CN102300204A - Wireless terminal and lockup method and system thereof - Google Patents
Wireless terminal and lockup method and system thereof Download PDFInfo
- Publication number
- CN102300204A CN102300204A CN2011102492416A CN201110249241A CN102300204A CN 102300204 A CN102300204 A CN 102300204A CN 2011102492416 A CN2011102492416 A CN 2011102492416A CN 201110249241 A CN201110249241 A CN 201110249241A CN 102300204 A CN102300204 A CN 102300204A
- Authority
- CN
- China
- Prior art keywords
- wireless terminal
- cryptographic algorithm
- locking
- software
- clouds server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention provides a wireless terminal and a lockup method and a system thereof. Cryptographic algorithm software is stored in a cloud server, and the cryptographic algorithm software is periodically updated; lockup data is transmitted by a wireless terminal to the cloud server to be stored, the wireless terminal periodically acquires the latest cryptographic algorithm software from the cloud server and is locked up with a subscriber identifier model (SIM) card or a network through the cryptographic algorithm software. Compared with the prior art, the high-density computation capacity of the cloud server is utilized to provide flexibility and safety for locking up a network and a card, and the workload and the man-induced factors for locking the network and the card can be alleviated.
Description
Technical field
The present invention relates to communication technical field, more specifically, relate to a kind of wireless terminal and locking means thereof, system.
Background technology
Wireless network provider or some special applications are in order to realize the control to Wireless Communication Equipment, need control Wireless Communication Equipment with the mode of Wireless Communication Equipment lock, Wireless Communication Equipment can only be used in particular network, and such technology can be called the lock net.Be applied in the cell-phone lock net, it is exactly operator and mobile-phone manufacturers agreement according to both sides' appointment, certain mobile phone can only use SIM (the Subsriber Identification Module of this operator, Subscriber Identity Module) card, the card of other operator can not use, and discerns IMSI (International Mobile Subsriber Identification number) by the international mobile subscriber of mobile phone locking changing operator and realizes the binding function of mobile phone and operator.
So-called pintle hook lock, be exactly that certain identification card can only use with certain Wireless Communication Equipment pairing, present most of manufacturer all is by revising SIM (SubsriberIdentification Module, Subscriber Identity Module) Ka PIN (Personal Identification Number, PIN) sign indicating number is realized.
M2M (communicating by letter between Machine to Machine machine and the machine etc.) and net networking are being surging forward now, the technology of this devices interconnect, make between the machine, realized seamless link between people and the machine, when this equipment is applied in trade secret occasion, safe concerning security matters occasion, industrial time controlling occasion, the capital occurs guaranteeing that Wireless Communication Equipment is not subjected to the requirement of external interference, perhaps be limited to the requirement that use the specific region, these demands can obtain certain solution by lock net or pintle hook lock.
If implement lock net, pintle hook lock with the M2M wireless terminal that the local method of handling occurs this magnanimity, workload will be huge, and flexibility simultaneously also is minimum.This patent arrives network side with the Shift of Focus of these operations, carries out most work by the high in the clouds server, has utilized server highdensity computing capability in high in the clouds to bring new flexibility and fail safe for lock net, pintle hook lock.Workload and human factor that lock net, pintle hook lock carry out in this locality have been alleviated.
Summary of the invention
The present invention seeks to a kind of wireless terminal and locking means thereof, system.
The present invention proposes a kind of wireless terminal locking means, Cloud Server storage encryption algorithm software, and regularly cryptographic algorithm software is upgraded; Wireless terminal sends to the Cloud Server storage with locking data, and wireless terminal regularly obtains up-to-date cryptographic algorithm software from Cloud Server, and by this cryptographic algorithm software and SIM card or network locked.
Further, the locking that is wireless terminal and SIM card of described wireless terminal locking means or the locking of wireless terminal and network.
Further, described wireless terminal judges whether the cryptographic algorithm software upgrading time, if arrived after regularly obtaining up-to-date cryptographic algorithm software and be meant wireless terminal starting from Cloud Server, then enter the software download pattern, from high in the clouds server update cryptographic algorithm software.
Further, when the locking of wireless terminal and SIM card, described locking data comprises IMSI, TMSI, IMEI number and MAC Address, and wireless terminal sends to the high in the clouds server by cryptographic algorithm after with these data encryptions.
Further, the high in the clouds server is decrypted after receiving these ciphertexts, examine according to known IMEI, TMSI, IMSI, MAC Address then, if audit is passed through, the high in the clouds server bundlees registration with IMEI, IMSI, this three item numbers certificate of MAC Address of terminal feedback, do not occur simultaneously if be not three data next time, will registration failure, cause the pintle hook lock failure.
Further, when wireless terminal and network locked, described locking data comprises IMEI, network parameter and cell parameter of living in, and these data are fed back to the high in the clouds server, and whether examined by the high in the clouds server legal.
The present invention also proposes a kind of wireless terminal, and described wireless terminal comprises locking module and Control Software module;
Described software control module sends to Cloud Server with locking data, and regularly obtains up-to-date cryptographic algorithm software from Cloud Server;
The cryptographic algorithm software that described locking module utilization is obtained locks wireless terminal.
Further, described locking module is the pintle hook lock software module, and described locking data comprises IMSI, TMSI, IMEI number and MAC Address, and wireless terminal sends to the high in the clouds server by cryptographic algorithm after with these data encryptions.
Further, the high in the clouds server is decrypted after receiving these ciphertexts, examine according to known IMEI, TMSI, IMSI, MAC Address then, if audit is passed through, the high in the clouds server bundlees registration with IMEI, IMSI, this three item numbers certificate of MAC Address of terminal feedback, do not occur simultaneously if be not three data next time, will registration failure, cause the pintle hook lock failure.
Further, described locking module is a lock net software module, and when wireless terminal and network locked, described locking data comprises IMEI, network parameter and cell parameter of living in, and these data are fed back to the high in the clouds server, whether examined by the high in the clouds server legal.
In sum, adopt the present invention to have following beneficial effect:
Compared with prior art, technical solution of the present invention is to have utilized server highdensity computing capability in high in the clouds for lock net, pintle hook lock have brought new flexibility and fail safe, has alleviated workload and human factor that lock net, pintle hook lock carry out in this locality.
Description of drawings
Fig. 1 is the technical solution of the present invention application scenarios;
Fig. 2 describes the situation of making restriction when the sub-district of wireless terminal;
Fig. 3 is an embodiment of the invention wireless terminal locking system;
Fig. 4 is the software upgrading flow process schematic diagram in the embodiment of the invention wireless terminal locking means;
Fig. 5 is the pintle hook lock schematic flow sheet in the wireless terminal locking means of the present invention;
Fig. 6 is a lock net schematic flow sheet in the mobile terminal locking method of the present invention.
Embodiment
The main thought of technical solution of the present invention is: Cloud Server storage encryption algorithm software, and regularly cryptographic algorithm software is upgraded; Wireless terminal sends to the Cloud Server storage with locking parameter, and wireless terminal regularly obtains up-to-date cryptographic algorithm software from Cloud Server, and by this cryptographic algorithm software and SIM card or network locked.
Technical solution of the present invention is carried out most work by the high in the clouds server, has utilized server highdensity computing capability in high in the clouds to bring new flexibility and fail safe for lock net, pintle hook lock.Workload and human factor that lock net, pintle hook lock carry out in this locality have been alleviated.
Below in conjunction with the drawings and specific embodiments technical solution of the present invention is described in further detail.
Please refer to shown in Figure 3ly, Fig. 3 is an embodiment of the invention wireless terminal locking system, and it comprises wireless terminal, high in the clouds server and wireless-transmission network.
Wireless terminal comprises SIM card module, lock net module, pintle hook lock module and control module.
SIM card in the wireless terminal is responsible for providing the preliminary identification of operator.Lock net, pintle hook lock and control module are responsible for the control of the whole locking network and card logic of wireless terminal side.
The high in the clouds server is responsible for the operation of cryptographic algorithm, the inspection of IMEI, IMSI, MAC Address, TMSI and distribution and periodic monitor.
Wireless terminal is exactly the entity that need lock net, pintle hook lock, can be data terminal products such as mobile phone, and it can use in various application occasions, can be that motion mode also can be fixed.Can be that domestic consumer also can be the enterprise customer.
Wireless transmitting system is mainly finished the aerial signal transmission of wireless terminal and high in the clouds server; Can be the forms such as base station of wireless cellular network, also can be to be confined to certain regional micro radio to receive transmission system.
High in the clouds comprises that high in the clouds server and some high in the clouds server controls softwares are to form the high in the clouds computing system.Rely on these powerful computing ability to finish the lock net of these One's name is legions, pintle hook lock operation.The high in the clouds server has the pintle hook lock Control Software with lock net, software that pintle hook lock is relevant and locks network control system software and the mass data card is used to write down every lock net, the pintle hook lock data of wireless terminal.
The characteristics of maximum of the present invention are lock net, pintle hook lock to be calculated all push high in the clouds to and carry out, and have so not only reduced the amount of calculation of terminal but also have reduced the insecurity of local operation.
Please refer to shown in Figure 1ly, is the technical solution of the present invention application scenarios, and a large amount of wireless terminals that occur have proposed new requirement to lock net, pintle hook lock operation, particularly occurs and the net networking is risen as M2M, and sensor network also is suitable for such structure.Wireless terminal is finished lock net, locking and blocking jointly by wireless transmitting system and high in the clouds server.
Please refer to shown in Figure 2ly, shown in Figure 2 is to describe the situation of making restriction when the sub-district of wireless terminal, when wireless terminal require can only be when special area be worked scene.
Lock net in the wireless terminal, pintle hook lock module can guarantee like this that by the high in the clouds server controls lock net, the locking and blocking module in the terminal is up-to-date, have solved the demand that module is upgraded, and do not need to upgrade whole version, have reduced manpower and insecurity.
Please refer to shown in Figure 4ly, is the software upgrading flow process schematic diagram in the embodiment of the invention wireless terminal locking means, and it comprises the steps:
S401: starting terminal;
S402: enter the software download pattern, from high in the clouds server update lock net, pintle hook lock software, and definite next update query time;
S403: judge whether to download successfully, if success then enter step S404, if failure then change step S402 over to and download again;
S404: enter normal mode of operation;
S405: judge whether the software upgrading time, if to change step S402 over to, if do not arrive, then return step S404.
If starting up's failed download will be carried out this process repeatedly, and report this situation,, will report the server notification professional to check whether terminal has problem to need maintenance if repeatedly can not the update software module to the high in the clouds server.Successfully be transferred to normal mode of operation if download, in terminal system, have software detection and whether arrive the software upgrading time, if, will initiate the update software request to server to preset time.
Through above step, will guarantee that the software in the terminal is up-to-date.
As shown in Figure 5, be the pintle hook lock schematic flow sheet in the wireless terminal locking means of the present invention, it comprises the steps:
S501: starting terminal;
Behind the starting terminal, after finishing the software upgrading task of regulation, treat that the plate side is received the pintle hook lock software of renewal after, up-to-date cryptographic algorithm is wherein arranged.
S502: terminal sends IMSI/TMSI/IMEI number and the MAC Address of encrypting to the high in the clouds server;
Terminal uses up-to-date cryptographic algorithm that IMEI, IMSI, MAC Address, TMSI (if present) are encrypted, and the ciphertext after encrypting is issued the high in the clouds server.
S503: whether judgment data is legal in system, if legal then change step S505 over to, if illegal, then changes step S504 over to;
The high in the clouds server is decrypted after receiving these ciphertexts, examine according to prior known IMEI, IMSI, MAC Address, TMSI then, if audit is passed through, the high in the clouds server bundlees registration with IMEI, IMSI, this three item numbers certificate of MAC Address of terminal feedback, if next time, this had occurring again and again of IMEI/MAC rather than three appearance simultaneously again, will registration failure, cause the pintle hook lock failure.
S504: terminal closedown;
S505: the high in the clouds server is registered three data of IMEI, IMSI, MAC Address of terminal feedback, upgrades to timing handshaking information and timing that the terminal feedback is encrypted;
S506: non-volatile district preserves up-to-date TMSI in terminal.
After the pintle hook lock success, terminal can be served normally, and obtains the update time of next TMSI ciphertext, and the plate side also is decrypted, and encrypts again, and biding one's time to be carved into reaches the checking of carrying out again next time.
If audit is not passed through, with terminal closedown or enter limited service mode.
When the terminal abnormal power down, non-volatile district preserves TMSI in terminal, and for using next time, these TMSI generally can not repeat.
Referring to shown in Figure 6, be lock net schematic flow sheet in the mobile terminal locking method of the present invention please, it comprises:
S601: starting terminal;
S602: judge whether pintle hook lock success of terminal, if success then enter step S603, if failure then enter step S605;
Behind starting terminal, finish the software task of regulation after, carry out pintle hook lock operation earlier, if the pintle hook lock failure will directly enter the limited-service pattern.
S603: the high in the clouds server checks whether network parameter and sub-district of living in be legal, if legal then change step S604 over to, does not change step S605 over to if conform to rule;
If the pintle hook lock success, the parameters such as IMEI, network parameter and cell parameter of living in that terminal oneself is preserved feed back to the high in the clouds server, and whether examined by the high in the clouds server legal.
S604: enter normal mode of operation;
S605: enter the limited-service pattern;
S606: regularly inquiry, and return step S603.
Particularly, can inquire about cell list, if the sub-district will enter the limited-service pattern not in suitable scope to using sub-district or specific region that requirement is arranged.If cell list in OK range, can normally use.
When the parameter of preserving when the network parameter of the encryption of terminal feedback and high in the clouds server is not inconsistent, limited service mode will be carried out,, normal mode of operation will be carried out if when the network parameter of the encryption that terminal is fed back conforms to the parameter of high in the clouds server preservation.
Certainly; the present invention also can have numerous embodiments; in the situation that does not deviate from spirit of the present invention and essence thereof; those of ordinary skill in the art can make various corresponding changes or variation according to the present invention certainly; in every case any modification of being done within the spirit and principles in the present invention, be equal to replacements, improvement, all should be included within protection scope of the present invention.
Claims (10)
1. a wireless terminal locking means is characterized in that, Cloud Server storage encryption algorithm software, and regularly cryptographic algorithm software is upgraded; Wireless terminal sends to the Cloud Server storage with locking data, and wireless terminal regularly obtains up-to-date cryptographic algorithm software from Cloud Server, and by this cryptographic algorithm software and SIM card or network locked.
2. the method for claim 1 is characterized in that, the locking that described wireless terminal locking means is wireless terminal and SIM card or the locking of wireless terminal and network.
3. the method for claim 1, it is characterized in that, after described wireless terminal regularly obtains up-to-date cryptographic algorithm software and is meant wireless terminal starting from Cloud Server, judge whether the cryptographic algorithm software upgrading time, if arrived, then enter the software download pattern, from high in the clouds server update cryptographic algorithm software.
4. the method for claim 1 is characterized in that, when the locking of wireless terminal and SIM card, described locking data comprises IMSI, TMSI, IMEI number and MAC Address, and wireless terminal sends to the high in the clouds server by cryptographic algorithm after with these data encryptions.
5. method as claimed in claim 4, it is characterized in that, the high in the clouds server is decrypted after receiving these ciphertexts, examine according to known IMEI, TMSI, IMSI, MAC Address then, if audit is passed through, the high in the clouds server bundlees registration with IMEI, IMSI, this three item numbers certificate of MAC Address of terminal feedback, does not occur simultaneously if be not three data next time, will registration failure, cause the pintle hook lock failure.
6. the method for claim 1, it is characterized in that when wireless terminal and network locked, described locking data comprises IMEI, network parameter and cell parameter of living in, and these data are fed back to the high in the clouds server, whether examined by the high in the clouds server legal.
7. a wireless terminal is characterized in that, described wireless terminal comprises locking module and Control Software module;
Described software control module sends to Cloud Server with locking data, and regularly obtains up-to-date cryptographic algorithm software from Cloud Server;
The cryptographic algorithm software that described locking module utilization is obtained locks wireless terminal.
8. wireless terminal as claimed in claim 7, it is characterized in that, described locking module is the pintle hook lock software module, and described locking data comprises IMSI, TMSI, IMEI number and MAC Address, and wireless terminal sends to the high in the clouds server by cryptographic algorithm after with these data encryptions.
9. wireless terminal as claimed in claim 8, it is characterized in that, the high in the clouds server is decrypted after receiving these ciphertexts, examine according to known IMEI, TMSI, IMSI, MAC Address then, if audit is passed through, the high in the clouds server bundlees registration with IMEI, IMSI, this three item numbers certificate of MAC Address of terminal feedback, does not occur simultaneously if be not three data next time, will registration failure, cause the pintle hook lock failure.
10. wireless terminal as claimed in claim 7, it is characterized in that, described locking module is a lock net software module, when wireless terminal and network locked, described locking data comprises IMEI, network parameter and cell parameter of living in, and these data are fed back to the high in the clouds server, whether examined by the high in the clouds server legal.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011102492416A CN102300204A (en) | 2011-08-26 | 2011-08-26 | Wireless terminal and lockup method and system thereof |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2011102492416A CN102300204A (en) | 2011-08-26 | 2011-08-26 | Wireless terminal and lockup method and system thereof |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102300204A true CN102300204A (en) | 2011-12-28 |
Family
ID=45360302
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2011102492416A Pending CN102300204A (en) | 2011-08-26 | 2011-08-26 | Wireless terminal and lockup method and system thereof |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102300204A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104798111A (en) * | 2012-08-16 | 2015-07-22 | 爱克斯蒂德公司 | Cloud-based wireless communication system and method |
| WO2019144936A1 (en) * | 2018-01-26 | 2019-08-01 | 上海广升信息技术股份有限公司 | Method for realizing remote network locking and unlocking of mobile terminal based on android system |
| CN110505225A (en) * | 2019-08-21 | 2019-11-26 | Oppo(重庆)智能科技有限公司 | A kind of terminal card-locking method, apparatus and computer readable storage medium |
| US10667110B2 (en) | 2012-08-16 | 2020-05-26 | Schlage Lock Company Llc | System and method for using an electronic lock with a smartphone |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101494859A (en) * | 2008-12-30 | 2009-07-29 | 中兴通讯股份有限公司 | Network locking method of wireless terminal equipment |
| CN101605326A (en) * | 2008-06-12 | 2009-12-16 | 中兴通讯股份有限公司 | The method of a kind of encryption and decrypting mobile terminal network locking/card locking unlock code |
| CN101742483A (en) * | 2009-12-16 | 2010-06-16 | 中兴通讯股份有限公司 | Method and system for unlocking locked network of terminal |
| CN101848438A (en) * | 2010-04-23 | 2010-09-29 | 中兴通讯股份有限公司 | Method for remotely modifying network-locking parameter |
-
2011
- 2011-08-26 CN CN2011102492416A patent/CN102300204A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101605326A (en) * | 2008-06-12 | 2009-12-16 | 中兴通讯股份有限公司 | The method of a kind of encryption and decrypting mobile terminal network locking/card locking unlock code |
| CN101494859A (en) * | 2008-12-30 | 2009-07-29 | 中兴通讯股份有限公司 | Network locking method of wireless terminal equipment |
| CN101742483A (en) * | 2009-12-16 | 2010-06-16 | 中兴通讯股份有限公司 | Method and system for unlocking locked network of terminal |
| CN101848438A (en) * | 2010-04-23 | 2010-09-29 | 中兴通讯股份有限公司 | Method for remotely modifying network-locking parameter |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104798111A (en) * | 2012-08-16 | 2015-07-22 | 爱克斯蒂德公司 | Cloud-based wireless communication system and method |
| US10204464B2 (en) | 2012-08-16 | 2019-02-12 | Schlage Lock Company Llc | Cloud-based wireless communication system and method for updating a reader device |
| US10667110B2 (en) | 2012-08-16 | 2020-05-26 | Schlage Lock Company Llc | System and method for using an electronic lock with a smartphone |
| US11425546B2 (en) | 2012-08-16 | 2022-08-23 | Schlage Lock Company Llc | System and method for using an electronic lock with a smartphone |
| WO2019144936A1 (en) * | 2018-01-26 | 2019-08-01 | 上海广升信息技术股份有限公司 | Method for realizing remote network locking and unlocking of mobile terminal based on android system |
| CN110505225A (en) * | 2019-08-21 | 2019-11-26 | Oppo(重庆)智能科技有限公司 | A kind of terminal card-locking method, apparatus and computer readable storage medium |
| CN110505225B (en) * | 2019-08-21 | 2022-05-17 | Oppo(重庆)智能科技有限公司 | Terminal card locking method and device and computer readable storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10003965B2 (en) | Subscriber profile transfer method, subscriber profile transfer system, and user equipment | |
| KR102623524B1 (en) | Method and device for downloading profiles in communication systems | |
| JP6752218B2 (en) | Methods and devices for managing terminal profiles in wireless communication systems | |
| CN102137397B (en) | Authentication method based on shared group key in machine type communication (MTC) | |
| US8578153B2 (en) | Method and arrangement for provisioning and managing a device | |
| CN102223231B (en) | M2M terminal authentication system and authentication method | |
| KR102657876B1 (en) | Apparatus and methods for ssp device and server to negociate digital certificates | |
| CN113785532B (en) | Method and apparatus for managing and verifying certificates | |
| MX2012003952A (en) | Apparatus and methods for storing electronic access clients. | |
| CN101771973B (en) | Data short message processing method, data short message processing equipment and data short message processing system | |
| CN102457844B (en) | Group key management method and system in the certification of a kind of M2M group | |
| CN102318386A (en) | Service-based authentication to a network | |
| CN102143492B (en) | Method for establishing virtual private network (VPN) connection, mobile terminal and server | |
| CN102469455A (en) | Method and system for managing machine type communication (MTC) equipment based on generic bootstrapping architecture (GBA) in grouping manner | |
| KR20200044629A (en) | Apparatus, method for handling execptions in remote profile management | |
| CN102300204A (en) | Wireless terminal and lockup method and system thereof | |
| CN110505619A (en) | A kind of data transmission method in eSIM Remote configuration | |
| WO2017101211A1 (en) | Method and apparatus for accessing wireless communication system, and terminal | |
| US20220295281A1 (en) | System, module, circuitry and method | |
| CN107277935B (en) | Bluetooth communication method, device and application system and equipment thereof | |
| CN103414707B (en) | message access processing method and device | |
| EP3219066B1 (en) | Radio device hardware security system for wireless spectrum usage | |
| US20220369096A1 (en) | METHOD AND APPARATUS FOR IDENTIFYING PROFILE DELETION WHEN eUICC TERMINAL IS CHANGED | |
| US11997488B2 (en) | Method and apparatus for managing and verifying certificate | |
| CN117280722A (en) | Method and apparatus for identifying profile deletion when EUICC terminal is changed |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20111228 |
|
| WD01 | Invention patent application deemed withdrawn after publication |