Access control method for WiFi device and WiFi device

US 9,467,932 B2
Filed: 12/31/2013
Issued: 10/11/2016
Est. Priority Date: 12/18/2012
Status: Active Grant

First Claim

Patent Images

1. An access control method for a wireless fidelity (WiFi) device supporting a multi service set identifier (SSID) (Multi-SSID), wherein there is one or more terminal associated with each SSID, comprising:

receiving, from a terminal associated with a SSID in the Multi-SSID, at a user layer of the WiFi device, an access request for accessing the WiFi device based on the SSID, wherein the access request comprises a request for accessing a management interface web user interface (WEBUI) residing on the WiFi device and with one of one or more preset tags added at the kernel layer of the WiFi device;

determining, at the user layer of the WiFi device, whether a tag received with the access request is the same as one of one or more preset tags that are preset for one or more SSIDs forbidden to access the WEBUI residing on the WiFi device;

rejecting the access request when the determination result is positive; and

accepting the access request when the determination result is negative.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An access control method for a wireless fidelity (WiFi) device and a WiFi device. The method includes: receiving, at a user layer of the WiFi device, an access request for accessing the WiFi device based on a service set identifier (SSID), where the access request includes a request for accessing a management interface web user interface (WEBUI) of the WiFi device; determining, at the user layer of the WiFi device, whether a tag of the received access request is the same as one of tags that are preset for SSIDs forbidden to access the WiFi device; if the determination result is positive, rejecting the access request; if the determination result is negative, accepting the access request. In this way, access control of a WiFi device can be implemented in a simple manner.

15 Citations

View as Search Results

10 Claims

1. An access control method for a wireless fidelity (WiFi) device supporting a multi service set identifier (SSID) (Multi-SSID), wherein there is one or more terminal associated with each SSID, comprising:
- receiving, from a terminal associated with a SSID in the Multi-SSID, at a user layer of the WiFi device, an access request for accessing the WiFi device based on the SSID, wherein the access request comprises a request for accessing a management interface web user interface (WEBUI) residing on the WiFi device and with one of one or more preset tags added at the kernel layer of the WiFi device;
  
  determining, at the user layer of the WiFi device, whether a tag received with the access request is the same as one of one or more preset tags that are preset for one or more SSIDs forbidden to access the WEBUI residing on the WiFi device;
  
  rejecting the access request when the determination result is positive; and
  
  accepting the access request when the determination result is negative.
- View Dependent Claims (2)
- - 2. The access control method according to claim 1, wherein before the receiving, at the user layer of the WiFi device, the access request for accessing the WiFi device based on the SSID, the method further comprises setting, at the user layer of the WiFi device, one or more corresponding tags for the SSIDs forbidden to access the WEBUI residing on the WiFi device.

3. An access control method for a wireless fidelity (WiFi) device supporting a multi service set identifier (SSID) (Multi-SSID), wherein there is one or more terminal associated with each SSID, comprising:
- obtaining, at a kernel layer of the WiFi device, one or more index values of interfaces that represent one or more locations of SSIDs in the Multi-SSID that are forbidden to access a management interface web user interface (WEBUI) residing on the WiFi device;
  
  receiving, from a terminal associated with a SSID in the Multi-SSID, at the kernel layer of the WiFi device, an access request for accessing the WiFi device based on the SSID, wherein the access request comprises a request for accessing the WEBUI;
  
  determining whether an index value of the interface that corresponds to the SSID on which the access request is based matches one of the index values of the interfaces that correspond to the SSIDs forbidden to access the WEBUI when receiving the access request at the kernel layer of the WiFi device;
  
  adding, at the kernel layer of the WiFi device, one of one or more preset tags to the access request based on the SSID when the determination result is positive;
  
  sending the access request with the one of the one or more preset tags added to a user layer of the WiFi device;
  
  receiving, at the user layer of the WiFi device, the access request with the one of the one or more preset tags added;
  
  determining, at the user layer of the WiFi device, whether a tag of the access request is the same as one of one or more preset tags that are preset for one or more SSIDs forbidden to access the WEBUI;
  
  rejecting the access request when the determination result is positive; and
  
  accepting the access request when the determination result is negative.
- View Dependent Claims (4, 5)
- - 4. The access control method according to claim 3, wherein before the receiving, at the user layer of the WiFi device, the access request for accessing the WiFi device based on the SSID, the method further comprises setting, at the user layer of the WiFi device, one or more corresponding tags for the SSIDs forbidden to access the WEBUI residing on the WiFi device.
  - 5. The access control method according to claim 3, wherein the method further comprising:
    - not adding, at the kernel layer of the WiFi device, the one of the one or more preset tags to the access request based on the SSID when the determination result is negative;
      
      sending the access request without the one of the preset tags added to the user layer of the WiFi device.

6. A wireless fidelity (WiFi) device supporting a multi service set identifier (SSID) (Multi-SSID), wherein there is one or more terminals associated with each SSID, comprising:
- a memory; and
  
  a processor, wherein the memory stores a specified instructions and the processor invokes the instructions stored in the memory to execute by the processor to cause the WiFi device to perform the following;
  
  receive, from a terminal associated with a SSID in the Multi-SSID, at a user layer of the WiFi device, an access request for accessing the WiFi device based on the SSID, wherein the access request comprises a request for accessing a management interface web user interface (WEBUI) residing on the WiFi device and with one of one or more preset tags added at the kernel layer of the WiFi device;
  
  determine, at the user layer of the WiFi device, whether a tag received with the access request is the same as one of one or more preset tags that are preset for one or more SSIDs forbidden to access the WEBUI residing on the WiFi device;
  
  reject the access request when the determination result is positive; and
  
  accept the access request when the determination result is negative.
- View Dependent Claims (7)
- - 7. The WiFi device according to claim 6, wherein before receiving, at the user layer of the WiFi device, the access request for accessing the WiFi device based on the SSID, the instructions executed by the processor further cause the WiFi device to:
    - set, at the user layer of the WiFi device, one or more corresponding tags for the SSIDs forbidden to access the WEBUI residing on the WiFi device.

8. A wireless fidelity (WiFi) device supporting a multi service set identifier (SSID) (Multi-SSID), wherein there is one or more terminal associated with each SSID, comprising:
- a memory; and
  
  a processor, wherein the memory stores specified instructions and the processor invokes the instructions stored in the memory to execute by the processor to cause the WiFi device to perform the following;
  
  obtain, at a kernel layer of the WiFi device, one or more index values of interfaces that represent one or more locations of SSIDs in the Multi-SSID that are forbidden to access the WiFi device;
  
  receive, from a terminal associated with a SSID in the Multi-SSID, at the kernel layer of the WiFi device, an access request for accessing the WiFi device based on the SSID, wherein the access request comprises a request for accessing the WEBUI;
  
  determine whether an index value of an interface that corresponds to the SSID on which the access request is based matches one of the index values of the interfaces that correspond to the SSIDs forbidden to access the WEBUI when the access request is received at the kernel layer of the WiFi device;
  
  add, at the kernel layer of the WiFi device, one of one or more preset tags to the access request based on the SSID when the determination result is positive;
  
  send the access request with the one of the one or more preset tags added to a user layer of the WiFi device;
  
  receive, at the user layer of the WiFi device, the access request with the one of the one or more preset tags added;
  
  determine, at the user layer of the WiFi device, whether the tag of the access request is the same as one of one or more preset tags that are preset for one or more SSIDs forbidden to access the WEBUI;
  
  reject the access request when the determination result is positive; and
  
  accept the access request when the determination result is negative.
- View Dependent Claims (9, 10)
- - 9. The WiFi device according to claim 8, wherein before receiving, at a user layer of the WiFi device, an access request for accessing the WiFi device based on a SSID, the instructions executed by the processor further cause the WiFi device to set, at the user layer of the WiFi device, one or more corresponding tags for the SSIDs forbidden to access the WEBUI residing on the WiFi device.
  - 10. The WiFi device according to claim 8, wherein the instructions executed by the processor further cause the WiFi device to not add, at the kernel layer of the WiFi device, one of the one or more preset tags to the access request based on the SSID when the determination result is negative;
    - andsend the access request without the one of the preset tags added to the user layer of the WiFi device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Huawei Device Company Limited (Huawei Investment & Holding Co., Ltd.)
Original Assignee
Huawei Device Company Limited (Huawei Investment & Holding Co., Ltd.)
Inventors
Xiang, Chao
Primary Examiner(s)
Gidado, Rasheed

Application Number

US14/145,234
Publication Number

US 20140169354A1
Time in Patent Office

1,015 Days
Field of Search

370/338
US Class Current

1/1
CPC Class Codes

H04L 63/0263   Rule management

H04L 63/101   Access control lists [ACL]

H04W 12/08   Access security

H04W 48/16   Discovering, processing acc...

Access control method for WiFi device and WiFi device

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

15 Citations

10 Claims

Specification

Solutions

Use Cases

Quick Links

Access control method for WiFi device and WiFi device

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

15 Citations

10 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links