CN114615057B - Gateway equipment for distributing access data based on alternative user identity module - Google Patents

Gateway equipment for distributing access data based on alternative user identity module Download PDF

Info

Publication number
CN114615057B
CN114615057B CN202210240471.4A CN202210240471A CN114615057B CN 114615057 B CN114615057 B CN 114615057B CN 202210240471 A CN202210240471 A CN 202210240471A CN 114615057 B CN114615057 B CN 114615057B
Authority
CN
China
Prior art keywords
module
alternative
management
user identity
pool
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202210240471.4A
Other languages
Chinese (zh)
Other versions
CN114615057A (en
Inventor
邹俊伟
周鹏
朱旭东
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Chinarainbow Technology Co ltd
Original Assignee
Beijing Chinarainbow Technology Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Chinarainbow Technology Co ltd filed Critical Beijing Chinarainbow Technology Co ltd
Priority to CN202210240471.4A priority Critical patent/CN114615057B/en
Publication of CN114615057A publication Critical patent/CN114615057A/en
Application granted granted Critical
Publication of CN114615057B publication Critical patent/CN114615057B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/66Arrangements for connecting between networks having differing types of switching systems, e.g. gateways
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/42User authentication using separate channels for security data
    • G06F21/43User authentication using separate channels for security data wireless channels
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W88/00Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
    • H04W88/16Gateway arrangements

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computing Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The embodiment of the invention relates to gateway equipment for distributing access data based on an alternative user identity module, which comprises the following components: the system comprises a main control unit, an access device interface unit, an alternative module Chi Jiekou unit, an alternative module pool management unit, a database interface unit and a management device interface unit. When receiving the access data of the remote access equipment, the equipment selects a target module from the alternative user identity module pool, distributes the access data to the target module, and returns the return information of the target module to the remote access equipment; in addition, the device also uses the distribution record database to store the information of the distribution process of the access data each time, and also provides a distribution record inquiry function for the distribution record management device to call. The device can help the testing party save the test management cost.

Description

Gateway equipment for distributing access data based on alternative user identity module
Technical Field
The invention relates to the technical field of data processing, in particular to gateway equipment for distributing access data based on an alternative user identity module.
Background
A subscriber identity module (Subscriber Identity Module, SIM) is provided on the handset or internet of things device, which is also known as a SIM card. The instruction set of the user identification module comprises two major parts: a network resident instruction set associated with a telecommunications network logon process, and a non-network resident instruction set associated with a telecommunications or internet of things application. Wherein, the resident network instruction set is solidified, and the non-resident network instruction set is changed frequently. Once the non-network resident instruction set changes, the subscriber identity module needs to be tested. The conventional operation mode is that the user identity module after the updating of the instruction set is inserted into a card slot of a mobile phone or an internet of things device to perform real network test, and a real network number is written into each user identity module to be tested (SIM card to be tested), that is, the more the tested mobile phone or the internet of things device is, the larger the corresponding real network number requirement for testing is, so that a testing party needs to store and maintain a large number of real network numbers for testing.
To solve this problem, we propose a new solution for sharing test numbers, which consists of a front-end remote access device for subscriber identity modules, a background gateway device, a pool of alternative subscriber identity modules (i.e. a pool of alternative SIM cards), etc., where a certain number of alternative subscriber identity modules with real network numbers (i.e. alternative SIM cards) are provided in the pool of alternative subscriber identity modules for test number sharing. The user identity module remote access equipment identifies an instruction sent to the user identity module to be tested by the mobile phone or the Internet of things equipment; if the current instruction belongs to a resident network instruction set, namely a solidified network-logging instruction set, forwarding the current instruction as access data to a background gateway device, and completing network-logging operation by the gateway device by using a shared test number; if the current instruction belongs to a non-network resident instruction set, namely an instruction set to be tested related to the application of the telecommunication or the Internet of things, the current instruction is sent to a user identity module to be tested for testing. After receiving the access data, the gateway equipment of the background selects an alternative user identity module in an idle state from the alternative user identity module pool as a target module, distributes an instruction analyzed from the access data to the target module, and returns instruction return data returned by the target module to the user identity module remote access equipment for transmitting the access data. Therefore, based on the scheme, the test mechanism of sharing the real network number is realized, the test of all the identity modules of the user to be tested can be completed on the premise of only few real network numbers for test, one real network number for test can be no longer applied for each mobile phone or Internet of things device, and a large number of real network numbers for test are no longer required to be stored and maintained.
In order to realize the solution, besides the remote access device of the front-end user identity module and the alternative user identity module pool of the background, a gateway device capable of realizing the functions of the background gateway device is also required.
Disclosure of Invention
The invention aims at overcoming the defects of the prior art, and provides gateway equipment for distributing access data based on an alternative user identity module, which comprises: the system comprises a main control unit, an access device interface unit, an alternative module Chi Jiekou unit, an alternative module pool management unit, a database interface unit and a management device interface unit. The device is connected with external user identity module remote access equipment, an alternative user identity module pool, a distribution record database and a distribution record management device, when receiving access data of the remote access equipment, a destination module is selected from the alternative user identity module pool, the access data is distributed to the alternative user identity module pool, and return information of the destination module is returned to the remote access equipment; in addition, the device also uses the distribution record database to store the information of the distribution process of the access data each time, and also provides a distribution record inquiry function for the distribution record management device to call. The device not only realizes the device function of the background gateway device mentioned in the solution and assists the testing party in saving the test management cost, but also provides the functions of storing and inquiring the history distribution record.
To achieve the above object, an embodiment of the present invention provides a gateway device for distributing access data based on an alternative user identity module, where the device includes: the system comprises a main control unit, an access device interface unit, an alternative module Chi Jiekou unit, an alternative module pool management unit, a database interface unit and a management device interface unit;
the main control unit is connected with one or more external user identity module remote access devices through the access device interface unit, is also connected with one or more external alternative user identity module pools through the alternative module Chi Jiekou unit, is also connected with the alternative module pool management unit, is also connected with an external distribution record database through the database interface unit, and is also connected with an external distribution record management device through the management device interface unit;
the main control unit is used for combining the access equipment interface unit and the alternative module pool management unit, and processing the alternative user identity module application operation of any user identity module remote access equipment to obtain a corresponding first target module; combining the alternative module Chi Jiekou unit, and carrying out data distribution processing on access data of the remote access device of the current user identity module based on the first destination module; the database interface unit is combined to record and track the access data distribution processing process of the remote access equipment of the current user identity module; combining the access equipment interface unit and the alternative module pool management unit to process the resource release operation of the first destination module;
The main control unit is also used for combining the access equipment interface unit and the management equipment interface unit to process the inquiry instruction sent by the distribution record management equipment;
the alternative module pool management unit is connected with all external alternative user identity module pools through the alternative module Chi Jiekou unit and is also connected with external alternative user identity module pool management equipment; the alternative module pool management unit is used for storing a first management table reflecting the state information of all the alternative user identity module pools; the first management table comprises one or more first management sub-tables, the first management sub-tables comprise a plurality of first management records, the first management records comprise a module identification field, a module state field and a module occupied equipment identification field, and the module state field comprises an idle state, an occupied state and an abnormal state; each first management sub-table corresponds to a module pool identifier of an external alternative user identity module pool, and each first management record corresponds to an alternative user identity module in the external alternative user identity module pool corresponding to the current first management sub-table.
Preferably, the main control unit is specifically configured to identify an instruction sent by any user identity module remote access device received by the access device interface unit when the processing of the candidate user identity module application operation of any user identity module remote access device obtains a corresponding first destination module; if the currently received instruction is a first alternative module application instruction, performing equipment verification processing according to a first access equipment identifier of the first alternative module application instruction; if the equipment verification is successful, a first alternative module selection instruction carrying the first access equipment identifier is sent to the alternative module pool management unit, the returned first module pool identifier and the first module identifier are received, and the alternative user identity module matched with the first module identifier in the alternative user identity module pool matched with the first module identifier is used as the first destination module; and sending first application return data carrying the first module pool identifier and the first module identifier to the remote access equipment of the current user identity module.
Further, the main control unit is specifically configured to query a preset legal access device list according to the first access device identifier during the device verification process, and if a legal access device record matching an access device identifier field with the first access device identifier exists in the list, the device verification is successful; the legal access device list comprises a plurality of legal access device records, and the legal access device records comprise the access device identification field.
Further, the alternative module pool management unit is further configured to select, when receiving the first alternative module selection instruction sent by the main control unit, the first management record with the module status field in an idle state in the first management table as a destination record; modifying the module state field of the destination record into an occupied state, and modifying the module occupied equipment identification field of the destination record into the first access equipment identification of the first alternative module selection instruction; extracting the module pool identifier corresponding to the first management sub-table where the destination record is located as the corresponding first module pool identifier, and extracting the module identifier field of the destination record as the corresponding first module identifier; and sending the first module pool identifier and the first module identifier back to the main control unit.
Preferably, the main control unit is specifically configured to receive, when the data distribution processing is performed on access data of the remote access device of the current user identity module based on the first destination module, first access data sent by the remote access device of the current user identity module, and record a data receiving time as a first distribution start time; the first network residence instruction of the first access data is sent to the first destination module through the alternative module Chi Jiekou unit, and the returned first return data is received; the first return data is sent to the remote access equipment of the current user identity module through the access equipment interface unit, and the data sending time is recorded as a first distribution ending time; wherein the first access data includes a first access device identification and the first network resident instruction.
Preferably, the main control unit is specifically configured to store, through the database interface unit, a first distribution record formed by the first access device identifier, the first network residence instruction, the module pool identifier and the module identifier corresponding to the first destination module, the first return data, the first distribution start time and the first distribution end time, into the distribution record database when performing record tracking processing on the access data distribution processing procedure of the remote access device with the current user identity module.
Preferably, the main control unit is specifically configured to identify, when the processing performs a resource release operation on the first destination module, an instruction sent by the remote access device of the current user identity module and received by the interface unit of the access device; if the currently received instruction is a first alternative module release instruction, extracting a first module pool identifier and a first module identifier from the first alternative module release instruction; and sending a first module release instruction carrying the first module pool identifier and the first module identifier to the alternative module pool management unit.
Further, the alternative module pool management unit is further configured to extract the first module pool identifier and the first module identifier from the first module release instruction when receiving the first module release instruction sent by the main control unit; the first management sub-table matched with the first module pool identifier in the first management table is marked as a current management sub-table; the first management record matched with the first module identifier in the module identifier field in the current management sub-table is recorded as a current management record; and modifying the module state field of the current management record into an idle state, and setting the module occupied equipment identification field of the current management record to be empty.
Preferably, the alternative module pool management unit is further configured to lock the locally stored first management table when receiving a configuration instruction sent by the alternative user identity module pool management device, and prohibit modification of the first management table; the first management table is sent to the management equipment of the alternative user identity module pool, and the management table information is rebuilt by the management equipment of the alternative user identity module pool; receiving a second management table returned by the alternative user identity module pool management equipment; and unlocking the first management table stored locally, and replacing the first management table after unlocking by using the second management table.
Preferably, the alternative module pool management unit is further configured to periodically obtain, at a preset time interval, an instruction from the alternative module Chi Jiekou unit to a status of all the alternative user identity module pool group sending modules; receiving a first module pool status report returned by each alternative user identity module pool; marking a first module data group with the first module state data in the first module pool state report being in an abnormal state as a first abnormal module data group; if the number of the first abnormal module data sets is not 0, extracting the first management sub-table matched with the first module pool identification data of the first module pool state report from the first management table as a corresponding first matched management sub-table; marking the first management record matched with the first module identification data of each first abnormal module data group in the first matching management sub-table as a first abnormal management record; modifying the module state fields of all the first exception management records into an exception state, and setting the module occupation equipment identification fields to be empty; wherein the first module pool status report includes the first module pool identification data and a plurality of the first module data sets; the first module data set includes the first module identification data and the first module status data; the first module state data includes a normal state and an abnormal state.
The embodiment of the invention provides gateway equipment for distributing access data based on an alternative user identity module, which comprises: the system comprises a main control unit, an access device interface unit, an alternative module Chi Jiekou unit, an alternative module pool management unit, a database interface unit and a management device interface unit. The device is connected with external user identity module remote access equipment, an alternative user identity module pool, a distribution record database and distribution record management equipment. In one interaction with a remote access device of a user identity module, the device obtains resident network instruction data by identifying access data of the remote access device, selects a current destination module by identifying idle states of alternative user identity modules of an alternative user identity module pool, distributes the resident network instruction data to the destination module, and sends back an instruction execution result returned from the destination module to the remote access device to complete the interaction. In addition, the device also records the process information of the current interaction and stores the process information in a distributed record database for inquiry. In addition, the device also provides a query function for the distribution record database, and when receiving a query instruction of the distribution record management device, the device obtains a corresponding query result from the distribution record database and returns the query result to the distribution record management device. The device not only assists the testing party to save the test management cost, but also provides the functions of storing and inquiring the history distribution record.
Drawings
Fig. 1 is a block diagram of a gateway device for distributing access data based on an alternative user identification module according to an embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention will be described in further detail below with reference to the accompanying drawings, and it is apparent that the described embodiments are only some embodiments of the present invention, not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.
As shown in fig. 1, which is a block diagram of a gateway device for distributing access data based on an alternative user identity module according to an embodiment of the present invention, a gateway device 1 for distributing access data based on an alternative user identity module mainly includes: a main control unit 11, an access device interface unit 12, an alternative module Chi Jiekou unit 13, an alternative module pool management unit 14, a database interface unit 15, and a management device interface unit 16.
The main control unit 11 is connected with the external one or more user identity modules remote access devices 2 through the access device interface unit 12, is connected with the external one or more alternative user identity module pools 3 through the alternative module Chi Jiekou unit 13, is connected with the alternative module pool management unit 14, is connected with the external distribution record database 5 through the database interface unit 15, and is connected with the external distribution record management device 6 through the management device interface unit 16. The alternative module pool management unit 14 is connected with all external alternative subscriber identity module pools 3 through the alternative module Chi Jiekou unit 13 and is also connected with external alternative subscriber identity module pool management equipment 4.
Here, the entity of the user identity module has multiple forms, which can be various packaging forms and various communication frequency bands (2G/3G/4G/5G/6G) in the fields of telecommunications and internet of things, and at least includes: SIM cards, universal subscriber identity module (Universal Subscriber Identity Module, USIM) cards, universal integrated circuit cards (Universal Integrated Circuit Card, UICC), embedded subscriber identity module (e-SIM), etc.;
The external user identity module remote access device 2 can confirm the current user identity module to be tested by loading an entity user identity module or simulating the entity user identity module by using a user identity module simulation program, can create a data transmission channel for the mobile phone or the internet of things device outside the external user identity module and the internal user identity module to be tested, and can recognize the interaction information between the mobile phone or the internet of things device and the user identity module to be tested through the data transmission channel; the user identity module remote access device 2 is connected with the gateway device 1 through an internet mode, and the device interface unit 12 is specifically a protocol analysis/encapsulation interface of a corresponding transmission control protocol/internet protocol (Transmission Control Protocol/Internet Protocol, TCP/IP);
the external alternative user identity module pool 3 is multi-module processing equipment capable of loading a plurality of user identity modules with real network numbers, and the operations of resetting, instruction sending, instruction return data receiving and the like can be respectively carried out on the plurality of user identity modules loaded in the multi-module processing equipment; the alternative user identity module pool 3 can be connected with the gateway device 1 through a universal serial bus (Universal Serial Bus, USB), a serial port or a network cable and other connection modes, and the alternative module Chi Jiekou unit 13 is a protocol analysis/encapsulation interface of a corresponding USB protocol, serial port protocol or TCP/IP protocol;
The external alternative user identity module pool management equipment 4 provides a corresponding configuration management interface in a browser or client mode and is connected with the gateway equipment 1 in an Internet mode;
the external distribution record database 5 is connected with the gateway device 1 through an internet mode, and the database interface unit 15 is specifically a corresponding database access interface based on TCP/IP protocol;
the external distribution record management device 6 provides a corresponding distribution record query interface through a browser or a client mode and is connected with the gateway device 1 through an internet mode, and the management device interface unit 16 is specifically a corresponding query application processing interface based on TCP/IP protocol;
the gateway device 1 is a custom gateway device with a basic gateway communication function, and has a main control unit 11, an access device interface unit 12, an alternative module Chi Jiekou unit 13, an alternative module pool management unit 14, a database interface unit 15, and a management device interface unit 16.
The alternative module pool management unit 14 is used for storing a first management table reflecting the state information of all the alternative user identity module pools 3; the first management table comprises one or more first management sub-tables, the first management sub-tables comprise a plurality of first management records, the first management records comprise a module identification field, a module state field and a module occupied equipment identification field, and the module state field comprises an idle state, an occupied state and an abnormal state; each first management sub-table corresponds to a module pool identifier of an external alternative user identity module pool 3, and each first management record corresponds to an alternative user identity module in the external alternative user identity module pool 3 corresponding to the current first management sub-table.
The main control unit 11 is used for combining the access device interface unit 12 and the alternative module pool management unit 14, and processing the alternative user identity module application operation of the remote access device 2 of any user identity module to obtain a corresponding first destination module; combining with the alternative module Chi Jiekou unit 13, carrying out data distribution processing on access data of the remote access device 2 of the current user identity module based on the first destination module; the record tracking processing is carried out on the access data distribution processing process of the remote access equipment 2 with the current user identity module by combining with the database interface unit 15; and in combination with the access device interface unit 12 and the alternative module pool management unit 14, handles resource release operations for the first destination module. The main control unit 11 is further configured to process the query instruction sent by the distribution record management device 6 in combination with the access device interface unit 12 and the management device interface unit 16.
Here, the gateway device 1 may be externally connected to one or more user identification modules to remotely access the device 2. Before the identification processing is performed on the interaction information between the mobile phone/internet of things device and the user identity module to be tested, the user identity module remote access device 2 needs to send a first alternative module application instruction to the gateway device 1 to apply for an alternative user identity module for sharing the test number, namely a first destination module, from the alternative user identity module pool 3, state information of all alternative user identity modules in all alternative user identity module pools 3 is stored in the first management table, and the gateway device 1 can confirm the first destination module by inquiring the first management table. After the application of the alternative module is successful, the user identity module remote access device 2 identifies the current instruction sent by the mobile phone/internet of things device to the user identity module to be tested, if the current instruction is a network resident instruction, the current instruction is packaged into access data and forwarded to the gateway device 1, the gateway device 1 extracts the network resident instruction from the access data and distributes the network resident instruction to the first destination module for instruction execution, and sends instruction return data to the user identity module remote access device 2, and then the user identity module remote access device 2 sends the instruction return data to the mobile phone/internet of things device side, so that the purpose of helping the mobile phone/internet of things device to successfully log in a network by using the first destination module with a real network number is achieved. When the user identity module remote access device 2 stops identifying the interaction information between the mobile phone/the internet of things device and the user identity module to be tested, a first alternative module release instruction needs to be sent to the gateway device 1 so that the gateway device 1 can timely release resources of the currently occupied sharing module, namely the first destination module, and use the resource release instruction for other remote access devices. In addition, the gateway device 1 records the processing procedure information of the access data distributed based on the alternative user identity module each time, and stores the processing procedure information in the distribution record database 5 for process real-time reproduction and history information inquiry. The gateway apparatus 1 also provides a plurality of query types to the distribution record management apparatus 6 based on the distribution record database 5.
In a specific implementation of the embodiment of the present invention, the main control unit 11 is specifically configured to identify, when an operation is applied to obtain a corresponding first-purpose module by processing an alternative user id module of any user id module remote access device 2, an instruction sent by any user id module remote access device 2 and received by the access device interface unit 12; if the currently received instruction is a first alternative module application instruction, performing equipment verification processing according to a first access equipment identifier of the first alternative module application instruction; if the equipment verification is successful, a first alternative module selection instruction carrying a first access equipment identifier is sent to an alternative module pool management unit 14, the received first module pool identifier and the first module identifier are received back, and an alternative user identity module matched with the first module identifier in an alternative user identity module pool 3 matched with the first module identifier is used as a first target module; and sends the first application return data carrying the first module pool identifier and the first module identifier to the current user identity module remote access device 2.
Here, the detailed processing steps of the first destination module corresponding to the application operation of the alternative user id module of any user id module remote access device 2 are described.
Further, in the above steps, the specific implementation of performing the device verification process by the main control unit 11 according to the first access device identifier of the first alternative module application instruction may be various. In still another specific implementation of the embodiment of the present invention, the main control unit 11 is specifically configured to query a preset legal access device list according to the first access device identifier during the device authentication process, and if a legal access device record matching the access device identifier field with the first access device identifier exists in the list, the device authentication is successful; the legal access device list comprises a plurality of legal access device records, and the legal access device records comprise access device identification fields.
Further, in the above steps, after the main control unit 11 sends the first alternative module selection instruction to the alternative module pool management unit 14, the corresponding processing flow on the side of the module pool management unit 14 is activated. Correspondingly, the alternative module pool management unit 14 is further configured to, when receiving a first alternative module selection instruction sent by the main control unit 11, select, in the first management table, a first management record with a module status field in an idle state as a destination record; modifying a module state field of the target record into an occupied state, and modifying a module occupied equipment identification field of the target record into a first access equipment identification of a first alternative module selection instruction; extracting a module pool identifier corresponding to a first management sub-table where the target record is located as a corresponding first module pool identifier, and extracting a module identifier field of the target record as a corresponding first module identifier; and sends back the first module pool identification and the first module identification to the main control unit 11.
It should be noted that, the alternative module pool management unit 14 may have various implementations when selecting, as the destination record, the first management record having one module status field in the idle state from the first management table. In still another specific implementation of the embodiment of the present invention, the alternative module pool management unit 14 is specifically configured to, when selecting, as the destination record, a first management record with a module status field in an idle state in the first management table, extract all the first management records with the module status field in the idle state from the first management table to form a first management record set; and ordering all the first management records in the first management record set according to the order from small to large of the flow package price of the alternative user identity module corresponding to each first management record, and taking the first management record with the highest ordering as the target record. Thus, the alternative user identity module corresponding to the destination record selected each time is the sharing module with the lowest flow consumption cost in the currently available sharing modules.
In still another specific implementation of the embodiment of the present invention, the main control unit 11 is specifically configured to receive, when performing data distribution processing on access data of the current user identity module remote access device 2 based on the first destination module, first access data sent by the current user identity module remote access device 2, and record a data receiving time as a first distribution start time; the first network resident instruction of the first access data is sent to the first destination module through the alternative module Chi Jiekou unit 13, and the returned first return data is received; the first return data is sent to the remote access device 2 of the current user identity module through the access device interface unit 12, and the data sending time is recorded as the first distribution ending time; the first access data comprises a first access equipment identifier and a first network residence instruction.
Here, the foregoing description will be given of the detailed processing steps of the data distribution processing for the access data of the current subscriber identity module remote access device 2 based on the first destination module.
Note that, when the main control unit 11 sends the first network-resident instruction of the first access data to the first destination module through the alternative module Chi Jiekou unit 13, specifically: the main control unit 11 encapsulates the first module identifier of the first destination module and the first network residence instruction into a corresponding first module execution instruction, and sends the first module execution instruction to the alternative user identity identification module pool 3 corresponding to the first module pool identifier of the first destination module through the alternative module Chi Jiekou unit 13. Correspondingly, on the side of the alternative user identity module pool 3, an alternative user identity module corresponding to a first module identifier in the first module executing instruction is selected to complete the instruction execution of a first network resident instruction in the first module executing instruction, and after the instruction execution is completed, instruction return data returned by the corresponding alternative user identity module is returned to the main control unit 11 as first return data.
In yet another specific implementation of the embodiment of the present invention, the main control unit 11 is specifically configured to store, when performing record tracking processing on an access data distribution processing procedure of the remote access device 2 with the current user identity module, a first distribution record composed of a first access device identifier, a first network residence instruction, a module pool identifier and a module identifier corresponding to a first destination module, first return data, a first distribution start time and a first distribution end time, into the distribution record database 5 through the database interface unit 15.
Here, the detailed processing steps of the record tracking processing performed in the access data distribution processing procedure with the current user identification module remote access device 2 are described.
It should be noted that, the gateway device 1 may create a plurality of basic query manners based on the data types in the first distribution record stored in the distribution record database 5, including: inquiring according to access equipment, inquiring according to a network resident instruction, inquiring according to a module pool identifier and a module identifier, inquiring according to time and the like; the corresponding advanced query mode can be created by combining the multiple basic query modes. In yet another specific implementation of the embodiment of the present invention, the main control unit 11 is specifically configured to extract, when processing a query instruction sent by the distribution record management device 6, a query type and a query keyword from the query instruction; when the query type is query according to the access equipment, the query keyword is used as the current query equipment identifier, all the distribution records matched with the current query equipment identifier in the distribution record database 5 are summarized to generate a corresponding first query report, and the corresponding first query report is returned to the distribution record management equipment 6; when the query type is query according to the network resident instruction, taking the query keyword as the current network resident instruction, and summarizing all distribution records matched with the current network resident instruction in the distribution record database 5 to generate a corresponding second query report, and returning the second query report to the distribution record management equipment 6; when the query type is query according to the module pool identifier, the query keyword is used as the current module pool identifier, all distribution records matched with the current module pool identifier in the distribution record database 5 are summarized to generate a corresponding third query report, and the third query report is returned to the distribution record management equipment 6; when the query type is query according to the module pool identifier and the module identifier, extracting the current module pool identifier and the current module identifier from the query keyword, and summarizing all distribution records in the distribution record database 5, wherein the module pool identifier is matched with the current module pool identifier and the module identifier is matched with the current module identifier to generate a corresponding fourth query report, and returning the fourth query report to the distribution record management equipment 6; when the query type is time-based query, extracting the current start time and the current end time from the query keyword to form a first time period, and summarizing all distribution records in the distribution record database 5, wherein the distribution time period formed by the distribution start time and the distribution end time satisfies the first time period, so as to generate a corresponding fifth query report, and returning the fifth query report to the distribution record management device 6.
In yet another specific implementation of the embodiment of the present invention, the main control unit 11 is specifically configured to identify, when processing a resource release operation on the first destination module, an instruction sent by the remote access device 2 of the current user identity module and received by the access device interface unit 12; if the currently received instruction is a first alternative module release instruction, extracting a first module pool identifier and a first module identifier from the first alternative module release instruction; and sends a first module release instruction carrying the first module pool identification and the first module identification to the alternative module pool management unit 14.
Here, the detailed processing steps of the foregoing processing for the resource release operation of the first destination module will be described.
Further, in the above steps, after the main control unit 11 sends the first module release instruction to the module pool management unit 14, the corresponding processing procedure on the module pool management unit 14 side is activated. Correspondingly, the alternative module pool management unit 14 is further configured to extract, when receiving a first module release instruction sent by the main control unit 11, a first module pool identifier and a first module identifier from the first module release instruction; a first management sub-table matched with the first module pool identifier in the first management table is marked as a current management sub-table; the first management record of which the module identification field is matched with the first module identification in the current management sub-table is recorded as the current management record; and modifying the module state field of the current management record into an idle state, and setting the module occupation equipment identification field of the current management record to be empty.
The alternative module pool management unit 14 is further configured to lock the locally stored first management table, and prohibit modification of the first management table when receiving a configuration instruction sent by the alternative user identity module pool management device 4; the first management table is sent to the management equipment 4 of the alternative user identity module pool, and the management table information is rebuilt by the management equipment 4 of the alternative user identity module pool; and receiving a second management table returned by the alternative user identity module pool management device 4; and unlocking the first management table stored locally, and replacing the unlocked first management table by using the second management table.
Here, the main function of the alternative module pool management unit 14 is to configure and maintain the first management table; when configured, the new table is received from the alternative user identity module pool management device 4 to replace the original table.
The alternative module pool management unit 14 is further configured to periodically obtain an instruction from the group sending module pool state of all the alternative user identity module pools 3 through the alternative module Chi Jiekou unit 13 at a preset time interval; receiving a first module pool state report returned by each alternative user identity module pool 3; marking a first module data group with the first module state data in the first module pool state report being in an abnormal state as a first abnormal module data group; if the number of the first abnormal module data sets is not 0, extracting a first management sub-table matched with the first module pool identification data of the first module pool state report from the first management table to serve as a corresponding first matched management sub-table; marking first management records in the first matching management sub-table, wherein the first management records are matched with the first module identification data of each first abnormal module data group in the module identification field as first abnormal management records; modifying the module status fields of all the first exception management records into an exception status, and setting the module occupation equipment identification fields to be empty; wherein the first module pool status report includes a plurality of first module data sets of first module pool identification data; the first module data set includes first module identification data and first module status data; the first module state data includes a normal state and an abnormal state.
Here, the manner in which the alternative module pool management unit 14 maintains the first management table mainly includes two main types: 1) The active maintenance class periodically sends module pool state acquisition instructions to all the alternative user identity module pools 3 to obtain a returned first module pool state report, and if the module information of the abnormal state exists in the first module pool state report, the state of the corresponding module in the first management table is also modified into the abnormal state; 2) The passive maintenance class sets the state of the relevant module to an occupied state when receiving a first alternative module selection instruction sent by the main control unit 11, and sets the state of the relevant module to an idle state when receiving a first module release instruction sent by the main control unit 11. The passive maintenance class processing steps of the alternative module pool management unit 14 have been correspondingly described in the foregoing, and the above description mainly describes the active maintenance class processing steps of the alternative module pool management unit 14.
It should be noted that, it should be understood that the division of the units of the above device is merely a division of a logic function, and may be fully or partially integrated into a physical entity or may be physically separated. And these units may all be implemented in the form of software calls through the processing element; or can be realized in hardware; the method can also be realized in a form that a part of units are called by processing elements to be software, and the other part of units are realized in a form of hardware. For example, the main control unit may be a processing element which is set up separately, may be implemented in a chip of the above-mentioned device, or may be stored in a memory of the above-mentioned device in the form of program codes, and may be called by a processing element of the above-mentioned device to execute the functions of the above-mentioned determination unit. The implementation of the other units is similar. Furthermore, all or part of these units may be integrated together or may be implemented independently. The processing element described herein may be an integrated circuit having signal processing capabilities. In implementation, each of the above steps of the apparatus or each of the above units may be implemented by an integrated logic circuit of hardware in a processor element or an instruction in a software form.
For example, the above units may be one or more integrated circuits configured to implement the above device processing steps, such as: one or more specific integrated circuits (Application Specific Integrated Circuit, ASIC), or one or more digital signal processors (Digital Signal Processor, DSP), or one or more field programmable gate arrays (Field Programmable Gate Array, FPGA), etc. For another example, when some of the above elements are implemented in the form of processing element scheduler code, the processing element may be a general purpose processor, such as a central processing unit (Central Processing Unit, CPU) or other processor that may invoke the program code. For another example, the units may be integrated together and implemented in the form of a System-on-a-chip (SOC).
In the above embodiments, it may be implemented in whole or in part by software, hardware, firmware, or any combination thereof. When implemented in software, may be implemented in whole or in part in the form of a computer program product. The computer program product includes one or more computer instructions. When loaded and executed on a computer, produces, in whole or in part, the processes or functions described in accordance with embodiments of the present invention. The computer may be a general purpose computer, a special purpose computer, a computer network, or other programmable apparatus. The computer instructions may be stored in a computer-readable storage medium or transmitted from one computer-readable storage medium to another computer-readable storage medium, for example, from one website, computer, server, or data center via a wired (e.g., coaxial cable, fiber optic, digital subscriber line (Digital Subscriber Line, DSL)) or wireless (e.g., infrared, wireless, bluetooth, microwave, etc.) means. The computer readable storage media may be any available media that can be accessed by a computer or a data storage device such as a server, data center, or the like that contains an integration of one or more available media. The usable medium may be a magnetic medium (e.g., a floppy disk, a hard disk, a magnetic tape), an optical medium (e.g., a DVD), or a semiconductor medium (e.g., a Solid State Disk (SSD)), or the like.
The embodiment of the invention provides gateway equipment for distributing access data based on an alternative user identity module, which comprises: the system comprises a main control unit, an access device interface unit, an alternative module Chi Jiekou unit, an alternative module pool management unit, a database interface unit and a management device interface unit. The device is connected with external user identity module remote access equipment, an alternative user identity module pool, a distribution record database and distribution record management equipment. In one interaction with a remote access device of a user identity module, the device obtains resident network instruction data by identifying access data of the remote access device, selects a current destination module by identifying idle states of alternative user identity modules of an alternative user identity module pool, distributes the resident network instruction data to the destination module, and sends back an instruction execution result returned from the destination module to the remote access device to complete the interaction. In addition, the device also records the process information of the current interaction and stores the process information in a distributed record database for inquiry. In addition, the device also provides a query function for the distribution record database, and when receiving a query instruction of the distribution record management device, the device obtains a corresponding query result from the distribution record database and returns the query result to the distribution record management device. The device not only assists the testing party to save the test management cost, but also provides the functions of storing and inquiring the history distribution record.
Those of skill would further appreciate that the various illustrative elements and algorithm steps described in connection with the embodiments disclosed herein may be implemented as electronic hardware, computer software, or combinations of both, and that the various illustrative elements and steps are described above generally in terms of function in order to clearly illustrate the interchangeability of hardware and software. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the solution. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present invention.
The steps of a method or algorithm described in connection with the embodiments disclosed herein may be embodied in hardware, in a software module executed by a processor, or in a combination of the two. The software modules may be disposed in Random Access Memory (RAM), memory, read Only Memory (ROM), electrically programmable ROM, electrically erasable programmable ROM, registers, hard disk, a removable disk, a CD-ROM, or any other form of storage medium known in the art.
The foregoing description of the embodiments has been provided for the purpose of illustrating the general principles of the invention, and is not meant to limit the scope of the invention, but to limit the invention to the particular embodiments, and any modifications, equivalents, improvements, etc. that fall within the spirit and principles of the invention are intended to be included within the scope of the invention.

Claims (9)

1. A gateway device for distributing access data based on an alternative subscriber identity module, the device comprising: the system comprises a main control unit, an access device interface unit, an alternative module Chi Jiekou unit, an alternative module pool management unit, a database interface unit and a management device interface unit;
the main control unit is connected with one or more external user identity module remote access devices through the access device interface unit, is also connected with one or more external alternative user identity module pools through the alternative module Chi Jiekou unit, is also connected with the alternative module pool management unit, is also connected with an external distribution record database through the database interface unit, and is also connected with an external distribution record management device through the management device interface unit;
the main control unit is used for combining the access equipment interface unit and the alternative module pool management unit, and processing the alternative user identity module application operation of any user identity module remote access equipment to obtain a corresponding first target module; combining the alternative module Chi Jiekou unit, and carrying out data distribution processing on access data of the remote access device of the current user identity module based on the first destination module; the database interface unit is combined to record and track the access data distribution processing process of the remote access equipment of the current user identity module; combining the access equipment interface unit and the alternative module pool management unit to process the resource release operation of the first destination module;
The main control unit is also used for combining the access equipment interface unit and the management equipment interface unit to process the inquiry instruction sent by the distribution record management equipment;
the alternative module pool management unit is connected with all external alternative user identity module pools through the alternative module Chi Jiekou unit and is also connected with external alternative user identity module pool management equipment; the alternative module pool management unit is used for storing a first management table reflecting the state information of all the alternative user identity module pools; the first management table comprises one or more first management sub-tables, the first management sub-tables comprise a plurality of first management records, the first management records comprise a module identification field, a module state field and a module occupied equipment identification field, and the module state field comprises an idle state, an occupied state and an abnormal state; each first management sub-table corresponds to a module pool identifier of an external alternative user identity module pool, and each first management record corresponds to one alternative user identity module in the external alternative user identity module pool corresponding to the current first management sub-table;
The main control unit is specifically configured to identify an instruction sent by the remote access device of any user identity module received by the access device interface unit when the application operation of the candidate user identity module for processing the remote access device of any user identity module is applied to obtain a corresponding first destination module; if the currently received instruction is a first alternative module application instruction, performing equipment verification processing according to a first access equipment identifier of the first alternative module application instruction; if the equipment verification is successful, a first alternative module selection instruction carrying the first access equipment identifier is sent to the alternative module pool management unit, the returned first module pool identifier and the first module identifier are received, and the alternative user identity module matched with the first module identifier in the alternative user identity module pool matched with the first module identifier is used as the first destination module; and sending first application return data carrying the first module pool identifier and the first module identifier to the remote access equipment of the current user identity module.
2. The gateway device for distributing access data based on alternative subscriber identity modules according to claim 1, wherein,
the main control unit is specifically configured to query a preset legal access device list according to the first access device identifier during the device verification process, and if a legal access device record matching an access device identifier field with the first access device identifier exists in the list, the device verification is successful; the legal access device list comprises a plurality of legal access device records, and the legal access device records comprise the access device identification field.
3. The gateway device for distributing access data based on alternative subscriber identity modules according to claim 1, wherein,
the alternative module pool management unit is further configured to select, when receiving the first alternative module selection instruction sent by the main control unit, the first management record with the module status field in an idle state in the first management table as a destination record; modifying the module state field of the destination record into an occupied state, and modifying the module occupied equipment identification field of the destination record into the first access equipment identification of the first alternative module selection instruction; extracting the module pool identifier corresponding to the first management sub-table where the destination record is located as the corresponding first module pool identifier, and extracting the module identifier field of the destination record as the corresponding first module identifier; and sending the first module pool identifier and the first module identifier back to the main control unit.
4. The gateway device for distributing access data based on alternative subscriber identity modules according to claim 1, wherein,
the main control unit is specifically configured to receive first access data sent by the remote access device of the current user identity module and record a data receiving time as a first distribution start time when the data distribution processing is performed on the access data of the remote access device of the current user identity module based on the first destination module; the first network residence instruction of the first access data is sent to the first destination module through the alternative module Chi Jiekou unit, and the returned first return data is received; the first return data is sent to the remote access equipment of the current user identity module through the access equipment interface unit, and the data sending time is recorded as a first distribution ending time; wherein the first access data includes a first access device identification and the first network resident instruction.
5. The gateway device for distributing access data based on alternative subscriber identity modules as recited in claim 4, wherein,
the main control unit is specifically configured to store, when performing record tracking processing on an access data distribution processing procedure of the remote access device with the current user identity module, a first distribution record composed of the first access device identifier, the first network residence instruction, a module pool identifier and a module identifier corresponding to the first destination module, the first return data, the first distribution start time and the first distribution end time, into the distribution record database through the database interface unit.
6. The gateway device for distributing access data based on alternative subscriber identity modules according to claim 1, wherein,
the main control unit is specifically configured to identify, when the processing performs a resource release operation on the first destination module, an instruction sent by the remote access device of the current user identity module and received by the interface unit of the access device; if the currently received instruction is a first alternative module release instruction, extracting a first module pool identifier and a first module identifier from the first alternative module release instruction; and sending a first module release instruction carrying the first module pool identifier and the first module identifier to the alternative module pool management unit.
7. The gateway device for distributing access data based on alternative subscriber identity modules of claim 6,
the alternative module pool management unit is further configured to extract the first module pool identifier and the first module identifier from the first module release instruction when receiving the first module release instruction sent by the main control unit; the first management sub-table matched with the first module pool identifier in the first management table is marked as a current management sub-table; the first management record matched with the first module identifier in the module identifier field in the current management sub-table is recorded as a current management record; and modifying the module state field of the current management record into an idle state, and setting the module occupied equipment identification field of the current management record to be empty.
8. The gateway device for distributing access data based on alternative subscriber identity modules according to claim 1, wherein,
the alternative module pool management unit is further configured to lock the first management table stored locally when receiving a configuration instruction sent by the alternative user identity module pool management device, and prohibit modification of the first management table; the first management table is sent to the management equipment of the alternative user identity module pool, and the management table information is rebuilt by the management equipment of the alternative user identity module pool; receiving a second management table returned by the alternative user identity module pool management equipment; and unlocking the first management table stored locally, and replacing the first management table after unlocking by using the second management table.
9. The gateway device for distributing access data based on alternative subscriber identity modules according to claim 1, wherein,
the alternative module pool management unit is further configured to periodically obtain, at a preset time interval, an instruction from the state of the group sending module pool of all the alternative user identity module pools through the alternative module Chi Jiekou unit; receiving a first module pool status report returned by each alternative user identity module pool; marking a first module data group with the first module state data in the first module pool state report being in an abnormal state as a first abnormal module data group; if the number of the first abnormal module data sets is not 0, extracting the first management sub-table matched with the first module pool identification data of the first module pool state report from the first management table as a corresponding first matched management sub-table; marking the first management record matched with the first module identification data of each first abnormal module data group in the first matching management sub-table as a first abnormal management record; modifying the module state fields of all the first exception management records into an exception state, and setting the module occupation equipment identification fields to be empty; wherein the first module pool status report includes the first module pool identification data and a plurality of the first module data sets; the first module data set includes the first module identification data and the first module status data; the first module state data includes a normal state and an abnormal state.
CN202210240471.4A 2022-03-10 2022-03-10 Gateway equipment for distributing access data based on alternative user identity module Active CN114615057B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202210240471.4A CN114615057B (en) 2022-03-10 2022-03-10 Gateway equipment for distributing access data based on alternative user identity module

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202210240471.4A CN114615057B (en) 2022-03-10 2022-03-10 Gateway equipment for distributing access data based on alternative user identity module

Publications (2)

Publication Number Publication Date
CN114615057A CN114615057A (en) 2022-06-10
CN114615057B true CN114615057B (en) 2024-04-09

Family

ID=81863168

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202210240471.4A Active CN114615057B (en) 2022-03-10 2022-03-10 Gateway equipment for distributing access data based on alternative user identity module

Country Status (1)

Country Link
CN (1) CN114615057B (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105356898A (en) * 2015-11-23 2016-02-24 小米科技有限责任公司 User identity identification card box
CN106538042A (en) * 2014-07-19 2017-03-22 三星电子株式会社 Subscriber identification module management method and electronic device supporting the same
CN107105427A (en) * 2017-04-28 2017-08-29 天津泰岳小漫科技有限公司 Communication means and device based on passage SIM card

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2525475B (en) * 2015-02-25 2016-04-06 Uros Technology S Ã R L Mobile apparatus with multiple subscriber identity modules
CN110874464A (en) * 2018-09-03 2020-03-10 巍乾全球技术有限责任公司 Method and equipment for managing user identity authentication data

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106538042A (en) * 2014-07-19 2017-03-22 三星电子株式会社 Subscriber identification module management method and electronic device supporting the same
CN105356898A (en) * 2015-11-23 2016-02-24 小米科技有限责任公司 User identity identification card box
CN107105427A (en) * 2017-04-28 2017-08-29 天津泰岳小漫科技有限公司 Communication means and device based on passage SIM card

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
"机会网络中数据传输策略研究";李丽;《中国博士学位论文全文数据库》(第01期);第20-31页 *
"空中写卡的安全性分析及一种实现";周章慧;王同洋;吴俊军;张新访;;《信息安全与通信保密》(第09期);全文 *

Also Published As

Publication number Publication date
CN114615057A (en) 2022-06-10

Similar Documents

Publication Publication Date Title
CN108173850B (en) Identity authentication system and identity authentication method based on block chain intelligent contract
CN103415014B (en) The method and apparatus authenticated is carried out for mobile terminal
KR20100048571A (en) Method, apparatus and system for providing muti user-multi service
CN110351111A (en) A kind of subscription processing method, network node and customer data base
CN109582655B (en) Method and device for positioning system log and computer readable storage medium
US7318109B2 (en) System and method for remote assembly of messages to create a control message
CN111066333A (en) Device capable of acquiring ESIM configuration file
CN113014626B (en) Data service management method and device, storage medium and electronic device
CN112671878B (en) Block chain information subscription method, device, server and storage medium
CN114615057B (en) Gateway equipment for distributing access data based on alternative user identity module
CN117675900A (en) Device management method, device, equipment and machine-readable storage medium
CN108521665A (en) The method that quickly networks waits for log equipment, server and terminal
CN112188591B (en) Network access method, device, computer equipment and storage medium
CN103236954A (en) Web service evaluation system in mobile network
CN109348053B (en) Telephone number mark processing method, server, terminal device and computer readable storage medium
WO2021121175A1 (en) Sim card allocation method and apparatus, and server and computer-readable storage medium
CN114567902B (en) Real network test system of user identity module
CN112613965A (en) Method and system for data processing based on middleware
CN114599024B (en) Device for processing multiple user identity modules
CN111182119A (en) Multi-card communication method, device and equipment based on EC customer relationship management system
CN109285036B (en) Internet of things service processing method and device and storage medium
WO2023005484A1 (en) User information registration method and apparatus
CN113472808B (en) Log processing method and device, storage medium and electronic device
JP2006507595A (en) Monitoring service usage in a communications network
CN109801029B (en) Cross-node service cooperation system and method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant