CN114339716A - Subscription data transmission method, system and server - Google Patents
Subscription data transmission method, system and server Download PDFInfo
- Publication number
- CN114339716A CN114339716A CN202011057181.3A CN202011057181A CN114339716A CN 114339716 A CN114339716 A CN 114339716A CN 202011057181 A CN202011057181 A CN 202011057181A CN 114339716 A CN114339716 A CN 114339716A
- Authority
- CN
- China
- Prior art keywords
- subscription data
- terminal
- subscription
- communication network
- identifier
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 51
- 230000005540 biological transmission Effects 0.000 title claims abstract description 37
- 238000004891 communication Methods 0.000 claims abstract description 225
- 238000004590 computer program Methods 0.000 claims description 10
- 238000012546 transfer Methods 0.000 claims description 7
- 238000001914 filtration Methods 0.000 claims description 2
- 238000010586 diagram Methods 0.000 description 16
- 230000006870 function Effects 0.000 description 8
- 230000008859 change Effects 0.000 description 4
- 238000012545 processing Methods 0.000 description 4
- 230000008569 process Effects 0.000 description 2
- 238000013523 data management Methods 0.000 description 1
- 230000014509 gene expression Effects 0.000 description 1
- 238000007726 management method Methods 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000001737 promoting effect Effects 0.000 description 1
- 230000004044 response Effects 0.000 description 1
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The disclosure discloses a subscription data transmission method, a system and a server, and relates to the field of wireless communication. The method comprises the following steps: determining a user side server corresponding to the terminal identification; sending an authentication request to a user side server to indicate the user side server to authenticate the terminal and send subscription information corresponding to the terminal identifier under the condition that the terminal authentication is successful, wherein the subscription information comprises at least one of subscription data and a subscription data identifier; and receiving the signing information which is sent by the user side server and corresponds to the terminal identification, and acquiring the signing data corresponding to the terminal according to the signing data identification under the condition that the signing information is the signing data identification. The method and the device enable the client server to provide the subscription data of the terminal for the communication network in real time as required, so that the communication network can provide differentiated services for different terminals, and the storage resources of the communication network can be saved.
Description
Technical Field
The present disclosure relates to the field of wireless communications, and in particular, to a method, a system, and a server for transmitting subscription data.
Background
In the 5G era, enterprise customers can contract with operators of non-public networks so that terminals of the enterprise customers can use services of the non-public networks. For security reasons, when the terminal accesses the non-public network, the non-public network needs to authenticate the terminal through the authentication server. After the authentication is successful, the non-public network can use the pre-stored terminal subscription data to provide service for the terminal. If different subscription data are prestored in the non-public network for each terminal, the non-public network storage resources are excessively occupied, and if the subscription data of all the terminals are the same, the terminal difference cannot be reflected.
Disclosure of Invention
The technical problem to be solved by the present disclosure is to provide a subscription data transmission method, system and server, which can not only enable a communication network to provide differentiated services for different terminals, but also save storage resources of the communication network.
According to an aspect of the present disclosure, a method for transmitting subscription data is provided, including: determining a user side server corresponding to the terminal identification; sending an authentication request to a user side server to indicate the user side server to authenticate the terminal and send subscription information corresponding to the terminal identifier under the condition that the terminal authentication is successful, wherein the subscription information comprises at least one of subscription data and a subscription data identifier; and receiving the signing information which is sent by the user side server and corresponds to the terminal identification, and acquiring the signing data corresponding to the terminal according to the signing data identification under the condition that the signing information is the signing data identification.
In some embodiments, the subscription data is deleted when the time to save the subscription data reaches the validity period of the subscription data.
In some embodiments, updated subscription information corresponding to the terminal identifier and sent by the client server is received, wherein after the client server updates the subscription information, the client server determines whether subscription data before update corresponding to the terminal identifier exists in the communication network, and if so, the updated subscription information corresponding to the terminal identifier is sent to the communication network; and updating the subscription data corresponding to the terminal identification according to the received updated subscription information.
In some embodiments, the validity period of the subscription data sent by the client server is received.
In some embodiments, the subscription information is filtered and converted.
In some embodiments, multiple types of subscription data are stored in advance, each type of subscription data corresponds to a different subscription data identifier, wherein each terminal identifier corresponds to one subscription data identifier, and each subscription data identifier corresponds to one or more terminal identifiers.
In some embodiments, the terminal identifier carries at least one of an identifier of the client server and a domain name.
According to another aspect of the present disclosure, a method for transmitting subscription data is further provided, including: receiving an authentication request for terminal authentication sent by a communication network; and under the condition that the authentication of the terminal is successful, sending subscription information corresponding to the terminal identifier to the communication network, wherein the subscription information comprises at least one of subscription data and a subscription data identifier, and under the condition that the subscription information is the subscription data identifier, the communication network acquires the subscription data corresponding to the terminal according to the subscription data identifier.
In some embodiments, in the case of updating the subscription information corresponding to the terminal identifier, it is determined whether subscription data corresponding to the terminal identifier exists in the communication network; and if the subscription data corresponding to the terminal identification exists in the communication network, sending updated subscription information corresponding to the terminal identification to the communication network.
In some embodiments, determining whether subscription data corresponding to the terminal identity exists in the communication network comprises: and under the condition that the current time and the time for sending the subscription data to the communication network are less than the validity period of the subscription data, determining that the subscription data before updating corresponding to the terminal identifier exists in the communication network, wherein the validity period comprises a limited period and an indefinite period.
In some embodiments, a validity period of the subscription data is sent to the communication network, wherein the communication network deletes the subscription data when the time to save the subscription data reaches the validity period of the subscription data.
In some embodiments, in the event that the validity period of the subscription data changes, determining whether subscription data is present in the communication network; and if the subscription data exists in the communication network, sending the validity period after the subscription data is changed to the communication network.
According to another aspect of the present disclosure, a communication network side server is further provided, including: a client server determination unit configured to determine a client server corresponding to the terminal identifier; the authentication request sending unit is configured to send an authentication request to the user side server so as to indicate the user side server to authenticate the terminal and send subscription information corresponding to the terminal identifier under the condition that the terminal authentication is successful, wherein the subscription information comprises at least one of subscription data and a subscription data identifier; and the subscription information receiving unit is configured to receive subscription information corresponding to the terminal identifier and sent by the user side server, and acquire subscription data corresponding to the terminal according to the subscription data identifier under the condition that the subscription information is the subscription data identifier.
According to another aspect of the present disclosure, there is also provided a client server, including: the authentication server is configured to receive an authentication request for terminal authentication sent by a communication network and authenticate the terminal, wherein the authentication request comprises a terminal identifier; and the signing data providing server is configured to send signing information corresponding to the terminal identifier to the communication network under the condition that the terminal is successfully authenticated, wherein the signing information comprises at least one of signing data and a signing data identifier, and under the condition that the signing information is the signing data identifier, the communication network acquires the signing data corresponding to the terminal according to the signing data identifier.
According to another aspect of the present disclosure, a subscription data transmission system is further provided, including: the communication network end server; and the client server.
According to another aspect of the present disclosure, there is also provided an electronic device, including: a memory; and a processor coupled to the memory, the processor configured to perform the above described subscription data transfer method based on instructions stored in the memory.
According to another aspect of the present disclosure, a non-transitory computer-readable storage medium is also presented, having stored thereon computer program instructions, which when executed by a processor, implement the subscription data transmission method as described above.
In the embodiment of the disclosure, after the user-side server authenticates the terminal, the user-side server directly sends the subscription data or the subscription data identifier corresponding to the terminal identifier to the communication network, so that the user-side server can provide the subscription data of the terminal for the communication network in real time and on demand, and not only can the communication network provide differentiated services for different terminals, but also can save storage resources of the communication network.
Other features of the present disclosure and advantages thereof will become apparent from the following detailed description of exemplary embodiments thereof, which proceeds with reference to the accompanying drawings.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments of the disclosure and together with the description, serve to explain the principles of the disclosure.
The present disclosure may be understood more clearly and in accordance with the following detailed description, taken with reference to the accompanying drawings,
wherein:
fig. 1 is a schematic flow chart diagram of some embodiments of a subscription data transmission method of the present disclosure.
Fig. 2 is a flowchart illustrating another exemplary embodiment of a subscription data transmission method according to the present disclosure.
Fig. 3 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure.
Fig. 4 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure.
Fig. 5 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure.
Fig. 6 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure.
Fig. 7 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure.
Fig. 8 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure.
Fig. 9 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure.
Fig. 10 is a schematic structural diagram of some embodiments of a communications network end server according to the present disclosure.
Fig. 11 is a schematic structural diagram of some embodiments of a client server according to the present disclosure.
Fig. 12 is a schematic structural diagram of some embodiments of an electronic device of the present disclosure.
Detailed Description
Various exemplary embodiments of the present disclosure will now be described in detail with reference to the accompanying drawings. It should be noted that: the relative arrangement of the components and steps, the numerical expressions, and numerical values set forth in these embodiments do not limit the scope of the present disclosure unless specifically stated otherwise.
Meanwhile, it should be understood that the sizes of the respective portions shown in the drawings are not drawn in an actual proportional relationship for the convenience of description.
The following description of at least one exemplary embodiment is merely illustrative in nature and is in no way intended to limit the disclosure, its application, or uses.
Techniques, methods, and apparatus known to those of ordinary skill in the relevant art may not be discussed in detail but are intended to be part of the specification where appropriate.
In all examples shown and discussed herein, any particular value should be construed as merely illustrative, and not limiting. Thus, other examples of the exemplary embodiments may have different values.
It should be noted that: like reference numbers and letters refer to like items in the following figures, and thus, once an item is defined in one figure, further discussion thereof is not required in subsequent figures.
For the purpose of promoting a better understanding of the objects, aspects and advantages of the present disclosure, reference is made to the following detailed description taken in conjunction with the accompanying drawings.
Fig. 1 is a schematic flow chart diagram of some embodiments of a subscription data transmission method of the present disclosure. This embodiment is performed by a communication network end server, which is for example a non-public network.
In step 110, a client server corresponding to the terminal identifier is determined.
In some embodiments, the communication network receives a registration request sent by a terminal, where the registration request carries a terminal identifier, and a corresponding client server may be determined according to the terminal identifier. The client server is a server of an enterprise client and is positioned in an enterprise client network.
In some embodiments, the terminal identifier further carries an identifier or a domain name of the client server, and the client server is found according to the identifier or the domain name of the client server.
In step 120, an authentication request is sent to the user side server to indicate the user side server to authenticate the terminal and send subscription information corresponding to the terminal identifier if the terminal authentication is successful, where the subscription information includes at least one of subscription data and a subscription data identifier.
In some embodiments, the authentication request carries a terminal identifier, the user server authenticates the terminal according to the terminal identifier, and sends subscription data corresponding to the terminal identifier to the communication network when the terminal authentication is successful.
In some embodiments, the client server authenticates the terminal, and sends the subscription data identifier corresponding to the terminal identifier to the communication network if the terminal authentication is successful. For example, each subscription data identifier corresponds to one or more terminal identifiers, and one terminal identifier corresponds to one subscription data identifier.
In step 130, the subscription information corresponding to the terminal identifier sent by the client server is received, and in the case that the subscription information is the subscription data identifier, the subscription data corresponding to the terminal is obtained according to the subscription data identifier.
In some embodiments, if the user-side server sends the subscription data, the communication network may directly obtain the subscription data corresponding to the terminal identifier, and send the subscription identifier to the terminal. The communication network does not need to prestore the signing data of the terminal, and the storage resource of the communication network is saved. In addition, the communication network does not need to pre-store the subscription data of the terminals, and the client server sets different subscription data for each terminal, so that the communication network can provide differentiated services for different terminals.
In some embodiments, one or more types of subscription data are pre-stored in the communication network, each type of subscription data corresponds to a different subscription data identifier, each terminal identifier corresponds to one subscription data identifier, and each subscription data identifier corresponds to one or more terminal identifiers. And if the user side server sends the signing data identification, the communication network determines the corresponding signing data according to the signing data identification and sends the signing data to the terminal. For example, an enterprise client has 100 terminals, 10 types of subscription data are prestored in the communication network, and the client server selects one type of subscription data for each terminal, which saves storage resources of the communication network compared with the related art in which each terminal corresponds to one subscription data. In addition, because all terminals do not use the same subscription data, the communication network can provide differentiated services for different terminals.
In some embodiments, the communication network filters and converts subscription information. In the scheme, the user-side server directly sends the signing information such as the signing data or the signing data identification of the terminal to the communication network, and the communication network filters and transfers the received signing information for system safety.
In some embodiments, a UDM (Unified Data Management) in the communication network directly receives the subscription information sent by the client server, and the UDM filters and converts the subscription information, for example, deletes information that the client server is not allowed to provide, converts the subscription information into information that the communication network can recognize according to an agreement with the client server, and maps the subscription information to a specific storage format. The interface to UDM may use a https-like interface.
In some embodiments, the client server sends the subscription information to other Network functions in the communication Network except the UDM, such as NEF (Network Exposure Function), which filters and converts the subscription information to make the subscription information conform to the format requirement of the data stored in the UDM, and then sends the subscription information to the UDM, which may use a 5G service interface.
In some embodiments, after filtering and converting the subscription information by an AUSF (Authentication Server Function) in the communication network, the AUSF forwards the subscription information to the UDM via the AMF.
In some embodiments, after storing the subscription data or the subscription data identifier, the communication network sends a response message to the client server.
In the above embodiment, after the user-side server authenticates the terminal, the user-side server directly sends the subscription data or the subscription data identifier corresponding to the terminal identifier to the communication network, so that the user-side server can provide the subscription data of the terminal for the communication network in real time and on demand, and not only can the communication network provide differentiated services for different terminals, but also can save storage resources of the communication network.
In some embodiments, the communication network deletes the subscription data when the time for saving the subscription data reaches the validity period of the subscription data. By deleting the expired subscription data, the communication network storage resources can be reduced.
Fig. 2 is a flowchart illustrating another exemplary embodiment of a subscription data transmission method according to the present disclosure. In this embodiment, the user-side server includes an authentication server configured to authenticate the terminal and a subscription data providing server configured to provide the subscription data to the user. The authentication server and the subscription data providing server are located in the client enterprise network.
In step 210, the communication network server receives a registration request sent by the terminal, where the registration request carries a terminal identifier. The terminal identifier carries a user network identifier or a domain name.
In step 220, the communication network server confirms the authentication server according to the terminal identifier.
In step 230, the communication network server sends an authentication request to the authentication server, where the authentication request includes the terminal identifier.
The authentication server authenticates the terminal in step 240.
In step 250, the terminal successfully authenticates, and the subscription data providing server sends the subscription data corresponding to the terminal identifier and the validity period corresponding to the subscription data to the communication network end server.
In some embodiments, if the authentication server successfully authenticates the terminal, the authentication server sends an authentication success message to the subscription data providing server, so that the subscription data providing server sends the subscription data corresponding to the terminal identifier to the communication network end server.
In step 260, after the communication network server receives the subscription data, the subscription data is filtered and converted.
In step 270, the communication network server stores the subscription data, sends a reception success message to the subscription data providing server, and starts a timer.
In some embodiments, after receiving the message returned by the communication network end server, the subscription data providing server records the identifier of the communication network corresponding to the subscription data.
In step 280, the communication network server sends the subscription data to the terminal.
In step 290, the communication network server deletes the subscription data when the time for saving the subscription data reaches the validity period of the subscription data.
In some embodiments, the communication network server may also pre-store the validity period of each subscription data, and start a timer after receiving the subscription data.
In the above embodiment, the communication network end server determines the corresponding authentication server according to the terminal identifier, authenticates the terminal by the authentication server, provides the terminal subscription data by the subscription data providing server, and deletes the subscription data when the time for storing the subscription data reaches the validity period of the subscription data. The authentication server and the signing data providing server are positioned in the client enterprise network, so that the signing data can be provided to the communication network in real time and on demand, the communication network end server filters and converts the signing data, the system safety can be ensured, and the signing data providing server provides the signing data for the communication network, so that the communication network can provide differentiated services for different terminals, and the storage resources of the communication network can be saved.
Fig. 3 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure. In this embodiment, the user-side server includes an authentication server configured to authenticate the terminal and a subscription data providing server configured to provide the user with the subscription data identifier. The authentication server and the subscription data providing server are located in the client enterprise network.
In step 310, the communication network server prestores a plurality of types of subscription data. The subscription data type is less than the number of terminals. Each type of subscription data corresponds to different subscription data identifiers, wherein each terminal identifier corresponds to one subscription data identifier, and each subscription data identifier corresponds to one or more terminal identifiers.
In step 320, the communication network server receives a registration request sent by the terminal, where the registration request carries the terminal identifier. The terminal identifier carries a user network identifier or a domain name.
In step 330, the communication network server confirms the authentication server according to the terminal identifier.
In step 340, the communication network server sends an authentication request to the authentication server, where the authentication request includes the terminal identifier.
The authentication server authenticates the terminal in step 350.
In step 360, the terminal authenticates successfully, and the subscription data providing server sends the subscription data identifier corresponding to the terminal identifier and the validity period corresponding to the subscription data identifier to the communication network end server.
In some embodiments, if the authentication server successfully authenticates the terminal, the authentication server sends an authentication success message to the subscription data providing server, so that the subscription data providing server sends the subscription data identifier corresponding to the terminal identifier to the communication network end server.
In step 370, after receiving the subscription data identifier, the communication network end server filters and converts the subscription data identifier.
In step 380, the corresponding subscription data is searched according to the subscription data identifier, the subscription data is stored, and a timer is started.
In some embodiments, after storing the subscription data, the communication network end server sends a reception success message to the subscription data providing server.
In some embodiments, after receiving the message returned by the communication network end server, the subscription data providing server records the identifier of the communication network corresponding to the subscription data.
In step 390, the communication network server sends the subscription data to the terminal.
In step 3100, the communications network server deletes the subscription data when the time for saving the subscription data reaches the validity period of the subscription data.
In some embodiments, the communication network server may also pre-store the validity period of each subscription data, and start the timer after finding the subscription data.
In the above embodiment, the communication network end server determines the corresponding authentication server according to the terminal identifier, authenticates the terminal by the authentication server, provides the terminal subscription data identifier by the subscription data providing server, and deletes the subscription data when the time for storing the subscription data reaches the validity period of the subscription data. The authentication server and the signing data providing server are positioned in the client enterprise network, so that the signing data identification can be provided to the communication network in real time and on demand, the system safety can be ensured because the communication network end server filters and converts the signing data identification, and in addition, the communication network end server stores several types of signing data instead of storing one type of signing data for each terminal and selects one type of signing data according to actual conditions, so that the communication network can provide differentiated services for different terminals, and the storage resource of the communication network can be saved.
Fig. 4 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure. This embodiment is performed by a communication network side server.
In step 410, updated subscription information corresponding to the terminal identifier and sent by the client server is received, wherein after the client server updates the subscription information, the client server determines whether the subscription data before updating corresponding to the terminal identifier exists in the communication network, and if so, the updated subscription information corresponding to the terminal identifier is sent to the communication network.
In some embodiments, the client server records an identifier of the communication network, and starts a timer after sending the subscription data or the identifier of the subscription data to the communication network. And when the time for storing the subscription data reaches the validity period of the subscription data, the communication network end server deletes the subscription data. And after the subscription information is updated, the user-side server judges whether the timer reaches the validity period of the subscription data, namely judges whether the subscription data is stored in the communication network, and if the validity period of the subscription data is not reached, confirms that the subscription data exists in the communication network. And if the subscription data exists in the communication network, sending updated subscription information corresponding to the terminal identifier to the communication network.
In some embodiments, the client server may consider the subscription data in the communication network to be valid all the time.
In step 420, the subscription data corresponding to the terminal identifier is updated according to the received updated subscription information.
In some embodiments, if the client server sends updated subscription data, the communication network server updates the stored subscription data. And if the user side server sends the updated signing data identifier, the communication network side server determines the corresponding updated signing data according to the signing data identifier.
In some embodiments, the communication network may send the updated subscription data to the terminal.
In the above embodiment, when the subscription information in the client server is updated, the subscription data in the communication network can be updated in time.
In some embodiments, the communication network side server further receives a validity period after the change of the subscription data sent by the user side server, wherein the user side server determines whether the subscription data before the update corresponding to the terminal identifier exists in the communication network under the condition that the validity period of the subscription data is changed, and if the subscription data before the update exists, sends the validity period after the change of the subscription data to the communication network.
In the above embodiment, when the validity period of the subscription data in the client server is updated, the validity period of the subscription data in the communication network can be updated in time.
In some embodiments, when the communication network end server receives the changed subscription information or the validity period of the subscription data, the communication network end server sends a reception success message to the user end server.
Fig. 5 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure. This embodiment is performed by a client server, which is located in the enterprise client network.
In step 510, an authentication request for terminal authentication sent by the communication network is received, where the authentication request includes a terminal identifier, and the communication network determines a client server corresponding to the terminal identifier and sends the authentication request to the client server.
In some embodiments, the communication network is a non-public network.
In some embodiments, the client server interacts with the terminal to authenticate the terminal.
In step 520, when the authentication of the terminal is successful, the subscription information corresponding to the terminal identifier is sent to the communication network, where the subscription information includes at least one of subscription data and a subscription data identifier, and when the subscription information is the subscription data identifier, the communication network obtains the subscription data corresponding to the terminal according to the subscription data identifier.
In some embodiments, one or more types of subscription data are pre-stored in the communication network, each type of subscription data corresponds to a different subscription data identifier, each terminal identifier corresponds to one subscription data identifier, and each subscription data identifier corresponds to one or more terminal identifiers. And the user side server sends the signing data identification to the communication network, and the communication network determines the corresponding signing data according to the signing data identification and sends the signing data to the terminal.
In some embodiments, after receiving the subscription information, the communication network returns a reception success message to the client server, and after receiving the message returned by the communication network, the client server records the identifier of the communication network storing the subscription information.
In the embodiment, the enterprise client can provide the subscription information for the communication network in real time as required, so that the communication network can provide differentiated services for different terminals under the condition of saving storage resources.
As shown in fig. 6, in some embodiments, the subscription data transmission method includes the following steps:
in step 610, when the subscription information corresponding to the terminal identifier is updated, it is determined whether subscription data corresponding to the terminal identifier exists in the communication network.
In some embodiments, in a case that the current time and the time when the user-side server sends the subscription information to the communication network are less than a validity period of the subscription data, it is determined that the subscription data before updating corresponding to the terminal identifier exists in the communication network, where the validity period includes a finite period and an infinite period. When the validity period is indefinite, the subscription data in the communication network is considered to be always valid.
In step 620, if the subscription data corresponding to the terminal identifier exists in the communication network, the updated subscription information corresponding to the terminal identifier is sent to the communication network.
In some embodiments, if the user-side server sends the subscription data, the communication network replaces the subscription data corresponding to the terminal. And if the user side server sends the signing data identification, determining the updated signing data according to the signing data identification, and updating the signing data corresponding to the terminal.
In the above embodiment, the client server may update the subscription information in the communication network in time when confirming that the subscription information of the terminal is updated.
In other embodiments of the present disclosure, the client server further sends a validity period of the subscription data to the communication network, wherein the communication network deletes the subscription data when the time for storing the subscription data reaches the validity period of the subscription data. The communication network can delete the expired subscription data in time, thereby reducing the storage resources of the communication network.
Fig. 7 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure.
In step 710, when the validity period of the subscription data is changed, it is determined whether the subscription data exists in the communication network.
In some embodiments, after the validity period of the subscription data in the client server is changed, if the current time and the time when the client server sends the subscription information to the communication network are less than the validity period of the subscription data, it is determined that the subscription data exists in the communication network.
In step 720, if the subscription data exists in the communication network, the validity period after the subscription data is changed is transmitted to the communication network.
In some embodiments, when the communication network receives the validity period of the subscription data change sent by the client server, the communication network changes the validity period of the subscription data and replies to the client server, and the client server records the identifier of the communication network.
In some embodiments, the client server deletes the identifier of the communication network storing the subscription data when determining that the stored subscription data has expired. Even if the subscription data is updated subsequently, the subscription data or the validity period of the subscription data is not sent to the communication network when the request of the communication network is not received.
Fig. 8 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure. In this embodiment, the communication Network is, for example, SNPN (Stand-alone Non-Public Network), and includes at least AMF (Access and Mobility Management Function), UDM, and NEF. The client side server is located in the internal network of the enterprise a, and can be specifically divided into an authentication server and a subscription data providing server.
In step 810, the terminal sends a registration request to the SNPN AMF, where the request carries a terminal identifier, and the terminal identifier includes the domain name of the enterprise a.
In step 820, the SNPN AMF finds that the terminal belongs to enterprise a according to the domain name in the terminal identifier, and sends an authentication request to the enterprise a authentication server.
In some embodiments, the SNPN AMF may request authentication to the authentication server of enterprise a via the SNPN AUSF.
The authentication server of enterprise a authenticates the terminal at step 830.
In step 840, if the authentication is successful, the authentication server sends an authentication success notification to the subscription data providing server.
The SNPN AMF sends an authentication success notice to the SNPN UDM, and the notice can also contain a request for subscribing data of the terminal.
In step 850, the subscription data providing server transmits the terminal identification, the terminal subscription data, and the validity period of the subscription data to the SNPN NEF.
At step 860, SNPN NEF modifies the terminal subscription data to conform to the contract requirements of enterprise a and SNPN and the format of the data store in the UDM, and then sends it to SNPN UDM.
At step 870, the SNPN UDM successfully obtains the subscription data by the NEF in reply to the subscription data providing server subscription data.
In step 880, the subscription data providing server records the SNPN ID for the terminal identifier after receiving the reply of the SNPN UDM.
In step 890, after the SNPN UDM receives the terminal identifier, the terminal subscription data, and the validity period of the subscription data, a timer is started.
In step 8100, the SNPN UDM sends the terminal subscription data and the validity period of the subscription data to the SNPN AMF, and then the SNPN AMF sends the terminal subscription data and the validity period of the subscription data to the SNPN AMF.
In step 8110, when the timer in the SNPN UDM reaches the validity period of the subscription data, the SNPN UDM deletes the subscription data of the terminal.
In some embodiments, the subscription data providing server updates the subscription data and determines that the subscription data in the communication network is still valid, and transmits the terminal identification and the terminal subscription data to the SNPN NEF. Then the process continues to step 860-8110.
In some embodiments, the subscription data providing server updates the validity period of the subscription data, and if it is determined that the subscription data in the communication network is still valid, transmits the updated validity period of the subscription data to the SNPN NEF.
In the above embodiment, the client server provides the subscription data of the terminal to the non-public network, so that the enterprise client can provide or update the subscription data for the non-public network in real time as needed, and the non-public network can provide differentiated services for different terminals under the condition of saving storage resources of the non-public network.
Fig. 9 is a flowchart illustrating a subscription data transmission method according to another embodiment of the disclosure. In this embodiment, three groups of terminal subscription data are preset in the SNPN UDM, and correspond to the subscription data identifier 1, the subscription data identifier 2, and the subscription data identifier 3, respectively, and the current SNPN UDM provides a service for the terminal using the subscription data corresponding to the subscription data identifier 1.
In step 910, the subscription data of the terminal is changed in the enterprise a network, and is updated to the subscription data corresponding to the subscription data identifier 2.
In step 920, the subscription data providing server finds that the SNPN has been previously provided with the subscription information of the terminal according to the recorded identifier of the communication network storing the subscription data of the terminal, and the timer in the subscription data providing server does not reach the validity period of the subscription data.
In step 930, the subscription data providing server transmits 930 the terminal identification and the subscription data identification 2 to the SNPN NEF.
At step 940, SNPN NEF is forwarded to SNPN UDM.
In step 950, the SNPN UDM changes the subscription data of the terminal from the subscription data corresponding to the subscription data identifier 1 to the subscription data corresponding to the subscription data identifier 2.
At step 960, the SNPN UDM replies through the NEF that the subscription data provisioning server subscription data has been successfully updated.
In step 970, the SNPN UDM sends the updated terminal subscription data to the terminal.
In the embodiment, the terminal subscription data is updated in time in the non-public network.
Fig. 10 is a schematic structural diagram of some embodiments of a communications network end server according to the present disclosure. The communication network side server includes a user side server determining unit 1010, an authentication request transmitting unit 1020, and a subscription information receiving unit 1030. The subscriber-side server determining unit 1010 may be implemented by an AMF, and the authentication request transmitting unit 1020 and the subscription information receiving unit 1030 may be implemented by a NEF and a UDM.
The customer premises server determination unit 1010 is configured to determine a customer premises server corresponding to the terminal identification.
In some embodiments, the client server determining unit 1010 receives a registration request sent by a terminal, where the registration request carries a terminal identifier, and a corresponding client server may be determined according to the terminal identifier. The client server is a server of an enterprise client.
In some embodiments, the terminal identifier further carries an identifier or a domain name of the client server, and the client server is found according to the identifier or the domain name of the client server.
The authentication request sending unit 1020 is configured to send an authentication request to the user side server to instruct the user side server to authenticate the terminal and send subscription information corresponding to the terminal identifier if the terminal authentication is successful, where the subscription information includes at least one of subscription data and a subscription data identifier.
The subscription information receiving unit 1030 is configured to receive subscription information corresponding to the terminal identifier sent by the client server, and acquire subscription data corresponding to the terminal according to the subscription data identifier when the subscription information is the subscription data identifier.
In some embodiments, if the user-side server sends the subscription data, the communication network may directly obtain the subscription data corresponding to the terminal identifier, and send the subscription identifier to the terminal. The communication network does not need to prestore the signing data of the terminal, and the storage resource of the communication network is saved. In addition, the communication network does not need to pre-store the subscription data of the terminals, and the client server sets different subscription data for each terminal, so that the communication network can provide differentiated services for different terminals.
In some embodiments, one or more types of subscription data are pre-stored in the communication network, each type of subscription data corresponds to a different subscription data identifier, each terminal identifier corresponds to one subscription data identifier, and each subscription data identifier corresponds to one or more terminal identifiers. And if the user side server sends the signing data identification, the communication network determines the corresponding signing data according to the signing data identification and sends the signing data to the terminal. For example, an enterprise client has 100 terminals, 10 types of subscription data are prestored in the communication network, and the client server selects one type of subscription data for each terminal, which saves storage resources of the communication network compared with the related art in which each terminal corresponds to one subscription data. In addition, because all terminals do not use the same subscription data, the communication network can provide differentiated services for different terminals.
In some embodiments, the subscription information receiving unit 1030 is configured to filter and convert subscription information according to the UDM interface. In the scheme, the user-side server directly sends the signing information such as the signing data or the signing data identification of the terminal to the communication network, and the communication network filters and transfers the received signing information for system safety.
In the above embodiment, after the user-side server authenticates the terminal, the user-side server directly sends the subscription data or the subscription data identifier corresponding to the terminal identifier to the communication network, so that the user-side server can provide the subscription data of the terminal for the communication network in real time and on demand, and not only can the communication network provide differentiated services for different terminals, but also can save storage resources of the communication network.
In some embodiments, the subscription information receiving unit 1030 is further configured to delete the subscription data when the time for saving the subscription data reaches the validity period of the subscription data. By deleting the expired subscription data, the communication network storage resources can be reduced.
In some embodiments, the subscription information receiving unit 1030 is further configured to receive updated subscription information corresponding to the terminal identifier, which is sent by the user side server, wherein after the user side server updates the subscription information, the user side server determines whether subscription data before update corresponding to the terminal identifier exists in the communication network, and if so, sends the updated subscription information corresponding to the terminal identifier to the communication network; and updating the subscription data corresponding to the terminal identification according to the received updated subscription information.
In some embodiments, the subscription information receiving unit 1030 is further configured to receive a validity period of the subscription data sent by the client server, where the client server sends the validity period of the subscription data to the communication network after authenticating the terminal, or the client server determines whether the subscription data exists in the communication network in a case where the validity period of the subscription data is changed, and if the subscription data exists, sends the validity period after the subscription data is changed to the communication network.
Through the embodiment, the subscription data in the communication network and the validity period of the subscription data can be updated in time.
Fig. 11 is a schematic structural diagram of some embodiments of a client server according to the present disclosure. The client server includes an authentication server 1110 and a subscription data providing server 1120.
The authentication server 1110 is configured to receive an authentication request for terminal authentication sent by a communication network and authenticate the terminal, where the authentication request includes a terminal identifier, and the communication network determines an authentication server corresponding to the terminal identifier and sends the authentication request.
The subscription data providing server 1120 is configured to send subscription information corresponding to the terminal identifier to the communication network if the authentication of the terminal is successful, where the subscription information includes at least one of subscription data and a subscription data identifier, and the communication network obtains the subscription data corresponding to the terminal according to the subscription data identifier if the subscription information is the subscription data identifier.
In some embodiments, the subscription data providing server 1120 is configured to determine whether subscription data corresponding to the terminal identifier exists in the communication network in a case where the subscription information corresponding to the terminal identifier is updated; and if the subscription data corresponding to the terminal identification exists in the communication network, sending updated subscription information corresponding to the terminal identification to the communication network.
For example, after the subscription data is updated, if the current time and the time for sending the subscription data to the communication network are less than the validity period of the subscription data, it is determined that the subscription data before updating corresponding to the terminal identifier exists in the communication network, where the validity period includes a finite period and an infinite period. The subscription data providing server 1120 transmits the updated subscription information corresponding to the terminal identification to the communication network.
In some embodiments, the subscription data provisioning server 1120 is further configured to send a validity period of the subscription data to the communication network, wherein the communication network deletes the subscription data when the time for saving the subscription data reaches the validity period of the subscription data.
In some embodiments, the subscription data provisioning server 1120 is further configured to determine whether subscription data exists in the communication network in case of a change in the validity period of the subscription data; and if the subscription data exists in the communication network, sending the validity period after the subscription data is changed to the communication network.
In the above embodiment, the enterprise client may update the subscription data and the validity period of the subscription data in the communication network in time.
In other embodiments of the present disclosure, a subscription data transmission system is protected, and the subscription data transmission system includes the communication network side server and the user side server in the above embodiments.
Fig. 12 is a schematic structural diagram of some embodiments of an electronic device of the present disclosure. The electronic device includes a memory 1210 and a processor 1220. Wherein: memory 1210 may be a magnetic disk, flash memory, or any other non-volatile storage medium. The memory is used to store instructions in the embodiments corresponding to fig. 1-9. Processor 1220 is coupled to memory 1210 and may be implemented as one or more integrated circuits, such as a microprocessor or microcontroller. The processor 1220 is used to execute instructions stored in memory.
In some embodiments, processor 1220 is coupled to memory 1210 through a BUS BUS 1230. The electronic device 1200 may also be coupled to an external storage system 1250 via a storage interface 1240 for retrieving external data, and may also be coupled to a network or another computer system (not shown) via a network interface 1260. And will not be described in detail herein.
In this embodiment, the data instruction is stored in the memory, and the instruction is processed by the processor, so that the client server can provide the subscription data of the terminal to the communication network in real time as required, and not only can the communication network provide differentiated services for different terminals, but also can the storage resource of the communication network be saved.
In other embodiments, a computer-readable storage medium has stored thereon computer program instructions which, when executed by a processor, implement the steps of the method in the embodiments corresponding to fig. 1-9. As will be appreciated by one skilled in the art, embodiments of the present disclosure may be provided as a method, apparatus, or computer program product. Accordingly, the present disclosure may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present disclosure may take the form of a computer program product embodied on one or more computer-usable non-transitory storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present disclosure is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems) and computer program products according to embodiments of the disclosure. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
Thus far, the present disclosure has been described in detail. Some details that are well known in the art have not been described in order to avoid obscuring the concepts of the present disclosure. It will be fully apparent to those skilled in the art from the foregoing description how to practice the presently disclosed embodiments.
Although some specific embodiments of the present disclosure have been described in detail by way of example, it should be understood by those skilled in the art that the foregoing examples are for purposes of illustration only and are not intended to limit the scope of the present disclosure. It will be appreciated by those skilled in the art that modifications may be made to the above embodiments without departing from the scope and spirit of the present disclosure. The scope of the present disclosure is defined by the appended claims.
Claims (17)
1. A subscription data transmission method comprises the following steps:
determining a user side server corresponding to the terminal identification;
sending an authentication request to the user side server to indicate the user side server to authenticate the terminal and send subscription information corresponding to the terminal identifier under the condition that the terminal authentication is successful, wherein the subscription information comprises at least one of subscription data and a subscription data identifier; and
and receiving the subscription information corresponding to the terminal identifier, which is sent by the user side server, and acquiring the subscription data corresponding to the terminal according to the subscription data identifier under the condition that the subscription information is the subscription data identifier.
2. The subscription data transmission method of claim 1, further comprising:
and deleting the subscription data when the time for storing the subscription data reaches the validity period of the subscription data.
3. The subscription data transmission method of claim 2, further comprising:
receiving updated subscription information corresponding to the terminal identifier, which is sent by the user side server, wherein the user side server judges whether subscription data before updating corresponding to the terminal identifier exists in the communication network after updating the subscription information, and if yes, the updated subscription information corresponding to the terminal identifier is sent to the communication network; and
and updating the subscription data corresponding to the terminal identification according to the received updated subscription information.
4. The subscription data transmission method of claim 2, further comprising:
and receiving the validity period of the subscription data sent by the user side server.
5. The subscription data transmission method of claim 1, further comprising:
and filtering and converting the subscription information.
6. The subscription data transmission method of any one of claims 1 to 5, further comprising:
the method comprises the steps of storing multiple types of signing data in advance, wherein each type of signing data corresponds to different signing data marks, each terminal mark corresponds to one signing data mark, and each signing data mark corresponds to one or more terminal marks.
7. A subscription data transfer method as in any one of claims 1 to 5,
the terminal identification carries at least one of the identification and the domain name of the user side server.
8. A subscription data transmission method comprises the following steps:
receiving an authentication request for terminal authentication sent by a communication network, wherein the authentication request comprises a terminal identifier; and
and sending subscription information corresponding to the terminal identifier to the communication network under the condition that the terminal is successfully authenticated, wherein the subscription information comprises at least one of subscription data and a subscription data identifier, and under the condition that the subscription information is the subscription data identifier, the communication network acquires the subscription data corresponding to the terminal according to the subscription data identifier.
9. The subscription data transmission method of claim 8, further comprising:
under the condition of updating the subscription information corresponding to the terminal identification, judging whether subscription data corresponding to the terminal identification exists in the communication network; and
and if the subscription data corresponding to the terminal identification exists in the communication network, sending updated subscription information corresponding to the terminal identification to the communication network.
10. The subscription data transmission method of claim 9, wherein determining whether subscription data corresponding to the terminal identifier exists in the communication network comprises:
and under the condition that the current time and the time for sending the subscription data to the communication network are less than the validity period of the subscription data, determining that the subscription data before updating corresponding to the terminal identifier exists in the communication network, wherein the validity period comprises a limited period and an unlimited period.
11. The subscription data transmission method of any one of claims 8 to 10, further comprising:
and sending the validity period of the subscription data to the communication network, wherein the subscription data is deleted when the time for storing the subscription data reaches the validity period of the subscription data by the communication network.
12. The subscription data transmission method of claim 11, further comprising:
judging whether the subscription data exists in the communication network or not under the condition that the validity period of the subscription data is changed; and
and if the subscription data exists in the communication network, sending the validity period after the subscription data is changed to the communication network.
13. A communications network side server, comprising:
a client server determination unit configured to determine a client server corresponding to the terminal identifier;
an authentication request sending unit configured to send an authentication request to the user side server to indicate the user side server to authenticate a terminal and send subscription information corresponding to the terminal identifier if the terminal authentication is successful, wherein the subscription information includes at least one of subscription data and a subscription data identifier; and
and the subscription information receiving unit is configured to receive the subscription information corresponding to the terminal identifier and sent by the user side server, and acquire the subscription data corresponding to the terminal according to the subscription data identifier under the condition that the subscription information is the subscription data identifier.
14. A client server, comprising:
the authentication server is configured to receive an authentication request for terminal authentication sent by a communication network and authenticate the terminal, wherein the authentication request comprises a terminal identifier; and
and the signing data providing server is configured to send signing information corresponding to the terminal identifier to the communication network under the condition that the terminal is successfully authenticated, wherein the signing information comprises at least one of signing data and signing data identifiers, and under the condition that the signing information is the signing data identifiers, the communication network acquires the signing data corresponding to the terminal according to the signing data identifiers.
15. A subscription data transfer system comprising:
the communications network end server of claim 13; and
the user-side server of claim 14.
16. An electronic device, comprising:
a memory; and
a processor coupled to the memory, the processor configured to perform the subscription data transfer method of any of claims 1-12 based on instructions stored in the memory.
17. A non-transitory computer readable storage medium having stored thereon computer program instructions which, when executed by a processor, implement the subscription data transfer method of any one of claims 1 to 12.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011057181.3A CN114339716A (en) | 2020-09-29 | 2020-09-29 | Subscription data transmission method, system and server |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011057181.3A CN114339716A (en) | 2020-09-29 | 2020-09-29 | Subscription data transmission method, system and server |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN114339716A true CN114339716A (en) | 2022-04-12 |
Family
ID=81011064
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011057181.3A Pending CN114339716A (en) | 2020-09-29 | 2020-09-29 | Subscription data transmission method, system and server |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114339716A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2024060894A1 (en) * | 2022-09-23 | 2024-03-28 | 华为技术有限公司 | Communication method and apparatus |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109561430A (en) * | 2017-09-26 | 2019-04-02 | 大唐移动通信设备有限公司 | A kind of implementation method and equipment of public network user access private network |
| CN110881014A (en) * | 2018-09-05 | 2020-03-13 | 普天信息技术有限公司 | Method and device for physically isolating services of wireless private network |
-
2020
- 2020-09-29 CN CN202011057181.3A patent/CN114339716A/en active Pending
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109561430A (en) * | 2017-09-26 | 2019-04-02 | 大唐移动通信设备有限公司 | A kind of implementation method and equipment of public network user access private network |
| CN110881014A (en) * | 2018-09-05 | 2020-03-13 | 普天信息技术有限公司 | Method and device for physically isolating services of wireless private network |
Non-Patent Citations (1)
| Title |
|---|
| LENOVO等: "KI #1, Sol #10: Updates for additional clarifications and add impacts", 3GPP TSG-SA WG2 MEETING #140 E (E-MEETING) S2-2005930, 2 September 2020 (2020-09-02), pages 6 * |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2024060894A1 (en) * | 2022-09-23 | 2024-03-28 | 华为技术有限公司 | Communication method and apparatus |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10285050B2 (en) | Method and apparatus for managing a profile of a terminal in a wireless communication system | |
| CN110214459B (en) | Service processing method and device | |
| CN110800331B (en) | Network verification method, related equipment and system | |
| EP3284274B1 (en) | Method and apparatus for managing a profile of a terminal in a wireless communication system | |
| US8369823B2 (en) | Method for legitimately unlocking a SIM card lock, unlocking server, and unlocking system for a SIM card lock | |
| US11096051B2 (en) | Connection establishment method, device, and system | |
| WO2015081882A1 (en) | Method and apparatus for downloading operator document | |
| US11838752B2 (en) | Method and apparatus for managing a profile of a terminal in a wireless communication system | |
| WO2017207314A1 (en) | A method and an apparatus for publishing assertions in a distributed database of a mobile telecommunication network and for personalising internet of things devices | |
| WO2014183260A1 (en) | Method, device and system for processing data service under roaming scenario | |
| CN111132305B (en) | Method for 5G user terminal to access 5G network, user terminal equipment and medium | |
| CN109792604A (en) | A kind of eUICC configuration file management method and relevant apparatus | |
| CN113498060B (en) | Method, device, equipment and storage medium for controlling network slice authentication | |
| CN114339716A (en) | Subscription data transmission method, system and server | |
| JP2009118267A (en) | Communication network system, communication network control method, communication control apparatus, communication control program, service control device and service control program | |
| CN108024241B (en) | Terminal access authentication method, system and authentication server | |
| JP4301770B2 (en) | Connection information management system, connection information management method, IC card, server | |
| CN113676985B (en) | Terminal access control method, device, system, terminal and electronic equipment | |
| CN110972139B (en) | Method and gateway for realizing internet surfing authentication of mobile terminal | |
| CN113691971B (en) | Network subscription data acquisition method, device and system | |
| CN114980095B (en) | Data access method and data access device | |
| CN111510917B (en) | Network access method and device for virtual USIM | |
| CN114945173B (en) | Cross-PLMN signaling forwarding method, electronic equipment and storage medium | |
| CN112312389B (en) | Communication information transmission method, communication information transmission device, storage medium and electronic equipment | |
| CN113132979B (en) | Method for acquiring and issuing IMSI encrypted public key and equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |