CN107251506A - Terminal data Open control method and system - Google Patents

Terminal data Open control method and system Download PDF

Info

Publication number
CN107251506A
CN107251506A CN201680010626.8A CN201680010626A CN107251506A CN 107251506 A CN107251506 A CN 107251506A CN 201680010626 A CN201680010626 A CN 201680010626A CN 107251506 A CN107251506 A CN 107251506A
Authority
CN
China
Prior art keywords
terminal
application server
party application
data
network equipment
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201680010626.8A
Other languages
Chinese (zh)
Other versions
CN107251506B (en
Inventor
韩文勇
孔涛
刘志敏
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Publication of CN107251506A publication Critical patent/CN107251506A/en
Application granted granted Critical
Publication of CN107251506B publication Critical patent/CN107251506B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass

Abstract

A kind of terminal data Open control method and system, the network equipment, third-party application server and terminal, the private data to be third-party application server opening terminal with realizing MBB network securitys.The inventive method includes:Terminal access third-party application server, third-party application server sends first message to the network equipment, and the first message is used for the data that requesting terminal allows third-party application server to obtain terminal;The network equipment determines the data that terminal allows third-party application server to obtain terminal;The network equipment is determined to obtain the checking information of the data of terminal for third-party application server, and checking information is sent into third-party application server.

Description

Terminal data Open control method and system Technical field
The present invention relates to wireless communication field more particularly to a kind of terminal data Open control method and system.
Background technique
With the rapid development of mobile bandwidth (Mobile Broadband, MBB) network service, MBB network is by open network ability, to cultivate more affiliates, increases the operation income of MBB network service.
MBB network opening network capabilities includes that MBB network is third-party application server (The 3rdParty App Server) open terminal private data.Wherein, terminal is connected with MBB network, and when terminal access third-party application server, third-party application server wishes to obtain the private data of terminal, such as the location information of terminal, mark of terminal etc..
Before MBB network is the private data of the open terminal of third-party application server, third-party application server directly carries out the interaction of private data with terminal, MBB network is only used as network pipeline, realizes the private data of the transmission terminal between third-party application server and terminal.After private data of the MBB network for the open terminal of third-party application server, MBB network is by the private data of collection terminal, it can be achieved that opening the private data of terminal for third-party application server.But consider the privacy of data, MBB network needs to obtain the permission of terminal, could be the private data of the open terminal of third-party application server.
In summary, to meet the needs of MBB network opening network capabilities, the safe handling for guaranteeing the private data of terminal simultaneously, needs to design the private data Open control scheme about terminal, with realizing MBB network security for the private data of the open terminal of third-party application server.
Summary of the invention
The embodiment of the invention provides a kind of terminal data Open control method and system, the network equipment, third-party application server and terminals, to be the private data of the open terminal of third-party application server with realizing MBB network security.
In a first aspect, a kind of terminal data Open control method provided in an embodiment of the present invention, comprising:
The network equipment receives the first message that third-party application server is sent, and the first message is used for the data that requesting terminal allows the third-party application server to obtain the terminal;
The network equipment determines the data that the terminal allows the third-party application server to obtain the terminal;
The network equipment determines the verification information that the data of the terminal are obtained for the third-party application server, and the verification information is sent to the third-party application server.
With reference to first aspect, in the first possible implementation, the network equipment determines the verification information that the data of the terminal are obtained for the third-party application server, comprising:
The network equipments configuration obtains the verification information of the data of the terminal for the third-party application server;Or
The network equipment receives the verification information for the data that the terminal is obtained for the third-party application server that the terminal is sent.
With reference to first aspect or the first possible implementation of first aspect, in the second possible implementation of the first aspect, the verification information is sent to after the third-party application server by the network equipment, further includes:
The network equipment receives the second message that the third-party application server is sent, and the second message carries the verification information;
The network equipment sends the data of the terminal to the third-party application server.
With reference to first aspect, the first of first aspect is to second of any possible implementation, in a third possible implementation of the first aspect, the network equipment determines after the data that the terminal allows the third-party application server to obtain the terminal, further includes:
The network equipment determines the time span for the data that the terminal allows the third-party application server to obtain the terminal;
Using the network equipment determine the terminal at the time of allowing the third-party application server to obtain the data of the terminal as initial time, when the duration being more than the time span, the network equipment determines that the verification information is invalid;And
The invalid notification message of the verification information is used to indicate to third-party application server transmission.
With reference to first aspect, the first of first aspect is to second of any possible implementation, in a fourth possible implementation of the first aspect, the network equipment determines after the data that the terminal allows the third-party application server to obtain the terminal, further includes:
When the network equipment determines the terminal not the third-party application server is allowed to obtain the data of the terminal, the network equipment determines that the verification information is invalid;And
The invalid notification message of the verification information is used to indicate to third-party application server transmission.
With reference to first aspect, the first of first aspect is to the 4th kind of any possible implementation, and in the fifth possible implementation of the first aspect, the data of the terminal include the private data of the terminal.
Second aspect, a kind of terminal data Open control method provided in an embodiment of the present invention, comprising:
Third-party application server sends first message to the network equipment, and the first message is used for the data that requesting terminal allows the third-party application server to obtain the terminal;
The third-party application server receives the verification information that the network equipment is sent, and the verification information obtains the data of the terminal for the third-party application server.
In conjunction with second aspect, in the first possible implementation, third-party application server is sent to the network equipment before first message, further includes:
The third-party application server determines that the third-party application server needs to obtain the data of the terminal by third-party application server described in the terminal access.
In conjunction with the possible implementation of the first of second aspect or second aspect, in a second possible implementation of the second aspect, the third-party application server is received after the verification information that the network equipment is sent, further includes:
The third-party application server sends second message to the network equipment, and the second message carries the verification information;
The third-party application server receives the data for the terminal that the network equipment is sent.
In conjunction with second aspect, second aspect the first to second of any possible implementation, in the third possible implementation of the second aspect, the third-party application server receives the network and sets After the verification information that preparation is sent, further includes:
What the third-party application server received that the network equipment sends is used to indicate the invalid notification message of the verification information.
In conjunction with second aspect, second aspect the first to the third any possible implementation, in the fourth possible implementation of the second aspect, the data of the terminal include the private data of the terminal.
The third aspect, a kind of terminal data Open control method provided in an embodiment of the present invention, comprising:
Terminal determines the data for allowing third-party application server to obtain the terminal;
The terminal sends the notification message for being used to indicate the data that the terminal allows the third-party server to obtain the terminal to the network equipment.
In conjunction with the third aspect, in the first possible implementation, terminal is determined after the data for allowing third-party application server to obtain the terminal, further includes:
The verification information for being used for the data that the third-party application server obtains the terminal is sent to the network equipment by the terminal.
In conjunction with the possible implementation of the first of the third aspect or the third aspect, in the second possible implementation of the third aspect, terminal is determined after the data for allowing third-party application server to obtain the terminal, further includes:
The time span for the data that the terminal allows the third-party application server to obtain the terminal is sent to the network equipment by the terminal.
In conjunction with the third aspect, the third aspect the first to second of any possible implementation, in the third possible implementation of the third aspect, the terminal is used to indicate after the notification message for the data that the terminal allows the third-party server to obtain the terminal to network equipment transmission, further includes:
The terminal sends the notification message for being used to indicate the terminal not and allowing the data that the third-party application server obtains the terminal to the network equipment.
In conjunction with the third aspect, the third aspect the first to the third any possible implementation, in the fourth possible implementation of the third aspect, the data of the terminal include the private data of the terminal.
Fourth aspect, a kind of network equipment provided in an embodiment of the present invention, comprising:
Receiving unit, for receiving the first message of third-party application server transmission, the first message is used for the data that requesting terminal allows the third-party application server to obtain the terminal;
Processing unit, the data for allowing the third-party application server to obtain the terminal for determining the terminal;Determine the verification information that the data of the terminal are obtained for the third-party application server;
Transmission unit, the verification information for determining the processing unit are sent to the third-party application server.
In conjunction with fourth aspect, in the first possible implementation, when the processing unit determines the verification information for the data for obtaining the terminal for the third-party application server, it is specifically used for:
It is configured to the verification information that the third-party application server obtains the data of the terminal;Or
The receiving unit is also used to: receiving the verification information for the data that the terminal is obtained for the third-party application server that the terminal is sent;
When the processing unit determines the verification information for the data for obtaining the terminal for the third-party application server, it is specifically used for:
The received verification information of the receiving unit is determined as to be used for the verification information for the data that the third-party application server obtains the terminal.
In conjunction with the possible implementation of the first of fourth aspect or fourth aspect, in the second possible implementation of the fourth aspect, the receiving unit is also used to:
The second message that the third-party application server is sent is received, the second message carries the verification information;
The transmission unit is also used to:
The data of the terminal are sent to the third-party application server.
In conjunction with fourth aspect, fourth aspect the first to second of any possible implementation, in the third possible implementation of the fourth aspect, after the processing unit determines the data that the terminal allows the third-party application server to obtain the terminal, it is also used to:
Determine the time span for the data that the terminal allows the third-party application server to obtain the terminal;
Determine that the terminal, as initial time, when the duration being more than the time span, determines that the verification information is invalid at the time of allowing the third-party application server to obtain the data of the terminal using the processing unit;
The transmission unit is also used to:
The invalid notification message of the verification information is used to indicate to third-party application server transmission.
In conjunction with fourth aspect, fourth aspect the first to second of any possible implementation, in the fourth possible implementation of the fourth aspect, after the processing unit determines the data that the terminal allows the third-party application server to obtain the terminal, it is also used to:
When determining the terminal not allows the third-party application server to obtain the data of the terminal, determine that the verification information is invalid;
The transmission unit is also used to:
The invalid notification message of the verification information is used to indicate to third-party application server transmission.
In conjunction with fourth aspect, fourth aspect the first to the 4th kind of any possible implementation, in the 5th kind of possible implementation of fourth aspect, the data of the terminal include the private data of the terminal.
5th aspect, a kind of third-party application server provided in an embodiment of the present invention, comprising:
Transmission unit, for sending first message to the network equipment, the first message is used for the data that requesting terminal allows the third-party application server to obtain the terminal;
Receiving unit, the verification information sent for receiving the network equipment, the verification information obtain the data of the terminal for the third-party application server.
In conjunction with the 5th aspect, in the first possible implementation, further includes:
Processing unit, for by third-party application server described in the terminal access, determining that the third-party application server needs to obtain the data of the terminal before the transmission unit sends first message to the network equipment.
In conjunction with the first possible implementation of the 5th aspect or the 5th aspect, in second of possible implementation of the 5th aspect, the transmission unit is also used to:
After the verification information that the receiving unit receives that the network equipment is sent, Xiang Suoshu network is set Preparation send second message, and the second message carries the verification information;
The receiving unit is also used to:
Receive the data for the terminal that the network equipment is sent.
In conjunction with the 5th aspect, the 5th aspect the first to second of any possible implementation, in the third possible implementation of the 5th aspect, the receiving unit is also used to:
After receiving the verification information that the network equipment is sent, receive the network equipment transmission is used to indicate the invalid notification message of the verification information.
In conjunction with the 5th aspect, the 5th aspect the first to the third any possible implementation, in the 4th kind of possible implementation of the 5th aspect, the data of the terminal include the private data of the terminal.
6th aspect, a kind of terminal provided in an embodiment of the present invention, comprising:
Processing unit, the data for allowing third-party application server to obtain the terminal for determining the terminal;
Transmission unit, for sending the notification message for being used to indicate the data that the terminal allows the third-party server to obtain the terminal to the network equipment.
In conjunction with the 6th aspect, in the first possible implementation, the transmission unit is also used to:
The verification information for being used for the data that the third-party application server obtains the terminal is sent to the network equipment.
In conjunction with the first possible implementation of the 6th aspect or the 6th aspect, in second of possible implementation of the 6th aspect, the transmission unit is also used to:
The time span for the data that the terminal allows the third-party application server to obtain the terminal is sent to the network equipment.
In conjunction with the 6th aspect, the 6th aspect the first to second of any possible implementation, in the third possible implementation of the 6th aspect, the transmission unit is also used to:
After being used to indicate the notification message for the data that the terminal allows the third-party server to obtain the terminal to network equipment transmission, the Xiang Suoshu network equipment sends the notification message for being used to indicate the terminal not and allowing the data that the third-party application server obtains the terminal.
In conjunction with the 6th aspect, the 6th aspect the first to the third any possible implementation, in the 4th kind of possible implementation of the 6th aspect, the data of the terminal include the private data of the terminal.
7th aspect, a kind of terminal data open control system provided in an embodiment of the present invention, including the network equipment, third-party application server and terminal, wherein
The network equipment include fourth aspect, fourth aspect the first into the 5th kind of possible implementation any network equipment;
The third-party application server include the 5th aspect, the 5th aspect the first into the 4th kind of possible implementation any third-party application server;
The terminal include the 6th aspect, the 6th aspect the first into the 4th kind of possible implementation any terminal.
In the embodiment of the present invention, when third-party application server needs to obtain the private data of terminal, the network equipment provides the private data of terminal after obtaining terminal permission for third-party application server, and then is the private data of the open terminal of third-party application server with realizing MBB network security.
Detailed description of the invention
Fig. 1 is system architecture schematic diagram provided in an embodiment of the present invention;
Fig. 2 is a kind of terminal data Open control method flow schematic diagram provided in an embodiment of the present invention;
Fig. 3 is a kind of terminal data Open control method flow schematic diagram provided in an embodiment of the present invention;
Fig. 4 is a kind of terminal data Open control method flow schematic diagram provided in an embodiment of the present invention;
Fig. 5 is a kind of terminal data Open control method flow schematic diagram provided in an embodiment of the present invention;
Fig. 6 is a kind of structural schematic diagram of the network equipment provided in an embodiment of the present invention;
Fig. 7 is a kind of structural schematic diagram of third-party application server provided in an embodiment of the present invention;
Fig. 8 is a kind of structural schematic diagram of terminal provided in an embodiment of the present invention;
Fig. 9 is a kind of structural schematic diagram of terminal data open control system provided in an embodiment of the present invention;
Figure 10 is a kind of structural schematic diagram of the network equipment provided in an embodiment of the present invention;
Figure 11 is a kind of structural schematic diagram of third-party application server provided in an embodiment of the present invention;
Figure 12 is a kind of structural schematic diagram of terminal provided in an embodiment of the present invention.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical scheme in the embodiment of the invention is clearly and completely described, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.Based on the embodiments of the present invention, every other embodiment obtained by those of ordinary skill in the art without making creative efforts, shall fall within the protection scope of the present invention.
The embodiment of the present invention provides a kind of terminal data Open control method and system, the network equipment, third-party application server and terminal, to be the private data of the open terminal of third-party application server with realizing MBB network security.Wherein, method and apparatus are that based on the same inventive concept, since the principle that method and device solves the problems, such as is similar, the implementation of apparatus and method can be with cross-reference, and overlaps will not be repeated.
Technical solution provided in an embodiment of the present invention is suitable for mobile bandwidth (Mobile Broadband, MBB) network, and MBB network is by open network ability, to cultivate more affiliates, increases the operation income of MBB network service.MBB network opening network capabilities includes the private data that MBB network is the open terminal of third-party application server.
By taking system architecture shown in FIG. 1 as an example, it include the network equipment, third-party application server and terminal in Fig. 1, after terminal is connected to the network equipment, terminal access third-party application server, third-party application server determines the need for obtaining the private data of terminal by the access of terminal.Technical solution provided in an embodiment of the present invention is related to the case where third-party application server needs to obtain the private data of terminal, the network equipment provides the private data of terminal after obtaining terminal permission for third-party application server, and the private data of terminal includes the location information of terminal, the mark of terminal etc..
The network equipment refers to the equipment in MBB network, MBB network includes Radio Access Network (Radio Access Network,) and evolution block core net (Evolved Packet Core RAN, EPC) logic unit, or including evolution Radio Access Network (Evolved Radio Access Network, eRAN) and EPC logic unit.Optionally, unified Competence Center (Unified Capability Center, UCC) equipment is introduced for MBB network opening network capabilities, in MBB network, which can be used for receiving Collect MBB network data, private data including terminal, in the case where obtaining terminal allows, UCC equipment provides the private data of terminal by application programming (Application Programming Interface, API) interface for third-party application server.It should be noted that providing the equipment of the private data of terminal in MBB network for the private data of collection terminal, for third-party application server, UCC equipment not only can be, be also possible to other equipment, it is only an example that MBB network, which introduces UCC equipment,.
It should be noted that before terminal access third-party application server, terminal is already connected to the MBB network where the network equipment in the content that following embodiment provides.
Below by flow chart shown in Fig. 2, illustrate a kind of terminal data Open control method provided in an embodiment of the present invention.
As shown in Fig. 2, interaction flow among the network equipment, third-party application server and terminal is as follows in a kind of terminal data Open control method provided in an embodiment of the present invention:
S201, terminal access third-party application server.
Optionally, terminal accesses third-party application server by browser, alternatively, being equipped with third-party application in terminal, terminal accesses third-party application server by the third-party application of installation.
S202, third-party application server determine that third-party application server needs to obtain the data of terminal.
S203, third-party application server send first message to the network equipment, and first message allows the data of third-party application server acquisition terminal for requesting terminal.
S204, the network equipment send the request message of the data for requesting instruction terminal third-party application server whether is allowed to obtain terminal to terminal.
S205, terminal send the notification message for being used to indicate the data that terminal allows third-party server to obtain terminal to the network equipment.
Optionally, which further includes the time span that terminal allows the data of third-party application server acquisition terminal.
S206, the network equipment determine the verification information that the data of terminal are obtained for third-party application server.
For example, verification information can use the forms such as key, the form of verification information is not limited in the embodiment of the present invention.
Optionally, network equipments configuration obtains the verifying letter of the data of terminal for third-party application server Breath;Alternatively, the network equipment receives the verification information for the data for obtaining terminal for third-party application server that terminal is sent.The verification information can carry in the notification message that terminal is sent to the network equipment in S205.Such as, as Software Development Kit (the Software Development Kit for being equipped with the network equipment in terminal, when SDK), such as the SDK of UCC is installed in terminal, terminal has the function of generating verification information, verification information can be generated by terminal at this time, and verification information is sent to the network equipment.
The network equipment is after the verification information for determining the data for obtaining terminal for third-party application server, save the mark of terminal, the mark of third-party application server and obtained for third-party application server terminal data verification information between related information, the related information can be known as to authorization message, subsequent network device determines the data that terminal allows third-party application server to obtain terminal according to the authorization message of preservation.
The verification information for being used for the data that third-party application server obtains terminal is sent to third-party application server by S207, the network equipment.
Optionally, after third-party application server receives the verification information for the data of third-party application server acquisition terminal, the related information between the mark of terminal and the verification information is saved, which is alternatively referred to as authorization message.The authorization message that subsequent third side's application server can use itself preservation obtains the data of terminal to network device requests.
Optionally, after third-party application server obtains the verification information for the data of third-party application server acquisition terminal, the data that the verification information obtains terminal from the network equipment be can use.Specifically include following S208 to S209:
S208, third-party application server send second message to the network equipment, and second message carries the verification information that the data of terminal are obtained for third-party application server.
Optionally, second message includes the mark of terminal and the mark of third-party application server.Second message is used to indicate the data that the request network equipment sends terminal to third-party application server.
S209, the network equipment send the data of terminal to third-party application server.
After the network equipment receives second message, the verification information that matching second message carries and the authorization message itself saved.When successful match, the network equipment determines the data that terminal allows third-party application server to obtain terminal, and the data of terminal are then sent to third-party application server.
It optionally, further include the invalid method of determining verification information in method shown in Fig. 2, verification information refers to the verification information that the data of terminal are obtained for third-party application server.After determining that verification information is invalid, third-party application server will be unable to go out to obtain the data of terminal from the network equipment by invalid verification information.Determining verification information in the embodiment of the present invention, invalid method includes following method one and method two:
Method one: if in the notification message that terminal is sent to the network equipment in S205 further include: terminal allows the time span of the data of third-party application server acquisition terminal, it is determined that the invalid method of verification information includes following S210 to S211:
S210, determine that terminal allows third-party application server at the time of obtaining the data of terminal as initial time using the network equipment, when the duration being more than time span, the network equipment determines that verification information is invalid.
For example, whether the duration is more than the time span as initial time at the time of the network equipment by setting timer, judges to determine that terminal allows the data of third-party application server acquisition terminal using the network equipment, and then determine whether the verification information is invalid.
Optionally, the network equipment deletes authorization message that itself is saved, including the invalid verification information, which includes the related information between the verification information of the mark of terminal, the mark of third-party application server and the data for third-party application server acquisition terminal.
S211, the network equipment are used to indicate the invalid notification message of verification information to the transmission of third-party application server.
Optionally, after third-party application server receives the notification message that the network equipment is sent in S211, third-party application server deletes authorization message that itself is saved, including the invalid verification information, which includes the mark of terminal and obtain the related information between the verification information of the data of terminal for third-party application server.
Method two: determining verification information, invalid method includes following S212 to S214:
S212, terminal send the notification message for being used to indicate terminal not and allowing the data that third-party application server obtains terminal to the network equipment.
S213, the network equipment determine that verification information is invalid.
After the network equipment determines that verification information is invalid, the operation of execution and the network equipment in one S210 of method determine that the operation after verification information is invalid is identical, it may be assumed that
Optionally, the network equipment deletes authorization message that itself is saved, including the invalid verification information, which includes the related information between the verification information of the mark of terminal, the mark of third-party application server and the data for third-party application server acquisition terminal.
S214, the network equipment are used to indicate the invalid notification message of verification information to the transmission of third-party application server.
Optionally, after third-party application server receives the notification message that the network equipment is sent in S211, third-party application server deletes authorization message that itself is saved, including the invalid verification information, which includes the mark of terminal and obtain the related information between the verification information of the data of terminal for third-party application server.
Below by a kind of terminal data Open control method for illustrating the present invention embodiment offer.
Illustrate one: terminal accesses third-party application server by browser, and the interaction between third-party application server and the network equipment needs to realize by the redirection mechanism of browser.As shown in figure 3, a kind of terminal data Open control method provided in an embodiment of the present invention is as follows:
S301, terminal access third-party application server by browser.
S302, third-party application server determine that third-party application server needs to obtain the data of terminal.
S303, third-party application server send first message to the network equipment by the redirection mechanism of browser, and first message allows the data of third-party application server acquisition terminal for requesting terminal.
In the application scenarios that terminal accesses third-party application server by browser, browser can be with third-party application server direct communication, browser also can be with network equipment direct communication, and mutually without the address information of preservation opposite end between third-party application server and the network equipment, it can not direct communication between third-party application server and the network equipment.The redirection mechanism of browser refers to, when any end sends message to opposite end in third-party application server and the network equipment, needs that message is forwarded to realize communication by browser.
S304, the network equipment send the request message of the data for requesting instruction terminal third-party application server whether is allowed to obtain terminal to terminal.
S305, terminal send the notification message for being used to indicate the data that terminal allows third-party server to obtain terminal to the network equipment.
Optionally, which further includes the time span that terminal allows the data of third-party application server acquisition terminal.
S306, the network equipment determine the verification information that the data of terminal are obtained for third-party application server.
In the application scenarios that terminal accesses third-party application server by browser, network equipments configuration obtains the verification information of the data of terminal for third-party application server.
S307, the network equipment will be used for the verification information of the data of third-party application server acquisition terminal, be sent to third-party application server by the redirection mechanism of browser.
Optionally, after third-party application server obtains the verification information for the data of third-party application server acquisition terminal, the data that the verification information obtains terminal from the network equipment be can use.Specifically include following S308 to S309:
S308, third-party application server send second message to the network equipment by the redirection mechanism of browser, and second message carries the verification information that the data of terminal are obtained for third-party application server.
S309, the network equipment send the data of terminal by the redirection mechanism of browser to third-party application server.
It optionally, further include the invalid method of determining verification information in method shown in Fig. 3, verification information refers to the verification information that the data of terminal are obtained for third-party application server.After determining that verification information is invalid, third-party application server will be unable to go out to obtain the data of terminal from the network equipment by invalid verification information.Determine that the invalid method of verification information is similar with the invalid method of verification information determining in Fig. 2 in Fig. 3, difference is, the communication in Fig. 3 between third-party application server and network side equipment needs to realize by browser redirection mechanism.It is repeated no more in Fig. 3.
Illustrating the method that determining verification information is invalid in one includes following method one and method two:
Method one: if in the notification message that terminal is sent to the network equipment in S305 further include: terminal allow third-party application server obtain terminal data time span, it is determined that the invalid method of verification information includes the following:
As initial time at the time of determining that terminal allows the data of third-party application server acquisition terminal using the network equipment, when the duration being more than time span, the network equipment determines that verification information is invalid.
Optionally, the network equipment deletes authorization message that itself is saved, including the invalid verification information, The authorization message includes the related information between the verification information of the mark of terminal, the mark of third-party application server and the data for third-party application server acquisition terminal.
The network equipment is used to indicate the invalid notification message of verification information to the transmission of third-party application server by the redirection mechanism of browser.
Optionally, after third-party application server receives the invalid notification message of instruction verification information of network equipment transmission, third-party application server deletes authorization message that itself is saved, including the invalid verification information, which includes the mark of terminal and obtain the related information between the verification information of the data of terminal for third-party application server.
Method two: terminal sends the notification message for being used to indicate terminal not and allowing the data that third-party application server obtains terminal to the network equipment.
Optionally, after the network equipment determines that verification information is invalid, authorization message that itself is saved, including the invalid verification information is deleted, which includes the related information between the verification information of the mark of terminal, the mark of third-party application server and the data for third-party application server acquisition terminal.
After the network equipment determines that verification information is invalid, the network equipment is used to indicate the invalid notification message of verification information to the transmission of third-party application server by the redirection mechanism of browser.
Optionally, third-party application server receive the network equipment transmission be used to indicate the invalid notification message of verification information after, third-party application server deletes authorization message that itself is saved, including the invalid verification information, which includes the mark of terminal and obtain the related information between the verification information of the data of terminal for third-party application server.
It illustrates two: third-party application being installed, terminal accesses third-party application server by the third-party application of installation, and is equipped with the SDK of the network equipment in terminal in terminal.In this application scenarios, terminal generates the verification information that the data of terminal are obtained for third-party application server, which is sent to the network equipment by terminal.As shown in figure 4, a kind of terminal data Open control method provided in an embodiment of the present invention is as follows:
S401, terminal access third-party application server by the third-party application of installation.
S402, third-party application server determine that third-party application server needs to obtain the data of terminal.
S403, third-party application server send first message to the network equipment, and first message allows the data of third-party application server acquisition terminal for requesting terminal.
S404, the network equipment send the request message of the data for requesting instruction terminal third-party application server whether is allowed to obtain terminal to terminal.
S405, terminal send the notification message for being used to indicate the data that terminal allows third-party server to obtain terminal to the network equipment, which carries the verification information that the data of terminal are obtained for third-party application server.
Optionally, which further includes the time span that terminal allows the data of third-party application server acquisition terminal.
S406, the network equipment save the verification information that the data of terminal are obtained for third-party application server.
The verification information for being used for the data that third-party application server obtains terminal is sent to third-party application server by S407, the network equipment.
Optionally, after third-party application server obtains the verification information for the data of third-party application server acquisition terminal, the data that the verification information obtains terminal from the network equipment be can use.Specifically include following S408 to S409:
S408, third-party application server send second message to the network equipment, and second message carries the verification information that the data of terminal are obtained for third-party application server.
S409, the network equipment send the data of terminal to third-party application server.
Optionally, further include the invalid method of determining verification information in method shown in Fig. 4, determine that the invalid method of verification information is identical as the invalid method of verification information determining in Fig. 2 in Fig. 4, details are not described herein again.
It illustrates three: third-party application being installed, terminal accesses third-party application server by the third-party application of installation, but is fitted without the SDK of the network equipment in terminal in terminal.In this application scenarios, the verification information that the data of terminal are obtained for third-party application server is generated by the network equipment.As shown in figure 5, a kind of terminal data Open control method provided in an embodiment of the present invention is as follows:
S501, terminal access third-party application server by the third-party application of installation.
S502, third-party application server determine that third-party application server needs to obtain the data of terminal.
S503, third-party application server send first message to the network equipment, and first message is for requesting Terminal allows the data of third-party application server acquisition terminal.
S504, the network equipment send the request message of the data for requesting instruction terminal third-party application server whether is allowed to obtain terminal to terminal.
S505, terminal send the notification message for being used to indicate the data that terminal allows third-party server to obtain terminal to the network equipment.
Optionally, which further includes the time span that terminal allows the data of third-party application server acquisition terminal.
S506, the network equipment generate the verification information that the data of terminal are obtained for third-party application server.
The verification information for being used for the data that third-party application server obtains terminal is sent to third-party application server by S507, the network equipment.
Optionally, after third-party application server obtains the verification information for the data of third-party application server acquisition terminal, the data that the verification information obtains terminal from the network equipment be can use.Specifically include following S508 to S509:
S508, third-party application server send second message to the network equipment, and second message carries the verification information that the data of terminal are obtained for third-party application server.
S509, the network equipment send the data of terminal to third-party application server.
Optionally, further include the invalid method of determining verification information in method shown in fig. 5, determine that the invalid method of verification information is identical as the invalid method of verification information determining in Fig. 2 in Fig. 5, details are not described herein again.
In the technical solution provided in the embodiment of the present invention, when third-party application server needs to obtain the private data of terminal, the network equipment provides the private data of terminal after obtaining terminal permission for third-party application server, and then is the private data of the open terminal of third-party application server with realizing MBB network security.Simultaneously, when third-party application server being avoided to need to obtain the private data of terminal, third-party application server needs to respectively obtain the permission of the network equipment and the permission of terminal, and the middle technical solution provided can reduce the complexity of process when the network equipment provides the private data of terminal for third-party application server through the embodiment of the present invention.
Based on above embodiments, the embodiment of the invention also provides a kind of network equipment, which can be using the corresponding method of the network equipment in the corresponding embodiment offer of Fig. 2, as shown in fig.6, the network Equipment 600 includes: receiving unit 601, processing unit 602 and transmission unit 603.
Receiving unit 601, for receiving the first message of third-party application server transmission, first message allows the data of third-party application server acquisition terminal for requesting terminal;
Processing unit 602, the data for allowing third-party application server to obtain terminal for determining terminal;Determine the verification information that the data of terminal are obtained for third-party application server;
Transmission unit 603, the verification information for determining processing unit 602 are sent to third-party application server.
Optionally, when processing unit 602 determines the verification information for the data for obtaining terminal for third-party application server, it is specifically used for:
It is configured to the verification information that third-party application server obtains the data of terminal;Or
Receiving unit 601 is also used to: receiving the verification information for the data that terminal is obtained for third-party application server that terminal is sent;
When processing unit 602 determines the verification information for the data for obtaining terminal for third-party application server, it is specifically used for:
The received verification information of receiving unit 601 is determined as to be used for the verification information for the data that third-party application server obtains terminal.
Optionally, receiving unit 601 is also used to:
The second message that third-party application server is sent is received, second message carries verification information;
Transmission unit 603 is also used to:
The data of terminal are sent to third-party application server.
Optionally, it after processing unit 602 determines the data that terminal allows third-party application server to obtain terminal, is also used to:
Determine the time span for the data that terminal allows third-party application server to obtain terminal;
As initial time at the time of determining that terminal allows the data of third-party application server acquisition terminal using processing unit 602, when the duration being more than time span, determine that verification information is invalid;
Transmission unit 603 is also used to:
The invalid notification message of verification information is used to indicate to the transmission of third-party application server.
Optionally, it after processing unit 602 determines the data that terminal allows third-party application server to obtain terminal, is also used to:
When determining terminal not allows third-party application server to obtain the data of terminal, determine that verification information is invalid;
Transmission unit 603 is also used to:
The invalid notification message of verification information is used to indicate to the transmission of third-party application server.
Optionally, the data of terminal include the private data of terminal.
Based on above embodiments, the embodiment of the invention also provides a kind of third-party application servers, the third-party application server can be using the corresponding method of third-party application server in the corresponding embodiment offer of Fig. 2, as shown in fig.7, the third-party application server 700 includes: transmission unit 701, receiving unit 702 and processing unit 703.
Transmission unit 701, for sending first message to the network equipment, first message allows the data of third-party application server acquisition terminal for requesting terminal;
Receiving unit 702, for receiving the verification information of network equipment transmission, verification information obtains the data of terminal for third-party application server.
Optionally, further includes:
Processing unit 703, for by terminal access third-party application server, determining that third-party application server needs to obtain the data of terminal before transmission unit 701 sends first message to the network equipment.
Optionally, transmission unit 701 is also used to:
After the verification information that receiving unit 702 receives that the network equipment is sent, second message is sent to the network equipment, second message carries verification information;
Receiving unit 702 is also used to:
Receive the data for the terminal that the network equipment is sent.
Optionally, receiving unit 702 is also used to:
After receiving the verification information that the network equipment is sent, receive network equipment transmission is used to indicate the invalid notification message of verification information.
Optionally, the data of terminal include the private data of terminal.
Based on above embodiments, the embodiment of the invention also provides a kind of terminal, which can be using the corresponding method of terminal in the corresponding embodiment offer of Fig. 2, as shown in fig.8, the terminal 800 includes: processing unit 801 and transmission unit 802.
Processing unit 801, the data for allowing third-party application server to obtain terminal for determining terminal;
Transmission unit 802, for sending the notification message for being used to indicate the data that terminal allows third-party server to obtain terminal to the network equipment.
Optionally, transmission unit 802 is also used to:
The verification information for being used for the data that third-party application server obtains terminal is sent to the network equipment.
Optionally, transmission unit 802 is also used to:
The time span for the data that terminal allows third-party application server to obtain terminal is sent to the network equipment.
Optionally, transmission unit 802 is also used to:
After sending to the network equipment and being used to indicate the notification message for the data that terminal allows third-party server to obtain terminal, the notification message for being used to indicate terminal not and allowing the data that third-party application server obtains terminal is sent to the network equipment.
Optionally, the data of terminal include the private data of terminal.
Based on above embodiments, the embodiment of the invention also provides a kind of terminal data open control systems, as shown in fig.9, the terminal data open control system 900 includes: the network equipment 901, third-party application server 902 and terminal 903.Wherein, the network equipment 901 can be equipment identical with the network equipment shown in fig. 6, and third-party application server 902 can be equipment identical with third-party application server shown in Fig. 7, and terminal 903 can be equipment identical with terminal shown in Fig. 8.
It should be noted that being schematically that only a kind of logical function partition, there may be another division manner in actual implementation to the division of unit in the embodiment of the present invention.In addition, each functional unit in each embodiment of the application can integrate in one processing unit, it is also possible to each unit and physically exists alone, can also be integrated in one unit with two or more units.Above-mentioned integrated unit both can take the form of hardware realization, can also realize in the form of software functional units.
If integrated unit is realized in the form of SFU software functional unit and sells or make as independent product Used time can store in a computer readable storage medium.Based on this understanding, substantially all or part of the part that contributes to existing technology or the technical solution can be embodied in the form of software products the technical solution of the application in other words, the computer software product is stored in a storage medium, it uses including some instructions so that a computer equipment (can be personal computer, server or the network equipment etc.) or processor (processor) execute each embodiment method of the application all or part of the steps.And storage medium above-mentioned includes: USB flash disk, mobile hard disk, read-only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), the various media that can store program code such as magnetic or disk.
Based on above embodiments, the embodiment of the invention also provides a kind of network equipment, which can be used the corresponding method of the network equipment in the corresponding embodiment of Fig. 2, can be equipment identical with the network equipment shown in fig. 6.As shown in fig.10, the network equipment 1000 includes: receiver 1001, processor 1002, transmitter 1003, bus 1004 and memory 1005, in which:
Receiving unit 601 in 1001 corresponding diagram 6 of receiver, the processing unit 602 in 1002 corresponding diagram 6 of processor, the transmission unit 603 in 1003 corresponding diagram 6 of transmitter.The network equipment 1000 further includes memory 1005, for storing program etc..Specifically, program may include program code, which includes computer operation instruction.Memory 1005 may include random access memory (random access memory, RAM), it is also possible to further include nonvolatile memory (non-volatile memory), for example, at least a magnetic disk storage.Processor 1002 executes the application program that memory 1005 is stored, and realizes terminal data Open control method as above.
Receiver 1001, processor 1002, transmitter 1003 and memory 1005 are connected with each other by bus 1004;Bus 1004 can be Peripheral Component Interconnect standard (peripheral component interconnect, abbreviation PCI) bus or expanding the industrial standard structure (extended industry standard architecture, abbreviation EISA) bus etc..Bus can be divided into address bus, data/address bus, control bus etc..Only to be indicated with a thick line in Figure 10, it is not intended that an only bus or a type of bus convenient for indicating.
Based on above embodiments, the embodiment of the invention also provides a kind of third-party application server, which can be used the corresponding method of third-party application server in the corresponding embodiment of Fig. 2, It can be equipment identical with third-party application server shown in Fig. 7.Refering to fig. 1 shown in 1, which includes: transmitter 1101, receiver 1102, processor 1103, bus 1104 and memory 1105, in which:
Transmission unit 701 in 1101 corresponding diagram 7 of transmitter, the receiving unit 702 in 1102 corresponding diagram 7 of receiver, the processing unit 703 in 1103 corresponding diagram 7 of processor.The third-party application server 1100 further includes memory 1105, for storing program etc..Specifically, program may include program code, which includes computer operation instruction.Memory 1105 may include RAM, it is also possible to and it further include nonvolatile memory, a for example, at least magnetic disk storage.Processor 1103 executes the application program that memory 1105 is stored, and realizes terminal data Open control method as above.
Transmitter 1101, receiver 1102, processor 1103 and memory 1105 are connected with each other by bus 1104;Bus 1104 can be pci bus or eisa bus etc..Bus can be divided into address bus, data/address bus, control bus etc..Only to be indicated with a thick line in Figure 11, it is not intended that an only bus or a type of bus convenient for indicating.
Based on above embodiments, the embodiment of the invention also provides a kind of terminal, which can be used the corresponding method of terminal in the corresponding embodiment of Fig. 2, can be equipment identical with terminal shown in Fig. 8.Refering to fig. 1 shown in 2, which includes: processor 1201, transmitter 1202, receiver 1203, bus 1204 and memory 1205, in which:
Processing unit 801 in 1201 corresponding diagram 8 of processor, the transmission unit 802 in 1202 corresponding diagram 8 of transmitter.The terminal 1200 further includes receiver 1203, the message for being sent to terminal 1200 for receiving other equipment.The terminal 1200 further includes memory 1205, for storing program etc..Specifically, program may include program code, which includes computer operation instruction.Memory 1205 may include RAM, it is also possible to and it further include nonvolatile memory, a for example, at least magnetic disk storage.Processor 1201 executes the application program that memory 1205 is stored, and realizes terminal data Open control method as above.
Processor 1201, transmitter 1202, receiver 1203 and memory 1205 are connected with each other by bus 1204;Bus 1204 can be pci bus or eisa bus etc..Bus can be divided into address bus, data/address bus, control bus etc..Only to be indicated with a thick line in Figure 12, it is not intended that an only bus or a type of bus convenient for indicating.
Although preferred embodiments of the present invention have been described, once a person skilled in the art knows basic creative concepts, then additional changes and modifications may be made to these embodiments.So it includes preferred embodiment and all change and modification for falling into the scope of the invention that the following claims are intended to be interpreted as.
Obviously, those skilled in the art can carry out various modification and variations without departing from the spirit and scope of the embodiment of the present invention to the embodiment of the present invention.If then the present invention is also intended to include these modifications and variations in this way, these modifications and variations of the embodiment of the present invention are within the scope of the claims of the present invention and its equivalent technology.

Claims (33)

  1. A kind of terminal data Open control method characterized by comprising
    The network equipment receives the first message that third-party application server is sent, and the first message is used for the data that requesting terminal allows the third-party application server to obtain the terminal;
    The network equipment determines the data that the terminal allows the third-party application server to obtain the terminal;
    The network equipment determines the verification information that the data of the terminal are obtained for the third-party application server, and the verification information is sent to the third-party application server.
  2. The method as described in claim 1, which is characterized in that the network equipment determines the verification information that the data of the terminal are obtained for the third-party application server, comprising:
    The network equipments configuration obtains the verification information of the data of the terminal for the third-party application server;Or
    The network equipment receives the verification information for the data that the terminal is obtained for the third-party application server that the terminal is sent.
  3. It is method according to claim 1 or 2, which is characterized in that the verification information is sent to after the third-party application server by the network equipment, further includes:
    The network equipment receives the second message that the third-party application server is sent, and the second message carries the verification information;
    The network equipment sends the data of the terminal to the third-party application server.
  4. Method as described in claims 1 to 3 is any, which is characterized in that the network equipment determines after the data that the terminal allows the third-party application server to obtain the terminal, further includes:
    The network equipment determines the time span for the data that the terminal allows the third-party application server to obtain the terminal;
    Using the network equipment determine the terminal at the time of allowing the third-party application server to obtain the data of the terminal as initial time, when the duration being more than the time span, the network equipment determines that the verification information is invalid;And
    The invalid notification message of the verification information is used to indicate to third-party application server transmission.
  5. Method as described in claims 1 to 3 is any, which is characterized in that the network equipment determines after the data that the terminal allows the third-party application server to obtain the terminal, further includes:
    When the network equipment determines the terminal not the third-party application server is allowed to obtain the data of the terminal, the network equipment determines that the verification information is invalid;And
    The invalid notification message of the verification information is used to indicate to third-party application server transmission.
  6. Method as claimed in claim 1 to 5, which is characterized in that the data of the terminal include the private data of the terminal.
  7. A kind of terminal data Open control method characterized by comprising
    Third-party application server sends first message to the network equipment, and the first message is used for the data that requesting terminal allows the third-party application server to obtain the terminal;
    The third-party application server receives the verification information that the network equipment is sent, and the verification information obtains the data of the terminal for the third-party application server.
  8. The method of claim 7, which is characterized in that third-party application server is sent to the network equipment before first message, further includes:
    The third-party application server determines that the third-party application server needs to obtain the data of the terminal by third-party application server described in the terminal access.
  9. Method as claimed in claim 7 or 8, which is characterized in that the third-party application server receives after the verification information that the network equipment is sent, further includes:
    The third-party application server sends second message to the network equipment, and the second message carries the verification information;
    The third-party application server receives the data for the terminal that the network equipment is sent.
  10. Method as described in claim 7 to 9 is any, which is characterized in that the third-party application server receives after the verification information that the network equipment is sent, further includes:
    What the third-party application server received that the network equipment sends is used to indicate the invalid notification message of the verification information.
  11. Method the method according to any one of claims 7 to 10, which is characterized in that the data of the terminal Private data including the terminal.
  12. A kind of terminal data Open control method characterized by comprising
    Terminal determines the data for allowing third-party application server to obtain the terminal;
    The terminal sends the notification message for being used to indicate the data that the terminal allows the third-party server to obtain the terminal to the network equipment.
  13. Method as claimed in claim 12, which is characterized in that terminal determines after the data for allowing third-party application server to obtain the terminal, further includes:
    The verification information for being used for the data that the third-party application server obtains the terminal is sent to the network equipment by the terminal.
  14. Method as described in claim 12 or 13, which is characterized in that terminal determines after the data for allowing third-party application server to obtain the terminal, further includes:
    The time span for the data that the terminal allows the third-party application server to obtain the terminal is sent to the network equipment by the terminal.
  15. Method as described in claim 12 to 14 is any, which is characterized in that the terminal is used to indicate after the notification message for the data that the terminal allows the third-party server to obtain the terminal to network equipment transmission, further includes:
    The terminal sends the notification message for being used to indicate the terminal not and allowing the data that the third-party application server obtains the terminal to the network equipment.
  16. Method as described in claim 12 to 15 is any, which is characterized in that the data of the terminal include the private data of the terminal.
  17. A kind of network equipment characterized by comprising
    Receiving unit, for receiving the first message of third-party application server transmission, the first message is used for the data that requesting terminal allows the third-party application server to obtain the terminal;
    Processing unit, the data for allowing the third-party application server to obtain the terminal for determining the terminal;Determine the verification information that the data of the terminal are obtained for the third-party application server;
    Transmission unit, the verification information for determining the processing unit are sent to the third-party application server.
  18. The network equipment as claimed in claim 17, which is characterized in that when the processing unit determines the verification information for the data for obtaining the terminal for the third-party application server, be specifically used for:
    It is configured to the verification information that the third-party application server obtains the data of the terminal;Or
    The receiving unit is also used to: receiving the verification information for the data that the terminal is obtained for the third-party application server that the terminal is sent;
    When the processing unit determines the verification information for the data for obtaining the terminal for the third-party application server, it is specifically used for:
    The received verification information of the receiving unit is determined as to be used for the verification information for the data that the third-party application server obtains the terminal.
  19. The network equipment as described in claim 17 or 18, which is characterized in that the receiving unit is also used to:
    The second message that the third-party application server is sent is received, the second message carries the verification information;
    The transmission unit is also used to:
    The data of the terminal are sent to the third-party application server.
  20. The network equipment as described in claim 17 to 19 is any, which is characterized in that after the processing unit determines the data that the terminal allows the third-party application server to obtain the terminal, be also used to:
    Determine the time span for the data that the terminal allows the third-party application server to obtain the terminal;
    Determine that the terminal, as initial time, when the duration being more than the time span, determines that the verification information is invalid at the time of allowing the third-party application server to obtain the data of the terminal using the processing unit;
    The transmission unit is also used to:
    The invalid notification message of the verification information is used to indicate to third-party application server transmission.
  21. The network equipment as described in claim 17 to 19 is any, which is characterized in that after the processing unit determines the data that the terminal allows the third-party application server to obtain the terminal, also For:
    When determining the terminal not allows the third-party application server to obtain the data of the terminal, determine that the verification information is invalid;
    The transmission unit is also used to:
    The invalid notification message of the verification information is used to indicate to third-party application server transmission.
  22. The network equipment as described in claim 17 to 21 is any, which is characterized in that the data of the terminal include the private data of the terminal.
  23. A kind of third-party application server characterized by comprising
    Transmission unit, for sending first message to the network equipment, the first message is used for the data that requesting terminal allows the third-party application server to obtain the terminal;
    Receiving unit, the verification information sent for receiving the network equipment, the verification information obtain the data of the terminal for the third-party application server.
  24. Third-party application server as claimed in claim 23, which is characterized in that further include:
    Processing unit, for by third-party application server described in the terminal access, determining that the third-party application server needs to obtain the data of the terminal before the transmission unit sends first message to the network equipment.
  25. Third-party application server as described in claim 23 or 24, which is characterized in that the transmission unit is also used to:
    After the verification information that the receiving unit receives that the network equipment is sent, the Xiang Suoshu network equipment sends second message, and the second message carries the verification information;
    The receiving unit is also used to:
    Receive the data for the terminal that the network equipment is sent.
  26. Third-party application server as described in claim 23 to 25 is any, which is characterized in that the receiving unit is also used to:
    After receiving the verification information that the network equipment is sent, receive the network equipment transmission is used to indicate the invalid notification message of the verification information.
  27. Third-party application server as described in claim 23 to 26 is any, which is characterized in that The data of the terminal include the private data of the terminal.
  28. A kind of terminal characterized by comprising
    Processing unit, the data for allowing third-party application server to obtain the terminal for determining the terminal;
    Transmission unit, for sending the notification message for being used to indicate the data that the terminal allows the third-party server to obtain the terminal to the network equipment.
  29. Terminal as claimed in claim 28, which is characterized in that the transmission unit is also used to:
    The verification information for being used for the data that the third-party application server obtains the terminal is sent to the network equipment.
  30. Terminal as described in claim 28 or 29, which is characterized in that the transmission unit is also used to:
    The time span for the data that the terminal allows the third-party application server to obtain the terminal is sent to the network equipment.
  31. Terminal as described in claim 28 to 30 is any, which is characterized in that the transmission unit is also used to:
    After being used to indicate the notification message for the data that the terminal allows the third-party server to obtain the terminal to network equipment transmission, the Xiang Suoshu network equipment sends the notification message for being used to indicate the terminal not and allowing the data that the third-party application server obtains the terminal.
  32. Terminal as described in claim 28 to 31 is any, which is characterized in that the data of the terminal include the private data of the terminal.
  33. A kind of terminal data open control system, which is characterized in that including the network equipment, third-party application server and terminal, wherein
    The network equipment includes any network equipment of claim 17 to 22;
    The third-party application server includes any third-party application server of claim 23 to 27;
    The terminal includes any terminal of claim 28 to 32.
CN201680010626.8A 2016-01-29 2016-01-29 Terminal data opening control method and system Active CN107251506B (en)

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2016/072780 WO2017128293A1 (en) 2016-01-29 2016-01-29 Method and system for controlling terminal data opening

Publications (2)

Publication Number Publication Date
CN107251506A true CN107251506A (en) 2017-10-13
CN107251506B CN107251506B (en) 2020-08-25

Family

ID=59397223

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201680010626.8A Active CN107251506B (en) 2016-01-29 2016-01-29 Terminal data opening control method and system

Country Status (2)

Country Link
CN (1) CN107251506B (en)
WO (1) WO2017128293A1 (en)

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120117626A1 (en) * 2010-11-10 2012-05-10 International Business Machines Corporation Business pre-permissioning in delegated third party authorization
CN102946396A (en) * 2012-11-26 2013-02-27 北京奇虎科技有限公司 User agent device, host web server and user authentication method
CN103347002A (en) * 2013-06-13 2013-10-09 百度在线网络技术(北京)有限公司 Method, system and device for socialized login
CN103401686A (en) * 2013-07-31 2013-11-20 陕西海基业高科技实业有限公司 User Internet identity authentication system and application method thereof
US20130314542A1 (en) * 2006-05-15 2013-11-28 Cernium Corporation Automated, remotely-verified alarm system with intrusion and video surveillance and digital video recording
CN104038541A (en) * 2014-06-03 2014-09-10 北京天泰北斗科技有限公司 Personal data information sharing system and personal data information sharing method capable of limiting time length
CN104486726A (en) * 2014-12-18 2015-04-01 东南大学 Road network environment location generalization method for protecting prospective location privacy of user

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101309439B (en) * 2007-05-16 2012-06-20 华为技术有限公司 Transmission method of fusion message capability center and fusion message service
US8474017B2 (en) * 2010-07-23 2013-06-25 Verizon Patent And Licensing Inc. Identity management and single sign-on in a heterogeneous composite service scenario

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20130314542A1 (en) * 2006-05-15 2013-11-28 Cernium Corporation Automated, remotely-verified alarm system with intrusion and video surveillance and digital video recording
US20120117626A1 (en) * 2010-11-10 2012-05-10 International Business Machines Corporation Business pre-permissioning in delegated third party authorization
CN102946396A (en) * 2012-11-26 2013-02-27 北京奇虎科技有限公司 User agent device, host web server and user authentication method
CN103347002A (en) * 2013-06-13 2013-10-09 百度在线网络技术(北京)有限公司 Method, system and device for socialized login
CN103401686A (en) * 2013-07-31 2013-11-20 陕西海基业高科技实业有限公司 User Internet identity authentication system and application method thereof
CN104038541A (en) * 2014-06-03 2014-09-10 北京天泰北斗科技有限公司 Personal data information sharing system and personal data information sharing method capable of limiting time length
CN104486726A (en) * 2014-12-18 2015-04-01 东南大学 Road network environment location generalization method for protecting prospective location privacy of user

Also Published As

Publication number Publication date
CN107251506B (en) 2020-08-25
WO2017128293A1 (en) 2017-08-03

Similar Documents

Publication Publication Date Title
CN110611723B (en) Scheduling method and device of service resources
CN109428773B (en) Communication method and device
WO2021159959A1 (en) Positioning information processing method and apparatus, and storage medium
CN113115331B (en) Control method and communication device
CN109155994A (en) A kind of user face method for managing resource, user's veil member and control plane network element
US20170161115A1 (en) Sharing Method for Hardware Communication Apparatus and Terminal
CN104462033A (en) Method and device for realizing editing operation among devices
US11709900B2 (en) Automated web page accessing
CN114902717A (en) WLAN perception measurement method and device, electronic equipment and storage medium
CN109560953A (en) Method, the terminal and server of connection profile Content Management Platform
CN102025730B (en) Data transmission device based on HTTP protocol and implementation method thereof
CN107592361B (en) Data transmission method, device and equipment based on dual IB network
CN107251506A (en) Terminal data Open control method and system
CN115801299B (en) Meta universe identity authentication method, device, equipment and storage medium
CN105577621B (en) Business operation verification method, device and system
EP3293924B1 (en) Message processing method and device
CN109246232A (en) Data transmission method, system and device
CN112491559B (en) Identity verification method and device
CN111480319B (en) Throughput testing
CN110557750B (en) Information transmission method, gateway device, core network device, and storage medium
CN110754076B (en) Method and device for determining brushing amount terminal
CN102318376A (en) Method of and system for implementing privacy control
CN107040581B (en) Network packet sending method, device, server and system
US20170171349A1 (en) Method, Device and System for Transmitting Data
CN114172738B (en) DDoS attack resisting method and device based on intelligent security box and intelligent security box

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant