Securely authorizing service level access to a backup system using a specialized access key
US-2021409227-A1 · Dec 30, 2021 · US
Access control method, apparatus, network side device, terminal and blockchain node
US12489639B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-12489639-B2 |
| Application number | US-202118259518-A |
| Country | US |
| Kind code | B2 |
| Filing date | Dec 27, 2021 |
| Priority date | Dec 29, 2020 |
| Publication date | Dec 2, 2025 |
| Grant date | Dec 2, 2025 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
The present disclosure provides an access control method, an access control apparatus, a network side device, a terminal and a blockchain node, wherein the access control method includes: receiving relevant information to be verified that is sent by a terminal and corresponds to an access request, wherein the relevant information to be verified includes private key signature information of the terminal and position information of preset information in the blockchain; acquiring the preset information from the blockchain according to the position information; verifying the terminal according to the private key signature information and the preset information; acquiring, in a case that verification is passed, attribute information of the terminal from a blockchain ledger according to the preset information; and feedbacking a request response for access control to the terminal according to the attribute information.
First claim
Opening claim text (preview).
What is claimed is: 1 . An access control method, applied to a first network side device, wherein the method comprises: receiving relevant information to be verified that is sent by a terminal and corresponds to an access request, wherein the relevant information to be verified comprises private key signature information of the terminal and position information of preset information in the blockchain ledger; acquiring the preset information from the blockchain ledger according to the position information; verifying the terminal according to the private key signature information and the preset information; acquiring, in a case that verification is passed, attribute information of the terminal from a blockchain ledger according to the preset information; feedbacking a request response for access control to the terminal according to the attribute information, wherein the preset information comprises public key information of the terminal, or first terminal identification information obtained according to the public key of the terminal, or second terminal identification information irrelevant to the public key of the terminal and the public key information of the terminal, or the second terminal identification information and a hash value of the public key of the terminal. 2 . The access control method according to claim 1 , wherein the receiving relevant information to be verified corresponding to the access request sent by the terminal comprises: receiving the access request sent by the terminal, wherein relevant information to be verified is carried in the access request; or, receiving the access request sent by the terminal; feedbacking, according to the access request, a random number to the terminal; receiving relevant information to be verified sent by the terminal according to the random number. 3 . The access control method according to claim 1 , wherein the verifying, in the case that the preset information comprises public key information of the terminal, the terminal according to the private key signature information and the preset information, comprises: using the public key information to verify the private key signature information; the obtaining, in the case that verification is passed, attribute information of the terminal from the blockchain ledger according to the preset information comprises: obtaining, in a case that the verification is passed, corresponding third terminal identification information from the blockchain ledger according to the public key information; obtaining, in a case that the third terminal identification information is obtained, attribute information corresponding to the third terminal identification information from the blockchain ledger as attribute information of the terminal. 4 . The access control method according to claim 1 , wherein the verifying, in the case that the preset information comprises the first terminal identification information, the terminal according to the private key signature information and the preset information, comprises: obtaining, according to the first terminal identification information, the public key information to be verified and the stored public key information of the terminal from the blockchain ledger; verifying, according to the public key information of the terminal, the public key information to be verified and the private key signature information; obtaining, in the case that verification is passed, attribute information of the terminal from the blockchain ledger according to the preset information comprises: obtaining, in the case that the verification is passed, attribute information of the terminal from the blockchain ledger according to the first terminal identification information. 5 . The access control method according to claim 1 , wherein the verifying, in the case that the preset information comprises the second terminal identification information and the public key information, the terminal according to the private key signature information and the preset information, comprises: using the public key information in the preset information to verify the private key signature information; acquiring, according to the second terminal identification information, the stored public key information of the terminal from the blockchain ledger; and verifying, according to the acquired public key information of the terminal, the public key information in the preset information; or, using the public key information in the preset information to verify the private key signature information; acquiring, according to the second terminal identification information, the stored hash value of the public key of the terminal from the blockchain ledger; obtaining, according to the public key information in the preset information, the hash value to be verified; and verifying, according to the obtained hash value of the public key of the terminal, the hash value to be verified. 6 . The access control method according to claim 1 , wherein the verifying, in the case that the preset information comprises the second terminal identification information and the hash value of the public key, the terminal according to the private key signature information and the preset information, comprises: acquiring, according to the second terminal identification information, the stored public key information of the terminal from the blockchain ledger; obtaining, according to the hash value of the public key in the preset information, the public key information to be verified; verifying, according to the public key information to be verified, the private key signature information; and verifying, according to the acquired public key information of the terminal, the public key information to be verified. 7 . The access control method according to claim 1 , wherein the private key signature information comprises first signature information on a timestamp using the private key of the terminal, or second signature information of the random number on the first network side device in response to the access request sent by using the private key of the terminal; in a case that the private key signature information comprises the first signature information, the relevant information to be verified further comprises the timestamp; the verifying the terminal according to the private key signature information and the preset information comprises: confirming whether the timestamp is within a validity period; verifying, in a case that the timestamp is within the validity period, the terminal according to the private key signature information and the preset information. 8 . The access control method according to claim 1 , wherein the preset information further comprises validity period information of the first information; the first information comprises at least one of the attribute information, the first terminal identification information and the second terminal identification information; the verifying the terminal according to the private key signature information and the preset information comprises: confirming, according to the validity period information, whether the first information is within the validity period; verifying, in a case that the first information is within the validity period, the terminal according to the private key signature information and other information except the validity period information in the preset information. 9 . The access control method according to claim 1 , wherein at least one authentication information related to the terminal is stored in the blockchain ledger as encrypted information encrypted with a first key; the relevant information to be verified further comprises the first key encrypted with the public key
Assignees
Inventors
Classifications
using a plurality of keys or algorithms · CPC title
using hash chains, e.g. blockchains or hash trees · CPC title
Tools and structures for managing or administering access control systems · CPC title
involving digital signatures · CPC title
Denial of Service · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US12489639B2 cover?
- The present disclosure provides an access control method, an access control apparatus, a network side device, a terminal and a blockchain node, wherein the access control method includes: receiving relevant information to be verified that is sent by a terminal and corresponds to an access request, wherein the relevant information to be verified includes private key signature information of the …
- Who is the assignee on this patent?
- China Mobile Comm Co Ltd Res Inst, China Mobile Communications Group Co Ltd
- What technology area does this patent fall under?
- Primary CPC classification H04L63/08. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Dec 02 2025 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 4 related publications on this page (citations in our corpus or others sharing the same primary CPC).