阅读说明：本技术 终端设备访问控制方法及装置和多媒体播控设备 (Terminal equipment access control method and device and multimedia broadcast control equipment ) 是由 赵盼 韩丹 于 2020-07-10 设计创作，主要内容包括：本发明实施例公开一种终端设备访问控制方法、终端设备访问控制装置以及多媒体播控设备。所述终端设备访问控制方法应用于一种包括嵌入式处理器的多媒体播控设备,多媒体播控设备还包括电连接嵌入式处理器的网络通信模块,终端设备访问控制方法例如包括：接收数据包；判断数据包是否来自网络通信模块；以及响应于确定数据包来自网络通信模块,根据数据包的包头信息确定与数据包对应的终端设备的标识信息,并根据标识信息对终端设备进行访问控制,其中终端设备通过网络通信模块连接至多媒体播控设备。本发明实施例能够实现多媒体播控设备对接入所述多媒体播控设备的网络通信模块的终端设备进行访问控制。(The embodiment of the invention discloses a terminal equipment access control method, a terminal equipment access control device and multimedia broadcast control equipment. The terminal device access control method is applied to a multimedia broadcast control device comprising an embedded processor, the multimedia broadcast control device further comprises a network communication module electrically connected with the embedded processor, and the terminal device access control method comprises the following steps: receiving a data packet; judging whether the data packet comes from a network communication module; and responding to the determination that the data packet comes from the network communication module, determining identification information of the terminal equipment corresponding to the data packet according to the packet header information of the data packet, and performing access control on the terminal equipment according to the identification information, wherein the terminal equipment is connected to the multimedia broadcast control equipment through the network communication module. The embodiment of the invention can realize that the multimedia broadcast control equipment performs access control on the terminal equipment of the network communication module accessed to the multimedia broadcast control equipment.)

1. A terminal device access control method is applied to a multimedia broadcast control device comprising an embedded processor, the multimedia broadcast control device further comprises a network communication module electrically connected with the embedded processor, and the terminal device access control method comprises the following steps:

receiving a data packet;

judging whether the data packet comes from the network communication module; and

and in response to the determination that the data packet comes from the network communication module, determining identification information of terminal equipment corresponding to the data packet according to packet header information of the data packet, and performing access control on the terminal equipment according to the identification information, wherein the terminal equipment is connected to the multimedia broadcast control equipment through the network communication module.

2. The terminal device access control method of claim 1, wherein the multimedia playback device further comprises a second network communication module, the second network communication module is electrically connected to the embedded processor,

the performing access control on the terminal device according to the identification information specifically includes:

acquiring a pre-stored identification information set;

judging whether target identification information matched with the identification information exists in the identification information set or not;

in response to determining that the target identification information matching the identification information does not exist in the identification information set, determining whether the data packet needs to be forwarded to the second network communication module according to the header information of the data packet; and

discarding the data packet in response to determining that the data packet needs to be forwarded to the second network communication module.

3. The terminal device access control method according to claim 2, further comprising:

in response to determining that the data packet does not need to be forwarded to the second network communication module, parsing the data packet and prompting to log in a system of the multimedia broadcast control device;

responding to the system successfully logging in the multimedia broadcast control equipment, and storing the identification information of the terminal equipment to the identification information set; or, in response to the unsuccessful login of the system of the multimedia broadcast control device, discarding the data packet.

4. The terminal device access control method according to claim 2, further comprising:

and in response to the target identification information matched with the identification information in the identification information set, processing the data packet, allowing the terminal device to communicate with the second network communication module, and allowing the terminal device to access the multimedia broadcast control device.

5. The access control method of the terminal device according to claim 2, wherein the network communication module is a first wifi module in an AP mode, and the second network communication module is at least one of a second wifi module in a station mode, an ethernet module, and a mobile communication module.

6. A terminal device access control device is applied to a multimedia broadcast control device comprising an embedded processor, the multimedia broadcast control device further comprises a network communication module electrically connected with the embedded processor, and the network control device comprises:

the receiving module is used for receiving the data packet;

the first judging module is used for judging whether the data packet comes from the network communication module; and

and the first response module is used for responding to the determination that the data packet comes from the network communication module, determining identification information of terminal equipment corresponding to the data packet according to packet header information of the data packet, and performing access control on the terminal equipment according to the identification information, wherein the terminal equipment is connected to the multimedia broadcast control equipment through the network communication module.

7. The terminal device access control apparatus of claim 6, wherein the multimedia playback control device further comprises a second network communication module, the second network communication module is electrically connected to the embedded processor,

the first response module specifically includes:

the acquiring unit is used for acquiring a pre-stored identification information set;

the judging unit is used for judging whether target identification information matched with the identification information exists in the identification information set or not;

a first response unit, configured to determine, in response to determining that the target identification information matching the identification information does not exist in the identification information set, whether the packet needs to be forwarded to the second network communication module according to the packet header information of the packet; and

a second response unit, configured to discard the data packet in response to determining that the data packet needs to be forwarded to the second network communication module.

8. The terminal device access control apparatus according to claim 7, further comprising:

the second response module is used for responding to the fact that the data packet does not need to be forwarded to the second network communication module, analyzing the data packet and prompting to log in a system of the multimedia broadcast control equipment; and

a third response module, configured to store the identification information of the terminal device in the identification information set in response to successfully logging in the system of the multimedia broadcast control device; or, in response to the system not successfully logging in the multimedia play control device, discarding the data packet.

9. The terminal device access control apparatus according to claim 7, further comprising:

and the fourth response module is used for responding to the target identification information matched with the identification information in the identification information set, processing the data packet, allowing the terminal equipment to be communicated with the second network communication module, and allowing the terminal equipment to access the system of the multimedia broadcast control equipment.

10. A multimedia broadcast control device, comprising an embedded processor and a network communication module electrically connected to the embedded processor, wherein the embedded processor is used for the terminal device access control method according to any one of claims 1 to 5.

Technical Field

The present invention relates to the field of network access control, and in particular, to a terminal device access control method, a terminal device access control apparatus, and a multimedia broadcast control device.

Background

In the field of LED display screen control, a multimedia broadcast control device is generally adopted to perform broadcast control on an LED display screen, and the multimedia broadcast control device is generally provided with a network communication module such as an ethernet module and a wifi AP module so that a client control terminal device accesses its own server or an operator via the ethernet module by accessing the wifi AP module.

However, in the prior art, a lawbreaker can access the server or the operator through the ethernet module as long as the lawbreaker can successfully access the wifi AP module, so that under the condition that a user currently accesses the operator through the wired communication module, the wifi AP module or the 4G communication module, and a data packet can reach the operator, if the lawbreaker successfully connects the wifi AP of the multimedia broadcast control device, the flow of the user can be stolen. Moreover, if the user sets up the server by himself, there is a risk that lawbreakers attack the server through the wifi AP module.

Therefore, how to protect the security of the server and prevent traffic theft by performing access control on the terminal device is a problem which needs to be solved urgently at present.

Disclosure of Invention

Therefore, to overcome at least some of the defects and shortcomings of the related art, embodiments of the present invention provide a terminal device access control method, a terminal device access control apparatus, and a multimedia broadcast control device.

On one hand, the method for controlling access to a terminal device provided in the embodiments of the present invention is applied to a multimedia broadcast control device including an embedded processor, the multimedia broadcast control device further including a network communication module electrically connected to the embedded processor, and the method for controlling access to a terminal device includes: receiving a data packet; judging whether the data packet comes from the network communication module; and responding to the determination that the data packet comes from the network communication module, determining identification information of terminal equipment corresponding to the data packet according to packet header information of the data packet, and performing access control on the terminal equipment according to the identification information, wherein the terminal equipment is connected to the multimedia broadcast control equipment through the network communication module.

In the above scheme, the terminal device access control method includes receiving a data packet, determining whether the data packet is from a network communication module, determining identification information of a terminal device corresponding to the data packet according to header information of the data packet in response to determining that the data packet is from the network communication module, and finally performing access control on the terminal device according to the identification information.

In an embodiment of the present invention, the multimedia broadcast control device further includes a second network communication module, where the second network communication module is electrically connected to the embedded processor, and the performing access control on the terminal device according to the identification information specifically includes: acquiring a pre-stored identification information set; judging whether target identification information matched with the identification information exists in the identification information set or not; in response to determining that the target identification information matching the identification information does not exist in the identification information set, determining whether the data packet needs to be forwarded to the second network communication module according to the header information of the data packet; and in response to determining that the data packet needs to be forwarded to the second network communication module, discarding the data packet.

In an embodiment of the present invention, the method for controlling access to a terminal device further includes: further comprising: in response to determining that the data packet does not need to be forwarded to the second network communication module, parsing the data packet and prompting to log in a system of the multimedia broadcast control device; responding to the system successfully logging in the multimedia broadcast control equipment, and storing the identification information of the terminal equipment; or, in response to the unsuccessful login of the system of the multimedia broadcast control device, discarding the data packet.

In an embodiment of the present invention, the method for controlling access to a terminal device further includes: and in response to the target identification information matched with the identification information in the identification information set, processing the data packet, allowing the terminal device to communicate with the second network communication module, and allowing the terminal device to access the multimedia broadcast control device.

In an embodiment of the present invention, the network communication module is a first wifi module in an AP mode, and the second network communication module is at least one of a second wifi module in a station mode, an ethernet module, and a mobile communication module.

In another aspect, an embodiment of the present invention provides an access control device for a terminal device, which is applied to a multimedia broadcast control device including an embedded processor, the multimedia broadcast control device further includes a network communication module electrically connected to the embedded processor, and the network control device includes: the receiving module is used for receiving the data packet; the first judging module is used for judging whether the data packet comes from the network communication module; and the first response module is used for responding to the determination that the data packet comes from the network communication module, determining identification information of terminal equipment corresponding to the data packet according to packet header information of the data packet, and performing access control on the terminal equipment according to the identification information, wherein the terminal equipment is connected to the multimedia broadcast control equipment through the network communication module.

In the above scheme, the terminal device access control apparatus first receives a data packet, then determines whether the data packet is from a network communication module, then determines, in response to determining that the data packet is from the network communication module, identification information of a terminal device corresponding to the data packet according to header information of the data packet, and finally performs access control on the terminal device according to the identification information, so that access control on the terminal device accessing a multimedia broadcast control device through the network communication module is realized, a traffic can be prevented from being stolen by an illegal user, and a server associated with the multimedia broadcast control device is protected from security.

In an embodiment of the present invention, the multimedia broadcast control device further includes a second network communication module, the second network communication module is electrically connected to the embedded processor, and the first response module specifically includes: the acquiring unit is used for acquiring a pre-stored identification information set; the judging unit is used for judging whether target identification information matched with the identification information exists in the identification information set or not; a first response unit, configured to determine, in response to determining that the target identification information matching the identification information does not exist in the identification information set, whether the packet needs to be forwarded to the second network communication module according to the packet header information of the packet; and a second response unit, configured to discard the data packet in response to determining that the data packet needs to be forwarded to the second network communication module.

In an embodiment of the present invention, the terminal device access control apparatus further includes: the second response module is used for responding to the fact that the data packet does not need to be forwarded to the second network communication module, analyzing the data packet and prompting to log in a system of the multimedia broadcast control equipment; the third response module is used for responding to the successful login of the system of the multimedia broadcast control equipment and storing the identification information of the terminal equipment to the identification information set; or, in response to the system not successfully logging in the multimedia play control device, discarding the data packet.

In an embodiment of the present invention, the terminal device access control apparatus further includes: and the fourth response module is used for responding to the target identification information matched with the identification information in the identification information set, processing the data packet, allowing the terminal equipment to be communicated with the second network communication module, and allowing the terminal equipment to access the system of the multimedia broadcast control equipment.

In another aspect, an embodiment of the present invention provides a multimedia broadcast control device, including an embedded processor and a network communication module electrically connected to the embedded processor, where the embedded processor is configured to execute the terminal device access control method according to any one of the foregoing embodiments.

One or more of the above technical solutions may have the following advantages or beneficial effects: the terminal equipment access control method and device and the multimedia play control equipment firstly receive a data packet, then judge whether the data packet comes from a network communication module, then respond to the fact that the data packet comes from the network communication module, determine the identification information of the terminal equipment corresponding to the data packet according to the header information of the data packet, and finally carry out access control on the terminal equipment according to the identification information.

Drawings

In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings needed to be used in the description of the embodiments are briefly introduced below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings based on these drawings without creative efforts.

Fig. 1 is a flowchart illustrating a method for controlling access to a terminal device according to a first embodiment of the present invention.

Fig. 2 is a detailed flowchart of step S14 in fig. 1.

Fig. 3 is a schematic structural diagram of a multimedia broadcast control system to which the terminal device access control method according to the first embodiment of the present invention is applied.

Fig. 4 is a detailed flowchart of a method for controlling access to a terminal device according to a first embodiment of the present invention.

Fig. 5 is a schematic block structure diagram of a terminal device access control apparatus according to a second embodiment of the present invention.

Fig. 6 is a schematic diagram of a unit structure of the first response module in fig. 5.

Detailed Description

The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.

[ first embodiment ] A method for manufacturing a semiconductor device

Fig. 1 is a terminal device access control method according to a first embodiment of the present invention. The terminal equipment access control method is applied to multimedia broadcast control equipment comprising an embedded processor, the multimedia broadcast control equipment further comprises a network communication module electrically connected with the embedded processor, and the terminal equipment access control method comprises the following steps:

s10, receiving the data packet;

s12, judging whether the data packet comes from the network communication module; and

and S14, responding to the determination that the data packet comes from the network communication module, determining identification information of terminal equipment corresponding to the data packet according to the packet header information of the data packet, and performing access control on the terminal equipment according to the identification information, wherein the terminal equipment is connected to the multimedia broadcast control equipment through the network communication module.

The identification information is, for example, Media Access Control (MAC) address information of the terminal device.

For the convenience of understanding the present invention, the following describes the access control method of the terminal device in the present embodiment in detail with reference to fig. 2, 3 and 4. The terminal device access control method of this embodiment is executed by an embedded processor of the multimedia broadcast control device. Wherein the embedded processor is, for example, an ARM embedded processor.

Fig. 3 is a multimedia broadcast control system, for example, including a multimedia broadcast control device 20 and a terminal device 30 electrically connected to a network communication module 26 of the multimedia broadcast control device 20. The multimedia playback device 20 can, for example, include a second network communication module 24, a network communication module 26, and an embedded processor 22 electrically connected between the second network communication module 24 and the network communication module 26. The network communication module 22 is, for example, a wifi module (hereinafter referred to as wifi AP module) in an AP (Access point) mode, and the second network communication module 24 is, for example, at least one of a wifi module, an ethernet module and a mobile communication module in a station mode. The mobile communication module includes a 4G communication module and a 5G communication module, which is not limited herein in the embodiments of the present invention. Of course, the network communication module 22 may not be limited to the wifi AP module, and may also be another network module capable of enabling the terminal device 30 to perform network connection through the wifi AP module, which is not specifically limited herein. The terminal device 30 is, for example, an electronic device such as a mobile phone, a notebook computer, a desktop computer, and the like that can access the hotspot network.

When the method for controlling access to a terminal device according to the embodiment of the present invention is executed, the embedded processor 22 first receives a data packet, then determines whether the data packet is from the network communication module 26, for example, a wifi AP module, and then, in response to determining that the data packet is from the network communication module 26 (that is, the data packet is sent by the terminal device 30 accessing the network communication module 26), determines identification information of the terminal device corresponding to the data packet, that is, the terminal device 30, according to header information of the data packet, and performs access control on the terminal device according to the identification information, where the identification information is MAC address information of the terminal device 30, and the terminal device is connected to the multimedia broadcast control device through the network communication module. In the technical scheme, access control is performed on the terminal device according to whether the data packet comes from the network communication module or not and according to the identification information of the terminal device corresponding to the data packet under the condition that the data packet comes from the network communication module, and compared with the prior art that the terminal device can be networked or access a user server through other network modules on the multimedia broadcast control device as long as the terminal device can access the first network communication module, the access control is performed on the terminal device in the embodiment of the invention, so that the access security of the multimedia broadcast control device can be improved.

In a specific embodiment of the present invention, as shown in fig. 2, the performing access control on the terminal device according to the identification information specifically includes: step S142, acquiring a pre-stored identification information set; step S144, judging whether the identification information set has target identification information matched with the identification information; step S146, in response to determining that the target identification information matching the identification information does not exist in the identification information set, determining whether the data packet needs to be forwarded to the second network communication module 24 according to the packet header information of the data packet; and step S148, in response to determining that the data packet needs to be forwarded to the second network communication module 24, discarding the data packet. In the technical scheme, the terminal device is determined to be an illegal user by determining that the identification information of the terminal device does not exist in the identification information set and the header information of the data packet indicates that the data packet needs to be forwarded to the second network communication module, so that the data packet is discarded, and thus, the safety problem of the user server caused by the fact that the illegal terminal device steals traffic by communicating with the second network communication module and attacks the user server can be prevented.

In a specific embodiment of the present invention, the method for controlling access to a terminal device further includes: in response to determining that the data packet does not need to be forwarded to the second network communication module 24, parsing the data packet, and prompting to log in a system of the multimedia broadcast control device 20, that is, an operating system of the multimedia broadcast control device (in the embodiment of the present invention, the operating system is, for example, an android operating system); in response to successfully logging in the system of the multimedia broadcast control device 20, storing the identification information of the terminal device 30 in the identification information set; or, in response to not successfully logging in the system of the multimedia play control device 20, discarding the data packet. In this technical solution, under the condition that it is determined that the data packet does not need to be forwarded to the second network communication module, the user is prompted to log in the system of the multimedia broadcast control device by parsing the data packet, so that an initial user can log in the system of the multimedia broadcast control device to become a legal user, and the identification information of the terminal device is stored into the identification information set while the log-in is successful, so that the terminal user can communicate with the second network communication module 24 and can access the operating system of the multimedia broadcast control device 20 when accessing the multimedia broadcast control device through the network communication module 26 next time.

In a specific embodiment of the present invention, the terminal device access control method further includes a system, in response to the target identification information matching the identification information in the identification information set, processing the data packet, allowing the terminal device 30 to communicate with the second network communication module 24, and allowing the terminal device 30 to access the multimedia broadcast control device 20. In this technical solution, when it is determined that the target identification information matched with the identification information exists in the identification information set, that is, when the terminal device is a valid user, the terminal device is allowed to communicate with a second network communication module, and the terminal device is allowed to access the system of the multimedia broadcast control device, thereby realizing effective access of the valid user.

Specifically referring to fig. 4, the method for controlling access to the terminal device includes:

the embedded processor 22 first receives the data packet, and then determines whether the data packet is from the wifi AP module, that is, whether the data packet is sent by the terminal device 30 connected to the wifi AP module of the multimedia broadcast control device 20;

if the embedded processor 22 determines that the data packet is not from the wifi AP module, the embedded processor 22 directly processes the data packet; if the data packet is determined to be from the wifi AP module, the embedded processor 22 determines, according to the packet header information of the data packet, the identification information of the terminal device corresponding to the data packet, for example, the MAC address information for uniquely identifying the terminal device 30;

then, the embedded processor 22 determines whether the MAC address information is stored in the multimedia broadcast control device 20, specifically, in this embodiment, the MAC address information of a legitimate user, that is, an authorized terminal device, is stored in the embedded processor 22 or a nonvolatile memory, such as a flash memory, electrically connected to the embedded processor 22, and when the embedded processor 22 executes this determination process, first, an identification information set pre-stored in the embedded processor 22 or the nonvolatile memory is obtained, and then, it is determined whether the identification information set has identification information matching the MAC address information of the terminal device 30;

then, in the case that the MAC address information is stored in the multimedia play control device 20, the embedded processor 22 processes the data packet and allows the terminal device 30 to communicate with other network modules of the multimedia play control device 20 except for the wifi AP module, such as a second communication module, and allows the terminal device 30 to log in the system of the multimedia play control device 22 to operate the multimedia play control device 22,

in the case that the MAC address information is not stored in the multimedia playback device 20, the embedded processor 22 determines whether the data packet needs to be forwarded to the second network communication module 24 according to the packet header information of the data packet. If the data packet needs to be forwarded to the second network communication module 24, the embedded processor discards the data packet, so that, in the case that it is determined that the terminal device 30 is an illegal user, by discarding the data packet, the connection between the terminal device 30 and the multimedia play control device 20 is disconnected, the terminal device 30 can be prevented from stealing user traffic, and the terminal device 30 can be prevented from accessing a server of the user, of course, the embedded processor 22 can also control to disconnect the connection between the terminal device 30 and the multimedia play control device 20 in the case of performing the discarding the data packet. If the embedded processor 22 determines that the data packet does not need to be forwarded to the second network communication module 24 according to the packet header information of the data packet, that is, the destination receiving address of the data packet corresponds to the wifi AP module, the embedded processor 22 analyzes the data packet, and prompts the user to log in a system of the multimedia broadcast control device. In response to a successful user login, indicating that the user is an initial user, the embedded processor 22 stores the MAC address information of the terminal device 30 (for example, the identification information set stored in the embedded processor 22 or the non-volatile memory), in which case, the terminal device 30 is a valid user, and in the case that the MAC address information is stored in the multimedia broadcast control device, the embedded processor allows the terminal device to communicate with other network modules except for the wifi AP module, for example, a second network communication module. If the user login fails, it indicates that the terminal device 30 is an illegal user, the embedded processor 22 discards the data packet, and in the case of discarding the data packet, the embedded processor 22 may control to disconnect the terminal device 30 from the multimedia broadcast control device 20.

It should be noted that, the identification information set may be pre-stored in the multimedia broadcast control device in the following manner: a user logs in the multimedia playing and controlling device through configuration software installed on a PC or a mobile terminal, such as Viplex express software of Norwa, connects a target terminal device with a wifi AP module of a display screen controller, and then stores an MAC address of the target terminal device in the multimedia playing and controlling device.

In summary, the terminal device access control method provided in the embodiments of the present invention first receives a data packet, then determines whether the data packet is from a network communication module, then determines, in response to determining that the data packet is from the network communication module, identification information of a terminal device corresponding to the data packet according to header information of the data packet, and finally performs access control on the terminal device according to the identification information, so that access control on a terminal device that accesses a multimedia broadcast control device through a network communication module is achieved, a traffic theft by an illegal user can be prevented, and a server associated with the multimedia broadcast control device is protected from being secure.

[ second embodiment ]

As shown in fig. 5, a second embodiment of the present invention provides a terminal device access control apparatus 200. The terminal device access control apparatus 200 is applied to a multimedia broadcast control device including an embedded processor, the multimedia broadcast control device further includes a network communication module electrically connected to the embedded processor, and the terminal device access control apparatus 200 includes, for example: a receiving module 202, a first determining module 204 and a first responding module 206.

Specifically, the receiving module 202 is configured to receive a data packet; the first determining module 204 is configured to determine whether the data packet comes from the network communication module; and the first response module 206 is configured to, in response to determining that the data packet comes from the network communication module, determine, according to packet header information of the data packet, identification information of a terminal device corresponding to the data packet, and perform access control on the terminal device according to the identification information, where the terminal device is connected to the multimedia broadcast control device through the network communication module.

In a specific embodiment of the present invention, the multimedia playing and controlling device further includes a second network communication module, and the second network communication module is electrically connected to the embedded processor. As shown in fig. 6, the first response module 206 specifically includes, for example: an acquisition unit 2062, a judgment unit 2064, a first response unit 2066, and a second response unit 2068.

Specifically, the obtaining unit 2062 is configured to obtain a pre-stored identification information set; the judging unit 2064 is configured to judge whether target identification information matching the identification information exists in the identification information set; the first response unit 2066 is configured to determine, in response to determining that the target identification information matching the identification information does not exist in the identification information set, whether the data packet needs to be forwarded to the second network communication module according to the header information of the data packet; and the second response unit 2068 is configured to discard the data packet in response to determining that the data packet needs to be forwarded to the second network communication module.

In a specific embodiment of the present invention, the terminal device access control apparatus further includes: the second response module is used for responding to the fact that the data packet does not need to be forwarded to the second network communication module, analyzing the data packet and prompting to log in a system of the multimedia broadcast control equipment; the third response module is used for responding to the successful login of the system of the multimedia broadcast control equipment and storing the identification information of the terminal equipment to the identification information set; or, in response to the system not successfully logging in the multimedia play control device, discarding the data packet.

For specific working procedures and technical effects among modules in the terminal device access control apparatus 200 in this embodiment, reference may be made to the related description of the foregoing first embodiment, and details are not repeated here.

In addition, it should be understood that the foregoing embodiments are merely exemplary illustrations of the present invention, and technical solutions of the embodiments can be arbitrarily combined and used without conflict between technical features and structures, and without departing from the purpose of the present invention.

In the embodiments provided in the present invention, it should be understood that the disclosed system, apparatus and/or method may be implemented in other ways. For example, the above-described apparatus embodiments are merely illustrative, and for example, the division of the units/modules is only one logical division, and there may be other divisions in actual implementation, for example, multiple units or modules may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, devices or units, and may be in an electrical, mechanical or other form.

The units/modules described as separate parts may or may not be physically separate, and parts displayed as units/modules may or may not be physical units, may be located in one place, or may be distributed on multiple network units. Some or all of the units/modules may be selected according to actual needs to achieve the purpose of the solution of the present embodiment.

In addition, each functional unit/module in the embodiments of the present invention may be integrated into one processing unit/module, or each unit/module may exist alone physically, or two or more units/modules may be integrated into one unit/module. The integrated units/modules may be implemented in the form of hardware, or may be implemented in the form of hardware plus software functional units/modules.

The integrated units/modules, which are implemented in the form of software functional units/modules, may be stored in a computer readable storage medium. The software functional unit is stored in a storage medium and includes several instructions for causing one or more processors of a computer device (which may be a personal computer, a server, or a network device) to execute some steps of the methods according to the embodiments of the present invention. And the aforementioned storage medium includes: various media capable of storing program codes, such as a usb disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk, or an optical disk.

Finally, it should be noted that: the above examples are only intended to illustrate the technical solution of the present invention, but not to limit it; although the present invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some technical features may be equivalently replaced; and such modifications or substitutions do not depart from the spirit and scope of the corresponding technical solutions of the embodiments of the present invention.