METHOD AND APPARATUS FOR AUTHENTICATION IN PASSIVE OPTICAL NETWORK AND PASSIVE OPTICAL NETWORK
First Claim
1. A method for authentication in a Passive Optical Network (PON), comprising:
- receiving, by an Optical Network Unit/Optical Network Terminal (ONU/ONT), a first negotiation message sent by an Optical Line Terminal (OLT), wherein the first negotiation message carries a logic registration ID of the OLT,authenticating, by the ONU/ONT, the OLT according to the logic registration ID of the OLT;
sending, by the ONU/ONT, a second negotiation message to the OLT, wherein the second negotiation message carries a logic registration ID of the ONU/ONT, the logic registration ID of the ONU/ONT is used to enable the OLT to authenticates the ONU/ONT; and
receiving, by the ONU/ONT, a terminal identifier sent by the OLT, wherein the terminal identifier is allocated for the ONU/ONT after both the authentication on the ONU/ONT and the authentication on the OLT succeed.
1 Assignment
0 Petitions
Accused Products
Abstract
The embodiments of the present disclosure provide a method and an apparatus for authentication in a Passive Optical Network (PON), and a PON. The method includes: receiving, by an Optical Network Unit/Optical Network Terminal (ONU/ONT), a first negotiation message sent by an Optical Line Terminal (OLT), and authenticating the OLT according to a logic registration ID of the OLT; sending, by the ONU/ONT, a second negotiation message to the OLT, the logic registration ID of the ONU/ONT is used to enable the OLT to authenticate the ONU/ONT according to a logic registration ID of the ONU/ONT, and allocates a terminal identifier for the ONU/ONT after the authentication succeeds. In the embodiments of the present disclosure, the OLT and the ONU/ONT are authenticated through the logic registration IDs, thus eliminating security threats in the authentication process.
-
Citations
20 Claims
-
1. A method for authentication in a Passive Optical Network (PON), comprising:
-
receiving, by an Optical Network Unit/Optical Network Terminal (ONU/ONT), a first negotiation message sent by an Optical Line Terminal (OLT), wherein the first negotiation message carries a logic registration ID of the OLT, authenticating, by the ONU/ONT, the OLT according to the logic registration ID of the OLT; sending, by the ONU/ONT, a second negotiation message to the OLT, wherein the second negotiation message carries a logic registration ID of the ONU/ONT, the logic registration ID of the ONU/ONT is used to enable the OLT to authenticates the ONU/ONT; and receiving, by the ONU/ONT, a terminal identifier sent by the OLT, wherein the terminal identifier is allocated for the ONU/ONT after both the authentication on the ONU/ONT and the authentication on the OLT succeed. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A Passive Optical Network (PON), comprising an optical line terminal (OLT) and an Optical Network Unit/Optical Network Terminal (ONU/ONT):
-
wherein the ONU/ONT is configured to receive a first negotiation message sent by the OLT and carrying a logic registration ID of the OLT, and authenticate the OLT according to the logic registration ID of the OLT; and the OLT is configured to receive a second negotiation message sent by the ONU/ONT and carrying a logic registration ID of the ONU/ONT, authenticate the ONU/ONT according to the logic registration ID of the ONU/ONT, and send a terminal identifier to the ONU/ONT, wherein the terminal identifier is allocated for the ONU/ONT after both the authentication on the ONU/ONT and the authentication on the OLT succeed. - View Dependent Claims (9, 10, 11)
-
-
12. An Optical Network Unit/Optical Network Terminal (ONU/ONT), comprising:
-
a logic registration ID receiving module, configured to receive a first negotiation message sent by an OLT and carrying a logic registration ID of the OLT; a matching module, configured to match the logic registration ID of the OLT received by the receiving module with logic registration IDs of OLTs authorized for access; a logic registration ID sending module, configured to send a second negotiation message which carries a logic registration ID of the ONU/ONT to the OLT, wherein the logic registration ID of the ONU/ONT is used to enable the OLT to authenticates the ONU/ONT; and a terminal identifier receiving module, configured to receive a terminal identifier allocated for the ONU/ONT, wherein the terminal identifier is sent by the OLT after both the authentication on the ONU/ONT and the authentication on the OLT succeed. - View Dependent Claims (13, 14, 15, 16)
-
-
17. An Optical Line Terminal (OLT), comprising:
-
a logic registration ID sending module, configured to send a first negotiation message carrying a logic registration ID of the OLT to an Optical Network Unit/Optical Network Terminal (ONU/ONT), the logic registration ID of the OLT is used to enable the ONU/ONT authenticates the OLT; a logic registration ID receiving module, configured to receive a second negotiation message carrying a logic registration ID of the ONU/ONT, wherein the second negotiation message is returned by the ONU/ONT after the ONU/ONT succeeds in authenticating the OLT according to the logic registration ID of the OLT; an authenticating module, configured to;
authenticate the ONU/ONT according to the logic registration ID of the ONU/ONT in the second negotiation message; anda terminal identifier allocating module, configured to allocate a terminal identifier for the ONU/ONT after the authenticating module determining that the authentication on the OLT succeeds, and send the allocated terminal identifier to the ONU/ONT. - View Dependent Claims (18, 19, 20)
-
Specification