CN110855600B - Method, device and system for switching TCP connection - Google Patents
Method, device and system for switching TCP connection Download PDFInfo
- Publication number
- CN110855600B CN110855600B CN201810951135.4A CN201810951135A CN110855600B CN 110855600 B CN110855600 B CN 110855600B CN 201810951135 A CN201810951135 A CN 201810951135A CN 110855600 B CN110855600 B CN 110855600B
- Authority
- CN
- China
- Prior art keywords
- user terminal
- verification
- information
- address
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/141—Setup of application sessions
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/143—Termination or inactivation of sessions, e.g. event-controlled end of session
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/16—Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The present disclosure provides a method, apparatus, and system for switching a TCP connection. After receiving a service request sent by a user terminal, a server for switching TCP connection extracts verification information and service data from the service request, wherein the verification information is associated with an IP address used by the user terminal when obtaining the verification information, the verification information is verified by using the IP address currently used by the user terminal, under the condition of failed verification, other IP address information associated with the user terminal is obtained from a service platform, the verification information is verified again by using each IP address in the other IP address information, and under the condition of successful re-verification, the service data is sent to a corresponding application server. According to the method and the device, under the condition that the IP address of the user terminal changes, the TCP connection can still be rapidly switched, so that the influence of network switching on service experience is reduced.
Description
Technical Field
The present disclosure relates to the field of communications, and in particular, to a method, an apparatus, and a system for switching a TCP connection.
Background
The edge computing enables service applications to be flexibly deployed to the edge of the network by providing a computing environment at the edge of the operator network, provides low-delay and high-bandwidth service experience for users, and further improves the service quality of the service through the network capacity development. The multi-access edge computing can simultaneously support a plurality of different access technologies, such as a 5G Network, a Wireless Local Area Network (WLAN) and a fixed access Network, so that different networks can provide edge computing services for all users in the networks through a shared edge computing platform, and consistent service experience of the users in the networks is ensured.
Disclosure of Invention
The inventors have found through research that in a multi-network access scenario, when a user terminal moves from one network to another network, the user terminal may first break a data connection with a first network and then access a second network to establish a new data connection. When the user terminal switches the network, the IP address may also change, which may cause the interruption of the TCP (Transmission Control Protocol) connection being used by the user terminal and require the re-establishment of a connection with the service application. Therefore, the user terminal switching networks will cause the user experience to be poor, especially for delay sensitive services.
To this end, the present disclosure provides a scheme for implementing a fast handover of a TCP connection in case that a user terminal changes an IP address.
In accordance with an aspect of one or more embodiments of the present disclosure, there is provided a method for switching a TCP connection, including: after receiving a service request sent by a user terminal, extracting verification information and service data from the service request, wherein the verification information is associated with an IP address used by the user terminal when obtaining the verification information; verifying the verification information by using the IP address currently used by the user terminal; acquiring other IP address information associated with the user terminal from a service platform under the condition of failed verification; respectively utilizing each IP address in the other IP address information to verify the verification information again; and under the condition of successful re-verification, sending the service data to a corresponding application server.
In some embodiments, in case of successful re-verification, further comprising: generating updating information by using the IP address currently used by the user terminal; and sending a verification success response carrying the updating information to the user terminal so that the user terminal can update the verification information by using the updating information.
In some embodiments, in the event that both of the re-verifications fail, discarding the traffic data; and sending an authentication failure response to the user terminal so that the user terminal can reestablish the TCP connection.
In some embodiments, in case of successful verification, the service data is sent to the corresponding application server, and a verification success response is sent to the user terminal.
In some embodiments, after receiving a connection request sent by a user terminal, generating verification information by using an IP address currently used by the user terminal; and sending a connection request response carrying the verification information to the user terminal so that the user terminal stores the verification information.
In accordance with an aspect of one or more embodiments of the present disclosure, there is provided a server for switching a TCP connection, including: the interface module is configured to receive a service request sent by a user terminal; the system comprises an extraction module, a service processing module and a verification module, wherein the extraction module is configured to extract verification information and service data from a service request after the service request sent by a user terminal is received by an interface module, and the verification information is associated with an IP address used by the user terminal when the verification information is acquired; a verification module configured to verify the verification information using an IP address currently used by the user terminal; an address acquisition module configured to acquire, from a service platform, other IP address information associated with the user terminal in the case of a failure in authentication; a re-verification module configured to re-verify the verification information by using each IP address in the other IP address information, respectively; and the data processing module is configured to send the service data to the corresponding application server under the condition that the re-verification is successful.
In some embodiments, the server further includes an update module configured to generate update information using an IP address currently used by the user terminal if the re-verification is successful; the interface module is further configured to send a verification success response carrying the update information to the user terminal, so that the user terminal updates the verification information by using the update information.
In some embodiments, the data processing module is further configured to, in case of failure of both re-authentications, discard the traffic data, instruct the interface module to send an authentication failure response to the user terminal, so that the user terminal reestablishes the TCP connection.
In some embodiments, the data processing module is further configured to, in case of successful verification, send the service data to the corresponding application server, instruct the interface module to send a verification success response to the user terminal.
In some embodiments, the above apparatus further comprises: the verification information generation module is configured to generate verification information by using the currently used IP address of the user terminal after the interface module receives the connection request sent by the user terminal, and instruct the interface module to send a connection request response carrying the verification information to the user terminal so that the user terminal can store the verification information.
In accordance with an aspect of one or more embodiments of the present disclosure, there is provided a server for switching a TCP connection, including: a memory configured to store instructions; a processor coupled to the memory, the processor configured to perform a method according to any of the embodiments described above based on instructions stored in the memory.
According to an aspect of one or more embodiments of the present disclosure, there is provided a system for switching a TCP connection, including a server for switching a TCP connection as described in any of the above embodiments, and a user terminal configured to send a service request to the server; a service platform configured to provide the server with IP address information associated with the user terminal.
In some embodiments, the user terminal is further configured to update the verification information with the update information after receiving a verification success response carrying the update information.
In some embodiments, the user terminal is further configured to re-establish a TCP connection with the server upon receiving an authentication failure response.
In some embodiments, the user terminal is further configured to send a connection request to the server, and store the authentication information after receiving a connection request response carrying the authentication information.
According to another aspect of one or more embodiments of the present disclosure, there is provided a computer-readable storage medium, wherein the computer-readable storage medium stores computer instructions, which when executed by a processor, implement a method as described above in relation to any one of the embodiments.
Other features of the present disclosure and advantages thereof will become apparent from the following detailed description of exemplary embodiments thereof, which proceeds with reference to the accompanying drawings.
Drawings
In order to more clearly illustrate the embodiments of the present disclosure or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments or the prior art will be briefly introduced below, it is obvious that the drawings in the following description are only some embodiments of the present disclosure, and for those skilled in the art, other drawings can be obtained according to the drawings without inventive exercise.
Fig. 1 is an exemplary flow chart of a method for switching a TCP connection according to one embodiment of the present disclosure;
fig. 2 is an exemplary flow chart of a method for switching a TCP connection according to another embodiment of the present disclosure;
FIG. 3 is an exemplary block diagram of a server for switching TCP connections according to one embodiment of the present disclosure;
FIG. 4 is an exemplary block diagram of a server for switching TCP connections according to another embodiment of the present disclosure;
FIG. 5 is an exemplary block diagram of a server for switching TCP connections according to yet another embodiment of the present disclosure;
FIG. 6 is an exemplary block diagram of a system for switching TCP connections according to one embodiment of the present disclosure;
FIG. 7 is an exemplary flow diagram of TCP interactions, one embodiment of the disclosure;
fig. 8 is an exemplary flow diagram of TCP interactions in another embodiment of the disclosure.
Detailed Description
The technical solutions in the embodiments of the present disclosure will be clearly and completely described below with reference to the drawings in the embodiments of the present disclosure, and it is obvious that the described embodiments are only a part of the embodiments of the present disclosure, and not all of the embodiments. The following description of at least one exemplary embodiment is merely illustrative in nature and is in no way intended to limit the disclosure, its application, or uses. All other embodiments, which can be derived by a person skilled in the art from the embodiments disclosed herein without making any creative effort, shall fall within the protection scope of the present disclosure.
The relative arrangement of the components and steps, the numerical expressions, and numerical values set forth in these embodiments do not limit the scope of the present disclosure unless specifically stated otherwise.
Meanwhile, it should be understood that the sizes of the respective portions shown in the drawings are not drawn in an actual proportional relationship for the convenience of description.
Techniques, methods, and apparatus known to those of ordinary skill in the relevant art may not be discussed in detail but are intended to be part of the specification where appropriate.
In all examples shown and discussed herein, any particular value should be construed as merely illustrative, and not limiting. Thus, other examples of the exemplary embodiments may have different values.
It should be noted that: like reference numbers and letters refer to like items in the following figures, and thus, once an item is defined in one figure, further discussion thereof is not required in subsequent figures.
Fig. 1 is an exemplary flowchart of a method for switching a TCP connection according to an embodiment of the present disclosure. In some embodiments, the method steps of the present embodiment may be performed by a server for switching TCP connections.
In step 101, after receiving a service request sent by a user terminal, authentication information and service data are extracted from the service request, wherein the authentication information is associated with an IP address used by the user terminal when acquiring the authentication information.
In some embodiments, after receiving a connection request sent by the user terminal, the verification information is generated by using the IP address currently used by the user terminal. And sending a connection request response carrying the verification information to the user terminal so that the user terminal stores the verification information.
For example, when the user terminal sends the connection request SYN to the server, the server generates the verification information TSC according to the IP address currently used by the user terminal, and sends the TSC to the user terminal through the connection request response.
In step 102, the authentication information is authenticated using the IP address currently used by the user terminal.
In step 103, in case of a failure of the authentication, further IP address information associated with the user terminal is obtained from the service platform.
In step 104, the authentication information is re-authenticated using each of the other IP addresses, respectively.
In step 105, in case of successful re-verification, the service data is sent to the corresponding application server.
In some embodiments, after the re-authentication is successful, the update information is also generated using the IP address currently used by the user terminal. And sending a verification success response carrying the updating information to the user terminal so that the user terminal updates the verification information by using the updating information.
For example, when the user terminal obtains the TSC, the IP address used by the user terminal is IP1, and when the user terminal sends a service request to the server, the TSC is carried in the service request, and at this time, the IP address used by the user terminal is IP2, and the TSC is verified by using IP2, which may result in a failure in verification. In this case, the server obtains other IP addresses associated with the user terminal, such as IP1, IP3, from the service platform. Next, the server re-verifies the TSC using IP1, IP3, respectively. And when the TSC is verified again by using the IP1, the verification is successful, so that the service data carried in the service request can be sent to the corresponding application server. In addition, the address IP2 currently used by the user terminal is further used for generating new verification information TSC, and the new verification information TSC is issued to the user terminal, so that the user terminal can update the verification information.
In the method for switching a TCP connection provided in the above embodiment of the present disclosure, when the IP address currently used by the user terminal is not verified, the server may query another IP address of the user terminal from the service platform, and perform re-verification according to the queried IP address. Therefore, even if the IP address of the user terminal changes, the rapid switching of the TCP connection can still be realized, and the influence of network switching on service experience is reduced.
Fig. 2 is an exemplary flowchart of a method for switching a TCP connection according to another embodiment of the present disclosure. In some embodiments, the method steps of the present embodiment may be performed by a server for switching TCP connections.
In step 201, after receiving a service request sent by a user terminal, authentication information and service data are extracted from the service request, wherein the authentication information is associated with an IP address used by the user terminal when acquiring the authentication information.
In step 202, the authentication information is authenticated using the IP address currently used by the user terminal.
In case the verification is successful, step 203 is executed; in case the verification fails, step 204 is performed.
In step 203, a verification success response is sent to the user terminal, and the service data is sent to the corresponding application server.
And the verification is successful, which indicates that the IP address of the user is not changed, so that the data can be directly forwarded to the corresponding application server. For example, a SYN-ACK packet is sent to the user terminal at this time to acknowledge the SYN and data.
In step 204, further IP address information associated with the user terminal is obtained from the service platform.
In step 205, the authentication information is re-authenticated using each of the other IP addresses, respectively.
In case the re-verification is successful, step 206 is performed; if the re-verification fails, step 208 is performed.
In step 206, the update information is generated by using the IP address currently used by the ue, and the authentication success response carrying the update information is sent to the ue, so that the ue updates the authentication information by using the update information.
For example, by sending a SYN-ACK packet to the user terminal to acknowledge the SYN, data, and updated authentication information.
In step 207, the service data is sent to the corresponding application server.
At step 208, the traffic data is discarded.
In step 209, an authentication failure response is sent to the user terminal so that the user terminal can reestablish the TCP connection.
For example, by sending a SYN-ACK packet to the user terminal to acknowledge only the SYN, the user terminal is to perform the normal flow of three-way handshake to establish the PCT connection.
Fig. 3 is an exemplary block diagram of a server for switching TCP connections according to one embodiment of the present disclosure. As shown in fig. 3, the server includes an interface module 31, an extraction module 32, a verification module 33, an address acquisition module 34, a re-verification module 35, and a data processing module 36.
The interface module 31 is configured to receive a service request sent by a user terminal.
The extracting module 32 is configured to extract, after the interface module 31 receives a service request sent by the user terminal, the authentication information and the service data from the service request, wherein the authentication information is associated with an IP address used by the user terminal when obtaining the authentication information.
The authentication module 33 is configured to authenticate the authentication information using the IP address currently used by the user terminal.
The address acquisition module 34 is configured to acquire further IP address information associated with the user terminal from the service platform in case of a failure of the authentication.
The re-authentication module 35 is configured to re-authenticate the authentication information with each of the other IP address information, respectively.
The data processing module 36 is configured to send the service data to the corresponding application server in case of successful re-verification.
In some embodiments, the data processing module 36 is further configured to drop the traffic data and instruct the interface module 31 to send an authentication failure response to the user terminal in case of failure of all re-authentications, so that the user terminal can reestablish the TCP connection.
In the server for switching TCP connection provided in the above embodiment of the present disclosure, when the IP address currently used by the user terminal is not verified, the server may query another IP address of the user terminal from the service platform, and perform re-verification according to the queried IP address. Therefore, even if the IP address of the user terminal changes, the rapid switching of the TCP connection can still be realized, and the influence of network switching on service experience is reduced.
In some embodiments, the data processing module 36 is further configured to, in case of successful verification, send the service data to the corresponding application server, instructing the interface module 31 to send a verification success response to the user terminal. That is, when the IP address of the user terminal is not changed, the service data is directly transmitted to the corresponding application server.
Fig. 4 is an exemplary block diagram of a server for switching TCP connections according to another embodiment of the present disclosure. Fig. 4 differs from fig. 3 in that, in the embodiment shown in fig. 4, an update module 37 is further included.
The updating module 37 is configured to generate the update information using the IP address currently used by the user terminal in case the re-authentication is successful. The interface module 31 is further configured to send an authentication success response carrying the update information to the user terminal, so that the user terminal updates the authentication information with the update information.
In some embodiments, as shown in FIG. 4, the server further includes a verification information generation module 38. The verification information generating module 38 is configured to generate verification information by using the currently used IP address of the user terminal after the interface module 31 receives the connection request sent by the user terminal, and instruct the interface module to send a connection request response carrying the verification information to the user terminal, so that the user terminal stores the verification information.
Fig. 5 is an exemplary block diagram of a server for switching TCP connections according to yet another embodiment of the present disclosure. As shown in fig. 5, the server includes a memory 51 and a processor 52.
The memory 51 is used for storing instructions, the processor 52 is coupled to the memory 51, and the processor 52 is configured to execute the method according to any one of the embodiments in fig. 1 or fig. 2 based on the instructions stored in the memory.
As shown in fig. 5, the server further includes a communication interface 53 for information interaction with other devices. Meanwhile, the device also comprises a bus 54, and the processor 52, the communication interface 53 and the memory 51 are communicated with each other through the bus 54.
The memory 51 may comprise a high-speed RAM memory, and may also include a non-volatile memory (non-volatile memory), such as at least one disk memory. The memory 51 may also be a memory array. The storage 51 may also be partitioned and the blocks may be combined into virtual volumes according to certain rules.
Further, the processor 52 may be a central processing unit CPU, or may be an application specific integrated circuit ASIC, or one or more integrated circuits configured to implement embodiments of the present disclosure.
The present disclosure also relates to a computer-readable storage medium, wherein the computer-readable storage medium stores computer instructions, and the instructions, when executed by a processor, implement a method according to any one of the embodiments shown in fig. 1 or fig. 2.
Fig. 6 is an exemplary block diagram of a system for switching TCP connections according to one embodiment of the present disclosure. As shown in fig. 6, the system includes a user terminal 61, a server 62, and a service platform 63. The server is the server for switching the TCP connection according to any one of the embodiments in fig. 3 to fig. 5.
The user terminal 61 is configured to send a service request to the server 62. The service request includes authentication information and service data, wherein the authentication information is associated with an IP address used by the user terminal when obtaining the authentication information.
The service platform 63 is configured to provide IP address information associated with the user terminal to the server 62.
In some embodiments, the user terminal 61 is further configured to update the verification information with the update information after receiving the verification success response carrying the update information.
In some embodiments, the user terminal 61 is further configured to re-establish the TCP connection with the server 62 upon receiving the authentication failure response.
In some embodiments, the user terminal 61 is further configured to send a connection request to the server, and store the authentication information after receiving a connection request response carrying the authentication information.
Fig. 7 is an exemplary flow diagram of TCP interactions, one embodiment of the present disclosure.
In step 701, the user terminal sends a connection request SYN to the server.
In step 702, the server generates authentication information for the IP address currently used by the user terminal.
For example, if the IP address currently used by the user terminal is IP1, the generated verification information TSC is: TSC ═ encrpt (IP1, srv _ secret). Where encrpt is the encryption function and srv _ secret is the encryption parameter of the server.
In step 703, the server sends a connection request response to the user terminal, the response information including the generated authentication information TSC.
That is, the response information is a SYNACK + TSC.
In step 704, the user terminal stores the TSC.
For example, the TSC is stored in the form of [ srv _ IP, TSC ], where srv _ IP is the server IP address that provides the TSC.
Next, the processing is performed according to the normal flow of the TCP connection.
Fig. 8 is an exemplary flow diagram of TCP interactions in another embodiment of the disclosure.
In step 801, a user terminal sends a service request to a server. The service request includes the authentication information TSC and service data.
For example, the traffic request is SYN + TSC + REQ.
In step 802, the server extracts the authentication information TSC and the service data from the service request.
In step 803, the server verifies the verification information using the IP address IP2 currently used by the user terminal.
That is, it is determined whether TSC is the same as encrpt (IP2, srv _ secret). It is assumed here that the user terminal changes the used IP address from IP1 to IP2 due to network handover, and the TSC fails to be verified because it is calculated using IP 1.
In step 804, in case of failure of the verification, an inquiry request is sent to the service platform, where the inquiry request carries the IP2 currently used by the user terminal.
The service platform sends other IP address information associated with the user terminal to the server at step 805.
For example, the service platform obtains the user terminal identifier according to the IP2, and queries out the associated other IP address information according to the user terminal identifier.
In step 806, the server performs re-authentication on the authentication information by using each IP address in the other IP address information.
For example, the other IP addresses associated with the user terminal are IP1 and IP3, the TSC is verified using IP1 and IP3, respectively. Since the TSC is calculated using IP1, the TSC may be obtained as encrpt (IP1, srv _ secret), and thus a conclusion may be drawn that the re-verification is successful.
In step 807, the server transmits the service data to the corresponding application server in case of successful re-verification.
The server calculates new authentication information new _ TSC using the IP2 currently used by the user terminal at step 808. That is, new _ TSC is encrpt (IP2, srv _ secret).
In step 809, the server sends a verification success response carrying the new _ TSC to the user terminal.
For example, the verification success response is SYNACK + new _ TSC + RESP.
In step 810, the user terminal updates the original TSC with new _ TSC.
Next, the general flow of the TCP connection is performed.
In some embodiments, after receiving the data in the SYN packet, the server may send other response data before the three-way handshake ends.
In some embodiments, the data of the user terminal is not acknowledged by the server within a predetermined time, and the data is retransmitted in an ACK packet.
In some embodiments, the functional unit modules described above can be implemented as a general purpose Processor, a Programmable Logic Controller (PLC), a Digital Signal Processor (DSP), an Application Specific Integrated Circuit (ASIC), a Field Programmable Gate Array (FPGA) or other Programmable Logic device, discrete Gate or transistor Logic, discrete hardware components, or any suitable combination thereof for performing the functions described in this disclosure.
It will be understood by those skilled in the art that all or part of the steps for implementing the above embodiments may be implemented by hardware, or may be implemented by a program instructing relevant hardware, where the program may be stored in a computer-readable storage medium, and the above-mentioned storage medium may be a read-only memory, a magnetic disk or an optical disk, etc.
The description of the present disclosure has been presented for purposes of illustration and description, and is not intended to be exhaustive or limited to the disclosure in the form disclosed. Many modifications and variations will be apparent to practitioners skilled in this art. The embodiment was chosen and described in order to best explain the principles of the disclosure and the practical application, and to enable others of ordinary skill in the art to understand the disclosure for various embodiments with various modifications as are suited to the particular use contemplated.
Claims (16)
1. A method for switching a TCP connection, comprising:
after receiving a service request sent by a user terminal, extracting verification information and service data from the service request, wherein the verification information is associated with an IP address used by the user terminal when obtaining the verification information;
verifying the verification information by using the IP address currently used by the user terminal;
acquiring other IP address information associated with the user terminal from a service platform under the condition of failed verification;
respectively utilizing each IP address in the other IP address information to verify the verification information again;
and under the condition of successful re-verification, sending the service data to a corresponding application server.
2. The method of claim 1, further comprising, in case of successful re-verification:
generating updating information by using the IP address currently used by the user terminal;
and sending a verification success response carrying the updating information to the user terminal so that the user terminal can update the verification information by using the updating information.
3. The method of claim 2, further comprising:
under the condition that the re-verification fails, discarding the service data;
and sending an authentication failure response to the user terminal so that the user terminal can reestablish the TCP connection.
4. The method of claim 1, further comprising:
and under the condition of successful verification, sending the service data to a corresponding application server, and sending a response of successful verification to the user terminal.
5. The method of any of claims 1-4, further comprising:
after receiving a connection request sent by a user terminal, generating verification information by using an IP address currently used by the user terminal;
and sending a connection request response carrying the verification information to the user terminal so that the user terminal stores the verification information.
6. A server for switching a TCP connection, comprising:
the interface module is configured to receive a service request sent by a user terminal;
the system comprises an extraction module, a service processing module and a verification module, wherein the extraction module is configured to extract verification information and service data from a service request after the service request sent by a user terminal is received by an interface module, and the verification information is associated with an IP address used by the user terminal when the verification information is acquired;
a verification module configured to verify the verification information using an IP address currently used by the user terminal;
an address acquisition module configured to acquire, from a service platform, other IP address information associated with the user terminal in the case of a failure in authentication;
a re-verification module configured to re-verify the verification information by using each IP address in the other IP address information, respectively;
and the data processing module is configured to send the service data to the corresponding application server under the condition that the re-verification is successful.
7. The server of claim 6, further comprising;
the updating module is configured to generate updating information by using the IP address currently used by the user terminal under the condition of successful re-verification;
the interface module is further configured to send a verification success response carrying the update information to the user terminal, so that the user terminal updates the verification information by using the update information.
8. The server of claim 7, wherein:
the data processing module is further configured to discard the service data and instruct the interface module to send a verification failure response to the user terminal so that the user terminal can reestablish the TCP connection when all the re-verifications fail.
9. The server of claim 6, wherein:
and the data processing module is also configured to send the service data to the corresponding application server under the condition of successful verification, and instruct the interface module to send a verification success response to the user terminal.
10. The server according to any one of claims 6-9, further comprising:
the verification information generation module is configured to generate verification information by using the currently used IP address of the user terminal after the interface module receives the connection request sent by the user terminal, and instruct the interface module to send a connection request response carrying the verification information to the user terminal so that the user terminal can store the verification information.
11. A server for switching a TCP connection, comprising:
a memory configured to store instructions;
a processor coupled to the memory, the processor configured to perform implementing the method of any of claims 1-5 based on instructions stored by the memory.
12. A system for switching a TCP connection, comprising a server for switching a TCP connection according to any of claims 6-11, and
a user terminal configured to send a service request to the server;
a service platform configured to provide the server with IP address information associated with the user terminal.
13. The system of claim 12, wherein:
the user terminal is further configured to update the verification information with the update information after receiving a verification success response carrying the update information.
14. The system of claim 12, wherein:
the user terminal is further configured to re-establish a TCP connection with the server upon receiving an authentication failure response.
15. The system of claim 12, wherein:
the user terminal is further configured to send a connection request to the server, and store the verification information after receiving a connection request response carrying the verification information.
16. A computer-readable storage medium, wherein the computer-readable storage medium stores computer instructions which, when executed by a processor, implement the method of any one of claims 1-5.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810951135.4A CN110855600B (en) | 2018-08-21 | 2018-08-21 | Method, device and system for switching TCP connection |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810951135.4A CN110855600B (en) | 2018-08-21 | 2018-08-21 | Method, device and system for switching TCP connection |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN110855600A CN110855600A (en) | 2020-02-28 |
| CN110855600B true CN110855600B (en) | 2021-08-27 |
Family
ID=69595029
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810951135.4A Active CN110855600B (en) | 2018-08-21 | 2018-08-21 | Method, device and system for switching TCP connection |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN110855600B (en) |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101128022A (en) * | 2006-08-18 | 2008-02-20 | 华为技术有限公司 | Terminal switching method and device, source access gateway address acquisition method and device |
| CN101784044A (en) * | 2009-01-21 | 2010-07-21 | 华为技术有限公司 | Address checking method and device and network system |
| CN102292962A (en) * | 2009-01-28 | 2011-12-21 | 高通股份有限公司 | Methods and apparatus related to address generation, transfer and/or verification |
| CN103716775A (en) * | 2012-09-29 | 2014-04-09 | 华为终端有限公司 | Data flow control method, related equipment and communication system |
| CN104469872A (en) * | 2013-09-13 | 2015-03-25 | 中国电信股份有限公司 | Cross-system data service bidirectional switching method, system and dual mode terminal |
| CN108173928A (en) * | 2017-12-26 | 2018-06-15 | 北京百度网讯科技有限公司 | Method, device, storage medium and terminal equipment for UDP data transmission |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080089305A1 (en) * | 2006-10-13 | 2008-04-17 | Huawei Technologies Co., Ltd. | System and method for broadband mobile access network |
| JP5090408B2 (en) * | 2009-07-22 | 2012-12-05 | インターナショナル・ビジネス・マシーンズ・コーポレーション | Method and apparatus for dynamically controlling destination of transmission data in network communication |
-
2018
- 2018-08-21 CN CN201810951135.4A patent/CN110855600B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101128022A (en) * | 2006-08-18 | 2008-02-20 | 华为技术有限公司 | Terminal switching method and device, source access gateway address acquisition method and device |
| CN101784044A (en) * | 2009-01-21 | 2010-07-21 | 华为技术有限公司 | Address checking method and device and network system |
| CN102292962A (en) * | 2009-01-28 | 2011-12-21 | 高通股份有限公司 | Methods and apparatus related to address generation, transfer and/or verification |
| CN103716775A (en) * | 2012-09-29 | 2014-04-09 | 华为终端有限公司 | Data flow control method, related equipment and communication system |
| CN104469872A (en) * | 2013-09-13 | 2015-03-25 | 中国电信股份有限公司 | Cross-system data service bidirectional switching method, system and dual mode terminal |
| CN108173928A (en) * | 2017-12-26 | 2018-06-15 | 北京百度网讯科技有限公司 | Method, device, storage medium and terminal equipment for UDP data transmission |
Non-Patent Citations (1)
| Title |
|---|
| 移动通信网络切换技术简述;黄俊钦等;《电信快报》;20030331(第3期);23-25 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN110855600A (en) | 2020-02-28 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US12120029B2 (en) | Method for implementing service continuity and related device | |
| EP3300331B1 (en) | Response method, apparatus and system in virtual network computing authentication, and proxy server | |
| EP2258126B9 (en) | Security for a non-3gpp access to an evolved packet system | |
| US12170899B2 (en) | Secure inter-mobile network communication | |
| EP3073705A1 (en) | Channel establishing method and apparatus | |
| CN105873055B (en) | Wireless network access authentication method and device | |
| CN109413649B (en) | Access authentication method and device | |
| CN110099427A (en) | A kind of method and system to distribution net equipment access network hotspot equipment | |
| CN105450582A (en) | Business processing method, terminal, server and system | |
| US11943213B2 (en) | Device and method for mediating configuration of authentication information | |
| CN116349197B (en) | Slice isolation method, device and system | |
| US9825951B2 (en) | Method and system for distributing service data | |
| WO2022237693A1 (en) | Method for authenticating nswo service, and device and storage medium | |
| CN109246160B (en) | Method, device, system and equipment for accessing internet application | |
| CN107820246B (en) | User authentication method, device and system | |
| CN116471590A (en) | Terminal access method, device and authentication service function network element | |
| CN110855600B (en) | Method, device and system for switching TCP connection | |
| CN107612831B (en) | A method and device for transmitting data message for accessing source station | |
| CN113162922B (en) | Client data acquisition method and device, storage medium and electronic equipment | |
| CN106973383B (en) | Distributed portal authentication method | |
| JP6272274B2 (en) | Network device, authentication system, and authentication method | |
| JP2018029233A (en) | Client terminal authentication system and client terminal authentication method | |
| CN109963280B (en) | Bidirectional authentication method, device and system, and computer readable storage medium | |
| CN111163466A (en) | Method for 5G user terminal to access block chain, user terminal equipment and medium | |
| CN115484600B (en) | Wireless access detection method, device, electronic device and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |