US20220303276A1

Movatterモバイル変換

Info

Publication number: US20220303276A1
Application number: US17/711,789
Authority: US
Inventors: Zhen ZHONG
Original assignee: Huawei Technologies Co Ltd
Current assignee: Huawei Technologies Co Ltd
Priority date: 2014-05-31
Filing date: 2022-04-01
Publication date: 2022-09-22
Also published as: US10616232B2; JP2016528844A; US20160127381A1; EP3869766A1; US11310239B2; ES2934600T3; CN104380776B; ES2881103T3; CN109996234A; EP3007477A1; JP6842919B2; CN109996234B; CN104380776A; WO2015180192A1; US20200177599A1; EP3007477B1; EP3007477A4; EP3869766B1

Abstract

Embodiments of the present invention disclose a network connection method, a hotspot terminal, and a management terminal. A hotspot terminal receives an Internet access request sent by a mobile terminal. The hotspot terminal sends an input request to the mobile terminal according to the received Internet access request. The hotspot terminal receives user identity information sent by the mobile terminal. The hotspot terminal receives a permission confirmation instruction that is entered by an administrator according to the user identity information. The hotspot terminal determines Internet access permission of the mobile terminal according to the received permission confirmation instruction. According to the network connection method provided in the embodiments of the present invention, a problem that a process in which a mobile terminal logs in to a remote network by using a hotspot terminal is tedious and complex is resolved.

Description

CROSS-REFERENCE TO RELATED APPLICATIONS

This application is a continuation of U.S. patent application Ser. No. 16/781,851, filed on Feb. 4, 2020, which is a continuation of U.S. patent application Ser. No. 14/996,000, filed on Jan. 14, 2016, now U.S. Pat. No. 10,616,232, which is a continuation of International Patent Application No. PCT/CN2014/079036, filed on May 31, 2014. All of the aforementioned applications are hereby incorporated by reference in their entireties.

TECHNICAL FIELD

Embodiments of the present invention relate to the communications field, and in particular, to a network connection method, a hotspot terminal, and a management terminal.

BACKGROUND

In some application scenarios, when the mobile terminal accesses the encrypted WLAN established by the hotspot terminal, there is a problem such as difficulty in entering a password, or a password being too complex, or difficulty in acquiring a password, which causes a tedious process of accessing the encrypted WLAN by the mobile terminal.

SUMMARY

Embodiments of the present invention provide a network connection method, a hotspot terminal, and a management terminal to implement a secure and convenient network connection.

According to a first aspect of the present invention, a network connection method is provided, including: receiving, by a hotspot terminal, an Internet access request sent by a mobile terminal, where the Internet access request is sent to the hotspot terminal after the mobile terminal accesses, according to a service set identifier SSID of the hotspot terminal, an unencrypted wireless local area network WLAN established by the hotspot terminal;

sending, by the hotspot terminal, an input request to the mobile terminal according to the received Internet access request, where the input request is used to request the mobile terminal to send user identity information, and the user identity information is used to identify a user who uses the mobile terminal; receiving, by the hotspot terminal, the user identity information sent by the mobile terminal; receiving, by the hotspot terminal, a permission confirmation instruction that is entered by an administrator according to the user identity information; and determining, by the hotspot terminal, Internet access permission of the mobile terminal according to the received permission confirmation instruction.

In a first possible implementation manner, the receiving, by the hotspot terminal, a permission confirmation instruction that is entered by an administrator according to the user identity information specifically includes: sending, by the hotspot terminal, the user identity information to a management terminal; and receiving, by the hotspot terminal, the permission confirmation instruction sent by the management terminal, where the permission confirmation instruction is entered by the administrator according to the user identity information displayed by the management terminal.

With reference to the first aspect, in a second possible implementation manner, the receiving, by the hotspot terminal, a permission confirmation instruction that is entered by an administrator according to the user identity information specifically includes: displaying, by the hotspot terminal, the user identity information; and receiving, by the hotspot terminal, the permission confirmation instruction that is entered by the administrator according to the user identity information.

With reference to the first aspect and any one of the foregoing possible implementation manners, in a third possible implementation manner, the user identity information includes at least one piece of information of a user name, a user nickname, a user phone number, and user convention information.

With reference to the first aspect and any one of the foregoing possible implementation manners, in a fourth possible implementation manner, after the hotspot terminal determines the Internet access permission of the mobile terminal according to the received permission confirmation instruction, the hotspot terminal sets, according to a preset Internet access condition, an Internet access limitation of accessing the WLAN by the mobile terminal.

According to a second aspect, a network connection method is provided, including: receiving, by a management terminal, user identity information sent by a hotspot terminal, where the user identity information is used to identify a user who uses a mobile terminal, and the mobile terminal is a terminal that accesses an unencrypted wireless local area network WLAN established by the hotspot terminal and sends an Internet access request to the hotspot terminal; displaying the user identity information by the management terminal; receiving, by the management terminal, a permission confirmation instruction that is entered by an administrator according to the user identity information displayed by the management terminal; and sending, by the management terminal, the permission confirmation instruction to the hotspot terminal, so that the hotspot terminal determines Internet access permission of the mobile terminal.

In a first possible implementation manner, after the management terminal sends the permission confirmation instruction to the hotspot terminal, the management terminal sets an Internet access condition of the mobile terminal and sends the set Internet access condition to the hotspot terminal.

With reference to the second aspect and the first possible implementation manner, in a second possible implementation manner, the user identity information includes at least one piece of information of a user name, a user nickname, a user phone number, and user convention information.

According to a third aspect, a hotspot terminal is provided, including: a communications module and a processor; where the processor is configured to establish an unencrypted wireless local area network WLAN; the communications module is configured to receive an Internet access request sent by a mobile terminal, where the Internet access request is sent to the hotspot terminal after the mobile terminal accesses, according to a service set identifier SSID of the hotspot terminal, the unencrypted wireless local area network WLAN established by the processor; the processor is further configured to instruct, according to the Internet access request received by the communications module, the communications module to send an input request to the mobile terminal, where the input request is used to request the mobile terminal to send user identity information, and the user identity information is used to identify a user who uses the mobile terminal; the communications module is further configured to receive the user identity information sent by the mobile terminal; and the processor is further configured to receive a permission confirmation instruction that is entered by an administrator according to the user identity information, and determine Internet access permission of the mobile terminal according to the permission confirmation instruction.

In a first possible implementation manner, the communications module is further configured to send the user identity information to a management terminal, receive the permission confirmation instruction sent by the management terminal, and send the permission confirmation instruction to the processor, where the permission confirmation instruction is entered by the administrator according to the user identity information displayed by the management terminal.

In a second possible implementation manner, the hotspot terminal further includes a display module and an input module; where:

the display module is configured to display the user identity information after the communications module receives the user identity information sent by the mobile terminal;

and when receiving the permission confirmation instruction that is entered by the administrator according to the user identity information, the processor is specifically configured to receive, by using the input module, the permission confirmation instruction that is entered by the administrator according to the user identity information.

With reference to the third aspect and any one of the foregoing possible implementation manners, after the Internet access permission of the mobile terminal is determined according to the permission confirmation instruction, the processor is further configured to set, according to a preset Internet access condition, an Internet access limitation of accessing the WLAN by the mobile terminal.

With reference to the third aspect and any one of the foregoing possible implementation manners, the user identity information includes at least one piece of information of a user name, a user nickname, a user phone number, and user convention information.

According to a fourth aspect, a management terminal is provided, and the management terminal includes a communications module, a display module, an input module, and a processor; where the communications module is configured to receive user identity information sent by a hotspot terminal, where the user identity information is used to identify a user who uses a mobile terminal, and the mobile terminal is a terminal that accesses an unencrypted wireless local area network WLAN established by the hotspot terminal and sends an Internet access request to the hotspot terminal;

the display module is configured to display the user identity information;

the processor is configured to receive, by using the input module, a permission confirmation instruction that is entered by an administrator according to the user identity information displayed by the display module; and

the processor is further configured to instruct, according to the permission confirmation instruction, the communications module to send the permission confirmation instruction to the hotspot terminal, so that the hotspot terminal determines Internet access permission of the mobile terminal.

In a first possible implementation manner, after the communications module sends the permission confirmation instruction to the hotspot terminal, the processor is further configured to set an Internet access condition of the mobile terminal; and the communications module is further configured to send the Internet access condition set by the processor to the hotspot terminal.

With reference to the fourth aspect and the first possible implementation manner, the user identity information includes at least one piece of information of a user name, a user nickname, a user phone number, and user convention information.

It can be learned from the foregoing technical solutions that, in the technical solutions of the embodiments of the present invention, when a hotspot terminal receives an Internet access request of a mobile terminal, the hotspot terminal sends an input request to the mobile terminal, and the hotspot terminal receives a permission confirmation instruction that is entered by an administrator according to user identity information, and determines Internet access permission of the mobile terminal according to the received permission confirmation instruction. The hotspot terminal can determine the Internet access permission of the mobile terminal according to the received permission confirmation instruction, and provide a more convenient and efficient network connection method under the premise of ensuring that a process in which the mobile terminal accesses a wireless local area network established by the hotspot terminal is secure.

BRIEF DESCRIPTION OF DRAWINGS

To describe the technical solutions in the embodiments of the present invention more clearly, the following briefly introduces the accompanying drawings required for describing the embodiments. Apparently, the accompanying drawings in the following description show merely some embodiments of the present invention, and a person skilled in the art may still derive other drawings from these accompanying drawings without creative efforts.

FIG. 1 is a schematic diagram of an application scenario in which a mobile terminal accesses a wireless local area network established by a hotspot terminal according to an embodiment of the present invention;

FIG. 2 is a schematic diagram of an application scenario in which a mobile terminal accesses a wireless local area network established by a hotspot terminal according to another embodiment of the present invention;

FIG. 3 is a schematic flowchart of a network connection method according to an embodiment of the present invention;

FIG. 4 is a schematic diagram of an user interface showing that a mobile terminal finds a service set identifier SSID of a hotspot terminal;

FIG. 5A is a schematic diagram of an user interface showing that a hotspot terminal sends an input request to a mobile terminal;

FIG. 5B is a schematic diagram of an user interface showing that a user enters user identity information according to an input request user interface;

FIG. 6 is a schematic flowchart of a network connection method according to another embodiment of the present invention;

FIG. 7 is a schematic flowchart of a network connection method according to another embodiment of the present invention;

FIG. 8 is a schematic structural diagram of ahotspot terminal80 according to an embodiment of the present invention;

FIG. 9 is a schematic structural diagram of aprocessor802 according to an embodiment of the present invention; and

FIG. 10 is a schematic structural diagram of amanagement terminal100 according to an embodiment of the present invention.

DESCRIPTION OF EMBODIMENTS

The following clearly describes the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Apparently, the described embodiments are merely some but not all of the embodiments of the present invention. All other embodiments obtained by a person skilled in the art based on the embodiments of the present invention without creative efforts shall fall within the protection scope of the present invention.

FIG. 1 is a schematic diagram of an application scenario in which a mobile terminal accesses a wireless local area network established by a hotspot terminal according to an embodiment of the present invention. As shown inFIG. 1, a device A is a hotspot terminal, and the device A is used as an application access point (AP) of a wide area network (WAN) to log in to a remote network. A device B is a mobile terminal on a local area network (LAN) side, and the mobile terminal accesses a wireless local area network (WLAN) established by the device A that is used as an AP, so as to implement data services, such as watching a video, browsing a web page, instant messaging, or listening to music. In the application scenario of this embodiment of the present invention, a person who operates the device A is referred to as an administrator, and a person who operates the device B is referred to as a user.

FIG. 2 is a schematic diagram of an application scenario in which a mobile terminal accesses a wireless local area network established by a hotspot terminal according to another embodiment of the present invention. As shown inFIG. 2, a device A is a hotspot terminal and is used as an application access point of a WAN to log in to a remote network. A device B is a mobile terminal on a LAN side, and the mobile terminal accesses a WLAN established by the device A that is used as an AP, so as to implement data services, such as watching a video, browsing a web page, instant messaging, or listening to music. A device C is a mobile terminal on the LAN side and is referred to as a management terminal. In the application scenario of this embodiment of the present invention, a person who operates the device C is referred to as an administrator, and a person who operates the device B is referred to as a user.

In the present invention, a mobile terminal involved may be, for example, a mobile phone, a personal computer (PC), a tablet computer, a digital camera, and a game console. A hotspot terminal may be, for example, a wireless router, a portable router, a wireless modem, a mobile phone, a PC, a tablet computer, and a digital camera. A management terminal may be, for example, a mobile phone, a PC, a tablet computer, a digital camera, and a game console.

In the prior art, to ensure security of a mobile terminal that accesses a wireless local area network, a hotspot terminal establishes a wireless local area network for which a password is set. A correct password needs to be entered for the mobile terminal to access an encrypted WLAN established by the hotspot terminal, so as to implement a data service. In some application scenarios, when the mobile terminal accesses the encrypted WLAN established by the hotspot terminal, the following problems are likely to occur: it is difficult to enter the password, or it is difficult to acquire the password because the password is too complex; or any mobile terminal can access the encrypted WLAN when the password is disclosed. As a result, a process in which the mobile terminal accesses the encrypted WLAN established by the hotspot terminal is tedious and complex.

FIG. 3 is a schematic flowchart of a network connection method according to an embodiment of the present invention. The method includes the following steps:

S301. A hotspot terminal receives an Internet access request sent by a mobile terminal.

The Internet access request is sent to the hotspot terminal after the mobile terminal accesses, according to a service set identifier (SSID) of the hotspot terminal, an unencrypted WLAN established by the hotspot terminal. When the mobile terminal accesses, according to the SSID of the hotspot terminal, the unencrypted WLAN established by the hotspot terminal, the hotspot terminal acquires a MAC address of the mobile terminal, where the MAC address of the mobile terminal is used to uniquely identify the mobile terminal.

The SSID of the hotspot terminal may be broadcasted by the hotspot terminal in a wireless fidelity (Wi-Fi) manner, or may be broadcasted by the hotspot terminal in another manner, such as near field communication (NFC).

The Internet access request may be specifically a request for logging in to a website, such as sina (a news website), yahoo, sohu (a video website), or youku (a video website); or a request for logging in to another application program that requires Internet access, such as MSN or QQ (a chat tool).

When the mobile terminal finds the SSID of the hotspot terminal, the mobile terminal requests to access, according to the found SSID of the hotspot terminal, the WLAN established by the hotspot terminal. The hotspot terminal establishes the unencrypted WLAN, that is, the mobile terminal may access, according to the SSID, the unencrypted WLAN established by the hotspot terminal in a case in which no password needs to be entered.

FIG. 4 is a schematic diagram of an user interface showing that a mobile terminal finds an SSID of a hotspot terminal; as shown inFIG. 4, the mobile terminal finds an SSID that does not require password entering: E5730-Open, and the mobile terminal may access, according to the E5730-Open, an unencrypted WLAN established by the hotspot terminal.

After the mobile terminal accesses the unencrypted WLAN established by the hotspot terminal, the mobile terminal sends, according to a user requirement such as watching a video, browsing a web page, instant messaging, or listening to music, an Internet access request to the hotspot terminal to request to log in to a remote network by using the hotspot terminal. For example, the mobile terminal requests to log in to sina (a news website), yahoo, sohu (a video website), or youku (a video website) by using the hotspot terminal.

S302. The hotspot terminal sends an input request to the mobile terminal according to the received Internet access request, where the input request is used to request the mobile terminal to send user identity information.

When the hotspot terminal receives the Internet access request sent by the mobile terminal, the hotspot terminal sends the input request to the mobile terminal according to the received Internet access request. Specifically, the mobile terminal requests to log in to a remote network by using the hotspot terminal, and the hotspot terminal prevents, according to the received Internet access request, the mobile terminal from logging in to the remote network, and sends the input request to the mobile terminal to request the mobile terminal to send the user identity information. The user identity information is used to identify a user who uses the mobile terminal, and the user identity information may include at least one piece of information of a user name, a user nickname, a user phone number, and user convention information. The foregoing at least one piece of information of a user name, a user nickname, a user phone number, and user convention information is used to enable an administrator to distinguish an identity of the user.

In another embodiment of the present invention, the hotspot terminal prevents, according to the received Internet access request, the mobile terminal from logging in to the remote network and sends the input request to the mobile terminal, which may be implemented by the hotspot terminal in a redirection manner. That is, the hotspot terminal redirects the Internet access request sent by the mobile terminal to the input request in the redirection manner. For example, the mobile terminal requests to log in to sina, and the hotspot terminal sends an input request to the mobile terminal in the redirection manner;FIG. 5A is an example of a specific display user interface of the input request.

FIG. 5A is a schematic diagram of an user interface showing that a hotspot terminal sends an input request to a mobile terminal. As shown inFIG. 5A, the hotspot terminal sends, according to the received Internet access request, the input request to the mobile terminal to request the mobile terminal to send the user identity information.

The user identity information that requires to be entered is displayed on the schematic diagram of the user interface inFIG. 5A, and for example, may include any one or more of the following information: permission application information, a nickname, and a user phone number.

S303. The hotspot terminal receives the user identity information sent by the mobile terminal.

The user identity information may be, for example, at least one piece of information of a user name, a user nickname, a user phone number, and user convention information. The user convention information may be any information about a convention between the user and the administrator, such as a piece of specific text and a string of specific numbers.

FIG. 5B is a schematic diagram of an user interface of user identity information that is sent by a mobile terminal and received by a hotspot terminal. The schematic diagram of the user interface inFIG. 5B is used as an example for description.

A user enters user identity information according to the user identity information that is displayed on the user interface and requires to be entered; for example, the entered user identity information includes that permission application information is “I am Li Si, and I want to log in to a remote network by using your AP; please approve” and that a nickname is “Tom”. The user identity information sent by the mobile terminal to the hotspot terminal is the permission application information “I am Li Si, and I want to log in to a remote network by using your AP; please approve” and the nickname “Tom”.

It should be noted that a display user interface of the mobile terminal may further include other content, such as “Please notify me of an approval result by an SMS message”, and the user may choose whether to receive the approval result by an SMS message; if the user chooses to receive the approval result by an SMS message, the user may fill in a phone number for receiving the SMS message. In addition, the display user interface of the mobile terminal may further include description about a current WLAN, such as “E5730-Open”, and “This is a wireless router of Zhang San”.

S304. The hotspot terminal receives a permission confirmation instruction that is entered by an administrator according to the user identity information.

Optionally, the user identity information sent by the mobile terminal may include only the permission application information, or may include only the nickname, or may be other identity information that is used to enable the administrator to identify the user, for example, at least one of a user name, a user phone number, or user convention information.

There may be two manners in which the hotspot terminal receives the permission confirmation instruction that is entered by the administrator according to the user identity information.

One manner is as follows: The hotspot terminal sends the user identity information to a management terminal, and the hotspot terminal receives the permission confirmation instruction sent by the management terminal, where the permission confirmation instruction is entered by the administrator according to the user identity information displayed by the management terminal.

For example, the hotspot terminal sends the user identity information to the management terminal, and the user identity information includes “I am Li Si, and I want to log in to a remote network by using your AP; please approve” and the nickname “Tom”.

The user identity information displayed on an user interface of the management terminal includes the permission application information “I am Li Si, and I want to log in to a remote network by using your AP; please approve” and the nickname “Tom”. According to the user identity information displayed by the management terminal, including the permission application information “I am Li Si, and I want to log in to a remote network by using your AP; please approve” and the nickname “Tom”, the administrator enters the permission confirmation instruction by operating a touchscreen of the management terminal, or pressing a physical button of the management terminal, or in another manner.

In the other manner, receiving, by the hotspot terminal, the permission confirmation instruction that is entered by the administrator according to the user identity information specifically includes: displaying, by the hotspot terminal, the user identity information, and receiving, by the hotspot terminal, the permission confirmation instruction that is entered by the administrator according to the user identity information.

For example, the user identity information is displayed on an user interface of the hotspot terminal, and the user identity information includes the permission application information “I am Li Si, and I want to log in to a remote network by using your AP; please approve” and the nickname “Tom”.

According to the user identity information displayed by the hotspot terminal, including the permission application information “I am Li Si, and I want to log in to a remote network by using your AP; please approve” and the nickname “Tom”, the administrator enters the permission confirmation instruction by operating a touchscreen of the hotspot terminal, or pressing a physical button of the hotspot terminal, or in another manner.

S305. The hotspot terminal determines Internet access permission of the mobile terminal according to the received permission confirmation instruction.

The hotspot terminal determines, according to the received permission confirmation instruction that is entered by the administrator according to the user identity information, whether the mobile terminal can log in to a remote network by using the hotspot terminal.

In this embodiment of the present invention, when a hotspot terminal receives an Internet access request of a mobile terminal, the hotspot terminal sends an input request to the mobile terminal, and the hotspot terminal receives a permission confirmation instruction that is entered by an administrator according to user identity information, and determines Internet access permission of the mobile terminal according to the received permission confirmation instruction. A problem that entering a password when the mobile terminal logs in to a remote network by using the hotspot terminal is complex and tedious is resolved. A convenient and efficient method for performing network connection by the mobile terminal by using the hotspot terminal is provided under the premise of ensuring that the mobile terminal can securely log in to the remote network by using the hotspot terminal.

FIG. 6 is a schematic flowchart of a network connection method according to another embodiment of the present invention. The method includes the following steps:

S601. A mobile terminal accesses, according to an SSID of a hotspot terminal, an unencrypted WLAN established by the hotspot terminal.

The hotspot terminal establishes the unencrypted WLAN, that is, the mobile terminal may access, according to the SSID, the unencrypted WLAN established by the hotspot terminal in a case in which no password needs to be entered. For example, the mobile terminal finds an SSID that does not require password entering: E5730-Open, and the mobile terminal may access, according to the E5730-Open, an unencrypted WLAN established by the hotspot terminal.

The SSID of the hotspot terminal may be broadcasted by the hotspot terminal in a Wi-Fi manner, or may be broadcasted by the hotspot terminal in another manner, such as NFC.

When the mobile terminal accesses, according to the SSID of the hotspot terminal, the unencrypted WLAN established by the hotspot terminal, the hotspot terminal acquires a MAC address of the mobile terminal, where the MAC address of the mobile terminal is used to uniquely identify the mobile terminal.

S602. The mobile terminal sends an Internet access request to the hotspot terminal.

After the mobile terminal accesses the unencrypted WLAN established by the hotspot terminal, the mobile terminal sends, according to a user requirement such as watching a video, browsing a web page, instant messaging, or listening to music, an Internet access request to the hotspot terminal to request to log in to a remote network by using the hotspot terminal. For example, the mobile terminal requests to log in to sina (a news website), yahoo, sohu (a video website), youku (a video website), or the like by using the hotspot terminal.

S603. The hotspot terminal sends an input request to the mobile terminal according to the received Internet access request.

The input request is used to request the mobile terminal to send user identity information.

When the hotspot terminal receives the Internet access request sent by the mobile terminal, the hotspot terminal sends the input request to the mobile terminal according to the received Internet access request. Specifically, the mobile terminal requests to log in to a remote network by using the hotspot terminal, and the hotspot terminal prevents, according to the received Internet access request, the mobile terminal from logging in to the remote network, and sends the input request to the mobile terminal to request the mobile terminal to send the user identity information. The user identity information is used to identify a user who uses the mobile terminal, and the user identity information includes at least one piece of information of a user name, a user nickname, a user phone number, and user convention information.

In another embodiment of the present invention, the hotspot terminal prevents, according to the received Internet access request, the mobile terminal from logging in to the remote network and sends the input request to the mobile terminal, which may be implemented by the hotspot terminal in a redirection manner. That is, the hotspot terminal redirects the Internet access request sent by the mobile terminal to the input request in the redirection manner. For example, the mobile terminal requests to log in to sina, and the hotspot terminal sends an input request to the mobile terminal in the redirection manner; FIG.5A is an example of a specific display user interface of the input request.

S604. The mobile terminal sends user identity information to the hotspot terminal according to the received input request.

The user identity information may be, for example, at least one piece of information of a user name, a user nickname, a user phone number, and user convention information.

S605. The hotspot terminal displays the received user identity information.

A schematic diagram of an user interface inFIG. 5B is used as an example for description, and permission application information that is entered by the user according to a requirement displayed on the user interface is “I am Li Si, and I want to log in to a remote network by using your AP; please approve.” The user identity information sent by the mobile terminal to the hotspot terminal is the permission application information “I am Li Si, and I want to log in to a remote network by using your AP; please approve” and a nickname “Tom”.

S606. The hotspot terminal receives a permission confirmation instruction that is entered by an administrator according to the user identity information.

The administrator enters the permission confirmation instruction according to the user identity information displayed by the hotspot terminal.

According to the user identity information displayed by the hotspot terminal, where the user identity information includes the permission application information “I am Li Si, and I want to log in to a remote network by using your AP; please approve” and the nickname “Tom”, the administrator enters the permission confirmation instruction by operating a touchscreen of the hotspot terminal, or pressing a physical button of the hotspot terminal, or in another manner.

S607. The hotspot terminal determines Internet access permission of the mobile terminal according to the received permission confirmation instruction.

In another embodiment of the present invention, after the hotspot terminal performs step S607 and determines that the mobile terminal has the Internet access permission, the hotspot terminal may further perform step S608.

S608. The hotspot terminal sets, according to a preset Internet access condition, an Internet access limitation of accessing the hotspot terminal by the mobile terminal.

The Internet access limitation may be specifically time of accessing the unencrypted WLAN established by the hotspot terminal, or an Internet access range, or a bandwidth limitation.

Optionally, the Internet access limitation may be set by the administrator, or the Internet access limitation may be set according to a result of searching for, by the hotspot terminal according to the MAC address of the mobile terminal, an Internet access condition of the mobile terminal in a pre-stored whitelist.

According to MAC addresses of mobile terminals, the hotspot terminal may set time of accessing, by different mobile terminals, the unencrypted WLAN established by the hotspot terminal, or set Internet access ranges of different mobile terminals, or set bandwidth limitations of different mobile terminals, as shown in Table 1.

TABLE 1

Example:

	Access		Bandwidth
MAC address	time	Internet access range	limitation

44-45-53-54-00-00	10 min	Limited to a news web page	2 Mbit/s
44-45-53-54-00-01	30 min	Limited to a news web page	10 Mbit/s

For a mobile terminal that has Internet access permission, which is determined by the hotspot terminal, the hotspot terminal may establish a whitelist; when the mobile terminal in the whitelist sends an Internet access request again, the hotspot terminal may search the whitelist and determine Internet access permission and an Internet access limitation of the mobile terminal according to the whitelist.

In another embodiment of the present invention, after the hotspot terminal performs step S607 and determines the Internet access permission of the mobile terminal, the hotspot terminal may further perform step S609.

S609. The hotspot terminal sends reminder information to the mobile terminal.

The reminder information is used to remind whether the Internet access request of the mobile terminal is approved.

FIG. 7 is a schematic flowchart of a network connection method according to another embodiment of the present invention. The method includes the following steps:

S701. A mobile terminal accesses, according to an SSID of a hotspot terminal, an unencrypted WLAN established by the hotspot terminal.

S702. The mobile terminal sends an Internet access request to the hotspot terminal.

S703. The hotspot terminal sends an input request to the mobile terminal according to the received Internet access request.

S704. The mobile terminal sends user identity information to the hotspot terminal according to the received input request.

Steps S701-S704 are respectively the same as steps S601-S604 in the embodiment shown inFIG. 6, and for specific implementation manners, refer to description in steps S601-S604.

S705. The hotspot terminal sends the user identity information to a management terminal.

S706. The management terminal displays the received user identity information.

S707. The management terminal receives a permission confirmation instruction that is entered by an administrator according to the user identity information displayed by the management terminal.

The administrator enters the permission confirmation instruction according to the user identity information displayed by the management terminal.

For example, according to the user identity information displayed by the management terminal, including the permission application information “I am Li Si, and I want to log in to a remote network by using your AP; please approve” and the nickname “Tom”, the administrator enters the permission confirmation instruction by operating a touchscreen of the management terminal, or pressing a physical button of the management terminal, or in another manner.

S708. The management terminal sends the permission confirmation instruction that is entered by the administrator to the hotspot terminal.

S709. The hotspot terminal determines Internet access permission of the mobile terminal according to the received permission confirmation instruction.

In another embodiment of the present invention, after the management terminal performs step S709 and determines the mobile terminal has the Internet access permission, the management terminal may further perform step S710.

S710. The management terminal sets, according to a preset Internet access condition, an Internet access limitation of accessing the hotspot terminal by the mobile terminal.

The Internet access limitation may be specifically time of accessing the unencrypted WLAN established by the hotspot terminal, or Internet access ranges that are set for different mobile terminals, or bandwidth limitations that are set for different mobile terminals.

Optionally, the Internet access limitation may be set by the administrator, or the Internet access limitation may be set according to a result of searching for, by the hotspot terminal according to a MAC address of the mobile terminal, an Internet access condition of the mobile terminal in a pre-stored whitelist.

According to MAC addresses of mobile terminals, the management terminal may set time of accessing, by different mobile terminals, the unencrypted WLAN established by the hotspot terminal, or set Internet access ranges of different mobile terminals, or set bandwidth limitations of different mobile terminals. Alternatively, the management terminal detects distances between mobile terminals and the hotspot terminal, and sets different Internet access permission of the mobile terminals according to the detected distances between the mobile terminals and the hotspot terminal, as shown in Table 2.

TABLE 2

Example:

	Access	Internet access	Bandwidth
MAC address	time	range	limitation	Distance

44-45-53-54-	10 min	Limited to a	2 Mbit/s	2 m, 10 Mbit/s
00-00		news web page		allowed
44-45-53-54-	30 min	Limited to a	10 Mbit/s	10 m, 2 Mbit/s
00-01		news web page		allowed

For a mobile terminal that the Internet access permission, which is determined by the management terminal, the management terminal may establish a whitelist, and send the whitelist to the hotspot terminal.

S711. The management terminal sends the set Internet access limitation to the hotspot terminal.

The management terminal may send, to the hotspot terminal, time of connecting to a network by different mobile terminals by using the hotspot terminal, or Internet access ranges of different mobile terminals, or bandwidth limitations of different mobile terminals, which are set according to MAC addresses of the mobile terminals. The management terminal may also send a whitelist of mobile terminals that have the Internet access permission to the hotspot terminal.

In another embodiment of the present invention, after the hotspot terminal performs step S709 and determines that the mobile terminal has the Internet access permission, the hotspot terminal may further perform step S712.

S712. The hotspot terminal sends reminder information to the mobile terminal.

FIG. 8 is a schematic structural diagram of ahotspot terminal80 according to an embodiment of the present invention, where thehotspot terminal80 includes parts such as acommunications module801, aprocessor802, amemory803, a bus804, adisplay module805, and aninput module806.

Thecommunications module801 may be a Wi-Fi chip or an integrated chip with a Wi-Fi function, and may be a Wi-Fi chip that supports at least one of protocols 802.11a, 802.11b, 802.11g, 802.11n, and 802.11ac, or a composite chip that integrates a Wi-Fi function.

Thememory803 may include a RAM and a ROM, or any fixed storage medium, or a removable storage medium, and is configured to store a program that can execute an embodiment of the present invention or application data in an embodiment of the present invention. By using the bus804, thememory803 receives input from other components, or stored information, such as an Internet access request sent by a mobile terminal or user identity information sent by a mobile terminal, is invoked by other components.

As shown inFIG. 9, theprocessor802 includes an arithmetic logic unit (ALU)8022, aregister8021, and acontroller8023, where the ALU8022 is responsible for various calculations that theprocessor802 can perform. Theregister8021 is configured to temporarily store code and data in a program execution process. Thecontroller8023 is configured to control instruction execution and information transmission.

Theprocessor802 is configured to execute a program, stored in thememory803, of an embodiment of the present invention, and implement bidirectional communication with another unit by using the bus804.

Thedisplay module805 may be configured to display information that is entered by a user or information that is provided for a user. Theinput module806 may be configured to receive an input instruction of a user or provide an interface for external input.

Thememory803 and theprocessor802 may be further integrated into a physical module for applying an embodiment of the present invention, and a program that implements the embodiment of the present invention is stored and run on the physical module.

All components of thehotspot terminal80 are coupled together by using the bus804, where the bus804 includes a data bus, and may further include a power bus, a control bus, a status signal bus, and the like. However, for clarity of description, various buses are marked as the bus804 in the diagram.

In this embodiment of the present invention, units of thehotspot terminal80 separately execute the following content.

Theprocessor802 is configured to establish an unencrypted WLAN.

Thecommunications module801 is configured to receive an Internet access request sent by a mobile terminal, where the Internet access request is sent to thehotspot terminal80 after the mobile terminal accesses, according to a service set identifier SSID of thehotspot terminal80, the unencrypted wireless local area network WLAN established by theprocessor802.

Theprocessor802 is further configured to instruct, according to the received Internet access request, thecommunications module801 to send an input request to the mobile terminal, where the input request is used to request the mobile terminal to send user identity information, and the user identity information is used to identify a user who uses the mobile terminal.

Thecommunications module801 is further configured to receive the user identity information sent by the mobile terminal. The user identity information includes at least one piece of information of a user name, a user nickname, a user phone number, and user convention information.

Theprocessor802 is further configured to receive a permission confirmation instruction that is entered by an administrator according to the user identity information, and determine Internet access permission of the mobile terminal according to the permission confirmation instruction received by thecommunications module801.

Thememory803 is configured to store the Internet access request received by the communications module, an instruction sent by the processor to the communications module, and the received user identity information.

In another embodiment of the present invention, thecommunications module801 is further configured to send the user identity information to a management terminal, receive the permission confirmation instruction sent by the management terminal, and send the permission confirmation instruction to the processor, where the permission confirmation instruction is entered by the administrator according to the user identity information displayed by the management terminal.

In another embodiment of the present invention, thedisplay module805 is configured to display the user identity information after thecommunications module801 receives the user identity information sent by the mobile terminal.

When receiving the permission confirmation instruction that is entered by the administrator according to the user identity information, theprocessor802 is specifically configured to receive, by using theinput module806, the permission confirmation instruction that is entered by the administrator according to the user identity information.

In another embodiment of the present invention, after the Internet access permission of the mobile terminal is determined according to the permission confirmation instruction, theprocessor802 is further configured to set, according to a preset Internet access condition, an Internet access limitation of accessing the WLAN by the mobile terminal.

In another embodiment of the present invention, theprocessor802 is further configured to send reminder information to the mobile terminal after the Internet access permission of the mobile terminal is determined, where the reminder information is used to remind whether the Internet access request of the mobile terminal is approved.

For the purpose of convenient and brief description, the hotspot terminal in this embodiment of the present invention is configured to execute a method in the foregoing method embodiments; for details, refer to a corresponding process in the foregoing method embodiments, and details are not described herein again.

FIG. 10 is a schematic structural diagram of amanagement terminal100 according to an embodiment of the present invention, where themanagement terminal100 includes parts such as acommunications module1001, aprocessor1002, amemory1003, a bus1004, adisplay module1005, and aninput module1006.

Thecommunications module1001 may be a Wi-Fi chip or an integrated chip with a Wi-Fi function, and may be a Wi-Fi chip that supports at least one of protocols 802.11 a, 802.11 b, 802.11g, 802.11n, and 802.11ac, or a composite chip that integrates a Wi-Fi function.

Thememory1003 may include a RAM and a ROM, or any fixed storage medium, or a removable storage medium, and is configured to store a program that can execute an embodiment of the present invention or application data in an embodiment of the present invention. By using the bus1004, thememory1003 receives input from other components, or stored information, such as an Internet access request sent by a mobile terminal or user identity information sent by a mobile terminal, is invoked by other components.

Theprocessor1002 is configured to execute a program, stored in thememory1003, of an embodiment of the present invention, and implement bidirectional communications with another unit by using the bus1004.

Thedisplay module1005 may be configured to display information that is entered by a user or information that is provided for a user. Aninput unit1006 may be configured to receive an input instruction of a user or provide an interface for external input.

Thememory1003 and theprocessor1002 may be further integrated into a physical module for applying an embodiment of the present invention, and a program that implements the embodiment of the present invention is stored and run on the physical module.

All components of themanagement terminal100 are coupled together by using the bus1004, where the bus1004 includes a data bus, and may further include a power bus, a control bus, a status signal bus, and the like. However, for clarity of description, various buses are marked as the bus1004 in the diagram.

In this embodiment of the present invention, units of themanagement terminal100 separately execute the following content.

Thecommunications module1001 is configured to receive user identity information sent by a hotspot terminal, where the user identity information is used to identify a user who uses a mobile terminal, and the mobile terminal is a terminal that accesses an unencrypted wireless local area network WLAN established by the hotspot terminal and sends an Internet access request to the hotspot terminal.

Thedisplay module1005 is configured to display the user identity information.

The user identity information includes at least one piece of information of a user name, a user nickname, a user phone number, and user convention information.

Theprocessor1002 is configured to receive, by using theinput module1006, a permission confirmation instruction that is entered by an administrator according to the user identity information displayed by thedisplay module1005.

Theprocessor1002 is further configured to instruct, according to the permission confirmation instruction, thecommunications module1001 to send the permission confirmation instruction to the hotspot terminal, so that the hotspot terminal determines Internet access permission of the mobile terminal.

Theprocessor1002 is further configured to set an Internet access condition of the mobile terminal after thecommunications module1001 sends the permission confirmation instruction to the hotspot terminal.

Thecommunications module1001 is further configured to send the Internet access condition set by theprocessor1002 to the hotspot terminal.

For the purpose of convenient and brief description, the management terminal in this embodiment of the present invention is configured to execute a method in the foregoing method embodiments; for details, refer to a corresponding process in the foregoing method embodiments, and details are not described herein again.

A person of ordinary skill in the art may be aware that, in combination with the examples described in the embodiments disclosed in this specification, units, algorithms and method steps may be implemented by a combination of computer software and electronic hardware. Whether the functions are performed by hardware or software depends on particular applications and design constraint conditions of the technical solutions. A person skilled in the art may use different methods to implement the described functions for each particular application, but it should not be considered that the implementation goes beyond the scope of the present invention.

It may be clearly understood by a person skilled in the art that, for the purpose of convenient and brief description, for a detailed working process of the foregoing apparatus and device, reference may be made to a corresponding process in the foregoing method embodiments, and details are not described herein again.

In the several embodiments provided in the present application, the disclosed device, apparatus and method may be implemented in other manners. For example, the described device embodiment is merely exemplary. For example, the unit division is merely logical function division and may be other division in actual implementation. For example, a plurality of units or components may be combined or integrated into another system, or some features may be ignored or not performed. In addition, the displayed or discussed mutual couplings or direct couplings or communication connections may be implemented through some interfaces. The indirect couplings or communication connections between the apparatuses or units may be implemented in electronic, mechanical, or other forms.

The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one position, or may be distributed on a plurality of network units. A part or all of the units may be selected according to actual needs to achieve the objectives of the solutions of the embodiments of the present invention.

In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each of the units may exist alone physically, or two or more units are integrated into one unit.

A person of ordinary skill in the art may understand that all or some of the steps of the method embodiments may be implemented by a program instructing relevant hardware. The program may be stored in a computer readable storage medium. When the program runs, the steps of the method embodiments are performed. The foregoing storage medium includes: any medium that can store program code, such as a ROM, a RAM, a magnetic disk, or an optical disc.

The foregoing descriptions are merely specific implementation manners of the present invention, but are not intended to limit the protection scope of the present invention. Any variation or replacement readily figured out by a person skilled in the art within the technical scope disclosed in the present invention shall fall within the protection scope of the present invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.