CN101742477B - Information processing system, device and method thereof - Google Patents

Abstract

The invention discloses information processing system, equipment and method for solving the problems of processing resource waste and transmission resource waste of different business processing equipment in the prior art. The information processing system comprises an information acquiring server and an information processing server, wherein the information acquiring server is used for acquiring the subscriber state information of a mobile subscriber in a mobile communication network; and the information processing server is used for searching the subscriber state information which is matched with subscription condition information indicated by a receiving party from the subscriber state information acquired by the information acquiring server and transmitting the found subscriber state information to the receiving party marked by a logo corresponding to the subscription condition information according to a corresponding relation between the logo of the stored receiving party and the subscription condition information indicated by the receiving party.

Description

Information processing system, device and method thereof

technical field

The present invention relates to the field of communication technology, in particular to an information processing system, equipment and method.

Background technique

At present, there are many kinds of service processing equipment in the mobile communication system, such as multimedia message service processing equipment, color ring service processing equipment, community short message service processing equipment, e-commerce service processing equipment, etc. Generally, the user required by different service processing equipment The status information is different.

In the prior art, as shown in Figure 1, it is a schematic diagram of information interaction between each service processing device and the information acquisition server, and the user status information required by each service processing device is collected and stored by the information acquisition server on the network side , and each service processing device requests to obtain the user status information it needs by sending a request message to the information obtaining server. Since the user state information will be updated, in order to ensure that each service processing device can obtain the updated user state information in time, each service processing device needs to frequently send a request message to the information acquisition server to obtain the user state information it needs, and the information The obtaining server also needs to frequently send the user state information obtained by itself to the corresponding service processing device according to the request messages frequently sent by the service processing device.

It can be seen from the above-mentioned sending method of user state information that if the user state information has not changed for a long period of time, that is, the user state information obtained by each service processing device does not need to be updated, on the one hand, each service processing device is still It is necessary to frequently request the information acquisition server to obtain the required user status information, which will cause waste of processing resources of the service processing equipment; on the other hand, the information acquisition server also needs to frequently send the request message according to the service processing equipment. The user status information obtained by itself is sent to the corresponding service processing device, which also causes a waste of transmission resources.

Contents of the invention

Embodiments of the present invention provide an information processing system, device and method to solve the problems of waste of processing resources and waste of transmission resources of various service processing devices in the prior art.

For this reason, the present invention adopts following technical scheme:

An information processing system, including an information acquisition server and an information processing server, wherein: the information acquisition server is configured to search for user status information that matches the subscription condition information indicated by the receiver in the user status information acquired by the information acquisition server , and according to the stored correspondence between the identifier of the recipient and the subscription condition information indicated by the recipient, the found user status information is sent to the recipient indicated by the identifier corresponding to the subscription condition information.

An information sending method, comprising: the information processing server searches the user state information obtained by the information acquisition server for user state information that matches the subscription condition information indicated by the receiver, and based on the session key information agreed with the client, Encrypt the found user state information, and send the encrypted user state information to the identifier corresponding to the subscription condition information according to the stored correspondence between the recipient's identifier and the subscription condition information indicated by the recipient. The recipient of the flag.

An information processing method, comprising: obtaining user state information of a mobile user in a mobile communication network; searching for user state information matching subscription condition information indicated by a recipient in the obtained user state information; and according to the stored identifier of the recipient The corresponding relationship with the subscription condition information indicated by the recipient is to send the found user status information to the recipient indicated by the identifier corresponding to the subscription condition information.

An information processing server, comprising: a search unit, configured to search for user status information that matches subscription condition information among user status information acquired by an information acquisition server; The indicated correspondence of the subscription condition information sends the user state information found by the search unit to the recipient indicated by the identifier corresponding to the subscription condition information.

In the embodiment of the present invention, a new device, that is, an information processing server, is added to the original information processing system, and the newly added information processing server, according to the corresponding relationship between the stored receiver's identifier and the subscription condition information indicated by the receiver, generates information in the information processing system. The acquisition server searches for user state information that matches the subscription condition information, and sends the found user state information to the receiver indicated by the identifier corresponding to the subscription condition information, so that the receiver, for example The service processing device does not need to frequently send request messages to the information processing server to obtain the user status information it needs, and the information acquisition server also needs to frequently send the user status information it obtains to the server according to the request messages frequently sent by the service processing device The corresponding service processing equipment solves the problems of waste of processing resources and waste of transmission resources of each service processing equipment in the prior art.

Description of drawings

FIG. 1 is a schematic diagram of information interaction between each service processing device and an information acquisition server in the prior art;

FIG. 2 is a schematic structural diagram of an information processing system provided by an embodiment of the present invention;

FIG. 3 is a schematic diagram of network elements and links for information acquisition server to provide user state information collection;

Fig. 4 is a schematic flow diagram of the specific process of the information processing server performing identity verification on the service processing device in the embodiment of the present invention;

FIG. 5 is a schematic diagram of a specific process flow for the information processing server to determine the subscription authority of the service processing device and authorize the service processing device according to the security level of the service processing device in the embodiment of the present invention;

FIG. 6 is a schematic diagram of a specific flow chart of the information processing server and the client using the first method to agree on a Share Key in an embodiment of the present invention;

FIG. 7 is a schematic diagram of a specific process of agreeing on a Share Key in a second manner between the information processing server and the client in an embodiment of the present invention;

FIG. 8 is a schematic flow diagram of a specific process of generating a Session Key in the first manner by the information processing server and the client in an embodiment of the present invention;

Fig. 9 is a schematic flow diagram of a specific process for generating a Session Key in a second manner by an information processing server and a client in an embodiment of the present invention;

FIG. 10 is a schematic diagram of a specific flow for agreeing on a service session key between an information processing server and a service processing device in an embodiment of the present invention;

FIG. 11 is a schematic structural diagram of an improved information processing system provided by an embodiment of the present invention;

FIG. 12 is a schematic diagram of a specific flow for processing user status information by the improved system provided by the embodiment of the present invention for service A;

FIG. 13 is a schematic flowchart of the process of processing user status information by the improved system provided by the embodiment of the present invention for service B;

FIG. 14 is a schematic flowchart of the process of processing user status information by the improved system provided by the embodiment of the present invention for the C service;

FIG. 15 is a schematic diagram of a specific flow of notification of user status information by the C service processing device;

FIG. 16 is another specific flowchart of processing user status information by the improved system provided by the embodiment of the present invention for service C.

Detailed ways

Embodiments of the present invention provide an information processing system, device and method to solve the problems of waste of processing resources and waste of transmission resources of various service processing devices in the prior art.

The main realization principles, specific implementation modes and corresponding beneficial effects that can be achieved of the technical solutions of the embodiments of the present invention will be described in detail below in conjunction with each accompanying drawing.

As shown in Figure 2, the specific structural diagram of the information processing system provided by the embodiment of the present invention includes:

An information acquisition server 21, configured to acquire user status information of mobile users in the mobile communication network;

The information processing server 22 is configured to search for user status information that matches the subscription condition information among the user status information acquired by the information acquisition server 21, and according to the stored correspondence between the identifier of the recipient and the subscription condition information indicated by the recipient , sending the found user state information to the receiver 23 indicated by the identifier corresponding to the subscription condition information.

The receiver 23 may be a service processing device or a client.

In the information processing system provided by the embodiment of the present invention, since the subscription condition is set for the user state information to be obtained by the receiver 23, only the user state information obtained by the information processing server 22 from the information acquisition server 21 can be found to be related to the subscription. Only when the condition matches the user status information, the information processing server 22 will actively send the found user status information to the receiver 23 . It can be seen that, in the information processing system provided by the embodiment of the present invention, when the receiver 23 is a service processing device, the service processing device does not need to frequently send requests to the information processing server 22 to obtain user status information required by itself. information; and the information processing server 22 does not need to frequently send the user status information obtained by the information acquisition server 21 to the service processing device according to the request message frequently sent by the service processing device, thereby saving the processing resources of the service processing device and transmitting resource.

For the system provided by the present invention, in order to make the information processing process of the system more secure and perfect, the embodiment of the present invention also improves the functions respectively realized by the three components of the system, as follows:

1. Improvements have been made to the information acquisition server 21. The information acquisition server 21 provided by the embodiment of the present invention can, but is not limited to, use the following two methods to obtain user status information of mobile users in the mobile communication network:

1. A method of directly obtaining user status information of mobile users in the mobile communication network;

When adopting this method, what the information acquisition server 21 obtains is all user state information of each mobile user in the mobile communication network, thereby can guarantee that the user state information required by any service processing equipment can pass through the information processing server 22 from the information Obtained from the user status information obtained by the acquisition server 21.

2. A method of acquiring user status information of mobile users in the mobile communication network according to the stored subscription content information of each service processing device.

When this method is adopted, what the information acquisition server 21 obtains is no longer all the user status information of each mobile user in the mobile communication network, but the information in the mobile communication network obtained according to the stored subscription content information of each service processing device. The user state information of some mobile users, or a part of the user state information of each mobile user, or a part of the user state information of some mobile users. The advantage of this method is that the information acquisition server 21 can obtain the user status information required by the recipient 23 in a targeted manner. Compared with the method 1, the processing resource of the information acquisition server 21 can be saved when the method 2 is adopted.

In addition, the user status information obtained by the information acquisition server 21 using any of the above two methods may be for all or part of the mobile users using high-impedance bridging, mirroring, TAP, optical splitter, and network elements according to the configuration strategy. It is obtained by actively reporting user status information for collection, and the collection point can be located on the link between signaling points, the link between a signaling point and a signaling transfer point, or a signaling point. As shown in Figure 3, in order to provide a schematic diagram of each network element and link for collecting user status information for the information acquisition server, the following only introduces commonly used links or network elements, and these commonly used links or network elements are respectively:

Link between BSC and MSC (I1), link between MSC and HLR (I4), link between MSC (I2), link between MSC and L/HSTP (I5), link between L/HSTP and ISTP (I8) ), the link between L/HSTP (I7), the link between ISTP and other operators/transfer providers (I10); the IP link between the media gateway (MG)/signaling gateway (SG) and MSC Server (I11); and MSC (I3), L/HSTP (I6) and ISTP equipment (I9).

2. The information processing server 22 has been improved, and the improvements are mainly reflected in:

1. The function of authenticating the business processing device is added: when the business processing device is connected to the information processing server 22 for the first time, the business processing device will send its own user name, password and other identity verification information to the information processing server for verification. storage, and subsequently when the business processing device sends a registration request to the information processing server 22, the information processing server 22 performs identity verification on the business processing device. The identity verification process is shown in FIG. 4 and mainly includes:

Step 41, the service processing device initiates a registration request to the information processing server 22;

Step 42, after receiving the registration request, the information processing server 22 returns to the service processing device a response message requesting the service processing device to provide authentication information such as user name and password;

Step 43, after receiving the above-mentioned response message, the service processing device sends its own identity verification information such as user name and password to the information processing server 22;

Step 44, the information processing server 22 judges whether these information are consistent with the identity verification information of the business processing device stored in the information processing server 22 according to the received identity verification information such as the user name and password of the business processing device, and if it is judged to be consistent , execute step 45, otherwise, execute step 46;

Step 45, the information processing server 22 stores the correspondence between the subscription condition information indicated by the service processing device and the identifier of the service processing device, and sends a successful registration message to the service processing device, and the registration process ends;

In step 46, a message of failure to register is sent to the service processing device, and the registration process ends.

Through the above steps, it can be seen that due to the increase of the process of verifying the identity of the business processing equipment, it can be guaranteed that the business processing equipment connected to the information processing server 22 is all business processing equipment with reliable identity information, thereby ensuring the system and user state information. Safety.

In addition, the service processing device successfully registered to the information processing server 22 can also be deregistered. Since the deregistration process is similar to the above registration process, it will not be repeated here.

2. Added the function of setting different subscription permissions for different business processing devices: In order to further ensure the security of user status information, the information processing server 22 can also determine the user status information subscription of the business processing device according to the security level of the business processing device Authorization, so that the subsequent service processing equipment can only obtain the user status information that is authorized according to the user status information subscription authority. The specific implementation flow chart of this process is shown in Figure 5, including:

Step 51, in the above-mentioned step 44, when the information processing server 22 judges that the received identity verification information such as the user name and password of the business processing device is consistent with the identity verification information of the business processing device stored in advance by the information processing server 22, the information The processing server 22 determines the security level information of the business processing device in the corresponding relationship between the business processing device ID and the security level information of the business processing device according to the identification of the business processing device;

Step 52, according to the security level information of the service processing device, and according to the corresponding relationship between the security level information of the service processing device and the user state information subscription authority, determine the user state information subscription authority corresponding to the service processing device;

Step 53, storing the correspondence between the subscription condition information indicated by the service processing device and the identifier of the service processing device, and sending a successful registration message to the service processing device;

Step 54, the information processing server 22 stores the subscription condition information and subscription content information indicated by the subscription request initiated by the service processing device;

Step 55, the information processing server 22 searches the user status information obtained by the information acquisition server 21 for the user status information authorized by the user status information subscription right;

Step 56, according to the subscription condition information of the service processing device, search for the user status information matching the subscription condition information in the found user status information;

Step 57: Send the found user status information that matches the subscription condition information of the service processing device to the receiver.

In the system provided by the embodiment of the present invention, when the recipient is a client, the information processing server 22 will directly send the found user status information to the client. Forwarding user state information can save system resources and ensure that the content of user state information will not be known by service processing equipment, but the implementation of this method requires the establishment of a new channel between the information processing server 22 and the client , so it is troublesome; and when the receiving party is a service processing device, the information processing server 22 first sends the user status information found to the service processing device, and then the service processing device sends the user status information sent by the information processing server 22 to The client can use the existing channel to send the user state information in this way, that is, use the channel between the information processing server 22 and the service processing device and the channel between the service processing device and the client to send the user state information. However, in this process, since the user status information will be sent to the service processing device, and the service processing device is an open device with low security, it is possible that the user status information in the service processing device may be leaked, thereby The problem that causes the content of the user's personal privacy in the user status information to be known by others.

Therefore, in order to solve the above problems, when the receiver is a service processing device, the embodiment of the present invention further improves the information processing server 22 in the above system:

3. The function of encrypting and protecting the user state information is added: that is, the information processing server 22 is also used to encrypt the user state information and send it to the service processing device according to the key information agreed with the client. The information processing server 22 can encrypt the user state information according to the key information agreed with the client, which can be to encrypt the user state information found; it can also be to encrypt the user state information obtained by the information acquisition server 21. When the user state information obtained by the information obtaining server 21 is encrypted, the security of the user state information stored in the system storage space can be guaranteed.

After the above improvement, the user state information received by the service processing device is encrypted user state information, and since the service processing device cannot decrypt the encrypted user state information, the content of the encrypted user state information is It will not be known by the business processing device. When the business processing device sends the encrypted user status information to the client that has the right to know the user status information, the client will encrypt the encrypted data according to the key agreed with the information processing server. After decrypting the user status information, the content of the user status information can be known.

It can be seen that, after the system provided by the embodiment of the present invention is improved in the above manner, the original channel can be used to send user status information, thereby avoiding the troublesome problem of establishing a new channel between the information processing server 22 and the client At the same time, since the user state information is encrypted, even if the user state information in the business processing device is leaked, the user's personal privacy information will not be known to others due to the encrypted protection of the user state information.

The above process of determining the key information between the information processing server and the mobile client can be divided into two specific processes: the initial key (Share Key) agreement process, and the session key (Session Key) generation process.

There are two ways to agree on the Share Key. The first way is for the user to use the client to agree on a password. The specific flow diagram of the Share Key agreement between the information processing server and the client is shown in Figure 6. :

Step 61, when the mobile user subscribes to the service provided by the service processing device through the client, the service processing device notifies the information processing server to send a random code to the client;

Step 62, the information processing server generates a random code, generates a Share Key according to a preset key generation rule, and stores the Share Key;

Step 63, the information processing server sends a message carrying the above random code to the client, the message type carrying the random code may be but not limited to a short message type;

Step 64, after receiving the message carrying the random code, the client extracts the random code from the message;

Step 65, based on the extracted random code, the client generates a key according to the key generation rule consistent with the key generation rule used by the information processing server (for example, it can use the same key generation rule provided by the encryption machine and the information processing server) to generate Share Key.

The second way is that the user uses a personal computer terminal (PC client) to make a Share Key agreement. The specific flow diagram of the information processing server and the client using this method to make a Share Key agreement is shown in Figure 7:

Step 71, when a mobile user subscribes to a service provided by a service processing device through a client, the service processing device notifies the information processing server to send a random code to the client, wherein the client is a client with a message receiving function;

Step 72, the information processing server generates a random code, generates a Share Key according to a preset key generation rule, and stores the Share Key;

Step 73, the information processing server sends a message carrying the random code to the client, the message carrying the random code may be but not limited to a short message or a multimedia message;

Step 74, after receiving the message carrying the random code, the client extracts the random code from the message;

Step 75, the client inputs the extracted random code into the PC client;

Step 76, the PC client generates a Share Key according to the key generation rules consistent with the key generation rules used by the information processing server (for example, the same key generation rules provided by the encryption machine and the information processing server can be used) to generate a Share Key, and send the The Share Key is notified to the client.

For the generation process of the session key (Session Key), the embodiment of the present invention provides the following two methods: the specific flow diagram of using the first method to generate the Session Key is shown in Figure 8, including:

Step 81, the client logs in to the business processing device;

Step 82, the client uses the Share Key to encrypt its identity verification information and then send it to the business processing device;

Step 83, the business processing device uploads the encrypted client identity verification information to the information processing server;

Step 84, the information processing server decrypts the encrypted client authentication information according to the Share Key;

Step 85, the information processing server judges whether the identity verification information of the client stored by itself is consistent with the identity verification information reported by the mobile client. Finish;

Step 86: According to the Share Key and the generated random code (which can be generated by the cipher machine of the information processing server itself, or a cipher machine installed outside the information processing server), the information processing server generates an Client's session key Session Key;

Step 87, the information processing server uses the Share Key to encrypt the feedback message containing the Session Key, and sends the feedback message to the business processing device, wherein the Session Key is valid during the current login of the client to the business processing device, and for Different clients that log in to the business processing device will generate different Session Keys correspondingly. The Session Key is the key information agreed between the client and the information processing server. The above feedback message can also include identity confirmation information Credit and timestamp information , the timestamp information is used to indicate the sending time of the feedback message, so as to prevent retransmission of the feedback message;

Step 88, the client decrypts the encrypted feedback information forwarded by the service processing device of the information processing server according to the Share Key to obtain the Credit and Session Key, and the process ends.

The subsequent processing process is: the information processing server uses the Session Key to encrypt the user state information, and sends the encrypted user state information to the service processing device, and the service processing device sends the encrypted user state information to the client, and the The client decrypts the encrypted user status information according to the Session Key to obtain the user status information. It can be seen that since the service processing device cannot know the Session Key, the above method can prevent user status information from being leaked from the service processing device.

The specific flowchart of generating Session Key in the second way is shown in Figure 9, including:

Step 91, when the information processing server finds the user status information that matches the subscription condition information in the user status information obtained by the information acquisition server, generate a random code (the random code can be set by the encryption machine of the information processing server itself, or set in generated by a cipher machine other than the information processing server);

Step 92, the information processing server generates the session key Session Key for the client according to the Share Key and the generated random code according to the preset session key generation rules;

Step 93, the information processing server uses the Session Key to encrypt the message containing the user status information to obtain an encrypted message. The encrypted message can also include timestamp information, which is used to indicate the sending time of the message, so as to avoid retransmission of the message;

Step 94, the information processing server sends an encrypted message containing at least user state information and a random code to the service processing device, and the service processing device sends the encrypted message and the random code to the corresponding client;

Step 95, the client generates a SessionKey according to the received random code and the pre-agreed Share Key according to the preset rules consistent with the rules used when the information processing server generates the Session Key, and uses the Session Key to decrypt the encrypted message , get user status information.

In addition, when the receiver is a client, the service processing device and the information processing server can also agree on service session key information, and the service session key information is used to perform service configuration information exchanged between the service processing device and the information processing server. Encryption, wherein the service configuration information includes user list information corresponding to the user status information that the service processing device needs to subscribe to, user authorization relationship information in the user list, and service personalization setting information set according to the user's personal preferences. The information processing server sends the found user state information corresponding to the service configuration information to the client according to the service configuration information, or can send the service content provided by the service processing device (corresponding to different service processing equipment, where the business content can include weather forecasts, news, business travel information, etc.) to the client. The specific flowchart of the above-mentioned agreed service session key information is shown in Figure 10, including:

Step 101, the service processing device generates a random code;

Step 102, the service processing device encrypts the message containing the random code by using the public key information in the key pair information (MP Key Pair) generated and sent by the information processing server;

Step 103, the service processing device uses the private key information in the key pair information (SP Key Pair) generated by itself to sign the encrypted message containing the random code and send it to the information processing server;

Step 104, the information processing server uses the public key information in the key pair information (SP Key Pair) generated and sent by the service processing device to verify the signature of the service processing device, if the verification passes, execute step 105, if not , execute step 110;

Step 105, the information processing server decrypts the encrypted message containing the random code according to the private key information in the key pair information (MP Key Pair) generated by itself, and obtains the random code;

Step 106, the information processing server generates the service session key Session Key 1 according to the random code and the preset service session key generation rules, and uses the key pair information (SP Key Pair) generated and sent by the service processing device The public key information in encrypts the business session key Session Key 1;

Step 107, the information processing server uses the private key information in the MP Key Pair information generated by itself to sign the encrypted message containing Session Key 1, and send the encrypted message to the service processing device;

Step 108: The business processing device uses the public key information in the key pair information (MP Key Pair) generated and sent by the information processing server to verify the signature of the information processing device. If the verification passes, execute step 109. If not, Execute step 110;

Step 109, the service processing device decrypts the message containing Session Key 1 according to the private key information in the key pair information (SP Key Pair) generated by itself, and obtains Session Key 1;

Step 110, the process ends.

The session key agreement between the information processing server and the service processing device, and the session key agreement between the information processing server and the user terminal can be used in combination to ensure that the information is transmitted in the system provided by the embodiment of the present invention. safety.

The above is the main content of improving the information processing system provided by the invention. In practical applications, a part of the above-mentioned improvement content can be realized through an improved information processing system, and all of the above-mentioned content can also be realized through an improved information processing system. Improvement content, if all the above-mentioned improvement content is realized through an improved information processing system, taking the receiver as an example of a business processing device, the specific structural diagram of the improved information processing system is shown in Figure 11, wherein the information acquisition The server contains:

The data interface unit is used to provide an interface for obtaining user status information of mobile users in the mobile communication network;

The user state information collection unit is used to collect the user state information of the mobile users in the mobile communication network through the data interface unit according to the subscription content information of each service processing device stored in the second storage unit;

The user state information filtering unit is used to filter the user state information collected by the user state information collection unit according to preset filtering rules, and retain valid user state information;

The first storage unit is used to store valid user status information retained after being screened by the user status information screening unit;

The information processing server includes:

The registration unit includes: a judging module, configured to judge whether the identity verification information provided by the business processing device is consistent with the identity verification information of the business processing device stored in the second storage unit, and if they are consistent, indicate the identity verification information of the business processing device The corresponding relationship between the subscription condition information of the service processing device and the identification of the service processing device is stored in the second storage unit; the security registration information determination module is used for the service processing device that the determination module determines that the identity verification information is consistent with the stored identity verification information, According to the identification of the business processing equipment, in the corresponding relationship between the identification of the business processing equipment stored in the second storage unit and the security level information of the business processing equipment, determine the security level information of the business processing equipment; The security level information determined by the registration information determination module determines the user status information subscription authority corresponding to the service processing equipment in the corresponding relationship between the security level information of the service processing equipment stored in the second storage unit and the user status information subscription authority; the registration response module, configured to return a successful registration message to the business processing device when the judging module determines that the identity verification information of the business processing device is consistent with the identity verification information of the business processing device stored in the second storage unit, and send a message to the business processing device when they are inconsistent. Process the message that the device returns registration failure;

The subscription request receiving unit is configured to receive the subscription request sent by the service processing device, and store the subscription condition information and subscription content information contained in the subscription request into the second storage unit;

The first search unit is used to search the user state information authorized by the user state information subscription authority determined by the subscription authority determination module in the user state information stored in the first storage unit;

The second search unit is configured to search for user state information matching the subscription condition information among the user state information found by the first search module according to the subscription condition information of the service processing device stored in the second storage unit ;

An encryption unit, configured to agree on key information with the client, store the key information, and encrypt the user state information found by the second search unit according to the key information agreed with the client;

A sending unit, configured to send the user state information encrypted by the encryption unit to the service processing device indicated by the identifier corresponding to the subscription condition information stored in the second memory;

The second storage unit is used to store the correspondence between the subscription content information of each service processing device received by the subscription request receiving unit, the identity verification information of the service processing device, the subscription condition information indicated by the service processing device, and the identification of the service processing device relationship, the corresponding relationship between the service processing device identifier and the security level information of the service processing device, the corresponding relationship between the security level information of the service processing device and the user status information subscription authority, etc., all or part of the functions realized by the second storage unit may also be independent of the It is implemented outside the information processing server and does not necessarily have to be included in the information processor.

In addition, the information processing server may also include a billing unit, which is used to formulate corresponding tariff policies for different user status information stored in the first storage unit, provide different billing methods for the calculation of fees, and use the user information stored in the first storage module. Status information generates bills and saves the bills, etc. According to actual needs, the functions of the information processing server or the information acquisition server can also be expanded. Since the functional modules such as the charging unit are not the focus of improvement of the system provided by the embodiment of the present invention, they will not be described again.

It should be noted that, in the system provided by the embodiment of the present invention, the user status information that the information processing server can provide for the service processing device can be but not limited to the following types:

User identification information, such as Mobile Station Integrated Services Digital Number (MSISDN, Mobile Station Integrated Services Digital Network) information, International Mobile Subscriber Identity (IMSI, International Mobile Subscriber Identity) information, etc.;

Location-related information, including cell/location area/routing area information, city/province information, country information, etc.; user event information, including periodic location update information, IMSI attach information, IMSI detach information, location update request information, phone paging Response information, SMS information, caller information, SMS paging response information, cell switching (non-idle state) information, roaming in (users from other countries/provinces/cities roaming to their own country/province/city) information, roaming out (users from this country/province/city roam to the country/province/city where the place of visit is located, roaming between countries/provinces/cities where the place of visit is located) information, roaming back (users from the country/province/city where the place of visit is located) City roaming (return to the country/province/city) information, 2G/3G wireless access network switching information, etc.;

Subscription validity period information;

Monitoring time period information;

Extended information, including user status information processed by statistics or analysis, or user status information obtained after summarizing the original user status information.

The information processing server in the system provided by the embodiment of the present invention supports the service processing device to subscribe to one or more types of user state information above.

Specifically, for the specific services provided by the mobile communication network operator, the following examples illustrate the specific implementation process of the system for processing user status information provided by the embodiment of the present invention. For the convenience of description, the following is completed according to each unit in the information processing server. The registration unit is called the access management unit, and the first search unit, the second search unit, the encryption unit, the sending unit, and the second storage unit are collectively called the information storage and analysis unit. It should be noted that when the service processing equipment corresponding to the service provided by the operator has a higher security level, the above information storage and analysis unit may not include an encryption unit, that is, there is no need to State information is encrypted.

1. The operator provides a service A, which is used to distribute some news, entertainment, Information such as weather forecasts are sent to users who have subscribed to service A in the city. For service A, the specific flow diagram of the system for processing user status information provided by the embodiment of the present invention is shown in Figure 12, including:

Step 121, the A service processing device corresponding to the A service sends a registration request to the access management unit;

Step 122, the access management unit returns a response to the service processing device A, requesting it to provide account information such as user name and password;

Step 123, A service processing device fills in relevant account information and submits it to the access management unit;

Step 124, the access management unit checks the account information of the service processing device A, and sets the access authority of the service processing device A to the user status information according to the security level of the service processing device A for the service processing device A that has passed the review;

Step 125, the access management unit returns a successful registration response message to the approved A service processing device;

Step 126, A service processing device sends subscription request information to the access management unit according to service needs, the information includes the list of user mobile phone numbers to be obtained, and the user's corresponding roaming and roaming events, for example, A business located in Beijing The processing device requests the access management unit to obtain the information that the user of service A in Beijing roams from Beijing to the roaming location, and the user roams back to Beijing from the roaming location;

Step 127, the access management unit authenticates the A service processing device, including the authentication of the registration information and access rights of the A service processing device, and for the user status information that the A service processing device can access, the A business processing equipment for authorization;

Step 128, the access management unit returns a subscription success response message to the A service processing device;

Step 129, the information acquisition unit collects the user state information from the I7 port, I1 or I4 port shown in Figure 3 according to the subscription content information indicated by the subscription request information, and submits the collected user state information to the information storage and analysis unit , the unit processes the user state information (including screening and filtering the user state information, etc.), and stores the processed user state information, wherein the user state information includes the user's location information, identification information, and event information , time information, etc.;

Step 1210, the information storage and analysis unit searches the stored user state information for the users in the list according to the subscription condition information of A service processing device, for example, finds in the stored user state information whether there is any information that the user has roamed out of the home city User status information related to the status of

Step 1211, after finding one or more user status information related to the status of the user roaming out of the home city in the stored user status information, the information storage and analysis unit will store the user status information of the user, including the identification (mobile phone number) Information, user roaming event information, and user roaming location information are sent to A service processing equipment;

Step 1212, the A service processing device updates the A service content to be sent to the user according to the received user state information, for example, when the A service processing device obtains the user's roaming state information and the corresponding roaming city information, it will The A service content containing the news, entertainment, weather forecast and other information of the original home is updated to the A service content containing the news, entertainment, weather forecast and other information of the user's current roaming city. status and the user status information related to the corresponding home city, the A service processing device will update the A service content according to the currently received user status information;

In step 1213, the A service processing device sends the updated A service content to the user in the roaming state.

2. The operator provides a B service, which is a service that provides information query on a platform based on voice, Internet, WAP, SMS, MMS, and location services. For example, users can query their location through this service. Information such as business travel information of a country, city or community. For the B service, the specific flowchart of the system processing the user status information provided by the embodiment of the present invention is shown in Figure 13, including:

Step 131, the B service processing device corresponding to the B service sends a registration request to the access management unit;

Step 132, the access management unit returns a response to the service processing device B, requesting it to provide account information such as user name and password;

Step 133, the B service processing device fills in relevant account information and submits it to the access management unit;

Step 134, the access management unit reviews the account information of the service processing device B, and sets the access authority of the service processing device B to the user status information for the service processing device B that has passed the review, and according to the security level of the service processing device B;

Step 135, the access management unit returns a successful registration response message to the approved B service processing device;

Step 136, the service processing device B sends subscription request information to the access management unit according to the business needs; for example, the information includes: user mobile phone number list 1 and international roaming and roaming event information of users in the list 1; The mobile phone number list 2 and the city roaming and roaming event information of the users in the list 2; the user mobile phone number list 3, the cell identification list, etc.

Step 137, the access management unit authenticates the B service processing device, including authentication of the registration information and access rights of the B service processing device, and for the user status information that the B service processing device can access, the B service processing device business processing equipment for authorization;

Step 138, the access management unit returns a subscription success response message to the B service processing device;

Step 139, the information acquisition unit collects the user state information from the I7 port, I1 or I4 port shown in Figure 3 according to the subscription content information indicated by the subscription request information, and submits the collected user state information to the information storage and analysis unit , the unit processes the user state information (including screening and filtering the user state information, etc.), and stores the processed user state information, wherein the user state information includes the user's location information, identification information, and event information , time information, etc.;

Step 1310, the information storage and analysis unit searches the stored user status information for the users in the list according to the subscription condition information of the service processing device B, for example, checks in the stored user status information whether there is any User status information related to country or city information;

Step 1311, after finding one or more user state information related to the country or city information that the user roamed to in the stored user state information, the information storage and analysis unit takes the user's user state information, including the identification (mobile phone number) information, user roaming event information, and user roaming location information are sent to the B service processing device;

Step 1312, the B service processing device updates the B service content to be sent to the user according to the received user status information;

Step 1313, the B service processing device sends the updated B service content to the client, and the process ends. For example, when the B service processing device obtains the user's roaming state information and the corresponding roaming country information, it sends the business travel information of the country the user is currently roaming to to the client; when the B service processing device obtains the user's roaming state information and the corresponding roaming city information, send the business travel information of the city the user is currently roaming to to the client; The business travel information of the community to be sent to the client.

3. The operator provides a C service, which integrates multiple communication methods such as voice (IVR), GPRS, and SMS, and covers three different forms (full real-time, quasi-real-time, and non-real-time) of customer communication needs, and realizes Internet and Seamless communication service between mobile networks. For the C service, the specific flow diagram of the system processing the user status information provided by the embodiment of the present invention is shown in Figure 14, including:

Step 141, the C service processing device corresponding to the C service sends a registration request to the access management unit;

Step 142, the access management unit returns a response to the C service processing device, requesting it to provide account information such as user name and password;

Step 143, the C service processing device fills in relevant account information and submits it to the access management unit;

Step 144, the access management unit reviews the account information of the C business processing device, and sets the access authority of the C business processing device to the user status information according to the security level of the C business processing device, and for the C business processing device that passes the review, Execute step 145, otherwise, the process ends;

Step 145, the access management unit returns a registration success response message to the C service processing device;

Step 146, the C service processing device sends subscription request information to the access management unit according to the service needs, for example, the information includes the city roaming and roaming event information of the users in the user mobile phone number list;

Step 147, the access management unit authenticates the C service processing device, including the authentication of the registration information and access rights of the C service processing device, and for the C service processing device can access the user status information, the C business processing equipment for authorization;

Step 148, the access management unit returns a subscription success response message to the C service processing device;

Step 149, the information acquisition unit collects the user state information from the I7 port, I1 or I4 port shown in Figure 3 according to the subscription content information indicated by the subscription request information, and submits the collected user state information to the information storage and analysis unit , the unit processes the user state information (including screening and filtering the user state information, etc.), and stores the processed user state information, wherein the user state information includes the user's location information, identification information, and event information , time information, etc.;

Step 1410, the information storage and analysis unit searches the stored user state information for the users in the list according to the subscription condition information of the C service processing device, for example, finds in the stored user state information whether there is any User status information related to city information;

Step 1411, after finding one or more user state information related to the city information that the user roamed to in the stored user state information, the information storage and analysis unit takes the user's user state information, including the identification (mobile phone number) Information, user roaming event information, and user roaming location information are sent to the C service processing device;

In step 1412, the C service processing device sends the user's roaming location information and the like to other clients authorized by the user according to the received user status information.

In the above steps, the C service processing device can also use the specific implementation process shown in Figure 15 to realize the notification of user status information, the process includes:

Step 151, C service processing device receives the status information of user A sent by the information processing server;

Step 152, when the C service processing device judges according to the state information of user A that user A has roamed to city 1, request the information processing server to obtain the user state information of each user on user A's contact list;

Step 153, the C business processing device determines the contact person in city 1 according to the user state information of each contact person on the contact list of user A sent by the information processing server;

Step 154, store the identification information of the contacts who are also in city 1 in user A's contact list in city 1;

Step 155, judging whether each contact person in the above-mentioned city 1 contact list is logged on the terminal computer, and according to the judgment result, determine the online contacts logged on the terminal computer and the offline contacts not logged on the terminal computer;

Step 156, the C business processing device sends the information that user A has come to city I to the determined offline contact by sending information that can be identified by the mobile device used by the contact (for example, by sending a short message), and sends the contact The information that can be recognized by the terminal computer that the person logs in sends the information that user A has come to city I to the determined online contact person, and the process ends;

When the security level of the business processing equipment is high, the information processing flow provided by the above embodiment does not need to encrypt the user status information; and when the security level of the business processing equipment is low, it is necessary to use the encryption provided in this embodiment. The encryption method encrypts the user status information. Taking the C business as an example, the specific application of the encryption method provided by the embodiment of the present invention in the information processing process is described below. As shown in Figure 16, the system provided by the embodiment of the present invention A schematic diagram of a specific flow of information processing, including:

Step 161, the C service processing device corresponding to the C service sends a registration request to the access management unit;

Step 162, the access management unit returns a response to the C service processing device, requesting it to provide account information such as user name and password;

Step 163, the C service processing device fills in relevant account information and submits it to the access management unit;

Step 164, the access management unit reviews the account information of the service processing device C, and sets the access authority of the service processing device C to the user status information according to the security level of the service processing device C for the service processing device C that has passed the review;

Step 165, the access management unit returns a successful registration response message to the approved C service processing device;

Step 166, when the mobile user subscribes to the service provided by the service processing device through the client, the service processing device notifies the analysis and storage unit to send a random code to the client, wherein the client is a client with a message receiving function;

Step 167, analyze the storage unit to generate a random code, and generate a Share Key according to the preset key generation rules, and store the Share Key for subsequent authentication of the client;

Step 168, the analysis storage unit sends a message carrying the random code to the client via the C service processing device, and the message type carrying the random code can be but not limited to a short message type;

Step 169, after receiving the message carrying the random code, the client extracts the random code from the message;

Step 1610, based on the extracted random code, the client generates a key according to the key generation rule consistent with the key generation rule used by the information processing server (for example, it can use the same key generation rule provided by the encryption machine as that used by the information processing server) to generate Share Key;

Step 1611, the C service processing device sends subscription request information to the access management unit according to the service needs, for example, the information includes the city roaming and roaming event information of the users in the user mobile phone number list;

Step 1612, the access management unit authenticates the C service processing device, including the authentication of the registration information and access rights of the C service processing device, and for the C service processing device can access the user status information, the C business processing equipment for authorization;

Step 1613, the access management unit returns a subscription success response message to the C service processing device;

Step 1614, the information acquisition unit collects the user state information from the I7 port, I1 or I4 port shown in Figure 3 according to the subscription content information indicated by the subscription request information, and submits the collected user state information to the information storage and analysis unit , the unit processes the user state information (including screening and filtering the user state information, etc.), and stores the processed user state information, wherein the user state information includes the user's location information, identification information, and event information , time information, etc.;

Step 1615, the information storage and analysis unit searches the stored user status information for the users in the list according to the subscription condition information of the C service processing device;

Step 1616, after the information storage and analysis unit finds one or more user state information related to the city information that the user has roamed from in the user state information acquired by the information acquisition server, generate a random code (the random code can be processed by the information generated by the cipher machine of the server itself, or by a cipher machine installed outside the information processing server);

Step 1617, the information storage analysis unit generates a session key Session Key for the client according to the preset configuration based on the Share Key and the generated random code;

Step 1618, the information storage and analysis unit uses the Session Key to encrypt the message containing the found user status information to obtain an encrypted message, which may also include timestamp information, which is used to indicate the sending of the message time to avoid retransmission of the message;

Step 1619, the information storage and analysis unit sends the encrypted message including at least the user status information and the random code to the service processing device, and the service processing device sends the encrypted message and the random code to the corresponding client;

Step 1620, the client generates a Session Key according to the received random code and the pre-agreed Share Key according to the preset rules consistent with the rules used when the information processing server generates the Session Key, and uses the Session Key to encrypt the message Decrypt to get user status information.

In addition, in the embodiment of the present invention, any method can be selected from the two agreed methods of Share Key shown in Figure 6 and Figure 7, and combined with the two ways of generating Session Key shown in Figure 8 and Figure 9 respectively, A total of 4 ways of encrypting the user state information can be obtained, which will not be repeated here.

The system provided by the embodiment of the present invention can not only be used to process the user state information required by the above-mentioned service processing equipment, but also can be used to process the user state information required by any service processing equipment using the system provided by the embodiment of the present invention. Within the protection scope of the present invention.

Correspondingly, an embodiment of the present invention provides an information processing method to solve the problem of waste of processing resources and waste of transmission resources of each service processing device in the prior art. State information; find the user state information that matches the subscription condition information in the user state information obtained by the information acquisition server; according to the corresponding relationship between the stored receiver's identifier and the subscription condition information indicated by the receiver, find the The user status information of the subscription condition information is sent to the receiver indicated by the identifier corresponding to the subscription condition information.

Preferably, in the method provided by the embodiment of the present invention, the user state information of the mobile user in the mobile communication network can be acquired according to the stored information of the subscribed content of each receiver.

Preferably, the above-mentioned receiver may be a client or a service processing device. When the receiver is a service processing device, in order to avoid leakage of user state information in the service processing device, resulting in the content of the user's personal privacy in the user state information For the problem of being known by others, the information processing server can also encrypt the user status information and send it to the service processing device according to the key information agreed with the client, and the user status information can be encrypted in the following two ways :

The first way: the information processing server encrypts the found user status information according to the session key information agreed with the client;

The second method: the information processing server encrypts and stores the user state information acquired by the information acquisition server according to the key information agreed with the client; decrypts the stored user state information by using the agreed key information; Use the agreed session key information to encrypt the found user status information that meets the subscription conditions.

Preferably, storing the corresponding relationship between the identifier of the recipient and the subscription condition information indicated by the recipient in the above method specifically includes: determining whether the identity verification information provided by the recipient is consistent with the pre-stored identity verification information of the recipient; And if they are consistent, store the correspondence between the subscription condition information indicated by the recipient and the identifier of the recipient.

Preferably, in the above method, searching for the user status information that matches the subscription condition information in the obtained user status information specifically includes: according to the identifier of the recipient, in the corresponding relationship between the identifier of the recipient and the security level information of the recipient, determine The receiver’s security level information; according to the determined security level information, the corresponding relationship between the receiver’s security level information and the user status information subscription authority is determined to determine the user status information subscription authority corresponding to the receiver; the obtained user status information According to the subscription condition information of the receiver, search for the user status information matching the subscription condition information in the found user status information.

Correspondingly, an embodiment of the present invention provides an information processing server, which specifically includes: a search unit, configured to search for user status information that matches subscription condition information among user status information acquired by the information acquisition server; a sending unit, configured to The stored correspondence between the identifier of the receiver and the subscription condition information indicated by the receiver sends the user status information found by the search unit to the receiver indicated by the identifier corresponding to the subscription condition information.

Preferably, the above-mentioned sending unit specifically includes: an obtaining module, configured to obtain the session key information agreed with the client; an encryption module, configured to, based on the session key information obtained by the obtaining module, search for the user status information found by the searching unit Encryption; a sending module, configured to send the user state information encrypted by the encryption module to the receiver indicated by the identifier corresponding to the subscription condition information.

Preferably, when the receiver is a service processing device, the information processing server provided in the embodiment of the present invention further includes: an encryption unit, configured to send the user state information encrypted by the encryption module to the subscription condition information in the sending module Before the corresponding service processing device, use the session key information agreed with the service processing device to encrypt the user state information encrypted by the encryption module.

Obviously, those skilled in the art can make various changes and modifications to the present invention without departing from the spirit and scope of the present invention. Thus, if these modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalent technologies, the present invention also intends to include these modifications and variations.

Claims (18)

1. an information processing system is characterized in that, comprises information acquisition services device, netscape messaging server Netscape, wherein:

The information acquisition services device is used for obtaining mobile communications network mobile subscriber's user state information;

Netscape messaging server Netscape; Be used for searching the user state information that the subscription conditional information with recipient indication is complementary at the user state information that said information acquisition services device obtains; And, the user state information that finds is sent to the recipient who is indicated with said subscription conditional information corresponding identification according to the corresponding relation of the indicated subscription conditional information of the recipient's of storage sign and recipient.

2. the system of claim 1 is characterized in that, said information acquisition services device obtains mobile subscriber's in the mobile communications network user state information according to each recipient's of storage subscribed content information.

3. the system of claim 1 is characterized in that, said recipient is client or service processing equipment.

4. the method for sending information based on the described information processing system of claim 1 is characterized in that, comprising:

Netscape messaging server Netscape is searched the user state information that the subscription conditional information with recipient indication is complementary in the user state information that said information acquisition services device obtains; Based on the session key information of client agreement; User state information to finding is encrypted, and

Corresponding relation according to the indicated subscription conditional information of the recipient's of storage sign and recipient sends to the recipient who is indicated with said subscription conditional information corresponding identification with the user state information after the encryption.

5. method as claimed in claim 4 is characterized in that, netscape messaging server Netscape and client agreement session key information specifically comprise:

First random code that netscape messaging server Netscape produces according to self and with the initial key information of client agreement, according to the session key create-rule of client agreement, generate session key information; And

Utilize said initial key information that the message that comprises said session key information is encrypted;

Message after netscape messaging server Netscape will be encrypted sends to client;

The message that the initial key information butt joint of client utilization and netscape messaging server Netscape agreement is received is deciphered, and obtains the session key information that comprises in this message.

6. method as claimed in claim 4 is characterized in that, netscape messaging server Netscape and client agreement session key information specifically comprise:

Second random code that netscape messaging server Netscape produces according to self and with the initial key information of client agreement, according to the session key create-rule of client agreement, generate session key information; And

The message that will comprise said second random code sends to client;

Client is resolved this message that receives, second random code that obtains comprising in this message; And

According to said second random code and with the initial key information of netscape messaging server Netscape agreement, according to the session key create-rule of Service Process Server agreement, generate session key information.

7. like claim 5 or 6 described methods, it is characterized in that client and netscape messaging server Netscape agreement initial key information specifically comprise:

Netscape messaging server Netscape according to the initial key create-rule of client agreement, the 3rd random code is carried out computing, obtain initial key information; And

The message that will comprise the 3rd random code sends to client;

Client is resolved this message that receives, the 3rd random code that obtains comprising in this message; And

According to the initial key create-rule of netscape messaging server Netscape agreement, said the 3rd random code is carried out computing, obtain initial key information.

8. method as claimed in claim 7 is characterized in that, the said message that comprises the 3rd random code is Multimedia Message or short message.

9. an information processing method is characterized in that, comprising:

Obtain mobile subscriber's in the mobile communications network user state information;

In the user state information that obtains, search the user state information that the subscription conditional information with recipient indication is complementary; And

Corresponding relation according to the indicated subscription conditional information of the recipient's of storage sign and recipient sends to the user state information that finds the recipient who is indicated with said subscription conditional information corresponding identification.

10. method as claimed in claim 9 is characterized in that, according to each recipient's who stores subscribed content information, obtains mobile subscriber's in the mobile communications network user state information.

11. method as claimed in claim 9 is characterized in that, said recipient is service processing equipment or client.

12. method as claimed in claim 9 is characterized in that, the corresponding relation of the subscription conditional information that storage recipient's sign and recipient are indicated specifically comprises:

Whether the authentication information that the judgement recipient provides is consistent with this recipient's who stores in advance authentication information; And

Under the situation of unanimity, the corresponding relation of the subscription conditional information that storage recipient's sign and recipient are indicated.

13. method as claimed in claim 9 is characterized in that, in the user state information that obtains, searches the user state information that the subscription conditional information with recipient indication is complementary, and specifically comprises:

Whether the authentication information that the judgement recipient provides is consistent with this recipient's who stores in advance authentication information;

Under the situation of unanimity,, in the corresponding relation of recipient's sign and safety level information, confirm this recipient's safety level information according to recipient's sign;

According to the safety level information of confirming, subscribe in the corresponding relation of authority at recipient's safety level information and user state information, confirm user state information subscription authority that should the recipient;

In the user state information that obtains, search said recipient's user state information and subscribe to the user state information that authority is authorized;

In the user state information that finds, search the user state information that is complementary with said subscription conditional information.

14. method as claimed in claim 9; It is characterized in that; Said recipient is a client; And, the user state information that finds is sent to the recipient who is indicated with said subscription conditional information corresponding identification specifically comprises according to the corresponding relation of the indicated subscription conditional information of the recipient's of storage sign and recipient:

The corresponding relation of the subscription conditional information that the service configuration information that sends according to the service processing equipment that obtains and the recipient's of storage sign and recipient are indicated sends to user state information corresponding with said service configuration information in the user state information that finds the client that is indicated with said subscription conditional information corresponding identification.

15. method as claimed in claim 14; It is characterized in that; The service configuration information that said service processing equipment sends is the service conversation key of service processing equipment utilization agreement, the service configuration information after the encryption of sending after said service configuration information is encrypted.

16. a netscape messaging server Netscape is characterized in that, comprising:

Search the unit, be used for searching and subscribe to the user state information that conditional information is complementary at the user state information that the information acquisition services device obtains;

Transmitting element is used for the corresponding relation according to the indicated subscription conditional information of the recipient's of storage sign and recipient, sends to the recipient who is indicated with said subscription conditional information corresponding identification with searching the user state information that the unit finds.

17. netscape messaging server Netscape as claimed in claim 16 is characterized in that, said transmitting element specifically comprises:

Obtain module, be used to obtain session key information with the client agreement;

Encrypting module is used for based on obtaining the session key information that module obtains, and encrypts searching the user state information that the unit finds;

Sending module is used for the corresponding relation according to the indicated subscription conditional information of the recipient's of storage sign and recipient, and the user state information after the encrypting module encryption is sent to the recipient who is indicated with said subscription conditional information corresponding identification.

18. netscape messaging server Netscape as claimed in claim 17 is characterized in that, said recipient is a service processing equipment, and said netscape messaging server Netscape also comprises:

Ciphering unit; Be used for user state information after sending module is encrypted encrypting module send to said subscription conditional information corresponding service treatment facility before; Utilize the session key information of arranging, the user state information after encrypting through encrypting module is encrypted with service processing equipment.

Images