CN103298062B - Access method and the access point of wireless network - Google Patents

Access method and the access point of wireless network Download PDF

Info

Publication number
CN103298062B
CN103298062B CN201310189847.4A CN201310189847A CN103298062B CN 103298062 B CN103298062 B CN 103298062B CN 201310189847 A CN201310189847 A CN 201310189847A CN 103298062 B CN103298062 B CN 103298062B
Authority
CN
China
Prior art keywords
message
terminal
wireless network
accessed
access
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201310189847.4A
Other languages
Chinese (zh)
Other versions
CN103298062A (en
Inventor
李云波
刘景伟
李勇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to CN201310189847.4A priority Critical patent/CN103298062B/en
Publication of CN103298062A publication Critical patent/CN103298062A/en
Priority to PCT/CN2013/087411 priority patent/WO2014187091A1/en
Application granted granted Critical
Publication of CN103298062B publication Critical patent/CN103298062B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W74/00Wireless channel access, e.g. scheduled or random access
    • H04W74/002Transmission of channel access control information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/08Access restriction or access information delivery, e.g. discovery data delivery
    • H04W48/10Access restriction or access information delivery, e.g. discovery data delivery using broadcasted information

Abstract

The embodiment of the invention discloses a kind of method accessing wireless network and access point, relate to communication technical field, described method includes: the terminal quantity of the wireless network to be accessed such as detection;When the terminal quantity of wireless networks to be accessed such as detecting is more than or equal to preset value, start broadcast mode;To etc. wireless network to be accessed terminal broadcast the first message Message1 after start access process so that described terminal access described wireless network.The present invention is associated between access point and terminal be applicable to wireless network.

Description

Access method and the access point of wireless network
Technical field
The present invention relates to communication technical field, particularly to a kind of method accessing wireless network and access point.
Background technology
Along with the application of wireless network and universal, people increasingly pay close attention to safety and the efficiency of wireless network. 802.11i wireless security procotol uses 4-Way Handshake(tetra-step to shake hands) to realize user conversation close The dynamic negotiation of key so that STA(Station, terminal) and AP(Access Point, access point) association, Carry out data transmission.
The full authentication process of above-mentioned 802.11i wireless security procotol includes: shaking hands between STA and AP, STA and AS(Authentication Server, certificate server) between shake hands, between AP and AS Shaking hands, our four described steps are shaken hands and are referred to shaking hands between STA and AP.Carry out four steps at STA and AP to shake hands Before, STA and AS mutually authenticates each other one common MSK(Master Session Key of generation, main meeting Words key).MSK is transferred to AP by AS, AP with STA is utilized respectively this MSK and generates identical PMK afterwards (Pairwise Master Key, pairwise master key), wherein PMK is to shake hands middle generation PTK as four steps The material of (Pairwise Transient Key, pair temporal key).
Completing in above-mentioned preparation, AP with STA carries out four steps and shakes hands, and sends Message1 to STA including: AP, Message1 comprises random number ANonce and sequence code Sn that the AP for producing PTK generates.STA receives Obtain ANonce after Message1, and combine the SNonce derivation PTK of oneself, then send Message2 to AP. Message2 comprises random number SNonce and sequence code Sn that STA generates and uses calculated PTK to do to disappear Breath completeness check.AP obtains SNonce after receiving Message2, calculate PTK or GTK(Group Transient Key, Group Temporal Key), use pairwise master key PMK pair in the PTK calculated simultaneously Data carry out MIC (Message Integrity Code, message integrity authentication code) verification, if verifying successfully, Sending Message3 to STA, this message comprises ANonce and Sn and adds 1, uses PTK to do message integrity check. STA loads PTK after receiving Message3 and sends Message4 message, and Message4 comprises Sn+1.Show Have been loaded into after PTK, AP receive Message4 loading PTK, 4-Way Handshake to complete.
When accessing the STA negligible amounts of AP, it is close that STA completes dynamic session by 4-Way Handshake with AP Key consult can be the most smooth complete.But it is when greater number of STA consults dynamic session simultaneously, each Individual STA is required for completing 4-Way Handshake with AP, and the information of alternating transmission is too much, and network can be caused to believe Breath congested and conflict so that some need urgent access networks STA limit time in cannot complete with The association of AP.
Summary of the invention
There is provided a kind of method accessing wireless network and access point, it is possible to alleviate extensive STA when being concurrently accessed AP The access delay problem brought, improves STA and accesses the speed of AP.
First aspect, it is provided that a kind of method accessing wireless network, including:
The terminal quantity of the wireless networks to be accessed such as detection;
When the terminal quantity of wireless networks to be accessed such as detecting is more than or equal to preset value, start broadcast mode;
To etc. wireless network to be accessed terminal broadcast the first message Message1 after start access process so that institute State terminal and access described wireless network.
In the implementation that the first is possible, to etc. terminal broadcast first message of wireless network to be accessed Access process is started so that described terminal accesses described wireless network and includes after Message1:
Receive the second message Message2 that one or more terminal returns;
Calculate the pair temporal key PTK corresponding with described terminal according to described second message, use described PTK In pairwise master key PMK described second message is carried out message integrity authentication code MIC verification;
After verifying successfully, send the 3rd message Message3 to described terminal;
Receive the 4th message Message4 that described terminal returns;
Loading described PTK after verifying described 4th message successfully makes described terminal access described wireless network.
Further, when the terminal quantity of wireless networks to be accessed such as detecting is less than preset value, start single Broadcast pattern;
Access the order of wireless network according to described terminal request, a terminal sends the first message wherein Message1, starts access process.
In conjunction with the first possible implementation of first aspect or first aspect, in the realization that the second is possible In mode, while described startup broadcast mode, described method also includes: start intervalometer, arranges wide Broadcast pattern duration.The concrete numerical value of duration can be according to waiting the busy of access customer number mesh or current system The parameters such as degree are configured.
In conjunction with the implementation that the second is possible, in the implementation that the second is possible, if described timing Device time-out, switches to unicast mode by broadcast mode.
Second aspect, it is provided that the access point of a kind of wireless network, including:
Detector unit, for the terminal quantity of the wireless networks to be accessed such as detection;
Broadcast start unit, for the terminal quantity of wireless networks to be accessed such as detecting when described detector unit During more than or equal to preset value, start broadcast mode;
Transmitting element, for etc. wireless network to be accessed terminal broadcast the first message Message1 after start Access process is so that described terminal accesses described wireless network.
In the implementation that the first is possible, described access point also includes:
Receive unit, for receiving the second message Message2 that one or more terminal returns;
Calculate verification unit, calculate and described terminal pair for the second message received according to described reception unit The pair temporal key PTK answered, uses the pairwise master key PMK in described PTK to disappear described second message Breath integrated authentication code MIC verification;
Described transmitting element is additionally operable to after described calculating verification unit verifies successfully, send the 3rd to described terminal Message Message3;
Described reception unit is additionally operable to receive the 4th message Message4 that described terminal returns;
End unit, the 4th message for receiving described reception unit loads described PTK after verifying successfully to be made Described terminal accesses described wireless network.
Further, described access point also includes:
Clean culture start unit, for the terminal quantity of wireless networks to be accessed such as detecting when described detector unit During less than preset value, start unicast mode;
Described transmitting element be additionally operable to according to described terminal request access wireless network order, one wherein Terminal sends the first message Message1, starts access process.
In conjunction with the first possible implementation of second aspect or second aspect, in the realization that the second is possible In mode, described access point also includes:
Timing unit, is used for starting intervalometer, arranges broadcast mode duration.The concrete numerical value of duration can root The parameters such as the busy extent according to wait access customer number mesh or current system are configured.
In conjunction with the implementation that the second is possible, in the implementation that the third is possible, when described timing list During the described timer expiry that unit starts, described access point also includes:
Switch unit, for switching to unicast mode by broadcast mode.
Compared with prior art, the embodiment of the present invention is by the terminal quantity of the access point AP to be accessed such as detection; When the terminal quantity of AP to be accessed such as detecting is more than a preset value, AP starts the pattern of broadcast with multiple Terminal carries out access process simultaneously, can greatly speed up terminal and access the speed of AP;To be accessed when detecting etc. When the terminal quantity of AP is less than preset value, AP starts unicast mode, makes access way more flexible.Further , while AP starts broadcast mode, carry out timing, after timing reaches scheduled duration, automatically will broadcast Pattern switches to unicast mode, can effectively reduce the operand of AP, make access way more flexible.Thus Solve in prior art due to etc. the terminal that too much causes of the STA quantity of AP to be accessed access wireless network
The problem that speed is the slowest, improves terminal and accesses the speed of wireless network, promote Consumer's Experience.
Accompanying drawing explanation
For the technical scheme being illustrated more clearly that in the embodiment of the present invention, below will be to embodiment or existing skill In art description, the required accompanying drawing used is briefly described, it should be apparent that, the accompanying drawing in describing below is only It is only some embodiments of the present invention, for those of ordinary skill in the art, is not paying creative labor On the premise of Dong, it is also possible to obtain other accompanying drawing according to these accompanying drawings.
The method flow diagram that Fig. 1 provides for the embodiment of the present invention one;
The method flow diagram that Fig. 2 provides for the embodiment of the present invention two;
The access point structures schematic diagram that Fig. 3, Fig. 4 provide for the embodiment of the present invention three;
The access point structures schematic diagram that Fig. 5, Fig. 6 provide for the embodiment of the present invention four.
Detailed description of the invention
Advantage for making technical solution of the present invention is clearer, makees the present invention with embodiment below in conjunction with the accompanying drawings Describe in detail.
Embodiment one
The present embodiment provide a kind of method accessing wireless network, particular application in a wireless local area network, such as Fig. 1 Shown in, described method includes:
101, the terminal quantity of the wireless network to be accessed such as access point AP detection.
Such as, AP is arranged on public place, is scanned terminal STA in the range of it can cover.AP By receive determine its network coverage from the message frame of STA in have how many STA etc. to be accessed, wherein, Message frame can be association request frame (Association Request Frame) or probe request (Probe Request Frame).
102, when the terminal quantity of wireless networks to be accessed such as detecting is more than or equal to preset value, AP starts wide Broadcast pattern.
103, AP to etc. wireless network to be accessed terminal broadcast the first message Message1 after start access process So that described terminal accesses described wireless network.
Wherein, the access process that AP starts can be four step handshake procedure.
It should be noted that before step 103, AP and STA is by identical with generating alternately of AS PMK, AP generate random number ANonce, STA according to this PMK and generate random number SNonce according to this PMK.Wherein, To etc. first message Message1 of whole terminal broadcast of wireless network to be accessed include random number ANonce And sequence code Sn, further, also include that following flow process: AP receives the second message that i-th STA returns Message2, wherein, i span be 1-n, n whole terminal quantities of wireless network to be accessed such as be, I STA is after receiving the first message that AP sends, and in conjunction with ANonce, SNoncei and PMK, uses PRF (Pseudo Random Function, pseudo random number function) function calculates PTKi, then sends to AP Second message, the second message includes SNoncei and the MIC value using PTKi to make the second message;AP root According to ANonce, SNoncei and PMK in described second message, use PRF function to calculate PTKi, use institute State the pairwise master key PMK in PTK and described second message is carried out message integrity authentication code MIC verification, if Verify and the most then abandon the second message;If checking successfully, AP sends the 3rd message to i-th STA Message3.After 3rd message Message3 can be the second message that AP receives multiple STA, by right The broadcast frame that their transmission information fusion sends the most afterwards, it is also possible to be the list individually for i-th STA Broadcast frame.3rd message include ANonce and add 1 after Sn, after wherein i-th STA receives the 3rd message, 3rd message is tested, after verification is correct, loads described PTKi, and send the 4th message to AP, the 4th Message includes the Sn after adding 1;After AP receives the 4th message Message4 that i-th STA returns, to described the After four message verify successfully, AP loads described PTKi, terminates four step handshake procedure.It should be noted that above-mentioned n Individual STA with AP carries out can carrying out when four steps are shaken hands simultaneously, it is not necessary to wait STA Yu AP complete access after again Continuing executing with the access of next STA, therefore four steps under broadcast mode are shaken hands and STA access can be greatly improved The speed of AP.
Further, when the terminal quantity of wireless networks to be accessed such as detecting is less than preset value, AP starts Unicast mode;Access the order of wireless network according to described terminal request, AP terminal wherein sends the One message Message1, starts four step handshake procedure.Wherein, four steps under unicast mode shake hands also include with Lower flow process:
AP receives the second message Message2 that STA returns, and wherein, STA disappears receive AP transmission first After breath, in conjunction with ANonce, SNonce and PMK, use PRF(Pseudo Random Function, pseudo-with Machine number function) function calculates PTK, then sends the second message to AP, the second message include SNonce and Use the MIC value that the second message is made by PTK;AP according to ANonce, the SNonce in described second message and PMK, uses PRF function to calculate PTK, uses the pairwise master key PMK in described PTK to described second message Carrying out message integrity authentication code MIC verification, if verifying unsuccessfully, abandoning the second message;If checking successfully, AP sends the 3rd message Message3 to STA.3rd message Message3 can be that AP receives multiple STA After second message, they will be sent the broadcast frame that information fusion sends the most afterwards, it is also possible to be single Solely for the unicast frame of i-th STA.3rd message include ANonce and add 1 after Sn, wherein STA receive After the 3rd message, the 3rd message is tested, after verification is correct, load described PTK, and send the to AP Four message, the 4th message includes the Sn after adding 1;After AP receives the 4th message Message4 that STA returns, After verifying described 4th message successfully, AP loads described PTK, terminates four step handshake procedure.
Optionally, while described startup broadcast mode, start intervalometer, broadcast mode duration is set. The concrete numerical value of duration can enter according to parameters such as the busy extent of wait access customer number mesh or current system Row is arranged.If described timer expiry, broadcast mode is switched to unicast mode by AP.It should be noted that When AP is under broadcast mode, although multiple STA can be improved and be concurrently accessed access speed total during AP, but It is that AP needs the information to multiple STA to concentrate reply, for single STA, broadcast mode in such a mode Be not as flexible as unicast mode.It is initially accessed the speed of AP owing to this programme is intended merely to accelerate STA, so need not AP to be made is constantly in broadcast mode, and the message1 every time broadcasted also is effective restriction, therefore Can set a time restriction, after AP starts broadcast mode a period of time, AP automatically switches to clean culture mould Formula.
Compared with prior art, the embodiment of the present invention is by the terminal quantity of the access point AP to be accessed such as detection; When the terminal quantity of AP to be accessed such as detecting is more than a preset value, AP starts the pattern of broadcast with multiple Terminal carries out four steps simultaneously and shakes hands, and can greatly speed up terminal and access the speed of AP;To be accessed when detecting etc. When the terminal quantity of AP is less than preset value, AP starts unicast mode, makes access way more flexible.Further , while AP starts broadcast mode, carry out timing, after timing reaches scheduled duration, automatically will broadcast Pattern switches to unicast mode, can effectively reduce the operand of AP, make access way more flexible.Thus Solve in prior art due to etc. the terminal that too much causes of the STA quantity of AP to be accessed access wireless network The problem that speed is the slowest, improves terminal and accesses the speed of wireless network, promote Consumer's Experience.
Embodiment two
The present embodiment provides a kind of method accessing wireless network, is applied to what terminal STA associated with access point AP Process, adjusts the mode of AP Yu STA interaction message in four step handshake procedures, as in figure 2 it is shown, described method bag Include:
201, access point AP receives the message frame that terminal STA sends.
Such as, AP can be according to carrying out before four steps shake hands with STA, and request or mutual frame that STA sends come The STA quantity of AP to be accessed such as determining, described message frame can be association request frame or probe request, also It can be other message frame.
202, AP is according to the message frame received, it is judged that whether the STA quantity in its signal cover is more than Equal to preset value, if more than or equal to preset value, perform step 203;If less than preset value, perform step 208.
203, AP opens broadcast mode, to etc. all terminal broadcast first message of AP to be accessed.
It should be noted that before step 203, AP and STA is by identical with generating alternately of AS PMK, AP generate random number ANonce, STA according to this PMK and generate random number SNonce according to this PMK.Wherein, To etc. first message of whole terminal broadcast of AP to be accessed include random number ANonce and sequence code Sn.
204, STA receives the first message, calculates PTK according to the first message, sends the second message to AP.
Such as, calculate PTK process include: STA obtains the ANonce in the first message, in conjunction with self SNonce and PMK, uses PRF function to calculate PTK.
It should be noted that simply in the STA of the AP to be accessed such as numerous in the step of the present embodiment STA is described, and its PTK calculated is only used for this STA with AP to carry out four steps and shake hands, remaining STA's Yu AP Interaction refer to the interaction of this STA Yu AP.
Wherein, described second message includes SNonce and the MIC value using PTK to make the second message.
205, AP calculates the PTK corresponding with STA according to described second message, uses the PMK in described PTK to institute Stating the second message and carry out message integrity authentication code MIC verification, after verifying successfully, AP sends the 3rd to STA Message.After 3rd message Message3 can be the second message that AP receives multiple STA, will be to them Send the broadcast frame that sends the most afterwards of information fusion, it is also possible to be the unicast frame individually for i-th STA.
Concrete, AP, according to ANonce, SNonce and the PMK in described second message, uses PRF function meter Calculate PTK, use the pairwise master key PMK in described PTK that described second message is carried out message integrity certification Code MIC verification, if verifying unsuccessfully, abandons the second message.
Wherein, the Sn after the 3rd message includes ANonce and adds 1.
206, the 3rd message is tested by STA, loads described PTK, and send the 4th to AP after verification is correct Message.
Wherein, described 4th message includes the Sn after adding 1.
207, the 4th message is verified by AP, loads PTK after verifying successfully, makes terminal access wireless network.
208, AP accesses the order of wireless network according to described terminal request, carries out four steps with one of them terminal Shake hands.
Such as, the four step handshake procedure carried out are: an AP terminal wherein sends the first message;AP receives STA return the second message, wherein, STA receive AP send the first message after, in conjunction with ANonce, SNonce and PMK, uses PRF(Pseudo Random Function, pseudo random number function) function calculating Going out PTK, then send the second message to AP, the second message includes SNonce and uses PTK to the second message The MIC value made;AP, according to ANonce, SNonce and the PMK in described second message, uses PRF function meter Calculate PTK, use the pairwise master key PMK in described PTK that described second message is carried out message integrity certification Code MIC verification, if verifying unsuccessfully, abandons the second message;If checking successfully, AP sends the 3rd to STA Message, the 3rd message include ANonce and add 1 after Sn, after wherein STA receives the 3rd message, to Three message are tested, and load described PTK, and send the 4th message to AP, in the 4th message after verification is correct Including the Sn after adding 1;After AP receives the 4th message that STA returns, AP after described 4th message is verified successfully Load described PTK, terminate four step handshake procedure.
It should be noted that when AP is under broadcast mode, although multiple STA can be improved and be concurrently accessed AP Time total access speed, but AP needs the information to multiple STA to concentrate to reply, for single in such a mode For STA, broadcast mode is flexible not as unicast mode.It is initially accessed owing to this programme is intended merely to accelerate STA The speed of AP, so the unnecessary AP of making is constantly in broadcast mode, and the message1 every time broadcasted also is Effective restriction, therefore can set a time restriction, after AP starts broadcast mode a period of time, AP Automatically switch to unicast mode.
Optionally, while step 203-step 207 performs, it is also possible to comprise the steps:
209, AP is while starting broadcast mode, starts intervalometer.
The concrete numerical value of the duration of intervalometer can be according to waiting the busy of access customer number mesh or current system The parameters such as degree are configured.If 210 timer expiries, broadcast mode is switched to unicast mode by AP.
Wherein, after timer expiry, if there being new STA to access, perform step 208.
Compared with prior art, the embodiment of the present invention is by the terminal quantity of the access point AP to be accessed such as detection; When the terminal quantity of AP to be accessed such as detecting is more than a preset value, AP starts the pattern of broadcast with multiple Terminal carries out four steps simultaneously and shakes hands, and can greatly speed up terminal and access the speed of AP;To be accessed when detecting etc. When the terminal quantity of AP is less than preset value, AP starts unicast mode, makes access way more flexible.Further , while AP starts broadcast mode, carry out timing, after timing reaches scheduled duration, automatically will broadcast Pattern switches to unicast mode, can effectively reduce the operand of AP, make access way more flexible.Thus Solve in prior art due to etc. the terminal that too much causes of the STA quantity of AP to be accessed access wireless network The problem that speed is the slowest, improves terminal and accesses the speed of wireless network, promote Consumer's Experience.
Embodiment three
The present embodiment provides the access point of a kind of wireless network, can be access point AP in WLAN, as Shown in Fig. 3, described access point 30 includes:
Detector unit 31, for the terminal quantity of the wireless networks to be accessed such as detection;
Broadcast start unit 32, for the terminal of wireless networks to be accessed such as detecting when described detector unit 31 When quantity is more than or equal to preset value, start broadcast mode;
Transmitting element 33, for etc. wireless network to be accessed terminal broadcast the first message Message1 after open Dynamic access process is so that described terminal accesses described wireless network.
Further, as shown in Figure 4, described access point 30 also includes:
Receive unit 34, for receiving the second message Message2 that one or more terminal returns;
Calculate verification unit 35, calculate and described end for the second message received according to described reception unit 34 The pair temporal key PTK that end is corresponding, uses the pairwise master key PMK in described PTK to enter described second message Row message integrity authentication code MIC verifies;
Described transmitting element 33 is additionally operable to after described calculating verification unit 35 verifies successfully, send to described terminal 3rd message Message3;
Described reception unit 34 is additionally operable to receive the 4th message Message4 that described terminal returns;
End unit 36, the 4th message for receiving described reception unit 34 loads described after verifying successfully PTK makes described terminal access described wireless network.
Further, as shown in Figure 4, described access point 30 also includes:
Timing unit 37, is used for starting intervalometer, arranges broadcast mode duration.The concrete numerical value of duration is permissible The parameters such as the busy extent according to wait access customer number mesh or current system are configured.
Further, as shown in Figure 4, when the described timer expiry that described timing unit 37 starts, described Access point 30 also includes:
Switch unit 38, for switching to unicast mode by broadcast mode.
Further, as shown in Figure 4, described access point 30 also includes:
Clean culture start unit 39, for the terminal of wireless networks to be accessed such as detecting when described detector unit 31 When quantity is less than preset value, start unicast mode;The most described transmitting element 33 is additionally operable to please according to described terminal Seeking the order accessing wireless network, a terminal sends the first message Message1 wherein, starts incoming stream Journey.
Compared with prior art, the embodiment of the present invention is by the terminal quantity of the access point AP to be accessed such as detection; When the terminal quantity of AP to be accessed such as detecting is more than a preset value, AP starts the pattern of broadcast with multiple Terminal carries out access process simultaneously, can greatly speed up terminal and access the speed of AP;To be accessed when detecting etc. When the terminal quantity of AP is less than preset value, AP starts unicast mode, makes access way more flexible.Further , while AP starts broadcast mode, carry out timing, after timing reaches scheduled duration, automatically will broadcast Pattern switches to unicast mode, can effectively reduce the operand of AP, make access way more flexible.Thus Solve in prior art due to etc. the terminal that too much causes of the STA quantity of AP to be accessed access wireless network The problem that speed is the slowest, improves terminal and accesses the speed of wireless network, promote Consumer's Experience.
Embodiment four
The present embodiment provides the access point of a kind of wireless network, can be access point AP in WLAN, as Shown in Fig. 5, described access point 40 includes:
Processor 41, for the terminal quantity of the wireless networks to be accessed such as detection;And, for when detecting
When being more than or equal to preset value etc. the terminal quantity of wireless network to be accessed, start broadcast mode;
Transmitter 42, for etc. wireless network to be accessed terminal broadcast the first message Message1 after start Access process is so that described terminal accesses described wireless network.
Further, as shown in Figure 6, described access point 40 also includes:
Receptor 43, for receiving the second message Message2 that one or more terminal returns;
The second message that described processor 41 is additionally operable to according to described receptor 43 receives calculates and described terminal pair The pair temporal key PTK answered, uses the pairwise master key PMK in described PTK to disappear described second message Breath integrated authentication code MIC verification;
Described transmitter 42 is additionally operable to after described processor 41 verifies successfully, send the 3rd message to described terminal Message3;
Described receptor 43 is additionally operable to receive the 4th message Message4 that described terminal returns;
The 4th message that the most described processor 41 is additionally operable to receive described receptor 43 loads institute after verifying successfully Stating PTK makes described terminal access described wireless network.
Further, described processor 41 is additionally operable to start intervalometer, arranges broadcast mode duration.Duration Concrete numerical value can be configured according to parameters such as the busy extent of wait access customer number mesh or current system.
Further, when the described timer expiry that described processor 41 starts, described processor 41 is also used In broadcast mode is switched to unicast mode.
Further, described processor 41 is additionally operable to when the terminal quantity of wireless networks to be accessed such as detecting is little When preset value, start unicast mode;The most described transmitter 42 is additionally operable to access nothing according to described terminal request The order of gauze network, a terminal sends the first message Message1 wherein, starts access process.
Compared with prior art, the embodiment of the present invention is by the terminal quantity of the access point AP to be accessed such as detection; When the terminal quantity of AP to be accessed such as detecting is more than a preset value, AP starts the pattern of broadcast with multiple Terminal carries out access process simultaneously, can greatly speed up terminal and access the speed of AP;To be accessed when detecting etc. When the terminal quantity of AP is less than preset value, AP starts unicast mode, makes access way more flexible.Further , while AP starts broadcast mode, carry out timing, after timing reaches scheduled duration, automatically will broadcast Pattern switches to unicast mode, can effectively reduce the operand of AP, make access way more flexible.Thus Solve in prior art due to etc. the terminal that too much causes of the STA quantity of AP to be accessed access wireless network The problem that speed is the slowest, improves terminal and accesses the speed of wireless network, promote Consumer's Experience.
One of ordinary skill in the art will appreciate that all or part of flow process realizing in above-described embodiment method, Can be by computer program and complete to instruct relevant hardware, described program can be stored in a calculating In machine read/write memory medium, this program is upon execution, it may include such as the flow process of the embodiment of above-mentioned each method. Wherein, described storage medium can be magnetic disc, CD, read-only store-memory body (Read-Only Memory, Or random store-memory body (Random Access Memory, RAM) etc. ROM).

Claims (10)

1. the method accessing wireless network, it is characterised in that including:
The terminal quantity of the wireless networks to be accessed such as detection;
When the terminal quantity of wireless networks to be accessed such as detecting is more than or equal to preset value, start Broadcast mode;
To etc. wireless network to be accessed terminal broadcast the first message Message1 after start access Flow process is so that described terminal accesses described wireless network;
Described to etc. wireless network to be accessed terminal broadcast the first message Message1 in wrap Include random number ANonce and sequence code Sn.
Method the most according to claim 1, it is characterised in that to etc. wireless network to be accessed Access process is started so that described terminal accesses institute after terminal broadcast first message Message1 of network State wireless network to include:
Receiving the second message Message2 that one or more described terminal returns, described second disappears Breath Message2 includes random number SNonce and uses pair temporal key PTK to the second message The message integrity authentication code MIC value made;
Calculate the PTK corresponding with described terminal according to described second message, use in described PTK Pairwise master key PMK described second message is carried out MIC verification;
After verifying successfully, send the 3rd message Message3 to described terminal;
Receive the 4th message Message4 that described terminal returns;
Loading described PTK after verifying described 4th message successfully makes described terminal access described nothing Gauze network.
Method the most according to claim 1 and 2, it is characterised in that wide in described startup While broadcasting pattern, described method also includes: starts intervalometer, arranges broadcast mode duration.
Method the most according to claim 3, it is characterised in that if described intervalometer surpasses Time, broadcast mode is switched to unicast mode.
Method the most according to claim 1, it is characterised in that to be accessed when detecting etc. When the terminal quantity of wireless network is less than preset value, start unicast mode;
Access the order of wireless network according to described terminal request, terminal sends the wherein One message Message1, starts access process.
6. the access point of a wireless network, it is characterised in that including:
Detector unit, for the terminal quantity of the wireless networks to be accessed such as detection;
Broadcast start unit, for wireless networks to be accessed such as detecting when described detector unit When terminal quantity is more than or equal to preset value, start broadcast mode;
Transmitting element, for etc. terminal broadcast first message of wireless network to be accessed After Message1 start access process so that described terminal access described wireless network, described to etc. First message Message1 of the terminal broadcast of wireless network to be accessed includes random number ANonce and sequence code Sn.
Access point the most according to claim 6, it is characterised in that described access point also wraps Include:
Receive unit, for receiving the second message that one or more described terminal returns Message2, described second message Message2 includes that random number SNonce and use are faced in pairs Time key PTK message integrity authentication code MIC value that the second message is made;
Calculate verification unit, calculate and institute for the second message received according to described reception unit State the PTK that terminal is corresponding, use the pairwise master key PMK in described PTK to described second Message carries out MIC verification;
Described transmitting element is additionally operable to after described calculating verification unit verifies successfully, to described terminal Send the 3rd message Message3;
Described reception unit is additionally operable to receive the 4th message Message4 that described terminal returns;
End unit, the 4th message for receiving described reception unit loads after verifying successfully Described PTK makes described terminal access described wireless network.
8. according to the access point described in claim 6 or 7, it is characterised in that described access point Also include:
Timing unit, is used for starting intervalometer, arranges broadcast mode duration.
Access point the most according to claim 8, it is characterised in that when described timing unit During the described timer expiry started, described access point also includes:
Switch unit, for switching to unicast mode by broadcast mode.
Access point the most according to claim 6, it is characterised in that described access point is also Including:
Clean culture start unit, for wireless networks to be accessed such as detecting when described detector unit When terminal quantity is less than preset value, start unicast mode;
Described transmitting element is additionally operable to access the order of wireless network according to described terminal request, to One of them terminal sends the first message Message1, starts access process.
CN201310189847.4A 2013-05-21 2013-05-21 Access method and the access point of wireless network Active CN103298062B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201310189847.4A CN103298062B (en) 2013-05-21 2013-05-21 Access method and the access point of wireless network
PCT/CN2013/087411 WO2014187091A1 (en) 2013-05-21 2013-11-19 Method for accessing wireless network and access point

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310189847.4A CN103298062B (en) 2013-05-21 2013-05-21 Access method and the access point of wireless network

Publications (2)

Publication Number Publication Date
CN103298062A CN103298062A (en) 2013-09-11
CN103298062B true CN103298062B (en) 2016-08-10

Family

ID=49098217

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310189847.4A Active CN103298062B (en) 2013-05-21 2013-05-21 Access method and the access point of wireless network

Country Status (2)

Country Link
CN (1) CN103298062B (en)
WO (1) WO2014187091A1 (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103298062B (en) * 2013-05-21 2016-08-10 华为技术有限公司 Access method and the access point of wireless network
CN105025444A (en) * 2014-04-16 2015-11-04 中兴通讯股份有限公司 Method of realizing device to device discovery service and terminal thereof
CN106255180A (en) * 2016-10-18 2016-12-21 青岛海信宽带多媒体技术有限公司 The method of attachment of wireless network access point and device
CN107018051B (en) * 2017-03-29 2020-12-15 西安电子科技大学 Network access method based on queuing

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5497420A (en) * 1994-02-07 1996-03-05 Le Groupe Vide/ otron Lte/ e Cable TV system using passwords
CN1363066A (en) * 2000-01-17 2002-08-07 Egc&C株式会社 System and method for providing Internet broadcasting data based on hierarchical structure
CN102792755A (en) * 2010-03-09 2012-11-21 高通股份有限公司 Multi-user uplink communication using EDCA with polling
WO2013040039A1 (en) * 2011-09-12 2013-03-21 Qualcomm Incorporated Wireless communication using concurrent re-authentication and connection setup

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB0612438D0 (en) * 2006-06-23 2006-08-02 Siemens Ag Network selection
CN102647730B (en) * 2011-02-18 2014-12-24 华为技术有限公司 Sending and receiving method of neighboring zone information, mobile terminal and base station
US8837741B2 (en) * 2011-09-12 2014-09-16 Qualcomm Incorporated Systems and methods for encoding exchanges with a set of shared ephemeral key data
CN103298062B (en) * 2013-05-21 2016-08-10 华为技术有限公司 Access method and the access point of wireless network

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5497420A (en) * 1994-02-07 1996-03-05 Le Groupe Vide/ otron Lte/ e Cable TV system using passwords
CN1363066A (en) * 2000-01-17 2002-08-07 Egc&C株式会社 System and method for providing Internet broadcasting data based on hierarchical structure
CN102792755A (en) * 2010-03-09 2012-11-21 高通股份有限公司 Multi-user uplink communication using EDCA with polling
WO2013040039A1 (en) * 2011-09-12 2013-03-21 Qualcomm Incorporated Wireless communication using concurrent re-authentication and connection setup

Also Published As

Publication number Publication date
WO2014187091A1 (en) 2014-11-27
CN103298062A (en) 2013-09-11

Similar Documents

Publication Publication Date Title
CN103298062B (en) Access method and the access point of wireless network
CN108702622A (en) Mobile network's access authentication method, device, storage medium and block chain node
JP6668407B2 (en) Terminal authentication method and apparatus used in mobile communication system
CN106656911B (en) A kind of portal authentication method, access device and management server
CN102457514B (en) Mobile terminal-oriented short message authentication method of wireless network
TW200527875A (en) SIM-based authentication method for supporting inter-AP fast handover
CN110505627B (en) Authentication method and device based on access node group
CN112105021B (en) Authentication method, device and system
CN110167025A (en) A kind of communication means and communication device
CN105898743B (en) A kind of method for connecting network, apparatus and system
CN102510387B (en) Transport layer security (TLS) handshaking method and device, and trusted third party (TTP)
WO2016138636A1 (en) Node networking method, apparatus and system
CN110996322B (en) Method for realizing secondary authentication of terminal
WO2012094879A1 (en) Key sharing method and system for machine type communication (mtc) server
WO2011009268A1 (en) Wapi (wlan authentication and privacy infrastructure) -based authentication system and method
CN111741468B (en) MEC-based AMF (advanced metering library) and identity authentication method, construction method and device thereof
CN110351725A (en) Communication means and device
CN109245897A (en) A kind of node authentication method and device based on noninteractive zero-knowledge proof
CN105357224B (en) A kind of registration of intelligent domestic gateway, removing method and system
CN113709736B (en) Network authentication method, device and system
JP5091963B2 (en) Communication station, certificate authority, and authentication method
CN106357648B (en) A kind of group service register method, system and the core network system of colony terminal
CN105378770A (en) Method and apparatus of secure charging for device-to-device service
CN105578464B (en) A kind of WLAN certificate identification method, the apparatus and system of enhancing
CN107087293A (en) A kind of cut-in method, terminal and server

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant