CN105407479B - A kind of information identifying method, info gateway, SIM card and system - Google Patents
A kind of information identifying method, info gateway, SIM card and system Download PDFInfo
- Publication number
- CN105407479B CN105407479B CN201410458391.1A CN201410458391A CN105407479B CN 105407479 B CN105407479 B CN 105407479B CN 201410458391 A CN201410458391 A CN 201410458391A CN 105407479 B CN105407479 B CN 105407479B
- Authority
- CN
- China
- Prior art keywords
- information
- responses
- random number
- pseudo random
- default verification
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The present invention provides a kind of information identifying method, info gateway, SIM card and system, wherein information identifying method includes: acquisition default verification information corresponding with the receiving end of information;According to the default verification information and the information, purpose information is formed;The purpose information is sent to the receiving end, the receiving end is enabled to identify whether the purpose information is that the carrier network through contracting is sent according to the default verification information in the purpose information.Default verification information is attached to behind information using the backwards compatibility of information in GSM network and obtains purpose information by this method, info gateway sends the purpose information to receiving end, information receiving end realizes authentication according to GSM authorizing procedure and algorithm, that is receiving end independently confirms whether the purpose information received is carrier network transmission of being contracted, improve the discrimination that junk information is sent to pseudo-base station, and then user is accurately prompted, it avoids user from having dust thrown into the eyes, improves the reliability of information.
Description
Technical field
The present invention relates to the field of information security technology of wireless communication, in particular to a kind of information identifying method, Information Network
Pass, SIM card and system.
Background technique
It is driven by tremendous economic interests, criminal distributes short message indiscriminately from using mobile operator short message port or a number card batch
It is changed into and distributes short message indiscriminately using pseudo-base station.Such short message is mostly advertisement, swindle class short message, and such short message is known as refuse messages.
Using pseudo-base station distribute indiscriminately refuse messages can after disposable procuring equipment free, endless transmission refuse messages, and can pretend to send out
Believe people's information, user is made to be difficult to confirm real addresser.While causing huge economic losses to operator, also compromise
The image of operator.The crowd blinded by fraud text message also unavoidably suffers economic loss, and it is non-persistent potential to become society
Factor.
It is that the one-way loophole authenticated in GSM network is utilized that pseudo-base station, which distributes short message indiscriminately, i.e. only conjunction of the network to terminal
The authentication of the authentication of method and endless to network side legitimacy.
Existing reply pseudo-base station technical solution is mostly statistical analysis of the operator by network event, positions pseudo-base station institute
Prescription position cooperates national law enforcement agency to take over pseudo-base station equipment in accordance with the law.
Two major classes can be divided by coping with pseudo-base station in the prior art and its distributing short message method indiscriminately: one kind is operator in not legal person
When member distributes short message indiscriminately using pseudo-base station, according to statistical nature (such as a large amount of abnormal position areas update) positioning of network event and scene
Capture pseudo-base station.Another kind of is that client software is installed on intelligent terminal, according to mass users information collection and semantics recognition
Analysis pushes refuse messages prompt information to user.
The main method of the first above-mentioned reply pseudo-base station is: positioning and national law enforcement agency is cooperated to take over pseudo-base station in accordance with the law
Equipment.But there is difficult point and drawback:
1. pseudo-base station equipment is smaller, it can be placed conveniently on the carriers such as family-sized car, concealment, mobility are strong;And pass through
The statistical analysis of network event is usually also required to certain time delay, therefore positioning pseudo-base station equipment has certain technology difficult in real time
Degree;
National law enforcement agency is needed to execute 2. taking over pseudo-base station equipment, operator independent can not complete;
3. pseudo-base station, which distributes short message indiscriminately, can pretend any addresser, fraud text message is sent in the criminal operator that disguises oneself as
When, easily misread user, generates unnecessary misunderstanding or dispute;
4., since huge commercial interest drives, selling, using in the case where country punishes in accordance with the law pseudo-base station industrial chain
The criminal of pseudo-base station equipment is difficult to prevent.
The main method of above-mentioned second of reply pseudo-base station is: client software is installed in (intelligence) mobile phone, it can be in terminal
Or knowledge base is established in cloud, is compared with received short message content, the frequency, identifies whether be refuse messages.This discrimination method
It can recognize the refuse messages that non-pseudo-base station (utilizing operator SMS port or number card) is sent simultaneously, but on the one hand this method has
Certain time delay (since it is desired that learning a certain amount of priori knowledge), another aspect this method have certain erroneous judgement and fail to judge can
Energy.Furthermore this method is only limitted to intelligent terminal, can not apply to function machine (i.e. non intelligent machine).
GSM authentication use 3 tuples: RAND (16 bytes, home location register HLR are randomly generated, for generate SRES and
Kc), Kc (8 byte) and SRES (4 byte).The generation when Ki used when generating Kc and SRES is user's signing, is stored in HLR
And in SIM card, do not transmitted in any interface.3 yuan of intergroup relations are as shown in Figure 1 and Figure 2.The random parameter RAND and storage that HLR is generated
SRES and Kc in 3 tuples are generated through A3 and A8 algorithm in the Ki of HLR, and is stored in vlr for being used when authentication.Wherein core
Algorithm A3 independently grasped by operator, and write in SIM card.
Network sends the RAND that encrypt through Kc to terminal when authentication, the RAND and deposit that the SIM card use in terminal receives
Storage calculates SRES and Kc in Ki wherein, by executing A3 algorithm identical with network side, and uses Kc as parameter with A5
Encrypted SRES is returned into network after algorithm for encryption SRES, the SRES of network (VLR) comparison storage and is sent from terminal
SRES completes authorizing procedure.
It is illustrated in figure 3 pseudo-base station and sends refuse messages typical process, pseudo-base station is switched on after work and sends system with high power
System broadcast message (broadcast message includes the information such as network No., Location Area Identity), the mobile terminal for triggering surrounding carry out location area updating.
Terminal sends position updating request to pseudo-base station, and pseudo-base station sends identification request message after receiving this message.Terminal exists
Answering includes identity information IMSI number in the confirmation message of identification request message.Pseudo-base station sends position after receiving recognition and verification message
Set update confirmation message.So far terminal is attached in pseudo-base station, out of touch with the network of operator.Subsequent pseudo-base station can be direct
Refuse messages are sent to controlled terminal.
It is only authentication of the network side to terminal because in gsm networks that pseudo-base station, which can control terminal, it is ensured that access net
Network is legal contracted user, without design terminal side to the authorizing procedure of network side.Pseudo-base station exactly utilizes this leakage
Hole oneself disguise oneself as user signing operator network, and then control mobile terminal.
Summary of the invention
The purpose of the present invention is to provide a kind of information identifying method, info gateway, SIM card and systems, realize to puppet
100% discrimination of refuse messages that base station (non-through carrier network of contracting) is sent improves refuse messages without judging by accident and failing to judge
The accuracy rate of identification.
In order to achieve the above object, the embodiment of the present invention provides a kind of information identifying method, comprising:
Obtain default verification information corresponding with the receiving end of information;
According to the default verification information and the information, purpose information is formed;
The purpose information is sent to the receiving end, enables the receiving end according to pre- in the purpose information
If verification information identifies whether the purpose information is that the carrier network through contracting is sent.
Wherein, the step of acquisition default verification information corresponding with the receiving end of information includes:
The GSM that the receiving end is obtained in home location register belonging to receiving end from information authenticates three parameter groups, institute
Stating GSM and authenticating three parameter groups includes a pseudo random number, a number of responses and a key;Wherein, the pseudo random number is by pseudo noise code
Generator generates, and the number of responses is generated by above-mentioned pseudo random number and pre-stored authentication key by authentication arithmetic, described close
Key is generated by above-mentioned pseudo random number and the authentication key by the first Encryption Algorithm.
Wherein, according to the default verification information and the information, the step of forming the information of a mesh, includes:
The pseudo random number for passing through encryption and number of responses are attached to behind the information, form the information of a mesh, wherein institute
Stating pseudo random number and number of responses by encryption is that the home location register utilizes the key and the second Encryption Algorithm
The pseudo random number and the number of responses are encrypted.
Wherein, first increase by an authentication indication field behind the information, be further added by the default verification information;Wherein,
The authentication indication field is used to indicate whether the information increases the default verification information.
Wherein, the pseudo random number is 4 bytes, and the number of responses is 4 bytes, and the authentication indication field is 1 byte.
The embodiment of the present invention also provides a kind of information identifying method, comprising:
The purpose information for receiving and parsing through transmitting terminal transmission, obtains the default verification information for including in the purpose information;
Purpose number of responses is calculated according to the default verification information and authentication arithmetic, is known according to the purpose number of responses
Whether the not described purpose information is that the carrier network through contracting is sent.
Wherein, the purpose information for receiving and parsing through transmitting terminal transmission, obtains the default verifying for including in the purpose information
The step of information includes:
Receive the purpose information that transmitting terminal is sent;
Extract the default verification information in the purpose information;
The default verification information is decrypted using key and the second Encryption Algorithm, obtains pseudo random number and sound
It should count;Wherein, the key is generated by above-mentioned pseudo random number and pre-stored authentication key by the first Encryption Algorithm.
Wherein, purpose number of responses is calculated according to the default verification information and authentication arithmetic, is rung according to the purpose
It should count and identify whether the purpose information is that the step of carrier network through contracting is sent includes:
By pseudo random number in the default verification information and pre-stored authentication key after authentication arithmetic is handled, obtain
Purpose number of responses;
The purpose number of responses is compared with the number of responses in the default verification information;
If the purpose number of responses is consistent with the number of responses in the default verification information, the purpose information is through signing
What carrier network about was sent;Otherwise, the purpose information is that the non-carrier network through contracting is sent.
Further, if the purpose information is that the non-carrier network through contracting is sent, in the purpose information
Increase prompt printed words behind content.
The embodiment of the present invention also provides a kind of info gateway, comprising:
Module is obtained, for obtaining default verification information corresponding with the receiving end of information;
Add-on module, for forming purpose information according to the default verification information and the information;
Sending module enables the receiving end according to described for sending the purpose information to the receiving end
Default verification information in purpose information identifies whether the purpose information is that the carrier network through contracting is sent.
Wherein, the acquisition module includes:
Acquisition submodule, for obtaining the GSM of the receiving end in home location register belonging to the receiving end from information
Three parameter groups are authenticated, it includes a pseudo random number, a number of responses and a key that the GSM, which authenticates three parameter groups,;Wherein, it is described it is pseudo- with
Machine number is generated by pseudo-noise code generator, and the number of responses is calculated by above-mentioned pseudo random number and pre-stored authentication key by authentication
Method generates, and the key is generated by above-mentioned pseudo random number and the authentication key by the first Encryption Algorithm.
Wherein, the add-on module includes:
Additional submodule forms one for the pseudo random number and number of responses of passing through encryption to be attached to behind the information
Purpose information, wherein the pseudo random number and number of responses by encryption is that the home location register utilizes the key
And second Encryption Algorithm the pseudo random number and the number of responses be encrypted.
The embodiment of the present invention also provides a kind of SIM card, comprising:
Parsing module, for receive and parse through transmitting terminal transmission purpose information, obtain include in the purpose information
Default verification information;
Judgment module, for purpose number of responses to be calculated according to the default verification information and authentication arithmetic, according to institute
It states purpose number of responses and identifies whether the purpose information is that the carrier network through contracting is sent.
Wherein, the parsing module includes:
Receiving module, for receiving the purpose information of transmitting terminal transmission;
Extraction module, for extracting the default verification information in the purpose information;
Analyzing sub-module, for the default verification information to be decrypted using key and the second Encryption Algorithm,
Obtain pseudo random number and number of responses;Wherein, the key is added by above-mentioned pseudo random number and pre-stored authentication key by first
Close algorithm generates.
Wherein, the judgment module includes:
Authentication module, for calculating pseudo random number in the default verification information and pre-stored authentication key by authentication
After method processing, purpose number of responses is obtained;
Comparison module, for the purpose number of responses to be compared with the number of responses in the default verification information;
Judging submodule, if consistent with the number of responses in the default verification information for the purpose number of responses, institute
Stating purpose information is what the carrier network through contracting was sent;Otherwise, the purpose information is the non-carrier network through contracting
It sends.
The embodiment of the present invention also provides a kind of system, including info gateway as described above and SIM card as described above.
The above-mentioned technical proposal of the embodiment of the present invention at least has the following beneficial effects:
In the information identifying method of the embodiment of the present invention, using the backwards compatibility of information in GSM network by default verifying
Information, which is attached to behind information, obtains purpose information, and info gateway sends the purpose information to information receiving end, information receiving end
Authentication is realized according to GSM authorizing procedure and algorithm, i.e. receiving end independently confirms whether the purpose information received is fortune of being contracted
Seek quotient's network to send, improve the discrimination for sending junk information to pseudo-base station, and then accurately prompt user, avoid user be taken in by
It deceives, improves the reliability of information;The information identifying method can operate with any mobile terminal style simultaneously, and applicability is wide.
Detailed description of the invention
Fig. 1 shows the relation schematic diagrams that GSM in the prior art authenticates three parameter groups;
Fig. 2 indicates the Encryption Algorithm schematic diagram of three parameter groups of GSM authentication in the prior art;
Fig. 3 indicates the process schematic of pseudo-base station transmission refuse messages in the prior art;
Fig. 4 indicates the embodiment of the present invention in the basic step schematic diagram of the information identifying method of transmitting terminal;
The ciphering process schematic diagram of Fig. 5 expression pseudo random number of the embodiment of the present invention and number of responses;
Fig. 6 indicates that the present invention implements the structure chart of the purpose information provided;
Fig. 7 indicates the embodiment of the present invention in the basic step schematic diagram of the information identifying method of receiving end;
Fig. 8 shows the composed structure schematic diagrames of the info gateway of the embodiment of the present invention;
Fig. 9 indicates the composed structure schematic diagram of the SIM card of the embodiment of the present invention;
Figure 10 indicates the work flow diagram of the system of the embodiment of the present invention.
Specific embodiment
To keep the technical problem to be solved in the present invention, technical solution and advantage clearer, below in conjunction with attached drawing and tool
Body embodiment is described in detail.
The present invention in GSM network in the prior art only network to the authentication of the legitimacy of terminal and endless to net
The authentication of network side legitimacy causes pseudo-base station highjacking to send the problem of refuse messages and terminal can not distinguish, provides a kind of letter
Recognition methods, info gateway, SIM card and system are ceased, it is using the backwards compatibility of information in GSM network that default verification information is attached
It adds to behind information and obtains purpose information, info gateway sends the purpose information to information receiving end, and information receiving end is according to GSM
Authorizing procedure and algorithm realize authentication, i.e. receiving end independently confirms whether the purpose information received is through carrier network of contracting
It sends, improves the discrimination for sending junk information to pseudo-base station, and then accurately prompt user, user is avoided to have dust thrown into the eyes, improve
The reliability of information;The information identifying method can operate with any mobile terminal style simultaneously, and applicability is wide.
As shown in figure 4, the embodiment of the present invention provides a kind of information identifying method, comprising:
Step 1, default verification information corresponding with the receiving end of information is obtained;
Step 2, according to the default verification information and the information, purpose information is formed;
Step 3, the receiving end Xiang Suoshu sends the purpose information, enables the receiving end according to the purpose information
In default verification information identify whether the purpose information is that carrier network through contracting is sent.
In the above embodiment of the present invention, default verification information in step 1 it is corresponding with receiving end, different connects
The corresponding uniquely default verification information of receiving end;Specifically, three parameter groups used for reference in existing network GSM authorizing procedure are realized,
I.e. in the embodiment of the present invention, step 1 includes:
Step 11, three ginseng of GSM authentication of the receiving end is obtained in home location register belonging to the receiving end from information
Array, it includes a pseudo random number, a number of responses and a key that the GSM, which authenticates three parameter groups,;Wherein, the pseudo random number is by puppet
Random code generator generates, and the number of responses is generated by above-mentioned pseudo random number and pre-stored authentication key by authentication arithmetic,
The key is generated by above-mentioned pseudo random number and the authentication key by the first Encryption Algorithm.
Specifically, GSM authentication is three parameter groups of the receiving end provided by system to complete in the embodiment of the present invention
, the generation of three parameter groups of receiving end is completed in the AUC (Authentication Center) of gsm system, and each client is in signing (registration
Registration) when, it is assigned client's number (customer telephone number) and custom IC (IMSI).IMSI writes card by SIM
Machine is written in client's SIM card, while generating unique customs authority key Ki of this corresponding IMSI, its quilt again in writer
It is respectively stored in receiving end SIM card and AUC.Wherein, Authentication Center AUC records and reflects for realizing the authentication functions of terminal
Weigh related information.Generally set with home location register HLR conjunction.HLR is responsible for the database of mobile subscriber's management.Storage is managed
Have jurisdiction over the subscription data of user and the location information of mobile subscriber.Generation when customs authority key Ki is user's signing, is stored in HLR
In (or AUC) and SIM card, do not transmitted in any interface, therefore the authentication key Ki of each SIM card is unique.
It includes a pseudo random number RAND, a number of responses SRES and a key Kc that GSM, which authenticates three parameter groups,;Wherein, pseudorandom
Number RAND is generated by pseudo-noise code generator, and the number of responses SRES is by above-mentioned pseudo random number RAND and pre-stored authentication key
Ki is generated by Authentication Algorithm A3, and the key Kc is calculated by the above-mentioned pseudo random number RAND and authentication key Ki by the first encryption
Method A8 is generated;And the Authentication Algorithm A3 of core is independently grasped by operator, and is write in SIM card, ensure that the peace of authentication process
Quan Xing.
In the above embodiment of the present invention, step 2 includes:
Step 21, the pseudo random number for passing through encryption and number of responses are attached to behind the information, form the information of a mesh,
Wherein, the pseudo random number and number of responses by encryption is that the home location register is added using the key and second
The pseudo random number and the number of responses is encrypted in close algorithm.
Existing short message structure is as shown below: including short message head (SMS HEAD), short message content length (SMS
UD length) and short message content (SMS UD), it is contemplated that the backwards compatibility of short message, in the short message content (SMS of prime information
UD above-mentioned pseudo random number RAND and number of responses SERS) is added below, for not supporting the terminal and SIM card then basis of new features
SMS UD length indication field only identifies the part SMS UD, ignores subsequent byte, do not influence short message normally receives function.
Preferably, as shown in figure 5, home location register HLR need to be by the second Encryption Algorithm A5 and close in authentication arithmetic
Pseudo random number RAND and number of responses SRES is encrypted in key Kc, obtains encrypted pseudo random number RANDS and number of responses
B1;As shown in fig. 6, encrypted pseudo random number RANDS and number of responses B1 are attached to behind former short message, purpose short message knot is obtained
Structure.
Preferably, the pseudo random number RAND is 4 bytes, the number of responses SRES is 4 bytes, in order to adapt to authentication arithmetic
The input demand of A3,4 byte RAND are repeated 4 times, and are formed 16 bytes and are inputted character, then number of responses SRES is 4 bytes, encrypted
Number of responses B1 is also 4 bytes.It is 8 bytes by the key Kc that the first Encryption Algorithm A8 is obtained.
In the concrete application of the above embodiment of the present invention, refer to as shown in fig. 6, first increasing by an authentication behind the information
Show field IND, is further added by the default verification information (RANDS and B1 that encrypt);Wherein, the authentication indication field is used for
Indicate whether the information increases the default verification information.
In the specific embodiment of the invention, the authentication indication field is 1 byte, which is 8 bits, can
Indicate whether to increase the RANDS and B1 of the encryption, such as pre-defined 00001111 by preset different definition
It indicates that the information increases default verification information, can be realized the authentication to network side;And defining 11110000 indicates not increase
Default verification information or the verification information are invalid, do not continue to read follow-up data, and principle is sent and received according to original short message
Transmit and receive short message.It should be noted that this definition mode is not limited to this one kind, as long as both sides (SIM card and Information Network
Close) regulation all agreed to is applicable in embodiments of the present invention.
Hold continuous upper example, it is contemplated that it is 140 bytes that existing short message, which can carry user data (SME UD) maximum length, to reduce
Influence to existing short message bearing capacity, RANDS and B1 are defined as 4 bytes, and IND is defined as 1 byte, i.e. the solution of the present invention
Middle short message maximum number of user is 131 bytes according to length.During sending short message, short message encoding stream is more than 140 after increasing field
When byte, a short message is divided by a plurality of short message using existing segmentation method, is not described in detail herein.
In order to preferably realize above-mentioned purpose, as shown in fig. 7, the embodiment of the present invention also provides a kind of information identifying method,
Include:
Step 4, the purpose information for receiving and parsing through transmitting terminal transmission, obtains the default verifying for including in the purpose information
Information;
Step 5, purpose number of responses is calculated according to the default verification information and authentication arithmetic, is rung according to the purpose
It should count and identify whether the purpose information is that the carrier network through contracting is sent.
In the above embodiment of the present invention, the default verification information that purpose information includes in step 4 is that the user is raw when contracting
At three parameter groups that generate of authentication key Ki and pseudo random number RAND authenticated algorithm A3 and the first Encryption Algorithm A8, be stored in visit
Use when for authentication is asked in location register VLR.Specifically, in the embodiment of the present invention, step 4 includes:
Step 41, the purpose information that transmitting terminal is sent is received;
Step 42, the default verification information in the purpose information is extracted;
Step 43, the default verification information is decrypted using key and the second Encryption Algorithm, obtain it is pseudo- with
Machine number and number of responses;Wherein, the key is produced by above-mentioned pseudo random number and pre-stored authentication key by the first Encryption Algorithm
It is raw.
In specific embodiments of the present invention, since default verification information is to carry out Encryption Algorithm by the second Encryption Algorithm A5
Data, receiving end must again solve the data of encryption using the second Encryption Algorithm A5 after extracting the default verification information
Close processing obtains the pseudo random number RAND and number of responses SRES;Wherein, it also needs to use key Kc in decrypting process, the key
Kc is generated by above-mentioned pseudo random number RAND and pre-stored authentication key Ki by the first Encryption Algorithm, due to pseudo random number RAND
It is uniquely that then key Kc is also unique for same terminal with authentication key Ki.
Specifically, in the above embodiment of the present invention, step 5 includes:
Step 51, pseudo random number in the default verification information and pre-stored authentication key are handled by authentication arithmetic
Afterwards, purpose number of responses is obtained;
Step 52, the purpose number of responses is compared with the number of responses in the default verification information;
Step 53, if the purpose number of responses is consistent with the number of responses in the default verification information, the purpose letter
Breath sends for the carrier network through contracting;Otherwise, the purpose information is that the non-carrier network through contracting is sent.
In the specific embodiment of the invention, SIM card uses the authentication key Ki of received pseudo random number RAND and storage, using mirror
Purpose number of responses SERS is calculated in power algorithm A3, and it is compared with the number of responses received, due to being same RAND,
Same Ki and A3 algorithm, thus result SRES answer it is identical.The comparison result of receiving end is identical to indicate that the purpose information
It is sent for the carrier network through contracting, is otherwise illegal network, i.e., purpose information is the non-carrier network hair through contracting
It send.
Further, in the above embodiment of the present invention, if the purpose information is that the non-carrier network through contracting is sent
, increase prompt printed words behind the content of the purpose information.
Specifically, identifying and confirming that the short message that mobile terminal receives is the non-short message sent through signing carrier network
Afterwards, prompt the method for user can be such as available but be not limited to following manner there are many mode: if SIM card is in this short message
Increase " this short message sends to be non-through xx carrier network " printed words after appearance;Or prompted by twinkle SM: " transmitting artificial xx, connect
The short message between time receiving being xxx is non-to send through xx carrier network " printed words.
It should be noted that the reminding method is not limited to above-mentioned specific example, other terminals can be directly realized by prompt
The method of user is applicable in embodiments of the present invention.
In order to preferably realize above-mentioned purpose, as shown in figure 8, the embodiment of the present invention also provides a kind of info gateway, comprising:
Module 10 is obtained, for obtaining default verification information corresponding with the receiving end of information;
Add-on module 20, for forming purpose information according to the default verification information and the information;
Sending module 30 enables the receiving end according to institute for sending the purpose information to the receiving end
It states the default verification information in purpose information and identifies whether the purpose information is that the carrier network through contracting is sent.
In the above embodiment of the present invention, the acquisition module 10 includes:
Acquisition submodule, for obtaining the GSM of the receiving end in home location register belonging to the receiving end from information
Three parameter groups are authenticated, it includes a pseudo random number, a number of responses and a key that the GSM, which authenticates three parameter groups,;Wherein, it is described it is pseudo- with
Machine number is generated by pseudo-noise code generator, and the number of responses is calculated by above-mentioned pseudo random number and pre-stored authentication key by authentication
Method generates, and the key is generated by above-mentioned pseudo random number and the authentication key by the first Encryption Algorithm.
Specifically, in the above embodiment of the present invention, the add-on module 20 includes:
Additional submodule forms one for the pseudo random number and number of responses of passing through encryption to be attached to behind the information
Purpose information, wherein the pseudo random number and number of responses by encryption is that the home location register utilizes the key
And second Encryption Algorithm the pseudo random number and the number of responses be encrypted.
In the above embodiment of the present invention, appropriate upgrading need to be carried out, to information service gateway to introduce new function.That is information
Gateway need to increase connecing for the request authentication of the VLR according to belonging to receiving end (SIM card) relevant information (IND instruction and RANDS+B1 field)
Mouth function;And increase the function of the addition authentication relevant information after existing short-message users message.
It should be noted that info gateway provided in an embodiment of the present invention is that by the net of above- mentioned information recognition methods
It closes, then all embodiments and its advantages of above- mentioned information recognition methods are suitable for the info gateway.
In order to preferably realize above-mentioned purpose, as shown in figure 9, the embodiment of the present invention also provides a kind of SIM card, comprising:
Parsing module 40, for receive and parse through transmitting terminal transmission purpose information, obtain include in the purpose information
Default verification information;
Judgment module 50, for purpose number of responses to be calculated according to the default verification information and authentication arithmetic, according to
The purpose number of responses identifies whether the purpose information is that the carrier network through contracting is sent.
In the above embodiment of the present invention, the parsing module 40 includes:
Receiving module, for receiving the purpose information of transmitting terminal transmission;
Extraction module, for extracting the default verification information in the purpose information;
Analyzing sub-module, for the default verification information to be decrypted using key and the second Encryption Algorithm,
Obtain pseudo random number and number of responses;Wherein, the key is added by above-mentioned pseudo random number and pre-stored authentication key by first
Close algorithm generates.
In the above embodiment of the present invention, the judgment module 50 includes:
Authentication module, for calculating pseudo random number in the default verification information and pre-stored authentication key by authentication
After method processing, purpose number of responses is obtained;
Comparison module, for the purpose number of responses to be compared with the number of responses in the default verification information;
Judging submodule, if consistent with the number of responses in the default verification information for the purpose number of responses, institute
Stating purpose information is what the carrier network through contracting was sent;Otherwise, the purpose information is the non-carrier network through contracting
It sends.
In the above embodiment of the present invention, appropriate upgrading need to be carried out, to SIM card to introduce new function.I.e. SIM card can contract
When or upgraded by OTA mode, increase the software module for realizing authentication arithmetic;Backward compatibility is considered when the application design simultaneously
Property normally receives function for what the SIM card not upgraded did not influenced short message.
It should be noted that SIM card provided in an embodiment of the present invention is that by the SIM of above- mentioned information recognition methods
Card, then all embodiments of above- mentioned information recognition methods are suitable for the SIM card, and can reach the same or similar beneficial to effect
Fruit.
In order to more preferably realize above-mentioned purpose, present invention implementation also provides a kind of system, including the Information Network as described in power is upper
Pass and SIM card as described above.
Below with reference to Figure 10, system provided in an embodiment of the present invention is further described:
Step S101, short message transmitting terminal send short message and send the SMS to info gateway using existing procedure;
Step S102, info gateway to the affiliated VLR of SIM card ask for RANDS and B1 parameter group (because Ki exist only in HLR and
In SIM card, therefore VLR need to ask for RANDS the and B1 parameter group of the user to HLR);
Step S103, after IND indicator and RANDS+B1 field are attached to existing short message by info gateway, as shown in fig. 6,
(when short message encoding stream is more than 140 byte after increasing field, a short message is divided by a plurality of short message using existing segmentation method);
The short message after synthesis is sent SIM card by step S104, info gateway;
Step S105, SIM card extract RANDS the and B1 parameter group received according to IND instruction and (do not support the end of new features
End and SIM card only identify the part SMS UD, ignore subsequent IND and RANDS, B1 parameter according to SMS UD length indication field
Group);
Step S106, SIM card use the Ki of received RANDS and storage, calculate B1 using A3 algorithm, and with receive
B1 is compared.If the two is identical to confirm that the short message received is the short message through carrier network transmission of contracting, otherwise really
Recognizing the short message received is the non-short message sent through signing carrier network, and prompts user.
It should be noted that system provided in an embodiment of the present invention is the system for including above- mentioned information gateway and SIM card, then
All embodiments and its advantages of above- mentioned information gateway and SIM card are suitable for the system.
The above is a preferred embodiment of the present invention, it is noted that for those skilled in the art
For, without departing from the principles of the present invention, several improvements and modifications can also be made, these improvements and modifications
It should be regarded as protection scope of the present invention.
Claims (12)
1. a kind of information identifying method characterized by comprising
Obtain default verification information corresponding with the receiving end of information;
According to the default verification information and the information, purpose information is formed;
The purpose information is sent to the receiving end, the receiving end is tested according to default in the purpose information
Card information identifies whether the purpose information is that the carrier network through contracting is sent;
Obtain default verification information corresponding with the receiving end of information the step of include:
The GSM that the receiving end is obtained in home location register belonging to receiving end from information authenticates three parameter groups, the GSM
Authenticating three parameter groups includes a pseudo random number, a number of responses and a key;Wherein, the pseudo random number is by pseudo-noise code generator
It generates, the number of responses is generated by above-mentioned pseudo random number and pre-stored authentication key by authentication arithmetic, and the key is by upper
Pseudo random number and the authentication key is stated to generate by the first Encryption Algorithm.
2. information identifying method according to claim 1, which is characterized in that according to the default verification information and the letter
Breath, formed a mesh information the step of include:
The pseudo random number for passing through encryption and number of responses are attached to behind the information, form the information of a mesh, wherein the warp
The pseudo random number and number of responses for crossing encryption are that the home location register utilizes the key and the second Encryption Algorithm to institute
It states pseudo random number and the number of responses is encrypted.
3. information identifying method according to claim 2, which is characterized in that first increase by an authentication behind the information and refer to
Show field, is further added by the default verification information;Wherein, the authentication indication field is used to indicate whether the information increases
The default verification information.
4. information identifying method according to claim 3, which is characterized in that the pseudo random number is 4 bytes, the response
Number is 4 bytes, and the authentication indication field is 1 byte.
5. a kind of information identifying method characterized by comprising
The purpose information for receiving and parsing through transmitting terminal transmission, obtains the default verification information for including in the purpose information;
Purpose number of responses is calculated according to the default verification information and authentication arithmetic, institute is identified according to the purpose number of responses
State whether purpose information is that the carrier network through contracting is sent;
The step of receiving and parsing through the purpose information that transmitting terminal is sent, obtaining the default verification information for including in the purpose information
Include:
Receive the purpose information that transmitting terminal is sent;
Extract the default verification information in the purpose information;
The default verification information is decrypted using key and the second Encryption Algorithm, obtains pseudo random number and response
Number;Wherein, the key is generated by above-mentioned pseudo random number and pre-stored authentication key by the first Encryption Algorithm;
Default verification information in the purpose information is that obtain in home location register belonging to receiving end from information should
The GSM of receiving end authenticates three parameter groups, and it includes a pseudo random number, a number of responses and a key that the GSM, which authenticates three parameter groups,;Its
In, the pseudo random number is generated by pseudo-noise code generator, and the number of responses is by above-mentioned pseudo random number and pre-stored authentication
Key is generated by authentication arithmetic, and the key is generated by above-mentioned pseudo random number and the authentication key by the first Encryption Algorithm.
6. information identifying method according to claim 5, which is characterized in that calculated according to the default verification information and authentication
Purpose number of responses is calculated in method, identifies whether the purpose information is operator's net through contracting according to the purpose number of responses
Network send the step of include:
By pseudo random number in the default verification information and pre-stored authentication key after authentication arithmetic is handled, purpose is obtained
Number of responses;
The purpose number of responses is compared with the number of responses in the default verification information;
If the purpose number of responses is consistent with the number of responses in the default verification information, the purpose information is through contracting
What carrier network was sent;Otherwise, the purpose information is that the non-carrier network through contracting is sent.
7. information identifying method according to claim 6, which is characterized in that if the purpose information is the non-fortune through contracting
It seeks what quotient's network was sent, increases prompt printed words behind the content of the purpose information.
8. a kind of info gateway characterized by comprising
Module is obtained, for obtaining default verification information corresponding with the receiving end of information;
Add-on module, for forming purpose information according to the default verification information and the information;
Sending module enables the receiving end according to the purpose for sending the purpose information to the receiving end
Default verification information in information identifies whether the purpose information is that the carrier network through contracting is sent;
The acquisition module includes:
Acquisition submodule, the GSM for obtaining the receiving end in home location register belonging to the receiving end from information are authenticated
Three parameter groups, it includes a pseudo random number, a number of responses and a key that the GSM, which authenticates three parameter groups,;Wherein, the pseudo random number
It is generated by pseudo-noise code generator, the number of responses is produced by above-mentioned pseudo random number and pre-stored authentication key by authentication arithmetic
Raw, the key is generated by above-mentioned pseudo random number and the authentication key by the first Encryption Algorithm.
9. info gateway according to claim 8, which is characterized in that the add-on module includes: additional submodule, is used for
The pseudo random number for passing through encryption and number of responses are attached to behind the information, the information of a mesh is formed, wherein is described by adding
Close pseudo random number and number of responses is that the home location register utilizes the key and the second Encryption Algorithm to the puppet
What random number and the number of responses were encrypted.
10. a kind of SIM card characterized by comprising
Parsing module, for receiving and parsing through the purpose information of transmitting terminal transmission, obtain including in the purpose information is default
Verification information;
Judgment module, for purpose number of responses to be calculated according to the default verification information and authentication arithmetic, according to the mesh
Number of responses identify whether the purpose information is that carrier network through contracting is sent;
The parsing module includes:
Receiving module, for receiving the purpose information of transmitting terminal transmission;
Extraction module, for extracting the default verification information in the purpose information;
Analyzing sub-module is obtained for the default verification information to be decrypted using key and the second Encryption Algorithm
Pseudo random number and number of responses;Wherein, the key is calculated by above-mentioned pseudo random number and pre-stored authentication key by the first encryption
Method generates;
Default verification information in the purpose information is that obtain in home location register belonging to receiving end from information should
The GSM of receiving end authenticates three parameter groups, and it includes a pseudo random number, a number of responses and a key that the GSM, which authenticates three parameter groups,;Its
In, the pseudo random number is generated by pseudo-noise code generator, and the number of responses is by above-mentioned pseudo random number and pre-stored authentication
Key is generated by authentication arithmetic, and the key is generated by above-mentioned pseudo random number and the authentication key by the first Encryption Algorithm.
11. SIM card according to claim 10, which is characterized in that the judgment module includes:
Authentication module, for passing through pseudo random number in the default verification information and pre-stored authentication key at authentication arithmetic
After reason, purpose number of responses is obtained;
Comparison module, for the purpose number of responses to be compared with the number of responses in the default verification information;
Judging submodule, if consistent with the number of responses in the default verification information for the purpose number of responses, the mesh
Information be what carrier network through contracting was sent;Otherwise, the purpose information is that the non-carrier network through contracting is sent
's.
12. a kind of information identification system, which is characterized in that including the described in any item info gateways of such as claim 8 to 9 and
Such as the described in any item SIM cards of claim 10 to 11.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410458391.1A CN105407479B (en) | 2014-09-10 | 2014-09-10 | A kind of information identifying method, info gateway, SIM card and system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410458391.1A CN105407479B (en) | 2014-09-10 | 2014-09-10 | A kind of information identifying method, info gateway, SIM card and system |
Publications (2)
Publication Number | Publication Date |
---|---|
CN105407479A CN105407479A (en) | 2016-03-16 |
CN105407479B true CN105407479B (en) | 2019-06-21 |
Family
ID=55472671
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410458391.1A Active CN105407479B (en) | 2014-09-10 | 2014-09-10 | A kind of information identifying method, info gateway, SIM card and system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN105407479B (en) |
Families Citing this family (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105722085A (en) * | 2016-03-28 | 2016-06-29 | 宇龙计算机通信科技(深圳)有限公司 | Pseudo base station identification method, pseudo base station identification apparatus, and terminal |
CN105873056B (en) * | 2016-04-29 | 2019-08-02 | 宇龙计算机通信科技(深圳)有限公司 | Pseudo-base station recognition methods and device, base station, terminal |
CN106231572A (en) * | 2016-07-29 | 2016-12-14 | 宇龙计算机通信科技(深圳)有限公司 | Pseudo-base station refuse messages discrimination method and system |
CN107872793B (en) * | 2016-09-26 | 2021-11-16 | 中国移动通信有限公司研究院 | Base station identification method, terminal and server |
CN108271156B (en) * | 2016-12-30 | 2021-09-03 | 中国移动通信集团上海有限公司 | Method and device for identifying pseudo base station |
CN109951461B (en) * | 2019-03-07 | 2021-08-17 | 中国联合网络通信集团有限公司 | Information tracing method and device based on wireless network |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1484464A (en) * | 2002-09-21 | 2004-03-24 | ����ͨѶ�ɷ�����˾ | Method for filtering short message of mobile telephone set |
CN102333291A (en) * | 2011-06-23 | 2012-01-25 | 中兴通讯股份有限公司 | SMS (short message service) processing method and device |
CN103179530A (en) * | 2011-12-26 | 2013-06-26 | 中国移动通信集团设计院有限公司 | Method and device for intercepting short messages |
CN104010285A (en) * | 2014-06-18 | 2014-08-27 | 中国联合网络通信集团有限公司 | Short message filtering method and system, short message service center and terminal |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR100742362B1 (en) * | 2005-10-04 | 2007-07-25 | 엘지전자 주식회사 | Method and apparatus for securitily sending/receiving contents in mobile network |
-
2014
- 2014-09-10 CN CN201410458391.1A patent/CN105407479B/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1484464A (en) * | 2002-09-21 | 2004-03-24 | ����ͨѶ�ɷ�����˾ | Method for filtering short message of mobile telephone set |
CN102333291A (en) * | 2011-06-23 | 2012-01-25 | 中兴通讯股份有限公司 | SMS (short message service) processing method and device |
CN103179530A (en) * | 2011-12-26 | 2013-06-26 | 中国移动通信集团设计院有限公司 | Method and device for intercepting short messages |
CN104010285A (en) * | 2014-06-18 | 2014-08-27 | 中国联合网络通信集团有限公司 | Short message filtering method and system, short message service center and terminal |
Also Published As
Publication number | Publication date |
---|---|
CN105407479A (en) | 2016-03-16 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN105407479B (en) | A kind of information identifying method, info gateway, SIM card and system | |
CA2868581C (en) | Concept for communicating between different entities using different data portions for different channels | |
CN104320779B (en) | Based on U/SIM cards Authentication Response and feedback near-field communication authentication method of prescribing a time limit | |
CN102880960B (en) | Based on the payment by using short messages method and system of fingerprint recognition mobile phone | |
CN101010903B (en) | Method for generating and verifying an electronic signature | |
KR20180048793A (en) | Identification method and apparatus | |
CN102037706B (en) | Method for the temporary personalization of a communication device | |
CN107833317A (en) | Control of bluetooth access control system and method | |
CN106161359A (en) | The method and device of certification user, the method and device of registration wearable device | |
CN106789077A (en) | A kind of real name identification method and system | |
CN108418837B (en) | Mobile data communication device, mobile communication system, storage medium, and method of operating mobile data communication device | |
CN105447715A (en) | Method and apparatus for anti-theft electronic coupon sweeping by cooperating with third party | |
CN106529963A (en) | System and method for security authentication of mobile devices | |
CN108055238A (en) | A kind of account verification method and system | |
CN105184567A (en) | Information processing method, processing device and mobile terminal | |
CN105765941A (en) | Illegal access server prevention method and device | |
CN103210607A (en) | Secure registration to a service provided by a web server | |
CN106506161A (en) | Method for secret protection and privacy protection device in vehicle communication | |
CN104185178A (en) | Method and device for authentication of mobile terminal | |
CN112347188A (en) | Authorization and access auditing system and method based on private chain | |
CN109600296A (en) | A kind of certificate chain instant communicating system and its application method | |
CN106921633A (en) | Calling number Verification System and method | |
CN109151823A (en) | The method and system of eSIM card authentication | |
CN108883711A (en) | passenger counting system | |
CN106656992A (en) | Information verification method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |