WO2011153850A1 - System, method and terminal for implementing real-name system management - Google Patents

System, method and terminal for implementing real-name system management Download PDF

Info

Publication number
WO2011153850A1
WO2011153850A1 PCT/CN2011/071498 CN2011071498W WO2011153850A1 WO 2011153850 A1 WO2011153850 A1 WO 2011153850A1 CN 2011071498 W CN2011071498 W CN 2011071498W WO 2011153850 A1 WO2011153850 A1 WO 2011153850A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
terminal
information
real
siac
Prior art date
Application number
PCT/CN2011/071498
Other languages
French (fr)
Chinese (zh)
Inventor
梁西广
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2011153850A1 publication Critical patent/WO2011153850A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/18Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data

Definitions

  • the present invention relates to the field of data network communications, and in particular, to a system and method for implementing real-name management, and a terminal.
  • BACKGROUND With the promotion of mobile communication services and the development of telecommunication technologies, the number of users of terminals (for example, mobile phones) is large, and various communication services provided by terminals can provide great communication and information sharing between terminal users. convenient. Although the powerful communication function of the terminal can provide users with convenience in life, some illegal and bad content will also be widely distributed between terminals, which will not only affect the user experience, but also increase the network burden.
  • the present invention provides a real-name system management implementation system and method, and a terminal, which can effectively manage and purify the terminal based on the real-name system. Web environment.
  • An implementation system for real-name management including:
  • An operation management platform OMD configured to acquire user characteristic information provided by the user, send the obtained user characteristic information to the authentication center, and receive an authentication result from the authentication center, where the authentication result is used to indicate the Whether the user feature information pre-stored in the authentication center is consistent with the user feature information sent by the OMD, and if they are consistent, the terminal identifier of the user is read, and the user feature information is tied to the terminal identifier.
  • the user information authentication center (SIAC) is configured to receive the user feature information and the terminal identifier that are bound, and save the bound user feature information and the terminal identifier as the real name information of the user, where The real name information is used to identify whether the terminal has performed real name registration.
  • the SIAC is further configured to log off, modify, and/or query the real name information according to the request.
  • the request comes from the terminal or the OMD.
  • the request is forwarded by the designated communication network element to the SIAC.
  • the SIAC is further configured to notify the designated communication network element whether the user has performed real-name registration.
  • the designated communication network element includes one of the following: a mobile switching center MSC, a visitor location register VLR, and a home location register HLR.
  • the system further includes: a short message monitoring center SMMC, configured to receive a short message sent by the terminal through the short message center, and perform legality verification on the short message, and allow the short message to pass the legality verification.
  • the short message center continues to send the short message.
  • the system further includes: a network management center NMC, configured to monitor an operating status of the OMD, the SIAC, and the SMMC.
  • NMC network management center
  • the user characteristic information includes: identity information of the user, or a user identity feature identifier, or a combination of the two; and/or, the terminal identifier includes one of the following: a terminal number.
  • a terminal comprising:
  • a storage module configured to store real-name information of the terminal
  • a requesting module configured to send an operation request to the SIAC that stores the real name information of the terminal, and configured to store the real name information from the SIAC in the storage module according to an instruction of the user, where the operation request is used for And requesting to query and/or modify the real-name information of the terminal that is stored by the SIAC;
  • the determining module is configured to determine whether the real-name information of the terminal is stored in the storage module, and if the determination is negative, The use of some or all of the services on the terminal is limited.
  • a method for realizing real-name management includes: The OMD obtains user characteristic information provided by the user, and sends the user characteristic information to the authentication center, and receives an authentication result from the authentication center, where the authentication result is used to indicate a user pre-saved in the authentication center. Whether the feature information is consistent with the user feature information sent by the OMD, and if they are consistent, the OMD reads the terminal identifier of the user, and binds the user feature information to the terminal identifier; The bound user feature information and the terminal identifier are saved as the real name information of the user, wherein the real name information is used to identify whether the terminal performs real name registration.
  • FIG. 1 is a schematic structural diagram of an implementation system for real-name management in an embodiment of the present invention
  • FIG. 2 is a schematic structural diagram of an implementation system and an operator network of a real name management system according to an embodiment of the present invention
  • FIG. 3 is a schematic diagram of a real name system management implementation system and an existing PLMN network element and a terminal according to an embodiment of the present invention
  • FIG. 4 is a schematic diagram of a process of OMD processing logic according to an embodiment of the present invention.
  • FIG. 5 is a schematic diagram of a process of SIAC processing logic according to an embodiment of the present invention.
  • FIG. 6 is a schematic diagram of a process of specifying communication network element processing logic in an operator network according to an embodiment of the present invention
  • FIG. 7 is a schematic diagram of a process of terminal processing logic according to an embodiment of the present invention
  • FIG. 8a is a schematic flowchart 1 of a method for implementing real-name management according to an embodiment of the present invention.
  • FIG. 8b is a schematic diagram of a signaling flow of a real-name system management implementation method according to an embodiment of the present invention
  • FIG. 9 is a schematic flowchart of a real-name system information registration process according to an embodiment of the present invention.
  • FIG. 10 is a schematic flowchart of a process for a terminal to initiate a real-name information query according to an embodiment of the present invention
  • FIG. 11 is a schematic flowchart of a process for initiating real-name information query by an OMD according to an embodiment of the present invention
  • FIG. 12 is a schematic diagram of a terminal-initiated real-name system according to an embodiment of the present invention.
  • FIG. 13 is a schematic diagram of a process flow for modifying or deregistering real-name information of an OMD according to an embodiment of the present invention
  • FIG. 14 is a schematic structural diagram of a terminal according to an embodiment of the present invention.
  • the present invention provides a method and system for real-name management, which can be based on whether user feature information is true and It is legal to determine whether to allow users to register real-name information, thereby preventing illegal users from registering, which can effectively prevent illegal users from using the terminal to illegally transmit information, and can accurately determine the detailed information of each terminal user, thereby helping to trace and transmit illegal information.
  • the terminal can effectively clean up the network environment and avoid unnecessary network overhead.
  • FIG. 1 is a schematic structural diagram of an implementation system for real-name management in an embodiment of the present invention. As shown in FIG. 1, the system includes:
  • the operation management platform (OMD) 11 can be distributedly distributed in multiple regions, and the acquired user characteristic information is sent to the certification center (for example, a trusted institution such as a public security network), and the authentication result from the certification center is received, wherein The authentication result is used to indicate whether the pre-stored user feature information in the authentication center is consistent with the user feature information sent by the OMD 11. If the authentication result indicates that the two are consistent, the user terminal identifier is read, and the user feature information and the terminal are The identity is bound and sent.
  • the certification center for example, a trusted institution such as a public security network
  • the OMD 11 can provide an interface for the user terminal to perform real-name registration, and send the user-characterized information provided by the user to the authentication center, so that the authentication center can judge the user characteristic information provided by the user, if the user characteristic information provided by the user is Real and legal, the user feature information is allowed to be bound to the terminal identifier of the user.
  • the User Information Authentication Center (SIAC) 12 can be distributedly distributed in multiple regions, and is configured to receive the bound user feature information and the terminal identifier, and save the bound user feature information and the terminal identifier as the user's real name information. And maintenance, wherein the real name information is used to identify whether the terminal has registered the real name system (that is, whether the user has registered the real name system). In this way, when the terminal initiates or the network provides related services to the terminal, it can determine whether the terminal registers the real-name information according to the terminal identifier and the real-name information stored in the SIAC 12, thereby determining whether the services continue to be performed, thereby reaching the terminal. The purpose of real-name management.
  • the system of this embodiment may further include a Short Message Monitoring Center (SMMC) and a Network Management Center (NCC).
  • SMMC Short Message Monitoring Center
  • NCC Network Management Center
  • the SMMC can be deployed in multiple areas in a distributed manner for legality-verification and filtering of short message content.
  • the real-name system management implementation system is mainly responsible for the real-name system registration work of the end user and the real-name system information management work.
  • the real-name system management implementation system needs to complete the collection of user feature information and the characteristics of the mobile phone user.
  • the information is compared with the user characteristic information stored in the authentication center, and when the judgment result is that the user characteristic information is legal, the corresponding real name information needs to be generated, and
  • the name information and user feature information are stored and maintained, so that the terminal can be managed by the real name system, and the legitimate user is allowed to modify and query the real name information and the user feature information.
  • the user feature information will be input into the OMD by the operator through the input interface provided by the OMD. After that, the OMD will store the real name information in the SIAC.
  • OMD can provide a variety of input interfaces. For example, OMD can identify the user's valid ID, read the information of the terminal smart card (for example, SIM card, UIM card, etc.) (for example, the user's mobile phone number), and, in order to increase the real sexuality can also collect physiological information such as fingerprint information and/or iris information of users.
  • the SMMC (which can be implemented by a computer system) can monitor and verify the content of the short message in real time, and verify the validity of the sent short message content and filter the illegal content when the terminal initiates short message communication. Specifically, when performing verification, illegal characters in the short message can be deleted, and the remaining characters are allowed to be transmitted. If too many characters are deleted, the short message may be prohibited from being sent, that is, the short message fails to pass the verification; if the violation is more serious, the public security department may be directly notified to obtain corresponding security measures.
  • the NMC can be used to manage and maintain OMD, SIAC, and SMMC. Specifically, the NMC can update the programs, judgment rules, and user data in the SIAC and the SMMC according to actual needs; and can summarize the work of each SMMC and SIAC, and report to the certification center according to the predetermined reporting requirements.
  • the implementation system of real name management includes: OMD, SIAC, NMC, SMMC; the carrier network may include: Base Station (BS), Base Station Controller (BSC), Equipment Identification Register (EIR), Data Service Management Platform (DSMP), Gateway Name Server (GNS), Service Service Provider (SP), Mobile Switching Center (MSC), Visitor Location Register (VLR), Home Location Register (HLR), Short Message Center (Short Message Center, SC).
  • BS Base Station
  • BSC Base Station Controller
  • EIR Equipment Identification Register
  • DSMP Data Service Management Platform
  • GSS Gateway Name Server
  • SP Service Service Provider
  • MSC Mobile Switching Center
  • VLR Visitor Location Register
  • HLR Home Location Register
  • Short Message Center Short Message Center
  • each SIAC in a distributed deployment can connect to thousands of OMDs to receive and process operational requests from these OMDs.
  • a SIAC can be connected to one or more HLRs and provide services related to the user's real name system for these HLRs.
  • the user real name system status unit exists in the HLR and VLR of the existing public land mobile communication network (PLMN) to indicate whether a user has a real name system and as a basis for providing the user with a specified service such as a short message.
  • PLMN public land mobile communication network
  • the number of carrier networks supported by the real-name management implementation system can be multiple (in operational considerations, all carrier networks can be connected to the real-name management implementation system to accept real names).
  • Real-name management and service of the implementation system of the management system for example, the operator network A, the operator network B, and the carrier network C shown in FIG. 2, wherein the implementation of the real-name system management in the embodiment of the present invention
  • a communication interface can be set between the SIAC and the HLR, and a communication interface is set between the SMMC and the SC.
  • the HLR can query the SIAC for the real name information of the user, and the SIAC can register the user with the real name system.
  • the notification is sent to the HLR, and when the real name information of the user changes, the SIAC can actively notify the HLR of the changed information. For example, the user cancels the real name information, and the SIAC can notify the HLR that the user does not perform the real name registration to the user's service.
  • the privilege is controlled; and, for the short message flow of the terminal, the SC needs to be able to interact with the SMMC, so that the short message is verified by the SMMC.
  • the user sends a request (for example, a real name information modification request, a real name information cancellation request, and a real name information inquiry request) to the SIAC through the terminal or the OMD, and the SIAC can perform real name system on the user according to the request.
  • a request for example, a real name information modification request, a real name information cancellation request, and a real name information inquiry request
  • the SIAC can perform real name system on the user according to the request.
  • Information is logged out, modified, and/or queried.
  • the request needs to be forwarded to the SIAC by the designated communication network element in the carrier network (for example, the MSC of the terminal and the HLR of the terminal).
  • the service MSC of the terminal may receive the request of the terminal, and send the request to the HLR of the terminal, and then the HLR sends the request to the SIAC, and returns the operation result to the terminal at the SIAC.
  • the HLR sends the request to the SIAC, and returns the operation result to the terminal at the SIAC.
  • the service MSC of the terminal may receive the request of the terminal, and send the request to the HLR of the terminal, and then the HLR sends the request to the SIAC, and returns the operation result to the terminal at the SIAC.
  • the above reverse process can be used.
  • other transmission processes may be used for request transmission and message return, and the network elements involved in the transmission may also be changed as needed, and the text is no longer listed.
  • network elements such as OMD, SIAC, and SMMC (not shown) and NMC (not shown) in the implementation system of real-name management according to this embodiment.
  • the user name information of the user is stored in the SIAC.
  • the OMD can read the user identity information such as the user ID, the user identity, and the SIM card and forward it to the authentication center for verification.
  • the PLMN needs to have the network element capable of communicating with the SIAC. These network elements may be HLRs, VLRs, etc.
  • the PLMN network element and the implementation system of the real name management system can also perform corresponding logical update on the PLMN network element, thereby realizing the transmission of the real name information; and, preferably, the terminal can also retain the real name information of the terminal, so as to When the user operates the terminal to communicate, the terminal can be based on the real name information in the terminal. To save, to limit the user's actions.
  • the implementation system of the name management system can cooperate with each other to complete the management operations such as input, modification, query, and logout of the user's real name information.
  • the method of restricting the service may be used. For example, limiting the time of the terminal in a certain period of time, limiting the number of short messages sent by the terminal in a certain period of time, or directly prohibiting the terminal. Call and short message transmission.
  • FIG. 4 is a schematic diagram of the process of the OMD processing logic in the embodiment of the present invention. As shown in FIG. 4, the OMD can perform the entry, modification, and deregistration of the real name information. The following three operations are separately described.
  • Read the user's valid ID for example, the user's ID
  • determine whether it is necessary to read the user-identified user identification features such as the user's fingerprint, the user's facial features.
  • the user identity feature needs to be read, the user identity feature provided by the user is read, and the user identity feature provided by the user is sent to the authentication center, waiting for the verification result, if the verification result is the provided user identity feature and If the user identity identifiers pre-stored by the authentication center are inconsistent, the verification fails. Otherwise, if the verification result is consistent (that is, the user identity feature provided by the user is consistent with the user identity feature of the user saved in the authentication center), then Read the terminal identifier of the user (for example, the SIM card number), and determine whether the information of the terminal needs to be read.
  • the verification result that is, the user identity feature provided by the user is consistent with the user identity feature of the user saved in the authentication center
  • the valid ID information of the user is bound to the mobile terminal identifier and the mobile device information, and is sent to the SIAC.
  • the operation result of the SIAC is received, and the operation result returned by the SIAC is received, where the operation result includes: a return code, Result (operation succeeded or fucked The failure and the reason description (for example, the reason for the operation failure); if the result is successful, the entry or modification operation is successful, and if the result is an operation failure, the entry or modification result fails;
  • the terminal identifier of the user (for example, a SIM card number) is read, and it is determined whether the information of the terminal needs to be read, and if necessary, the information of the terminal is read, if not required to be read.
  • the information of the terminal is bound to the terminal identifier of the user and sent to the SIAC, and waits for the operation result of the SIAC to receive the operation result returned by the SIAC.
  • the operation result includes: a return code, a result (operation success or operation failure) And the reason description (for example, the reason for the operation failure); if the result is successful, the entry or modification operation is successful, and if the result is an operation failure, the entry or modification result fails.
  • Logout of real-name information After receiving the real-name information deregistration request from the operator, the OMD reads the real-name information that needs to be logged off, and sends the real-name system logout request to the SIAC to wait for the SIAC operation result; receives the operation result returned by the SIAC, where, The results include: return code, result (operation success or operation failure), and reason description (for example, the reason for the operation failure); if the result is successful, the logout operation succeeds, if the If the operation fails, the logout result fails.
  • the operator's cancellation qualification can be further verified, that is, whether the operator has the right to cancel the real-name information, and after the verification is passed, the real-name information that needs to be logged off is read.
  • SIAC stores real-name information of a user, and can query, modify, and log out the saved real-name information.
  • the SIAC obtains a service request from a message source, for example, a real name information deregistration request, a real name information inquiry request, a real name information status inquiry request, a service authentication request, and a real name information creation/modification or other operation request;
  • the request performs the corresponding operation, that is, creating the real name information, modifying the real name information, unregistering the real name information, querying the real name information, querying the status of the real name information, and the business permission judgment; then, the SIAC returns the operation result to the message source.
  • the message source may be a terminal or an OMD, that is, the user may input the request through the terminal or the OMD, and the terminal or the OMD forwards the request to the SIAC, optionally, for information security and guaranteeing the real name information.
  • the OMD can be used as the sole source of the real-name information creation request. That is, the user must be able to create real-name information through the OMD, but not through the terminal.
  • the terminal needs to forward the request to the SIAC via the designated communication network element (for example, the MSC and the HLR) in the carrier network, and at the same time, the communication The network element is also responsible for forwarding the operation results from the SIAC to the corresponding message source.
  • the processing logic of the designated communication network element in the process will be described below by taking FIG. 6 as an example; and the processing logic of the terminal in the process will be described by taking FIG. 7 as an example.
  • FIG. 6 is a schematic diagram of a process of processing logic of a designated communication network element (MSC or VLR or HLR) in an operator network according to an embodiment of the present invention. As shown in FIG. 6, in a specific implementation process, first, a communication network element is specified.
  • a service request from a message source for example, a terminal
  • a message source for example, a terminal
  • a real name information modification request for example, a real name information modification request, a real name information deregistration request (not shown), a real name information inquiry request, a real name information status inquiry request, a service authentication request
  • Waiting timer wherein, for the real name information modification request, setting a modification waiting timer; setting a query waiting timer for the real name information query request; setting a status waiting timer for the real name information status query request; for the service authentication request, Set the authentication wait timer; forward the service request to the SIAC, wait for the result of the operation; if the result is received or the corresponding timer expires, return the operation result from the SIAC to the message source (terminal), for the request from the OMD, SIAC Can be received directly and straight
  • the result is sent to the OMD, or no need for forwarding the request result through other communication network elements.
  • FIG. 7 is a schematic diagram of a process of terminal processing logic according to an embodiment of the present invention.
  • a user inputs a service request in a terminal, for example, a real name information query request, a real name information modification request, and a mobile service request.
  • a service request for example, a real name information query request, a real name information modification request, and a mobile service request.
  • the processing of these three requests will be described separately below.
  • Real-name information query request The terminal receives the real-name information query request input by the user, sets the query waiting timer, sends the real-name information query request to the designated communication network element, and waits for the query result; if the query wait timer expires, the specified communication If the operation result is successful, the specified communication network element sends the real name information of the user to the terminal, and the terminal fails to return the operation result. The real name information will be saved, and the real name information will be displayed to the user. If the operation fails, the designated communication network element will send the reason for the operation failure to the terminal, and the terminal displays the reason for the user's operation failure.
  • Mobile service request The terminal receives the mobile service request input by the user, determines whether the mobile service is restricted by the real name system status, and if the mobile service is not restricted by the real name system status, the mobile service is normally processed; if the mobile service is subject to the real name system If the status is restricted, it is necessary to determine whether the user has already performed real-name registration. If the real-name registration is not performed, the service processing fails. If the user performs real-name registration, the service is normally processed.
  • Real-name information modification request The terminal receives the real-name information modification request input by the user, sets the modification waiting timer, sends the real-name information modification request to the designated communication network element, and waits for the modification result; if the query modifies the waiting timer, the timer is found. If the modification succeeds, the specified communication network element will be the user. If the modification succeeds, the specified communication network element will not return the operation result. If the operation fails, and the operation result returned by the specified communication network element is received before the modification wait timeout expires, if the modification is successful, the designated communication network element will be the user.
  • the modified real name information is sent to the terminal, and the terminal saves and displays the modified real name information to the user. If the modification fails, the designated communication network element sends the reason for the modification failure to the terminal, and the terminal displays the reason for the modification failure. To the user.
  • the location update protocol of the user interface of the designated communication network element in the PLMN and the MAP protocol (the part related to the location update) of the network side may be updated correspondingly to enable the transmission of the PLMN network element.
  • the message unit can carry information related to the user's real name information.
  • the protocol for real-name management of the user can also be implemented separately in the PLMN, so as to carry the query of the real-name information of the user, Request messages such as modification, logout operations, etc., which can be used as a subset of the MAP protocol.
  • an implementation method of real name management is also provided.
  • the implementation method of real name management according to an embodiment of the present invention includes:
  • Step 801a The OMD in the real-name system implementation system acquires user feature information provided by the user, and sends the user feature information and the terminal identifier to the authentication center (for example, a trusted institution such as a public security network), and receives the recognition.
  • the authentication result of the certificate center wherein the authentication result is used to indicate whether the pre-stored user feature information in the authentication center is consistent with the user feature information sent by the OMD. If they are consistent, the OMD reads the user's terminal identifier, and the user feature information is The terminal identifier is bound, where the terminal identifier includes one of the following: a terminal number (for example, a mobile phone number of the user).
  • Step 803a The SIAC in the real-name system implementation system saves the bound user feature information and the terminal identifier as the user's real-name system information, wherein the real-name system information is used to identify whether the terminal performs real-name registration or provides the real-name information according to a predetermined rule. For example, if the communication content (voice, text, picture, image, video, etc.) is found to be in violation, the sender and receiver of the communication can be determined using the real name information.
  • the communication content voice, text, picture, image, video, etc.
  • the user characteristic information comprises: the user's identity information, or the user identity feature, or a combination of the two.
  • FIG. 8b is a schematic diagram of a signaling flow of an implementation method of real-name management according to an embodiment of the present invention. As shown in FIG. 8b, the following steps are included:
  • Step 801b the implementation system of real-name management acquires user characteristic information provided by the user, and sends the user characteristic information to the public security network, and the public security network compares the user characteristic information of the real-time system realization realization system with the user characteristic information saved in the public security network. If the user feature information is consistent, the real-name management implementation system reads the user's terminal identifier, and binds the user feature information to the terminal identifier.
  • Step 803b The implementation system of the real name management saves the bound user characteristic information and the terminal identifier as the real name information of the user, wherein the real name information is used to identify whether the terminal performs the real name registration.
  • the user feature information includes: a user identity information, or a user identity feature identifier, or a combination of the two.
  • the terminal identifier includes one of the following: a terminal number.
  • FIG. 9 is a schematic diagram of the processing flow of the real name information registration according to the embodiment of the present invention, such as As shown in Figure 9, the following steps are included:
  • Step 901 The OMD reads the user identity feature identifier (for example, the user's fingerprint, the user's facial feature, and the like) provided by the user, and determines the real information of the user itself based on the user identity identifier of the user.
  • the user identity feature identifier for example, the user's fingerprint, the user's facial feature, and the like
  • Step 902 the OMD reads the identity information provided by the user (for example, the identity information on the user's valid ID information can be read).
  • Step 903 The OMD sends the user identity feature identifier and identity information provided by the user to the public security network through the interface between the OMD and the public security network, so that the public security network can verify the authenticity of the user and the user identity.
  • Step 904 The public security network compares the user identity feature identifier provided by the user with the user identity feature identifier of the user saved by the public security network, and compares the identity information provided by the user with the user identity information saved by the public security network, if both If they are all consistent, the verification passes, and the process proceeds to step 905. If one of the two is inconsistent, the verification fails, and the process ends.
  • Step 905 The OMD reads the terminal identifier of the user, for example, a SIM card number.
  • Step 906 The OMD binds the user feature information and the SIM card number, and sends the bound user feature information and the SIM card number to the SIAC through the interface between the OMD and the SIAC to implement real-name information input.
  • the user feature information may be the identity information of the user, or the identity of the user identity, or a combination of the two.
  • Step 907 The SIAC receives the bound user feature information and the SIM card number, creates a real name information record, and saves the user feature information and the SIM card number as the user's real name information.
  • step 908 the SIAC returns the operation result to the OMD.
  • the operation result shows that the real name information is successfully entered.
  • Step 909 the OMD displays the above operation result to the user.
  • the user can perform the query of the real name information on the OMD, or perform the query of the real name information on the terminal, which will be described below in conjunction with FIG. 10 and FIG.
  • FIG. 10 is a schematic flowchart of a process for a terminal to initiate real-name information query according to an embodiment of the present invention. As shown in FIG. 10, the method includes the following steps:
  • Step 1001 The user selects and starts a function for querying real-name information in the terminal, and the terminal responds to the user selection to generate a real-name information query request;
  • Step 1002 The terminal sends a real-name information query request to the designated communication network element in the carrier network, where the query request carries the terminal identifier, for example, a SIM card number.
  • Step 1003 The designated communication network element forwards the real-name information query request to the SIAC.
  • Step 1004 The SIAC searches for the real-name information of the user according to the SIM card number in the real-name information query request, and obtains the query result.
  • Step 1005 The SIAC sends the query result to the designated communication network element. If the query is successful, the query result is the corresponding real name information; if the query fails, the query fails to be returned, and the reason for the query failure is returned, wherein the query fails.
  • the reason may be that the user does not have the query permission, or the real name information does not exist, etc.;
  • Step 1006 The designated communication network element forwards the query result to the terminal.
  • Step 1007 The terminal receives the query result, and if the query is successful, saves the real name information
  • step 1008 the terminal outputs the query result, and displays the result to the user.
  • the modification of the user's real name information can also be initiated by the user through the terminal that has registered the real name information.
  • the user should be considered to be authentic, and the user has the right to modify the real-name information corresponding to his terminal identifier.
  • the modification operation may be supported by an application in the terminal, and the application should be able to guide the user to input the required information, generate a real name information modification operation request, and transmit the modification operation request to the designated communication network element in the network, and finally reach the SIAC.
  • the modified application After the modified application receives the result of the operation, it should display the result of the operation.
  • the terminal may start the modification waiting timer.
  • the operation of the request is considered to have failed.
  • the process of logout is similar to the above process, except that the content of the request message and the processing method on the network side are different.
  • the query, modification, and logout of the real-name information may be initiated by the user through the terminal, and the method of querying may also be sending a short message to a specific service number or dialing a phone number of a specific service.
  • the terminal initiates the real-name information status query
  • a process similar to that of FIG. 10 can also be used. The difference is that the request sent by the terminal is a real-name information status query request, and the query result obtained by the SIAC indicates whether the user has performed. Status information of real-name registration.
  • FIG. 11 is a schematic flowchart of a process for an OMD to initiate a real-name information query according to an embodiment of the present invention. As shown in FIG. 11, the method includes the following steps:
  • Step 1101 The OMD enters the real-name query information provided by the user, where the query information is a terminal identifier, for example, a SIM card number;
  • Step 1102 The OMD generates a real-name information query request, and sends a real-name information query request to the SIAC.
  • Step 1103 The SIAC queries the real-name information of the user according to the SIM card number in the real-name information query, and obtains the query result.
  • Step 1104 The SIAC sends the query result to the OMD. If the query is successful, the query result is set to the corresponding real name information; if the query fails, the query fails to be returned, and the reason for the query failure is returned, wherein the reason for the query failure may be There is no query permission for the user, or the real name information does not exist, etc.;
  • step 1105 the OMD outputs the query result and displays the result to the user.
  • the OMD initiates the real-name information status query
  • a process similar to that of FIG. 11 can also be used. The difference is that the request sent by the OMD is a real-name information status query request, and the result obtained by the SIAC is whether the user has performed. Status information of real-name registration.
  • FIG. 12 is a schematic flowchart of a process for modifying or deregistering real-name information by a terminal according to an embodiment of the present invention. As shown in FIG. 12, the method includes the following steps:
  • Step 1201 The user selects and starts a function of modifying or deregistering the real name information in the terminal, and the terminal responds to the user's selection to generate a real name information modification or cancellation request;
  • Step 1202 The terminal sends a real-name information modification or cancellation request to the designated communication network element in the operation network, where the modification or cancellation request carries the terminal identifier (for the modification operation, the request should also include new real-name information), for example, SIM Card number
  • Step 1203 the designated communication network element forwards the real name system information modification or cancellation request to the SIAC;
  • step 1204 the SIAC modifies or deregisters the terminal identifier in the request according to the real name information (for the modification operation, there is also a new real name information), and modifies or deregisters the real name information of the user, and obtains the modified result or the logout result;
  • Step 1205 the SIAC will modify The result or the logout result is sent to the specified communication network element. If the modification or logout is successful, the modified real name information is returned or the logout is successful. If the modification or logout fails, the modification or logout failure is returned, and the reason for the modification or logout failure is also returned.
  • the reason for the modification or cancellation failure may be that the user has no modification or logout permission, or the real name information does not exist, or the operation wait result is not received when the wait timer/logout wait timer expires;
  • Step 1206 The designated communication network element forwards the modification result or the logout result to the terminal.
  • Step 1207 The terminal receives the modification result or the logout result. If the modification succeeds, the modified real name system information is saved, and if the logout is successful, the real name system information saved by the terminal is deleted;
  • Step 1208 The terminal outputs the modification result or the logout result, and displays the result to the user.
  • FIG. 13 is a schematic flowchart of a process for modifying or deregistering real-name information by an OMD according to an embodiment of the present invention. As shown in FIG. 13, the method includes the following steps:
  • Step 1301 the OMD enters the real name modification or cancellation information provided by the user, and the modification or cancellation information is a terminal identifier (for the modification operation, the new real name information is also included), for example, a SIM card number (such as a user's mobile phone number);
  • Step 1302 the OMD generates a real name system information modification or cancellation request, and sends the real name system information modification or cancellation request to the SIAC;
  • Step 1303 The SIAC modifies or deregisters the terminal identifier in the request according to the real name information (including the new real name information for the modification operation), and modifies or cancels the real name information of the user, and obtains the modified result or the logout result; Step 1304, the SIAC will modify The result or the logout result is sent to the OMD. If the modification or logout is successful, the modified real name information is returned or the logout is successful; if the modification or logout fails, the modification or logout failure is returned. At the same time, the reason for the modification or cancellation failure is returned. The reason for the modification or cancellation failure may be that the user has no modification or cancellation permission, or the real name information does not exist;
  • step 1305 the OMD outputs a modification or logout result, and displays the result to the user.
  • the process is generally initiated by the HLR or VLR and triggered by the user's location update process.
  • the VLR will query the HLR of the terminal user for the real name information of the user.
  • the HLR then establishes and sends a real name information status query request to the SIAC.
  • the user real name status is returned to the VLR. If the timeout does not receive the result of the operation, or if the result of the failed operation is received, the processing is considered to have failed.
  • FIG. 14 is a schematic structural diagram of a terminal in the embodiment of the present invention.
  • the terminal includes: a storage module 141, configured to store real-name information of the terminal;
  • the requesting module 142 is connected to the storage module 141, configured to send an operation request to the SIAC storing the real name information of the terminal, and configured to store the real name information from the SIAC in the storage module 141 according to the user's instruction, where the operation request is used for Requesting to query and/or modify the real name information of the terminal stored by the SIAC;
  • the determining module 143 is connected to the storage module 141, and is configured to determine whether the real name information of the terminal is stored in the storage module, and the terminal is determined to be no. There are restrictions on the use of some or all of the business.
  • the limitation on the service may include: limiting the time of the terminal call in a certain period of time, limiting the number of short messages sent by the terminal in a certain period of time, and directly prohibiting the call and short message transmission of the terminal.
  • the implementation system of the real-name system management can be further improved, the management strength can be further improved, the effective implementation of the real-name system can be ensured, and the user can manage the real-name information on the terminal side, which is convenient for the user's application.
  • the above technical solution of the present invention can effectively prevent users whose user feature information is illegal from registering by real name system, and can accurately determine the detailed information of the user of each terminal, thereby facilitating high-level management and monitoring of the terminal, and facilitating tracing.
  • the terminal transmits illegal and bad content, which helps to purify the network environment; and provides a reliable basis for electronic payment and other applications that need to be strictly based on the terminal for authentication.

Landscapes

  • Engineering & Computer Science (AREA)
  • Databases & Information Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses a system, method and terminal for implementing real-name system management. The system includes: an Operation Management Desktop (OMD), for obtaining user characteristic information provided by a user, transmitting the obtained user characteristic information to an authentication center, and receiving an authentication result from the authentication center, wherein the authentication result is used to indicate if the user characteristic information reserved in the authentication center is the same as the user characteristic information transmitted from the OMD, and if they are same, OMD reads out a terminal identification of the user, binds it with the user characteristic information and transmits them; a Subscriber Information Authentication Center (SIAC), for receiving the bound user characteristic information and terminal identification, and saving the bound user characteristic information and terminal identification as the real-name system information of the user, wherein the real-name system information is used to identify whether the terminal has registered in real-name system. The invention can determine the user detail information of each terminal accurately and facilitate a high degree of management and monitor for the terminals.

Description

实名制管理的实现系统和方法、 以及终端 技术领域 本发明涉及数据网络通信领域, 尤其涉及一种实名制管理的实现系统和方法、 以及 终端。 背景技术 随着移动通信服务的推广和电信技术的发展, 终端(例如, 手机)的用户数量很大, 终端所提供的各种通信服务能够为终端用户之间进行沟通以及信息共享提供很大的便 利。 虽然终端的强大通信功能可以为用户提供生活上的便利, 但是, 一些非法的、 不良 的内容同样会在终端之间大量传播, 不仅会影响用户体验, 还会造成网络负担的增加。  TECHNICAL FIELD The present invention relates to the field of data network communications, and in particular, to a system and method for implementing real-name management, and a terminal. BACKGROUND With the promotion of mobile communication services and the development of telecommunication technologies, the number of users of terminals (for example, mobile phones) is large, and various communication services provided by terminals can provide great communication and information sharing between terminal users. convenient. Although the powerful communication function of the terminal can provide users with convenience in life, some illegal and bad content will also be widely distributed between terminals, which will not only affect the user experience, but also increase the network burden.
为了避免各种不良信息的传播, 就需要查找到信息的源头。 但是, 由于目前的终端 应用并不^ &于实名制的, 因此, 只要终端进行了入网登记, 就能够随意进行短消息和 呼叫等业务。 为了遏制不良、 非法信息的传播, 目前常用的措施是确定终端的号码并且 定位终端, 以及过滤通信的内容。  In order to avoid the spread of various bad information, you need to find the source of the information. However, since the current terminal application is not in the real name system, as long as the terminal performs the network registration, it is possible to perform services such as short messages and calls at will. In order to curb the spread of bad and illegal information, the currently commonly used measures are to determine the number of the terminal and locate the terminal, and to filter the content of the communication.
但是上述措施并不足以有效消除信息传播的源头。 通过目前的技术, 仅仅能够对短 消息传输的信息进行过滤, 对于呼叫内容是无法进行管理和控制的, 并且, 在对短消息 内容进行过滤时, 往往是将需要过滤的关键字与短消息内容进行匹配, 但是, 发送短消 息的用户很容易就能够对短消息的内容进行修改以避开过滤条件, 从而使过滤条件失 效。此外,基于目前的技术和网络架构, 虽然能够找出传播非法、 不良信息的终端号码, 但是却无法获知操作终端的用户信息, 因此, 不能够查找到非法、不良信息的真正源头。  But the above measures are not enough to effectively eliminate the source of information dissemination. With the current technology, only the information transmitted by the short message can be filtered, and the content of the call cannot be managed and controlled, and when the content of the short message is filtered, the keyword and the short message content to be filtered are often used. The matching is performed, but the user who sends the short message can easily modify the content of the short message to avoid the filtering condition, thereby invalidating the filtering condition. In addition, based on the current technology and network architecture, although the terminal number that transmits illegal and bad information can be found, but the user information of the operation terminal cannot be known, the true source of illegal and bad information cannot be found.
除了上述问题之外, 由于目前的终端未进行实名制登记, 还会导致多种不便于终端 管理的问题, 但是, 针对这些问题, 目前尚未提出有效的解决方案。 发明内容 有鉴于此,针对相关技术中不能对终端进行实名制管理而导致不易对终端进行有效 管理问题, 本发明提出实名制管理的实现系统和方法、 以及终端, 能够基于实名制对终 端进行有效管理, 净化网络环境。  In addition to the above problems, since the current terminal does not perform real-name registration, it also causes a variety of problems that are inconvenient for terminal management. However, effective solutions have not been proposed for these problems. SUMMARY OF THE INVENTION In view of the above, in the related art, the real-name system management of the terminal cannot be performed, and the terminal is not easily managed effectively. The present invention provides a real-name system management implementation system and method, and a terminal, which can effectively manage and purify the terminal based on the real-name system. Web environment.
为解决上述技术问题, 本发明的技术方案是这样实现的: 一种实名制管理的实现系统, 包括: In order to solve the above technical problem, the technical solution of the present invention is implemented as follows: An implementation system for real-name management, including:
操作管理平台 OMD, 用于获取用户提供的用户特征信息, 将获取的所述用户特征 信息发送至认证中心, 并接收来自所述认证中心的认证结果, 其中, 所述认证结果用于 表示所述认证中心中预先保存的用户特征信息与所述 OMD发送的所述用户特征信息是 否一致, 如果一致, 则读取所述用户的终端标识, 并将所述用户特征信息与所述终端标 识相绑定并发送;  An operation management platform OMD, configured to acquire user characteristic information provided by the user, send the obtained user characteristic information to the authentication center, and receive an authentication result from the authentication center, where the authentication result is used to indicate the Whether the user feature information pre-stored in the authentication center is consistent with the user feature information sent by the OMD, and if they are consistent, the terminal identifier of the user is read, and the user feature information is tied to the terminal identifier. Set and send;
用户信息鉴别中心 SIAC, 用于接收相绑定的所述用户特征信息与所述终端标识, 并将绑定的所述用户特征信息与所述终端标识作为所述用户的实名制信息保存, 其中, 所述实名制信息用于鉴别所述终端是否进行了实名制登记。  The user information authentication center (SIAC) is configured to receive the user feature information and the terminal identifier that are bound, and save the bound user feature information and the terminal identifier as the real name information of the user, where The real name information is used to identify whether the terminal has performed real name registration.
所述 SIAC还用于根据请求, 对所述实名制信息进行注销、 修改、 和 /或查询。 所述请求来自于终端或所述 OMD。  The SIAC is further configured to log off, modify, and/or query the real name information according to the request. The request comes from the terminal or the OMD.
如果所述请求来自于终端, 则由指定通信网元将所述请求转发给所述 SIAC。 所述 SIAC还用于将用户是否已经进行实名制登记通知给所述指定通信网元。  If the request is from a terminal, the request is forwarded by the designated communication network element to the SIAC. The SIAC is further configured to notify the designated communication network element whether the user has performed real-name registration.
所述指定通信网元包括以下之一: 移动交换中心 MSC、 拜访位置寄存器 VLR、 归 属位置寄存器 HLR。  The designated communication network element includes one of the following: a mobile switching center MSC, a visitor location register VLR, and a home location register HLR.
所述系统还包括:短消息监控中心 SMMC,用于接收终端经短消息中心发送的短消 息, 并对所述短消息进行合法性验证, 在所述短消息通过合法性验证的情况下, 允许所 述短消息中心继续发送所述短消息。  The system further includes: a short message monitoring center SMMC, configured to receive a short message sent by the terminal through the short message center, and perform legality verification on the short message, and allow the short message to pass the legality verification. The short message center continues to send the short message.
所述系统还包括: 网络管理中心 NMC, 用于监控所述 OMD、 所述 SIAC、 以及所 述 SMMC的运行状态。  The system further includes: a network management center NMC, configured to monitor an operating status of the OMD, the SIAC, and the SMMC.
所述用户特征信息包括: 用户的身份信息、 或者用户身份特征标识、 或者以上二者 的组合; 和 /或, 所述终端标识包括以下之一: 终端号码。  The user characteristic information includes: identity information of the user, or a user identity feature identifier, or a combination of the two; and/or, the terminal identifier includes one of the following: a terminal number.
一种终端, 包括:  A terminal, comprising:
存储模块, 用于存储所述终端的实名制信息;  a storage module, configured to store real-name information of the terminal;
请求模块, 用于向存储了所述终端的实名制信息的 SIAC发送操作请求, 并用于根 据用户的指示将来自所述 SIAC的实名制信息存储在所述存储模块中, 其中, 所述操作 请求用于请求对所述 SIAC存储的所述终端的实名制信息进行查询和 /或修改操作; 判断模块, 用于判断所述存储模块中是否存储了所述终端的实名制信息, 并在判断 为否的情况对所述终端上的部分或全部业务的使用进行限制。  a requesting module, configured to send an operation request to the SIAC that stores the real name information of the terminal, and configured to store the real name information from the SIAC in the storage module according to an instruction of the user, where the operation request is used for And requesting to query and/or modify the real-name information of the terminal that is stored by the SIAC; the determining module is configured to determine whether the real-name information of the terminal is stored in the storage module, and if the determination is negative, The use of some or all of the services on the terminal is limited.
一种实名制管理的实现方法, 包括: OMD获取用户提供的用户特征信息, 并将所述用户特征信息发送给认证中心, 并 接收来自所述认证中心的认证结果, 其中, 所述认证结果用于表示所述认证中心中预先 保存的用户特征信息与所述 OMD发送的所述用户特征信息是否一致, 如果一致, 则所 述 OMD读取所述用户的终端标识, 并将所述用户特征信息与所述终端标识相绑定; SIAC 将绑定的所述用户特征信息与所述终端标识作为所述用户的实名制信息保 存, 其中, 所述实名制信息用于鉴别所述终端是否进行了实名制登记。 A method for realizing real-name management includes: The OMD obtains user characteristic information provided by the user, and sends the user characteristic information to the authentication center, and receives an authentication result from the authentication center, where the authentication result is used to indicate a user pre-saved in the authentication center. Whether the feature information is consistent with the user feature information sent by the OMD, and if they are consistent, the OMD reads the terminal identifier of the user, and binds the user feature information to the terminal identifier; The bound user feature information and the terminal identifier are saved as the real name information of the user, wherein the real name information is used to identify whether the terminal performs real name registration.
借助于本发明的上述技术方案, 能够有效阻止用户特征信息不合法的用户进行实名 制登记, 能够准确确定每个终端的用户详细信息, 便于对终端进行高度管理和监控, 便 于追查终端传输非法、 不良内容, 从而有助于净化网络环境; 并且, 为电子支付等需要 严格基于终端用作身份验证的应用提供了可靠的基础。 附图说明 图 1是才 居本发明实施例的实名制管理的实现系统的结构示意图;  By means of the above technical solution of the present invention, the user with invalid user feature information can be effectively prevented from registering by real name system, and the detailed information of the user of each terminal can be accurately determined, which facilitates high-level management and monitoring of the terminal, and facilitates tracking of illegal transmission of the terminal. Content, which helps to clean up the network environment; and provides a reliable basis for applications such as electronic payments that require strict authentication based on the terminal. BRIEF DESCRIPTION OF DRAWINGS FIG. 1 is a schematic structural diagram of an implementation system for real-name management in an embodiment of the present invention;
图 2是才 居本发明实施例的实名制管理的实现系统与运营商网络的结构示意图; 图 3是根据本发明实施例的实名制管理的实现系统与现有 PLMN网元以及终端连接 的示意图;  2 is a schematic structural diagram of an implementation system and an operator network of a real name management system according to an embodiment of the present invention; FIG. 3 is a schematic diagram of a real name system management implementation system and an existing PLMN network element and a terminal according to an embodiment of the present invention;
图 4是根据本发明实施例的 OMD处理逻辑的进程示意图;  4 is a schematic diagram of a process of OMD processing logic according to an embodiment of the present invention;
图 5是根据本发明实施例的 SIAC处理逻辑的进程示意图;  FIG. 5 is a schematic diagram of a process of SIAC processing logic according to an embodiment of the present invention; FIG.
图 6是根据本发明实施例的运营商网络中的指定通信网元处理逻辑的进程示意图; 图 7是根据本发明实施例的终端处理逻辑的进程示意图;  6 is a schematic diagram of a process of specifying communication network element processing logic in an operator network according to an embodiment of the present invention; FIG. 7 is a schematic diagram of a process of terminal processing logic according to an embodiment of the present invention;
图 8a是根据本发明实施例的实名制管理的实现方法的流程示意图一;  FIG. 8a is a schematic flowchart 1 of a method for implementing real-name management according to an embodiment of the present invention; FIG.
图 8b是根据本发明实施例的实名制管理的实现方法的信令流程示意图二; 图 9是根据本发明实施例的实名制信息登记的处理流程示意图;  8b is a schematic diagram of a signaling flow of a real-name system management implementation method according to an embodiment of the present invention; FIG. 9 is a schematic flowchart of a real-name system information registration process according to an embodiment of the present invention;
图 10是根据本发明实施例的终端发起实名制信息查询的处理流程示意图; 图 11是根据本发明实施例的 OMD发起实名制信息查询的处理流程示意图; 图 12是根据本发明实施例的终端发起实名制信息修改或注销的处理流程示意图; 图 13是根据本发明实施例的 OMD发起实名制信息修改或注销的处理流程示意图; 图 14是根据本发明实施例的终端的结构示意图。 具体实施方式 本发明提供一种实名制管理的实现方法和系统, 能够根据用户特征信息是否真实且 合法, 确定是否允许用户登记实名制信息, 从而阻止身份非法的用户进行登记, 能够有 效避免非法用户利用终端非法传输信息, 并且能够准确确定每个终端的用户详细信息, 进而有助于追查传输非法信息的终端,能够有效净化网络环境,避免不必要的网络开销。 10 is a schematic flowchart of a process for a terminal to initiate a real-name information query according to an embodiment of the present invention; FIG. 11 is a schematic flowchart of a process for initiating real-name information query by an OMD according to an embodiment of the present invention; FIG. 12 is a schematic diagram of a terminal-initiated real-name system according to an embodiment of the present invention. FIG. 13 is a schematic diagram of a process flow for modifying or deregistering real-name information of an OMD according to an embodiment of the present invention; FIG. 14 is a schematic structural diagram of a terminal according to an embodiment of the present invention. DETAILED DESCRIPTION OF THE INVENTION The present invention provides a method and system for real-name management, which can be based on whether user feature information is true and It is legal to determine whether to allow users to register real-name information, thereby preventing illegal users from registering, which can effectively prevent illegal users from using the terminal to illegally transmit information, and can accurately determine the detailed information of each terminal user, thereby helping to trace and transmit illegal information. The terminal can effectively clean up the network environment and avoid unnecessary network overhead.
图 1是才 居本发明实施例的实名制管理的实现系统的结构示意图, 如图 1所示, 该 系统包括:  1 is a schematic structural diagram of an implementation system for real-name management in an embodiment of the present invention. As shown in FIG. 1, the system includes:
操作管理平台 (OMD ) 11 , 可以分布式部署在多个地区, 将获取的用户特征信息 发送至认证中心(例如, 可以是公安网等可信机构), 并接收来自认证中心的认证结果, 其中,认证结果用于表示认证中心中预先保存的用户特征信息与 OMD 11发送的用户特 征信息是否一致, 如果认证结果表示两者相一致, 则读取用户的终端标识, 并将用户特 征信息与终端标识相绑定并发送。 也就是说, OMD 11能够提供用户终端进行实名制登 记的接口, 并将用户提供的用户特征信息发送至认证中心, 以便认证中心对用户提供的 用户特征信息进行判断, 如果用户提供的用户特征信息是真实且合法的, 则允许将用户 特征信息与用户的终端标识绑定发送。  The operation management platform (OMD) 11 can be distributedly distributed in multiple regions, and the acquired user characteristic information is sent to the certification center (for example, a trusted institution such as a public security network), and the authentication result from the certification center is received, wherein The authentication result is used to indicate whether the pre-stored user feature information in the authentication center is consistent with the user feature information sent by the OMD 11. If the authentication result indicates that the two are consistent, the user terminal identifier is read, and the user feature information and the terminal are The identity is bound and sent. That is to say, the OMD 11 can provide an interface for the user terminal to perform real-name registration, and send the user-characterized information provided by the user to the authentication center, so that the authentication center can judge the user characteristic information provided by the user, if the user characteristic information provided by the user is Real and legal, the user feature information is allowed to be bound to the terminal identifier of the user.
用户信息鉴别中心(SIAC ) 12, 可以分布式部署在多个地区, 用于接收相绑定的用 户特征信息与终端标识, 并将绑定的用户特征信息与终端标识作为用户的实名制信息加 以保存、 维护, 其中, 实名制信息用于鉴别终端是否进行了实名制登记(也就是用户是 否进行了实名制登记)。这样,在终端发起或网络向终端提供相关业务时,可以根据 SIAC 12中保存的终端标识以及实名制信息就能够判断出该终端是否登记了实名制信息,从而 确定这些业务是否继续进行, 进而达到对终端进行实名制管理的目的。  The User Information Authentication Center (SIAC) 12 can be distributedly distributed in multiple regions, and is configured to receive the bound user feature information and the terminal identifier, and save the bound user feature information and the terminal identifier as the user's real name information. And maintenance, wherein the real name information is used to identify whether the terminal has registered the real name system (that is, whether the user has registered the real name system). In this way, when the terminal initiates or the network provides related services to the terminal, it can determine whether the terminal registers the real-name information according to the terminal identifier and the real-name information stored in the SIAC 12, thereby determining whether the services continue to be performed, thereby reaching the terminal. The purpose of real-name management.
借助于本发明的上述系统, 能够有效阻止用户特征信息不合法的用户进行实名制登 记, 确保终端的实名制管理能够真实、 有效地实施; 并且, 由于 SIAC中保存了终端用 户的用户特征信息, 能够准确确定每个终端的用户详细信息, 进而能够追查传输非法、 不良内容的终端, 便于对终端进行高度管理和监控, 从而有助于净化网络环境。  With the above system of the present invention, it is possible to effectively prevent users whose user feature information is illegal from registering with the real name system, and ensure that the real name management of the terminal can be implemented in a real and effective manner; and, since the user characteristics information of the terminal user is saved in the SIAC, the accuracy can be accurately The user details of each terminal are determined, and the terminal that transmits illegal or bad content can be traced, which facilitates high-level management and monitoring of the terminal, thereby helping to purify the network environment.
此外, 为了更加有效地进行管理, 居本实施例的系统还可以包括短消息监控中心 ( SMMC )和网络管理中心 (Network Management Center, NMC )。 其中, SMMC可以 分布式部署在多个地区, 用于对短消息的内容进行合法性-验证和过滤。  In addition, for more efficient management, the system of this embodiment may further include a Short Message Monitoring Center (SMMC) and a Network Management Center (NCC). The SMMC can be deployed in multiple areas in a distributed manner for legality-verification and filtering of short message content.
在实际应用中, 实名制管理的实现系统主要负责终端用户的实名制登记工作和实名 制信息的管理工作, 例如, 根据本实施例的实名制管理的实现系统需要完成用户特征信 息的收集、 将手机用户的特征信息与认证中心中存储的用户特征信息进行对比和判断, 并且在判断结果为用户特征信息合法的情况下, 需要生成相应的实名制信息, 并且对实 名制信息和用户特征信息进行存储和维护, 以便对终端进行实名制管理, 并且支持合法 用户对自己的实名制信息和用户特征信息进行修改和查询。 In practical applications, the real-name system management implementation system is mainly responsible for the real-name system registration work of the end user and the real-name system information management work. For example, the real-name system management implementation system according to the embodiment needs to complete the collection of user feature information and the characteristics of the mobile phone user. The information is compared with the user characteristic information stored in the authentication center, and when the judgment result is that the user characteristic information is legal, the corresponding real name information needs to be generated, and The name information and user feature information are stored and maintained, so that the terminal can be managed by the real name system, and the legitimate user is allowed to modify and query the real name information and the user feature information.
在用户携带终端登记实名制时, 用户特征信息将由操作员通过 OMD提供的输入接 口输入到 OMD中, 之后, OMD会将实名制信息存放在 SIAC中。 OMD提供的输入接 口可以有很多种, 例如, OMD可以识别用户有效身份证件、 读取终端智能卡(例如, SIM卡、 UIM卡等) 的信息 (例如, 用户的手机号码), 并且, 为了增加真实性, 还可 以釆集用户的指紋信息和 /或虹膜信息等生理信息。  When the user carries the terminal to register the real name system, the user feature information will be input into the OMD by the operator through the input interface provided by the OMD. After that, the OMD will store the real name information in the SIAC. OMD can provide a variety of input interfaces. For example, OMD can identify the user's valid ID, read the information of the terminal smart card (for example, SIM card, UIM card, etc.) (for example, the user's mobile phone number), and, in order to increase the real Sexuality can also collect physiological information such as fingerprint information and/or iris information of users.
SMMC (可以通过计算机系统来实现)可以实时监控和验证短消息内容, 在终端发 起短消息通信的情况下, 对发送的短消息内容进行合法性验证并对非法内容进行过滤。 具体地, 在进行验证时, 可以删除短消息中的非法字符, 并允许发送剩余的字符。 如果 删除的字符过多, 则可以禁止发送该短消息, 即, 该短消息未通过验证; 如果违规情节 较为严重, 则可以直接通知公安部门, 以釆取相应安全措施。  The SMMC (which can be implemented by a computer system) can monitor and verify the content of the short message in real time, and verify the validity of the sent short message content and filter the illegal content when the terminal initiates short message communication. Specifically, when performing verification, illegal characters in the short message can be deleted, and the remaining characters are allowed to be transmitted. If too many characters are deleted, the short message may be prohibited from being sent, that is, the short message fails to pass the verification; if the violation is more serious, the public security department may be directly notified to obtain corresponding security measures.
NMC可以用于对 OMD、 SIAC、 SMMC进行管理和维护。 具体地, NMC可以根据 实际需要更新 SIAC和 SMMC中的程序、判断规则和用户数据;并且能够汇总各 SMMC、 SIAC的工作情况, 根据预定上报要求向认证中心汇报。  The NMC can be used to manage and maintain OMD, SIAC, and SMMC. Specifically, the NMC can update the programs, judgment rules, and user data in the SIAC and the SMMC according to actual needs; and can summarize the work of each SMMC and SIAC, and report to the certification center according to the predetermined reporting requirements.
图 2是才 居本发明实施例的实名制管理的实现系统与运营商网络的结构示意图,如 图 2所示, 实名制管理的实现系统包括: OMD、 SIAC、 NMC、 SMMC; 运营商网络可 以包括: 基站( Base Station, BS )、 基站控制器( Base Station Controller, BSC )、 设备 鉴别寄存器(Equipment Identification Register, EIR )、 数据服务管理平台 ( DSMP )、 网 关名称服务器(Gateway Name Server, GNS )、 业务提供者( Service Provider, SP )、 移 动交换中心( Mobile Switching Center, MSC )、拜访位置寄存器( Visitor Location Register, VLR )、 归属位置寄存器( Home Location Register, HLR )、 短消息中心 ( Short Message Center, SC )。  2 is a schematic structural diagram of an implementation system and a carrier network of a real name management system according to an embodiment of the present invention. As shown in FIG. 2, the implementation system of real name management includes: OMD, SIAC, NMC, SMMC; the carrier network may include: Base Station (BS), Base Station Controller (BSC), Equipment Identification Register (EIR), Data Service Management Platform (DSMP), Gateway Name Server (GNS), Service Service Provider (SP), Mobile Switching Center (MSC), Visitor Location Register (VLR), Home Location Register (HLR), Short Message Center (Short Message Center, SC).
在实际网络部署中, 分布式部署的每个 SIAC都可以与若千 OMD相连接, 接收并 处理来自这些 OMD的操作请求。 而在网络侧, 一个 SIAC可与一个或多个 HLR相连, 并为这些 HLR提供与用户实名制相关的服务。 用户实名制状态单元存在于现有公共陆 地移动通信网络(PLMN ) 的 HLR和 VLR之中, 以表示某用户是否已实名制, 并作为 是否为该用户提供短消息等指定服务的依据。  In an actual network deployment, each SIAC in a distributed deployment can connect to thousands of OMDs to receive and process operational requests from these OMDs. On the network side, a SIAC can be connected to one or more HLRs and provide services related to the user's real name system for these HLRs. The user real name system status unit exists in the HLR and VLR of the existing public land mobile communication network (PLMN) to indicate whether a user has a real name system and as a basis for providing the user with a specified service such as a short message.
如图 2所示, 实名制管理的实现系统所支持的运营商网络的数量可以是多个(处于 运营方面的考虑, 所有的运营商网络均可以与实名制管理的实现系统相连, 以接受实名 制管理的实现系统的实名制管理和服务), 例如, 图 2中所示的运营商网络 A、 运营商 网络 B以及运营商网络 C等, 其中, 在才 居本发明实施例的实名制管理的实现系统与 运营商网络进行通信时, 可以在 SIAC与 HLR之间设置通信接口、 以及 SMMC与 SC 之间设置通信接口, 这样, HLR可以向 SIAC查询用户的实名制信息, SIAC可以将用 户是否进行实名制登记通知给 HLR, 并且, 当用户的实名制信息发生变化时, SIAC可 以主动将变化后的信息通知 HLR, 例如, 用户注销了实名制信息, SIAC可以通知 HLR 该用户没有进行实名制登记, 以对用户的业务权限进行控制; 并且, 对于终端的短消息 流程, 还需要 SC能够与 SMMC进行交互, 从而由 SMMC对短消息进行验证。 As shown in Figure 2, the number of carrier networks supported by the real-name management implementation system can be multiple (in operational considerations, all carrier networks can be connected to the real-name management implementation system to accept real names). Real-name management and service of the implementation system of the management system, for example, the operator network A, the operator network B, and the carrier network C shown in FIG. 2, wherein the implementation of the real-name system management in the embodiment of the present invention When the system communicates with the carrier network, a communication interface can be set between the SIAC and the HLR, and a communication interface is set between the SMMC and the SC. Thus, the HLR can query the SIAC for the real name information of the user, and the SIAC can register the user with the real name system. The notification is sent to the HLR, and when the real name information of the user changes, the SIAC can actively notify the HLR of the changed information. For example, the user cancels the real name information, and the SIAC can notify the HLR that the user does not perform the real name registration to the user's service. The privilege is controlled; and, for the short message flow of the terminal, the SC needs to be able to interact with the SMMC, so that the short message is verified by the SMMC.
并且, 为了实现实名制信息的修改、 注销、 查询, 还需要对 MSC、 VLR、 HLR、 以及终端、 如移动终端 (Mobile Station, MS )进行改进, 使其具备实名制信息的相关 业务单元。 如图 3所示, 在具体实现过程中, 用户将通过终端或 OMD向 SIAC发送请 求(例如实名制信息修改请求、 实名制信息注销请求、 实名制信息查询请求), SIAC可 以根据请求,对该用户的实名制信息进行注销、修改、和 /或查询等操作。需要说明的是, 如果用户通过终端向 SIAC发送请求(即, 请求来自于终端), 需要由运营商网络中的指 定通信网元(例如, 终端的 MSC和终端的 HLR )将请求转发给 SIAC。 其中, 请求在 通过指定通信网元传输时, 可以由终端的服务 MSC接收终端的请求, 并将请求发送到 终端的 HLR, 之后再由 HLR将请求发送给 SIAC, 在 SIAC向终端返回操作结果、 实名 制信息等消息时, 可以釆用上述的逆过程。 除了上述方式之外, 还可以釆用其他的传输 流程进行请求的发送和消息的返回, 传输所涉及到的网元也可以根据需要进行改变, 本 文不再——列举。  Moreover, in order to implement the modification, cancellation, and inquiry of the real-name information, it is also necessary to improve the MSC, the VLR, the HLR, and the terminal, such as the mobile terminal (MS), so as to have the relevant business unit of the real-name information. As shown in FIG. 3, in a specific implementation process, the user sends a request (for example, a real name information modification request, a real name information cancellation request, and a real name information inquiry request) to the SIAC through the terminal or the OMD, and the SIAC can perform real name system on the user according to the request. Information is logged out, modified, and/or queried. It should be noted that if the user sends a request to the SIAC through the terminal (ie, the request comes from the terminal), the request needs to be forwarded to the SIAC by the designated communication network element in the carrier network (for example, the MSC of the terminal and the HLR of the terminal). When the request is transmitted through the designated communication network element, the service MSC of the terminal may receive the request of the terminal, and send the request to the HLR of the terminal, and then the HLR sends the request to the SIAC, and returns the operation result to the terminal at the SIAC. When the real name system information or the like, the above reverse process can be used. In addition to the above methods, other transmission processes may be used for request transmission and message return, and the network elements involved in the transmission may also be changed as needed, and the text is no longer listed.
如图 3所示, 为了实现对用户终端的实名制管理, # ^据本实施例的实名制管理的实 现系统中需要设置 OMD、 SIAC以及 SMMC (未示出)和 NMC (未示出)等网元, SIAC 中保存有用户的实名制信息, OMD能够读取用户的身份证件、用户身份标识特征、 SIM 卡等用户特征信息并转发给认证中心进行验证; PLMN中需要有能够与 SIAC通信的网 元, 这些网元通常可以是 HLR、 VLR等(对应于现有移动通信网中的位置更新单元, 这些网元需要能够存储用户终端的终端标识以及相应的实名制信息); 为了使得实名制 信息能够在终端、 PLMN 网元以及实名制管理的实现系统之间传输, 还可以对 PLMN 网元进行相应的逻辑更新, 从而能够实现实名制信息的传输; 并且, 优选地, 终端同样 可以保留该终端的实名制信息, 以便在用户操作终端进行通信时, 终端能够根据实名制 信息在终端中是否保存, 来对用户的操作进行限制。 这样, 通过终端、 PLMN网元与实 名制管理的实现系统相互进行协作, 就能够完成用户实名制信息的录入、 修改、 查询、 注销等管理操作。 其中, 在对用户的操作进行限制时, 主要可以釆用业务限制的方式, 例如, 限制一定时间段内终端通话的时间、 限制一定时间段内终端发送短消息的数量、 也可以直接禁止终端的通话和短消息传输。 As shown in FIG. 3, in order to implement real-name management of the user terminal, it is necessary to set network elements such as OMD, SIAC, and SMMC (not shown) and NMC (not shown) in the implementation system of real-name management according to this embodiment. The user name information of the user is stored in the SIAC. The OMD can read the user identity information such as the user ID, the user identity, and the SIM card and forward it to the authentication center for verification. The PLMN needs to have the network element capable of communicating with the SIAC. These network elements may be HLRs, VLRs, etc. (corresponding to location update units in existing mobile communication networks, these network elements need to be able to store terminal identifiers of user terminals and corresponding real-name information); in order to enable real-name information to be at the terminal, The PLMN network element and the implementation system of the real name management system can also perform corresponding logical update on the PLMN network element, thereby realizing the transmission of the real name information; and, preferably, the terminal can also retain the real name information of the terminal, so as to When the user operates the terminal to communicate, the terminal can be based on the real name information in the terminal. To save, to limit the user's actions. In this way, through the terminal, PLMN network element and real The implementation system of the name management system can cooperate with each other to complete the management operations such as input, modification, query, and logout of the user's real name information. When restricting the operation of the user, the method of restricting the service may be used. For example, limiting the time of the terminal in a certain period of time, limiting the number of short messages sent by the terminal in a certain period of time, or directly prohibiting the terminal. Call and short message transmission.
图 4是才 居本发明实施例的 OMD处理逻辑的进程示意图, 如图 4所示, OMD可 以进行实名制信息的录入、 修改和注销, 下面对这三种操作分别进行说明。  FIG. 4 is a schematic diagram of the process of the OMD processing logic in the embodiment of the present invention. As shown in FIG. 4, the OMD can perform the entry, modification, and deregistration of the real name information. The following three operations are separately described.
实名制信息的录入或修改:  Entry or modification of real-name information:
读取用户的有效证件(例如, 用户的身份证件 ), 并判断是否需要读取用户提供的 用户身份标识特征(例如用户的指紋、 用户的脸部特征),  Read the user's valid ID (for example, the user's ID) and determine whether it is necessary to read the user-identified user identification features (such as the user's fingerprint, the user's facial features).
如果需要读取用户身份标识特征, 则读取用户提供的用户身份标识特征, 并将用户 提供的用户身份标识特征发送给认证中心, 等待验证结果, 如果上述验证结果为提供的 用户身份标识特征与认证中心预先保存的用户身份标识特征不一致, 则认为验证失败, 反之, 如果验证结果一致(即, 用户提供的用户身份标识特征与认证中心中保存的该用 户的用户身份标识特征相一致), 则读取用户的终端标识(例如, SIM卡号码), 并判断 是否需要读取终端的信息, 如果不需要, 则直接将用户的有效证件信息与终端标识相绑 定发送给 SIAC, 如果需要, 则在读取终端的信息之后将用户的有效证件信息与移动终 端标识、 手机设备信息相绑定发送给 SIAC; 等待 SIAC的操作结果, 接收 SIAC返回的 操作结果, 其中,操作结果包括: 返回码、结果(操作成功或操作失败)和原因描述(例 如, 操作失败的原因); 如果结果为操作成功, 则该录入或修改操作成功, 如果结果为 操作失败, 则该录入或修改结果失败;  If the user identity feature needs to be read, the user identity feature provided by the user is read, and the user identity feature provided by the user is sent to the authentication center, waiting for the verification result, if the verification result is the provided user identity feature and If the user identity identifiers pre-stored by the authentication center are inconsistent, the verification fails. Otherwise, if the verification result is consistent (that is, the user identity feature provided by the user is consistent with the user identity feature of the user saved in the authentication center), then Read the terminal identifier of the user (for example, the SIM card number), and determine whether the information of the terminal needs to be read. If not, directly bind the valid ID information of the user to the SIAC, if necessary, After the information of the terminal is read, the valid ID information of the user is bound to the mobile terminal identifier and the mobile device information, and is sent to the SIAC. The operation result of the SIAC is received, and the operation result returned by the SIAC is received, where the operation result includes: a return code, Result (operation succeeded or fucked The failure and the reason description (for example, the reason for the operation failure); if the result is successful, the entry or modification operation is successful, and if the result is an operation failure, the entry or modification result fails;
如果不需要读取用户身份标识特征, 则读取用户的终端标识(例如, SIM卡号码), 并判断是否需要读取终端的信息, 如果需要, 则读取终端的信息, 如果不需要读取终端 的信息, 则将用户的有效证件与终端标识相绑定发送给 SIAC, 等待 SIAC的操作结果, 接收 SIAC返回的操作结果, 其中, 操作结果中包括: 返回码、 结果(操作成功或操作 失败)和原因描述(例如, 操作失败的原因); 如果结果为操作成功, 则该录入或修改 操作成功, 如果结果为操作失败, 则该录入或修改结果失败。  If the user identity feature is not required to be read, the terminal identifier of the user (for example, a SIM card number) is read, and it is determined whether the information of the terminal needs to be read, and if necessary, the information of the terminal is read, if not required to be read. The information of the terminal is bound to the terminal identifier of the user and sent to the SIAC, and waits for the operation result of the SIAC to receive the operation result returned by the SIAC. The operation result includes: a return code, a result (operation success or operation failure) And the reason description (for example, the reason for the operation failure); if the result is successful, the entry or modification operation is successful, and if the result is an operation failure, the entry or modification result fails.
实名制信息的注销: OMD接收到操作员的实名制信息注销请求后, 读取需要注销 的实名制信息, 并将实名制注销请求发送给 SIAC, 等待 SIAC的操作结果; 接收 SIAC 返回的操作结果, 其中, 操作结果中包括: 返回码、 结果(操作成功或操作失败)和原 因描述(例如, 操作失败的原因); 如果结果为操作成功, 则该注销操作成功, 如果结 果为操作失败, 则该注销结果失败。 另外, 在读取需要注销的实名制信息之前, 可以进 一步对操作员的注销资格进行验证, 即判断操作员是否有权进行实名制信息注销, 验证 通过后, 再读取需要注销的实名制信息。 Logout of real-name information: After receiving the real-name information deregistration request from the operator, the OMD reads the real-name information that needs to be logged off, and sends the real-name system logout request to the SIAC to wait for the SIAC operation result; receives the operation result returned by the SIAC, where, The results include: return code, result (operation success or operation failure), and reason description (for example, the reason for the operation failure); if the result is successful, the logout operation succeeds, if the If the operation fails, the logout result fails. In addition, before reading the real-name information that needs to be logged off, the operator's cancellation qualification can be further verified, that is, whether the operator has the right to cancel the real-name information, and after the verification is passed, the real-name information that needs to be logged off is read.
图 5是根据本发明实施例的 SIAC处理逻辑的进程示意图, 如图 5所示, SIAC中 保存有用户的实名制信息, 并可以对保存的实名制信息进行查询、 修改和注销, 具体实 现过程中, 首先, SIAC从消息源处获取服务请求, 例如, 实名制信息注销请求、 实名 制信息查询请求、 实名制信息状态查询请求、 业务鉴权请求、 以及实名制信息创建 /修改 或其他操作请求; 接着, SIAC根据服务请求, 执行相应的操作, 即, 创建实名制信息、 修改实名制信息、 注销实名制信息、 查询实名制信息、 查询实名制信息的状态、 业务准 许判断;然后, SIAC向消息源返回操作结果。其中,消息源可以为终端,也可以为 OMD, 即,用户可以通过终端或 OMD输入请求,终端或 OMD再将请求转发给 SIAC,可选地, 出于对信息安全性和保证实名制信息可信的考虑, 可以将 OMD作为实名制信息创建请 求的唯一消息源, 也就是说, 用户必须通过 OMD才能够创建实名制信息, 而不能通过 终端创建。 需要说明的是, 如果用户通过终端向 SIAC发送请求(即消息源为终端), 终 端需要经由运营商网络中的指定通信网元(例如, MSC和 HLR )将请求转发给 SIAC, 同时, 这些通信网元也负责将来自 SIAC的操作结果转发给相应的消息源。 下面将以图 6为例, 对指定通信网元在该过程中的处理逻辑进行说明; 并且将以图 7为例, 对终端 在该过程中的处理逻辑进行说明。  5 is a schematic diagram of a process of SIAC processing logic according to an embodiment of the present invention. As shown in FIG. 5, SIAC stores real-name information of a user, and can query, modify, and log out the saved real-name information. In the specific implementation process, First, the SIAC obtains a service request from a message source, for example, a real name information deregistration request, a real name information inquiry request, a real name information status inquiry request, a service authentication request, and a real name information creation/modification or other operation request; The request performs the corresponding operation, that is, creating the real name information, modifying the real name information, unregistering the real name information, querying the real name information, querying the status of the real name information, and the business permission judgment; then, the SIAC returns the operation result to the message source. The message source may be a terminal or an OMD, that is, the user may input the request through the terminal or the OMD, and the terminal or the OMD forwards the request to the SIAC, optionally, for information security and guaranteeing the real name information. In consideration, the OMD can be used as the sole source of the real-name information creation request. That is, the user must be able to create real-name information through the OMD, but not through the terminal. It should be noted that, if the user sends a request to the SIAC through the terminal (that is, the message source is the terminal), the terminal needs to forward the request to the SIAC via the designated communication network element (for example, the MSC and the HLR) in the carrier network, and at the same time, the communication The network element is also responsible for forwarding the operation results from the SIAC to the corresponding message source. The processing logic of the designated communication network element in the process will be described below by taking FIG. 6 as an example; and the processing logic of the terminal in the process will be described by taking FIG. 7 as an example.
图 6是才 居本发明实施例的运营商网络中的指定通信网元( MSC或 VLR或 HLR ) 处理逻辑的进程示意图, 如图 6所示, 在具体实施过程中, 首先, 指定通信网元接收来 自消息源 (例如, 终端)的服务请求, 例如, 实名制信息修改请求、 实名制信息注销请 求(未示出)、 实名制信息查询请求、 实名制信息状态查询请求、 业务鉴权请求; 接着, 设置相应的等待定时器, 其中, 对于实名制信息修改请求, 设置修改等待定时器; 对于 实名制信息查询请求, 设置查询等待定时器; 对于实名制信息状态查询请求, 设置状态 等待定时器; 对于业务鉴权请求, 设置鉴权等待定时器; 并将服务请求转发给 SIAC, 等待操作结果; 如果收到结果或相应的定时器超时, 向消息源 (终端) 回送来自 SIAC 的操作结果, 对于来自 OMD的请求, SIAC可以直接接收并直接将结果发送给 OMD, 不需要通过其他通信网元进行请求或结果的转发。  6 is a schematic diagram of a process of processing logic of a designated communication network element (MSC or VLR or HLR) in an operator network according to an embodiment of the present invention. As shown in FIG. 6, in a specific implementation process, first, a communication network element is specified. Receiving a service request from a message source (for example, a terminal), for example, a real name information modification request, a real name information deregistration request (not shown), a real name information inquiry request, a real name information status inquiry request, a service authentication request; Waiting timer, wherein, for the real name information modification request, setting a modification waiting timer; setting a query waiting timer for the real name information query request; setting a status waiting timer for the real name information status query request; for the service authentication request, Set the authentication wait timer; forward the service request to the SIAC, wait for the result of the operation; if the result is received or the corresponding timer expires, return the operation result from the SIAC to the message source (terminal), for the request from the OMD, SIAC Can be received directly and straight The result is sent to the OMD, or no need for forwarding the request result through other communication network elements.
图 7是根据本发明实施例的终端处理逻辑的进程示意图, 如图 7所示, 用户在终端 中输入服务请求, 例如, 实名制信息查询请求、 实名制信息修改请求、 移动业务请求, 下面对这三种请求的处理分别进行说明。 7 is a schematic diagram of a process of terminal processing logic according to an embodiment of the present invention. As shown in FIG. 7, a user inputs a service request in a terminal, for example, a real name information query request, a real name information modification request, and a mobile service request. The processing of these three requests will be described separately below.
实名制信息查询请求: 终端接收用户输入的实名制信息查询请求, 设置查询等待定 时器的同时, 将实名制信息查询请求发送给指定通信网元, 并等待查询结果; 如果查询 等待定时器超时时, 指定通信网元还没有返回操作结果, 则操作失败; 在查询等待定时 器超时之前、 指定通信网元返回操作结果的情况下, 如果操作成功, 指定通信网元会将 用户的实名制信息发送给终端, 终端会保存实名制信息, 并向用户显示该实名制信息, 如果操作失败, 指定通信网元会将操作失败的原因发送给终端, 终端显示给用户操作失 败的原因。  Real-name information query request: The terminal receives the real-name information query request input by the user, sets the query waiting timer, sends the real-name information query request to the designated communication network element, and waits for the query result; if the query wait timer expires, the specified communication If the operation result is successful, the specified communication network element sends the real name information of the user to the terminal, and the terminal fails to return the operation result. The real name information will be saved, and the real name information will be displayed to the user. If the operation fails, the designated communication network element will send the reason for the operation failure to the terminal, and the terminal displays the reason for the user's operation failure.
移动业务请求: 终端接收用户输入的移动业务请求, 判断该移动业务是否受实名制 状态的限制, 如果该移动业务不受实名制状态的限制, 则对该移动业务进行正常处理; 如果该移动业务受实名制状态的限制, 则需要判断用户是否已经进行了实名制登记, 如 果没有进行实名制登记, 则业务处理失败, 如果该用户进行了实名制登记, 则正常处理 业务。  Mobile service request: The terminal receives the mobile service request input by the user, determines whether the mobile service is restricted by the real name system status, and if the mobile service is not restricted by the real name system status, the mobile service is normally processed; if the mobile service is subject to the real name system If the status is restricted, it is necessary to determine whether the user has already performed real-name registration. If the real-name registration is not performed, the service processing fails. If the user performs real-name registration, the service is normally processed.
实名制信息修改请求: 终端接收用户输入的实名制信息修改请求, 设置修改等待定 时器的同时, 将实名制信息修改请求发送给指定通信网元, 并等待修改结果; 如果查询 修改等待定时器后发现定时器超时,而指定通信网元还没有返回操作结果,则操作失败, 在修改等待定时器超时之前、 收到指定通信网元返回的操作结果的情况下, 如果修改成 功, 指定通信网元会将用户修改后的实名制信息发送给终端, 终端会保存并向用户显示 该修改后的实名制信息,如果修改失败,指定通信网元会将修改失败的原因发送给终端, 并由终端将修改失败的原因显示给用户。  Real-name information modification request: The terminal receives the real-name information modification request input by the user, sets the modification waiting timer, sends the real-name information modification request to the designated communication network element, and waits for the modification result; if the query modifies the waiting timer, the timer is found. If the modification succeeds, the specified communication network element will be the user. If the modification succeeds, the specified communication network element will not return the operation result. If the operation fails, and the operation result returned by the specified communication network element is received before the modification wait timeout expires, if the modification is successful, the designated communication network element will be the user. The modified real name information is sent to the terminal, and the terminal saves and displays the modified real name information to the user. If the modification fails, the designated communication network element sends the reason for the modification failure to the terminal, and the terminal displays the reason for the modification failure. To the user.
为使现有 PLMN支持以上这些功能, 可以对 PLMN中指定通信网元的用户接口的 位置更新协议、网络侧的 MAP协议(位置更新相关的部分)进行相应的更新,以使 PLMN 网元传输的消息单元能够携带与用户实名制信息相关的信息。 此外, 为支持用户通过终 端对自己实名制信息的实时查询和修改, 并且提高用户终端侧操作的安全性, 在 PLMN 中还可以单独实现用于用户实名制管理的协议, 以承载用户实名制信息的查询、 修改、 注销操作等请求消息, 该协议可作为 MAP协议的一个子集。  In order to enable the existing PLMN to support the above functions, the location update protocol of the user interface of the designated communication network element in the PLMN and the MAP protocol (the part related to the location update) of the network side may be updated correspondingly to enable the transmission of the PLMN network element. The message unit can carry information related to the user's real name information. In addition, in order to support the real-time query and modification of the real-name information by the user through the terminal, and to improve the security of the operation of the user terminal side, the protocol for real-name management of the user can also be implemented separately in the PLMN, so as to carry the query of the real-name information of the user, Request messages such as modification, logout operations, etc., which can be used as a subset of the MAP protocol.
根据本发明的实施例, 还提供了一种实名制管理的实现方法。  According to an embodiment of the present invention, an implementation method of real name management is also provided.
如图 8a所示, 根据本发明实施例的实名制管理的实现方法包括:  As shown in FIG. 8a, the implementation method of real name management according to an embodiment of the present invention includes:
步骤 801a, 实名制管理的实现系统中的 OMD获取用户提供的用户特征信息, 并将 用户特征信息与终端标识发送给认证中心 (例如, 公安网等可信机构), 并接收来自认 证中心的认证结果, 其中, 认证结果用于表示认证中心中预先保存的用户特征信息与 OMD发送的用户特征信息是否一致, 如果一致, 则 OMD读取用户的终端标识, 并将 用户特征信息与终端标识相绑定, 其中, 终端标识包括以下之一: 终端号码(例如用户 的手机号码)。 Step 801a: The OMD in the real-name system implementation system acquires user feature information provided by the user, and sends the user feature information and the terminal identifier to the authentication center (for example, a trusted institution such as a public security network), and receives the recognition. The authentication result of the certificate center, wherein the authentication result is used to indicate whether the pre-stored user feature information in the authentication center is consistent with the user feature information sent by the OMD. If they are consistent, the OMD reads the user's terminal identifier, and the user feature information is The terminal identifier is bound, where the terminal identifier includes one of the following: a terminal number (for example, a mobile phone number of the user).
步骤 803a, 实名制管理的实现系统中的 SIAC将绑定的用户特征信息与终端标识作 为用户的实名制信息保存, 其中, 实名制信息用于鉴别终端是否进行了实名制登记或按 预定规则提供这些实名制信息, 例如, 如果发现通信内容(语音、 文字、 图片、 图像、 视频等)违规, 可以利用实名制信息确定通信的发送方和接收方。  Step 803a: The SIAC in the real-name system implementation system saves the bound user feature information and the terminal identifier as the user's real-name system information, wherein the real-name system information is used to identify whether the terminal performs real-name registration or provides the real-name information according to a predetermined rule. For example, if the communication content (voice, text, picture, image, video, etc.) is found to be in violation, the sender and receiver of the communication can be determined using the real name information.
优选地, 用户特征信息包括: 用户的身份信息、 或用户身份标识特征、 或以上二者 的组合。  Preferably, the user characteristic information comprises: the user's identity information, or the user identity feature, or a combination of the two.
图 8b是根据本发明实施例的实名制管理的实现方法的信令流程示意图,如图 8b所 示, 包括以下步骤:  FIG. 8b is a schematic diagram of a signaling flow of an implementation method of real-name management according to an embodiment of the present invention. As shown in FIG. 8b, the following steps are included:
步骤 801b, 实名制管理的实现系统获取用户提供的用户特征信息, 并将用户特征信 息发送给公安网,公安网将来自实名制管理的实现系统的用户特征信息与公安网中保存 的用户特征信息进行对比, 如果用户特征信息相一致, 则实名制管理的实现系统读取用 户的终端标识, 并将用户特征信息与终端标识相绑定。  Step 801b, the implementation system of real-name management acquires user characteristic information provided by the user, and sends the user characteristic information to the public security network, and the public security network compares the user characteristic information of the real-time system realization realization system with the user characteristic information saved in the public security network. If the user feature information is consistent, the real-name management implementation system reads the user's terminal identifier, and binds the user feature information to the terminal identifier.
步骤 803b ,实名制管理的实现系统将绑定的用户特征信息与终端标识作为用户的实 名制信息保存, 其中, 实名制信息用于鉴别终端是否进行了实名制登记。  Step 803b: The implementation system of the real name management saves the bound user characteristic information and the terminal identifier as the real name information of the user, wherein the real name information is used to identify whether the terminal performs the real name registration.
其中, 用户特征信息包括: 用户的身份信息、 或用户身份特征标识、 或以上二者的 组合。 其中, 终端标识包括以下之一: 终端号码。  The user feature information includes: a user identity information, or a user identity feature identifier, or a combination of the two. The terminal identifier includes one of the following: a terminal number.
下面将结合之前所描述的系统, 详细说明该系统中的各个处理流程。  The various processing flows in the system will be described in detail below in conjunction with the system described previously.
优选地, 为了保证实名制信息的真实性, 实名制信息的登记一定要通过 OMD来执 行, 用户在操作员的协助下进行登记, 图 9是根据本发明实施例的实名制信息登记的处 理流程示意图, 如图 9所示, 包括以下步骤:  Preferably, in order to ensure the authenticity of the real name information, the registration of the real name information must be performed by the OMD, and the user performs the registration with the assistance of the operator. FIG. 9 is a schematic diagram of the processing flow of the real name information registration according to the embodiment of the present invention, such as As shown in Figure 9, the following steps are included:
步骤 901 , OMD读取用户提供的用户身份特征标识(例如, 用户的指紋、 用户的 脸部特征等信息), 基于用户的用户身份特征标识确定用户本身的真实信息。  Step 901: The OMD reads the user identity feature identifier (for example, the user's fingerprint, the user's facial feature, and the like) provided by the user, and determines the real information of the user itself based on the user identity identifier of the user.
步骤 902, OMD读取用户提供的身份信息 (例如, 可以读取用户的有效证件信息 上的身份信息)。  Step 902, the OMD reads the identity information provided by the user (for example, the identity information on the user's valid ID information can be read).
步骤 903 , OMD通过其与公安网之间的接口, 将用户提供的用户身份特征标识和 身份信息发送给公安网, 以便公安网验证用户及用户身份的真实性。 步骤 904, 公安网将用户提供的用户身份特征标识与公安网保存的该用户的用户身 份特征标识进行比较, 并将用户提供的身份信息与公安网保存的该用户身份信息进行比 较, 如果二者均一致, 则验证通过, 进入步骤 905 , 如果二者中的一个不一致, 则验证 失败, 处理结束。 Step 903: The OMD sends the user identity feature identifier and identity information provided by the user to the public security network through the interface between the OMD and the public security network, so that the public security network can verify the authenticity of the user and the user identity. Step 904: The public security network compares the user identity feature identifier provided by the user with the user identity feature identifier of the user saved by the public security network, and compares the identity information provided by the user with the user identity information saved by the public security network, if both If they are all consistent, the verification passes, and the process proceeds to step 905. If one of the two is inconsistent, the verification fails, and the process ends.
步骤 905 , OMD读取用户的终端标识, 例如, SIM卡号码。  Step 905: The OMD reads the terminal identifier of the user, for example, a SIM card number.
步骤 906, OMD将用户特征信息和 SIM卡号码相绑定,通过 OMD与 SIAC之间的 接口, 将绑定后的用户特征信息和 SIM卡号码发送给 SIAC, 实现实名制信息录入。 用 户特征信息可以是用户的身份信息、 或用户身份特征标识、 或以上二者的组合。  Step 906: The OMD binds the user feature information and the SIM card number, and sends the bound user feature information and the SIM card number to the SIAC through the interface between the OMD and the SIAC to implement real-name information input. The user feature information may be the identity information of the user, or the identity of the user identity, or a combination of the two.
步骤 907, SIAC接收到相绑定的用户特征信息和 SIM卡号码, 创建实名制信息记 录, 将用户特征信息和 SIM卡号码作为用户的实名制信息进行保存。  Step 907: The SIAC receives the bound user feature information and the SIM card number, creates a real name information record, and saves the user feature information and the SIM card number as the user's real name information.
步骤 908, SIAC将操作结果返回给 OMD, 例如, 操作结果显示实名制信息录入成 功。  In step 908, the SIAC returns the operation result to the OMD. For example, the operation result shows that the real name information is successfully entered.
步骤 909, OMD向用户显示上述操作结果。  Step 909, the OMD displays the above operation result to the user.
用户可以在 OMD上执行实名制信息的查询, 也可以在终端上执行实名制信息的查 询, 下面结合图 10和图 11分别进行说明。  The user can perform the query of the real name information on the OMD, or perform the query of the real name information on the terminal, which will be described below in conjunction with FIG. 10 and FIG.
图 10是根据本发明实施例的终端发起实名制信息查询的处理流程示意图, 如图 10 所示, 包括以下步骤:  FIG. 10 is a schematic flowchart of a process for a terminal to initiate real-name information query according to an embodiment of the present invention. As shown in FIG. 10, the method includes the following steps:
步骤 1001 , 用户选择并启动终端中查询实名制信息的功能, 终端响应用户选择, 生 成实名制信息查询请求;  Step 1001: The user selects and starts a function for querying real-name information in the terminal, and the terminal responds to the user selection to generate a real-name information query request;
步骤 1002,终端向运营商网络中的指定通信网元发送实名制信息查询请求,该查询 请求中携带有终端标识, 例如, SIM卡号码;  Step 1002: The terminal sends a real-name information query request to the designated communication network element in the carrier network, where the query request carries the terminal identifier, for example, a SIM card number.
步骤 1003 , 指定通信网元将上述实名制信息查询请求转发给 SIAC;  Step 1003: The designated communication network element forwards the real-name information query request to the SIAC.
步骤 1004, SIAC根据实名制信息查询请求中的 SIM卡号码, 查询用户的实名制信 息, 得到查询结果;  Step 1004: The SIAC searches for the real-name information of the user according to the SIM card number in the real-name information query request, and obtains the query result.
步骤 1005 , SIAC将查询结果发送给指定通信网元, 如果查询成功, 则查询结果即 为相应的实名制信息; 如果查询失败, 则返回查询失败, 并同时返回查询失败的原因, 其中, 查询失败的原因可以为该用户没有查询权限, 或者实名制信息不存在等;  Step 1005: The SIAC sends the query result to the designated communication network element. If the query is successful, the query result is the corresponding real name information; if the query fails, the query fails to be returned, and the reason for the query failure is returned, wherein the query fails. The reason may be that the user does not have the query permission, or the real name information does not exist, etc.;
步骤 1006 , 指定通信网元将查询结果转发给终端;  Step 1006: The designated communication network element forwards the query result to the terminal.
步骤 1007, 终端接收查询结果, 如果查询成功, 则保存实名制信息;  Step 1007: The terminal receives the query result, and if the query is successful, saves the real name information;
步骤 1008, 终端输出查询结果, 向用户显示该结果。 除了查询操作之外, 用户实名制信息的修改也可由用户通过登记了实名制信息的终 端发起。 此时, 应当认为该用户是真实的, 且该用户有权修改自己终端标识所对应的实 名制信息。 该修改操作可以由终端中的应用提供支持, 该应用应当能够引导用户输入所 需信息, 生成实名制信息修改操作请求, 并将该修改操作请求传给网络中的指定通信网 元, 最终到达 SIAC。 该修改应用收到操作结果后, 应当显示该操作结果。 在发送修改 请求后, 终端可以启动修改等待定时器, 如果定时器超时而终端仍未收到操作结果, 则 认为此次请求的操作失败。 注销的过程与上述过程类似, 区别在于请求消息的内容以及 网络侧的处理方式不同。 另外, 实名制信息的查询、 修改以及注销均可以由用户通过终 端发起, 而查询的方法还可以是向特定服务号码发送短消息、 或者拨打特定服务的电话 号码。 In step 1008, the terminal outputs the query result, and displays the result to the user. In addition to the query operation, the modification of the user's real name information can also be initiated by the user through the terminal that has registered the real name information. At this point, the user should be considered to be authentic, and the user has the right to modify the real-name information corresponding to his terminal identifier. The modification operation may be supported by an application in the terminal, and the application should be able to guide the user to input the required information, generate a real name information modification operation request, and transmit the modification operation request to the designated communication network element in the network, and finally reach the SIAC. After the modified application receives the result of the operation, it should display the result of the operation. After the modification request is sent, the terminal may start the modification waiting timer. If the timer expires and the terminal still does not receive the operation result, the operation of the request is considered to have failed. The process of logout is similar to the above process, except that the content of the request message and the processing method on the network side are different. In addition, the query, modification, and logout of the real-name information may be initiated by the user through the terminal, and the method of querying may also be sending a short message to a specific service number or dialing a phone number of a specific service.
此外, 在终端发起实名制信息状态查询的情况下, 同样可以釆用类似于图 10的过 程, 区别在于, 终端发送的请求为实名制信息状态查询请求, 而 SIAC得到的查询结果 为表示用户是否进行了实名制登记的状态信息。  In addition, in the case that the terminal initiates the real-name information status query, a process similar to that of FIG. 10 can also be used. The difference is that the request sent by the terminal is a real-name information status query request, and the query result obtained by the SIAC indicates whether the user has performed. Status information of real-name registration.
图 11是根据本发明实施例的 OMD发起实名制信息查询的处理流程示意图, 如图 11所示, 包括以下步骤:  FIG. 11 is a schematic flowchart of a process for an OMD to initiate a real-name information query according to an embodiment of the present invention. As shown in FIG. 11, the method includes the following steps:
步骤 1101 , OMD录入用户提供的实名制查询信息, 该查询信息为终端标识, 例如, SIM卡号码;  Step 1101: The OMD enters the real-name query information provided by the user, where the query information is a terminal identifier, for example, a SIM card number;
步骤 1102, OMD生成实名制信息查询请求,并将实名制信息查询请求发送给 SIAC; 步骤 1103 , SIAC根据实名制信息查询请求中的 SIM卡号码, 查询用户的实名制信 息, 得到查询结果;  Step 1102: The OMD generates a real-name information query request, and sends a real-name information query request to the SIAC. Step 1103: The SIAC queries the real-name information of the user according to the SIM card number in the real-name information query, and obtains the query result.
步骤 1104, SIAC将查询结果发送给 OMD, 如果查询成功, 则将查询结果置为相 应的实名制信息; 如果查询失败, 则返回查询失败, 并同时返回查询失败的原因, 其中, 查询失败的原因可以为该用户没有查询权限, 或者实名制信息不存在等;  Step 1104: The SIAC sends the query result to the OMD. If the query is successful, the query result is set to the corresponding real name information; if the query fails, the query fails to be returned, and the reason for the query failure is returned, wherein the reason for the query failure may be There is no query permission for the user, or the real name information does not exist, etc.;
步骤 1105 , OMD输出查询结果, 向用户显示该结果。  In step 1105, the OMD outputs the query result and displays the result to the user.
此外, 在 OMD发起实名制信息状态查询的情况下, 同样可以釆用类似于图 11 的 过程, 区别在于, OMD发送的请求为实名制信息状态查询请求, 而 SIAC得到的查询 结果为表示用户是否进行了实名制登记的状态信息。  In addition, in the case that the OMD initiates the real-name information status query, a process similar to that of FIG. 11 can also be used. The difference is that the request sent by the OMD is a real-name information status query request, and the result obtained by the SIAC is whether the user has performed. Status information of real-name registration.
用户可以在 OMD上执行实名制信息的修改或注销, 也可以在终端上执行实名制信 息的修改或注销, 由于修改和注销的过程较为类似, 在下面的描述中, 将参照图 12和 图 13对修改流程和注销流程进行组合说明。 图 12是根据本发明实施例的终端发起实名制信息修改或注销的处理流程示意图, 如图 12所示, 包括以下步骤: The user can perform modification or cancellation of the real name information on the OMD, and can also perform modification or cancellation of the real name information on the terminal. Since the process of modification and cancellation is similar, in the following description, the modification will be performed with reference to FIG. 12 and FIG. The process and the logout process are combined. FIG. 12 is a schematic flowchart of a process for modifying or deregistering real-name information by a terminal according to an embodiment of the present invention. As shown in FIG. 12, the method includes the following steps:
步骤 1201 ,用户选择并启动终端中修改或注销实名制信息的功能,终端响应用户的 选择, 生成实名制信息修改或注销请求;  Step 1201: The user selects and starts a function of modifying or deregistering the real name information in the terminal, and the terminal responds to the user's selection to generate a real name information modification or cancellation request;
步骤 1202,终端向运营网中的指定通信网元发送实名制信息修改或注销请求,该修 改或注销请求中携带有终端标识 (对于修改操作, 请求中还应包括新的实名制信息), 例如, SIM卡号码;  Step 1202: The terminal sends a real-name information modification or cancellation request to the designated communication network element in the operation network, where the modification or cancellation request carries the terminal identifier (for the modification operation, the request should also include new real-name information), for example, SIM Card number
步骤 1203 , 指定通信网元将上述实名制信息修改或注销请求转发给 SIAC;  Step 1203, the designated communication network element forwards the real name system information modification or cancellation request to the SIAC;
步骤 1204, SIAC根据实名制信息修改或注销请求中的终端标识(对于修改操作 , 还有新的实名制信息)等, 修改或注销用户的实名制信息, 得到修改结果或注销结果; 步骤 1205 , SIAC将修改结果或注销结果发送给指定通信网元, 如果修改或注销成 功, 则返回修改后的实名制信息或注销成功; 如果修改或注销失败, 则返回修改或注销 失败, 并同时返回修改或注销失败的原因, 其中, 修改或注销失败的原因可以为该用户 没有修改或注销权限,或者实名制信息不存在,或者修改等待定时器 /注销等待定时器超 时时未收到操作结果等;  In step 1204, the SIAC modifies or deregisters the terminal identifier in the request according to the real name information (for the modification operation, there is also a new real name information), and modifies or deregisters the real name information of the user, and obtains the modified result or the logout result; Step 1205, the SIAC will modify The result or the logout result is sent to the specified communication network element. If the modification or logout is successful, the modified real name information is returned or the logout is successful. If the modification or logout fails, the modification or logout failure is returned, and the reason for the modification or logout failure is also returned. The reason for the modification or cancellation failure may be that the user has no modification or logout permission, or the real name information does not exist, or the operation wait result is not received when the wait timer/logout wait timer expires;
步骤 1206, 指定通信网元将修改结果或注销结果转发给终端;  Step 1206: The designated communication network element forwards the modification result or the logout result to the terminal.
步骤 1207, 终端接收修改结果或注销结果, 如果修改成功, 则保存修改后的实名制 信息, 如果注销成功, 则删除终端保存的实名制信息;  Step 1207: The terminal receives the modification result or the logout result. If the modification succeeds, the modified real name system information is saved, and if the logout is successful, the real name system information saved by the terminal is deleted;
步骤 1208, 终端输出修改结果或注销结果, 并向用户显示该结果。  Step 1208: The terminal outputs the modification result or the logout result, and displays the result to the user.
图 13是根据本发明实施例的 OMD发起实名制信息修改或注销的处理流程示意图, 如图 13所示, 包括以下步骤:  FIG. 13 is a schematic flowchart of a process for modifying or deregistering real-name information by an OMD according to an embodiment of the present invention. As shown in FIG. 13, the method includes the following steps:
步骤 1301 , OMD录入用户提供的实名制修改或注销信息, 该修改或注销信息为终 端标识(对于修改操作, 还包含新的实名制信息), 例如, SIM卡号码(如用户的手机 号码);  Step 1301, the OMD enters the real name modification or cancellation information provided by the user, and the modification or cancellation information is a terminal identifier (for the modification operation, the new real name information is also included), for example, a SIM card number (such as a user's mobile phone number);
步骤 1302, OMD生成实名制信息修改或注销请求, 并将实名制信息修改或注销请 求发送给 SIAC;  Step 1302, the OMD generates a real name system information modification or cancellation request, and sends the real name system information modification or cancellation request to the SIAC;
步骤 1303 , SIAC根据实名制信息修改或注销请求中的终端标识(对于修改操作, 还包含新的实名制信息)等,修改或注销用户的实名制信息,得到修改结果或注销结果; 步骤 1304, SIAC将修改结果或注销结果发送给 OMD, 如果修改或注销成功, 则 返回修改后的实名制信息或注销成功; 如果修改或注销失败, 则返回修改或注销失败, 并同时返回修改或注销失败的原因, 其中, 修改或注销失败的原因可以为该用户没有修 改或注销权限, 或者实名制信息不存在等; Step 1303: The SIAC modifies or deregisters the terminal identifier in the request according to the real name information (including the new real name information for the modification operation), and modifies or cancels the real name information of the user, and obtains the modified result or the logout result; Step 1304, the SIAC will modify The result or the logout result is sent to the OMD. If the modification or logout is successful, the modified real name information is returned or the logout is successful; if the modification or logout fails, the modification or logout failure is returned. At the same time, the reason for the modification or cancellation failure is returned. The reason for the modification or cancellation failure may be that the user has no modification or cancellation permission, or the real name information does not exist;
步骤 1305 , OMD输出修改或注销结果, 向用户显示该结果。  In step 1305, the OMD outputs a modification or logout result, and displays the result to the user.
此外,对于用户实名制信息状态的查询的过程,通常,该过程一般会由 HLR或 VLR 发起, 并由用户的位置更新流程触发。在终端进行位置更新时, VLR会向该终端用户的 HLR询问用户实名制信息。 HLR此时建立并向 SIAC发送实名制信息状态查询请求。收 到成功的操作结果后, 将用户实名制状态返回给 VLR。 超时没收到操作结果, 或收到失 败的操作结果, 均认为处理失败。  In addition, for the process of querying the user's real name information status, usually, the process is generally initiated by the HLR or VLR and triggered by the user's location update process. When the terminal performs location update, the VLR will query the HLR of the terminal user for the real name information of the user. The HLR then establishes and sends a real name information status query request to the SIAC. After receiving the successful operation result, the user real name status is returned to the VLR. If the timeout does not receive the result of the operation, or if the result of the failed operation is received, the processing is considered to have failed.
因此, 通过图 10和图 11所示的处理可以看出, 在发起用户实名制信息的查询、 修 改等操作时, 不论发起方是终端或 OMD, 只要用户拥有进行相应操作的权限, 在网络 侧都应该有相应的处理, 并且最终都需要有 SIAC参与到处理过程中。  Therefore, it can be seen from the processing shown in FIG. 10 and FIG. 11 that when initiating the operation of querying, modifying, etc. of the real name information of the user, regardless of whether the initiator is a terminal or an OMD, as long as the user has the right to perform the corresponding operation, on the network side There should be corresponding processing, and eventually SIAC needs to be involved in the process.
图 14是才 居本发明实施例的终端的结构示意图, 如图 14所示, 该终端包括: 存储模块 141 , 用于存储终端的实名制信息;  FIG. 14 is a schematic structural diagram of a terminal in the embodiment of the present invention. As shown in FIG. 14, the terminal includes: a storage module 141, configured to store real-name information of the terminal;
请求模块 142,连接至存储模块 141 ,用于向存储了终端的实名制信息的 SIAC发送 操作请求, 并用于根据用户的指示将来自 SIAC的实名制信息存储在存储模块 141中, 其中, 操作请求用于请求对 SIAC存储的终端的实名制信息进行查询和 /或修改操作; 判断模块 143 , 连接至存储模块 141 , 用于判断存储模块中是否存储了终端的实名 制信息, 并在判断为否的情况对终端上的部分或全部业务的使用进行限制。  The requesting module 142 is connected to the storage module 141, configured to send an operation request to the SIAC storing the real name information of the terminal, and configured to store the real name information from the SIAC in the storage module 141 according to the user's instruction, where the operation request is used for Requesting to query and/or modify the real name information of the terminal stored by the SIAC; the determining module 143 is connected to the storage module 141, and is configured to determine whether the real name information of the terminal is stored in the storage module, and the terminal is determined to be no. There are restrictions on the use of some or all of the business.
其中, 对业务的限制可以包括: 限制一定时间段内终端通话的时间、 限制一定时间 段内终端发送短消息的数量、 也可以直接禁止终端的通话和短消息传输。  The limitation on the service may include: limiting the time of the terminal call in a certain period of time, limiting the number of short messages sent by the terminal in a certain period of time, and directly prohibiting the call and short message transmission of the terminal.
通过该终端, 能够配合实名制管理的实现系统, 进一步提高管理的强度, 保证了实 名制的有效实施, 并且, 使得用户在终端侧就能够进行实名制信息的管理, 方便了用户 的应用。  Through the terminal, the implementation system of the real-name system management can be further improved, the management strength can be further improved, the effective implementation of the real-name system can be ensured, and the user can manage the real-name information on the terminal side, which is convenient for the user's application.
综上所述, 借助于本发明的上述技术方案, 能够有效阻止用户特征信息不合法的用 户进行实名制登记, 能够准确确定每个终端的用户详细信息, 便于对终端进行高度管理 和监控, 便于追查终端传输非法、 不良内容, 从而有助于净化网络环境; 并且, 为电子 支付等需要严格基于终端用作身份验证的应用提供了可靠的基础。  In summary, the above technical solution of the present invention can effectively prevent users whose user feature information is illegal from registering by real name system, and can accurately determine the detailed information of the user of each terminal, thereby facilitating high-level management and monitoring of the terminal, and facilitating tracing. The terminal transmits illegal and bad content, which helps to purify the network environment; and provides a reliable basis for electronic payment and other applications that need to be strictly based on the terminal for authentication.
以上所述仅为本发明的较佳实施例而已, 并不用以限制本发明, 凡在本发明的精神 和原则之内, 所作的任何修改、等同替换、 改进等, 均应包含在本发明的保护范围之内。  The above description is only the preferred embodiment of the present invention, and is not intended to limit the present invention. Any modifications, equivalent substitutions, improvements, etc., which are included in the spirit and scope of the present invention, should be included in the present invention. Within the scope of protection.

Claims

权利要求书 Claim
1. 一种实名制管理的实现系统, 其特征在于, 包括:  1. An implementation system for real-name management, characterized in that it comprises:
操作管理平台 OMD, 用于获取用户提供的用户特征信息, 将获取的所述用户特征 信息发送至认证中心, 并接收来自所述认证中心的认证结果, 其中, 所述认证结果用于 表示所述认证中心中预先保存的用户特征信息与所述 OMD发送的所述用户特征信息是 否一致, 如果一致, 则读取所述用户的终端标识, 并将所述用户特征信息与所述终端标 识相绑定并发送;  An operation management platform OMD, configured to acquire user characteristic information provided by the user, send the obtained user characteristic information to the authentication center, and receive an authentication result from the authentication center, where the authentication result is used to indicate the Whether the user feature information pre-stored in the authentication center is consistent with the user feature information sent by the OMD, and if they are consistent, the terminal identifier of the user is read, and the user feature information is tied to the terminal identifier. Set and send;
用户信息鉴别中心 SIAC, 用于接收相绑定的所述用户特征信息与所述终端标识, 并将绑定的所述用户特征信息与所述终端标识作为所述用户的实名制信息保存, 其中, 所述实名制信息用于鉴别所述终端是否进行了实名制登记。  The user information authentication center (SIAC) is configured to receive the user feature information and the terminal identifier that are bound, and save the bound user feature information and the terminal identifier as the real name information of the user, where The real name information is used to identify whether the terminal has performed real name registration.
2. 根据权利要求 1所述的实现系统, 其特征在于,  2. The implementation system of claim 1 wherein:
所述 SIAC还用于根据请求, 对所述实名制信息进行注销、 修改、 和 /或查询。 The SIAC is further configured to log off, modify, and/or query the real name information according to the request.
3. 根据权利要求 2 所述的实现系统, 其特征在于, 所述请求来自于终端或所述 OMD。 3. The implementation system according to claim 2, wherein the request is from a terminal or the OMD.
4. 根据权利要求 3所述的实现系统, 其特征在于, 如果所述请求来自于终端, 则由 指定通信网元将所述请求转发给所述 SIAC。  4. The implementation system of claim 3, wherein if the request is from a terminal, the request is forwarded by the designated communication network element to the SIAC.
5. 根据权利要求 4所述的实现系统, 其特征在于, 所述 SIAC还用于将用户是否已 经进行实名制登记通知给所述指定通信网元。  The implementation system according to claim 4, wherein the SIAC is further configured to notify the designated communication network element whether the user has performed real-name registration.
6. 根据权利要求 4所述的实现系统,其特征在于,所述指定通信网元包括以下之一: 移动交换中心 MSC、 拜访位置寄存器 VLR、 归属位置寄存器 HLR。  The implementation system according to claim 4, wherein the designated communication network element comprises one of the following: a mobile switching center MSC, a visitor location register VLR, and a home location register HLR.
7. 根据权利要求 1至 6任一所述的实现系统, 其特征在于, 所述系统还包括: 短消息监控中心 SMMC,用于接收终端经短消息中心发送的短消息, 并对所述短消 息进行合法性验证, 在所述短消息通过合法性验证的情况下, 允许所述短消息中心继续 发送所述短消息。  The implementation system according to any one of claims 1 to 6, wherein the system further comprises: a short message monitoring center SMMC, configured to receive a short message sent by the terminal via the short message center, and the short message The message is verified for legality, and in the case that the short message passes the validity verification, the short message center is allowed to continue to send the short message.
8. 根据权利要求 7所述的实现系统, 其特征在于, 所述系统还包括:  The implementation system of claim 7, wherein the system further comprises:
网络管理中心 NMC, 用于监控所述 OMD、 所述 SIAC、 以及所述 SMMC的运行状 态。  The network management center NMC is configured to monitor the running status of the OMD, the SIAC, and the SMMC.
9. 根据权利要求 1至 6任一所述的实现系统, 其特征在于,  9. An implementation system according to any one of claims 1 to 6, characterized in that
所述用户特征信息包括: 用户的身份信息、 或者用户身份特征标识、 或者以上二者 的组合; 和 /或, The user feature information includes: a user identity information, or a user identity feature identifier, or both Combination; and/or,
所述终端标识包括以下之一: 终端号码。  The terminal identifier includes one of the following: a terminal number.
10. 一种终端, 其特征在于, 包括:  10. A terminal, comprising:
存储模块, 用于存储所述终端的实名制信息;  a storage module, configured to store real-name information of the terminal;
请求模块, 用于向存储了所述终端的实名制信息的 SIAC发送操作请求, 并用于根 据用户的指示将来自所述 SIAC的实名制信息存储在所述存储模块中, 其中, 所述操作 请求用于请求对所述 SIAC存储的所述终端的实名制信息进行查询和 /或修改操作; 判断模块, 用于判断所述存储模块中是否存储了所述终端的实名制信息, 并在判断 为否的情况对所述终端上的部分或全部业务的使用进行限制。  a requesting module, configured to send an operation request to the SIAC that stores the real name information of the terminal, and configured to store the real name information from the SIAC in the storage module according to an instruction of the user, where the operation request is used for And requesting to query and/or modify the real-name information of the terminal that is stored by the SIAC; the determining module is configured to determine whether the real-name information of the terminal is stored in the storage module, and if the determination is negative, The use of some or all of the services on the terminal is limited.
11. 一种实名制管理的实现方法, 其特征在于, 包括:  11. A method for realizing real name management, characterized in that it comprises:
OMD获取用户提供的用户特征信息, 并将所述用户特征信息发送给认证中心, 并 接收来自所述认证中心的认证结果, 其中, 所述认证结果用于表示所述认证中心中预先 保存的用户特征信息与所述 OMD发送的所述用户特征信息是否一致, 如果一致, 则所 述 OMD读取所述用户的终端标识, 并将所述用户特征信息与所述终端标识相绑定; SIAC 将绑定的所述用户特征信息与所述终端标识作为所述用户的实名制信息保 存, 其中, 所述实名制信息用于鉴别所述终端是否进行了实名制登记。  The OMD obtains user characteristic information provided by the user, and sends the user characteristic information to the authentication center, and receives an authentication result from the authentication center, where the authentication result is used to indicate a user pre-saved in the authentication center. Whether the feature information is consistent with the user feature information sent by the OMD, and if they are consistent, the OMD reads the terminal identifier of the user, and binds the user feature information to the terminal identifier; The bound user feature information and the terminal identifier are saved as the real name information of the user, wherein the real name information is used to identify whether the terminal performs real name registration.
12. 根据权利要求 11所述的实现方法, 其特征在于, 所述方法还包括:  The method according to claim 11, wherein the method further comprises:
SIAC根据请求, 对所述实名制信息进行注销、 修改、 和 /或查询。  The SIAC cancels, modifies, and/or queries the real name information upon request.
13. 根据权利要求 12 所述的实现方法, 其特征在于, 所述请求来自于终端或所述 OMD。  The implementation method according to claim 12, wherein the request is from a terminal or the OMD.
14. 根据权利要求 13所述的实现方法, 其特征在于, 如果所述请求来自于终端, 则 由指定通信网元将所述请求转发给所述 SIAC。  14. The implementation method according to claim 13, wherein if the request is from a terminal, the request is forwarded by the designated communication network element to the SIAC.
15. 根据权利要求 14所述的实现方法, 其特征在于, 所述方法还包括: SIAC将用 户是否已经进行实名制登记通知给所述指定通信网元。  The method according to claim 14, wherein the method further comprises: the SIAC notifying the user of the real name registration to the designated communication network element.
16. 根据权利要求 11至 15任一所述的实现方法, 其特征在于,  16. The method according to any one of claims 11 to 15, characterized in that
所述用户特征信息包括: 用户的身份信息、 或者用户身份特征标识、 或者以上二者 的组合; 和 /或,  The user feature information includes: a user identity information, or a user identity feature identifier, or a combination of the two; and/or,
所述终端标识包括以下之一: 终端号码。  The terminal identifier includes one of the following: a terminal number.
PCT/CN2011/071498 2010-06-07 2011-03-03 System, method and terminal for implementing real-name system management WO2011153850A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN2010102023974A CN101909277A (en) 2010-06-07 2010-06-07 System and method for realizing real-name management and terminals
CN201010202397.4 2010-06-07

Publications (1)

Publication Number Publication Date
WO2011153850A1 true WO2011153850A1 (en) 2011-12-15

Family

ID=43264565

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2011/071498 WO2011153850A1 (en) 2010-06-07 2011-03-03 System, method and terminal for implementing real-name system management

Country Status (2)

Country Link
CN (1) CN101909277A (en)
WO (1) WO2011153850A1 (en)

Families Citing this family (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101867918B (en) 2010-06-04 2015-06-03 中兴通讯股份有限公司 Real-name system registration state acquiring method, device and terminal
CN101909277A (en) * 2010-06-07 2010-12-08 中兴通讯股份有限公司 System and method for realizing real-name management and terminals
CN102638775A (en) * 2011-02-11 2012-08-15 上海闻泰电子科技有限公司 Method for realizing mobile phone identification policy
CN102149170A (en) * 2011-04-11 2011-08-10 宇龙计算机通信科技(深圳)有限公司 Network access method and device for wireless communication device
CN102271041B (en) * 2011-07-30 2013-08-14 杨勇 Root service system for personal identity authentication
CN102547705B (en) * 2011-12-31 2014-08-27 陈飞 System for carrying out real-name system communication by combining with multiple kinds of continuity identifying information
CN103533532B (en) * 2013-09-27 2016-08-17 武汉世纪金桥安全技术有限公司 Electronic characteristic interconnected system based on time-domain analysis and correlating method
CN105550205A (en) * 2015-11-30 2016-05-04 东莞酷派软件技术有限公司 Contact information processing method and device
CN105915551B (en) * 2016-06-22 2019-09-20 武汉青禾科技有限公司 A kind of system of real name verification method and communication operator's system of real name verification method based on mobile terminal bottom
CN108322430B (en) * 2017-03-02 2020-08-28 黄策 Anonymous real name authentication method
CN109906452B (en) * 2017-06-30 2022-06-14 深圳市汇顶科技股份有限公司 Authentication method, authentication equipment and authentication system
CN108234130A (en) * 2017-12-04 2018-06-29 阿里巴巴集团控股有限公司 Auth method and device and electronic equipment

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20030079431A (en) * 2002-04-04 2003-10-10 김상철 Lotto Numbering and Subscription Method of Mass Printed Material having Advertisement Function
CN1929378A (en) * 2006-08-02 2007-03-14 大连志浩科技开发有限公司 On-line real name identification method and system
CN101034983A (en) * 2006-12-31 2007-09-12 深圳市中科新业信息科技发展有限公司 System and method for realizing on-Internet true name of the network access user
CN101426009A (en) * 2007-10-31 2009-05-06 中国移动通信集团公司 Identity management platform, service server, uniform login system and method
CN101909277A (en) * 2010-06-07 2010-12-08 中兴通讯股份有限公司 System and method for realizing real-name management and terminals

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101166320B (en) * 2006-10-19 2010-05-12 中兴通讯股份有限公司 A mobile phone and method for realizing mobile phone true name system based on RF recognition technology

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20030079431A (en) * 2002-04-04 2003-10-10 김상철 Lotto Numbering and Subscription Method of Mass Printed Material having Advertisement Function
CN1929378A (en) * 2006-08-02 2007-03-14 大连志浩科技开发有限公司 On-line real name identification method and system
CN101034983A (en) * 2006-12-31 2007-09-12 深圳市中科新业信息科技发展有限公司 System and method for realizing on-Internet true name of the network access user
CN101426009A (en) * 2007-10-31 2009-05-06 中国移动通信集团公司 Identity management platform, service server, uniform login system and method
CN101909277A (en) * 2010-06-07 2010-12-08 中兴通讯股份有限公司 System and method for realizing real-name management and terminals

Also Published As

Publication number Publication date
CN101909277A (en) 2010-12-08

Similar Documents

Publication Publication Date Title
WO2011153850A1 (en) System, method and terminal for implementing real-name system management
US9426644B2 (en) Method for activating soft SIM card, method for soft SIM card to join network, terminal and network access device
RU2418387C2 (en) Method to disable mobile device
US9198038B2 (en) Apparatus and methods of identity management in a multi-network system
EP2466759B1 (en) Method and system for changing a selected home operator of a machine to machine equipment
EP3162104B1 (en) A method to authenticate calls in a telecommunication system
CN104254069B (en) Network registry system and method without SIM card mobile phone
KR20080066956A (en) Remote activation of a user account in a telecommunication network
CN102326422A (en) Non-validated emergency calls for all-ip 3gpp ims networks
CN109561429B (en) Authentication method and device
CN105828413A (en) Safety method of D2D mode B discovery, terminal and system
WO2014183260A1 (en) Method, device and system for processing data service under roaming scenario
CN111885585A (en) Communication service opening method and communication device
CN111163467B (en) Method for 5G user terminal to access 5G network, user terminal equipment and medium
WO2010124579A1 (en) Method and system for terminal protection
US10291613B1 (en) Mobile device authentication
WO2013185709A1 (en) Call authentication method, device, and system
CN113498060B (en) Method, device, equipment and storage medium for controlling network slice authentication
CN112672336B (en) Method, communication device and communication system for realizing external authentication
CN113329403B (en) One-number multi-terminal authentication network access method and system
WO2011029296A1 (en) System and method for providing machine-to-machine equipment with machine communication identity module
CN109428870B (en) Network attack processing method, device and system based on Internet of things
CN111669750B (en) PDU session secondary verification method and device
WO2011029308A1 (en) Method for altering selected home operator of machine-to-machine equipment and system thereof
KR101678472B1 (en) Method and apparatus for managing access to private network, mobile terminal and method for accessing private network thereby

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11791842

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11791842

Country of ref document: EP

Kind code of ref document: A1