CN106888339A - Call authorization processing method, apparatus and system - Google Patents
Call authorization processing method, apparatus and system Download PDFInfo
- Publication number
- CN106888339A CN106888339A CN201710048434.2A CN201710048434A CN106888339A CN 106888339 A CN106888339 A CN 106888339A CN 201710048434 A CN201710048434 A CN 201710048434A CN 106888339 A CN106888339 A CN 106888339A
- Authority
- CN
- China
- Prior art keywords
- extension set
- blacklist
- corresponding number
- party authentication
- added
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M7/00—Arrangements for interconnection between switching centres
- H04M7/006—Networks other than PSTN/ISDN providing telephone service, e.g. Voice over Internet Protocol (VoIP), including next generation networks with a packet-switched transport layer
- H04M7/0078—Security; Fraud detection; Fraud prevention
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04M—TELEPHONIC COMMUNICATION
- H04M7/00—Arrangements for interconnection between switching centres
- H04M7/006—Networks other than PSTN/ISDN providing telephone service, e.g. Voice over Internet Protocol (VoIP), including next generation networks with a packet-switched transport layer
- H04M7/0081—Network operation, administration, maintenance, or provisioning
Abstract
The invention discloses a kind of call authorization processing method, apparatus and system, the method includes:The corresponding number of extension set is added in blacklist, the certification to extension set is initiated to Third Party Authentication server;In the case where certification passes through, the corresponding number of extension set is removed from blacklist.The problems of measure for preventing the free call on sb. else's expense through illegal means networking telephone from being used in correlation technique is solved by the present invention, it is achieved thereby that preventing the technique effect of free call on sb. else's expense through illegal means by way of Third Party Authentication mandate, security is improve.
Description
Technical field
The present invention relates to communication field, in particular to a kind of call authorization processing method, apparatus and system.
Background technology
VoIP (Voice over Internet Protocol, will analoging sound signal digitlization, with data packet
Form does transmission in real time on IP data networks) compared with traditional telephone system, VoIP substantially make use of Internet
The environment direct-connected with global ip, can provide the rate lower than traditional telephone system, can also be drawn come SPS circuits by looking for office side
Resource and VoIP are integrated so that the networking telephone (such as softphone, IP phone) on PC can dial traditional fixed line phone and
Mobile phone.But VoIP can leave hidden danger.
For example, hacker's scanning VOIP server, by being registered to VOIP soft switch or asterisk servers, dials state
Border is long-distance, produces great number world telephone expenses.The main intrusion method of hacker has following several:
1. 5060 ports are scanned, then the server is registered to by continuously attempting to registration extension set, then by different
Prefix trial is dialed international long-distance and steals telephone expenses;
2. intra-company personnel are ganged up, and to one telephone number of internal staff and a script, internal staff signs in this
Server runs the script free call on somebody else's expense through illegal means, gets deduction.
Can have following several for the way that the free call on sb. else's expense through illegal means in above-mentioned correlation technique is mainly taken:
1. reinforcing password (such as WEB administrator passwords, SSH login passwords, extension set log-in password), it is proposed that password is set to 8
More than number, and use numeral+letter+additional character combination;
2. the more port, does not use default port;
3. no international business is tried one's best to business hall and international long-distance service is closed;
4.IP address bindings are by the way of static configuration;
5. fire wall is used, and mistake is given out a contract for a project when number of times reaches certain threshold value and directly closes IP in the given time.
Above-mentioned several places for preventing free call on sb. else's expense through illegal means from still having deficiency.For example, for above-mentioned method 1, hacker can be by wood
Horse technological means steals the password of user;For above-mentioned method 2, hacker can scan all of port with violence, so that it is determined that
The port that sip server is used;For above-mentioned method 3, even without international business, national distance equally can be with free call on sb. else's expense through illegal means;
For above-mentioned method 4, if to realize preventing free call on sb. else's expense through illegal means, need to be known a priori by the relevant information of all of IP lists, implement
Get up inconvenience;For above-mentioned method 5, when the extensive operation under WAN, certain user's registration mistake of company,
Will cause the user of whole company all cannot normal work.
For the problems of measure for preventing the free call on sb. else's expense through illegal means networking telephone from being used in above-mentioned correlation technique, not yet carry at present
Go out effective solution.
The content of the invention
A kind of call authorization processing method, apparatus and system are the embodiment of the invention provides, at least to solve correlation technique
In one of the problems of measure that the free call on sb. else's expense through illegal means networking telephone used is prevented in above-mentioned correlation technique.
A kind of one side according to embodiments of the present invention, there is provided call authorization processing method, including:By extension set correspondence
Number be added in blacklist, wherein, the number in the blacklist is rejected as the call request that caller is initiated;To
Tripartite's certificate server initiates the certification to the extension set, wherein, extension set correspondence is preserved in the Third Party Authentication server
Certificate Authority account;In the case where certification passes through, the corresponding number of the extension set is removed from the blacklist.
Further, after the corresponding number of the extension set is removed from the blacklist, methods described also includes:
Again the corresponding number of the extension set is added in the blacklist.
Further, the corresponding number of the extension set is added into the blacklist again includes:In the extension set pair
After the end of calling that the number answered is initiated, and/or, reached the corresponding number of the extension set is removed from the blacklist
In the case of scheduled duration, the corresponding number of the extension set is added in the blacklist again.
Further, methods described also includes:In the case of authentification failure, to the corresponding SIP client of the extension set
Prompt message is sent, wherein, the prompt message is used to indicate authentification failure.
Further, the Third Party Authentication server includes:Radius aaa servers.
Other side according to embodiments of the present invention, additionally provides a kind of call authorization processing unit, including:Add single
Unit, for the corresponding number of extension set to be added in blacklist, wherein, the number in the blacklist is used as exhaling that caller is initiated
Request is made to be rejected;Unit is initiated, for initiating certification to the extension set to Third Party Authentication server, wherein, described the
The account of the corresponding Certificate Authority of extension set is preserved in tripartite's certificate server;Unit is removed, for situation about passing through in certification
Under, the corresponding number of the extension set is removed from the blacklist.
Further, the addition unit is additionally operable to that the corresponding number of the extension set is added into the blacklist again
In.
Further, the addition unit is used for after the end of calling that the corresponding number of the extension set is initiated, and/
Or, in the case where the corresponding number of the extension set being removed from the blacklist reaching scheduled duration, again will described point
The corresponding number of machine is added in the blacklist.
Other side according to embodiments of the present invention, additionally provides a kind of call authorization processing system, including:SIP takes
Business device, is connected with Third Party Authentication server, and the sip server includes the device described in any of the above-described;The third party
Certificate server, is connected with the sip server, for preserving the account of the corresponding Certificate Authority of the extension set and to described point
Machine is authenticated.
Further, the Third Party Authentication server includes:Radius aaa servers.
In embodiments of the present invention, the corresponding number of extension set is added in blacklist, is sent out to Third Party Authentication server
The certification to extension set is played, wherein, the account of the corresponding Certificate Authority of extension set is preserved in Third Party Authentication server;It is logical in certification
In the case of crossing, the corresponding number of extension set is removed from blacklist.By the embodiment of the present invention, solve in correlation technique and prevent
The problems of measure that only the free call on sb. else's expense through illegal means networking telephone is used, it is achieved thereby that being prevented by way of Third Party Authentication mandate
The networking telephone improves security by the technique effect of free call on sb. else's expense through illegal means.
Brief description of the drawings
Accompanying drawing described herein is used for providing a further understanding of the present invention, constitutes the part of the application, this hair
Bright schematic description and description does not constitute inappropriate limitation of the present invention for explaining the present invention.In the accompanying drawings:
Fig. 1 is the flow chart of call authorization processing method according to embodiments of the present invention;
Fig. 2 is the schematic diagram of Third Party Authentication mandate according to embodiments of the present invention;
Fig. 3 is the flow chart of Third Party Authentication mandate according to embodiments of the present invention;
Fig. 4 is the schematic diagram of call authorization processing unit according to embodiments of the present invention;
Fig. 5 is call authorization processing system according to embodiments of the present invention;And,
Fig. 6 is optional call authorization processing system connection diagram according to embodiments of the present invention.
Specific embodiment
In order that those skilled in the art more fully understand the present invention program, below in conjunction with the embodiment of the present invention
Accompanying drawing, is clearly and completely described to the technical scheme in the embodiment of the present invention, it is clear that described embodiment is only
The embodiment of a part of the invention, rather than whole embodiments.Based on the embodiment in the present invention, ordinary skill people
The every other embodiment that member is obtained under the premise of creative work is not made, should all belong to the model of present invention protection
Enclose.
It should be noted that term " first ", " in description and claims of this specification and above-mentioned accompanying drawing
Two " it is etc. for distinguishing similar object, without for describing specific order or precedence.It should be appreciated that so using
Data can exchange in the appropriate case, so as to embodiments of the invention described herein can with except illustrating herein or
Order beyond those of description is implemented.Additionally, term " comprising " and " having " and their any deformation, it is intended that cover
Lid is non-exclusive to be included, for example, the process, method, system, product or the equipment that contain series of steps or unit are not necessarily limited to
Those steps or unit clearly listed, but may include not list clearly or for these processes, method, product
Or other intrinsic steps of equipment or unit.
According to embodiments of the present invention, there is provided a kind of embodiment of the method for call authorization processing method, it is necessary to explanation,
Can be performed in the such as one group computer system of computer executable instructions the step of the flow of accompanying drawing is illustrated, and
And, although logical order is shown in flow charts, but in some cases, can perform institute with different from order herein
The step of showing or describe.
In the present embodiment, there is provided a kind of call authorization processing method, Fig. 1 is that calling according to embodiments of the present invention is recognized
The flow chart of processing method is demonstrate,proved, as shown in figure 1, the method comprises the following steps:
Step S102, the corresponding number of extension set is added in blacklist, wherein, the number in blacklist is sent out as caller
The call request for rising is rejected.
Step S104, the certification to extension set is initiated to Third Party Authentication server, wherein, protected in Third Party Authentication server
There is the account of the corresponding Certificate Authority of extension set.
Step S106, in the case where certification passes through, the corresponding number of extension set is removed from blacklist.
By above-mentioned steps, the mode of Third Party Authentication is used, to have solved and prevent the free call on sb. else's expense through illegal means networking telephone in correlation technique
The problems of measure for being used, it is achieved thereby that preventing the technology of free call on sb. else's expense through illegal means from imitating by way of Third Party Authentication mandate
Really, the use of the mode of Third Party Authentication is all advantageous compared to several ways of the prior art.
In the related art, relative to the mode using reinforcing password, Third Party Authentication need not be strengthened to password;
Relative to modification port mode also without modification default port;Simultaneously also without international long-distance service is closed, also it is not required to
Want binding IP and closing IP.By way of Third Party Authentication, realize being easier, and Third Party Authentication is also safer,
So as to improve security compared to correlation technique.Of course, in a kind of optional implementation method, the technical side in the present embodiment
Case can also be used in combination with several authentication modes of this in correlation technique.For example, after Third Party Authentication has been used, still
Password can be strengthened;Or, it is also possible to after Third Party Authentication has been used, it is also possible to the port of modification acquiescence, repair
The port for having changed acquiescence can be safer.
Above-mentioned steps S102 can be applied in sip server to step S106, naturally it is also possible to be applied to others and exhaled
In crying treatment.For example, in the case where sip server is applied to, in step s 102, be able to will first divide in sip server
The corresponding number of machine is added to blacklist.Then, in step S104, when sip terminal will initiate to dial, is first carried out
Tripartite's certification.Third Party Authentication implementation has a lot, it is for instance possible to use Radius aaa authentication billing authorization mechanism,
Radius aaa servers are built relatively convenient, and this Third Party Authentication is also comparatively safe, can also while certification
Realize charging.Radius AAA (Remote Authentication Dial In User Service, i.e. remote customer dialing
Certification;Authentication, Authorization, Accounting, authentication authorization and accounting, mandate and book keeping operation) server is a kind of use
In need certification its link network access server and shared certificate server between be authenticated, authorization and accounting information
Document protocol.In step s 106, Third Party Authentication after by the extension set of user from the blacklist of sip server platform
After middle removal, sip terminal could initiate network and dial.
In an optional implementation method, in order to safer, it is also contemplated that again add the corresponding number of extension set
Enter in blacklist.The situation that the corresponding number of extension set is re-added in blacklist there are into many kinds, in the embodiment of the present invention
In list two kinds of optional implementation methods:One of which can be after the end of calling that the corresponding number of extension set is initiated, weight
Newly the corresponding number of extension set is added in blacklist;Another kind, the corresponding number of extension set can be removed reach from blacklist
In the case of scheduled duration, the corresponding number of extension set is added in blacklist again.Both modes can also be combined to be made
With.
For example, after the end of calling that the corresponding number of extension set is initiated, namely after user completes to dial action on-hook,
During corresponding extension set is rejoined blacklist by SIP service platform automatically again;By the corresponding number of extension set from blacklist
In the case that removal reaches scheduled duration (for example, 100 minutes), third party's authorization identifying is caused in order to prevent other reasonses
Failure, during corresponding extension set also can be rejoined blacklist by SIP service platform automatically again.When above-mentioned two situations all occur
When, it is also desirable to during corresponding extension set is rejoined blacklist by SIP service platform automatically again.
When sip server initiates Third Party Authentication, can be carried out from sip server to Third Party Authentication server
Certification, in this case, SIP client is unwitting.After SIP client receives return information, if certification passes through,
User is then allowed to initiate call request to sip server;If SIP client that authentication failed can point out failure, but SIP is objective
The user at family end possibly cannot know it is actually what reason, and this can decline the experience of user.In an optional embodiment party
In formula, in order to improve Consumer's Experience, prompting letter can be sent to the corresponding SIP client of extension set in the case of authentification failure
Breath, wherein, the prompt message is used to indicate authentification failure.Consumer's Experience can be improved by sending configured information.
An optional implementation method is combined by taking Radius aaa servers as an example below to illustrate.Fig. 2 is basis
The schematic diagram of the Third Party Authentication mandate of the embodiment of the present invention, as shown in Fig. 2 the schematic diagram includes:Sip terminal 21, SIP service
Device 22 and Radius aaa authentications authorization server 23.In the schematic diagram, sip terminal is first initiated Radius aaa authentications and is awarded
Power request, removes extension set when user authentication passes through from the blacklist of sip server, and is returned to Radius clients
Certification request information, can initiate to dial and ask when the Radius clients of user receive certification by result to sip server
Ask.
Fig. 3 is the flow chart of Third Party Authentication mandate according to embodiments of the present invention, as shown in figure 3, the method is included such as
Lower step:
Step S301, user initiates certification request to Radius AAA Third Party Authentications authorization server.
Before step S301 is performed, all of extension set on sip server is both corresponded into a Radius AAA first
The account of Third Party Authentication mandate, corresponding relation is present in the database of Third Party Authentication authorization server.
Step S302, judges whether certification passes through, and when certification passes through, performs step S303;Not over when, perform step
Rapid S307.
Specifically, the Authentication Client of Radius AAA initiates certification request to Radius aaa servers, and certification passes through
When Radius aaa authentication servers go the data of matching database to find out corresponding extension set, perform step S303.
Step S303, calls sip server interface, removing mandate by way of extension set in SIP blacklists, and sets pre-
Piped off automatically after timing is long.
In step S303, after SIP service platform receives the instruction of Radius AAA Third Party Authentication mandate platforms, will be right
Answer extension set to be removed from blacklist, and a scheduled duration (such as 100 minutes) is set, when user dials operation and exceedes scheduled duration
Automatically will be during correspondence extension set rejoin blacklist, this is to cause Third Party Authentication to fail to prevent other reasonses.
Step S304, returns success message to Radius Authentication Clients, informs that user can initiate to dial operation.
In step s 304, initiate that correspondence extension set is removed the instruction of blacklist to sip server, and to Authentication Client
Return authentication information, after client receives return information, if certification passes through, then allows user to be initiated to SIP service platform
Call request;Otherwise authentication failure message is pointed out to user.
Step S305, user initiates call request to sip server.
In step S305, user initiates call request to sip server, and sip server receives the call request of user
When, first judge that whether calling number in black list information, refuses calling if being, otherwise receive call request.
Step S306, after user completes call operation, hangs up the telephone, and sip server again pipes off extension set.
Step S307, return authentication failure information.
The embodiment of the present invention additionally provides a kind of call authorization processing unit, it is necessary to illustrate, the embodiment of the present invention
Call authorization processing unit can be used for performing the call authorization processing method that the embodiment of the present invention is provided.Below to the present invention
The call authorization processing unit that embodiment is provided is introduced.
Fig. 4 is a kind of schematic diagram of call authorization processing unit according to embodiments of the present invention, as shown in Fig. 2 the device
Can include:Unit 41 is added, unit 43 is initiated and removes unit 45, the device is illustrated below.
Unit 41 is added, for the corresponding number of extension set to be added in blacklist, wherein, the number conduct in blacklist
The call request that caller is initiated is rejected.
Unit 43 is initiated, for initiating the certification to extension set to Third Party Authentication server, wherein, Third Party Authentication service
The account of the corresponding Certificate Authority of extension set is preserved in device.
Unit 45 is removed, in the case of passing through in certification, the corresponding number of extension set is removed from blacklist.
In a kind of call authorization processing unit of the embodiment of the present invention, by adding unit 41 by the corresponding number of extension set
It is added in blacklist, wherein, the number in blacklist is rejected as the call request that caller is initiated;Unit 43 is initiated to the
Tripartite's certificate server initiates the certification to extension set, wherein, the corresponding certification of extension set is preserved in Third Party Authentication server and is awarded
The account of power;Unit 45 is removed in the case where certification passes through, the corresponding number of extension set is removed from blacklist, and then solved
The security mechanism incomplete technical problem existing for the free call on sb. else's expense through illegal means networking telephone is prevented in correlation technique, it is effectively anti-so as to reach
Only the networking telephone is by the technique effect of free call on sb. else's expense through illegal means.
Alternatively, in a kind of call authorization processing unit of the embodiment of the present invention, unit 41 is added to be additionally operable to again to
The corresponding number of extension set is added in blacklist.
Alternatively, in a kind of call authorization processing unit of the embodiment of the present invention, unit 41 is added to be used in extension set pair
After the end of calling that the number answered is initiated, and/or, reach scheduled duration the corresponding number of extension set is removed from blacklist
In the case of, the corresponding number of extension set is added in blacklist again.
The embodiment of the present invention additionally provides a kind of call authorization processing system, as shown in figure 5, the system includes:SIP service
Device 51, is connected with Third Party Authentication server 53, and sip server 51 includes above-mentioned call authorization processing unit.
Alternatively, Third Party Authentication server 53, is connected with sip server 51, is awarded for preserving the corresponding certification of extension set
The account of power is simultaneously authenticated to extension set.
Alternatively, Third Party Authentication server includes:Radius aaa servers.
Fig. 6 is optional call authorization processing system connection diagram according to embodiments of the present invention, as shown in fig. 6, user
Radius aaa authentications are initiated to Radius aaa authentications server to ask, when Radius aaa authentication server authentications pass through,
Sip server interface is called, the number of extension set is removed from the blacklist of sip server, and to user's return authentication result,
When user dials request by that after third-party Radius aaa authentications, can be initiated to sip server.
Sip terminal is based on the function that Third Party Authentication initiates to dial in the above embodiment of the present invention, first by sip server
The number of corresponding extension set adds blacklist, when sip terminal will initiate to dial, it is necessary to first carry out Third Party Authentication, leads to
Cross using Radius aaa authentication billing authorization mechanism, certification is after by the extension set of user from the black of sip server platform
Removed in list, at this moment sip terminal could initiate to dial operation;After user completes to dial, or user dials operation
During more than scheduled duration, the corresponding number of extension set of user is added blacklist again, the system has the advantage that:
1. the account protection for sip terminal is not merely based on the port of account, password and sip server, even if black
Visitor obtains the port of account, password and the sip server of subscriber's extension station, if the certification that can not complete Radius AAA is awarded
Power, cannot just complete free call on sb. else's expense through illegal means operation;
2. the system does not need binding IP address, it is allowed to which dynamic access IP address uses SIP to sip terminal in any place
Service, so as to ensure that the mobility of sip terminal;
3. user before dialing every time all can once certification, this is little on the elapsed time influence dialed.Telecommunications dial
Number network access authentication is exactly Radius aaa authentication billing authorizations, completes a Certificate Authority time and needs a few tens of milliseconds, it is considered to
To the operation for calling SIP interface, total is time-consuming completely can be within 1 second, and this Certificate Authority mode is safer, more special
Industry.
The embodiments of the present invention are for illustration only, and the quality of embodiment is not represented.
In the above embodiment of the present invention, the description to each embodiment all emphasizes particularly on different fields, and does not have in certain embodiment
The part of detailed description, may refer to the associated description of other embodiment.
In several embodiments provided herein, it should be understood that disclosed technology contents, can be by other
Mode is realized.Wherein, device embodiment described above is only schematical, such as division of described unit, Ke Yiwei
A kind of division of logic function, can there is other dividing mode when actually realizing, such as multiple units or component can combine or
Person is desirably integrated into another system, or some features can be ignored, or does not perform.Another, shown or discussed is mutual
Between coupling or direct-coupling or communication connection can be the INDIRECT COUPLING or communication link of unit or module by some interfaces
Connect, can be electrical or other forms.
The unit that is illustrated as separating component can be or may not be it is physically separate, it is aobvious as unit
The part for showing can be or may not be physical location, you can with positioned at a place, or can also be distributed to multiple
On unit.Some or all of unit therein can be according to the actual needs selected to realize the purpose of this embodiment scheme.
In addition, during each functional unit in each embodiment of the invention can be integrated in a processing unit, it is also possible to
It is that unit is individually physically present, it is also possible to which two or more units are integrated in a unit.Above-mentioned integrated list
Unit can both be realized in the form of hardware, it would however also be possible to employ the form of SFU software functional unit is realized.
If the integrated unit is to realize in the form of SFU software functional unit and as independent production marketing or use
When, can store in a computer read/write memory medium.Based on such understanding, technical scheme is substantially
The part for being contributed to prior art in other words or all or part of the technical scheme can be in the form of software products
Embody, the computer software product is stored in a storage medium, including some instructions are used to so that a computer
Equipment (can be personal computer, server or network equipment etc.) perform each embodiment methods described of the invention whole or
Part steps.And foregoing storage medium includes:USB flash disk, read-only storage (ROM, Read-Only Memory), arbitrary access are deposited
Reservoir (RAM, Random Access Memory), mobile hard disk, magnetic disc or CD etc. are various can be with store program codes
Medium.
The above is only the preferred embodiment of the present invention, it is noted that for the ordinary skill people of the art
For member, under the premise without departing from the principles of the invention, some improvements and modifications can also be made, these improvements and modifications also should
It is considered as protection scope of the present invention.
Claims (10)
1. a kind of call authorization processing method, it is characterised in that including:
The corresponding number of extension set is added in blacklist, wherein, the calling that the number in the blacklist is initiated as caller
Request is rejected;
The certification to the extension set is initiated to Third Party Authentication server, wherein, preserved in the Third Party Authentication server
The account of the corresponding Certificate Authority of extension set;
In the case where certification passes through, the corresponding number of the extension set is removed from the blacklist.
2. method according to claim 1, it is characterised in that by the corresponding number of the extension set from the blacklist
After removal, methods described also includes:
Again the corresponding number of the extension set is added in the blacklist.
3. method according to claim 2, it is characterised in that be again added to the corresponding number of the extension set described black
List includes:
After the end of calling that the corresponding number of the extension set is initiated, and/or, by the corresponding number of the extension set from described
Removed in blacklist in the case of reaching scheduled duration, the corresponding number of the extension set is added in the blacklist again.
4. method according to claim 1, it is characterised in that methods described also includes:
In the case of authentification failure, prompt message is sent to the corresponding SIP client of the extension set, wherein, the prompting letter
Cease for indicating authentification failure.
5. method according to any one of claim 1 to 4, it is characterised in that the Third Party Authentication server includes:
Radius aaa servers.
6. a kind of call authorization processing unit, it is characterised in that including:
Unit is added, for the corresponding number of extension set to be added in blacklist, wherein, the number in the blacklist is used as master
The call request initiated is made to be rejected;
Unit is initiated, for initiating the certification to the extension set to Third Party Authentication server, wherein, the Third Party Authentication clothes
The account of the corresponding Certificate Authority of extension set is preserved in business device;
Unit is removed, in the case of passing through in certification, the corresponding number of the extension set is removed from the blacklist.
7. device according to claim 6, it is characterised in that the addition unit is additionally operable to extension set correspondence again
Number be added in the blacklist.
8. device according to claim 7, it is characterised in that the addition unit is used in the corresponding number of the extension set
After the end of calling of initiation, and/or, reach scheduled duration the corresponding number of the extension set is removed from the blacklist
In the case of, the corresponding number of the extension set is added in the blacklist again.
9. a kind of call authorization processing system, it is characterised in that including:
Sip server, is connected with Third Party Authentication server, and the sip server includes any one of claim 6 to 8 institute
The device stated;
The Third Party Authentication server, is connected with the sip server, for preserving the corresponding Certificate Authority of the extension set
Account is simultaneously authenticated to the extension set.
10. system according to claim 9, it is characterised in that the Third Party Authentication server includes:Radius AAA
Server.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710048434.2A CN106888339A (en) | 2017-01-20 | 2017-01-20 | Call authorization processing method, apparatus and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710048434.2A CN106888339A (en) | 2017-01-20 | 2017-01-20 | Call authorization processing method, apparatus and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN106888339A true CN106888339A (en) | 2017-06-23 |
Family
ID=59176793
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710048434.2A Pending CN106888339A (en) | 2017-01-20 | 2017-01-20 | Call authorization processing method, apparatus and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106888339A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108881292A (en) * | 2018-07-20 | 2018-11-23 | 携程旅游信息技术(上海)有限公司 | VoIP safe precaution method, system, equipment and storage medium |
| CN112243067A (en) * | 2019-07-16 | 2021-01-19 | 中国移动通信集团浙江有限公司 | Anti-set dialing method, system, server and storage medium |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2002527001A (en) * | 1998-09-25 | 2002-08-20 | ソマ ネットワークス インコーポレイテッド | Telecommunication services |
| CN1798196A (en) * | 2004-12-31 | 2006-07-05 | 乐金电子(中国)研究开发中心有限公司 | Out-calling restriction setup method of mobile communication terminal |
| CN1885770A (en) * | 2005-06-24 | 2006-12-27 | 华为技术有限公司 | Authentication method |
| CN101321394A (en) * | 2008-07-07 | 2008-12-10 | 中国联合通信有限公司 | Call subscriber number authentication method and system |
| CN101621505A (en) * | 2008-06-30 | 2010-01-06 | 中兴通讯股份有限公司 | Access authentication method, system and terminal |
| CN102255904A (en) * | 2011-07-07 | 2011-11-23 | 上海顶竹通讯技术有限公司 | Communication network and terminal authentication method thereof |
| CN103166962A (en) * | 2013-03-04 | 2013-06-19 | 广东天波信息技术股份有限公司 | Method for safely calling session initiation protocol (SIP) terminal based on bound number authentication mechanism |
| CN103516704A (en) * | 2012-06-30 | 2014-01-15 | 北京神州泰岳软件股份有限公司 | Method and system for managing access of IMS client |
-
2017
- 2017-01-20 CN CN201710048434.2A patent/CN106888339A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2002527001A (en) * | 1998-09-25 | 2002-08-20 | ソマ ネットワークス インコーポレイテッド | Telecommunication services |
| CN1798196A (en) * | 2004-12-31 | 2006-07-05 | 乐金电子(中国)研究开发中心有限公司 | Out-calling restriction setup method of mobile communication terminal |
| CN1885770A (en) * | 2005-06-24 | 2006-12-27 | 华为技术有限公司 | Authentication method |
| CN101621505A (en) * | 2008-06-30 | 2010-01-06 | 中兴通讯股份有限公司 | Access authentication method, system and terminal |
| CN101321394A (en) * | 2008-07-07 | 2008-12-10 | 中国联合通信有限公司 | Call subscriber number authentication method and system |
| CN102255904A (en) * | 2011-07-07 | 2011-11-23 | 上海顶竹通讯技术有限公司 | Communication network and terminal authentication method thereof |
| CN103516704A (en) * | 2012-06-30 | 2014-01-15 | 北京神州泰岳软件股份有限公司 | Method and system for managing access of IMS client |
| CN103166962A (en) * | 2013-03-04 | 2013-06-19 | 广东天波信息技术股份有限公司 | Method for safely calling session initiation protocol (SIP) terminal based on bound number authentication mechanism |
Non-Patent Citations (3)
| Title |
|---|
| 周绪川等: "VoIP RADIUS AAA服务器的设计", 《西南民族大学学报(自然科学版)》 * |
| 达米卡: "现代网络安全:SIP网络中的DIAMETER鉴定", 《计算机工程》 * |
| 陈雪莲等: "基于SIP协议的AAA系统的设计", 《中国人工智能学会计算机辅助教育专业委员会会议论文集》 * |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108881292A (en) * | 2018-07-20 | 2018-11-23 | 携程旅游信息技术(上海)有限公司 | VoIP safe precaution method, system, equipment and storage medium |
| CN112243067A (en) * | 2019-07-16 | 2021-01-19 | 中国移动通信集团浙江有限公司 | Anti-set dialing method, system, server and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9112910B2 (en) | Method and system for authentication | |
| US20150124945A1 (en) | System, method and apparatus for authenticating calls | |
| CN101355582B (en) | Method and system for authentication of web page pointing and dialing | |
| Mustafa et al. | You can call but you can't hide: detecting caller id spoofing attacks | |
| CN104093175B (en) | For managing the method and management comprehensive access device of potential or actual switching | |
| CN107104979A (en) | A kind of voice clawback verifies the method and system of business | |
| CN103166962B (en) | The method that sip terminal is dialed safely is realized based on binding number authentication mechanism | |
| Hansen et al. | Developing a legally compliant reachability management system as a countermeasure against spit | |
| US20210377389A1 (en) | Robocall screening tool in a communication network | |
| CN106453799B (en) | Manipulative communications deception recognition methods and system | |
| CN111556501B (en) | Trusted communication system and method | |
| CN107483398A (en) | A kind of silent verification method and device, electronic equipment | |
| CN101341700A (en) | Method and arrangement for verifying an originating address transmitted in a call request for the purpose of establishing a communications link in an IP communications network | |
| CN107306395A (en) | A kind of call method for building up based on control of authority | |
| CN110519545A (en) | Meeting authority control method and system, server, terminal, storage medium | |
| CN108271158A (en) | Call processing method and system | |
| CN108737665A (en) | A kind of implementation method and device that incoming call is anti-harassment | |
| CN106790199B (en) | Verification code processing method and device | |
| CN106888339A (en) | Call authorization processing method, apparatus and system | |
| CN103947173A (en) | Method and system for managing the communication between two users | |
| CN106791232A (en) | The means of communication of identity-based certification | |
| CN108123807A (en) | The system and method that user identity is traced to the source in broadband network | |
| CN111327752A (en) | Call processing method, device, communication system and storage medium | |
| CN101127777A (en) | Method, device and system for processing security threat information of voice communication | |
| CN105472186A (en) | Communication method and system established in number transmission manner |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1238452 Country of ref document: HK |
|
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170623 |
|
| RJ01 | Rejection of invention patent application after publication |