CN101227359A - Method, access point device and system for controlling user access - Google Patents

Abstract

The invention discloses a method, access point equipment and a system for controlling a user to access, which belongs to the communication system. The method comprises judging whether a user meets an access condition according user information which is pre-stored after receiving an access request of a user, if meets the access condition, permitting the user to access, if not, refusing the user to access. The access point equipment comprises a communication module, a storage module and a control module. The system comprises access point equipment network transfer equipment. The invention judges whether a user meets an access condition according user information which is pre-stored, which can effectively control a user to access on the access point equipment.

Description

Translated fromChinese

控制用户接入的方法、接入点设备和系统Method, access point device and system for controlling user access

技术领域technical field

本发明涉及通信领域，特别涉及一种控制用户接入的方法、接入点设备和系统。The present invention relates to the communication field, in particular to a method for controlling user access, an access point device and a system.

背景技术Background technique

随着Internet业务的蓬勃发展以及宽带接入网络和无线网络的广泛应用，高速、便捷地接入网络正在得到广泛地关注。用户需要高速、便捷和低成本的使用手持无线设备享受无线数据服务。同时，为了更好的利用现有网络的资源，更好地保护网络设备运营商的成本，在现有的移动网络中引入了UMTS AP-AG(Universal Mobile Telecommunications System AccessPoint-Access Gateway，通用移动通讯系统接入接入点-网关)设备，在UMTS AP设备上设置有Gi接口，可直接访问Internet，降低了高速数据业务对移动网络的冲击，使现有无线网络可以接入更多的无线高速数据用户，同时，UMTSAP设备还解决了无线数据业务空口资源瓶颈问题，分流了宏小区中高速数据业务用户。With the vigorous development of Internet services and the wide application of broadband access network and wireless network, high-speed and convenient access to the network is getting widespread attention. Users need high-speed, convenient and low-cost access to wireless data services using handheld wireless devices. At the same time, in order to better utilize the resources of the existing network and better protect the cost of network equipment operators, UMTS AP-AG (Universal Mobile Telecommunications System AccessPoint-Access Gateway, Universal Mobile Telecommunications System access point-gateway) equipment, which is equipped with a Gi interface on the UMTS AP equipment, can directly access the Internet, reduces the impact of high-speed data services on the mobile network, and enables the existing wireless network to access more wireless high-speed Data users. At the same time, UMTSAP equipment also solves the bottleneck problem of air interface resources for wireless data services, and offloads high-speed data service users in macro cells.

在实现本发明的过程中，发明人发现：从用户角度出发，UMTS AP设备是家用私人设备，未经主人允许，不希望有外人来使用。从运营商角度出发，UMTS AP设备覆盖下的资费比宏网络优惠，希望对使用UMTS AP设备的用户加以限制，所以UMTS AP设备需要提供接入控制的功能。In the process of realizing the present invention, the inventor found that: from the perspective of the user, the UMTS AP device is a private device for home use, and no outsiders are expected to use it without the permission of the owner. From the perspective of the operator, the tariff under the coverage of UMTS AP equipment is more favorable than that of the macro network. It is hoped to limit the users who use UMTS AP equipment, so the UMTS AP equipment needs to provide access control functions.

发明内容Contents of the invention

为了实现在接入点设备上自动控制用户的接入，本发明实施例提供了一种控制用户接入的方法、接入点设备和系统。In order to automatically control user access on an access point device, embodiments of the present invention provide a method for controlling user access, an access point device, and a system.

一种控制用户接入的方法，包括：A method of controlling user access, comprising:

接收到用户的接入请求后，根据预先存储的用户信息判断所述用户是否满足接入条件，如果是，允许所述用户接入，否则，拒绝所述用户接入。After receiving the user's access request, judge whether the user meets the access condition according to the pre-stored user information, if yes, allow the user to access, otherwise, reject the user's access.

一种接入点设备，包括：An access point device comprising:

通信模块，用于与用户和网络传输设备进行信息交互；Communication module, used for information interaction with users and network transmission equipment;

存储模块，用于存储用户信息；A storage module for storing user information;

控制模块，用于在所述通信模块收到用户的接入请求后，根据所述存储模块存储的用户信息判断所述用户是否满足接入条件，如果是，允许所述用户接入，否则，拒绝所述用户接入。A control module, configured to judge whether the user satisfies the access condition according to the user information stored in the storage module after the communication module receives the user's access request, and if so, allow the user to access, otherwise, The user is denied access.

一种系统，包括：A system comprising:

接入点设备，用于接收到用户的接入请求后，根据预先存储的用户信息判断所述用户是否满足接入条件，如果是，允许所述用户接入，否则，拒绝所述用户接入；The access point device is configured to judge whether the user meets the access condition according to the pre-stored user information after receiving the user's access request, and if so, allow the user to access, otherwise, deny the user to access ;

网络传输设备，用于和所述接入点设备进行通信，在所述接入点设备允许所述用户接入时，将所述用户与网络接通。The network transmission device is configured to communicate with the access point device, and connect the user to the network when the access point device allows the user to access.

本发明实施例提供的技术方案的有益效果是：The beneficial effects of the technical solution provided by the embodiments of the present invention are:

根据预先存储的用户信息判断请求接入的用户是否满足接入条件，能够在接入点设备上有效地控制用户的接入。It is judged according to the pre-stored user information whether the user requesting access satisfies the access condition, and the access of the user can be effectively controlled on the access point device.

附图说明Description of drawings

图1是本发明一个实施例提供的UMTS AP-AG组网拓扑结构图；Fig. 1 is a UMTS AP-AG networking topology structure diagram provided by an embodiment of the present invention;

图2是本发明一个实施例提供的控制用户接入的方法流程图；FIG. 2 is a flowchart of a method for controlling user access provided by an embodiment of the present invention;

图3是本发明另一个实施例提供的接入点设备的结构示意图；Fig. 3 is a schematic structural diagram of an access point device provided by another embodiment of the present invention;

图4是本发明一个实施例提供的系统的结构示意图。Fig. 4 is a schematic structural diagram of a system provided by an embodiment of the present invention.

具体实施方式Detailed ways

为使本发明的目的、技术方案和优点更加清楚，下面将结合附图对本发明实施方式作进一步地详细描述。In order to make the object, technical solution and advantages of the present invention clearer, the implementation manner of the present invention will be further described in detail below in conjunction with the accompanying drawings.

本发明实施例中的根据预先存储的用户信息判断请求接入的用户是否满足接入条件，如果满足接入条件，允许该用户接入，否则，拒绝该用户接入，能够有效地控制用户的接入。In the embodiment of the present invention, according to the pre-stored user information, it is judged whether the user requesting access meets the access conditions, and if the access conditions are met, the user is allowed to access, otherwise, the user is denied access, which can effectively control the user's access. access.

参见图1提供的引入UMTS AP-AG设备之后的接入网络拓扑结构图，其中，UMTS AP设备(以下简称AP设备)设置在用户端，AP设备集成了WCDMA(Wireless Code DivisionMultiple Access，无线码分多址接入)NodeB(基站)和部分RNC(Radio Network Controller，无线网络控制器)功能，通过家庭现有宽带设备，经过传输网络例如ADSL(Asymmetric DigitalSubscriber Line，非对称数字用户线)与UMTS移动网络中的UMTS AG(以下简称AG设备)通信，进而由AG设备与核心网的各个网元交互，完成UMTS的各种信令和业务。AP设备和UE(User Equipment，用户设备)之间使用标准的Uu接口，可以兼容已有的商用终端。针对家庭用户或其它特殊用户，例如SOHO(Small Office and Home Office，小型办公或在家办公)用户，能有效解决第三代移动通信网中应用频段高、穿透能力差等室内覆盖问题。Refer to the access network topology diagram provided in Figure 1 after the introduction of UMTS AP-AG equipment, wherein the UMTS AP equipment (hereinafter referred to as AP equipment) is set at the user end, and the AP equipment integrates WCDMA (Wireless Code Division Multiple Access, wireless code division Multiple access) NodeB (base station) and some RNC (Radio Network Controller, radio network controller) functions, through the existing broadband equipment in the home, through the transmission network such as ADSL (Asymmetric Digital Subscriber Line, asymmetric digital subscriber line) and UMTS mobile The UMTS AG (hereinafter referred to as AG device) in the network communicates, and then the AG device interacts with each network element of the core network to complete various signaling and services of UMTS. The standard Uu interface is used between the AP device and UE (User Equipment, user equipment), which can be compatible with existing commercial terminals. For home users or other special users, such as SOHO (Small Office and Home Office, small office or home office) users, it can effectively solve the indoor coverage problems such as high application frequency band and poor penetration ability in the third-generation mobile communication network.

为了对试图接入AP设备的UE加以判断和限制，本发明实施例在每个AP设备上预先存储用户信息，例如：一个用户准入列表，在用户准入列表中的UE可以使用该AP设备，其他的UE将被拒绝接入。In order to judge and limit UEs trying to access AP devices, the embodiment of the present invention pre-stores user information on each AP device, for example: a user access list, and UEs in the user access list can use the AP device , other UEs will be denied access.

参见图2，本发明一个实施例提供了一种控制用户接入的方法，本实施例以在AP设备上实现控制用户接入，且存储的用户信息为用户准入列表为例，该方法包括：Referring to FIG. 2 , an embodiment of the present invention provides a method for controlling user access. This embodiment takes the control of user access on an AP device and the stored user information as a user access list as an example. The method includes :

步骤101：AP设备接收到用户的接入请求后，查找本地存储的用户准入列表；Step 101: After receiving the user's access request, the AP device searches the locally stored user access list;

其中，用户准入列表可以存储在AP设备的用户识别卡上，也可以存储在AP设备的缓存单元中，例如内存或Flash中；Wherein, the user access list may be stored on the user identification card of the AP device, or may be stored in a cache unit of the AP device, such as memory or Flash;

步骤102：判断用户准入列表中是否有与该用户匹配的表项，如果有，执行步骤103；否则，执行步骤104；Step 102: Determine whether there is an entry matching the user in the user access list, if so, executestep 103; otherwise, executestep 104;

步骤103：允许该用户接入；Step 103: Allow the user to access;

步骤104：拒绝该用户接入。Step 104: Deny the user access.

在实际应用中，可能会出现对用户信息频繁修改的情况，例如：当有朋友来家中做客的时候，用户可能希望将朋友的UE加入到AP设备的用户信息中，以使朋友能够通过其AP设备进行无线数据服务，当朋友离开之后，再将朋友的UE从AP设备的用户信息中删除。修改AP设备上的用户信息的方式有多种，本发明实施例提供了如下几种方式修改AP设备上的用户信息：In practical applications, frequent modification of user information may occur. For example, when a friend comes to the house as a guest, the user may wish to add the friend's UE to the user information of the AP device, so that the friend can pass through its AP. The device performs wireless data service, and when the friend leaves, the UE of the friend is deleted from the user information of the AP device. There are many ways to modify the user information on the AP device. The embodiment of the present invention provides the following ways to modify the user information on the AP device:

1)将AP设备的用户识别卡插入手持终端，本实施例以插入手机为例进行说明，通过手机的操作界面访问用户识别卡；通过操作界面修改用户识别卡上的用户信息的具体实现如下：1) Insert the user identification card of the AP device into the handheld terminal. This embodiment is illustrated by inserting the mobile phone as an example, and the user identification card is accessed through the operation interface of the mobile phone; the specific realization of modifying the user information on the user identification card through the operation interface is as follows:

类似于手机通信录的方式修改AP设备的用户识别卡中的用户信息，如用户准入列表，此时，用户识别卡中通信录的地址空间需要固定，修改完成后，将用户识别卡插入AP设备，AP设备检测到本地的用户识别卡上的用户信息被修改后，根据用户识别卡上修改后的用户信息更新本地存储的用户信息，例如：AP设备可以直接按照通信录的格式从用户识别卡中通信录的地址空间读取修改后的用户信息；Similar to the mobile phone address book, modify the user information in the user identification card of the AP device, such as the user access list. At this time, the address space of the address book in the user identification card needs to be fixed. After the modification is completed, insert the user identification card into the AP After detecting that the user information on the local user identification card has been modified, the AP device updates the locally stored user information according to the modified user information on the user identification card. The address space of the address book in the card reads the modified user information;

或者，基于用户识别卡的增值业务工具包(STK/SIM Toolkit，STK)的扩展功能，不需要限制地址空间，但是需要AP设备和手机都支持此STK扩展功能，比如查询和修改定制的通信录或者用户准入列表；Or, the extended function of the value-added service toolkit (STK/SIM Toolkit, STK) based on the subscriber identification card does not need to limit the address space, but both the AP device and the mobile phone need to support the extended function of STK, such as querying and modifying the customized address book or user access list;

进一步地，为了保证安全性，可以设置对AP设备的用户识别卡进行访问和修改的密码，例如可以在AP设备开户时设置该密码。当插有AP设备用户识别卡的手机接收到访问或修改用户识别卡上的用户信息的指令时，提示用户输入密码，在用户输入密码后，验证输入的密码是否合法，合法后，允许用户进行访问或修改操作，否则，拒绝该用户进行访问或修改操作；或者将AP设备的用户识别卡与用户的手持终端例如手机绑定，只有指定用户的手持终端才能够操作AP设备的用户识别卡；Further, in order to ensure security, a password for accessing and modifying the user identification card of the AP device can be set, for example, the password can be set when the AP device opens an account. When the mobile phone inserted with the user identification card of the AP device receives an instruction to access or modify the user information on the user identification card, the user is prompted to enter the password. After the user enters the password, it is verified whether the entered password is legal. Access or modify operations, otherwise, deny the user access or modify operations; or bind the user identification card of the AP device with the user's handheld terminal such as a mobile phone, and only the handheld terminal of the designated user can operate the user identification card of the AP device;

2)通过用户发送的包含用户信息的信号修改AP设备上的用户信息；2) Modify the user information on the AP device through the signal sent by the user that contains the user information;

例如：用户通过无线连接方式访问AP设备，无线连接方式包括红外线、蓝牙等方式，其中，红外线方式为一种点对点的传输方式，红外线方式为现有技术，这里不再详述。以红外线的方式为例，手机或者PC机通过红外线的方式访问AP设备时，需要两端都有红外接口或者红外适配器，在有效范围内将两端的红外装置相互对准，启动红外功能进行搜索，“握手”(相互搜索到对方)后就可互相传递数据；以手机对准入列表的用户信息修改为例，通过手机向AP设备发送的包含用户信息的信号可以类似于手机之间传递名片，用户可以先编辑自己手机中的通信录，然后将希望在AP设备中准入的某个手机号作为名片发送给AP设备，AP设备接收到用户发送的包含用户信息的信号例如名片后，提取该信号中的用户信息，例如手机号，根据信号中的用户信息更新本地存储的用户信息，或者如果用户信息存储在AP设备的用户识别卡上，可以根据用户发送的信号直接更新该用户识别卡上的用户信息。For example, a user accesses an AP device through a wireless connection, and the wireless connection includes infrared, bluetooth, etc., wherein the infrared is a point-to-point transmission method, and the infrared is a prior art, which will not be described in detail here. Take the infrared method as an example. When a mobile phone or a PC accesses an AP device through infrared, it is necessary to have an infrared interface or an infrared adapter at both ends. Align the infrared devices at both ends within the effective range and start the infrared function to search. After "handshaking" (searching for each other), data can be transferred to each other; taking the modification of user information on the access list of mobile phones as an example, the signal containing user information sent by the mobile phone to the AP device can be similar to the transfer of business cards between mobile phones. The user can first edit the address book in his mobile phone, and then send a certain mobile phone number that he wants to enter in the AP device as a business card to the AP device. The user information in the signal, such as a mobile phone number, updates the locally stored user information according to the user information in the signal, or if the user information is stored on the user identification card of the AP device, it can be directly updated on the user identification card according to the signal sent by the user user information.

进一步地，AP设备在收到名片后，还可以提示用户输入密码，例如通过AP设备上的发声装置提示用户输入密码，在密码验证通过后，才根据名片中的用户信息进行更新。Further, after the AP device receives the business card, it can also prompt the user to enter a password, for example, prompt the user to enter a password through a sounding device on the AP device, and update it according to the user information in the business card after the password verification is passed.

其中，用户识别卡为SIM(Service Identity Module，用户服务识别模块)/USIM(ServiceIdentity Module，用户服务识别模块)卡，用户信息可以为用户准入列表，也可以包括其它信息，例如，用于认证AP设备的密钥，或者AP设备保存和下发的短信(手持终端的位置指示信息)等。Wherein, the user identification card is a SIM (Service Identity Module, user service identification module)/USIM (Service Identity Module, user service identification module) card, and the user information can be a user access list, and can also include other information, for example, for authentication The key of the AP device, or the short message (position indication information of the handheld terminal) saved and delivered by the AP device, etc.

AP设备的SIM卡或者USIM卡是可以插拔的，将用户准入列表保存在SIM卡或USIM卡中，当需要设置或者修改用户准入列表时，用户可以将AP设备的SIM卡或USIM卡拔出，然后插入自己的手持终端，例如手机(即替换原来手机的SIM卡)，通过手机界面进行操作，操作方式可以类似于通信录的修改，或者基于SIM卡的增值业务工具包STK的扩展功能，将需要准入AP设备的手机号输入到SIM卡中，修改以后再将此SIM卡重新插入AP设备的插槽中，此时，用户准入列表可以立即生效。为了避免每次AP设备都通过其上的用户识别卡对用户进行准入判断，造成频繁的读取用户识别卡，本实施例优选每次将用户识别卡插入AP设备后，都重新读取一次完整的用户信息保存在AP设备本地的缓存单元中。The SIM card or USIM card of the AP device is pluggable, and the user access list is saved in the SIM card or USIM card. When the user access list needs to be set or modified, the user can insert the SIM card or USIM card Pull it out, and then insert your own handheld terminal, such as a mobile phone (that is, replace the SIM card of the original mobile phone), and operate through the mobile phone interface. The operation method can be similar to the modification of the address book, or the expansion of the value-added service toolkit STK based on the SIM card. Function, enter the mobile phone number that needs to be admitted to the AP device into the SIM card, and then reinsert the SIM card into the slot of the AP device after modification. At this time, the user access list can take effect immediately. In order to avoid the access judgment of the user through the user identification card on the AP device every time, resulting in frequent reading of the user identification card, this embodiment preferably re-reads the user identification card every time it is inserted into the AP device Complete user information is stored in a local cache unit of the AP device.

用户开户使用AP设备时，原始的用户准入列表等用户信息将存储在运营商的网络设备(例如注册服务器)上，AP设备开机上电后，AP设备将会从网络设备上获取用户准入列表等用户信息，并保存在AP设备的缓存单元中或者AP设备的用户识别卡上。When a user opens an account and uses an AP device, user information such as the original user access list will be stored on the operator's network device (such as a registration server). After the AP device is powered on, the AP device will obtain the user access list from the network device. The list and other user information are stored in the cache unit of the AP device or on the user identification card of the AP device.

同时，AP设备中每次用户信息的更新之后，还可以进一步触发AP设备与注册服务器之间的数据同步，由AP设备主动上报修改后的用户信息给注册服务器，或者，注册服务器将修改后的用户信息下发给AP设备，以保证两端数据的一致性。At the same time, each time the user information in the AP device is updated, it can further trigger data synchronization between the AP device and the registration server, and the AP device will actively report the modified user information to the registration server, or the registration server will send the modified user information to the registration server. The user information is sent to the AP device to ensure data consistency at both ends.

本实施例根据AP设备上存储的用户信息控制请求接入的用户的接入，有效地控制了接入用户的数目，同时，提供了多种修改用户信息的方式，使用户能够根据需要方便地修改AP设备上的用户信息，提高了修改用户信息的效率，增强了操作AP设备的灵活性。This embodiment controls the access of users requesting access according to the user information stored on the AP device, effectively controlling the number of access users. At the same time, it provides a variety of ways to modify user information, so that users can conveniently Modifying user information on the AP device improves the efficiency of modifying user information and enhances the flexibility of operating the AP device.

参见图3，本发明一个实施例提供了一种接入点设备，包括：Referring to Fig. 3, an embodiment of the present invention provides an access point device, including:

通信模块，用于与用户和网络传输设备进行信息交互；Communication module, used for information interaction with users and network transmission equipment;

存储模块，用于存储用户信息；A storage module for storing user information;

控制模块，用于在通信模块收到用户的接入请求后，根据存储模块存储的用户信息判断用户是否满足接入条件，如果是，允许该用户接入，否则，拒绝该用户接入。The control module is used to determine whether the user meets the access conditions according to the user information stored in the storage module after the communication module receives the user's access request, and if so, allow the user to access, otherwise, deny the user's access.

其中，存储模块的实现方式有多种，具体可以包括：Among them, there are many ways to implement the storage module, which may specifically include:

用于存储用户信息的用户识别卡或用于缓存用户信息的缓存单元。A subscriber identification card for storing user information or a cache unit for caching user information.

上述用户识别卡为手持终端支持的SIM卡或USIM卡，是可以插拔的，缓存单元可以是内存或者Flash。The above-mentioned subscriber identification card is a SIM card or a USIM card supported by the handheld terminal, which is pluggable, and the cache unit may be memory or Flash.

相应地，为了允许用户能够对用户信息进行更新，该接入点设备还可以包括：Correspondingly, in order to allow the user to update the user information, the access point device may further include:

第一更新模块，用于在通信模块接收到用户发送的包含用户信息的信号后，根据信号中的用户信息更新用户识别卡或缓存单元中存储的用户信息。其中所述信息可以是名片，所述用户信息可以是手机号。The first updating module is configured to update the user information stored in the user identification card or the cache unit according to the user information in the signal after the communication module receives the signal containing the user information sent by the user. The information may be a business card, and the user information may be a mobile phone number.

这种方式下，为保证每次用户信息被更新后AP设备与注册服务器之间的数据同步，该接入点设备还可以包括：In this way, in order to ensure data synchronization between the AP device and the registration server every time the user information is updated, the access point device may also include:

第一信息上报模块，用于向注册服务器上报用户识别卡或缓存单元中更新后的用户信息。The first information reporting module is used to report the updated user information in the user identification card or cache unit to the registration server.

或者，存储模块也可以包括：Alternatively, storage modules can also include:

用于存储用户信息的用户识别卡及用于缓存用户信息的缓存单元，相应地，该接入点设备还可以包括：A subscriber identification card for storing user information and a cache unit for caching user information, correspondingly, the access point device may further include:

第二更新模块，用于检测到本地的用户识别卡上的用户信息被修改后，根据用户识别卡上修改后的用户信息更新缓存单元中存储的用户信息；或者用于在通信模块接收到用户发送的包含用户信息的信号后，根据用户发送的信号中的用户信息更新所述用户识别卡及缓存单元中存储的用户信息。The second update module is used to detect that the user information on the local user identification card has been modified, and update the user information stored in the cache unit according to the user information after modification on the user identification card; or for receiving the user information at the communication module After the signal containing the user information is sent, the user information stored in the user identification card and the cache unit is updated according to the user information in the signal sent by the user.

此外，为保证每次用户信息被更新后AP设备与注册服务器之间的数据同步，该接入点设备还包括：In addition, in order to ensure data synchronization between the AP device and the registration server every time the user information is updated, the access point device also includes:

第二信息上报模块，用于向注册服务器上报缓存单元中更新后的用户信息。The second information reporting module is configured to report the updated user information in the cache unit to the registration server.

其中，控制模块包括：Among them, the control module includes:

检查单元，用于检查存储模块中存储的用户准入列表中是否有与用户匹配的表项；A checking unit, configured to check whether there is an entry matching the user in the user access list stored in the storage module;

接入控制单元，用于当检查单元的检查结果是有与用户匹配的表项时，允许该用户接入，否则，拒绝该用户接入。The access control unit is configured to allow the user to access when the checking result of the checking unit is that there is an entry matching the user, otherwise, deny the user to access.

本实施例提供的接入点设备通过预先存储的用户信息控制请求接入的用户，能够有效地控制接入用户的数目，同时，通过第一更新模块和第二更新模块能够根据用户的需要修改用户信息，方便了用户修改用户信息。The access point device provided in this embodiment controls the users who request access through the pre-stored user information, and can effectively control the number of access users. At the same time, the first update module and the second update module can modify the User information, which is convenient for users to modify user information.

参见图4，本发明一个实施例提供了一种系统，该系统包括：Referring to Fig. 4, an embodiment of the present invention provides a system, the system includes:

接入点设备，用于接收到用户的接入请求后，根据预先存储的用户信息判断用户是否满足接入条件，如果是，允许该用户接入，否则，拒绝该用户接入；The access point device is used to judge whether the user meets the access conditions according to the pre-stored user information after receiving the user's access request, and if so, allow the user to access, otherwise, deny the user's access;

网络传输设备，用于和接入点设备进行通信，在接入点设备允许用户接入时，将用户与网络接通。The network transmission device is used to communicate with the access point device, and connects the user to the network when the access point device allows the user to access.

其中，该接入点设备包括：Wherein, the access point device includes:

通信模块，用于与用户和网络传输设备进行信息交互；Communication module, used for information interaction with users and network transmission equipment;

存储模块，用于存储用户信息；A storage module for storing user information;

控制模块，用于在通信模块收到用户的接入请求后，根据存储模块存储的用户信息判断用户是否满足接入条件，如果是，允许该用户接入，否则，拒绝该用户接入。The control module is used to determine whether the user meets the access conditions according to the user information stored in the storage module after the communication module receives the user's access request, and if so, allow the user to access, otherwise, deny the user's access.

本实施例提供的系统能够有效地控制用户接入的数目，保护了用户使用接入点设备私有性，以及保证了运营商对接入用户数目的限制。The system provided by this embodiment can effectively control the number of users accessing, protect the privacy of users using access point devices, and ensure the operator's restriction on the number of accessing users.

以上实施例提供的技术方案中的全部或部分内容可以通过软件编程实现，其软件程序存储在可读取的存储介质中，存储介质例如：计算机中的硬盘、光盘或软盘。All or part of the technical solutions provided by the above embodiments can be realized by software programming, and the software program is stored in a readable storage medium, such as a hard disk, an optical disk or a floppy disk in a computer.

以上所述仅为本发明的较佳实施例，并不用以限制本发明，凡在本发明的精神和原则之内，所作的任何修改、等同替换、改进等，均应包含在本发明的保护范围之内。The above descriptions are only preferred embodiments of the present invention, and are not intended to limit the present invention. Any modifications, equivalent replacements, improvements, etc. made within the spirit and principles of the present invention shall be included in the protection of the present invention. within range.

Claims (14)

1. control the method that the user inserts for one kind, it is characterized in that described method comprises:

After receiving user's access request, judge according to stored user information in advance whether described user satisfies access conditions, if, allow described user to insert, otherwise, refuse described user and insert.

2. the method that control user as claimed in claim 1 inserts is characterized in that described method also comprises:

Receive the signal that comprises user profile that the user sends;

Extract the user profile in the described signal;

Upgrade local stored user information according to the user profile in the described signal.

3. the method that control user as claimed in claim 1 inserts is characterized in that described method also comprises:

After detecting user profile on the local Subscriber Identity Module and being modified, upgrade local stored user information according to amended user profile on the Subscriber Identity Module.

4. as the method for claim 2 or 3 described control users accesses, it is characterized in that described method also comprises:

User profile after registrar reports renewal.

5. the method that control user as claimed in claim 3 inserts is characterized in that described method also comprises:

Receive the instruction of revising the user profile on the described Subscriber Identity Module, prompting input password;

Whether the password of checking input is legal, if legal, allows to revise the user profile on the described Subscriber Identity Module; Otherwise refusal is revised the user profile on the described Subscriber Identity Module.

6. the method that control as claimed in claim 1 user inserts is characterized in that, described basis stored user information in advance judges that the step whether described user satisfies access conditions comprises:

Check the list item that whether has in user's access tabulation of storing in advance with described user's coupling, if having, described user satisfies access conditions, otherwise described user does not satisfy described access conditions.

7. an access point apparatus is characterized in that, described access point apparatus comprises:

Communication module is used for carrying out information interaction with user and web-transporting device;

Memory module is used for storing subscriber information;

Control module is used for after described communication module is received user's access request, judges according to described memory module stored user information whether described user satisfies access conditions, if, allow described user to insert, otherwise, refuse described user and insert.

8. access point apparatus as claimed in claim 7 is characterized in that, described memory module comprises:

Be used for the Subscriber Identity Module of storing subscriber information or be used for the buffer unit of cache user information;

Described equipment also comprises:

First update module is used for upgrading stored user information in described Subscriber Identity Module or the buffer unit according to the user profile in the described signal after described communication module receives the signal that comprises user profile of user's transmission.

9. access point apparatus as claimed in claim 8 is characterized in that, described equipment also comprises:

First information reporting module is used for the user profile after registrar reports described Subscriber Identity Module or buffer unit renewal.

10. access point apparatus as claimed in claim 7 is characterized in that, described memory module comprises:

Be used for the Subscriber Identity Module of storing subscriber information and be used for the buffer unit of cache user information;

Described equipment also comprises:

Second update module after being used to detect user profile on the local Subscriber Identity Module and being modified, is upgraded stored user information in the described buffer unit according to amended user profile on the Subscriber Identity Module; Or

Be used for after described communication module receives the signal that comprises user profile of user's transmission, upgrading stored user information in described Subscriber Identity Module and the buffer unit according to the user profile in the described signal.

11. access point apparatus as claimed in claim 10 is characterized in that, described equipment also comprises:

The second information reporting module is used for the user profile after registrar reports described buffer unit renewal.

12. access point apparatus as claimed in claim 7 is characterized in that, described control module comprises:

Inspection unit is used for checking the list item that whether has in user's access tabulation that described memory module stores with described user's coupling;

The access control unit, the check result that is used for when described inspection unit is when the list item that mates with described user is arranged, and allows described user to insert, otherwise, refuse described user and insert.

13. a system is characterized in that, described system comprises:

Access point apparatus after being used to receive user's access request, judges according to stored user information in advance whether described user satisfies access conditions, if, allow described user to insert, otherwise, refuse described user and insert;

Web-transporting device is used for communicating with described access point apparatus, when described access point apparatus allows described user to insert, described user and network is connected.

14. system as claimed in claim 13 is characterized in that, described access point apparatus comprises:

Communication module is used for carrying out information interaction with user and web-transporting device;

Memory module is used for storing subscriber information;

Control module is used for after described communication module is received user's access request, judges according to described memory module stored user information whether described user satisfies access conditions, if, allow described user to insert, otherwise, refuse described user and insert.

Images