WO2008110096A1 - Method and apparatus for examining mobile equipment - Google Patents

Method and apparatus for examining mobile equipment Download PDF

Info

Publication number
WO2008110096A1
WO2008110096A1 PCT/CN2008/070426 CN2008070426W WO2008110096A1 WO 2008110096 A1 WO2008110096 A1 WO 2008110096A1 CN 2008070426 W CN2008070426 W CN 2008070426W WO 2008110096 A1 WO2008110096 A1 WO 2008110096A1
Authority
WO
WIPO (PCT)
Prior art keywords
mobile device
checking
eir
request
esn
Prior art date
Application number
PCT/CN2008/070426
Other languages
French (fr)
Chinese (zh)
Inventor
Fengshao Zou
Original Assignee
Huawei Technologies Co., Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co., Ltd. filed Critical Huawei Technologies Co., Ltd.
Publication of WO2008110096A1 publication Critical patent/WO2008110096A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/12Detection or prevention of fraud
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/126Applying verification of the received information the source of the received data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/60Context-dependent security
    • H04W12/69Identity-dependent
    • H04W12/71Hardware identity

Definitions

  • the present invention relates to the field of network communication technologies, and in particular, to a method and apparatus for inspecting a mobile device. Background technique
  • the MSID Mobile Station Identity
  • ESN Electronic Serial Number
  • HLR The home location register, the home location register
  • MSID and UIM User Identity Module
  • the N.S0004 protocol mainly describes the mobile user identification module UIM. Users can change different UIM cards on the same mobile station MS (Mobile Station). The basic process is shown in Figure 1:
  • the user removes the UIM card from the ME-1 and inserts it into the ME-2;
  • C-f and ME-2 calculate the authentication result, and initiate location registration, and the message includes information such as an authentication result and a device number;
  • the service MSC Mobile Switch Center
  • VLR Visitor Location Register
  • HLR Home Location Register
  • AC Authentication Center
  • the HLR finds that the user uses the different ESN for registration in the service system, and sends a location registration cancellation message to the VLR to cancel the current registration record, which includes the previous ESN1; the VLR forwards to the serving MSC;
  • the service MSC clears the corresponding record and returns a location registration cancellation response message to the VLR; after the VLR clears the corresponding record, it returns a location registration cancellation response message to the HLR; after the op, the authentication and the cancellation of the original registration information are successfully processed, the HLR will process the new ESN. (ie, ESN2) is bound to the user; and returns an authentication response message to the serving VLR; the VLR is forwarded to the serving MSC;
  • the service MSC sends a location registration request message to the VLR for location registration, and the VLR is forwarded to the HLR;
  • the HLR registers to return a location registration response message, which contains user data information; the VLR pre-transmits regnot to the serving MSC.
  • the inventor has found that at least the following problems exist in the prior art: In the existing location registration process after replacing the UIM card, after the authentication succeeds, it is determined that the user uses different electronic serial numbers for registration, and only the new ESN is updated, and then , still registering for location. It can be seen that the legality of the mobile device is not checked in the process, and the mobile device cannot be configured with a whitelist or a blacklist. The mobile device cannot be managed, and the illegal mobile device cannot be prohibited from being used in the network. Summary of the invention
  • Embodiments of the present invention provide a method and apparatus for inspecting a mobile device to check the legality of the mobile device.
  • an embodiment of the present invention provides a method for inspecting a mobile device, including the following steps:
  • the device identification register EIR receives the check of the mobile device identifier sent by the network device a request, wherein the network device includes, but is not limited to: a mobile switching center MSC, a home location register HLR, an authentication center AC, or a visitor location register VLR, and the request for checking the mobile device identity sent by the MSC, HLR or AC comprises a mobile device No. MEID or electronic serial number ESN, the check mobile device identifier sent by the VLR includes an electronic serial number ESN; the EIR checks the mobile device identifier according to the MEID or ESN in the request for checking the mobile device identifier, and Returning mobile device information to the network device, wherein the mobile device information includes a check result of the EIR.
  • the network device includes, but is not limited to: a mobile switching center MSC, a home location register HLR, an authentication center AC, or a visitor location register VLR, and the request for checking the mobile device identity sent by the MSC, HLR or AC comprises a mobile device No. MEID or electronic
  • An embodiment of the present invention further provides an apparatus for inspecting a mobile device, including:
  • a receiving module configured to receive, by the network device, a request for checking, by the network device, a mobile device identifier, where the network device includes but is not limited to: a mobile switching center MSC, a home location register HLR, an authentication center AC, or a visitor location register VLR,
  • the request for checking the identity of the mobile device sent by the MSC, the HLR or the AC includes a mobile device number MEID or an electronic serial number ESN
  • the check mobile device identifier sent by the VLR includes an electronic serial number ESN;
  • a processing module configured to check the mobile device identification according to the request
  • the MEID or ESN in the network checks the mobile device identity and returns mobile device information to the network device, wherein the mobile device information includes a check result of the EIR according to
  • the embodiment of the present invention has the following advantages: Checking the legality of the device number MEID or the electronic serial number ESN of the mobile device by using an EIR (Device Identity Register), so that other network devices are based on the EIR. The inspection results are further processed to realize the management of the mobile device after the separation of the machine card.
  • EIR Device Identity Register
  • FIG. 2 is a schematic diagram of a prior art network reference model
  • FIG. 3 is a flowchart of a method for inspecting a mobile device according to an embodiment of the present invention.
  • FIG. 4 is a schematic diagram of an interaction message between a network device and an EIR according to an embodiment of the present invention
  • FIG. 5 is a schematic diagram of interaction between a VLR and an EIR according to an embodiment of the present invention
  • FIG. 6 is a schematic diagram of a location registration process for performing mobile device inspection by an MSC according to an embodiment of the present invention
  • FIG. 7 is a schematic diagram of a location registration process for performing mobile device inspection by using a VLR according to Embodiment 2 of the present invention.
  • FIG. 8 is a schematic structural diagram of an apparatus for checking the legitimacy of a mobile device according to Embodiment 3 of the present invention. detailed description
  • 3GPP2 N.S0005 a network reference model as shown in FIG. 2 is defined; EIR is used to register user equipment equipment identifiers, but the 3GPP2 N.S0005 protocol does not define the F interface between the MSC and the EIR, and cannot be implemented. Mobile device check function.
  • an interface message CHECKMEID between the VLR and the EIR is defined for verifying the mobile device number MEID (Mobile Equipment Identity), wherein the MEID is the device identifier after the ESN is upgraded, as follows
  • MEID Mobile Equipment Identity
  • a flowchart of a method for inspecting a mobile device includes the following steps:
  • Step S301 The EIR receives a request sent by the network device to check the identity of the mobile device.
  • the network device may include an MSC HLR AC or a VLR, and the mobile device identifier that the MSC HLR or AC requests to check is a MEID or an ESN, and the mobile device identifier that the VLR requests to check is an ESN.
  • the MSC HLR AC or VLR receives the location registration request or call request information sent by the mobile device and then sends a request to the EIR to check the mobile device identity.
  • the EIR is a logical function entity, which can be set separately for a network entity, and can also be set in any other network device.
  • the network device in the embodiment of the present invention may be an MSC HLR AC or a VLR, but is not limited thereto.
  • the network device Before sending a request for checking the identity of the mobile device to the EIR, the network device is legal according to the preset check location registration validity or the call request.
  • the sexual configuration determines whether the mobile device identity needs to be verified, and if so, sends a request to the EIR to check the mobile device identity.
  • the network device initiates a request for checking the identity of the mobile device, and the check process is not limited to the following scenarios: According to the configuration requirements of the operator, for example, some operators may only need to check the legality during the call, and some may require The validity of the location check is checked. At this time, the network device verifies the validity of the mobile device identity in the call flow or location registration process, and sends a request to the EIR to check the mobile device identity. In addition, the operator can also configure whether the mobile device identity needs to be verified in the network device.
  • Step S302 The EIR checks the mobile device identity according to the MEID or ESN in the request for checking the identity of the mobile device, and returns the mobile device information to the network device. among them,
  • the mobile device information includes the inspection result of the EIR.
  • the check of the mobile device identifier may be that the corresponding user equipment identifier stored in the query is consistent with the MEID or the ESN in the request for checking the mobile device identifier.
  • the mobile device information is information indicating whether the mobile device identifier is consistent, and the MSC
  • the HLR, AC or VLR processes the location registration request or the call request of the mobile device based on the mobile device information returned by the EIR.
  • the MSC, the HLR, the AC, or the VLR checks the mobile device information, and determines whether the state of the mobile device is legal according to the mobile device information returned by the EIR. If it is legal, the location registration request or the call request process is continued;
  • the network device rejects the location registration request or the call request.
  • an interface message between the MSC/HLR/AC and the EIR is added to detect the mobile device identifier (the mobile device number MEID or the electronic serial number ESN). Further, the status information of the corresponding mobile device of the MEID or the ESN may be saved in the EIR, such as the stolen information, and the check of the mobile device identifier may also be performed by querying the user according to the MEID or ESN in the request for checking the identity of the mobile device. The corresponding mobile device status information is identified. If the MEID or ESN is found to have been stolen, the status of the mobile device is illegal. Otherwise, the status of the mobile device is considered to be legal. Alternatively, the range of the legal MEID or ESN is set in the EIR.
  • the returned mobile device information is the MEID or ESN corresponding mobile device included in the request for checking the mobile device identification. Whether the status is legal or not.
  • FIG. 4 it is a schematic diagram of adding an interface message between an MSC/HLR/AC and an EIR according to Embodiment 1 of the present invention, which specifically includes the following steps:
  • Step S401 the MSC/HLR/AC sends a CHECKMEID to the EIR, which may include a MEID or an ESN;
  • Step S402 the EIR checks to return the corresponding mobile device information.
  • the MSC/HLR/AC then processes it based on the mobile device information. For example: when it is determined that the state of the mobile device is illegal according to the mobile device information, the MSC may reject the location registration request; when it is determined that the state of the mobile device is legal according to the mobile device information, the MSC continues Location registration process.
  • the second embodiment of the present invention extends the parameters in the interface CHECKMEID message between the VLR and the EIR, that is, the ESN parameter can be carried in the CHECKMEID message, so that the EIR can check the ESN; or similar to the first embodiment, a new opcode is defined, for example, Create an interface message between the VLR and the EIR to detect the ESN.
  • FIG. 5 it is a schematic diagram of an interface between an extended VLR and an EIR according to Embodiment 2 of the present invention, which specifically includes the following steps:
  • Step S501 The VLR sends a CHECKMEID to the EIR, which may include an ESN.
  • the VLR then processes it based on the mobile device information. For example: When it is determined that the state of the mobile device is illegal according to the mobile device information, the VLR feeds back authreq to the MSC, indicating that the authentication fails, and the MSC finds that the authentication fails, and rejects the location registration request. When it is determined that the state of the mobile device is legitimate based on the mobile device information, the VLR continues the location registration process.
  • FIG. 6 it is a flowchart of user location registration for mobile device check by the MSC according to the second embodiment of the present invention, which specifically includes the following steps:
  • Step S601 When receiving the registration request (register) sent by the mobile station MS, the serving MSC determines that the mobile device identifier needs to be verified according to the preset configuration of the check location registration legality, and sends a CHECKMEID to the EIR, where the mobile device is included. Identification ( ESN or MEID ).
  • Step S602 the EIR checks, and returns corresponding mobile device information.
  • Step S603 the serving MSC checks the mobile device information and performs corresponding processing. When it is determined that the state of the mobile device is illegal according to the mobile device information, step S604 is performed; when it is determined that the state of the mobile device is legal according to the mobile device information, step S605 is performed.
  • Step S604 the MSC rejects the location registration request.
  • Step S605 the location registration process is continued.
  • the MSC sends an AUTHREQ to the HLR through the VLR.
  • the HLR feeds back authreq to the MSC through the VLR, and then the MSC returns a register accept message (register accept) to the MS.
  • Step S701 the serving MSC sends an authentication request AUTHREQ to the VLR when receiving the registration request or the initial call request sent by the mobile station MS;
  • Step S702 The VLR determines, according to a preset configuration related to checking the legality of the call, that the mobile device identifier needs to be verified, and sends a CHEKMEID to the EIR, where the mobile device identifier (ESN) is included;
  • Step S703 the EIR checks, and returns corresponding mobile device information.
  • Step S704 the service VLR checks the mobile device information and performs corresponding processing. When it is determined that the state of the mobile device is illegal according to the mobile device information, step S705 and step S706 are performed; when it is determined that the state of the mobile device is legal according to the mobile device information, step S707 is performed.
  • Step S705 The VLR feeds back authreq to the MSC, where the authentication fails.
  • step S706 the MSC finds that the authentication fails, and rejects the location registration request.
  • Step S707 the location registration process is continued.
  • the VLR sends an AUTHREQ to the HLR.
  • the HLR feeds back the AUTHREQ to the VLR.
  • the VLR feeds back authreq to the MSC, indicating that the authentication is successful, and the MSC finds that the authentication is successful, and returns a registration accept message (register accept) to the MS.
  • HLR or AC For device number detection by HLR or AC, it is similar to the above procedure, except that it is judged whether the checkpoint to be verified is at the HLR or AC, not the MSC.
  • the third embodiment of the present invention further provides an apparatus for checking the legitimacy of a mobile device, including a receiving module and a processing module, where the receiving module is configured to receive a check mobile device number MEID or an electronic serial number ESN sent by the network device. Or a request to check the electronic serial number ESN sent by the location register VLR; the processing module is configured to perform the check according to the request and return the mobile device information.
  • the receiving module is configured to receive a check mobile device number MEID or an electronic serial number ESN sent by the network device.
  • the processing module is configured to perform the check according to the request and return the mobile device information.
  • the processing module further includes a check submodule and a feedback submodule, wherein the check submodule is configured to check the legality of the MEID or the ESN according to the request, that is, check the stored corresponding user equipment identifier and the request for checking the mobile device identifier Whether the MEID or the ESN is consistent; or checking the mobile device status information of the user according to the MEID or ESN in the request for checking the identity of the mobile device, whether it belongs to the stolen mobile device identifier; or in the request for checking the mobile device identity Is the MEID or E SN at the legal MEID or Within the scope of the ESN; the feedback sub-module is configured to generate a return message according to the check result of the check sub-module (legal or illegal), and return the mobile device information to the network device.
  • the check submodule is configured to check the legality of the MEID or the ESN according to the request, that is, check the stored corresponding user equipment identifier and the request for checking the mobile device identifier Whether the ME
  • the receiving module receives a request for checking the mobile device identity sent by the network device, and then the processing module performs the check according to the request and returns information corresponding to the mobile device.
  • the network device further processes according to whether the mobile device information returned by the EIR is legal: if it is determined that the state of the mobile device is legal according to the mobile device information, the location registration process is continued, and if the state of the mobile device is determined to be illegal according to the mobile device information, the location is rejected. Registration request.
  • the request message for checking the identity of the mobile device between the MSC, the HLR or the AC and the EIR, or the request message for checking the identity of the mobile device between the VLR and the EIR is extended, so that the EIR can be the device number MEID of the mobile device.
  • the electronic serial number ESN performs legality check, so that the network device further processes according to the EIR check result, which restricts the illegal use of the mobile device, and manages the mobile device after the machine card is separated.
  • the present invention can be implemented by means of software plus a necessary general hardware platform, and of course, can also be through hardware, but in many cases, the former is a better implementation. the way.
  • the technical solution of the present invention which is essential or contributes to the prior art, may be embodied in the form of a software product stored in a storage medium, including a plurality of instructions for making a A computer device (which may be a personal computer, server, or network device, etc.) performs the methods described in various embodiments of the present invention.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

A method for examining mobile equipment provided by the exemplary embodiments of the present invention, includes: an equipment identity register EIR receiving a request for examining mobile equipment identity from a network device, which includes: mobile switching center MSC, home location register HLR, authentication center AC or visiting location register VLR, and the mobile equipment identity to be examined requested from the MSC, HLR or AC being the mobile equipment identity MEID or electronic sequence number ESN, and the mobile equipment identity to be examined requested from the VLR being ESN; and the EIR examining the mobile equipment identity according to the MEID or ESN in the mobile equipment identity examination request, and returning the information of the mobile equipment, which comprises the examination result of the EIR. An apparatus for examining mobile equipment is also provided by the exemplary embodiments of the present invention. The validity of the MEID or ESN of the mobile equipment can be examined by EIR through the mobile equipment identity examination request message, so that the network equipment can perform further actions according to the examination result of the EIR, thereby restricting the illegal usage of mobile equipment.

Description

检查移动设备的方法及装置  Method and device for checking mobile device
技术领域 Technical field
本发明涉及网络通信技术领域,特别涉及一种检查移动设备的方 法及装置。 背景技术  The present invention relates to the field of network communication technologies, and in particular, to a method and apparatus for inspecting a mobile device. Background technique
在通信系统中, 对于机卡合一的移动终端, 其 MSID ( Mobile Station Identity, 移动台标识 )和 ESN ( Electronic Sequence Number, 电子序列号 )是绑定在一起的, 因此, 只需要在 HLR ( Home Location Register, 归属位置寄存器)上实现对 MSID的管理, 即可实现对该终 端的管理; 但在实现机卡分离后, 用户标识 MSID和具有装备 UIM ( User Identity module, 用户识别模块)卡能力的移动设备之间没有 必然的联系, 用户可以随时更换移动设备或 UIM卡; 但由于移动设备 可能是被盗被抢的非法设备, 如果不进行校验, 将会导致这些非法移 动设备仍能正常使用; 另外, 由于相对来说移动设备成本比较高而 UIM卡的成本较低, 有些犯罪分子可能会使用同一移动设备, 但频繁 更换不同的 UIM卡来进行呼叫, 以避免被警方监听或被运营商禁止呼 叫, 因此, 实现对移动设备 ESN的检查非常有必要。  In the communication system, for a mobile terminal in which the card is integrated, the MSID (Mobile Station Identity) and the ESN (Electronic Serial Number) are bound together, and therefore, only need to be in the HLR ( The home location register, the home location register) can realize the management of the MSID, and the management of the terminal can be realized; but after the machine card is separated, the user identifier MSID and the capability of the UIM (User Identity Module) card are equipped. There is no necessary connection between mobile devices. Users can change mobile devices or UIM cards at any time. However, since mobile devices may be stolen and stolen, if they are not verified, these illegal mobile devices will still be normal. In addition, due to the relatively high cost of mobile devices and the low cost of UIM cards, some criminals may use the same mobile device, but frequently change different UIM cards to make calls to avoid being monitored or operated by the police. The call is forbidden, so the check of the mobile device ESN is very Necessary.
3GPP2 ( 3rd Generation Partnership Project2, 第三代合作伙伴项 目 2 ) N.S0004协议主要描述可移动的用户识别模块 UIM, 用户可以 在同一个移动台 MS ( Mobile Station, 移动台)上更换不同的 UIM卡, 其基本流程如图 1所示:  3GPP2 (3rd Generation Partnership Project2) The N.S0004 protocol mainly describes the mobile user identification module UIM. Users can change different UIM cards on the same mobile station MS (Mobile Station). The basic process is shown in Figure 1:
a-b、 用户从 ME-1中取出 UIM卡, 插入到 ME-2中;  A-b, the user removes the UIM card from the ME-1 and inserts it into the ME-2;
c-f、 ME-2计算鉴权结果, 并发起位置登记, 消息中包含鉴权结 果、 设备号等信息;  C-f and ME-2 calculate the authentication result, and initiate location registration, and the message includes information such as an authentication result and a device number;
g-i、 服务 MSC ( Mobile Switch Center, 移动交换中心) 向服务 VLR ( Visitor Location Register,拜访位置寄存器)发送鉴权请求消息, VLR转发给归属位置寄存器 HLR, HLR再转发给 AC ( Authentication Center, 鉴权中心) , 由 AC对用户进行鉴权; Gi, the service MSC (Mobile Switch Center) sends an authentication request message to the service VLR (Visitor Location Register), the VLR forwards it to the home location register HLR, and the HLR forwards it to the AC (Authentication) Center, authentication center), the user is authenticated by the AC;
j、 AC计算鉴权结果并与 ME-2送上来的鉴权结果进行比较, 并返 回比较结果给 HLR;  j, AC calculates the authentication result and compares it with the authentication result sent by ME-2, and returns the comparison result to the HLR;
k-l、鉴权成功, HLR发现用户在服务系统使用不同的 ESN进行登 记, 则向 VLR发送位置登记取消消息, 以取消当前登记记录, 其中包 含以前的 ESN1 ; VLR向服务 MSC转发;  K-l, authentication succeeded, the HLR finds that the user uses the different ESN for registration in the service system, and sends a location registration cancellation message to the VLR to cancel the current registration record, which includes the previous ESN1; the VLR forwards to the serving MSC;
m-n、 服务 MSC清除相应记录后返回位置登记取消响应消息给 VLR; VLR清除相应记录后向 HLR返回位置登记取消响应消息; o-p、鉴权和取消原登记信息都成功处理后, HLR将新的 ESN (即 ESN2 )绑定给用户; 并向服务 VLR返回鉴权响应消息; VLR前传给 服务 MSC;  Mn, the service MSC clears the corresponding record and returns a location registration cancellation response message to the VLR; after the VLR clears the corresponding record, it returns a location registration cancellation response message to the HLR; after the op, the authentication and the cancellation of the original registration information are successfully processed, the HLR will process the new ESN. (ie, ESN2) is bound to the user; and returns an authentication response message to the serving VLR; the VLR is forwarded to the serving MSC;
q-r、服务 MSC向 VLR发送位置登记请求消息进行位置登记, VLR 前传给 HLR;  Q-r, the service MSC sends a location registration request message to the VLR for location registration, and the VLR is forwarded to the HLR;
s-t、 HLR登记之后返回位置登记响应消息, 其中包含用户数据信 息; VLR前传 regnot给服务 MSC。  After s-t, the HLR registers to return a location registration response message, which contains user data information; the VLR pre-transmits regnot to the serving MSC.
发明人发现现有技术至少存在以下问题: 现有的更换 UIM卡后 的位置登记流程中,在鉴权成功后判断出用户使用不同电子序列号进 行登记时, 仅仅对新的 ESN进行更新, 之后, 仍然进行位置登记。 可见, 该流程中并不对移动设备的合法性进行检查, 无法对移动设备 配置白名单或黑名单, 无法对移动设备进行管理, 无法禁止非法移动 设备在网络中使用。 发明内容  The inventor has found that at least the following problems exist in the prior art: In the existing location registration process after replacing the UIM card, after the authentication succeeds, it is determined that the user uses different electronic serial numbers for registration, and only the new ESN is updated, and then , still registering for location. It can be seen that the legality of the mobile device is not checked in the process, and the mobile device cannot be configured with a whitelist or a blacklist. The mobile device cannot be managed, and the illegal mobile device cannot be prohibited from being used in the network. Summary of the invention
本发明实施例提供一种检查移动设备的方法及装置,以实现对移 动设备合法性进行检查。  Embodiments of the present invention provide a method and apparatus for inspecting a mobile device to check the legality of the mobile device.
为达到上述目的, 本发明实施例提供一种检查移动设备的方法, 包括以下步骤:  To achieve the above objective, an embodiment of the present invention provides a method for inspecting a mobile device, including the following steps:
设备标识寄存器 EIR接收网络设备发送的检查移动设备标识的 请求,其中所述网络设备包括但不限于: 移动交换中心 MSC、 归属位 置寄存器 HLR、 鉴权中心 AC或拜访位置寄存器 VLR, 所述 MSC、 HLR或 AC发送的检查移动设备标识的请求包含移动设备号 MEID 或电子序列号 ESN, 所述 VLR发送的检查移动设备标识包含电子序 列号 ESN; 所述 EIR根据所述检查移动设备标识的请求中的 MEID 或 ESN对所述移动设备标识进行检查, 并向所述网络设备返回移动 设备信息, 其中, 所述移动设备信息包含所述 EIR的检查结果。 The device identification register EIR receives the check of the mobile device identifier sent by the network device a request, wherein the network device includes, but is not limited to: a mobile switching center MSC, a home location register HLR, an authentication center AC, or a visitor location register VLR, and the request for checking the mobile device identity sent by the MSC, HLR or AC comprises a mobile device No. MEID or electronic serial number ESN, the check mobile device identifier sent by the VLR includes an electronic serial number ESN; the EIR checks the mobile device identifier according to the MEID or ESN in the request for checking the mobile device identifier, and Returning mobile device information to the network device, wherein the mobile device information includes a check result of the EIR.
本发明实施例还提供一种检查移动设备的装置, 包括:  An embodiment of the present invention further provides an apparatus for inspecting a mobile device, including:
接收模块,用于接收网络设备接收网络设备发送的检查移动设备 标识的请求, 其中所述网络设备包括但不限于: 移动交换中心 MSC、 归属位置寄存器 HLR、 鉴权中心 AC或拜访位置寄存器 VLR, 所述 MSC、 HLR或 AC发送的检查移动设备标识的请求包含移动设备号 MEID或电子序列号 ESN, 所述 VLR发送的检查移动设备标识包含 电子序列号 ESN; 移动交换中心 MSC、 归属位置寄存器 HLR或鉴权 中心 AC发送的检查移动设备号 MEID或电子序列号 ESN的请求, 或者是拜访位置寄存器 VLR发送的检查电子序列号 ESN的请求; 处 理模块, 用于根据所述检查移动设备标识的请求中的 MEID或 ESN 对所述移动设备标识进行检查, 并向所述网络设备返回移动设备信 息,其中, 所述移动设备信息包含所述 EIR的检查结果根据所述接收 模块接收的请求对所述 MEID或 ESN进行检查, 并返回移动设备信 息。  a receiving module, configured to receive, by the network device, a request for checking, by the network device, a mobile device identifier, where the network device includes but is not limited to: a mobile switching center MSC, a home location register HLR, an authentication center AC, or a visitor location register VLR, The request for checking the identity of the mobile device sent by the MSC, the HLR or the AC includes a mobile device number MEID or an electronic serial number ESN, and the check mobile device identifier sent by the VLR includes an electronic serial number ESN; the mobile switching center MSC, the home location register HLR Or a request for checking the mobile device number MEID or the electronic serial number ESN sent by the authentication center AC, or a request for checking the electronic serial number ESN sent by the location register VLR; and a processing module, configured to check the mobile device identification according to the request The MEID or ESN in the network checks the mobile device identity and returns mobile device information to the network device, wherein the mobile device information includes a check result of the EIR according to a request received by the receiving module MEID or ESN checks and returns to the mobile device Information.
与现有技术相比, 本发明实施例具有以下的优点: 通过 EIR ( Equipment Identity Register, 设备标识寄存器)对移动设备的设备 号 MEID或电子序列号 ESN进行合法性检查, 使得其它网络设备根 据 EIR的检查结果进行进一步处理,实现了对机卡分离后移动设备的 管理。 附图说明  Compared with the prior art, the embodiment of the present invention has the following advantages: Checking the legality of the device number MEID or the electronic serial number ESN of the mobile device by using an EIR (Device Identity Register), so that other network devices are based on the EIR. The inspection results are further processed to realize the management of the mobile device after the separation of the machine card. DRAWINGS
图 1是现有技术中用户在同一 MS上更换不同的 UIM卡的登记 流程示意图; 1 is a registration of a user changing different UIM cards on the same MS in the prior art. Schematic diagram of the process;
图 2是现有技术网络参考模型的示意图;  2 is a schematic diagram of a prior art network reference model;
图 3为本发明实施例检查移动设备的方法的流程图;  3 is a flowchart of a method for inspecting a mobile device according to an embodiment of the present invention;
图 4为本发明实施例网络设备与 EIR之间交互消息的示意图; 图 5为本发明实施例 VLR与 EIR之间交互的示意图;  4 is a schematic diagram of an interaction message between a network device and an EIR according to an embodiment of the present invention; FIG. 5 is a schematic diagram of interaction between a VLR and an EIR according to an embodiment of the present invention;
图 6为本发明实施例一通过 MSC进行移动设备检查的位置登记 流程示意图;  6 is a schematic diagram of a location registration process for performing mobile device inspection by an MSC according to an embodiment of the present invention;
图 7为本发明实施例二通过 VLR进行移动设备检查的位置登记 流程示意图;  7 is a schematic diagram of a location registration process for performing mobile device inspection by using a VLR according to Embodiment 2 of the present invention;
图 8 为本发明实施例三检查移动设备合法性的装置的结构示意 图。 具体实施方式  FIG. 8 is a schematic structural diagram of an apparatus for checking the legitimacy of a mobile device according to Embodiment 3 of the present invention. detailed description
下面结合附图对本发明实施例进行详细描述。  The embodiments of the present invention are described in detail below with reference to the accompanying drawings.
在 3GPP2 N.S0005协议中, 定义了如图 2所示的网络参考模型; EIR用于登记用户用户设备标识, 但 3GPP2 N.S0005协议没有对 MSC 与 EIR之间的 F接口进行定义, 无法实现移动设备检查功能。  In the 3GPP2 N.S0005 protocol, a network reference model as shown in FIG. 2 is defined; EIR is used to register user equipment equipment identifiers, but the 3GPP2 N.S0005 protocol does not define the F interface between the MSC and the EIR, and cannot be implemented. Mobile device check function.
此外, 在 3GPP2 X.S0008协议中, 定义了 VLR与 EIR之间的接口 消息 CHECKMEID , 用于对移动设备号 MEID ( Mobile Equipment Identity )进行校验, 其中 MEID为 ESN升位之后的设备标识, 如下表 所示:
Figure imgf000006_0001
In addition, in the 3GPP2 X.S0008 protocol, an interface message CHECKMEID between the VLR and the EIR is defined for verifying the mobile device number MEID (Mobile Equipment Identity), wherein the MEID is the device identifier after the ESN is upgraded, as follows The table shows:
Figure imgf000006_0001
C heck MOD EfiVOKE P arameters Tim z CM! C heck MOD EfiVOKE P arameters Tim z CM!
e  e
SET ,HONA 16] M  SET ,HONA 16] M
variable: ete'te M  Variable: ete'te M
X. 0004-550 eck &I EIURH RESLiLTP ΐX. 0004-550 Eck &I EIURH RESLiLTP ΐ
y e tes  y e tes
SET ^ΛΤ^Ο ΛΙ 18]  SET ^ΛΤ^Ο ΛΙ 18]
Lengt Is octe s- : EfCS uiS M X.S¾0 -S5Q 但是, 此方案仅适用于 VLR与 EIR之间的接口, 无法对 ESN进行 校验。  Lengt Is octe s- : EfCS uiS M X.S3⁄40 -S5Q However, this scheme is only applicable to the interface between the VLR and the EIR, and the ESN cannot be verified.
如图 3所示, 为本发明实施例检查移动设备的方法的流程图, 包 括以下步骤:  As shown in FIG. 3, a flowchart of a method for inspecting a mobile device according to an embodiment of the present invention includes the following steps:
步骤 S301 , EIR接收网络设备发送的检查移动设备标识的请求。 其中, 网络设备可以包括 MSC HLR AC或 VLR, MSC HLR或 AC 请求检查的移动设备标识是 MEID或 ESN , VLR请求检查的移动设备 标识是 ESN。 在位置登记或呼叫流程中, MSC HLR AC或 VLR接 收移动设备发送的位置登记请求或呼叫请求信息, 然后向 EIR发送检 查移动设备标识的请求。 其中, 所述的 EIR为一逻辑功能实体, 可单 独为一网络实体设置, 还可设置于任何其它的网络设备中。 本发明实 施例中的网络设备可以为 MSC HLR AC或 VLR, 但并不局限于此, 在向 EIR发送检查移动设备标识的请求之前, 网络设备根据预先 设置的检查位置登记合法性或呼叫请求合法性的配置判断是否需要 校验移动设备标识,如果是, 则向 EIR发送检查移动设备标识的请求。  Step S301: The EIR receives a request sent by the network device to check the identity of the mobile device. The network device may include an MSC HLR AC or a VLR, and the mobile device identifier that the MSC HLR or AC requests to check is a MEID or an ESN, and the mobile device identifier that the VLR requests to check is an ESN. In the location registration or call procedure, the MSC HLR AC or VLR receives the location registration request or call request information sent by the mobile device and then sends a request to the EIR to check the mobile device identity. The EIR is a logical function entity, which can be set separately for a network entity, and can also be set in any other network device. The network device in the embodiment of the present invention may be an MSC HLR AC or a VLR, but is not limited thereto. Before sending a request for checking the identity of the mobile device to the EIR, the network device is legal according to the preset check location registration validity or the call request. The sexual configuration determines whether the mobile device identity needs to be verified, and if so, sends a request to the EIR to check the mobile device identity.
本发明实施例由网络设备发起对移动设备标识的检查请求,其检 查流程不限于以下场景中: 根据运营商的配置要求, 例如: 有些运营 商可能只需要在呼叫时检查合法性,有些可能要求在位置登记时检查 合法性, 这时, 网络设备就会在呼叫流程或位置登记流程中校验移动 设备标识的合法性, 向 EIR发送检查移动设备标识的请求。 另外, 运 营商也可在网络设备中配置是否需要校验移动设备标识。  In the embodiment of the present invention, the network device initiates a request for checking the identity of the mobile device, and the check process is not limited to the following scenarios: According to the configuration requirements of the operator, for example, some operators may only need to check the legality during the call, and some may require The validity of the location check is checked. At this time, the network device verifies the validity of the mobile device identity in the call flow or location registration process, and sends a request to the EIR to check the mobile device identity. In addition, the operator can also configure whether the mobile device identity needs to be verified in the network device.
步骤 S302 , EIR根据检查移动设备标识的请求中的 MEID或 ESN 对移动设备标识进行检查, 并向网络设备返回移动设备信息。 其中, 该移动设备信息包含所述 EIR的检查结果。 对移动设备标识的检查可 以为查询所存储的相应用户设备标识与检查移动设备标识的请求中 的 MEID或 ESN是否一致, 此时, 所述的移动设备信息为移动设备标 识是否一致的信息, MSC、 HLR、 AC或 VLR根据 EIR返回的移动设备 信息对移动设备的位置登记请求或呼叫请求进行处理。具体为: MSC、 HLR、 AC或 VLR检查移动设备信息, 根据 EIR返回的移动设备信息判 断该移动设备的状态是否合法, 如果合法, 则继续位置登记请求或呼 叫请求流程; Step S302: The EIR checks the mobile device identity according to the MEID or ESN in the request for checking the identity of the mobile device, and returns the mobile device information to the network device. among them, The mobile device information includes the inspection result of the EIR. The check of the mobile device identifier may be that the corresponding user equipment identifier stored in the query is consistent with the MEID or the ESN in the request for checking the mobile device identifier. At this time, the mobile device information is information indicating whether the mobile device identifier is consistent, and the MSC The HLR, AC or VLR processes the location registration request or the call request of the mobile device based on the mobile device information returned by the EIR. Specifically, the MSC, the HLR, the AC, or the VLR checks the mobile device information, and determines whether the state of the mobile device is legal according to the mobile device information returned by the EIR. If it is legal, the location registration request or the call request process is continued;
如果判断该移动设备的状态非法,则网络设备拒绝所述位置登记 请求或呼叫请求。  If it is determined that the state of the mobile device is illegal, the network device rejects the location registration request or the call request.
本发明实施例一增加 MSC/HLR/AC与 EIR之间的接口消息, 以 实现对移动设备标识(移动设备号 MEID或电子序列号 ESN )进行 检测。 进一步, 可以在 EIR中保存 MEID或 ESN相应的移动设备的 状态信息, 如被盗信息, 则对移动设备标识的检查也可以为根据所述 检查移动设备标识的请求中的 MEID或 ESN查询该用户标识相应的 移动设备状态信息, 若发现 MEID或 ESN为已被盗, 则移动设备的 状态为非法, 否则认为该移动设备的状态是合法的; 或者, 在 EIR中 设置合法 MEID或 ESN的范围, 只有在此范围内的 MEID或 ESN相 应的移动设备才是合法的, 否则是非法的, 此时, 所述返回的移动设 备信息为检查移动设备标识的请求中包含的 MEID或 ESN相应的移 动设备的状态是否合法的信息。  In the first embodiment of the present invention, an interface message between the MSC/HLR/AC and the EIR is added to detect the mobile device identifier (the mobile device number MEID or the electronic serial number ESN). Further, the status information of the corresponding mobile device of the MEID or the ESN may be saved in the EIR, such as the stolen information, and the check of the mobile device identifier may also be performed by querying the user according to the MEID or ESN in the request for checking the identity of the mobile device. The corresponding mobile device status information is identified. If the MEID or ESN is found to have been stolen, the status of the mobile device is illegal. Otherwise, the status of the mobile device is considered to be legal. Alternatively, the range of the legal MEID or ESN is set in the EIR. Only the corresponding mobile device of the MEID or ESN in this range is legal, otherwise it is illegal. At this time, the returned mobile device information is the MEID or ESN corresponding mobile device included in the request for checking the mobile device identification. Whether the status is legal or not.
如图 4所示, 为本发明实施例一增加 MSC/HLR/AC与 EIR之间 接口消息的示意图, 具体包括以下几个步骤:  As shown in FIG. 4, it is a schematic diagram of adding an interface message between an MSC/HLR/AC and an EIR according to Embodiment 1 of the present invention, which specifically includes the following steps:
步骤 S401 , MSC/HLR/AC向 EIR发送 CHECKMEID, 其中可包含 MEID或 ESN;  Step S401, the MSC/HLR/AC sends a CHECKMEID to the EIR, which may include a MEID or an ESN;
步骤 S402, EIR进行检查, 返回对应的移动设备信息。  Step S402, the EIR checks to return the corresponding mobile device information.
然后 MSC/HLR/AC根据移动设备信息进行处理。例如: 当根据移 动设备信息判断移动设备的状态为非法时, MSC可以拒绝位置登记请 求; 当根据移动设备信息判断移动设备的状态为合法时, MSC再继续 位置登记流程。 The MSC/HLR/AC then processes it based on the mobile device information. For example: when it is determined that the state of the mobile device is illegal according to the mobile device information, the MSC may reject the location registration request; when it is determined that the state of the mobile device is legal according to the mobile device information, the MSC continues Location registration process.
本发明实施例二扩展了 VLR与 EIR之间的接口 CHECKMEID消 息中的参数, 即在 CHECKMEID消息中可以携带 ESN参数, 使 EIR 能够检查 ESN; 或者与实施例一类似,定义新的操作码,例如在 VLR 与 EIR之间新建一条接口消息来实现对 ESN的检测。 如图 5所示, 为本发明实施例二扩展 VLR与 EIR之间接口的示意图, 具体包括以 下步骤:  The second embodiment of the present invention extends the parameters in the interface CHECKMEID message between the VLR and the EIR, that is, the ESN parameter can be carried in the CHECKMEID message, so that the EIR can check the ESN; or similar to the first embodiment, a new opcode is defined, for example, Create an interface message between the VLR and the EIR to detect the ESN. As shown in FIG. 5, it is a schematic diagram of an interface between an extended VLR and an EIR according to Embodiment 2 of the present invention, which specifically includes the following steps:
步骤 S501 , VLR向 EIR发送 CHECKMEID, 其中可包括 ESN; 步骤 S502, EIR进行检查, 返回对应的移动设备信息。  Step S501: The VLR sends a CHECKMEID to the EIR, which may include an ESN. Step S502: The EIR checks to return the corresponding mobile device information.
然后 VLR根据移动设备信息进行处理。 例如: 当根据移动设备信 息判断移动设备的状态为非法时, VLR向 MSC反馈 authreq,指示鉴权 失败, MSC发现鉴权失败, 则拒绝位置登记请求。 当根据移动设备信 息判断移动设备的状态为合法时, VLR继续位置登记流程。  The VLR then processes it based on the mobile device information. For example: When it is determined that the state of the mobile device is illegal according to the mobile device information, the VLR feeds back authreq to the MSC, indicating that the authentication fails, and the MSC finds that the authentication fails, and rejects the location registration request. When it is determined that the state of the mobile device is legitimate based on the mobile device information, the VLR continues the location registration process.
如图 6所示, 为本发明实施例二通过 MSC进行移动设备检查的用 户位置登记的流程图, 具体包括以下步骤:  As shown in FIG. 6, it is a flowchart of user location registration for mobile device check by the MSC according to the second embodiment of the present invention, which specifically includes the following steps:
步骤 S601 , 服务 MSC收到移动台 MS发送的登记请求( register ) 时,根据预先设置的检查位置登记合法性的相关配置判断需要校验移 动设备标识, 则向 EIR发送 CHECKMEID , 其中包含有移动设备标识 ( ESN或 MEID )。  Step S601: When receiving the registration request (register) sent by the mobile station MS, the serving MSC determines that the mobile device identifier needs to be verified according to the preset configuration of the check location registration legality, and sends a CHECKMEID to the EIR, where the mobile device is included. Identification ( ESN or MEID ).
步骤 S602, EIR进行检查, 并返回对应的移动设备信息。  Step S602, the EIR checks, and returns corresponding mobile device information.
步骤 S603 , 服务 MSC检查移动设备信息, 并进行相应处理。 当根 据移动设备信息判断移动设备的状态为非法时,执行步骤 S604; 当根 据移动设备信息判断移动设备的状态为合法时, 执行步骤 S605。  Step S603, the serving MSC checks the mobile device information and performs corresponding processing. When it is determined that the state of the mobile device is illegal according to the mobile device information, step S604 is performed; when it is determined that the state of the mobile device is legal according to the mobile device information, step S605 is performed.
步骤 S604, MSC拒绝位置登记请求。  Step S604, the MSC rejects the location registration request.
步骤 S605 , 继续位置登记流程。 MSC通过 VLR向 HLR发送 AUTHREQ, 在接受位置登记请求之后, HLR通过 VLR向 MSC反馈 authreq, 然后 MSC向 MS返回登记请求接受消息 ( register accept )。  Step S605, the location registration process is continued. The MSC sends an AUTHREQ to the HLR through the VLR. After accepting the location registration request, the HLR feeds back authreq to the MSC through the VLR, and then the MSC returns a register accept message (register accept) to the MS.
如图 7所示, 为本发明实施例二通过 VLR进行移动设备检查的用 户位置登记的流程图, 具体包括以下步骤: 步骤 S701 , 服务 MSC收到移动台 MS发送的登记请求或始呼请求 时 , 向 VLR发送鉴权请求 AUTHREQ; As shown in FIG. 7 , it is a flowchart of user location registration for performing mobile device check by a VLR according to Embodiment 2 of the present invention, which specifically includes the following steps: Step S701, the serving MSC sends an authentication request AUTHREQ to the VLR when receiving the registration request or the initial call request sent by the mobile station MS;
步骤 S702 , VLR根据预先设置的检查呼叫合法性的相关配置判断 需要校验移动设备标识, 则向 EIR发送 CHEKMEID, 其中包含移动设 备标识(ESN );  Step S702: The VLR determines, according to a preset configuration related to checking the legality of the call, that the mobile device identifier needs to be verified, and sends a CHEKMEID to the EIR, where the mobile device identifier (ESN) is included;
步骤 S703 , EIR进行检查, 并返回对应的移动设备信息。  Step S703, the EIR checks, and returns corresponding mobile device information.
步骤 S704, 服务 VLR检查移动设备信息, 并进行相应处理。 当根 据移动设备信息判断移动设备的状态为非法时,执行步骤 S705和步骤 S706; 当根据移动设备信息判断移动设备的状态为合法时,执行步骤 S707。  Step S704, the service VLR checks the mobile device information and performs corresponding processing. When it is determined that the state of the mobile device is illegal according to the mobile device information, step S705 and step S706 are performed; when it is determined that the state of the mobile device is legal according to the mobile device information, step S707 is performed.
步骤 S705, VLR向 MSC反馈 authreq, 其中指示鉴权失败; 步骤 S706, MSC发现鉴权失败, 则拒绝位置登记请求。  Step S705: The VLR feeds back authreq to the MSC, where the authentication fails. In step S706, the MSC finds that the authentication fails, and rejects the location registration request.
步骤 S707, 继续位置登记流程。 VLR向 HLR发送 AUTHREQ, 在 接受位置登记请求之后, HLR向 VLR反馈 AUTHREQ, VLR向 MSC反 馈 authreq, 其中指示鉴权成功, MSC发现鉴权成功, 向 MS返回登记 请求接受消息 ( register accept )。  Step S707, the location registration process is continued. The VLR sends an AUTHREQ to the HLR. After accepting the location registration request, the HLR feeds back the AUTHREQ to the VLR. The VLR feeds back authreq to the MSC, indicating that the authentication is successful, and the MSC finds that the authentication is successful, and returns a registration accept message (register accept) to the MS.
对于通过 HLR或 AC进行的设备号检测, 与上述流程类似, 不同 之处在于判断是否需要校验的检查点在 HLR或 AC, 而不是 MSC。  For device number detection by HLR or AC, it is similar to the above procedure, except that it is judged whether the checkpoint to be verified is at the HLR or AC, not the MSC.
如图 8所示,本发明实施例三还提供一种检查移动设备合法性的 装置, 包括接收模块和处理模块, 其中接收模块用于接收网络设备发 送的检查移动设备号 MEID或电子序列号 ESN的请求; 或者是拜访 位置寄存器 VLR发送的检查电子序列号 ESN的请求; 处理模块用于 根据所述请求执行所述检查并返回所述移动设备信息。  As shown in FIG. 8, the third embodiment of the present invention further provides an apparatus for checking the legitimacy of a mobile device, including a receiving module and a processing module, where the receiving module is configured to receive a check mobile device number MEID or an electronic serial number ESN sent by the network device. Or a request to check the electronic serial number ESN sent by the location register VLR; the processing module is configured to perform the check according to the request and return the mobile device information.
处理模块进一步包括检查子模块和反馈子模块,其中检查子模块 用于根据所述请求检查所述 MEID或 ESN的合法性, 即检查所存储的 相应用户设备标识与检查移动设备标识的请求中的 MEID或 ESN是否 一致; 或者根据所述检查移动设备标识的请求中的 MEID或 ESN检查 该用户的移动设备状态信息, 其是否属于已被盗的移动设备标识; 或 者检查移动设备标识的请求中的 MEID或 E SN是否在合法 MEID或 ESN的范围内; 反馈子模块用于根据所述检查子模块的检查结果(合 法或非法)生成返回消息,将所述移动设备信息返回给所述网络设备。 The processing module further includes a check submodule and a feedback submodule, wherein the check submodule is configured to check the legality of the MEID or the ESN according to the request, that is, check the stored corresponding user equipment identifier and the request for checking the mobile device identifier Whether the MEID or the ESN is consistent; or checking the mobile device status information of the user according to the MEID or ESN in the request for checking the identity of the mobile device, whether it belongs to the stolen mobile device identifier; or in the request for checking the mobile device identity Is the MEID or E SN at the legal MEID or Within the scope of the ESN; the feedback sub-module is configured to generate a return message according to the check result of the check sub-module (legal or illegal), and return the mobile device information to the network device.
例如在图 6、 图 7所示的位置登记流程中,接收模块接收网络设备 发送的检查移动设备标识的请求,然后处理模块根据请求执行所述检 查并返回对应移动设备的信息。 网络设备再根据 EIR返回的移动设备 信息是否合法进行处理:如果根据移动设备信息判断移动设备的状态 为合法, 则继续位置登记流程, 如果根据移动设备信息判断移动设备 的状态为非法, 则拒绝位置登记请求。  For example, in the location registration process shown in FIG. 6 and FIG. 7, the receiving module receives a request for checking the mobile device identity sent by the network device, and then the processing module performs the check according to the request and returns information corresponding to the mobile device. The network device further processes according to whether the mobile device information returned by the EIR is legal: if it is determined that the state of the mobile device is legal according to the mobile device information, the location registration process is continued, and if the state of the mobile device is determined to be illegal according to the mobile device information, the location is rejected. Registration request.
本发明实施例通过增加 MSC、 HLR或 AC与 EIR之间的检查移动设 备标识的请求消息, 或扩展 VLR与 EIR之间的检查移动设备标识的请 求消息,使 EIR可以对移动设备的设备号 MEID或电子序列号 ESN进行 合法性检查, 从而使网络设备根据 EIR的检查结果进行进一步处理, 限制了移动设备的非法使用, 并对机卡分离后移动设备进行管理。  In the embodiment of the present invention, the request message for checking the identity of the mobile device between the MSC, the HLR or the AC and the EIR, or the request message for checking the identity of the mobile device between the VLR and the EIR is extended, so that the EIR can be the device number MEID of the mobile device. Or the electronic serial number ESN performs legality check, so that the network device further processes according to the EIR check result, which restricts the illegal use of the mobile device, and manages the mobile device after the machine card is separated.
通过以上的实施方式的描述,本领域的技术人员可以清楚地了解 到本发明可借助软件加必需的通用硬件平台的方式来实现, 当然也可 以通过硬件,但很多情况下前者是更佳的实施方式。基于这样的理解, 本发明的技术方案本质上或者说对现有技术做出贡献的部分可以以 软件产品的形式体现出来, 该计算机软件产品存储在一个存储介质 中, 包括若干指令用以使得一台计算机设备(可以是个人计算机, 服 务器, 或者网络设备等)执行本发明各个实施例所述的方法。  Through the description of the above embodiments, those skilled in the art can clearly understand that the present invention can be implemented by means of software plus a necessary general hardware platform, and of course, can also be through hardware, but in many cases, the former is a better implementation. the way. Based on such understanding, the technical solution of the present invention, which is essential or contributes to the prior art, may be embodied in the form of a software product stored in a storage medium, including a plurality of instructions for making a A computer device (which may be a personal computer, server, or network device, etc.) performs the methods described in various embodiments of the present invention.
总之, 以上所述仅为本发明的较佳实施例而已, 并非用于限定本 发明的保护范围。 凡在本发明的精神和原则之内, 所作的任何修改、 等同替换、 改进等, 均应包含在本发明的保护范围之内。  In conclusion, the above description is only a preferred embodiment of the present invention and is not intended to limit the scope of the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.

Claims

权利要求 Rights request
1、 一种检查移动设备的方法, 其特征在于, 包括以下步骤: 设备标识寄存器 EIR接收网络设备发送的检查移动设备标识的 请求,其中所述网络设备包括但不限于: 移动交换中心 MSC、 归属位 置寄存器 HLR、 鉴权中心 AC或拜访位置寄存器 VLR, 所述 MSC、 HLR或 AC发送的检查移动设备标识的请求包含移动设备号 MEID 或电子序列号 ESN, 所述 VLR发送的检查移动设备标识包含电子序 列号 ESN; A method for inspecting a mobile device, comprising the steps of: the device identification register EIR receiving a request for checking a mobile device identity sent by a network device, wherein the network device includes but is not limited to: a mobile switching center MSC, belonging The location register HLR, the authentication center AC or the visitor location register VLR, the request for checking the mobile device identity sent by the MSC, the HLR or the AC includes a mobile device number MEID or an electronic serial number ESN, and the check mobile device identifier sent by the VLR includes Electronic serial number ESN;
所述 EIR根据所述检查移动设备标识的请求中的 MEID或 ESN 对所述移动设备标识进行检查, 并向所述网络设备返回移动设备信 息, 其中, 所述移动设备信息包含所述 EIR的检查结果。  The EIR checks the mobile device identity according to the MEID or ESN in the request for checking the identity of the mobile device, and returns mobile device information to the network device, where the mobile device information includes the check of the EIR result.
2、 如权利要求 1所述检查移动设备的方法, 其特征在于, 所述 方法还包括:  2. The method of checking a mobile device according to claim 1, wherein the method further comprises:
所述网络设备根据所述 EIR返回的移动设备信息确认相应的移动 设备的状态是否合法,若否,限制所述移动设备在网络中通信,若是, 允许所述移动设备在网络中通信。  The network device confirms whether the state of the corresponding mobile device is legal according to the mobile device information returned by the EIR, and if not, restricts the mobile device from communicating in the network, and if so, allows the mobile device to communicate in the network.
3、 如权利要求 1所述检查移动设备的方法, 其特征在于, 所述 EIR接收网络设备发送的检查移动设备标识的请求之前, 所述方法还 包括:  The method for checking a mobile device according to claim 1, wherein before the EIR receives a request for checking a mobile device identifier sent by the network device, the method further includes:
所述网络设备接收移动设备发送的位置登记请求或呼叫请求信 息。  The network device receives a location registration request or call request information transmitted by the mobile device.
4、 如权利要求 3所述检查移动设备的方法, 其特征在于, 所述网 络设备接收移动设备发送的位置登记请求或呼叫请求信息之后,还包 括:所述网络设备根据预先设置的检查位置登记合法性或呼叫请求合 法性的配置判断是否需要校验移动设备标识, 如果是, 则向所述 EIR 发送检查移动设备标识的请求。  The method for checking a mobile device according to claim 3, wherein after the network device receives the location registration request or the call request information sent by the mobile device, the method further includes: the network device registering according to a preset check location The configuration of legality or call request validity determines whether the mobile device identity needs to be verified, and if so, sends a request to check the mobile device identity to the EIR.
5、 如权利要求 3所述检查移动设备的方法, 其特征在于, 所述 EIR向所述网络设备返回移动设备信息之后, 还包括: 所述网络设备根据所述移动设备信息确认相应的移动设备的状 态是否合法, 并对移动设备的位置登记请求或呼叫请求进行处理。 The method for checking a mobile device according to claim 3, wherein, after the EIR returns the mobile device information to the network device, the method further includes: The network device confirms whether the status of the corresponding mobile device is legal according to the mobile device information, and processes the location registration request or the call request of the mobile device.
6、 如权利要求 5所述检查移动设备的方法, 其特征在于, 所述网 络设备根据所述移动设备信息对移动设备的位置登记请求或呼叫请 求进行处理具体包括:所述网络设备如果根据所述移动设备信息判断 所述移动设备的状态合法, 则继续所述位置登记请求或呼叫请求流 程;  The method for checking a mobile device according to claim 5, wherein the processing, by the network device, the location registration request or the call request of the mobile device according to the mobile device information comprises: If the mobile device information determines that the state of the mobile device is legal, the location registration request or the call request process is continued;
如果根据所述移动设备信息判断所述移动设备的状态非法,则拒 绝所述位置登记请求或呼叫请求。  If it is determined that the state of the mobile device is illegal based on the mobile device information, the location registration request or the call request is rejected.
7、如权利要求 1所述检查移动设备的方法,其特征在于,所述 EIR 对所述移动设备标识进行检查,并向所述网络设备返回移动设备信息 包括: 所述 EIR检查所述 EIR存储的用户设备标识与所述检查移动设 备标识的请求中包含的 MEID或 ESN是否一致, 将所述是否一致的信 息返回给所述网络设备。  7. The method of checking a mobile device according to claim 1, wherein said checking, by said EIR, said mobile device identity, and returning mobile device information to said network device comprises: said EIR checking said EIR storage Whether the user equipment identifier is consistent with the MEID or the ESN included in the request for checking the identity of the mobile device, and returns the information of the consistency to the network device.
8、 如权利要求 1所述检查移动设备的方法, 其特征在于, 所述方 法还包括: 所述 EIR中还保存 MEID或 ESN对应的移动设备的状态信 息, 则  The method of checking a mobile device according to claim 1, wherein the method further comprises: saving, in the EIR, status information of a mobile device corresponding to the MEID or the ESN,
所述 EIR对所述移动设备标识进行检查, 并向所述网络设备返回 移动设备信息包括: 所述 EIR根据所述检查移动设备标识的请求中的 MEID或 ESN查询所述移动设备的状态信息, 将所述检查移动设备标 识的请求中包含的 MEID或 ESN对应的移动设备的状态信息返回给所 述网络设备。  The EIR is configured to check the mobile device identifier, and the returning the mobile device information to the network device includes: the EIR querying the state information of the mobile device according to the MEID or ESN in the request for checking the mobile device identifier, Returning, to the network device, the MEID included in the request for checking the identity of the mobile device or the state information of the mobile device corresponding to the ESN.
9、 如权利要求 1所述检查移动设备的方法, 其特征在于, 所述方 法还包括: 所述 EIR中还设置合法 MEID或 ESN的范围, 则  The method of checking a mobile device according to claim 1, wherein the method further comprises: setting a range of a legal MEID or an ESN in the EIR,
所述 EIR对所述移动设备标识进行检查, 并向所述网络设备返回 移动设备信息包括: 所述 EIR根据所述检查移动设备标识的请求中的 MEID或 ESN是否在合法 MEID或 ESN的范围内, 判断所述移动设备的 状态是否合法, 将所述移动设备的状态信息返回给所述网络设备。  The checking, by the EIR, the mobile device identifier, and returning the mobile device information to the network device, includes: determining, by the EIR, whether the MEID or the ESN in the request for checking the mobile device identifier is within a range of a valid MEID or an ESN And determining whether the state of the mobile device is legal, and returning status information of the mobile device to the network device.
10、 一种检查移动设备的装置, 其特征在于, 包括: 接收模块,用于接收网络设备接收网络设备发送的检查移动设备 标识的请求, 其中所述网络设备包括但不限于: 移动交换中心 MSC、 归属位置寄存器 HLR、 鉴权中心 AC或拜访位置寄存器 VLR, 所述 MSC、 HLR或 AC发送的检查移动设备标识的请求包含移动设备号 MEID或电子序列号 ESN, 所述 VLR发送的检查移动设备标识包含 电子序列号 ESN; 10. A device for inspecting a mobile device, comprising: a receiving module, configured to receive, by the network device, a request for checking, by the network device, a mobile device identifier, where the network device includes but is not limited to: a mobile switching center MSC, a home location register HLR, an authentication center AC, or a visitor location register VLR, The request for checking the identity of the mobile device sent by the MSC, the HLR or the AC includes a mobile device number MEID or an electronic serial number ESN, and the check mobile device identifier sent by the VLR includes an electronic serial number ESN;
处理模块,用于根据所述检查移动设备标识的请求中的 MEID或 ESN对所述移动设备标识进行检查,并向所述网络设备返回移动设备 信息, 其中, 所述移动设备信息包含所述 EIR的检查结果。  a processing module, configured to check the mobile device identifier according to the MEID or ESN in the request for checking the identity of the mobile device, and return the mobile device information to the network device, where the mobile device information includes the EIR Inspection results.
11、 如权利要求 10所述检查移动设备的装置, 其特征在于, 所 述接收模块和处理模块均设置在设备标识寄存器 EIR。  11. Apparatus for inspecting a mobile device according to claim 10, wherein said receiving module and processing module are each disposed in a device identification register EIR.
12、 如权利要求 10所述检查移动设备的装置, 其特征在于, 所 述处理模块进一步包括:  The device for checking a mobile device according to claim 10, wherein the processing module further comprises:
检查子模块,用于根据所述接收模块接收的检查移动设备标识的 请求检查所述 MEID或 ESN的合法性;  Checking a submodule, configured to check validity of the MEID or ESN according to the request for checking the identity of the mobile device received by the receiving module;
反馈子模块,用于根据所述检查子模块的检查结果将所述移动设 备信息返回给所述网络设备。  And a feedback submodule, configured to return the mobile device information to the network device according to the check result of the check submodule.
PCT/CN2008/070426 2007-03-09 2008-03-06 Method and apparatus for examining mobile equipment WO2008110096A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CNA2007100734683A CN101022637A (en) 2007-03-09 2007-03-09 Method and device for testing mobile device
CN200710073468.3 2007-03-09

Publications (1)

Publication Number Publication Date
WO2008110096A1 true WO2008110096A1 (en) 2008-09-18

Family

ID=38710261

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2008/070426 WO2008110096A1 (en) 2007-03-09 2008-03-06 Method and apparatus for examining mobile equipment

Country Status (2)

Country Link
CN (1) CN101022637A (en)
WO (1) WO2008110096A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2013086536A1 (en) * 2011-12-09 2013-06-13 Qualcomm Incorporated Apparatus and method for controlling wireless network access

Families Citing this family (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101022637A (en) * 2007-03-09 2007-08-22 华为技术有限公司 Method and device for testing mobile device
CN101478745B (en) * 2008-01-03 2011-11-16 中国移动通信集团公司 Method and apparatus for checking validity of equipment label
CN101286846B (en) * 2008-05-19 2014-04-16 郑宽永 Interactive identity authentication method
CN101552988A (en) * 2009-04-28 2009-10-07 中兴通讯股份有限公司 Terminal protecting methdo and system
CN101877909A (en) * 2009-04-30 2010-11-03 中兴通讯股份有限公司 Hardware identifier register and high-speed grouped data system
CN101877851B (en) * 2009-04-30 2015-06-03 中兴通讯股份有限公司 Terminal management method and high rate packet data system
CN101888632A (en) * 2009-05-14 2010-11-17 中兴通讯股份有限公司 Management method and superposition system for HRPD and 1x dual-mode terminal
CN102340866B (en) * 2010-07-14 2016-04-13 中兴通讯股份有限公司 A kind of method and system of reporting access information of fixed network
CN102014388B (en) * 2010-11-18 2014-11-05 中兴通讯股份有限公司 Method and system for determining legal terminal
CN102572064A (en) * 2010-12-16 2012-07-11 中兴通讯股份有限公司 Method and device for using short messages
CN102104847B (en) * 2011-02-24 2015-01-28 中兴通讯股份有限公司 Short message monitoring method based on flow and call-initiating areas
CN103188766B (en) * 2011-12-30 2016-02-10 中兴通讯股份有限公司 A kind of method and access controller unifying configuration WAP (wireless access point)
EP2810477B1 (en) * 2012-01-31 2017-11-01 Telefonaktiebolaget LM Ericsson (publ) Server selection in communications network with respect to a mobile user
KR102292022B1 (en) * 2019-04-19 2021-08-23 (주)노르마 Selection Method of dangerous Bluetooth Device based on connection with Bluetooth Device
CN111866716A (en) * 2019-04-19 2020-10-30 诺玛有限公司 System for dangerous bluetooth equipment is filtered to position based on bluetooth equipment

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1307789A (en) * 1998-06-26 2001-08-08 艾利森电话股份有限公司 Substriber validation method in cellular communication system
CN1848997A (en) * 2005-04-13 2006-10-18 华为技术有限公司 Method for calling mobile station
CN1852550A (en) * 2005-05-17 2006-10-25 华为技术有限公司 Safety communication method
CN101022637A (en) * 2007-03-09 2007-08-22 华为技术有限公司 Method and device for testing mobile device

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1307789A (en) * 1998-06-26 2001-08-08 艾利森电话股份有限公司 Substriber validation method in cellular communication system
CN1848997A (en) * 2005-04-13 2006-10-18 华为技术有限公司 Method for calling mobile station
CN1852550A (en) * 2005-05-17 2006-10-25 华为技术有限公司 Safety communication method
CN101022637A (en) * 2007-03-09 2007-08-22 华为技术有限公司 Method and device for testing mobile device

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2013086536A1 (en) * 2011-12-09 2013-06-13 Qualcomm Incorporated Apparatus and method for controlling wireless network access
US8874084B2 (en) 2011-12-09 2014-10-28 Qualcomm Incorporated Apparatus and method for controlling wireless network access

Also Published As

Publication number Publication date
CN101022637A (en) 2007-08-22

Similar Documents

Publication Publication Date Title
WO2008110096A1 (en) Method and apparatus for examining mobile equipment
CN106487777B (en) Identity authentication method, Internet of things gateway device and authentication gateway device
KR101167781B1 (en) System and method for authenticating a context transfer
US9432349B2 (en) Service access authentication method and system
EP2297923B1 (en) Authenticating a wireless device in a visited network
EP2548390B1 (en) Facilitating authentication of access terminal identity
US8839397B2 (en) End point context and trust level determination
CN110199513A (en) A kind of conversation processing method and equipment
EP3598711B1 (en) User authentication method and device
WO2009135367A1 (en) User device validation method, device identification register and access control system
WO2007106620A2 (en) Method for authenticating a mobile node in a communication network
CN109716805A (en) A kind of installation method, terminal and the server of subscription data collection
WO2013185709A1 (en) Call authentication method, device, and system
KR100755536B1 (en) Prevention system for the IP allocation of a cloned mobile phone
JPH11161618A (en) Mobile computer management device, mobile computer device, and mobile computer registering method
JP6732794B2 (en) Method for establishing a connection of a mobile terminal to a mobile wireless communication network and a communication network device
CN108093380B (en) Registration state determining method, device and system and CSE
WO2012163203A1 (en) Method and device for updating dynamic authentication parameters of user equipment and aaa
US11974131B2 (en) Systems and methods for seamless cross-application authentication
WO2012163142A1 (en) Method and system for updating authentication key of user equipment, and user equipment
US20230155832A1 (en) Network security
WO2021084219A1 (en) System and method for performing identity management
CN114223232A (en) Communication method and related equipment
WO2016162759A2 (en) Secure service request using an application granted key
KR20190036910A (en) Apparatus for authenticating controlling SMS based on SMPP

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 08715162

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 08715162

Country of ref document: EP

Kind code of ref document: A1