CN105163313A - WiFi (Wireless Fidelity) connection authentication method based on hidden SSID (Service Set Identifier) - Google Patents
WiFi (Wireless Fidelity) connection authentication method based on hidden SSID (Service Set Identifier) Download PDFInfo
- Publication number
- CN105163313A CN105163313A CN201510507324.9A CN201510507324A CN105163313A CN 105163313 A CN105163313 A CN 105163313A CN 201510507324 A CN201510507324 A CN 201510507324A CN 105163313 A CN105163313 A CN 105163313A
- Authority
- CN
- China
- Prior art keywords
- wireless
- wireless client
- authentication
- access point
- wap
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention relates to a WiFi (Wireless Fidelity) connection authentication method based on a hidden SSID (Service Set Identifier). The WiFi authentication method comprises the following steps: (1) setting a wireless access point; (2) adding a predefined SSID name into a preferred wireless network list of a wireless client side; and (3) carrying out docking and authentication by wireless equipment, allowing the wireless client side to be accessed into the Internet if the wireless client side passes the authentication, and otherwise, refusing a current request of the wireless client side on being accessed into the Internet. The method disclosed by the invention has the following beneficial effects that: (1) the way of the hidden SSID is used, the wireless client side carries out active discovery to realize automatic connection, an authentication flow is finished through cloud service, and the security of the wireless access point and the wireless client side can be protected; and (2) when the wireless client side of a user enters a specific wireless signal coverage range, the wireless client side can automatically discover a wireless hotspot through the technology, and the whole flow of connection, authentication and access processes does not need the manual operation of the user.
Description
Technical field
The invention belongs to field of information security technology, be specifically related to a kind of WiFi based on hiding SSID and connect method for authenticating.
Background technology
SSID is the abbreviation of ServiceSetIdentifier, is meant to: service set.A WLAN (wireless local area network) can be divided into several sub-network needing different identity to verify by SSID technology, each sub-network needs independently authentication, only have and just can enter corresponding sub-network by the user of authentication, prevent uncommitted user from entering present networks.
Tradition WiFi connected mode, need the wireless signal of user to present position to be identified by SSID name, more manually connect and carry out authorizing procedure, flow process is loaded down with trivial details.But carried out the mode connected by SSID name, SSID name will be exposed to wireless clients all in wireless coverage. easily become by the target of network attack, threaten user's Internet Security.
Summary of the invention
Goal of the invention: the present invention is directed to above-mentioned prior art Problems existing and make improvement, namely the invention discloses a kind of WiFi based on hiding SSID and connects method for authenticating.
Technical scheme: a kind of WiFi based on hiding SSID connects method for authenticating, comprises the following steps:
(1) WAP (wireless access point) is set
(11) the pre-configured internet access of WAP (wireless access point) is also connected with authentication Cloud Server by the encryption tunnel agreement connected based on TCP;
(12) WAP (wireless access point) arranges predefined SSID name, and the SSID broadcast mode of wireless network is set to SSID stealth mode, namely provides any wireless network services in the mode of hiding SSID;
(2) SSID name pre-defined is joined the first-selected wireless network list of wireless client;
(3) wireless device docking
(31) when the wireless client in step (2) enters the coverage of the WAP (wireless access point) in step (1), wireless client can be dynamically connected this wireless network certainly;
(32) after wireless client connecting wireless network, its network communication can be forbidden by WAP (wireless access point), and the wireless client of step (31) can WAP (wireless access point) opening authorization interface in automatic request step (31);
(33) after WAP (wireless access point) receives authentication request, request is returned to this wireless client and is redirected, require that wireless client submits authentication information needed to;
(34) wireless client sends the authentication request comprising authentication information, after WAP (wireless access point) receives the authentication request comprising authentication information, submits authentication application, upload the authentication information received simultaneously to the authentication Cloud Server be connected with WAP (wireless access point);
(35) authentication Cloud Server is differentiated wireless client authentication information, judges the legitimacy of wireless client, and authenticating result is fed back to WAP (wireless access point) according to the network address of wireless client, software version and secret key;
(36) if wireless client is by authentication, WAP (wireless access point) clearance wireless client accessing Internet; Otherwise this requires the request of accessing Internet then to refuse wireless client.
A kind of preferred version of method for authenticating is connected: the wireless client in step (2) is mobile phone or electronic computer as the WiFi based on hiding SSID a kind of in the present invention.
Beneficial effect: a kind of WiFi based on hiding SSID disclosed by the invention connects method for authenticating and has following beneficial effect:
(1), utilize the mode hiding SSID, initiatively find to realize from being dynamically connected by wireless client, authorizing procedure is completed by cloud service, protection WAP (wireless access point) and wireless client safety;
(2), when the wireless client of user enters special wireless coverage, realize wireless client automatically find hotspot by this technology, connect, certification, access procedure, whole flow process need not user's manual operation.
Accompanying drawing explanation
Fig. 1 is the flow chart that a kind of WiFi based on hiding SSID disclosed by the invention connects method for authenticating.
Embodiment:
Below the specific embodiment of the present invention is described in detail.
Specific embodiment 1
As shown in Figure 1, a kind of WiFi based on hiding SSID connects method for authenticating, comprises the following steps:
(1) WAP (wireless access point) is set
(11) the pre-configured internet access of WAP (wireless access point) is also connected with authentication Cloud Server by the encryption tunnel agreement connected based on TCP;
(12) WAP (wireless access point) arranges predefined SSID name, and the SSID broadcast mode of wireless network is set to SSID stealth mode, namely provides any wireless network services in the mode of hiding SSID;
(2) SSID name pre-defined is joined the first-selected wireless network list of wireless client;
(3) wireless device docking
(31) when the wireless client in step (2) enters the coverage of the WAP (wireless access point) in step (1), wireless client can be dynamically connected this wireless network certainly;
(32) after wireless client connecting wireless network, its network communication can be forbidden by WAP (wireless access point), and the wireless client of step (31) can WAP (wireless access point) opening authorization interface in automatic request step (31);
(33) after WAP (wireless access point) receives authentication request, request is returned to this wireless client and is redirected, require that wireless client submits authentication information needed to;
(34) wireless client sends the authentication request comprising authentication information, after WAP (wireless access point) receives the authentication request comprising authentication information, submits authentication application, upload the authentication information received simultaneously to the authentication Cloud Server be connected with WAP (wireless access point);
(35) authentication Cloud Server is differentiated wireless client authentication information, judges the legitimacy of wireless client, and authenticating result is fed back to WAP (wireless access point) according to the network address of wireless client, software version and secret key;
(36) if wireless client is by authentication, WAP (wireless access point) clearance wireless client accessing Internet; Otherwise this requires the request of accessing Internet then to refuse wireless client.
Further, the wireless client in step (2) is mobile phone.
Specific embodiment 2
Roughly the same with specific embodiment 1, difference is only the wireless client in step (2) is electronic computer.
Above embodiments of the present invention are elaborated.But the present invention is not limited to above-mentioned execution mode, in the ken that art those of ordinary skill possesses, can also make a variety of changes under the prerequisite not departing from present inventive concept.
Claims (2)
1. the WiFi based on hiding SSID connects a method for authenticating, it is characterized in that, comprises the following steps:
(1) WAP (wireless access point) is set
(11) the pre-configured internet access of WAP (wireless access point) is also connected with authentication Cloud Server by the encryption tunnel agreement connected based on TCP;
(12) WAP (wireless access point) arranges predefined SSID name, and the SSID broadcast mode of wireless network is set to SSID stealth mode;
(2) SSID name pre-defined is joined the first-selected wireless network list of wireless client;
(3) wireless device docking
(31) when the wireless client in step (2) enters the coverage of the WAP (wireless access point) in step (1), wireless client can be dynamically connected this wireless network certainly;
(32) after wireless client connecting wireless network, its network communication can be forbidden by WAP (wireless access point), and the wireless client of step (31) can WAP (wireless access point) opening authorization interface in automatic request step (31);
(33) after WAP (wireless access point) receives authentication request, request is returned to this wireless client and is redirected, require that wireless client submits authentication information needed to;
(34) wireless client sends the authentication request comprising authentication information, after WAP (wireless access point) receives the authentication request comprising authentication information, submits authentication application, upload the authentication information received simultaneously to the authentication Cloud Server be connected with WAP (wireless access point);
(35) authentication Cloud Server is differentiated wireless client authentication information, judges the legitimacy of wireless client, and authenticating result is fed back to WAP (wireless access point) according to the network address of wireless client, software version and secret key;
(36) if wireless client is by authentication, WAP (wireless access point) clearance wireless client accessing Internet; Otherwise this requires the request of accessing Internet then to refuse wireless client.
2. a kind of WiFi based on hiding SSID according to claim 1 connects method for authenticating, and it is characterized in that, the wireless client in step (2) is mobile phone or electronic computer.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510507324.9A CN105163313A (en) | 2015-08-18 | 2015-08-18 | WiFi (Wireless Fidelity) connection authentication method based on hidden SSID (Service Set Identifier) |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510507324.9A CN105163313A (en) | 2015-08-18 | 2015-08-18 | WiFi (Wireless Fidelity) connection authentication method based on hidden SSID (Service Set Identifier) |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105163313A true CN105163313A (en) | 2015-12-16 |
Family
ID=54804047
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510507324.9A Pending CN105163313A (en) | 2015-08-18 | 2015-08-18 | WiFi (Wireless Fidelity) connection authentication method based on hidden SSID (Service Set Identifier) |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105163313A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106411939A (en) * | 2016-11-21 | 2017-02-15 | 国网四川省电力公司信息通信公司 | Enterprise information intranet WI-FI access security reinforcing authentication method |
| CN106550482A (en) * | 2016-12-09 | 2017-03-29 | 北京小米移动软件有限公司 | Communication connection method for building up and device, electronic equipment |
| CN107517491A (en) * | 2016-06-16 | 2017-12-26 | 国基电子(上海)有限公司 | System and method is established in one kind connection |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101867927A (en) * | 2010-01-28 | 2010-10-20 | 宇龙计算机通信科技(深圳)有限公司 | WAPI-based authentication method and system for mobile terminal and mobile terminal |
| CN102711215A (en) * | 2012-05-23 | 2012-10-03 | 海信集团有限公司 | Method and system for automatically connecting wireless network and smart television |
| CN102938886A (en) * | 2012-10-12 | 2013-02-20 | 深圳市共进电子股份有限公司 | Method for preventing wireless network from being detected |
| US20140128102A1 (en) * | 2012-11-05 | 2014-05-08 | Qualcomm Incorporated | Systems and methods for utilizing hidden access points |
| CN104302015A (en) * | 2014-09-15 | 2015-01-21 | 浙江生辉照明有限公司 | Adaptive WI-FI network connection method and system with hidden SSID |
| CN104320861A (en) * | 2014-11-04 | 2015-01-28 | 腾讯科技(深圳)有限公司 | Wireless connection building method and device, terminal device, application server and system |
-
2015
- 2015-08-18 CN CN201510507324.9A patent/CN105163313A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101867927A (en) * | 2010-01-28 | 2010-10-20 | 宇龙计算机通信科技(深圳)有限公司 | WAPI-based authentication method and system for mobile terminal and mobile terminal |
| CN102711215A (en) * | 2012-05-23 | 2012-10-03 | 海信集团有限公司 | Method and system for automatically connecting wireless network and smart television |
| CN102938886A (en) * | 2012-10-12 | 2013-02-20 | 深圳市共进电子股份有限公司 | Method for preventing wireless network from being detected |
| US20140128102A1 (en) * | 2012-11-05 | 2014-05-08 | Qualcomm Incorporated | Systems and methods for utilizing hidden access points |
| CN104302015A (en) * | 2014-09-15 | 2015-01-21 | 浙江生辉照明有限公司 | Adaptive WI-FI network connection method and system with hidden SSID |
| CN104320861A (en) * | 2014-11-04 | 2015-01-28 | 腾讯科技(深圳)有限公司 | Wireless connection building method and device, terminal device, application server and system |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107517491A (en) * | 2016-06-16 | 2017-12-26 | 国基电子(上海)有限公司 | System and method is established in one kind connection |
| CN106411939A (en) * | 2016-11-21 | 2017-02-15 | 国网四川省电力公司信息通信公司 | Enterprise information intranet WI-FI access security reinforcing authentication method |
| CN106550482A (en) * | 2016-12-09 | 2017-03-29 | 北京小米移动软件有限公司 | Communication connection method for building up and device, electronic equipment |
| CN106550482B (en) * | 2016-12-09 | 2020-03-17 | 北京小米移动软件有限公司 | Communication connection establishing method and device and electronic equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN112566050B (en) | Cellular service account transfer for an accessory wireless device | |
| CN101150594B (en) | Integrated access method and system for mobile cellular network and WLAN | |
| US11233817B2 (en) | Methods and apparatus for end device discovering another end device | |
| US20080108321A1 (en) | Over-the-air (OTA) device provisioning in broadband wireless networks | |
| CN106656547B (en) | Method and device for updating network configuration of household electrical appliance | |
| CN105119939A (en) | Access method and device, providing method, device and system of wireless network | |
| JP2014511167A (en) | Method and system for providing distributed wireless network services | |
| US20140259124A1 (en) | Secure wireless network connection method | |
| CN104104516A (en) | Portal authentication method and device | |
| US20130239189A1 (en) | Bootstrap Authentication Framework | |
| CN101986598B (en) | Authentication method, server and system | |
| CN112640385B (en) | non-SI device and SI device for use in SI system and corresponding methods | |
| CN111132305B (en) | Method for 5G user terminal to access 5G network, user terminal equipment and medium | |
| US11943624B2 (en) | Electronic subscriber identity module transfer eligibility checking | |
| CN105163313A (en) | WiFi (Wireless Fidelity) connection authentication method based on hidden SSID (Service Set Identifier) | |
| CN102149079B (en) | Method, device and system for obtaining user identity identifier | |
| CN115412911A (en) | Authentication method, communication device and system | |
| JP2020521385A (en) | Improvements in and regarding network communication | |
| CN104285458A (en) | Wireless network access method, system and terminal | |
| Santos et al. | Cross-federation identities for IoT devices in cellular networks | |
| CN104735749B (en) | A kind of method and wireless router, portal platform server accessing network | |
| CN105554757A (en) | Wireless access authentication method based on cloud | |
| CN104092559B (en) | Configure the method and device of wireless network connection parameter information | |
| CN112202799B (en) | Authentication system and method for realizing binding of user and/or terminal and SSID | |
| CN109981420B (en) | Intelligent device network distribution method and intelligent device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20151216 |
|
| RJ01 | Rejection of invention patent application after publication |