A kind of mobile communication Personnel Authentication Identification System based on edge calculations
Technical field
The present invention relates to mobile communication fields, in particular to a kind of mobile communication personnel's body based on edge calculations
Part identifying system.
Background technique
Mobile edge calculations (Mobile Edge Computing, MEC), broadly refer to close to data source header or
The side of person's terminal, the open platform being integrated using network, calculating, storage, application core ability provide most proximal end clothes nearby
Business.Its core concept is by introducing script business platform function on mobile base station, so that service application can be with rapid deployment
At mobile network edge.
In security protection and public safety field, due to the identity attribute difference of personnel, front end identity information acquisition equipment meeting
A large amount of identity information data is generated in real time, is extracted and is analyzed if data to be all transferred to backstage in real time, it will certainly
A large amount of real-time bandwidth is occupied, the time-consuming and calculation amount that may result in data analysis result processing increase, and eventually lead to most
Lifelong part analyses and comparison result and alarm message lag.
Summary of the invention
The purpose of the present invention is to provide a kind of mobile communication Personnel Authentication Identification System based on edge calculations, including body
Part data obtaining module, edge calculations and analysis memory module, data distribution are packaged transmission module, terminal behavior control module,
Data reporting module and alarm report module, the identity information acquisition module are responsible for identity information and are obtained, and incident record is wireless
Link-quality, power rating, Power Processing surplus, terminal processing capacity, acquisition time;Edge calculations and analysis memory module,
It is mainly responsible for access subscriber identity information and attribute in internal system, and carries out data analysis according to storage inside data, according to
Sorting algorithm exports simultaneously adaptive updates data storage after calculated result;Data distribution is packaged transmission module, is mainly responsible for identity
The packing of information shunts the transmission queue of packaged data to different priorities according to different priorities attribute;Terminal behavior control
Module, being mainly responsible for release, perhaps control terminal selects different release mode or reality according to terminal identity categorical attribute
Apply monitor terminal;Data reporting module, the identity data for being mainly responsible for genealogical classification upload to distant client server;In alarm
Module is reported, reporting for the warning information after meeting identification matching is mainly responsible for, reminds background server priority processing;Black and white
List manages module, is mainly responsible for black, white list importing and storage;
The mobile communication Personnel Authentication Identification System Internal processing steps are as follows:
Step 1: identity information obtains, and the acquisition this refers to base station to terminal identity information refers to that the base station 2/3/4G can be obtained
The terminal access information got, including it is not limited to IMSI, IMEI, SNR, RSSI, terminal capability, CQI;
Step 2: edge calculations and analysis memory module are in the identity information for receiving acquisition module and sending, and following point of starting
Analyse calculating process:
(1) it compares, retrieves this identity information whether in black and white lists database:
If 1) notification data shunts packing transmission module and is independently packaged in blacklist, it is labeled as control personnel identity,
Into urgent queue, alarm module is notified, report control personnel identity information matches alarm;
If 2) notification data shunts packing transmission module and is independently packaged in white list, it is labeled as daily personnel, data
It is independent to be packaged, into postponement queue;
3) if in the non-both the above list of identity information, notification data shunts packing transmission module and is independently packaged, it is labeled as
Mobile personnel, into regular queue, while identity data backup enters routine data library;
(2) it analyzes, retrieval calculates whether can be assumed that be identifying system resident personnel nearby, differentiate that establishment condition has:
1) N1 days continuous in routine data library on the basis of currently obtaining the moment, such as N1 >=7, the number of appearance is big
In 5;
2) on the basis of currently obtaining the moment, there is 1 time in each hour period in past one day, i.e., the 1 small period
It counts and is greater than N2, such as N2 >=10, i.e. the number that 24 periods occur is greater than 10 times;
3) it on the basis of currently obtaining the moment, in 24 hour period of past, is refused in continuous 1 minute using cause specific value
It repeats absolutely to be more than or equal to 5 into the number of identifying system after release, each hour of identifying system executes a cause specific and refuse
Exhausted cause value refuses terminal;
4) one day acquisition identity number is more than or equal to N3 times, and N3 times number is thresholding, can be set;
5) it is consistent with the IMEI of memory attaching in past data library to retrieve the subsidiary IMEI of current identity information;
6) the SNR mean value error for retrieving current identity information subsidiary SNR and the memory attaching in past data library is small
In 2%;
7) the RSSI mean value error of current identity information subsidiary RSSI and the memory attaching in past data library is retrieved
Less than 5%;
8) the CQI mean value error for retrieving current identity information subsidiary CQI and the memory attaching in past data library is small
In 1%;
9) it is consistent with the memory attaching in past data library to retrieve the subsidiary terminal capability of current identity information;
The above judgment condition 9 meet any 6, then edge calculations module can regard as resident personnel, notify black and white
List manages module and updates white list database;
(3) identity information that update judgement is calculated as resident personnel enters white list database;
Step 3: data distribution, which is packaged transmission module and receives edge calculations and analyze the identity that memory module is sent, sorts out letter
Breath, carries out packing transmission according to different transmission properties:
(4) data in urgent queue are packaged and notification data transmission module immediately immediately;
(5) data in regular queue generate the data packet that time-sequencing transmits this data queue by packet.
(6) data timing postponed in queue is packaged, not timed out in data packing timer, temporal data;
Step 4: terminal behavior manages module and identifies that the release for completing terminal, the selection of white list are reset in identity information
To be released back into carrier network or receive access offer service;Blacklisted terminals do not discharge, and maintain sucking or positioning operation.
Step 5: data reporting module, the identity data of genealogical classification upload to distant client server, in which:
(4) data in urgent queue are transferred to backstage immediately, if it exists network problem unsuccessful transmission, then retransmit preferential
Grade is also highest;
(5) data in regular queue generate the time by packet when urgent queue and retransmission queue do not have data transmission
The data packet of this data queue of ranking transmissions;
(6) postpone the data priority in queue near rear, there is no data in urgent queue, retransmission queue, regular queue
When transmission, periodically attempt to transmit this data packet;
Step 6: alarm report module receives edge calculations and analyzes the blacklist alarm instruction that memory module is sent and generates
Warning information is reported to backstage by managing network;
Step 7: black and white lists manage the newly-increased or deletion name that module is sent according to edge calculations and analysis memory module
It is single to update white list database.
Preferably, the blacklist refers to that the identity information by the personnel that previously known needs are managed inputs black name in advance
Single database access, there are two types of modes here for white list, and one is the known staff's identity informations of realization, can pass through in advance
The mode that data import is stored;Another is the identification attribute letter obtained by internal edge computation analysis module
Breath periodically updates and white list database is added.
Preferably, identity information acquisition module refers to acquisition of the data acquisition base station to communication terminal identity information, should
Understand, data acquisition base station not only includes traditional hot spot type acquisition base station, further includes honeycomb, gateway type acquisition base station, base station system
Formula includes 4G/3G/2G or combination standard acquisition.
Preferably, the packing time interval is settable, and such as 15 minutes, 30 minutes.
Compared with prior art, the beneficial effects of the present invention are: this system can for the terminal user around system into
Row major class is distinguished, and radio link quality when according to the identity information of acquisition and communication, power rating, processing surplus, on
The parameters such as row signal strength are calculated, and are distinguished and are sorted out user, and guiding terminal behavior makes it rapidly return back to transport after leaving system
Quotient's network is sought, user experience is improved.In application process, it overcomes to certain for a long time in the use that arrangement adjacent resides permanently or is detained
The upper speech communication at family influences, and improves user's perception.
Detailed description of the invention
Fig. 1 is the overall structure diagram of mobile communication Personnel Authentication Identification System;
Fig. 2 is logical construction schematic diagram inside and outside edge calculations system;
Fig. 3 is that black and white lists manage inside and outside logical construction schematic diagram;
Fig. 4 is that data distribution is packaged flow logic schematic diagram;
Fig. 5 is terminal behavior control logic structural schematic diagram.
Specific embodiment
In order to make the objectives, technical solutions, and advantages of the present invention clearer, below in conjunction with specific embodiment, to this
Invention is further elaborated.It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, not
For limiting the present invention.
Embodiment 1
A kind of mobile communication Personnel Authentication Identification System based on edge calculations, including identity information acquisition module, edge
Calculate and analysis memory module, data distribution be packaged transmission module, terminal behavior control module, data reporting module and alarm on
Module is reported, the identity information acquisition module is responsible for identity information and is obtained, incident record radio link quality, power rating, function
Rate handles surplus, terminal processing capacity, acquisition time;Edge calculations and analysis memory module, are mainly responsible in internal system and deposit
Subscriber identity information and attribute are taken, and carries out data analysis according to storage inside data, calculated result is exported according to sorting algorithm
Afterwards and adaptive updates data store;Data distribution is packaged transmission module, is mainly responsible for the packing of identity information, according to different excellent
First grade attribute shunts the transmission queue of packaged data to different priorities;Terminal behavior manage module, be mainly responsible for release or
Control terminal selects different release mode or implementing monitoring terminal according to terminal identity categorical attribute;Data report mould
Block, the identity data for being mainly responsible for genealogical classification upload to distant client server;Alarm report module, is mainly responsible for and meets body
Part identifies reporting for the warning information after matching, reminds background server priority processing;Black and white lists manage module, are mainly responsible for
Black, white list importing and storage;
The mobile communication Personnel Authentication Identification System Internal processing steps are as follows:
Step 1: identity information obtains, and the acquisition this refers to base station to terminal identity information refers to that the base station 2/3/4G can be obtained
The terminal access information got, including it is not limited to IMSI, IMEI, SNR, RSSI, terminal capability, CQI;
Step 2: edge calculations and analysis memory module are in the identity information for receiving acquisition module and sending, and following point of starting
Analyse calculating process:
(1) it compares, retrieves this identity information whether in black and white lists database:
If 1) notification data shunts packing transmission module and is independently packaged in blacklist, it is labeled as control personnel identity,
Into urgent queue, alarm module is notified, report control personnel identity information matches alarm;
If 2) notification data shunts packing transmission module and is independently packaged in white list, it is labeled as daily personnel, data
It is independent to be packaged, into postponement queue;
3) if in the non-both the above list of identity information, notification data shunts packing transmission module and is independently packaged, it is labeled as
Mobile personnel, into regular queue, while identity data backup enters routine data library;
(2) it analyzes, retrieval calculates whether can be assumed that be identifying system resident personnel nearby, differentiate that establishment condition has:
1) N1 days continuous in routine data library on the basis of currently obtaining the moment, such as N1 >=7, the number of appearance is big
In 5;
2) on the basis of currently obtaining the moment, there is 1 time in each hour period in past one day, i.e., the 1 small period
It counts and is greater than N2, such as N2 >=10, i.e. the number that 24 periods occur is greater than 10 times;
3) it on the basis of currently obtaining the moment, in 24 hour period of past, is refused in continuous 1 minute using cause specific value
It repeats absolutely to be more than or equal to 5 into the number of identifying system after release, each hour of identifying system executes a cause specific and refuse
Exhausted cause value refuses terminal;
4) one day acquisition identity number is more than or equal to N3 times, and N3 times number is thresholding, can be set;
5) it is consistent with the IMEI of memory attaching in past data library to retrieve the subsidiary IMEI of current identity information;
6) the SNR mean value error for retrieving current identity information subsidiary SNR and the memory attaching in past data library is small
In 2%;
7) the RSSI mean value error of current identity information subsidiary RSSI and the memory attaching in past data library is retrieved
Less than 5%;
8) the CQI mean value error for retrieving current identity information subsidiary CQI and the memory attaching in past data library is small
In 1%;
9) it is consistent with the memory attaching in past data library to retrieve the subsidiary terminal capability of current identity information;
The above judgment condition 9 meet any 6, then edge calculations module can regard as resident personnel, notify black and white
List manages module and updates white list database;
(3) identity information that update judgement is calculated as resident personnel enters white list database;
Step 3: data distribution, which is packaged transmission module and receives edge calculations and analyze the identity that memory module is sent, sorts out letter
Breath, carries out packing transmission according to different transmission properties:
(7) data in urgent queue are packaged and notification data transmission module immediately immediately;
(8) data in regular queue generate the data packet that time-sequencing transmits this data queue by packet.
(9) data timing postponed in queue is packaged, not timed out in data packing timer, temporal data;
Step 4: terminal behavior manages module and identifies that the release for completing terminal, the selection of white list are reset in identity information
To be released back into carrier network or receive access offer service;Blacklisted terminals do not discharge, and maintain sucking or positioning operation.
Step 5: data reporting module, the identity data of genealogical classification upload to distant client server, in which:
(7) data in urgent queue are transferred to backstage immediately, if it exists network problem unsuccessful transmission, then retransmit preferential
Grade is also highest;
(8) data in regular queue generate the time by packet when urgent queue and retransmission queue do not have data transmission
The data packet of this data queue of ranking transmissions;
(9) postpone the data priority in queue near rear, there is no data in urgent queue, retransmission queue, regular queue
When transmission, periodically attempt to transmit this data packet;
Step 6: alarm report module receives edge calculations and analyzes the blacklist alarm instruction that memory module is sent and generates
Warning information is reported to backstage by managing network;
Step 7: black and white lists manage the newly-increased or deletion name that module is sent according to edge calculations and analysis memory module
It is single to update white list database.
The blacklist refers to that the identity information by the personnel that previously known needs are managed inputs blacklist data in advance
Inventory takes, and there are two types of modes here for white list, and one is the known staff's identity informations of realization, can be led in advance by data
The mode entered is stored;Another is the identification attribute information obtained by internal edge computation analysis module, week
White list database is added in the update of phase property.Identity information acquisition module refers to data acquisition base station to communication terminal identity information
Acquisition, it should be understood that data acquisition base station not only includes traditional hot spot type acquisition base station, further includes honeycomb, gateway type acquisition
Base station, base station standard include 4G/3G/2G or combination standard acquisition.The packing time interval is settable, and such as 15 minutes, 30 points
Clock.
The foregoing is only a preferred embodiment of the present invention, but scope of protection of the present invention is not limited thereto,
Anyone skilled in the art in the technical scope disclosed by the present invention, according to the technique and scheme of the present invention and its
Inventive concept is subject to equivalent substitution or change, should be covered by the protection scope of the present invention.