CN101068196B - Bluetooth mobile telephone switch-in bluetooth gateway service insertion controlling method - Google Patents
Bluetooth mobile telephone switch-in bluetooth gateway service insertion controlling method Download PDFInfo
- Publication number
- CN101068196B CN101068196B CN200610079601A CN200610079601A CN101068196B CN 101068196 B CN101068196 B CN 101068196B CN 200610079601 A CN200610079601 A CN 200610079601A CN 200610079601 A CN200610079601 A CN 200610079601A CN 101068196 B CN101068196 B CN 101068196B
- Authority
- CN
- China
- Prior art keywords
- bluetooth
- access
- authentication
- mobile phone
- gateway
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title claims abstract description 26
- 238000003780 insertion Methods 0.000 title 1
- 230000037431 insertion Effects 0.000 title 1
- 230000004044 response Effects 0.000 claims description 13
- 238000012795 verification Methods 0.000 claims description 6
- 230000011664 signaling Effects 0.000 claims description 3
- 238000012545 processing Methods 0.000 description 12
- 230000008569 process Effects 0.000 description 6
- 238000005516 engineering process Methods 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 3
- 238000004891 communication Methods 0.000 description 2
- 238000011161 development Methods 0.000 description 2
- 230000004927 fusion Effects 0.000 description 2
- 230000000977 initiatory effect Effects 0.000 description 2
- 230000003993 interaction Effects 0.000 description 2
- 230000006978 adaptation Effects 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 230000002860 competitive effect Effects 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000002708 enhancing effect Effects 0.000 description 1
- 238000013467 fragmentation Methods 0.000 description 1
- 238000006062 fragmentation reaction Methods 0.000 description 1
- 125000000524 functional group Chemical group 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000008520 organization Effects 0.000 description 1
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
A method for controlling service access of Bluetooth mobile phone being switched in to Bluetooth gateway includes configuring access parameter of said mobile phone to said gateway and setting up ACL connection, issuing access request to said gateway by said mobile phone and sending right certification request to said mobile phone by said gateway, calculating out right certification result being matched with right certification parameter, switching on correlation service access right under access mode requested by said mobile phone if said match is successful or otherwise refusing correlation service access right under access mode requested by said mobile phone and disconnecting ACL connection of mobile phone.
Description
Technical Field
The invention relates to the field of Wireless Local Area Network (WLAN) communication, in particular to a Bluetooth technology.
Background
Bluetooth (Bluetooth) is a small-range wireless connection technology, and can realize convenient, fast, flexible, safe, low-cost and low-power-consumption data and voice communication among devices, and is one of mainstream technologies for realizing a wireless local area network at present.
Meanwhile, with the rapid development of mobile communication technology, mobile terminals are becoming popular, and the competitive advantage of the conventional fixed network is becoming smaller. In order to get rid of the development dilemma of fixed networks as soon as possible, the seamless fusion of the fixed networks and the mobile networks is becoming a hotspot at present, and british telecommunications has led to the introduction of bluetooth telephone service named BTFusion in 6 months in 2005, which opens the way of fusion of fixed networks and mobile networks.
With the diversification of bluetooth terminals increasing, one bluetooth gateway will possibly provide access for multiple users, and therefore, how to improve the access security of the bluetooth gateway is very important.
The Bluetooth standard established by the Bluetooth SIG organization does not limit service access, all users share a secret key, and the security is low. In the prior art, a serious safety defect exists when a Bluetooth mobile phone is accessed into a Bluetooth gateway.
Disclosure of Invention
The invention aims to provide a service access control method for accessing a Bluetooth gateway by a Bluetooth mobile phone, which provides access authentication of users in different modes before the users access services, and improves the safety of the services.
The invention adopts the following technical scheme:
a service access control method for accessing a Bluetooth mobile phone to a Bluetooth gateway, wherein user identity authentication is completed by the Bluetooth gateway, comprises the following steps:
step one, configuring a press-in parameter of a Bluetooth gateway, comprising: configuring an access mode and a corresponding access password; configuring access parameters when the Bluetooth mobile phone accesses a specific Bluetooth gateway: configuring an access mode and a corresponding access password;
step two, establishing ACL connection between the Bluetooth mobile phone and the Bluetooth gateway;
step three, after the Bluetooth link between the Bluetooth gateway and the Bluetooth mobile phone is successfully established, the Bluetooth mobile phone initiates an access request to the Bluetooth gateway, and the access request message carries the access mode and the access parameter information requested by the Bluetooth mobile phone;
step four, the Bluetooth gateway sends an access authentication request to the Bluetooth mobile phone according to the access mode of the Bluetooth mobile phone request, and requires to perform identity verification on the Bluetooth mobile phone;
after receiving the access authentication request of the Bluetooth gateway, the Bluetooth mobile phone responds to the access authentication request by using a preset or negotiated authentication method;
step six, after receiving the access authentication response of the Bluetooth mobile phone, the Bluetooth gateway takes out the authentication parameters of the Bluetooth mobile phone; the Bluetooth gateway calculates an authentication result for the locally stored Bluetooth mobile phone access parameters according to a preset or negotiated authentication algorithm, and matches the authentication result with the received Bluetooth mobile phone authentication parameters; if the two are matched, the authentication is successful; if not, the authentication fails; wherein,
the authentication algorithm adopts at least one of MD5, SHA-1 or SHA-2 algorithm; the authentication algorithm is preset or is negotiated and set in the access request message;
step seven, the Bluetooth gateway sends an authentication result to the Bluetooth mobile phone; if the authentication is successful, the Bluetooth gateway opens the access authority of the related service under the access mode requested by the Bluetooth mobile phone, and the related service access can be carried out between the Bluetooth mobile phone and the Bluetooth gateway; if the authentication fails, the Bluetooth gateway refuses the Bluetooth mobile phone to request the access authority of the relevant service in the access mode, and the Bluetooth gateway disconnects the ACL connection with the mobile phone.
Further, in the first step, the method for configuring the access parameter of the bluetooth gateway includes: the configuration is carried out through a network management system, WEB page configuration, serial port configuration and Bluetooth mobile phone configuration with configuration permission.
Further, in the step one, the access parameter configured with the bluetooth gateway may simultaneously configure multiple access modes and access passwords corresponding to the various modes.
Further, in the step one, the access parameters of the configured bluetooth gateway are saved in a nonvolatile storage device of the bluetooth gateway.
Further, in the step one, the mode of configuring the access parameters of the bluetooth mobile phone to access the specific bluetooth gateway includes configuration through an MMI interface of the mobile phone.
Further, in the second step, during the process of establishing the ACL connection between the bluetooth handset and the bluetooth gateway, the link-level authentication and encryption of SIG standard can be selected.
The invention also provides the following technical scheme:
a service access control method for accessing a Bluetooth mobile phone to a Bluetooth gateway, wherein user identity authentication is completed by a remote authentication server, access parameters are stored in the remote authentication server, and the Bluetooth gateway only forwards related signaling, comprises the following steps:
step A: configuring an access mode and related access parameters of a remote authentication server, wherein the access parameters comprise: a user identity and an access password; configuring a Bluetooth gateway access mode and related access parameters; configuring access parameters when a Bluetooth mobile phone is accessed to a certain Bluetooth gateway, wherein the access parameters comprise an access mode and a corresponding access password;
and B: establishing ACL connection between the Bluetooth mobile phone and the Bluetooth gateway;
and C: after a Bluetooth link between the Bluetooth gateway and the Bluetooth mobile phone is successfully established, the Bluetooth mobile phone initiates a service access request to the Bluetooth gateway, and an access request message carries an access mode and an access parameter requested by the Bluetooth mobile phone;
step D: the Bluetooth gateway judges whether an access request needs to be sent to an authentication server or not according to the access mode requested by the Bluetooth mobile phone; if not, the Bluetooth gateway sends an access authentication request to the Bluetooth mobile phone, requires identity verification of the Bluetooth mobile phone and executes the step G; if so, the Bluetooth gateway forwards the request to an authentication server and executes the step E;
step E: the authentication server receives the access request of the Bluetooth mobile phone forwarded by the Bluetooth gateway, and the authentication server sends the access authentication request of the Bluetooth mobile phone to the Bluetooth gateway to request the identity verification of the Bluetooth mobile phone;
step F: the Bluetooth gateway forwards an access authentication request of the authentication server to the Bluetooth mobile phone;
step G: after receiving an access authentication request sent by a Bluetooth gateway or an access authentication request forwarded by the Bluetooth gateway, the Bluetooth mobile phone responds to the access authentication request by using a preset or negotiated authentication method;
step H: after receiving the authentication response of the Bluetooth mobile phone, the Bluetooth gateway judges whether the Bluetooth mobile phone needs to be forwarded to an authentication server; if the authentication parameters do not need to be forwarded, the Bluetooth gateway takes out the authentication parameters of the Bluetooth mobile phone, and the Bluetooth gateway calculates a local authentication result for the prestored access parameters according to a corresponding authentication algorithm and matches the authentication parameters sent by the mobile phone; if the two are matched, the authentication is successful; if not, the authentication fails; executing the step K; if the authentication response needs to be forwarded, the Bluetooth gateway forwards the authentication response of the Bluetooth mobile phone to an authentication server, and executes the step I; wherein,
the authentication algorithm adopts at least one of MD5, SHA-1 or SHA-2 algorithm; the authentication algorithm is preset or is negotiated and set in the access request message;
step I: the authentication server receives the authentication response of the Bluetooth mobile phone forwarded by the Bluetooth gateway and then takes out the authentication parameters of the Bluetooth mobile phone; the authentication server calculates an authentication result for the locally stored Bluetooth mobile phone access parameters according to a preset or negotiated authentication algorithm, and the authentication result is matched with the authentication parameters sent by the mobile phone; if the authentication is matched with the authentication request, the authentication is successful, and if the authentication is not matched with the authentication request, the authentication is failed;
step J: the authentication server sends an authentication result of the Bluetooth mobile phone to the Bluetooth gateway;
step K: the Bluetooth gateway sends a local authentication result to the Bluetooth mobile phone, or forwards the authentication result of the authentication server to the Bluetooth mobile phone;
step L: if the authentication is successful, the Bluetooth gateway opens the related service access authority of the Bluetooth mobile phone in the request access mode, and the Bluetooth mobile phone and the Bluetooth gateway can perform service access; if the authentication fails, the Bluetooth gateway refuses the Bluetooth mobile phone to request the access authority of the relevant service in the access mode, and the Bluetooth gateway disconnects the ACL connection with the Bluetooth mobile phone.
Further, in the step a, configuring one or more access modes of the bluetooth gateway; if the authentication of the Bluetooth mobile phone in some access modes is authenticated by the authentication server, the access parameters of the Bluetooth gateway include: access mode, authentication server information; if the authentication of the Bluetooth mobile phone in some access modes is authenticated at the Bluetooth gateway, the access parameters of the Bluetooth gateway include: access mode and access password.
Compared with the prior art, the invention can realize the safe access control of the access of the Bluetooth mobile phone to the Bluetooth gateway, and the control method is simple and easy.
Drawings
FIG. 1 is a block diagram of a Bluetooth protocol stack and Bluetooth system used in the present invention;
FIG. 2a is an illustration of the message structure of the TCS protocol;
fig. 2b is an illustration of an extended protocol message body used by the present invention for implementing service access control functions;
FIG. 3 is a flow chart of a first embodiment of the Bluetooth gateway access by a Bluetooth handset of the present invention;
fig. 4 is a flow chart of a second embodiment of the bluetooth gateway for bluetooth handset access of the present invention.
Detailed Description
The following detailed description of the embodiments is made with reference to the accompanying drawings:
the bluetooth system to which the present invention is applied includes: the bluetooth gateway, bluetooth mobile phone (i.e. bluetooth terminal), can also include the authentication server.
Wherein, bluetooth gateway part includes:
a Bluetooth module: the Bluetooth wireless and baseband processing device comprises a Bluetooth radio frequency transceiver, a Bluetooth wireless and baseband processor and Bluetooth baseband protocol firmware, and is used for finishing the processing of the Bluetooth wireless and baseband protocol;
an application processor system: the system comprises an MCU, an RAM and a FLASH chip, and is used for finishing the processing of upper-layer protocols and applications of the Bluetooth HCI; and processing of gateway interfaces;
a gateway interface module: for completing processing of bluetooth voice or data to the wired interface. These interfaces may be PSTN processing modules, DSP processing modules for VoIP, etc.
The Bluetooth mobile phone (Bluetooth terminal) part includes:
a Bluetooth module: the Bluetooth wireless and baseband processing device comprises a Bluetooth radio frequency transceiver, a Bluetooth wireless and baseband processor and Bluetooth baseband protocol firmware, and is used for finishing the processing of the Bluetooth wireless and baseband protocol;
an application processor system: the system comprises an MCU, an RAM and a FLASH chip, and is used for finishing the processing of upper-layer protocols and applications of the Bluetooth HCI; and the processing of mobile phone functions such as a handheld terminal or GSM/CDMA/3G and the like;
MMI hardware module: including display screen, keyboard, etc. for the use of bluetooth function and cell-phone function.
The authentication server:
the Bluetooth gateway is indirectly connected with the Bluetooth gateway through a wired network interface of the Bluetooth gateway, and can be various types of equipment such as a PC server, an access platform and the like.
Fig. 3 shows protocol stacks and system modules used by the bluetooth part of the present invention, which include a bluetooth transceiver 301, a baseband controller 302, a link management protocol 303, a link manager 304, an HCI transport layer 305, an HCI driver 306, an L2CAP layer protocol 307, an SDP protocol 309, a TCS-Binary protocol 308, a cordless telephone specification (CTP)311, and an intercom specification (IntP) 310.
The bluetooth wireless transceiver 301 is configured to complete bluetooth air interface data transceiving; the link manager 304 is used to process information from the bluetooth HCI layer 305 and control the bluetooth baseband as required by the link management protocol 303; the baseband controller 302 performs bluetooth baseband control as required by the link manager 304.
The HCI transport layer 305 is optional, when the upper and lower functional modules of the HCI transport layer are implemented in different systems, the HCI transport layer provides a common interface to access bluetooth hardware capabilities, the HCI driver 306 on the host and the firmware of the HCI transport layer 305 of the bluetooth device exchange data and commands in accordance with standard HCI layer protocols; when the upper layer module and the lower layer module of the HCI transmission layer are realized in the same system, commands and data are transmitted in a message transmission mode in the same system, and the HCI transmission layer is not needed any more.
The L2CAP307 module is a logical link control and adaptation protocol module, and the bottom layer module multiplexes an upper layer protocol through the L2CAP307 module and provides functions of fragmentation and reassembly of packets, quality of service (QoS) and Bluetooth device group management.
The SDP 309 module is a Bluetooth service discovery protocol module and is used for positioning the service provided by the Bluetooth equipment and obtaining the way of the service; the TCS-Binary 308 module is a Bluetooth Binary telephone control protocol module based on Q.931, is used for CTP 311 service and IntP 310 service, and comprises a call control part, a wireless user group management part and a connectionless processing part; the bluetooth gateway and bluetooth handset application 312 module provides voice and data telephony services using the CTP and IntP specifications, with control signaling provided by the TCS protocol and voice provided by the baseband controller 302.
Fig. 2a depicts a message structure of the TCS protocol, each message of the TCS protocol comprising: protocol distinction field, message type field, message element field, protocol distinction field and message type field are necessary, but message element field is optional. The 6-8 bits of the first byte of the message are the protocol discrimination field used to divide the TCS message into different functional groups, and there are currently three types of protocol discrimination field definitions defined by the bluetooth standard specification: bluetooth TCS telephone control, Bluetooth TCS group management, Bluetooth TCS do not have the connection specifically as follows:
000 denotes TCS Call Control class protocol
001 denotes TCS Group management type protocol
010 means TCS connection class protocol
And (4) other reservations.
Bits 1-5 of the first byte of the message are a message type field; fields from the second byte of the message to the end of the message belong to the message element field for TCS messages carrying additional information.
Fig. 2b depicts message bodies of the bluetooth service access control protocol used in the present invention, the TCS service control class protocol is extended, the service access control protocol may use any reserved protocol number reserved by the standard specification, the protocol bodies are specifically defined as: in the invention, the message which is not defined by the standard Bluetooth specification is provided by utilizing the extension of the standard protocol, and the Bluetooth service access control function is provided, thereby realizing the service access control of the Bluetooth gateway and the Bluetooth mobile phone.
Fig. 3 illustrates a first embodiment of the present invention, and an application scenario of the first embodiment is an interaction process of accessing a bluetooth gateway by a bluetooth mobile phone without a remote authentication server to participate in authentication, which is specifically as follows:
step 501: establishing ACL connection between one or more Bluetooth mobile phones (Bluetooth terminals) and a Bluetooth gateway, wherein link-level authentication of SIG standard is required;
step 502: starting a service access authentication process between one or more Bluetooth mobile phones and a Bluetooth gateway, and initiating an access request by the Bluetooth mobile phones;
step 503: the Bluetooth gateway initiates an access authentication request to the Bluetooth mobile phone;
step 504: the Bluetooth mobile phone sends an access authentication response;
step 505: the Bluetooth gateway calculates an authentication result for the self-stored Bluetooth mobile phone access parameters according to a preset or negotiated authentication algorithm, and matches the authentication result with the received authentication parameters of the Bluetooth mobile phone; if the two are matched, the authentication is successful; if not, the authentication fails;
step 506: the Bluetooth gateway sends an authentication result to the Bluetooth mobile phone;
step 507: if the access authentication is successful, the Bluetooth gateway opens the access authority of the related service under the access mode requested by the Bluetooth mobile phone;
step 508: if the access authentication fails, the Bluetooth gateway refuses the Bluetooth mobile phone to request the access authority of the relevant service in the access mode, and the Bluetooth gateway disconnects the ACL connection with the mobile phone.
In addition, if the access authentication fails, the user of the bluetooth mobile phone can modify the service access mode and the access password in the mode through MMI interface and other modes, repeat the above operations, and re-initiate the access request.
The authentication algorithm used by the invention can adopt one or more of MD5 algorithm, SHA-1, SHA-2 and the like. The settings can be preset or negotiated in the access request message sent by the Bluetooth mobile phone.
Fig. 4 illustrates a second embodiment of the present invention, and an application scenario thereof is an interaction process of accessing a bluetooth gateway by a bluetooth mobile phone that participates in authentication by a remote authentication server, which is specifically as follows:
step 601: establishing ACL connection between one or more Bluetooth mobile phones (Bluetooth terminals) and a Bluetooth gateway, wherein link-level authentication of SIG standard is required;
step 602: starting a service access authentication process between one or more Bluetooth mobile phones and a Bluetooth gateway, and initiating a service access control request by the Bluetooth mobile phones;
step 603: the Bluetooth gateway forwards the access request to an authentication server;
step 604: the authentication server sends an access authentication request to the Bluetooth gateway:
step 605: the Bluetooth gateway forwards an access authentication request to the Bluetooth mobile phone;
step 606: the Bluetooth mobile phone sends an access authentication response;
step 607: the Bluetooth gateway forwards the access authentication response to the authentication server;
step 608: the authentication server calculates an authentication result for the locally stored Bluetooth mobile phone access parameters according to a preset or negotiated authentication algorithm, and the authentication result is matched with the received authentication parameters of the Bluetooth mobile phone; if the two are matched, the authentication is successful; if not, the authentication fails;
step 609: the authentication server sends the authentication result of the Bluetooth mobile phone to the Bluetooth gateway;
step 610: the Bluetooth gateway forwards the authentication result to the Bluetooth mobile phone;
step 611: if the access authentication is successful, the Bluetooth gateway opens the access authority of the related service under the access mode requested by the Bluetooth mobile phone;
step 612: if the access authentication fails, the Bluetooth gateway refuses the Bluetooth mobile phone to request the access authority of the relevant service in the access mode, and the Bluetooth gateway disconnects the ACL connection with the mobile phone.
If the authentication fails, the Bluetooth mobile phone can modify the relevant access parameters which can be modified by the user, and then initiates access connection to the Bluetooth gateway again.
In summary, the present invention extends the protocol based on the existing standard specification, provides the bluetooth gateway to support different working modes, and provides the security control when the bluetooth mobile phone accesses the bluetooth gateway in various modes, thereby enhancing the security and reliability of the service.
The present invention may be embodied in other specific forms without departing from the spirit or essential attributes thereof, and it should be understood that various changes and modifications can be effected therein by one skilled in the art without departing from the spirit and scope of the invention as defined in the appended claims.
Claims (8)
1. A service access control method for accessing a Bluetooth mobile phone to a Bluetooth gateway, wherein user identity authentication is completed by the Bluetooth gateway, comprises the following steps:
step one, configuring access parameters of a Bluetooth gateway, comprising the following steps: configuring an access mode and a corresponding access password; configuring access parameters when the Bluetooth mobile phone accesses a specific Bluetooth gateway: configuring an access mode and a corresponding access password;
step two, establishing ACL connection between the Bluetooth mobile phone and the Bluetooth gateway;
step three, after the Bluetooth link between the Bluetooth gateway and the Bluetooth mobile phone is successfully established, the Bluetooth mobile phone initiates an access request to the Bluetooth gateway, and the access request message carries the access mode and the access parameter information requested by the Bluetooth mobile phone;
step four, the Bluetooth gateway sends an access authentication request to the Bluetooth mobile phone according to the access mode of the Bluetooth mobile phone request, and requires to perform identity verification on the Bluetooth mobile phone;
after receiving the access authentication request of the Bluetooth gateway, the Bluetooth mobile phone responds to the access authentication request by using a preset or negotiated authentication method;
step six, after receiving the access authentication response of the Bluetooth mobile phone, the Bluetooth gateway takes out the authentication parameters of the Bluetooth mobile phone; the Bluetooth gateway calculates an authentication result for the locally stored Bluetooth mobile phone access parameters according to a preset or negotiated authentication algorithm, and matches the authentication result with the received Bluetooth mobile phone authentication parameters; if the two are matched, the authentication is successful; if not, the authentication fails; wherein,
the authentication algorithm adopts at least one of MD5, SHA-1 or SHA-2 algorithm; the authentication algorithm is preset or is negotiated and set in the access request message;
step seven, the Bluetooth gateway sends an authentication result to the Bluetooth mobile phone; if the authentication is successful, the Bluetooth gateway opens the access authority of the related service under the access mode requested by the Bluetooth mobile phone, and the related service access can be carried out between the Bluetooth mobile phone and the Bluetooth gateway; if the authentication fails, the Bluetooth gateway refuses the Bluetooth mobile phone to request the access authority of the relevant service in the access mode, and the Bluetooth gateway disconnects the ACL connection with the mobile phone.
2. The method of claim 1, wherein in step one, the means for configuring the access parameters of the bluetooth gateway comprises: the configuration is carried out through a network management system, WEB page configuration, serial port configuration and Bluetooth mobile phone configuration with configuration permission.
3. The method of claim 2, wherein in step one, the access parameters configuring the bluetooth gateway can configure multiple access modes and access passwords corresponding to the multiple access modes at the same time.
4. The method of claim 1, 2 or 3, wherein in step one, the access parameters of the configured Bluetooth gateway are saved in a nonvolatile storage device of the Bluetooth gateway.
5. The method of claim 1, 2 or 3, wherein in step one, the manner of configuring the access parameters of the bluetooth handset to access the specific bluetooth gateway comprises configuring through an MMI interface of the handset.
6. The method of claim 1, wherein link-level authentication and encryption of SIG standard may be selected during the establishment of the ACL connection between the Bluetooth handset and the Bluetooth gateway in step two.
7. A service access control method for accessing a Bluetooth mobile phone to a Bluetooth gateway, wherein user identity authentication is completed by a remote authentication server, access parameters are stored in the remote authentication server, and the Bluetooth gateway only forwards related signaling, comprises the following steps:
step A: configuring an access mode and related access parameters of a remote authentication server, wherein the access parameters comprise: a user identity and an access password; configuring a Bluetooth gateway access mode and related access parameters; configuring access parameters when a Bluetooth mobile phone is accessed to a certain Bluetooth gateway, wherein the access parameters comprise an access mode and a corresponding access password;
and B: establishing ACL connection between the Bluetooth mobile phone and the Bluetooth gateway;
and C: after a Bluetooth link between the Bluetooth gateway and the Bluetooth mobile phone is successfully established, the Bluetooth mobile phone initiates a service access request to the Bluetooth gateway, and an access request message carries an access mode and an access parameter requested by the Bluetooth mobile phone;
step D: the Bluetooth gateway judges whether an access request needs to be sent to an authentication server or not according to the access mode requested by the Bluetooth mobile phone; if not, the Bluetooth gateway sends an access authentication request to the Bluetooth mobile phone, requires identity verification of the Bluetooth mobile phone and executes the step G; if so, the Bluetooth gateway forwards the request to an authentication server and executes the step E;
step E: the authentication server receives the access request of the Bluetooth mobile phone forwarded by the Bluetooth gateway, and the authentication server sends the access authentication request of the Bluetooth mobile phone to the Bluetooth gateway to request the identity verification of the Bluetooth mobile phone;
step F: the Bluetooth gateway forwards an access authentication request of the authentication server to the Bluetooth mobile phone;
step G: after receiving an access authentication request sent by a Bluetooth gateway or an access authentication request forwarded by the Bluetooth gateway, the Bluetooth mobile phone responds to the access authentication request by using a preset or negotiated authentication method;
step H: after receiving the authentication response of the Bluetooth mobile phone, the Bluetooth gateway judges whether the Bluetooth mobile phone needs to be forwarded to an authentication server; if the authentication parameters do not need to be forwarded, the Bluetooth gateway takes out the authentication parameters of the Bluetooth mobile phone, and the Bluetooth gateway calculates a local authentication result for the prestored access parameters according to a corresponding authentication algorithm and matches the authentication parameters sent by the mobile phone; if the two are matched, the authentication is successful; if not, the authentication fails; executing the step K; if the authentication response needs to be forwarded, the Bluetooth gateway forwards the authentication response of the Bluetooth mobile phone to an authentication server, and executes the step I; wherein,
the authentication algorithm adopts at least one of MD5, SHA-1 or SHA-2 algorithm; the authentication algorithm is preset or is negotiated and set in the access request message;
step I: the authentication server receives the authentication response of the Bluetooth mobile phone forwarded by the Bluetooth gateway and then takes out the authentication parameters of the Bluetooth mobile phone; the authentication server calculates an authentication result for the locally stored Bluetooth mobile phone access parameters according to a preset or negotiated authentication algorithm, and the authentication result is matched with the authentication parameters sent by the mobile phone; if the authentication is matched with the authentication request, the authentication is successful, and if the authentication is not matched with the authentication request, the authentication is failed;
step J: the authentication server sends an authentication result of the Bluetooth mobile phone to the Bluetooth gateway;
step K: the Bluetooth gateway sends a local authentication result to the Bluetooth mobile phone, or forwards the authentication result of the authentication server to the Bluetooth mobile phone;
step L: if the authentication is successful, the Bluetooth gateway opens the related service access authority of the Bluetooth mobile phone in the request access mode, and the Bluetooth mobile phone and the Bluetooth gateway can perform service access; if the authentication fails, the Bluetooth gateway refuses the Bluetooth mobile phone to request the access authority of the relevant service in the access mode, and the Bluetooth gateway disconnects the ACL connection with the Bluetooth mobile phone.
8. The method according to claim 7, wherein in step a, the access mode of the bluetooth gateway is configured to include one or more of; if the authentication of the Bluetooth mobile phone in some access modes is authenticated by the authentication server, the access parameters of the Bluetooth gateway include: access mode, authentication server information; if the authentication of the Bluetooth mobile phone in some access modes is authenticated at the Bluetooth gateway, the access parameters of the Bluetooth gateway include: access mode and access password.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200610079601A CN101068196B (en) | 2006-05-01 | 2006-05-01 | Bluetooth mobile telephone switch-in bluetooth gateway service insertion controlling method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200610079601A CN101068196B (en) | 2006-05-01 | 2006-05-01 | Bluetooth mobile telephone switch-in bluetooth gateway service insertion controlling method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101068196A CN101068196A (en) | 2007-11-07 |
| CN101068196B true CN101068196B (en) | 2010-05-12 |
Family
ID=38880639
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200610079601A Expired - Fee Related CN101068196B (en) | 2006-05-01 | 2006-05-01 | Bluetooth mobile telephone switch-in bluetooth gateway service insertion controlling method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101068196B (en) |
Families Citing this family (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP2104322A1 (en) * | 2008-03-18 | 2009-09-23 | BlueTown ApS | Communication system for voice-over internet protocol using license-free frequencies |
| CN101272163B (en) * | 2008-03-21 | 2011-11-30 | 中兴通讯股份有限公司 | Method and system for recovering ACL link between Bluetooth telephone gateway and extension set |
| CN101252376B (en) * | 2008-03-27 | 2013-06-12 | 宇龙计算机通信科技(深圳)有限公司 | System and method for connecting blue tooth equipment and mobile communication terminal thereof |
| CN101500235B (en) * | 2009-02-26 | 2013-06-12 | 深圳市戴文科技有限公司 | Off-line authentication method, off-line authentication system and mobile terminal |
| CN102413220B (en) * | 2011-11-24 | 2014-08-20 | 中兴通讯股份有限公司 | Method for controlling right of using connection function and mobile terminal |
| CN103618994A (en) * | 2013-11-28 | 2014-03-05 | 南京守护宝信息技术有限公司 | Positioning warning method based on Bluetooth |
| CN103744555B (en) * | 2014-01-06 | 2017-11-10 | 溢洋光电(深圳)有限公司 | Instant messaging handwriting bi-directional display restoring method and related system and method |
| KR102349605B1 (en) | 2014-11-17 | 2022-01-11 | 삼성전자 주식회사 | Method and apparatus for providing services based on identifier of user device |
| CN104735669B (en) * | 2015-02-09 | 2018-10-26 | 邦彦技术股份有限公司 | Method and system for realizing access of mobile phone to internal secure communication network based on Bluetooth |
| CN105519028B (en) | 2015-07-01 | 2019-05-28 | 海能达通信股份有限公司 | A kind of wireless system connection control method and device |
| CN107786594B (en) * | 2016-08-26 | 2021-01-19 | 杭州爱钥医疗健康科技有限公司 | Service request processing method and device |
| CN109861963B (en) | 2017-11-30 | 2022-07-19 | 南京泉峰科技有限公司 | Portable power supply system and data transmission method for same |
| US11029941B2 (en) | 2017-11-30 | 2021-06-08 | Nanjing Chervon Industry Co., Ltd. | Electrical device and program update method thereof |
| CN109946532B (en) | 2017-12-21 | 2024-03-19 | 南京泉峰科技有限公司 | Diagnostic device and diagnostic method for tool system components |
| CN108416207B (en) * | 2018-03-07 | 2022-09-16 | 北京元心科技有限公司 | Bluetooth use permission identification method and device and mobile terminal |
| CN110493758B (en) | 2018-05-14 | 2023-01-13 | 阿里巴巴集团控股有限公司 | Bluetooth Mesh network and network distribution method, equipment and storage medium thereof |
| CN110505606B (en) * | 2018-05-18 | 2022-12-02 | 阿里巴巴集团控股有限公司 | Bluetooth Mesh network and distribution network authentication method, equipment and storage medium thereof |
| CN110830333B (en) * | 2018-08-09 | 2022-09-13 | 中兴通讯股份有限公司 | Intelligent household equipment access authentication method, device, gateway and storage medium |
| CN113169915B (en) * | 2018-11-30 | 2022-10-04 | 华为技术有限公司 | Wireless audio system, audio communication method and equipment |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1753363A (en) * | 2004-09-23 | 2006-03-29 | 华为技术有限公司 | Method of selecting right identification mode at network side |
| CN1756428A (en) * | 2004-09-30 | 2006-04-05 | 华为技术有限公司 | Method for carrying out authentication for terminal user identification module in IP multimedia subsystem |
-
2006
- 2006-05-01 CN CN200610079601A patent/CN101068196B/en not_active Expired - Fee Related
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1753363A (en) * | 2004-09-23 | 2006-03-29 | 华为技术有限公司 | Method of selecting right identification mode at network side |
| CN1756428A (en) * | 2004-09-30 | 2006-04-05 | 华为技术有限公司 | Method for carrying out authentication for terminal user identification module in IP multimedia subsystem |
Non-Patent Citations (2)
| Title |
|---|
| 房胜,钟玉琢.基于蓝牙技术的家庭网络系统的设计和实现.小型微型计算机系统第25卷 第11期.2004,第25卷(第11期),第2040至2043页. |
| 房胜,钟玉琢.基于蓝牙技术的家庭网络系统的设计和实现.小型微型计算机系统第25卷 第11期.2004,第25卷(第11期),第2040至2043页. * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101068196A (en) | 2007-11-07 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101068196B (en) | Bluetooth mobile telephone switch-in bluetooth gateway service insertion controlling method | |
| US11895157B2 (en) | Network security management method, and apparatus | |
| US10516540B2 (en) | Management of profiles in an embedded universal integrated circuit card (eUICC) | |
| US8925042B2 (en) | Connecting devices to an existing secure wireless network | |
| US8775801B2 (en) | Radio communication apparatus and radio communication method | |
| CN1965537B (en) | Method and system for establishing an emergency connection in a local network | |
| EP2230876B1 (en) | Method and apparatus for setting up network for IP communication in a mobile terminal | |
| KR101104500B1 (en) | Method for signalling voice call of mobile terminal | |
| US9450930B2 (en) | Device association via video handshake | |
| US8611859B2 (en) | System and method for providing secure network access in fixed mobile converged telecommunications networks | |
| US20130125224A1 (en) | Device association via video handshake | |
| WO2013033999A1 (en) | Method and apparatus for mobile device point-to-point data transmission | |
| CN105813071B (en) | Traffic sharing method and device, and terminal | |
| CN101026394A (en) | Method and apparatus for secured communication between bluetooth devices | |
| TW200421807A (en) | Authentication in a communication system | |
| EP2234438B1 (en) | Wireless personal area network accessing method | |
| US20080062937A1 (en) | Telephonic Device and Service Center-Assisted Network Setup | |
| CN101330718A (en) | Single/double mode hand-hold terminal and implementing method thereof | |
| EP1422864B1 (en) | Method of activating/deactivating encryption of data/voice in a mobile communication system | |
| CN111787496A (en) | Method and equipment for switching calls between mobile phones | |
| JP5332928B2 (en) | Wireless communication apparatus and wireless communication method | |
| CN109995621A (en) | Smart home device matches network method and smart home system | |
| Sun et al. | Design, implementation, and evaluation of Bluetooth security | |
| US7756083B2 (en) | Network access device, network connection establishing method, and mobile communication system using the same | |
| CN110999340A (en) | Near field communication device and method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20100512 Termination date: 20200501 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |