CN114071356B - Service management method and device for terminal positioning service and terminal - Google Patents
Service management method and device for terminal positioning service and terminal Download PDFInfo
- Publication number
- CN114071356B CN114071356B CN202111454636.XA CN202111454636A CN114071356B CN 114071356 B CN114071356 B CN 114071356B CN 202111454636 A CN202111454636 A CN 202111454636A CN 114071356 B CN114071356 B CN 114071356B
- Authority
- CN
- China
- Prior art keywords
- positioning
- app
- application
- industry
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000007726 management method Methods 0.000 title claims abstract description 97
- 230000004044 response Effects 0.000 claims abstract description 31
- 238000004422 calculation algorithm Methods 0.000 claims abstract description 30
- 238000000034 method Methods 0.000 claims description 19
- 230000006870 function Effects 0.000 claims description 10
- 230000002427 irreversible effect Effects 0.000 claims description 8
- 238000004364 calculation method Methods 0.000 claims description 6
- 238000004590 computer program Methods 0.000 claims description 6
- 238000012790 confirmation Methods 0.000 claims description 4
- 238000013475 authorization Methods 0.000 abstract description 5
- 238000005516 engineering process Methods 0.000 description 5
- 238000004891 communication Methods 0.000 description 4
- 238000010586 diagram Methods 0.000 description 3
- 102100034112 Alkyldihydroxyacetonephosphate synthase, peroxisomal Human genes 0.000 description 2
- 101000799143 Homo sapiens Alkyldihydroxyacetonephosphate synthase, peroxisomal Proteins 0.000 description 2
- 230000000386 athletic effect Effects 0.000 description 2
- 230000010354 integration Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 239000004984 smart glass Substances 0.000 description 2
- 238000003491 array Methods 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 230000035755 proliferation Effects 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/02—Services making use of location information
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/44—Program or device authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/45—Structures or tools for the administration of authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2111—Location-sensitive, e.g. geographical location, GPS
Abstract
The invention relates to a business management method, a device, a terminal and a computer storage medium of a terminal positioning service, wherein positioning application authentication parameters sent by an industry positioning application server are obtained through an industry positioning application APP; receiving an access positioning service request sent by an industry positioning Application (APP) through a positioning application management (APP), wherein the positioning service request comprises positioning application authentication parameters; acquiring a root secret key in the SIM card through a positioning application management APP, and carrying out authentication algorithm operation according to the positioning application authentication parameter and the root secret key to obtain an authentication response parameter; and confirming whether the authentication response parameters are consistent with the authentication parameters of the positioning application through the positioning application management APP, and if so, allowing the industry positioning application APP to acquire positioning service according to the acquired positioning capability. The invention realizes the access control of the industry positioning application access positioning service through the industry positioning application authentication algorithm, thereby realizing the authorization management of the industry positioning application positioning service capability.
Description
Technical Field
The present invention relates to the field of positioning services, and in particular, to a method and apparatus for managing services of a terminal positioning service, a terminal, and a computer storage medium.
Background
Today, the deep integration of 5G networks through dense networking, pico-cell, antenna arrays and other indoor positioning technologies (e.g. bluetooth AOA) may be to achieve sub-meter or even centimeter level accurate positioning. The 5G networks have advanced the proliferation of the vertical industry, but each vertical industry itself needs to find a suitable solution to enjoy the 5G high-precision positioning incoming business upgrade experience.
Along with the continuous release and update of 3GPP version, the 5G accurate positioning has higher and higher positioning precision, and the R17 version can also improve the 5G positioning precision to sub-meter level, thereby meeting the requirements of the vertical industry on different degrees of positioning precision. The convergence of 5G mobile network and positioning network will create a new and innovative set of applications. Operators are more involved in the deep participation and management of and even dominate the 5G location services and in the business innovation. Such huge positioning applications need to be fully considered in terms of how they can be effectively managed and the security of the positioning services.
The deep integration of a 5G mobile network and a positioning network is a necessary trend, how to deeply integrate a 5G network with the positioning network to provide a required positioning service for a user is a problem to be solved by the 5G positioning service, and the continuously emerging positioning service application needs to be uniformly managed and authenticated safely, which is a widely commercial premise.
Disclosure of Invention
Based on the above, the invention provides a business management method, a device, a terminal and a computer storage medium for terminal positioning service, which realize access control of the access positioning service for the industry positioning application through an industry positioning application authentication algorithm, thereby realizing authorization management of the capacity of the industry positioning application positioning service.
The invention is realized by the following scheme:
in a first aspect, the present invention provides a service management method for a terminal positioning service, where the terminal runs an industry positioning application APP and a positioning application management APP, the positioning application management APP establishes a positioning access control rule, and the positioning access control rule defines a positioning capability that can be acquired by the industry positioning application APP, and the method includes the following steps:
acquiring a positioning application authentication parameter sent by the industry positioning application Server through the industry positioning application APP, wherein the positioning application authentication parameter is acquired when the industry positioning application Server registers with a positioning Server LBS Server;
receiving an access positioning service request sent by the industry positioning application APP through the positioning application management APP, wherein the positioning service request comprises the positioning application authentication parameters;
acquiring a root secret key in the SIM card through the positioning application management APP, and performing authentication algorithm operation according to the root secret key to obtain an authentication response parameter;
and confirming whether the authentication response parameters are consistent with the authentication parameters of the positioning application through the positioning application management APP, and if so, allowing the industry positioning application APP to acquire positioning service according to the acquired positioning capability.
Further, before the positioning application management APP receives the access positioning service request sent by the industry positioning application APP, the method further comprises the following steps:
sending a positioning service registration request to a positioning Server LBS Server through the positioning application management APP;
and receiving a response positioning authentication vector through the positioning application management APP, wherein the response positioning authentication vector is obtained by the encryption calculation of the HSS Server after the positioning authentication vector request is sent to the HSS Server through the positioning Server LBS Server according to the positioning service registration request.
Further, the method for generating the positioning application authentication parameter comprises the following steps:
app_x_accesslocation name=f (rand_x, auth_key, identity code_x), wherein app_x_accesslocation name is the location application authentication parameter, rand_x is a random value allocated by the location Server LBS Server according to a location service registration request sent by the industry location application App, identity code_x is an industry location application identification code, auth_key is an authentication key obtained by the HSS Server through a root key in the SIM card and the location authentication vector through an encryption algorithm, and F is an irreversible encryption algorithm.
Further, performing an authentication algorithm operation according to the root key to obtain an authentication response parameter, including:
the authentication algorithm is as follows:
App_X_AccessLocationRespParameter=F(RAND_X,f(RAND,Key),identityCode_X),
the App_X_AccesLocationRespParameter is the authentication response parameter, the RAND is a random value distributed by the LBS Server according to a positioning service registration request sent by the positioning application management APP, key is a root secret Key in the terminal SIM card, and functions F and F are irreversible encryption algorithms.
Further, after the industry positioning application APP is allowed to access the positioning service, the method further comprises the following steps:
acquiring positioning service resources sent by a positioning base station through the industry positioning application APP;
and synchronizing the positioning service information with the positioning service of the industry positioning application server through the industry positioning application APP.
Further, the industry positioning application APP is downloaded and installed to the terminal through the positioning application management APP.
Further, the location service request includes at least one of the following or a combination of location capabilities:
5G E-CID;5G DL-TDOA and Bluetooth AOA;5G DL-TDOA, DL-AOD and WiFi/Bluetooth/D2D.
In a second aspect, the present invention provides a service management apparatus for a terminal positioning service, including:
the authentication parameter acquisition module is used for acquiring positioning application authentication parameters sent by the industry positioning application Server through the industry positioning application APP, wherein the positioning application authentication parameters are acquired when the industry positioning application Server registers with a positioning Server LBS Server;
an access request receiving module, configured to receive, through the positioning application management APP, an access positioning service request sent by the industry positioning application APP, where the positioning service request includes the positioning application authentication parameter;
the data acquisition and authentication module is used for acquiring a root secret key in the SIM card through the positioning application management APP, and carrying out authentication algorithm operation according to the root secret key to obtain an authentication response parameter;
and the authentication parameter confirmation module is used for confirming whether the authentication response parameter is consistent with the positioning application authentication parameter through the positioning application management APP, and if so, the industry positioning application APP is allowed to acquire positioning service according to the acquired positioning capability.
In a third aspect, the present invention also provides a terminal, including:
the terminal runs an industry positioning application APP and a positioning application management APP, and further comprises at least one memory and at least one processor;
the memory is used for storing one or more programs;
the one or more programs, when executed by the at least one processor, cause the at least one processor to implement the steps of a method of traffic management for a terminal positioning service according to any of the first aspects.
In a fourth aspect, the present invention provides a computer-readable storage medium storing a computer program:
the computer program when executed by a processor implements the steps of a method for traffic management for a terminal positioning service according to any of the first aspects.
The invention carries out authorization management on the industry positioning application through the positioning service management APP, establishes the positioning service access control rule at the same time, and realizes the access control of the industry positioning application to the positioning service through the industry positioning application authentication algorithm, thereby realizing which industry positioning applications can be authorized to use which positioning capabilities of the terminal to finish the positioning service. The invention can realize unified management of the industry positioning application and ensure the safety of the positioning service environment.
In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the drawings that are required in the embodiments or the description of the prior art will be briefly described below, it being obvious that the drawings in the following description are only some embodiments of the present application, and that other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
Drawings
Fig. 1 is a network architecture schematic diagram of a service management method of a terminal positioning service provided by the present invention;
fig. 2 is a flowchart of a business management method of a terminal positioning service provided by the invention;
fig. 3 is a timing sequence flow chart of a service management method of a terminal positioning service provided by the invention;
fig. 4 is a schematic diagram of a service management device for a terminal positioning service according to the present invention.
Detailed Description
For the purpose of making the objects, technical solutions and advantages of the present application more apparent, the following detailed description of the embodiments of the present application will be given with reference to the accompanying drawings.
It should be understood that the described embodiments are merely some, but not all, of the embodiments of the present application. All other embodiments, which can be made by one of ordinary skill in the art without undue burden from the embodiments of the present application, are within the scope of the embodiments of the present application.
The terminology used in the embodiments of the application is for the purpose of describing particular embodiments only and is not intended to be limiting of the embodiments of the application. As used in this application and the appended claims, the singular forms "a," "an," and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. It should also be understood that the term "and/or" as used herein refers to and encompasses any or all possible combinations of one or more of the associated listed items.
When the following description refers to the accompanying drawings, the same numbers in different drawings refer to the same or similar elements, unless otherwise indicated. The implementations described in the following exemplary examples are not representative of all implementations consistent with the present application. Rather, they are merely examples of apparatus and methods consistent with some aspects of the present application as detailed in the accompanying claims. In the description of the present application, it should be understood that the terms "first," "second," "third," and the like are used merely to distinguish between similar human bodies and are not necessarily used to describe a particular order or sequence, nor should they be construed to indicate or imply relative importance. The specific meaning of the terms in this application will be understood by those of ordinary skill in the art as the case may be.
Furthermore, in the description of the present application, unless otherwise indicated, "a plurality" means two or more. "and/or" describes an association relationship associated with a human body, meaning that there may be three relationships, e.g., a and/or B, which may represent: a exists alone, A and B exist together, and B exists alone. The character "/" generally indicates that the associated human body is an "or" relationship.
Aiming at the technical problems in the background art, the embodiment of the application provides a business management method of a terminal positioning service, as shown in fig. 1, wherein the method is realized based on a network architecture in fig. 1 and comprises an application server layer, a base station layer and a terminal.
The application Server layer comprises a location Server LBS Server and an industry application Server, wherein the location Server LBS Server can directly communicate with an HSS home subscriber Server and the industry application Server to provide management and authentication authorization of a location function; the industry application Server is used for acquiring positioning data and performing industry application and display, the industry positioning application is a positioning application developed by a pointer to the vertical industry, specific positioning service is required for specific positioning scenes, the positioning service is applied for acquisition through an operator network, the real positioning service is also provided by the operator network, and the industry positioning application provides upper business logic based on the positioning service.
The base station layer comprises an outdoor 5G base station and an indoor positioning base station, wherein the positioning base station is any wireless positioning base station, and specifically can be a 5G indoor base station, a BT AOA base station, a WiFi hot spot, a D2D station and the like; the positioning base station is connected to a positioning server LBS server through a bearing network and a core network.
The terminal layer comprises a terminal supporting a Native positioning function, wherein the Native positioning function refers to the fact that the mobile terminal performs deep customization development aiming at positioning service, and relates to an APP layer, a local service layer, a driving layer, a hardware layer and other service modules of the positioning function. The terminal needs to realize an interface for positioning application management and an access control function through Native positioning, and realizes a scene positioning function through positioning applications of various industries. The terminal may be a smart phone, in other examples, the terminal may also be other mobile terminals (e.g., tablet computers) with 4G or 5G communication capabilities, wearable devices (e.g., smart watches, athletic bracelets, smart glasses), smart car devices, etc.
The main inventive concept of the embodiment of the application is that the industry positioning application is authorized to be managed through the positioning application management platform, meanwhile, a positioning service access control rule is established, and access control of the industry positioning application to access the positioning service is realized through the industry positioning application authentication algorithm, so that the positioning service can be completed by the industry positioning application authorized to use the positioning capability of the terminal.
As shown in fig. 2, fig. 2 is a flowchart of a service management method of a terminal positioning service according to an embodiment of the present application, and specifically includes the following steps:
s101: and acquiring a positioning application authentication parameter sent by an industry positioning application Server through an industry positioning application APP, wherein the positioning application authentication parameter is acquired when the industry positioning application Server registers with a positioning Server LBS Server.
The industry positioning application APP can communicate with a corresponding industry positioning application server, and the positioning application authentication parameter is a ciphertext formed by an irreversible encryption algorithm and comprising an identification code, a random number and the like of the industry application, and also comprises positioning service capability for authorizing the industry positioning application to use.
S102: and receiving an access positioning service request sent by the industry positioning application APP through the positioning application management APP, wherein the positioning service request comprises positioning application authentication parameters.
The positioning application management APP is established with a positioning access control rule, the positioning access control rule defines the positioning capability which can be acquired by the industry positioning application APP, and a user can select and download the industry positioning application APP which is registered and completed with the LBS Server on the positioning application management APP.
After the industry positioning application APP is started, the industry positioning application APP can carry out business communication with an industry positioning application Server. When the positioning service is needed, the industry positioning application Server sends a positioning service request to the positioning application management APP through the industry positioning application APP.
The positioning service type in the positioning service request comprises a positioning technology supported by a terminal, such as GPS, beidou, AGPS,5G+CID,5G+AOA Bluetooth and the like; and the service capability of the terminal SIM card, namely the positioning technology capability of the SIM card user signing on the operator network, such as GPS, beidou, AGPS,5G+CID,5G+AOA Bluetooth and the like.
S103: and acquiring a root secret key in the SIM card through the positioning application management APP, and carrying out authentication algorithm operation according to the root secret key to obtain authentication response parameters.
The terminal SIM card stores the positioning service capability of the terminal opened at the operator, and the positioning service capability maintains the data security in each SIM card through the root key. The authentication algorithm is any irreversible encryption algorithm, and the authentication response parameter is obtained by operating the SIM card root secret key and the positioning application authentication parameter obtained in the step S101.
S104: and confirming whether the authentication response parameters are consistent with the authentication parameters of the positioning application through the positioning application management APP, and if so, allowing the industry positioning application APP to access the positioning service.
By comparing whether the authentication parameters of the positioning application and the authentication response parameters acquired in the steps S101 and S103 are the same, if so, the positioning application management APP allows the industry positioning application APP to access the positioning service requested by the access.
The positioning service request can contain various positioning service capabilities, and the positioning service capability acquired by the positioning application APP in the industry authorized by the positioning application management APP is the positioning service capability supported by the terminal and opened at the operator.
In a preferred embodiment, before the positioning application management APP receives the access positioning service request sent by the industry positioning APP in step S101, the method further includes the following steps:
sending a positioning service registration request to a positioning Server LBS Server through a positioning application management APP;
and receiving a response positioning authentication vector through the positioning application management APP, sending the positioning authentication vector request to the HSS Server through the positioning Server LBS Server according to the positioning service registration request, and then carrying out encryption calculation through the HSS Server.
In a preferred embodiment, after allowing the industry positioning application APP to access the positioning service, the method further comprises the steps of:
acquiring a positioning service resource sent by a positioning base station through an industry positioning application APP;
and synchronizing positioning service information with the positioning service of the industry positioning application server through the industry positioning application APP.
Fig. 3 is a schematic timing flow chart of a service management method of a terminal positioning service according to the present invention.
The terminal is operated with an industry positioning application APP and a positioning application management APP.
The positioning application management APP sends a registration positioning service request to a positioning Server LBS Server, the positioning Server LBS Server requests a positioning authentication vector of a SIM card of the application terminal to an HSS Server after receiving the request, and specifically the positioning authentication vector comprises { RAND, auth_key, location_availability_bitmap }, wherein RAND is a random number used for encryption calculation, auth_key is obtained by the HSS Server through a root secret key of the SIM card and the random number of the RAND through an encryption algorithm, and location_availability_bitmap is a set of related positioning services opened by the SIM card. The HSS server contains a user profile, which in this embodiment contains the location services capabilities opened by the terminal SIM card and the root key of the terminal SIM card. The HSS server is a home database server for storing all keys of the SIM card users and location service capability data signed with the operator, and maintains an authentication vector of each SIM card through a root key. And then, the Location Server LBS Server returns the related data of { RAND, location_availability_bitmap } to the Location application management APP, and the terminal completes the registration of the application management APP on the Location network.
In addition, the industry positioning application_x Server corresponding to the industry positioning application APP, that is, the industry positioning application Server, also sends a registration positioning service request to the positioning Server LBS Server. The location service request includes an identifier code_x, i.e., an identification code of the industry application, which is stored in the industry application server and the industry location application APP. The location Server LBS Server allocates a random value rand_x to the industry location application_x Server for the registration location service request, and generates a location application authentication parameter app_x_accesslocation authentication=f (rand_x, auth_key, identifier_x) by an encryption algorithm, where F is any irreversible encryption algorithm. The Location Server LBS Server returns the data related to { rand_x, app_x_accesslocation_bitmap_x } to the industry Location application_x Server and authorizes the industry Location application to use the Location service capability. Meanwhile, the Location Server LBS Server also updates the location_availability_bitmap_X related data to the Location application management APP of the terminal.
After the registration of the positioning application management APP and the industry positioning application_X Server is completed on the positioning Server LBS Server, the specific industry positioning application APP can be seen at the positioning application management APP, and a user can download and install the industry positioning application APP through the positioning application management APP. After the industry positioning application APP is started, the industry positioning application APP can carry out business communication with the industry positioning application Server, and the security interaction of the industry Client and the Server is completed.
When the positioning service is needed, the industry positioning application_X Server sends a positioning service request to the industry positioning application APP, wherein the request comprises RAND_X and a positioning application authentication parameter App_X_Access location name parameter. The industry positioning application APP sends an access positioning service request to the positioning application management APP according to the request, wherein the access request comprises the related data of { RAND_X, identifier code_X, app_X_Access location name.
After receiving the access request, the industry positioning application APP acquires a root secret key in the SIM card, and calculates an authentication response parameter through the following authentication algorithm:
App_X_AccessLocationRespParameter=F(RAND_X,f(RAND,Key),identityCode_X)
the App_X_AccesLocationRespParameter is the authentication response parameter, RAND_X is a random value distributed by a location Server LBS Server according to a location service registration request sent by an industry location application APP, RAND is a random value distributed by the LBS Server according to a location service registration request sent by a location application management APP, key is a root secret Key in a terminal SIM card, identity code_X is an industry location application identification code, and functions F and F are irreversible encryption algorithms.
Comparing whether the authentication response parameters are consistent with the authentication parameters of the positioning application or not according to the authentication response parameters obtained through calculation, if so, allowing the industry positioning application APP to access the positioning service requested by the access of the terminal by representing that the authentication is passed; if the authentication is inconsistent, the authentication is not passed, and the terminal prohibits the industry positioning application APP from accessing the positioning service requested by the access.
Specifically, different positioning application names correspond to different positioning application request parameters, and the positioning capability included in the positioning application names can be one positioning capability or a combination of multiple positioning capabilities.
The following table shows:
the terminal authorizes the terminal to use different positioning capabilities according to the positioning application request parameters sent by the industry positioning application APP.
After the industry positioning application obtains authorization, the industry positioning application APP obtains corresponding positioning service resources from the positioning base station, specifically, the resources are radio resources, and the positioning base station provides corresponding positioning service capability for the industry positioning application APP based on information exchange of a bearing network and a core network. And then the industry positioning application APP and the industry positioning application_X Server synchronize positioning service information, so that real-time positioning data updating is realized.
According to the embodiment of the application, the industry positioning application is authorized to be managed through the positioning service management APP, the positioning service access control rule is established, and the access control of the industry positioning application to the positioning service is realized through the industry positioning application authentication algorithm, so that the positioning service can be finished by the industry positioning applications authorized to use the positioning capabilities of the terminal. The embodiment of the application can realize unified management of the industry positioning application and ensure the safety of the positioning service environment.
The present application further provides a service management device 400 for terminal positioning service, as shown in fig. 4, fig. 4 is a schematic diagram of a service management device for terminal positioning service provided by the present invention, where the device 400 specifically includes:
an authentication parameter obtaining module 401, configured to obtain, through the industry positioning application APP, a positioning application authentication parameter sent by the industry positioning application Server, where the positioning application authentication parameter is obtained when the industry positioning application Server registers with a positioning Server LBS Server;
an access request receiving module 402, configured to receive, by using the positioning application management APP, an access positioning service request sent by the industry positioning application APP, where the positioning service request includes the positioning application authentication parameter;
the data acquisition and authentication module 403 is configured to acquire a root key in the SIM card through the location application management APP, and perform an authentication algorithm operation according to the root key to obtain an authentication response parameter;
and the authentication parameter confirmation module 404 is configured to confirm, through the positioning application management APP, whether the authentication response parameter and the positioning application authentication parameter are consistent, and if yes, allow the industry positioning application APP to acquire a positioning service according to the acquired positioning capability.
In an alternative embodiment, the access request receiving module 402 further comprises:
the positioning application management registration unit is used for sending a positioning service registration request to the positioning Server LBS Server through the positioning application management APP;
the weight vector establishment receiving unit is used for receiving a response positioning authentication vector through the positioning application management APP, and the response positioning authentication vector is obtained by the encryption calculation of the HSS Server after the positioning authentication vector is sent to the HSS Server through the positioning Server LBS Server according to the positioning service registration request;
in an alternative embodiment, the authentication parameter confirmation module 403 further includes:
the positioning service resource acquisition unit is used for acquiring positioning service resources sent by the positioning base station through the industry positioning application APP;
and the application server synchronizing unit is used for synchronizing the positioning service information with the positioning service of the industry positioning application server through the industry positioning application APP.
The application also provides a terminal, wherein the terminal runs an industry positioning Application (APP) and a positioning application management (APP), and further comprises at least one memory and at least one processor;
the memory may be configured to store a software program, a computer executable program, and a module, for example, a service management method program of a terminal positioning service according to any embodiment of the present application, and a program instruction/module corresponding to a service management method of a terminal positioning service according to any embodiment of the present application. The memory mainly comprises a memory program area and a memory data area, wherein the memory program area can store an operating system and at least one application program required by functions; the storage data area may store data created according to the use of the device, etc. In addition, the memory may include high-speed random access memory, and may also include non-volatile memory, such as at least one magnetic disk storage device, flash memory device, or other non-volatile solid-state storage device. In some examples, the memory may further include memory remotely located with respect to the processor, the remote memory being connectable to the device through a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.
The processor executes various functional applications and data processing of the device by executing software programs, instructions and modules stored in the memory, that is, implements the service management method of the terminal positioning service described in any of the above embodiments.
The terminal may be a smart phone, in other examples, the terminal may also be other mobile terminals (e.g., tablet computers) with 4G or 5G communication capabilities, wearable devices (e.g., smart watches, athletic bracelets, smart glasses), smart car devices, etc.
The embodiment of the application also provides a computer readable storage medium, on which a computer program is stored, which when executed by a processor, implements the service management method of the terminal positioning service according to any one of the above embodiments.
The present invention may take the form of a computer program product embodied on one or more storage media (including, but not limited to, magnetic disk storage, CD-ROM, optical storage, etc.) having program code embodied therein. Computer-readable storage media include both non-transitory and non-transitory, removable and non-removable media, and information storage may be implemented by any method or technology. The information may be computer readable instructions, data structures, modules of a program, or other data. Examples of storage media for a computer include, but are not limited to: phase change memory (PRAM), static Random Access Memory (SRAM), dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), read Only Memory (ROM), electrically Erasable Programmable Read Only Memory (EEPROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), digital Versatile Disks (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices, or any other non-transmission medium, may be used to store information that may be accessed by the computing device.
It is to be understood that the embodiments of the present application are not limited to the precise arrangements and instrumentalities shown in the drawings, which have been described above, and that various modifications and changes may be made without departing from the scope thereof. The scope of embodiments of the present application is limited only by the appended claims.
The above examples merely represent a few implementations of the examples of the present application, which are described in more detail and are not to be construed as limiting the scope of the invention. It should be noted that it will be apparent to those skilled in the art that several variations and modifications can be made without departing from the spirit of the embodiments of the present application, which are all within the scope of the embodiments of the present application.
Claims (10)
1. The business management method of the terminal positioning service is characterized in that the terminal runs an industry positioning application APP and a positioning application management APP, the positioning application management APP is established with a positioning access control rule, and the positioning access control rule defines positioning capability which can be acquired by the industry positioning application APP, and the method comprises the following steps:
acquiring a positioning application authentication parameter sent by an industry positioning application Server through the industry positioning application APP, wherein the positioning application authentication parameter is acquired when the industry positioning application Server registers with a positioning Server LBS Server;
receiving an access positioning service request sent by the industry positioning application APP through the positioning application management APP, wherein the positioning service request comprises the positioning application authentication parameters;
acquiring a root secret key in the SIM card through the positioning application management APP, and performing authentication algorithm operation according to the root secret key to obtain an authentication response parameter;
and confirming whether the authentication response parameters are consistent with the authentication parameters of the positioning application through the positioning application management APP, and if so, allowing the industry positioning application APP to acquire positioning service according to the acquired positioning capability.
2. The method for managing terminal positioning service according to claim 1, wherein before the positioning application management APP receives the access positioning service request sent by the industry positioning application APP, the method further comprises the steps of:
sending a positioning service registration request to a positioning Server LBS Server through the positioning application management APP;
and receiving a response positioning authentication vector through the positioning application management APP, wherein the response positioning authentication vector is obtained by the encryption calculation of the HSS Server after the positioning authentication vector request is sent to the HSS Server through the positioning Server LBS Server according to the positioning service registration request.
3. The traffic management method for a terminal positioning service according to claim 2, wherein:
the generation method of the positioning application authentication parameter comprises the following steps:
app_x_accesslocation name=f (rand_x, auth_key, identity code_x), wherein app_x_accesslocation name is the location application authentication parameter, rand_x is a random value allocated by the location Server LBS Server according to a location service registration request sent by the industry location application App, identity code_x is an industry location application identification code, auth_key is an authentication key obtained by the HSS Server through a root key in the SIM card and the location authentication vector through an encryption algorithm, and F is an irreversible encryption algorithm.
4. A method for managing terminal positioning service according to claim 3, wherein performing an authentication algorithm operation according to the root key to obtain an authentication response parameter comprises:
the authentication algorithm is as follows:
App_X_AccessLocationRespParameter=F(RAND_X,f(RAND,Key),identityCode_X),
the App_X_AccesLocationRespParameter is the authentication response parameter, the RAND is a random value distributed by the LBS Server according to a positioning service registration request sent by the positioning application management APP, key is a root secret Key in the terminal SIM card, and functions F and F are irreversible encryption algorithms.
5. The business management method of terminal positioning service according to claim 1, wherein after allowing the industry positioning application APP to access the positioning service, further comprising the steps of:
acquiring positioning service resources sent by a positioning base station through the industry positioning application APP;
and synchronizing the positioning service information with the positioning service of the industry positioning application server through the industry positioning application APP.
6. The traffic management method for a terminal positioning service according to claim 1, comprising:
and the industry positioning application APP is downloaded and installed to the terminal through the positioning application management APP.
7. The traffic management method for a terminal positioning service according to claim 1, wherein:
the location service request includes at least one of the following or a combination of location capabilities:
5G E-CID;5G DL-TDOA and Bluetooth AOA;5G DL-TDOA, DL-AOD and WiFi/Bluetooth/D2D.
8. A traffic management apparatus for a terminal positioning service, comprising:
an authentication parameter obtaining module, configured to obtain, through the industry positioning application APP according to any one of claims 1 to 7, a positioning application authentication parameter sent by an industry positioning application Server, where the positioning application authentication parameter is obtained when the industry positioning application Server registers with a positioning Server LBS Server;
an access request receiving module, configured to receive, through a positioning application management APP according to any one of claims 1 to 7, an access positioning service request sent by the industry positioning application APP, where the positioning service request includes the positioning application authentication parameter;
the data acquisition and authentication module is used for acquiring a root secret key in the SIM card through the positioning application management APP, and carrying out authentication algorithm operation according to the root secret key to obtain an authentication response parameter;
and the authentication parameter confirmation module is used for confirming whether the authentication response parameter is consistent with the positioning application authentication parameter through the positioning application management APP, and if so, the industry positioning application APP is allowed to acquire positioning service according to the acquired positioning capability.
9. A terminal, comprising:
the terminal runs an industry positioning application APP and a positioning application management APP, and further comprises at least one memory and at least one processor;
the memory is used for storing one or more programs;
the one or more programs, when executed by the at least one processor, cause the at least one processor to implement the steps of a method of traffic management for a terminal positioning service as claimed in any one of claims 1 to 7.
10. A computer-readable storage medium storing a computer program, characterized in that:
the computer program implementing the steps of the method according to any of claims 1 to 7 when executed by a processor.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111454636.XA CN114071356B (en) | 2021-12-01 | 2021-12-01 | Service management method and device for terminal positioning service and terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111454636.XA CN114071356B (en) | 2021-12-01 | 2021-12-01 | Service management method and device for terminal positioning service and terminal |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114071356A CN114071356A (en) | 2022-02-18 |
| CN114071356B true CN114071356B (en) | 2023-12-19 |
Family
ID=80228525
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111454636.XA Active CN114071356B (en) | 2021-12-01 | 2021-12-01 | Service management method and device for terminal positioning service and terminal |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114071356B (en) |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101325801A (en) * | 2007-06-12 | 2008-12-17 | 北京三星通信技术研究有限公司 | Method and apparatus for locating business authentication and authorization examination in Winax network |
| CN101415187A (en) * | 2007-10-19 | 2009-04-22 | 华为技术有限公司 | Method for implementing position business, method and apparatus for broadcasting base station geographic position information |
| JP2010159980A (en) * | 2009-01-06 | 2010-07-22 | Hitachi Ltd | Positional information providing system and server |
| WO2011113314A1 (en) * | 2010-03-17 | 2011-09-22 | 华为技术有限公司 | Service open method, system and service open server |
| CN102469500A (en) * | 2010-11-18 | 2012-05-23 | 上海启电信息科技有限公司 | Mobile positioning service method based on wireless sensing technology |
| KR20130058491A (en) * | 2011-11-25 | 2013-06-04 | 주식회사 케이티 | Terminal, access server configuration method for lbs application execution and lbs application execution method |
| CN107347179A (en) * | 2017-03-28 | 2017-11-14 | 吉林市东杰科技开发有限公司 | A kind of method that LBS is realized based on ReactNative |
| CN109993520A (en) * | 2018-01-03 | 2019-07-09 | 周祥宇 | A kind of system and method based on position payment |
| CN111431847A (en) * | 2016-02-01 | 2020-07-17 | 上海途鸽数据科技有限公司 | Authentication method and device for virtual subscriber identity module |
-
2021
- 2021-12-01 CN CN202111454636.XA patent/CN114071356B/en active Active
Patent Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101325801A (en) * | 2007-06-12 | 2008-12-17 | 北京三星通信技术研究有限公司 | Method and apparatus for locating business authentication and authorization examination in Winax network |
| WO2008153321A2 (en) * | 2007-06-12 | 2008-12-18 | Samsung Electronics Co., Ltd. | Method and device for authentication and authorization checking on lbs in wimax network |
| CN101415187A (en) * | 2007-10-19 | 2009-04-22 | 华为技术有限公司 | Method for implementing position business, method and apparatus for broadcasting base station geographic position information |
| JP2010159980A (en) * | 2009-01-06 | 2010-07-22 | Hitachi Ltd | Positional information providing system and server |
| WO2011113314A1 (en) * | 2010-03-17 | 2011-09-22 | 华为技术有限公司 | Service open method, system and service open server |
| CN102469500A (en) * | 2010-11-18 | 2012-05-23 | 上海启电信息科技有限公司 | Mobile positioning service method based on wireless sensing technology |
| KR20130058491A (en) * | 2011-11-25 | 2013-06-04 | 주식회사 케이티 | Terminal, access server configuration method for lbs application execution and lbs application execution method |
| CN111431847A (en) * | 2016-02-01 | 2020-07-17 | 上海途鸽数据科技有限公司 | Authentication method and device for virtual subscriber identity module |
| CN107347179A (en) * | 2017-03-28 | 2017-11-14 | 吉林市东杰科技开发有限公司 | A kind of method that LBS is realized based on ReactNative |
| CN109993520A (en) * | 2018-01-03 | 2019-07-09 | 周祥宇 | A kind of system and method based on position payment |
Non-Patent Citations (2)
| Title |
|---|
| "22872-100".3GPP Specs\22_series.2018,1-20. * |
| 面向LBS服务的APP数据安全风险研究;严栋孜;王轶骏;薛质;胡玲;;通信技术(第12期);1-3 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114071356A (en) | 2022-02-18 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20220095098A1 (en) | Method and apparatus for supporting transfer of profile between devices in wireless communication system | |
| US10887318B2 (en) | Method and apparatus for downloading profile on embedded universal integrated circuit card of terminal | |
| US20230066838A1 (en) | Systems and methods for securing access rights to resources using cryptography and the blockchain | |
| EP3476144B1 (en) | A method enabling migration of a subscription | |
| CN110178393B (en) | Method, device and server for downloading subscription data set | |
| EP2861002B1 (en) | Virtual user identification data distributing method and obtaining method, and devices | |
| CN110024426B (en) | Device and method for performing access control through eSIM | |
| RU2704750C2 (en) | Mobile device identification systems and methods | |
| EP3605995A1 (en) | Method and apparatus for discussing digital certificate by esim terminal and server | |
| KR102209031B1 (en) | Apparatus and method for subscribing to network in wireless communication system | |
| CN109196841A (en) | For in the distributed data base of mobile telecom network publication assert and for personalized internet of things equipment method and apparatus | |
| CN107623908A (en) | A kind of hair fastener method and subscriber identification module card | |
| US11086982B2 (en) | Systems and methods for sensor-based layer variation on mobile devices | |
| KR20120046376A (en) | System and method for providing payment means management sertvice, apparatus and device for payment means management service | |
| CN108243631B (en) | Network access method and equipment | |
| US20220132300A1 (en) | Method, apparatus, and system for authorizing remote profile management | |
| CN113632513A (en) | Device changing method and apparatus for wireless communication system | |
| KR101206072B1 (en) | System and Method for Managing Private Information | |
| CN114071356B (en) | Service management method and device for terminal positioning service and terminal | |
| CN105744495A (en) | Method for mobile terminal to obtain card information and mobile terminal | |
| KR20110125757A (en) | Method and apparatus for providing divisible payment service, client device for divisible payment service and smart card | |
| CN114172866B (en) | IMS network bearing and terminal positioning service management method, device and terminal | |
| CN102761598A (en) | Method of handling velocity triggered supl service and related communication device | |
| US11463865B1 (en) | Wireless telecommunication service trial via a dual-SIM user device | |
| US11792640B2 (en) | Method and device for managing eUICC profile installation rights |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |