. WAP (wireless access point) security certification system according to claim 7, it is characterized in that, also comprise alarm module, described alarm module when judging that at described judge module the sequence number of described WAP (wireless access point) and MAC Address are not mated with the sequence number prestoring and MAC Address, is exported default warning message from described wireless controller.
10. WAP (wireless access point) security certification system according to claim 7, it is characterized in that, also comprise memory module, described memory module is for receiving described discovery request message and resolve sequence number and the MAC Address of obtaining described WAP (wireless access point) from described wireless controller in described request packet parsing module, and send discovery response message to described WAP (wireless access point), from described wireless controller, described discovery request message is stored.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410392596.4A CN104125568B (en) | 2014-08-11 | 2014-08-11 | Wireless access point safety certifying method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410392596.4A CN104125568B (en) | 2014-08-11 | 2014-08-11 | Wireless access point safety certifying method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104125568A true CN104125568A (en) | 2014-10-29 |
| CN104125568B CN104125568B (en) | 2018-09-07 |
Family
ID=51770802
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410392596.4A Active CN104125568B (en) | 2014-08-11 | 2014-08-11 | Wireless access point safety certifying method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104125568B (en) |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104954370A (en) * | 2015-06-09 | 2015-09-30 | 福建新大陆通信科技股份有限公司 | Intelligent household client login safety authentication method |
| CN105959251A (en) * | 2015-11-06 | 2016-09-21 | 杭州迪普科技有限公司 | Method and device for preventing NAT from crossing authentication |
| CN106060963A (en) * | 2016-06-28 | 2016-10-26 | 杭州华三通信技术有限公司 | Message processing method and device |
| WO2017008556A1 (en) * | 2015-07-13 | 2017-01-19 | 中兴通讯股份有限公司 | Authentication method and device for wireless access point and management platform |
| CN106604354A (en) * | 2016-11-29 | 2017-04-26 | 上海斐讯数据通信技术有限公司 | Wireless connection method and system and wireless controller discovery method and system |
| CN108833407A (en) * | 2018-06-14 | 2018-11-16 | 四川斐讯信息技术有限公司 | A kind of full room routing automatic network-building method and system |
| CN109803264A (en) * | 2018-12-24 | 2019-05-24 | 北京奇安信科技有限公司 | The method and apparatus for identifying wireless invasive |
| CN110022538A (en) * | 2019-05-28 | 2019-07-16 | 新华三技术有限公司 | A kind of method and device identifying discharge pattern |
| CN111314917A (en) * | 2020-02-22 | 2020-06-19 | 深圳市天和通信有限公司 | Method for controlling wireless terminal access and wireless access point |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101296240A (en) * | 2008-06-20 | 2008-10-29 | ***通信集团北京有限公司 | Authentication method and system for access to wireless network |
| CN101594693A (en) * | 2009-07-10 | 2009-12-02 | 北京傲天动联技术有限公司 | The cut-in method of access point and access controller |
| CN101801033A (en) * | 2010-01-29 | 2010-08-11 | 杭州华三通信技术有限公司 | AC selection method and equipment |
| CN101820628A (en) * | 2010-03-10 | 2010-09-01 | 北京傲天动联技术有限公司 | Authentication method of wireless access points |
| EP2432262A1 (en) * | 2009-05-14 | 2012-03-21 | China Iwncomm Co., Ltd | Method and system for switching station in centralized wlan when wpi is performed by access controller |
-
2014
- 2014-08-11 CN CN201410392596.4A patent/CN104125568B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101296240A (en) * | 2008-06-20 | 2008-10-29 | ***通信集团北京有限公司 | Authentication method and system for access to wireless network |
| EP2432262A1 (en) * | 2009-05-14 | 2012-03-21 | China Iwncomm Co., Ltd | Method and system for switching station in centralized wlan when wpi is performed by access controller |
| CN101594693A (en) * | 2009-07-10 | 2009-12-02 | 北京傲天动联技术有限公司 | The cut-in method of access point and access controller |
| CN101801033A (en) * | 2010-01-29 | 2010-08-11 | 杭州华三通信技术有限公司 | AC selection method and equipment |
| CN101820628A (en) * | 2010-03-10 | 2010-09-01 | 北京傲天动联技术有限公司 | Authentication method of wireless access points |
Cited By (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104954370A (en) * | 2015-06-09 | 2015-09-30 | 福建新大陆通信科技股份有限公司 | Intelligent household client login safety authentication method |
| CN104954370B (en) * | 2015-06-09 | 2018-04-17 | 福建新大陆通信科技股份有限公司 | The safety certifying method that a kind of smart home client is logined |
| WO2017008556A1 (en) * | 2015-07-13 | 2017-01-19 | 中兴通讯股份有限公司 | Authentication method and device for wireless access point and management platform |
| CN105959251B (en) * | 2015-11-06 | 2019-12-06 | 杭州迪普科技股份有限公司 | method and device for preventing NAT from traversing authentication |
| CN105959251A (en) * | 2015-11-06 | 2016-09-21 | 杭州迪普科技有限公司 | Method and device for preventing NAT from crossing authentication |
| CN106060963A (en) * | 2016-06-28 | 2016-10-26 | 杭州华三通信技术有限公司 | Message processing method and device |
| CN106060963B (en) * | 2016-06-28 | 2020-03-06 | 新华三技术有限公司 | Message processing method and device |
| CN106604354A (en) * | 2016-11-29 | 2017-04-26 | 上海斐讯数据通信技术有限公司 | Wireless connection method and system and wireless controller discovery method and system |
| CN108833407A (en) * | 2018-06-14 | 2018-11-16 | 四川斐讯信息技术有限公司 | A kind of full room routing automatic network-building method and system |
| CN109803264A (en) * | 2018-12-24 | 2019-05-24 | 北京奇安信科技有限公司 | The method and apparatus for identifying wireless invasive |
| CN110022538A (en) * | 2019-05-28 | 2019-07-16 | 新华三技术有限公司 | A kind of method and device identifying discharge pattern |
| CN110022538B (en) * | 2019-05-28 | 2020-12-25 | 新华三技术有限公司 | Method and device for identifying traffic type |
| CN111314917A (en) * | 2020-02-22 | 2020-06-19 | 深圳市天和通信有限公司 | Method for controlling wireless terminal access and wireless access point |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104125568B (en) | 2018-09-07 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104125568A (en) | Wireless access point safe authentication method and system | |
| US11979274B2 (en) | Network management method and apparatus | |
| US11889453B2 (en) | Method and apparatus for registering wireless device in wireless communication system | |
| US8582471B2 (en) | Wireless ad-hoc network configuration method and apparatus | |
| US9031050B2 (en) | Using a mobile device to enable another device to connect to a wireless network | |
| US8528051B2 (en) | Mobile terminal, server, and method for providing content information | |
| US20060161778A1 (en) | Distinguishing between devices of different types in a wireless local area network (WLAN) | |
| US11871333B2 (en) | Wireless network service type | |
| US20100211785A1 (en) | System and method for automatic wireless connection between a portable terminal and a digital device | |
| KR101341256B1 (en) | Apparatus and method for strengthening security connection of network | |
| CN104967595A (en) | Method and apparatus for registering devices on Internet of things platform | |
| KR20090026132A (en) | Mechanism to convey discovery information in a wireless network | |
| US20110055409A1 (en) | Method For Network Connection | |
| US20140380443A1 (en) | Network connection in a wireless communication device | |
| CN104427501A (en) | Network access method, device and system | |
| KR20160045772A (en) | Method for establishing wireless local area network by mobile terminal, and mobile terminal | |
| WO2012000271A1 (en) | Method for terminal access and wireless communication network | |
| CN104683994A (en) | Wireless network configuration method and wireless network devices | |
| CN108093390B (en) | Intelligent device discovery method based on characteristic information | |
| KR20160130457A (en) | Determination method and corresponding terminal, computer program product and storage medium | |
| US10200849B1 (en) | Systems and methods for auto-pair via a plurality of protocols | |
| US9756608B1 (en) | Systems and methods for providing wireless unconnected communication between devices | |
| US9326301B2 (en) | Group provisioning of wireless stations of a wireless local area network (WLAN) | |
| KR102390887B1 (en) | Method and apparatus for registering wireless device in wireless communication system | |
| US20120198083A1 (en) | Client device and method for finding and binding to a home connection |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| CB02 | Change of applicant information |
Address after: 412200, Liling City, Hunan Province ceramic science and Technology Industrial Park B District Applicant after: Hunan Hengmao tech Limited by Share Ltd Address before: 412200 Liling City, Hunan Province Economic Development Zone, Zhuzhou Applicant before: Liling Hengmao Electronics Technology Co., Ltd. |
|
| COR | Change of bibliographic data | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20210331 Address after: 410000 Room 201, 1 Tongxin Road, Wangcheng economic and Technological Development Zone, Changsha City, Hunan Province Patentee after: Hunan Hengmao Information Technology Co.,Ltd. Address before: 412200 B District, Liling Ceramic Technology Industrial Park, Zhuzhou, Hunan Patentee before: HUNAN FULLRIVER HIGH TECHNOLOGY Co.,Ltd. |