A WiFi access method and device, an electronic device and a storage medium

By establishing an MA PDU session with the network side via a non-WiFi frequency band, and parsing and authenticating real-time WiFi parameter information, the cumbersome operation and untimely parameter updates of traditional WiFi access methods are solved, achieving an efficient and seamless WiFi access experience.

CN115348687BActive Publication Date: 2026-06-26ZTE CORP

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
ZTE CORP
Filing Date
2021-04-27
Publication Date
2026-06-26

AI Technical Summary

Technical Problem

Traditional WiFi access methods require users to manually enter a password, which is cumbersome. Furthermore, the parameters of passwordless access methods are not updated in a timely manner, affecting the user experience.

Method used

Establish an MA PDU session with the network side via a non-WiFi frequency band, receive and parse the real-time WiFi parameter information in the ATSSS rule table sent by the network side, and then access the target WiFi frequency band without a password after security authentication.

Benefits of technology

It enables the timely acquisition of WiFi parameter information without requiring users to manually enter a password, improving the efficiency of WiFi access and user experience, and ensuring that parameter changes do not affect terminal usage.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure CN115348687B_ABST
    Figure CN115348687B_ABST
Patent Text Reader

Abstract

Embodiments of the present application provide a WiFi access method, device, electronic equipment and storage medium. The WiFi access method applied to a terminal comprises: establishing a MAPDU session with a network side through a non-WiFi frequency band; receiving an ATSSS rule table sent by the network side, the ATSSS rule table comprising real-time WiFi parameter information; analyzing the WiFi parameter information to obtain an analysis result of the WiFi parameter information; performing security authentication with the network side according to the analysis result, the security authentication being used for a terminal to access a target WiFi without a password; and after the security authentication is passed, initiating a multi-access protocol data unit (MAPDU) session request to the network side, a channel of the MAPDU session request comprising the target WiFi.
Need to check novelty before this filing date? Find Prior Art

Description

TECHNICAL FIELD

[0001] Embodiments of the present application relate to the field of communication transmission, and in particular to a WiFi access method and device, electronic equipment and storage medium. BACKGROUND

[0002] In the prior art, the establishment of a WiFi channel in a Multi-Access Protocol Data Unit (MAPDU) session is achieved in one of two ways. In one way, the user manually enters a password after the terminal searches for a WiFi. In the other way, the terminal uses built-in WiFi data to achieve password-free access.

[0003] However, for the first way of connecting a WiFi channel, the user needs to record login information such as a WiFi password and perform an input operation, which is cumbersome. For the second way of accessing a WiFi channel, the terminal is generally preconfigured with WiFi parameter information provided by an operator in software. After detecting a corresponding WiFi hotspot, the terminal uses the parameter information to access the specified WiFi. In order to support password-free authentication for new enterprise-level WiFi, the terminal needs to be re-released. If the WiFi parameter information is changed, the function of the terminal will be affected, which may result in the terminal being unable to access the WiFi. That is, the second way of access has the problems of not timely updating data, and changes in parameters affecting the use of the terminal, which often affects the user's experience of accessing a WiFi channel. SUMMARY

[0004] The main purpose of the embodiments of the present application is to provide a WiFi access method that not only does not require the user to manually input WiFi information, but also enables WiFi data to be updated in a timely manner without affecting the access and use of the terminal, thereby improving the user's experience of accessing a WiFi channel.

[0005] To achieve the above purpose, the embodiments of the present application provide a WiFi access method applied to a terminal, comprising:

[0006] establishing a MAPDU session with a network side through a non-WiFi frequency band;

[0007] receiving an Access Traffic Steering, Switching, Splitting (ATSSS) rule table sent by the network side, the ATSSS rule table including real-time WiFi parameter information;

[0008] parsing the WiFi parameter information to obtain a parsing result of the WiFi parameter information;

[0009] Based on the analysis results, security authentication is performed with the network side. The security authentication is used for the terminal to access the target WiFi frequency band without a password.

[0010] After successful security authentication, a MA PDU session request is initiated to the network side via the target WiFi frequency band, and a communication connection is established with the network side.

[0011] To achieve the above objectives, embodiments of this application also provide a WiFi access method, applied on the network side, including:

[0012] Establish MA PDU sessions with terminals via non-WiFi frequency bands;

[0013] Send the ATSSS rule table to the terminal. The ATSSS rule table includes real-time WiFi parameter information.

[0014] The receiving terminal initiates a security authentication by parsing WiFi parameter information. The security authentication is used for the terminal to access the target WiFi frequency band without a password.

[0015] After successful security authentication, the receiving terminal initiates an MA PDU session request via the target WiFi frequency band and establishes a communication connection with the terminal.

[0016] To achieve the above objectives, embodiments of this application also provide an apparatus applied to a terminal, comprising:

[0017] The first establishment module is used by the terminal to establish an MA PDU session with the network side via a non-WiFi frequency band.

[0018] The receiving module is used to receive the ATSSS rule table sent by the network side. The ATSSS rule table includes real-time WiFi parameter information.

[0019] The parsing module is used to parse WiFi parameter information and obtain the parsing results.

[0020] The authentication module initiates a security authentication process with the network side based on the parsing results. This security authentication is used for the terminal to access the target WiFi frequency band without a password.

[0021] The third module is used to initiate an MA PDU session request to the network side via the target WiFi frequency band after successful security authentication, and to establish a communication connection with the network side.

[0022] To achieve the above objectives, embodiments of this application also provide an apparatus applied to a network side, comprising:

[0023] The second establishment module is used by the network side to establish an MA PDU session with the terminal via a non-WiFi frequency band.

[0024] The sending module is used to send the ATSSS rule table to the terminal. The ATSSS rule table includes real-time WiFi parameter information.

[0025] The authentication module is used to receive security authentication initiated by the terminal by parsing WiFi parameter information. The security authentication is used for the terminal to access the target WiFi frequency band without a password.

[0026] The fourth module is used to receive the MA PDU session request initiated by the terminal through the target WiFi frequency band after the security authentication is passed, and to establish a communication connection with the terminal.

[0027] To achieve the above objectives, embodiments of this application also provide an electronic device, including: at least one processor; and,

[0028] A memory that is communicatively connected to at least one processor; wherein,

[0029] The memory stores instructions that can be executed by at least one processor, which enables the at least one processor to perform the WiFi access method applied to the terminal or the WiFi access method applied to the network side.

[0030] To achieve the above objectives, embodiments of this application also provide a computer-readable storage medium storing a computer program, characterized in that the computer program, when executed by a processor, is either the WiFi access method applied to a terminal or the WiFi access method applied to a network side.

[0031] Compared to related technologies, the embodiments of this invention, while enabling MA PDU sessions, allow users to connect to the network via a WiFi channel without needing to record or manually enter passwords. Parameter information of the target WiFi network can be obtained promptly, and changes to the target WiFi parameters do not affect the terminal's usability. Without impacting other communication channels or the terminal device itself, this significantly improves the efficiency of accessing the target WiFi network, ensuring a superior user experience. Attached Figure Description

[0032] Figure 1 This is a flowchart of the WiFi access method provided in the first embodiment of this application;

[0033] Figure 2 This is a schematic diagram of the authentication method provided in the first embodiment of this application;

[0034] Figure 3 This is a flowchart of the WiFi access method provided in the second embodiment of this application;

[0035] Figure 4This is a flowchart of the WiFi access method provided in the third embodiment of this application;

[0036] Figure 5 This is a schematic diagram of a device applied to a terminal according to the fourth embodiment of this application;

[0037] Figure 6 This is a schematic diagram of a device applied to the network side according to the fifth embodiment of this application;

[0038] Figure 7 This is a schematic diagram of an electronic device provided in the fifth embodiment of this application. Detailed Implementation

[0039] To make the objectives, technical solutions, and advantages of the embodiments of this application clearer, the various embodiments of this application will be described in detail below with reference to the accompanying drawings. However, those skilled in the art will understand that many technical details have been provided in the various embodiments of this application to help readers better understand this application. However, the technical solutions claimed in this application can be implemented even without these technical details and various changes and modifications based on the following embodiments. The division of the various embodiments below is for the convenience of description and should not constitute any limitation on the specific implementation of this application. The various embodiments can be combined with and referenced by each other without contradiction.

[0040] The terms "first" and "second" used in the embodiments of this application are for descriptive purposes only and should not be construed as indicating or implying relative importance or implicitly specifying the number of indicated technical features. Thus, a feature defined as "first" or "second" may explicitly or implicitly include at least one of that feature. In the description of this application, the terms "comprising" and "having," and any variations thereof, are intended to cover non-exclusive inclusion. For example, a system, product, or device that includes a series of components or units is not limited to the listed components or units, but may optionally include unlisted components or units, or may optionally include other components or units inherent to such products or devices. In the description of this application, "a plurality of" means at least two, such as two, three, etc., unless otherwise explicitly specified.

[0041] The first embodiment of the present invention relates to a WiFi access method, applied to a terminal. The specific process is as follows: Figure 1 As shown.

[0042] Step 101: Establish an MA PDU session with the network side via a non-WiFi frequency band;

[0043] Step 102: Receive the ATSSS rule table sent by the network side. The ATSSS rule table includes real-time WiFi parameter information.

[0044] Step 103: Parse the WiFi parameter information to obtain the parsing results of the WiFi parameter information;

[0045] Step 104: Perform security authentication with the network side based on the parsing results. The security authentication is used for the terminal to access the target WiFi frequency band without a password.

[0046] Step 105: After successful security authentication, initiate an MA PDU session request to the network side via the target WiFi frequency band and establish a communication connection with the network side.

[0047] In this embodiment, based on the implementation of MA PDU sessions, for connections to the network side via WiFi channels, users do not need to record or manually enter passwords, and the parameter information of the target WiFi can be obtained in a timely manner. Furthermore, changes to the target WiFi parameters will not affect the terminal's usage. Without affecting other communication channels or the terminal device itself, the efficiency of accessing the target WiFi is greatly improved, ensuring a superior network experience for users.

[0048] The following is a detailed description of the implementation details of the WiFi access method applied to the terminal in this embodiment. The following content is only for the convenience of understanding and is not necessary for implementing this solution.

[0049] In step 101, an MA PDU session is established with the network side via a non-WiFi frequency band, where the non-WiFi frequency band includes the 5G network.

[0050] In one example, the terminal registers with the 5G network and detects that the network supports ATSSS through the 5G network. Then, it initiates a MA PDU session request to the network through the 5G network. After receiving the Protocol Data Unit (PDU) Session Establishment Accept message from the network, the terminal completes the session establishment with the network.

[0051] In one example, the terminal determines whether the network side supports ATSSS by detecting the ats_ind field of the session request acceptance message sent by the terminal. For example, when ats_ind = 1 (0x1), it means that the network side supports ATSSS.

[0052] In step 102, after establishing an MA PDU session with the network side, the terminal receives an ATSSS rule table sent by the network side, which includes real-time WiFi parameter information.

[0053] During an execution process, the terminal's actions can be as follows: First, listen for whether a session request acceptance message has been received from the network side. After receiving the session request acceptance message, it indicates that a session has been established with the network side. Then, the terminal listens for whether an ATSSS rule table has been sent by the network side.

[0054] In one example, real-time WiFi, such as WiFi near the terminal's current geographical location, can be used as a backup to ensure the signal quality of the WiFi accessed by the terminal; at the same time, the WiFi parameter information in the ATSSS rule table can be updated or upgraded in a timely manner after the corresponding WiFi changes, thereby improving the efficiency of WiFi access.

[0055] In step 103, the WiFi parameter information obtained from the aforementioned steps is parsed to obtain the parsing result of the WiFi parameter information.

[0056] During an execution process, the terminal first parses the ATSSS rule table sent by the terminal, and then parses the WiFi parameter information from the ATSSS rule table. At the same time, the ATSSS rule table is saved locally for subsequent use.

[0057] In one example, WiFi parameter information, such as authentication methods, can authenticate the terminal's identity when enabling passwordless WiFi access, thereby ensuring network security.

[0058] In step 104, security authentication is performed with the network side based on the parsing result. The security authentication is used for the terminal to access the target WiFi without a password.

[0059] In one example, security authentication, such as sending an authentication request to the network side based on the authentication method parsed from WiFi parameter information, includes the terminal's identity information. The authentication request, for example, is an Extensible Authentication Protocol (EAP) request. After the identity information is authenticated as legitimate, the terminal receives a challenge message from the network side, such as... Figure 2The diagram shows the Extensible Authentication Protocol-Authentication and Key Agreement (EAP-AKA) and the key agreement challenge message. The challenge message carries parameters such as the time sequence RAND, authentication parameter AUTN, and address MAC. Based on the challenge message content, the terminal runs the EAP-AKA algorithm on the SIM card to verify the correctness of the AUTN parameter and calculate the RES parameter. It then replies to the authentication network side, allowing the network to compare the calculated XRES parameter. If the comparison is successful, the terminal receives an EAP success message from the network. Successful EAP authentication indicates that the terminal and the network have completed two-way authentication, enabling the terminal to access the target WiFi network without a password.

[0060] In step 105, after the security authentication is passed, an MA PDU session request is initiated to the network side through the target WiFi frequency band, and a communication connection is established with the network side.

[0061] During an execution process, the terminal prioritizes and accesses the target WiFi network without password authentication. On the target WiFi network, it initiates an MA PDU session request to the network side and establishes a communication connection. This allows the terminal to communicate with the network not only through the non-WiFi frequency bands previously used for connection, but also to efficiently access the target WiFi network for communication, improving the user's network experience. The target WiFi network can be information about accessible hotspots obtained by parsing WiFi parameter information, or it can be a pre-set WiFi hotspot that the terminal wishes to access, or a WiFi hotspot recommended by the network.

[0062] In one example, if the session established with the network via a non-WiFi frequency band is the first channel of the MA PDU session, then after successful security authentication, a second MA PDU session is initiated with the network via the WiFi frequency band. Both MA PDU session channels reside within the same MA PDU session and use the same PDU session ID. This ensures that the terminal and the network can communicate through at least two channels: the target WiFi frequency band and the previously established non-WiFi frequency band.

[0063] After the communication connection is established, a prompt is displayed on the terminal's user interface, such as: You have connected to a secure WiFi band, to provide a noticeable improvement in user experience.

[0064] Compared to related technologies, this embodiment detects whether the network side supports ATSSS. After establishing a MAPDU session with the network side, it receives the ATSSS rule table sent by the network side and parses the WiFi parameter information from it. It then performs two-way authentication with the network using the WiFi parameter information. Upon successful authentication, it can access the network via WiFi without a password. Based on the MAPDU session, for WiFi channel connections, users do not need to record or manually enter passwords, and the target WiFi parameter information can be obtained in a timely manner. Furthermore, changes to the target WiFi parameters will not affect the terminal's use. Without affecting other communication channels and the terminal device itself, it greatly improves the efficiency of accessing the target WiFi and ensures a better user network experience.

[0065] The second embodiment of the present invention relates to a WiFi access method, applied to a terminal. The specific process is as follows: Figure 3 As shown.

[0066] Step 201: Establish an MA PDU session with the network side via a non-WiFi frequency band;

[0067] Step 202: Receive the ATSSS rule table sent by the network side. The ATSSS rule table includes real-time WiFi parameter information.

[0068] Step 203: Parse the WiFi parameter information to obtain the parsing result of the WiFi parameter information. The parameter information includes WiFi parameters of multiple accessible hotspots and the priority of multiple accessible hotspots.

[0069] Step 204: Perform security authentication with the network side based on the parsing results. The security authentication is used for the terminal to access the target WiFi frequency band without a password.

[0070] Step 205: After the security authentication is passed, according to the priority of the accessible hotspots from high to low, initiate an MA PDU session request to the network side through the target WiFi frequency band and establish a communication connection with the network side.

[0071] Step 206: Perform corresponding processing on the session established with the network side through the non-WiFi frequency band, and manage the data transmission and reception of multiple channels according to the ATSSS rules.

[0072] Steps 202 and 204 are largely the same as in the first embodiment, and will not be described again to avoid repetition. The main differences lie in steps 201, 203, 205, and 206, which will be described in detail below.

[0073] In step 201, an MA PDU session is established with the network side via a non-WiFi frequency band. This session is used to receive the ATSSS rule table sent by the network side. The number of channels when the session is established does not need to be less than 1, and there is no limit to the number of channels in the specific session.

[0074] In steps 203 and 205, the WiFi parameter information is parsed to obtain the parsing result of the WiFi parameter information. The parameter information includes the WiFi parameters of multiple accessible hotspots and the priority of the multiple accessible hotspots. According to the order of the accessible hotspots from high to low priority, an MA PDU session request is initiated to the network side.

[0075] This means that the parameters provided by the network side can include more than one accessible hotspot, along with the priority of these hotspots for the terminal to select. Providing multiple accessible hotspots ensures efficient hotspot usage; furthermore, prioritizing access based on priority improves the user experience, such as enhancing signal quality and security.

[0076] In one example, when the terminal only supports access to a single WiFi band, it can determine the target WiFi band in descending order of priority and establish a single-channel MA PDU session with the network side through that single WiFi. The terminal manages the target WiFi band and previously connected non-WiFi bands (e.g., 5G networks) in a dual-channel manner according to the ATSSS rule table. In another example, if the terminal supports access to N WiFi bands, it can determine N target WiFi bands in order of priority and establish N MA PDU session channels with the network side sequentially based on these WiFi band groups. That is, it accesses at least two WiFi bands, and the connection channels with the network side include the at least two WiFi bands and previously connected non-WiFi bands (e.g., 5G networks), totaling at least three connection channels. The terminal manages these at least three connection channels according to the ATSSS rule table.

[0077] In one example, WiFi parameter information also includes Service Set Identifier (SSID), Basic Service Set Identifier (BSSID), and frequency band. The SSID identifies the WiFi hotspot, allowing users to distinguish between different hotspots. The BSSID carries the physical address (MAC address) corresponding to the accessible hotspot, and the frequency band is the frequency range corresponding to different accessible WiFi hotspots. It may also include encryption methods; when a terminal establishes a communication connection with the network side through the target WiFi, the encryption method can encrypt the plaintext during communication transmission, improving information transmission security. Furthermore, enterprise-grade WiFi enables multi-user management, typically supporting more than 16 SSIDs. Different SSIDs can be assigned to different users, such as employee SSIDs, visitor SSIDs, office SSIDs, production SSIDs, etc. Obtaining the corresponding SSID facilitates enterprise management and enhances information security.

[0078] In step 206, corresponding processing is performed on the sessions established with the network side through non-WiFi frequency bands, and data transmission and reception of multiple channels are managed according to ATSSS rules.

[0079] If an MA PDU session is established with the network side via a non-WiFi frequency band, after successful security authentication, an MA PDU session request will be initiated to the network side via the WiFi frequency band.

[0080] In another example, to save system resources, after the terminal establishes a MAPDU session with the network side via a non-WiFi frequency band and receives the ATSSS rule table sent by the network side, the session channel can be released. Then, when establishing a MAPDU session with the network side via the target WiFi, a non-WiFi channel between the terminal and the network side can be created.

[0081] That is, there is no limit to the number of channels that can establish MA PDU sessions with the network side via non-WiFi frequency bands. As long as the communication connection established with the network side via WiFi frequency band is a different channel of the same MA PDU session between the non-WiFi frequency band and the WiFi frequency band, the terminal can engage in multi-party sessions, ensuring a good network experience for users.

[0082] In this embodiment, not only is password recording and manual input unnecessary for the user, but the parameter information of the target WiFi can also be obtained in a timely manner. Changes in the parameters of the target WiFi frequency band will not affect the use of the terminal. Without affecting other communication channels and the terminal device itself, the efficiency of accessing the target WiFi frequency band is greatly improved, ensuring the user's network experience. It can also receive multiple WiFi parameters and their priorities, allowing for selective access to WiFi frequency bands. The availability of alternative WiFi frequency bands increases the success rate of WiFi frequency band access, and accessing according to priority also ensures the quality of the accessed WiFi frequency band.

[0083] The steps of the various methods described above are only for clarity. In practice, they can be combined into one step or some steps can be split into multiple steps. As long as they include the same logical relationship, they are all within the scope of protection of this patent. Adding insignificant modifications or introducing insignificant designs to the algorithm or process, but without changing the core design of the algorithm and process, are also within the scope of protection of this patent.

[0084] The third embodiment of the present invention relates to a WiFi access method, applied on the network side, such as... Figure 4 As shown, it includes:

[0085] Step 301: Establish an MA PDU session with the terminal via a non-WiFi frequency band;

[0086] Step 302: Send the ATSSS rule table to the terminal. The ATSSS rule table includes real-time WiFi parameter information.

[0087] Step 303: The receiving terminal initiates a security authentication by parsing the WiFi parameter information. The security authentication is used for the terminal to access the target WiFi frequency band without a password.

[0088] Step 304: After security authentication is passed, the receiving terminal initiates an MA PDU session request through the target WiFi frequency band and establishes a communication connection with the terminal.

[0089] The following is a detailed description of the implementation details of the WiFi access method applied to the network side in this embodiment. The following content is only for the convenience of understanding and is not necessary for implementing this solution.

[0090] In step 301, an MA PDU session is established with the terminal via a non-WiFi frequency band, which includes 5G networks.

[0091] In one example, the receiving terminal initiates an MA PDU session request through the 5G network and responds with a session request acceptance message to complete the session establishment with the terminal. The session does not limit the number of channels, as long as there is at least one.

[0092] In step 302, an ATSSS rule table is sent to the terminal. The ATSSS rule table includes real-time WiFi parameter information.

[0093] In one example, real-time WiFi, such as WiFi near the terminal's current geographical location, can be used as a backup to ensure the signal quality of the WiFi accessed by the terminal; at the same time, the WiFi parameter information in the ATSSS rule table can be updated or upgraded in a timely manner after the corresponding WiFi changes, thereby improving the efficiency of WiFi access.

[0094] In step 303, the receiving terminal initiates a security authentication by parsing the WiFi parameter information. This security authentication is used for the terminal to access the target WiFi frequency band without a password. The ATSSS rule table is used not only to establish an MA PDU session between the terminal and the network side, but also to store WiFi parameter information that the terminal can parse. This WiFi parameter information, such as authentication methods, can authenticate the terminal's identity when enabling passwordless WiFi access, ensuring network security during user operation.

[0095] In one example, WiFi parameter information, including the authentication method, is used. The network-side receiving terminal initiates security authentication by parsing this WiFi parameter information. For example, the receiving terminal sends an authentication request based on the authentication method, such as an EAP authentication request, which includes the terminal's identity information. The network determines whether the identity information is valid. If valid, a challenge message, such as an EAP AKA challenge message, is sent to the terminal. This challenge message carries RAND, AUTN, MAC, etc. After the terminal verifies the AUTN is correct based on the challenge message content, the receiving terminal calculates RES and compares it with XRES calculated by the network side. If the comparison is correct, an EAP success message is sent to the terminal. After successful EAP authentication, the terminal can access the target WiFi frequency band without a password.

[0096] In step 304, after the security authentication is passed, the MA PDU session request initiated by the terminal is received, and a communication connection is established with the terminal. The channel of the MA PDU session request includes the target WiFi frequency band.

[0097] During an operation, after the receiving terminal accesses the target WiFi network without password authentication, it initiates a MAPDU session request on the target WiFi network and establishes a communication connection. This enables the terminal to communicate with the network not only through the non-WiFi frequency bands used to connect to the network, but also to efficiently access the target WiFi frequency band to communicate with the network, thus improving the user's network experience.

[0098] In one example, if the terminal only supports access to a single WiFi band, the receiving terminal initiates a single-channel MA PDU session request according to the priority of the multiple accessible hotspots, from highest to lowest. If the terminal supports access to N WiFi bands, the receiving terminal initiates N channel MA PDU session requests sequentially, where N is an integer greater than 1. All of the above establish different channels of the same MA PDU session with the same PDU session ID.

[0099] In addition, on the network side, there are at least two network elements. The first network element is used to establish an MA PDU session with the terminal, and the second network element is used to verify the terminal's identity information, such as completing the EAP authentication process with the terminal. There is a communication connection between the first network element and the second network element, which can exchange information.

[0100] This embodiment provides a WiFi access method applied to the network side. After establishing an MA PDU session with the terminal, an ATSSS rule table is issued, which carries WiFi parameter information. Based on establishing an MA PDU session with the terminal, for connections made by the terminal via the WiFi channel, the user does not need to record or manually enter a password, and the parameter information of the target WiFi can be obtained in a timely manner. Furthermore, changes to the parameters of the target WiFi do not affect the use of the terminal. Without affecting other communication channels and the terminal device itself, this method greatly improves the efficiency of accessing the target WiFi and ensures a better network experience for the user.

[0101] The fourth embodiment of the present invention relates to a device applied to a terminal, such as... Figure 5 As shown, it includes:

[0102] The first establishment module 401 is used for the terminal to establish an MA PDU session with the network side through a non-WiFi frequency band;

[0103] The receiving module 402 is used to receive the ATSSS rule table sent by the network side. The ATSSS rule table includes real-time WiFi parameter information.

[0104] Parsing module 403 is used to parse WiFi parameter information and obtain the parsing result of WiFi parameter information;

[0105] The authentication module 404 is initiated, and security authentication is performed with the network side based on the parsing result. The security authentication is used for the terminal to access the target WiFi frequency band without a password.

[0106] The third module 405 is used to initiate an MA PDU session request to the network side via the target WiFi frequency band after the security authentication is passed, and to establish a communication connection with the network side.

[0107] In the first establishment module 401, the terminal registers with the 5G network and detects whether the network side supports ATSSS through the 5G network. If the network side supports ATSSS, the terminal initiates a session request to the network side through the 5G network. If the terminal detects that the network side responds with a session request acceptance message, the terminal completes the session establishment with the network side.

[0108] In the receiving module 402, after establishing an MA PDU session with the network side, the terminal receives the ATSSS rule table sent by the network side. This table includes WiFi parameter information such as authentication method, WiFi parameters of multiple accessible hotspots and their priorities, Service Set Identifier (SSID), Basic Service Set Identifier (BSSID), encryption method, and frequency band.

[0109] In the parsing module 403 and the authentication initiation module 404, the terminal stores the ATSSS rule table and parses the WiFi parameter information therein to obtain the parsing result of the WiFi parameter information. Based on the authentication method in the parsing result, the terminal initiates an authentication request to the network side, such as an EAP authentication request. The terminal sends the EAP authentication request to the network side and replies with the user identity identifier as required. It receives an EAP AKA challenge message from the network side after authenticating the user as a legitimate user. The challenge message carries RAND, AUTN, MAC, etc. Based on the challenge message content, the terminal runs the EAP-AKA algorithm on the SIM card to verify whether AUTN is correct and calculates RES, then replies with the message to the network side. The network side calculates XRES and compares it with the received RES. If correct, it replies with an EAP success message to the terminal. That is, authentication is successful, and the terminal can access WiFi without a password to establish a communication connection with the network side.

[0110] In the third establishment module 405, after the security authentication is passed, an MA PDU session request is initiated to the network side through the target WiFi frequency band, and a communication connection is established with the network side.

[0111] In one example, the WiFi parameter information includes the WiFi parameters of multiple accessible hotspots and the priorities of the multiple accessible hotspots. After the security authentication is passed, the terminal initiates an MA PDU session request to the network side in descending order of priority of the accessible hotspots and establishes a communication connection with them.

[0112] If the terminal only supports access to a single WiFi band, the terminal determines a single target WiFi band according to the priority of the multiple accessible hotspots; and initiates a single-channel MA PDU session request to the network side through the single target WiFi band. If the terminal supports access to N WiFi bands, the terminal determines N target WiFi bands according to the priority of the multiple accessible hotspots; and initiates N channel MA PDU session requests to the network side sequentially through the N target WiFi bands, where N is an integer greater than 1.

[0113] In one example, if the aforementioned MA PDU session is established with the network side via a non-WiFi frequency band, after successful security authentication, an MA PDU session request is initiated to the network side via the target WiFi frequency band, and a communication connection is established with the network side. This enables the terminal to conduct multi-party sessions, ensuring a better network experience for the user.

[0114] After the communication connection is established, a prompt message appears on the terminal's user interface, such as: You have connected to a secure WiFi frequency band, to provide a noticeable improvement in user experience.

[0115] Compared to related technologies, this embodiment detects whether the network side supports ATSSS. After establishing a MAPDU session with the network side, it receives the ATSSS rule table sent by the network side and parses out the WiFi parameter information from it. Based on the implementation of the MAPDU session, for connections to the network side via the WiFi channel, users do not need to record or manually enter passwords, and the parameter information of the target WiFi can be obtained in a timely manner. Furthermore, changes to the target WiFi parameters will not affect the terminal's use. Without affecting other communication channels and the terminal device itself, this greatly improves the efficiency of accessing the target WiFi and ensures a better user network experience.

[0116] It is not difficult to see that this embodiment is a system implementation corresponding to the first and second embodiments, and this embodiment can be implemented in conjunction with the first and second embodiments. The relevant technical details mentioned in the first and second embodiments are still valid in this embodiment, and will not be repeated here to reduce repetition. Accordingly, the relevant technical details mentioned in this embodiment can also be applied to the first and second embodiments.

[0117] It is worth mentioning that all modules involved in this embodiment are logical modules. In practical applications, a logical unit can be a physical unit, a part of a physical unit, or a combination of multiple physical units. Furthermore, to highlight the innovative aspects of this invention, this embodiment does not introduce units that are not closely related to solving the technical problem proposed by this invention; however, this does not mean that other units are absent from this embodiment.

[0118] The fifth embodiment of the present invention relates to an apparatus applied on the network side, such as... Figure 6 As shown, it includes:

[0119] The second establishment module 501 is used for the network side to establish an MA PDU session with the terminal via a non-WiFi frequency band;

[0120] The sending module 502 is used to send the ATSSS rule table to the terminal. The ATSSS rule table includes real-time WiFi parameter information.

[0121] The authentication module 503 is used to receive security authentication initiated by the terminal by parsing WiFi parameter information. The security authentication is used for the terminal to access the target WiFi frequency band without a password.

[0122] The fourth module 504 is used to receive the MAPDU session request initiated by the terminal through the target WiFi frequency band after the security authentication is passed, and to establish a communication connection with the terminal.

[0123] In the second establishment module 501, a session request sent by the terminal is received, and a session request acceptance message is sent to the terminal to complete the establishment of a session with the terminal.

[0124] In the sending module 502, after establishing an MA PDU session with the terminal, an ATSSS rule table is sent to the terminal. The ATSSS rule table includes real-time WiFi parameter information. This WiFi parameter information includes, for example, authentication methods, WiFi parameters of multiple accessible hotspots, and the priorities, SSIDs, BSSIDs, encryption methods, and frequency bands of these hotspots.

[0125] In authentication module 503, the receiving terminal initiates an authentication request using the authentication method in the WiFi parameter information. According to RFC 4187, this authentication request may be, for example, an EAP authentication request. After confirming the user is legitimate, an EAP AKA challenge message is sent to the terminal, carrying RAND, AUTN, MAC, etc. The receiving terminal calculates RES based on the challenge information, the network side calculates XRES, and then compares it with the received RES. If correct, an EAP success message is sent to the terminal. This indicates successful authentication, allowing the terminal to access WiFi without a password and establish a communication connection with the network.

[0126] In the fourth establishment module 504, after the security authentication is passed, the receiving terminal initiates a MAPDU session request through the target WiFi frequency band and establishes a communication connection with the terminal.

[0127] In one example, the WiFi parameter information includes multiple accessible WiFi parameters and the priorities corresponding to the multiple accessible WiFis. After security authentication is passed, the receiving terminal initiates an MA PDU session request in descending order of priority of the accessible WiFis and establishes a communication connection with them.

[0128] This embodiment provides a WiFi access method applied to the network side, compared to related technologies. After establishing a MA PDU session with the terminal, an ATSSS rule table is issued, carrying WiFi parameter information. Based on the MA PDU session with the terminal, for the terminal connecting through the WiFi channel, the user does not need to record or manually enter a password, and the parameter information of the target WiFi can be obtained in a timely manner. Furthermore, changes to the target WiFi parameters do not affect the terminal's usage. Without affecting other communication channels and the terminal device itself, this greatly improves the efficiency of accessing the target WiFi and ensures a better user network experience.

[0129] It is not difficult to see that this embodiment is a system implementation corresponding to the third embodiment, and this embodiment can be implemented in conjunction with the third embodiment. The relevant technical details mentioned in the third embodiment are still valid in this embodiment, and will not be repeated here to reduce repetition. Accordingly, the relevant technical details mentioned in this embodiment can also be applied to the third embodiment.

[0130] It is worth mentioning that all modules involved in this embodiment are logical modules. In practical applications, a logical unit can be a physical unit, a part of a physical unit, or a combination of multiple physical units. Furthermore, to highlight the innovative aspects of this invention, this embodiment does not introduce units that are not closely related to solving the technical problem proposed by this invention; however, this does not mean that other units are absent from this embodiment.

[0131] The sixth embodiment of the present invention relates to an electronic device, such as... Figure 7 As shown, it includes at least one processor 601; and,

[0132] Memory 602 is communicatively connected to at least one processor; wherein,

[0133] The memory stores instructions that can be executed by at least one processor, which enables the at least one processor to perform the WiFi access method applied to the terminal or the WiFi access method applied to the network side.

[0134] The memory and processor are connected via a bus, which can include any number of interconnecting buses and bridges, connecting various circuits of one or more processors and memories. The bus can also connect various other circuits, such as peripheral devices, voltage regulators, and power management circuits, which are well known in the art and will not be described further herein. The bus interface provides an interface between the bus and the transceiver. The transceiver can be a single element or multiple elements, such as multiple receivers and transmitters, providing a unit for communicating with various other devices over a transmission medium. Data processed by the processor is transmitted over the wireless medium via an antenna, which further receives data and transmits it to the processor.

[0135] The processor manages the bus and general processing, and also provides various functions, including timing, peripheral interfaces, voltage regulation, power management, and other control functions. Memory is used to store data used by the processor during operation.

[0136] The seventh embodiment of the present invention relates to a computer-readable storage medium storing a computer program. When the computer program is executed by a processor, it implements the above-described method embodiments.

[0137] That is, those skilled in the art will understand that all or part of the steps in the methods of the above embodiments can be implemented by a program instructing related hardware. This program is stored in a storage medium and includes several instructions to cause a device (which may be a microcontroller, chip, etc.) or processor to execute all or part of the steps of the methods described in the various embodiments of this application. The aforementioned storage medium includes various media capable of storing program code, such as a USB flash drive, a portable hard drive, a read-only memory (ROM), a random access memory (RAM), a magnetic disk, or an optical disk.

[0138] Those skilled in the art will understand that the above embodiments are specific examples of implementing the present invention, and in practical applications, various changes in form and detail may be made without departing from the spirit and scope of the present invention.

Claims

1. A WiFi access method, characterized in that, Applied to terminals, including: Establish a Multiple Access Protocol Data Unit (MA PDU) session with the network side via non-WiFi frequency bands; Receive the ATSSS rule table sent by the network side, the ATSSS rule table including real-time WiFi parameter information; The WiFi parameter information is parsed to obtain the parsing result of the WiFi parameter information; Based on the parsing results, a security authentication is performed with the network side. This security authentication is used for the terminal to access the target WiFi frequency band without a password. After the security authentication is passed, an MA PDU session request is initiated to the network side through the target WiFi frequency band, and a communication connection is established with the network side.

2. The WiFi access method according to claim 1, characterized in that, The WiFi parameter information includes: authentication method; The step of performing security authentication with the network side based on the parsing result includes: According to the authentication method, an authentication request is sent to the network side, and the authentication request includes the identity information of the terminal. After the identity information is verified as legitimate, a challenge message sent by the network side is received, and a two-way verification is performed with the network side based on the challenge message.

3. The WiFi access method according to claim 2, characterized in that, The WiFi parameter information also includes: WiFi parameter information for multiple accessible hotspots and the priority of the multiple accessible hotspots; After the security authentication is passed, an MA PDU session request is initiated to the network side through the target WiFi frequency band, including: After the two-way verification is successful, the target WiFi frequency band is determined according to the priority of the multiple accessible hotspots; Initiate an MA PDU session request to the network side via the target WiFi frequency band.

4. The WiFi access method according to claim 3, characterized in that, After the two-way verification is successful, the target WiFi frequency band is determined according to the priority of the multiple accessible hotspots; Initiating an MA PDU session request to the network side via the target WiFi frequency band includes: If the terminal only supports access to a single WiFi frequency band, the terminal determines a single target WiFi frequency band according to the priority of the multiple accessible hotspots; and initiates a single-channel MAPDU session request to the network side through the single target WiFi frequency band. If the terminal supports access to N WiFi frequency bands, the terminal determines N target WiFi frequency bands according to the priority of the multiple accessible hotspots; and sequentially initiates N channel MA PDU session requests to the network side through the N target WiFi frequency bands, where N is an integer greater than 1.

5. The WiFi access method according to claim 2, characterized in that, The WiFi parameter information also includes one or any combination of the following: Service Set Identifier (SSID), which is used to identify and distinguish different accessible hotspots; Basic Service Set Identifier (BSSID), which is used to identify the physical address corresponding to the accessible hotspot; Frequency band, which is used to identify the frequency range of the accessible hotspot.

6. A WiFi access method, characterized in that, Applied to the network side, including: Establish MA PDU sessions with terminals via non-WiFi frequency bands; Send an ATSSS rule table to the terminal, the ATSSS rule table including real-time WiFi parameter information; The terminal receives a security authentication initiated by parsing the WiFi parameter information. The security authentication is used for the terminal to access the target WiFi frequency band without a password. After the security authentication is passed, the system receives the MA PDU session request initiated by the terminal through the target WiFi frequency band and establishes a communication connection with the terminal.

7. A WiFi access device, characterized in that, Applied to terminals, including: The first establishment module is used by the terminal to establish an MA PDU session with the network side via a non-WiFi frequency band. The receiving module is used to receive the ATSSS rule table sent by the network side, wherein the ATSSS rule table includes real-time WiFi parameter information; The parsing module is used to parse the WiFi parameter information and obtain the parsing result of the WiFi parameter information; An authentication module is initiated to perform security authentication with the network side based on the parsing result. The security authentication is used for the terminal to access the target WiFi frequency band without a password. The third establishment module is used to initiate an MA PDU session request to the network side through the target WiFi frequency band after the security authentication is passed, and to establish a communication connection with the network side.

8. A WiFi access device, characterized in that, Applied to the network side, including: The second establishment module is used by the network side to establish an MA PDU session with the terminal via a non-WiFi frequency band. The sending module is used to send an ATSSS rule table to the terminal, wherein the ATSSS rule table includes real-time WiFi parameter information; The authentication module is used to receive a security authentication initiated by the terminal by parsing the WiFi parameter information. The security authentication is used for the terminal to access the target WiFi frequency band without a password. The fourth module is used to receive the MA PDU session request initiated by the terminal through the target WiFi frequency band after the security authentication is passed, and to establish a communication connection with the terminal.

9. An electronic device, characterized in that, include: At least one processor; as well as, A memory communicatively connected to the at least one processor; wherein, The memory stores instructions that can be executed by the at least one processor to enable the at least one processor to perform the WiFi access method as described in any one of claims 1 to 5 or the WiFi access method as described in claim 6.

10. A computer-readable storage medium storing a computer program, characterized in that, When the computer program is executed by the processor, it implements the WiFi access method according to any one of claims 1 to 5 or the WiFi access method according to claim 6.