[go: up one dir, main page]

CN113316139A - Wireless network access method and wireless access point - Google Patents

Wireless network access method and wireless access point Download PDF

Info

Publication number
CN113316139A
CN113316139A CN202110557658.2A CN202110557658A CN113316139A CN 113316139 A CN113316139 A CN 113316139A CN 202110557658 A CN202110557658 A CN 202110557658A CN 113316139 A CN113316139 A CN 113316139A
Authority
CN
China
Prior art keywords
access point
wireless access
terminal
random number
encryption result
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202110557658.2A
Other languages
Chinese (zh)
Other versions
CN113316139B (en
Inventor
田新雪
蒙睿
肖征荣
马书惠
杨子文
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China United Network Communications Group Co Ltd
Original Assignee
China United Network Communications Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China United Network Communications Group Co Ltd filed Critical China United Network Communications Group Co Ltd
Priority to CN202110557658.2A priority Critical patent/CN113316139B/en
Publication of CN113316139A publication Critical patent/CN113316139A/en
Application granted granted Critical
Publication of CN113316139B publication Critical patent/CN113316139B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/037Protecting confidentiality, e.g. by encryption of the control plane, e.g. signalling traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/60Context-dependent security
    • H04W12/69Identity-dependent
    • H04W12/73Access point logical identity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/08Access restriction or access information delivery, e.g. discovery data delivery
    • H04W48/14Access restriction or access information delivery, e.g. discovery data delivery using user query or user detection

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

本公开提供了一种无线网络接入方法及无线接入点,所述方法包括:接收共享服务器发送的验证请求,获取其中的随机数和第一加密结果,其中,验证请求是第一无线接入点接收到终端发送的连接请求之后发送至共享服务器的,第一加密结果为终端对随机数加密生成的,本第二无线接入点为终端归属的无线接入点;对随机数进行加密得到第二加密结果,并根据第一加密结果和第二加密结果确定比较结果;通过共享服务器向第一无线接入点发送比较结果,以供第一无线接入点根据比较结果确定是否允许终端接入第一无线接入点对应的无线网络。采用比较公正的方式共享wifi,提高通信效率,提升用户体验。

Figure 202110557658

The present disclosure provides a wireless network access method and a wireless access point. The method includes: receiving a verification request sent by a shared server, and obtaining a random number and a first encryption result therein, wherein the verification request is the first wireless access point. After the access point receives the connection request sent by the terminal and sends it to the shared server, the first encryption result is generated by the terminal encrypting the random number, and the second wireless access point is the wireless access point to which the terminal belongs; the random number is encrypted. Obtain the second encryption result, and determine the comparison result according to the first encryption result and the second encryption result; send the comparison result to the first wireless access point through the shared server, so that the first wireless access point can determine whether to allow the terminal according to the comparison result Access the wireless network corresponding to the first wireless access point. Share wifi in a fairer way to improve communication efficiency and user experience.

Figure 202110557658

Description

Wireless network access method and wireless access point
Technical Field
The disclosure belongs to the technical field of communication, and particularly relates to a wireless network access method and a wireless access point.
Background
With the development of the darkest technology, wifi (Wireless-Fidelity) is exposed to a great security hole. The vulnerability is named as KRACK (Key Reinstallation attack), the related range is very wide, wifi devices such as all computers, mobile phones and routers are almost affected, a hacker can monitor data communication conducted through network devices accessing wifi, the privacy of the user is stolen, the user client can be hijacked to a phishing hotspot, and flow hijacking, tampering and the like are achieved. Based on WPA2(wifi Protected Access2, second edition of wifi Protected Access) security protocol, an attacker can repeatedly use a disposable key provided when a client device joins in a wifi network, and information exchanged between an Access point and the client device is cracked through the method. This may result in leakage of credit cards, chat information, and passwords. The essence of this vulnerability is that the network is accessed with a shared key that is known to all public, especially in public wifi, resulting in a wireless eavesdropper being able to decrypt even the encrypted wireless signal.
Almost every terminal currently has its own home wifi, or other wifi that can be connected, such as home or business. However, when the terminal moves to a place where the wifi of the terminal can not be covered, the wifi service can not be obtained. Even if a lot of wifi information can be searched, the wifi of its own home may be in an idle state at this time because there is no access authorization. Whether wifi can be mutually used in a relatively just mode, the attributive wifi of the terminal can provide service to the outside, and meanwhile, when the terminal arrives at an other place, the terminal can be safely accessed into wifi of other people to improve communication efficiency, so that the problem which needs to be solved at present is solved urgently.
Disclosure of Invention
In view of the above-mentioned shortcomings in the prior art, the present disclosure provides a wireless network access method and a wireless access point.
As a first aspect of the present disclosure, there is provided a wireless network access method, including:
receiving a verification request sent by a shared server, and acquiring a random number and a first encryption result in the verification request, wherein the verification request is sent to the shared server after a first wireless access point receives a connection request sent by a terminal, and the first encryption result is generated by encrypting the random number by the terminal;
encrypting the random number to obtain a second encryption result, and determining a comparison result according to the first encryption result and the second encryption result;
and sending the comparison result to the first wireless access point through the sharing server so that the first wireless access point can determine whether to allow the terminal to access a wireless network corresponding to the first wireless access point according to the comparison result.
Preferably, encrypting the random number to obtain a second encryption result includes:
and encrypting the random number by using a preset secret key shared with the terminal to obtain the second encryption result.
Preferably, the method further comprises:
and sending the identification of the second wireless access point and the address corresponding to the identification to the shared server for storage so as to register on the shared server.
As a second aspect of the present disclosure, there is provided a wireless network access method, the method including:
responding to a connection request sent by a terminal, generating a random number, and sending the random number to the terminal;
sending a verification request carrying the random number and a first encryption result to a second wireless access point through a sharing server in response to receiving the first encryption result generated by encrypting the random number and sent by the terminal, wherein the second wireless access point is a wireless access point to which the terminal belongs;
receiving a comparison result sent by the shared server, wherein the comparison result is that the second wireless access point encrypts the random number to generate a second encryption result, and the comparison result is sent to the shared server after being determined according to the first encryption result and the second encryption result;
and determining whether the terminal is allowed to access the wireless network corresponding to the first wireless access point or not according to the comparison result.
Preferably, the determining whether to allow the terminal to access the wireless network corresponding to the first wireless access point according to the comparison result includes:
and in response to determining that the first encryption result is consistent with the second encryption result, determining to allow the terminal to access the wireless network corresponding to the first wireless access point.
As a third aspect of the present disclosure, there is provided a wireless access point, comprising:
the terminal comprises a receiving module, a sending module and a receiving module, wherein the receiving module is used for receiving a verification request sent by a shared server, and the verification request is sent to the shared server after a first wireless access point receives a connection request sent by a terminal;
an obtaining module, configured to obtain a random number and a first encryption result in the verification request, where the first encryption result is generated by encrypting the random number by the terminal, and the second wireless access point is a wireless access point to which the terminal belongs;
the determining module is used for encrypting the random number to obtain a second encryption result and determining a comparison result according to the first encryption result and the second encryption result;
a sending module, configured to send the comparison result to the first wireless access point through the sharing server, so that the first wireless access point determines whether to allow the terminal to access the wireless network corresponding to the first wireless access point according to the comparison result.
Preferably, in the encryption module, the encryption module encrypts the random number to obtain a second encryption result, and is specifically configured to:
and encrypting the random number by using a preset secret key shared with the terminal to obtain the second encryption result.
Preferably, the sending module is further configured to send the identifier of the second wireless access point and the address corresponding to the identifier to the shared server for storage, so as to register on the shared server.
As a fourth aspect of the present disclosure, there is provided a wireless access point, the method comprising:
the generating module is used for responding to a received connection request sent by a terminal and generating a random number;
a sending module, configured to send the random number to the terminal; sending a verification request carrying the random number and a first encryption result to a second wireless access point through a sharing server in response to receiving the first encryption result generated by encrypting the random number and sent by the terminal, wherein the second wireless access point is a wireless access point to which the terminal belongs;
a receiving module, configured to receive a comparison result sent by the shared server, where the comparison result is that the second wireless access point encrypts the random number to generate a second encryption result, and sends the second encryption result to the shared server after determining the comparison result according to the first encryption result and the second encryption result;
and the determining module is used for determining whether the terminal is allowed to access the wireless network corresponding to the first wireless access point according to the comparison result.
Preferably, the determining module is specifically configured to:
and in response to determining that the first encryption result is consistent with the second encryption result, determining to allow the terminal to access the wireless network corresponding to the first wireless access point.
In the embodiment of the disclosure, the second wireless access point receives the authentication request sent by the shared server, and acquires the random number and the first encryption result therein. And the second wireless access point encrypts the random number to obtain a second encryption result, determines a comparison result according to the first encryption result and the second encryption result, and sends the comparison result to the first wireless access point. And the first wireless access point determines whether to allow the terminal to access the wireless network corresponding to the first wireless access point according to the comparison result. Adopt more fair mode sharing wifi, when the terminal removes the unable territory district that covers of home country wifi, can connect others' wifi to the wifi of home country at terminal can externally provide service, improves the utilization ratio of the wifi of home country at terminal, improves communication efficiency, promotes user experience.
Drawings
Fig. 1 is a flowchart of a wireless network access method on a second wireless access point side according to an embodiment of the present disclosure;
fig. 2 is a flowchart of a wireless network access method on a first wireless access point side according to an embodiment of the present disclosure;
fig. 3 is a schematic structural diagram of a second wireless access point according to an embodiment of the present disclosure;
fig. 4 is a schematic structural diagram of a first wireless access point according to an embodiment of the present disclosure.
Detailed Description
For a better understanding of the technical aspects of the present disclosure, reference is made to the following detailed description taken in conjunction with the accompanying drawings.
In order to adopt more fair mode sharing wifi to improve the utilization ratio of the wifi of affiliation at terminal, improve communication efficiency, promote user experience. The disclosure provides a wireless network access method and a wireless access point. The following detailed description is made with reference to the accompanying drawings which respectively illustrate embodiments provided by the present disclosure.
Fig. 1 shows a flowchart of a wireless network access method on a second wireless access point side according to an embodiment of the present disclosure. The wireless network access method can be applied to a second wireless access point, namely a wireless access point to which the terminal belongs. As shown in fig. 1, the wireless network access method provided in this embodiment includes the following steps.
Step S101, receiving an authentication request sent by the sharing server.
Step S102, the random number and the first encryption result in the verification request are obtained.
Step S103, encrypting the random number to obtain a second encryption result, and determining a comparison result according to the first encryption result and the second encryption result.
And step S104, sending the comparison result to the first wireless access point through the sharing server, so that the first wireless access point determines whether to allow the terminal to access the wireless network corresponding to the first wireless access point according to the comparison result.
The first wireless access point is a wireless access point (e.g., visitwife) to which the terminal applies for access, and the second wireless access point is a wireless access point (e.g., homewife) to which the terminal belongs. The verification request is sent to the shared server after the first wireless access point receives the connection request sent by the terminal, and the first encryption result is generated by the terminal through encryption of the random number.
According to the wireless network access method provided by the embodiment of the disclosure, when the terminal moves to a place which cannot be covered by the second wireless access point, a nearby wireless network is automatically searched, namely, the wireless network of the first wireless access point is searched, the terminal sends a connection request to the first wireless access point, the first wireless access point generates a random number and sends the random number to the terminal, and the terminal encrypts the random number to generate a first encryption result and then sends the first encryption result to the first wireless access point. The first wireless access point sends an authentication request carrying the random number and the first encryption result to the sharing server, the sharing server forwards the authentication request to the second wireless access point, and the authentication request is used for assisting the first wireless access point in authenticating whether the terminal is reliable or not. The second wireless access point encrypts the random number to obtain a second encryption result, and determines a comparison result according to the first encryption result and the second encryption result. The second wireless access point sends the comparison result to the first wireless access point through the sharing server. And the first wireless access point determines whether to allow the terminal to access the wireless network corresponding to the first wireless access point according to the comparison result. Therefore, the second wireless access point is used to verify whether the terminal is reliable, that is, to assist in verifying whether the first wireless access point allows the terminal to access the wireless network corresponding to the first wireless access point.
In the embodiment of the disclosure, wifi is shared in a relatively fair manner, when the terminal moves to a region where the wifi of the terminal cannot cover, wifi of other people can be connected, and the wifi of the terminal can provide services externally, so that the utilization rate of the wifi of the terminal is improved, the communication efficiency is improved, and the user experience is improved.
It should be noted that the comparison result includes that the first encryption result is consistent with the second encryption result, or that the first encryption result is inconsistent with the second encryption result.
In a preferred embodiment, the connection request includes the terminal name and the radio access point identity of the second radio access point. The authentication request also includes the terminal name and the identity of the second wireless access point. When the sharing server locally queries a public network ip (Internet Protocol, inter-network interconnection Protocol) address corresponding to the identifier of the second wireless access point in the verification request, it is described that the second wireless access point to which the terminal belongs stores the identifier of the second wireless access point and the corresponding public network ip address locally in advance, and the second wireless access point is added into the sharing server and is willing to share wifi of the second wireless access point. Thus, it is determined that the second wireless access point is authenticated, and the shared server may then forward the verification request to the second wireless access point.
Further, in step S103, encrypting the random number to obtain a second encryption result includes: and encrypting the random number by using a preset secret key shared with the terminal to obtain a second encryption result.
In this step, after receiving the random number sent by the sharing server, the second wireless access point encrypts the random number according to a preset algorithm by using a preset key shared with the terminal to obtain a second encryption result.
It should be noted that, the first encryption result is obtained by encrypting, according to a preset algorithm, the terminal by using a preset key shared with the second wireless access point after receiving the random number sent by the first wireless access point.
In some embodiments, the wireless network access method further comprises: and sending the identification of the second wireless access point and the address corresponding to the identification to a shared server for storage so as to register on the shared server.
In the initial stage of the embodiment of the disclosure, a sharing server is constructed, all wifi willing to be shared are written into the sharing server, and all terminals added into the sharing server allow normal access to other wifi in the sharing service. Each terminal has its own home wireless access point (i.e., the second wireless access point in the embodiment of the present disclosure), for example, homewifi (home wifi), and has a shared preset key with the home second wireless access point, and each terminal can normally access the wireless network of its own home second wireless access point. And the second wireless access point to which each terminal belongs sends the identification of the second wireless access point and the corresponding address (the ip address of the public network) to the sharing server for storage, and the sharing server writes the information into a wifi list in the sharing server after receiving the information, so that the registration of the second wireless access point in the sharing server is completed. The second wireless access point to which the terminal belongs prompts that the terminal has joined the shared server in an open SSID (Service Set Identifier).
Fig. 2 shows a flowchart of a wireless network access method on a first wireless access point side according to an embodiment of the present disclosure. The wireless network access method can be applied to a first wireless access point, namely a wireless access point to which a terminal applies for connection. As shown in fig. 2, the wireless network access method provided in this embodiment includes the following steps.
Step S201, in response to receiving a connection request sent by a terminal, generates a random number.
Step S202, the random number is sent to the terminal.
Step S203, responding to the first encryption result generated by encrypting the random number and sent by the terminal, and sending an authentication request carrying the random number and the first encryption result to the second wireless access point through the sharing server.
Step S204, receiving the comparison result sent by the sharing server.
Step S205, determining whether the terminal is allowed to access the wireless network corresponding to the first wireless access point according to the comparison result.
The first wireless access point is a wireless access point (e.g., visitwife) to which the terminal applies for access, and the second wireless access point is a wireless access point (e.g., homewife) to which the terminal belongs. And the comparison result is that the second wireless access point encrypts the random number to generate a second encryption result, and the second encryption result is determined according to the first encryption result and the second encryption result and then is sent to the shared server.
According to the wireless network access method provided by the embodiment of the disclosure, when the terminal moves to a place which cannot be covered by the second wireless access point, a nearby wireless network is automatically searched, namely, the wireless network of the first wireless access point is searched, the terminal sends a connection request to the first wireless access point, the first wireless access point generates a random number and sends the random number to the terminal, and the terminal encrypts the random number to generate a first encryption result and then sends the first encryption result to the first wireless access point. The first wireless access point sends an authentication request carrying the random number and the first encryption result to the sharing server, and the sharing server forwards the authentication request to the second wireless access point to request the second wireless access point to assist the first wireless access point to authenticate whether the terminal is reliable or not. And the first wireless access point receives the comparison result sent by the sharing server, and determines whether the terminal is reliable according to the comparison result, namely whether the terminal is allowed to access the wireless network corresponding to the first wireless access point.
In the embodiment of the disclosure, wifi is shared in a relatively fair manner, when the terminal moves to a region where the wifi of the terminal cannot cover, wifi of other people can be connected, and the wifi of the terminal can provide services externally, so that the utilization rate of the wifi of the terminal is improved, the communication efficiency is improved, and the user experience is improved.
In a preferred embodiment, the connection request includes the terminal name and the radio access point identity of the second radio access point. The authentication request also includes the terminal name and the identity of the second wireless access point. When the sharing server locally inquires out the public network ip address corresponding to the identifier of the second wireless access point in the verification request, the second wireless access point to which the terminal belongs stores the identifier of the second wireless access point and the corresponding public network ip address in the sharing server in advance, and the second wireless access point is added into the sharing server and is willing to share wifi of the second wireless access point. Thus, it is determined that the second wireless access point is authenticated, and the shared server may then forward the verification request to the second wireless access point.
Further, the determining whether to allow the terminal to access the wireless network corresponding to the first wireless access point according to the comparison result (i.e. step S205) includes: and in response to determining that the first encryption result is consistent with the second encryption result, determining to allow the terminal to access the wireless network corresponding to the first wireless access point.
In this step, if it is verified that the first encryption result is consistent with the second encryption result, it is indicated that the terminal is reliable, and the terminal is allowed to access the wireless network corresponding to the first wireless access point.
In the embodiment of the disclosure, if it is verified that a first encryption result obtained by encrypting the random number by the terminal is consistent with a second encryption result obtained by encrypting the random number by the second wireless access point according to a comparison result sent by the second wireless access point, it indicates that the terminal is reliable, and the terminal is allowed to access a wireless network corresponding to the first wireless access point. The realization adopts more fair mode sharing wifi, when the terminal remove the unable regional district that covers of home country wifi, can connect others' wifi to the wifi of the home country at terminal can externally provide service, improves the utilization ratio of the wifi of the home country at terminal, improves communication efficiency, promotes user experience.
It should be noted that, if it is verified that the first encryption result obtained by encrypting the random number by the terminal is inconsistent with the second encryption result obtained by encrypting the random number by the second wireless access point, it indicates that the terminal is unreliable, and the terminal is not allowed to access the wireless network corresponding to the first wireless access point.
Fig. 3 shows a schematic structural diagram of a second wireless access point side provided in an embodiment of the present disclosure. Based on the same technical concept as the embodiment corresponding to fig. 1, as shown in fig. 3, the shared server provided by the embodiment of the present disclosure includes the following modules.
A receiving module 11, configured to receive an authentication request sent by a shared server, where the authentication request is sent to the shared server after a first wireless access point receives a connection request sent by a terminal.
An obtaining module 12, configured to obtain a random number and a first encryption result in the authentication request, where the first encryption result is generated by the terminal by encrypting the random number.
The determining module 13 is configured to encrypt the random number to obtain a second encryption result, and determine a comparison result according to the first encryption result and the second encryption result.
A sending module 14, configured to send the comparison result to the first wireless access point through the sharing server, so that the first wireless access point determines whether to allow the terminal to access the wireless network corresponding to the first wireless access point according to the comparison result.
In some embodiments, in the determining module 12, encrypting the random number to obtain a second encryption result is specifically configured to: and encrypting the random number by using a preset secret key shared with the terminal to obtain the second encryption result.
In some embodiments, the sending module 13 is further configured to send the identifier of the second wireless access point and the address corresponding to the identifier to the shared server for storage, so as to register on the shared server.
Fig. 4 shows a schematic structural diagram of a first wireless access point side provided in an embodiment of the present disclosure. Based on the same technical concept as the embodiment corresponding to fig. 2, as shown in fig. 4, the shared server provided by the embodiment of the present disclosure includes the following modules.
A generating module 21, configured to generate a random number in response to receiving a connection request sent by a terminal.
A sending module 22, configured to send the random number to the terminal; and in response to receiving a first encryption result generated by encrypting the random number and sent by the terminal, sending an authentication request carrying the random number and the first encryption result to a second wireless access point through a sharing server, wherein the second wireless access point is a wireless access point to which the terminal belongs.
A receiving module 23, configured to receive a comparison result sent by the shared server, where the comparison result is that the second wireless access point encrypts the random number to generate a second encryption result, and sends the second encryption result to the shared server after determining the comparison result according to the first encryption result and the second encryption result.
A determining module 24, configured to determine whether to allow the terminal to access the wireless network corresponding to the first wireless access point according to the comparison result.
In some embodiments, the determining module 24 is specifically configured to:
and in response to determining that the first encryption result is consistent with the second encryption result, determining to allow the terminal to access the wireless network corresponding to the first wireless access point.
It is to be understood that the above embodiments are merely exemplary embodiments that are employed to illustrate the principles of the present disclosure, and that the present disclosure is not limited thereto. It will be apparent to those skilled in the art that various changes and modifications can be made therein without departing from the spirit and scope of the disclosure, and these are to be considered as the scope of the disclosure.

Claims (10)

1. A wireless network access method, comprising:
receiving a verification request sent by a sharing server, and acquiring a random number and a first encryption result in the verification request, wherein the verification request is sent to the sharing server after a first wireless access point receives a connection request sent by a terminal, and the first encryption result is generated by encrypting the random number by the terminal;
encrypting the random number to obtain a second encryption result, and determining a comparison result according to the first encryption result and the second encryption result;
and sending the comparison result to the first wireless access point through the sharing server so that the first wireless access point can determine whether to allow the terminal to access a wireless network corresponding to the first wireless access point according to the comparison result.
2. The wireless network access method of claim 1, wherein encrypting the random number to obtain a second encryption result comprises:
and encrypting the random number by using a preset secret key shared with the terminal to obtain the second encryption result.
3. The wireless network access method of claim 1, wherein the method further comprises:
and sending the identification of the second wireless access point and the address corresponding to the identification to the shared server for storage so as to register on the shared server.
4. A wireless network access method, the method comprising:
responding to a connection request sent by a terminal, generating a random number, and sending the random number to the terminal;
sending a verification request carrying the random number and a first encryption result to a second wireless access point through a sharing server in response to receiving the first encryption result generated by encrypting the random number and sent by the terminal, wherein the second wireless access point is a wireless access point to which the terminal belongs;
receiving a comparison result sent by the shared server, wherein the comparison result is that the second wireless access point encrypts the random number to generate a second encryption result, and the comparison result is sent to the shared server after being determined according to the first encryption result and the second encryption result;
and determining whether the terminal is allowed to access the wireless network corresponding to the first wireless access point or not according to the comparison result.
5. The method for accessing a wireless network according to claim 4, wherein the determining whether to allow the terminal to access the wireless network corresponding to the first wireless access point according to the comparison result includes:
and in response to determining that the first encryption result is consistent with the second encryption result, determining to allow the terminal to access the wireless network corresponding to the first wireless access point.
6. A wireless access point, comprising:
the terminal comprises a receiving module, a sending module and a receiving module, wherein the receiving module is used for receiving a verification request sent by a shared server, and the verification request is sent to the shared server after a first wireless access point receives a connection request sent by a terminal;
an obtaining module, configured to obtain a random number and a first encryption result in the verification request, where the first encryption result is generated by the terminal by encrypting the random number;
the determining module is used for encrypting the random number to obtain a second encryption result and determining a comparison result according to the first encryption result and the second encryption result;
a sending module, configured to send the comparison result to the first wireless access point through the sharing server, so that the first wireless access point determines whether to allow the terminal to access the wireless network corresponding to the first wireless access point according to the comparison result.
7. The wireless access point according to claim 6, wherein the encryption module is configured to encrypt the random number to obtain a second encryption result, and is specifically configured to:
and encrypting the random number by using a preset secret key shared with the terminal to obtain the second encryption result.
8. The wireless access point according to claim 6, wherein the sending module is further configured to send an identifier of the second wireless access point and an address corresponding to the identifier to the shared server for saving, so as to register on the shared server.
9. A wireless access point, the method comprising:
the generating module is used for responding to a received connection request sent by a terminal and generating a random number;
a sending module, configured to send the random number to the terminal; sending a verification request carrying the random number and a first encryption result to a second wireless access point through a sharing server in response to receiving the first encryption result generated by encrypting the random number and sent by the terminal, wherein the second wireless access point is a wireless access point to which the terminal belongs;
a receiving module, configured to receive a comparison result sent by the shared server, where the comparison result is that the second wireless access point encrypts the random number to generate a second encryption result, and sends the second encryption result to the shared server after determining the comparison result according to the first encryption result and the second encryption result;
and the determining module is used for determining whether the terminal is allowed to access the wireless network corresponding to the first wireless access point according to the comparison result.
10. The wireless access point of claim 9, wherein the determining module is specifically configured to:
and in response to determining that the first encryption result is consistent with the second encryption result, determining to allow the terminal to access the wireless network corresponding to the first wireless access point.
CN202110557658.2A 2021-05-21 2021-05-21 Wireless network access method and wireless access point Active CN113316139B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110557658.2A CN113316139B (en) 2021-05-21 2021-05-21 Wireless network access method and wireless access point

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110557658.2A CN113316139B (en) 2021-05-21 2021-05-21 Wireless network access method and wireless access point

Publications (2)

Publication Number Publication Date
CN113316139A true CN113316139A (en) 2021-08-27
CN113316139B CN113316139B (en) 2023-03-21

Family

ID=77374049

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110557658.2A Active CN113316139B (en) 2021-05-21 2021-05-21 Wireless network access method and wireless access point

Country Status (1)

Country Link
CN (1) CN113316139B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN117641355A (en) * 2023-11-27 2024-03-01 中时讯通信建设有限公司 Network access method, system, equipment, storable medium and communication method

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102625310A (en) * 2012-03-13 2012-08-01 中国联合网络通信集团有限公司 Wireless network access method, authentication method and device
CN105188055A (en) * 2015-08-14 2015-12-23 中国联合网络通信集团有限公司 Wireless network access method, wireless access point and server
CN105359589A (en) * 2013-07-09 2016-02-24 奥林奇公司 Network architecture enabling a mobile terminal to roam into a wireless local area network
US20200120150A1 (en) * 2018-10-16 2020-04-16 T-Mobile Usa, Inc. Cache and multicast techniques to reduce bandwidth utilization

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102625310A (en) * 2012-03-13 2012-08-01 中国联合网络通信集团有限公司 Wireless network access method, authentication method and device
CN105359589A (en) * 2013-07-09 2016-02-24 奥林奇公司 Network architecture enabling a mobile terminal to roam into a wireless local area network
CN105188055A (en) * 2015-08-14 2015-12-23 中国联合网络通信集团有限公司 Wireless network access method, wireless access point and server
US20200120150A1 (en) * 2018-10-16 2020-04-16 T-Mobile Usa, Inc. Cache and multicast techniques to reduce bandwidth utilization

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN117641355A (en) * 2023-11-27 2024-03-01 中时讯通信建设有限公司 Network access method, system, equipment, storable medium and communication method

Also Published As

Publication number Publication date
CN113316139B (en) 2023-03-21

Similar Documents

Publication Publication Date Title
US8417218B2 (en) SIM based authentication
EP2622786B1 (en) Mobile handset identification and communication authentication
US7913080B2 (en) Setting information distribution apparatus, method, program, and medium, authentication setting transfer apparatus, method, program, and medium, and setting information reception program
JP4804983B2 (en) Wireless terminal, authentication device, and program
EP2630816B1 (en) Authentication of access terminal identities in roaming networks
CN112566119B (en) Terminal authentication method, device, computer equipment and storage medium
US20060059344A1 (en) Service authentication
KR20180095873A (en) Wireless network access method and apparatus, and storage medium
US8875236B2 (en) Security in communication networks
US20220053334A1 (en) Using a network requirements field to provide a station access to a network
US12047866B2 (en) Protected pre-association device identification
CN111246477B (en) Access method, terminal, micro base station and access system
EP2924944B1 (en) Network authentication
US8234497B2 (en) Method and apparatus for providing secure linking to a user identity in a digital rights management system
CN103415010A (en) D2D network authentication method and system
CN112020716A (en) Remote biometric identification
CN103024735B (en) Method and equipment for service access of card-free terminal
US12047867B2 (en) Unsolicited handling of unique identifier for stations
CN113316139B (en) Wireless network access method and wireless access point
CN112887308B (en) Non-inductive network identity authentication method and system
CN113316141B (en) Wireless network access method, sharing server and wireless access point
CN113347628A (en) Method, access point and terminal for providing network access service
KR100463751B1 (en) Method for generating packet-data in wireless-communication and method and apparatus for wireless-communication using that packet-data
JP2015230520A (en) Authentication device, authentication method, authentication program, and authentication system
US20240364700A1 (en) Method and System for Securely Exchanging Cryptographic Challenge/Response Messages

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant