CN106102061A - Method for connecting network and device - Google Patents

Abstract

The disclosure relates to a network connection method and device. Wherein, the method includes: obtaining user identity information, and using the user identity information to generate a connection request; sending the connection request to a router, and the connection request is forwarded to the server by the router, so that the server can The user identity information is used for identity authentication; the connection response forwarded by the router is received, and the connection response includes the result of the identity authentication; when the result of the identity authentication indicates that the authentication is passed, access to the network through the router. In this way, the smart device can be easily and conveniently connected to the wireless network.

Description

Network connection method and device

technical field

The present disclosure relates to the technical field of communications, and in particular to a network connection method and device.

Background technique

Wi-Fi (English: Wireless-Fidelity, Chinese: Wireless Fidelity) is a technology that can connect smart devices to each other wirelessly.

In related technologies, the smart device can search for nearby wireless networks, and after searching for a Wi-Fi signal, display the Wi-Fi account to the user through the display screen of the smart device for the user to choose. If the Wi-Fi account is set with an access password, the user can connect to the wireless network after entering the correct password.

Contents of the invention

The disclosure provides a network connection method and device.

According to the first aspect of an embodiment of the present disclosure, a network connection method is provided, including: obtaining user identity information, and using the user identity information to generate a connection request; sending the connection request to a router, and the connection request is determined by the The router forwards it to the server, so that the server performs identity authentication on the user identity information; receives the connection response forwarded by the router, and the connection response includes the result of the identity authentication; when the result of the identity authentication indicates that the authentication is passed , access the network through the router.

The technical solutions provided by the embodiments of the present disclosure may include the following beneficial effects: when a smart device accesses a wireless network, the connection request sent to the router includes user identity information. Correspondingly, the user does not need to know the access password of the router, and the local cache of the smart device does not need to store the access passwords of multiple routers. In this way, not only can the smart device be connected to the wireless network simply and conveniently, but also the situation that the smart device cannot be connected to the wireless network due to the change of the access password will not occur.

In a first possible implementation manner of the first aspect of the embodiments of the present disclosure, the acquiring the user identity information includes: reading the user identity information from a local cache of the smart device.

The technical solution provided by this embodiment can include the following beneficial effects: In order to further simplify the process of network connection, user identity information can be stored in the local cache of the smart device, so that when requesting to access the network, the user identity information can be automatically retrieved from the local cache Read user identity information and generate a connection request.

With reference to the first aspect of the embodiments of the present disclosure or the first possible implementation manner of the first aspect, in a second possible implementation manner, the user identity information includes a user identity identifier and a login password.

The technical solution provided by this embodiment may include the following beneficial effects: In order to simplify the process of network connection, avoid access to the wireless network provided by the router after obtaining the access password of each router as in the related technology, and use user identity information to identify Authentication, in order to determine whether to allow smart devices to access the network. In order to ensure the security of use, the user identity and login password can be used as user identity information.

According to the second aspect of the embodiments of the present disclosure, there is provided a network connection method, including: receiving a connection request sent by a smart device, the connection request including user identity information; forwarding the connection request to a server, and the connection request triggering The server performs identity authentication on the user identity information; receives a connection response returned by the server, and the connection response includes a result of identity authentication; forwards the connection response to the smart device, and the smart device is used for When the result of the identity authentication indicates that the authentication is passed, access to the network.

The technical solutions provided by the embodiments of the present disclosure may include the following beneficial effects: when a smart device accesses a wireless network, after the router receives a connection request including user identity information, it can forward the connection request to a server with high security for Authentication. In this way, not only can the smart device be easily and conveniently connected to the wireless network, but also effectively ensure the security of the network connection.

In the first possible implementation manner of the second aspect of the embodiments of the present disclosure, before receiving the connection response returned by the server, the method further includes: sending an authentication request to the server, and the authentication request includes a router The identity information of the user, so that the server performs identity authentication on the user identity information when it determines that the authentication of the identity information of the router is passed.

The technical solutions provided by the embodiments of the present disclosure may include the following beneficial effects: in combination with practical applications, the server can perform identity authentication on the router when needed, so as to ensure the security of the wireless network provided by the router, and further improve the security of the network connection .

According to a third aspect of the embodiments of the present disclosure, there is provided a network connection method, including: receiving a connection request sent by a router, the connection request is sent to the router by a smart device, and the connection request includes user identity information; using Save the identity information of the legitimate user, perform identity authentication on the user identity information, and obtain the result of the identity authentication; send a connection response to the router, the connection response includes the result of the identity authentication, and the router is used to Forwarding the connection response to the smart device, so that the smart device accesses the network when the identity authentication result indicates that the authentication is passed.

The technical solutions provided by the embodiments of the present disclosure may include the following beneficial effects: when a smart device accesses a wireless network, a server with high security performs identity authentication, that is, the server judges whether to allow the smart device to access the wireless network, and then While connecting smart devices to the wireless network simply and conveniently, it effectively ensures the security of the network connection.

In the first possible implementation manner of the third aspect of the embodiments of the present disclosure, the method of obtaining the identity information of the legitimate user is: when performing user registration, capture the user identity information input by the user, and capture the The user identity information is determined as the identity information of the legal user.

With reference to the third aspect of the embodiments of the present disclosure or the first possible implementation manner of the third aspect, in the second possible implementation manner, in the use of the saved identity information of the legal user, the user identity information Perform identity authentication, before obtaining the result of identity authentication, the method further includes: receiving an authentication request sent by the router, the authentication request including the identity information of the router; identity information of the router for identity authentication; when the identity information of the router passes the authentication, execute the use of the stored legal user identity information, perform identity authentication for the user identity information, and obtain an identity authentication result.

The technical solution provided by this embodiment may include the following beneficial effects: in combination with practical applications, the server may perform identity authentication on the router when necessary, to ensure the security of the wireless network provided by the router, and further improve the security of network connections.

With reference to the second possible implementation manner of the third aspect of the embodiments of the present disclosure, in the third possible implementation manner, the manner of obtaining the identity information of the legal router is: when performing router registration, the router requesting registration A random secret key is generated, and the random secret key is determined as the identity information of the legal router.

The technical solution provided by this embodiment can include the following beneficial effects: the server can generate a random secret key for each registered router, and determine the random secret key as the identity information of the router, thus helping to improve the security of the network connection sex.

According to a fourth aspect of the embodiments of the present disclosure, there is provided a network connection device, including: an acquisition module configured to acquire user identity information, and use the user identity information to generate a connection request; a sending module configured to send the The connection request, the connection request is forwarded by the router to the server, so that the server performs identity authentication on the user identity information; the receiving module is configured to receive the connection response forwarded by the router, the connection The response includes the result of the identity authentication; the access module is configured to access the network through the router when the result of the identity authentication indicates that the authentication is passed.

In a first possible implementation manner of the fourth aspect of the embodiments of the present disclosure, the obtaining module is configured to read the user identity information from a local cache of the smart device.

According to a fifth aspect of an embodiment of the present disclosure, there is provided a network connection device, including: a first receiving module configured to receive a connection request sent by a smart device, where the connection request includes user identity information; a first sending module, It is configured to forward the connection request to the server, and the connection request triggers the server to authenticate the user identity information; the second receiving module is configured to receive the connection response returned by the server, and the connection response Include the result of the identity authentication; the second sending module is configured to forward the connection response to the smart device, and the smart device is used to access the network when the result of the identity authentication indicates that the authentication is passed.

In the first possible implementation manner of the fifth aspect of the embodiments of the present disclosure, the device further includes:

The third sending module is configured to send an authentication request to the server before the connection response receiving module receives the connection response, the authentication request includes the identity information of the router, so that the server determines the identity information of the router When the identity information authentication passes, identity authentication is performed on the user identity information.

According to a sixth aspect of the embodiments of the present disclosure, there is provided a network connection device, including: a first receiving module configured to receive a connection request sent by a router, the connection request is sent to the router by a smart device, and the connection The request includes user identity information; the first authentication module is configured to use the saved identity information of the legal user to perform identity authentication on the user identity information to obtain the result of the identity authentication; the sending module is configured to send to the router Send a connection response, the connection response includes the result of the identity authentication, and the router is used to forward the connection response to the smart device, so that the smart device indicates that the authentication is passed in the result of the identity authentication , access the network.

In the first possible implementation manner of the sixth aspect of the embodiments of the present disclosure, the device further includes: a first obtaining module configured to capture the user identity information input by the user during user registration, and capture the The obtained user identity information is determined as the legal user's identity information.

With reference to the sixth aspect of the embodiments of the present disclosure or the first possible implementation manner of the sixth aspect, in a second possible implementation manner, the device further includes: a second receiving module configured to Before an authentication module obtains the result of identity authentication, it receives an authentication request sent by the router, and the authentication request includes the identity information of the router; the second authentication module is configured to use the stored identity information of the legitimate router to The router's identity information is authenticated, and when the router's identity information is authenticated, the user identity authentication module obtains an identity authentication result.

With reference to the second possible implementation manner of the sixth aspect of the embodiments of the present disclosure, in a third possible implementation manner, the device further includes: a second obtaining module configured to request registration The router generates a random secret key, and determines the random secret key as the identity information of the legitimate router.

According to a seventh aspect of the embodiments of the present disclosure, there is provided a network connection device, including: a processor; a memory for storing instructions executable by the processor; wherein the processor is configured to: obtain user identity information, and use The user identity information generates a connection request; sends the connection request to a router, and the connection request is forwarded to a server by the router, so that the server performs identity authentication on the user identity information; receives the connection request forwarded by the router A connection response, where the connection response includes the result of the identity authentication; when the result of the identity authentication indicates that the authentication is passed, access to the network through the router.

According to an eighth aspect of an embodiment of the present disclosure, there is provided a network connection device, including: a processor; a memory for storing instructions executable by the processor; wherein the processor is configured to: receive a connection request sent by a smart device , the connection request includes user identity information; forwards the connection request to a server, and the connection request triggers the server to authenticate the user identity information; receives a connection response returned by the server, and the connection response Include the result of the identity authentication; forward the connection response to the smart device, and the smart device is used to access the network when the result of the identity authentication indicates that the authentication is passed.

According to a ninth aspect of an embodiment of the present disclosure, there is provided a network connection device, including: a processor; a memory for storing instructions executable by the processor; wherein the processor is configured to: receive a connection request sent by a router, The connection request is sent to the router by the smart device, and the connection request includes user identity information; using the saved identity information of the legal user to perform identity authentication on the user identity information to obtain an identity authentication result; The router sends a connection response, the connection response includes the result of the identity authentication, and the router is used to forward the connection response to the smart device, so that the smart device can indicate in the result of the identity authentication When the authentication is passed, access to the network.

It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the present disclosure.

Description of drawings

The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the disclosure and together with the description serve to explain the principles of the disclosure.

Fig. 1 is a flowchart showing a network connection method according to an exemplary embodiment.

Fig. 2 is a flowchart showing a network connection method according to another exemplary embodiment.

Fig. 3 is a flow chart of a network connection method according to yet another exemplary embodiment.

Fig. 4 is a schematic structural diagram of an implementation environment according to an exemplary embodiment.

Fig. 5 is a schematic diagram showing prompting a user to input identity information according to an exemplary embodiment.

Fig. 6 is a schematic diagram of prompting a user that the network connection fails according to an exemplary embodiment.

Fig. 7 is a schematic diagram of a network connection device according to an exemplary embodiment.

Fig. 8 is a schematic diagram of a network connection device according to another exemplary embodiment.

Fig. 9 is a schematic diagram of a network connection device according to yet another exemplary embodiment.

Fig. 10 is a block diagram showing a network connection device according to an exemplary embodiment.

Fig. 11 is a block diagram of a network connection device according to another exemplary embodiment.

Fig. 12 is a block diagram of a network connection device according to yet another exemplary embodiment.

detailed description

Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the accompanying drawings, the same numerals in different drawings refer to the same or similar elements unless otherwise indicated. The implementations described in the following exemplary examples do not represent all implementations consistent with the present disclosure. Rather, they are merely examples of apparatuses and methods consistent with aspects of the present disclosure as recited in the appended claims.

Fig. 1 is a flowchart showing a network connection method according to an exemplary embodiment. The network connection method can be applied to smart devices. For example, the smart device may be a terminal with a wireless networking function such as a smart phone, a tablet computer, a PC, and a notebook computer. The network connection method may include the following steps:

In step 101, user identity information is obtained, and a connection request is generated using the user identity information.

For example, when a wireless network needs to be connected, the smart device can obtain user identity information, generate a connection request including the user identity information, and send it to the server via the router for identity authentication.

For example, the smart device can prompt the user to enter the user identity information to obtain the user identity information; or, when the user enters the user identity information for the first time, the smart device can save the user identity information in a local cache, so that it can be read by The local cache method is used to obtain the user identity information; or, the above two methods can also be combined to determine whether the user identity information can be read from the local cache. If the user identity information cannot be read from the local cache, then Prompt the user for user identity information. The embodiment of the present disclosure may not limit the manner of acquiring user identity information.

In the embodiment of the present disclosure, when the smart device searches for a Wi-Fi signal, it may be triggered to obtain user identity information; or, the user may view the searched Wi-Fi accounts displayed on the smart device and select a For example, when the user clicks on a certain Wi-Fi account displayed on the smart device, it can be triggered to obtain user identity information; or, the smart device can search for a Wi-Fi signal and detect that the user needs to use the Wi-Fi When the network is connected, for example, when a user searches for information on a web page, it can be triggered to obtain user identity information. The embodiment of the present disclosure may not limit the manner of triggering the acquisition of user identity information.

In the embodiments of the present disclosure, the user identity information may be a user identity; or, the user identity information may be a user identity and a login password, which is not limited in this embodiment of the present disclosure. For example, the user ID can be information that can uniquely identify the device, such as the MAC address of the smart device, or the user ID can be information that can uniquely identify the user, such as a user name and a mobile phone number. There is no limit to this.

As an example, a user may access the server through a smart device, and set a user identity and a login password during user registration. For example, the user accesses the server through the smart device A and completes the registration. After obtaining the user identity information A, the user can input the user identity information A in the smart device A when necessary, so as to use the embodiment of the present disclosure to connect the smart device A to Or, you can also input user identity information A in other smart devices, for example, input user identity information A in smart device B, so that smart device B can be connected to the wireless network.

In step 102, the connection request is sent to a router, and the connection request is forwarded to a server by the router, so that the server performs identity authentication on the user identity information.

In step 103, a connection response forwarded by the router is received, and the connection response includes an identity authentication result.

In step 104, when the result of the identity authentication indicates that the authentication is passed, access to the network through the router.

In the embodiment of the present disclosure, when the smart device requests to access the wireless network provided by the router, the generated connection request can be sent to the router, and then the router forwards the connection request to the server for identity authentication. For this, please refer to Figure 3 below It is introduced in the illustrated embodiment, and will not be described in detail here. After the server obtains the result of the identity authentication, it can generate a connection response including the result of the identity authentication, and send the connection response to the smart device via the router.

For example, the result of identity authentication may be that the user's identity information is authenticated. Correspondingly, the smart device may connect to the wireless network provided by the router. As an example, the smart device may also prompt the user that the network connection is successful.

For example, the result of the identity authentication may be that the authentication of the user's identity information fails. Correspondingly, the smart device cannot connect to the wireless network provided by the router. As an example, the smart device may also prompt the user that the network connection fails. In a possible implementation, if the connection response returned by the server also includes the reason why the verification fails, the smart device can also prompt the user for the reason for the network connection failure, such as wrong user identity information, or the user has not completed the registration, Etc., the embodiments of the present disclosure may not limit this.

The following describes the technical effects of the embodiments of the present disclosure in combination with the network connection solutions in related technologies:

When a smart device uses related technologies to access a wireless network, the connection request sent to the router includes the access password of the router. Correspondingly, whenever a smart device requests to access a wireless network, the user needs to first know the access password of the router that provides the wireless network; or, the access password of the router that provides the wireless network needs to be saved in the local cache of the smart device. password. In addition, when the access password of the router is changed, the access password saved in the local cache will become invalid, so that the smart device can no longer access the wireless network.

When the smart device accesses the wireless network by using the embodiments of the present disclosure, the connection request sent to the router includes user identity information. Correspondingly, the user does not need to know the access password of the router, and the local cache of the smart device does not need to store the access passwords of multiple routers. In this way, the network connection process is not only simplified, but also the situation that the smart device cannot access the wireless network due to the change of the access password will not occur.

To sum up, the embodiment of the present disclosure can simply and conveniently connect the smart device to the wireless network.

Fig. 2 is a flowchart showing a network connection method according to another exemplary embodiment. The network connection method can be applied to routers. The network connection method may include the following steps:

In step 201, a connection request sent by a smart device is received, and the connection request includes user identity information.

In step 202, the connection request is forwarded to a server, and the connection request triggers the server to authenticate the user identity information.

In step 203, a connection response returned by the server is received, and the connection response includes an identity authentication result.

In step 204, the connection response is forwarded to the smart device, and the smart device is used to access the network when the result of the identity authentication indicates that the authentication is passed.

In the embodiment of the present disclosure, the router may serve as a communication medium between the smart device and the server. When a smart device requests to access the wireless network provided by the router, the router can receive the connection request sent by the smart device, and forward the connection request to a server with higher security, and the server performs identity authentication. Correspondingly, after the server completes the identity authentication and generates a connection response including the result of the identity authentication, the router can also receive the connection response sent by the server, and forward the connection response to the smart device, and the smart device determines the For details on whether to access the network, refer to the introduction in the embodiment shown in FIG. 1 above, and details will not be repeated here.

In a possible implementation manner, the router may also send an authentication request to the server, where the authentication request includes the identity information of the router, so that the server can further verify the User identity information for identity authentication.

That is to say, in order to improve the security of the network connection realized by the embodiments of the present disclosure, the router may send an authentication request including the identity information of the router to the server when necessary, so that the server can perform identity authentication on the router accordingly, and determine When the router identity authentication is passed, identity authentication is performed on the user identity information included in the connection request forwarded by the router. That is, it is necessary to ensure the legitimacy of the identity of the user and the legitimacy of the identity of the router.

For example, the router may be triggered to send an authentication request to the server after receiving the connection request sent by the smart device; or, the router may be triggered to send the authentication request to the server after being powered off and restarted. Do limited.

In the embodiment of the present disclosure, after the router receives the connection request sent by the smart device, it is triggered to send an authentication request to the server. Correspondingly, the router may perform step 202 to forward the connection request to the server after receiving the authentication response returned by the server indicating that the router has passed the authentication. Or, after the router forwards the connection request to the server in step 202, it can send an authentication request to the server according to the needs of the server. ask. Alternatively, the router may modify the connection request forwarded to the server, so that the modified connection request includes user identity information and router identity information. The embodiments of the present disclosure may not limit this.

In a possible implementation manner, after the router receives the connection request in the embodiment of the present disclosure, it can determine the type of the router by whether it can identify the data format of the connection request. If the router can identify the data format of the connection request, it can be determined as the router in the embodiment of the present disclosure, and can perform network connection according to the embodiment of the present disclosure; if the router cannot recognize the data format of the connection request, it can be determined as the router in the related art Corresponding to this, the router may prompt the user that the network connection fails; or, may also prompt the user to input the access password of the router, and use related technologies to connect to the network. The embodiments of the present disclosure may not limit this.

The following describes the technical effects of the embodiments of the present disclosure in combination with the network connection solutions in related technologies:

When a smart device uses related technologies to access a wireless network, if the router does not set an access password, the smart device can directly connect to the wireless network provided by the router. The security of this wireless network is very low, and even the wireless network itself may be a fake phishing Wi-Fi, the security of the network connection cannot be guaranteed. If the router has set an access password, the smart device can send a connection request including the access password to the router. Correspondingly, as long as the router determines that the access password is correct, the smart device can be connected to the wireless network provided by the router. The cost of Wi-Fi is very low, the security of Wi-Fi is difficult to guarantee, and the access password may be easily cracked. Even if the access password is set, the security of the network connection cannot be effectively guaranteed.

When a smart device uses this embodiment of the disclosure to access a wireless network, after the router receives a connection request including user identity information, it forwards it to a server with high security for identity authentication, which can effectively ensure the security of the network connection in this embodiment of the disclosure. . In addition, when necessary, the router can also be triggered to send an authentication request including the identity information of the router to the server, and the server can perform identity authentication on the router, so as to ensure the security of the wireless network provided by the router, and further improve the network connection of the embodiments of the present disclosure. security.

To sum up, the embodiments of the present disclosure can simply and conveniently connect the smart device to the wireless network, and at the same time can effectively ensure the security of the network connection.

Fig. 3 is a flow chart of a network connection method according to yet another exemplary embodiment. The network connection method can be applied to a server. The network connection method may include the following steps:

In step 301, a connection request sent by a router is received, the connection request is sent to the router by a smart device, and the connection request includes user identity information.

In step 302, use the saved identity information of the legitimate user to perform identity authentication on the user identity information, and obtain an identity authentication result.

As an example, the server may store the identity information of the legitimate user locally, and perform identity authentication on the user identity information in the connection request by means of a lookup and comparison. For example, if the user identity information in the connection request is found from the identity information of the legitimate user, an identity authentication result indicating that the authentication is passed can be obtained. If the identity information of the user in the connection request is not found from the identity information of the legitimate user, an identity authentication result indicating that the authentication fails can be obtained. It can be understood that the legal user in the embodiment of the present disclosure refers to the user who has completed registration on the server, and the legal user can use the embodiment of the present disclosure to connect to the network.

As an example, the server may capture user identity information input by the user during user registration, and determine the captured user identity information as identity information of a legitimate user.

In step 303, a connection response is sent to the router, the connection response includes the result of the identity authentication, and the router is used to forward the connection response to the smart device, so that the smart device can The result of the identity authentication indicates access to the network when the authentication is passed.

In a possible implementation manner, the server may also perform identity authentication on the router to ensure the double legitimacy of the identity of the user and the identity of the router. For example, the server may receive the authentication request sent by the router, and the authentication request includes the identity information of the router; use the saved identity information of the legal router to perform identity authentication on the identity information of the router; when the identity information of the router When the information authentication is passed, execute the use of the saved identity information of the legitimate user, perform identity authentication on the user identity information, and obtain an identity authentication result.

As an example, the server may store the identity information of the legal router locally, and perform identity authentication on the router identity information in the authentication request by means of searching and comparing. For example, if the identity information of the router in the authentication request is found from the identity information of the legitimate router, it means that the authentication of the identity information of the router is passed. If the identity information of the router in the authentication request is not found from the identity information of the legitimate router, it means that the authentication of the identity information of the router fails. It can be understood that the legitimate router in the embodiment of the present disclosure refers to the router that has been registered on the server, and the legitimate router can use the embodiment of the present disclosure to enable the smart device to access the wireless network.

As an example, when registering the router, the server may obtain the identity of the router, and determine the identity as the identity information of the legal router. For example, the identifier of the router may be information such as a MAC address that can uniquely identify the router. For example, the router can send a registration request to the server, and the registration request includes the MAC address of the router; correspondingly, the server receives the registration request, and uses the MAC address to determine that the router has not been registered, then the MAC address can be used as the The identity information is stored locally on the server.

As an example, in order to improve the security of the network connection in the embodiment of the present disclosure, the server may generate a random key for the router requesting registration when registering the router, and determine the random key as the identity of the legitimate router information. For example, the router can send a registration request to the server, and the registration request includes the MAC address of the router; correspondingly, the server receives the registration request, and uses the MAC address to determine that the router has not been registered, and then generates a random secret key as The identity information of the router is stored locally on the server. Correspondingly, in order to facilitate subsequent server authentication of the router, the server may also send a random secret key to the router for storage through a registration response, which is not limited in this embodiment of the present disclosure.

Alternatively, the above two examples may also be combined to determine the identity of the router and the random secret key as the identity information of the legal router, which is not limited in this embodiment of the present disclosure.

In addition, in order to further improve the security of the network connection in the embodiment of the present disclosure, the identity of the legal user and/or the identity of the router may be encrypted by a certain encryption algorithm, and then stored in the server.

The following describes the technical effects of the embodiments of the present disclosure in combination with the network connection solutions in related technologies:

When a smart device uses related technologies to access a wireless network, the smart device directly interacts with a router with low security, and the router judges whether to allow the smart device to access the wireless network, and the security of the network connection is very low.

When a smart device accesses a wireless network using the embodiments of the present disclosure, the router is used as a communication medium between the smart device and the server to forward the connection request sent by the smart device to the server and forward the connection response sent by the server to the smart device. That is to say, the server with high security saves the legal user identity information, and the server judges whether to allow the smart device to access the wireless network, which improves the security level of the network connection, increases the difficulty of deciphering, and can effectively guarantee the security of the embodiments of the present disclosure. Security of network connections.

To sum up, the embodiments of the present disclosure can simply and conveniently connect the smart device to the wireless network, and at the same time can effectively ensure the security of the network connection.

Fig. 4 is a schematic structural diagram of an implementation environment according to an exemplary embodiment, which may involve a smart device 401, a router 402, and a server 403. The network connection process of the embodiment of the present disclosure will be explained below in conjunction with an exemplary embodiment. In this embodiment, the server stores the identity information of legal users U ₁ , U ₂ , U ₃ , and U ₄ , and also stores the identity information of legal routers A, B, and C. For example, router A is deployed in a shopping mall, and the Wi-Fi account of the wireless network provided by the router is shangchang.

1. When the user U ₁ is in the shopping mall, he searches for nearby networks through his mobile phone. At this time, he can display the searched Wi-Fi account to U ₁ through the display screen of the mobile phone. For example, the searched Wi-Fi account is shangchang. If U ₁ clicks to select shangchang, and it is determined that the identity information of U ₁ is saved in the local cache of the mobile phone, a connection request can be generated and sent to router A.

2. After router A receives the connection request sent by the mobile phone, it can forward the connection request to the server. In this way, the server can use the identity information of U ₁ to match with the legal user identity information stored locally. In this embodiment, when the matching is successful, the server generates a connection response indicating that the authentication is passed, and sends it to router A. In this way, router A can forward the connection response to the mobile phone, so that the mobile phone can access the wireless network provided by router A.

3. If a hacker uses router D to set up a fake phishing Wi-Fi in the shopping mall, and names the Wi-Fi account shangchang1, then when U ₁ searches for nearby networks on the mobile phone, the Wi-Fi account shown to U ₁ can be For: shangchang and shangchang1. If U ₁ clicks and selects shangchang1, the identity information of U ₁ can also be read from the local cache of the mobile phone, and a connection request is generated and sent to router D.

4. After router D receives the connection request sent by the mobile phone, it can forward the connection request to the server. In this embodiment, after receiving the connection request, the server may trigger router D to send an authentication request to the server, so as to authenticate router D. For example, if the identity information of the router is a MAC address, the router D can use its MAC address to generate an authentication request and send it to the server. In this way, the server can use the identity information of the legal router stored locally to identify the router D. certified. In this embodiment, the identity authentication result of router D is not passed, the server can stop the authentication process for the connection request sent by router D, return the connection response that the user identity authentication has not passed to router D, and prohibit the mobile phone from being connected to router D to provide fake phishing Wi-Fi to ensure the security of network connections.

5. When the user U ₅ is in the shopping mall, when searching for nearby networks through the pad, the wireless network whose Wi-Fi account is shangchang is found. If U ₅ clicks to select shangchang, and it is determined that the identity information of U ₅ is not saved in the local buffer of the pad, the user may be prompted to input the identity information through the display screen of the pad. Referring to the exemplary embodiment shown in FIG. 5, the user may also be prompted to register at the same time. In this embodiment, if user U ₅ is an unregistered user, U ₅ can be guided to complete the registration after U ₅ clicks on register, and at the same time, the server can capture the user identity information filled in by U ₅ when registering, and The identity information of legal users is updated to the identity information of U ₁ , U ₂ , U ₃ , U ₄ , and U ₅ .

In this way, after the U ₅ completes the registration, the pad can be connected to the wireless network provided by the router A by using the embodiments of the present disclosure.

6. When the user U ₆ is in the shopping mall, when he searches for nearby networks through his laptop, he finds the wireless network whose Wi-Fi account is shangchang. If U ₆ clicks to select shangchang, and it is determined that the identity information of U ₆ is not saved in the local cache of the laptop computer, U ₆ can be prompted to input the identity information as shown in Figure 5 . In this embodiment, if the user _U6 is an unregistered user, but has entered the user identity and login password in the user identity information column.

Corresponding to this, first, the notebook computer will use the user identity information input by U ₆ to generate a connection request, and send the connection request to the server through router A; secondly, the server will generate a connection response indicating that the authentication fails, and send the connection request to the server through router A. The connection response is sent to the laptop, and the laptop is prohibited from accessing the wireless network provided by router A; finally, the laptop can prompt the user that the network connection fails through the display screen. Referring to the exemplary embodiment shown in FIG. 6, the user may also be prompted to register at the same time. In this way, the server can capture the user identity information filled in by U ₆ when guiding U ₆ to register as a user, and update the identity information of legitimate users to U ₁ , U ₂ , U ₃ , U ₄ , U ₅ , and U ₆ identity information.

In this way, after U ₆ completes the registration, the embodiment of the present disclosure can be used to connect the notebook computer to the wireless network provided by the router A.

Fig. 7 is a schematic diagram of a network connection device according to an exemplary embodiment. The device may belong to a smart device. Referring to FIG. 7 , the apparatus 700 may include an acquiring module 701 , a sending module 702 , a receiving module 703 and an accessing module 704 .

The acquiring module 701 may be configured to acquire user identity information, and use the user identity information to generate a connection request;

The sending module 702 may be configured to send the connection request to a router, and the connection request is forwarded by the router to a server, so that the server performs identity authentication on the user identity information;

The receiving module 703 may be configured to receive a connection response forwarded by the router, where the connection response includes an identity authentication result;

The access module 704 may be configured to access the network through the router when the result of the identity authentication indicates that the authentication is passed.

To sum up, when using the embodiment of the present disclosure to access a wireless network, the obtaining module 701 uses the user identity to generate a connection request, that is, the connection request sent by the sending module 702 to the router includes user identity information. Correspondingly, the user does not need to know the access password of the router, and the local cache of the smart device does not need to store the access passwords of multiple routers. In this way, not only can the smart device be connected to the wireless network simply and conveniently, but also the situation that the smart device cannot be connected to the wireless network due to the change of the access password will not occur.

In a possible implementation manner, the obtaining module 701 may be configured to read the user identity information from a local cache of the smart device.

Fig. 8 is a schematic diagram of a network connection device according to another exemplary embodiment. The device may belong to a router. Referring to FIG. 8 , the apparatus 800 may include a first receiving module 801 , a first sending module 802 , a second receiving module 803 and a second sending module 804 .

The first receiving module 801 may be configured to receive a connection request sent by a smart device, and the connection request includes user identity information;

The first sending module 802 may be configured to forward the connection request to a server, and the connection request triggers the server to perform identity authentication on the user identity information;

The second receiving module 803 may be configured to receive a connection response returned by the server, where the connection response includes an identity authentication result;

The second sending module 804 may be configured to forward the connection response to the smart device, and the smart device is configured to access the network when the identity authentication result indicates that the authentication is passed.

To sum up, when using the embodiment of the present disclosure to access a wireless network, the first sending module 802 will forward the connection request sent by the smart device to a server with high security for identity authentication. In this way, not only can the smart device be easily and conveniently connected to the wireless network, but also effectively ensure the security of the network connection.

In a possible implementation manner, the device further includes: a third sending module, configured to send an authentication request to the server before the connection response receiving module receives the connection response, and the authentication request includes the router's identity information, so that the server performs identity authentication on the user identity information when determining that the identity information authentication of the router passes.

Fig. 9 is a schematic diagram of a network connection device according to yet another exemplary embodiment. The device may belong to a server. Referring to FIG. 9 , the device 900 may include a first receiving module 901 , a first authentication module 902 and a sending module 903 .

The first receiving module 901 may be configured to receive a connection request sent by a router, the connection request is sent to the router by a smart device, and the connection request includes user identity information;

The first authentication module 902 may be configured to perform identity authentication on the user identity information by using the saved identity information of the legitimate user, and obtain an identity authentication result;

The sending module 903 may be configured to send a connection response to the router, the connection response includes the result of the identity authentication, and the router is used to forward the connection response to the smart device, so that all The smart device accesses the network when the result of the identity authentication indicates that the authentication is passed.

To sum up, when using the embodiment of the present disclosure to access the wireless network, the first authentication module 902 in the server with high security performs identity authentication on the user identity information, so that the smart device can be easily and conveniently connected to While accessing the wireless network, it can effectively ensure the security of the network connection.

In a possible implementation manner, the device further includes: a first obtaining module, which may be configured to capture user identity information input by the user during user registration, and determine the captured user identity information as the Identity information of legitimate users.

In a possible implementation manner, the device further includes: a second receiving module, configured to receive an authentication request sent by the router before the first authentication module 902 obtains an identity authentication result, and the authentication request Including the identity information of the router; the second authentication module can be configured to use the saved identity information of the legal router to perform identity authentication on the identity information of the router, and when the authentication of the identity information of the router passes, then by The user identity authentication module obtains the result of identity authentication.

In a possible implementation manner, the device further includes: a second obtaining module, which may be configured to generate a random key for a router requesting registration when performing router registration, and determine the random key as the legitimate Identity information of the router.

Regarding the apparatus in the foregoing embodiments, the specific manner in which each module executes operations has been described in detail in the embodiments related to the method, and will not be described in detail here.

Fig. 10 is a block diagram of a network connection device 1000 according to an exemplary embodiment. For example, the apparatus 1000 may be a mobile phone, a computer, a digital broadcast terminal, a messaging device, a game console, a tablet device, a medical device, a fitness device, a personal digital assistant, and the like.

10, device 1000 may include one or more of the following components: processing component 1002, memory 1004, power component 1006, multimedia component 1008, audio component 1010, input/output (I/O) interface 1012, sensor component 1014, and communication component 1016.

The processing component 1002 generally controls the overall operations of the device 1000, such as those associated with display, telephone calls, data communications, camera operations, and recording operations. The processing component 1002 may include one or more processors 1020 to execute instructions to complete all or part of the steps of the above network connection method. Additionally, processing component 1002 may include one or more modules that facilitate interaction between processing component 1002 and other components. For example, processing component 1002 may include a multimedia module to facilitate interaction between multimedia component 1008 and processing component 1002 .

The memory 1004 is configured to store various types of data to support operations at the device 1000 . Examples of such data include instructions for any application or method operating on device 1000, contact data, phonebook data, messages, pictures, videos, and the like. The memory 1004 can be implemented by any type of volatile or non-volatile memory device or their combination, such as static random access memory (SRAM), electrically erasable programmable read-only memory (EEPROM), erasable Programmable Read Only Memory (EPROM), Programmable Read Only Memory (PROM), Read Only Memory (ROM), Magnetic Memory, Flash Memory, Magnetic or Optical Disk.

Power component 1006 provides power to various components of device 1000 . Power components 1006 may include a power management system, one or more power supplies, and other components associated with generating, managing, and distributing power for device 1000 .

The multimedia component 1008 includes a screen that provides an output interface between the device 1000 and the user. In some embodiments, the screen may include a liquid crystal display (LCD) and a touch panel (TP). If the screen includes a touch panel, the screen may be implemented as a touch screen to receive input signals from a user. The touch panel includes one or more touch sensors to sense touches, swipes, and gestures on the touch panel. The touch sensor may not only sense a boundary of a touch or swipe action, but also detect duration and pressure associated with the touch or swipe action. In some embodiments, the multimedia component 1008 includes a front camera and/or a rear camera. When the device 1000 is in an operation mode, such as a shooting mode or a video mode, the front camera and/or the rear camera can receive external multimedia data. Each front camera and rear camera can be a fixed optical lens system or have focal length and optical zoom capability.

The audio component 1010 is configured to output and/or input audio signals. For example, the audio component 1010 includes a microphone (MIC), which is configured to receive external audio signals when the device 1000 is in operation modes, such as call mode, recording mode and voice recognition mode. Received audio signals may be further stored in memory 1004 or sent via communication component 1016 . In some embodiments, the audio component 1010 also includes a speaker for outputting audio signals.

The I/O interface 1012 provides an interface between the processing component 1002 and a peripheral interface module, which may be a keyboard, a click wheel, a button, and the like. These buttons may include, but are not limited to: a home button, volume buttons, start button, and lock button.

Sensor assembly 1014 includes one or more sensors for providing status assessments of various aspects of device 1000 . For example, the sensor component 1014 can detect the open/closed state of the device 1000, the relative positioning of components, such as the display and keypad of the device 1000, and the sensor component 1014 can also detect a change in the position of the device 1000 or a component of the device 1000 , the presence or absence of user contact with the device 1000 , the device 1000 orientation or acceleration/deceleration and the temperature change of the device 1000 . The sensor assembly 1014 may include a proximity sensor configured to detect the presence of nearby objects in the absence of any physical contact. The sensor assembly 1014 may also include an optical sensor, such as a CMOS or CCD image sensor, for use in imaging applications. In some embodiments, the sensor component 1014 may also include an acceleration sensor, a gyroscope sensor, a magnetic sensor, a pressure sensor or a temperature sensor.

The communication component 1016 is configured to facilitate wired or wireless communication between the apparatus 1000 and other devices. The device 1000 can access wireless networks based on communication standards, such as WiFi, 2G or 3G, or a combination thereof. In an exemplary embodiment, the communication component 1016 receives broadcast signals or broadcast related information from an external broadcast management system via a broadcast channel. In an exemplary embodiment, the communication component 1016 also includes a near field communication (NFC) module to facilitate short-range communication. For example, the NFC module may be implemented based on Radio Frequency Identification (RFID) technology, Infrared Data Association (IrDA) technology, Ultra Wide Band (UWB) technology, Bluetooth (BT) technology and other technologies.

In an exemplary embodiment, apparatus 1000 may be programmed by one or more application specific integrated circuits (ASICs), digital signal processors (DSPs), digital signal processing devices (DSPDs), programmable logic devices (PLDs), field programmable A gate array (FPGA), controller, microcontroller, microprocessor or other electronic component implementation for performing the network connection method described above.

In an exemplary embodiment, there is also provided a non-transitory computer-readable storage medium including instructions, such as the memory 1004 including instructions, which can be executed by the processor 1020 of the device 1000 to implement the above-mentioned network connection method. For example, the non-transitory computer readable storage medium may be ROM, random access memory (RAM), CD-ROM, magnetic tape, floppy disk, optical data storage device, and the like.

Fig. 11 is a block diagram of a network connection device 1100 according to another exemplary embodiment. For example, apparatus 1100 may be provided as a router. Referring to FIG. 11 , apparatus 1100 includes processing component 1122 , which further includes one or more processors, and a memory resource represented by memory 1132 for storing instructions executable by processing component 1122 , such as application programs. The application program stored in memory 1132 may include one or more modules each corresponding to a set of instructions. In addition, the processing component 1122 is configured to execute instructions to perform the above-mentioned network connection method.

Device 1100 may also include a power component 1126 configured to perform power management of device 1100 , a wired or wireless network interface 1150 configured to connect device 1100 to a network, and an input-output (I/O) interface 1158 .

Fig. 12 is a block diagram of a network connection device 1200 according to another exemplary embodiment. For example, the apparatus 1200 may be provided as a server. 12, apparatus 1200 includes processing component 1222, which further includes one or more processors, and a memory resource represented by memory 1232 for storing instructions executable by processing component 1222, such as application programs. The application program stored in memory 1232 may include one or more modules each corresponding to a set of instructions. In addition, the processing component 1222 is configured to execute instructions to perform the above-mentioned network connection method.

Device 1200 may also include a power component 1226 configured to perform power management of device 1200 , a wired or wireless network interface 1250 configured to connect device 1200 to a network, and an input-output (I/O) interface 1258 . The apparatus 1200 can operate based on an operating system stored in the memory 1232, such as Windows Server™, MacOS X™, Unix™, Linux™, FreeBSD™ or the like.

Other embodiments of the disclosure will be readily apparent to those skilled in the art from consideration of the specification and practice of the disclosure. This application is intended to cover any modification, use or adaptation of the present disclosure, and these modifications, uses or adaptations follow the general principles of the present disclosure and include common knowledge or conventional technical means in the technical field not disclosed in the present disclosure . The specification and examples are to be considered exemplary only, with a true scope and spirit of the disclosure being indicated by the following claims.

It should be understood that the present disclosure is not limited to the precise constructions which have been described above and shown in the drawings, and various modifications and changes may be made without departing from the scope thereof. The scope of the present disclosure is limited only by the appended claims.

Claims (20)

1. A network connection method, characterized in that, comprising: Obtain user identity information, and use the user identity information to generate a connection request; sending the connection request to a router, and the connection request is forwarded by the router to a server, so that the server performs identity authentication on the user identity information; receiving a connection response forwarded by the router, where the connection response includes an identity authentication result; When the result of the identity authentication indicates that the authentication is passed, access to the network through the router. 2. The method according to claim 1, wherein said acquiring user identity information comprises: The user identity information is read from the local cache of the smart device. 3. The method according to claim 1 or 2, wherein the user identity information includes a user identity and a login password. 4. A network connection method, characterized in that, comprising: Receive a connection request sent by the smart device, where the connection request includes user identity information; Forwarding the connection request to a server, the connection request triggering the server to perform identity authentication on the user identity information; receiving a connection response returned by the server, where the connection response includes an identity authentication result; Forwarding the connection response to the smart device, where the smart device is configured to access the network when the identity authentication result indicates that the authentication is passed. 5. The method according to claim 4, wherein before receiving the connection response returned by the server, the method further comprises: Sending an authentication request to the server, where the authentication request includes the identity information of the router, so that the server performs identity authentication on the user identity information after determining that the identity information of the router passes the authentication. 6. A network connection method, characterized in that, comprising: Receive a connection request sent by a router, the connection request is sent to the router by the smart device, and the connection request includes user identity information; Perform identity authentication on the user identity information by using the saved identity information of the legitimate user, and obtain an identity authentication result; sending a connection response to the router, where the connection response includes the result of the identity authentication, and the router is configured to forward the connection response to the smart device, so that the smart device The result indicates that when the authentication is passed, it is connected to the network. 7. The method according to claim 6, wherein the method of obtaining the identity information of the legal user is: During user registration, the user identity information input by the user is captured, and the captured user identity information is determined as the legal user's identity information. 8. The method according to claim 6 or 7, characterized in that, before said user identity information is authenticated using the saved identity information of the legitimate user, and before the result of identity authentication is obtained, said method further include: receiving an authentication request sent by the router, where the authentication request includes the identity information of the router; performing identity authentication on the identity information of the router by using the saved identity information of the legal router; When the authentication of the identity information of the router is passed, execute the use of the saved identity information of the legitimate user, perform identity authentication on the user identity information, and obtain an identity authentication result. 9. The method according to claim 8, wherein the method of obtaining the identity information of the legal router is: During router registration, a random secret key is generated for the router requesting registration, and the random secret key is determined as the identity information of the legitimate router. 10. A network connection device, comprising: An acquisition module configured to acquire user identity information, and use the user identity information to generate a connection request; A sending module configured to send the connection request to a router, and the connection request is forwarded by the router to a server, so that the server performs identity authentication on the user identity information; A receiving module configured to receive a connection response forwarded by the router, where the connection response includes an identity authentication result; The access module is configured to access the network through the router when the result of the identity authentication indicates that the authentication is passed. 11. The apparatus of claim 10, wherein: The obtaining module is configured to read the user identity information from the local cache of the smart device. 12. A network connection device, comprising: The first receiving module is configured to receive a connection request sent by the smart device, and the connection request includes user identity information; The first sending module is configured to forward the connection request to a server, and the connection request triggers the server to authenticate the user identity information; The second receiving module is configured to receive a connection response returned by the server, where the connection response includes an identity authentication result; The second sending module is configured to forward the connection response to the smart device, and the smart device is configured to access the network when the result of the identity authentication indicates that the authentication is passed. 13. The device according to claim 12, further comprising: The third sending module is configured to send an authentication request to the server before the connection response receiving module receives the connection response, the authentication request includes the identity information of the router, so that the server determines the identity information of the router When the identity information authentication passes, identity authentication is performed on the user identity information. 14. A network connection device, comprising: The first receiving module is configured to receive a connection request sent by a router, the connection request is sent to the router by a smart device, and the connection request includes user identity information; The first authentication module is configured to use the saved identity information of the legal user to perform identity authentication on the user identity information, and obtain an identity authentication result; The sending module is configured to send a connection response to the router, the connection response includes the result of the identity authentication, and the router is configured to forward the connection response to the smart device, so that the smart device When the result of the identity authentication indicates that the authentication is passed, access to the network. 15. The device according to claim 14, further comprising: The first obtaining module is configured to capture user identity information input by the user during user registration, and determine the captured user identity information as the legal user's identity information. 16. The device according to claim 14 or 15, wherein the device further comprises: The second receiving module is configured to receive an authentication request sent by the router before the first authentication module obtains an identity authentication result, and the authentication request includes the identity information of the router; The second authentication module is configured to use the saved identity information of the legal router to perform identity authentication on the identity information of the router, and when the authentication of the identity information of the router passes, the user identity authentication module obtains the identity Result of certification. 17. The device according to claim 16, further comprising: The second obtaining module is configured to generate a random secret key for a router requesting registration when performing router registration, and determine the random secret key as the identity information of the legal router. 18. A network connection device, comprising: processor; memory for storing processor-executable instructions; Wherein, the processor is configured as: Obtain user identity information, and use the user identity information to generate a connection request; sending the connection request to a router, and the connection request is forwarded by the router to a server, so that the server performs identity authentication on the user identity information; receiving a connection response forwarded by the router, where the connection response includes an identity authentication result; When the result of the identity authentication indicates that the authentication is passed, access to the network through the router. 19. A network connection device, comprising: processor; memory for storing processor-executable instructions; Wherein, the processor is configured as: Receive a connection request sent by the smart device, where the connection request includes user identity information; Forwarding the connection request to a server, the connection request triggering the server to perform identity authentication on the user identity information; receiving a connection response returned by the server, where the connection response includes an identity authentication result; Forwarding the connection response to the smart device, where the smart device is configured to access the network when the identity authentication result indicates that the authentication is passed. 20. A network connection device, comprising: processor; memory for storing processor-executable instructions; Wherein, the processor is configured as: Receive a connection request sent by a router, the connection request is sent to the router by the smart device, and the connection request includes user identity information; Perform identity authentication on the user identity information by using the saved identity information of the legitimate user, and obtain an identity authentication result; Send a connection response to the router, the connection response includes the result of the identity authentication, and the router is used to forward the connection response to the smart device, so that the smart device The result indicates that when the authentication is passed, it is connected to the network.