Nothing Special   »   [go: up one dir, main page]

WO2014201783A1 - Encryption and authentication method, system and terminal for ad hoc network - Google Patents

Encryption and authentication method, system and terminal for ad hoc network Download PDF

Info

Publication number
WO2014201783A1
WO2014201783A1 PCT/CN2013/084974 CN2013084974W WO2014201783A1 WO 2014201783 A1 WO2014201783 A1 WO 2014201783A1 CN 2013084974 W CN2013084974 W CN 2013084974W WO 2014201783 A1 WO2014201783 A1 WO 2014201783A1
Authority
WO
WIPO (PCT)
Prior art keywords
terminal
hoc network
information
access point
access
Prior art date
Application number
PCT/CN2013/084974
Other languages
French (fr)
Chinese (zh)
Inventor
孙爱芳
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2014201783A1 publication Critical patent/WO2014201783A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/068Authentication using credential vaults, e.g. password manager applications or one time password [OTP] applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W84/00Network topologies
    • H04W84/18Self-organising networks, e.g. ad-hoc networks or sensor networks

Definitions

  • the present invention relates to encryption authentication technology in an ad hoc network, and in particular, to an encryption authentication method, system and terminal for an ad hoc network. Background technique
  • the mode in which the multiple terminals work together is as follows: After the terminals are mutually authenticated, the terminals can form an ad hoc network, and one of the terminals in the ad hoc network is selected as the access point terminal by using the method of comparing the capability information of the terminal.
  • the access point terminal can assign an Internet Protocol (IP) address to each terminal, so that the terminals can communicate with each other through the IP address. Sharing between terminal information can be achieved through an ad hoc network.
  • the security of communication between terminals in the ad hoc network is not guaranteed, and if a new terminal requests to join an existing ad hoc network, there is currently no corresponding authentication method to authenticate the new terminal. Summary of the invention
  • the main purpose of the embodiments of the present invention is to provide an encryption authentication method, system, and terminal for an ad hoc network, which can ensure the security of the self-organizing network communication.
  • An encryption authentication method for an ad hoc network comprising: Generating a password of the ad hoc network according to all current terminal information in the ad hoc network, and notifying each terminal in the ad hoc network;
  • the service information is encrypted by using the password; when each terminal in the ad hoc network receives the service information, the service information is used by using the password. Decrypt.
  • the method further includes: when receiving the request of the terminal to access the ad hoc network, all the terminals in the ad hoc network authenticate the accessed terminal; after the authentication succeeds, the access The terminal accesses the ad hoc network.
  • the method further includes:
  • the current terminal information in the ad hoc network updates the password of the ad hoc network, and notifies the updated password in the ad hoc network.
  • the service information is encrypted by using the updated password; when each terminal in the ad hoc network receives the service information, the updated password is used to The business information is decrypted.
  • the method before the generating the password of the ad hoc network according to all the terminal information in the ad hoc network, the method further includes:
  • the terminal After receiving the ad hoc network request message sent by the other terminal, the terminal authenticates the other terminal through the wireless fidelity (WIFI) network or the Bluetooth network, and after the authentication succeeds, establishes with the other terminal. Connect and generate an ad hoc network.
  • WIFI wireless fidelity
  • the method further includes: determining, by the performance parameter of the terminal, a terminal as an access point terminal, and assigning, by the access point terminal, an IP address to all terminals of the ad hoc network.
  • the generating, according to all current terminal information in the ad hoc network, the secret of the ad hoc network Code including:
  • the access point terminal receives the terminal information sent by the non-access point terminal, and generates a password of the ad hoc network including the terminal information; where the terminal information includes at least one of the following information: Name, IP address, terminal identifier (ID, IDentity) 0
  • all the terminals in the ad hoc network authenticate the accessed terminal, including: acquiring terminal information of the accessed terminal, matching the accessed terminal information with the cached terminal information, and matching After the success, determining that the access terminal is successfully authenticated; after the matching fails, determining, according to the obtained terminal information, that the accessed terminal is a legal terminal, determining to authenticate the accessed terminal success.
  • An encryption authentication system for an ad hoc network comprising: an access point terminal and a non-access point terminal;
  • the access point terminal is configured to generate a password of the ad hoc network according to all current terminal information in the ad hoc network, and notify each non-access point terminal in the ad hoc network;
  • the service information is encrypted by using the password;
  • the service information is received, the service information is decrypted by using the password.
  • the non-access point terminal is configured to receive a password of the ad hoc network notified by the access point terminal; when the service information is sent, encrypt the service information by using the password; and receive the service The information is used to decrypt the service information using the password.
  • the system further includes: an access terminal;
  • the access terminal is configured to send a request for accessing the ad hoc network to the access point terminal or the non-access point terminal; the access point terminal and the non-access point After the terminal authenticates the access terminal, the terminal accesses the ad hoc network;
  • the access point terminal is further configured to: when receiving the request that the access terminal accesses the ad hoc network, authenticating the access terminal; and accessing the access terminal to the ad hoc network The request is pushed to the non-access point terminal;
  • the non-access point terminal is further configured to: when receiving the request of the access terminal to access the ad hoc network, authenticating the access terminal; and accessing the access terminal to the ad hoc group A request for the network is pushed to the access point terminal.
  • the access point terminal is further configured to: when the access terminal in the ad hoc network is deleted or the terminal exits, update the password of the ad hoc network according to the current terminal information in the ad hoc network, And notifying, by the updated password, each non-access point terminal in the ad hoc network; when transmitting the service information, encrypting the service information by using the updated password; and receiving the service information, using the update The subsequent password decrypts the service information;
  • the non-access point terminal is further configured to receive the updated password of the ad hoc network notified by the access point terminal; when transmitting the service information, encrypt the service information by using the updated password When the service information is received, the service information is decrypted by using the updated password.
  • the access point terminal is further configured to: after receiving the ad hoc network request message sent by the non-access point terminal, by using a WIFI network or a Bluetooth network, performing a check on the non-access point terminal And after the authentication succeeds, establishing a connection with the non-access point terminal and generating an ad hoc network;
  • the non-access point terminal is further configured to: after receiving the ad hoc network request message sent by the access point terminal by using a WIFI network or a Bluetooth network, authenticating the access point terminal; After the authentication succeeds, a connection is established with the access point terminal and an ad hoc network is generated.
  • the access point terminal is further configured to allocate an IP address to the access point terminal and all non-access point terminals of the ad hoc network.
  • the access point terminal is further configured to receive terminal information sent by the non-access point terminal, and generate a password of the ad hoc network including the terminal information; where the terminal information includes At least one of the following information: End User Name, IP Address, Terminal ID.
  • the access point terminal is further configured to acquire the terminal information of the access terminal. Matching the obtained terminal information with the cached terminal information. After the matching is successful, it is determined that the access terminal is successfully authenticated. After the matching fails, the access terminal is determined to be legal according to the obtained terminal information. When the terminal is determined, it is determined that the access terminal is successfully authenticated;
  • the non-access point terminal is further configured to acquire the terminal information of the access terminal, and the obtained terminal information is matched with the cached terminal information. After the matching is successful, it is determined that the access terminal is successfully authenticated. After the matching fails, when the access terminal is determined to be a legal terminal according to the obtained terminal information, it is determined that the access terminal is successfully authenticated.
  • An encryption authentication terminal of an ad hoc network comprising: a cryptographic unit, and an encryption and decryption unit;
  • the cryptographic unit is configured to: when the terminal determines to access the access point terminal, generate a password of the ad hoc network according to all current terminal information in the ad hoc network, and notify each terminal in the ad hoc network; Receiving, by the terminal, a password of the ad hoc network notified by the access point terminal when the terminal is determined to be a non-access point terminal;
  • the encryption and decryption unit is configured to encrypt the service information by using the password when transmitting the service information, and decrypt the service information by using the password when receiving the service information.
  • the terminal further includes: a first receiving unit and an authentication unit, where the first receiving unit is configured to receive a request for the access terminal to access the ad hoc network; the authentication unit is configured to The access terminal is authenticated, and the request for accessing the access terminal to the ad hoc network is pushed to other terminals of the ad hoc network.
  • the first receiving unit is configured to receive a request for the access terminal to access the ad hoc network
  • the authentication unit is configured to The access terminal is authenticated, and the request for accessing the access terminal to the ad hoc network is pushed to other terminals of the ad hoc network.
  • the terminal further includes: an update unit, a sending unit, and a second receiving unit;
  • the updating unit configured to: when the terminal determines to access the access point terminal, determine that the access terminal in the ad hoc network or the terminal exits, update the current terminal information according to the current terminal information in the ad hoc network Self-organizing network password;
  • the sending unit is configured to notify the non-access point terminal in the ad hoc network of the updated password;
  • the second receiving unit is configured to: when the terminal determines to be a non-access point terminal, receive the updated password of the ad hoc network notified by the access point terminal;
  • the encryption and decryption unit is further configured to encrypt the service information by using the updated password when transmitting the service information, and decrypt the service information by using the updated password when receiving the service information.
  • the terminal further includes: a third receiving unit and an establishing unit, where the third receiving unit is configured to receive an ad hoc network request message sent by the other terminal by using a WIFI network or a Bluetooth network;
  • the authentication unit is further configured to perform authentication on the other terminal
  • the establishing unit is configured to establish a connection with the other terminal and generate an ad hoc network after the authentication succeeds.
  • the terminal further includes an allocating unit configured to allocate an IP address to all terminals of the ad hoc network when the terminal determines to access the access point terminal.
  • an allocating unit configured to allocate an IP address to all terminals of the ad hoc network when the terminal determines to access the access point terminal.
  • the cryptographic unit includes: a receiving subunit, a sending subunit, and a generating subunit; wherein
  • the receiving subunit is configured to: when the terminal determines to access the access point terminal, receive terminal information sent by the non-access point terminal; and generate a password of the ad hoc network including the terminal information;
  • the terminal information includes at least one of the following information: a terminal user name, an IP address, and a terminal ID;
  • the sending subunit is configured to send terminal information to the access point terminal when the terminal determines to be a non-access point terminal;
  • the authentication unit includes: acquiring a subunit, matching a subunit, and determining a sub-order Yuan; among them,
  • the acquiring subunit is configured to acquire terminal information of the access terminal
  • the matching subunit is configured to match the obtained terminal information with the cached terminal information
  • the determining subunit is configured to determine that the access terminal is successfully authenticated after the matching subunit is successfully matched; and after the matching fails, determining, according to the obtained terminal information, that the access terminal is a legal terminal And determining that the access terminal is successfully authenticated.
  • the encryption authentication method, system, and terminal of the ad hoc network provided by the embodiment of the present invention generate a password of the ad hoc network according to all current terminal information in the ad hoc network, and notify each terminal in the ad hoc network;
  • the service information is encrypted by using the password; when each terminal in the ad hoc network receives the service information, the service information is used by using the password. Decrypt. In this way, the service information of the communication in the ad hoc network can be encrypted to ensure the security of the data.
  • all the terminals in the ad hoc network access the terminal. After the authentication succeeds, the accessed terminal accesses the ad hoc network; thus, all terminals in the ad hoc network can authenticate other terminals other than the ad hoc network, thereby ensuring joining. The security of the terminal in the self-organizing network.
  • FIG. 1 is a schematic flowchart of a method for implementing an encryption authentication method for an ad hoc network according to an embodiment of the present invention
  • FIG. 2 is a schematic structural diagram of a structure of an encryption authentication system for an ad hoc network according to an embodiment of the present invention
  • Schematic diagram of the structure of the encryption authentication terminal
  • An embodiment of the present invention provides an encryption authentication method for an ad hoc network. As shown in FIG. 1, the method includes the following steps:
  • Step 101 Generate a password of the ad hoc network according to all current terminal information in the ad hoc network, and notify each terminal in the ad hoc network.
  • the method further includes: after receiving the ad hoc network request message sent by the other terminal through the WIFI network or the Bluetooth network, the terminal authenticates the other terminal; After the authentication succeeds, a connection is established with the other terminals and an ad hoc network is generated.
  • the performance parameter of the terminal determines a terminal as an access point terminal, and the access point terminal allocates an IP address to all terminals of the ad hoc network.
  • the performance parameter may be a processing capability of a central processing unit (CPU) of the terminal, a memory size, and the like.
  • CPU central processing unit
  • the generating the password of the ad hoc network according to the terminal information in the current ad hoc network includes:
  • the access point terminal receives the terminal information sent by the non-access point terminal; generates a password of the ad hoc network including the terminal information; wherein the terminal information includes at least one of the following information: Name, IP address, terminal ID.
  • the non-access point terminal will be the terminal 2, 3, 4, the access point terminal is the terminal 1; the terminal 2, 3, 4 will send its own terminal information to the terminal 1; the terminal 1 receives the terminal 2 After the terminal information is sent, the password of the terminal information is generated.
  • the format of the password includes, but is not limited to, the terminal user name, the IP address, and the terminal ID.
  • Terminal 2 Terminal 3
  • Terminal 4 Terminal 1
  • Terminal User Name Name2 Name3
  • Name4 Namel IP address 192.168.0.2 192.168.0.3 192.168.0.4 192.168.0.1
  • the password of the ad hoc network that accesses the access node terminal with terminal 1 is:
  • SSID Service Set Identifier
  • the SSID includes user information such as a service name and device attribute information input by the user.
  • the CPU, memory, and disk space of a device may be represented by numbers, and the numbers may be set by a user or a developer, or may be obtained by using a standard value.
  • Step 102 When each terminal in the ad hoc network sends service information, encrypt the service information by using the password; when each terminal in the ad hoc network receives the service information, use the password pair The business information is decrypted.
  • the method further includes: when receiving the request of the terminal to access the ad hoc network, all the terminals in the ad hoc network authenticate the accessed terminal; after the authentication succeeds, the access The terminal accesses the ad hoc network.
  • the method further includes: when determining an access terminal in the ad hoc network or having a terminal exiting, updating a password of the ad hoc network according to current terminal information in the ad hoc network, and updating the Notifying each terminal in the ad hoc network by a password;
  • the service information is encrypted by using the updated password; when each terminal in the ad hoc network receives the service information, the updated password is used to The business information is decrypted.
  • the terminal 5 is a terminal other than the ad hoc network.
  • the terminal 5 searches for the terminals 2, 3, and 4 in the ad hoc network through WIFI or Bluetooth, the terminal 5 sends a join request message to the terminals 2, 3, and 4; 2, 3, 4 push the join request message to the terminal 1; the terminal 1, 2, 3, 4 to the terminal 5 to verify.
  • the terminal 5 searches for the terminal 1 in the ad hoc network through WIFI or Bluetooth, it sends a join request message to the terminal 1; the terminal 1 pushes the join request message to the terminals 2, 3, 4; the terminals 1, 2 , 3, 4 authenticate the terminal 5.
  • all the terminals in the ad hoc network authenticate the accessed terminal, including: acquiring terminal information of the accessed terminal;
  • the terminal information needs to be stored, so that when the terminal information sent by the terminal is received again, the terminal information is directly matched by the stored terminal information to determine that the terminal is a legal terminal. , and then its authentication is successful.
  • the updating the password of the ad hoc network according to the terminal information in the current ad hoc network includes:
  • the access point terminal receives terminal information sent by the accessed terminal, and generates a password of the ad hoc network including the terminal information and terminal information of other non-access point terminals in the ad hoc network.
  • the terminal 5 is an access terminal, and after the terminal 5 is added to the ad hoc network, there are terminals 1, 2, 3, 4, and 5 in the self-organizing network, where the terminal 1 is an access point terminal, and the terminals 2, 3, and 4 are 5 is a non-access point terminal, and the password of the updated ad hoc network is:
  • the embodiment of the present invention further provides an encryption authentication system for the ad hoc network.
  • the system includes: an access point terminal 21 and a non-access access. Point terminal 22; wherein
  • the access point terminal 21 is configured to generate a password of the ad hoc network according to all current terminal information in the ad hoc network, and notify each non-access point terminal 22 in the ad hoc network;
  • the service information is sent, the service information is encrypted by using the password;
  • the service information is received, the service information is decrypted by using the password;
  • the non-access point terminal 22 is configured to receive the password of the ad hoc network notified by the access point terminal 21; when the service information is sent, encrypt the service information by using the password; When the service information is obtained, the service information is decrypted by using the password.
  • the system further includes: an access terminal 23;
  • the access terminal 23 is configured to send a request for accessing the ad hoc network to the access point terminal 21 or the non-access point terminal 22; the access point terminal 21 and the non-access After accessing the access terminal terminal 22 to authenticate the access terminal, accessing the ad hoc network;
  • the access point terminal 21 is further configured to: when receiving the request of the access terminal 23 to access the ad hoc network, authenticating the access terminal 23; and accessing the access terminal 23 The request from the networking is pushed to the non-access point terminal 22;
  • the non-access point terminal 22 is further configured to: when receiving the request of the access terminal 23 to access the ad hoc network, authenticating the access terminal 23; and accessing the access terminal 23 The request of the ad hoc network is pushed to the access point terminal 21.
  • the access point terminal 21 is further configured to: when the access terminal in the ad hoc network is deleted or the terminal exits, update the password of the ad hoc network according to the current terminal information in the ad hoc network. And notifying the non-access point terminal 22 in the ad hoc network of the updated password; when transmitting the service information, encrypting the service information by using the updated password; when receiving the service information, Decrypting the service information by using the updated password;
  • the non-access point terminal 22 is further configured to receive the updated password of the ad hoc network notified by the access point terminal 21; when the service information is sent, use the updated password to the service information. Encryption is performed; when the service information is received, the service information is decrypted by using the updated password.
  • the access point terminal 21 is further configured to pass through a WIFI network or a Bluetooth network.
  • the network After receiving the ad hoc network request message sent by the non-access point terminal 22, the network authenticates the non-access point terminal 22; and after the authentication succeeds, the non-access point is The terminal 22 establishes a connection and generates an ad hoc network;
  • the non-access point terminal 22 is further configured to: after receiving the ad hoc network request message sent by the access point terminal 21 through the WIFI network or the Bluetooth network, authenticating the access point terminal 21 And after the authentication succeeds, establish a connection with the access point terminal 22 and generate an ad hoc network.
  • the access point terminal 21 is further configured to allocate an IP address to the access point terminal 21 and all non-access point terminals 22 of the ad hoc network.
  • the access point terminal 21 is further configured to receive terminal information sent by the non-access point terminal 22, and generate a password of the ad hoc network including the terminal information, where the terminal
  • the information includes at least one of the following information: terminal username, IP address, terminal ID.
  • the access point terminal 21 is further configured to acquire the terminal information of the access terminal 23; the obtained terminal information is matched with the cached terminal information, and after the matching is successful, the access is determined to be the access
  • the terminal 23 succeeds in authenticating; after the matching fails, when the access terminal 23 is determined to be a legal terminal according to the obtained terminal information, it is determined that the access terminal 23 is successfully authenticated;
  • the non-access point terminal 22 is further configured to acquire the terminal information of the access terminal 23, and match the acquired terminal information with the cached terminal information, and after the matching is successful, determine that the access terminal 23 is After the matching succeeds, when the access terminal 23 is determined to be a legal terminal according to the acquired terminal information, it is determined that the access terminal 23 is successfully authenticated.
  • the implementation functions of the devices of the cipher authentication system of the ad hoc network shown in FIG. 2 can be understood by referring to the related description of the cipher authentication method of the ad hoc network.
  • the function of the device of the cryptographic authentication system of the ad hoc network shown in FIG. 2 can be implemented by a program running on the processor, or can be realized by a specific logic circuit.
  • the access point terminal 21 and the non-access point terminal 22 in the encryption authentication system of the ad hoc network can be implemented by terminal devices such as a smart phone, a computer, and a tablet computer.
  • the embodiment of the present invention further provides an encryption authentication terminal of the ad hoc network, as shown in FIG. 3, the terminal includes: a cryptographic unit 31 and an encryption and decryption unit 32; among them,
  • the cryptographic unit 31 is configured to: when the terminal determines to access the access point terminal, generate a password of the ad hoc network according to all current terminal information in the ad hoc network, and notify each terminal in the ad hoc network Receiving, by the terminal, a password of the ad hoc network notified by the access point terminal when the terminal is determined to be a non-access point terminal;
  • the encryption and decryption unit 32 is configured to encrypt the service information by using the password when transmitting the service information, and decrypt the service information by using the password when receiving the service information.
  • the terminal further includes: a first receiving unit 33 and an authentication unit 34; wherein the first receiving unit 33 is configured to receive a request for the access terminal to access the ad hoc network; 34.
  • the device is configured to authenticate the access terminal, and push the request for accessing the access terminal to the ad hoc network to be pushed to another terminal of the ad hoc network.
  • the terminal further includes: an update unit 35, a sending unit 36, and a second receiving unit 37;
  • the updating unit 35 is configured to: when the terminal determines to access the access point terminal, determine that the access terminal in the ad hoc network or the terminal exits, update the location according to the current terminal information in the ad hoc network The password of the self-organizing network;
  • the sending unit 36 is configured to notify the non-access point terminal in the ad hoc network of the updated password
  • the second receiving unit 37 is configured to: when the terminal determines to be a non-access point terminal, receive the updated password of the ad hoc network notified by the access point terminal;
  • the encryption/decryption unit 32 is further configured to encrypt the service information by using the updated password when transmitting the service information, and decrypt the service information by using the updated password when receiving the service information.
  • the terminal further includes: a third receiving unit 38 and an establishing unit 39; wherein the third receiving unit 38 is configured to receive the ad hoc network request message sent by the other terminal by using a WIFI network or a Bluetooth network. ;
  • the authentication unit 34 is further configured to perform authentication on the other terminal.
  • the establishing unit 39 is configured to establish a connection with the other terminal and generate an ad hoc network after the authentication succeeds.
  • the terminal further includes an allocating unit 310, configured to allocate an IP address to all terminals of the ad hoc network when the terminal determines to access the access point terminal.
  • an allocating unit 310 configured to allocate an IP address to all terminals of the ad hoc network when the terminal determines to access the access point terminal.
  • the cryptographic unit 31 includes: a receiving subunit 311, a transmitting subunit 312, and a generating subunit 313;
  • the receiving subunit 311 is configured to: when the terminal determines to access the access point terminal, receive terminal information sent by the non-access point terminal; generate a password of the ad hoc network including the terminal information;
  • the terminal information includes at least one of the following information: a terminal user name, an IP address, and a terminal ID;
  • the sending subunit 312 is configured to send terminal information to the access point terminal when the terminal determines to be a non-access point terminal;
  • the generating subunit 313 is configured to generate a password of the ad hoc network including the terminal information.
  • the authentication unit 34 includes: an obtaining subunit 341, a matching subunit 342, and a determining subunit 343;
  • the obtaining subunit 341 is configured to acquire terminal information of the access terminal.
  • the matching sub-unit 342 is configured to match the acquired terminal information with the cached terminal information.
  • the determining sub-unit 343 is configured to determine that the access terminal is successfully authenticated after the matching sub-unit 342 is successfully matched. After the matching fails, determining, according to the acquired terminal information, that the access terminal is legal. When the terminal is determined, it is determined that the access terminal is successfully authenticated.
  • each unit and its subunits in the cryptographic authentication terminal of the ad hoc network shown in FIG. 3 can be understood by referring to the cipher authentication method and system related description of the aforementioned ad hoc network.
  • the functions of each unit and its subunits in the cryptographic authentication terminal of the ad hoc network shown in FIG. 3 can be implemented by a program running on a processor, or can be implemented by a specific logic circuit.
  • the cryptographic unit 31, the encryption and decryption unit 32, the first receiving unit 33, the authentication unit 34, the updating unit 35, the sending unit 36, the second receiving unit 37, the third receiving unit 38, and the establishment in the terminal are established.
  • the unit 39 and the allocation unit 310 can be implemented by a central processing unit (CPU) in the terminal, or a digital signal processor (DSP), or a Field-Programmable Gate Array (FPGA).
  • CPU central processing unit
  • DSP digital signal processor
  • FPGA Field-Programmable Gate Array

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Disclosed in the present invention is an encryption and authentication method for an ad hoc network, comprising: generating a password of the ad hoc network according to the information of all the current terminals in the ad hoc network and notifying each terminal in the ad hoc network of the password; when each terminal in the ad hoc network transmits service information, encrypting the service information using the password; and when each terminal in the ad hoc network receives service information, decrypting the service information using the password. Simultaneously, further disclosed in the present invention are an encryption and authentication system and terminal for the ad hoc network. The communication security of the ad hoc network can be ensured by adopting the technical solution of the present invention.

Description

一种自组网的加密鉴权方法、 系统及终端 技术领域  Encryption authentication method, system and terminal for self-organizing network
本发明涉及自组网中的加密鉴权技术, 尤其涉及一种自组网的加密鉴 权方法、 系统及终端。 背景技术  The present invention relates to encryption authentication technology in an ad hoc network, and in particular, to an encryption authentication method, system and terminal for an ad hoc network. Background technique
随着信息技术发展, 以及物联网、 泛在网等新型网络的推广, 人们生 活、 工作的空间中必将会涌现出越来越多的终端设备。 为了能充分利用用 户周边环境的多种终端, 为用户提供实时、 高效、 高质量的服务, 让多终 端协同工作共同提供 务已成为一种需求。  With the development of information technology and the promotion of new types of networks such as the Internet of Things and the ubiquitous network, more and more terminal devices will emerge in the space where people live and work. In order to make full use of the various terminals in the user's surrounding environment and provide users with real-time, efficient and high-quality services, it has become a requirement for multi-terminals to work together to provide services.
多终端间安全的进行信息交互是多终端协同工作的前提。 目前, 多终 端协同工作的模式为: 终端间互相通过鉴权后可以组成一个自组网, 并通 过使用对比终端能力信息的方式选择自组网中的其中一个终端作为访问接 入点终端, 通过访问接入点终端可以给每个终端分配一个因特网协议( IP, Internet Protocol )地址, 如此, 终端间可以通过 IP地址互相通信。 通过自 组网可以实现终端信息之间的共享。 但是, 自组网中的终端之间通讯的安 全没有得到保障, 并且, 如果新的终端请求加入已有的自组网时, 目前还 没有相应的鉴权方法来对新的终端进行鉴权。 发明内容  The secure interaction of information between multiple terminals is a prerequisite for multi-terminal collaboration. At present, the mode in which the multiple terminals work together is as follows: After the terminals are mutually authenticated, the terminals can form an ad hoc network, and one of the terminals in the ad hoc network is selected as the access point terminal by using the method of comparing the capability information of the terminal. The access point terminal can assign an Internet Protocol (IP) address to each terminal, so that the terminals can communicate with each other through the IP address. Sharing between terminal information can be achieved through an ad hoc network. However, the security of communication between terminals in the ad hoc network is not guaranteed, and if a new terminal requests to join an existing ad hoc network, there is currently no corresponding authentication method to authenticate the new terminal. Summary of the invention
有鉴于此, 本发明实施例的主要目的在于提供一种自组网的加密鉴权 方法、 系统及终端, 能够保障自组网通讯的安全性。  In view of this, the main purpose of the embodiments of the present invention is to provide an encryption authentication method, system, and terminal for an ad hoc network, which can ensure the security of the self-organizing network communication.
为达到上述目的, 本发明实施例的技术方案是这样实现的:  To achieve the above objective, the technical solution of the embodiment of the present invention is implemented as follows:
一种自组网的加密鉴权方法, 该方法包括: 根据自组网中当前所有的终端信息生成所述自组网的密码并通知所述 自组网中的各终端; An encryption authentication method for an ad hoc network, the method comprising: Generating a password of the ad hoc network according to all current terminal information in the ad hoc network, and notifying each terminal in the ad hoc network;
所述自组网中的各终端发送业务信息时, 利用所述密码对所述业务信 息进行加密; 所述自组网中的各终端接收到业务信息时, 利用所述密码对 所述业务信息进行解密。  When the terminal in the ad hoc network sends the service information, the service information is encrypted by using the password; when each terminal in the ad hoc network receives the service information, the service information is used by using the password. Decrypt.
优选地, 所述方法还包括: 接收到终端接入所述自组网的请求时, 所 述自组网中的所有终端对接入的终端进行鉴权; 鉴权成功后, 所述接入的 终端接入所述自组网。  Preferably, the method further includes: when receiving the request of the terminal to access the ad hoc network, all the terminals in the ad hoc network authenticate the accessed terminal; after the authentication succeeds, the access The terminal accesses the ad hoc network.
优选地, 所述方法还包括:  Preferably, the method further includes:
确定所述自组网中接入终端或有终端退出时, 居所述自组网中当前 的终端信息更新所述自组网的密码, 并将更新后的密码通知所述自组网中 的各终端;  When the access terminal in the ad hoc network is deleted or the terminal exits, the current terminal information in the ad hoc network updates the password of the ad hoc network, and notifies the updated password in the ad hoc network. Each terminal;
所述自组网中的各终端发送业务信息时, 利用更新后的密码对所述业 务信息进行加密; 所述自组网中的各终端接收到业务信息时, 利用更新后 的密码对所述业务信息进行解密。  When the terminal in the ad hoc network sends the service information, the service information is encrypted by using the updated password; when each terminal in the ad hoc network receives the service information, the updated password is used to The business information is decrypted.
优选地, 所述根据自组网中当前所有的终端信息生成所述自组网的密 码之前, 所述方法还包括:  Preferably, before the generating the password of the ad hoc network according to all the terminal information in the ad hoc network, the method further includes:
终端通过无线保真 ( WIFI, Wireless Fidelity ) 网络或蓝牙网络接收到 其他终端发送的自组网请求消息后, 对所述其他终端进行鉴权; 并在鉴权 成功后, 与所述其他终端建立连接并生成自组网。  After receiving the ad hoc network request message sent by the other terminal, the terminal authenticates the other terminal through the wireless fidelity (WIFI) network or the Bluetooth network, and after the authentication succeeds, establishes with the other terminal. Connect and generate an ad hoc network.
优选地, 所述方法还包括: 终端的性能参数确定一个终端作为访问接入点终端, 并由所述访问接入点 终端为所述自组网的所有终端分配 IP地址。  Preferably, the method further includes: determining, by the performance parameter of the terminal, a terminal as an access point terminal, and assigning, by the access point terminal, an IP address to all terminals of the ad hoc network.
优选地, 所述根据自组网中当前所有的终端信息生成所述自组网的密 码, 包括: Preferably, the generating, according to all current terminal information in the ad hoc network, the secret of the ad hoc network Code, including:
所述访问接入点终端接收非访问接入点终端发送的终端信息, 生成包 含所述终端信息的所述自组网的密码; 其中, 所述终端信息包括以下信息 的至少一种: 终端用户名、 IP地址、 终端标识(ID, IDentity )0 The access point terminal receives the terminal information sent by the non-access point terminal, and generates a password of the ad hoc network including the terminal information; where the terminal information includes at least one of the following information: Name, IP address, terminal identifier (ID, IDentity) 0
优选地, 所述自组网中的所有终端对接入的终端进行鉴权, 包括: 获取所述接入的终端的终端信息, 将接入的终端信息与已緩存的终端 信息进行匹配, 匹配成功后, 确定为对所述接入的终端鉴权成功; 匹配失 败后, 根据所获取的终端信息确定出所述接入的终端为合法终端时, 确定 为对所述接入的终端鉴权成功。  Preferably, all the terminals in the ad hoc network authenticate the accessed terminal, including: acquiring terminal information of the accessed terminal, matching the accessed terminal information with the cached terminal information, and matching After the success, determining that the access terminal is successfully authenticated; after the matching fails, determining, according to the obtained terminal information, that the accessed terminal is a legal terminal, determining to authenticate the accessed terminal success.
一种自组网的加密鉴权系统, 该系统包括: 访问接入点终端以及非访 问接入点终端; 其中,  An encryption authentication system for an ad hoc network, the system comprising: an access point terminal and a non-access point terminal; wherein
所述访问接入点终端, 配置为根据自组网中当前所有的终端信息生成 所述自组网的密码并通知所述自组网中的各所述非访问接入点终端; 在发 送业务信息时, 利用所述密码对所述业务信息进行加密; 接收到业务信息 时, 利用所述密码对所述业务信息进行解密。  The access point terminal is configured to generate a password of the ad hoc network according to all current terminal information in the ad hoc network, and notify each non-access point terminal in the ad hoc network; When the information is used, the service information is encrypted by using the password; when the service information is received, the service information is decrypted by using the password.
所述非访问接入点终端, 配置为接收所述访问接入点终端通知的所述 自组网的密码; 在发送业务信息时, 利用所述密码对所述业务信息进行加 密; 接收到业务信息时, 利用所述密码对所述业务信息进行解密。  The non-access point terminal is configured to receive a password of the ad hoc network notified by the access point terminal; when the service information is sent, encrypt the service information by using the password; and receive the service The information is used to decrypt the service information using the password.
优选地, 所述系统还包括: 访问终端;  Preferably, the system further includes: an access terminal;
所述访问终端, 配置为发送接入所述自组网的请求至所述访问接入点 终端或所述非访问接入点终端; 所述访问接入点终端及所述非访问接入点 终端对所述访问终端鉴权功后, 接入所述自组网;  The access terminal is configured to send a request for accessing the ad hoc network to the access point terminal or the non-access point terminal; the access point terminal and the non-access point After the terminal authenticates the access terminal, the terminal accesses the ad hoc network;
所述访问接入点终端, 还配置为收到所述访问终端接入所述自组网的 请求时, 对所述访问终端进行鉴权; 并将所述访问终端接入所述自组网的 请求推送至所述非访问接入点终端; 所述非访问接入点终端, 还配置为收到所述访问终端接入所述自组网 的请求时, 对所述访问终端进行鉴权; 并将所述访问终端接入所述自组网 的请求推送至所述访问接入点终端。 The access point terminal is further configured to: when receiving the request that the access terminal accesses the ad hoc network, authenticating the access terminal; and accessing the access terminal to the ad hoc network The request is pushed to the non-access point terminal; The non-access point terminal is further configured to: when receiving the request of the access terminal to access the ad hoc network, authenticating the access terminal; and accessing the access terminal to the ad hoc group A request for the network is pushed to the access point terminal.
优选地, 所述访问接入点终端, 还配置为确定所述自组网中接入终端 或有终端退出时, 根据所述自组网中当前的终端信息更新所述自组网的密 码, 并将更新后的密码通知所述自组网中的各所述非访问接入点终端; 发 送业务信息时, 利用更新后的密码对所述业务信息进行加密; 接收到业务 信息时, 利用更新后的密码对所述业务信息进行解密;  Preferably, the access point terminal is further configured to: when the access terminal in the ad hoc network is deleted or the terminal exits, update the password of the ad hoc network according to the current terminal information in the ad hoc network, And notifying, by the updated password, each non-access point terminal in the ad hoc network; when transmitting the service information, encrypting the service information by using the updated password; and receiving the service information, using the update The subsequent password decrypts the service information;
所述非访问接入点终端, 还配置为接收所述访问接入点终端通知的所 述自组网更新后的密码; 在发送业务信息时, 利用更新后的密码对所述业 务信息进行加密; 接收到业务信息时, 利用更新后的密码对所述业务信息 进行解密。  The non-access point terminal is further configured to receive the updated password of the ad hoc network notified by the access point terminal; when transmitting the service information, encrypt the service information by using the updated password When the service information is received, the service information is decrypted by using the updated password.
优选地, 所述访问接入点终端, 还配置为通过 WIFI网络或蓝牙网络接 收到所述非访问接入点终端发送的自组网请求消息后, 对所述非访问接入 点终端进行鉴权; 并在鉴权成功后, 与所述非访问接入点终端建立连接并 生成自组网;  Preferably, the access point terminal is further configured to: after receiving the ad hoc network request message sent by the non-access point terminal, by using a WIFI network or a Bluetooth network, performing a check on the non-access point terminal And after the authentication succeeds, establishing a connection with the non-access point terminal and generating an ad hoc network;
所述非访问接入点终端,还配置为通过 WIFI网络或蓝牙网络接收到所 述访问接入点终端发送的自组网请求消息后, 对所述访问接入点终端进行 鉴权; 并在鉴权成功后, 与所述访问接入点终端建立连接并生成自组网。  The non-access point terminal is further configured to: after receiving the ad hoc network request message sent by the access point terminal by using a WIFI network or a Bluetooth network, authenticating the access point terminal; After the authentication succeeds, a connection is established with the access point terminal and an ad hoc network is generated.
优选地, 所述访问接入点终端, 还配置为为所述访问接入点终端以及 所述自组网的所有非访问接入点终端分配 IP地址。  Preferably, the access point terminal is further configured to allocate an IP address to the access point terminal and all non-access point terminals of the ad hoc network.
优选地, 所述访问接入点终端, 还配置为接收所述非访问接入点终端 发送的终端信息; 生成包含所述终端信息的所述自组网的密码; 其中, 所 述终端信息包括以下信息的至少一种: 终端用户名、 IP地址、 终端 ID。  Preferably, the access point terminal is further configured to receive terminal information sent by the non-access point terminal, and generate a password of the ad hoc network including the terminal information; where the terminal information includes At least one of the following information: End User Name, IP Address, Terminal ID.
优选地, 所述访问接入点终端, 还配置为获取所述访问终端的终端信 息; 将所获取的终端信息与已緩存的终端信息进行匹配, 匹配成功后, 确 定为对所述访问终端鉴权成功; 匹配失败后, 根据所获取的终端信息确定 出所述访问终端为合法终端时, 确定为对所述访问终端鉴权成功; Preferably, the access point terminal is further configured to acquire the terminal information of the access terminal. Matching the obtained terminal information with the cached terminal information. After the matching is successful, it is determined that the access terminal is successfully authenticated. After the matching fails, the access terminal is determined to be legal according to the obtained terminal information. When the terminal is determined, it is determined that the access terminal is successfully authenticated;
所述非访问接入点终端, 还配置为获取所述访问终端的终端信息; 将 所获取的终端信息与已緩存的终端信息进行匹配, 匹配成功后, 确定为对 所述访问终端鉴权成功; 匹配失败后, 根据所获取的终端信息确定出所述 访问终端为合法终端时, 确定为对所述访问终端鉴权成功。  The non-access point terminal is further configured to acquire the terminal information of the access terminal, and the obtained terminal information is matched with the cached terminal information. After the matching is successful, it is determined that the access terminal is successfully authenticated. After the matching fails, when the access terminal is determined to be a legal terminal according to the obtained terminal information, it is determined that the access terminal is successfully authenticated.
一种自组网的加密鉴权终端, 该终端包括: 密码单元、 以及加密解密 单元; 其中,  An encryption authentication terminal of an ad hoc network, the terminal comprising: a cryptographic unit, and an encryption and decryption unit; wherein
所述密码单元, 配置为在所述终端确定为访问接入点终端时, 根据自 组网中当前所有的终端信息生成所述自组网的密码并通知所述自组网中的 各终端; 在所述终端确定为非访问接入点终端时, 接收所述访问接入点终 端通知的所述自组网的密码;  The cryptographic unit is configured to: when the terminal determines to access the access point terminal, generate a password of the ad hoc network according to all current terminal information in the ad hoc network, and notify each terminal in the ad hoc network; Receiving, by the terminal, a password of the ad hoc network notified by the access point terminal when the terminal is determined to be a non-access point terminal;
所述加密解密单元, 配置为在发送业务信息时, 利用所述密码对所述 业务信息进行加密; 接收到业务信息时, 利用所述密码对所述业务信息进 行解密。  The encryption and decryption unit is configured to encrypt the service information by using the password when transmitting the service information, and decrypt the service information by using the password when receiving the service information.
优选地, 所述终端还包括: 第一接收单元以及鉴权单元; 其中, 所述第一接收单元, 配置为接收访问终端接入所述自组网的请求; 所述鉴权单元, 配置为对所述访问终端进行鉴权, 并将所述访问终端 接入所述自组网的请求推送至所述自组网的其它终端。  Preferably, the terminal further includes: a first receiving unit and an authentication unit, where the first receiving unit is configured to receive a request for the access terminal to access the ad hoc network; the authentication unit is configured to The access terminal is authenticated, and the request for accessing the access terminal to the ad hoc network is pushed to other terminals of the ad hoc network.
优选地, 所述终端还包括: 更新单元、 发送单元以及第二接收单元; 其中,  Preferably, the terminal further includes: an update unit, a sending unit, and a second receiving unit;
所述更新单元, 配置为在所述终端确定为访问接入点终端时, 确定所 述自组网中接入终端或有终端退出时, 根据所述自组网中当前的终端信息 更新所述自组网的密码; 所述发送单元, 配置为将更新后的密码通知所述自组网中的各所述非 访问接入点终端; The updating unit, configured to: when the terminal determines to access the access point terminal, determine that the access terminal in the ad hoc network or the terminal exits, update the current terminal information according to the current terminal information in the ad hoc network Self-organizing network password; The sending unit is configured to notify the non-access point terminal in the ad hoc network of the updated password;
所述第二接收单元, 配置为在所述终端确定为非访问接入点终端时, 接收所述访问接入点终端通知的更新后的所述自组网的密码;  The second receiving unit is configured to: when the terminal determines to be a non-access point terminal, receive the updated password of the ad hoc network notified by the access point terminal;
所述加密解密单元, 还配置为在发送业务信息时, 利用更新后的密码 对所述业务信息进行加密; 接收到业务信息时, 利用更新后的密码对所述 业务信息进行解密。  The encryption and decryption unit is further configured to encrypt the service information by using the updated password when transmitting the service information, and decrypt the service information by using the updated password when receiving the service information.
优选地, 所述终端还包括: 第三接收单元以及建立单元; 其中, 所述第三接收单元,配置为通过 WIFI网络或蓝牙网络接收到所述其它 终端发送的自组网请求消息;  Preferably, the terminal further includes: a third receiving unit and an establishing unit, where the third receiving unit is configured to receive an ad hoc network request message sent by the other terminal by using a WIFI network or a Bluetooth network;
所述鉴权单元, 还配置为对所述其它终端进行鉴权;  The authentication unit is further configured to perform authentication on the other terminal;
所述建立单元, 配置为在鉴权成功后, 与所述其它终端建立连接并生 成自组网。  The establishing unit is configured to establish a connection with the other terminal and generate an ad hoc network after the authentication succeeds.
优选地, 所述终端还包括分配单元, 配置为在所述终端确定为访问接 入点终端时, 为所述自组网的所有终端分配 IP地址。  Preferably, the terminal further includes an allocating unit configured to allocate an IP address to all terminals of the ad hoc network when the terminal determines to access the access point terminal.
优选地, 所述密码单元包括: 接收子单元、 发送子单元以及生成子单 元; 其中,  Preferably, the cryptographic unit includes: a receiving subunit, a sending subunit, and a generating subunit; wherein
所述接收子单元, 配置为在所述终端确定为访问接入点终端时, 接收 非访问接入点终端发送的终端信息; 生成包含所述终端信息的所述自组网 的密码; 其中, 所述终端信息包括以下信息的至少一种: 终端用户名、 IP 地址、 终端 ID;  The receiving subunit is configured to: when the terminal determines to access the access point terminal, receive terminal information sent by the non-access point terminal; and generate a password of the ad hoc network including the terminal information; The terminal information includes at least one of the following information: a terminal user name, an IP address, and a terminal ID;
所述发送子单元, 配置为在所述终端确定为非访问接入点终端时, 发 送终端信息至所述访问接入点终端;  The sending subunit is configured to send terminal information to the access point terminal when the terminal determines to be a non-access point terminal;
生成子单元, 配置为生成包含所述终端信息的所述自组网的密码。 优选地, 所述鉴权单元包括: 获取子单元、 匹配子单元以及确定子单 元; 其中, Generating a subunit, configured to generate a password of the ad hoc network including the terminal information. Preferably, the authentication unit includes: acquiring a subunit, matching a subunit, and determining a sub-order Yuan; among them,
所述获取子单元, 配置为获取访问终端的终端信息;  The acquiring subunit is configured to acquire terminal information of the access terminal;
所述匹配子单元, 配置为将所获取的终端信息与已緩存的终端信息进 行匹配;  The matching subunit is configured to match the obtained terminal information with the cached terminal information;
所述确定子单元, 配置为在在所述匹配子单元匹配成功后, 确定为对 所述访问终端鉴权成功; 匹配失败后, 根据所获取的终端信息确定出所述 访问终端为合法终端时, 确定为对所述访问终端鉴权成功。  The determining subunit is configured to determine that the access terminal is successfully authenticated after the matching subunit is successfully matched; and after the matching fails, determining, according to the obtained terminal information, that the access terminal is a legal terminal And determining that the access terminal is successfully authenticated.
本发明实施例提供的自组网的加密鉴权方法、 系统及终端, 根据自组 网中当前所有的终端信息生成所述自组网的密码并通知所述自组网中的各 终端;  The encryption authentication method, system, and terminal of the ad hoc network provided by the embodiment of the present invention generate a password of the ad hoc network according to all current terminal information in the ad hoc network, and notify each terminal in the ad hoc network;
所述自组网中的各终端发送业务信息时, 利用所述密码对所述业务信 息进行加密; 所述自组网中的各终端接收到业务信息时, 利用所述密码对 所述业务信息进行解密。 如此, 可以对自组网中通讯的业务信息进行加密, 保障了数据的安全性; 接收到终端接入所述自组网的请求时, 所述自组网 中的所有终端对接入的终端进行鉴权; 鉴权成功后, 所述接入的终端接入 所述自组网; 如此, 可以通过自组网中的所有终端对自组网以外的其他终 端进行鉴权, 进而确保了加入自组网中的终端的安全性。 附图说明  When the terminal in the ad hoc network sends the service information, the service information is encrypted by using the password; when each terminal in the ad hoc network receives the service information, the service information is used by using the password. Decrypt. In this way, the service information of the communication in the ad hoc network can be encrypted to ensure the security of the data. When receiving the request of the terminal to access the ad hoc network, all the terminals in the ad hoc network access the terminal. After the authentication succeeds, the accessed terminal accesses the ad hoc network; thus, all terminals in the ad hoc network can authenticate other terminals other than the ad hoc network, thereby ensuring joining. The security of the terminal in the self-organizing network. DRAWINGS
图 1为本发明实施例自组网的加密鉴权方法实现流程示意图; 图 2为本发明实施例自组网的加密鉴权系统的结构组成示意图; 图 3为本发明实施例自组网的加密鉴权终端的结构组成示意图。 具体实施方式  1 is a schematic flowchart of a method for implementing an encryption authentication method for an ad hoc network according to an embodiment of the present invention; FIG. 2 is a schematic structural diagram of a structure of an encryption authentication system for an ad hoc network according to an embodiment of the present invention; Schematic diagram of the structure of the encryption authentication terminal. detailed description
为了能够更加详尽地了解本发明实施例的特点与技术内容, 下面结合 附图对本发明实施例的实现进行详细阐述, 所附附图仅供参考说明之用, 并非用来限定本发明实施例。 For a more detailed understanding of the features and technical details of the embodiments of the present invention, the embodiments of the present invention are described in detail below with reference to the accompanying drawings. It is not intended to limit the embodiments of the invention.
本发明实施例提供了一种自组网的加密鉴权方法, 如图 1 所示, 该方 法包括以下步骤:  An embodiment of the present invention provides an encryption authentication method for an ad hoc network. As shown in FIG. 1, the method includes the following steps:
步骤 101 :根据自组网中当前所有的终端信息生成所述自组网的密码并 通知所述自组网中的各终端。  Step 101: Generate a password of the ad hoc network according to all current terminal information in the ad hoc network, and notify each terminal in the ad hoc network.
预先生成自组网, 优选地, 步骤 101 之前, 所述方法还包括: 终端通 过 WIFI网络或蓝牙网络接收到其他终端发送的自组网请求消息后,对所述 其他终端进行鉴权; 并在鉴权成功后, 与所述其他终端建立连接并生成自 组网。 终端的性能参数确定一个终端作为访问接入点终端, 并由所述访问接入点 终端为所述自组网的所有终端分配 IP地址。  Pre-generating the ad hoc network, preferably, before the step 101, the method further includes: after receiving the ad hoc network request message sent by the other terminal through the WIFI network or the Bluetooth network, the terminal authenticates the other terminal; After the authentication succeeds, a connection is established with the other terminals and an ad hoc network is generated. The performance parameter of the terminal determines a terminal as an access point terminal, and the access point terminal allocates an IP address to all terminals of the ad hoc network.
这里,所述性能参数可以为终端的中央处理器( CPU, Central Processing Unit )处理能力, 内存大小等。  Here, the performance parameter may be a processing capability of a central processing unit (CPU) of the terminal, a memory size, and the like.
优选地, 所述根据当前自组网中的终端信息生成所述自组网的密码, 包括:  Preferably, the generating the password of the ad hoc network according to the terminal information in the current ad hoc network includes:
所述访问接入点终端接收非访问接入点终端发送的终端信息; 生成包 含所述终端信息的所述自组网的密码; 其中, 所述终端信息包括以下信息 的至少一种: 终端用户名、 IP地址、 终端 ID。  The access point terminal receives the terminal information sent by the non-access point terminal; generates a password of the ad hoc network including the terminal information; wherein the terminal information includes at least one of the following information: Name, IP address, terminal ID.
例如, 非访问接入点终端将为终端 2、 3、 4, 访问接入点终端为终端 1 ; 终端 2、 3、 4将其自身的终端信息发给终端 1 ; 终端 1收到终端 2、 3、 4发 送来的终端信息后, 生成包含所述终端信息的密码; 其中, 密码的格式包 括但不限于终端用户名、 IP地址、 终端 ID; 如表 1所示。  For example, the non-access point terminal will be the terminal 2, 3, 4, the access point terminal is the terminal 1; the terminal 2, 3, 4 will send its own terminal information to the terminal 1; the terminal 1 receives the terminal 2 After the terminal information is sent, the password of the terminal information is generated. The format of the password includes, but is not limited to, the terminal user name, the IP address, and the terminal ID.
终端 2 终端 3 终端 4 终端 1 终端用户名 Name2 Name3 Name4 Namel IP地址 192.168.0.2 192.168.0.3 192.168.0.4 192.168.0.1 终端 ID SSID2 SSID3 SSID4 SSID1 表 1 Terminal 2 Terminal 3 Terminal 4 Terminal 1 Terminal User Name Name2 Name3 Name4 Namel IP address 192.168.0.2 192.168.0.3 192.168.0.4 192.168.0.1 Terminal ID SSID2 SSID3 SSID4 SSID1 Table 1
以终端 1为访问接入节点终端的自组网的密码是:  The password of the ad hoc network that accesses the access node terminal with terminal 1 is:
NAME(2+3+4+ 1 )+IP(2+3+4+ 1 )+S SID (2+3+4+ 1 ), 其中, 服务集标识 ( SSID, Service Set Identifier ) 即为终端 ID; 密码的长短可根据用户自己 的需要进行截取; 该密码为自组网的统一密码。  NAME(2+3+4+ 1 )+IP(2+3+4+ 1 )+S SID (2+3+4+ 1 ), where Service Set Identifier (SSID) is the terminal ID The length of the password can be intercepted according to the user's own needs; the password is a unified password of the ad hoc network.
这里, SSID中包括了用户的信息, 例如用户输入的服务名称、 设备属 性信息。 优选地, 可以分别用数字表示一个设备的 CPU、 内存、 磁盘空间, 这些数字可由用户或者开发者设置, 也可取用标准统一规定的数值。  Here, the SSID includes user information such as a service name and device attribute information input by the user. Preferably, the CPU, memory, and disk space of a device may be represented by numbers, and the numbers may be set by a user or a developer, or may be obtained by using a standard value.
步骤 102: 所述自组网中的各终端发送业务信息时, 利用所述密码对所 述业务信息进行加密; 所述自组网中的各终端接收到业务信息时, 利用所 述密码对所述业务信息进行解密。  Step 102: When each terminal in the ad hoc network sends service information, encrypt the service information by using the password; when each terminal in the ad hoc network receives the service information, use the password pair The business information is decrypted.
优选地, 所述方法还包括: 接收到终端接入所述自组网的请求时, 所 述自组网中的所有终端对接入的终端进行鉴权; 鉴权成功后, 所述接入的 终端接入所述自组网。  Preferably, the method further includes: when receiving the request of the terminal to access the ad hoc network, all the terminals in the ad hoc network authenticate the accessed terminal; after the authentication succeeds, the access The terminal accesses the ad hoc network.
对应地, 所述方法还包括: 确定所述自组网中接入终端或有终端退出 时, 根据所述自组网中当前的终端信息更新所述自组网的密码, 并将更新 后的密码通知所述自组网中的各终端;  Correspondingly, the method further includes: when determining an access terminal in the ad hoc network or having a terminal exiting, updating a password of the ad hoc network according to current terminal information in the ad hoc network, and updating the Notifying each terminal in the ad hoc network by a password;
所述自组网中的各终端发送业务信息时, 利用更新后的密码对所述业 务信息进行加密; 所述自组网中的各终端接收到业务信息时, 利用更新后 的密码对所述业务信息进行解密。  When the terminal in the ad hoc network sends the service information, the service information is encrypted by using the updated password; when each terminal in the ad hoc network receives the service information, the updated password is used to The business information is decrypted.
例如, 终端 5为所述自组网以外的终端, 终端 5通过 WIFI或者蓝牙搜 索到所述自组网中的终端 2、 3、 4时, 向终端 2、 3、 4发送加入请求消息; 终端 2、 3、 4将所述加入请求消息推送至终端 1 ; 终端 1、 2、 3、 4对终端 5进行鉴权。 或者, 终端 5通过 WIFI或者蓝牙搜索到所述自组网中的终端 1时, 向终端 1发送加入请求消息; 终端 1将所述加入请求消息推送至终端 2、 3、 4; 终端 1、 2、 3、 4对终端 5进行鉴权。 For example, the terminal 5 is a terminal other than the ad hoc network. When the terminal 5 searches for the terminals 2, 3, and 4 in the ad hoc network through WIFI or Bluetooth, the terminal 5 sends a join request message to the terminals 2, 3, and 4; 2, 3, 4 push the join request message to the terminal 1; the terminal 1, 2, 3, 4 to the terminal 5 to verify. Alternatively, when the terminal 5 searches for the terminal 1 in the ad hoc network through WIFI or Bluetooth, it sends a join request message to the terminal 1; the terminal 1 pushes the join request message to the terminals 2, 3, 4; the terminals 1, 2 , 3, 4 authenticate the terminal 5.
优选地, 所述自组网中的所有终端对接入的终端进行鉴权, 包括: 获取所述接入的终端的终端信息;  Preferably, all the terminals in the ad hoc network authenticate the accessed terminal, including: acquiring terminal information of the accessed terminal;
将所获取的终端信息与已緩存的终端信息进行匹配, 匹配成功后, 确 定为对所述接入的终端鉴权成功; 匹配失败后, 根据所获取的终端信息确 定出所述接入的终端为合法终端时, 确定为对所述接入的终端鉴权成功。  Matching the obtained terminal information with the cached terminal information, and after the matching is successful, determining that the access terminal is successfully authenticated; after the matching fails, determining the accessed terminal according to the acquired terminal information. When it is a legal terminal, it is determined that the terminal that authenticates the access is successfully authenticated.
这里, 每次接收到终端发送的终端信息时, 都需要对终端信息进行存 储, 以便下次再接收到终端发送的终端信息时, 直接通过存储的终端信息 进行匹配来确定所述终端为合法终端, 进而对其鉴权成功。  Here, each time the terminal information sent by the terminal is received, the terminal information needs to be stored, so that when the terminal information sent by the terminal is received again, the terminal information is directly matched by the stored terminal information to determine that the terminal is a legal terminal. , and then its authentication is successful.
优选地, 所述根据当前自组网中的终端信息更新所述自组网的密码, 包括:  Preferably, the updating the password of the ad hoc network according to the terminal information in the current ad hoc network includes:
所述访问接入点终端接收接入的终端发送的终端信息; 生成包含所述 终端信息以及所述自组网中其他非访问接入点终端的终端信息的所述自组 网的密码。  And the access point terminal receives terminal information sent by the accessed terminal, and generates a password of the ad hoc network including the terminal information and terminal information of other non-access point terminals in the ad hoc network.
例如,终端 5为访问终端,终端 5加入自组网中后, 自组网中有终端 1、 2、 3、 4、 5, 其中, 终端 1为访问接入点终端, 终端 2、 3、 4、 5为非访问 接入点终端, 更新的自组网的密码为:  For example, the terminal 5 is an access terminal, and after the terminal 5 is added to the ad hoc network, there are terminals 1, 2, 3, 4, and 5 in the self-organizing network, where the terminal 1 is an access point terminal, and the terminals 2, 3, and 4 are 5 is a non-access point terminal, and the password of the updated ad hoc network is:
NAME(2+3+4+l+5)+IP(2+3+4+l+5)+SSID(2+3+4+l+5)。  NAME(2+3+4+l+5)+IP(2+3+4+l+5)+SSID(2+3+4+l+5).
针对上述自组网的加密鉴权方法, 本发明实施例还提供了一种自组网 的加密鉴权系统, 如图 2所示, 该系统包括: 访问接入点终端 21以及非访 问接入点终端 22; 其中,  For the encryption authentication method of the ad hoc network, the embodiment of the present invention further provides an encryption authentication system for the ad hoc network. As shown in FIG. 2, the system includes: an access point terminal 21 and a non-access access. Point terminal 22; wherein
所述访问接入点终端 21, 配置为根据自组网中当前所有的终端信息生 成所述自组网的密码并通知所述自组网中的各所述非访问接入点终端 22; 在发送业务信息时, 利用所述密码对所述业务信息进行加密; 接收到业务 信息时, 利用所述密码对所述业务信息进行解密; The access point terminal 21 is configured to generate a password of the ad hoc network according to all current terminal information in the ad hoc network, and notify each non-access point terminal 22 in the ad hoc network; When the service information is sent, the service information is encrypted by using the password; when the service information is received, the service information is decrypted by using the password;
所述非访问接入点终端 22,配置为接收所述访问接入点终端 21通知的 所述自组网的密码; 在发送业务信息时, 利用所述密码对所述业务信息进 行加密; 接收到业务信息时, 利用所述密码对所述业务信息进行解密。  The non-access point terminal 22 is configured to receive the password of the ad hoc network notified by the access point terminal 21; when the service information is sent, encrypt the service information by using the password; When the service information is obtained, the service information is decrypted by using the password.
优选地, 所述系统还包括: 访问终端 23 ;  Preferably, the system further includes: an access terminal 23;
所述访问终端 23, 配置为发送接入所述自组网的请求至所述访问接入 点终端 21或所述非访问接入点终端 22; 所述访问接入点终端 21及所述非 访问接入点终端 22对所述访问终端鉴权功后, 接入所述自组网;  The access terminal 23 is configured to send a request for accessing the ad hoc network to the access point terminal 21 or the non-access point terminal 22; the access point terminal 21 and the non-access After accessing the access terminal terminal 22 to authenticate the access terminal, accessing the ad hoc network;
所述访问接入点终端 21,还配置为收到所述访问终端 23接入所述自组 网的请求时, 对所述访问终端 23进行鉴权; 并将所述访问终端 23接入所 述自组网的请求推送至所述非访问接入点终端 22;  The access point terminal 21 is further configured to: when receiving the request of the access terminal 23 to access the ad hoc network, authenticating the access terminal 23; and accessing the access terminal 23 The request from the networking is pushed to the non-access point terminal 22;
所述非访问接入点终端 22,还配置为收到所述访问终端 23接入所述自 组网的请求时, 对所述访问终端 23进行鉴权; 并将所述访问终端 23接入 所述自组网的请求推送至所述访问接入点终端 21。  The non-access point terminal 22 is further configured to: when receiving the request of the access terminal 23 to access the ad hoc network, authenticating the access terminal 23; and accessing the access terminal 23 The request of the ad hoc network is pushed to the access point terminal 21.
优选地, 所述访问接入点终端 21, 还配置为确定所述自组网中接入终 端或有终端退出时, 根据所述自组网中当前的终端信息更新所述自组网的 密码,并将更新后的密码通知所述自组网中的各所述非访问接入点终端 22; 发送业务信息时, 利用更新后的密码对所述业务信息进行加密; 接收到业 务信息时, 利用更新后的密码对所述业务信息进行解密;  Preferably, the access point terminal 21 is further configured to: when the access terminal in the ad hoc network is deleted or the terminal exits, update the password of the ad hoc network according to the current terminal information in the ad hoc network. And notifying the non-access point terminal 22 in the ad hoc network of the updated password; when transmitting the service information, encrypting the service information by using the updated password; when receiving the service information, Decrypting the service information by using the updated password;
所述非访问接入点终端 22,还配置为接收所述访问接入点终端 21通知 的所述自组网更新后的密码; 在发送业务信息时, 利用更新后的密码对所 述业务信息进行加密; 接收到业务信息时, 利用更新后的密码对所述业务 信息进行解密。  The non-access point terminal 22 is further configured to receive the updated password of the ad hoc network notified by the access point terminal 21; when the service information is sent, use the updated password to the service information. Encryption is performed; when the service information is received, the service information is decrypted by using the updated password.
优选地, 所述访问接入点终端 21, 还配置为通过 WIFI 网络或蓝牙网 络接收到所述非访问接入点终端 22发送的自组网请求消息后, 对所述非访 问接入点终端 22进行鉴权; 并在鉴权成功后, 与所述非访问接入点终端 22 建立连接并生成自组网; Preferably, the access point terminal 21 is further configured to pass through a WIFI network or a Bluetooth network. After receiving the ad hoc network request message sent by the non-access point terminal 22, the network authenticates the non-access point terminal 22; and after the authentication succeeds, the non-access point is The terminal 22 establishes a connection and generates an ad hoc network;
所述非访问接入点终端 22, 还配置为通过 WIFI 网络或蓝牙网络接收 到所述访问接入点终端 21发送的自组网请求消息后, 对所述访问接入点终 端 21进行鉴权; 并在鉴权成功后, 与所述访问接入点终端 22建立连接并 生成自组网。  The non-access point terminal 22 is further configured to: after receiving the ad hoc network request message sent by the access point terminal 21 through the WIFI network or the Bluetooth network, authenticating the access point terminal 21 And after the authentication succeeds, establish a connection with the access point terminal 22 and generate an ad hoc network.
优选地, 所述访问接入点终端 21, 还配置为为所述访问接入点终端 21 以及所述自组网的所有非访问接入点终端 22分配 IP地址。  Preferably, the access point terminal 21 is further configured to allocate an IP address to the access point terminal 21 and all non-access point terminals 22 of the ad hoc network.
优选地, 所述访问接入点终端 21, 还配置为接收所述非访问接入点终 端 22发送的终端信息;生成包含所述终端信息的所述自组网的密码;其中, 所述终端信息包括以下信息的至少一种: 终端用户名、 IP地址、 终端 ID。  Preferably, the access point terminal 21 is further configured to receive terminal information sent by the non-access point terminal 22, and generate a password of the ad hoc network including the terminal information, where the terminal The information includes at least one of the following information: terminal username, IP address, terminal ID.
优选地, 所述访问接入点终端 21,还配置为获取所述访问终端 23的终 端信息; 将所获取的终端信息与已緩存的终端信息进行匹配, 匹配成功后, 确定为对所述访问终端 23鉴权成功; 匹配失败后, 根据所获取的终端信息 确定出所述访问终端 23为合法终端时, 确定为对所述访问终端 23鉴权成 功;  Preferably, the access point terminal 21 is further configured to acquire the terminal information of the access terminal 23; the obtained terminal information is matched with the cached terminal information, and after the matching is successful, the access is determined to be the access The terminal 23 succeeds in authenticating; after the matching fails, when the access terminal 23 is determined to be a legal terminal according to the obtained terminal information, it is determined that the access terminal 23 is successfully authenticated;
所述非访问接入点终端 22,还配置为获取所述访问终端 23的终端信息; 将所获取的终端信息与已緩存的终端信息进行匹配, 匹配成功后, 确定为 对所述访问终端 23鉴权成功; 匹配失败后, 根据所获取的终端信息确定出 所述访问终端 23为合法终端时, 确定为对所述访问终端 23鉴权成功。  The non-access point terminal 22 is further configured to acquire the terminal information of the access terminal 23, and match the acquired terminal information with the cached terminal information, and after the matching is successful, determine that the access terminal 23 is After the matching succeeds, when the access terminal 23 is determined to be a legal terminal according to the acquired terminal information, it is determined that the access terminal 23 is successfully authenticated.
本领域技术人员应当理解, 图 2所示的自组网的加密鉴权系统的各设 备的实现功能可参照前述自组网的加密鉴权方法的相关描述而理解。 图 2 所示的自组网的加密鉴权系统的设备的功能可通过运行于处理器上的程序 而实现, 也可通过具体的逻辑电路而实现。 实际应用中, 所述自组网的加密鉴权系统中的访问接入点终端 21以及 非访问接入点终端 22均可由智能手机、计算机、平板电脑等终端设备实现。 Those skilled in the art should understand that the implementation functions of the devices of the cipher authentication system of the ad hoc network shown in FIG. 2 can be understood by referring to the related description of the cipher authentication method of the ad hoc network. The function of the device of the cryptographic authentication system of the ad hoc network shown in FIG. 2 can be implemented by a program running on the processor, or can be realized by a specific logic circuit. In an actual application, the access point terminal 21 and the non-access point terminal 22 in the encryption authentication system of the ad hoc network can be implemented by terminal devices such as a smart phone, a computer, and a tablet computer.
针对上述自组网的加密鉴权方法及系统, 本发明实施例还提供了一种 自组网的加密鉴权终端, 如图 3所示, 该终端包括: 密码单元 31以及加密 解密单元 32; 其中,  The encryption authentication method and system for the above-mentioned ad hoc network, the embodiment of the present invention further provides an encryption authentication terminal of the ad hoc network, as shown in FIG. 3, the terminal includes: a cryptographic unit 31 and an encryption and decryption unit 32; among them,
所述密码单元 31, 配置为在所述终端确定为访问接入点终端时, 根据 自组网中当前所有的终端信息生成所述自组网的密码并通知所述自组网中 的各终端; 在所述终端确定为非访问接入点终端时, 接收所述访问接入点 终端通知的所述自组网的密码;  The cryptographic unit 31 is configured to: when the terminal determines to access the access point terminal, generate a password of the ad hoc network according to all current terminal information in the ad hoc network, and notify each terminal in the ad hoc network Receiving, by the terminal, a password of the ad hoc network notified by the access point terminal when the terminal is determined to be a non-access point terminal;
所述加密解密单元 32, 配置为在发送业务信息时, 利用所述密码对所 述业务信息进行加密; 接收到业务信息时, 利用所述密码对所述业务信息 进行解密。  The encryption and decryption unit 32 is configured to encrypt the service information by using the password when transmitting the service information, and decrypt the service information by using the password when receiving the service information.
优选地, 所述终端还包括: 第一接收单元 33以及鉴权单元 34; 其中, 所述第一接收单元 33, 配置为接收访问终端接入所述自组网的请求; 所述鉴权单元 34, 配置为对所述访问终端进行鉴权, 并将所述访问终 端接入所述自组网的请求推送至所述自组网的其它终端。  Preferably, the terminal further includes: a first receiving unit 33 and an authentication unit 34; wherein the first receiving unit 33 is configured to receive a request for the access terminal to access the ad hoc network; 34. The device is configured to authenticate the access terminal, and push the request for accessing the access terminal to the ad hoc network to be pushed to another terminal of the ad hoc network.
优选地, 所述终端还包括: 更新单元 35、 发送单元 36以及第二接收单 元 37; 其中,  Preferably, the terminal further includes: an update unit 35, a sending unit 36, and a second receiving unit 37;
所述更新单元 35, 配置为在所述终端确定为访问接入点终端时, 确定 所述自组网中接入终端或有终端退出时, 根据所述自组网中当前的终端信 息更新所述自组网的密码;  The updating unit 35 is configured to: when the terminal determines to access the access point terminal, determine that the access terminal in the ad hoc network or the terminal exits, update the location according to the current terminal information in the ad hoc network The password of the self-organizing network;
所述发送单元 36, 配置为将更新后的密码通知所述自组网中的各所述 非访问接入点终端;  The sending unit 36 is configured to notify the non-access point terminal in the ad hoc network of the updated password;
所述第二接收单元 37,配置为在所述终端确定为非访问接入点终端时, 接收所述访问接入点终端通知的更新后的所述自组网的密码; 所述加密解密单元 32, 还配置为在发送业务信息时, 利用更新后的密 码对所述业务信息进行加密; 接收到业务信息时, 利用更新后的密码对所 述业务信息进行解密。 The second receiving unit 37 is configured to: when the terminal determines to be a non-access point terminal, receive the updated password of the ad hoc network notified by the access point terminal; The encryption/decryption unit 32 is further configured to encrypt the service information by using the updated password when transmitting the service information, and decrypt the service information by using the updated password when receiving the service information.
优选地, 所述终端还包括: 第三接收单元 38以及建立单元 39; 其中, 所述第三接收单元 38, 配置为通过 WIFI 网络或蓝牙网络接收到所述 其它终端发送的自组网请求消息;  Preferably, the terminal further includes: a third receiving unit 38 and an establishing unit 39; wherein the third receiving unit 38 is configured to receive the ad hoc network request message sent by the other terminal by using a WIFI network or a Bluetooth network. ;
所述鉴权单元 34, 还配置为对所述其它终端进行鉴权;  The authentication unit 34 is further configured to perform authentication on the other terminal.
所述建立单元 39, 配置为在鉴权成功后, 与所述其它终端建立连接并 生成自组网。  The establishing unit 39 is configured to establish a connection with the other terminal and generate an ad hoc network after the authentication succeeds.
优选地, 所述终端还包括分配单元 310, 配置为在所述终端确定为访问 接入点终端时, 为所述自组网的所有终端分配 IP地址。  Preferably, the terminal further includes an allocating unit 310, configured to allocate an IP address to all terminals of the ad hoc network when the terminal determines to access the access point terminal.
优选地, 所述密码单元 31包括: 接收子单元 311、 发送子单元 312以 及生成子单元 313; 其中,  Preferably, the cryptographic unit 31 includes: a receiving subunit 311, a transmitting subunit 312, and a generating subunit 313;
所述接收子单元 311, 配置为在所述终端确定为访问接入点终端时,接 收非访问接入点终端发送的终端信息; 生成包含所述终端信息的所述自组 网的密码; 其中, 所述终端信息包括以下信息的至少一种: 终端用户名、 IP 地址、 终端 ID;  The receiving subunit 311 is configured to: when the terminal determines to access the access point terminal, receive terminal information sent by the non-access point terminal; generate a password of the ad hoc network including the terminal information; The terminal information includes at least one of the following information: a terminal user name, an IP address, and a terminal ID;
所述发送子单元 312, 配置为在所述终端确定为非访问接入点终端时, 发送终端信息至所述访问接入点终端;  The sending subunit 312 is configured to send terminal information to the access point terminal when the terminal determines to be a non-access point terminal;
生成子单元 313, 配置为生成包含所述终端信息的所述自组网的密码。 优选地, 所述鉴权单元 34包括: 获取子单元 341、 匹配子单元 342以 及确定子单元 343; 其中,  The generating subunit 313 is configured to generate a password of the ad hoc network including the terminal information. Preferably, the authentication unit 34 includes: an obtaining subunit 341, a matching subunit 342, and a determining subunit 343;
所述获取子单元 341, 配置为获取访问终端的终端信息;  The obtaining subunit 341 is configured to acquire terminal information of the access terminal.
所述匹配子单元 342,配置为将所获取的终端信息与已緩存的终端信息 进行匹配; 所述确定子单元 343, 配置为在在所述匹配子单元 342匹配成功后, 确 定为对所述访问终端鉴权成功; 匹配失败后, 根据所获取的终端信息确定 出所述访问终端为合法终端时, 确定为对所述访问终端鉴权成功. The matching sub-unit 342 is configured to match the acquired terminal information with the cached terminal information. The determining sub-unit 343 is configured to determine that the access terminal is successfully authenticated after the matching sub-unit 342 is successfully matched. After the matching fails, determining, according to the acquired terminal information, that the access terminal is legal. When the terminal is determined, it is determined that the access terminal is successfully authenticated.
本领域技术人员应当理解, 图 3 所示的自组网的加密鉴权终端中的各 单元及其子单元的实现功能可参照前述自组网的加密鉴权方法及系统的相 关描述而理解。 图 3 所示的自组网的加密鉴权终端中的各单元及其子单元 的功能可通过运行于处理器上的程序而实现, 也可通过具体的逻辑电路而 实现。  Those skilled in the art should understand that the implementation functions of each unit and its subunits in the cryptographic authentication terminal of the ad hoc network shown in FIG. 3 can be understood by referring to the cipher authentication method and system related description of the aforementioned ad hoc network. The functions of each unit and its subunits in the cryptographic authentication terminal of the ad hoc network shown in FIG. 3 can be implemented by a program running on a processor, or can be implemented by a specific logic circuit.
实际应用中, 所述终端中的密码单元 31、 加密解密单元 32、 第一接收 单元 33、 鉴权单元 34、 更新单元 35、 发送单元 36、 第二接收单元 37、 第 三接收单元 38、建立单元 39、分配单元 310可由终端中的中央处理器( CPU, Central Processing Unit )、或数字信号处理器 ( DSP, Digital Signal Processor )、 或可编程门阵列 (FPGA, Field - Programmable Gate Array ) 实现。  In an actual application, the cryptographic unit 31, the encryption and decryption unit 32, the first receiving unit 33, the authentication unit 34, the updating unit 35, the sending unit 36, the second receiving unit 37, the third receiving unit 38, and the establishment in the terminal are established. The unit 39 and the allocation unit 310 can be implemented by a central processing unit (CPU) in the terminal, or a digital signal processor (DSP), or a Field-Programmable Gate Array (FPGA).
以上所述, 仅为本发明的较佳实施例而已, 并非用于限定本发明的保 护范围。  The above is only the preferred embodiment of the present invention and is not intended to limit the scope of the present invention.

Claims

权利要求书 claims
1、 一种自组网的加密鉴权方法, 该方法包括: 1. An encryption and authentication method for ad hoc networks. The method includes:
根据自组网中当前所有的终端信息生成所述自组网的密码并通知所述 自组网中的各终端; Generate the password of the ad hoc network based on all current terminal information in the ad hoc network and notify each terminal in the ad hoc network;
所述自组网中的各终端发送业务信息时, 利用所述密码对所述业务信 息进行加密; 所述自组网中的各终端接收到业务信息时, 利用所述密码对 所述业务信息进行解密。 When each terminal in the ad hoc network sends service information, the password is used to encrypt the service information; when each terminal in the ad hoc network receives the service information, the password is used to encrypt the service information. Decrypt.
2、 根据权利要求 1所述的加密鉴权方法, 其中, 所述方法还包括: 接 收到终端接入所述自组网的请求时, 所述自组网中的所有终端对接入的终 端进行鉴权; 鉴权成功后, 所述接入的终端接入所述自组网。 2. The encryption authentication method according to claim 1, wherein the method further includes: when receiving a request from a terminal to access the ad hoc network, all terminals in the ad hoc network respond to the accessed terminal. Authentication is performed; after the authentication is successful, the access terminal accesses the ad hoc network.
3、根据权利要求 1或 2所述的加密鉴权方法, 其中, 所述方法还包括: 确定所述自组网中接入终端或有终端退出时, 居所述自组网中当前 的终端信息更新所述自组网的密码, 并将更新后的密码通知所述自组网中 的各终端; 3. The encryption authentication method according to claim 1 or 2, wherein the method further includes: when determining that an access terminal in the ad hoc network or a terminal exits, the current terminal in the ad hoc network The information updates the password of the ad hoc network, and notifies each terminal in the ad hoc network of the updated password;
所述自组网中的各终端发送业务信息时, 利用更新后的密码对所述业 务信息进行加密; 所述自组网中的各终端接收到业务信息时, 利用更新后 的密码对所述业务信息进行解密。 When each terminal in the ad hoc network sends service information, the updated password is used to encrypt the service information; when each terminal in the ad hoc network receives the service information, the updated password is used to encrypt the service information. Business information is decrypted.
4、 根据权利要求 3所述的加密鉴权方法, 其中, 所述根据自组网中当 前所有的终端信息生成所述自组网的密码之前, 所述方法还包括: 4. The encryption authentication method according to claim 3, wherein before generating the password of the ad hoc network based on all current terminal information in the ad hoc network, the method further includes:
终端通过无线保真 WIFI 网络或蓝牙网络接收到其他终端发送的自组 网请求消息后, 对所述其他终端进行鉴权; 并在鉴权成功后, 与所述其他 终端建立连接并生成自组网。 After the terminal receives the ad hoc network request message sent by other terminals through the wireless fidelity WIFI network or Bluetooth network, it authenticates the other terminals; and after the authentication is successful, it establishes a connection with the other terminals and generates ad hoc network requests. net.
5、 根据权利要求 4所述的加密鉴权方法, 其中, 所述方法还包括: 终端的性能参数确定一个终端作为访问接入点终端, 并由所述访问接入点 终端为所述自组网的所有终端分配因特网协议 IP地址。 5. The encryption authentication method according to claim 4, wherein the method further includes: The performance parameters of the terminal determine a terminal as an access point terminal, and the access point terminal allocates Internet protocol IP addresses to all terminals of the ad hoc network.
6、 根据权利要求 5所述的加密鉴权方法, 其中, 所述根据自组网中当 前所有的终端信息生成所述自组网的密码, 包括: 6. The encryption authentication method according to claim 5, wherein the generating the password of the ad hoc network based on all current terminal information in the ad hoc network includes:
所述访问接入点终端接收非访问接入点终端发送的终端信息, 生成包 含所述终端信息的所述自组网的密码; 其中, 所述终端信息包括以下信息 的至少一种: 终端用户名、 IP地址、 终端标识 ID。 The access point terminal receives terminal information sent by a non-access point terminal, and generates a password for the ad hoc network including the terminal information; wherein the terminal information includes at least one of the following information: Terminal user Name, IP address, terminal identification ID.
7、 根据权利要求 2、 4、 5或 6所述的加密鉴权方法, 其中, 所述自组 网中的所有终端对接入的终端进行鉴权, 包括: 7. The encryption authentication method according to claim 2, 4, 5 or 6, wherein all terminals in the ad hoc network authenticate the accessed terminals, including:
获取所述接入的终端的终端信息, 将接入的终端信息与已緩存的终端 信息进行匹配, 匹配成功后, 确定为对所述接入的终端鉴权成功; 匹配失 败后, 根据所获取的终端信息确定出所述接入的终端为合法终端时, 确定 为对所述接入的终端鉴权成功。 Obtain the terminal information of the accessed terminal, and match the accessed terminal information with the cached terminal information. After the matching is successful, it is determined that the accessed terminal has been authenticated successfully; after the matching fails, according to the obtained When the terminal information of the terminal determines that the accessed terminal is a legitimate terminal, it is determined that the authentication of the accessed terminal is successful.
8、 一种自组网的加密鉴权系统, 该系统包括: 访问接入点终端以及非 访问接入点终端; 其中, 8. An encryption and authentication system for ad hoc networks. The system includes: access point terminals and non-access point terminals; wherein,
所述访问接入点终端, 配置为根据自组网中当前所有的终端信息生成 所述自组网的密码并通知所述自组网中的各所述非访问接入点终端; 在发 送业务信息时, 利用所述密码对所述业务信息进行加密; 接收到业务信息 时, 利用所述密码对所述业务信息进行解密。 The access point terminal is configured to generate a password for the ad hoc network based on all current terminal information in the ad hoc network and notify each of the non-access point terminals in the ad hoc network; when sending a service When receiving information, the password is used to encrypt the service information; when the service information is received, the password is used to decrypt the service information.
所述非访问接入点终端, 配置为接收所述访问接入点终端通知的所述 自组网的密码; 在发送业务信息时, 利用所述密码对所述业务信息进行加 密; 接收到业务信息时, 利用所述密码对所述业务信息进行解密。 The non-access point terminal is configured to receive the password of the ad hoc network notified by the access point terminal; when sending service information, use the password to encrypt the service information; receive the service When receiving information, the password is used to decrypt the service information.
9、 根据权利要求 8所述的加密鉴权系统, 其中, 所述系统还包括: 访 问终端; 9. The encryption authentication system according to claim 8, wherein the system further includes: an access terminal;
所述访问终端, 配置为发送接入所述自组网的请求至所述访问接入点 终端或所述非访问接入点终端; 所述访问接入点终端及所述非访问接入点 终端对所述访问终端鉴权功后, 接入所述自组网; The access terminal is configured to send a request to access the ad hoc network to the access point. The terminal or the non-access point terminal; the access point terminal and the non-access point terminal access the ad hoc network after authenticating the access terminal;
所述访问接入点终端, 还配置为收到所述访问终端接入所述自组网的 请求时, 对所述访问终端进行鉴权; 并将所述访问终端接入所述自组网的 请求推送至所述非访问接入点终端; The access point terminal is further configured to authenticate the access terminal when receiving a request from the access terminal to access the ad hoc network; and connect the access terminal to the ad hoc network. Push the request to the non-access point terminal;
所述非访问接入点终端, 还配置为收到所述访问终端接入所述自组网 的请求时, 对所述访问终端进行鉴权; 并将所述访问终端接入所述自组网 的请求推送至所述访问接入点终端。 The non-access point terminal is further configured to authenticate the access terminal when receiving a request from the access terminal to access the ad hoc network; and connect the access terminal to the ad hoc network. The network request is pushed to the access point terminal.
10、 根据权利要求 8或 9所述的加密鉴权系统, 其中, 10. The encryption authentication system according to claim 8 or 9, wherein,
所述访问接入点终端, 还配置为确定所述自组网中接入终端或有终端 退出时, 根据所述自组网中当前的终端信息更新所述自组网的密码, 并将 更新后的密码通知所述自组网中的各所述非访问接入点终端; 发送业务信 息时, 利用更新后的密码对所述业务信息进行加密; 接收到业务信息时, 利用更新后的密码对所述业务信息进行解密; The access point terminal is also configured to update the password of the ad hoc network according to the current terminal information in the ad hoc network when it is determined that the access terminal in the ad hoc network or a terminal exits, and will update Notify each non-access point terminal in the ad hoc network of the updated password; when sending service information, use the updated password to encrypt the service information; when receiving service information, use the updated password Decrypt the business information;
所述非访问接入点终端, 还配置为接收所述访问接入点终端通知的所 述自组网更新后的密码; 在发送业务信息时, 利用更新后的密码对所述业 务信息进行加密; 接收到业务信息时, 利用更新后的密码对所述业务信息 进行解密。 The non-access point terminal is further configured to receive the updated password of the ad hoc network notified by the access point terminal; when sending service information, use the updated password to encrypt the service information. ; When receiving the business information, use the updated password to decrypt the business information.
11、 根据权利要求 10所述的加密鉴权系统, 其中, 11. The encryption authentication system according to claim 10, wherein,
所述访问接入点终端,还配置为通过 WIFI网络或蓝牙网络接收到所述 非访问接入点终端发送的自组网请求消息后, 对所述非访问接入点终端进 行鉴权; 并在鉴权成功后, 与所述非访问接入点终端建立连接并生成自组 网; The access point terminal is further configured to authenticate the non-access point terminal after receiving the ad hoc network request message sent by the non-access point terminal through the WIFI network or Bluetooth network; and After successful authentication, establish a connection with the non-access point terminal and generate an ad hoc network;
所述非访问接入点终端,还配置为通过 WIFI网络或蓝牙网络接收到所 述访问接入点终端发送的自组网请求消息后, 对所述访问接入点终端进行 鉴权; 并在鉴权成功后, 与所述访问接入点终端建立连接并生成自组网。 The non-access access point terminal is also configured to perform an ad hoc network request message on the access point terminal after receiving the ad-hoc network request message sent by the access point terminal through the WIFI network or Bluetooth network. Authentication; and after successful authentication, establish a connection with the access point terminal and generate an ad hoc network.
12、 根据权利要求 11所述的加密鉴权系统, 其中, 所述访问接入点终 端, 还配置为为所述访问接入点终端以及所述自组网的所有非访问接入点 终端分配 IP地址。 12. The encryption authentication system according to claim 11, wherein the access point terminal is further configured to allocate the access point terminal and all non-access point terminals of the ad hoc network. IP address.
13、 根据权利要求 12所述的加密鉴权系统, 其中, 所述访问接入点终 端, 还配置为接收所述非访问接入点终端发送的终端信息; 生成包含所述 终端信息的所述自组网的密码; 其中, 所述终端信息包括以下信息的至少 一种: 终端用户名、 IP地址、 终端 ID。 13. The encryption authentication system according to claim 12, wherein the access point terminal is further configured to receive terminal information sent by the non-access point terminal; and generate the terminal information including the terminal information. The password of the ad hoc network; wherein the terminal information includes at least one of the following information: terminal user name, IP address, terminal ID.
14、 根据权利要求 9、 11、 12或 13所述的加密鉴权系统, 其中, 所述访问接入点终端, 还配置为获取所述访问终端的终端信息; 将所 获取的终端信息与已緩存的终端信息进行匹配, 匹配成功后, 确定为对所 述访问终端鉴权成功; 匹配失败后, 根据所获取的终端信息确定出所述访 问终端为合法终端时, 确定为对所述访问终端鉴权成功; 14. The encryption authentication system according to claim 9, 11, 12 or 13, wherein the access point terminal is further configured to obtain terminal information of the access terminal; and combine the obtained terminal information with the already obtained terminal information. The cached terminal information is matched. After the matching is successful, it is determined that the access terminal is successfully authenticated; after the matching fails, when the access terminal is determined to be a legitimate terminal according to the acquired terminal information, it is determined that the access terminal is authenticated. Authentication successful;
所述非访问接入点终端, 还配置为获取所述访问终端的终端信息; 将 所获取的终端信息与已緩存的终端信息进行匹配, 匹配成功后, 确定为对 所述访问终端鉴权成功; 匹配失败后, 根据所获取的终端信息确定出所述 访问终端为合法终端时, 确定为对所述访问终端鉴权成功。 The non-access point terminal is also configured to obtain the terminal information of the access terminal; match the obtained terminal information with the cached terminal information. After the matching is successful, it is determined that the access terminal has been successfully authenticated. ; After the matching fails, when it is determined that the access terminal is a legal terminal based on the acquired terminal information, it is determined that the access terminal has been successfully authenticated.
15、 一种自组网的加密鉴权终端, 该终端包括: 密码单元、 以及加密 解密单元; 其中, 15. An encryption and authentication terminal for an ad hoc network. The terminal includes: a cryptographic unit, and an encryption and decryption unit; wherein,
所述密码单元, 配置为在所述终端确定为访问接入点终端时, 根据自 组网中当前所有的终端信息生成所述自组网的密码并通知所述自组网中的 各终端; 在所述终端确定为非访问接入点终端时, 接收所述访问接入点终 端通知的所述自组网的密码; The cryptographic unit is configured to generate a password for the ad hoc network based on all current terminal information in the ad hoc network and notify each terminal in the ad hoc network when the terminal is determined to be an access point terminal; When the terminal is determined to be a non-access point terminal, receive the password of the ad hoc network notified by the access point terminal;
所述加密解密单元, 配置为在发送业务信息时, 利用所述密码对所述 业务信息进行加密; 接收到业务信息时, 利用所述密码对所述业务信息进 行解密。 The encryption and decryption unit is configured to use the password to encrypt the business information when sending business information; when receiving the business information, use the password to encrypt the business information. Decrypt.
16、 根据权利要求 15所述的加密鉴权终端, 其中, 所述终端还包括: 第一接收单元以及鉴权单元; 其中, 16. The encryption authentication terminal according to claim 15, wherein the terminal further includes: a first receiving unit and an authentication unit; wherein,
所述第一接收单元, 配置为接收访问终端接入所述自组网的请求; 所述鉴权单元, 配置为对所述访问终端进行鉴权, 并将所述访问终端 接入所述自组网的请求推送至所述自组网的其它终端。 The first receiving unit is configured to receive a request from an access terminal to access the ad hoc network; the authentication unit is configured to authenticate the access terminal and connect the access terminal to the ad hoc network. The networking request is pushed to other terminals of the ad hoc network.
17、 根据权利要求 15或 16所述的加密鉴权终端, 其中, 所述终端还 包括: 更新单元、 发送单元以及第二接收单元; 其中, 17. The encryption authentication terminal according to claim 15 or 16, wherein the terminal further includes: an update unit, a sending unit and a second receiving unit; wherein,
所述更新单元, 配置为在所述终端确定为访问接入点终端时, 确定所 述自组网中接入终端或有终端退出时, 根据所述自组网中当前的终端信息 更新所述自组网的密码; The update unit is configured to update the terminal according to the current terminal information in the ad hoc network when the terminal is determined to be an access point terminal, when it is determined that the access terminal in the ad hoc network or a terminal exits. Ad hoc network password;
所述发送单元, 配置为将更新后的密码通知所述自组网中的各所述非 访问接入点终端; The sending unit is configured to notify each of the non-access point terminals in the ad hoc network of the updated password;
所述第二接收单元, 配置为在所述终端确定为非访问接入点终端时, 接收所述访问接入点终端通知的更新后的所述自组网的密码; The second receiving unit is configured to receive the updated password of the ad hoc network notified by the access point terminal when the terminal is determined to be a non-access point terminal;
所述加密解密单元, 还配置为在发送业务信息时, 利用更新后的密码 对所述业务信息进行加密; 接收到业务信息时, 利用更新后的密码对所述 业务信息进行解密。 The encryption and decryption unit is also configured to encrypt the business information using the updated password when sending the business information; and decrypt the business information using the updated password when receiving the business information.
18、 根据权利要求 17所述的加密鉴权终端, 其中, 所述终端还包括: 第三接收单元以及建立单元; 其中, 18. The encryption authentication terminal according to claim 17, wherein the terminal further includes: a third receiving unit and an establishing unit; wherein,
所述第三接收单元,配置为通过 WIFI网络或蓝牙网络接收到所述其它 终端发送的自组网请求消息; The third receiving unit is configured to receive the ad hoc network request message sent by the other terminal through the WIFI network or Bluetooth network;
所述鉴权单元, 还配置为对所述其它终端进行鉴权; The authentication unit is also configured to authenticate the other terminals;
所述建立单元, 配置为在鉴权成功后, 与所述其它终端建立连接并生 成自组网。 The establishment unit is configured to establish a connection with the other terminal and generate an ad hoc network after successful authentication.
19、 根据权利要求 18所述的加密鉴权终端, 其中, 所述终端还包括分 配单元, 配置为在所述终端确定为访问接入点终端时, 为所述自组网的所 有终端分配 IP地址。 19. The encryption authentication terminal according to claim 18, wherein the terminal further includes an allocation unit configured to allocate IP to all terminals of the ad hoc network when the terminal is determined to be an access point terminal. address.
20、根据权利要求 19所述的加密鉴权终端,其中, 所述密码单元包括: 接收子单元、 发送子单元以及生成子单元; 其中, 20. The encryption authentication terminal according to claim 19, wherein the cryptographic unit includes: a receiving subunit, a sending subunit and a generating subunit; wherein,
所述接收子单元, 配置为在所述终端确定为访问接入点终端时, 接收 非访问接入点终端发送的终端信息; 生成包含所述终端信息的所述自组网 的密码; 其中, 所述终端信息包括以下信息的至少一种: 终端用户名、 IP 地址、 终端 ID; The receiving subunit is configured to receive terminal information sent by a non-access point terminal when the terminal is determined to be an access point terminal; generate a password for the ad hoc network containing the terminal information; wherein, The terminal information includes at least one of the following information: terminal user name, IP address, terminal ID;
所述发送子单元, 配置为在所述终端确定为非访问接入点终端时, 发 送终端信息至所述访问接入点终端; The sending subunit is configured to send terminal information to the access point terminal when the terminal is determined to be a non-access point terminal;
生成子单元, 配置为生成包含所述终端信息的所述自组网的密码。 The generating subunit is configured to generate a password of the ad hoc network containing the terminal information.
21、 根据权利要求 16、 18、 19或 20所述的加密鉴权终端, 其中, 所 述鉴权单元包括: 获取子单元、 匹配子单元以及确定子单元; 其中, 21. The encryption authentication terminal according to claim 16, 18, 19 or 20, wherein the authentication unit includes: an acquisition subunit, a matching subunit and a determination subunit; wherein,
所述获取子单元, 配置为获取访问终端的终端信息; The acquisition subunit is configured to acquire terminal information of the access terminal;
所述匹配子单元, 配置为将所获取的终端信息与已緩存的终端信息进 行匹配; The matching subunit is configured to match the acquired terminal information with cached terminal information;
所述确定子单元, 配置为在在所述匹配子单元匹配成功后, 确定为对 所述访问终端鉴权成功; 匹配失败后, 根据所获取的终端信息确定出所述 访问终端为合法终端时, 确定为对所述访问终端鉴权成功。 The determining subunit is configured to determine that the access terminal is successfully authenticated after the matching subunit successfully matches; and after the matching fails, determine that the access terminal is a legal terminal based on the acquired terminal information. , it is determined that the access terminal is successfully authenticated.
PCT/CN2013/084974 2013-06-19 2013-10-10 Encryption and authentication method, system and terminal for ad hoc network WO2014201783A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201310244521.7A CN104243423A (en) 2013-06-19 2013-06-19 Ad-hoc network encryption and authentication method and system and terminals
CN201310244521.7 2013-06-19

Publications (1)

Publication Number Publication Date
WO2014201783A1 true WO2014201783A1 (en) 2014-12-24

Family

ID=52103865

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2013/084974 WO2014201783A1 (en) 2013-06-19 2013-10-10 Encryption and authentication method, system and terminal for ad hoc network

Country Status (2)

Country Link
CN (1) CN104243423A (en)
WO (1) WO2014201783A1 (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105979475B (en) * 2016-05-11 2020-01-07 珠海市魅族科技有限公司 Short-range wireless connection method and terminal
CN108696879B (en) * 2018-03-21 2022-09-06 洪贵顺 Ad hoc network method, ad hoc network system and storage medium of ultraviolet optical network
CN108834121B (en) * 2018-07-02 2021-04-02 中国联合网络通信集团有限公司 Bluetooth device ad hoc network method and system
CN110366153B (en) * 2019-07-17 2022-08-05 苏州佩林软件技术有限公司 Bluetooth ad hoc network method

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102256248A (en) * 2011-07-05 2011-11-23 淮阴工学院 Scheme for managing Ad hoc group key
CN102487503A (en) * 2010-12-06 2012-06-06 中国航空工业集团公司第六三一研究所 Method for managing multi-stage security dynamic group security keys
CN102685740A (en) * 2012-03-29 2012-09-19 公安部第三研究所 Short-distance wireless communication node and wireless communication method
CN102857918A (en) * 2012-10-12 2013-01-02 北京汽车股份有限公司 Vehicle-mounted communication system

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6816719B1 (en) * 1999-11-03 2004-11-09 Nokia Corporation Method and system for making wireless terminal profile information accessible to a network
CN100359845C (en) * 2004-03-26 2008-01-02 中兴通讯股份有限公司 Self arranged net mode shared key authentication and conversation key consulant method of radio LAN

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102487503A (en) * 2010-12-06 2012-06-06 中国航空工业集团公司第六三一研究所 Method for managing multi-stage security dynamic group security keys
CN102256248A (en) * 2011-07-05 2011-11-23 淮阴工学院 Scheme for managing Ad hoc group key
CN102685740A (en) * 2012-03-29 2012-09-19 公安部第三研究所 Short-distance wireless communication node and wireless communication method
CN102857918A (en) * 2012-10-12 2013-01-02 北京汽车股份有限公司 Vehicle-mounted communication system

Also Published As

Publication number Publication date
CN104243423A (en) 2014-12-24

Similar Documents

Publication Publication Date Title
US11451614B2 (en) Cloud authenticated offline file sharing
WO2017185692A1 (en) Key distribution and authentication method, apparatus and system
EP3065334A1 (en) Key configuration method, system and apparatus
US20160119316A1 (en) Wireless network authentication method and wireless network authentication apparatus
US11246033B2 (en) Authentication method, and related device and system
CN110800331A (en) Network verification method, related equipment and system
TW201644291A (en) Apparatus and method for sponsored connectivity to wireless networks using application-specific network access credentials (1)
JP2018523933A (en) Content security in the service layer
TW201644292A (en) Apparatus and method for sponsored connectivity to wireless networks using application-specific network access credentials (2)
JP2015503303A (en) Secure communication system and communication method
WO2014127751A1 (en) Wireless terminal configuration method, apparatus and wireless terminal
WO2014201783A1 (en) Encryption and authentication method, system and terminal for ad hoc network
WO2014194818A1 (en) Method for discovering user of equipment, and user equipment
JP2022109301A (en) Data transmission method, communication processing method, apparatus, and communication processing program
JP5721183B2 (en) Wireless LAN communication system, wireless LAN base unit, communication connection establishment method, and program
JP6056970B2 (en) Information processing apparatus, terminal, information processing system, and information processing method
WO2014205703A1 (en) Method and device for detecting shared access, and terminal device
JP5388088B2 (en) Communication terminal device, management device, communication method, management method, and computer program.
WO2017206185A1 (en) Method, apparatus and system for verifying legitimacy of application program
WO2012116633A1 (en) Authentication method based on dhcp, dhcp server and client
CN113132982A (en) Data forwarding method and device, computer equipment and storage medium
KR100463751B1 (en) Method for generating packet-data in wireless-communication and method and apparatus for wireless-communication using that packet-data
JP7076051B1 (en) Devices, methods and programs for providing communication services to access IP networks
JP7076050B1 (en) Devices, methods and programs for providing communication services to access IP networks
CN113194471B (en) Wireless network access method, device and terminal based on block chain network

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 13887435

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 13887435

Country of ref document: EP

Kind code of ref document: A1