[go: up one dir, main page]

CN111556503B - Personal WIFI hotspot management method based on Windows operating system - Google Patents

Personal WIFI hotspot management method based on Windows operating system Download PDF

Info

Publication number
CN111556503B
CN111556503B CN202010239488.9A CN202010239488A CN111556503B CN 111556503 B CN111556503 B CN 111556503B CN 202010239488 A CN202010239488 A CN 202010239488A CN 111556503 B CN111556503 B CN 111556503B
Authority
CN
China
Prior art keywords
terminal computer
request
managed
ssid
list
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202010239488.9A
Other languages
Chinese (zh)
Other versions
CN111556503A (en
Inventor
李凯
孔祥焱
吴艳
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Hongteng Intelligent Technology Co ltd
Original Assignee
360 Digital Security Technology Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 360 Digital Security Technology Group Co Ltd filed Critical 360 Digital Security Technology Group Co Ltd
Priority to CN202010239488.9A priority Critical patent/CN111556503B/en
Publication of CN111556503A publication Critical patent/CN111556503A/en
Application granted granted Critical
Publication of CN111556503B publication Critical patent/CN111556503B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/4401Bootstrapping
    • G06F9/4416Network booting; Remote initial program loading [RIPL]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/12Detection or prevention of fraud
    • H04W12/121Wireless intrusion detection systems [WIDS]; Wireless intrusion prevention systems [WIPS]
    • H04W12/122Counter-measures against attacks; Protection against rogue devices
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/02Access restriction performed under specific conditions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/16Discovering, processing access restriction or access information

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer And Data Communications (AREA)

Abstract

本发明公开了一种基于Windows操作系统的个人WIFI热点管理方法,通过逆向Windows操作系统WIFI模块,分析WIFI热点请求的执行流程,通过驱动层过滤技术实现了对终端WIFI热点的有效管理。包括服务端生成合法网络热点信息列表、服务端设定终端计算机的网络热点信息、终端计算机监管其终端计算机的网络热点信息的变更。由于Windows操作系统没有接口管理WIFI热点,所以终端用户可随意私接WIFI热点,给网络带来安全风险和管理问题,该方法通过服务端远程统一规划终端计算机网络热点列表和终端计算机实时监测的方式,解决了大规模局域网中网络热点无法管理的问题,也解决了管理非法热点工作量大、效率低、不能自动维护的问题,极大地提高了工作效率,减少了维护成本,应用范围广泛。

The present invention discloses a personal WIFI hotspot management method based on Windows operating system. By reversing the WIFI module of Windows operating system, the execution process of WIFI hotspot request is analyzed, and effective management of terminal WIFI hotspot is realized through driver layer filtering technology. It includes generating a list of legal network hotspot information at the server end, setting the network hotspot information of the terminal computer at the server end, and monitoring the change of the network hotspot information of the terminal computer at the terminal computer. Since Windows operating system has no interface to manage WIFI hotspots, terminal users can privately connect to WIFI hotspots at will, which brings security risks and management problems to the network. This method solves the problem that network hotspots in large-scale local area networks cannot be managed by the server end through the remote unified planning of the terminal computer network hotspot list and the real-time monitoring of the terminal computer. It also solves the problem that the management of illegal hotspots is large in workload, low in efficiency, and cannot be automatically maintained, greatly improves work efficiency, reduces maintenance costs, and has a wide range of applications.

Description

一种基于Windows操作系统的个人WIFI热点管理方法A personal WIFI hotspot management method based on Windows operating system

技术领域Technical Field

本发明属于计算机网络安全管理技术领域,特别是涉及一种基于Windows操作系统的个人WIFI热点管理方法。The invention belongs to the technical field of computer network security management, and in particular relates to a personal WIFI hotspot management method based on Windows operating system.

背景技术Background technique

终端计算机随意私接WIFI,会给计算机网络带来安全风险,甚至引起网络堵塞,因此需要对计算机网络内的WIFI热点进行有效管理,来确保计算机网络安全、稳定的运行。而当用户网络规模较大时,确保用户网络内的大量终端计算机的WIFI热点都能得到有效的管理需要投入大量的人力逐一设置工作效率非常低,同时运营维护成本也势必会增加。本发明通过逆向Windows操作系统WIFI模块,分析WIFI热点请求的执行流程,通过驱动层过滤技术实现了对终端WIFI的高可靠性、高安全性管理。综上所述,为确保计算机网络内的WIFI热点都能得到有效的管理,需要一种高效、安全的WIFI热点管理方法。The terminal computer can privately connect to WIFI at will, which will bring security risks to the computer network and even cause network congestion. Therefore, it is necessary to effectively manage the WIFI hotspots in the computer network to ensure the safe and stable operation of the computer network. When the user network is large in scale, ensuring that the WIFI hotspots of a large number of terminal computers in the user network can be effectively managed requires a large amount of manpower to set up one by one, which is very inefficient, and the operation and maintenance costs are bound to increase. The present invention analyzes the execution process of the WIFI hotspot request by reversing the Windows operating system WIFI module, and realizes high reliability and high security management of the terminal WIFI through the driver layer filtering technology. In summary, in order to ensure that the WIFI hotspots in the computer network can be effectively managed, an efficient and secure WIFI hotspot management method is needed.

发明内容Summary of the invention

本发明的主要目的在于提供一种基于Windows操作系统的个人WIFI热点管理方法,该方法从根本上有效管理终端计算机用户私自连接WIFI的行为,并且能够通过服务端远程规划计算机网络内所有终端计算机的网络热点信息。The main purpose of the present invention is to provide a personal WIFI hotspot management method based on Windows operating system, which fundamentally and effectively manages the behavior of terminal computer users privately connecting to WIFI, and can remotely plan the network hotspot information of all terminal computers in the computer network through a server.

为了达到上述目的,本发明说采用的技术方案如下:In order to achieve the above object, the technical solution adopted by the present invention is as follows:

一种基于Windows操作系统的个人WIFI热点管理方法,包含以下步骤:A personal WIFI hotspot management method based on Windows operating system, comprising the following steps:

a.服务端生成合法网络热点信息列表:a. The server generates a list of legal network hotspot information:

服务端将网络内所有WIFI热点信息进行统一规划,并在服务端上生成合法网络热点信息列表;The server will plan all WIFI hotspot information in the network and generate a list of legal network hotspot information on the server;

b.服务端设定终端计算机的网络热点信息:b. The server sets the network hotspot information of the terminal computer:

服务端在服务端上设定需要管理的终端计算机的合法网络热点信息列表;The server sets a list of legal network hotspot information of terminal computers that need to be managed on the server;

服务端依据所述合法网络热点信息列表通知需要管理的终端计算机;The server notifies the terminal computer that needs to be managed according to the list of legal network hotspot information;

所述需要管理的终端计算机利用内核层API挂钩技术,设定其终端计算机的非法WIFI热点无法连接;The terminal computer to be managed uses kernel layer API hooking technology to set the illegal WIFI hotspot of the terminal computer to be unable to connect;

c.终端计算机监管其终端计算机的网络热点信息的变更;c. The terminal computer monitors the changes of the network hotspot information of its terminal computer;

已管理的终端计算机将服务端发送来的合法网络热点信息列表保存到其终端计算机的合法SSID列表中;The managed terminal computer saves the legal network hotspot information list sent by the server to the legal SSID list of its terminal computer;

已管理的终端计算机利用内核层API挂钩技术,通过设备IO控制接口,实时监测其终端计算机的网络热点信息的变更。The managed terminal computers utilize kernel layer API hooking technology to monitor the changes of network hotspot information of the terminal computers in real time through the device IO control interface.

在所述步骤c中,已管理的终端计算机利用内核层API挂钩技术设定挂钩监控程序监控其终端计算机的设备IO控制请求;In the step c, the managed terminal computer uses the kernel layer API hooking technology to set a hook monitoring program to monitor the device IO control request of the terminal computer;

已管理的终端计算机设定挂钩监控程序实时监控其终端计算机的设备IO控制请求,包括以下步骤:The managed terminal computer sets a hook monitoring program to monitor the device IO control request of its terminal computer in real time, including the following steps:

c1.如果已管理的终端计算机监测到其终端计算机有设备IO控制的请求,继续执行步骤c2;如果已管理的终端计算机未监测到其终端计算机有设备IO控制的请求,则执行步骤c5;c1. If the managed terminal computer detects that its terminal computer has a request for device IO control, continue to execute step c2; if the managed terminal computer does not detect that its terminal computer has a request for device IO control, execute step c5;

c2.已管理的终端计算机设定挂钩监控程序获取监控操作所携带的参数信息;c2. The managed terminal computer sets a hook monitoring program to obtain parameter information carried by the monitoring operation;

所述监控操作所携带的参数信息包括设备IO请求码、设备IO请求输入参数、设备IO请求输出参数;The parameter information carried by the monitoring operation includes a device IO request code, a device IO request input parameter, and a device IO request output parameter;

当所述监控操作所携带的参数信息中的设备IO请求码为NDIS_OID查询请求时,输入参数前4个字节为请求标识,输出参数为系统可用SSID数组;When the device IO request code in the parameter information carried by the monitoring operation is an NDIS_OID query request, the first 4 bytes of the input parameter are the request identifier, and the output parameter is an array of available SSIDs in the system;

c3.已管理的终端计算机检查传入监控操作所携带的参数中的IO请求码是否为WIFI热点管理请求;c3. The managed terminal computer checks whether the IO request code in the parameter carried by the incoming monitoring operation is a WIFI hotspot management request;

如果已管理的终端计算机检查传入监控操作所携带的参数中的IO请求码等于NDIS_OID查询请求,并且设备IO请求输入参数前4字节等于系统SSID预定义标识,则将本次请求标识为WIFI热点管理请求,继续执行步骤c4;如果已管理的终端计算机检查传入监控操作所携带的参数中的IO请求码不等于NDIS_OID查询请求,则本次请求为非WIFI热点管理请求,执行步骤c5;If the managed terminal computer checks that the IO request code in the parameters carried by the incoming monitoring operation is equal to the NDIS_OID query request, and the first 4 bytes of the device IO request input parameter are equal to the system SSID predefined identifier, then this request is identified as a WIFI hotspot management request, and step c4 is continued; if the managed terminal computer checks that the IO request code in the parameters carried by the incoming monitoring operation is not equal to the NDIS_OID query request, then this request is not a WIFI hotspot management request, and step c5 is executed;

c4.分析并管理WIFI热点管理请求;c4. Analyze and manage WIFI hotspot management requests;

已管理的终端计算机设定挂钩监控程序将获取的其终端计算机监控操作所携带的参数信息中的设备IO请求输出参数转换为SSID数组,并循环比较SSID数组中的每一个节点,如果SSID数组中的节点SSID名称在其终端计算机的合法SSID列表中,则遍历SSID数组中下一节点;如果SSID数组中的节点SSID名称不在其终端计算机的合法SSID列表中,则删除SSID数组中的该节点;The managed terminal computer sets a hook monitoring program to convert the device IO request output parameter in the parameter information carried by the terminal computer monitoring operation obtained into an SSID array, and cyclically compares each node in the SSID array. If the node SSID name in the SSID array is in the legal SSID list of the terminal computer, the next node in the SSID array is traversed; if the node SSID name in the SSID array is not in the legal SSID list of the terminal computer, the node in the SSID array is deleted;

c5.将监控操作所携带的参数信息包括请求设备IO请求码、设备IO请求输入信息参数、设备IO请求输出参数返给操作系统;c5. Return the parameter information carried by the monitoring operation, including the device IO request code, the device IO request input information parameters, and the device IO request output parameters, to the operating system;

已管理的终端计算机利用内核API挂钩技术监控设备IO控制的请求,执行步骤c1。The managed terminal computer monitors the device IO control request using the kernel API hooking technology and executes step c1.

本发明的有益效果是:The beneficial effects of the present invention are:

本发明的基于Windows操作系统的个人WIFI热点管理方法,适用于Windows XP及以上操作系统,通过对Windows操作系统逆向分析,内核层挂钩,开发出了WIFI管理功能,此技术具备良好的通用性,适应市面上主流的个人便携性WIFI设备的管理,填补了Windows操作系统对WIFI管理的空白。可以通过此技术实现WIFI的黑名单、白名单管理。由于采用驱动层设备控制接口拦截实现,所以具备良好的设备兼容性和系统安全性。The personal WIFI hotspot management method based on Windows operating system of the present invention is applicable to Windows XP and above operating systems. Through reverse analysis of Windows operating system and kernel layer hooking, WIFI management function is developed. This technology has good versatility and is suitable for the management of mainstream personal portable WIFI devices on the market, filling the gap of WIFI management in Windows operating system. Blacklist and whitelist management of WIFI can be realized by this technology. Since it is realized by interception of driver layer device control interface, it has good device compatibility and system security.

附图说明BRIEF DESCRIPTION OF THE DRAWINGS

图1是本发明的基于Windows操作系统的个人WIFI热点管理方法的流程图;1 is a flow chart of a personal WIFI hotspot management method based on Windows operating system of the present invention;

图2是本发明的基于Windows操作系统的个人WIFI热点管理方法步骤c的流程图;2 is a flow chart of step c of the personal WIFI hotspot management method based on Windows operating system of the present invention;

图3是本发明的实施例的应用环境的结构示意图。FIG. 3 is a schematic diagram of the structure of the application environment of the embodiment of the present invention.

具体实施方式Detailed ways

下面结合附图和实施例,对本发明的基于Windows操作系统的个人WIFI热点管理方法做进一步详细描述。The personal WIFI hotspot management method based on Windows operating system of the present invention is further described in detail below in conjunction with the drawings and embodiments.

本发明的基于Windows操作系统的个人WIFI热点管理方法能够通过服务端远程进行统一规划终端计算机的网络热点列表,采用对终端计算机实时监测的方式,解决大规模局域网中网络热点无法管理的问题以及管理非法热点工作量大、效率低、系统资源占用高、不能集中统一规划及自动维护的问题,极大地提高了工作效率,减少了运营维护成本,应用范围广泛。The personal WIFI hotspot management method based on Windows operating system of the present invention can remotely and uniformly plan the network hotspot list of terminal computers through the server end, and adopts the method of real-time monitoring of terminal computers to solve the problem that network hotspots in large-scale local area networks cannot be managed, and the problem that the management of illegal hotspots is large in workload, low in efficiency, high in system resource occupation, and cannot be centrally and uniformly planned and automatically maintained, thereby greatly improving work efficiency, reducing operation and maintenance costs, and having a wide range of applications.

实施例Example

例如,一个局域网内有100台终端计算机,终端计算机PC1,PC2,…,PC100,一台服务端计算机(SERVER),对此100台终端计算机进行网络热点信息管理以及当有网络热点控制请求时确保其为合法网络热点信息,本发明的基于Windows操作系统的个人WIFI热点管理方法,具体包括如下步骤:For example, there are 100 terminal computers in a local area network, terminal computers PC1, PC2, ..., PC100, and a server computer (SERVER). The network hotspot information of the 100 terminal computers is managed and when there is a network hotspot control request, it is ensured that it is legal network hotspot information. The personal WIFI hotspot management method based on the Windows operating system of the present invention specifically includes the following steps:

a.服务端生成合法网络热点信息列表:a. The server generates a list of legal network hotspot information:

服务端计算机将局域网内所有100台终端计算机的WIFI热点信息进行统一规划,将终端计算机PC1至终端计算机PC100的合法网络热点信息统一规划为TP-LINK_001、 TP-LINK_002,并在终端计算机上存储所有100台终端计算机的合法网络热点信息列表;The server computer uniformly plans the WIFI hotspot information of all 100 terminal computers in the local area network, uniformly plans the legal network hotspot information of terminal computers PC1 to PC100 as TP-LINK_001 and TP-LINK_002, and stores the legal network hotspot information list of all 100 terminal computers on the terminal computer;

b.服务端设定终端计算机的网络热点信息:b. The server sets the network hotspot information of the terminal computer:

服务端计算机在服务端计算机上设定需要管理的100台终端计算机的合法网络热点信息列表,包括终端计算机PC1至终端计算机PC100的合法网络热点信息为P-LINK_001、P-LINK_002;The server computer sets a list of legal network hotspot information of 100 terminal computers to be managed on the server computer, including legal network hotspot information of terminal computers PC1 to PC100 as P-LINK_001 and P-LINK_002;

服务端计算机依据所述合法网络热点信息列表通知需要管理的100台终端计算机;The server computer notifies 100 terminal computers that need to be managed according to the legal network hotspot information list;

所述需要管理的100台终端计算机分别利用内核层API挂钩技术,设计其终端计算机的非法WIFI热点无法连接;The 100 terminal computers that need to be managed use kernel layer API hooking technology to design illegal WIFI hotspots of the terminal computers to be unable to connect;

c.已管理的终端计算机监管其终端计算机的网络热点信息的变更;c. Managed terminal computers monitor changes in network hotspot information of their terminal computers;

已管理的100台终端计算机将服务端计算机发送来的合法网络热点信息列表分别保存到各自终端计算机的合法SSID列表中;The 100 managed terminal computers save the legal network hotspot information list sent by the server computer to the legal SSID list of each terminal computer;

合法SSID列表为P-LINK_001、P-LINK_002;The legal SSID list is P-LINK_001, P-LINK_002;

已管理的终端计算机利用内核层API挂钩技术,通过设备IO控制接口,实时监测其终端计算机的网络热点信息的变更,具体工作步骤如下:The managed terminal computer uses the kernel layer API hooking technology to monitor the changes of the network hotspot information of the terminal computer in real time through the device IO control interface. The specific working steps are as follows:

c1.本实施例中,已管理的终端计算机PC100请求连接非办公WIFI热点LINK_X,因此已管理的终端计算机PC100能够监测到其终端计算机上有设备IO控制的请求,继续执行步骤c2;而已管理的终端计算机PC1至终端机端机PC99未能监测到其终端计算机上有设备IO控制的请求,执行步骤c5;c1. In this embodiment, the managed terminal computer PC100 requests to connect to the non-office WIFI hotspot LINK_X, so the managed terminal computer PC100 can detect that there is a request for device IO control on its terminal computer, and continue to execute step c2; if the managed terminal computers PC1 to PC99 fail to detect that there is a request for device IO control on their terminal computers, execute step c5;

c2.已管理的终端计算机PC100设定挂钩监控程序获取监控操作所携带的参数信息,包括设备IO请求码为0x0012c804、设备IO请求输入参数为0x8cd91200、设备IO请求输出参数为0x8cd91400;c2. The managed terminal computer PC100 sets a hook monitoring program to obtain parameter information carried by the monitoring operation, including the device IO request code 0x0012c804, the device IO request input parameter 0x8cd91200, and the device IO request output parameter 0x8cd91400;

根据已管理的终端计算机PC100的监控操作所携带的参数信息中的设备IO请求码0x0012c804可以判断其为NDIS_OID查询请求,因此已管理的终端计算机PC100的监控操作所携带的参数信息中的设备IO请求输入参数的前4个字节0xD010217为请求标识,设备IO请求输出参数为0x8cd91400,系统可用SSID数组LINK_X、P-LINK_001、P-LINK_002;According to the device IO request code 0x0012c804 in the parameter information carried by the monitoring operation of the managed terminal computer PC100, it can be judged that it is an NDIS_OID query request. Therefore, the first 4 bytes 0xD010217 of the device IO request input parameter in the parameter information carried by the monitoring operation of the managed terminal computer PC100 are the request identifier, and the device IO request output parameter is 0x8cd91400. The system can use the SSID array LINK_X, P-LINK_001, and P-LINK_002;

c3.已管理的终端计算机PC100检查传入监控操作所携带的参数中的设备IO请求码0x0012c804等于NDIS_OID查询请求0x0012c804,并且其设备IO请求输入参数前4字节0xD010217等于系统SSID预定义标识0xD010217,因此将已管理的终端计算机PC100本次的请求标识为WIFI热点管理请求,继续执行步骤c4;(如果已管理的终端计算机PC100检查传入监控操作所携带的参数中的设备IO请求码不等于NDIS_OID查询请求,则将本次请求标识为非WIFI热点管理请求,执行步骤c5;)c3. The managed terminal computer PC100 checks that the device IO request code 0x0012c804 in the parameters carried by the incoming monitoring operation is equal to the NDIS_OID query request 0x0012c804, and the first 4 bytes 0xD010217 of its device IO request input parameter are equal to the system SSID predefined identifier 0xD010217, so the request of the managed terminal computer PC100 is identified as a WIFI hotspot management request, and step c4 is continued; (If the managed terminal computer PC100 checks that the device IO request code in the parameters carried by the incoming monitoring operation is not equal to the NDIS_OID query request, the request is identified as a non-WIFI hotspot management request, and step c5 is executed;)

c4.分析并管理WIFI热点管理请求;c4. Analyze and manage WIFI hotspot management requests;

已管理的终端计算机PC100设定挂钩监控程序将获取的其终端计算机监控操作所携带的参数信息中的设备IO请求输出参数0x8cd91400转换为SSID数组LINK_X、P-LINK_001、P-LINK_002,并循环比较SSID数组中每一个节点LINK_X、P-LINK_001、P-LINK_002,LINK_X不在SSID合法列表中,因此删除该节点,P-LINK_001、P-LINK_002在合法列表中,因此保留;The managed terminal computer PC100 sets the hook monitoring program to convert the device IO request output parameter 0x8cd91400 in the parameter information carried by the terminal computer monitoring operation into the SSID array LINK_X, P-LINK_001, P-LINK_002, and cyclically compares each node LINK_X, P-LINK_001, P-LINK_002 in the SSID array. LINK_X is not in the SSID legal list, so the node is deleted. P-LINK_001 and P-LINK_002 are in the legal list, so they are retained.

c5.已管理的终端计算机PC100设定挂钩监控程序将其监控操作所携带的参数信息,包括请求设备IO请求码0x0012c804、设备IO请求输入信息参数0x8cd91200、设备IO请求输出参数0x8cd91400返给其操作系统;c5. The managed terminal computer PC100 sets the hook monitoring program to return the parameter information carried by its monitoring operation, including the device IO request code 0x0012c804, the device IO request input information parameter 0x8cd91200, and the device IO request output parameter 0x8cd91400, to its operating system;

已管理的终端计算机PC100利用内核API挂钩技术监控其设备IO控制的请求,执行步骤c1。The managed terminal computer PC100 monitors the request for device IO control by using the kernel API hooking technology and executes step c1.

Claims (1)

1.一种基于Windows操作系统的个人WIFI热点管理方法,包含以下步骤:1. A personal WIFI hotspot management method based on Windows operating system, comprising the following steps: a.服务端生成合法网络热点信息列表:a. The server generates a list of legal network hotspot information: 服务端将网络内所有WIFI热点信息进行统一规划,并在服务端上生成合法网络热点信息列表;The server will plan all WIFI hotspot information in the network and generate a list of legal network hotspot information on the server; b.服务端设定终端计算机的网络热点信息:b. The server sets the network hotspot information of the terminal computer: 服务端在服务端上设定需要管理的终端计算机的合法网络热点信息列表;The server sets a list of legal network hotspot information of terminal computers that need to be managed on the server; 服务端依据所述合法网络热点信息列表通知需要管理的终端计算机;The server notifies the terminal computer that needs to be managed according to the list of legal network hotspot information; 所述需要管理的终端计算机利用内核层API挂钩技术,设定其终端计算机的非法WIFI热点无法连接;The terminal computer to be managed uses kernel layer API hooking technology to set the illegal WIFI hotspot of the terminal computer to be unable to connect; c.终端计算机监管其终端计算机的网络热点信息的变更;c. The terminal computer monitors the changes of the network hotspot information of its terminal computer; 已管理的终端计算机将服务端发送来的合法网络热点信息列表保存到其终端计算机的合法SSID列表中;The managed terminal computer saves the legal network hotspot information list sent by the server to the legal SSID list of its terminal computer; 已管理的终端计算机利用内核层API挂钩技术,通过设备IO控制接口,实时监测其终端计算机的网络热点信息的变更;The managed terminal computers use kernel layer API hooking technology to monitor the changes of network hotspot information of the terminal computers in real time through the device IO control interface; 已管理的终端计算机利用内核层API挂钩技术设定挂钩监控程序监控其终端计算机的设备IO控制请求;The managed terminal computer uses the kernel layer API hooking technology to set a hook monitoring program to monitor the device IO control request of the terminal computer; 已管理的终端计算机设定挂钩监控程序实时监控其终端计算机的设备IO控制请求,包括以下步骤:The managed terminal computer sets a hook monitoring program to monitor the device IO control request of its terminal computer in real time, including the following steps: c1.如果已管理的终端计算机监测到其终端计算机有设备IO控制的请求,继续执行步骤c2;如果已管理的终端计算机未监测到其终端计算机有设备IO控制的请求,则执行步骤c5;c1. If the managed terminal computer detects that its terminal computer has a request for device IO control, continue to execute step c2; if the managed terminal computer does not detect that its terminal computer has a request for device IO control, execute step c5; c2.已管理的终端计算机设定挂钩监控程序获取监控操作所携带的参数信息;c2. The managed terminal computer sets a hook monitoring program to obtain parameter information carried by the monitoring operation; 所述监控操作所携带的参数信息包括设备IO请求码、设备IO请求输入参数、设备IO请求输出参数;The parameter information carried by the monitoring operation includes a device IO request code, a device IO request input parameter, and a device IO request output parameter; 当所述监控操作所携带的参数信息中的设备IO请求码为NDIS_OID查询请求时,输入参数前4个字节为请求标识,输出参数为系统可用SSID数组;When the device IO request code in the parameter information carried by the monitoring operation is an NDIS_OID query request, the first 4 bytes of the input parameter are the request identifier, and the output parameter is an array of available SSIDs in the system; c3.已管理的终端计算机检查传入监控操作所携带的参数中的IO请求码是否为WIFI热点管理请求;c3. The managed terminal computer checks whether the IO request code in the parameter carried by the incoming monitoring operation is a WIFI hotspot management request; 如果已管理的终端计算机检查传入监控操作所携带的参数中的IO请求码等于NDIS_OID查询请求,并且设备IO请求输入参数前4字节等于系统SSID预定义标识,则将本次请求标识为WIFI热点管理请求,继续执行步骤c4;如果已管理的终端计算机检查传入监控操作所携带的参数中的IO请求码不等于NDIS_OID查询请求,则本次请求为非WIFI热点管理请求,执行步骤c5;If the managed terminal computer checks that the IO request code in the parameters carried by the incoming monitoring operation is equal to the NDIS_OID query request, and the first 4 bytes of the device IO request input parameter are equal to the system SSID predefined identifier, then this request is identified as a WIFI hotspot management request, and step c4 is continued; if the managed terminal computer checks that the IO request code in the parameters carried by the incoming monitoring operation is not equal to the NDIS_OID query request, then this request is not a WIFI hotspot management request, and step c5 is executed; c4.分析并管理WIFI热点管理请求;c4. Analyze and manage WIFI hotspot management requests; 已管理的终端计算机设定挂钩监控程序将获取的其终端计算机监控操作所携带的参数信息中的设备IO请求输出参数转换为SSID数组,并循环比较SSID数组中的每一个节点,如果SSID数组中的节点SSID名称在其终端计算机的合法SSID列表中,则遍历SSID数组中下一节点;如果SSID数组中的节点SSID名称不在其终端计算机的合法SSID列表中,则删除SSID数组中的该节点;The managed terminal computer sets a hook monitoring program to convert the device IO request output parameter in the parameter information carried by the terminal computer monitoring operation obtained into an SSID array, and cyclically compares each node in the SSID array. If the node SSID name in the SSID array is in the legal SSID list of the terminal computer, the next node in the SSID array is traversed; if the node SSID name in the SSID array is not in the legal SSID list of the terminal computer, the node in the SSID array is deleted; c5.将监控操作所携带的参数信息包括请求设备IO请求码、设备IO请求输入信息参数、设备IO请求输出参数返给操作系统;c5. Return the parameter information carried by the monitoring operation, including the device IO request code, the device IO request input information parameters, and the device IO request output parameters, to the operating system; 已管理的终端计算机利用内核API挂钩技术监控设备IO控制的请求,执行步骤c1。The managed terminal computer monitors the device IO control request using the kernel API hooking technology and executes step c1.
CN202010239488.9A 2020-03-30 2020-03-30 Personal WIFI hotspot management method based on Windows operating system Active CN111556503B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010239488.9A CN111556503B (en) 2020-03-30 2020-03-30 Personal WIFI hotspot management method based on Windows operating system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010239488.9A CN111556503B (en) 2020-03-30 2020-03-30 Personal WIFI hotspot management method based on Windows operating system

Publications (2)

Publication Number Publication Date
CN111556503A CN111556503A (en) 2020-08-18
CN111556503B true CN111556503B (en) 2024-06-18

Family

ID=72003793

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010239488.9A Active CN111556503B (en) 2020-03-30 2020-03-30 Personal WIFI hotspot management method based on Windows operating system

Country Status (1)

Country Link
CN (1) CN111556503B (en)

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102208004A (en) * 2011-05-13 2011-10-05 南京邮电大学 Method for controlling software behavior based on least privilege principle

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7680758B2 (en) * 2004-09-30 2010-03-16 Citrix Systems, Inc. Method and apparatus for isolating execution of software applications
JP4140920B2 (en) * 2006-04-20 2008-08-27 インターナショナル・ビジネス・マシーンズ・コーポレーション Information processing device that supports the protection of personal information
JP2009265823A (en) * 2008-04-23 2009-11-12 Yokogawa Digital Computer Corp Information terminal device and log data acquisition program
WO2010067703A1 (en) * 2008-12-08 2010-06-17 日本電気株式会社 Data dependence analyzer, information processor, data dependence analysis method, and program
KR20120096983A (en) * 2011-02-24 2012-09-03 삼성전자주식회사 Malware detection method and mobile terminal therefor
CN102664758B (en) * 2012-04-28 2015-03-25 沈阳通用软件有限公司 Method for binding and automatically recovering network configuration
CN104935657A (en) * 2015-06-15 2015-09-23 清华大学深圳研究生院 Method for actively pushing information and embedded node operating system
CN106778242B (en) * 2016-11-28 2020-10-16 北京奇虎科技有限公司 Kernel vulnerability detection method and device based on virtual machine
CN107070967A (en) * 2016-12-23 2017-08-18 沈阳通用软件有限公司 A kind of general terminal system reinforcement means
CN110825441B (en) * 2019-09-23 2021-11-02 万达信息股份有限公司 Method for implementing asynchronous system, computer equipment and storage medium

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102208004A (en) * 2011-05-13 2011-10-05 南京邮电大学 Method for controlling software behavior based on least privilege principle

Also Published As

Publication number Publication date
CN111556503A (en) 2020-08-18

Similar Documents

Publication Publication Date Title
CN104660682B (en) A kind of OPC data collection and monitoring intelligent terminal based on TD-LTE
CN101877618B (en) Monitoring method, server and system based on proxy-free mode
CN103916396B (en) A kind of cloud platform application example automatic telescopic method based on loaded self-adaptive
CN111340456A (en) Method, device and device for edge-cloud collaborative data processing based on Internet of Things
CN109245295A (en) Photovoltaic power station monitoring system based on MQTT agreement
CN111343020A (en) Unified management method and device for multi-protocol Internet of things equipment
CN103997523B (en) Smart city operation system and its implementation based on cloud service
CN204598011U (en) A kind of OPC data acquisition and monitoring intelligent terminal based on TD-LTE
CN102497427A (en) Method and device for realizing data acquisition services of renewable energy source monitoring system
CN107515809A (en) A kind of elastic telescopic method and system of power system
CN101699827A (en) Unitary storage network system management architecture adopting SMI-S standard
CN114077485A (en) Service scheduling deployment method for Internet of things edge computing node resources
CN108874623A (en) Distributed type assemblies method for monitoring performance, device, equipment, system and storage medium
CN105052076A (en) Interface management service entity, functional service entity and network element management method
CN107682460B (en) Distributed storage cluster data communication method and system
CN110730112A (en) Method, system, equipment and storage medium for testing network running speed
CN111556503B (en) Personal WIFI hotspot management method based on Windows operating system
Albrecht et al. Making work queue cluster-friendly for data intensive scientific applications
CN101394397A (en) Remotely callable compressed dump method and system for mobile network
CN204462736U (en) A kind of real-time dynamic monitoring system being applied to comprehensive energy
CN106411588A (en) Network device management method, master device and management server
CN112885069B (en) Communication method, system, device and computer equipment of metrology automation system
CN114584589A (en) A Realization Method for Rapid Scanning to Discover Resources and Rapid Monitoring
CN112636975A (en) Edge computing gateway network management system
CN202385139U (en) Private cloud architecture based on infrastructure as a service (IaaS)

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
TA01 Transfer of patent application right

Effective date of registration: 20210714

Address after: 100020 1773, 15 / F, 17 / F, building 3, No.10, Jiuxianqiao Road, Chaoyang District, Beijing

Applicant after: Beijing Hongteng Intelligent Technology Co.,Ltd.

Address before: 110179 No.11, Lane 3, Wenhua Road, Heping District, Shenyang City, Liaoning Province

Applicant before: SHENYANG GENERALSOFT Co.,Ltd.

TA01 Transfer of patent application right
CB02 Change of applicant information

Address after: 100020 1773, 15 / F, 17 / F, building 3, No.10, Jiuxianqiao Road, Chaoyang District, Beijing

Applicant after: Sanliu0 Digital Security Technology Group Co.,Ltd.

Address before: 100020 1773, 15 / F, 17 / F, building 3, No.10, Jiuxianqiao Road, Chaoyang District, Beijing

Applicant before: Beijing Hongteng Intelligent Technology Co.,Ltd.

CB02 Change of applicant information
GR01 Patent grant
GR01 Patent grant