CN103888944A - CDMA network duplicated card detection method and system - Google Patents
CDMA network duplicated card detection method and system Download PDFInfo
- Publication number
- CN103888944A CN103888944A CN201210553802.6A CN201210553802A CN103888944A CN 103888944 A CN103888944 A CN 103888944A CN 201210553802 A CN201210553802 A CN 201210553802A CN 103888944 A CN103888944 A CN 103888944A
- Authority
- CN
- China
- Prior art keywords
- terminal equipment
- ppp
- mobile device
- equipment
- device identifier
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention relates to a code division multiple access (CDMA) network duplicated card detection method and system. The method comprises the following steps that: when a user is connected to a CDMA wireless network by terminal equipment, a packet data serving node (PDSN) obtains a corresponding mobile equipment identifier (MEID) from the terminal equipment; when the PDSN initiates an authentication request to authentication equipment, the MEID of the terminal equipment is sent to the authentication equipment; the authentication equipment determines whether point to point protocol (PPP) connection is established by the user; if so, an MEID corresponding to the established PPP connection is compared with the MEID of the terminal equipment and whether the two MEIDs are identical is determined; and if not, a user identity model (UIM) card corresponding to the user can be determined to be duplicated. According to the invention, the PDSN submits the MEID obtained from the terminal equipment to the authentication equipment; whether the MEID of the established PPP connection is identical with the MEID that is submitted by the PDSN this time is determined so as to determine whether the new PPP connection uses the user terminal or a new user terminal; and if the new user terminal is used, the duplicated card can be determined to be used. Therefore, a problem of wrong determination caused by abnormal cross-PDSN switching at the PDSN boundary can be solved.
Description
Technical field
The present invention relates to the communication technology, relate in particular to a kind of code division multiple access (Code Division Multiple Access is called for short CDMA) network copy card test method and system.
Background technology
In CDMA packet field network, owing to existing some bootlegging terminals and non-customized terminal to exist some implementation methods lack of standardization, add and on network, lack effective testing mechanism, cause terminal use's identification module (User Identity Model, being called for short UIM) card exists by bootlegging, and risk that can successful access network.
Authentication, mandate and charging (Authentication in existing network, Authorization, Accounting, being called for short AAA) equipment generally differentiates whether there is a copy card in the following manner: 1) the online point-to-point transmission agreement of same user (Point to Point Protocol is called for short PPP) linking number reaches more than 3; 2) same user has two PPP to connect simultaneously online, and exceedes certain hour.
There are following problems in the method for above-mentioned differentiation copy card: above-mentioned scene is except may being caused by copy card, also be likely due at packet data serving node (Packet Data Serving Node, be called for short PDSN) border extremely across PDSN switch cause, for example, in the time that user moves to another PDSN overlay area from a PDSN overlay area, connecting conventionally at the PPP of source PDSN can be according to the inactive timer duration of PPP and definite time interval is preserved a period of time, and enter into after object PDSN as user, can again initiate PPP connection request, now AAA equipment can find that same user exists two PPP to connect simultaneously online, if when this user moves to again the 3rd PDSN overlay area, also can further cause this user of AAA device discovery to have three PPP to connect simultaneously, and these situations must cause existing copy card detection method to have the erroneous judgement on certain probability.
Summary of the invention
The object of the invention is to propose a kind of cdma network copy card detection method and system, can improve as far as possible accuracy rate and success rate that copy card detects.
For achieving the above object, the invention provides a kind of cdma network copy card detection method, comprising:
In the time that user is linked into cdma wireless network by terminal equipment, packet data serving node (Packet Data Serving Node, be called for short PDSN) obtain the mobile device identifier (Mobile Equipment IDentifier, be called for short MEID) of described terminal equipment from described terminal equipment;
In the time that described packet data serving node is initiated authentication request to authenticating device, the mobile device identifier of described terminal equipment is sent to described authenticating device;
Described authenticating device judges that the whether built vertical PPP of described user connects, if the built vertical PPP of described user connects, whether the PPP more having set up connects corresponding mobile device identifier identical with the mobile device identifier of described terminal equipment, if it is not identical, determine that subscriber identification module (User Identity Model, UIM) card corresponding to described user is replicated.
Further, the AAA equipment that described authenticating device is described user attaching, the operation that described packet data serving node is initiated authentication request to authenticating device is specially:
Described packet data serving node is initiated remote subscriber to the AAA equipment of described user attaching and is dialled in the service for checking credentials (Remote Authentication Dial In User Service, be called for short RADIUS) access request, dial in service for checking credentials access request and carry the mobile device identifier of described terminal equipment at described remote subscriber.
Further, in the time that definite subscriber identify module card corresponding to described user has been replicated, also carry out following operation:
Described AAA equipment generates copy card and detects daily record, and carries out ALM to IT system.
Further, carry out, after ALM, also comprising at described AAA equipment:
Described IT system is initiatively sent the prompting of changing card to described terminal equipment.
Further, if not setting up PPP, described user connects, or it is identical with the mobile device identifier of described terminal equipment that the PPP having set up connects corresponding mobile device identifier, described AAA equipment is dialled in the service for checking credentials to described packet data serving node transmission remote subscriber and is accepted message, completes the verification process of described packet data serving node and terminal equipment.
For achieving the above object, the invention provides a kind of cdma network copy card detection system, comprising:
Packet data serving node, for in the time that user is linked into cdma wireless network by terminal equipment, obtain the mobile device identifier of described terminal equipment from described terminal equipment, and in the time initiating authentication request to authenticating device, the mobile device identifier of described terminal equipment is sent to described authenticating device;
Authenticating device, be used for judging that the whether built vertical PPP of described user connects, if the built vertical PPP of described user connects, whether the PPP more having set up connects corresponding mobile device identifier identical with the mobile device identifier of described terminal equipment, if not identical, determine that subscriber identify module card corresponding to described user is replicated.
Further, the AAA equipment that described authenticating device is described user attaching, described authentication request is that remote subscriber is dialled in service for checking credentials access request, dials in service for checking credentials access request and carry the mobile device identifier of described terminal equipment at described remote subscriber.
Further, described AAA equipment specifically comprises:
PPP connection judgment module, for judging that the whether built vertical PPP of described user connects;
Mobile device identification module, in the time that the built vertical PPP of described user connects, whether the PPP more having set up connects corresponding mobile device identifier identical with the mobile device identifier of described terminal equipment;
Copy card determination module, for connecting the mobile device identifier of corresponding mobile device identifier and described terminal equipment at the PPP having set up when not identical, determines that subscriber identify module card corresponding to described user is replicated.
Further, described AAA equipment also comprises:
ALM module, detects daily record for generating copy card, and carries out ALM to IT system;
Change card reminding module, for initiatively sending the prompting of changing card to described terminal equipment.
Further, described AAA equipment also comprises:
Authenticate module, connect for do not set up PPP described user, or the PPP having set up connects the mobile device identifier of corresponding mobile device identifier and described terminal equipment when identical, dial in the service for checking credentials to described packet data serving node transmission remote subscriber and accept message, complete the verification process of described packet data serving node and terminal equipment.
Based on technique scheme, in the present invention, PDSN obtains MEID from terminal equipment, and in verification process, submit to authenticating device, authenticating device is by judging that whether the MEID of built vertical PPP connection is identical with the MEID of this submission of PDSN in verification process, and whether the UIM card that can judge accurately user is replicated.Owing to needing in this process to judge that new PPP connects whether the MEID connecting with the PPP setting up is identical judges that this new PPP connection is with a user terminal, or new user terminal, if new user terminal, can judge it and use copy card, exist and abnormal switch across PDSN the erroneous judgement problem of bringing thereby solved PDSN border.
Accompanying drawing explanation
Accompanying drawing described herein is used to provide a further understanding of the present invention, forms the application's a part, and schematic description and description of the present invention is used for explaining the present invention, does not form inappropriate limitation of the present invention.In the accompanying drawings:
Fig. 1 is the schematic flow sheet of an embodiment of cdma network copy card detection method of the present invention.
Fig. 2 is the schematic flow sheet of the accessing user terminal to network of application cdma network copy card detection method embodiment of the present invention.
Fig. 3 is the structural representation of an embodiment of cdma network copy card detection system of the present invention.
Fig. 4 is the concrete structure schematic diagram of AAA equipment in another embodiment of cdma network copy card detection system of the present invention.
Fig. 5 is the concrete structure schematic diagram of AAA equipment in the another embodiment of cdma network copy card detection system of the present invention.
Fig. 6 is the concrete structure schematic diagram of AAA equipment in the embodiment again of cdma network copy card detection system of the present invention.
Embodiment
Below by drawings and Examples, technical scheme of the present invention is described in further detail.
As shown in Figure 1, be the schematic flow sheet of an embodiment of cdma network copy card detection method of the present invention.In the present embodiment, cdma network copy card detection method comprises:
Whether the PPP that step 104, authenticating device have been set up more connects corresponding MEID identical with the MEID of terminal equipment, if identical, performs step 106, otherwise execution step 105;
In background technology, having mentioned PDSN border occurs extremely can cause judging by accident the problem of copy card across PDSN switching, and why can cause this erroneous judgement, when being because moving in different PDSN overlay areas for same terminal equipment, if initiating PPP at object PDSN, user connects, concerning user, will exist plural PPP to connect, and authenticating device cannot to distinguish that these PPP connect be that same terminal equipment is set up, or the terminal equipment being used by former card and copy card is set up respectively, thereby causes erroneous judgement.From this point, if can distinguishing, authenticating device sets up the terminal equipment that PPP connects, can judge accurately the problem that whether exists copy card.
For terminal equipment, MEID be can be in cdma network the parameter of unique identification terminal equipment, just can judge for same user account by MEID relatively, whether its terminal equipment using is same.If not same, mean that same user account is separately positioned in different terminal equipments at one time, obviously only have this user's UIM card to be replicated this situation that just can cause, thereby guarantee judgment accuracy, avoid erroneous judgement.
For CDMA packet field network, authenticating device is the AAA equipment of user attaching, the operation that in corresponding step 102, PDSN initiates authentication request to authenticating device is specially: PDSN initiates RADIUS access request to the AAA equipment of user attaching, carries the MEID of terminal equipment in RADIUS access request.
In another embodiment, after step 105, also comprise corresponding disposal operations, be that AAA equipment generates copy card detection daily record, and carry out ALM to IT system, copy card detection daily record can be used as IT system and carries out the analysis of material of subsequent treatment and process foundation.
The behavior meeting of considering this copy card causes a series of infringement to user, IT system can be carried out after ALM at AAA equipment, send the prompting of changing card to terminal equipment on one's own initiative, this prompting can be changed card by note or telephone prompts user, or points out user to change card in the time of customer complaint.
As shown in Figure 2, be the schematic flow sheet of accessing user terminal to network of application cdma network copy card detection method embodiment of the present invention.In flow process shown in Fig. 2, cdma network copy card detection method embodiment of the present invention carries out in PAP/CHAP authentication, and this flow process comprises:
Connect if step 206 user not yet sets up PPP, or MEID is identical, HAAA equipment returns to RADIUS to PDSN and accepts message, completes the PAP/CHAP verification process of PDSN and terminal equipment AT;
If step 209 MEID is not identical, determine that subscriber identify module card corresponding to user is replicated, HAAA equipment returns to RADIUS access-reject message to PDSN;
The LCP of step 210, terminal equipment AT and PDSN consults termination.
One of ordinary skill in the art will appreciate that: all or part of step that realizes said method embodiment can complete by the relevant hardware of program command, aforesaid program can be stored in a computer read/write memory medium, this program, in the time carrying out, is carried out the step that comprises said method embodiment; And aforesaid storage medium comprises: various media that can be program code stored such as ROM, RAM, magnetic disc or CDs.
As shown in Figure 3, be the structural representation of an embodiment of cdma network copy card detection system of the present invention.In the present embodiment, cdma network copy card detection system, comprising: PDSN1 and authenticating device 2.Wherein, PDSN1 is responsible in the time that user is linked into cdma wireless network by terminal equipment, obtain the MEID of described terminal equipment from described terminal equipment, and in the time initiating authentication request to authenticating device 2, the MEID of described terminal equipment is sent to described authenticating device 2.
In cdma network, authenticating device can be the AAA equipment of user attaching, and described authentication request is RADIUS access request, carries the MEID of terminal equipment in RADIUS access request.
As shown in Figure 4, be the concrete structure schematic diagram of AAA equipment in another embodiment of cdma network copy card detection system of the present invention.Compared with a upper embodiment, the AAA equipment in the present embodiment specifically comprises: PPP connection judgment module 21, mobile device identification module 22 and copy card determination module 23.
PPP connection judgment module 21 is responsible for judging that the whether built vertical PPP of described user connects.Mobile device identification module 22 is responsible in the time that the built vertical PPP of described user connects, and whether the PPP more having set up connects corresponding MEID identical with the MEID of described terminal equipment.Copy card determination module 23 is responsible for connecting the MEID of corresponding MEID and described terminal equipment when not identical at the PPP having set up, and determines that UIM card corresponding to described user is replicated.
As shown in Figure 5, be the concrete structure schematic diagram of AAA equipment in the another embodiment of cdma network copy card detection system of the present invention.Compared with a upper embodiment, AAA equipment can also comprise: ALM module 24 and change card reminding module 25.Wherein ALM module 24 is responsible for generating copy card and is detected daily record, and carries out ALM to IT system.Changing card reminding module 25 is responsible for initiatively sending the prompting of changing card to described terminal equipment.
As shown in Figure 6, be the concrete structure schematic diagram of AAA equipment in an embodiment again of cdma network copy card detection system of the present invention.Compared with a upper embodiment, the present embodiment AAA equipment also comprises and has authenticated module 26, this module is responsible for not setting up PPP described user and is connected, or the PPP having set up connects the MEID of corresponding MEID and described terminal equipment when identical, send RADIUS to PDSN and accept message, complete the verification process of PDSN and terminal equipment.
In another embodiment, the authentication in the present embodiment completes in the AAA equipment that module 26 also can be arranged on Fig. 4 embodiment.
Finally should be noted that: above embodiment is only in order to illustrate that technical scheme of the present invention is not intended to limit; Although the present invention is had been described in detail with reference to preferred embodiment, those of ordinary skill in the field are to be understood that: still can modify or part technical characterictic is equal to replacement the specific embodiment of the present invention; And not departing from the spirit of technical solution of the present invention, it all should be encompassed in the middle of the technical scheme scope of request protection of the present invention.
Claims (10)
1. a cdma network copy card detection method, comprising:
In the time that user is linked into cdma wireless network by terminal equipment, packet data serving node obtains the mobile device identifier of described terminal equipment from described terminal equipment;
In the time that described packet data serving node is initiated authentication request to authenticating device, the mobile device identifier of described terminal equipment is sent to described authenticating device;
Described authenticating device judges that the whether built vertical PPP of described user connects, if the built vertical PPP of described user connects, whether the PPP more having set up connects corresponding mobile device identifier identical with the mobile device identifier of described terminal equipment, if not identical, determine that subscriber identify module card corresponding to described user is replicated.
2. cdma network copy card detection method according to claim 1, the AAA equipment that wherein said authenticating device is described user attaching, the operation that described packet data serving node is initiated authentication request to authenticating device is specially:
Described packet data serving node is initiated remote subscriber to the AAA equipment of described user attaching and is dialled in service for checking credentials access request, dials in service for checking credentials access request and carry the mobile device identifier of described terminal equipment at described remote subscriber.
3. cdma network copy card detection method according to claim 2, wherein, in the time that definite subscriber identify module card corresponding to described user has been replicated, also carry out following operation:
Described AAA equipment generates copy card and detects daily record, and carries out ALM to IT system.
4. cdma network copy card detection method according to claim 3, wherein carry out, after ALM, also comprising at described AAA equipment:
Described IT system is initiatively sent the prompting of changing card to described terminal equipment.
5. according to the cdma network copy card detection method described in claim 2 or 3, if wherein described user does not set up PPP connection, or it is identical with the mobile device identifier of described terminal equipment that the PPP having set up connects corresponding mobile device identifier, described AAA equipment is dialled in the service for checking credentials to described packet data serving node transmission remote subscriber and is accepted message, completes the verification process of described packet data serving node and terminal equipment.
6. a cdma network copy card detection system, comprising:
Packet data serving node, for in the time that user is linked into cdma wireless network by terminal equipment, obtain the mobile device identifier of described terminal equipment from described terminal equipment, and in the time initiating authentication request to authenticating device, the mobile device identifier of described terminal equipment is sent to described authenticating device;
Authenticating device, be used for judging that the whether built vertical PPP of described user connects, if the built vertical PPP of described user connects, whether the PPP more having set up connects corresponding mobile device identifier identical with the mobile device identifier of described terminal equipment, if not identical, determine that subscriber identify module card corresponding to described user is replicated.
7. cdma network copy card detection system according to claim 6, wherein said authenticating device is the AAA equipment of described user attaching, described authentication request is that remote subscriber is dialled in service for checking credentials access request, dials in service for checking credentials access request and carry the mobile device identifier of described terminal equipment at described remote subscriber.
8. cdma network copy card detection system according to claim 7, wherein said AAA equipment specifically comprises:
PPP connection judgment module, for judging that the whether built vertical PPP of described user connects;
Mobile device identification module, in the time that the built vertical PPP of described user connects, whether the PPP more having set up connects corresponding mobile device identifier identical with the mobile device identifier of described terminal equipment;
Copy card determination module, for connecting the mobile device identifier of corresponding mobile device identifier and described terminal equipment at the PPP having set up when not identical, determines that subscriber identify module card corresponding to described user is replicated.
9. cdma network copy card detection system according to claim 8, wherein said AAA equipment also comprises:
ALM module, detects daily record for generating copy card, and carries out ALM to IT system;
Change card reminding module, for initiatively sending the prompting of changing card to described terminal equipment.
10. cdma network copy card detection system according to claim 8 or claim 9, wherein said AAA equipment also comprises:
Authenticate module, connect for do not set up PPP described user, or the PPP having set up connects the mobile device identifier of corresponding mobile device identifier and described terminal equipment when identical, dial in the service for checking credentials to described packet data serving node transmission remote subscriber and accept message, complete the verification process of described packet data serving node and terminal equipment.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210553802.6A CN103888944B (en) | 2012-12-19 | 2012-12-19 | Cdma network replicates card test method and system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210553802.6A CN103888944B (en) | 2012-12-19 | 2012-12-19 | Cdma network replicates card test method and system |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103888944A true CN103888944A (en) | 2014-06-25 |
CN103888944B CN103888944B (en) | 2018-03-13 |
Family
ID=50957628
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201210553802.6A Active CN103888944B (en) | 2012-12-19 | 2012-12-19 | Cdma network replicates card test method and system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103888944B (en) |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1691816A (en) * | 2004-04-23 | 2005-11-02 | 华为技术有限公司 | A method for verifying user card validity |
CN101094067A (en) * | 2006-08-28 | 2007-12-26 | 中兴通讯股份有限公司 | Method and device for authorizing user's terminal in CDMA system |
CN101188810A (en) * | 2007-12-12 | 2008-05-28 | 华为技术有限公司 | Communication method and system, and mobile switching center |
KR100865383B1 (en) * | 2007-11-06 | 2008-10-24 | 주식회사 케이티프리텔 | Method for usage restriction of illegal mobile terminal and illegal smart card and system thereof |
-
2012
- 2012-12-19 CN CN201210553802.6A patent/CN103888944B/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1691816A (en) * | 2004-04-23 | 2005-11-02 | 华为技术有限公司 | A method for verifying user card validity |
CN101094067A (en) * | 2006-08-28 | 2007-12-26 | 中兴通讯股份有限公司 | Method and device for authorizing user's terminal in CDMA system |
KR100865383B1 (en) * | 2007-11-06 | 2008-10-24 | 주식회사 케이티프리텔 | Method for usage restriction of illegal mobile terminal and illegal smart card and system thereof |
CN101188810A (en) * | 2007-12-12 | 2008-05-28 | 华为技术有限公司 | Communication method and system, and mobile switching center |
Also Published As
Publication number | Publication date |
---|---|
CN103888944B (en) | 2018-03-13 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN102348209B (en) | Method and device for wireless network access and authentication | |
JP5199405B2 (en) | Authentication in communication systems | |
US8559947B2 (en) | System and method to enable subscriber self-activation of wireless data terminals | |
US9578498B2 (en) | Facilitating authentication of access terminal identity | |
US20130014231A1 (en) | Anchor authenticator relocation method and system | |
CN103929748A (en) | Internet of things wireless terminal, configuration method thereof and wireless network access point | |
CN105263193A (en) | WIFI connection method and system for mobile terminal | |
TW564627B (en) | System and method for authentication in public networks | |
CN101689996B (en) | Method for removable element authentication in an embedded system | |
CN107659935A (en) | A kind of authentication method, certificate server, network management system and Verification System | |
WO2017107739A1 (en) | Data service processing method and device | |
CN103379490A (en) | Authentication method, device and system of user equipment | |
EP1927254B1 (en) | Method and a device to suspend the access to a service | |
CN100512111C (en) | The method for realizing WAPI-based WLAN operation via the classified terminal certificate | |
EP2826269B1 (en) | Mobile device activation via dynamically selected access network | |
CN105376836A (en) | Access control method and system for UE (User Equipment) terminal equipment | |
CN103888944A (en) | CDMA network duplicated card detection method and system | |
CN103563419A (en) | Putting in place of a security association of gba type for a terminal in a mobile telecommunications network | |
WO2021084219A1 (en) | System and method for performing identity management | |
CN101141258A (en) | Method and system for completing authentication in software installation process | |
KR101266408B1 (en) | System for processing wireless service control and method thereof | |
CN105791012A (en) | Authentication method and access network element | |
CN205648006U (en) | Wireless network access system | |
CN105072679A (en) | Registration method of user equipment, user equipment and system | |
KR101143360B1 (en) | System and Method for Providing Web Service using Single Identify and Recording Medium |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |