CN101783790B - Equipment for authenticating terminal equipment, terminal authentication system and method - Google Patents
Equipment for authenticating terminal equipment, terminal authentication system and method Download PDFInfo
- Publication number
- CN101783790B CN101783790B CN200910105121A CN200910105121A CN101783790B CN 101783790 B CN101783790 B CN 101783790B CN 200910105121 A CN200910105121 A CN 200910105121A CN 200910105121 A CN200910105121 A CN 200910105121A CN 101783790 B CN101783790 B CN 101783790B
- Authority
- CN
- China
- Prior art keywords
- authentication
- terminal equipment
- module
- bios unit
- main
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Information Transfer Between Computers (AREA)
- Stored Programmes (AREA)
Abstract
The invention discloses equipment for authenticating terminal equipment. The terminal equipment comprises a main BIOS (Basic Input/Output System) unit and an expanded BIOS unit, wherein the main BIOS unit has a system guide and control right when the authentication equipment is started; the expanded BIOS unit is connected with the main BIOS unit and the terminal equipment and used for obtaining the guide and control right from the main BIOS unit and interacting with the terminal equipment under a condition of having the guide and control right for executing the authentication on the terminal equipment. The invention also discloses corresponding terminal authentication system and method. The invention can guarantee that the terminal equipment is operated in a safe and credible environment.
Description
Technical field
The present invention relates to the terminal authentication technology, relate in particular to a kind of authenticating device, terminal authentication system and method that terminal equipment is carried out authentication.
Background technology
In the prior art, under the believable physical environment of safety, move, need carry out authentication to terminal equipment usually in order to ensure various terminal equipments.But in the existing authentication techniques and system that provide, great majority are to realize authentication at application, and its fail safe is not high relatively; In addition, because authenticating device and terminal equipment are same equipment mostly, thereby, even authentication can realize that its possibility that is broken is also very big at system bottom or hardware view.
Summary of the invention
Technical problem to be solved by this invention is: a kind of authenticating device that terminal equipment is carried out authentication is provided, and the authentication reliability of this equipment is high, the authentication mode extensibility is strong.
The further technical problem to be solved of the present invention is: a kind of terminal authentication system is provided, and the authentication reliability of this system is high, the authentication mode extensibility is strong.
The further technical problem to be solved of the present invention is: a kind of terminal authentication method is provided, and the authentication reliability of this method is high, the authentication mode extensibility is strong.
For solving the problems of the technologies described above, the present invention adopts following technical scheme:
A kind of authenticating device that is used for terminal equipment is carried out authentication includes:
When said authenticating device starts, have the main BIOS unit of system's guiding control; And
Expanded BIOS unit links to each other with said terminal equipment with said main BIOS unit, is used for obtaining to guide control from said main BIOS unit, and mutual with terminal equipment under the state that has said guiding control, said terminal equipment is carried out authentication,
Said expanded BIOS unit includes:
Main control module links to each other with said main BIOS unit, is used to obtain the guiding control from said main BIOS unit; And to verification process and result show and control judge whether authentication is passed through, if; Then return control to said main BIOS unit; Otherwise, continue to hold control, and the prompting user makes a choice;
Configuration module links to each other with terminal equipment with said main control module, is used for sending configuring request to said terminal equipment, and carries out the certification mode configuration according to the configuration echo message of terminal equipment, and configuration result information is returned to said main control module;
Authentication module; Link to each other with terminal equipment with said main control module, be used for certification mode, send authentication starting message to said terminal equipment according to configuration; The authentication result message that receiving terminal apparatus returns, and said verification process and object information returned to said main control module.
Correspondingly, the invention also discloses a kind of terminal authentication system, include authenticating device and terminal equipment, wherein, said authenticating device includes:
When said authenticating device starts, have the main BIOS unit of system's guiding control; And
Expanded BIOS unit links to each other with said terminal equipment with said main BIOS unit, is used for obtaining to guide control from said main BIOS unit, and mutual with terminal equipment under the state that has said guiding control, said terminal equipment is carried out authentication,
Said expanded BIOS unit includes:
Main control module links to each other with said main BIOS unit, is used to obtain the guiding control from said main BIOS unit, and verification process and result are shown and control;
Configuration module links to each other with terminal equipment with said main control module, is used for sending configuring request to said terminal equipment, and carries out the certification mode configuration according to the configuration echo message of terminal equipment, and layoutprocedure and object information are returned to said main control module;
Authentication module; Link to each other with terminal equipment with said main control module, be used for certification mode, send authentication starting message to said terminal equipment according to configuration; The authentication result message that receiving terminal apparatus returns, and said verification process and object information returned to said main control module.
Correspondingly, the invention also discloses a kind of terminal authentication method, be used to have the authenticating device of main BIOS unit and expanded BIOS unit, this method may further comprise the steps:
Guiding power transfer step, when authenticating device started, expanded BIOS unit obtained the guiding control of system from main BIOS unit;
Authenticating step, expanded BIOS unit are under the state that has said guiding control, and be mutual with terminal equipment to be certified, and said terminal equipment is carried out authentication,
Said authenticating step specifically includes:
Main control module is initiated authentication to authentication proxy's module and is begun message;
Authentication proxy's module reads the certification mode of configuration from configuration module after receiving that this authentication begins message, and sends authentication to the authentication Executive Module and carry out message;
The authentication Executive Module sends the authentication starting message that carries authentication information to terminal equipment after receiving that message is carried out in authentication, and the authentication result message returned of receiving terminal apparatus.
The invention has the beneficial effects as follows:
Embodiments of the invention separate with authenticating device through making terminal equipment fully; And utilize the expanded BIOS unit of first floor system software that terminal equipment is carried out authentication; A kind of new reliable certificate scheme is provided, thereby has improved authentication security, the authentication mode extensibility of Verification System greatly.
Below in conjunction with accompanying drawing the present invention is made further detailed description.
Description of drawings
Fig. 1 is the composition structure chart of a terminal authentication embodiment of system provided by the invention.
Fig. 2 is the method flow diagram of an embodiment of terminal authentication method provided by the invention.
Embodiment
Fig. 1 is the composition structure chart of an embodiment of terminal authentication provided by the invention system; As shown in the figure, present embodiment mainly is made up of terminal equipment and authenticating device, and wherein, said authenticating device is a core of the present invention, describes the authenticating device of present embodiment below in detail, and it mainly includes:
When said authenticating device starts, have the main BIOS unit 1 of system's guiding control; And
Expanded BIOS unit 2 links to each other with said terminal equipment with said main BIOS unit, is used for obtaining to guide control from said main BIOS unit, and mutual with terminal equipment under the state that has said guiding control, said terminal equipment is carried out authentication.
Further, said expanded BIOS unit 2 includes:
Upgrading module 24 links to each other with said main control module 21, terminal equipment and the extraneous webserver, is used for said expanded BIOS unit and terminal equipment are carried out firmware upgrade, with the extensibility of assurance present embodiment.
During concrete the realization, said authentication module 23 also can further comprise:
Authentication proxy's module 231 links to each other with said main control module 21, is used for after the certification mode of said main control module 21 acquisition configurations, starts verification process through sending the authentication execution command, and returns the authentication result that it receives to said main control module 21;
Authentication Executive Module 232; Link to each other with terminal equipment with said authentication proxy module 231; After being used to receive authentication execution command from authentication proxy's module 231; The authentication starting message that carries authentication information is sent to terminal equipment, and the authentication result message that terminal equipment returns is sent to said authentication proxy module 231.
Describe an embodiment of terminal authentication method provided by the invention below in detail with reference to figure 2; As shown in the figure, present embodiment is carried out a terminal authentication and is mainly comprised following flow process:
S1, in guiding power transfer step, when authenticating device starts, the guiding control of expanded BIOS unit acquisition system from main BIOS unit;
S2, in authenticating step, expanded BIOS unit is under the state that has said guiding control, and is mutual with terminal equipment to be certified, and said terminal equipment is carried out authentication.
During concrete the realization, said authenticating step S2 specifically includes:
Main control module in S21, the expanded BIOS unit is waited for the time of a setting earlier, if the user does not have input operation in this time, then initiates authentication to authentication proxy's module and begins message;
After authentication proxy's module in S22, the expanded BIOS unit receives that this authentication begins message, read the certification mode of configuration, and send authentication to the authentication Executive Module and carry out message from configuration module;
After authentication Executive Module in S23, the expanded BIOS unit receives that message is carried out in authentication; Send the authentication starting message that carries authentication information to terminal equipment; And the authentication result message returned of receiving terminal apparatus; After receiving said authentication result message, the authentication of terminal equipment is accomplished, sent the authentication end to main control module.
After S24, main control module are received the authentication end, judge that according to said authentication result message whether terminal equipment is through checking, if then will guide control to give back main BIOS unit; Otherwise, continue to hold the guiding control, and the prompting user makes a choice.
In addition; In order to guarantee the extensibility of system; Present embodiment also can select to carry out upgrade step S3 at the expanded BIOS runnable interface according to the user; In step S3, the upgrading module in the expanded BIOS unit is communicated by letter with the extraneous webserver, and said expanded BIOS unit and terminal equipment are carried out firmware upgrade.
The invention provides new reliable certificate scheme, guaranteed that terminal equipment must move under safe and reliable environment.
The above is a preferred implementation of the present invention; Should be pointed out that for those skilled in the art, under the prerequisite that does not break away from the principle of the invention; Can also make some improvement and retouching, these improvement and retouching also are regarded as protection scope of the present invention.
Claims (7)
1. an authenticating device that is used for terminal equipment is carried out authentication is characterized in that, this authenticating device includes:
When said authenticating device starts, have the main BIOS unit of system's guiding control; And
Expanded BIOS unit links to each other with said terminal equipment with said main BIOS unit, is used for obtaining to guide control from said main BIOS unit, and mutual with terminal equipment under the state that has said guiding control, said terminal equipment is carried out authentication,
Said expanded BIOS unit includes:
Main control module links to each other with said main BIOS unit, is used to obtain the guiding control from said main BIOS unit; And to verification process and result show and control judge whether authentication is passed through, if; Then return control to said main BIOS unit; Otherwise, continue to hold control, and the prompting user makes a choice;
Configuration module links to each other with terminal equipment with said main control module, is used for sending configuring request to said terminal equipment, and carries out the certification mode configuration according to the configuration echo message of terminal equipment, and configuration result information is returned to said main control module;
Authentication module; Link to each other with terminal equipment with said main control module, be used for certification mode, send authentication starting message to said terminal equipment according to configuration; The authentication result message that receiving terminal apparatus returns, and said verification process and object information returned to said main control module.
2. the authenticating device that is used for terminal equipment is carried out authentication as claimed in claim 1 is characterized in that, said authentication module further includes:
Authentication proxy's module links to each other with said main control module, is used for after the certification mode of said main control module acquisition configuration, starts verification process through sending the authentication execution command, and returns the authentication result that it receives to said main control module;
The authentication Executive Module; Link to each other with terminal equipment with said authentication proxy module; After being used to receive authentication execution command from authentication proxy's module; The authentication starting message that carries authentication information is sent to terminal equipment, and the authentication result message that terminal equipment returns is sent to said authentication proxy module.
3. according to claim 1 or claim 2 the authenticating device that is used for terminal equipment is carried out authentication is characterized in that said expanded BIOS unit also includes:
The upgrading module links to each other with said main control module, terminal equipment and the extraneous webserver, is used for said expanded BIOS unit and terminal equipment are carried out firmware upgrade.
4. a terminal authentication system includes authenticating device and terminal equipment, it is characterized in that, said authenticating device includes:
When said authenticating device starts, have the main BIOS unit of system's guiding control; And
Expanded BIOS unit links to each other with said terminal equipment with said main BIOS unit, is used for obtaining to guide control from said main BIOS unit, and mutual with terminal equipment under the state that has said guiding control, said terminal equipment is carried out authentication,
Said expanded BIOS unit includes:
Main control module links to each other with said main BIOS unit, is used to obtain the guiding control from said main BIOS unit, and verification process and result are shown and control;
Configuration module links to each other with terminal equipment with said main control module, is used for sending configuring request to said terminal equipment, and carries out the certification mode configuration according to the configuration echo message of terminal equipment, and layoutprocedure and object information are returned to said main control module;
Authentication module; Link to each other with terminal equipment with said main control module, be used for certification mode, send authentication starting message to said terminal equipment according to configuration; The authentication result message that receiving terminal apparatus returns, and said verification process and object information returned to said main control module.
5. terminal authentication method is used to have the authenticating device of main BIOS unit and expanded BIOS unit, it is characterized in that, may further comprise the steps:
Guiding power obtains step, and when authenticating device started, expanded BIOS unit obtained the guiding control of system from main BIOS unit;
Authenticating step, expanded BIOS unit are under the state that has said guiding control, and be mutual with terminal equipment to be certified, and said terminal equipment is carried out authentication,
Said authenticating step specifically includes:
Main control module is initiated authentication to authentication proxy's module and is begun message;
Authentication proxy's module reads the certification mode of configuration from configuration module after receiving that this authentication begins message, and sends authentication to the authentication Executive Module and carry out message;
The authentication Executive Module sends the authentication starting message that carries authentication information to terminal equipment after receiving that message is carried out in authentication, and the authentication result message returned of receiving terminal apparatus.
6. terminal authentication method as claimed in claim 5 is characterized in that, also includes after the said authenticating step:
Main control module judges that according to said authentication result message whether terminal equipment is through checking, if then will guide control to give back main BIOS unit; Otherwise, continue to hold the guiding control, and the prompting user makes a choice.
7. like each described terminal authentication method among the claim 5-6, it is characterized in that this method also includes:
Upgrade step is communicated by letter with the webserver, and said expanded BIOS unit and terminal equipment are carried out firmware upgrade.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910105121A CN101783790B (en) | 2009-01-16 | 2009-01-16 | Equipment for authenticating terminal equipment, terminal authentication system and method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910105121A CN101783790B (en) | 2009-01-16 | 2009-01-16 | Equipment for authenticating terminal equipment, terminal authentication system and method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101783790A CN101783790A (en) | 2010-07-21 |
| CN101783790B true CN101783790B (en) | 2012-10-10 |
Family
ID=42523609
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200910105121A Expired - Fee Related CN101783790B (en) | 2009-01-16 | 2009-01-16 | Equipment for authenticating terminal equipment, terminal authentication system and method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101783790B (en) |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1514970A (en) * | 2001-06-29 | 2004-07-21 | 英特尔公司 | Automatic replacement of corrupted BIOS image |
| CN1527208A (en) * | 2003-09-25 | 2004-09-08 | 联想(北京)有限公司 | Method and device for realizing computer safety and enciphering based on identity confirmation |
| CN101060406A (en) * | 2006-04-20 | 2007-10-24 | 华为技术有限公司 | An end-to-end communication authentication method and device |
-
2009
- 2009-01-16 CN CN200910105121A patent/CN101783790B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1514970A (en) * | 2001-06-29 | 2004-07-21 | 英特尔公司 | Automatic replacement of corrupted BIOS image |
| CN1527208A (en) * | 2003-09-25 | 2004-09-08 | 联想(北京)有限公司 | Method and device for realizing computer safety and enciphering based on identity confirmation |
| CN101060406A (en) * | 2006-04-20 | 2007-10-24 | 华为技术有限公司 | An end-to-end communication authentication method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101783790A (en) | 2010-07-21 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104915237A (en) | Upgrading method and upgrading control method of Bluetooth device firmware program, and equipment | |
| CN106227572A (en) | A kind of frequency converter control system programme upgrade method | |
| CN103365688A (en) | Method for automatic installation and synchronization of software between Android intelligent devices | |
| CN102917095A (en) | Method and device for testing terminal based on Android | |
| CN101420328A (en) | System, interface card and method for remote upgrading field programmable gate array | |
| WO2017072664A1 (en) | System and method for establishing a trusted diagnosis/debugging agent over a closed commodity device | |
| KR20150091362A (en) | Apparatus and methods for utilizing a wireless charger in a wireless docking environment | |
| CN107040590A (en) | A kind of remote upgrade method of New-type charge stake | |
| CN107592250B (en) | Multi-rate self-adaptive test equipment based on aviation FC bus | |
| CN103369037A (en) | Method for automatically synchronizing data among Android intelligent equipment | |
| WO2012016409A1 (en) | Terminal upgrade method, terminal upgrade downgrade method and upgrade management center | |
| CN106028264A (en) | Bluetooth pairing method and system for electronic equipment | |
| CN102621432A (en) | Method for automatically testing single board of protective relay device | |
| JP4750905B2 (en) | Communication system, test apparatus, and test method | |
| CN103974386A (en) | Set top box and method for realizing wireless AP (access point) sharing thereof | |
| CN104219003A (en) | Communication device, test system and test method thereof | |
| CN105975303A (en) | Upgrade control method and device | |
| WO2012059066A1 (en) | Method and system for locating fault in serial port | |
| CN110459260B (en) | Automatic test switching device, method and system | |
| CN101783790B (en) | Equipment for authenticating terminal equipment, terminal authentication system and method | |
| EP2195969A2 (en) | Software method and system for controlling and observing computer networking devices | |
| WO2012079544A1 (en) | Method and device for managing multi-mode base station | |
| CN106612215A (en) | Integrated remote detection device and method based on Ethernet | |
| CN103491557B (en) | The processing method and processing device of upgrading base station data | |
| CN105528324A (en) | System and method for artificial intervention type 1553B bus seamless switching |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20121010 Termination date: 20200116 |