WO2010028563A1 - Method and system for protecting privacy - Google Patents

Method and system for protecting privacy Download PDF

Info

Publication number
WO2010028563A1
WO2010028563A1 PCT/CN2009/073168 CN2009073168W WO2010028563A1 WO 2010028563 A1 WO2010028563 A1 WO 2010028563A1 CN 2009073168 W CN2009073168 W CN 2009073168W WO 2010028563 A1 WO2010028563 A1 WO 2010028563A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
processing system
service processing
short message
advertisement
Prior art date
Application number
PCT/CN2009/073168
Other languages
French (fr)
Chinese (zh)
Inventor
蒋天超
洪骏
徐宜良
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2010028563A1 publication Critical patent/WO2010028563A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/52Network services specially adapted for the location of the user terminal
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/02Services making use of location information

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

A method and system for protecting the privacies are disclosed in the present invention. A service processing system sets an area strategy, wherein the area strategy includes a self-defined service area; a signaling interception system reports the intercepted user position information to the service processing system; the service processing system matches the corresponding self-defined service area with the user according to the area strategy, and encrypts a terminal number in the user position information by a key preset by the system, to obtain a pseudo-code of the user, and sends the user position information including the pseudo-code to a content system; the content system matches an advertising corresponding to the self-defined service area with the user according to the matched self-defined service area with the user, and sends an advertising short message including the advertising information to the service processing system according to the pseudo-code; and the service processing system receives the advertising short message, decrypts the pseudo-code in the advertising short message to obtain the terminal number, and sends out the short message including the advertising information according to the decrypted terminal number.

Description

一种隐私保护方法和系统  Privacy protection method and system
技术领域 Technical field
本发明涉及隐私保护技术, 尤其是指一种隐私保护方法和系统。  The present invention relates to privacy protection technologies, and more particularly to a privacy protection method and system.
背景技术 Background technique
目前, 随着短信业务的开发, 各种短信服务给客户带来很大的便利, 但 由于现有短信发布系统的技术局限,短信不能有目标地发布给特定的客户群, 使客户接收到的无关信息增多, 终端客户在享受短信业务服务的同时, 也在 忍受着无关信息的干扰。 客户经常接收到无关的垃圾短信, 但真正需要的信 息特别是个性化服务却无法得到, 使部分客户对短信发布方产生反感, 从而 对移动运营商发展短信业务带来一定的负面影响。 在现有短信平台上不可能 使信息到达特定客户群, 这也使短信发布方希望借助短信业务发布服务信息 及广告信息的初衷无法得到实现。 小区短信服务系统就是针对目前短信系统 的局限而开发出的新的短信发布系统, 它通过新的技术手段, 在特定区域、 特定时间对特定用户群发送特定短信的短信增值服务, 可以使短信直接到达 既定客户, 不仅让客户感到满意, 而且还使短信发布方达到理想的宣传和服 务效果, 具有 "个性化" 的优势, 有见效快、 应用灵活、 针对性强等个性化 特点。  At present, with the development of short message service, various short message services bring great convenience to customers. However, due to the technical limitations of the existing short message publishing system, short messages cannot be targeted to a specific customer group, so that the customer receives it. Irrelevant information has increased, and end-users are also suffering from unrelated information while enjoying SMS service. Customers often receive irrelevant spam messages, but the information they really need, especially personalized services, is not available, which makes some customers resent the SMS publishers, which has a certain negative impact on the development of SMS services by mobile operators. It is impossible to get information to a specific customer group on the existing SMS platform, which also makes it impossible for the SMS publisher to use the SMS service to publish service information and advertisement information. The community short message service system is a new short message publishing system developed for the limitation of the current short message system. It uses new technical means to send a specific text message value-added service to a specific user group in a specific area and at a specific time. Reaching the established customer not only makes the customer satisfied, but also enables the SMS publisher to achieve the desired publicity and service effect. It has the advantage of "personalization", and has the characteristics of quick effect, flexible application and strong pertinence.
通常, 小区短信服务系统由信令侦听系统、 业务处理系统、 短信网关等 几部分构成。 短信服务的流程是: 信令侦听系统侦听到用户后将其位置信息 上报给业务处理系统, 业务处理系统经过分析且根据一定的规则选择商家的 广告, 然后将广告通过短信网关下发给用户, 而其中的业务处理系统由于涉 及到广告及广告商的管理和选择, 因此通常由内容提供商来管理。  Generally, the cell short message service system is composed of a signaling interception system, a service processing system, and a short message gateway. The process of the short message service is as follows: After the signaling interception system detects the user, the location information is reported to the service processing system, and the business processing system analyzes and selects the advertisement of the merchant according to certain rules, and then sends the advertisement to the message gateway through the short message gateway. Users, where the business processing system is usually managed by content providers because of the management and selection of advertisements and advertisers.
当前的技术应用中, 广告商及其广告的管理和发送控制均在一个系统中 实现, 不利于运营商设备和内容提供商的配合和分工, 同时由于内容提供方 多为服务提供方, 他们能直接根据业务系统提供的信令数据获取用户的终端 号码和位置区域, 这无形之中泄露了用户的隐私, 在个人隐私保护越来受到 重视的当今社会, 这种直接暴露用户位置信息的情况会很可能遭到攻击和投 诉。 为了更有利于小区短信的广告业务的推广和发展, 所以迫切需要一种用 来规避直接让内容提供方看到位置信息和实际终端号码的策略或方法。 In current technology applications, the management and transmission control of advertisers and their advertisements are implemented in one system, which is not conducive to the cooperation and division of equipment between operators and content providers. At the same time, since content providers are mostly service providers, they can Obtaining the user's terminal number and location area directly according to the signaling data provided by the service system, which invisibly reveals the user's privacy. In today's society where personal privacy protection is increasingly valued, this situation of directly exposing the user's location information will Very likely to be attacked and cast v. In order to promote the promotion and development of the advertising service of the cell short message, there is an urgent need for a strategy or method for circumventing the content provider directly to see the location information and the actual terminal number.
发明内容 Summary of the invention
本发明的目的是, 针对上述现有技术存在的缺陷提供了一种小区短信的 隐私保护方法和系统, 小区短信分别通过内容系统和业务处理系统管理达到 有效的保护用户个人隐私信息的目的。  The object of the present invention is to provide a method and system for protecting a cell short message privacy according to the defects of the prior art. The cell short message is managed by the content system and the service processing system to effectively protect the user's personal privacy information.
本发明的技术方案如下:  The technical solution of the present invention is as follows:
一种隐私保护方法, 该方法釆用业务处理系统和内容系统来对小区短信 进行隐私保护, 该方法包括如下步骤:  A privacy protection method, which uses a service processing system and a content system to perform privacy protection on a cell short message, and the method includes the following steps:
A、 业务处理系统设置区域策略, 所述区域策略中包括自定义服务区域; A. The service processing system sets an area policy, where the area policy includes a customized service area;
B、 信令侦听系统将侦听到的用户位置信息上 ^艮给所述业务处理系统;B. The signaling interception system sends the detected user location information to the service processing system.
C、所述业务处理系统根据所述区域策略为用户匹配其所对应的自定义服 务区域,并通过系统事先设置的密钥对用户位置信息中的终端号码进行加密, 得到用户的伪码, 将包含所述伪码的用户位置信息发送给所述内容系统;C. The service processing system matches the user-defined custom service area according to the regional policy, and encrypts the terminal number in the user location information by using a key set in advance by the system, to obtain a pseudo code of the user, and User location information including the pseudo code is sent to the content system;
D、 所述内容系统根据为用户匹配的自定义服务区域为用户匹配与所述 自定义服务区域相应的广告, 根据所述伪码将包含所述广告信息的广告短信 发送给所述业务处理系统; D. The content system matches an advertisement corresponding to the customized service area to the user according to the customized service area matched by the user, and sends an advertisement message including the advertisement information to the service processing system according to the pseudo code. ;
E、所述业务处理系统接收所述广告短信,解密广告短信中的伪码获取终 端号码, 根据解密得出的终端号码将包含广告信息的短信发送出去。  E. The service processing system receives the advertisement short message, decrypts the pseudo code in the advertisement short message to obtain the terminal number, and sends the short message including the advertisement information according to the decrypted terminal number.
进一步地, 所述业务处理系统和内容系统是彼此分离的。  Further, the business processing system and the content system are separated from each other.
进一步地, 所述步骤 B之后, 该方法还包括: 所述业务处理系统根据事 先设定的第一过滤规则对所述用户位置信息对应的用户进行过滤保护, 过滤 通过则执行步骤 C; 否则丟弃所述用户。  Further, after the step B, the method further includes: the service processing system filtering and protecting the user corresponding to the user location information according to the first filtering rule set in advance, and performing step C by filtering; otherwise, Discard the user.
较佳地, 步骤 E中获取终端号码的所述步骤之后, 该方法进一步包括以 下步骤:  Preferably, after the step of obtaining the terminal number in step E, the method further comprises the following steps:
所述业务处理系统根据事先设定的第二过滤规则对所述广告短信对应的 用户进行业务过滤, 过滤通过则根据解密得出的终端号码将包含广告信息的 短信发送给短信网关; 否则结束流程。 The service processing system corresponding to the advertisement short message according to a second filtering rule set in advance The user performs service filtering, and the filtering passes the short message containing the advertisement information to the short message gateway according to the decrypted terminal number; otherwise, the process ends.
较佳地, 所述步骤 A包括如下步骤:  Preferably, the step A includes the following steps:
A1、 所述业务处理系统将所述信令侦听系统侦听到的区域按照类别进行 划分;  A1. The service processing system divides an area detected by the signaling interception system according to a category;
A2、 所述业务处理系统将多个相关联的服务小区单元合并为至少一个自 定义服务区域, 其中, 所述自定义服务区域包含多个实际基站单元数据。  A2. The service processing system combines a plurality of associated serving cell units into at least one customized service area, where the customized service area includes a plurality of actual base station unit data.
较佳地, 所述自定义服务区域是传输给内容提供方的位置信息数据。 一种小区短信的隐私保护方法, 其中, 釆用业务处理系统和内容系统分 离的构架来对所述小区短信进行隐私保护, 包括如下步骤:  Preferably, the custom service area is location information data transmitted to the content provider. A privacy protection method for a cell short message, wherein the privacy protection of the cell short message is performed by using a service processing system and a content system separation framework, including the following steps:
A、 通过业务处理系统进行系统预处理, 设置区域策略;  A. Perform system pre-processing through the service processing system to set the regional policy;
B、 信令侦听系统上报用户位置信息给所述业务处理系统;  B. The signaling interception system reports the user location information to the service processing system;
C、所述业务处理系统对上报用户位置信息进行过滤保护,利用所述区域 策略, 获取业务处理系统设置的服务区域, 对终端号码进行加密得到用户的 伪码, 向所述内容系统发送用户位置信息;  C. The service processing system filters and protects the reported user location information, uses the regional policy to obtain a service area set by the service processing system, encrypts the terminal number to obtain a pseudo code of the user, and sends the user location to the content system. Information
D、 所述内容系统匹配相关广告向所述业务处理系统发送广告信息, 所 述业务处理系统对下发短信进行过滤保护, 向短信网关发送短信。  D. The content system matches the related advertisement to send the advertisement information to the service processing system, and the service processing system filters and protects the sent short message, and sends the short message to the short message gateway.
所述的方法, 其中, 所述步骤 A具体包括如下步骤:  The method, wherein the step A specifically includes the following steps:
A1、 所述业务处理系统将所述信令侦听系统侦听的区域按照类别进行划 分;  A1. The service processing system divides an area that the signaling interception system listens according to a category;
A2、 将若干个相关联的服务小区单元合并为至少一个自定义服务区域, 所述自定义服务区域包含若干个实际基站单元数据。  A2. Combining a plurality of associated serving cell units into at least one custom service area, the custom service area comprising a plurality of actual base station unit data.
所述的方法, 其中, 所述自定义服务区域是传输给内容提供方的位置信 息数据。  The method, wherein the customized service area is location information data transmitted to a content provider.
所述的方法, 其中, 所述步骤 B进一步包括: 所述信令侦听系统对进入 设定小区、 且发出设定动作的终端用户进行侦听, 将侦听到的用户位置信息 上报给业务处理系统。 所述的方法, 其中, 所述步骤〇上^艮位置信息的过滤保护具体包括如下 步骤: In the above method, the step B further includes: the signaling interception system is configured to listen to the terminal user who enters the set cell and sends the set action, and reports the detected user location information to the service. Processing system. In the method, the filtering protection of the location information includes the following steps:
Cl、 所述业务处理系统收到所述信令侦听系统侦听到的用户数据信息, 判断如果满足业务其他自定义过滤条件, 执行步骤 C2;  Cl, the service processing system receives the user data information that is detected by the signaling interception system, and determines that if other custom filtering conditions of the service are met, step C2 is performed;
C2、 根据小区信息匹配所属自定义服务区域数据, 在所述小区中找到相 关联的区域, 对终端号码进行加密后, 执行步骤 C3;  C2, matching the customized service area data according to the cell information, finding the associated area in the cell, and encrypting the terminal number, performing step C3;
C3、 按照约定消息接口发送消息给所述内容系统。  C3. Send a message to the content system according to the agreed message interface.
所述的方法, 其中, 所述步骤 D对下发短信的过滤保护具体包括如下步 骤:  In the method, the filtering protection of the sent SMS in the step D specifically includes the following steps:
Dl、 所述业务处理系统收到所述内容系统在指定服务区域下的广告内容 信息;  Dl. The service processing system receives advertisement content information of the content system under a designated service area;
D2、 解密终端伪码获取实际有效终端号码;  D2, decrypting the terminal pseudo code to obtain the actual effective terminal number;
D3、 按照标准短信接口发送消息给短信网关。  D3. Send a message to the SMS gateway according to the standard short message interface.
一种隐私保护系统, 该系统适用于对小区短信进行隐私保护, 该系统包 括信令侦听系统、 业务处理系统及内容系统, 其中,  A privacy protection system, the system is adapted to perform privacy protection on a cell short message, and the system includes a signaling interception system, a service processing system, and a content system, where
所述信令侦听系统设置成将所述用户位置信息上报给所述业务处理系 统;  The signaling listening system is configured to report the user location information to the service processing system;
所述业务处理系统设置成设置区域策略, 其中, 所述区域策略中包括自 定义服务区域; 还设置成根据所述区域策略为用户匹配其所对应的自定义服 务区域,并通过系统事先设置的密钥对用户位置信息中的终端号码进行加密, 得到用户的伪码, 将包含所述伪码的用户位置信息发送给所述内容系统; 还 设置成接收所述广告短信, 解密广告短信中的伪码获取终端号码, 根据解密 得出的终端号码将所述广告短信发送出去;  The service processing system is configured to set a regional policy, where the regional policy includes a customized service area, and is further configured to match the customized service area corresponding to the user according to the regional policy, and set the system in advance through the system. The key encrypts the terminal number in the user location information, obtains the pseudo code of the user, and sends the user location information including the pseudo code to the content system; and is further configured to receive the advertisement short message, and decrypt the advertisement short message. The pseudo code acquires the terminal number, and sends the advertisement short message according to the decrypted terminal number;
所述内容系统设置成根据为用户匹配的自定义服务区域为用户匹配与所 述自定义服务区域相应的广告, 根据所述伪码将包含所述广告信息的广告短 信发送给所述业务处理系统。  The content system is configured to match an advertisement corresponding to the customized service area to a user according to a customized service area matched by the user, and send an advertisement message including the advertisement information to the service processing system according to the pseudo code. .
进一步地, 所述业务处理系统和所述内容系统是彼此分离的。 进一步地, 所述系统还包括: 短信网关, 其设置成接收所述业务处理系 统发来的广告短信, 并将其发送出去。 Further, the service processing system and the content system are separated from each other. Further, the system further includes: a short message gateway, configured to receive an advertisement short message sent by the service processing system, and send the short message.
较佳地, 所述业务处理系统还设置成根据事先设定的第一过滤规则对所 述用户位置信息对应的用户进行过滤保护, 过滤通过为用户匹配自定义服务 区域; 否则丟弃所述用户。  Preferably, the service processing system is further configured to filter and protect the user corresponding to the user location information according to the first filtering rule set in advance, and filter to customize the service area by matching the user; otherwise, the user is discarded. .
较佳地, 所述业务处理系统还设置成根据事先设定的第二过滤规则对所 述广告短信对应的用户进行业务过滤, 过滤通过则根据解密得出的终端号码 向短信网关发送包含广告信息的短信。  Preferably, the service processing system is further configured to perform service filtering on the user corresponding to the advertisement short message according to a second filtering rule set in advance, and send the advertisement information to the short message gateway according to the decrypted terminal number according to the decrypted terminal number. SMS.
进一步地, 所述内容系统为多个, 多个所述内容系统均设置成接入所述 业务处理系统。  Further, the content system is multiple, and the plurality of content systems are all set to access the service processing system.
较佳地, 所述内容系统还设置成连接内容提供方, 所述内容提供方对所 述内容系统进行管理。  Preferably, the content system is further configured to connect to a content provider, and the content provider manages the content system.
较佳地, 所述业务处理系统是连接运营商设备。  Preferably, the service processing system is connected to an operator device.
一种小区短信的隐私保护系统, 包括信令侦听系统, 短信网关, 其中, 还包括分离设置的业务处理系统和内容系统; 所述业务处理系统设置成进行 系统预处理, 设置区域策略; 所述信令侦听系统设置成上报用户位置信息给 所述业务处理系统; 所述业务处理系统为所述内容系统的接入控制系统, 设 置成接收所述用户位置信息并进行过滤保护, 以终端伪码方式向所述内容系 统发送用户位置信息, 以及, 对来自于所述内容系统的下发短信广告信息进 行过滤保护, 向短信网关发送短信。  A privacy protection system for a cell short message, comprising a signaling interception system, a short message gateway, wherein the service processing system and the content system are separately configured; the service processing system is configured to perform system preprocessing and set a regional policy; The signaling listening system is configured to report user location information to the service processing system; the service processing system is an access control system of the content system, configured to receive the user location information and perform filtering protection on the terminal The pseudo-code mode sends user location information to the content system, and filters and protects the sent short message advertisement information from the content system, and sends the short message to the short message gateway.
所述的系统, 其中, 所述内容系统设置为多个, 设置成接入所述业务处 理系统。  The system, wherein the content system is configured to be multiple, and is configured to access the service processing system.
所述的系统, 其中, 所述内容系统还连接一内容提供方, 设置成通过所 述内容提供方对所述内容系统的信息进行管理。  The system, wherein the content system is further connected to a content provider, configured to manage information of the content system by the content provider.
所述的系统, 其中, 所述业务处理系统还连接运营商设备, 设置成通过 所述运营商设备对所述业务处理系统的信息进行管理, 处理用户位置信息并 以终端伪码方式提供给所述内容提供方。  The system, wherein the service processing system is further connected to a carrier device, configured to manage information of the service processing system by using the operator device, process user location information, and provide the device with a pseudo code in a terminal manner. The content provider.
本发明一种小区短信的隐私保护方法和系统, 提出了一种可控用户隐私 保护的小区短信的处理方法, 与现有技术中的广告商及其广告的管理和发送 控制在一个系统相比,本发明从保护终端用户隐私的合法权益为基本出发点, 通过将内容系统和业务系统分离, 差异化活动区域, 加密用户终端号码, 实 现了运营商与内容提供商的更明确的分工和配合, 同时有效的保证了用户的 位置信息的私密性, 为解决用户位置隐私问题提供一条有效的途径。 The invention provides a privacy protection method and system for cell short message, and proposes a controllable user privacy The method for processing the protected cell short message is compared with the prior art advertiser and its advertising management and transmission control. In one system, the present invention is based on protecting the legitimate rights and interests of the end user's privacy, by using the content system and the service. The system is separated, the active area is differentiated, and the user terminal number is encrypted, which realizes a clearer division and cooperation between the operator and the content provider, and effectively ensures the privacy of the user's location information, and provides a solution for solving the user location privacy problem. An effective way.
附图概述 BRIEF abstract
图 1是本发明系统数据消息交互示意图;  1 is a schematic diagram of data message interaction of the system of the present invention;
图 2是本发明业务处理系统对上报的位置信息过滤保护流程图; 图 3是本发明业务处理系统对要下发的短信过滤保护流程图。  2 is a flow chart of filtering and protecting location information reported by the service processing system of the present invention; FIG. 3 is a flow chart of filtering protection of short messages to be sent by the service processing system of the present invention.
本发明的较佳实施方式 Preferred embodiment of the invention
本发明提供了一种小区短信的隐私保护方法和系统,为使本发明的目的、 技术方案及优点更加清楚、 明确, 以下参照附图并举实施例对本发明进一步 详细说明。  The present invention provides a privacy protection method and system for cell short message. The present invention will be further described in detail below with reference to the accompanying drawings and embodiments.
为了解决在小区短信管理和发送过程中所存在的泄露用户隐私问题, 本 发明提出一种可控用户隐私保护的小区短信处理方法, 其核心思想是: 对系 统进行预处理, 即设置区域策略, 将所侦听的区域按照类别进行划分。 其中, 内容系统由内容提供方管理, 业务处理系统作为内容系统的接入控制系统由 运营商设备来管理, 一般是多个内容系统接入业务处理系统, 这样有利于小 区短信业务的开展。 其中, 业务处理系统处理用户位置信息并将其以终端伪 码方式提供给内容提供方, 以防内容提供方知悉真正的终端号码, 同时也实 现了运营商与内容提供商明确的分工和配合, 达到有效地保护用户位置个人 隐私信息的目的。 其中, 业务处理系统和内容系统两者分离二者是彼此分离 的, 这样可以便于后续架构的扩展。 当然, 业务处理系统和内容系统也可以 合并在一起。  In order to solve the problem of leaking user privacy in the process of cell short message management and transmission, the present invention provides a cell message processing method for controlling user privacy protection, and the core idea is: pre-processing the system, that is, setting a regional policy, The area to be monitored is divided by category. The content system is managed by the content provider, and the service processing system is managed by the operator equipment as the access control system of the content system. Generally, multiple content systems access the service processing system, which is beneficial to the development of the small area short message service. The service processing system processes the user location information and provides the content to the content provider in a terminal pseudo-code manner, in order to prevent the content provider from knowing the real terminal number, and also realizes a clear division and cooperation between the operator and the content provider. Achieve the purpose of effectively protecting personal privacy information of users' locations. Wherein, the separation of the business processing system and the content system are separated from each other, which can facilitate the expansion of the subsequent architecture. Of course, business processing systems and content systems can also be combined.
根据上述核心思想, 本发明的系统如图 1所示, 所述系统包括信令侦听 系统 101、 业务处理系统 102、 内容系统 103和短信网关 104, 其中: 信令侦听系统 101设置成将侦听到的用户位置信息 201发送给业务处理 系统 102; According to the above core idea, the system of the present invention is as shown in FIG. 1. The system includes a signaling listening system 101, a service processing system 102, a content system 103, and a short message gateway 104, where: The signaling listening system 101 is configured to send the intercepted user location information 201 to the service processing system 102;
业务处理系统 102设置成设置区域策略; 还设置成根据系统事先设定的 第一过滤规则对用户位置信息 201对应的用户进行过滤保护, 过滤通过则根 据区域策略为用户匹配其所对应的自定义服务区域, 并通过系统事先设置的 密钥对用户位置信息 201 中的终端号码进行加密处理, 得到用户的伪码, 然 后将包含伪码的用户位置信息 202发送给内容系统 103 ; 还设置成接收内容 系统 103发来的广告短信, 解密广告短信中的伪码获取终端号码, 根据事先 设定的第二过滤规则对该广告信息对应的用户进行业务过滤后, 根据解密得 出的终端号码向短信网关 104发送包含广告信息 203的广告短信 204。  The service processing system 102 is configured to set a regional policy; and is further configured to filter and protect the user corresponding to the user location information 201 according to the first filtering rule set by the system in advance, and filter the user to match the corresponding customization according to the regional policy. a service area, and encrypting the terminal number in the user location information 201 by using a key set in advance by the system to obtain a pseudo code of the user, and then transmitting the user location information 202 including the pseudo code to the content system 103; The advertisement message sent by the content system 103 decrypts the pseudo code in the advertisement message to obtain the terminal number, and after filtering the service corresponding to the user corresponding to the advertisement information according to the second filter rule set in advance, the message is obtained according to the decrypted terminal number. The gateway 104 transmits an advertisement message 204 containing the advertisement information 203.
这里, 业务处理系统 102需要事先把信令侦听系统 101侦听到的主要区 域按照类别进行划分, 并把多个相关联的小区单元( CELL )合并成一个自定 义服务区域, 一个自定义服务区域包含多个实际基站 CELL数据。  Here, the service processing system 102 needs to divide the main area detected by the signaling listening system 101 into categories according to categories, and combines multiple associated cell units (CELLs) into one customized service area, one custom service. The area contains multiple actual base station CELL data.
另外, 第一过滤规则可以是用户的有效性, 具体过滤时判断该用户是否 是有效用户, 若是, 则对该用户的过滤通过; 否则, 过滤失败, 丟弃此用户。 过滤规则也可以是用户的侦听次数, 或者用户接收的信息量等, 可以根据需 要来进行设定。 第二过滤规则可以与第一过滤规则相同, 也可以与第二过滤 规则不同, 具体根据需要来进行设定, 在此不再赘述。  In addition, the first filtering rule may be the validity of the user, and the specific filtering determines whether the user is a valid user. If yes, the filtering of the user passes; otherwise, the filtering fails, and the user is discarded. The filtering rule can also be the number of times the user listens, or the amount of information received by the user, etc., which can be set as needed. The second filtering rule may be the same as the first filtering rule, or may be different from the second filtering rule, and is specifically set as needed, and details are not described herein again.
内容系统 103设置成根据为用户匹配的自定义服务区域为用户匹配与所 述自定义服务区域相应的广告, 根据用户位置信息 202的伪码将包含该广告 信息 203的广告短信 204发送给业务处理系统 102。  The content system 103 is configured to match the advertisement corresponding to the customized service area to the user according to the customized service area matched by the user, and send the advertisement short message 204 including the advertisement information 203 to the service processing according to the pseudo code of the user location information 202. System 102.
特定的自定义服务区域有特定的广告信息, 自定义服务区域与广告信息 之间的对应关系需要系统根据具体需要事先设定, 在此不再赘述。  The specific custom service area has specific advertisement information. The correspondence between the customized service area and the advertisement information needs to be set in advance according to specific needs, and will not be described here.
本发明的小区短信隐私保护方法如图 1所示,该方法主要包括以下步骤:The cell message privacy protection method of the present invention is shown in FIG. 1 , and the method mainly includes the following steps:
Sl、 设置区域策略, 业务处理系统 102把信令侦听系统 101侦听到的主 要区域按照类别进行划分, 并把几个相关联的小区单元(CELL )合并成一个 自定义服务区域, 一个自定义服务区域包含多个实际基站 CELL数据; 其中, 这个自定义服务区域是最后传输给内容提供方的位置信息数据, 在传输给内 容提供方之前, 需要通过业务平台预先规划好这些自定义位置服务区域。 Sl, set the regional policy, the service processing system 102 divides the main area detected by the signaling listening system 101 according to the category, and combines several associated cell units (CELL) into one customized service area, one from Defining the service area to include multiple actual base station CELL data; This custom service area is the location information data that is finally transmitted to the content provider. These custom location service areas need to be pre-planned through the service platform before being transmitted to the content provider.
步骤 S1之前,信令侦听系统 101需要对用户进行侦听, 然后将侦听到的 用户位置信息上 4艮给业务处理系统 102;  Before step S1, the signaling interception system 101 needs to listen to the user, and then upload the detected user location information to the service processing system 102;
S2、 信令侦听系统 101 将侦听到的用户位置信息上报给业务处理系统 S2. The signaling interception system reports the detected user location information to the service processing system.
102; 102;
53、 业务处理系统 102根据系统事先设定的过滤规则对上报的用户位置 信息对应的用户进行过滤保护, 过滤通过则根据区域策略为用户匹配与其对 应的自定义服务区域, 并通过系统事先设置的密钥对用户位置信息中的终端 号码进行加密, 得到用户的伪码, 将包含伪码的用户位置信息发送给内容系 统 103;  The service processing system 102 filters and protects the user corresponding to the reported user location information according to the filtering rule set by the system in advance, and filters the user to match the corresponding customized service area according to the regional policy, and is preset by the system. The key encrypts the terminal number in the user location information, obtains the pseudo code of the user, and sends the user location information including the pseudo code to the content system 103;
54、 内容系统 103根据为用户匹配的自定义服务区域为用户匹配与所述 自定义服务区域相应的广告, 根据用户位置信息的伪码将包含该广告信息的 广告短信发送给业务处理系统 102;  The content system 103, according to the custom service area matched by the user, matches the advertisement corresponding to the customized service area, and sends an advertisement message containing the advertisement information to the service processing system 102 according to the pseudo code of the user location information;
S5、 业务处理系统 102对接收内容系统 103发来的广告短信, 解密广告 短信中的伪码获取终端号码, 对该广告信息对应的用户进行业务过滤后, 根 据解密得出的终端号码向短信网关 104发送包含广告信息 203 的广告短信 204。  S5. The service processing system 102 receives the advertisement message sent by the content system 103, decrypts the pseudo code in the advertisement message to obtain the terminal number, performs service filtering on the user corresponding to the advertisement information, and then sends the terminal number based on the decryption to the short message gateway. 104 sends an advertisement message 204 containing the advertisement information 203.
如图 2所示,上述步骤 S3中业务处理系统 102过滤通过后进行的处理具 体包括以下步骤:  As shown in FIG. 2, the processing performed after the filtering by the service processing system 102 in the above step S3 includes the following steps:
5301、 收到信令侦听系统 101侦听到的用户位置信息。  5301. Receive user location information that is heard by the signaling interception system 101.
这里, 可以同时收到多个小区用户的位置信息。  Here, location information of a plurality of cell users can be received at the same time.
5302、 根据小区信息匹配所述自定义服务区域数据;  5302. Match the customized service area data according to the cell information.
5303、 根据系统事先配置密钥对终端号码进行加密, 获取伪码;  5303. Encrypt the terminal number according to the system configuration key to obtain a pseudo code.
S304、 按照约定消息接口发送消息给内容系统  S304. Send a message to the content system according to the agreed message interface.
如图 3所示,上述步骤 S4中业务处理系统 102对收到的广告短信后进行 的处理具体包括以下步骤: 5401、 业务处理系统 102收到内容系统 103在指定服务区域下的广告内 容信息; As shown in FIG. 3, the processing performed by the service processing system 102 after the received advertisement message in the above step S4 specifically includes the following steps: 5401. The service processing system 102 receives the advertisement content information of the content system 103 under the designated service area.
5402、 解密终端伪码获取实际有效终端号码;  5402. Decrypt the terminal pseudo code to obtain an actual effective terminal number.
5403、 按照标准短信接口发送消息给短信网关。  5403. Send a message to the SMS gateway according to the standard short message interface.
上述方法流程中, 各个步骤的执行顺序也可以根据具体情况而变化, 但 是自定义服务区工作必须在业务开展前通过一定界面操作手段进行配置。  In the above method flow, the execution order of each step may also be changed according to specific conditions, but the work of the customized service area must be configured through certain interface operation means before the service is started.
综上所述, 由于业务处理系统和内容系统分离, 实现了运营商设备与内 容提供商更明确的分工和配合,同时有效地保证了用户的位置信息的私密性, 所以为解决用户位置隐私问题提供了一条有效的途径。  In summary, because the business processing system and the content system are separated, a clear division of labor and cooperation between the operator equipment and the content provider is realized, and the privacy of the user's location information is effectively ensured, so that the user location privacy problem is solved. Provide an effective way.
应说明的是, 以上实施例仅用以说明本发明的技术方案而非用于限制本 发明, 尽管参照较佳实施例对本发明进行了详细说明, 本领域的普通技术人 员应当理解, 可以对本发明的技术方案进行修改或者等同替换, 而不脱离本 发明技术方案的精神和范围, 其均应涵盖在本发明的权利要求范围当中。  It should be noted that the above embodiments are only for explaining the technical solutions of the present invention and are not intended to limit the present invention. Although the present invention has been described in detail with reference to the preferred embodiments, those skilled in the art The technical solutions are modified or equivalent, without departing from the spirit and scope of the invention, and are intended to be included within the scope of the appended claims.
工业实用性 Industrial applicability
本发明从保护终端用户隐私的合法权益为基本出发点, 通过将内容系统 和业务系统分离, 差异化活动区域, 加密用户终端号码, 实现了运营商与内 容提供商的更明确的分工和配合, 同时有效的保证了用户的位置信息的私密 性, 为解决用户位置隐私问题提供一条有效的途径, 因此具有^ L强的工业实 用性。  The invention starts from protecting the legitimate rights and interests of the end user's privacy, and separates the content system from the service system, differentiates the active area, and encrypts the user terminal number, thereby realizing a clearer division and cooperation between the operator and the content provider. It effectively guarantees the privacy of the user's location information, and provides an effective way to solve the privacy problem of the user's location. Therefore, it has strong industrial applicability.

Claims

权 利 要 求 书 Claim
1、一种隐私保护方法, 该方法釆用业务处理系统和内容系统来对小区短 信进行隐私保护, 该方法包括如下步骤:  A privacy protection method, which uses a service processing system and a content system to perform privacy protection on a cell short message, the method comprising the following steps:
A、 业务处理系统设置区域策略, 所述区域策略中包括自定义服务区域; B、 信令侦听系统将侦听到的用户位置信息上 ^艮给所述业务处理系统; A. The service processing system sets a regional policy, where the regional policy includes a customized service area; B. the signaling listening system sends the detected user location information to the service processing system.
C、所述业务处理系统根据所述区域策略为用户匹配其所对应的自定义服 务区域,并通过系统事先设置的密钥对用户位置信息中的终端号码进行加密, 得到用户的伪码, 将包含所述伪码的用户位置信息发送给所述内容系统;C. The service processing system matches the user-defined custom service area according to the regional policy, and encrypts the terminal number in the user location information by using a key set in advance by the system, to obtain a pseudo code of the user, and User location information including the pseudo code is sent to the content system;
D、 所述内容系统根据为用户匹配的自定义服务区域为用户匹配与所述 自定义服务区域相应的广告, 根据所述伪码将包含所述广告信息的广告短信 发送给所述业务处理系统; D. The content system matches an advertisement corresponding to the customized service area to the user according to the customized service area matched by the user, and sends an advertisement message including the advertisement information to the service processing system according to the pseudo code. ;
E、所述业务处理系统接收所述广告短信,解密广告短信中的伪码获取终 端号码, 根据解密得出的终端号码将包含广告信息的短信发送出去。  E. The service processing system receives the advertisement short message, decrypts the pseudo code in the advertisement short message to obtain the terminal number, and sends the short message including the advertisement information according to the decrypted terminal number.
2、 根据权利要求 1所述的方法, 其中, 所述业务处理系统和内容系统是 彼此分离的。  2. The method of claim 1, wherein the business processing system and the content system are separate from each other.
3、 根据权利要求 1或 2所述的方法, 其中, 所述步骤 B之后, 该方法还 包括: 所述业务处理系统根据事先设定的第一过滤规则对所述用户位置信息 对应的用户进行过滤保护, 过滤通过则执行步骤 C; 否则丟弃所述用户。  The method according to claim 1 or 2, wherein, after the step B, the method further comprises: the service processing system performing a user corresponding to the user location information according to a first filtering rule set in advance Filter protection, filter through to perform step C; otherwise discard the user.
4、根据权利要求 3所述的方法, 其中, 步骤 E中获取终端号码的所述步 骤之后, 该方法进一步包括以下步骤:  The method according to claim 3, wherein after the step of obtaining the terminal number in step E, the method further comprises the following steps:
所述业务处理系统根据事先设定的第二过滤规则对所述广告短信对应的 用户进行业务过滤, 过滤通过则根据解密得出的终端号码将包含广告信息的 短信发送给短信网关; 否则结束流程。  The service processing system performs service filtering on the user corresponding to the advertisement short message according to the second filtering rule set in advance, and sends the short message including the advertisement information to the short message gateway according to the terminal number obtained by the decryption according to the decrypted terminal number; otherwise, the process ends. .
5、 根据权利要求 1所述的方法, 其中, 所述步骤 A包括如下步骤: A1、 所述业务处理系统将所述信令侦听系统侦听到的区域按照类别进行 划分;  The method according to claim 1, wherein the step A includes the following steps: A1: The service processing system divides an area detected by the signaling interception system according to a category;
A2、 所述业务处理系统将多个相关联的服务小区单元合并为至少一个自 定义服务区域, 其中, 所述自定义服务区域包含多个实际基站单元数据。A2. The service processing system combines multiple associated serving cell units into at least one self Defining a service area, wherein the custom service area includes a plurality of actual base station unit data.
6、 根据权利要求 1所述的方法, 其中, 所述自定义服务区域是传输给内 容提供方的位置信息数据。 6. The method of claim 1, wherein the custom service area is location information data transmitted to a content provider.
7、 一种隐私保护系统, 该系统适用于对小区短信进行隐私保护, 该系统 包括信令侦听系统、 业务处理系统及内容系统, 其中,  A privacy protection system, the system is suitable for privacy protection of a cell message, the system comprising a signaling listening system, a service processing system and a content system, wherein
所述信令侦听系统设置成将所述用户位置信息上报给所述业务处理系 统;  The signaling listening system is configured to report the user location information to the service processing system;
所述业务处理系统设置成设置区域策略, 其中, 所述区域策略中包括自 定义服务区域; 还设置成根据所述区域策略为用户匹配其所对应的自定义服 务区域,并通过系统事先设置的密钥对用户位置信息中的终端号码进行加密, 得到用户的伪码, 将包含所述伪码的用户位置信息发送给所述内容系统; 还 设置成接收所述广告短信, 解密广告短信中的伪码获取终端号码, 根据解密 得出的终端号码将所述广告短信发送出去;  The service processing system is configured to set a regional policy, where the regional policy includes a customized service area, and is further configured to match the customized service area corresponding to the user according to the regional policy, and set the system in advance through the system. The key encrypts the terminal number in the user location information, obtains the pseudo code of the user, and sends the user location information including the pseudo code to the content system; and is further configured to receive the advertisement short message, and decrypt the advertisement short message. The pseudo code acquires the terminal number, and sends the advertisement short message according to the decrypted terminal number;
所述内容系统设置成根据为用户匹配的自定义服务区域为用户匹配与所 述自定义服务区域相应的广告, 根据所述伪码将包含所述广告信息的广告短 信发送给所述业务处理系统。  The content system is configured to match an advertisement corresponding to the customized service area to a user according to a customized service area matched by the user, and send an advertisement message including the advertisement information to the service processing system according to the pseudo code. .
8、 根据权利要求 7所述的系统, 其中, 所述业务处理系统和所述内容系 统是彼此分离的。  8. The system of claim 7, wherein the business processing system and the content system are separate from each other.
9、 根据权利要求 7所述的系统, 其中, 所述系统还包括:  9. The system according to claim 7, wherein the system further comprises:
短信网关, 其设置成接收所述业务处理系统发来的广告短信, 并将其发 送出去。  The SMS gateway is configured to receive an advertisement message sent by the service processing system and send it out.
10、 根据权利要求 7-9 中任一项所述的系统, 其中, 所述业务处理系统 还设置成根据事先设定的第一过滤规则对所述用户位置信息对应的用户进行 过滤保护, 过滤通过为用户匹配自定义服务区域; 否则丟弃所述用户。  The system according to any one of claims 7-9, wherein the service processing system is further configured to filter and protect users corresponding to the user location information according to a preset first filtering rule, and filter By matching the custom service area for the user; otherwise discarding the user.
11、 根据权利要求 10所述的系统, 其中, 所述业务处理系统还设置成根 据事先设定的第二过滤规则对所述广告短信对应的用户进行业务过滤, 过滤 通过则根据解密得出的终端号码向短信网关发送包含广告信息的短信。  The system according to claim 10, wherein the service processing system is further configured to perform traffic filtering on a user corresponding to the advertisement short message according to a second filtering rule set in advance, and the filtering is obtained according to the decryption. The terminal number sends a short message containing the advertisement information to the short message gateway.
12、 根据权利要求 7-9 中任一项所述的系统, 其中, 所述内容系统为多 个, 多个所述内容系统均设置成接入所述业务处理系统。 12. The system according to any one of claims 7-9, wherein the content system is more Each of the plurality of content systems is configured to access the service processing system.
13、 根据权利要求 7-9 中任一项所述的系统, 其中, 所述内容系统还设 置成连接内容提供方, 所述内容提供方对所述内容系统进行管理。  The system according to any one of claims 7-9, wherein the content system is further configured to connect to a content provider, and the content provider manages the content system.
14、 根据权利要求 13所述的系统, 其中, 所述业务处理系统是连接运营 商设备。  14. The system of claim 13, wherein the service processing system is a connection operator device.
PCT/CN2009/073168 2008-09-09 2009-08-10 Method and system for protecting privacy WO2010028563A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN200810216101A CN101674524B (en) 2008-09-09 2008-09-09 Privacy protection method and system of subdistrict short messages
CN200810216101.7 2008-09-09

Publications (1)

Publication Number Publication Date
WO2010028563A1 true WO2010028563A1 (en) 2010-03-18

Family

ID=42004792

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2009/073168 WO2010028563A1 (en) 2008-09-09 2009-08-10 Method and system for protecting privacy

Country Status (2)

Country Link
CN (1) CN101674524B (en)
WO (1) WO2010028563A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102413107B (en) * 2010-09-25 2014-12-03 中国电信股份有限公司 System and method for improving user information open safety
CN103188665B (en) * 2011-12-31 2016-01-27 中国移动通信集团北京有限公司 Improve the system of the fail safe of the mobile phone receiving advertisement, method and device

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1220553A1 (en) * 2000-12-28 2002-07-03 Nokia Corporation Method for transmitting a location-based message, a message transmission system and a wireless communication device
CN1540997A (en) * 2003-04-25 2004-10-27 济南开拓科技有限公司 Method for issuing sort message in subzone and dedicated device
CN1655641A (en) * 2004-02-11 2005-08-17 华为技术有限公司 Method for handling position information request initiated by user facility
CN1753569A (en) * 2005-11-02 2006-03-29 中国移动通信集团公司 System and method for treating mobile communication data business based on false code
CN1851741A (en) * 2005-10-17 2006-10-25 华为技术有限公司 Advertising distribution method, advertising distribution device and advertising distribution system
CN101005639A (en) * 2006-12-15 2007-07-25 深圳市杰普林数码科技限公司 Method for automatic access local information by mobile phone
CN101184111A (en) * 2007-12-25 2008-05-21 腾讯科技(深圳)有限公司 Advertisement delivery method, system, server and mobile terminal

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1220553A1 (en) * 2000-12-28 2002-07-03 Nokia Corporation Method for transmitting a location-based message, a message transmission system and a wireless communication device
CN1540997A (en) * 2003-04-25 2004-10-27 济南开拓科技有限公司 Method for issuing sort message in subzone and dedicated device
CN1655641A (en) * 2004-02-11 2005-08-17 华为技术有限公司 Method for handling position information request initiated by user facility
CN1851741A (en) * 2005-10-17 2006-10-25 华为技术有限公司 Advertising distribution method, advertising distribution device and advertising distribution system
CN1753569A (en) * 2005-11-02 2006-03-29 中国移动通信集团公司 System and method for treating mobile communication data business based on false code
CN101005639A (en) * 2006-12-15 2007-07-25 深圳市杰普林数码科技限公司 Method for automatic access local information by mobile phone
CN101184111A (en) * 2007-12-25 2008-05-21 腾讯科技(深圳)有限公司 Advertisement delivery method, system, server and mobile terminal

Also Published As

Publication number Publication date
CN101674524B (en) 2012-09-05
CN101674524A (en) 2010-03-17

Similar Documents

Publication Publication Date Title
US7565142B2 (en) Method and apparatus for secure immediate wireless access in a telecommunications network
US7272716B2 (en) Enterprise secure messaging architecture
US8442231B2 (en) Method and system for improving robustness of secure messaging in a mobile communications network
JP5345717B2 (en) Method and apparatus for security in a data processing system
CN107645725A (en) Network collocating method and system, routing device and log equipment
JP4191039B2 (en) Method and system for transmitting information over a telecommunications network
CN102045210B (en) End-to-end session key consultation method and system for supporting lawful interception
KR20030019356A (en) Secure dynamic link allocation system for mobile data communication
IES20070421A2 (en) A method for restricting access to digital content
US20150149765A1 (en) Method of anonymization
CN106603504A (en) VoIP (Voice over Internet Protocol) encrypting and monitoring methods and VoIP encrypting and monitoring devices
KR20090008462A (en) Methods and systems for blackout provisioning in a distribution network
CN103986723B (en) A kind of secret communication control, secret communication method and device
CN111131416A (en) Business service providing method and device, storage medium and electronic device
CN104041089A (en) Management of public keys for verification of public warning messages
CN105407467A (en) Short message encryption methods, devices and system
JP2001500711A (en) Method for delivering a service key to a terminal device and apparatus for implementing the method
CN105075182A (en) Method for enabling lawful interception by providing security information.
CN103997405B (en) A kind of key generation method and device
US20080022110A1 (en) Message authentication system and message authentication method
WO2010028563A1 (en) Method and system for protecting privacy
US8949944B2 (en) Method and system for multi-access authentication in next generation network
Artail et al. A privacy-preserving framework for managing mobile ad requests and billing information
CN101378551A (en) WAP business system and method
CN111988777B (en) Method for processing one number double-terminal service, core network equipment and server

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 09812629

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 09812629

Country of ref document: EP

Kind code of ref document: A1