• 专利附录
  • 专利说明
  • 权利要求
  • 类似技术
  • 同族专利
  • 引用文献
  • 法律状态
  • 优先权
    • 专利摘要:
    The present invention provides a method for providing an initial access web page in a public wireless LAN service that transmits initial access web page information from an authentication server to a wireless terminal when a wireless terminal accesses a public wireless LAN. According to the present invention, when the wireless terminal requests a public wireless LAN connection, the authentication / billing server performs authentication and transmits the initial access webpage set in the authentication / billing server to the wireless terminal through the access point. In addition, when accessing a public wireless LAN service of a wireless terminal, wireless terminal information, for example, an operating system type, a screen size, a terminal model, etc., is transmitted through a wireless LAN service access software installed in the wireless terminal or by a user's direct input. It is also possible to optimize and send the initial access web page according to the wireless terminal information. According to the present invention, since the initial access webpage information including information around the access point is transmitted from the authentication / billing server to the wireless terminal, the initial access URL information stored in the access point does not need to be changed when the initial access web page is changed. Management becomes easy.
    公开号:KR20040062708A
    申请号:KR1020030000205
    申请日:2003-01-03
    公开日:2004-07-09
    发明作者:이동학;박성수
    申请人:에스케이 텔레콤주식회사;
    IPC主号:
    专利说明:

    Method for Providing Web Page for Initial Connection in Public Wireless LAN Service
    [11] The present invention relates to a public wireless LAN service, and more particularly, the initial access web page in a public wireless LAN service for receiving initial access webpage information from an authentication server and transmitting the initial access webpage information to a wireless terminal during public wireless LAN access. It is about a provision method.
    [12] Public WLAN is a flexible data communication system implemented as an extension or alternative to wired LAN, and transmits and receives data in the air using RF or infrared technology. The public wireless LAN service provides user identification and authentication functions as well as an interface for data transmission between an access point and a wireless terminal having a network interface card. If the user attempts to access the wireless LAN in the area where the access point is installed, the wireless LAN service network performs an authentication procedure on whether the user accesses the service. If the authentication result is normal service subscriber, network access is allowed, otherwise network access is blocked. In this service model, a user attempts to access a wireless LAN at a hot spot where an access point is installed. Hot spots can be implemented in a variety of environments, such as general offices, stock exchanges, auction houses, businesses, stations, cafes, airports, and history.
    [13] Therefore, a communication service provider who wants to provide a public wireless LAN service needs to obtain the permission of a hot spot owner in order to install a network for accessing a wireless LAN at a hot spot, and the owner of the hot spot is required to generate revenue through it. Representative services that can contribute to monetization of hot spot owners include location-based services that use web sites to provide advertising services for hot spots.
    [14] Location-based service in a public wireless LAN is a service that uses the access information of the wireless terminal to the access point to determine the user's location based on the access point installation location, and informs the surrounding information based on the identified user location. . When this is applied to a hot spot, for example, when a user attempts to access a wireless LAN in a department store, the home screen of the user's location or department store promotion information is transmitted to the user on the initial screen of the Internet. In this case, URL information for changing the access page upon initial internet access by the wireless terminal should be stored in the access point.
    [15] 1 is an exemplary diagram of an internet connection through a public WLAN.
    [16] The access point 20 is connected to the IP core 30 of the service provider so as to enable internet communication. Each such access point 20 forms a subnet to wirelessly connect the plurality of wireless terminals 10-1 to 10-n and the IP core 30. Therefore, such an access point 20 can be connected to the IP core 30 as necessary according to the configuration of the operator.
    [17] On the other hand, the public wireless LAN 100 is connected to the mobile network operator core 50 of the mobile communication network 200 through the IP core 30 to transmit and receive control signal data to each other. The access point 20 routes user data packets directly to the IP core 30 for access to public or private services.
    [18] Subsequently, when an IP address is assigned to the wireless terminals 10-1 to 10-n through the access point 20 and the authentication / billing server 40 is requested to authenticate the wireless terminals 10-1 to 10-n. The authentication server 40 queries the HLR 70 for the authentication data through the MSC 60 and authenticates the user using this information, so that the service can be used when it is determined to be a legitimate user.
    [19] 2A and 2B are flowcharts illustrating a method for providing an initial access web page in a location-based public wireless LAN service according to an exemplary embodiment. FIG. 2A is an initial access web page when an authentication procedure for a user is not performed. 2b shows a case of providing an initial access web page in the case of performing an authentication procedure.
    [20] First, referring to FIG. 2A, when the wireless terminals 10-1 to 10-n attempt to connect to the access point 20 (S101), the wireless terminals 10-1 to 10-n through the access point 20. Assign an IP address (S102). When the wireless terminals 10-1 to 10-n execute a browser (S103) and request the connection to the initial access web page specified in the wireless terminals 10-1 to 10-n (S104), the access point ( 20 changes the URL transmitted from the wireless terminals 10-1 to 10-n to the URL of the initial access web page stored in the access point 20 (S105) and requests access to the initial access web page (S105). S106). Accordingly, the initial access web page corresponding to the URL stored in the access point transmits site information to the wireless terminals 10-1 to 10-n.
    [21] Referring to FIG. 2B, after the wireless terminals 10-1 to 10-n attempt to connect to the access point 20 (S201), the wireless terminal 10-1 to 10-n requests authentication to the authentication / billing server 40 (S202). Accordingly, if it is determined that the user is a legitimate user in the authentication / billing server 40, the network allocates an IP address through the access point 20 (S203), and the subsequent process is performed in the same manner as described with reference to FIG. 2A. .
    [22] However, considering the actual wireless LAN service, it is not appropriate for an authenticated user and an unauthenticated user to access the same initial access web page. This is because it is preferable to provide the initial access web page to the unauthenticated user in a form that can induce the service subscription, and provide the corresponding hot spot information or the surrounding information to the authenticated user. Therefore, in the location-based service using the public wireless LAN service, the initial access web page should be set to two or more.
    [23] 3 is a flowchart illustrating a method for providing an initial access web page in a location-based public wireless LAN service according to another exemplary embodiment, and illustrates a case where different initial access web pages are provided to authenticated and unauthenticated users.
    [24] When the wireless terminals 10-1 to 10-n attempt to connect to the access point 20 (S301), the network allocates a first IP address through the access point (S302). Here, the first IP may be assigned as a private IP or a public IP, but preferably assigned as a private IP. Subsequently, when the wireless terminals 10-1 to 10-n execute a browser (S303) and request access to a specific web page designated by the wireless terminals 10-1 to 10-n (S304), the access point 20 changes the URL transmitted from the wireless terminals 10-1 to 10-n to a URL corresponding to the first initial access web page stored in the access point (S305), and requests access to the initial access web page. (S306).
    [25] Accordingly, site information is transmitted from the first initial access web page to the wireless terminals 10-1 to 10-n (S307). Here, since the first initial access web page is before the authentication of the wireless terminals 10-1 to 10-n, the first initial access web page is preferably designated as a site capable of inducing service subscription.
    [26] Subsequently, as the authentication request is transmitted from the wireless terminals 10-1 to 10-n to the authentication / billing server 40, user information between the wireless terminals 10-1 to 10-n and the authentication / billing server 40. When user authentication is performed by transmission and reception (S308), the network allocates a second IP address to the wireless terminals 10-1 to 10-n through the access point 20 (S309), and the access point 20 The URL is changed to the second initial access web page (S310). Here, the second IP should be assigned as a public IP, and the second initial access web page may be a web page including hot spots to which the user belongs and information on the hot spots.
    [27] Subsequently, when the wireless terminals 10-1 to 10-n execute a browser (S311) and request a connection (S312), the access point 20 requests to connect to the second initial access webpage (S313). The second initial access web page transmits site information to the wireless terminals 10-1 to 10-n (S314).
    [28] As such, the current public WLAN service is provided in the form of storing the URL for the initial access web page in the access point and changing the connection to the stored URL when the terminal connection is recognized. Therefore, when the access point is installed, the URL corresponding to the initial access web page should be set according to the region, and there is a disadvantage in that it is difficult to perform services by group or optimized service according to the type of the wireless terminal.
    [29] That is, the method of storing the initial access URL in the access point in the public wireless LAN service and changing the access to the corresponding site at the time of the wireless LAN access can provide an optimized site-based service. There is a problem that is difficult to expand.
    [30] The present invention has been made to solve the above-mentioned disadvantages and problems, and when the user connected to the public wireless LAN is an unauthenticated user, the user connects to the first initial access web page stored in the access point. There is a technical problem to provide a method for providing an initial access web page in a public wireless LAN service that connects to an initial access web page provided from an authentication / billing server.
    [31] In addition, the present invention has another technical problem to receive the terminal information when accessing the public wireless LAN service of the wireless terminal, to optimize and transmit the initial access web page according to the environment and model of the wireless terminal.
    [1] 1 is an exemplary diagram of an internet connection through a public wireless LAN,
    [2] 2A and 2B are flowcharts illustrating a method for providing an initial access web page in a public wireless LAN service according to an exemplary embodiment of the present invention;
    [3] 3 is a flowchart illustrating a method for providing an initial access web page in a public wireless LAN service according to another exemplary embodiment of the present invention;
    [4] 4 is a flowchart illustrating a method for providing an initial access web page in a public wireless LAN service according to the present invention.
    [5] <Description of the symbols for the main parts of the drawings>
    [6] 10-1 to 10-n: wireless terminal 20: access point
    [7] 30: IP core 40: authentication / billing server
    [8] 50: mobile network operator core 60: base station (MSC)
    [9] 70: home location register (HLR) 100: public wireless LAN
    [10] 200: mobile communication network
    [32] According to the present invention for achieving the above technical problem, when the wireless terminal requests public wireless LAN connection, the authentication / billing server performs authentication, and the initial access webpage set in the authentication / billing server is transmitted to the wireless terminal through the access point. Do it. In addition, when accessing a public wireless LAN service of a wireless terminal, wireless terminal information, for example, an operating system type, a screen size, a terminal model, etc., is transmitted through a wireless LAN service access software installed in the wireless terminal or by a user's direct input. It is also possible to optimize and send the initial access web page according to the wireless terminal information.
    [33] Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings.
    [34] 4 is a flowchart illustrating a method for providing an initial access web page in a location-based public wireless LAN service according to the present invention.
    [35] When the wireless terminals 10-1 to 10-n access the access point 20 in the public wireless LAN service (S401), the network transmits the first IP to the wireless terminals 10-1 to 10-n through the access point. An address is allocated (S402). In this case, the first IP address may be allocated as a private IP address or a public IP address. If the first IP address is assigned as the private IP address, access to another web page may be blocked. Although not shown, at this time, since the user is in an unauthenticated state, the user may be connected to the first initial access web page set in the access point 20, and access to other sites may be blocked. In general, when the user is in the unauthenticated state, since the wireless LAN service subscription is not made, the first initial access web page may be set as a site capable of inducing a public wireless LAN service subscription.
    [36] When a user who subscribes to the public wireless LAN service requests authentication to the access point 20 to use the service (S403), the access point inputs user information (ID, password, etc.) (S404). Accordingly, when the user inputs user information to the wireless terminal, the wireless terminal inputs user information and transmits the user information to the access point 20 (S405), and the access point transmits the user information to the authentication / billing server 40 to authenticate the user. Start procedure for (S406).
    [37] For user authentication, the authentication / billing server 40 transmits an MD5 challenge if the authentication / billing server 40 supports MD5 and sends a TTLS start message to the access point 20 if it supports TTLS to establish a connection. Attempt is made (S407). Accordingly, the access point 20 transmits an MD5 challenge or TTLS start message to the wireless terminal and requests authentication (S408). In a preferred embodiment of the present invention, the wireless terminal transmits a negative acknowledgment (NAK) message for the authentication attempt of the access point, but adds the terminal-related additional information to the message (S409).
    [38] In case of transmitting a NAK message in the authentication process, it is used to notify the alternative authentication method when the wireless terminal cannot support the authentication method from the authentication / billing server. However, in the present invention, in order to transmit additional information of the terminal to the authentication / billing server 40, a process of transmitting a negative response (NAK) message is added. The reason for transmitting additional information related to the wireless terminal is that it is difficult to provide an optimized screen because the information (operating system type, screen size, terminal type, etc.) of the wireless terminal connected to the wireless LAN service is not known when the web page is provided. Because it follows. In other words, since most home pages are designed for laptops, when users access them through a PDA, the user must scroll, and the web page configuration may vary depending on the operating system used by the wireless terminal. May occur.
    [39] Therefore, the authentication / billing server 40 transmits the authentication / billing server 40 to the authentication / billing server 40 by including the information (operating system type, screen size, terminal model, etc.) of the wireless terminal in a negative response (NAK) message. The initial access site information suitable for the type is transmitted. In this way, the additional information related to the wireless terminal may be included in the NAK message and transmitted, but the wireless terminal information may be transmitted to the authentication / billing server through the access point 20 by a user's direct input.
    [40] The transmission of additional information related to the wireless terminal in the NAK message is possible by the software for wireless LAN connection installed in the wireless terminal. In case of using the software for wireless LAN connection, additional information of the wireless terminal may be defined as a Vendor Specific Attribute (VSA) and transmitted in a message of a Remote Authentication Dial-In Service (RADIUS) protocol. RADIUS means to send user information such as user ID, password, and IP address to the authentication server when the remote user requests a connection, and perform identification and authentication of the user. The VSA information is composed of a Type field, a Length field, and a Value field. The Type field includes the type of additional information, the Length field includes the length of the corresponding type information, and the Value field contains a substantial value. In addition, when the additional information has a fixed format, the Length field may be omitted. For example, the VSA information may be transmitted in the form of Type = 1 (OS information), Length = 3 octets, Value = 2 (PPC 2002), Type = 2 (display information), Length = 3 octets, Value = 3 (320 * 240) may be transmitted.
    [41] Now, a negative response (NAK) message including additional information of the wireless terminal is transmitted from the access point 20 to the authentication / billing server 40 (S410), and the authentication / billing server 40 receives the additional information of the terminal. After storing, user authentication is performed by exchanging information between the terminal for authentication and the authentication server (S411 to S414).
    [42] When the user authentication is completed by this process, and the user who attempts to connect is found to be a legitimate user, the authentication / billing server 40 transmits initial access site information suitable for the type of the wireless terminal to the access point 20 ( S415). The access point 20 transmits the authentication result to the wireless terminals 10-1 to 10-n (S416), and the network allocates a second IP address through the access point 20 (S417), and the access point 20 ) Stores the information of the initial access web page optimized according to the terminal model (S418). Here, the second IP address is assigned as a public IP address. Thereafter, although not shown, as the wireless terminal requests the connection, the access point 20 requests the connection to the initial access web page stored in step S418.
    [43] There are two ways to transmit the initial access webpage information to the wireless terminals 10-1 to 10-n. The first is to receive the second initial access webpage information from the authentication / billing server after authentication is completed. A method of automatically invoking a browser for connection to display initial connection webpage information on a browser. Secondly, the access point temporarily stores the initial access webpage information transmitted from the authentication / billing server after the authentication is completed, and when the user of the wireless terminal 10-1 to 10-n runs a browser to access the Internet, This is a method of providing stored initial access web page information.
    [44] Both methods receive the initial access web page information from the authentication / billing server 40 after the user authentication is completed (S411), the management of the initial access web page is made in the network.
    [45] As such, those skilled in the art will appreciate that the present invention can be implemented in other specific forms without changing the technical spirit or essential features thereof. Therefore, the above-described embodiments are to be understood as illustrative in all respects and not as restrictive. The scope of the present invention is shown by the following claims rather than the detailed description, and all changes or modifications derived from the meaning and scope of the claims and their equivalents should be construed as being included in the scope of the present invention. do.
    [46] According to the present invention described above, in a location-based service using a public wireless LAN, when a wireless terminal accesses an access point, the initial access webpage information including information around the access point is transmitted from the authentication / billing server to the wireless terminal. When the initial access web page is changed, it is not necessary to change the initial access URL information stored in the access point, thereby facilitating access point management.
    [47] In addition, by inputting wireless terminal information when subscribing to a public wireless LAN service, a web page optimized for the type, performance, and environment of the wireless terminal can be provided.
    权利要求:
    Claims (7)
    [1" claim-type="Currently amended] A public wireless LAN including an access point for connecting a plurality of wireless terminals to enable the wireless terminal to perform internet communication, and an authentication / billing server connected to the access point to perform authentication and charging of the wireless terminal. In the method for providing an initial access web page to the wireless terminal,
    As the wireless terminal connects to the access point, assigning a first IP address to the wireless terminal through the access point;
    If the wireless terminal requests authentication to the access point, the access point requesting user authentication by transmitting user information input from the wireless terminal to the authentication / billing server;
    Transmitting an authentication result and initial access webpage information to the access point if the wireless terminal user is found to be a legitimate user in the authentication / billing server; And
    The access point transmits an authentication result to the wireless terminal, assigns a second IP address to the wireless terminal through the access point, and changes initial access webpage information to initial access webpage information received from the authentication / billing server. Doing;
    Initial access web page providing method in a public wireless LAN service comprising a.
    [2" claim-type="Currently amended] According to claim 1,
    Requesting user authentication by transmitting the user information received from the wireless terminal to the authentication / billing server further includes transmitting wireless terminal additional information from the wireless terminal to the authentication / billing server together; ,
    The step of transmitting the initial access webpage information to the access point by the authentication / billing server further includes transmitting initial access webpage information generated by optimizing the type of the wireless terminal with reference to the additional information of the wireless terminal. Method for providing an initial access web page in a public wireless LAN service, characterized in that.
    [3" claim-type="Currently amended] The method of claim 2,
    The wireless terminal additional information includes a type field indicating a type of additional information including an operating system type or a display type of a wireless terminal, a length field indicating a length of the type field, and a value field indicating a substantial value of the additional information. A method of providing an initial access web page in a public wireless LAN service.
    [4" claim-type="Currently amended] The method of claim 2,
    The wireless terminal additional information is transmitted to the authentication / billing server by the wireless LAN access software installed in the wireless terminal, or input by the wireless terminal user and transmitted to the authentication / billing server. How to provide initial access web page in service.
    [5" claim-type="Currently amended] The method of claim 2, wherein.
    The wireless terminal additional information is the initial access web page providing method in a public wireless LAN service transmitted with a message of the RADIUS protocol.
    [6" claim-type="Currently amended] According to claim 1,
    The first IP address is assigned to a private IP address or a public IP address, characterized in that the initial access web page providing method in a public wireless LAN service.
    [7" claim-type="Currently amended] According to claim 1,
    And providing the second IP address as a public IP address.
    类似技术:
    公开号 | 公开日 | 专利标题
    US20180152843A1|2018-05-31|Wireless session configuration persistence
    US9161220B2|2015-10-13|Communication system, information processing device, connection device, and connection device designation method for designating connection device for communication device to connect to
    US9237154B2|2016-01-12|Secure and automatic connection to wireless network
    US10147119B2|2018-12-04|Theme based advertising
    KR100741996B1|2007-07-24|Method and system for establishing a connection via an access network
    KR100699978B1|2007-03-27|Mobile internet access
    US7735126B2|2010-06-08|Certificate based authentication authorization accounting scheme for loose coupling interworking
    CA2483044C|2012-07-10|Roaming method between wireless local area network and cellular network
    CN103222292B|2016-08-10|The dynamic account utilizing safe hot spot networks creates
    JP4616732B2|2011-01-19|Packet transfer device
    CA2656919C|2016-02-16|Method and system for controlling access to networks
    EP2443875B1|2013-07-31|An access point, a server and a system for distributing an unlimited number of virtual ieee 802.11 wireless networks through a heterogeneous infrastructure
    JP3776705B2|2006-05-17|Communication system, mobile terminal device, gateway device, and communication control method
    KR100470303B1|2005-02-05|Authentication System and Method Having Mobility for Public Wireless LAN
    EP2070345B1|2019-11-13|Wireless device registration, such as automatic registration of a wi-fi enabled device
    KR100469718B1|2005-02-02|Method for transferring data form a server of virtual private network to mobile node
    EP2816827B1|2018-11-28|Method and apparatus for distributing information, and network system
    DE60206246T2|2006-06-29|Distributed network communication system allowing a number of providers of cordless communication services to share a common network infrastructure
    CN101040493B|2011-07-13|Method, apparatus and system for routing aaa-messages from a home service network over a number of intermediary networks to a roaming network
    KR100566728B1|2006-04-03|Method, system, and storage medium storing program for connecting network service, access point structure and wireless user terminal
    US7808947B2|2010-10-05|Managing network service access
    US7050789B2|2006-05-23|System and method for services access
    KR101674903B1|2016-11-11|Method and apparatus for providing service using personal network
    JP3769533B2|2006-04-26|Wireless LAN communication method and system
    JP4796754B2|2011-10-19|Network connection system and network connection method
    同族专利:
    公开号 | 公开日
    KR100525754B1|2005-11-02|
    引用文献:
    公开号 | 申请日 | 公开日 | 申请人 | 专利标题
    法律状态:
    2003-01-03|Application filed by 에스케이 텔레콤주식회사
    2003-01-03|Priority to KR10-2003-0000205A
    2004-07-09|Publication of KR20040062708A
    2005-11-02|Application granted
    2005-11-02|Publication of KR100525754B1
    优先权:
    申请号 | 申请日 | 专利标题
    KR10-2003-0000205A|KR100525754B1|2003-01-03|2003-01-03|Method for Providing Web Page for Initial Connection in Public Wireless LAN Service|
    [返回顶部]