Disclosure of Invention
Aiming at the problems in the prior art, the invention aims to provide a method, a system, equipment and a storage medium for wireless access of an interactive network television, which overcome the difficulty in the prior art, can solve the problem that the internet television safely accesses an IPTV private network in a wireless environment by encrypting and combining with real-time issuing of a flow table in a software defined network, and ensure the opening and timeliness of user services.
The embodiment of the invention provides a method for wireless access of an interactive network television, which comprises the following steps:
The method comprises the steps that a wireless gateway obtains a channel address of an interactive network television private network, wherein the wireless gateway comprises a first channel connected with the interactive network television private network and a second channel connected with a public network;
the network television request equipment sends a live broadcast request to the wireless gateway, and when the live broadcast request accords with a preset flow matching rule, the live broadcast request is sent to the first channel;
Transmitting the authenticated live broadcast request to an interactive network television private network; and
And the wireless gateway converts the multicast video stream fed back by the interactive network television private network into a unicast video stream and then sends the unicast video stream to the network television request equipment.
Preferably, before the wireless gateway obtains the channel address of the private network of the interactive network television, the method further comprises:
the network controller sends a flow table to the wireless gateway, the flow table including at least traffic matching rules for the interactive network television network.
Preferably, the wireless gateway obtains a channel address of an interactive internet protocol television private network, including:
And the wireless gateway acquires the channel address of the private network of the interactive network television through a dynamic host configuration protocol.
Preferably, the network television request device sends a live broadcast request to the wireless gateway, including the following steps:
The network television request equipment acquires a channel list, wherein the channel list comprises a multicast address of at least one corresponding multicast channel;
Splicing each multicast address into a request character string of a live broadcast request of each multicast channel according to a terminal equipment identification code, a user identification code and a time stamp of the network television request equipment, and encrypting by a key issued by the wireless gateway; and
The network television request equipment splices the request character string of a target channel into a uniform resource locator based on a hypertext transfer protocol and sends the uniform resource locator to the wireless gateway.
Preferably, the encrypting the key issued by the wireless gateway includes:
the network television request equipment encrypts the request character string by AES256 and generates an encrypted character string after BASE64 encoding;
The network television request equipment splices a request character string of a target channel into a uniform resource locator based on a hypertext transfer protocol and sends the uniform resource locator to the wireless gateway, and the network television request equipment comprises:
the network television request equipment splices the encrypted character string of a target channel into a uniform resource locator based on a hypertext transfer protocol and sends the uniform resource locator to the wireless gateway.
Preferably, the step of sending the authenticated live broadcast request to an interactive internet protocol television private network includes the following steps:
The wireless gateway decrypts the uniform resource locator through the secret key issued by the network controller and authenticates the terminal equipment identification code, the user identification code and the time stamp; and
And the wireless gateway sends the live broadcast request with successful authentication to a corresponding multicast address in the private network of the interactive network television.
Preferably, the wireless gateway decrypts the uniform resource locator through the key issued by the network controller, authenticates the terminal equipment identification code, the user identification code and the timestamp, and includes:
the wireless gateway decrypts the uniform resource locator through the AES key issued by the network controller and restores the uniform resource locator into a request character string;
And authenticating the terminal equipment identification code, the user identification code and the time stamp in the request character string according to the data of the request character string prestored in the wireless gateway by the network television request equipment.
Preferably, the wireless gateway converts the multicast video stream fed back by the internet protocol television private network into a unicast video stream, and sends the unicast video stream to the internet protocol television request device, and the method comprises the following steps:
The multicast source of the private network of the interactive network television transmits a corresponding multicast video stream to a wireless gateway according to the live broadcast request;
The wireless gateway converts the multicast video stream into a unicast video stream;
the wireless gateway transmits the unicast video stream to the network television request device which makes the live broadcast request.
Preferably, the wireless gateway is a software defined network gateway, the network controller is a software defined network controller, and the live request is a live request based on a hypertext transfer protocol.
The embodiment of the invention also provides a system for realizing the wireless access of the interactive network television, which is used for realizing the wireless access of the interactive network television and comprises the following steps:
the wireless gateway comprises a first channel connected with the interactive network television private network and a second channel connected with the public network.
And the live broadcast request sending module is used for sending a live broadcast request to the wireless gateway by the network television request equipment, and sending the live broadcast request to the first channel when the live broadcast request meets a preset flow matching rule.
And the live broadcast request authentication module is used for transmitting the authenticated live broadcast request to the interactive network television private network.
And the wireless gateway converts the multicast video stream fed back by the interactive network television private network into a unicast video stream and then sends the unicast video stream to the network television request equipment.
The embodiment of the invention also provides equipment for wireless access of the interactive network television, which comprises the following components:
A processor;
A memory having stored therein executable instructions of the processor;
wherein the processor is configured to perform the steps of the method of interactive internet television wireless access described above via execution of the executable instructions.
Embodiments of the present invention also provide a computer-readable storage medium storing a program that when executed implements the steps of the method for interactive internet television wireless access described above.
The invention aims to provide a method, a system, equipment and a storage medium for wireless access of an interactive network television, which can solve the problem of safe access of the internet television to an IPTV private network in a wireless environment by encrypting and combining with real-time issuing of a flow table in a software defined network, and ensure the opening and timeliness of user service.
Detailed Description
Other advantages and effects of the present application will be readily apparent to those skilled in the art from the following disclosure, which describes the embodiments of the present application by way of specific examples. The application may be practiced or carried out in other embodiments and with various details, and various modifications and alterations may be made to the details of the application from various points of view and applications without departing from the spirit of the application. It should be noted that, without conflict, the embodiments of the present application and features of the embodiments may be combined with each other.
The embodiments of the present application will be described in detail below with reference to the attached drawings so that those skilled in the art to which the present application pertains can easily implement the present application. This application may be embodied in many different forms and is not limited to the embodiments described herein.
In the context of the present description, reference to the terms "one embodiment," "some embodiments," "examples," "particular examples," or "some examples," etc., means that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the present application. Furthermore, the particular features, structures, materials, or characteristics may be combined in any suitable manner in any one or more embodiments or examples. Furthermore, various embodiments or examples, as well as features of various embodiments or examples, presented herein may be combined and combined by those skilled in the art without conflict.
Furthermore, the terms "first," "second," and the like, are used for descriptive purposes only and are not to be construed as indicating or implying a relative importance or the number of technical features indicated. Thus, a feature defining "a first" or "a second" may explicitly or implicitly include at least one such feature. In the context of the present application, the meaning of "a plurality" is two or more, unless explicitly defined otherwise.
For the purpose of clarity of explanation of the present application, components that are not related to the explanation are omitted, and the same or similar components are given the same reference numerals throughout the description.
Throughout the specification, when a device is said to be "connected" to another device, this includes not only the case of "direct connection" but also the case of "indirect connection" with other elements interposed therebetween. In addition, when a certain component is said to be "included" in a certain device, unless otherwise stated, other components are not excluded, but it means that other components may be included.
When a device is said to be "on" another device, this may be directly on the other device, but may also be accompanied by other devices therebetween. When a device is said to be "directly on" another device in contrast, there is no other device in between.
Although the terms first, second, etc. may be used herein to connote various elements in some instances, the elements should not be limited by the terms. These terms are only used to distinguish one element from another element. For example, a first interface, a second interface, etc. Furthermore, as used herein, the singular forms "a", "an" and "the" are intended to include the plural forms as well, unless the context indicates otherwise. It will be further understood that the terms "comprises," "comprising," "includes," and/or "including" specify the presence of stated features, steps, operations, elements, components, items, categories, and/or groups, but do not preclude the presence, presence or addition of one or more other features, steps, operations, elements, components, items, categories, and/or groups. The terms "or" and/or "as used herein are to be construed as inclusive, or meaning any one or any combination. Thus, "A, B or C" or "A, B and/or C" means "any of the following: a, A is as follows; b, a step of preparing a composite material; c, performing operation; a and B; a and C; b and C; A. b and C). An exception to this definition will occur only when a combination of elements, functions, steps or operations are in some way inherently mutually exclusive.
The terminology used herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the application. As used herein, the singular forms "a", "an" and "the" are intended to include the plural forms as well, unless the language clearly indicates the contrary. The meaning of "comprising" in the specification is to specify the presence of stated features, regions, integers, steps, operations, elements, and/or components, but does not preclude the presence or addition of other features, regions, integers, steps, operations, elements, and/or components.
Although not differently defined, including technical and scientific terms used herein, all have the same meaning as commonly understood by one of ordinary skill in the art to which this application belongs. The term addition defined in the commonly used dictionary is interpreted as having a meaning conforming to the contents of the related art document and the current hint, so long as no definition is made, it is not interpreted as an ideal or very formulaic meaning too much.
Fig. 1 is a flow chart of one embodiment of a method of interactive internet television wireless access of the present invention. As shown in fig. 1, the method for wireless access of the interactive network television of the invention comprises the following steps:
S110, the wireless gateway obtains the channel address of the private network of the interactive network television, and the wireless gateway comprises a first channel connected with the private network of the interactive network television and a second channel connected with the public network. The wireless gateway is a Software Defined Network (SDN) gateway, and the software defined network (Software Defined Network, SDN) is a novel network innovation architecture proposed by the Clean-Slate subject research group of the university of Steady, and is an implementation mode of network virtualization. The core technology OpenFlow separates the control surface from the data surface of the network equipment, so that flexible control of network flow is realized, the network becomes more intelligent as a pipeline, and a good platform is provided for innovation of the core network and application. In this embodiment, the wireless gateway obtains the channel address of the private network of the interactive network television through the dynamic host configuration protocol. Dynamic host configuration protocol DHCP (Dynamic Host Configuration Protocol ) is a standard protocol defined by RFC1541 that allows a server to dynamically allocate IP addresses and configuration information to clients.
And S120, the network television request equipment sends a live broadcast request to the wireless gateway, and when the live broadcast request meets the preset flow matching rule, the live broadcast request is sent to the first channel. Wherein the live request is a hypertext transfer protocol (HTTP) based live request. The hypertext transfer protocol (Hyper Text Transfer Protocol, HTTP) is a simple request-response protocol that typically runs on top of TCP. It specifies what messages the client might send to the server and what responses it gets. The header of the request and response messages are given in ASCII form; whereas the message content has a MIME-like format.
And S130, sending the authenticated live broadcast request to the private network of the interactive network television.
And S140, the wireless gateway converts the multicast video stream fed back by the private network of the interactive network television into a unicast video stream and then sends the unicast video stream to the network television request equipment. In this embodiment, the original purpose of the multicast technology is to send information to a certain target group in a "best effort" manner in the IP network, where the target group is called a multicast group, so that when an active host sends an information request to a multipoint target host, the source host only sends a piece of data, and the destination address of the data is a multicast group address, so that all the members belonging to the group can receive a copy of the data sent by the source host, and in this multicast manner, only the members that are needed by the real information receive the information, and other hosts cannot receive the information. Unicast is a point-to-point connection between a client and a server. "Point-to-Point" refers to each client receiving a remote stream from a server. Unicast streams are sent only when a client makes a request. Unicast (Unicast) is a communication between a single sender and a receiver over a network. The method can be applied to the fields of communication, computers and the like, and can also solve the practical problem by utilizing a multicast and unicast hybrid algorithm. The invention solves the problem of the method for safely accessing the IPTV private network by the Internet television in the wireless environment and ensures the timeliness of opening the user service.
The invention establishes an IPTV private network channel in the SDN gateway, and the channel acquires the IPTV private network address by using an IPoE mode; the gateway updates the MAC and IPTV private network address segments of the authorized equipment in real time by the SDN controller; the gateway identifies the WLAN uplink message, if the message source MAC is the authorized equipment MAC and the destination address is the address in the IPTV private network address segment, the message enters the private network channel, is forwarded to the IPTV private network after passing through the NAT, and the rest of the traffic is forwarded according to the original rule of the gateway. Wherein,
IPoE uses DHCP (dynamic host configuration protocol) technology as a core, and is tightly combined with universal RADIUS (remote user dial-in authentication protocol) to realize a broadband access authentication system of an IP user session mechanism, a grading mechanism of an IP data stream, an IP session authentication and management mechanism. IPoE can not only meet QoS (quality of service) differentiated level service, but also has efficient multicast characteristics.
The MAC Address (english: MEDIA ACCESS Control Address) translates into a medium access Control Address, also called a local area network Address (LAN ADDRESS), a MAC Address, an ethernet Address (ETHERNET ADDRESS) or a physical Address (PHYSICAL ADDRESS), which is an Address used to identify the location of the network device. In the OSI model, the third layer network layer is responsible for IP addresses, and the second layer data link layer is responsible for MAC addresses. The MAC address is used to uniquely identify a network card in the network, and if one or more network cards exist in a device, each network card needs and has a unique MAC address.
The invention sets the multicast-to-unicast function in the SDN gateway, and the authorized equipment accesses the multicast resources of the IPTV private network in the HTTP request mode carrying the authentication information, thereby avoiding the problem that the multicast resources cannot be accessed because the multicast forwarding is forbidden by WIFI or the default multicast request configured by the IPTV soft terminal system does not accord with the IPTV private network specification. When the IPTV soft terminal equipment needs to access the multicast resource, the IPTV soft terminal equipment sends a contracted HTTP message to a gateway to carry out multicast request, and the message is initially processed by an OVS network bridge and then is forwarded to an IPTV private network channel. The multicast-to-unicast process in the IPTV private network channel analyzes the HTTP request content, generates a multicast request conforming to the IPTV private network specification and establishes connection with the IPTV soft terminal, converts the multicast video stream into a unicast video stream and then forwards the unicast video stream to the IPTV soft terminal equipment.
Fig. 2 is a flow chart of another embodiment of a method of interactive internet television wireless access of the present invention. As shown in fig. 2, in the method for wireless access to the interactive internet protocol television in the embodiment of fig. 1, step S100 is added before step S110, step S120 is replaced by S121, S122, S123, S124, step S130 is replaced by S131, S132, step S140 is replaced by S141, S142, S143, and the following description is given for each step:
And S100, the network controller sends a flow table to the wireless gateway, wherein the flow table at least comprises flow matching rules of the interactive network television network. According to the invention, through combining with real-time issuing of an SDN technology Openflow flow table, one of the design targets of Openflow is to separate the control function and the forwarding function of the network equipment, so that the control function is completely concentrated on a remote controller to finish, and an Openflow switch is only responsible for performing simple and high-speed data forwarding locally. In the operation process of the OpenFlow switch, the data forwarding basis is a flow table. The flow table may be regarded as an abstraction of the OpenFlow to the data forwarding function of the network device. In conventional network devices, the data forwarding of the switch and the router needs to rely on a two-layer MAC address forwarding table or a three-layer IP address routing table stored in the device, and the flow table used in the OpenFlow switch is also the same, but the table entry of the flow table integrates network configuration information of each layer in the network, so that richer rules can be used when data forwarding is performed.
S110, the wireless gateway obtains the channel address of the private network of the interactive network television, and the wireless gateway comprises a first channel connected with the private network of the interactive network television and a second channel connected with the public network.
S121, the network television request equipment acquires a channel list, wherein the channel list comprises at least one multicast address corresponding to a multicast channel.
S122, splicing each multicast address into a request character string of a live broadcast request of each multicast channel according to the terminal equipment identification code, the user identification code and the time stamp of the network television request equipment, and encrypting by a key issued by the wireless gateway. The key encryption issued by the wireless gateway comprises the following steps: the internet protocol television request device encrypts the request string with AES256 and generates an encrypted string after BASE64 encoding, but not limited thereto. Among them, the AES encryption standard, also called advanced encryption standard Rijndael encryption, is an encryption standard of the 21 st century aimed at substituting DES by NIST of national institute of standards and technology. The basic requirement of AES is that with symmetric block cipher systems, the key length can be 128, 192 or 256 bits, the block length 128 bits, the algorithm should be easy to implement on various hardware and software. Base64 is one of the most common encoding schemes on networks for transmitting 8Bit bytecodes, and Base64 is a method for representing binary data based on 64 printable characters. See RFC 2045-RFC 2049, supra, detailed specifications for MIME. Base64 encoding is a binary to character process that can be used to convey longer identification information in an HTTP environment. The Base64 coding is unreadable, and can be read only after decoding, but is not limited to the method.
S123, the network television request equipment splices the request character string of a target channel into a uniform resource locator based on a hypertext transfer protocol and sends the uniform resource locator to the wireless gateway. In a preferred embodiment, in order to coordinate with the previous encryption step, the network television request device concatenates the encrypted string of a target channel into a uniform resource locator based on the hypertext transfer protocol and sends the uniform resource locator to the wireless gateway, but not limited to the uniform resource locator.
S131, the wireless gateway decrypts the uniform resource locator through the secret key issued by the network controller, and authenticates the terminal equipment identification code, the user identification code and the time stamp. If the terminal equipment identification code, the user identification code and the time stamp in the request character string are the same as the terminal equipment identification code, the user identification code and the time stamp of the prestored authorization equipment, the authentication is successful, otherwise, the authentication is failed. When the network television request device is started for the first time, the request character strings of various multicast addresses can be prestored in the wireless gateway, and when the live broadcast request is sent again subsequently, the request character strings are compared with the terminal device identification code, the user identification code and the timestamp decoded in the prestored request character strings to finish authentication, but the authentication is not limited to the authentication.
And S132, the wireless gateway sends the live broadcast request with successful authentication to a corresponding multicast address in the private network of the interactive network television.
S141, the multicast source of the private network of the interactive network television transmits the corresponding multicast video stream to the wireless gateway according to the live broadcast request.
S142, the wireless gateway converts the multicast video stream into a unicast video stream.
S143, the wireless gateway transmits the unicast video stream to the network television request device which makes a live broadcast request.
In this embodiment, the URL of the HTTP live broadcast request message sent by the IPTV soft terminal may be encrypted by AES256, and carries multicast group information, soft terminal plug-in identification information, a user identification code, and a timestamp; after being encrypted, the AES secret key for decryption is issued to an SDN gateway through an SDN controller, the multicast-to-unicast process decrypts the secret key, decrypts the HTTP live broadcast request by using the secret key, and verifies the identification information. If the time stamp is out of date in verification, abnormal conditions such as user corresponding errors, plug-in identification information errors and the like can be actively recorded, and the SDN controller is reported. If the key is considered to be cracked after the log is evaluated and reported, the IPTV soft terminal and the SDN controller update the main multicast request and the main key in real time, and a standby request and the key are used in the updating process to ensure that the multicast request is available; after the master key is updated, the spare key is updated.
The traditional television is accessed into the IPTV private network in a wired mode to access private network resources, the Internet television or OTT equipment is accessed into the home network in a wireless mode, but multicast messages are not forwarded in a wireless environment generally, so that multicast contents in the IPTV private network cannot be accessed. The other is realized by installing IPTV software and a gateway fixed port on the intelligent television to configure an IPTV private network, but the problem of home wiring cannot be solved, and the problem of network access security exists.
In order to solve the problem that an intelligent television is safely accessed into an IPTV private network in a wireless environment, messages of equipment are encrypted, soft terminal plug-in identification information, user identification codes and time stamps are added, and through the technical characteristics of SDN control and forwarding separation, a flow table of an authorization terminal can be issued to an SDN gateway in real time through an SDN controller platform, and under the condition that the IPTV private network access safety is ensured, the problem of user home wiring is solved, and user perception is improved.
Fig. 3 is a schematic block diagram of a method of operating the interactive internet television wireless access of the present invention. As shown in fig. 3, first, the SDN controller 2 issues a flow table to the flow matching module 43 in the SDN gateway 4, where the flow table includes flow matching rules of the current internet protocol television network, for example: the flow table contains the MAC address and IP address of the authorised device. And the SDN controller 2 also issues a decryption key to the IPTV private network channel 41.
Then, after the SDN gateway 4 is started, newly creating an IPTV namespace, and the SDN gateway 4 obtains the address of the IPTV private network 1 through the IPoE manner.
After the IPTV soft terminal 5 sends out the HTTP live broadcast request, the SDN controller 2 identifies the trusted device and issues a flow table, if the MAC address and the IP address of the authorized device in the flow table are satisfied, the flow is forwarded to the IPTV private network channel 41. At this point, if it is an unauthorized device, its traffic is forwarded to the public network 3.
After the IPTV private network channel 41 authenticates the HTTP live broadcast request (if the terminal device identifier, the user identifier, and the timestamp in the request string are the same as the terminal device identifier, the user identifier, and the timestamp of the pre-stored authorization device, the authentication is successful, otherwise the authentication fails), the multicast is converted into a unicast process, and the unicast process is converted into an IGMPv2 multicast request corresponding to the step 2 and sent to the IPTV private network (the authenticated live broadcast request is sent to the multicast source 11 corresponding to the IPTV private network 1, and the multicast source 11), meanwhile, the multicast-to-unicast process establishes a connection with the IPTV soft terminal, and the multicast video stream sent by the multicast server is converted into a unicast video stream, and is forwarded to the authorization device sending the HTTP live broadcast request, that is, the authorized IPTV soft terminal 5. (in the process, other traffic can still be forwarded through the original internet surfing channel and kept unchanged at the same time)
Fig. 4 is a timing diagram of the encryption and decryption process in the method of operating the interactive internet television wireless access of the present invention. As shown in fig. 4, a specific multicast request sent by an IPTV soft terminal is encrypted by AES256, and the encrypted content carries soft terminal plug-in identification information, a user identification code, and a time stamp in addition to the multicast request, so as to ensure service security. The encryption implementation flow is as follows:
An maintenance person of an IPTV soft terminal management platform (TMS platform 7) can enter an AES key for encrypting the TMS platform; the SDN gateway controller records the main AES key and the standby AES key, and simultaneously transmits the main AES key and the standby AES key to the gateway for the gateway to decrypt the HTTP live broadcast request.
And the IPTV soft terminal sends a request with a user identification code to the TMS platform to acquire an HTTP live program list.
The TMS platform receives the user identification code of the soft terminal, and the user identification code and the timestamp of the soft terminal are combined to splice each multicast address into the following character strings: soft terminal identity code user identity code multicast address timestamp.
And the TMS encrypts each generated character string by using the key stored by the platform through AES256, and returns all the generated character strings to the IPTV soft terminal after being coded by the BASE 64.
If the IPTV soft terminal is on line for the first time, the TMS platform simultaneously informs the SDN gateway controller, the IPTV soft terminal is newly added as an authorization device, and the SDN gateway controller issues an updated flow table.
The IPTV soft terminal splices the encrypted character string of the corresponding channel into a certain channel in a live program list in a URL (encrypted character string of the corresponding channel) of the HTTP live broadcast request and sends the channel, and the gateway recognizes and forwards the message which is from the authorized IPTV soft terminal and accesses the IPTV private network to the IPTV private network channel by the OVS flow table after receiving the channel.
And the multicast-to-unicast process decrypts the restored character string by using the AES key issued by the SDN controller, verifies the identification code and the time stamp, and reports the error information of the controller if the identification code is wrong or the time stamp is out of date. If the identification passes, an IGMP multicast request is sent to the multicast address, unicast connection is established with the IPTV soft terminal, the received multicast video stream is converted into unicast, and the unicast video stream is forwarded to the IPTV soft terminal, so that the playing of the live channel is realized.
The method and the device update and authenticate the flow table in real time through the SDN controller, are safer and more reliable, and solve IPTV private network access in a wireless environment through a multicast-to-unicast mechanism. The patent can also encrypt through aes, the SDN controller authorizes in real time, updates the secret key in real time, has further protected the private network multicast resource. In addition, the IPTV terminal is realized through the gateway, so that the television is directly connected to the home gateway in a wireless mode, and the hardware cost of the IPTV set top box is saved.
In summary, the invention realizes the IPTV service through the IPTV soft terminal, can save the investment cost of the set top box and the television transformation cost in the development of the IPTV service, and simultaneously improves the user experience. By providing the scheme of internet television wireless access IPTV private network, the problem of user home wiring can be solved, and the overall business development is greatly improved. By AES encryption and SDN flow table dynamic issuing, only a trusted terminal can be ensured to access the IPTV private network, the IPTV private network is prevented from being attacked, the safety of the whole scheme is improved, and the timeliness of service opening is ensured.
Fig. 5 is a block diagram of one embodiment of a system for interactive internet television wireless access of the present invention. The system for wireless access of the interactive network television of the present invention, as shown in fig. 5, includes but is not limited to:
The channel address obtaining module 51 obtains the channel address of the private network of the interactive network television by the wireless gateway, and the wireless gateway comprises a first channel connected with the private network of the interactive network television and a second channel connected with the public network.
And the live broadcast request sending module 52 is used for sending a live broadcast request to the wireless gateway by the network television request equipment, and sending the live broadcast request to the first channel when the live broadcast request meets the preset flow matching rule.
And the live broadcast request authentication module 53 sends the authenticated live broadcast request to the private network of the interactive network television.
The multicast-to-unicast module 54, the wireless gateway converts the multicast video stream fed back by the internet protocol television private network into a unicast video stream, and then sends the unicast video stream to the internet protocol television request device.
The implementation principle of the above modules is referred to related description in the method of wireless access of the interactive network television, and will not be repeated here.
The system for wireless access of the interactive network television can solve the problem of a method for safely accessing the IPTV private network by the Internet television in a wireless environment by encrypting and combining with real-time issuing of a flow table in a software defined network, and ensures the opening of user services and timeliness thereof.
Fig. 6 is a block diagram of another embodiment of a system for interactive internet television wireless access of the present invention. As shown in fig. 6, on the basis of the embodiment of the apparatus shown in fig. 5, the login authentication system based on hybrid encryption of the present invention further includes a traffic matching rule module 50, and the live broadcast request sending module 52 is replaced by a channel list obtaining module 521, a request string encrypting module 522, and a request string sending module 523; the live broadcast request sending module 53 is replaced by the request string decrypting module 531 and the live broadcast request authenticating module 532; the live request sending module 54 is replaced by a multicast video streaming module 541, a convert unicast video streaming module 542, and a unicast video streaming module 543.
The flow matching rule module 50 causes the network controller to send a flow table to the wireless gateway, the flow table including at least flow matching rules for the interactive network television network.
The channel address obtaining module 51 makes the wireless gateway obtain the channel address of the private network of the interactive network television, and the wireless gateway includes a first channel connected with the private network of the interactive network television and a second channel connected with the public network.
The channel list obtaining module 521 obtains a channel list from the network television request device, where the channel list includes a multicast address of at least one corresponding multicast channel.
The request string encryption module 522 splices each multicast address into a request string of a live broadcast request for each multicast channel according to the terminal equipment identification code, the user identification code and the timestamp of the network television request equipment, and encrypts the request string by a key issued by the wireless gateway.
The request string sending module 523, the network television request device splices the request string of a target channel into a uniform resource locator based on the hypertext transfer protocol and sends the uniform resource locator to the wireless gateway.
The request character string decryption module 531 decrypts the uniform resource locator through the key issued by the network controller, and authenticates the terminal equipment identification code, the user identification code and the time stamp.
The live broadcast request authentication module 532 sends the live broadcast request with successful authentication to the corresponding multicast address in the internet protocol television private network.
And the multicast video stream transmission module 541 is used for transmitting the corresponding multicast video stream to the wireless gateway by the multicast source of the private network of the interactive network television according to the live broadcast request.
The convert unicast video stream module 542, the wireless gateway converts the multicast video stream into a unicast video stream.
The unicast video streaming module 543, the wireless gateway transmits the unicast video stream to the network television requesting device that makes the live broadcast request.
The implementation principle of the above mode is referred to related description in the method of wireless access of the interactive network television, and will not be repeated here.
The system for wireless access of the interactive network television can solve the problem of a method for safely accessing the IPTV private network by the Internet television in a wireless environment by encrypting and combining with real-time issuing of a flow table in a software defined network, and ensures the opening of user services and timeliness thereof.
The embodiment of the invention also provides equipment for wireless access of the interactive network television, which comprises a processor. A memory having stored therein executable instructions of a processor. Wherein the processor is configured to perform the steps of a method of interactive internet television wireless access via execution of executable instructions.
As shown above, the system for wireless access of the interactive network television of the embodiment of the invention can solve the problem of the method for safely accessing the IPTV private network by the internet television in the wireless environment by encrypting and combining with real-time issuing of the flow table in the software defined network, and ensures the service opening and timeliness of the user.
Those skilled in the art will appreciate that the various aspects of the invention may be implemented as a system, method, or program product. Accordingly, aspects of the invention may be embodied in the following forms, namely: an entirely hardware embodiment, an entirely software embodiment (including firmware, micro-code, etc.) or an embodiment combining hardware and software aspects may be referred to herein as a "circuit," module "or" platform.
Fig. 7 is a schematic structural diagram of an interactive internet television wireless access device of the present invention. An electronic device 600 according to this embodiment of the invention is described below with reference to fig. 7. The electronic device 600 shown in fig. 7 is merely an example, and should not be construed as limiting the functionality and scope of use of embodiments of the present invention.
As shown in fig. 7, the electronic device 600 is in the form of a general purpose computing device. Components of electronic device 600 may include, but are not limited to: at least one processing unit 610, at least one memory unit 620, a bus 630 connecting the different platform components (including memory unit 620 and processing unit 610), a display unit 640, etc.
Wherein the storage unit stores program code executable by the processing unit 610 such that the processing unit 610 performs the steps according to various exemplary embodiments of the present invention described in the above-described electronic prescription flow processing method section of the present specification. For example, the processing unit 610 may perform the steps as shown in fig. 2.
The storage unit 620 may include readable media in the form of volatile storage units, such as Random Access Memory (RAM) 6201 and/or cache memory unit 6202, and may further include Read Only Memory (ROM) 6203.
The storage unit 620 may also include a program/utility 6204 having a set (at least one) of program modules 6205, such program modules 6205 including, but not limited to: processing systems, one or more application programs, other program modules, and program data, each or some combination of which may include an implementation of a network environment.
Bus 630 may be a local bus representing one or more of several types of bus structures including a memory unit bus or memory unit controller, a peripheral bus, an accelerated graphics port, a processing unit, or using any of a variety of bus architectures.
The electronic device 600 may also communicate with one or more external devices 700 (e.g., keyboard, pointing device, bluetooth device, etc.), one or more devices that enable a user to interact with the electronic device 600, and/or any device (e.g., router, modem, etc.) that enables the electronic device 600 to communicate with one or more other computing devices. Such communication may occur through an input/output (I/O) interface 650. Also, electronic device 600 may communicate with one or more networks such as a Local Area Network (LAN), a Wide Area Network (WAN), and/or a public network, such as the Internet, through network adapter 660. The network adapter 660 may communicate with other modules of the electronic device 600 over the bus 630. It should be appreciated that although not shown, other hardware and/or software modules may be used in connection with electronic device 600, including, but not limited to: microcode, device drivers, redundant processing units, external disk drive arrays, RAID systems, tape drives, data backup storage platforms, and the like.
The embodiment of the invention also provides a computer readable storage medium for storing a program, and the steps of the method for realizing the wireless access of the interactive network television when the program is executed. In some possible embodiments, the aspects of the present invention may also be implemented in the form of a program product comprising program code for causing a terminal device to carry out the steps according to the various exemplary embodiments of the invention as described in the electronic prescription stream processing method section of this specification, when the program product is run on the terminal device.
As shown above, the system for wireless access of the interactive network television of the embodiment of the invention can solve the problem of the method for safely accessing the IPTV private network by the internet television in the wireless environment by encrypting and combining with real-time issuing of the flow table in the software defined network, and ensures the service opening and timeliness of the user.
The program product 800 for implementing the above-described method according to an embodiment of the present invention may employ a portable compact disc read-only memory (CD-ROM) and include program code and may be run on a terminal device, such as a personal computer. However, the program product of the present invention is not limited thereto, and in this document, a readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device.
The program product may employ any combination of one or more readable media. The readable medium may be a readable signal medium or a readable storage medium. The readable storage medium can be, for example, but is not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or a combination of any of the foregoing. More specific examples (a non-exhaustive list) of the readable storage medium would include the following: an electrical connection having one or more wires, a portable disk, a hard disk, random Access Memory (RAM), read-only memory (ROM), erasable programmable read-only memory (EPROM or flash memory), optical fiber, portable compact disk read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing.
The computer readable storage medium may include a data signal propagated in baseband or as part of a carrier wave, with readable program code embodied therein. Such a propagated data signal may take any of a variety of forms, including, but not limited to, electro-magnetic, optical, or any suitable combination of the foregoing. A readable storage medium may also be any readable medium that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device. Program code embodied on a readable storage medium may be transmitted using any appropriate medium, including but not limited to wireless, wireline, optical fiber cable, RF, etc., or any suitable combination of the foregoing.
Program code for carrying out processes of the present invention may be written in any combination of one or more programming languages, including an object oriented programming language such as Java, C++ or the like and conventional procedural programming languages, such as the "C" programming language or similar programming languages. The program code may execute entirely on the user's computing device, partly on the user's device, as a stand-alone software package, partly on the user's computing device, partly on a remote computing device, or entirely on the remote computing device or server. In the case of remote computing devices, the remote computing device may be connected to the user computing device through any kind of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or may be connected to an external computing device (e.g., connected via the Internet using an Internet service provider).
In summary, the present invention aims to provide a method, a system, a device and a storage medium for wireless access of an interactive network television, which can solve the problem of secure access of an internet television to an IPTV private network in a wireless environment by encrypting and combining with real-time delivery of a flow table in a software defined network, and ensure the opening and timeliness of a user service.
The foregoing is a further detailed description of the invention in connection with the preferred embodiments, and it is not intended that the invention be limited to the specific embodiments described. It will be apparent to those skilled in the art that several simple deductions or substitutions may be made without departing from the spirit of the invention, and these should be considered to be within the scope of the invention.