CN101466099B - Safety monitoring method and mobile terminal based on packet data protocol activation request - Google Patents
Safety monitoring method and mobile terminal based on packet data protocol activation request Download PDFInfo
- Publication number
- CN101466099B CN101466099B CN2009100763736A CN200910076373A CN101466099B CN 101466099 B CN101466099 B CN 101466099B CN 2009100763736 A CN2009100763736 A CN 2009100763736A CN 200910076373 A CN200910076373 A CN 200910076373A CN 101466099 B CN101466099 B CN 101466099B
- Authority
- CN
- China
- Prior art keywords
- pdp
- application
- request
- initiate
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a security monitoring method based on the packet data protocol (PDP) activation request; an application module is used for constructing a PDP request message at the mobile termination side, and a PDP activation request is launched according to the PDP request message. The method comprises: a PDP management module intercepts the PDP activation request, and obtains the application name which launches the PDP activation request; whether the current application is the application in the secure list or not is determined according to the obtained application name; if the current application is the application in the secure list, and when the current application is allowed to launch the packet switching (PS) data service, the current application can be allowed to launch the PDP activation request to the network side. The invention also discloses a mobile termination. Based on the method and the mobile termination, illegal applications can be filtered, so as to effectively protect the user data information.
Description
Technical field
The present invention relates to portable terminal security monitoring field, be meant a kind of method for safety monitoring and portable terminal that activates request based on packet data protocol (PDP, Packet Data Protocol) especially.
Background technology
Development along with the application software of mobile terminal technology, the function of portable terminal is more and more, from voice call, to the transmitting-receiving of short message, developed into the transmitting-receiving of multimedia message, WAP (wireless application protocol) (WAP, Wireless ApplicationProtocol) webpage, Email etc. afterwards.Along with development of Communication Technique, the packet switching of portable terminal (PS, Packet Switched) business will get more and more, and the safety problem of PS data service also can seem more and more important simultaneously.
The initiation process of portable terminal PS data service is such: the application process of portable terminal produces the PDP request message, the wireless transmission process is initiated PDP according to the PDP request message to network and is activated request, after portable terminal confirms that network receives this PDP activation request, just initiate the PS data service.
At present, security monitoring for portable terminal PS data service aspect, mainly be to realize by the authentication from the portable terminal to the network, encryption and safe mode command, but concrete application does not detect at portable terminal, therefore can't stop illegal application to usurp subscriber data, send mail, file transfer protocol (FTP) (FTP, File Transfer Protocol) file etc. as the backstage.
In addition, a lot of portable terminals are supported installing and using of third party software java applets, if but there is potential safety hazard in these third-party install software is to be difficult to find, also be difficult to control.These third party softwares can be with vital document, data or the information of portable terminal by certain mode, sends on the destination server that sets in advance as the mode of backstage Email form, FTP.In addition, portable terminal is also installed some unknown application programs by number of site malice easily when online, and these unknown application programs can be obtained user's sensitive information under the unwitting situation of user.
Summary of the invention
In view of this, main purpose of the present invention is to provide a kind of and activates the method for safety monitoring and the portable terminal of asking based on PDP, can filter out illegal application, protects user's data information effectively.
For achieving the above object, technical scheme of the present invention is achieved in that
The invention provides a kind of method for safety monitoring based on the packet data protocol (PDP) activating request, the application construction PDP request message in the application module of mobile terminal side, and initiate PDP according to described PDP request message and activate request, this method also comprises:
The PDP administration module of mobile terminal side intercepts described PDP and activates request, therefrom obtains and initiates the title that described PDP activates the described application of request;
According to the Apply Names that is obtained, determine that whether current application is the application in the safe list that is provided with in the PDP administration module, in current application is application in the described safe list, and when current application is allowed to initiation packet exchange PS data service, allows current application to initiate PDP and activate request to network side;
If the user selects to allow current application to initiate the PS data service, then described PDP administration module allows described current application to initiate PDP to network side and activates request, and described current application added in the described safe list, and this application of mark is allowed to initiate the PS business; If the user selects not allow current application to initiate the PS data service, then described PDP administration module stops described current application to initiate PDP activation request to network side.
In addition, this method also comprises: when current application was not application in the described safe list, whether the prompting user selected to allow current application to initiate the PS data service.
This method also comprises: current application is the application in the safe list, but this application is not when allowing to initiate the PS data service, and described PDP administration module stops described application to initiate PDP to network side to activate request.
Wherein, described current application activates request to network side initiation PDP and is: the PDP administration module sends to wireless module with the message that current application allows to initiate the PS data service, and described wireless module sends to network side with described PDP activation request.
This method also comprises: after network side receives described PDP activation request, activate successful message to the wireless module transmission PDP of described mobile terminal side; Described wireless module activates successful message feedback with PDP and gives described PDP administration module; Described PDP administration module activates successful message feedback with described PDP again and gives described application module; Described application module activates successful message according to described PDP makes application initiate the PS data service.
The present invention also provides a kind of portable terminal, and described portable terminal comprises: application module and PDP administration module, wherein,
Described application module is used to construct the PDP request message, and initiates PDP according to described PDP request message and activate request;
Described PDP administration module is used to intercept described PDP and activates request, and therefrom obtains and initiate the title that this PDP activates the application of request; Be used for also judging whether current application is included in safe list; Judge whether current application allows to initiate the PS data service; Also be used to point out the user to select whether to allow current application to initiate the PS data service; Also be used for allowing to use initiating PDP activation request, and application is added in the described safe list, and this application of mark is allowed to initiate the PS data service to network side; Also be used for stoping using and initiate the PS data service to network side.
Described portable terminal also comprises wireless module, is used for allowing to use when network side is initiated PDP activation request at described PDP administration module, described PDP is activated request send to network side.
Described wireless module also is used to receive the PDP that network side sends and activates successful message, and described PDP activated successfully feeds back to described PDP administration module;
Accordingly, described PDP administration module is used for that also described PDP is activated successful message feedback and gives described application module;
Described application module also is used for activating successful message according to described PDP and initiates PDP activation request to network side.
Method for safety monitoring and the portable terminal that activates request based on PDP of the present invention, by safeguarding that a safe list realizes the security monitoring to communication of mobile terminal, before the PS data service is initiated in the application of portable terminal, just the PDP that this application is initiated activates request and carries out safety detection, comprises whether detect this application is whether application and this application in the safe list allows to initiate the PS data service; So just can filter out illegal application, protect user's data information effectively.In addition, the user can also edit safe list, so, the user can be as required to the setting of being correlated with of the application in the safe list, can improve user's Experience Degree.
Description of drawings
Fig. 1 the present invention is based on the schematic flow sheet that PDP activates the method for safety monitoring of request;
Fig. 2 is the structural relation schematic diagram of portable terminal of the present invention.
Embodiment
The technical solution of the present invention is further elaborated below in conjunction with the drawings and specific embodiments.
The present invention realizes the security monitoring to communication of mobile terminal by safeguard a safe list in portable terminal, includes the application that is considered to safe in the safe list.Before the PS data service was initiated in the application of portable terminal, just the PDP that this applications is initiated activated and asks to carry out safety detection, comprised whether this application of detection is whether application and this application in the safe list allows to initiate the PS data service.
Fig. 1 the present invention is based on the schematic flow sheet that PDP activates the method for safety monitoring of request, and as shown in Figure 1, concrete handling process comprises:
If the application of portable terminal application module will be initiated the PS data service, at first, the PDP of application need structure that initiates this PS data service activates request message, and initiate PDP according to this PDP request message and activate request, application module activates the wireless module that request sends to portable terminal with PDP, and wireless module activates request with PDP again and sends to network side.This step be embodied as prior art, repeat no more herein.
When the application module of portable terminal is initiated PDP activation request to network side, inform the PDP administration module of portable terminal by the mode of sending out message.When application module sent to wireless module with PDP activation request, PDP administration module intercepting PDP activated request, and therefrom got access to the title that this PDP of initiation activates the application of request.
Application in the application module is to initiate PDP by the mode of call function to activate request, wherein, the parameter that to comprise an attribute in the parameter of call function be apply names, this parametric representation be exactly to initiate the title that this PDP activates the application of request, i.e. apply names.
In this step, the PDP administration module is according to the apply names that gets access to, detects this application in the safe list and whether belongs to application in the safe list.
Portable terminal of the present invention sets in advance and has safeguarded a safe list, includes the application that is considered to safe in this safe list.Wherein, a check box can be set before the apply names of each application, choose check box to represent that this application is allowed to initiate the PS data service, do not choose check box to represent that this application does not allow to initiate the PS data service, can certainly represent in other way whether application is allowed to initiate the PS data service, as sign etc. is set.Wherein, the related application of all data services in the mobile terminal system is given tacit consent in safe list, and whether these application are allowed to initiate the PS data service, can set as required.
If the current apply names that obtains of PDP administration module is in safe list, illustrate that the application of initiating this PDP activation request is the application in the safe list, then execution in step 104, judge whether this application allows to initiate the PS data service, if do not allow, for example the check box before the apply names of this application is not chosen in the safe list, illustrate that this application does not allow to initiate the PS data service, then execution in step 105, stop this application to initiate PDP and activate request to network side, corresponding PS data service also is rejected, and finishes current handling process; If allow, for example the check box before this apply names is selected in the safe list, illustrates that this application is allowed to initiate the PS data service, and then execution in step 106.
The PDP administration module of mobile terminal side confirms that the application of current initiation PDP activation request is the application in the safe list, and when being allowed to initiate the PS data service, the PDP administration module is informed wireless module by the mode that sends message, and wireless module activates request with PDP and sends to network side then.
If the application that current initiation PDP activates request is not the application in the safe list, illustrate that then this application may be unsafe, at this moment, the PDP administration module can be to the unsafe information of user prompt current application possibility on display screen.Simultaneously, whether the prompting user selects to allow this application to initiate the PS data service, and the user can select to allow or do not allow as required, if the user selects to allow, then execution in step 108.
If the user allows and may unsafe current application initiate the PS data service, then the wireless module of mobile terminal side activates request with PDP and sends to network side, the PDP administration module adds current application in the safe list to simultaneously, and this application of mark is allowed to initiate the PS data service, as: the check box before this apply names in the safe list is chosen.
It is pointed out that the user can edit safe list as required in the PDP administration module, as adding or the deletion application; When needs stoped that certain is used in the safe list, then it was set to not allow to initiate the PS data service and gets final product; When needs were used initiation PS data service, then it was set to allow initiation PS data service to get final product.
After step 109, network side received PDP activation request, application module was initiated the PS data service.
Network side sends the wireless module of message to mobile terminal side after receiving PDP activation request, informs that portable terminal PDP activates successfully, and the PS data service is initiated in the application in the application module at this moment.
The realization of the inventive method is described below by a specific embodiment.
In the present embodiment, the application of a P2 by name of portable terminal application module will be initiated the PS data service, at first uses P2 structure PDP and activates request message, initiates PDP according to this message again and activates request.This moment, application module informed that by the mode of message the PDP administration module has application will initiate PDP and activates request, and the PDP that initiates of PDP administration module intercepting application module activates request then, and the title that therefrom extracts application is P2.
Afterwards, the PDP administration module detects this according to P2 and uses P2 whether in the scope of safe list in safe list, suppose to have in the safe list application P1, P2, P3, P4, and using the set check box in front with each chooses expression to allow to initiate the PS data service, so, hence one can see that, and application P2 is the application in the safe list; Judge then whether use P2 allows to initiate the PS data service, judge promptly whether the check box before the P2 is selected, if choose then allow to use P2 and initiate the PS data service, this moment, the PDP administration module was informed wireless module by the mode of message, and the PDP that wireless module is initiated application module activates request and sends to network side.
After network side receives that PDP activates request, activate the successful message of request to the wireless module transmission PDP of portable terminal, wireless module is given the PDP administration module with this message feedback, and the PDP administration module is given application module with this message feedback again; Application module makes according to this message and uses P2 initiation PS data service.
If the check box before the P2 is not chosen, illustrate that using P2 does not allow to initiate the PS data service, then the PDP administration module stops wireless module to send PDP activation request to network side.
Suppose that the application in the safe list has: P1, P3, P4, P5, P6, then use P2 not in the scope of safe list, this moment, the PDP administration module can alert users application P2 be illegal application on display screen such as LED display, may be dangerous, and whether the prompting user selects to allow this application P2 to initiate the PS data service; If the user selects not allow, then the PDP administration module stops wireless module to send PDP activation request to network side; If the user selects to allow, then the PDP administration module is informed wireless module by the mode of message, the PDP that wireless module is initiated application module activates request and sends to network side, and the PDP administration module adds this application P2 in the safe list to simultaneously, and the check box of its front is selected.
In order to realize the present invention is based on the method for safety monitoring that PDP activates request, the present invention also provides a kind of portable terminal, and as shown in Figure 2, this portable terminal comprises: application module 10 and PDP administration module 20, wherein,
In addition, PDP administration module 20 can also be edited safe list as required, as adding or the deletion application; When needs stoped that certain is used in the safe list, then it was set to not allow to initiate the PS data service and gets final product; When needs were used initiation PS data service, then it was set to allow initiation PS data service to get final product.
Portable terminal of the present invention also comprises wireless module 30, is used for allowing to use when network side is initiated PDP activation request at PDP administration module 20, PDP is activated request send to network side.
Accordingly, PDP administration module 20 is used for that also PDP is activated successful message feedback and gives application module 10;
The above is preferred embodiment of the present invention only, is not to be used to limit protection scope of the present invention.
Claims (8)
1. method for safety monitoring based on the packet data protocol (PDP) activating request, the application construction PDP request message in the application module of mobile terminal side, and initiate PDP according to described PDP request message and activate request, it is characterized in that this method also comprises:
The PDP administration module of mobile terminal side intercepts described PDP and activates request, therefrom obtains and initiates the title that described PDP activates the described application of request;
According to the Apply Names that is obtained, determine that whether current application is the application in the safe list that is provided with in the PDP administration module, in current application is application in the described safe list, and when current application is allowed to initiation packet exchange PS data service, allows current application to initiate PDP and activate request to network side;
If the user selects to allow current application to initiate the PS data service, then described PDP administration module allows described current application to initiate PDP to network side and activates request, and described current application added in the described safe list, and this application of mark is allowed to initiate the PS business; If the user selects not allow current application to initiate the PS data service, then described PDP administration module stops described current application to initiate PDP activation request to network side.
2. according to the described method for safety monitoring that activates request based on PDP of claim 1, it is characterized in that this method also comprises: when current application was not application in the described safe list, whether the prompting user selected to allow current application to initiate the PS data service.
3. according to claim 1 or the 2 described method for safety monitoring that activate request based on PDP, it is characterized in that, this method also comprises: current application is the application in the safe list, but when this application did not allow to initiate the PS data service, described PDP administration module stoped described application to initiate PDP activation request to network side.
4. according to claim 1 or the 2 described method for safety monitoring that activate request based on PDP, it is characterized in that, described current application is initiated PDP activation request to network side: the PDP administration module sends to wireless module with the message that current application allows to initiate the PS data service, and described wireless module activates described PDP and asks to send to network side.
5. activate the method for safety monitoring of asking according to claim 4 is described based on PDP, this method also comprises: after network side receives described PDP activation request, activate successful message to the wireless module transmission PDP of described mobile terminal side; Described wireless module activates successful message feedback with PDP and gives described PDP administration module; Described PDP administration module activates successful message feedback with described PDP again and gives described application module; Described application module activates successful message according to described PDP makes application initiate the PS data service.
6. a portable terminal is characterized in that, described portable terminal comprises: application module and PDP administration module, wherein,
Described application module is used to construct the PDP request message, and initiates PDP according to described PDP request message and activate request;
Described PDP administration module is used to intercept described PDP and activates request, and therefrom obtains and initiate the title that this PDP activates the application of request; Be used for also judging whether current application is included in safe list; Judge whether current application allows to initiate the PS data service; Also be used to point out the user to select whether to allow current application to initiate the PS data service; Also be used for allowing to use initiating PDP activation request, and application is added in the described safe list, and this application of mark is allowed to initiate the PS data service to network side; Also be used for stoping using and initiate the PS data service to network side.
7. according to the described portable terminal of claim 6, it is characterized in that described portable terminal also comprises wireless module, be used for allowing to use when network side is initiated PDP activation request, described PDP is activated request send to network side at described PDP administration module.
8. according to the described portable terminal of claim 7, it is characterized in that described wireless module also is used to receive the PDP that network side sends and activates successful message, and described PDP activated successfully feed back to described PDP administration module;
Accordingly, described PDP administration module is used for that also described PDP is activated successful message feedback and gives described application module;
Described application module also is used for activating successful message according to described PDP and initiates PDP activation request to network side.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2009100763736A CN101466099B (en) | 2009-01-14 | 2009-01-14 | Safety monitoring method and mobile terminal based on packet data protocol activation request |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2009100763736A CN101466099B (en) | 2009-01-14 | 2009-01-14 | Safety monitoring method and mobile terminal based on packet data protocol activation request |
Publications (2)
Publication Number | Publication Date |
---|---|
CN101466099A CN101466099A (en) | 2009-06-24 |
CN101466099B true CN101466099B (en) | 2011-12-07 |
Family
ID=40806400
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2009100763736A Expired - Fee Related CN101466099B (en) | 2009-01-14 | 2009-01-14 | Safety monitoring method and mobile terminal based on packet data protocol activation request |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN101466099B (en) |
Families Citing this family (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101808270B (en) * | 2010-03-10 | 2016-03-30 | 华为终端有限公司 | A kind of method and device for business processing based on Android |
CN102970407B (en) * | 2012-11-16 | 2016-07-06 | 广东欧珀移动通信有限公司 | A kind of being automatically prevented from steals the method and system dialed |
CN103905653B (en) * | 2014-03-24 | 2016-08-17 | 小米科技有限责任公司 | mobile device data service control method and device |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2002080599A1 (en) * | 2001-03-28 | 2002-10-10 | Nokia Corporation | Method for controlling a user terminal of a communications network |
CN1589579A (en) * | 2001-11-21 | 2005-03-02 | 纳格拉影像股份有限公司 | Method for controlling access to specific services from a broadcaster |
US20080229382A1 (en) * | 2007-03-14 | 2008-09-18 | Motorola, Inc. | Mobile access terminal security function |
-
2009
- 2009-01-14 CN CN2009100763736A patent/CN101466099B/en not_active Expired - Fee Related
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2002080599A1 (en) * | 2001-03-28 | 2002-10-10 | Nokia Corporation | Method for controlling a user terminal of a communications network |
CN1589579A (en) * | 2001-11-21 | 2005-03-02 | 纳格拉影像股份有限公司 | Method for controlling access to specific services from a broadcaster |
US20080229382A1 (en) * | 2007-03-14 | 2008-09-18 | Motorola, Inc. | Mobile access terminal security function |
Also Published As
Publication number | Publication date |
---|---|
CN101466099A (en) | 2009-06-24 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN102843682B (en) | Access point authorizing method, device and system | |
CN104168557B (en) | The upgrade method of operating system and the update device of operating system | |
KR101914408B1 (en) | Internet access authentication methods and clients, and computer storage media | |
JP5980496B2 (en) | Access point connection apparatus and method for portable terminal | |
CN104468611B (en) | The data safety processing method and device switched based on dual system | |
US8375422B2 (en) | Remote disablement of a communication device | |
WO2006069522A1 (en) | A method, system and apparatus for realizing the data service safety of the mobile communication system | |
CN103281759A (en) | WIFI (wireless fidelity) network access method and device, electronic equipment and communication system | |
CN104303583B (en) | System and method for establishing secure connection in a communications system | |
CN1869927B (en) | Device controller, method for controlling a device, and program therefor | |
CN102595409A (en) | Method, equipment and system for acquiring encryption information based on wireless access | |
CN102724322A (en) | Remote control method and device | |
CN101984693A (en) | Monitoring method and monitoring device for access of terminal to local area network (LAN) | |
CN105577662A (en) | Terminal environmental security control method and server | |
CN103916852A (en) | Data transmission method and mobile terminal | |
CN101466099B (en) | Safety monitoring method and mobile terminal based on packet data protocol activation request | |
CN110730446A (en) | Login method, terminal and computer storage medium | |
CN101127634A (en) | A method and system for secure update and upgrade of mobile station | |
CN103475491A (en) | Remote maintenance system which is logged in to safely without code and achieving method | |
CN102624724B (en) | Security gateway and method for securely logging in server by gateway | |
CN110351296B (en) | Application login method and device and related equipment thereof | |
CN100512531C (en) | Method and system for policy control in associated response system | |
CN102378357A (en) | Wireless sensor network terminal registration method, terminals, gateway and service platform | |
CN101039324B (en) | Method, system and apparatus for defending network virus | |
CN109842600B (en) | Method for realizing mobile office, terminal equipment and MDM equipment |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20111207 Termination date: 20210114 |
|
CF01 | Termination of patent right due to non-payment of annual fee |