WO2017020601A1 - Method and system for strategy operation, configuration forwarding, conflict processing and closed-loop management - Google Patents

Abstract

A method and a system for strategy operation, configuration forwarding, conflict processing and closed-loop management. While adding a new strategy in the strategy operation system, examining and approving the newly added strategy; after passing the examination and approval, performing configuration and forwarding for the newly added strategy, wherein the forwarding is implemented through a standard configuration forwarding interface between the strategy operation system and a strategy execution system; and monitoring the operation state of the forwarded strategy, and displaying the statistic analysis data executed by the forwarded strategy. In the course of configuration, the strategy conflict processing could be performed, and after forwarding, the closed-loop management of the strategy could also be performed. The solution of the present application could enable operators to expand a strategy operation mode, configure and use strategies rapidly, conveniently and safely, reduce production cost of enterprises, and enable end users to have better user experience.

Description

Policy operation, configuration delivery, conflict handling, and closed-loop management methods and systems Technical field

This document relates to the field of communications and information, and more specifically, to policy operations, configuration delivery, conflict handling, and closed loop management methods and systems.

Background technique

The policy network implementation capability of the core network category is defined in the PCC architecture standard of 3GPP, that is, the policy execution system, which includes a Policy and Charging Rules Function (PCRF) and a user attribute storage (SPR: Subscriber Profile). Core network elements such as Repository), Policy and Charging Enforcement Function (PCEF), and evolved Node B (eNodeB).

Currently, the standard does not define network elements related to operational services such as policy configuration delivery. For a long time, different manufacturers have carried out policy management from different angles, and their policy management focuses on policy configuration, lack of perfect strategy operation management, and different maintenance methods. Usually, the system communicates through verbal, mail, and excel, which causes the operator's strategic operation and maintenance to cause extremely chaotic status.

The inventors of the present invention have found that with the sharp increase in the operational requirements of the strategy, the diversity and complexity of the strategic requirements are increasing in geometric progression, and the implementation of the new time strategy needs to solve the following technical problems:

There may be policy conflicts when signing multiple policies with the same user. If the processing is not good, it is easy to cause user complaints or even user loss. In order to improve the user experience, how to detect and manage policy conflicts, is the policy deployment safe enough?

The configuration and maintenance of core network equipment of different manufacturers are not uniform. The complexity of policy configuration and policy signing data management is very high. How to get rid of manual inefficient processing?

The life cycle management of the strategy is complex, involving many departments and dealing with many links. How to coordinate the resources in an orderly and efficient manner?

What are the positive and negative impacts on users after the deployment of the policy, which are brought to the operators? How can the benefits be evaluated in a timely manner?

Summary of the invention

In order to solve at least one of the above technical problems, the present invention provides the following technical solutions.

A method for dealing with policy conflicts, including:

Obtain the policy user group for the new configuration policy;

Determining whether there is a policy conflict between the new configuration policy and other policies subscribed by the user for the user who subscribes to multiple policies in the policy user group;

When there is a policy conflict, policy conflict processing is performed.

Optionally, the step of performing policy conflict processing includes:

Do one or more of the following:

Deleting a user with a policy conflict from the policy user group of the new configuration policy;

Retaining users with policy conflicts in the policy user group of the new configuration policy, and deleting from the policy user group of other policies that conflict with the new configuration policy;

Adjusting the policy priority so that the policy priority of the new configuration policy is different from the policy priority of other policies that conflict with it;

Adjusting trigger conditions and/or output actions in the policy rules of the new configuration policy.

Optionally, the step of determining whether there is a policy conflict between the new configuration policy and another policy subscribed by the user in the policy user group that has subscribed to multiple policies includes:

Grouping users in the policy user group that have subscribed to multiple policies, and allocating all users with the same policy to one group;

For each group, if there is a policy conflict between the new configuration policy and any other policy subscribed by the group of users, the group of users has a policy conflict. Otherwise, the group of users does not have a policy conflict.

Optionally, the new configuration policy is a newly configured network traffic related policy.

Optionally, the step of determining whether there is a policy conflict between the new configuration policy and another policy subscribed by the user includes:

Determine if there is a policy conflict between the two policies as follows:

Determine the two sets of policy rules that each of the two policies contains;

Determining whether there is an intersection of trigger conditions of any pair of policy rules respectively selected from the two sets of policy rules:

If no, there is no policy conflict between the two policies;

If yes, it is determined whether the output actions of any one of the pair of policy rules can occur simultaneously:

If yes, there is no policy conflict between the two policies;

If no, there is a policy conflict between the two policies.

A policy configuration delivery method includes:

The policy configuration delivery device performs policy configuration according to the policy data item.

The policy configuration delivery device converts the policy configuration information into policy configuration data that meets the configuration of the delivery interface specification;

And the policy configuration sending device sends the policy configuration data to the policy execution system by using the configuration sending interface;

The configuration delivery interface is a standard interface between the policy configuration delivery device and the policy execution system.

Optionally, the step of the policy configuration sending device sending the policy configuration data to the policy execution system by using the configuration sending interface includes:

The policy configuration delivery device sends the policy configuration data to the policy execution system according to the transmission mode defined by the configuration delivery interface specification; wherein the defined transmission mode is a simple object access protocol SOAP and a file transfer protocol. The transmission mode of FTP cooperative work, FTP is used to transmit the transmitted data files, and SOAP messages are used to send transmission-related control commands.

Optionally, the policy configuration data conforming to the configuration delivery interface specification includes a set of policy configuration data files, and the set of policy configuration data files are organized by a relationship between the policies and related attributes and have a standard format.

Optionally, the content related to the policy rule in the policy configuration data includes: a policy, a policy rule list, a trigger condition list, and a policy action list, where each item is carried in one or more policy configuration data files; The policy includes policy basic information, and references a set of policy rules in the policy rule list; the policy rule refers to a set of trigger conditions in the trigger condition list and an output action in the policy action list; the trigger condition includes a location One or more of the area, terminal type, service type, time period, network type, access point, user level, user status, and package type.

Optionally, the method further includes: after the step of configuring the policy configuration by the sending device according to the policy data item, and converting the policy configuration information into the policy configuration data that meets the configuration of the delivery interface specification, the method further includes:

The policy conflict processing apparatus performs policy conflict processing on the new configuration policy according to any of the above policy conflict processing methods.

Optionally, before the step of configuring, by the policy, the sending device, according to the policy data item, the method further includes:

The policy configuration delivery device obtains the policy data item by using one or more of the following methods:

Obtained from the data analysis system:

Obtained from the business acceptance system;

Obtained through the administrator interface.

Optionally, the step of the policy configuration sending device sending the policy configuration data to the policy execution system by using the configuration sending interface includes:

The policy configuration delivery device sends the data related to the policy rule in the policy configuration data to the policy and charging rule function unit PCRF, and sends the data related to the user policy subscription relationship in the policy configuration data to the User attribute memory SPR.

Optionally, the step of configuring, by the policy configuration, the device to perform policy configuration according to the policy data item includes: configuring, by the policy, the sending device, according to the policy data item, the configuration of the network traffic related policy.

A policy operation method applied to a policy operation system, including:

When a new policy is added to the policy operation system, the new policy is approved and processed;

After the approval is passed, the configuration and the delivery of the new policy are performed, and the delivery is implemented by using a standard configuration interface between the policy operation system and the policy execution system;

Monitor the running status of the delivered policy and display the statistical analysis data of the executed policy.

Optionally, the step of performing the configuration and the delivery of the newly added policy includes: configuring and delivering the new policy according to any of the foregoing policy configuration delivery methods.

Optionally, after the step of configuring and delivering the new policy, the method further includes:

Obtaining changed policy data items from one or more of a data analysis system, a business acceptance system, and an administrator interface;

The policy configuration information of the corresponding policy is updated according to the changed policy data item, and the updated policy configuration information is converted into the policy configuration data that meets the specifications of the configured delivery interface, and then delivered.

Optionally, after the step of configuring and delivering the new policy, the method further includes:

Delete the configured policy according to the administrator's instructions or when the set conditions are met;

The policy execution system is notified by the configuration delivery interface to delete the configured policy.

A policy configuration closed-loop management method, including:

The policy operation system delivers the policy configuration data of the policy to the policy execution system through a standard configuration delivery interface with the policy execution system;

The policy execution system executes the policy according to the delivered policy configuration data;

The policy data system collects execution result data of the policy, and feeds back execution result information of the policy to the policy operation system;

The policy operation system receives the execution result information of the policy, and adjusts the policy, and sends the policy-adjusted policy configuration data to the policy execution system.

Optionally, the policy data system includes at least one of a service acceptance system and a data analysis system.

Optionally, the step of the policy execution system executing the policy according to the delivered policy configuration data includes: sending notification information to the terminal user;

The step of the policy data system collecting the execution result data of the policy and feeding back the execution result information of the policy to the policy operation system includes: the service acceptance system collecting the processing information of the terminal user for the notification information, Generating user policy subscription relationship operation information according to the setting rule, and feeding back to the policy operation system;

The step of adjusting the policy by the policy operation system includes: adjusting a user policy subscription relationship of the policy according to the user policy subscription relationship operation information.

A policy conflict processing apparatus includes a user acquisition module, a conflict determination module, and a conflict processing module, wherein

The user acquisition module is configured to: obtain a policy user group of a new configuration policy;

The conflict determination module is configured to: determine, by the user who subscribes to multiple policies in the policy user group, whether there is a policy conflict between the new configuration policy and other policies subscribed by the user;

The conflict processing module is configured to: when the conflict determination module determines that there is a policy conflict, perform policy conflict processing.

Optionally, the conflict processing module is configured to perform policy conflict processing as follows:

Do one or more of the following:

Deleting a user with a policy conflict from the policy user group of the new configuration policy;

Retaining users with policy conflicts in the policy user group of the new configuration policy, and deleting from the policy user group of other policies that conflict with the new configuration policy;

Adjusting the policy priority so that the policy priority of the new configuration policy is different from the policy priority of other policies that conflict with it;

Adjusting trigger conditions and/or output actions in the policy rules of the new configuration policy.

Optionally, the conflict determination module is configured to determine, according to the manner, a user who subscribes to multiple policies in the policy user group, whether there is a policy conflict between the new configuration policy and another policy subscribed by the user:

Grouping users in the policy user group that have subscribed to multiple policies, and allocating all users with the same policy to one group;

For each group, if there is a policy conflict between the new configuration policy and any other policy subscribed by the group of users, the group of users has a policy conflict. Otherwise, the group of users does not have a policy conflict.

Optionally, the new configuration policy is a newly configured network traffic related policy.

Optionally, the conflict determination module is configured to determine whether there is a policy conflict between the new configuration policy and other policies subscribed by the user as follows:

Determine if there is a policy conflict between the two policies as follows:

Determine the two sets of policy rules that each of the two policies contains;

Determining whether there is an intersection of trigger conditions of any pair of policy rules respectively selected from the two sets of policy rules:

If no, there is no policy conflict between the two policies;

If yes, it is determined whether the output actions of any one of the pair of policy rules can occur simultaneously:

If yes, there is no policy conflict between the two policies;

If no, there is a policy conflict between the two policies.

A policy configuration delivery device includes a policy configuration module, a format conversion module, and a policy delivery module, where

The policy configuration module is configured to: perform policy configuration according to the policy data item;

The format conversion module is configured to: convert the policy configuration information into policy configuration data that conforms to the configuration of the delivery interface;

The policy delivery module is configured to: send the policy configuration data to the policy execution system by using the configuration delivery interface;

The configuration delivery interface is a standard interface between the policy configuration delivery device and the policy execution system.

Optionally, the sending module is configured to send the policy configuration data to the policy execution system by using the configuration sending interface as follows:

Distributing the policy configuration data to the policy execution system according to the transmission mode defined by the configuration of the delivery interface specification; wherein the defined transmission mode is a transmission mode of a simple object access protocol SOAP and a file transfer protocol FTP cooperative work, FTP is used to transmit the delivered data file, and the SOAP message is used to send the transmission-related control commands.

Optionally, the policy configuration data conforming to the configuration delivery interface specification includes a set of policy configuration data files, and the set of policy configuration data files are organized by a relationship between the policies and related attributes and have a standard format.

Optionally, the content related to the policy rule in the policy configuration data includes: a policy, a policy rule list, a trigger condition list, and a policy action list, where each item is carried in one or more policy configuration data files; The policy includes policy basic information, and references a set of policy rules in the policy rule list; the policy rule refers to a set of trigger conditions in the trigger condition list and an output action in the policy action list; the trigger condition includes a location One or more of the area, terminal type, service type, time period, network type, access point, user level, user status, and package type.

Optionally, the configuration module is further configured to: obtain the policy data item by using one or more of the following methods:

Obtained from the data analysis system:

Obtained from the business acceptance system;

Obtained through the administrator interface.

Optionally, the sending module is configured to send the policy configuration data to the policy execution system by using the configuration sending interface as follows:

The data related to the policy rule in the policy configuration data is sent to the policy and charging rule function unit PCRF, and the data related to the user policy subscription relationship in the policy configuration data is sent to the user attribute storage SPR.

Optionally, the configuration module is configured to perform policy configuration according to the policy data item according to the following manner: the configuration module performs configuration of the network traffic related policy according to the policy data item.

A policy operation system includes: a policy operation management device and a policy configuration delivery device, wherein

The policy operation management device is configured to: when a new policy is added, the new policy is approved, and after the approval is passed, the policy configuration delivery device is invoked to configure and deliver the new policy;

The policy configuration delivery device is configured to: implement policy configuration and delivery, and the delivery is implemented by using a standard configuration interface between the policy operation system and the policy execution system;

The policy operation management device is further configured to: monitor the running status of the delivered policy, and display statistical analysis data that has been executed by the executed policy.

Optionally, the policy configuration sending device uses any of the foregoing policies to configure the sending device.

Optionally, the policy operation system further includes any of the foregoing policy conflict processing devices;

The policy operation management apparatus is further configured to: after the policy configuration sending device completes the configuration of the newly added policy, invoke the policy conflict processing device to perform policy conflict handling on the newly added policy, and the policy conflicts After the processing is completed, the policy is configured to deliver the new policy.

Optionally, the policy operation management apparatus is further configured to: obtain a changed policy data item from at least one of a data analysis system, a service acceptance system, and an administrator interface, and invoke the policy configuration delivery device to perform a policy. Update and issue;

The policy configuration delivery device is further configured to: update the policy configuration information of the corresponding policy according to the changed policy data item, and convert the updated policy configuration information into the policy configuration data that meets the configuration of the delivery interface specification, and then deliver the policy configuration data.

Optionally, the policy operation management apparatus is further configured to: notify the policy configuration sending device to delete the configured policy according to an administrator command or when the setting condition is met;

The policy configuration delivery device is further configured to notify the policy execution system to delete the configured policy by using the configuration delivery interface after deleting the configured policy according to the notification.

A policy configuration closed-loop management system, including a policy operation system, a policy execution system, and a policy data system, wherein

The policy operation system is configured to: deliver the policy configuration data of the policy to the policy execution system by using a standard configuration delivery interface with the policy execution system;

The policy execution system is configured to: execute the policy according to the delivered policy configuration data;

The policy data system is configured to: collect execution result data of the policy, and feed back execution result information of the policy to the policy operation system;

The policy operation system is further configured to: receive the execution result information of the policy, and adjust the policy, and deliver the policy-adjusted policy configuration data to the policy execution system.

Optionally, the policy data system includes at least one of a service acceptance system and a data analysis system.

Optionally, the policy execution system is configured to execute the policy according to the delivered policy configuration data by: sending notification information to the terminal user;

The policy data system is configured to collect the execution result data of the policy according to the following manner, and feed back the execution result information of the policy to the policy operation system: the service acceptance system collects the processing of the terminal user for the notification information Information, generating user policy subscription relationship operation information according to the set rule, and feeding back to the policy operation system;

The policy operation system is configured to adjust the policy according to the following manner: adjusting a user policy subscription relationship of the policy according to the user policy subscription relationship operation information.

An arithmetic device comprising a memory and a processor, wherein

The memory stores a policy conflict handling program;

The CPU is configured to execute the policy conflict processing program according to the following manner, and perform processing corresponding to the program:

Obtain the policy user group for the new configuration policy;

Determining whether there is a policy conflict between the new configuration policy and other policies subscribed by the user for the user who subscribes to multiple policies in the policy user group;

When there is a policy conflict, policy conflict processing is performed.

Optionally, the CPU is configured to perform policy conflict processing as follows:

Do one or more of the following:

Deleting a user with a policy conflict from the policy user group of the new configuration policy;

Retaining users with policy conflicts in the policy user group of the new configuration policy, and deleting from the policy user group of other policies that conflict with the new configuration policy;

Adjusting the policy priority so that the policy priority of the new configuration policy is different from the policy priority of other policies that conflict with it;

Adjusting trigger conditions and/or output actions in the policy rules of the new configuration policy.

Optionally, the CPU is configured to determine, by using a user that subscribes to multiple policies in the policy user group, whether there is a policy conflict between the new configuration policy and other policies subscribed by the user:

Grouping users in the policy user group that have subscribed to multiple policies, and allocating all users with the same policy to one group;

For each group, if there is a policy conflict between the new configuration policy and any other policy subscribed by the group of users, the group of users has a policy conflict. Otherwise, the group of users does not have a policy conflict.

Optionally, the CPU is configured to determine whether there is a policy conflict between the new configuration policy and other policies subscribed by the user as follows:

Determine if there is a policy conflict between the two policies as follows:

Determine the two sets of policy rules that each of the two policies contains;

Determining whether there is an intersection of trigger conditions of any pair of policy rules respectively selected from the two sets of policy rules:

If no, there is no policy conflict between the two policies;

If yes, it is determined whether the output actions of any one of the pair of policy rules can occur simultaneously:

If yes, there is no policy conflict between the two policies;

If no, there is a policy conflict between the two policies.

An arithmetic device comprising a memory and a processor CPU, wherein

The memory stores a policy configuration delivery program;

The CPU is configured to execute the policy configuration delivery program according to the following manner, and perform processing corresponding to the program:

Policy configuration based on policy data items;

Convert policy configuration information to policy configuration data that conforms to the configuration of the delivered interface specification;

And sending the policy configuration data to the policy execution system by using the configuration sending interface;

The configuration delivery interface is a standard interface between the policy configuration delivery device and the policy execution system.

Optionally, the CPU is configured to deliver the policy configuration data to the policy execution system by using the configuration delivery interface as follows:

The policy configuration delivery device sends the policy configuration data to the policy execution system according to the transmission mode defined by the configuration delivery interface specification; the defined transmission mode is a simple object access protocol SOAP and a file transfer protocol FTP collaboration. The transmission mode of the work, in which the FTP is used to transmit the delivered data file, and the SOAP message is used to send the transmission-related control command.

Optionally, the memory further stores a policy conflict processing program;

After the policy is configured by the CPU according to the policy data item, and before the policy configuration information is converted into the policy configuration data that meets the configuration of the delivery interface specification, the CPU further executes the policy conflict processing program to perform any of the foregoing processes.

Optionally, the CPU is configured to deliver the policy configuration data to the policy execution system by using the configuration delivery interface as follows:

The data related to the policy rule in the policy configuration data is sent to the policy and charging rule function unit PCRF, and the data related to the user policy subscription relationship in the policy configuration data is sent to the user attribute storage SPR.

The above solution enables operators to expand the policy operation mode, configure, and use policies quickly, conveniently, and securely, reduce the cost of production, and enable end users to enjoy a better user experience.

BRIEF abstract

1 is a flowchart of a method for processing a policy conflict according to an embodiment of the present invention;

2 is a block diagram of a policy conflict processing apparatus according to an embodiment of the present invention;

3 is a flowchart of a method for issuing a policy configuration according to Embodiment 2 of the present invention;

4 is a block diagram of a policy configuration delivery device according to Embodiment 2 of the present invention;

5 is a structural diagram of a third policy operation system and a connection diagram between a policy operation system and a peripheral system according to an embodiment of the present invention;

6 is a flowchart of a method for operating a policy according to Embodiment 3 of the present invention;

FIG. 7 is a flowchart of a fourth method for configuring policy closed loop management according to an embodiment of the present invention.

Preferred embodiment of the invention

The following is an overview of the topics detailed in this document. This Summary is not intended to limit the scope of the claims.

Embodiments of the present invention will be described in detail below with reference to the accompanying drawings. It should be noted that, in the case of no conflict, the features in the embodiments and the embodiments in the present application may be arbitrarily combined with each other.

The strategies and related attributes in this article include:

Strategy: A policy consists of multiple policy rules;

Policy rule: A policy rule consists of a trigger condition and an output action. The logic is to output a specific "action" when the user behavior satisfies a certain "trigger condition";

Trigger conditions: location area (cell in mobile network), terminal type (IPhone/Samsung, etc.), service type (QQ/P2P, etc.), time period, network type (2G/3G/4G), access point (APN), Information such as user level (gold/silver/copper), user status, package type, and the like constitute a trigger condition, which can also be called Trigger conditions for the policy;

Output actions: such as bandwidth control actions (Qos parameters, etc.), notification actions (SMS notifications, etc.), etc.;

Basic policy information: contains information such as a policy identifier (ID), a policy name, and a policy description to describe a policy.

User policy subscription relationship: A user can subscribe to one or more policies, and a user policy subscription relationship is generated after the subscription;

Policy user group: A collection of all users who have a subscription relationship with a certain policy constitutes a policy user group for the policy;

Policy priority: When the trigger conditions of two or more policies are met at the same time, the policy with higher priority is executed.

Policy data items, including data items such as policy user groups, trigger conditions, and output actions.

Embodiment 1

This embodiment provides a policy conflict processing method, as shown in FIG. 1, including:

Step 110: Obtain a policy user group of a newly configured policy.

The new configuration policy may be a newly configured network traffic related policy.

In step 120, a user who has subscribed to multiple policies in the policy user group determines whether there is a policy conflict between the new configuration policy and other policies subscribed by the user. If yes, go to step 130, otherwise end;

In this step, you can determine whether there is a policy conflict for users in the policy user group. However, in order to implement the fast processing of the policy conflict, the embodiment determines whether there is a policy conflict between the other policies subscribed by the user in the policy user group and the new configuration policy by using the following grouping manner:

Grouping users who have subscribed to multiple policies in the policy user group, and all users with the same policy are all grouped into one group;

For each group, if there is a policy conflict between the new configuration policy and any other policy subscribed by the group of users, the group of users has a policy conflict. Otherwise, the group of users does not have a policy conflict.

When the number of users is large, the number of users in the group is large, and the total number of packets does not change greatly. Therefore, the efficiency of batch processing of policy conflict packets is very high, which can greatly improve the efficiency of policy management.

Specifically, it can be determined whether there is a policy conflict between the two policies as follows:

Determine the two sets of policy rules that each of the two policies contains;

Determining whether there is an intersection of trigger conditions of any pair of policy rules respectively selected from the two sets of policy rules:

If no, there is no policy conflict between the two policies;

If yes, it is determined whether the output actions of any one of the pair of policy rules can occur simultaneously:

If yes, there is no policy conflict between the two policies;

If no, there is a policy conflict between the two policies.

There is an intersection of the so-called trigger conditions. For example, the trigger conditions of a pair of policy rules are all time periods, which are 10:00 to 18:00, and 15:00 to 20:00 respectively. Then, the two trigger conditions have an intersection, if There is no intersection between 10:00 and 14:00 and 15:00 to 20:00. For example, if the trigger conditions of a pair of policy rules are all location areas, respectively, in Beijing and Shanghai, there is no intersection, and if they are Beijing and Beijing Haidian, respectively, there is an intersection. When there are multiple trigger conditions, such as including both the location area and the time period, it is necessary to consider whether there is an intersection between the range defined by two trigger conditions of one policy rule and the range defined by two trigger conditions of another policy rule, such as a The trigger condition of the policy rule is +10:00 to 14:00 in Beijing, and the trigger condition of another policy rule is +15:00 to 20:00 in Haidian District, Beijing. There is no intersection. In short, the case where there is an intersection includes that the trigger conditions are identical, or although not identical, there is a common portion in the range defined by the two trigger conditions, so that the trigger conditions of both may be satisfied at the same time.

In step 130, a policy conflict process is performed.

When there is a policy conflict, the policy can be adjusted, for example, one or more of the following processing methods can be adopted;

Deleting a user with a policy conflict from the policy user group of the new configuration policy;

Retaining users with policy conflicts in the policy user group of the new configuration policy, while Deleted from the policy user group of other policies that conflict with the new configuration policy;

Adjusting the policy priority so that the policy priority of the new configuration policy is different from the policy priority of other policies that conflict with it;

Adjusting trigger conditions and/or output actions in the policy rules of the new configuration policy.

The embodiment further provides a policy conflict processing device, as shown in FIG. 2, including:

a user acquisition module 30, configured to acquire a policy user group of a newly configured policy;

The conflict determination module 32 is configured to determine, by the user who subscribes to multiple policies in the policy user group, whether there is a policy conflict between the new configuration policy and other policies subscribed by the user;

The conflict processing module 34 is configured to perform policy conflict processing when there is a policy conflict.

Optionally,

The conflict processing module performs policy conflict processing, including one or more of the following methods:

Deleting a user with a policy conflict from the policy user group of the new configuration policy;

Retaining users with policy conflicts in the policy user group of the new configuration policy, and deleting from the policy user group of other policies that conflict with the new configuration policy;

Adjusting the policy priority so that the policy priority of the new configuration policy is different from the policy priority of other policies that conflict with it;

Adjusting trigger conditions and/or output actions in the policy rules of the new configuration policy.

Optionally,

The conflict determination module determines, for a user who has subscribed to multiple policies in the policy user group, whether there is a policy conflict between the new configuration policy and other policies subscribed by the user, including:

Grouping users in the policy user group that have subscribed to multiple policies, and allocating all users with the same policy to one group;

For each group, if there is a policy conflict between the new configuration policy and any other policy subscribed by the group of users, the group of users has a policy conflict. Otherwise, the group of users does not have a policy conflict.

Optionally,

The new configuration policy is a newly configured network traffic related policy.

Optionally,

The conflict determination module determines whether there is a policy conflict between the new configuration policy and other policies subscribed by the user, including: determining whether there is a policy conflict between the two policies as follows:

Determine the two sets of policy rules that each of the two policies contains;

Determining whether there is an intersection of trigger conditions of any pair of policy rules respectively selected from the two sets of policy rules:

If no, there is no policy conflict between the two policies;

If yes, it is determined whether the output actions of any one of the pair of policy rules can occur simultaneously:

If yes, there is no policy conflict between the two policies;

If no, there is a policy conflict between the two policies.

Mutually exclusive output actions cannot occur at the same time. For example, two actions that limit the bandwidth to 128k and 2M are triggered at the same time. Only one of these two actions can be executed. However, there may be other restrictions that prevent the two output actions from happening at the same time. For example, only one marketing message is allowed to be sent to the user during a period of time, but two SMS messages are triggered at the same time, which is not allowed, and may be caused to the user. Harassment, this is a limitation at the operational level. Therefore, after batch processing, the final conflict decision can be performed manually.

In one example, a combination of defined analysis scope and similarity analysis is used to analyze possible policy conflict relationships.

The above limited scope of analysis includes but is not limited to:

A policy that acts on different location areas is determined to be that there is no policy conflict;

It is determined that there is no policy conflict between policies acting on different users;

A policy that acts on different time periods is determined to be that there is no policy conflict.

The above similarity analysis includes but is not limited to:

A policy conflict is determined between policies acting on overlapping target areas;

It is determined that there is a possibility of a policy conflict between policies acting on overlapping target time periods.

The strategy operation system can perform the similarity analysis method after limiting the scope of analysis, first narrow the scope, and then find out the strategy of possible conflict analysis in a small scope, and provide a visual view of batch processing to the user to make the final strategy manually. Conflict determination.

The embodiment further provides an arithmetic device, including a memory and a processor, wherein:

The memory stores a policy conflict handling program;

The CPU is configured to execute the policy conflict processing program and perform corresponding processing, including:

Obtain the policy user group for the new configuration policy;

Determining whether there is a policy conflict between the new configuration policy and other policies subscribed by the user for the user who subscribes to multiple policies in the policy user group;

When there is a policy conflict, policy conflict processing is performed.

Optionally,

The CPU performs policy conflict processing, including one or more of the following processing methods:

Deleting a user with a policy conflict from the policy user group of the new configuration policy;

Retaining users with policy conflicts in the policy user group of the new configuration policy, and deleting from the policy user group of other policies that conflict with the new configuration policy;

Adjusting the policy priority so that the policy priority of the new configuration policy is different from the policy priority of other policies that conflict with it;

Adjusting trigger conditions and/or output actions in the policy rules of the new configuration policy.

Optionally,

The CPU determines, by the user in the policy user group that the multiple policies are subscribed, whether there is a policy conflict between the new configuration policy and other policies subscribed by the user, including:

Grouping users in the policy user group that have subscribed to multiple policies, and allocating all users with the same policy to one group;

For each group, if there is a policy conflict between the new configuration policy and any other policy subscribed by the group of users, the group of users has a policy conflict. Otherwise, the group of users does not have a policy conflict.

Optionally,

The CPU determines whether there is a policy conflict between the new configuration policy and other policies subscribed by the user, including: determining whether there is a policy conflict between the two policies in the following manner:

Determine the two sets of policy rules that each of the two policies contains;

Determining whether there is an intersection of trigger conditions of any pair of policy rules respectively selected from the two sets of policy rules:

If no, there is no policy conflict between the two policies;

If yes, it is determined whether the output actions of any one of the pair of policy rules can occur simultaneously:

If yes, there is no policy conflict between the two policies;

If no, there is a policy conflict between the two policies.

Currently, there is no policy conflict handling in the policy configuration. The policy conflict processing method and device provided in this embodiment provide security for the deployment of the policy through the judgment and processing of the policy conflict, and avoid the multiple policies between the users. Possible conflicts improve the user experience and increase the security of policy deployment.

A typical application example of policy conflict handling is given below:

The strategy A of this example is to limit the traffic bandwidth to 128K when user A enters the location area of Guangzhou Railway Station. Strategy B speeds the traffic bandwidth to 2M when user A enters the location area of Guangzhou Railway Station. When user A orders After strategy A, when reordering strategy B, then when user A enters the location area of Guangzhou Railway Station, both policy A and policy B are triggered, but the output actions of policy A and policy B are mutually exclusive, that is, there is a policy conflict. If the policy B of Speed 2M ordered by User A is not implemented when a policy conflict occurs, it may bring a user complaint.

According to the policy conflict processing method of the present embodiment, when the policy B is configured, the policy conflict processing can be used to determine that the user A has a policy conflict. In the policy conflict processing, the user A can be deleted from the policy user group of the policy B, or the policy can be adjusted. The priority of B is different from the priority of policy A. When user A enters the location area of Guangzhou Railway Station, policy A or policy B will be executed first.

The above implementation example shows a policy conflict resolution provided by the policy conflict processing device for policy operation management. Analysis features can reduce user complaints and improve policy enforcement security and user satisfaction.

Embodiment 2

This embodiment provides a method for sending a policy configuration, as shown in FIG. 3, including:

Step 210: The policy configuration sending device performs policy configuration according to the policy data item.

Policy data items need to be collected during policy configuration. The policy data items can be obtained by one or more of the following methods:

Obtained from the data analysis system:

Obtained from the business acceptance system;

Obtained through the administrator interface.

The policy configuration includes configuring the user policy subscription relationship between the collected policy user group and the policy; creating a policy rule, configuring the trigger condition and output action of each policy rule.

In this embodiment, the policy configuration may be a configuration of a network traffic related policy.

In this embodiment, after the policy configuration of the new policy is completed, the policy conflict processing device may perform the policy conflict processing on the new configuration policy according to the policy conflict processing method in the first embodiment, and then perform the subsequent steps.

Step 220: The policy configuration delivery device converts the policy configuration information into policy configuration data that meets the configuration of the delivery interface specification.

In this embodiment, the configuration delivery interface is a standard interface between the policy configuration delivery device and the policy execution system, and the specification of the interface defines the format of the transmission protocol and the policy configuration data file.

The policy configuration data conforming to the configuration delivery interface specification includes a set of policy configuration data files, and the group policy configuration data file is organized by a relationship between the policy and its related attributes, and has a standard format, such as CSV (comma separated) Value: Comma-Separated Values) text files, or text files separated by other formats such as vertical lines.

In this embodiment, the content of the policy configuration data related to the policy rule in the policy configuration data includes: a policy, a policy rule list, a trigger condition list, and a policy action list, where each item Hosted in one or more policy configuration data files, using the following organization: The policy contains policy basic information, and references a set of policy rules in the policy rule list; the policy rules reference a set of trigger conditions in the trigger condition list And an output action in the list of policy actions; the trigger condition includes one or more of a location area, a terminal type, a service type, a time period, a network type, an access point, a user level, a user status, and a package type, each A trigger condition can be carried in a file in the form of a list. The above trigger conditions and output actions can be represented by names or other identification information.

The content of the data related to the policy user subscription relationship in the policy configuration data includes: the policy user group and its subscribed policy, where the policy can be identified by the policy name, etc., and the data of the policy user subscription relationship is also carried in a standard format file.

Step 230: The policy configuration sending device sends the policy configuration data to the policy execution system by using the configuration sending interface.

In this embodiment, the policy configuration delivery device sends the policy configuration data to the policy execution system according to the transmission mode defined by the configuration delivery interface specification; the defined transmission mode is a simple object access protocol SOAP and file transmission. Protocol FTP works in a coordinated manner. FTP is used to transmit the transmitted data files. SOAP messages are used to send transmission-related control commands. The control command may include fields such as an operation type, a policy ID, and a data file path, and the operation type may include an operation of adding, deleting, and modifying a policy. In an embodiment, the policy configuration data file is transmitted to the policy execution system by using the FTP protocol, and then the SOAP command is used to notify the policy execution system to import the specified policy configuration data file.

In this embodiment, when the policy configuration data is delivered, the data related to the policy rule in the policy configuration data is sent to the PCRF, and the data related to the user policy subscription relationship in the policy configuration data is sent to the SPR.

The embodiment also provides a policy configuration delivery device, as shown in FIG. 4, including:

The policy configuration module 20 is configured to: perform policy configuration according to the policy data item;

The format conversion module 22 is configured to: convert the policy configuration information into policy configuration data that conforms to the configuration of the delivery interface specification;

The policy issuance module 24 is configured to: send the policy configuration data to the policy execution system by using the configuration delivery interface;

The configuration delivery interface is a standard interface between the policy configuration delivery device and the policy execution system.

Optionally,

The sending module sends the policy configuration data to the policy execution system by using the configuration sending interface, including:

The policy operation system delivers the policy configuration data to the policy execution system according to the transmission mode defined by the configuration delivery interface specification; the defined transmission mode is a simple object access protocol SOAP and a file transfer protocol FTP work together. The transmission mode, in which the FTP is used to transmit the delivered data file, and the SOAP message is used to send the transmission-related control command.

Optionally,

The policy configuration data conforming to the configuration delivery interface specification includes a set of policy configuration data files, and the set of policy configuration data files are organized by a relationship between policies and related attributes and have a standard format.

Optionally,

The content of the set of policy configuration data includes: a policy, a policy rule list, a trigger condition list, and a policy action list, where each item is carried in one or more policy configuration data files; wherein the policy includes policy basic information And referring to a set of policy rules in the policy rule list; the policy rule refers to a set of trigger conditions in the trigger condition list and an output action in the policy action list; the trigger condition includes a location area, a terminal type, and a service type One or more of the time zone, network type, access point, user level, user status, and package type.

Optionally,

The configuration module obtains the policy data item by one or more of the following methods:

Obtained from the data analysis system:

Obtained from the business acceptance system;

Obtained through the administrator interface.

Optionally,

The sending module sends the policy configuration data to the policy execution system by using the configuration sending interface, including:

The data related to the policy rule in the policy configuration data is sent to the policy and charging rule function unit PCRF, and the data related to the user policy subscription relationship in the policy configuration data is sent to the user attribute storage SPR.

Optionally,

The configuration module performs policy configuration according to the policy data item, and the configuration module performs configuration of the network traffic related policy according to the policy data item.

The policy configuration delivery method and device in this embodiment implement standardization and standardization of policy configuration, and change the device configuration maintenance of different manufacturers is not uniform, and the policy configuration and policy subscription data management work has high complexity and manual inefficiency.

A typical application example delivered by a policy configuration is given below.

The strategy involved in this example is a 4G potential user change guidance strategy, that is, when the 4G potential target customer initially accesses the cell near the mobile business hall or the terminal sales channel, the SMS is sent in real time to remind the user to go to the business hall to replace the 4G mobile phone for operation. The business provides a change marketing service.

The configuration of the policy is delivered as follows:

The policy configuration delivery device collects the 4G potential target from the data analysis system, and the user is saved as the user group A, and the collection vicinity of the mobile business hall or the terminal sales channel is saved as the location area B;

The policy configuration delivery device configures the change reminder notification message to be saved as the notification C;

The policy configuration delivery device establishes a user policy subscription relationship between the user group A and the policy, and the triggering condition of the configuration policy rule is that the user enters the location area B, and the output action is the notification C when the configuration meets the condition;

The policy configuration delivery device converts the policy configuration information into a set of policy configuration data files;

The policy configuration delivery device sends the policy configuration data related to the policy rule to the policy execution system, such as the PCRF, and the policy configuration data related to the user policy subscription relationship. Issued to a policy enforcement system, such as SPR.

In this application example, the user does not need to go to the policy execution system (PCRF/SPR) management interface of different vendors to repeat the inefficient configuration of the policy. The policy configuration delivery device implements the unified configuration management and delivery of the policy, which greatly reduces the The workload enables strategic deployment to respond quickly and flexibly to market demands.

Correspondingly, the embodiment further provides an operation device, including a memory and a processor, wherein:

The memory stores a policy configuration delivery program;

The CPU is configured to: execute the policy configuration delivery program, and perform corresponding processing, including:

Policy configuration based on policy data items;

Convert policy configuration information to policy configuration data that conforms to the configuration of the delivered interface specification;

And sending the policy configuration data to the policy execution system by using the configuration sending interface;

The configuration delivery interface is a standard interface between the policy configuration delivery device and the policy execution system.

Optionally,

The CPU sends the policy configuration data to the policy execution system by using the configuration sending interface, including:

The policy configuration delivery device sends the policy configuration data to the policy execution system according to the transmission mode defined by the configuration delivery interface specification; the defined transmission mode is a simple object access protocol SOAP and a file transfer protocol FTP collaboration. The transmission mode of the work, in which the FTP is used to transmit the delivered data file, and the SOAP message is used to send the transmission-related control command.

Optionally,

The memory also stores a policy conflict handling program;

After the policy is configured by the CPU according to the policy data item, the policy configuration information is further converted to the policy configuration data that meets the configuration of the delivery interface specification, and the policy conflict processing program is executed to perform the corresponding processing as described in the first embodiment.

Optionally,

Sending, by the CPU, the policy configuration data to the policy execution by using the configuration sending interface System, including:

The data related to the policy rule in the policy configuration data is sent to the policy and charging rule function unit PCRF, and the data related to the user policy subscription relationship in the policy configuration data is sent to the user attribute storage SPR.

Embodiment 3

The policy operation method provided in this embodiment is applied to the policy operation system 1. As shown in FIG. 5, the peripheral modules associated with the policy operation system include: a data analysis system 105, a service acceptance system 106, and a policy execution system 108, and the administrator 104 can The terminal user 107 can interact with the business acceptance system 106 by inputting instructions to the policy operations system 1 through the administrator interface. The policy operation system 1 and the data analysis system 105 and the service acceptance system 106 can interact through standard or private interfaces.

among them:

Administrator 104 is the initiator, approver, and manager of the policy in the policy operations system.

The data analysis system 105 provides data support for the policy operation system. In one embodiment, the data analysis system may be a system with data acquisition and analysis capabilities such as a big data module and a business analysis system, and behave differently in different operator systems. Network entity.

The service acceptance system 106 provides the real-time data of the end-user feedback, such as the selection result submitted by the user, for the policy operation system. In one embodiment, the service acceptance system may be a system having a service acceptance capability such as a short message center or a mail server.

End user 107 is the target of policy action. In one embodiment, the policy configured for the end user typically provides the user with bandwidth control or notification functionality.

The policy execution system 108 is a policy execution unit, and the policy of the policy operation system configuration is finally delivered to the policy execution system for execution. In an embodiment, the policy execution system is a network element such as a PCRF (SPR), a PCEF, etc., wherein the PCRF is a policy and charging rule function unit in the policy execution system, and is responsible for executing the policy logic, and the SPR is in the policy execution system. The user attribute storage is responsible for preserving the user policy subscription relationship. These network elements are usually distributed by multiple physical devices to provide policy execution services.

The data in the policy execution process can be directly collected by the data analysis system 105, and can also be full The notification is sent to the end user 107 when the foot policy triggers the condition, and the end user 107 submits the notification processing result to the service acceptance system 106 to complete the collection of the policy execution system data.

The policy operation method provided in this embodiment is as shown in FIG. 6, and includes:

Step 310: When adding a policy in the policy operation system, perform an approval process on the newly added policy;

Step 320: After the approval is passed, the configuration and the delivery of the new policy are performed, and the delivery is implemented by using a standard configuration interface of the policy operation system and the policy execution system;

In this step, the configuration and delivery of the new policy may be performed by using the policy configuration and delivery method in the second embodiment. The configuration and delivery interface between the policy operation system and the policy execution system is the configuration delivery interface between the policy configuration delivery device (the device in the policy operation system) and the policy execution system in the second embodiment.

In step 330, the running status of the delivered policy is monitored, and the statistical analysis data of the executed policy is displayed.

Through policy monitoring, you can provide visual support for policy management decisions.

The policy operation method of this embodiment may further include the following process of policy update after the configuration and delivery of the new policy:

Obtaining changed policy data items from one or more of a data analysis system, a business acceptance system, and an administrator interface;

The policy configuration information of the corresponding policy is updated according to the changed policy data item, and the updated policy configuration information is converted into the policy configuration data that meets the specifications of the configured delivery interface, and then delivered.

The policy operation method of the embodiment may further include the following policy deletion process after the configuration and delivery of the new policy:

Delete the configured policy according to the administrator's instructions or when the set conditions are met;

The policy execution system is notified by the configuration delivery interface to delete the configured policy.

This embodiment also provides a policy operation system 1, and the main body of the policy operation system 1 is Strategy. As shown in Figure 5, it includes:

The policy operation management device 10 is a manager of the policy operation system, so that the system as a whole and the devices work together, and is set to: when a new policy is added, the new policy is approved, and after the approval is passed, the policy configuration delivery device is invoked. The configuration and delivery of the newly added policy are also set to: monitor the running status of the delivered policy, and display the statistical analysis data of the executed policy.

The policy configuration delivery device 20 can be configured by using the policy in the second embodiment, and configured to: implement policy configuration and delivery, and the delivery is performed through a policy operation system and a policy execution system. achieve.

In this embodiment, the policy operation system 1 further includes:

The policy conflict processing apparatus 30 may be configured to implement the policy conflict processing by using the policy conflict processing apparatus in the first embodiment. At this time, the policy operation management apparatus 10 is further configured to: after the policy configuration sending device completes the configuration of the newly added policy, invoke the policy conflict processing device to perform policy conflict processing on the newly added policy, and After the policy conflict processing is completed, the policy is configured to deliver the new policy.

The device in the above-mentioned policy operation system may be corresponding to different network elements, or multiple modules may be disposed on the same network element. The network element here may be a new network element, or may be added to an existing network element. The above device does not impose any limitation on this.

Optionally,

The policy operation management apparatus 10 is further configured to: obtain the changed policy data item from at least one of the data analysis system, the service acceptance system, and the administrator interface, and invoke the policy configuration delivery device to perform policy update and delivery; The acquisition may be an active request or a passive receiving report.

The policy configuration issuance device 20 is further configured to: update the policy configuration information of the corresponding policy according to the changed policy data item, and convert the updated policy configuration information into the policy configuration data that meets the configuration of the delivery interface specification, and then deliver the policy configuration data.

Optionally,

The policy operation management apparatus 10 is further configured to: notify the policy configuration sending device to delete the configured policy according to an administrator command or when the setting condition is met;

After the policy configuration sending device 20 deletes the configured policy according to the notification, Setting the sending interface to notify the policy execution system to delete the configured policy.

Based on the existing system, the present embodiment adds a policy operation system to standardize the operation and maintenance of the operator, and proposes a corresponding policy operation management method, and defines a standard configuration between the policy operation system and the policy execution system. The interface is delivered. The administrator can complete the operation management operations such as adding policies, approval policies, issuing policies, monitoring policies, and exiting policies according to the workflow, realizing the policy life cycle management, effectively coordinating all aspects of resources to achieve orderly and efficient work, and changing The situation in which the operation and maintenance of the policies brought by the different vendors in the respective ways is extremely confusing, and allows the operators to know in a timely manner what positive and negative impacts on the users after the deployment of the policies, and what benefits are brought to the operators. and many more.

A typical application example of a policy operation is given below, including:

It is assumed that a strategy for increasing the Internet access rate of key users should be deployed, that is, under different network resources, different services can be provided to different levels of users through differentiated services, which can improve the satisfaction of high-value users and obtain more benefits. The key users (VIPs) can increase the bandwidth and access priority, and improve the user's Internet access rate, so that they can get a better experience than ordinary users.

The policy operation management device adds the above strategy to start the life cycle management of the policy, and the policy enters the policy configuration link after being approved;

The policy is configured to deliver the module for policy configuration.

The policy conflict processing device performs policy conflict determination and policy conflict processing;

The policy configuration delivery device converts the policy configuration information into the policy configuration data that meets the configuration of the delivery interface specification, and delivers the policy configuration data to the policy execution system.

The policy operation management device monitors the running status of the policy, evaluates the policy according to the monitoring result, and determines the measures to be taken, such as continuing the policy execution, adjusting the policy, and exiting the policy execution.

A typical application example of a policy update is given below.

The strategy of this example is for the speed limit policy of the hotspot cell. When the user enters the hotspot cell, the bandwidth rate limit is 128K, so that more users can use the network normally in the area. The hotspot cell refers to dense population, and the mobile phone usage is concentrated. Area, such as a subway station.

The hotspot cell data of the policy location area information configuration item may change over time. If the hotspot cell data of the policy cannot be updated in time after the hot spot cell data changes, the Internet access of the ordinary user may be affected.

For example, the population living near the subway station will gradually increase with the passage of time, and the former non-hotspot cell gradually becomes a hot spot cell (which can be determined by the data analysis system according to the number of users of the cell and the threshold judgment of the hot spot cell), the change If the configuration cannot be timely and the policy configuration is adjusted, the bandwidth resources in the hotspot cell are easily exhausted, which causes the ordinary users to fail to access the Internet, thus causing complaints.

Applying the policy update method in this embodiment, the data analysis system quickly generates hotspot cell data, and feeds back to the policy configuration delivery device in the policy operation system, and the policy configuration delivery device adjusts the hotspot cell data of the policy, and then the policy configuration data is The system is sent to the policy execution system to effectively utilize the bandwidth resources in the hotspot cell, avoiding user complaints and improving the user experience.

Embodiment 4

This embodiment provides a method for policy configuration closed-loop management, as shown in FIG. 7, including:

Step 410: The policy operation system delivers the policy configuration data of the policy to the policy execution system by using a standard configuration delivery interface with the policy execution system.

Step 420: The policy execution system executes the policy according to the delivered policy configuration data.

Step 430: The policy data system collects the execution result data of the policy, and feeds back the execution result information of the policy to the policy operation system.

The above policy data system includes at least one of a business acceptance system and a data analysis system.

Step 440: The policy operation system receives the execution result information of the policy, and adjusts the policy configuration data to the policy execution system.

The above process constitutes a closed loop of policy configuration management. The closed loop can be a management loop of the user policy subscription relationship in the policy configuration, or a management loop of the non-user policy subscription relationship.

In the example of closed-loop management of a user policy subscription relationship, after the policy is delivered, it includes:

The policy execution system executes the policy and sends notification information such as marketing notification information to the end user;

The service acceptance system collects processing information (such as complaints, unsubscription, or renewal) of the terminal information for the notification information, and generates user policy subscription relationship operation information according to the setting rule (for example, a user complaint generates a deletion user policy subscription relationship) Information), fed back to the policy operation system;

The policy operation system subscribes the relationship operation information according to the user policy, and adjusts the user policy subscription relationship of the policy.

This embodiment further provides a policy configuration closed-loop management system, as shown in FIG. 5, including:

The policy operation system 1 is configured to: deliver the policy configuration data of the policy to the policy execution system by using a standard configuration delivery interface with the policy execution system;

The policy execution system 108 is configured to: execute the policy according to the delivered policy configuration data;

The policy data system, including the service acceptance system 105 and the data analysis system 106, is configured to: collect execution result data of the policy, and feed back execution result information of the policy to the policy operation system;

The policy operation system is further configured to: receive the execution result information of the policy, and adjust the policy configuration data to the policy execution system.

Optionally,

The policy execution system executes the policy, including: sending notification information to an end user;

The policy data system collects the execution result data of the policy, and feeds back the execution result information of the policy to the policy operation system, including: the service acceptance system collects the processing information of the terminal user for the notification information, according to Setting rules to generate user policy subscription relationship operation information, and feeding back to the policy operation system;

The policy operation system adjusts the policy, including: adjusting a user policy subscription relationship of the policy according to the user policy subscription relationship operation information.

The policy configuration closed-loop management method and system in this embodiment can coordinate all aspects of the resources in an orderly and efficient manner, promptly feedback the impact on the user after the policy is deployed, and timely adjust the policy. Consolidated and issued, forming an efficient closed-loop management.

A typical application example of closed-loop management related to a policy user subscription relationship is given below.

The strategy of this example is a marketing strategy for a user to push a mobile phone marketing message, and user B is a user who has a user policy subscription relationship with the policy.

After the policy operation system issues the policy, it includes:

As a policy execution system, the PCRF detects that the user B satisfies the policy trigger condition, and pushes the marketing SMS of the policy to the user B.

User B is very disgusted with the received marketing message, so he responded to the content of the notification and replied to the unsubscribe (code: QXDY) SMS content;

After receiving the feedback from the user, the SMS center generates information for deleting the user policy subscription relationship between the user B and the policy, and feeds back to the policy operation system;

The policy operation system deletes the user B from the policy user group of the policy, and delivers the updated policy configuration data to the policy execution system;

After the policy enforcement system imports the updated policy configuration data, such marketing messages will no longer be sent to User B.

The policy configuration management closed loop of the above example effectively improves the user experience and reduces user complaints through automatic processing of user feedback.

The embodiment of the invention also discloses a computer program, comprising program instructions, which when executed by a computer, enable the computer to execute any of the above-mentioned policy conflict processing methods.

The embodiment of the invention also discloses a carrier carrying the computer program.

The embodiment of the invention further discloses a computer program, comprising program instructions, which when executed by a computer, enable the computer to execute any of the above-mentioned policy configuration delivery methods.

The embodiment of the invention also discloses a carrier carrying the computer program.

The embodiment of the invention also discloses a computer program, including program instructions, when the program instruction When executed by a computer, the computer is enabled to perform any of the above described policy operations methods.

The embodiment of the invention also discloses a policy operation method carrying the described.

The embodiment of the invention also discloses a computer program, comprising program instructions, which when executed by a computer, enable the computer to execute any of the above-mentioned policy operation methods.

The embodiment of the invention also discloses a policy operation method carrying the described.

The embodiment of the invention also discloses a computer program, comprising program instructions, when the program instruction is executed by a computer, so that the computer can execute any of the above-mentioned policy configuration closed-loop management methods.

The embodiment of the invention also discloses a policy operation method carrying the described.

Other aspects will be apparent upon reading and understanding the drawings and detailed description.

One of ordinary skill in the art will appreciate that all or a portion of the steps of the above-described embodiments can be implemented using a computer program flow, which can be stored in a computer readable storage medium, such as on a corresponding hardware platform (eg, The system, device, device, device, etc. are executed, and when executed, include one or a combination of the steps of the method embodiments.

Alternatively, all or part of the steps of the above embodiments may also be implemented by using an integrated circuit. These steps may be separately fabricated into individual integrated circuit modules, or multiple modules or steps may be fabricated into a single integrated circuit module. achieve. Thus, the invention is not limited to any specific combination of hardware and software.

The devices/function modules/functional units in the above embodiments may be implemented by a general-purpose computing device, which may be centralized on a single computing device or distributed over a network of multiple computing devices.

When each device/function module/functional unit in the above embodiment is implemented in the form of a software function module and sold or used as a stand-alone product, it can be stored in a computer readable storage medium. The above mentioned computer readable storage medium may be a read only memory, a magnetic disk or an optical disk or the like.

Anyone skilled in the art can easily think within the scope of the technology disclosed by the present invention. Changes or substitutions are intended to be included within the scope of the invention. Therefore, the scope of the invention should be determined by the scope of the claims.

Industrial applicability

The above solution enables operators to expand the policy operation mode, configure, and use policies quickly, conveniently, and securely, reduce the cost of production, and enable end users to enjoy a better user experience. Therefore, the present invention has strong industrial applicability.

Claims (48)

1. A method for dealing with policy conflicts, including:

   Obtain the policy user group for the new configuration policy;

   Determining whether there is a policy conflict between the new configuration policy and other policies subscribed by the user for the user who subscribes to multiple policies in the policy user group;

   When there is a policy conflict, policy conflict processing is performed.
2. The policy conflict processing method according to claim 1, wherein

   The steps of performing policy conflict processing include:

   Do one or more of the following:

   Deleting a user with a policy conflict from the policy user group of the new configuration policy;

   Retaining users with policy conflicts in the policy user group of the new configuration policy, and deleting from the policy user group of other policies that conflict with the new configuration policy;

   Adjusting the policy priority so that the policy priority of the new configuration policy is different from the policy priority of other policies that conflict with it;

   Adjusting trigger conditions and/or output actions in the policy rules of the new configuration policy.
3. The policy conflict processing method according to claim 1, wherein

   For the user who subscribes to multiple policies in the policy user group, the step of determining whether there is a policy conflict between the new configuration policy and other policies subscribed by the user includes:

   Grouping users in the policy user group that have subscribed to multiple policies, and allocating all users with the same policy to one group;

   For each group, if there is a policy conflict between the new configuration policy and any other policy subscribed by the group of users, the group of users has a policy conflict. Otherwise, the group of users does not have a policy conflict.
4. The policy conflict processing method according to claim 1, wherein

   The new configuration policy is a newly configured network traffic related policy.
5. A policy conflict processing method according to claim 1 or 2 or 3 or 4, wherein

   The step of determining whether there is a policy conflict between the new configuration policy and other policies subscribed by the user includes:

   Determine if there is a policy conflict between the two policies as follows:

   Determine the two sets of policy rules that each of the two policies contains;

   Determining whether there is an intersection of trigger conditions of any pair of policy rules respectively selected from the two sets of policy rules:

   If no, there is no policy conflict between the two policies;

   If yes, it is determined whether the output actions of any one of the pair of policy rules can occur simultaneously:

   If yes, there is no policy conflict between the two policies;

   If no, there is a policy conflict between the two policies.
6. A policy configuration delivery method includes:

   The policy configuration delivery device performs policy configuration according to the policy data item.

   The policy configuration delivery device converts the policy configuration information into policy configuration data that meets the configuration of the delivery interface specification;

   And the policy configuration sending device sends the policy configuration data to the policy execution system by using the configuration sending interface;

   The configuration delivery interface is a standard interface between the policy configuration delivery device and the policy execution system.
7. The policy configuration delivery method according to claim 6, wherein

   The step of the policy configuration sending device sending the policy configuration data to the policy execution system by using the configuration sending interface includes:

   The policy configuration delivery device sends the policy configuration data to the policy execution system according to the transmission mode defined by the configuration delivery interface specification; wherein the defined transmission mode is a simple object access protocol SOAP and a file transfer protocol. The transmission mode of FTP cooperative work, FTP is used to transmit the transmitted data files, and SOAP messages are used to send transmission-related control commands.
8. The policy configuration delivery method according to claim 6 or 7, wherein

   The policy configuration data conforming to the configuration delivery interface specification includes a set of policy configuration data files, and the set of policy configuration data files are organized by a relationship between policies and related attributes and have a standard format.
9. The policy configuration delivery method according to claim 8, wherein

   The content related to the policy rule in the policy configuration data includes: a policy, a policy rule list, a trigger condition list, and a policy action list, where each item is carried in one or more policy configuration data files; wherein the policy includes Policy basic information, and a set of policy rules in the policy rule list; the policy rule refers to a set of trigger conditions in the trigger condition list and an output action in the policy action list; the trigger condition includes a location area, a terminal type One or more of the service type, time period, network type, access point, user level, user status, and package type.
10. The policy configuration delivery method according to claim 6 or 7 or 9, wherein

    The method further includes: before the step of configuring the policy configuration by the sending device according to the policy data item, and converting the policy configuration information into the policy configuration data that meets the configuration of the delivery interface specification, the method further includes:

    The policy conflict processing apparatus performs policy conflict processing on the new configuration policy according to the policy conflict processing method according to any one of claims 1-5.
11. The policy configuration delivery method according to claim 6 or 7 or 9, wherein

    The method further includes: before the step of configuring the policy by the sending device according to the policy data item, the method further includes:

    The policy configuration delivery device obtains the policy data item by using one or more of the following methods:

    Obtained from the data analysis system:

    Obtained from the business acceptance system;

    Obtained through the administrator interface.
12. The policy configuration delivery method according to claim 6 or 7 or 9, wherein

    The step of the policy configuration sending device sending the policy configuration data to the policy execution system by using the configuration sending interface includes:

    The policy configuration delivery device sends the data related to the policy rule in the policy configuration data to the policy and charging rule function unit PCRF, and sends the data related to the user policy subscription relationship in the policy configuration data to the User attribute memory SPR.
13. The policy configuration delivery method according to claim 6 or 7 or 9, wherein

    The step of configuring the policy configuration by the sending device according to the policy data item includes: configuring the sending device to perform network traffic related policy configuration according to the policy data item.
14. A policy operation method applied to a policy operation system, including:

    When a new policy is added to the policy operation system, the new policy is approved and processed;

    After the approval is passed, the configuration and the delivery of the new policy are performed, and the delivery is implemented by using a standard configuration interface between the policy operation system and the policy execution system;

    Monitor the running status of the delivered policy and display the statistical analysis data of the executed policy.
15. The policy operation method of claim 14, wherein

    The step of performing the configuration and the delivery of the newly added policy includes: configuring and delivering the new policy according to the policy configuration and delivery method according to any one of claims 6-13.
16. The policy operation method of claim 15, wherein

    After the step of configuring and delivering the new policy, the method further includes:

    Obtaining changed policy data items from one or more of a data analysis system, a business acceptance system, and an administrator interface;

    The policy configuration information of the corresponding policy is updated according to the changed policy data item, and the updated policy configuration information is converted into the policy configuration data that meets the specifications of the configured delivery interface, and then delivered.
17. A policy operation method according to claim 14 or 15 or 16, wherein

    After the step of configuring and delivering the new policy, the method further includes:

    Delete the configured policy according to the administrator's instructions or when the set conditions are met;

    The policy execution system is notified by the configuration delivery interface to delete the configured policy.
18. A policy configuration closed-loop management method, including:

    The policy operation system delivers the policy configuration data of the policy to the policy execution system through a standard configuration delivery interface with the policy execution system;

    The policy execution system executes the policy according to the delivered policy configuration data;

    The policy data system collects execution result data of the policy, and feeds back execution result information of the policy to the policy operation system;

    The policy operation system receives the execution result information of the policy, and adjusts the policy, and sends the policy-adjusted policy configuration data to the policy execution system.
19. A policy configuration closed loop management method according to claim 18, wherein

    The policy data system includes at least one of a service acceptance system and a data analysis system.
20. A policy configuration closed loop management method according to claim 18, wherein

    The step of the policy execution system executing the policy according to the delivered policy configuration data includes: sending notification information to the terminal user;

    The step of the policy data system collecting the execution result data of the policy and feeding back the execution result information of the policy to the policy operation system includes: the service acceptance system collecting the processing information of the terminal user for the notification information, Generating user policy subscription relationship operation information according to the setting rule, and feeding back to the policy operation system;

    The step of adjusting the policy by the policy operation system includes: adjusting a user policy subscription relationship of the policy according to the user policy subscription relationship operation information.
21. A policy conflict processing apparatus includes a user acquisition module, a conflict determination module, and a conflict processing module, wherein

    The user acquisition module is configured to: obtain a policy user group of a new configuration policy;

    The conflict determination module is configured to: determine, by the user who subscribes to multiple policies in the policy user group, whether there is a policy conflict between the new configuration policy and other policies subscribed by the user;

    The conflict processing module is configured to: when the conflict determination module determines that there is a policy conflict, Conduct policy conflict handling.
22. A policy conflict processing apparatus according to claim 21, wherein

    The conflict handling module is configured to perform policy conflict handling as follows:

    Do one or more of the following:

    Deleting a user with a policy conflict from the policy user group of the new configuration policy;

    Retaining users with policy conflicts in the policy user group of the new configuration policy, and deleting from the policy user group of other policies that conflict with the new configuration policy;

    Adjusting the policy priority so that the policy priority of the new configuration policy is different from the policy priority of other policies that conflict with it;

    Adjusting trigger conditions and/or output actions in the policy rules of the new configuration policy.
23. A policy conflict processing apparatus according to claim 21, wherein

    The conflict determination module is configured to determine whether there is a policy conflict between the new configuration policy and other policies subscribed by the user to the user who subscribes to multiple policies in the policy user group as follows:

    Grouping users in the policy user group that have subscribed to multiple policies, and allocating all users with the same policy to one group;

    For each group, if there is a policy conflict between the new configuration policy and any other policy subscribed by the group of users, the group of users has a policy conflict. Otherwise, the group of users does not have a policy conflict.
24. A policy conflict processing apparatus according to claim 21, wherein

    The new configuration policy is a newly configured network traffic related policy.
25. A policy conflict processing apparatus according to claim 21 or 22 or 23 or 24, wherein

    The conflict determination module is configured to determine whether there is a policy conflict between the new configuration policy and other policies subscribed by the user as follows:

    Determine if there is a policy conflict between the two policies as follows:

    Determine the two sets of policy rules that each of the two policies contains;

    Determining whether there is an intersection of trigger conditions of any pair of policy rules respectively selected from the two sets of policy rules:

    If no, there is no policy conflict between the two policies;

    If yes, it is determined whether the output actions of any one of the pair of policy rules can occur simultaneously:

    If yes, there is no policy conflict between the two policies;

    If no, there is a policy conflict between the two policies.
26. A policy configuration delivery device includes a policy configuration module, a format conversion module, and a policy delivery module, where

    The policy configuration module is configured to: perform policy configuration according to the policy data item;

    The format conversion module is configured to: convert the policy configuration information into policy configuration data that conforms to the configuration of the delivery interface;

    The policy delivery module is configured to: send the policy configuration data to the policy execution system by using the configuration delivery interface;

    The configuration delivery interface is a standard interface between the policy configuration delivery device and the policy execution system.
27. The policy configuration delivery device according to claim 26, wherein

    The sending module is configured to send the policy configuration data to the policy execution system by using the configuration sending interface as follows:

    Distributing the policy configuration data to the policy execution system according to the transmission mode defined by the configuration of the delivery interface specification; wherein the defined transmission mode is a transmission mode of a simple object access protocol SOAP and a file transfer protocol FTP cooperative work, FTP is used to transmit the delivered data file, and the SOAP message is used to send the transmission-related control commands.
28. The policy configuration delivery device according to claim 26 or 27, wherein

    The policy configuration data conforming to the configuration delivery interface specification includes a set of policy configuration data files, and the set of policy configuration data files are organized by a relationship between policies and related attributes and have a standard format.
29. The policy configuration delivery device according to claim 28, wherein

    The content related to the policy rule in the policy configuration data includes: a policy, a policy rule list, a trigger condition list, and a policy action list, where each item is carried in one or more policy configuration data files; wherein the policy includes Policy basic information, and a set of policy rules in the policy rule list; the policy rule refers to a set of trigger conditions in the trigger condition list and an output action in the policy action list; the trigger condition includes a location area, a terminal type One or more of the service type, time period, network type, access point, user level, user status, and package type.
30. The policy configuration delivery device according to claim 26 or 27 or 29, wherein

    The configuration module is further configured to: obtain the policy data item by one or more of the following methods:

    Obtained from the data analysis system:

    Obtained from the business acceptance system;

    Obtained through the administrator interface.
31. The policy configuration delivery device according to claim 26 or 27 or 29, wherein

    The sending module is configured to send the policy configuration data to the policy execution system by using the configuration sending interface as follows:

    The data related to the policy rule in the policy configuration data is sent to the policy and charging rule function unit PCRF, and the data related to the user policy subscription relationship in the policy configuration data is sent to the user attribute storage SPR.
32. The policy configuration delivery device according to claim 26 or 27 or 29, wherein

    The configuration module is configured to perform policy configuration according to the policy data item in the following manner: the configuration module performs network traffic related policy configuration according to the policy data item.
33. A policy operation system includes: a policy operation management device and a policy configuration delivery device, wherein

    The policy operation management device is configured to: when a new policy is added, the new policy is approved, and after the approval is passed, the policy configuration delivery device is invoked to configure and deliver the new policy;

    The policy configuration delivery device is configured to: implement policy configuration and delivery, and the delivery is implemented by using a standard configuration interface between the policy operation system and the policy execution system;

    The policy operation management device is further configured to: monitor the running status of the delivered policy, and display statistical analysis data that has been executed by the executed policy.
34. The policy operation system of claim 33, wherein

    The policy configuration delivery device adopts the policy configuration delivery device according to any one of claims 26-32.
35. A policy operation system according to claim 33 or 34, wherein

    The policy operation system further includes the policy conflict processing device according to any one of claims 21-15;

    The policy operation management apparatus is further configured to: after the policy configuration sending device completes the configuration of the newly added policy, invoke the policy conflict processing device to perform policy conflict handling on the newly added policy, and the policy conflicts After the processing is completed, the policy is configured to deliver the new policy.
36. A policy operation system according to claim 33 or 34, wherein

    The policy operation management apparatus is further configured to: obtain the changed policy data item from at least one of the data analysis system, the service acceptance system, and the administrator interface, and invoke the policy configuration delivery device to perform policy update and delivery. ;

    The policy configuration delivery device is further configured to: update the policy configuration information of the corresponding policy according to the changed policy data item, and convert the updated policy configuration information into the policy configuration data that meets the configuration of the delivery interface specification, and then deliver the policy configuration data.
37. A policy operation system according to claim 33 or 34, wherein

    The policy operation management apparatus is further configured to: notify the policy configuration sending device to delete the configured policy according to an administrator command or when the setting condition is met;

    The policy configuration delivery device is further configured to notify the policy execution system to delete the configured policy by using the configuration delivery interface after deleting the configured policy according to the notification.
38. A policy configuration closed-loop management system, including a policy operation system, a policy execution system, and a policy data system, wherein

    The policy operation system is configured to: deliver the policy configuration data of the policy to the policy execution system by using a standard configuration delivery interface with the policy execution system;

    The policy execution system is configured to: execute the policy according to the delivered policy configuration data;

    The policy data system is configured to: collect execution result data of the policy, and feed back execution result information of the policy to the policy operation system;

    The policy operation system is further configured to: receive the execution result information of the policy, and adjust the policy, and deliver the policy-adjusted policy configuration data to the policy execution system.
39. A policy configuration closed loop management system according to claim 38, wherein

    The policy data system includes at least one of a service acceptance system and a data analysis system.
40. A policy configuration closed loop management method according to claim 38, wherein

    The policy execution system is configured to execute the policy according to the delivered policy configuration data in the following manner: sending notification information to the terminal user;

    The policy data system is configured to collect the execution result data of the policy according to the following manner, and feed back the execution result information of the policy to the policy operation system: the service acceptance system collects the processing of the terminal user for the notification information Information, generating user policy subscription relationship operation information according to the set rule, and feeding back to the policy operation system;

    The policy operation system is configured to adjust the policy according to the following manner: adjusting a user policy subscription relationship of the policy according to the user policy subscription relationship operation information.
41. An arithmetic device comprising a memory and a processor, wherein

    The memory stores a policy conflict handling program;

    The CPU is configured to execute the policy conflict processing program according to the following manner, and perform processing corresponding to the program:

    Obtain the policy user group for the new configuration policy;

    Determining the new configuration policy and the user for the user who subscribes to multiple policies in the policy user group. Whether there is a policy conflict between other policies ordered by the user;

    When there is a policy conflict, policy conflict processing is performed.
42. The arithmetic device according to claim 41, wherein

    The CPU is configured to perform policy conflict processing as follows:

    Do one or more of the following:

    Deleting a user with a policy conflict from the policy user group of the new configuration policy;

    Retaining users with policy conflicts in the policy user group of the new configuration policy, and deleting from the policy user group of other policies that conflict with the new configuration policy;

    Adjusting the policy priority so that the policy priority of the new configuration policy is different from the policy priority of other policies that conflict with it;

    Adjusting trigger conditions and/or output actions in the policy rules of the new configuration policy.
43. The arithmetic device according to claim 41, wherein

    The CPU is configured to determine, according to the manner, a user who subscribes to multiple policies in the policy user group, whether there is a policy conflict between the new configuration policy and other policies subscribed by the user:

    Grouping users in the policy user group that have subscribed to multiple policies, and allocating all users with the same policy to one group;

    For each group, if there is a policy conflict between the new configuration policy and any other policy subscribed by the group of users, the group of users has a policy conflict. Otherwise, the group of users does not have a policy conflict.
44. The arithmetic device according to claim 41 or 42 or 43, wherein

    The CPU is configured to determine whether there is a policy conflict between the new configuration policy and other policies subscribed by the user as follows:

    Determine if there is a policy conflict between the two policies as follows:

    Determine the two sets of policy rules that each of the two policies contains;

    Determining whether there is an intersection of trigger conditions of any pair of policy rules respectively selected from the two sets of policy rules:

    If no, there is no policy conflict between the two policies;

    If yes, it is determined whether the output actions of any one of the pair of policy rules can occur simultaneously:

    If yes, there is no policy conflict between the two policies;

    If no, there is a policy conflict between the two policies.
45. An arithmetic device comprising a memory and a processor CPU, wherein

    The memory stores a policy configuration delivery program;

    The CPU is configured to execute the policy configuration delivery program according to the following manner, and perform processing corresponding to the program:

    Policy configuration based on policy data items;

    Convert policy configuration information to policy configuration data that conforms to the configuration of the delivered interface specification;

    And sending the policy configuration data to the policy execution system by using the configuration sending interface;

    The configuration delivery interface is a standard interface between the policy configuration delivery device and the policy execution system.
46. The arithmetic device according to claim 45, wherein

    The CPU is configured to deliver the policy configuration data to the policy execution system by using the configuration delivery interface as follows:

    The policy configuration delivery device sends the policy configuration data to the policy execution system according to the transmission mode defined by the configuration delivery interface specification; the defined transmission mode is a simple object access protocol SOAP and a file transfer protocol FTP collaboration. The transmission mode of the work, in which the FTP is used to transmit the delivered data file, and the SOAP message is used to send the transmission-related control command.
47. The arithmetic device according to claim 45 or 46, wherein

    The memory also stores a policy conflict handling program;

    After the policy is configured by the CPU according to the policy data item, and before the policy configuration information is converted into the policy configuration data that meets the configuration of the delivery interface specification, the CPU further executes the policy conflict processing program, and performs the method according to any one of claims 41-44. The processing described.
48. The arithmetic device according to claim 45 or 46, wherein

    The CPU is configured to deliver the policy configuration data to the policy execution system by using the configuration delivery interface as follows:

    The data related to the policy rule in the policy configuration data is sent to the policy and charging rule function unit PCRF, and the data related to the user policy subscription relationship in the policy configuration data is sent to the user attribute storage SPR.

Images