[go: up one dir, main page]

WO2008119273A1 - Method for releasing and downloading file, management server, terminal and system - Google Patents

Method for releasing and downloading file, management server, terminal and system Download PDF

Info

Publication number
WO2008119273A1
WO2008119273A1 PCT/CN2008/070277 CN2008070277W WO2008119273A1 WO 2008119273 A1 WO2008119273 A1 WO 2008119273A1 CN 2008070277 W CN2008070277 W CN 2008070277W WO 2008119273 A1 WO2008119273 A1 WO 2008119273A1
Authority
WO
WIPO (PCT)
Prior art keywords
terminal
user
server
file
message
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2008/070277
Other languages
French (fr)
Chinese (zh)
Inventor
Peng Hu
Xiangxin Yu
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tencent Technology Shenzhen Co Ltd
Original Assignee
Tencent Technology Shenzhen Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tencent Technology Shenzhen Co Ltd filed Critical Tencent Technology Shenzhen Co Ltd
Publication of WO2008119273A1 publication Critical patent/WO2008119273A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/06Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]

Definitions

  • P2P Peer-to-Peer
  • a P2P network is a distributed network in which users share some of the resources (processing power, storage capacity, network connectivity, printers, files, etc.) owned by their computers. These shared resources can be directly accessed by other users without the need of a network.
  • the user can be either a resource provider (Server) or a resource acquirer (Client), so the user is a peer-to-peer relationship.
  • P2P technology makes full use of a large number of computer resources at the edge of the network, including distributed storage space, CPU time, information content and other resources, thereby effectively reducing the load on centralized servers and improving the availability of services.
  • Each user is abstracted as a node in the network.
  • Each node in the P2P network is logically equivalent. That is, the server and the client are no longer clearly distinguished in the system, and data can be directly transmitted between the nodes in the system without Need to pass the intermediate server.
  • the peer-to-peer weakening of the P2P model even removes the dependence of the distributed nodes on the centralized server, breaking through the bottleneck of the server and enhancing the scalability of the network.
  • the user is connected to the management server and can be a shared user and a download user.
  • the role distinction is valid only in the one-way process of sharing or downloading.
  • a shared user can also be a download user of their non-shared content.
  • Figure 1 the operation flow chart of the file sharing system shown in Figure 1:
  • Step 101 and step 102 are the publishing process of the shared file:
  • Step 101 The shared user sends the shared information to the management server, where the shared information includes: shared user network connection information of the shared file, file name, file size, and file summary (refers to a fixed length of data obtained by processing the file according to a standard algorithm)
  • the digests obtained when using the same message digest algorithm are fixed-length (for example, 128 bits), and the digests obtained by different files have the same probability of being very small, so they can be used as file identifiers.
  • Common algorithms For example, MD5, SHA, etc.
  • the function of using the file digest is to perform verification, and the obtained file is obtained by the message digest algorithm, and then compared with the published digest, it can be judged whether the downloaded file is transmitted. Error), file fragmentation information, release time of shared files, etc.
  • Step 102 The management server saves the shared information published by the shared user in an appropriate data structure.
  • Steps 103 to 106 are the download process of the shared file:
  • Step 103 The download user initiates a shared file query request to the management server, where the request includes the file name of the shared file.
  • Step 104 The management server local query obtains shared user network connection information of one or more shared files.
  • Step 105 The management server feeds back to the download user the shared user network connection information of the one or more shared files.
  • Step 106 The download user establishes a connection with one or more shared users and starts sharing file transfers.
  • the process specifically sends a download request to one or more shared users, and one or more shared users feed back a connection request to start sharing file transfers.
  • this sharing mechanism has no user management and control mechanism, so the shared file can be Query and download from any user connected to the management server.
  • users can now set up their own private non-public intra-group servers by means of some public P2P platforms. Each member of the group will have its client's
  • the P2P access server address is set to a private, non-public intra-group server address, thus establishing a specific group of P2P sharing platforms.
  • the operation process is basically the same as the process shown in FIG. 1, except that the members in the group are required to preset a private non-public intra-group server address, and the sharing and downloading process will not be described here.
  • the prior art has built a private server so that users outside the group cannot know the existence of the private server.
  • the prior art also has the following problems:
  • A only wants to share files with users B and C. This method is still not implemented. Therefore, the existing technology only realizes the controllability of file sharing in a certain sense, and does not really implement the file sharing mode controlled by the user.
  • the present invention provides a file publishing and downloading method, a file sharing system, a management server, and a terminal.
  • the main technical solutions are as follows:
  • the present invention provides a file publishing method, the method comprising the following steps: a terminal for providing a downloadable file sends a first message to a first server, the first message carrying a file name of the downloadable file and at least one allowed to be downloaded The identifier of the user; the first server acquires network connection information of the terminal;
  • the first server saves the information of the downloadable file, including: a file name, network connection information of the terminal, and an identifier of at least one user who is allowed to download.
  • the present invention also provides a file downloading method, in which the first server saves information of at least one downloadable file, including: a file name, network connection information of the first terminal providing the downloadable file, and at least one The identity of the user who is allowed to download; this method includes the following steps:
  • the first server sends a first message to the second terminal, where the user corresponding to the second terminal is allowed to download the downloadable file, and the first message carries the file name of the downloadable file and the network connection information of the corresponding first terminal;
  • the second terminal downloads the downloadable file from the first terminal according to the network connection information of the first terminal.
  • the present invention provides a system for implementing file sharing, the system comprising: at least one first terminal providing a downloadable file, configured to send a first message to a first server, the first message carrying a file name of the downloadable file And an identification of at least one user who is allowed to download;
  • a first server configured to acquire network connection information of the first terminal, and save information of the downloadable file according to the first message from the first terminal, including: a file name, network connection information of the user terminal that provides the downloadable file, at least one The identifier of the user who is allowed to download, and sends a second message carrying the file name of the downloadable file and the network connection information of the corresponding first terminal;
  • At least one second terminal requesting to download the file configured to receive the second message from the first server, and download the downloadable file from the first terminal according to the network connection information of the first terminal carried by the received second message.
  • the present invention provides a file management server, the server includes the following unit: an uploading unit, configured to receive a first message sent by a terminal that provides a downloadable file, and obtain network connection information of the terminal, where the first message carries a downloadable file a file name and an identification of at least one user who is allowed to download;
  • a policy library configured to store information of the at least one downloadable file received by the uploading unit, including: a file name, network connection information of the terminal that provides the downloadable file, and an identifier of the at least one user that is allowed to download; a downloading unit, configured to receive a second message sent by the terminal that requests the download, where the second message carries the file name of the downloadable file and the identifier of the user requesting the download, and the query policy library, if the user requesting the download is allowed to download the file name corresponding to The downloadable file sends a message carrying the file name of the downloadable file and the network connection information of the corresponding terminal to the terminal requesting the download.
  • the invention also provides a terminal, the terminal comprising the following units:
  • a policy library configured to save information of at least one downloadable file, including a file name of the downloadable file, and at least one identifier of a user who is allowed to download the downloadable file,
  • the first unit is configured to send a first message to the first server, where the first message carries the file name of the downloadable file and the identifier of the at least one user that is allowed to download.
  • FIG. 2 is a structural diagram of a system for implementing file sharing controllable according to the present invention.
  • FIG. 3 is a flowchart of a shared file distribution according to Embodiment 1 of the present invention.
  • FIG. 4 is a flow chart of issuing a shared file for adding a temporary key according to Embodiment 2 of the present invention.
  • FIG. 5 is a flowchart of implementing a sharing invitation according to Embodiment 3 of the present invention.
  • FIG. 6 is a flowchart of downloading a shared file according to Embodiment 4 of the present invention.
  • FIG. 7 is a flowchart of downloading a shared file of a temporary key according to Embodiment 5 of the present invention.
  • FIG. 8 is a schematic structural diagram of a management server for implementing file sharing control according to Embodiment 6 of the present invention.
  • FIG. 9 is a schematic structural diagram of a terminal for implementing file sharing controllable according to Embodiment 7 of the present invention.
  • Mode for Carrying Out the Invention The embodiment of the present invention provides a P2P file sharing and downloading method and system with file access control function, and implements a sharing invitation mechanism on a controllable basis.
  • the invention is achieved by the following embodiments:
  • all users in the entire system can be either a user who downloads a shared file or a user who publishes a shared file, and the role distinction is valid only in the one-way process of sharing or downloading.
  • FIG. 2 it is a network system architecture diagram of the present invention; the system includes a login server 1, a management server 2, and a user terminal 3.
  • the management server 2 is also configured with a global access control policy base (Global Access-control Policy Information Base), which is used to store the identity of all users and the information required by the corresponding user identifier in the sharing control, and has users in it.
  • the management server is assisted in effective filtering when requesting to download the shared file; the user terminal 3 is configured to download the permission of the local access controller to the shared file.
  • the network system architecture adds a login server based on the original centralized/semi-distributed structure.
  • the login server is set up by the service provider and does not need to be set up by the user himself, and the login server can be used by all users.
  • Embodiment 1 see Figure 3, for the flow chart of the shared file:
  • Step 301 The shared user terminal 1 sends the ID (identification) of the shared user 1 and the network connection information of the shared user 1 to the login server through the network.
  • Step 302 The login server verifies whether the information is correct. If it is correct, the shared user 1 passes the verification, and sends the network connection information of the management server to the shared user terminal 1; if not, the process ends.
  • Step 303 The login server will share the ID of the user 1 and the shared user 1 network connection letter.
  • the information is sent to the management server; the management server saves this information accordingly.
  • Step 304 The shared user terminal 1 sends a file-sharing request message of the shared file A to the management server, where the message includes: a shared user identifier, a file name A of the shared file, and a file capable of downloading the shared file.
  • User ID such as User 2.
  • the terminal sends the network connection information of the shared user 1 to the login server.
  • the login server forwards the network connection information to the management server.
  • the network connection information of the shared user 1 may also be directly sent by the terminal to the management server in the sharing request message.
  • Step 305 The management server receives the request, and correspondingly saves the shared file name A and the user identifier 2 capable of downloading the shared file by sharing the user identifier 1.
  • the sharing request message when the sharing request message is sent, the shared file expiration date is further included; then, when the management server receives the information, the management server can only share the file within a prescribed period of time, exceeding The specified period of time cancels the sharing status of the file. Since most of the steps are the same as the above process, it will not be repeated here.
  • a temporary key can be generated by the login server after the shared user 1 authenticates by the login server.
  • the management server adds a temporary key set (Temporary Key Set). ), it is used to save all the temporary keys and to receive the temporary key sent by the user.
  • the authentication is valid.
  • the local access control policy library configured by the user terminal can also perform the risk certificate with the downloaded user through the temporary key.
  • Embodiment 2 referring to FIG. 4 is a flow chart for issuing a temporary key:
  • Step 401 The shared user terminal 1 sends the ID (identification) of the shared user 1 and the network connection information of the shared user 1 to the login server through the network.
  • Step 402 The login server verifies whether the information is correct. If it is correct, the user is shared. 1 Pass the verification and send the network connection information of the management server to the shared user terminal 1; if it is incorrect, the process ends.
  • Step 403 The login server generates a temporary key to the shared user 1, and feeds back the temporary key to the shared user terminal 1.
  • Step 404 The login server sends the ID of the shared user 1, the shared user 1 network connection information, and the temporary key of the shared user 1 to the management server; the management server saves the information correspondingly.
  • Step 405 The shared user terminal 1 sends a shared file request message of the shared file A to the management server, where the message includes: a shared user identifier 1, a file name A of the shared file, and a user identifier 2 capable of downloading the shared file, and the shared user 1 Temporary key and shared file expiration date.
  • Step 406 The management server verifies whether the temporary key is legal. If yes, the other information is correspondingly saved by using the shared user ID, and the file is set to the shared state within the validity period of the shared file.
  • the shared user may use the temporary key to encrypt the shared file request message carrying the temporary key when the shared user 1 sends the sharing request;
  • the management server receives the shared file request sent by the shared user 1, the legality of the shared file request message carrying the temporary key is decrypted and then the risk of the temporary key is decrypted, and most steps are the same as in the above process. This is no longer exhaustive.
  • the corresponding invitation module may be extended in the sharing management module to implement the information that the shared user sends an invitation to download to the downloading user.
  • the function is implemented by creating a queue for each user ID.
  • Each element in the queue includes an inviter that provides content and sends a sharing invitation, that is, a shared user ID, and also includes a shared user network connection address of the associated shared file. .
  • This queue only saves the invitation event to be sent. Once a sharing invitation is sent to the invited user, the invitation event is removed from the queue. That is to say, if the invited user is online, the invitation will be received, and the invitation will be deleted from the queue.
  • the online management server If the online management server is not online, the invitation will be saved until the user goes online and then the invitation is distributed and deleted from the queue; Or you can set a certain time limit.
  • the management server automatically deletes the invitation from the queue when the invitation exceeds a certain limit.
  • Embodiment 3 Referring to FIG. 5, the method for implementing the sharing invitation is as follows:
  • Step 501 The shared user terminal 1 sends the ID (identification) of the shared user 1 and the network connection information of the shared user 1 to the login server through the network.
  • Step 502 The login server verifies whether the information is correct. If the user is correct, the shared user 1 passes the verification, and sends the network connection information of the management server to the shared user terminal 1; if not, the process ends.
  • Step 503 The login server generates a temporary key for the shared user 1, and feeds back the temporary key to the shared user terminal 1.
  • Step 504 The login server sends the shared user ID, the shared user 1 network connection information, and the temporary key of the shared user 1 to the management server; the management server saves the information correspondingly.
  • Step 505 The shared user terminal 1 sends a shared file request message of the shared file A to the management server, where the message includes: a shared user identifier, a file name A of the shared file, and a user identifier 2 capable of downloading the shared file, and the shared user 1 Temporary key and shared file expiration date; simultaneously send invitation download information carrying the invitation to download the user ID.
  • the user terminal 1 may also send the invitation download information when the shared file is published, and may send the file carrying the file name A of the shared file and the invited user identifier at any time within the expiration date of the shared file, inviting the user to download the share. file.
  • Step 506 The management server verifies whether the temporary key is legal; if yes, by sharing The user ID saves other information correspondingly, sets the file to be in the shared state within the expiration date of the shared file, and determines whether the invitation downloading user carried in the invitation downloading information is online, sends the invitation downloading information to the online invitation downloading user, and simultaneously sends the sharing.
  • the file name, the shared user network connection information, and the shared user identifier are deleted, and the invitation download information is deleted after being sent; the user ID is downloaded, and the shared file name, the shared user network connection information, and the shared user identifier are saved correspondingly; During the preset expiration date, when the user who invites the download is online, it is sent to the user terminal that invites the download, and the saved invitation download information is deleted.
  • Step 601 Downloading the user terminal 2 sends the ID (ID) of the downloading user 2 and the downloading user 2 network connection information to the login server through the network.
  • Step 602 The login server verifies that the information is correct, and if correct, downloads the user.
  • Step 603 The login server sends the ID of the download user 2 and the download user 2 network connection information to the management server; the management server saves the information correspondingly.
  • Step 604 The download user terminal 2 sends a file-downloading request message of the shared file A to the management server, and the message includes: downloading the user identifier 2, the file name A of the shared file, which is very common to those skilled in the art. It is easy to infer that the shared file name A in the download request message can also be any information that can identify the shared file, such as a keyword or file identifier of the file name.
  • Step 605 The management server receives the request, and finds information that is allowed to be downloaded by the user.
  • the search message is sent to the download user 2, and the message includes: a shared file name A, a user identifier 1 of the shared file A, and a network of the shared user 1. Connection information.
  • Step 606 The download user terminal 2 transmits a download request carrying the shared file name A to the shared user 1, and the shared user 1 transmits the shared file A to the download user 2 in response to the request.
  • Embodiment 5 Corresponding to Embodiment 2, the local access control policy library configured by the user terminal can further carry out further identity insurance for the user who requests the download through the temporary key, thereby enhancing security. See Figure 7 for a flowchart for adding a temporary key download:
  • Step 701 The download user terminal 2 sends the ID of the download user 2 and the download user 2 network connection information to the login server through the network.
  • Step 702 The login server verifies whether the information is correct. If it is correct, the download user 2 passes the verification and feeds back to the management server network connection information, and if not, the process ends.
  • Step 703 The login server generates a temporary key for the download user 2, and feeds back the temporary key to the shared user terminal 2.
  • Step 704 The login server sends the ID of the download user 2, the shared user 2 network connection information, and the temporary key of the shared user 2 to the management server; the management server saves the information correspondingly.
  • Step 705 The shared user terminal sends a download file request message of the shared file A to the management server, and the message includes: downloading the user identifier 2.
  • the file name A of the shared file is a download file request message of the shared file A.
  • Step 706 The management server receives the request, and finds information that is allowed to be downloaded by the user.
  • the search message is sent to the download user 2, and the message includes: a shared file name A, a user identifier of the shared file A, and a network sharing the user 1.
  • Step 707 The download user terminal sends a download request carrying the shared file name A to the shared user 1, and also includes the temporary key of the shared user 1 obtained by the download user 2.
  • Step 708 The shared user terminal 1 transmits the shared file A to the download user 2 after the temporary key certificate issued by the download user 2 is successful.
  • the user 2 After receiving the temporary key, the user 2 encrypts the temporary key; when the shared user 1 receives the download request sent by the download user 2, the temporary key is decrypted and then the validity of the temporary key is verified, since most The steps are the same and will not be repeated here.
  • Embodiment 6 corresponding to Embodiment 3, the downloading process when the downloading user receives the invitation downloading information is as follows:
  • Step 801 After the login is authenticated by the login server, it is determined whether the invitation download information is received, and the invitation download information includes: a shared user identifier 1, a shared file name A, a shared user 1 network connection information, and the like; ; If yes, go to step 803.
  • Step 802 Continue to perform regular information interaction with the management server.
  • Step 803 Ignore the request or establish a connection with the shared user terminal 1 to download the shared file. If the shared user 1 is offline or the shared user terminal 1 has not shared the file A at this time, the management server can return to the shared user 2 another user who has a copy of the shared file A and allows access thereto.
  • the establishment of the connection described in this step may be a relatively complicated process, such as decryption, description, and no further description here.
  • the management server may further feed back the management server, and the management server further adds the download user identifier 2, the download user network connection information, and the shared file name A to the shared file A.
  • User information; or in the process of downloading the shared file A by the downloading user 2, the downloading user identifier 2, the downloading user network connection information, the shared file name A, and the download progress are fed back to the management server.
  • the management server After receiving the above feedback, the management server notifies the other users who download the file A. Other downloaded users can connect to the download user 2 to download the shared file A through the network connection information saved by the management server, thereby improving the download speed of other download users. This allows the same file to have a succession in the shared control strategy.
  • the shared file can be Set to shared state for other users to download.
  • the download user can further feed back to the management server the user ID that is allowed to be accessed.
  • the downloaded file can be downloaded to the user terminal where the user 2 is located, that is, the shared file.
  • a copy of A is set to the shared state, and feedback to the management server is able to download the user ID of copy B, which further enhances the inheritance of file controllable sharing.
  • the user can also perform the unshared operation on the shared file: for example, the shared user 1 authenticates by logging in to the server, and the login server sends the user identifier and the user network connection information to the management server for saving, and then shares the user.
  • the information includes: a shared file name and a shared user identifier; after receiving the unshared message, the management server unshares the corresponding file. After the temporary key is added, the operation of canceling the sharing can be changed according to Embodiment 2, and will not be described here.
  • the user authenticates by logging in to the server. After the login server sends the user ID and the user network connection information to the management server for storage, the user sends a statistics request to the management server for the shared file.
  • the management server collects all available shared file information shared by the user ID and gives feedback to the user.
  • the available shared information includes available connection information after other users have downloaded the file. That is to say, in addition to the user identifier and network connection information that originally shared the shared file, the shared information may include other network connection information and user identifier of the user who downloaded the file.
  • the shared file When the user logs in on multiple terminals, it is possible that the shared file is placed on the terminal that is not currently logged in, causing other users to fail to download the shared file according to the network connection information when the user issues the shared file. And if similar invalid network connection information increases, Will affect the efficiency of user downloads.
  • the user can clearly understand which network connection information of the shared file is valid, and the network connection information of the shared files is invalid, but the network connection information of the copy is still valid, so that the user can take the initiative. Cancel shared files that have no valid network connection information, improving the efficiency of sharing.
  • the user can further strengthen the control and management of the shared files, such as increasing or decreasing the user ID of the downloadable shared file, or inviting other users to download the shared file.
  • the login server 1 is configured to store all user identifiers; receive the user identifier sent by the user terminal 2, verify whether the user identifier is legal, and if yes, send the user identifier and the user network connection information to the management server 2; and manage the server network connection information. Send to user terminal 2.
  • the management server 2 is configured to save the user identifier sent by the login server 1 and the user network connection information; receive and share the sharing request message sent by the user, where the message includes: a file name of the shared file and a user identifier capable of downloading the shared file; Receiving a request download message sent by the user, the message carrying the file name of the file to be downloaded and the user identifier; after receiving the request to download the message, searching for the information that the user is allowed to download, and sending the response message to the downloading user after searching
  • the message includes: a shared file name, a user ID that shares the file, and network connection information.
  • the user terminal 3 is configured to send a user identifier to the login server 1; send the sharing request message or request a download message to the management server 2; receive a download request sent by another user terminal, and transmit the shared file to other user terminals.
  • the function of the temporary key is added. Therefore, the login server 1 is further used on the basis of the above functions to correspond to the user identifier after receiving the user identifier. A temporary key is generated; and the temporary key is transmitted to the user terminal 3 and the management server 2.
  • the management server 2 further saves the temporary key on the basis of the above function; after receiving the temporary key sent by the user terminal and the sharing request message, confirming the local presence and the temporary key sent by the received user terminal.
  • the sharing request message is saved after the same temporary key; when the response message is sent to the user terminal, the method further includes: sharing the temporary key of the file user.
  • the user terminal 3 is further configured to receive the temporary key sent by the login server and save the user terminal 3 on the basis of the foregoing function; send the temporary key while transmitting the sharing request message to the management server 2; When the terminal sends the download request, the temporary key of the other user is further included; when the download request including the temporary key sent by another user is received, the shared file is transmitted to other user terminals after passing the key insurance.
  • the management server 2 adds an invitation module.
  • the user terminal 3 is further configured to: when the sharing request message is sent to the management server 2, the invitation downloading information carrying the downloaded user identifier is also sent; after the user identifier of the login server 1 is verified, it is determined whether the invitation downloading information is received.
  • the information includes the shared file name of the invitation download, the shared user network connection information, and the shared user identifier; if not received, the download user performs regular information interaction with the management server; if received, establishes a connection with the shared user to download the shared file or ignore the invitation. After downloading the information, the download user performs regular information interaction with the management server.
  • the invitation module of the management server 2 is configured to determine, when the sharing request message is saved, whether the user who invited the download is online, and send the invitation downloading information carrying the shared file name, the shared user network connection information, and the shared user identifier to the online invitation downloading user. Downloading the user ID of the offline invitation and saving it corresponding to the invitation download information; and sending the user who invites the download to the user within the preset validity period, and deleting the save The invitation to download the information.
  • the user terminal 3 is further configured to: after the management server saves the user identifier sent by the login server and the user network connection information, send a cancel sharing message to the management server, where the message includes: a shared file name and a shared user identifier.
  • the global access control policy library of the management server 2 is further configured to search for the shared file after receiving the unshared message, cancel the sharing of the file, and delete the shared information of the file. It is also possible to delete not only the shared file entry of the shared user but also the shared file entry of the other user who shared the file by default by downloading the file, that is, the shared copy of the other user is also canceled. This is also derived from the inheritance of shared messages.
  • the statistics here refer to the basic information of all the files shared by the user, including those shared and shared on other machines, and the availability of each file.
  • This article proposes the sharing of the user login mode, so it is assumed that user A has logged in on one computer and shared a file of that computer. When user A logs out and logs in on another computer, he can still view it.
  • the basic information such as the file name shared previously, but because the user terminal changes, the user A himself cannot actually read the file that was shared.
  • B is both a service consumer (downloading file usage) and a service provider (which serves to extend the availability and transit of files).
  • the management server still considers the file available and tells A.
  • the user terminal 3 is further used by the management server 2 to save the login server. After the user identifier is connected to the user network, the user is sent a request to the management server to collect the shared file identifier.
  • the management server 2 is further configured to: after receiving the statistical request, collect statistics about all available shared files shared by the user identifier, and feed back the information to the user terminal 1.
  • Embodiment 6 Referring to FIG. 8, an implementation of the present invention provides a file management server including an uploading unit 902, a downloading unit 903, and a policy library 901.
  • the uploading unit 902 is configured to receive the first message sent by the terminal that provides the downloadable file, where the first message carries network connection information of the terminal, a file name of the downloadable file, and an identifier of at least one user that is allowed to be downloaded.
  • the policy library 901 is configured to store information of the at least one downloadable file received by the uploading unit 902, including: a file name, network connection information of the terminal providing the downloadable file, and an identifier of at least one user allowed to download.
  • the download unit 903 is configured to receive the second message sent by the terminal requesting the download. The name of the file carrying the downloadable file in the second message and the identifier of the user requesting the download.
  • the downloading unit 903 queries the policy library 901, and if the user requesting the download is allowed to download the downloadable file corresponding to the file name, sends a message carrying the file name of the downloadable file and the network connection information of the corresponding terminal to the terminal requesting the download. .
  • the identifier of the user who issues the downloadable file may further be carried in the first message received by the uploading unit 902.
  • the policy library 901 may be further configured to save an identifier of a user who publishes the downloadable file; wherein, the identifier of each user who issues the downloadable file corresponds to information of the at least one downloadable file.
  • the file management server may further include an invitation unit 904.
  • the invitation unit 904 is configured to receive a third message carrying the identity of the user invited to download.
  • the third message carries the identifier of the user who is invited to download and the file name of the downloadable file.
  • the inviting unit 904 searches the policy library 901 for the information of the downloadable file corresponding to the file name of the downloadable file, and sends the file name carrying the downloadable file and the user who issues the downloadable file to the user who is invited to download when the user is online. Identify and publish downloadable files The message of the network connection information of the terminal corresponding to the user.
  • the policy library 901 is further configured to set the downloadable file corresponding to the file name carried by the first message to a shared state, and cancel the set sharing state according to the indication.
  • the management server may further include a sharing cancellation unit 905.
  • the sharing cancellation unit 905 is configured to receive the fourth message sent by the terminal.
  • the fourth message includes the file name and the identity of the user who posted the downloadable file.
  • the sharing cancel unit 905 searches the policy library 901 for a downloadable file corresponding to the file name and the identifier of the user who posted the downloadable file, instructing the policy library 901 to cancel the sharing state of the downloadable file.
  • the management server further includes a statistics unit 906.
  • the statistic unit 906 is configured to receive a statistical request for carrying the identifier of the user sent by the terminal.
  • the statistic unit 906 queries the policy library 901, and counts all downloadable files with available network connections in the downloadable file that the user corresponding to the user's identifier corresponds to, and sends the statistics to the terminal.
  • the management server also includes a password set 907.
  • the password set 907 is configured to receive the temporary key sent by the login server and the terminal, and verify whether the temporary key sent by the terminal is legal. If it is legal, the policy database 901 is saved to save the network connection information of the terminal that can download the file, and the file of the downloadable file. And the identifier of the at least one user who is allowed to download, and sends a message carrying the temporary password to the terminal requesting the download.
  • Embodiment 7 Referring to FIG. 9, an embodiment of the present invention provides a terminal.
  • the terminal includes a policy library 1001 and a first unit 1002.
  • the policy library 1001 is used to save information of at least one downloadable file. This information includes the file name of the downloadable file and the identity of at least one user who is allowed to download the downloadable file.
  • the first unit 1002 is configured to send the first message to the first server. The first message carries the network connection information of the terminal, the file name of the downloadable file, and the identifier of at least one user who is allowed to download.
  • the terminal further includes a second unit 1003.
  • the second unit 1003 is for the second The server sends a message carrying the identifier of the user corresponding to the terminal to perform identity verification, and receives a message returned by the second server that carries the network connection information of the first server.
  • the policy library 1001 is further configured to save the network connection information of the first server received by the second unit 1003.
  • the first unit 1002 is configured to send the first message to the first server according to the network connection information of the first server saved by the policy library 1001.
  • the terminal may further include a third unit 1004.
  • the third unit 1004 is configured to receive a message carrying the temporary key returned by the second server.
  • the policy library 1001 is further used to save the temporary key received by the third unit 1004.
  • the first unit 1002 is further configured to further carry the temporary key saved by the policy library 1001 in the first message sent to the first server for validity verification.
  • the terminal may further include a fourth unit 1005.
  • the fourth unit 1005 is configured to receive a message carrying a temporary key request to download the downloadable file.
  • the fourth unit 1005 downloads the downloadable file according to the temporary key verification request saved by the policy library, and if the verification passes, allows downloading the downloadable file.
  • the terminal may further include a message for sending a file name carrying the downloadable file and an identifier of the user corresponding to the terminal to the first server, and downloading and downloading according to the network connection information of the terminal that provides the downloadable file returned by the first server.
  • the unit of the file may be a message for sending a file name carrying the downloadable file and an identifier of the user corresponding to the terminal to the first server, and downloading and downloading according to the network connection information of the terminal that provides the downloadable file returned by the first server.
  • the above terminal may further include any one or any of the following units: a unit for transmitting a message carrying the identifier of the user who is invited to download and the file name of the downloadable file to the first server to invite the unit to download the downloadable file ;
  • the embodiment of the present invention adopts a login method of the user identifier, and adopts a global access control policy and a method for the local access control policy of the user terminal, that is, the user can select the rights to share files to which users, so that the management server When searching for the download request information, only the shared file information that the user is allowed to download is searched, and the file sharing mode controlled by the user is realized.
  • the login server is added, it is not required for the service provider to set up the server itself, and does not increase the hardware or system overhead of the user.
  • the temporary key is added, and the temporary key is encrypted.
  • the user needs to perform verification during the process of downloading and downloading, which enhances the security of file downloading and publishing. It also increases the time control of the shared files, which can reduce the storage pressure of the management server to a certain extent.
  • the introduction of the login server improves the security of file publishing and downloading.
  • the user does not log in to the server, if the user knows the network connection information of the management server, the user selects which users to share the file with, so that the management server only searches for the shared file information that the user is allowed to download when searching for the download request information. It is also possible to implement a file sharing method controlled by the user.
  • the embodiment of the present invention further provides an invitation mechanism, so that the user can obtain the shared information in time; the function of canceling sharing and counting the shared information further improves the file sharing and download controllable.
  • the method and system have improved user satisfaction.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)

Abstract

A method for releasing a file is provided. The method includes that a terminal used for providing a downloadable file transmits the first message to the first server, the first message carrying a file name of the downloadable file and identifiers of at lest one user allowed to download; the first server obtains a network connection information of the terminal; the first server memories information of downloadable files, including a file name, network connection information of network and identifiers of at lest one user allowed to download. A method for downloading a file is provided. The method includes that the first server transmits a first message to the second terminal, the first message carrying a file name of the downloadable file and corresponding network connection information of the first terminal; the second terminal downloads the downloadable file from the first terminal based on the network connection information of the first terminal. A system, management server and terminal corresponding to the releasing and downloading method are provided. A controllable share for files is realized by the scheme.

Description

文件的发布和下载方法、 管理服务器、 终端及系统  File publishing and downloading methods, management server, terminal and system

技术领域 本发明涉及互联网络文件共享领域, 尤其涉及文件共享的方法、 系 统、 服务器及终端。 发明背景 作为客户 /服务器模式的重要补充, 近年来对等( Peer-to-Peer, P2P ) 技术在互联网上的应用日益广泛。 P2P网络是一种分布式网络, 用户共 享他们计算机所拥有的部分资源(处理能力、存储能力、 网络连接能力、 打印机、 文件等), 这些共享资源借助于网络, 能被其它用户直接访问 而无需经过中间实体。 在此网络中用户既可以是资源提供者 (Server ), 又可以是资源获取者(Client ), 因此用户间是一种对等的关系。 P2P技 术充分利用了网络边缘的大量计算机资源, 包括分散的存储空间、 CPU 时间、 信息内容等多种资源, 从而有效降低集中服务器的负载, 提高服 务的可用性。 TECHNICAL FIELD The present invention relates to the field of internet file sharing, and more particularly to a method, system, server, and terminal for file sharing. BACKGROUND OF THE INVENTION As an important complement to the client/server model, Peer-to-Peer (P2P) technology has become increasingly popular on the Internet in recent years. A P2P network is a distributed network in which users share some of the resources (processing power, storage capacity, network connectivity, printers, files, etc.) owned by their computers. These shared resources can be directly accessed by other users without the need of a network. After the intermediate entity. In this network, the user can be either a resource provider (Server) or a resource acquirer (Client), so the user is a peer-to-peer relationship. P2P technology makes full use of a large number of computer resources at the edge of the network, including distributed storage space, CPU time, information content and other resources, thereby effectively reducing the load on centralized servers and improving the availability of services.

将每个用户抽象为网络中的一个节点, P2P网络中的各个节点是逻 辑对等的, 即系统中不再明显区分服务器以及客户端, 系统中的各个节 点之间可以直接进行数据传输而不需要通过中间服务器。 P2P模式的对 等性弱化甚至去除了分布节点对集中服务器的依赖, 突破了服务器瓶 颈, 增强了网络的可扩展性。  Each user is abstracted as a node in the network. Each node in the P2P network is logically equivalent. That is, the server and the client are no longer clearly distinguished in the system, and data can be directly transmitted between the nodes in the system without Need to pass the intermediate server. The peer-to-peer weakening of the P2P model even removes the dependence of the distributed nodes on the centralized server, breaking through the bottleneck of the server and enhancing the scalability of the network.

随着 P2P技术的迅速发展, P2P文件共享如今得到了广泛的普及和 应用。根据全球知名的互联网服务提供商( Internet Service Provider, ISP ) 流量管理及分析解决方案提供商 CacheLogic的统计, 在 2006年 1月, Bittorrent ( BT下载软件)、 eDonkey (电驴)、 Gnutella等 P2P共享下载 软件所产生的网络流量, 已经占据了整个互联网 71%的带宽。 借助这类 软件, 人们可以轻松地获取全球分布的共享文件。 综合这类软件的共享 文件管理及维护方面的特点 , 它们大多使用管理服务器或用超级节点担 任集中管理节点, 网络具有集中式 /半分布式结构。 With the rapid development of P2P technology, P2P file sharing has now gained widespread popularity and application. According to CacheLogic, a provider of traffic management and analytics solutions from the world's leading Internet Service Provider (ISP), in January 2006, Ptorrent downloads such as Bittorrent (BT download software), eDonkey (Electronics), Gnutella, etc. The network traffic generated by the software has already occupied 71% of the bandwidth of the entire Internet. With this type of software, people can easily access shared files distributed globally. Integrate the sharing of such software The characteristics of file management and maintenance, most of them use the management server or use the super node as the centralized management node, and the network has a centralized/semi-distributed structure.

用户与管理服务器相连接, 并且可以是共享用户与下载用户, 其角 色区分只在共享或者下载的单向过程中有效。 共享用户也可以是其非共 享内容的下载用户。 例如图 1所示的文件共享系统的操作流程图:  The user is connected to the management server and can be a shared user and a download user. The role distinction is valid only in the one-way process of sharing or downloading. A shared user can also be a download user of their non-shared content. For example, the operation flow chart of the file sharing system shown in Figure 1:

步骤 101和步骤 102是共享文件的发布过程:  Step 101 and step 102 are the publishing process of the shared file:

步骤 101: 共享用户向管理服务器发送共享信息, 该共享信息包括: 共享文件的共享用户网络连接信息、 文件名、 文件大小、 文件摘要(是 指对文件按照标准算法处理得到的一段固定长度的数据, 不管什么文 件, 使用相同的消息摘要算法时获得的摘要都是固定长度的 (例如 128 比特), 而且不同的文件获得的摘要出现相同的概率非常小, 所以可以 用作文件标识。 常见的算法例如 MD5, SHA等。 在 P2P文件下载中, 使用文件摘要的作用是做校验, 把获得的文件用消息摘要算法得出结 果, 然后和发布的摘要比较, 即可判断下载的文件是否出现传输错误)、 文件分片信息、 共享文件的发布时间等。  Step 101: The shared user sends the shared information to the management server, where the shared information includes: shared user network connection information of the shared file, file name, file size, and file summary (refers to a fixed length of data obtained by processing the file according to a standard algorithm) Regardless of the file, the digests obtained when using the same message digest algorithm are fixed-length (for example, 128 bits), and the digests obtained by different files have the same probability of being very small, so they can be used as file identifiers. Common algorithms For example, MD5, SHA, etc. In the P2P file download, the function of using the file digest is to perform verification, and the obtained file is obtained by the message digest algorithm, and then compared with the published digest, it can be judged whether the downloaded file is transmitted. Error), file fragmentation information, release time of shared files, etc.

步骤 102: 管理服务器以适当的数据结构保存共享用户发布的共享 信息。  Step 102: The management server saves the shared information published by the shared user in an appropriate data structure.

步骤 103至步骤 106是共享文件的下载过程:  Steps 103 to 106 are the download process of the shared file:

步骤 103: 下载用户向管理服务器发起共享文件查询请求, 该请求 包括共享文件的文件名。  Step 103: The download user initiates a shared file query request to the management server, where the request includes the file name of the shared file.

步骤 104: 管理服务器本地查询, 得到一个或多个该共享文件的共 享用户网络连接信息。  Step 104: The management server local query obtains shared user network connection information of one or more shared files.

步骤 105: 管理服务器向下载用户反馈该一个或多个该共享文件的 共享用户网络连接信息。  Step 105: The management server feeds back to the download user the shared user network connection information of the one or more shared files.

步骤 106: 下载用户与一个或多个共享用户建立连接, 开始共享文 件传输。 该过程具体为下载用户向一个或多个共享用户发送下载请求, 一个或多个共享用户反馈连接请求, 开始共享文件传输。  Step 106: The download user establishes a connection with one or more shared users and starts sharing file transfers. The process specifically sends a download request to one or more shared users, and one or more shared users feed back a connection request to start sharing file transfers.

但是这种共享机制由于没有用户管理与控制机制, 所以共享文件可 以被连接到管理服务器的任何用户查询并下载。 为了实现小范围的 P2P 文件共享与下载, 目前可以借助于某些公共的 P2P平台, 用户自己架设 自己私有的非公开的群体内服务器。 群体内的各个成员都将其客户端的However, this sharing mechanism has no user management and control mechanism, so the shared file can be Query and download from any user connected to the management server. In order to achieve a small range of P2P file sharing and downloading, users can now set up their own private non-public intra-group servers by means of some public P2P platforms. Each member of the group will have its client's

P2P接入服务器地址设置为私有的非公开的群体内服务器地址, 这样就 建立了特定群体的 P2P共享平台。 其操作过程与图 1中所示的流程基本 相同, 只是需要组内成员预先设置私有的非公开的群体内服务器地址, 在此就不再累述其共享及下载流程。 The P2P access server address is set to a private, non-public intra-group server address, thus establishing a specific group of P2P sharing platforms. The operation process is basically the same as the process shown in FIG. 1, except that the members in the group are required to preset a private non-public intra-group server address, and the sharing and downloading process will not be described here.

综上所述, 现有技术建设了私有服务器, 使群体以外的用户无法获 知该私有服务器的存在。 但是, 现有技术还存在如下问题:  In summary, the prior art has built a private server so that users outside the group cannot know the existence of the private server. However, the prior art also has the following problems:

在其成员内部仍然不能实现有效的共享控制, 例如在成员内部用户 Effective sharing control is still not possible within its members, for example in member internal users

A只想向用户 B、 C共享文件 f这种方式依然是不能实现的, 因此现有 技术只是在一定意义上实现了文件共享的可控性, 并没有真正实现由用 户控制的文件共享方式。 A only wants to share files with users B and C. This method is still not implemented. Therefore, the existing technology only realizes the controllability of file sharing in a certain sense, and does not really implement the file sharing mode controlled by the user.

另夕卜,用户需要自己架设服务器,这给用户带来了硬件或系统开销。 发明内容 本发明提供一种文件发布和下载的方法, 一种文件共享的系统、 管理服务器和终端, 主要技术方案如下:  In addition, the user needs to set up the server by himself, which brings hardware or system overhead to the user. SUMMARY OF THE INVENTION The present invention provides a file publishing and downloading method, a file sharing system, a management server, and a terminal. The main technical solutions are as follows:

本发明提供了一种文件的发布方法, 该方法包括以下步骤: 用于提供可下载文件的终端向第一服务器发送第一消息, 第一消 息携带可下载文件的文件名及至少一个被允许下载的用户的标识; 第一服务器获取终端的网络连接信息;  The present invention provides a file publishing method, the method comprising the following steps: a terminal for providing a downloadable file sends a first message to a first server, the first message carrying a file name of the downloadable file and at least one allowed to be downloaded The identifier of the user; the first server acquires network connection information of the terminal;

第一服务器保存可下载文件的信息, 包括: 文件名、 终端的网络 连接信息、 至少一个被允许下载的用户的标识。  The first server saves the information of the downloadable file, including: a file name, network connection information of the terminal, and an identifier of at least one user who is allowed to download.

本发明还提供了一种文件的下载方法, 在该方法中, 第一服务器保 存至少一个可下载文件的信息, 包括: 文件名、 提供可下载文件的第一 终端的网络连接信息、 以及至少一个被允许下载的用户的标识; 该方法 包括以下步骤: The present invention also provides a file downloading method, in which the first server saves information of at least one downloadable file, including: a file name, network connection information of the first terminal providing the downloadable file, and at least one The identity of the user who is allowed to download; this method Includes the following steps:

第一服务器向第二终端发送第一消息, 第二终端对应的用户被允 许下载可下载文件,第一消息携带该可下载文件的文件名及其对应的 第一终端的网络连接信息;  The first server sends a first message to the second terminal, where the user corresponding to the second terminal is allowed to download the downloadable file, and the first message carries the file name of the downloadable file and the network connection information of the corresponding first terminal;

第二终端根据第一终端的网络连接信息从第一终端下载可下载 文件。  The second terminal downloads the downloadable file from the first terminal according to the network connection information of the first terminal.

本发明提供了一种实现文件共享的系统, 该系统包括以下设备: 至少一个提供可下载文件的第一终端, 用于向第一服务器发送第 一消息,第一消息携带可下载文件的文件名及至少一个被允许下载的 用户的标识;  The present invention provides a system for implementing file sharing, the system comprising: at least one first terminal providing a downloadable file, configured to send a first message to a first server, the first message carrying a file name of the downloadable file And an identification of at least one user who is allowed to download;

第一服务器, 用于获取第一终端的网络连接信息, 根据来自第一 终端的第一消息保存可下载文件的信息, 包括: 文件名、 提供可下载 文件的用户终端的网络连接信息、 至少一个被允许下载的用户的标 识,并发送携带可下载文件的文件名及其对应的第一终端的网络连接 信息的第二消息;  a first server, configured to acquire network connection information of the first terminal, and save information of the downloadable file according to the first message from the first terminal, including: a file name, network connection information of the user terminal that provides the downloadable file, at least one The identifier of the user who is allowed to download, and sends a second message carrying the file name of the downloadable file and the network connection information of the corresponding first terminal;

至少一个请求下载文件的第二终端, 用于从第一服务器接收第二 消息,根据所收到的第二消息携带的第一终端的网络连接信息从第一 终端下载可下载文件。  And at least one second terminal requesting to download the file, configured to receive the second message from the first server, and download the downloadable file from the first terminal according to the network connection information of the first terminal carried by the received second message.

本发明提供了一种文件管理服务器, 该服务器包括以下单元: 上传单元, 用于接收提供可下载文件的终端发送的第一消息并获 取该终端的网络连接信息,第一消息携带可下载文件的文件名及至少 一个被允许下载的用户的标识;  The present invention provides a file management server, the server includes the following unit: an uploading unit, configured to receive a first message sent by a terminal that provides a downloadable file, and obtain network connection information of the terminal, where the first message carries a downloadable file a file name and an identification of at least one user who is allowed to download;

策略库, 用于存储上传单元接收的至少一个可下载文件的信息, 包括: 文件名、 提供可下载文件的终端的网络连接信息、 至少一个被 允许下载的用户的标识; 下载单元, 用于接收请求下载的终端发送的第二消息, 第二消息 携带可下载文件的文件名以及请求下载的用户的标识, 查询策略库, 如果请求下载的用户被允许下载上述文件名对应的可下载文件,则向 请求下载的终端发送携带可下载文件的文件名及其对应的终端的网 络连接信息的消息。 a policy library, configured to store information of the at least one downloadable file received by the uploading unit, including: a file name, network connection information of the terminal that provides the downloadable file, and an identifier of the at least one user that is allowed to download; a downloading unit, configured to receive a second message sent by the terminal that requests the download, where the second message carries the file name of the downloadable file and the identifier of the user requesting the download, and the query policy library, if the user requesting the download is allowed to download the file name corresponding to The downloadable file sends a message carrying the file name of the downloadable file and the network connection information of the corresponding terminal to the terminal requesting the download.

本发明还提供了一种终端, 该终端包括以下单元:  The invention also provides a terminal, the terminal comprising the following units:

策略库, 用于保存至少一个可下载文件的信息, 包括, 可下载文 件的文件名, 至少一个被允许下载该可下载文件的用户的标识,  a policy library, configured to save information of at least one downloadable file, including a file name of the downloadable file, and at least one identifier of a user who is allowed to download the downloadable file,

第一单元, 用于向第一服务器发送第一消息, 第一消息中携带可 下载文件的文件名及至少一个被允许下载的用户的标识。  The first unit is configured to send a first message to the first server, where the first message carries the file name of the downloadable file and the identifier of the at least one user that is allowed to download.

由上述技术方案可见, 由于本发明实施例中, 用户可以自行选择向 哪些用户共享文件, 使得管理服务器在搜索下载请求信息时只搜索到允 许该用户下载的共享文件信息, 实现了由用户控制的文件共享方式。 附图简要说明 图 1为现有技术文件共享系统的操作流程图。  It can be seen from the above technical solution that, in the embodiment of the present invention, the user can select which users to share the file, so that the management server only searches for the shared file information that is allowed to be downloaded by the user when searching for the download request information, thereby realizing the user-controlled File sharing method. BRIEF DESCRIPTION OF THE DRAWINGS Figure 1 is a flow chart showing the operation of a prior art file sharing system.

图 2为本发明实现文件共享可控的系统结构图。  FIG. 2 is a structural diagram of a system for implementing file sharing controllable according to the present invention.

图 3为本发明实施例 1共享文件发布流程图。  FIG. 3 is a flowchart of a shared file distribution according to Embodiment 1 of the present invention.

图 4为本发明实施例 2增加临时密钥的共享文件发布流程图。  FIG. 4 is a flow chart of issuing a shared file for adding a temporary key according to Embodiment 2 of the present invention.

图 5为本发明实施例 3实现共享邀请的流程图。  FIG. 5 is a flowchart of implementing a sharing invitation according to Embodiment 3 of the present invention.

图 6为本发明实施例 4共享文件下载流程图。  FIG. 6 is a flowchart of downloading a shared file according to Embodiment 4 of the present invention.

图 7为本发明实施例 5增加临时密钥的共享文件下载流程图。  FIG. 7 is a flowchart of downloading a shared file of a temporary key according to Embodiment 5 of the present invention.

图 8为本发明实施例 6实现文件共享可控的管理服务器的结构示意 图。  FIG. 8 is a schematic structural diagram of a management server for implementing file sharing control according to Embodiment 6 of the present invention.

图 9为本发明实施例 7实现文件共享可控的终端的结构示意图。 实施本发明的方式 本发明实施例提供了一种具有文件访问控制功能的 P2P文件共享、 下载方法及系统, 并在可控的基 上还实现了共享邀请机制。 本发明是 通过下述实施例实现的: FIG. 9 is a schematic structural diagram of a terminal for implementing file sharing controllable according to Embodiment 7 of the present invention. Mode for Carrying Out the Invention The embodiment of the present invention provides a P2P file sharing and downloading method and system with file access control function, and implements a sharing invitation mechanism on a controllable basis. The invention is achieved by the following embodiments:

如背景技术中描述的, 整个系统中的所有用户既可以是下载共享文 件的用户也可以是发布共享文件的用户, 其角色区分只在共享或者下载 的单向过程中有效。  As described in the background, all users in the entire system can be either a user who downloads a shared file or a user who publishes a shared file, and the role distinction is valid only in the one-way process of sharing or downloading.

下面首先介绍用户发布共享文件的过程, 参见图 2, 为本发明的网 络系统架构图;该系统包括有登录服务器 1、管理服务器 2、用户终端 3。 其中管理服务器 2 中还配置了全局访问控制策略库 ( Global Access-control Policy Information Base),该策略库用来存者所有用户的标 识及对应用户标识在共享控制中需要的信息, 并在有用户请求下载共享 文件时协助管理服务器进行有效的筛选; 用户终端 3配置了本地访问控 户对共享文件的下载权限。该网络系统架构在原有集中式 /半分布式结构 的基础上增加了登录服务器, 该登录服务器由服务提供商架设的, 不需 要用户自己架设, 且该登录服务器可以被所有用户使用。  The following describes the process of the user publishing the shared file. Referring to FIG. 2, it is a network system architecture diagram of the present invention; the system includes a login server 1, a management server 2, and a user terminal 3. The management server 2 is also configured with a global access control policy base (Global Access-control Policy Information Base), which is used to store the identity of all users and the information required by the corresponding user identifier in the sharing control, and has users in it. The management server is assisted in effective filtering when requesting to download the shared file; the user terminal 3 is configured to download the permission of the local access controller to the shared file. The network system architecture adds a login server based on the original centralized/semi-distributed structure. The login server is set up by the service provider and does not need to be set up by the user himself, and the login server can be used by all users.

实施例 1 , 参见图 3 , 为共享文件发布流程图:  Embodiment 1 , see Figure 3, for the flow chart of the shared file:

步骤 301 : 共享用户终端 1通过网络向登录服务器发送共享用户 1 的 ID (标识 )与共享用户 1网络连接信息。  Step 301: The shared user terminal 1 sends the ID (identification) of the shared user 1 and the network connection information of the shared user 1 to the login server through the network.

步骤 302: 登录服务器验证这些信息是否正确, 若正确则共享用户 1 通过验证, 并将管理服务器的网络连接信息发送给共享用户终端 1 ; 不正确则结束该流程。  Step 302: The login server verifies whether the information is correct. If it is correct, the shared user 1 passes the verification, and sends the network connection information of the management server to the shared user terminal 1; if not, the process ends.

步骤 303:登录服务器将共享用户 1的 ID与共享用户 1网络连接信 息发送给管理服务器; 管理服务器将这些信息对应保存。 Step 303: The login server will share the ID of the user 1 and the shared user 1 network connection letter. The information is sent to the management server; the management server saves this information accordingly.

步骤 304: 共享用户终端 1向管理服务器发送共享文件 A的共享文 件请求消息( File- sharing Request Message ), 该消息包括: 共享用户标 识 1、 共享文件的文件名 A、 及能够下载该共享文件的用户标识, 例如 用户 2。  Step 304: The shared user terminal 1 sends a file-sharing request message of the shared file A to the management server, where the message includes: a shared user identifier, a file name A of the shared file, and a file capable of downloading the shared file. User ID, such as User 2.

在本实施例的步骤 301中, 终端向登录服务器发送共享用户 1的网 络连接信息, 步骤 303中登录服务器将该网络连接信息转发到管理服务 器。 在本发明其它实施例中, 共享用户 1的网络连接信息也可以由终端 携带在共享请求消息中直接发送到管理服务器。  In step 301 of this embodiment, the terminal sends the network connection information of the shared user 1 to the login server. In step 303, the login server forwards the network connection information to the management server. In other embodiments of the present invention, the network connection information of the shared user 1 may also be directly sent by the terminal to the management server in the sharing request message.

步骤 305: 管理服务器接收该请求, 并通过共享用户标识 1对应保 存共享文件名 A及能够下载该共享文件的用户标识 2。  Step 305: The management server receives the request, and correspondingly saves the shared file name A and the user identifier 2 capable of downloading the shared file by sharing the user identifier 1.

为了能够使用户灵活的控制共享文件的发布时间, 在发送共享请求 消息时, 进一步包括共享文件有效期限; 那么管理服务器在接收到该信 息时, 就只能够在规定的期限内共享该文件, 超过规定的期限则取消该 文件的共享状态, 与上述流程相比由于大部分步骤都相同, 在此不再累 述。  In order to enable the user to flexibly control the publishing time of the shared file, when the sharing request message is sent, the shared file expiration date is further included; then, when the management server receives the information, the management server can only share the file within a prescribed period of time, exceeding The specified period of time cancels the sharing status of the file. Since most of the steps are the same as the above process, it will not be repeated here.

为了能够在文件共享过程中加强安全性, 可以在共享用户 1通过登 录服务器认证后, 由登录服务器生成一个临时密钥, 对应于该功能, 管 理服务器相应的增加了临时密钥集 (Temporary Key Set), 用以保存所有 的临时密钥及接收到用户发送的临时密钥时验证是否合法; 用户终端配 置的本地访问控制策略库还可以通过临时密钥与下载的用户进行险证。  In order to enhance security during the file sharing process, a temporary key can be generated by the login server after the shared user 1 authenticates by the login server. Corresponding to the function, the management server adds a temporary key set (Temporary Key Set). ), it is used to save all the temporary keys and to receive the temporary key sent by the user. The authentication is valid. The local access control policy library configured by the user terminal can also perform the risk certificate with the downloaded user through the temporary key.

实施例 2, 参见图 4为增加临时密钥的发布流程图:  Embodiment 2, referring to FIG. 4 is a flow chart for issuing a temporary key:

步骤 401 : 共享用户终端 1通过网络向登录服务器发送共享用户 1 的 ID (标识 )与共享用户 1网络连接信息。  Step 401: The shared user terminal 1 sends the ID (identification) of the shared user 1 and the network connection information of the shared user 1 to the login server through the network.

步骤 402: 登录服务器验证这些信息是否正确, 若正确则共享用户 1 通过验证, 并将管理服务器的网络连接信息发送给共享用户终端 1; 不正确则结束该流程。 Step 402: The login server verifies whether the information is correct. If it is correct, the user is shared. 1 Pass the verification and send the network connection information of the management server to the shared user terminal 1; if it is incorrect, the process ends.

步骤 403: 登录服务器对共享用户 1生成一个临时密钥, 并将该临 时密钥反馈给共享用户终端 1。  Step 403: The login server generates a temporary key to the shared user 1, and feeds back the temporary key to the shared user terminal 1.

步骤 404: 登录服务器将共享用户 1的 ID、 共享用户 1网络连接信 息及共享用户 1的临时密钥发送给管理服务器; 管理服务器将这些信息 对应保存。  Step 404: The login server sends the ID of the shared user 1, the shared user 1 network connection information, and the temporary key of the shared user 1 to the management server; the management server saves the information correspondingly.

步骤 405: 共享用户终端 1向管理服务器发送共享文件 A的共享文 件请求消息, 该消息包括: 共享用户标识 1、 共享文件的文件名 A、 及 能够下载该共享文件的用户标识 2、 共享用户 1临时密钥和共享文件有 效期限。  Step 405: The shared user terminal 1 sends a shared file request message of the shared file A to the management server, where the message includes: a shared user identifier 1, a file name A of the shared file, and a user identifier 2 capable of downloading the shared file, and the shared user 1 Temporary key and shared file expiration date.

步骤 406: 管理服务器验证该临时密钥是否合法; 若是则通过共享 用户 ID将其他信息对应保存, 在共享文件有效期限内设置文件为共享 状态。  Step 406: The management server verifies whether the temporary key is legal. If yes, the other information is correspondingly saved by using the shared user ID, and the file is set to the shared state within the validity period of the shared file.

为了在增加了共享文件安全性的基础上进一步增加共享文件请求 消息传输的私密性, 可以在共享用户 1发送共享请求的时候使用该临时 密钥加密携带了临时密钥的共享文件请求消息; 在管理服务器接收到共 享用户 1发送的共享文件请求时, 先将携带临时密钥的共享文件请求消 息解密后再险证临时密钥的合法性, 与上述流程相比由于大部分步骤都 相同, 在此不再累述。  In order to further increase the privacy of the shared file request message transmission on the basis of increasing the security of the shared file, the shared user may use the temporary key to encrypt the shared file request message carrying the temporary key when the shared user 1 sends the sharing request; When the management server receives the shared file request sent by the shared user 1, the legality of the shared file request message carrying the temporary key is decrypted and then the risk of the temporary key is decrypted, and most steps are the same as in the above process. This is no longer exhaustive.

在上述实现共享文件发布可控的基 上, 还可以在共享管理模块扩 展相应的邀请模块, 实现共享用户向下载用户发出邀请下载的信息。 该 功能的实现原理是为每个用户 ID建立一个队列, 队列中的每个元素包 括提供内容并发送共享邀请的邀请者, 即共享用户 ID, 还包括所关联的 共享文件的共享用户网络连接地址。 该队列仅保存待发送的邀请事件, 一旦某个共享邀请发送到被邀请的用户时, 就将该邀请事件从队列中删 除。 也就是说如果被邀请的用户在线, 就会接收到邀请, 该邀请就会从 队列中删除, 若不在线管理服务器会将该邀请保存, 直到用户上线再将 该邀请分发并从队列中删除; 或者可以设置一定的时间限值, 被邀请用 户不在线时, 管理服务器保存该邀请超过一定的限值时就将该邀请自动 从队列中删除。 On the basis of implementing the controllable sharing of the shared file, the corresponding invitation module may be extended in the sharing management module to implement the information that the shared user sends an invitation to download to the downloading user. The function is implemented by creating a queue for each user ID. Each element in the queue includes an inviter that provides content and sends a sharing invitation, that is, a shared user ID, and also includes a shared user network connection address of the associated shared file. . This queue only saves the invitation event to be sent. Once a sharing invitation is sent to the invited user, the invitation event is removed from the queue. That is to say, if the invited user is online, the invitation will be received, and the invitation will be deleted from the queue. If the online management server is not online, the invitation will be saved until the user goes online and then the invitation is distributed and deleted from the queue; Or you can set a certain time limit. When the invited user is offline, the management server automatically deletes the invitation from the queue when the invitation exceeds a certain limit.

实施例 3, 参见图 5, 实现共享邀请的方法如下所述:  Embodiment 3, Referring to FIG. 5, the method for implementing the sharing invitation is as follows:

步骤 501 : 共享用户终端 1通过网络向登录服务器发送共享用户 1 的 ID (标识 )与共享用户 1网络连接信息。  Step 501: The shared user terminal 1 sends the ID (identification) of the shared user 1 and the network connection information of the shared user 1 to the login server through the network.

步骤 502: 登录服务器验证这些信息是否正确, 若正确则共享用户 1 通过验证, 并将管理服务器的网络连接信息发送给共享用户终端 1; 不正确则结束该流程。  Step 502: The login server verifies whether the information is correct. If the user is correct, the shared user 1 passes the verification, and sends the network connection information of the management server to the shared user terminal 1; if not, the process ends.

步骤 503: 登录服务器对共享用户 1生成一个临时密钥, 并将该临 时密钥反馈给共享用户终端 1。  Step 503: The login server generates a temporary key for the shared user 1, and feeds back the temporary key to the shared user terminal 1.

步骤 504: 登录服务器将共享用户 1的 ID、 共享用户 1网络连接信 息及共享用户 1的临时密钥发送给管理服务器; 管理服务器将这些信息 对应保存。  Step 504: The login server sends the shared user ID, the shared user 1 network connection information, and the temporary key of the shared user 1 to the management server; the management server saves the information correspondingly.

步骤 505: 共享用户终端 1向管理服务器发送共享文件 A的共享文 件请求消息, 该消息包括: 共享用户标识 1、 共享文件的文件名 A、 及 能够下载该共享文件的用户标识 2、 共享用户 1临时密钥和共享文件有 效期限; 同时发送携带有邀请下载用户标识的邀请下载信息。  Step 505: The shared user terminal 1 sends a shared file request message of the shared file A to the management server, where the message includes: a shared user identifier, a file name A of the shared file, and a user identifier 2 capable of downloading the shared file, and the shared user 1 Temporary key and shared file expiration date; simultaneously send invitation download information carrying the invitation to download the user ID.

用户终端 1也可以不在发布共享文件的时候发送邀请下载信息, 而 可以在共享文件处于有效期限内的任意时刻发送携带共享文件的文件 名 A和被邀请的用户标识的消息, 邀请该用户下载共享文件。  The user terminal 1 may also send the invitation download information when the shared file is published, and may send the file carrying the file name A of the shared file and the invited user identifier at any time within the expiration date of the shared file, inviting the user to download the share. file.

步骤 506: 管理服务器验证该临时密钥是否合法; 若是则通过共享 用户 ID将其他信息对应保存, 在共享文件有效期限内设置文件为共享 状态; 并判断邀请下载信息中携带的邀请下载用户是否在线, 向在线的 邀请下载用户发送邀请下载信息, 并同时发送该共享文件名、 共享用户 网络连接信息、 共享用户标识, 发送后将该邀请下载信息删除; 将不在 线的邀请下载用户标识、 与共享文件名、 共享用户网络连接信息、 共享 用户标识对应保存; 并在预置的有效期限内、 当邀请下载的用户在线时 向邀请下载的用户终端发送, 同时删除保存的该邀请下载信息。 Step 506: The management server verifies whether the temporary key is legal; if yes, by sharing The user ID saves other information correspondingly, sets the file to be in the shared state within the expiration date of the shared file, and determines whether the invitation downloading user carried in the invitation downloading information is online, sends the invitation downloading information to the online invitation downloading user, and simultaneously sends the sharing. The file name, the shared user network connection information, and the shared user identifier are deleted, and the invitation download information is deleted after being sent; the user ID is downloaded, and the shared file name, the shared user network connection information, and the shared user identifier are saved correspondingly; During the preset expiration date, when the user who invites the download is online, it is sent to the user terminal that invites the download, and the saved invitation download information is deleted.

以上叙述了共享文件的发布过程, 下面介绍一下共享文件的下载过 程:  The above describes the process of publishing shared files. The following describes the download process of shared files:

实施例 4、 对应于实施例 1的发布过程, 其下载过程参见图 6: 步骤 601 : 下载用户终端 2通过网络向登录服务器发送下载用户 2 的 ID (标识 )与下载用户 2网络连接信息。  Embodiment 4 Corresponding to the publishing process of Embodiment 1, the downloading process is shown in FIG. 6: Step 601: Downloading the user terminal 2 sends the ID (ID) of the downloading user 2 and the downloading user 2 network connection information to the login server through the network.

步骤 602: 登录服务器验证这些信息是否正确, 若正确则下载用户 Step 602: The login server verifies that the information is correct, and if correct, downloads the user.

2通过验证并向下载用户终端 2反馈管理服务器网络连接信息, 不正确 则结束该流程。 2 By verifying and feeding back to the download user terminal 2, the management server network connection information is incorrect, and the process is terminated.

步骤 603:登录服务器将下载用户 2的 ID与下载用户 2网络连接信 息发送给管理服务器; 管理服务器将这些信息对应保存。  Step 603: The login server sends the ID of the download user 2 and the download user 2 network connection information to the management server; the management server saves the information correspondingly.

步骤 604: 下载用户终端 2向管理服务器发送共享文件 A的下载文 件请求消息( File-downloading Request Message ), 该消息包括: 下载用 户标识 2、 共享文件的文件名 A, 本领域的一般技术人员很容易推知下 载请求消息中的共享文件名 A也可以是能标识该共享文件的任何信息, 如文件名的关键字或文件标识。  Step 604: The download user terminal 2 sends a file-downloading request message of the shared file A to the management server, and the message includes: downloading the user identifier 2, the file name A of the shared file, which is very common to those skilled in the art. It is easy to infer that the shared file name A in the download request message can also be any information that can identify the shared file, such as a keyword or file identifier of the file name.

步骤 605: 管理服务器接收该请求, 查找允许该用户下载的信息; 查找到后向下载用户 2发送响应消息, 该消息包括: 共享文件名 A、 共 享文件 A的用户标识 1与共享用户 1的网络连接信息。 步骤 606: 下载用户终端 2向共享用户 1发送携带有共享文件名 A 的下载请求, 共享用户 1响应该请求, 向下载用户 2传输共享文件 A。 Step 605: The management server receives the request, and finds information that is allowed to be downloaded by the user. The search message is sent to the download user 2, and the message includes: a shared file name A, a user identifier 1 of the shared file A, and a network of the shared user 1. Connection information. Step 606: The download user terminal 2 transmits a download request carrying the shared file name A to the shared user 1, and the shared user 1 transmits the shared file A to the download user 2 in response to the request.

实施例 5, 对应于实施例 2, 用户终端配置的本地访问控制策略库 还可以通过临时密钥对请求下载的用户进行进一步的身份险证, 加强安 全性。 参见图 7为增加临时密钥的下载流程图:  Embodiment 5: Corresponding to Embodiment 2, the local access control policy library configured by the user terminal can further carry out further identity insurance for the user who requests the download through the temporary key, thereby enhancing security. See Figure 7 for a flowchart for adding a temporary key download:

步骤 701 : 下载用户终端 2通过网络向登录服务器发送下载用户 2 的 ID与下载用户 2网络连接信息。  Step 701: The download user terminal 2 sends the ID of the download user 2 and the download user 2 network connection information to the login server through the network.

步骤 702: 登录服务器验证这些信息是否正确, 若正确则下载用户 2通过验证并向其反馈管理服务器网络连接信息,不正确则结束该流程。  Step 702: The login server verifies whether the information is correct. If it is correct, the download user 2 passes the verification and feeds back to the management server network connection information, and if not, the process ends.

步骤 703: 登录服务器对下载用户 2生成一个临时密钥, 并将该临 时密钥反馈给共享用户终端 2。  Step 703: The login server generates a temporary key for the download user 2, and feeds back the temporary key to the shared user terminal 2.

步骤 704: 登录服务器将下载用户 2的 ID、 共享用户 2网络连接信 息及共享用户 2的临时密钥发送给管理服务器; 管理服务器将这些信息 对应保存。  Step 704: The login server sends the ID of the download user 2, the shared user 2 network connection information, and the temporary key of the shared user 2 to the management server; the management server saves the information correspondingly.

步骤 705: 共享用户终端 向管理服务器发送共享文件 A的下载文 件请求消息, 该消息包括: 下载用户标识 2、 共享文件的文件名 A。  Step 705: The shared user terminal sends a download file request message of the shared file A to the management server, and the message includes: downloading the user identifier 2. The file name A of the shared file.

步骤 706: 管理服务器接收该请求, 查找允许该用户下载的信息; 查找到后向下载用户 2发送响应消息, 该消息包括: 共享文件名 A、 共 享文件 A的用户标识 1、 共享用户 1的网络连接信息与共享用户 1的临 时密钥。  Step 706: The management server receives the request, and finds information that is allowed to be downloaded by the user. The search message is sent to the download user 2, and the message includes: a shared file name A, a user identifier of the shared file A, and a network sharing the user 1. The connection information and the temporary key of the shared user 1.

步骤 707: 下载用户终端 向共享用户 1发送携带有共享文件名 A 的下载请求, 并同时包含下载用户 2所获知的共享用户 1的临时密钥。  Step 707: The download user terminal sends a download request carrying the shared file name A to the shared user 1, and also includes the temporary key of the shared user 1 obtained by the download user 2.

步骤 708: 共享用户终端 1在对下载用户 2传来的临时密钥 ^ 证成 功后, 向下载用户 2传输共享文件 A。  Step 708: The shared user terminal 1 transmits the shared file A to the download user 2 after the temporary key certificate issued by the download user 2 is successful.

在增加了共享文件安全性的基 上进一步增加其私密性, 可以在下 载用户 2接收到临时密钥后将该临时密钥加密; 在共享用户 1收到下载 用户 2发送的下载请求时, 先将临时密钥解密后再验证临时密钥的合法 性, 由于大部分步骤都相同, 在此不再累述。 Further increase the privacy of the shared file security, you can After receiving the temporary key, the user 2 encrypts the temporary key; when the shared user 1 receives the download request sent by the download user 2, the temporary key is decrypted and then the validity of the temporary key is verified, since most The steps are the same and will not be repeated here.

实施例 6, 对应于实施例 3, 当下载用户收到邀请下载信息时的下 载流程如下:  Embodiment 6, corresponding to Embodiment 3, the downloading process when the downloading user receives the invitation downloading information is as follows:

步骤 801: 在下载通过登录服务器认证后, 判断是否收到邀请下载 信息, 该邀请下载信息包括: 共享用户标识 1、 共享文件名 A、 共享用 户 1网络连接信息等; 没有收到则执行步骤 802; 收到则执行步骤 803。  Step 801: After the login is authenticated by the login server, it is determined whether the invitation download information is received, and the invitation download information includes: a shared user identifier 1, a shared file name A, a shared user 1 network connection information, and the like; ; If yes, go to step 803.

步骤 802: 继续执行与管理服务器常规信息交互。  Step 802: Continue to perform regular information interaction with the management server.

步骤 803: 忽略该请求或者与共享用户终端 1建立连接, 下载共享 文件。 如果此时共享用户 1已经离线或共享用户终端 1已经不共享文件 A, 则管理服务器可以向共享用户 2返回具有共享文件 A副本、 且允许 其访问的其他用户。  Step 803: Ignore the request or establish a connection with the shared user terminal 1 to download the shared file. If the shared user 1 is offline or the shared user terminal 1 has not shared the file A at this time, the management server can return to the shared user 2 another user who has a copy of the shared file A and allows access thereto.

该步骤中所述的建立连接可能是比较复杂的过程, 例如需要解密、 描述, 在此不再累述。  The establishment of the connection described in this step may be a relatively complicated process, such as decryption, description, and no further description here.

在实施例 4至 6中, 当下载用户 2下载完共享文件 A后, 可以进一 步向管理服务器反馈, 管理服务器进一步将下载用户标识 2、 下载用户 网络连接信息、共享文件名 A添加到共享文件 A的用户信息;或者在下 载用户 2下载共享文件 A的过程中向管理服务器反馈下载用户标识 2、 下载用户网络连接信息、共享文件名 A和下载进度。 管理服务器在收到 上述的反馈后通知其他下载文件 A的用户,其他下载的用户可以通过管 理服务器保存的网络连接信息连接到下载用户 2下载共享文件 A, 从而 提高其他下载用户的下载速度。 这样就使得同一文件在共享控制策略上 具有继 生。 并且在下载用户下载完共享文件后, 都可以将该共享文件 设置为共享状态, 以方便其他的用户进行下载。 下载用户还可以进一步 向管理服务器反馈允许访问的用户标识。 例如, 下载用户 2下载完共享 文件后, 可以将下载到下载用户 2所在用户终端上的文件, 即共享文件In the embodiments 4 to 6, after the download user 2 downloads the shared file A, the management server may further feed back the management server, and the management server further adds the download user identifier 2, the download user network connection information, and the shared file name A to the shared file A. User information; or in the process of downloading the shared file A by the downloading user 2, the downloading user identifier 2, the downloading user network connection information, the shared file name A, and the download progress are fed back to the management server. After receiving the above feedback, the management server notifies the other users who download the file A. Other downloaded users can connect to the download user 2 to download the shared file A through the network connection information saved by the management server, thereby improving the download speed of other download users. This allows the same file to have a succession in the shared control strategy. And after the download user downloads the shared file, the shared file can be Set to shared state for other users to download. The download user can further feed back to the management server the user ID that is allowed to be accessed. For example, after the download user 2 downloads the shared file, the downloaded file can be downloaded to the user terminal where the user 2 is located, that is, the shared file.

A的一个副本 B设置为共享状态, 并向管理服务器反馈能够下载副本 B 的用户标识, 这样可以进一步增强文件可控共享的继承性。 A copy of A is set to the shared state, and feedback to the management server is able to download the user ID of copy B, which further enhances the inheritance of file controllable sharing.

为了完善对共享文件的控制功能, 用户还可以进行对共享文件的取 消共享操作: 例如共享用户 1通过登录服务器认证, 登录服务器将用户 标识及该用户网络连接信息发送至管理服务器保存后, 共享用户 1向管 理服务器发送取消共享信息 (Share-Revoking Message), 该信息包括: 共 享文件名、 共享用户标识; 管理服务器接收到取消共享消息后, 将对应 的文件取消共享。 在增加了临时密钥后, 取消共享的操作可以根据实施 例 2进行相应的变化, 在此不再累述。  In order to improve the control function of the shared file, the user can also perform the unshared operation on the shared file: for example, the shared user 1 authenticates by logging in to the server, and the login server sends the user identifier and the user network connection information to the management server for saving, and then shares the user. 1 Sending a Share-Revoking Message to the management server, the information includes: a shared file name and a shared user identifier; after receiving the unshared message, the management server unshares the corresponding file. After the temporary key is added, the operation of canceling the sharing can be changed according to Embodiment 2, and will not be described here.

为了完善对共享文件的控制功能, 用户还可以进行对共享文件进行 统计:  In order to improve the control of shared files, users can also perform statistics on shared files:

用户通过登录服务器认证, 登录服务器将用户标识及该用户网络连 接信息发送至管理服务器保存后, 用户向管理服务器发送统计其共享过 的文件请求。  The user authenticates by logging in to the server. After the login server sends the user ID and the user network connection information to the management server for storage, the user sends a statistics request to the management server for the shared file.

管理服务器统计该用户标识共享过的所有可用共享文件信息, 并向 用户反馈。 该可用共享信息包括了其他用户下载过该文件后的可用连接 信息。 也就是说共享信息中除了包括最初共享该共享文件的用户标识和 网络连接信息外, 还可以包括其他下载了该文件的用户的网络连接信息 和用户标识。  The management server collects all available shared file information shared by the user ID and gives feedback to the user. The available shared information includes available connection information after other users have downloaded the file. That is to say, in addition to the user identifier and network connection information that originally shared the shared file, the shared information may include other network connection information and user identifier of the user who downloaded the file.

当用户在多个终端上登录的情况下, 有可能共享文件放在非当前登 录的终端上, 造成其他用户根据该用户发布共享文件时的网络连接信息 下载该共享文件失败。 而如果类似的无效的网络连接信息增多的时候就 会影响用户下载的效率。 通过本发明提供的统计可用共享文件的方法, 用户能清楚的了解哪些共享文件的网络连接信息有效, 哪些共享文件的 网络连接信息虽然无效, 但是其副本的网络连接信息仍然有效, 从而用 户可以主动取消已经没有有效网络连接信息的共享文件, 提高共享的效 率。 而且, 通过对共享文件进行统计, 用户也可以进一步加强对共享文 件的控制和管理, 如增加或减少可下载共享文件的用户标识, 或者邀请 其他用户下载共享文件等。 When the user logs in on multiple terminals, it is possible that the shared file is placed on the terminal that is not currently logged in, causing other users to fail to download the shared file according to the network connection information when the user issues the shared file. And if similar invalid network connection information increases, Will affect the efficiency of user downloads. Through the method of sharing available files provided by the present invention, the user can clearly understand which network connection information of the shared file is valid, and the network connection information of the shared files is invalid, but the network connection information of the copy is still valid, so that the user can take the initiative. Cancel shared files that have no valid network connection information, improving the efficiency of sharing. Moreover, by counting the shared files, the user can further strengthen the control and management of the shared files, such as increasing or decreasing the user ID of the downloadable shared file, or inviting other users to download the shared file.

上述的发布共享文件及下载共享文件的方法都是在如图 所示的网 络系统架构中实现的。 下面叙述一下本发明实施例系统的作用。  The above method of distributing shared files and downloading shared files is implemented in the network system architecture as shown in the figure. The function of the system of the embodiment of the present invention will now be described.

登录服务器 1 , 用于存储所有用户标识; 接收用户终端 2发送的用 户标识, 验证用户标识是否合法, 若是则向管理服务器 2发送用户标识 及该用户网络连接信息; 并将管理服务器的网络连接信息发送给用户终 端 2。  The login server 1 is configured to store all user identifiers; receive the user identifier sent by the user terminal 2, verify whether the user identifier is legal, and if yes, send the user identifier and the user network connection information to the management server 2; and manage the server network connection information. Send to user terminal 2.

管理服务器 2, 用于保存登录服务器 1发送的用户标识与该用户网 络连接信息; 接收用户发送的共享请求消息并保存, 该消息包括: 共享 文件的文件名及能够下载该共享文件的用户标识; 接收用户发送的请求 下载消息, 该消息中携带有请求下载文件的文件名及该用户标识; 在接 收到请求下载消息后, 查找允许该用户下载的信息, 查找到后向下载用 户发送响应消息, 该消息包括: 共享文件名、 共享该文件的用户标识及 网络连接信息。  The management server 2 is configured to save the user identifier sent by the login server 1 and the user network connection information; receive and share the sharing request message sent by the user, where the message includes: a file name of the shared file and a user identifier capable of downloading the shared file; Receiving a request download message sent by the user, the message carrying the file name of the file to be downloaded and the user identifier; after receiving the request to download the message, searching for the information that the user is allowed to download, and sending the response message to the downloading user after searching The message includes: a shared file name, a user ID that shares the file, and network connection information.

用户终端 3, 用于向登录服务器 1发送用户标识; 向管理服务器 2 发送所述的共享请求消息或请求下载消息; 接收其他用户终端发送的下 载请求, 并向其他用户终端传输共享文件。  The user terminal 3 is configured to send a user identifier to the login server 1; send the sharing request message or request a download message to the management server 2; receive a download request sent by another user terminal, and transmit the shared file to other user terminals.

为了提高系统的安全性, 增加了临时密钥的功能, 因此登录服务器 1 在上述功能的基 上, 进一步用于在接收到用户标识后对应该用户标 识生成一个临时密钥;并将该临时密钥发送用户终端 3与管理服务器 2。 管理服务器 2在上述功能的基 上, 进一步保存该临时密钥; 在接 收用户终端发送的临时密钥与所述的共享请求消息后, 在确认本地存在 与接收到的用户终端发送的临时密钥相同的临时密钥后保存所述的共 享请求消息; 在向用户终端发送响应消息时进一步包括: 共享该文件用 户的临时密钥。 In order to improve the security of the system, the function of the temporary key is added. Therefore, the login server 1 is further used on the basis of the above functions to correspond to the user identifier after receiving the user identifier. A temporary key is generated; and the temporary key is transmitted to the user terminal 3 and the management server 2. The management server 2 further saves the temporary key on the basis of the above function; after receiving the temporary key sent by the user terminal and the sharing request message, confirming the local presence and the temporary key sent by the received user terminal The sharing request message is saved after the same temporary key; when the response message is sent to the user terminal, the method further includes: sharing the temporary key of the file user.

用户终端 3在上述功能的基 上, 本地访问控制策略库进一步用于 接收登录服务器发送的临时密钥并保存; 在向管理服务器 2发送共享请 求消息的同时发送该临时密钥; 在向其他用户终端发送下载请求时进一 步包括其他用户的临时密钥; 接收到其他用户发送的包括该临时密钥的 下载请求时, 在通过密钥险证后向其他用户终端传输共享文件。  The user terminal 3 is further configured to receive the temporary key sent by the login server and save the user terminal 3 on the basis of the foregoing function; send the temporary key while transmitting the sharing request message to the management server 2; When the terminal sends the download request, the temporary key of the other user is further included; when the download request including the temporary key sent by another user is received, the shared file is transmitted to other user terminals after passing the key insurance.

为了使用户能够及时的获取共享文件信息, 管理服务器 2增加了邀 请模块。  In order to enable the user to obtain shared file information in time, the management server 2 adds an invitation module.

因此用户终端 3 , 进一步用于在向管理服务器 2发送共享请求消息 的同时还发送携带有下载用户标识的邀请下载信息; 在通过登录服务器 1 的用户标识验证后, 判断是否收到邀请下载信息, 该信息包括邀请下 载的共享文件名、 共享用户网络连接信息、 共享用户标识; 若没收到则 下载用户与管理服务器执行常规信息交互; 若收到则与共享用户建立连 接下载共享文件或忽略该邀请下载信息后, 下载用户再与管理服务器执 行常规信息交互。  Therefore, the user terminal 3 is further configured to: when the sharing request message is sent to the management server 2, the invitation downloading information carrying the downloaded user identifier is also sent; after the user identifier of the login server 1 is verified, it is determined whether the invitation downloading information is received. The information includes the shared file name of the invitation download, the shared user network connection information, and the shared user identifier; if not received, the download user performs regular information interaction with the management server; if received, establishes a connection with the shared user to download the shared file or ignore the invitation. After downloading the information, the download user performs regular information interaction with the management server.

管理服务器 2的邀请模块用于在保存共享请求消息时, 判断邀请下 载的用户是否在线, 向在线的邀请下载用户发送携带有该共享文件名、 共享用户网络连接信息、 共享用户标识的邀请下载信息; 将不在线的邀 请下载用户标识、 与所述的邀请下载信息对应保存; 并在预置的有效期 限内、 当邀请下载的用户在线时向邀请下载的用户发送, 同时删除保存 的该邀请下载信息。 The invitation module of the management server 2 is configured to determine, when the sharing request message is saved, whether the user who invited the download is online, and send the invitation downloading information carrying the shared file name, the shared user network connection information, and the shared user identifier to the online invitation downloading user. Downloading the user ID of the offline invitation and saving it corresponding to the invitation download information; and sending the user who invites the download to the user within the preset validity period, and deleting the save The invitation to download the information.

为了更加完善该文件可控系统的功能, 增加了用户取消其共享的某 些或全部文件的功能。  In order to further improve the function of the file controllable system, the function of canceling some or all of the files shared by the user is added.

因此用户终端 3, 进一步用于管理服务器保存登录服务器发送的用 户标识与该用户网络连接信息后, 向管理服务器发送取消共享消息, 该 消息包括: 共享文件名和共享用户标识。  Therefore, the user terminal 3 is further configured to: after the management server saves the user identifier sent by the login server and the user network connection information, send a cancel sharing message to the management server, where the message includes: a shared file name and a shared user identifier.

管理服务器 2的全局访问控制策略库, 进一步用于在接收到所述的 取消共享消息后, 搜索共享文件, 并取消该文件的共享并删除该文件的 共享信息。 也可以不仅将共享用户的这个共享文件条目删除, 同时也删 除其他因为下载该文件而缺省共享此文件的用户的共享文件条目, 即将 其他用户的共享副本也取消。 这个也是源自共享消息的继承性。  The global access control policy library of the management server 2 is further configured to search for the shared file after receiving the unshared message, cancel the sharing of the file, and delete the shared information of the file. It is also possible to delete not only the shared file entry of the shared user but also the shared file entry of the other user who shared the file by default by downloading the file, that is, the shared copy of the other user is also canceled. This is also derived from the inheritance of shared messages.

为了更加完善该文件可控系统的功能, 还增加了用户统计其共享文 件信息的功能。 这里的统计就是指查询获得本用户所共享的所有文件的 基本信息, 包括之前在其他机器上共享的和现在共享的, 以及各文件的 可用性。 本文提出的^ ^于用户登录模式的共享, 因此假设用户 A曾经 在某一台计算机登录且共享过那台计算机的某个文件, 当用户 A退出之 后在其他计算机上登录时, 仍然可以查看到以前所共享的文件名等基本 信息, 但由于用户终端变化, 所以用户 A自己都无法实际读取到那个曾 共享的文件。 但是, 如果在用户 A上一次共享的过程中, 有另一个用户 B下载了该文件, 且该用户 B此时在线, 那么用户 A及其他用户仍然可 以访问到上次共享的其他计算机上的文件。这里, B既是服务使用者(下 载了文件使用), 又是服务提供者 (起到了延续文件的可用性和中转的 作用)。 在响应 A的统计的时候, 管理服务器仍然认为该文件是可用的, 并将其告诉 A。  In order to further improve the function of the file controllable system, the function of the user to share the shared file information is also added. The statistics here refer to the basic information of all the files shared by the user, including those shared and shared on other machines, and the availability of each file. This article proposes the sharing of the user login mode, so it is assumed that user A has logged in on one computer and shared a file of that computer. When user A logs out and logs in on another computer, he can still view it. The basic information such as the file name shared previously, but because the user terminal changes, the user A himself cannot actually read the file that was shared. However, if another user B downloads the file during user A's last share, and the user B is online at this time, user A and other users can still access the files on the other computers that were last shared. . Here, B is both a service consumer (downloading file usage) and a service provider (which serves to extend the availability and transit of files). In response to A's statistics, the management server still considers the file available and tells A.

因此用户终端 3, 进一步用于管理服务器 2保存登录服务器发送的 用户标识与该用户网络连接信息后, 向管理服务器发送统计用户标识共 享过文件的请求。 Therefore, the user terminal 3 is further used by the management server 2 to save the login server. After the user identifier is connected to the user network, the user is sent a request to the management server to collect the shared file identifier.

管理服务器 2, 进一步用于接收到所述的统计请求后, 统计该用户 标识共享过的所有可用共享文件信息, 并向用户终端 1反馈。  The management server 2 is further configured to: after receiving the statistical request, collect statistics about all available shared files shared by the user identifier, and feed back the information to the user terminal 1.

实施例 6, 参见图 8 , 本发明的实施提供了一种文件管理服务器, 该管理服务器包括上传单元 902、 下载单元 903和策略库 901。  Embodiment 6, Referring to FIG. 8, an implementation of the present invention provides a file management server including an uploading unit 902, a downloading unit 903, and a policy library 901.

其中上传单元 902用于接收提供可下载文件的终端发送的第一消 息, 第一消息中携带该终端的网络连接信息、 可下载文件的文件名及 至少一个被允许下载的用户的标识。 策略库 901 用于存储上传单元 902接收的至少一个可下载文件的信息, 包括: 文件名、 提供可下载 文件的终端的网络连接信息和至少一个被允许下载的用户的标识。下 载单元 903用于接收请求下载的终端发送的第二消息。第二消息中携 带可下载文件的文件名以及请求下载的用户的标识。下载单元 903查 询策略库 901 , 如果请求下载的用户被允许下载该文件名对应的可下 载文件,则向请求下载的终端发送携带可下载文件的文件名及其对应 的终端的网络连接信息的消息。  The uploading unit 902 is configured to receive the first message sent by the terminal that provides the downloadable file, where the first message carries network connection information of the terminal, a file name of the downloadable file, and an identifier of at least one user that is allowed to be downloaded. The policy library 901 is configured to store information of the at least one downloadable file received by the uploading unit 902, including: a file name, network connection information of the terminal providing the downloadable file, and an identifier of at least one user allowed to download. The download unit 903 is configured to receive the second message sent by the terminal requesting the download. The name of the file carrying the downloadable file in the second message and the identifier of the user requesting the download. The downloading unit 903 queries the policy library 901, and if the user requesting the download is allowed to download the downloadable file corresponding to the file name, sends a message carrying the file name of the downloadable file and the network connection information of the corresponding terminal to the terminal requesting the download. .

在上传单元 902收到的第一消息中还可以进一步携带发布可下载 文件的用户的标识。策略库 901还可以进一步用于保存发布可下载文 件的用户的标识; 其中, 每一个发布可下载文件的用户的标识对应至 少一个可下载文件的信息。文件管理服务器还可以进一步包括邀请单 元 904。 邀请单元 904用于接收携带有被邀请下载的用户的标识的第 三消息。第三消息中携带被邀请下载的用户的标识和可下载文件的文 件名。邀请单元 904在策略库 901中查找可下载文件的文件名对应的 可下载文件的信息,并在被邀请下载的用户上线时向其发送携带可下 载文件的文件名、发布可下载文件的用户的标识和发布可下载文件的 用户对应的终端的网络连接信息的消息。 The identifier of the user who issues the downloadable file may further be carried in the first message received by the uploading unit 902. The policy library 901 may be further configured to save an identifier of a user who publishes the downloadable file; wherein, the identifier of each user who issues the downloadable file corresponds to information of the at least one downloadable file. The file management server may further include an invitation unit 904. The invitation unit 904 is configured to receive a third message carrying the identity of the user invited to download. The third message carries the identifier of the user who is invited to download and the file name of the downloadable file. The inviting unit 904 searches the policy library 901 for the information of the downloadable file corresponding to the file name of the downloadable file, and sends the file name carrying the downloadable file and the user who issues the downloadable file to the user who is invited to download when the user is online. Identify and publish downloadable files The message of the network connection information of the terminal corresponding to the user.

策略库 901还可以进一步用于设置第一消息携带的文件名对应的 可下载文件为共享状态, 并按指示取消所设置的共享状态。 管理服务 器还可以进一步包括共享取消单元 905。 共享取消单元 905用于接收 终端发送的第四消息。 第四消息中包括文件名、 发布可下载文件的用 户的标识。共享取消单元 905在策略库 901中搜索对应文件名和发布 可下载文件的用户的标识的可下载文件,指示策略库 901取消可下载 文件的共享状态。  The policy library 901 is further configured to set the downloadable file corresponding to the file name carried by the first message to a shared state, and cancel the set sharing state according to the indication. The management server may further include a sharing cancellation unit 905. The sharing cancellation unit 905 is configured to receive the fourth message sent by the terminal. The fourth message includes the file name and the identity of the user who posted the downloadable file. The sharing cancel unit 905 searches the policy library 901 for a downloadable file corresponding to the file name and the identifier of the user who posted the downloadable file, instructing the policy library 901 to cancel the sharing state of the downloadable file.

管理服务器进一步包括统计单元 906。 统计单元 906用于接收终 端发送的携带用户的标识的统计请求。统计单元 906查询策略库 901 , 统计用户的标识对应的用户已发布的可下载文件中所有具有可用网 络连接的可下载文件, 并将统计结果发送给终端。  The management server further includes a statistics unit 906. The statistic unit 906 is configured to receive a statistical request for carrying the identifier of the user sent by the terminal. The statistic unit 906 queries the policy library 901, and counts all downloadable files with available network connections in the downloadable file that the user corresponding to the user's identifier corresponds to, and sends the statistics to the terminal.

管理服务器还包括密码集 907。 密码集 907用于接收登录服务器 和终端发送的临时密钥, 验证终端发送的临时密钥是否合法, 如果合 法, 指示策略库 901保存发布可下载文件的终端的网络连接信息、 可 下载文件的文件名及至少一个被允许下载的用户的标识,并向请求下 载的终端发送携带临时密码的消息。  The management server also includes a password set 907. The password set 907 is configured to receive the temporary key sent by the login server and the terminal, and verify whether the temporary key sent by the terminal is legal. If it is legal, the policy database 901 is saved to save the network connection information of the terminal that can download the file, and the file of the downloadable file. And the identifier of the at least one user who is allowed to download, and sends a message carrying the temporary password to the terminal requesting the download.

实施例 7 , 参见图 9, 本发明的实施例提供了一种终端。 该终端 包括策略库 1001和第一单元 1002。  Embodiment 7 Referring to FIG. 9, an embodiment of the present invention provides a terminal. The terminal includes a policy library 1001 and a first unit 1002.

其中策略库 1001 用于保存至少一个可下载文件的信息。 该信息 包括可下载文件的文件名和至少一个被允许下载可下载文件的用户 的标识。 第一单元 1002用于向第一服务器发送第一消息。 第一消息 中携带终端的网络连接信息、可下载文件的文件名及至少一个被允许 下载的用户的标识。  The policy library 1001 is used to save information of at least one downloadable file. This information includes the file name of the downloadable file and the identity of at least one user who is allowed to download the downloadable file. The first unit 1002 is configured to send the first message to the first server. The first message carries the network connection information of the terminal, the file name of the downloadable file, and the identifier of at least one user who is allowed to download.

该终端还进一步包括第二单元 1003。 第二单元 1003用于向第二 服务器发送携带终端对应的用户的标识的消息以进行身份验证,并接 收第二服务器返回的携带第一服务器的网络连接信息的消息。此时策 略库 1001进一步用于保存第二单元 1003接收到的第一服务器的网络 连接信息。第一单元 1002用于按策略库 1001保存的第一服务器的网 络连接信息向第一服务器发送第一消息。 The terminal further includes a second unit 1003. The second unit 1003 is for the second The server sends a message carrying the identifier of the user corresponding to the terminal to perform identity verification, and receives a message returned by the second server that carries the network connection information of the first server. At this time, the policy library 1001 is further configured to save the network connection information of the first server received by the second unit 1003. The first unit 1002 is configured to send the first message to the first server according to the network connection information of the first server saved by the policy library 1001.

终端还可以进一步包括第三单元 1004。 第三单元 1004用于接收 第二服务器返回的携带临时密钥的消息。 此时策略库 1001进一步用 于保存第三单元 1004接收到的临时密钥。第一单元 1002进一步用于 在向第一服务器发送的第一消息中进一步携带策略库 1001保存的临 时密钥以进行合法性验证。  The terminal may further include a third unit 1004. The third unit 1004 is configured to receive a message carrying the temporary key returned by the second server. At this time, the policy library 1001 is further used to save the temporary key received by the third unit 1004. The first unit 1002 is further configured to further carry the temporary key saved by the policy library 1001 in the first message sent to the first server for validity verification.

终端还可以进一步包括第四单元 1005。 第四单元 1005用于接收 携带临时密钥的请求下载可下载文件的消息。 第四单元 1005根据策 略库保存的临时密钥验证请求下载可下载文件的消息, 如果验证通 过, 则允许下载可下载文件。  The terminal may further include a fourth unit 1005. The fourth unit 1005 is configured to receive a message carrying a temporary key request to download the downloadable file. The fourth unit 1005 downloads the downloadable file according to the temporary key verification request saved by the policy library, and if the verification passes, allows downloading the downloadable file.

上述的终端还可以进一步包括用于向第一服务器发送携带可下载文 件的文件名和终端对应的用户的标识的消息、 并根据第一服务器返回的 提供可下载文件的终端的网络连接信息下载可下载文件的单元。  The terminal may further include a message for sending a file name carrying the downloadable file and an identifier of the user corresponding to the terminal to the first server, and downloading and downloading according to the network connection information of the terminal that provides the downloadable file returned by the first server. The unit of the file.

上述的终端还可以进一步包括以下单元中任一者或任几者: 用于发送携带被邀请下载的用户的标识和可下载文件的文件名的 消息到第一服务器以邀请下载可下载文件的单元;  The above terminal may further include any one or any of the following units: a unit for transmitting a message carrying the identifier of the user who is invited to download and the file name of the downloadable file to the first server to invite the unit to download the downloadable file ;

用于发送携带文件名、发布可下载文件的用户的标识的消息到第 一服务器以取消可下载文件的共享状态的单元;  a unit for transmitting a message carrying a file name, an identifier of a user who issues a downloadable file to a first server to cancel a shared state of the downloadable file;

用于发送携带发布可下载文件的用户的标识的消息到第一服务器以 统计发布可下载文件的用户已发布的可下载文件中所有具有可用网络 连接的可下载文件、 并接收所述第一服务器返回的统计结果的单元。 综上所述, 由于本发明实施例采用了用户标识的登录方法, 并且通 过全局访问控制策略和用户终端本地访问控制策略的方法, 即用户可以 自行选择向哪些用户共享文件的权限, 使得管理服务器在搜索下载请求 信息时只搜索到允许该用户下载的共享文件信息, 实现了由用户控制的 文件共享方式。 虽然增加了登录服务器, 但是由服务提供商来负担的, 不需要用户自己架设服务器, 没有增加用户的硬件或系统开销。 Sending a message carrying an identifier of a user who publishes the downloadable file to the first server to count all downloadable files with available network connections in the user-published downloadable file that publishes the downloadable file, and receiving the first server The unit of the returned statistical result. In summary, the embodiment of the present invention adopts a login method of the user identifier, and adopts a global access control policy and a method for the local access control policy of the user terminal, that is, the user can select the rights to share files to which users, so that the management server When searching for the download request information, only the shared file information that the user is allowed to download is searched, and the file sharing mode controlled by the user is realized. Although the login server is added, it is not required for the service provider to set up the server itself, and does not increase the hardware or system overhead of the user.

并且增加了临时密钥、 对临时密钥加密, 在用户发布于下载的过程 中都需要进行验证, 加强了对文件下载与发布的安全性。 并增加了对共 享文件的时间控制, 在一定程度上能够降低管理服务器存储压力。  Moreover, the temporary key is added, and the temporary key is encrypted. The user needs to perform verification during the process of downloading and downloading, which enhances the security of file downloading and publishing. It also increases the time control of the shared files, which can reduce the storage pressure of the management server to a certain extent.

在上述实施例中, 登录服务器的引入提高了文件发布和下载的安全 性。 但是在没有登录服务器的情况下, 如果用户知道管理服务器的网络 连接信息, 通过用户自行选择向哪些用户共享文件, 使得管理服务器在 搜索下载请求信息时只搜索到允许该用户下载的共享文件信息, 也可以 实现由用户控制的文件共享方式。  In the above embodiment, the introduction of the login server improves the security of file publishing and downloading. However, if the user does not log in to the server, if the user knows the network connection information of the management server, the user selects which users to share the file with, so that the management server only searches for the shared file information that the user is allowed to download when searching for the download request information. It is also possible to implement a file sharing method controlled by the user.

在实现了共享、 下载文件安全可控的情况下, 本发明实施例还提供 了邀请机制, 使得用户能够及时的获取共享信息; 取消共享、 统计共享 信息的功能进一步完善了文件共享、 下载可控的方法与系统, 提高了用 户满意度。  In the case that the sharing and the downloading of the file are safe and controllable, the embodiment of the present invention further provides an invitation mechanism, so that the user can obtain the shared information in time; the function of canceling sharing and counting the shared information further improves the file sharing and download controllable. The method and system have improved user satisfaction.

以上对本发明实施例所提供的一种共享文件的发布、 下载方法及文 件共享可控系统进行了详细介绍, 本文中应用了具体个例对本发明的原 理及实施方式进行了阐述, 以上实施例的说明只是用于帮助理解本发明 的方法及其核心思想; 同时, 对于本领域的一般技术人员, 依据本发明 的思想, 在具体实施方式及应用范围上均会有改变之处, 综上所述, 本 说明书内容不应理解为对本发明的限制。  The method for publishing and downloading a shared file and the file sharing controllable system provided by the embodiments of the present invention are described in detail. The principles and implementation manners of the present invention are described in the following examples. The description is only for helping to understand the method of the present invention and its core idea; at the same time, for those skilled in the art, according to the idea of the present invention, there will be changes in specific embodiments and application scopes. The contents of this specification are not to be construed as limiting the invention.

Claims

权利要求书 Claim 1、 一种文件的发布方法, 其特征在于, 包括:  A method for distributing a file, comprising: 用于提供可下载文件的终端向第一服务器发送第一消息, 所述第 一消息携带可下载文件的文件名以及至少一个被允许下载的用户的 标识;  The terminal for providing the downloadable file sends a first message to the first server, where the first message carries the file name of the downloadable file and the identifier of at least one user who is allowed to download; 第一服务器获取终端的网络连接信息;  The first server acquires network connection information of the terminal; 第一服务器保存可下载文件的信息, 包括: 文件名、 终端的网络 连接信息、 至少一个被允许下载的用户的标识。  The first server saves the information of the downloadable file, including: a file name, network connection information of the terminal, and an identifier of at least one user who is allowed to download. 2、 根据权利要求 1所述的发布方法, 其特征在于,  2. The method of publishing according to claim 1, wherein 所述终端进一步在所述第一消息中携带发布可下载文件的用户 的标识;  The terminal further carries an identifier of a user who issues a downloadable file in the first message; 第一服务器收到所述第一消息后, 进一步保存发布可下载文件的 用户的标识; 其中, 每一发布可下载文件的用户的标识对应至少一个 可下载文件的信息。  After receiving the first message, the first server further saves the identifier of the user who issues the downloadable file; wherein, the identifier of the user who issues the downloadable file corresponds to the information of the at least one downloadable file. 3、 根据权利要求 2所述的发布方法, 其特征在于, 进一步包括: 所述终端在发往所述第一服务器的第一消息中进一步携带被邀 请下载的用户的标识;  The method according to claim 2, further comprising: the terminal further carrying the identifier of the user invited to download in the first message sent to the first server; 所述第一服务器判断所述被邀请下载的用户是否在线,  Determining, by the first server, whether the user invited to download is online, 如果在线, 向所述被邀请下载的用户发送携带可下载文件的文件 名、发布所述可下载文件的用户的标识和所述终端的网络连接信息的 消息;  If online, sending, to the user invited to download, a file name carrying a downloadable file, an identifier of a user who issues the downloadable file, and a message of network connection information of the terminal; 如果不在线,在所述被邀请下载的用户上线时向其发送携带所述 可下载文件的文件名、发布所述可下载文件的用户的标识和所述终端 的网络连接信息的消息。  If not online, the user who is invited to download is sent a message carrying the file name of the downloadable file, the identifier of the user who posted the downloadable file, and the network connection information of the terminal. 4、 根据权利要求 3所述的发布方法, 其特征在于, 所述终端在发往所述第一服务器的第一消息中进一步携带所述 邀请的有效期限; 4. The method of distributing according to claim 3, characterized in that The terminal further carries an expiration date of the invitation in a first message sent to the first server; 在所述有效期限内, 当所述被邀请下载的用户在线时, 所述第一 服务器向所述被邀请下载的用户发送所述可下载文件的文件名、所述 终端的用户标识及其网络连接信息。  During the expiration date, when the user invited to download is online, the first server sends the file name of the downloadable file, the user identifier of the terminal, and a network thereof to the user who is invited to download. Connection information. 5、 根据权利要求 2所述的发布方法, 其特征在于, 进一步包括: 所述终端向所述第一服务器发送第二消息, 所述第二消息携带被 邀请下载的用户的标识和可下载文件的文件名;  The method according to claim 2, further comprising: the terminal sending a second message to the first server, where the second message carries an identifier of the user invited to download and a downloadable file File name; 所述第一服务器判断所述被邀请下载的用户是否在线,  Determining, by the first server, whether the user invited to download is online, 如果在线, 向所述被邀请下载的用户发送携带可下载文件的文件 名、发布所述可下载文件的用户的标识和所述终端的网络连接信息的 消息;  If online, sending, to the user invited to download, a file name carrying a downloadable file, an identifier of a user who issues the downloadable file, and a message of network connection information of the terminal; 如果不在线,在所述被邀请下载的用户上线时向其发送携带所述 可下载文件的文件名、发布所述可下载文件的用户的标识和所述终端 的网络连接信息的消息。  If not online, the user who is invited to download is sent a message carrying the file name of the downloadable file, the identifier of the user who posted the downloadable file, and the network connection information of the terminal. 6、 根据权利要求 5所述的发布方法, 其特征在于,  6. The method of publishing according to claim 5, wherein 所述终端向所述第一服务器发送的第二消息中进一步携带所述 邀请的有效期限;  The second message sent by the terminal to the first server further carries an expiration date of the invitation; 在所述有效期限内, 当所述被邀请下载的用户在线时, 所述第一 服务器向所述被邀请下载的用户发送所述可下载文件的文件名、所述 终端的用户标识及其网络连接信息。  During the expiration date, when the user invited to download is online, the first server sends the file name of the downloadable file, the user identifier of the terminal, and a network thereof to the user who is invited to download. Connection information. 7、 根据权利要求 2所述的发布方法, 其特征在于, 进一步包括: 所述第一服务器在收到所述第一消息时,设置所述第一消息携带 的文件名对应的可下载文件为共享状态;  The method according to claim 2, further comprising: when the first server receives the first message, setting a downloadable file corresponding to the file name carried by the first message as Shared state 所述终端向所述第一服务器发送第二消息, 所述第二消息包括: 文件名、 发布可下载文件的用户的标识; The terminal sends a second message to the first server, where the second message includes: File name, the ID of the user who published the downloadable file; 所述第一服务器接收到所述第二消息后,将对应所述文件名和所 述发布可下载文件的用户的标识的可下载文件的共享状态取消。  After receiving the second message, the first server cancels the sharing status of the downloadable file corresponding to the file name and the identifier of the user who issues the downloadable file. 8、 根据权利要求 1至 7任一项所述的方法, 其特征在于, 所述 第一服务器获取终端的网络连接信息包括:  The method according to any one of claims 1 to 7, wherein the acquiring, by the first server, the network connection information of the terminal comprises: 终端在向第一服务器发送的第一消息中携带所述终端的网络连 接信息。  The terminal carries the network connection information of the terminal in the first message sent to the first server. 9、 根据权利要求 1至 7任一项所述的发布方法, 其特征在于, 所述终端进一步在所述第一消息中携带所述可下载文件的有效 期限;  The method according to any one of claims 1 to 7, wherein the terminal further carries an expiration date of the downloadable file in the first message; 第一服务器收到所述第一消息后,在所述可下载文件到达所述有 效期限后, 不允许下载所述可下载文件。  After receiving the first message, the first server does not allow downloading the downloadable file after the downloadable file reaches the expiration date. 10、 根据权利要求 2至 7任一项所述的发布方法, 其特征在于, 进一步包括:  The method according to any one of claims 2 to 7, further comprising: 所述终端向所述第一服务器发送统计请求消息, 所述统计请求消 息携带发布可下载文件的用户的标识;  Sending, by the terminal, a statistical request message to the first server, where the statistical request message carries an identifier of a user that issues a downloadable file; 所述第一服务器统计所述发布可下载文件的用户已发布的可下 载文件中所有具有可用网络连接的可下载文件,并将统计结果发送给 所述终端。  The first server collects all downloadable files with available network connections in the downloadable file that the user who has published the downloadable file, and sends the statistical result to the terminal. 11、 根据权利要求 1至 7任一项所述的发布方法, 其特征在于, 所述终端向第一服务器发送第一消息包括:  The method according to any one of claims 1 to 7, wherein the sending, by the terminal, the first message to the first server comprises: 所述终端向第二服务器发送第三消息, 所述第三消息携带发布所 述可下载文件的用户的标识;  Sending, by the terminal, a third message to the second server, where the third message carries an identifier of a user that issues the downloadable file; 所述第二服务器根据所述用户标识对所述发布所述可下载文件 的用户进行身份验证; 如果通过验证, 所述终端向所述第一服务器发送所述第一消息。The second server performs identity verification on the user who issues the downloadable file according to the user identifier; If verified, the terminal sends the first message to the first server. 12、 根据权利要求 11 所述的发布方法, 其特征在于, 所述终端 向所述第一服务器发送所述第一消息包括: The method according to claim 11, wherein the sending, by the terminal, the first message to the first server comprises: 所述第二服务器发送携带所述第一服务器的网络连接信息的消 息给所述终端;  The second server sends a message carrying the network connection information of the first server to the terminal; 所述终端根据所述第一服务器的网络连接信息向所述第一服务 器发送所述第一消息。  The terminal sends the first message to the first server according to network connection information of the first server. 13、 根据权利要求 12所述的发布方法, 其特征在于,  13. The method of publishing according to claim 12, wherein 如果通过验证, 第二服务器进一步分别向终端和第一服务器发送 携带临时密钥的消息;  If the verification is passed, the second server further sends a message carrying the temporary key to the terminal and the first server respectively; 所述终端在发往所述第一服务器的所述第一消息中进一步携带 所述临时密钥;  The terminal further carries the temporary key in the first message sent to the first server; 所述第一服务器在确认所述临时密钥合法后,保存所述终端的网 络连接信息、所述可下载文件的文件名以及能够下载所述可下载文件 的用户的标识。  After confirming that the temporary key is legal, the first server saves network connection information of the terminal, a file name of the downloadable file, and an identifier of a user who can download the downloadable file. 14、 根据权利要求 13所述的发布方法, 其特征在于,  14. The method of publishing according to claim 13, wherein: 所述终端在将所述临时密钥携带在所述第一消息中之前, 进一步 对所述临时密钥进行加密;  The terminal further encrypts the temporary key before carrying the temporary key in the first message; 所述第一服务器收到携带经过加密的所述临时密钥的所述第一 消息后,进一步对所述临时密钥进行解密并确认所述临时密钥是否合 法。  After receiving the first message carrying the encrypted temporary key, the first server further decrypts the temporary key and confirms whether the temporary key is legal. 15、 根据权利要求 11 所述的方法, 其特征在于, 所述终端在向 第二服务器发送的第三消息中进一步携带所述终端的网络连接信息; 所述第一服务器获取终端的网络连接信息包括:  The method according to claim 11, wherein the terminal further carries network connection information of the terminal in a third message sent to the second server; the first server acquires network connection information of the terminal Includes: 如果通过验证, 所述第二服务器向所述第一服务器发送携带所述 终端的网络连接信息的消息。 If the verification is successful, the second server sends the carrying to the first server The message of the terminal's network connection information. 16、 一种文件的下载方法, 其特征在于, 第一服务器中保存至少 一个可下载文件的信息, 包括: 文件名、 提供可下载文件的第一终端 的网络连接信息、 以及至少一个被允许下载的用户的标识; 该方法包 括:  A method for downloading a file, wherein the first server stores information of at least one downloadable file, including: a file name, network connection information of the first terminal that provides the downloadable file, and at least one is allowed to download The identity of the user; the method includes: 第一服务器向第二终端发送第一消息, 所述第二终端对应的用户 被允许下载所述可下载文件,所述第一消息携带可下载文件的文件名 及其对应的第一终端的网络连接信息;  The first server sends a first message to the second terminal, where the user corresponding to the second terminal is allowed to download the downloadable file, where the first message carries the file name of the downloadable file and the network of the corresponding first terminal. Connection information 第二终端根据所述第一终端的网络连接信息从所述第一终端下 载所述可下载文件。  The second terminal downloads the downloadable file from the first terminal according to the network connection information of the first terminal. 17、 根据权利要求 16所述的下载方法, 其特征在于, 所述第一 服务器向所述第二终端发送第一消息包括:  The downloading method according to claim 16, wherein the sending, by the first server, the first message to the second terminal comprises: 第二终端向第一服务器发送第二消息以请求下载所述可下载文 件,所述第二消息携带所述可下载文件的文件名和请求下载的用户的 标识;  The second terminal sends a second message to the first server to request to download the downloadable file, where the second message carries the file name of the downloadable file and the identifier of the user requesting the download; 所述第一服务器查找所述可下载文件的信息, 判断所述请求下载 所述可下载文件的用户是否被允许下载所述可下载文件,如果被允许 下载, 所述第一服务器向所述第二终端发送第一消息。  Determining, by the first server, information of the downloadable file, determining whether the user requesting to download the downloadable file is allowed to download the downloadable file, and if the download is allowed, the first server is to the first The second terminal sends the first message. 18、 根据权利要求 16所述的下载方法, 其特征在于,  18. The downloading method according to claim 16, wherein: 所述第一服务器进一步保存发布可下载文件的用户的标识; 其 中,每一个发布可下载文件的用户的标识对应至少一个可下载文件的 信息;  The first server further saves an identifier of a user who issues a downloadable file; wherein, the identifier of the user who issues the downloadable file corresponds to information of the at least one downloadable file; 所述第一终端在发布可下载文件时进一步发送被邀请下载的用 户的标识给所述第一服务器;  The first terminal further sends the identifier of the user who is invited to download to the first server when publishing the downloadable file; 所述第一服务器向所述第二终端发送第一消息包括: 所述第一服务器根据来自所述第一终端的被邀请下载的用户的 标识, 向所述被邀请下载的用户所在的第二终端发送所述第一消息; 所述第二终端根据所述第一终端的网络连接信息从所述第一终 端下载所述可下载文件包括: The sending, by the first server, the first message to the second terminal includes: The first server sends the first message to the second terminal where the user who is invited to download is located according to the identifier of the user who is invited to download from the first terminal; Downloading the downloadable file from the first terminal by the network connection information of a terminal includes: 所述第二终端根据所述第一终端的网络连接信息从所述第一终 端下载所述可下载文件, 或  The second terminal downloads the downloadable file from the first terminal according to network connection information of the first terminal, or 忽略所述邀请。  Ignore the invitation. 19、根据权利要求 16至 18任一项所述的下载方法,其特征在于, 所述第一服务器向所述第二终端发送第一消息前进一步包括:  The downloading method according to any one of claims 16 to 18, wherein before the first server sends the first message to the second terminal, the method further includes: 第二终端向第二服务器发送携带所述第二终端对应的用户的标 识的消息;  Transmitting, by the second terminal, a message carrying the identifier of the user corresponding to the second terminal to the second server; 所述第二服务器根据所述用户标识进行身份验证;  The second server performs identity verification according to the user identifier; 如果通过验证, 所述第一服务器向所述第二终端发送所述第一消 息。  If verified, the first server sends the first message to the second terminal. 20、 根据权利要求 19所述的下载方法, 其特征在于, 所述第二 终端向所述第一服务器发送所述第二消息包括:  The downloading method according to claim 19, wherein the sending, by the second terminal, the second message to the first server comprises: 所述第二服务器发送携带所述第一服务器的网络连接信息的消 息到所述第二终端;  The second server sends a message carrying the network connection information of the first server to the second terminal; 所述第二终端根据所述第一服务器的网络连接信息向所述第一 服务器发送第二消息。  The second terminal sends a second message to the first server according to the network connection information of the first server. 21、 根据权利要求 19所述的下载方法, 其特征在于,  21. The downloading method according to claim 19, wherein 如果通过验证, 所述第一服务器在向所述第二终端发送的所述第 一消息中进一步携带所述第一终端的临时密钥;  If the verification is performed, the first server further carries the temporary key of the first terminal in the first message sent to the second terminal; 所述第二终端向所述第一终端发送携带所述临时密钥的下载请 求,所述第一终端在确认所述临时密钥合法后向所述第二终端传输所 述被请求下载的文件。 The second terminal sends a download request carrying the temporary key to the first terminal, and the first terminal transmits the location to the second terminal after confirming that the temporary key is legal The file requested to be downloaded. 22、 一种实现文件共享的系统, 其特征在于, 包括:  22. A system for implementing file sharing, comprising: 至少一个提供可下载文件的第一终端, 用于向第一服务器发送第 一消息,所述第一消息携带可下载文件的文件名及至少一个被允许下 载的用户的标识;  And at least one first terminal providing a downloadable file, configured to send a first message to the first server, where the first message carries a file name of the downloadable file and an identifier of at least one user that is allowed to be downloaded; 第一服务器, 用于获取所述第一终端的网络连接信息, 根据来自 所述第一终端的第一消息保存可下载文件的信息, 包括: 文件名、 提 供可下载文件的用户终端的网络连接信息、至少一个被允许下载的用 户的标识,并发送携带可下载文件的文件名及其对应的第一终端的网 络连接信息的第二消息;  a first server, configured to acquire network connection information of the first terminal, and save information of the downloadable file according to the first message from the first terminal, including: a file name, and a network connection of the user terminal that provides the downloadable file Information, at least one identifier of the user allowed to download, and sending a second message carrying the file name of the downloadable file and the corresponding network connection information of the first terminal; 至少一个请求下载文件的第二终端,用于从所述第一服务器接收 第二消息,根据所收到的第二消息携带的第一终端的网络连接信息从 所述第一终端下载所述可下载文件。  At least one second terminal requesting to download the file, configured to receive the second message from the first server, and download the information from the first terminal according to the network connection information of the first terminal that is carried by the received second message download file. 23、 根据权利要求 22所述的系统, 其特征在于,  23. The system of claim 22, wherein 所述第二终端, 进一步用于向所述第一服务器发送第三消息以请 求下载可下载文件,所述第三消息携带所述可下载文件的文件名和请 求下载的用户的标识;  The second terminal is further configured to send a third message to the first server to request to download a downloadable file, where the third message carries a file name of the downloadable file and an identifier of the user that requests the download; 所述第一服务器, 进一步用于查找所述第三消息携带的文件名对 应的可下载文件的信息,判断所述请求下载的用户是否被允许下载所 述可下载文件, 如果被允许下载, 则向所述第一终端发送所述第二消  The first server is further configured to search for information of the downloadable file corresponding to the file name carried by the third message, and determine whether the user requesting the download is allowed to download the downloadable file, if allowed to download, Sending the second cancellation to the first terminal 24、 根据权利要求 22所述的系统, 其特征在于, 24. The system of claim 22, wherein 所述第一终端, 进一步用于在所述第一消息中携带发布可下载文 件的用户的标识;  The first terminal is further configured to carry, in the first message, an identifier of a user that issues a downloadable file; 所述第一服务器, 进一步用于保存发布可下载文件的用户的标 识; 其中, 每一个发布可下载文件的用户的标识对应至少一个可下载 文件的信息。 The first server is further configured to save a label of a user who publishes the downloadable file The identification of the user who publishes the downloadable file corresponds to the information of at least one downloadable file. 25、 根据权利要求 24所述的系统, 其特征在于,  25. The system of claim 24, wherein 所述第一终端, 进一步用于向所述第一服务器发送携带被邀请下 载的用户的标识的消息;  The first terminal is further configured to send, to the first server, a message that carries an identifier of the user that is invited to be downloaded; 所述第一服务器, 进一步用于向被邀请下载的用户所在的第二终 端发送携带所述可下载文件的文件名、发布所述可下载文件的用户的 标识、 第一终端的网络连接信息的消息, 以邀请所述被邀请下载的用 户下载所述可下载文件;  The first server is further configured to send, to the second terminal where the user who is invited to download, the file name that carries the downloadable file, the identifier of the user that issues the downloadable file, and the network connection information of the first terminal. a message, invoking the user invited to download to download the downloadable file; 所述第二终端, 进一步用于在收到所述携带所述可下载文件的文 件名、 发布所述可下载文件的用户的标识、 第一终端的网络连接信息 的消息时,根据所述邀请中携带的第一终端的网络连接信息从所述第 一终端下载所述可下载文件。  The second terminal is further configured to: when receiving the file name carrying the downloadable file, the identifier of the user who advertises the downloadable file, and the network connection information of the first terminal, according to the invitation The network connection information of the first terminal carried in the downloading the downloadable file from the first terminal. 26、 根据权利要求 24所述的系统, 其特征在于,  26. The system of claim 24, wherein 第一终端, 进一步用于向所述第一服务器发送第四消息, 所述第 四消息携带文件名和发布可下载文件的用户的标识;  The first terminal is further configured to send a fourth message to the first server, where the fourth message carries a file name and an identifier of a user that issues the downloadable file; 第一服务器, 进一步用于在收到所述第一消息时, 设置所述第一 消息携带的文件名对应的可下载文件为共享状态,在接收到所述第四 消息时,将对应所述文件名和发布可下载文件的用户的标识的可下载 文件的共享状态取消。  The first server is further configured to: when the first message is received, set the downloadable file corresponding to the file name carried by the first message to be in a shared state, and when receiving the fourth message, The file name and the share status of the downloadable file of the user's identity that posted the downloadable file are canceled. 27、 根据权利要求 22至 26任一项所述的系统, 其特征在于, 第一终端, 进一步用于在向第一服务器发送的第一消息中携带第 一终端的网络连接信息;  The system according to any one of claims 22 to 26, wherein the first terminal is further configured to carry network connection information of the first terminal in the first message sent to the first server; 所述第一服务器从第一消息中获取第一终端的网络连接信息。 The first server acquires network connection information of the first terminal from the first message. 28、 根据权利要求 24至 26任一项所述的系统, 其特征在于, 第一终端, 进一步用于向第一服务器发送统计请求消息, 所述统 计请求消息携带发布可下载文件的用户的标识; 28. A system according to any one of claims 24 to 26, wherein The first terminal is further configured to send a statistics request message to the first server, where the statistics request message carries an identifier of a user that issues the downloadable file; 第一服务器,进一步用于统计所述统计请求消息携带的用户标识 对应的用户已发布的可下载文件中所有具有可用网络连接的可下载 文件, 并将统计结果发送给所述第一终端。  The first server is further configured to collect all downloadable files of the user-published downloadable file corresponding to the user identifier carried by the statistical request message, and send the statistical result to the first terminal. 29、 根据权利要求 22至 26任一项所述的系统, 其特征在于, 进 一步包括第二服务器, 其中,  The system according to any one of claims 22 to 26, further comprising a second server, wherein 第一终端, 进一步用于向第二服务器发送携带发布所述可下载文 件的用户的标识的消息;  The first terminal is further configured to send, to the second server, a message carrying an identifier of the user that issues the downloadable file; 第二服务器,用于根据所述用户标识对所述发布可下载文件的用 户进行身份验证,若通过验证则向所述用户终端发送所述第二服务器 的网络连接信息。  And a second server, configured to perform identity verification on the user that issues the downloadable file according to the user identifier, and send the network connection information of the second server to the user terminal if the verification is performed. 30、 根据权利要求 29所述的系统, 其特征在于,  30. The system of claim 29, wherein: 第二服务器, 进一步用于在所述第一终端通过验证后, 分别向所 述第一终端和第一服务器发送携带临时密钥的消息;  The second server is further configured to send a message carrying the temporary key to the first terminal and the first server respectively after the first terminal passes the verification; 第一终端, 进一步用于在向所述第一服务器发送的所述第一消息 中携带所述临时密钥;  The first terminal is further configured to carry the temporary key in the first message sent to the first server; 第一服务器,进一步用于在验证所述第一终端发送的临时密钥合 法后, 保存所述第一终端的网络连接信息、 所述可下载文件的文件名 以及被允许下载所述可下载文件的用户的标识。  The first server is further configured to save network connection information of the first terminal, a file name of the downloadable file, and permission to download the downloadable file after verifying that the temporary key sent by the first terminal is legal The identity of the user. 31、 根据权利要求 29所述的系统, 其特征在于,  31. The system of claim 29, wherein: 第一终端, 进一步用于在向所述第二服务器发送的消息中携带所 述第一终端的网络连接信息;  The first terminal is further configured to: carry the network connection information of the first terminal in a message sent to the second server; 第二服务器, 进一步用于在所述第一终端通过验证后, 向所述第 一服务器发送携带所述第一终端的网络连接信息的消息; 所述第一服务器从来自所述第二服务器的消息中获取第一终端 的网络连接信息。 The second server is further configured to: after the first terminal passes the verification, send, to the first server, a message that carries the network connection information of the first terminal; The first server acquires network connection information of the first terminal from a message from the second server. 32、 一种文件管理服务器, 其特征在于, 包括:  32. A file management server, comprising: 上传单元, 用于接收提供可下载文件的终端发送的第一消息并获 取所述终端的网络连接信息,所述第一消息携带可下载文件的文件名 及至少一个被允许下载的用户的标识;  a uploading unit, configured to receive a first message sent by a terminal that provides a downloadable file, and obtain network connection information of the terminal, where the first message carries a file name of the downloadable file and an identifier of at least one user that is allowed to be downloaded; 策略库, 用于存储所述上传单元接收的至少一个可下载文件的信 息, 包括: 文件名、 提供所述可下载文件的终端的网络连接信息、 至 少一个被允许下载的用户的标识;  a policy library, configured to store information of the at least one downloadable file received by the uploading unit, including: a file name, network connection information of a terminal that provides the downloadable file, and an identifier of at least one user that is allowed to download; 下载单元, 用于接收请求下载的终端发送的第二消息, 所述第二 消息携带可下载文件的文件名以及请求下载的用户的标识,查询策略 库,如果所述请求下载的用户被允许下载所述文件名对应的可下载文 件,则向所述请求下载的终端发送携带所述可下载文件的文件名及其 对应的终端的网络连接信息的消息。  a downloading unit, configured to receive a second message sent by the terminal that requests the download, where the second message carries the file name of the downloadable file and the identifier of the user requesting the download, and queries the policy library, if the user who requests the download is allowed to download The downloadable file corresponding to the file name sends a message carrying the file name of the downloadable file and the network connection information of the corresponding terminal to the terminal that requests the download. 33、 根据权利要求 32所述的管理服务器, 其特征在于, 所述上传单元收到的第一消息进一步携带发布可下载文件的用 户的标识;  The management server according to claim 32, wherein the first message received by the uploading unit further carries an identifier of a user who issues a downloadable file; 所述策略库, 进一步用于保存发布可下载文件的用户的标识; 其 中,每一个发布可下载文件的用户的标识对应至少一个可下载文件的 信息。  The policy library is further configured to save an identifier of a user who publishes the downloadable file; wherein, the identifier of the user who issues the downloadable file corresponds to the information of the at least one downloadable file. 34、 根据权利要求 33所述的管理服务器, 其特征在于, 进一步 包括:  The management server according to claim 33, further comprising: 邀请单元, 用于接收携带有被邀请下载的用户的标识的第三消 息,所述第三消息包括被邀请下载的用户的标识和可下载文件的文件 名,在策略库中查找所述可下载文件的文件名对应的可下载文件的信 息,在所述被邀请下载的用户上线时向其发送携带可下载文件的文件 名、发布所述可下载文件的用户的标识和发布所述可下载文件的用户 对应的终端的网络连接信息的消息。 An invitation unit, configured to receive a third message carrying an identifier of the user who is invited to download, the third message includes an identifier of the user invited to download and a file name of the downloadable file, and the downloadable in the policy library The file name corresponding to the file name of the file And sending, by the user who is invited to download, a file name carrying the downloadable file, an identifier of the user who issues the downloadable file, and network connection information of the terminal corresponding to the user who issues the downloadable file. Message. 35、 根据权利要求 33所述的管理服务器, 其特征在于, 所述策略库,进一步用于设置所述第一消息携带的文件名对应的 可下载文件为共享状态, 并按指示取消所设置的共享状态;  The management server according to claim 33, wherein the policy library is further configured to set a downloadable file corresponding to the file name carried by the first message to a shared state, and cancel the set according to the indication. Shared state 所述管理服务器进一步包括: 共享取消单元, 用于接收终端发送 的第四消息, 所述第四消息中包括文件名、 发布可下载文件的用户的 标识;在策略库中搜索对应所述文件名和所述发布可下载文件的用户 的标识的可下载文件, 指示策略库取消所述可下载文件的共享状态。  The management server further includes: a sharing cancellation unit, configured to receive a fourth message sent by the terminal, where the fourth message includes a file name, an identifier of a user who issues a downloadable file, and searches the policy library for the corresponding file name and The downloadable file of the identifier of the user who issues the downloadable file, indicating that the policy library cancels the sharing status of the downloadable file. 36、 根据权利要求 33所述的管理服务器, 其特征在于, 进一步 包括:  The management server according to claim 33, further comprising: 统计单元, 用于接收终端发送的携带用户的标识的统计请求, 查 中所有具有可用网络连接的可下载文件,并将统计结果发送给所述终 端。  The statistic unit is configured to receive a statistical request for carrying the identifier of the user sent by the terminal, check all downloadable files with available network connections, and send the statistical result to the terminal. 37、 根据权利要求 32至 36任一项所述的管理服务器, 其特征在 于,  A management server according to any one of claims 32 to 36, characterized in that 所述上传单元从来自终端的第一消息中获取终端的网络连接信 息或者从来自登录服务器的消息中获取终端的网络连接信息。  The uploading unit acquires network connection information of the terminal from the first message from the terminal or acquires network connection information of the terminal from a message from the login server. 38、 根据权利要求 32至 36任一项所述的管理服务器, 其特征在 于, 进一步包括:  The management server according to any one of claims 32 to 36, further comprising: 密码集, 用于接收登录服务器和终端发送的临时密钥, 验证终端 发送的临时密钥是否合法, 如果合法, 指示策略库保存发布可下载文 件的终端的网络连接信息、可下载文件的文件名及至少一个被允许下 载的用户的标识; 并向请求下载的终端发送携带所述临时密码的消 The password set is configured to receive the temporary key sent by the login server and the terminal, and verify whether the temporary key sent by the terminal is legal. If it is legal, the policy library is instructed to save the network connection information of the terminal that publishes the downloadable file, and the file name of the downloadable file. And at least one is allowed to The identifier of the user to be loaded; and sending the temporary password to be sent to the terminal requesting the download 39、 一种终端, 其特征在于, 包括: 39. A terminal, comprising: 策略库, 用于保存至少一个可下载文件的信息, 包括, 可下载文 件的文件名, 至少一个被允许下载所述可下载文件的用户的标识, 第一单元, 用于向第一服务器发送第一消息, 所述第一消息中携 带可下载文件的文件名及至少一个被允许下载的用户的标识。  a policy library, configured to save information of at least one downloadable file, including: a file name of the downloadable file, at least one identifier of a user allowed to download the downloadable file, the first unit, configured to send the first server A message, the first message carrying a file name of the downloadable file and an identifier of at least one user allowed to download. 40、 根据权利要求 39所述的终端, 其特征在于, 进一步包括, 第二单元, 用于向第二服务器发送携带终端对应的用户的标识的 消息以进行身份验证,接收第二服务器返回的携带第一服务器的网络 连接信息的消息。  The terminal according to claim 39, further comprising: a second unit, configured to send, to the second server, a message carrying the identifier of the user corresponding to the terminal for identity verification, and receiving the carried back by the second server The message of the network connection information of the first server. 所述策略库,进一步用于保存所述第二单元接收到的第一服务器 的网络连接信息;  The policy library is further configured to save network connection information of the first server received by the second unit; 所述第一单元用于按所述策略库保存的第一服务器的网络连接 信息向第一服务器发送第一消息。  The first unit is configured to send the first message to the first server according to the network connection information of the first server saved by the policy library. 41、 根据权利要求 40所述的终端, 其特征在于, 进一步包括: 第三单元, 用于接收第二服务器返回的携带临时密钥的消息。 所述策略库, 进一步用于保存第三单元接收到的所述临时密钥; 所述第一单元, 进一步用于在向第一服务器发送的第一消息中进 一步携带所述策略库保存的临时密钥以进行合法性验证。  The terminal according to claim 40, further comprising: a third unit, configured to receive a message carrying a temporary key returned by the second server. The policy library is further configured to save the temporary key received by the third unit, where the first unit is further configured to further carry the temporary saved by the policy library in the first message sent to the first server The key is used for legality verification. 42、 根据权利要求 41所述的终端, 其特征在于, 进一步包括: 第四单元, 用于接收携带临时密钥的请求下载可下载文件的消 息,根据所述策略库保存的所述临时密钥验证所述请求下载可下载文 件的消息, 如果验证通过, 允许下载所述可下载文件。  The terminal according to claim 41, further comprising: a fourth unit, configured to receive a message carrying a temporary key requesting to download a downloadable file, and the temporary key saved according to the policy library The message requesting downloading the downloadable file is verified, and if the verification is passed, the downloadable file is allowed to be downloaded. 43、 根据权利要求 39至 42任一项所述的终端, 其特征在于, 进一 步包括: 43. The terminal according to any one of claims 39 to 42, characterized in that Steps include: 用于向所述第一服务器发送携带可下载文件的文件名和终端对应的 用户的标识的消息、 并根据第一服务器返回的提供所述可下载文件的终 端的网络连接信息下载所述可下载文件的单元。  And sending, to the first server, a message carrying a file name of the downloadable file and an identifier of the user corresponding to the terminal, and downloading the downloadable file according to network connection information of the terminal that provides the downloadable file returned by the first server Unit. 44、 根据权利要求 39至 42任一项所述的终端, 其特征在于, 进一 步包括以下单元中任一者或任几者:  The terminal according to any one of claims 39 to 42, characterized in that it further comprises any one or any of the following units: 用于发送携带被邀请下载的用户的标识和可下载文件的文件名的 消息到所述第一服务器以邀请下载所述可下载文件的单元;  Means for sending a message carrying the identifier of the user who is invited to download and the file name of the downloadable file to the first server to invite the unit to download the downloadable file; 用于发送携带文件名、发布可下载文件的用户的标识的消息到所 述第一服务器以取消所述可下载文件的共享状态的单元;  Means for transmitting a message carrying a file name, an identifier of a user who issues a downloadable file, to the first server to cancel a shared state of the downloadable file; 用于发送携带发布可下载文件的用户的标识的消息到所述第一服务 器以统计所述发布可下载文件的用户已发布的可下载文件中所有具有 可用网络连接的可下载文件、 并接收所述第一服务器返回的统计结果的 单元。  Sending a message carrying an identifier of a user who publishes the downloadable file to the first server to count all downloadable files with available network connections in the user-published downloadable file that publishes the downloadable file, and receiving the The unit of the statistical result returned by the first server.
PCT/CN2008/070277 2007-03-30 2008-02-04 Method for releasing and downloading file, management server, terminal and system Ceased WO2008119273A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN200710090664.1 2007-03-30
CN 200710090664 CN101068245B (en) 2007-03-30 2007-03-30 Shared file issuing and downloading method and file sharing control system

Publications (1)

Publication Number Publication Date
WO2008119273A1 true WO2008119273A1 (en) 2008-10-09

Family

ID=38880681

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2008/070277 Ceased WO2008119273A1 (en) 2007-03-30 2008-02-04 Method for releasing and downloading file, management server, terminal and system

Country Status (2)

Country Link
CN (1) CN101068245B (en)
WO (1) WO2008119273A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106657281A (en) * 2016-11-24 2017-05-10 腾讯科技(深圳)有限公司 File sharing method and device
CN113329045A (en) * 2020-02-28 2021-08-31 腾讯科技(深圳)有限公司 File downloading method and device, computer readable storage medium and computer equipment
CN113873048A (en) * 2020-06-12 2021-12-31 腾讯科技(上海)有限公司 Method and system for downloading application package in application downloading platform

Families Citing this family (53)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101068245B (en) * 2007-03-30 2011-07-06 腾讯科技(深圳)有限公司 Shared file issuing and downloading method and file sharing control system
CN101729442B (en) * 2008-10-23 2013-03-20 华为技术有限公司 Method and device for realizing content sharing
CN101764831B (en) * 2008-12-24 2012-09-19 中国移动通信集团公司 A streaming media data sharing method, sharing system and streaming media node
CN101662496B (en) * 2009-09-21 2013-04-03 中兴通讯股份有限公司 System and method using point-to-point technology to realize file sharing
CN101673300B (en) * 2009-09-29 2011-06-29 金蝶软件(中国)有限公司 Sharing method and device of chronological book scheme and ERP system
US20110252371A1 (en) * 2010-04-13 2011-10-13 Sony Corporation System and method for fast boot of computer
CN101867694A (en) * 2010-05-21 2010-10-20 中兴通讯股份有限公司 Method and system for upgrading IPTV set-top box of interactive network TV
CN101969462A (en) * 2010-09-30 2011-02-09 中国科学院国家天文台 Data publishing system and data publishing method
CN102014167A (en) * 2010-12-16 2011-04-13 国家广播电影电视总局广播科学研究院 Data sharing system based on peer-to-peer (P2P) mode
CN102594850B (en) * 2011-01-06 2016-06-01 友讯科技股份有限公司 File access and sharing system and method thereof
CN102098345A (en) * 2011-02-22 2011-06-15 深圳市同洲电子股份有限公司 Resource sharing method and service providing system
CN102651751A (en) * 2011-02-25 2012-08-29 国基电子(上海)有限公司 File transmission system and file transmission method of file transmission system
CN102810064A (en) * 2011-05-30 2012-12-05 海尔集团公司 User-side information loading method for electrical equipment and electrical equipment
KR101305062B1 (en) * 2011-08-05 2013-09-11 (주)네오위즈게임즈 Device and method for distributed control of file downloading network
CN102325172A (en) * 2011-08-30 2012-01-18 中兴通讯股份有限公司 Method for sharing data among mobile terminals, system and control server
CN103166998B (en) * 2011-12-15 2016-03-23 中国电信股份有限公司 user information correlation method, system and server
CN102638564A (en) * 2012-02-16 2012-08-15 深圳市同洲视讯传媒有限公司 Document sharing device, document sharing terminal and document sharing method
CN103297447B (en) * 2012-02-24 2019-03-08 腾讯科技(深圳)有限公司 A kind of resource share method and its equipment
CN103327469A (en) * 2012-03-19 2013-09-25 联想(北京)有限公司 Method and system of data sharing and mobile terminal
CN102857495B (en) * 2012-07-13 2015-09-23 深圳市同洲电子股份有限公司 A kind of document player method and equipment
CN102904886A (en) * 2012-09-26 2013-01-30 曙光信息产业(北京)有限公司 Method for achieving file sharing
CN103780642B (en) * 2012-10-19 2017-08-01 宇瞻科技股份有限公司 File Sharing Method of Network Storage System
CN102917070B (en) * 2012-10-30 2016-06-08 北京奇虎科技有限公司 Web page sharing system
CN103002030B (en) * 2012-11-26 2016-03-16 北京百度网讯科技有限公司 The method and system of file-sharing
CN103200276B (en) * 2013-04-23 2016-06-29 福建伊时代信息科技股份有限公司 The method and apparatus that a kind of file security controls
WO2015008300A2 (en) * 2013-07-19 2015-01-22 Parag Kulkarni A system for instance specific, device-specific, duration-specific, view-specific, time-stamp-specific, and network specific, file/content sharing
CN104469974B (en) * 2013-09-23 2019-10-29 联想(北京)有限公司 A kind of information processing method and electronic equipment
CN104519109A (en) * 2013-09-30 2015-04-15 张永杰 Method and device for sharing file among multiple devices
CN104639592B (en) * 2013-11-15 2018-09-28 华为技术有限公司 Information synchronization method and system and cloud storage gateway between cloud storage gateway
CN104660641B (en) * 2013-11-25 2018-05-18 中国直升机设计研究所 A kind of enterprise network internal data transmission method
CN104754012B (en) * 2013-12-31 2019-02-15 北京新媒传信科技有限公司 A kind of data transmission method and data transmission system
CN105577609B (en) * 2014-10-09 2019-10-22 华为技术有限公司 Method and apparatus for controlling accessed content
US20160173467A1 (en) * 2014-12-15 2016-06-16 Microsoft Technology Licensing, Llc Document collaboration through networking credentials
CN105791333A (en) * 2014-12-17 2016-07-20 深圳云之家网络有限公司 Business processing method and client
CN106453448A (en) * 2015-08-06 2017-02-22 北京奇虎科技有限公司 Method for downloading target file and device thereof
US10775972B2 (en) * 2016-04-01 2020-09-15 Microsoft Technology Licensing, Llc Techniques to control notifications for content items in a collaboration platform
CN105791436A (en) * 2016-04-28 2016-07-20 杭州亿方云网络科技有限公司 File synchronization system and synchronization method thereof
CN106203060A (en) * 2016-06-27 2016-12-07 乐视控股(北京)有限公司 A kind of data processing method and device
KR101961644B1 (en) * 2017-05-19 2019-03-25 소프트캠프(주) System for unification managing the distributed data
CN107659491A (en) * 2017-10-23 2018-02-02 林楚莲 A kind of Group file sharing method and system based on instant messaging
CN110830522A (en) * 2018-08-07 2020-02-21 石悌君 Shared storage system
CN110889131B (en) * 2018-09-11 2022-04-05 北京金山办公软件股份有限公司 File sharing system
CN109361687A (en) * 2018-11-16 2019-02-19 上海二三四五网络科技有限公司 A kind of P2P private network control method and control device
CN111324588A (en) * 2018-12-17 2020-06-23 中兴通讯股份有限公司 Method and device for sharing files
CN112187483A (en) * 2019-07-03 2021-01-05 西安诺瓦星云科技股份有限公司 Program distribution method and program distribution system
CN112702306B (en) * 2019-10-23 2023-05-09 中国移动通信有限公司研究院 Method, device, equipment and storage medium for intelligent service sharing
CN111212080B (en) * 2020-01-10 2022-05-24 深圳市铭濠科技有限公司 Security authentication method, authentication system and application thereof
CN111212149A (en) * 2020-01-15 2020-05-29 上海擎感智能科技有限公司 Terminal information sharing method and system
CN111556079B (en) * 2020-05-18 2022-03-22 曲阜师范大学 Controllable anonymous communication method based on identity encryption
CN113162975B (en) * 2021-03-04 2023-04-14 西安电子科技大学 System, method, storage medium and device for offline downloading of shared mobile terminal files
CN114189505B (en) * 2021-10-29 2024-04-19 深圳市酷开网络科技股份有限公司 File sharing method, computer device and storage medium
CN114422388B (en) * 2022-01-24 2023-03-28 北京科软在线科技有限责任公司 Remote data supervisory systems
CN116389580A (en) * 2023-02-09 2023-07-04 青海省通信服务有限公司 A smart meter node application platform and transmission method thereof

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1517900A (en) * 2003-01-24 2004-08-04 ������������ʽ���� Method and apparatus for peer-to-peer access
US20070027812A1 (en) * 2005-07-29 2007-02-01 Sony Corporation Content distribution system and content distribution method
CN101068245A (en) * 2007-03-30 2007-11-07 腾讯科技(深圳)有限公司 Shared file issuing and downloading method and file sharing control system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1517900A (en) * 2003-01-24 2004-08-04 ������������ʽ���� Method and apparatus for peer-to-peer access
US20070027812A1 (en) * 2005-07-29 2007-02-01 Sony Corporation Content distribution system and content distribution method
CN101068245A (en) * 2007-03-30 2007-11-07 腾讯科技(深圳)有限公司 Shared file issuing and downloading method and file sharing control system

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106657281A (en) * 2016-11-24 2017-05-10 腾讯科技(深圳)有限公司 File sharing method and device
CN106657281B (en) * 2016-11-24 2020-02-28 腾讯科技(深圳)有限公司 File sharing method and device
CN113329045A (en) * 2020-02-28 2021-08-31 腾讯科技(深圳)有限公司 File downloading method and device, computer readable storage medium and computer equipment
CN113873048A (en) * 2020-06-12 2021-12-31 腾讯科技(上海)有限公司 Method and system for downloading application package in application downloading platform

Also Published As

Publication number Publication date
CN101068245A (en) 2007-11-07
CN101068245B (en) 2011-07-06

Similar Documents

Publication Publication Date Title
WO2008119273A1 (en) Method for releasing and downloading file, management server, terminal and system
US10785037B2 (en) Managing secure content in a content delivery network
US10623272B2 (en) Authenticating connections and program identity in a messaging system
CN103503408B (en) system and method for providing access credentials
KR100702427B1 (en) Secured and Access Controlled Peer-to-Peer Resource Sharing Method and Apparatus
US7127613B2 (en) Secured peer-to-peer network data exchange
CN1328636C (en) Method and system for peer-to-peer authorization
CN102771102B (en) Network and management method for distributing digital content
CN109691057B (en) Exchangeable retrieval of sensitive content via private content distribution network
WO2019237796A1 (en) Resource acquisition method and apparatus, resource distribution method and apparatus, and resource downloading method and apparatus, and device and storage medium
CN101779413B (en) Method and apparatus for communication, and method and apparatus for controlling communication
US20090158394A1 (en) Super peer based peer-to-peer network system and peer authentication method thereof
CN105516110B (en) Mobile device security data transmission method
US10484357B1 (en) Method and apparatus for federated single sign on using authentication broker
WO2013131387A1 (en) Resource sharing method and device, and storage medium
JP2009163546A (en) Gateway, repeating method and program
US20200252460A1 (en) Restricting access to a data storage system on a local network
CN101341691A (en) Authorisation and authentication
CN102714653B (en) For the system and method for accessing private digital content
JP3731645B2 (en) Agent method and computer system
US20090282105A1 (en) P2p data delivery system, p2p data delivery method and p2p data delivery program
WO2024103856A1 (en) Blockchain-based data processing method, and device and readable storage medium
CN114979237B (en) Long connection verification method, device, equipment and readable storage medium
CN113015164B (en) Application authentication method and device
Kurokawa et al. Study on the distributed data sharing mechanism with a mutual authentication and meta database technology

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 08706650

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 6375/CHENP/2009

Country of ref document: IN

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC DATED 03-02-2010

122 Ep: pct application non-entry in european phase

Ref document number: 08706650

Country of ref document: EP

Kind code of ref document: A1