CN116668097A - Mimicry HSS network element signaling processing method and system - Google Patents

Abstract

The application provides a method and a system for processing a mimicry HSS network element signaling, wherein the method comprises the following steps: receiving HSS network element signaling through the input agent distributor, and distributing the HSS network element signaling to a plurality of equivalent heterogeneous executors after copying a plurality of copies; carrying out service processing on the distributed HSS network element signaling through a plurality of equivalent heterogeneous executors, and inputting the obtained pending service processing result to the output proxy resolver; the output agent arbitrator performs mimicry arbitration according to a preset arbitration algorithm, and determines a target business processing result from a plurality of business processing results to be arbitrated. According to the technical scheme of the embodiment of the application, mimicry defense can be realized through a plurality of heterogeneous executors and resolvers, the security of HSS network element signaling is improved, and the network security is improved.

Description

Mimic HSS network element signaling processing method and system

technical field

The present invention relates to the technical field of network security, in particular to a method and system for processing mimic HSS network element signaling.

Background technique

IP Multimedia System (IP Multimedia Subsystem, IMS) is an important solution for the convergence of mobile and fixed networks. It is an important way to introduce differentiated services that integrate voice, data, and video. Its security is an important part of network security construction. . IMS introduces the Home Subscriber Server (HSS) functional entity. HSS is responsible for the management and maintenance of subscription data of various types of fixed and mobile broadband and narrowband access users, and supports IMS service user IMS data storage, authentication, authentication and addressing function.

With the development of IMS core network network deployment and application, the frequency of attacks against IMS core network is getting higher and higher, especially when attackers use unknown vulnerabilities and unknown backdoors of IMS core network element equipment to attack, making traditional defense methods useless , the security of HSS network element signaling cannot be guaranteed, causing major hidden dangers to network information security.

Contents of the invention

The present invention aims to solve at least one of the technical problems existing in the prior art. Therefore, the present invention proposes a mimic HSS network element signaling processing method and system, which can improve the reliability and security of HSS network element signaling and realize mimic defense.

In the first aspect, the embodiment of the present invention provides a mimic HSS network element signaling processing method, which is applied to a mimic HSS network element signaling processing system, and the mimic HSS network element signaling processing system includes an input agent distributor , a plurality of equivalent heterogeneous executives and an output proxy arbiter, the input proxy distributor communicates with the HSS network element, and the plurality of equivalent heterogeneous executives have different executive structures but the same service processing functions, so The simulated HSS network element signaling processing method includes:

receiving the HSS network element signaling through the input agent distributor, and distributing the multiple copies of the HSS network element signaling to multiple equivalent heterogeneous execution bodies;

Perform service processing on the distributed HSS network element signaling through multiple equivalent heterogeneous executives, and input the obtained pending service processing results to the output proxy arbiter;

The output proxy arbiter performs a pseudo-arbitration according to a preset adjudication algorithm, and determines a target business processing result from a plurality of pending business processing results.

According to some embodiments of the present invention, the execution body architecture includes a host machine and a virtual machine, and the hardware and operating system of the host machines of different equivalent heterogeneous execution bodies are different, and the different equivalent heterogeneous execution bodies The operating system platforms of the virtual machines of the execution body are different, and the multiple copies of the HSS network element signaling are distributed to multiple equivalent heterogeneous execution bodies, including:

determining a plurality of target heterogeneous executables from a plurality of equivalent heterogeneous executables;

Duplicating multiple copies of the HSS network element signaling according to the number of target heterogeneous executables;

Distributing the HSS network element signaling to each of the target heterogeneous execution entities.

According to some embodiments of the present invention, before receiving the HSS network element signaling through the input proxy distributor, the method further includes:

Obtaining a preset historical reference confidence degree, which belongs to the historical reference heterogeneous execution entity;

Based on the degree of similarity between the execution body architecture of the historical reference heterogeneous execution body and the execution body architecture of the equivalent heterogeneous execution body, an initial confidence degree of the equivalent heterogeneous execution body is determined.

According to some embodiments of the present invention, the output agent arbiter performs mimicry adjudication according to a preset adjudication algorithm, and determines a target business processing result from a plurality of pending adjudication business processing results, including:

Acquiring the target confidence degree sent by the target heterogeneous executive body, the target confidence degree is obtained by iterating multiple times of historical mimicry judgment judgment information based on the initial confidence degree, and the judgment information is used to indicate that the target is heterogeneous The security situation, system resource status, exception handling results, attack frequency and historical judgment results of the executive body when performing mimicry judgment;

Determining a plurality of executive body sets based on a plurality of said target heterogeneous executive bodies, and said pending business processing results output by said target heterogeneous executive bodies belonging to the same said executive body set are the same;

determining the sum of the target confidences of all the target heterogeneous executions in the execution set as the set confidence;

arbitrating the pending service processing result corresponding to the executive set with the highest set confidence as the target service processing result.

According to some embodiments of the present invention, after the determination of the target business processing result from the multiple pending business processing results, the method further includes:

Save the ruling information of this mimicry ruling;

Based on a preset period, the target heterogeneous executive executes weighted iterations according to the saved ruling information and the current target confidence to obtain a new target confidence.

According to some embodiments of the present invention, the mimic HSS network element signaling processing system further includes a feedback controller and a mimic scheduling module, after determining the target service processing result from the plurality of pending service processing results, The method also includes:

The output proxy arbiter sends the adjudication information of this mimicry adjudication to the feedback controller;

When the feedback controller determines at least one abnormal heterogeneous executive according to the ruling information of the current mimicry ruling, generating a first scheduling strategy and a second scheduling strategy;

Send the first scheduling policy to the mimic scheduling module, and the mimic scheduling module controls the abnormal heterogeneous executive body to go offline and clean up according to the first scheduling policy;

sending the second scheduling strategy to the input proxy distributor, and the input proxy distributor deletes the abnormal heterogeneous execution body from the optional equivalent heterogeneous execution body according to the second scheduling strategy .

According to some embodiments of the present invention, before the mimic scheduling module controls the offline and cleanup of the abnormal heterogeneous execution body according to the first scheduling policy, the method further includes:

Determine that the execution of the business carried by the abnormal heterogeneous executable is completed;

Or, dispatch the service carried by the abnormal heterogeneous executable to the equivalent heterogeneous executable without abnormality.

In the second aspect, the embodiment of the present invention provides a mimic HSS network element signaling processing system, which is used to execute the mimic HSS network element signaling processing method as described in the first aspect, the mimic HSS network element signaling Order processing systems include:

The input agent distributor is used to receive the HSS network element signaling, and distribute the HSS network element signaling to multiple equivalent heterogeneous execution bodies after copying multiple copies;

The equivalent heterogeneous executor is used to perform service processing on the distributed HSS network element signaling, and input the obtained service processing results to be adjudicated to the output proxy arbiter, wherein a plurality of the equivalent heterogeneous The executive structure of the executive body is different but the business processing function is the same;

The output proxy arbiter is configured to perform mimicry adjudication according to a preset adjudication algorithm, and determine a target business processing result from a plurality of pending adjudication business processing results.

In the third aspect, the embodiment of the present invention provides a pseudomorphic HSS network element signaling processing device, including one less control processor and a memory for communicating with the at least one control processor, and the memory stores data that can Instructions executed by the at least one control processor, the instructions are executed by the at least one control processor, so that the at least one control processor can execute the simulated HSS network element information as described in the first aspect The signaling processing method, or, including the pseudo-HSS network element signaling processing system as described in the second aspect.

In a fourth aspect, an embodiment of the present invention provides a computer-readable storage medium, which stores computer-executable instructions, and the computer-executable instructions are used to perform the pseudo-HSS network element signaling processing as described in the first aspect. method.

The mimic HSS network element signaling processing method according to the embodiment of the present invention has at least the following beneficial effects: the HSS network element signaling is received by the input agent distributor, and multiple copies of the HSS network element signaling are distributed to a plurality of said equivalent heterogeneous executive bodies; through said plurality of said equivalent heterogeneous executive bodies, the distributed said HSS network element signaling is processed, and the obtained service processing results to be adjudicated are input into said An output proxy arbiter; the output proxy arbiter performs a mimetic arbitration according to a preset arbitration algorithm, and determines a target business processing result from a plurality of pending business processing results. According to the technical solution of the embodiment of the present invention, mimic defense can be realized through multiple heterogeneous execution bodies and arbitrators, which improves the security of HSS network element signaling and network security.

Description of drawings

FIG. 1 is a schematic structural diagram of a mimic HSS signaling processing system provided by an embodiment of the present invention;

FIG. 2 is a flow chart of a pseudo-HSS network element signaling processing method provided by an embodiment of the present invention;

Fig. 3 is a flow chart of determining a target heterogeneous executive provided by another embodiment of the present invention;

Fig. 4 is a flow chart of determining the initial confidence provided by another embodiment of the present invention;

Fig. 5 is a flowchart of a mimetic ruling provided by another embodiment of the present invention;

Fig. 6 is a flow chart of updating confidence provided by another embodiment of the present invention;

Fig. 7 is a flow chart of deleting an abnormal heterogeneous executable provided by another embodiment of the present invention;

Fig. 8 is a flow chart of ensuring that services are not affected before deleting abnormal heterogeneous executives provided by another embodiment of the present invention;

Fig. 9 is a structural diagram of an apparatus for processing signaling of a simulated HSS network element provided by another embodiment of the present invention.

Detailed ways

Embodiments of the present invention are described in detail below, examples of which are shown in the drawings, wherein the same or similar reference numerals designate the same or similar elements or elements having the same or similar functions throughout. The embodiments described below by referring to the figures are exemplary only for explaining the present invention and should not be construed as limiting the present invention.

In the description of the present invention, it should be understood that the orientation descriptions, such as up, down, front, back, left, right, etc. indicated orientations or positional relationships are based on the orientations or positional relationships shown in the drawings, and are only In order to facilitate the description of the present invention and simplify the description, it does not indicate or imply that the device or element referred to must have a specific orientation, be constructed and operated in a specific orientation, and thus should not be construed as limiting the present invention.

In the description of the present invention, several means one or more, and multiple means more than two. Greater than, less than, exceeding, etc. are understood as not including the original number, and above, below, within, etc. are understood as including the original number. If the description of the first and second is only for the purpose of distinguishing the technical features, it cannot be understood as indicating or implying the relative importance or implicitly indicating the number of the indicated technical features or implicitly indicating the order of the indicated technical features relation.

In the description of the present invention, unless otherwise clearly defined, words such as setting, installation, and connection should be understood in a broad sense, and those skilled in the art can reasonably determine the specific meanings of the above words in the present invention in combination with the specific content of the technical solution.

Embodiments of the present invention provide a mimic HSS network element signaling processing method and system, wherein the mimic HSS network element signaling processing method includes: receiving the HSS network element signaling through the input proxy distributor, and converting the The HSS network element signaling is copied in multiple copies and distributed to multiple equivalent heterogeneous executives; the distributed HSS network element signaling is processed through multiple equivalent heterogeneous executives, and The obtained business processing results to be adjudicated are input to the output proxy arbiter; the output proxy arbiter performs pseudo-judgment according to a preset ruling algorithm, and determines the target business processing result from a plurality of the pending business processing results. According to the technical solution of the embodiment of the present invention, mimic defense can be realized through multiple heterogeneous execution bodies and arbitrators, which improves the security of HSS network element signaling and network security.

First, the structure of the simulated HSS network element signaling processing system of the present invention is exemplified. This example does not limit the structure of the system, but a specific implementation environment that can implement the technical solution of the present invention. Refer to FIG. 1 , FIG. 1 is a schematic structural diagram of a mimic HSS network element signaling processing system provided by the present invention, the system includes an input agent distributor 100, a plurality of equivalent heterogeneous executive bodies 101, an output agent arbiter 102, and a feedback controller 103 and the mimetic dispatching module 104, the input agent distributor 100 is communicatively connected with the HSS network element.

In some embodiments, the input proxy distributor 100 is configured to, when receiving service signaling, copy the received signaling message into multiple copies, and distribute the signaling to multiple equivalent heterogeneous execution entities 101; The equivalent heterogeneous executor 101 is used to perform business processing on the signaling message, and output the processing result to the output proxy arbiter 102; the output proxy arbiter 102 simulates the processing result of the equivalent heterogeneous executor 101 by using the arbitration algorithm Judgment, output the final execution result, and output the judgment information to the feedback controller 103; the feedback controller 103 sends the first scheduling strategy and cleaning instructions to the mimetic scheduling module 104 according to the ruling information, and the mimetic scheduling module 104 is responsible for this time. Heterogeneous execution body cleaning; the feedback controller 103 sends the second scheduling policy to the input agent distributor 100 at the same time, and deletes the equivalent heterogeneous execution body 101 that behaves abnormally from the distribution set of the agent distributor 100; the mimetic scheduling module 104 It is used to receive instructions from the feedback controller 103 and perform dynamic operations on the equivalent heterogeneous executors 101 based on the scheduling algorithm, including the scheduling of the equivalent heterogeneous executors 101 and the cleaning operation of the equivalent heterogeneous executors 101 in an abnormal state.

Exemplarily, multiple equivalent heterogeneous executive bodies 101 have different executive body structures but have the same service processing function, and the mimic HSS network element signaling processing system deploys N host machines of heterogeneous platforms, where N is a natural number greater than 1 , the host S={S _m |m=1,2,...M}, where S _m is the mth host, where each host is heterogeneous in hardware and operating system, and the hardware architecture can be It is X86 or ARM, and the operating system can be Centos, Ubuntu, Debian or Kylin; virtual machines under different operating system platforms are deployed on each host, and virtual machines K={K _n |n=1,2,... N}, where K _n is the nth virtual machine, the virtualization technology of the virtual machine can be KVM, and the containerization technology can be Docker. On the basis of the above, the equivalent heterogeneous executable body 101 is the nth virtual machine on the mth host machine, and the executable body T={T _mn |m=1,2,...M; n=1,2 ,...N}, where T _mn is the nth virtual machine on the mth host.

The control method of the embodiment of the present invention will be further described below based on the mimic HSS network element signaling processing system shown in FIG. 1 .

Referring to FIG. 2, FIG. 2 is a flow chart of a pseudo HSS network element signaling processing method provided by an embodiment of the present invention. The pseudo HSS network element signaling processing method includes but is not limited to the following steps:

S21, receiving the HSS network element signaling through the input agent distributor, copying multiple copies of the HSS network element signaling and distributing it to multiple equivalent heterogeneous execution bodies;

S22. Perform service processing on the distributed HSS network element signaling through multiple equivalent heterogeneous executives, and input the obtained pending service processing results to the output proxy arbiter;

S23. The output agent arbiter performs a pseudo-award according to a preset adjudication algorithm, and determines a target service processing result from multiple pending service processing results.

It should be noted that when the input agent distributor obtains the HSS network element signaling, it copies and distributes it to multiple equivalent heterogeneous executives. Based on the description of the above system structure, the functions of the equivalent heterogeneous executives are the same , but the architecture is different, so that the security, resource conditions, and attack conditions of each equivalent heterogeneous execution body are different, so different outputs can be obtained under the same input conditions, so as to realize the simulation of business processing results under different hardware .

It should be noted that after the output proxy arbiter obtains multiple business processing results to be adjudicated, it performs a mimetic adjudication according to the preset adjudication algorithm to obtain the final output response. The adjudication algorithm can perform multiple equivalent heterogeneous execution bodies Mimic adjudication, a preset adjudication algorithm, determines the final target business processing result. The adjudication algorithm can be based on the current security situation, system resource status, abnormal processing results, attack frequency and execution body's performance of the equivalent heterogeneous executive body. Information weighting parameters such as historical performance are used to iteratively judge and adjudicate. Through the technical solution of this embodiment, it is possible to simulate service processing through multiple equivalent heterogeneous executives, and perform mimicry arbitration through the output proxy arbiter, and simulate different processing scenarios of HSS network element signaling, thereby obtaining The optimal service processing results can realize mimic defense and improve the security of HSS network element signaling.

In addition, in one embodiment, referring to FIG. 3, step S22 shown in FIG. 2 also includes but is not limited to the following steps:

S31. Determine multiple target heterogeneous executables from multiple equivalent heterogeneous executables;

S32, copy multiple copies of HSS network element signaling according to the number of target heterogeneous executables;

S33. Distribute the HSS network element signaling to each target heterogeneous executive.

It should be noted that since the number of equivalent heterogeneous executives can be multiple, the input agent distributor can determine the specific number according to the actual mimicry requirements. For example, when selecting an executive body for specific distribution, the input agent distributor has already Know the configuration method of equivalent heterogeneous executives, so there is an executive pool T={T _mn |m=1,2,...M; n=1,2,...N} in the input agent distributor , where M is the number of host machines, N is the number of virtual machines; the input agent distributor dynamically selects k target heterogeneous executives from the executive pool to work, and the target heterogeneous executives can be expressed as Among them, i≤m, j≤n, and the specific value of k can be adjusted according to the actual situation. For example, in order to improve security, all equivalent heterogeneous executives are determined as target heterogeneous executives, or, in order to save resources, only Several are used as target heterogeneous executables. The specific value of k is not limited in this embodiment, and k may be a natural number greater than 1.

It should be noted that after determining k target heterogeneous executives, the input agent distributor copies the obtained HSS network element signaling into k shares, and sends a copy of HSS network element signaling to each target heterogeneous executive , so that the input of each target heterogeneous executive is the same, and k business processing results to be adjudicated are obtained after they process the same input.

In addition, in one embodiment, referring to FIG. 4, before performing step S21 shown in FIG. 2, the method further includes but is not limited to the following steps:

S41. Obtain a preset historical reference confidence degree, which belongs to the historical reference heterogeneous execution body;

S42. Based on the degree of similarity between the execution body structure of the historical reference heterogeneous execution body and the execution body structure of the equivalent heterogeneous execution body, determine an initial confidence degree of the equivalent heterogeneous execution body.

It should be noted that in order to realize the mimetic judgment, the confidence degree of each equivalent heterogeneous executive body can be used as the basis for the judgment. The higher the confidence degree is, the more credible the business processing results of the equivalent heterogeneous executive body are, and the higher the security is. . Based on this, the initial confidence of the equivalent heterogeneous executable can be determined as {ω ₁ ,ω ₂ ,... _ωM }. For example, the equivalent heterogeneous execution body is a host machine configured with different virtual machines, so the historical reference heterogeneous execution body with the same architecture can be queried from the historical information. The frequency, resource status, and exception handling results have certain similarities, and the corresponding historical reference confidence is determined as the initial confidence, so that the equivalent heterogeneous executive can provide the output proxy arbiter with an initial basis for mimetic adjudication.

In addition, in one embodiment, referring to FIG. 5, step S23 shown in FIG. 2 also includes but is not limited to the following steps:

S51. Obtain the target confidence degree sent by the target heterogeneous executive body. The target confidence degree is obtained by iterating the judgment information of multiple historical mimicry judgments based on the initial confidence degree. The judgment information is used to indicate the security of the target heterogeneous executive body when performing the mimicry judgment. Situation, system resource status, exception handling results, frequency of attacks and historical verdict results;

S52. Determine multiple execution body sets based on multiple target heterogeneous execution bodies, and the target heterogeneous execution bodies belonging to the same execution body set output the same business processing results to be adjudicated;

S53. Determine the sum of the target confidences of all target heterogeneous executables in the execution set as the set confidence;

S54. Adjudicate the pending service processing result corresponding to the executive set with the largest set confidence as the target service processing result.

It should be noted that, according to the description of the above-mentioned embodiments, after the initial confidence is obtained, the system can execute the mimic ruling of the HSS network element signaling, and the judgment information of the equivalent heterogeneous execution body can be determined according to the ruling information generated by each mimic ruling. The confidence level can be iterated to effectively improve the accuracy of the confidence level. Ruling information can be factors that have an impact on the ruling result, such as the security situation, system resource status, exception handling results, frequency of attacks, and historical ruling results when performing mimicry rulings. Those skilled in the art can also increase or decrease according to actual needs The content of the ruling information is not limited here. After the ruling information is obtained, a weighting coefficient can be set for each parameter of the ruling information, and weighted iterations can be performed on the basis of the current confidence level, so as to update the confidence level. It is worth noting that the value interval of the confidence degree is [0,1], which will not be repeated hereafter.

It should be noted that, in order to realize the mimetic ruling, the ruling algorithm in this embodiment is to superimpose the same confidence degree of the processing results, and the target heterogeneous executive is the equivalent heterogeneous executive selected for business processing simulation, although each The target heterogeneous executors are different in architecture, but at least two target heterogeneous executors may output the same pending business processing results. For example, if there are 2x+1 target heterogeneous executors running at the moment, Firstly, divide the target heterogeneous executives with consistent output results into an executive set G _k , and obtain the sequence {G ₁ , G ₂ ,...G _K ,...} of the executive set, K is a natural number, o _i = o _j , /> And, ∑|G _K |=2x+1, f _i represents the i-th target heterogeneous executive, f _j represents the j-th target heterogeneous executive, o is the target confidence, /> is a real number. On this basis, calculate the set confidence of each executive set G _k /> Then adjudicate the pending business processing result corresponding to the executive set with the largest set confidence as the target business processing result, thereby completing the mimetic ruling.

It should be noted that if there are two sets of executives with the same set confidence, that is, W _i =W _j , the result of one set is randomly selected as the target business processing result.

In addition, in one embodiment, referring to FIG. 6, after step S23 shown in FIG. 2 is performed, the method further includes but is not limited to the following steps:

S61. Save the ruling information of this mimicry ruling;

S62, based on a preset period, the target heterogeneous executive executes weighted iterations according to the saved ruling information and the current target confidence to obtain a new target confidence.

It should be noted that after each mimetic judgment is completed, the judgment information can be saved, and the target confidence can be weighted and iteratively updated according to the preset cycle. Of course, it can also be updated every time the judgment information is obtained. Specifically The update frequency can be set according to actual needs. By updating the target confidence, the security of equivalent heterogeneous executives can be better characterized, so that more accurate ruling results can be obtained in the subsequent mimicry judgment, and the security of HSS network element signaling can be improved.

In addition, in one embodiment, referring to FIG. 7, after step S23 shown in FIG. 2 is executed, the method further includes but is not limited to the following steps:

S71, the output agent arbiter sends the adjudication information of this mimicry adjudication to the feedback controller;

S72. When the feedback controller determines at least one abnormal heterogeneous executive according to the ruling information of the mimicry ruling, generate a first scheduling strategy and a second scheduling strategy;

S73. Send the first scheduling strategy to the mimic scheduling module, and the mimic scheduling module controls the abnormal heterogeneous execution body to go offline and clean up according to the first scheduling strategy;

S74. Send the second scheduling strategy to the input proxy distributor, and the input proxy distributor deletes the abnormal heterogeneous execution body from the optional equivalent heterogeneous execution body according to the second scheduling strategy.

It should be noted that, in order to realize mimic defense, the abnormal execution body can be cleaned. In this embodiment, after the output proxy arbiter outputs the judgment information, when the abnormal execution body is found, the abnormal alarm information is sent to the feedback control The abnormal alarm information can be carried in the ruling information or sent independently. After the feedback controller determines that there are abnormal heterogeneous executors, it sends the first scheduling policy to the mimic scheduling module, so that the mimic scheduling module responds to the first scheduling policy to log off the equivalent heterogeneous executor identified as the abnormal architecture executor. Clean up to prevent it from participating in the transmission of subsequent HSS network element signaling.

It should be noted that, in addition to cleaning the abnormal execution body, the feedback controller also sends the second scheduling policy to the input proxy distributor, so that according to the input proxy distributor response to the second scheduling policy, it will be determined as an abnormal heterogeneous execution body The equivalent heterogeneous execution body of is deleted from the execution body pool to avoid sending HSS network element signaling to it again.

In addition, in one embodiment, referring to FIG. 8, after step S73 shown in FIG. 7 is performed, the method further includes but is not limited to the following steps:

S81. Determine that the execution of the business carried by the abnormal heterogeneous executable is completed;

S82. Dispatch the service carried by the abnormal heterogeneous execution body to an equivalent non-abnormal heterogeneous execution body.

It should be noted that before going offline and cleaning the abnormal heterogeneous execution body, it is necessary to ensure that the business carried by the abnormal heterogeneous execution body is not affected. Equivalent heterogeneous executives, after completing the above operations, perform operations such as offline and cleaning of abnormal heterogeneous executives until the state of the arbiter returns to a stable and balanced state.

As shown in FIG. 9 , FIG. 9 is a structural diagram of an apparatus for processing signaling of a mimic HSS network element provided by an embodiment of the present invention. The present invention also provides a mimic HSS network element signaling processing device, including:

The processor 901 may be implemented by a general-purpose central processing unit (Central Processing Unit, CPU), a microprocessor, an application specific integrated circuit (Application Specific Integrated Circuit, ASIC), or one or more integrated circuits, and is used to execute Relevant programs to realize the technical solutions provided by the embodiments of the present application;

The memory 902 may be implemented in the form of a read only memory (Read Only Memory, ROM), a static storage device, a dynamic storage device, or a random access memory (Random Access Memory, RAM). The memory 902 can store operating systems and other application programs. When implementing the technical solutions provided by the embodiments of this specification through software or firmware, the relevant program codes are stored in the memory 902 and called by the processor 901 to execute the implementation of this application. The simulated HSS network element signaling processing method of the example;

The input/output interface 903 is used to realize information input and output;

The communication interface 904 is used to realize the communication interaction between the device and other devices, and the communication can be realized through a wired method (such as USB, network cable, etc.), or can be realized through a wireless method (such as a mobile network, WIFI, Bluetooth, etc.);

bus 905, for transferring information between various components of the device (such as processor 901, memory 902, input/output interface 903 and communication interface 904);

The processor 901 , the memory 902 , the input/output interface 903 and the communication interface 904 are connected to each other within the device through the bus 905 .

The embodiment of the present application also provides a storage medium, which is a computer-readable storage medium, and the storage medium stores a computer program, and when the computer program is executed by a processor, the above-mentioned method for processing mimic HSS network element signaling is implemented.

As a non-transitory computer-readable storage medium, memory can be used to store non-transitory software programs and non-transitory computer-executable programs. In addition, the memory may include high-speed random access memory, and may also include non-transitory memory, such as at least one magnetic disk storage device, flash memory device, or other non-transitory solid-state storage devices. In some embodiments, the memory optionally includes memory located remotely from the processor, and these remote memories may be connected to the processor via a network. Examples of the aforementioned networks include, but are not limited to, the Internet, intranets, local area networks, mobile communication networks, and combinations thereof. The device embodiments described above are only illustrative, and the units described as separate components may or may not be physically separated, and may be implemented so as to be located in one place, or may also be distributed to multiple network units. Part or all of the modules can be selected according to actual needs to achieve the purpose of the solution of this embodiment.

Those skilled in the art can understand that all or some of the steps and systems in the methods disclosed above can be implemented as software, firmware, hardware and an appropriate combination thereof. Some or all of the physical components may be implemented as software executed by a processor, such as a central processing unit, digital signal processor, or microprocessor, or as hardware, or as an integrated circuit, such as an application-specific integrated circuit . Such software may be distributed on computer readable media, which may include computer storage media (or non-transitory media) and communication media (or transitory media). As known to those of ordinary skill in the art, the term computer storage media includes both volatile and nonvolatile media implemented in any method or technology for storage of information, such as computer readable instructions, data structures, program modules, or other data. permanent, removable and non-removable media. Computer storage media includes, but is not limited to, RAM, ROM, EEPROM, flash memory or other memory technology, CD-ROM, digital versatile disk (DVD) or other optical disk storage, magnetic cartridges, tape, magnetic disk storage or other magnetic storage devices, or can Any other medium used to store desired information and which can be accessed by a computer. Furthermore, as is well known to those of ordinary skill in the art, communication media typically embody computer readable instructions, data structures, program modules, or other data in a modulated data signal such as a carrier wave or other transport mechanism, and may include any information delivery media .

The above is a specific description of the preferred implementation of the present invention, but the present invention is not limited to the above-mentioned embodiment, and those skilled in the art can also make various equivalent deformations or replacements without violating the spirit of the present invention. These equivalent modifications or replacements are all within the scope defined by the claims of the present invention.

Claims (10)

1. A mimic HSS network element signaling processing method, characterized in that it is applied to a mimic HSS network element signaling processing system, and the mimic HSS network element signaling processing system includes an input agent distributor, a plurality of etc. Valence heterogeneous executives and output proxy arbitrators, the input proxy distributor communicates with HSS network elements, multiple equivalent heterogeneous executives have different executive structures but the same business processing functions, and the mimic HSS Network element signaling processing methods include: receiving the HSS network element signaling through the input agent distributor, and distributing the multiple copies of the HSS network element signaling to multiple equivalent heterogeneous execution entities; Perform service processing on the distributed HSS network element signaling through multiple equivalent heterogeneous executives, and input the obtained pending service processing results to the output proxy arbiter; The output proxy arbiter performs a pseudo-arbitration according to a preset adjudication algorithm, and determines a target business processing result from a plurality of pending business processing results. 2. The mimic HSS network element signaling processing method according to claim 1, characterized in that, the execution body architecture includes a host machine and a virtual machine, and the host machines of different equivalent heterogeneous execution bodies The hardware and the operating system are different, and the operating system platforms of the virtual machines of the different equivalent heterogeneous execution bodies are different, and the multiple copies of the HSS network element signaling are distributed to multiple equivalent Heterogeneous executives, including: determining a plurality of target heterogeneous executables from a plurality of equivalent heterogeneous executables; Duplicating multiple copies of the HSS network element signaling according to the number of target heterogeneous executables; Distributing the HSS network element signaling to each of the target heterogeneous execution entities. 3. The pseudo HSS network element signaling processing method according to claim 2, characterized in that, before receiving the HSS network element signaling by the input agent distributor, the method further comprises: Obtaining a preset historical reference confidence degree, which belongs to the historical reference heterogeneous execution body; Based on the degree of similarity between the execution body architecture of the historical reference heterogeneous execution body and the execution body architecture of the equivalent heterogeneous execution body, an initial confidence degree of the equivalent heterogeneous execution body is determined. 4. The HSS network element signaling processing method of mimicry according to claim 3, characterized in that, the output proxy arbiter performs a mimetic arbitrator according to a preset adjudication algorithm, and from a plurality of business processing results to be adjudicated Identify target business process outcomes, including: Acquiring the target confidence degree sent by the target heterogeneous executive body, the target confidence degree is obtained by iterating multiple times of historical mimicry judgment judgment information based on the initial confidence degree, and the judgment information is used to indicate that the target is heterogeneous The security situation, system resource status, exception handling results, attack frequency and historical judgment results of the executive body when performing mimicry judgment; Determining a plurality of executive body sets based on a plurality of said target heterogeneous executive bodies, and said pending business processing results output by said target heterogeneous executive bodies belonging to the same said executive body set are the same; determining the sum of the target confidences of all the target heterogeneous executions in the execution set as the set confidence; arbitrating the pending service processing result corresponding to the executive set with the highest set confidence as the target service processing result. 5. The pseudo HSS network element signaling processing method according to claim 4, characterized in that, after said determining the target service processing result from a plurality of said pending service processing results, said method further comprises: Save the ruling information of this mimicry ruling; Based on a preset period, the target heterogeneous executive executes weighted iterations according to the saved ruling information and the current target confidence to obtain a new target confidence. 6. The HSS network element signaling processing method of mimicry according to claim 4, characterized in that, the HSS network element signaling processing system of said mimicry also includes a feedback controller and a mimicry dispatching module, in the described from multiple After the target business processing result is determined in the pending business processing results, the method further includes: The output proxy arbiter sends the adjudication information of this mimicry adjudication to the feedback controller; When the feedback controller determines at least one abnormal heterogeneous executive according to the ruling information of the current mimicry ruling, generating a first scheduling strategy and a second scheduling strategy; Send the first scheduling policy to the mimic scheduling module, and the mimic scheduling module controls the abnormal heterogeneous executive body to go offline and clean up according to the first scheduling policy; sending the second scheduling strategy to the input proxy distributor, and the input proxy distributor deletes the abnormal heterogeneous execution body from the optional equivalent heterogeneous execution body according to the second scheduling strategy . 7. The mimic HSS network element signaling processing method according to claim 6, characterized in that, before the mimic scheduling module controls the offline and cleaning of the abnormal heterogeneous execution body according to the first scheduling strategy, The method also includes: Determine that the execution of the business carried by the abnormal heterogeneous executable is completed; Or, dispatch the service carried by the abnormal heterogeneous executable to the equivalent heterogeneous executable without abnormality. 8. A pseudomorphic HSS network element signaling processing system, characterized in that, it is used to execute the pseudomorphic HSS network element signaling processing method described in any one of claims 1 to 7, the pseudomorphic HSS network element signaling processing method Order processing systems include: The input agent distributor is used to receive the HSS network element signaling, and distribute the HSS network element signaling to multiple equivalent heterogeneous execution bodies after copying multiple copies; A plurality of equivalent heterogeneous executives are used to perform service processing on the distributed HSS network element signaling, and input the obtained service processing results to be arbitrated to the output proxy arbiter, wherein the plurality of equivalent Heterogeneous executives have different executive structures but the same business processing functions; The output proxy arbiter is configured to perform mimicry adjudication according to a preset adjudication algorithm, and determine a target business processing result from a plurality of pending adjudication business processing results. 9. A simulated HSS network element signaling processing device, characterized in that it includes at least one control processor and a memory for communicating with the at least one control processor; the memory stores information that can be used by the at least one control processor An instruction executed by a control processor, the instruction is executed by the at least one control processor, so that the at least one control processor can execute the simulated HSS network element information according to any one of claims 1 to 7 command processing method. 10. A computer-readable storage medium, characterized in that, the computer-readable storage medium stores computer-executable instructions, and the computer-executable instructions are used to make a computer perform the operation described in any one of claims 1 to 7. A pseudomorphic HSS network element signaling processing method.