WO2015180427A1 - Method and apparatus for processing user data - Google Patents

Method and apparatus for processing user data Download PDF

Info

Publication number
WO2015180427A1
WO2015180427A1 PCT/CN2014/091678 CN2014091678W WO2015180427A1 WO 2015180427 A1 WO2015180427 A1 WO 2015180427A1 CN 2014091678 W CN2014091678 W CN 2014091678W WO 2015180427 A1 WO2015180427 A1 WO 2015180427A1
Authority
WO
WIPO (PCT)
Prior art keywords
privacy
user data
negotiation
service application
protection policy
Prior art date
Application number
PCT/CN2014/091678
Other languages
French (fr)
Chinese (zh)
Inventor
和诚凯
孔涛
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2015180427A1 publication Critical patent/WO2015180427A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols

Definitions

  • the embodiments of the present invention relate to communication technologies, and in particular, to a method and an apparatus for processing user data.
  • MBB Mobile Broadband
  • wireless information open systems certain data, such as some data related to user privacy, need to be protected.
  • existing wireless information open systems lack technology to protect these data, resulting in low security of these data. .
  • Embodiments of the present invention provide a method and apparatus for processing user data to improve data security.
  • an embodiment of the present invention provides a user data processing apparatus, including:
  • a receiving unit configured to receive a wireless information acquisition request sent by the network element device, where the wireless information acquisition request is used to request to acquire user data corresponding to the service application;
  • a policy determining unit configured to determine, according to the service application, a correspondence between the service application and the privacy protection policy, a privacy protection policy corresponding to the service application;
  • a privacy processing unit configured to perform the privacy processing on the user data according to the privacy protection policy when the privacy protection policy is used to indicate privacy processing.
  • the privacy processing unit includes:
  • a negotiation result obtaining unit configured to: when the privacy protection policy is used to indicate that the privacy negotiation is performed, perform the privacy negotiation according to the user equipment corresponding to the user data according to the privacy protection policy to obtain a privacy negotiation result;
  • a negotiation result processing unit configured to provide the user data to the service application when the privacy negotiation result is used to indicate that the user data is opened to the service application; or when the privacy negotiation result is used to indicate When the user data is not opened to the service application, the indication information is sent to the network element device, and the indication information is used to indicate that the user data cannot be obtained.
  • the negotiation result obtaining unit is further configured to: when the privacy protection policy is used to indicate that the pre-stored privacy negotiation result is adopted, according to the privacy The protection policy directly obtains the pre-existing privacy negotiation result;
  • the negotiation result processing unit is configured to: when the privacy negotiation result is used to indicate that the user data is opened to the service application, provide the user data to the service application; or, when the privacy negotiation result is used When the user data is not opened to the service application, the indication information is sent to the network element device, where the indication information is used to indicate that the user data cannot be obtained.
  • the privacy processing unit is further used to
  • the privacy protection policy is used to indicate that the user data is provided to the service application when privacy processing is not performed.
  • an embodiment of the present invention provides a method for processing user data, including:
  • the user data processing device receives a wireless information acquisition request sent by the network element device, where the wireless information acquisition request is used to request to acquire user data corresponding to the service application;
  • the user data processing apparatus When the privacy protection policy is used to indicate privacy processing, the user data processing apparatus performs the privacy processing on the user data according to the privacy protection policy.
  • the privacy protection policy is used to indicate that the privacy process is performed: the privacy protection policy is used to indicate that the privacy negotiation is performed;
  • the user data processing apparatus performs the privacy processing on the user data according to the privacy protection policy, including:
  • the user data processing apparatus performs the privacy negotiation according to the user equipment corresponding to the user data according to the privacy protection policy to obtain a privacy negotiation result;
  • the user data processing apparatus sends the indication information to the network element device, where the indication information is used to indicate that the user cannot be obtained. data.
  • the privacy protection policy is used to indicate that the privacy process is performed: the privacy protection policy is used to indicate that the pre-stored privacy negotiation result is used;
  • the user data processing apparatus performs the privacy processing on the user data according to the privacy protection policy, including:
  • the user data processing device directly obtains a pre-stored privacy negotiation result according to the privacy protection policy
  • the user data processing apparatus When the privacy negotiation result is used to indicate that the user data is opened to the service application, the user data processing apparatus provides the user data to the service application; or
  • the user data processing apparatus sends the indication information to the network element device, where the indication information is used to indicate that the user cannot be obtained. data.
  • the first possible implementation of the first to the second aspect, the third possible implementation of the second aspect, further includes:
  • the user data processing apparatus provides the user data to the business application when the privacy protection policy is used to indicate that privacy processing is not performed.
  • the method and device for processing user data determine the privacy protection policy corresponding to different service applications, and perform privacy processing on the user data according to the privacy protection policy, and improve the user data while reasonably opening the user data. safety.
  • FIG. 1 is a flowchart of a method for processing user data according to an embodiment of the present invention
  • FIG. 2 is a schematic structural diagram of a system for user data processing according to an embodiment of the present invention.
  • FIG. 3 is a signaling flowchart of a privacy configuration method according to an embodiment of the present invention.
  • FIG. 4 is a signaling flowchart of a privacy negotiation method according to an embodiment of the present invention.
  • FIG. 5 is a signaling flowchart of another privacy negotiation according to an embodiment of the present invention.
  • FIG. 6 is a signaling flowchart of still another privacy negotiation according to an embodiment of the present invention.
  • FIG. 7 is a flowchart of another method for processing user data according to an embodiment of the present invention.
  • FIG. 8 is a flowchart of still another method for processing user data according to an embodiment of the present invention.
  • FIG. 9 is a flowchart of still another method for processing user data according to an embodiment of the present invention.
  • FIG. 10 is a schematic structural diagram of a user data processing apparatus according to an embodiment of the present disclosure.
  • FIG. 11 is a schematic structural diagram of another user data processing apparatus according to an embodiment of the present disclosure.
  • FIG. 12 is a schematic structural diagram of a user data processing device according to an embodiment of the present disclosure.
  • FIG. 13 is a schematic structural diagram of another user data processing device according to an embodiment of the present invention.
  • FIG. 1 is a flowchart of a method for processing user data according to an embodiment of the present invention. As shown in FIG. 1 , the method includes:
  • Step 101 The user data processing apparatus receives a wireless information acquisition request sent by the network element device, where the wireless information acquisition request is used to request to acquire user data corresponding to the service application.
  • the execution entity of the method is a user data processing device, and the device can be integrated with a data warehouse, a core network device, or a network element having user data collection and analysis functions, or can be used as an independent network element device.
  • the network element device in the method may be an application server that is installed inside the wireless communication network, or an application server that is installed in the Internet or an enterprise network, or may be a core network element in the wireless communication network.
  • the business application may be an application that needs to use user data, such as a disaster warning application, a traffic planning application, a precision marketing application, and the like. Among them, no The same business application has different requirements for user data.
  • the disaster warning application is to request the attribute information of the user list around the accident site to facilitate the disaster warning to these users;
  • the traffic planning application requests the acquisition of the population attribute statistics and analysis results.
  • the attribute information of the traffic planning information is convenient for traffic planning;
  • the precision marketing application requests to obtain wireless information such as personal location information and wireless signal receiving quality for marketing analysis.
  • the wireless information acquisition request may include an identifier of the service application, and the identifier of the service application may identify a service application requesting user data.
  • Step 102 The user data processing apparatus determines, according to the service application, a correspondence between the service application and the privacy protection policy, a privacy protection policy corresponding to the service application.
  • the correspondence between the service application and the privacy protection policy may be saved on the user data processing device, or may be stored on other network elements.
  • a correspondence relationship table may be set, where the identifier of the service application and the identifier of the privacy protection policy corresponding to the service application are stored.
  • the privacy protection policies can be divided into two categories, one is a policy that requires privacy processing, and the other is a policy that does not require privacy processing.
  • the policy that requires privacy processing may be a policy indicating privacy processing through privacy negotiation, or a policy indicating privacy processing using pre-stored privacy negotiation results.
  • the privacy negotiation result is used to indicate whether the user data is open to the service application; the privacy negotiation may be a negotiation between the user data processing device and the user equipment, or may be a negotiation between the user data processing device, the user equipment, and other network elements.
  • the privacy negotiation result can be obtained through privacy negotiation.
  • different service applications can correspond to different privacy protection policies.
  • a privacy protection policy that does not require privacy processing may be set;
  • a traffic planning application since the business application belongs to a public interest-based mass analysis application, the default may be All user equipments (User Equipments, hereinafter referred to as UEs) accept the data collection of the service application, and consider giving the UE the right to choose whether to provide user data. Therefore, the user's opinion can be consulted in advance, for example, when the user signs the contract, that is, in advance Conduct privacy negotiation and save the privacy negotiation result.
  • UEs User Equipments
  • the traffic planning application When the traffic planning application needs to request user data, it can directly judge whether to provide user data according to the pre-stored privacy negotiation result.
  • the traffic planning application setting indication can be used to pre-store privacy negotiation.
  • the result of the privacy protection strategy for the precision marketing application, since the business application is a commercial application, it may consider giving the user the right to select each time the user data is requested, that is, each time the user data is requested, the user equipment is required to be hidden Negotiations to obtain privacy consultations, privacy and judged according to whether the results obtained provide consultations
  • User data in view of this, can set a privacy protection policy for privacy negotiation to indicate privacy negotiation.
  • Step 103 When the privacy protection policy is used to indicate privacy processing, the user data processing apparatus performs the privacy processing on the user data according to the privacy protection policy.
  • the user data processing device may initiate privacy negotiation with the user equipment according to the privacy protection policy, obtain privacy negotiation result through privacy negotiation, and perform user data according to the privacy negotiation result.
  • the user data processing apparatus may obtain the pre-stored privacy negotiation result according to the privacy protection policy, and process the user data according to the pre-stored privacy negotiation result.
  • the user data processing apparatus may directly provide user data to the service application.
  • the user data processing method shown in FIG. 1 determines the privacy protection policy corresponding to different service applications, and performs privacy processing on the user data according to the privacy protection policy, thereby improving user data security while reasonably opening user data. Sex.
  • an embodiment of the present invention provides a system for user data processing. It should be understood by those skilled in the art that the system shown in FIG. 2 is an example and does not constitute a limitation on the application scenario of the method shown in FIG. 1.
  • the system includes: a data analysis open device 11, a privacy negotiation server 12, a UE 13, an application server 14, a configuration and management device 15, and a wireless network device 16.
  • the data analysis open device 11 is a network element device having an analysis of user data and externally outputting user data or user data analysis results, and the function of the user data processing device in the method of FIG. 1 is integrated on the device.
  • the apparatus may include: a receiving unit, a policy determining unit, and a negotiation result processing unit.
  • a receiving unit configured to receive a wireless information acquiring request sent by the network element device, where the wireless information obtaining request is used to request to obtain user data corresponding to the service application, and the policy determining unit is configured to use, according to the service application, the service application Corresponding relationship with the privacy protection policy determines a privacy protection policy corresponding to the service application;
  • the negotiation result processing unit is configured to: when the privacy protection policy is used to indicate privacy processing, the user data according to the privacy protection policy Perform the privacy process. Further, the negotiation result processing unit is further configured to: when the privacy protection policy is used to indicate that privacy processing is not performed, The business application provides the user data.
  • the privacy negotiation server 12 may be an operator's portal (Web Portal) website, or may be an operator's short message center or the like.
  • the main function is to forward the privacy negotiation request sent by the data analysis open device 11 to the UE, and then select whether the user selects the open user data for the privacy negotiation request, and notifies the data analysis open device 11 of the result of the user selection. .
  • the privacy negotiation server 12 may further send a privacy negotiation request to the single UE according to the prompt of the data analysis open device 11, for example, the user makes a selection for agreeing that the service application uses its own data for a certain privacy negotiation request, but the The use of the data is time-limited, so when the usage period of the user data is fast, the data analysis open device 11 prompts the privacy negotiation server 12 to transmit the privacy negotiation request to the UE again.
  • the function of the privacy negotiation server 12 may also be integrated in the data analysis open device 11 as a functional unit of the data analysis open device 11.
  • the UE 13 can be a mobile device such as a mobile phone or a tablet.
  • the UE 13 may include a privacy negotiation module and a privacy selection module, wherein the privacy negotiation module is responsible for interacting with the privacy negotiation server 12, receiving the privacy negotiation request sent by the privacy negotiation server 12, and feeding back the negotiation result to the privacy negotiation server according to the user's selection.
  • the privacy negotiation request may include: information about the purpose, time, location, and the like of the data application, so that the user may be prompted to agree to user data collection, data analysis, and data opening through the wireless network device.
  • the function of the privacy selection module is responsible for providing the user with a selectable human-computer interaction interface, which allows the user to select whether to open his or her own data through the mobile phone software or on the operator's Web Portal webpage, that is, the user inputs his/her own user identification, such as the user's media.
  • Access Control Media Access Control, MAC address
  • IMSI International Mobile Subscriber Identification Number
  • the application server 14 is responsible for supporting various service applications in a network such as a wireless communication network, an Internet, and an enterprise network.
  • the service application may be an application that needs to use user data, such as a disaster warning application, a traffic planning application, a precision marketing application, and the like.
  • the application server 14 sends a wireless information acquisition request to the data analysis open system 11 for requesting acquisition of user data corresponding to the business application.
  • the configuration and management device 15 is used to manage privacy configuration information.
  • Privacy configuration information includes: whitelist Or a blacklist, the whitelist is used to indicate a range of user data that is allowed to be open to the service application, and the blacklist is used to indicate a range of user data that is not allowed to be open to the service application.
  • the range of the whitelist and the blacklist may be the user range, the time range, the geographical range, and the like to which the user data belongs.
  • the user data allowed to be collected and analyzed may be determined according to the whitelist or the blacklist.
  • the configuration and management device 15 transmits the privacy configuration information to the data analysis open system 11 or the wireless network device 16, so that the data analysis open system 11 transmits the user data belonging to the range indicated by the whitelist or the range not indicated by the blacklist to the application server. 14. Or cause the wireless network device 16 to collect only user data that falls within the scope of the whitelist indication or that does not belong to the blacklist indication.
  • the configuration and management device 15 can also be responsible for functions such as log management and privacy configuration information maintenance query.
  • the configuration and management device 15 needs to perform special rights management on these operation and maintenance functions.
  • Wireless network device 16 is used to collect user data. Further, the wireless network management device 16 may selectively collect the user data according to the configuration and the privacy configuration information sent by the management device 15, and may further analyze the privacy protection policy after the privacy negotiation between the open device 11 and the UE 13 according to the data. The selected user data is collected.
  • the wireless network device 16 may be, for example, a base station controller (hereinafter referred to as: BSC), a radio network controller (Radio Network Controller, hereinafter referred to as RNC), and an evolved Node B (hereinafter referred to as eNodeB). Wait.
  • BSC base station controller
  • RNC Radio Network Controller
  • eNodeB evolved Node B
  • the wireless network device 16 can interact with the data analysis open device 11, receive the privacy negotiation result sent by the data analysis open device 11, and collect user data according to the privacy negotiation result; the wireless network device 16 can also interact with the configuration and management device 15, according to Privacy configuration information collects user data.
  • FIG. 3 is a signaling flowchart of a privacy configuration method according to an embodiment of the present invention, and exemplarily shows a method for configuring a privacy, the method includes:
  • the configuration and management device 15 delivers a blacklist or whitelist filtered by the user to the data analysis open device 11;
  • the configuration and management device 15 delivers a blacklist or whitelist filtered by the user to the wireless network device 16.
  • the user filtering may be set based on the MAC address of the UE 13, the IMSI, the Mobile Subscriber ISDN Number (MSISDN), etc.; the data analysis open device 11 receives the black of the user filtering sent by the configuration and management device 15. After the list or the whitelist, the analysis and opening of the user data of the users will not be performed or performed (ie, the user data is sent to the application server 14); after receiving the blacklist or whitelist filtered by the user, the wireless network device 16 will not perform the operation. Or collect the user data of these users.
  • MSISDN Mobile Subscriber ISDN Number
  • the configuration and management device 15 sends a blacklist or whitelist of time filtering to the data analysis open device 11;
  • the configuration and management device 15 delivers a blacklist or whitelist of time filtering to the wireless network device 16.
  • the time filtering support is set according to the year, month, day, minute, etc.; after the data analysis open device 11 receives the blacklist or white list of the time filtering sent by the configuration and management device 15, the user data in these time ranges will not be analyzed or analyzed. And open; after receiving the blacklist or whitelist of time filtering, the wireless network device will not perform or collect user data in these time ranges.
  • the configuration and management device 15 sends a blacklist or a whitelist for area filtering to the data analysis open device 11.
  • the configuration and management device 15 delivers a blacklist or whitelist for area filtering to the wireless network device 16.
  • the area identifier may be a cell identity number (hereinafter referred to as ID), or may be a plurality of latitude and longitude points to form an area identifier, etc.; the data analysis open device 11 receives the blacklist or white of the area filtering sent by the configuration and management device 15. After the list, the user data in these geographical areas will not be analyzed or opened. After receiving the blacklist or whitelist filtered by the user, the wireless network device will not perform or collect the user data in these geographical areas.
  • ID cell identity number
  • ID may be a plurality of latitude and longitude points to form an area identifier, etc.
  • the data analysis open device 11 receives the blacklist or white of the area filtering sent by the configuration and management device 15. After the list, the user data in these geographical areas will not be analyzed or opened. After receiving the blacklist or whitelist filtered by the user, the wireless network device will not perform or collect the user data in these geographical areas.
  • the configuration and management device 15 sends a blacklist or a whitelist used by the service application to the data analysis open device 11;
  • the configuration and management device 15 delivers a blacklist or whitelist used by the service application to the wireless network device 16.
  • the business application may be configured to set a blacklist or a whitelist for some rogue mobile applications, billing software, etc., for an application with good reputation and high score, the user data may be opened to the whitelist, and some background consumes traffic, Applications such as advertisements can be strictly prohibited from opening user data to blacklists.
  • the data analysis open device 11 and the wireless network device 16 can perform corresponding processing according to the whitelist or the blacklist.
  • S301 (S301') to S304 (S304') are optional steps, and need not be all configured.
  • the configuration and management device 15 can also configure only the data analysis open device 11 so that the data analysis open device 11 can perform privacy protection of the user data based on the privacy configuration information.
  • the correspondence between the service application and the privacy protection policy in the method shown in FIG. 1 can also be pre-configured by the configuration and management device 15 on the data analysis open device 11.
  • Table 1 gives an example of a privacy protection policy in which different classifications of business applications correspond to different privacy protection policies.
  • privacy negotiation refers to different devices to determine privacy issues through negotiation.
  • a privacy negotiation result may be obtained through privacy negotiation, and the privacy negotiation result is used to indicate whether to open user data to the business application.
  • FIG. 4 is a signaling flowchart of a privacy negotiation method according to an embodiment of the present invention. Steps S402-S408 show a process in which the data analysis open device 11 performs privacy negotiation with the UE 13 through the privacy negotiation server 12, and step S401 can trigger the data analysis open device 11 to initiate privacy negotiation. As shown in Figure 4:
  • the data analysis open device 11 receives the wireless information acquisition request sent by the application server 14;
  • the wireless information acquisition request is used to request to acquire user data corresponding to the service application.
  • the data analysis open device 11 can obtain a corresponding privacy protection policy according to the correspondence between the pre-configured service application and the privacy protection policy.
  • the privacy protection policy obtained by the data analysis open device 11 is a privacy protection policy indicating privacy negotiation.
  • the data analysis open device 11 sends a privacy negotiation request to the privacy negotiation server 12 according to the privacy protection policy.
  • the privacy negotiation request is used to request an indication of whether to open user data for the service application.
  • the data analysis open device 11 may actively send a privacy negotiation request through the privacy negotiation server 12, where the privacy negotiation request may include the user identifier. Whether the information of the service application requesting the user data agrees to collect and analyze the prompt information of the user data, whether to agree to the prompt information of the open user data for the service application, the geographical scope of the requested user data, and the time of the requested user data. The scope, use of user data, etc.
  • the privacy negotiation server 12 forwards the privacy negotiation request to the UE 13;
  • the privacy negotiation server 12 may send the privacy negotiation request to the UE 13 in the manner of a short message or a webpage (Web) operation.
  • the UE 13 performs privacy selection.
  • the user can choose whether to open user data for the business application, allow the use of the geographical scope of the user data, and allow the use of the time limit of the user data and the like.
  • the UE 13 sends a privacy negotiation result to the privacy negotiation server 12;
  • the UE 13 may send the privacy negotiation result to the privacy negotiation server 12 in the form of a short message or a web page (Web) operation.
  • the privacy negotiation result is mainly used to indicate whether to open user data to the business application, and may also include other information for privacy processing.
  • the privacy negotiation server 12 sends a privacy negotiation result to the data analysis open device 11;
  • the result of the privacy negotiation may include user identification, whether to allow user data collection, analysis, whether to allow open user data to the business application, the geographical scope of the user data to be allowed, the time limit for allowing the use of the user data, and whether the period is required. Sex and users re-private privacy and other content.
  • the data analysis open device 11 obtains a privacy negotiation result.
  • the data analysis open device 11 may save the privacy negotiation result, or may respond to the wireless information acquisition request according to the privacy negotiation result.
  • the data analysis open device 11 successfully acquired the privacy negotiation result of the privacy negotiation with the UE 13.
  • the privacy negotiation server 12 may send an acknowledgement message to the UE 13 to inform the UE 13 that the privacy negotiation is complete.
  • the privacy negotiation server 12 sends an acknowledgement message to the UE 13.
  • FIG. 4 shows a procedure of privacy negotiation triggered by a wireless information acquisition request. Unlike FIG. 4, the privacy negotiation method shown in FIG. 5 is initiated by the privacy negotiation server 12 to initiate privacy negotiation.
  • the privacy negotiation server 12 performs a privacy statement.
  • the privacy negotiation server can actively send a privacy statement to the UE 13 when the user enters the network or subscribes to the new service application.
  • a privacy statement For the role and content of the privacy statement, refer to the related content of the privacy negotiation request in FIG. 4, and details are not described herein.
  • the UE 13 performs privacy selection.
  • the UE 13 sends a privacy negotiation result to the privacy negotiation server 12;
  • the privacy negotiation server 12 sends a privacy negotiation result to the data analysis open device 11;
  • the data analysis open device 11 saves a privacy negotiation result.
  • the user data may be directly processed using the saved privacy negotiation result.
  • the privacy negotiation server 12 sends an acknowledgement message to the UE 13.
  • This step is an optional step, and reference may be made to the related content of S408 in FIG.
  • FIG. 5 shows a process of actively initiating privacy negotiation by the privacy negotiation server 12. Different from FIG. 5, the privacy negotiation process shown in FIG. 6 is actively initiated by the data analysis open device 11, wherein the data analysis open device can be cycled. The privacy negotiation is initiated to the UE 13 to reacquire the privacy negotiation result with the UE 13.
  • the data analysis open device 11 sends a privacy negotiation request to the privacy negotiation server 12;
  • the data analysis open device 11 can periodically initiate privacy negotiation to the UE 13 according to the periodic privacy negotiation indication information.
  • the periodic privacy negotiation indication information may be included in the privacy protection policy corresponding to the service application, the privacy configuration delivered by the configuration and management device 15, or the privacy negotiation result fed back by the UE 13.
  • the privacy negotiation result may be set with an expiration date, and when the expiration date is reached, the data analysis open device 11 may also initiate privacy negotiation.
  • the privacy negotiation server 12 forwards the privacy negotiation request to the UE 13;
  • the UE 13 performs privacy selection.
  • the UE 13 sends a privacy negotiation result to the privacy negotiation server 12;
  • the privacy negotiation server 12 sends a privacy negotiation node to the data analysis open device 11. fruit;
  • the data analysis open device 11 obtains a privacy negotiation result.
  • the privacy negotiation server 12 sends an acknowledgement message to the UE 13.
  • This step is an optional step.
  • related content refer to related content of S408 in FIG. 4.
  • privacy negotiation can also be initiated by the UE 13.
  • the UE 13 initiates a privacy negotiation trigger request to the privacy negotiation server 12, and triggers the privacy negotiation server 12 to send a privacy negotiation request to the UE 13, which is not described herein.
  • the following uses the system shown in FIG. 2 to illustrate the precise marketing application, the traffic planning application, and the disaster warning application respectively.
  • FIG. 7 is a flowchart of a method for processing user data according to an embodiment of the present invention, taking an example of obtaining a user data by a precision marketing application.
  • the precision marketing application is a business application for commercial use, which mainly acquires user data such as user location information for accurate advertisement recommendation.
  • the privacy protection policy indicated in Table 1 for privacy negotiation can be used.
  • the correspondence between the precision marketing application and the privacy protection policy can be pre-configured on the data analysis open device 11 by the configuration and management device 15.
  • the application server 14 sends a wireless information acquisition request to the data analysis open device 11;
  • the wireless information acquisition request may include an application identifier of the precision marketing application, a user identifier of the user UE 13 to which the requested user data belongs, and a type of the requested user data (eg, location information, wireless signal quality).
  • the data analysis open device 11 obtains a privacy protection policy corresponding to the precision marketing application.
  • the privacy protection policy is used to indicate privacy negotiation
  • the data analysis open device 11 performs privacy negotiation with the UE 13 through the privacy negotiation server 12 to obtain a privacy negotiation result.
  • the data analysis open device 11 determines that the privacy negotiation result is used to indicate that the user data is opened to the precision marketing application.
  • the data analytics open device 11 can provide the user data to the precision marketing application.
  • the data analysis open device 11 can directly transmit the user data to the application server 14.
  • the data analysis open device 11 sends the user data of the UE 13 to the application server 14;
  • the user data may carry information such as the identifier of the UE 13, the location information of the UE 13, and the quality of the wireless signal.
  • the data analysis open device 11 may also send data collection indication information to the wireless network device 16, the wireless network. After receiving the data collection indication information, the device 16 collects the user data required for the precise marketing application, and sends the collected user data to the data analysis open device 11.
  • the precision marketing application successfully obtained the user data of the UE 13.
  • the data analysis open device 11 determines that the privacy negotiation result is used to indicate that the user data is not to be opened to the precision marketing application, the data analysis open device 11 does not send the user data of the UE 13 to the service application. At this time, S706 can be performed.
  • the data analysis open device 11 sends the indication information to the application server 14, where the indication information is used to indicate that the user data cannot be obtained.
  • the precision marketing application requests to acquire the user data of the UE 13, the UE 13 can be confirmed, and when the UE 13 allows the user data to be opened to the precision marketing application, the accurate marketing is performed.
  • the application provides user data of the UE 13 to improve the security of the user data of the UE 13.
  • FIG. 8 is a flowchart of a method for processing user data provided by an embodiment of the present invention, taking a traffic planning application request for acquiring user data as an example.
  • the traffic planning application is a business application for a public utility, and the business application mainly acquires user data such as statistical analysis information of the user's motion trajectory to make a traffic planning decision.
  • the privacy protection policy indicated in Table 1 indicating the use of pre-stored privacy negotiation results may be used.
  • the correspondence between the traffic planning application and the privacy protection policy may be pre-configured by the configuration and management device 15 in the data analysis open device 11 on.
  • the privacy selection process can refer to the process of privacy negotiation shown in FIG. 5.
  • the privacy negotiation process of the S801 may be performed when the user subscribes to the network, or after the application server 14 deploys the traffic planning application.
  • the data analysis open device 11 may request to obtain the user data, as follows:
  • the application server 14 sends a wireless information acquisition request to the data analysis open device 11;
  • the request may include an application identifier of the traffic planning application, a type of user data (for example, statistical analysis information of the user's movement trajectory), a user range to which the user data belongs (for example, a user in the administrative area), and the like;
  • a type of user data for example, statistical analysis information of the user's movement trajectory
  • a user range to which the user data belongs for example, a user in the administrative area
  • the data analysis open device 11 obtains a privacy protection policy corresponding to the traffic planning application.
  • the policy indicates that the pre-stored privacy negotiation result is adopted
  • the data analysis open device 11 determines that the user data of the UE 13 participates in statistical analysis of the user movement track.
  • the user data of the UE 13 may be provided to the traffic planning application, that is, the user data of the UE 13 participates in the statistical analysis of the user's movement trajectory.
  • the data analysis open device 11 performs statistical analysis of the user movement trajectory according to the participating user data, and obtains a statistical analysis result
  • the data analysis open device 11 returns a statistical analysis result to the application server 14.
  • the data analysis open device 11 determines that the user data of the UE 13 does not participate in the statistical analysis of the user movement trajectory, and therefore performs statistics on the user movement trajectory.
  • the user data of the UE 13 is not taken as a sample, and the obtained statistical analysis result does not include the number of users of the UE 13. according to.
  • the user data processing method shown in FIG. 8 is, before the traffic planning application requests to acquire user data, the UE 13 and the data analysis open device 11 perform privacy negotiation in advance and save the privacy negotiation result, when the traffic planning application needs to call the user data.
  • the pre-stored privacy negotiation result can be directly obtained, and according to the privacy negotiation result, whether to provide the user data of the UE 13 to the traffic planning application can provide the security of the user data while reasonably opening the user data.
  • FIG. 9 is a flowchart of a method for processing user data according to an embodiment of the present invention.
  • the disaster warning application is an application for emergency situations.
  • the application is mainly used to obtain user data of users around the disaster site for disaster warning.
  • a privacy protection policy that does not require privacy processing in Table 1 can be used.
  • the correspondence between the disaster warning application and the privacy protection policy may be pre-configured by the configuration and management device 15 on the data analysis open device 11.
  • the application server 14 sends a wireless information acquisition request to the data analysis open device 11;
  • the request may carry the application identifier of the disaster warning application, the user range described by the user data (for example, the user within 10 km of the A location), the type of the user data (for example, the distance of the user from the A location), and the like;
  • the data analysis open device 11 obtains a privacy protection policy corresponding to the disaster warning application.
  • the privacy protection policy indicates that privacy processing is not required
  • the data analysis open device 11 sends user data to the application server 14;
  • the data analysis open device 11 can directly provide the user data of the UE 13 to the disaster warning application.
  • the disaster warning application performs subsequent processing according to the received user data.
  • the user data processing method shown in FIG. 9 can facilitate the disaster warning application to quickly obtain the required user data by setting a privacy protection policy for the disaster warning application that does not require privacy processing, and embodies the reasonable opening of the user data.
  • the embodiment of the present invention further provides a user data processing apparatus, which can be integrated on the data analysis open device 11.
  • the apparatus includes: a receiving unit 11, a policy determining unit 12, and a privacy processing unit 13, wherein the receiving unit 11 is configured to receive a wireless information acquiring request sent by the network element device, where the wireless information acquiring request is used. Requesting the user data corresponding to the service application; the policy determining unit 12 is configured to determine a privacy protection policy corresponding to the service application according to the service application and the corresponding relationship between the service application and the privacy protection policy; the privacy processing unit 13 And performing, when the privacy protection policy is used to indicate privacy processing, performing the privacy processing on the user data according to the privacy protection policy.
  • the mechanism for performing the user data processing of the device may refer to the methods shown in FIG. 1 and FIG. 2 to FIG. 9.
  • the implementation principle and technical effects are similar, and details are not described herein again.
  • the user data processing apparatus shown in FIG. 10 can determine a privacy protection policy corresponding to different service applications, and perform privacy processing on user data according to the privacy protection policy, and can improve user data security while reasonably opening user data. Sex.
  • the embodiment of the present invention further provides another user data processing apparatus.
  • the user data processing apparatus shown in FIG. 11 also includes a receiving unit 11, a policy determining unit 12, and a privacy processing unit 13. Further, the privacy processing unit of the user processing apparatus shown in FIG. 11 includes a negotiation result acquisition unit 131 and a negotiation result processing unit 132.
  • the negotiation result obtaining unit 131 is configured to: when the privacy protection policy is used to indicate the privacy negotiation, perform the privacy negotiation according to the user equipment corresponding to the user data according to the privacy protection policy to obtain a privacy negotiation result;
  • the negotiation result processing unit 132 is configured to: when the privacy negotiation result is used to indicate that the user data is opened to the service application, provide the user data to the service application; or when the privacy negotiation result is used When the user data is not opened to the service application, the indication information is sent to the network element device, where the indication information is used to indicate that the user data cannot be obtained.
  • the negotiation result obtaining unit 131 is specifically configured to send a privacy negotiation request to the user equipment, where the privacy negotiation request is used to request an indication of whether to open the user data to the service application; and receive the user equipment.
  • the sent privacy negotiation request response, the privacy negotiation request response includes the privacy negotiation result.
  • the negotiation result obtaining unit 131 is further configured to use when the privacy protection policy is used When the pre-stored privacy negotiation result is used, the pre-stored privacy negotiation result is directly obtained according to the privacy protection policy; the negotiation result processing unit 132 is configured to: when the privacy negotiation result is used to indicate to open the user data to the service application Providing the user data to the service application; or sending the indication information to the network element device when the privacy negotiation result is used to indicate that the user data is not to be opened to the service application, the indication The information is used to indicate that the user data cannot be obtained.
  • the negotiation result obtaining unit 131 is further configured to: before the receiving unit 11 receives the wireless information acquisition request sent by the network element device, receive the privacy negotiation result sent by the user equipment, and save the privacy negotiation. result.
  • the privacy processing unit 13 is further configured to: when the privacy protection policy is used to indicate that privacy processing is not performed, provide the user data to the service application.
  • the receiving unit 11 is further configured to receive the privacy configuration information, where the privacy configuration information includes: a whitelist or a blacklist, where the whitelist is used to indicate a range of user data that is allowed to be open to the service application, The blacklist is used to indicate a range of user data that is not allowed to be open to the service application; when the negotiation result processing unit is configured to provide the user data to the service application, the privacy processing unit 13 is specifically configured to serve The service application provides the user data, where the user data belongs to a range indicated by the whitelist or does not belong to a range indicated by the blacklist.
  • the privacy configuration information includes: a whitelist or a blacklist, where the whitelist is used to indicate a range of user data that is allowed to be open to the service application, The blacklist is used to indicate a range of user data that is not allowed to be open to the service application; when the negotiation result processing unit is configured to provide the user data to the service application, the privacy processing unit 13 is specifically configured to serve The service application provides the user data, where the user data belongs
  • the user data processing device shown in FIG. 11 can be used to execute the method shown in FIG. 1 and FIG. 2 to FIG. 9.
  • the implementation principle and the generated technical effect are similar, and details are not described herein again.
  • the user data processing device shown in FIG. 11 can determine a privacy protection policy corresponding to different service applications, and perform privacy processing on the user data according to the privacy protection policy, and can improve user data while reasonably opening user data. safety.
  • the user data processing apparatus shown in Figures 10 and 11 can be implemented in hardware.
  • the user data processing device shown in Figures 12 and 13 can also be integrated with the data analysis open device.
  • the user data processing may include: a receiver 11 and a processor 12, wherein the receiver 11 is configured to receive a wireless information acquisition request sent by the network element device, where the wireless information acquisition request is used to request to acquire a service. Applying corresponding user data; the processor 12 is configured to determine, according to the service application, a correspondence between the service application and a privacy protection policy And the privacy protection policy corresponding to the service application; when the privacy protection policy is used to indicate privacy processing, performing the privacy processing on the user data according to the privacy protection policy.
  • the mechanism for processing the user data by the user data processing device shown in FIG. 12 can be referred to the method shown in FIG. 1 and FIG. 2 to FIG. 9.
  • the implementation principle and technical effects are similar, and details are not described herein again.
  • FIG. 13 is a schematic structural diagram of another user data processing device according to an embodiment of the present invention. As shown in FIG. 13, on the basis of the user data processing device shown in FIG. 12, a transmitter 13 is further included.
  • the sender 13 is configured to send a privacy negotiation request to the user equipment, where the privacy negotiation request is used for
  • the receiver 11 is configured to receive an indication of whether the user data is opened for the service application
  • the receiver 11 is configured to receive a privacy negotiation request response sent by the user equipment, where the privacy negotiation request response includes the privacy negotiation result
  • the sender 13 further
  • the privacy negotiation result is used to indicate that the user data is opened to the service application, the user data is provided to the service application; or when the privacy negotiation result is used to indicate that the service is not
  • the indication information is sent to the network element device, and the indication information is used to indicate that the user data cannot be obtained.
  • the sender 13 is configured to use the pre-stored privacy negotiation result to indicate the direction.
  • the service application opens the user data
  • the user data is provided to the service application; or when the pre-stored privacy negotiation result is used to indicate that the user data is not to be opened to the service application, the indication information is sent.
  • the indication information is used to indicate that the user data cannot be obtained.
  • the sender 13 is further configured to: when the privacy protection policy is used to indicate that privacy processing is not performed, provide the user data to the service application.
  • the receiver 11 is further configured to receive privacy configuration information, where the privacy configuration information includes: a whitelist or a blacklist, where the whitelist is used to indicate a range of user data that is allowed to be open to the service application, the black The list is used to indicate a range of user data that is not allowed to be open to the service application; when the sender 13 provides the user data to the service application, the sender 13 is specifically configured to provide the user data to the service application. Where the number of users The range according to the whitelist indication or the range that does not belong to the blacklist indication.
  • the user data processing device shown in FIG. 13 can be used to perform the method shown in FIG. 1 and FIG. 2 to FIG. 9.
  • the implementation principle and the generated technical effect are similar, and details are not described herein again.
  • the user data processing device shown in FIG. 13 can determine a privacy protection policy corresponding to different service applications, and perform privacy processing on user data according to the privacy protection policy, and can improve user data while reasonably opening user data. safety.
  • the aforementioned program can be stored in a computer readable storage medium.
  • the program when executed, performs the steps including the foregoing method embodiments; and the foregoing storage medium includes various media that can store program codes, such as a ROM, a RAM, a magnetic disk, or an optical disk.

Abstract

Embodiments of the present invention provide a method and an apparatus for processing user data. The apparatus for processing user data provided by the present invention comprises: a receiving unit, used for receiving a wireless information acquisition request sent by a network element device, the wireless information acquisition request being used for requesting acquisition of user data corresponding to a service application; a policy determining unit, used for determining a privacy protection policy corresponding to the service application according to the service application and the correspondence between the service application and the privacy protection policy; and a privacy processing unit, used for conducting privacy processing on the user data according to the privacy protection policy when the privacy protection policy is an instruction for privacy processing. The apparatus provided by the embodiments of the present invention can improve security of the user data.

Description

用户数据的处理方法和装置User data processing method and device 技术领域Technical field
本发明实施例涉及通信技术,尤其涉及一种用户数据的处理方法和装置。The embodiments of the present invention relate to communication technologies, and in particular, to a method and an apparatus for processing user data.
背景技术Background technique
随着移动宽带(Mobile Broad Band,以下简称:MBB)业务的飞速发展,无线网络设备中存储着丰富的数据资源。数据分析商可以利用这些数据挖掘用户的行为,运营商也希望将拥有的数据资源有效利用,通过一个无线网络信息开放系统,将无线信息进行开放。With the rapid development of Mobile Broadband (MBB) services, wireless network devices store rich data resources. Data analysts can use this data to mine user behavior. Operators also want to make effective use of their own data resources and open wireless information through a wireless network information open system.
在无线信息开放系统中,某些数据,比如一些涉及用户隐私的数据则是需要进行保护的,但是,现有无线信息开放系统缺少针对这些数据进行保护的技术,导致这些数据的安全性不高。In wireless information open systems, certain data, such as some data related to user privacy, need to be protected. However, existing wireless information open systems lack technology to protect these data, resulting in low security of these data. .
发明内容Summary of the invention
本发明实施例提供一种用户数据的处理方法和装置,以提高数据的安全性。Embodiments of the present invention provide a method and apparatus for processing user data to improve data security.
第一方面,本发明实施例提供一种用户数据处理装置,包括:In a first aspect, an embodiment of the present invention provides a user data processing apparatus, including:
接收单元,用于接收网元设备发送的无线信息获取请求,所述无线信息获取请求用于请求获取业务应用对应的用户数据;a receiving unit, configured to receive a wireless information acquisition request sent by the network element device, where the wireless information acquisition request is used to request to acquire user data corresponding to the service application;
策略确定单元,用于根据所述业务应用,以及所述业务应用和隐私保护策略的对应关系确定所述业务应用对应的隐私保护策略;a policy determining unit, configured to determine, according to the service application, a correspondence between the service application and the privacy protection policy, a privacy protection policy corresponding to the service application;
隐私处理单元,用于当所述隐私保护策略用于指示进行隐私处理时,根据所述隐私保护策略对所述用户数据进行所述隐私处理。a privacy processing unit, configured to perform the privacy processing on the user data according to the privacy protection policy when the privacy protection policy is used to indicate privacy processing.
结合第一方面,在第一方面的第一种可能的实现方式中,所述隐私处理单元,包括:In conjunction with the first aspect, in a first possible implementation manner of the first aspect, the privacy processing unit includes:
协商结果获取单元,用于当所述隐私保护策略用于指示进行隐私协商时,根据所述隐私保护策略与所述用户数据对应的用户设备进行所述隐私协商以获得隐私协商结果; a negotiation result obtaining unit, configured to: when the privacy protection policy is used to indicate that the privacy negotiation is performed, perform the privacy negotiation according to the user equipment corresponding to the user data according to the privacy protection policy to obtain a privacy negotiation result;
协商结果处理单元,用于当所述隐私协商结果用于指示向所述业务应用开放所述用户数据时,向所述业务应用提供所述用户数据;或者,当所述隐私协商结果用于指示不向所述业务应用开放所述用户数据时,发送指示信息至所述网元设备,所述指示信息用于指示无法获取所述用户数据。a negotiation result processing unit, configured to provide the user data to the service application when the privacy negotiation result is used to indicate that the user data is opened to the service application; or when the privacy negotiation result is used to indicate When the user data is not opened to the service application, the indication information is sent to the network element device, and the indication information is used to indicate that the user data cannot be obtained.
结合第一方面,在第一方面的第二种可能的实现方式中,所述协商结果获取单元,还用于当所述隐私保护策略用于指示采用预存的隐私协商结果时,根据所述隐私保护策略直接获取预存的隐私协商结果;With reference to the first aspect, in a second possible implementation manner of the first aspect, the negotiation result obtaining unit is further configured to: when the privacy protection policy is used to indicate that the pre-stored privacy negotiation result is adopted, according to the privacy The protection policy directly obtains the pre-existing privacy negotiation result;
所述协商结果处理单元,用于当所述隐私协商结果用于指示向所述业务应用开放所述用户数据时,向所述业务应用提供所述用户数据;或者,当所述隐私协商结果用于指示不向所述业务应用开放所述用户数据时,发送指示信息至所述网元设备,所述指示信息用于指示无法获取所述用户数据。The negotiation result processing unit is configured to: when the privacy negotiation result is used to indicate that the user data is opened to the service application, provide the user data to the service application; or, when the privacy negotiation result is used When the user data is not opened to the service application, the indication information is sent to the network element device, where the indication information is used to indicate that the user data cannot be obtained.
结合第一方面、第一方面的第一种至第二种中任一种可能的实现方式,在第一方面的第三种可能的实现方式中,所述隐私处理单元,还用于当所述隐私保护策略用于指示不进行隐私处理时,向所述业务应用提供所述用户数据。With reference to the first aspect, any one of the first to the second possible implementation manners of the first aspect, in a third possible implementation manner of the first aspect, the privacy processing unit is further used to The privacy protection policy is used to indicate that the user data is provided to the service application when privacy processing is not performed.
第二方面,本发明实施例提供一种用户数据的处理方法,包括:In a second aspect, an embodiment of the present invention provides a method for processing user data, including:
用户数据处理装置接收网元设备发送的无线信息获取请求,所述无线信息获取请求用于请求获取业务应用对应的用户数据;The user data processing device receives a wireless information acquisition request sent by the network element device, where the wireless information acquisition request is used to request to acquire user data corresponding to the service application;
所述用户数据处理装置根据所述业务应用,以及所述业务应用和隐私保护策略的对应关系确定所述业务应用对应的隐私保护策略;Determining, by the user data processing device, a privacy protection policy corresponding to the service application according to the service application and a correspondence between the service application and a privacy protection policy;
当所述隐私保护策略用于指示进行隐私处理时,所述用户数据处理装置根据所述隐私保护策略对所述用户数据进行所述隐私处理。When the privacy protection policy is used to indicate privacy processing, the user data processing apparatus performs the privacy processing on the user data according to the privacy protection policy.
结合第二方面,在第二方面的第一种可能的实现方式中,所述隐私保护策略用于指示进行隐私处理具体为:所述隐私保护策略用于指示进行隐私协商;With reference to the second aspect, in a first possible implementation manner of the second aspect, the privacy protection policy is used to indicate that the privacy process is performed: the privacy protection policy is used to indicate that the privacy negotiation is performed;
所述用户数据处理装置根据所述隐私保护策略对所述用户数据进行所述隐私处理,包括:The user data processing apparatus performs the privacy processing on the user data according to the privacy protection policy, including:
所述用户数据处理装置根据所述隐私保护策略与所述用户数据对应的用户设备进行所述隐私协商以获得隐私协商结果;The user data processing apparatus performs the privacy negotiation according to the user equipment corresponding to the user data according to the privacy protection policy to obtain a privacy negotiation result;
当所述隐私协商结果用于指示向所述业务应用开放所述用户数据时,所 述用户数据处理装置向所述业务应用提供所述用户数据;或者,When the privacy negotiation result is used to indicate that the user data is opened to the service application, Said user data processing device providing said user data to said service application; or
当所述隐私协商结果用于指示不向所述业务应用开放所述用户数据时,所述用户数据处理装置发送指示信息至所述网元设备,所述指示信息用于指示无法获取所述用户数据。When the result of the privacy negotiation is used to indicate that the user data is not to be opened to the service application, the user data processing apparatus sends the indication information to the network element device, where the indication information is used to indicate that the user cannot be obtained. data.
结合第二方面,在第二方面的第二种可能的实现方式中,所述隐私保护策略用于指示进行隐私处理具体为:所述隐私保护策略用于指示采用预存的隐私协商结果;With reference to the second aspect, in a second possible implementation manner of the second aspect, the privacy protection policy is used to indicate that the privacy process is performed: the privacy protection policy is used to indicate that the pre-stored privacy negotiation result is used;
所述用户数据处理装置根据所述隐私保护策略对所述用户数据进行所述隐私处理,包括:The user data processing apparatus performs the privacy processing on the user data according to the privacy protection policy, including:
所述用户数据处理装置根据所述隐私保护策略直接获取预存的隐私协商结果;The user data processing device directly obtains a pre-stored privacy negotiation result according to the privacy protection policy;
当所述隐私协商结果用于指示向所述业务应用开放所述用户数据时,所述用户数据处理装置向所述业务应用提供所述用户数据;或者,When the privacy negotiation result is used to indicate that the user data is opened to the service application, the user data processing apparatus provides the user data to the service application; or
当所述隐私协商结果用于指示不向所述业务应用开放所述用户数据时,所述用户数据处理装置发送指示信息至所述网元设备,所述指示信息用于指示无法获取所述用户数据。When the result of the privacy negotiation is used to indicate that the user data is not to be opened to the service application, the user data processing apparatus sends the indication information to the network element device, where the indication information is used to indicate that the user cannot be obtained. data.
结合第二方面、第二方面的第一种至第二种中任一种可能的实现方式,在第二方面的第三种可能的实现方式中,还包括:With reference to the second aspect, the first possible implementation of the first to the second aspect, the third possible implementation of the second aspect, further includes:
当所述隐私保护策略用于指示不进行隐私处理时,所述用户数据处理装置向所述业务应用提供所述用户数据。The user data processing apparatus provides the user data to the business application when the privacy protection policy is used to indicate that privacy processing is not performed.
本发明实施例用户数据的处理方法和装置,通过针对不同的业务应用确定与其对应的隐私保护策略,并根据隐私保护策略对用户数据进行隐私处理,在合理开放用户数据的同时,提高用户数据的安全性。The method and device for processing user data according to the embodiment of the present invention determine the privacy protection policy corresponding to different service applications, and perform privacy processing on the user data according to the privacy protection policy, and improve the user data while reasonably opening the user data. safety.
附图说明DRAWINGS
为了更清楚地说明本发明实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作一简单地介绍,显而易见地,下面描述中的附图是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动性的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, a brief description of the drawings used in the embodiments or the prior art description will be briefly described below. Obviously, the drawings in the following description It is a certain embodiment of the present invention, and other drawings can be obtained from those skilled in the art without any inventive labor.
图1为本发明实施例提供的一种用户数据的处理方法的流程图; FIG. 1 is a flowchart of a method for processing user data according to an embodiment of the present invention;
图2为本发明实施例提供的一种用于用户数据处理的系统的结构示意图;2 is a schematic structural diagram of a system for user data processing according to an embodiment of the present invention;
图3为本发明实施例提供的一种隐私配置方法的信令流程图;FIG. 3 is a signaling flowchart of a privacy configuration method according to an embodiment of the present invention;
图4为本发明实施例提供的一种隐私协商方法的信令流程图;FIG. 4 is a signaling flowchart of a privacy negotiation method according to an embodiment of the present invention;
图5为本发明实施例提供的另一种隐私协商的信令流程图;FIG. 5 is a signaling flowchart of another privacy negotiation according to an embodiment of the present invention;
图6为本发明实施例提供的又一种隐私协商的信令流程图;FIG. 6 is a signaling flowchart of still another privacy negotiation according to an embodiment of the present invention;
图7为本发明实施例提供的另一种用户数据的处理方法的流程图;FIG. 7 is a flowchart of another method for processing user data according to an embodiment of the present invention;
图8为本发明实施例提供的又一种用户数据的处理方法的流程图;FIG. 8 is a flowchart of still another method for processing user data according to an embodiment of the present invention;
图9为本发明实施例提供的再一种用户数据的处理方法的流程图;FIG. 9 is a flowchart of still another method for processing user data according to an embodiment of the present invention;
图10为本发明实施例提供的一种用户数据处理装置的结构示意图;FIG. 10 is a schematic structural diagram of a user data processing apparatus according to an embodiment of the present disclosure;
图11为本发明实施例提供的另一种用户数据处理装置的结构示意图;FIG. 11 is a schematic structural diagram of another user data processing apparatus according to an embodiment of the present disclosure;
图12为本发明实施例提供的一种用户数据处理设备的结构示意图;FIG. 12 is a schematic structural diagram of a user data processing device according to an embodiment of the present disclosure;
图13为本发明实施例提供的另一种用户数据处理设备的结构示意图。FIG. 13 is a schematic structural diagram of another user data processing device according to an embodiment of the present invention.
具体实施方式detailed description
为使本发明实施例的目的、技术方案和优点更加清楚,下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有作出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The technical solutions in the embodiments of the present invention will be clearly and completely described in conjunction with the drawings in the embodiments of the present invention. It is a partial embodiment of the invention, and not all of the embodiments. All other embodiments obtained by those skilled in the art based on the embodiments of the present invention without creative efforts are within the scope of the present invention.
图1为本发明实施例提供的一种用户数据的处理方法的流程图,如图1所示,该方法包括:FIG. 1 is a flowchart of a method for processing user data according to an embodiment of the present invention. As shown in FIG. 1 , the method includes:
步骤101、用户数据处理装置接收网元设备发送的无线信息获取请求,所述无线信息获取请求用于请求获取业务应用对应的用户数据;Step 101: The user data processing apparatus receives a wireless information acquisition request sent by the network element device, where the wireless information acquisition request is used to request to acquire user data corresponding to the service application.
该方法的执行主体为用户数据处理装置,该装置可以与数据仓库、核心网设备,或者具备用户数据收集、分析功能的网元等集成,也可以作为一个独立的网元设备。该方法中的网元设备可以是架设在无线通信网络内部的应用服务器,也可以是架设在互联网或者企业网中的应用服务器,或者可以是无线通信网络中的核心网网元。该方法中,业务应用可以是需要使用用户数据的应用,例如灾难预警应用、交通规划应用、精准营销应用等。其中,不 同的业务应用对用户数据的需求不同,例如,灾难预警应用是请求获取事故地周围的用户列表的属性信息,以便于向这些用户发出灾难预警;交通规划应用是请求获取人群属性统计和分析结果等交通规划信息的属性信息,以便于进行交通规划;精准营销应用是请求获取个人的位置信息、无线信号接收质量等无线信息,以便于营销分析。该方法中,无线信息获取请求可以包括业务应用的标识,该业务应用的标识可以识别出请求用户数据的业务应用。The execution entity of the method is a user data processing device, and the device can be integrated with a data warehouse, a core network device, or a network element having user data collection and analysis functions, or can be used as an independent network element device. The network element device in the method may be an application server that is installed inside the wireless communication network, or an application server that is installed in the Internet or an enterprise network, or may be a core network element in the wireless communication network. In this method, the business application may be an application that needs to use user data, such as a disaster warning application, a traffic planning application, a precision marketing application, and the like. Among them, no The same business application has different requirements for user data. For example, the disaster warning application is to request the attribute information of the user list around the accident site to facilitate the disaster warning to these users; the traffic planning application requests the acquisition of the population attribute statistics and analysis results. The attribute information of the traffic planning information is convenient for traffic planning; the precision marketing application requests to obtain wireless information such as personal location information and wireless signal receiving quality for marketing analysis. In the method, the wireless information acquisition request may include an identifier of the service application, and the identifier of the service application may identify a service application requesting user data.
步骤102、所述用户数据处理装置根据所述业务应用,以及所述业务应用和隐私保护策略的对应关系确定所述业务应用对应的隐私保护策略;Step 102: The user data processing apparatus determines, according to the service application, a correspondence between the service application and the privacy protection policy, a privacy protection policy corresponding to the service application.
该方法中,业务应用和隐私保护策略的对应关系可以保存在用户数据处理装置上,也可以保存在其他的网元上。例如,可以设置一张对应关系表,其中存储业务应用的标识以及该业务应用对应的隐私保护策略的标识。该方法中,隐私保护策略可以分为两类,一类为需要进行隐私处理的策略,一类为不需要进行隐私处理的策略。例如,需要进行隐私处理的策略可以是指示通过隐私协商进行隐私处理的策略,也可以是指示采用预存的隐私协商结果进行隐私处理的策略。其中,隐私协商结果用以指示是否对业务应用开放用户数据;隐私协商可以是用户数据处理装置和用户设备之间的协商,也可以是用户数据处理装置、用户设备和其他网元之间的协商,通过隐私协商可以获得隐私协商结果。In this method, the correspondence between the service application and the privacy protection policy may be saved on the user data processing device, or may be stored on other network elements. For example, a correspondence relationship table may be set, where the identifier of the service application and the identifier of the privacy protection policy corresponding to the service application are stored. In this method, the privacy protection policies can be divided into two categories, one is a policy that requires privacy processing, and the other is a policy that does not require privacy processing. For example, the policy that requires privacy processing may be a policy indicating privacy processing through privacy negotiation, or a policy indicating privacy processing using pre-stored privacy negotiation results. The privacy negotiation result is used to indicate whether the user data is open to the service application; the privacy negotiation may be a negotiation between the user data processing device and the user equipment, or may be a negotiation between the user data processing device, the user equipment, and other network elements. The privacy negotiation result can be obtained through privacy negotiation.
该方法中,不同的业务应用可以对应不同的隐私保护策略。例如:对于灾难预警应用,由于该业务应用适用于紧急状况,可以设置不需要进行隐私处理的隐私保护策略;对于交通规划应用,由于该业务应用属于基于公共利益的群体性分析型应用,可以默认所有的用户设备(User Equipment,以下简称:UE)都接受该业务应用的数据收集,同时考虑给予UE保留选择是否提供用户数据的权利,因此可以事先征询用户意见,例如在用户签约时,即事先进行隐私协商,并保存隐私协商结果,当交通规划应用需要请求用户数据时,可以直接根据预存的隐私协商结果来判断是否提供用户数据,鉴于此,可以对交通规划应用设置指示采用预存的隐私协商结果的隐私保护策略;对于精准营销应用,由于该业务应用是商业型应用,可以考虑在每次请求用户数据时,给予用户选择的权利,即每次请求用户数据时都需进行与用户设备的隐私协商来获得隐私协商结果,并根据获得的隐私协商结果判断是否提供 用户数据,鉴于此,可以对精准营销应用设置指示进行隐私协商的隐私保护策略。In this method, different service applications can correspond to different privacy protection policies. For example, for a disaster warning application, since the business application is suitable for an emergency, a privacy protection policy that does not require privacy processing may be set; for a traffic planning application, since the business application belongs to a public interest-based mass analysis application, the default may be All user equipments (User Equipments, hereinafter referred to as UEs) accept the data collection of the service application, and consider giving the UE the right to choose whether to provide user data. Therefore, the user's opinion can be consulted in advance, for example, when the user signs the contract, that is, in advance Conduct privacy negotiation and save the privacy negotiation result. When the traffic planning application needs to request user data, it can directly judge whether to provide user data according to the pre-stored privacy negotiation result. In view of this, the traffic planning application setting indication can be used to pre-store privacy negotiation. The result of the privacy protection strategy; for the precision marketing application, since the business application is a commercial application, it may consider giving the user the right to select each time the user data is requested, that is, each time the user data is requested, the user equipment is required to be hidden Negotiations to obtain privacy consultations, privacy and judged according to whether the results obtained provide consultations User data, in view of this, can set a privacy protection policy for privacy negotiation to indicate privacy negotiation.
步骤103、当所述隐私保护策略用于指示进行隐私处理时,所述用户数据处理装置根据所述隐私保护策略对所述用户数据进行所述隐私处理。Step 103: When the privacy protection policy is used to indicate privacy processing, the user data processing apparatus performs the privacy processing on the user data according to the privacy protection policy.
例如:对于指示进行隐私协商的隐私保护策略,用户数据处理装置可以根据该隐私保护策略,发起与用户设备的隐私协商,并通过隐私协商,获得隐私协商结果,再根据隐私协商结果对用户数据进行处理;再例如:对于指示采用预存的隐私协商结果的隐私保护策略,用户数据处理装置可以根据该隐私保护策略,获取预存的隐私协商结果,并根据该预存的隐私协商结果对用户数据进行处理。For example, for the privacy protection policy indicating privacy negotiation, the user data processing device may initiate privacy negotiation with the user equipment according to the privacy protection policy, obtain privacy negotiation result through privacy negotiation, and perform user data according to the privacy negotiation result. For example, for the privacy protection policy indicating that the pre-stored privacy negotiation result is used, the user data processing apparatus may obtain the pre-stored privacy negotiation result according to the privacy protection policy, and process the user data according to the pre-stored privacy negotiation result.
可选的,在该方法中,当隐私保护策略用于指示不进行隐私处理时,用户数据处理装置可以直接向该业务应用提供用户数据。Optionally, in the method, when the privacy protection policy is used to indicate that privacy processing is not performed, the user data processing apparatus may directly provide user data to the service application.
图1所示的用户数据处理方法,通过针对不同的业务应用确定与其对应的隐私保护策略,并根据隐私保护策略对用户数据进行隐私处理,在合理开放用户数据的同时,可以提高用户数据的安全性。The user data processing method shown in FIG. 1 determines the privacy protection policy corresponding to different service applications, and performs privacy processing on the user data according to the privacy protection policy, thereby improving user data security while reasonably opening user data. Sex.
为了应用图1所示的用户数据的处理方法,如图2所示,本发明实施例提供一种用于用户数据处理的系统。本领域技术人员应知,图2所示的系统是一种举例,并不构成对于图1所示方法应用场景的限制。In order to apply the processing method of the user data shown in FIG. 1, as shown in FIG. 2, an embodiment of the present invention provides a system for user data processing. It should be understood by those skilled in the art that the system shown in FIG. 2 is an example and does not constitute a limitation on the application scenario of the method shown in FIG. 1.
该系统包括:数据分析开放设备11、隐私协商服务器12、UE 13、应用服务器14、配置与管理设备15、无线网络设备16。The system includes: a data analysis open device 11, a privacy negotiation server 12, a UE 13, an application server 14, a configuration and management device 15, and a wireless network device 16.
数据分析开放设备11是一种具备对用户数据进行分析和对外输出用户数据或者用户数据分析结果的网元设备,在该设备上集成了如图1方法中用户数据处理装置的功能。为了实现用户数据处理装置的功能,该设备可以包括:接收单元、策略确定单元、协商结果处理单元。接收单元,用于接收网元设备发送的无线信息获取请求,所述无线信息获取请求用于请求获取业务应用对应的用户数据;策略确定单元,用于根据所述业务应用,以及所述业务应用和隐私保护策略的对应关系确定所述业务应用对应的隐私保护策略;协商结果处理单元,用于当所述隐私保护策略用于指示进行隐私处理时,根据所述隐私保护策略对所述用户数据进行所述隐私处理。进一步的,协商结果处理单元,还用于当所述隐私保护策略用于指示不进行隐私处理时,向所 述业务应用提供所述用户数据。The data analysis open device 11 is a network element device having an analysis of user data and externally outputting user data or user data analysis results, and the function of the user data processing device in the method of FIG. 1 is integrated on the device. In order to implement the functions of the user data processing apparatus, the apparatus may include: a receiving unit, a policy determining unit, and a negotiation result processing unit. a receiving unit, configured to receive a wireless information acquiring request sent by the network element device, where the wireless information obtaining request is used to request to obtain user data corresponding to the service application, and the policy determining unit is configured to use, according to the service application, the service application Corresponding relationship with the privacy protection policy determines a privacy protection policy corresponding to the service application; the negotiation result processing unit is configured to: when the privacy protection policy is used to indicate privacy processing, the user data according to the privacy protection policy Perform the privacy process. Further, the negotiation result processing unit is further configured to: when the privacy protection policy is used to indicate that privacy processing is not performed, The business application provides the user data.
隐私协商服务器12可以是运营商的门户(Web Portal)网站,还可以是运营商的短信中心等。其主要功能为将数据分析开放设备11发送的隐私协商请求转发给UE,再接收用户针对该隐私协商请求做出的是否开放用户数据的选择,并将用户选择的结果通知给数据分析开放设备11。进一步的,隐私协商服务器12还可以根据数据分析开放设备11的提示,向单个UE发送隐私协商请求,例如:用户针对某个隐私协商请求做出了同意业务应用使用自己的数据的选择,但是该数据的使用是有期限的,因此当用户数据的使用期限快到时,数据分析开放设备11提示隐私协商服务器12再次向UE发送隐私协商请求。The privacy negotiation server 12 may be an operator's portal (Web Portal) website, or may be an operator's short message center or the like. The main function is to forward the privacy negotiation request sent by the data analysis open device 11 to the UE, and then select whether the user selects the open user data for the privacy negotiation request, and notifies the data analysis open device 11 of the result of the user selection. . Further, the privacy negotiation server 12 may further send a privacy negotiation request to the single UE according to the prompt of the data analysis open device 11, for example, the user makes a selection for agreeing that the service application uses its own data for a certain privacy negotiation request, but the The use of the data is time-limited, so when the usage period of the user data is fast, the data analysis open device 11 prompts the privacy negotiation server 12 to transmit the privacy negotiation request to the UE again.
可选的,隐私协商服务器12的功能也可以作为数据分析开放设备11的一个功能单元集成在数据分析开放设备11中。Alternatively, the function of the privacy negotiation server 12 may also be integrated in the data analysis open device 11 as a functional unit of the data analysis open device 11.
UE 13可以是手机,平板电脑等移动设备。UE 13可以包括隐私协商模块和隐私选择模块,其中,隐私协商模块负责与隐私协商服务器12进行交互,接收隐私协商服务器12发送的隐私协商请求,并根据用户的选择将协商结果反馈给隐私协商服务器12。隐私协商请求中可以包括:数据应用的目的、时间、地点等信息,从而可以提示用户是否同意通过无线网络设备进行用户数据收集、数据分析、数据开放。隐私选择模块的功能负责为用户提供可选择的人机交互界面,可以让用户通过手机软件或者登陆运营商的Web Portal网页选择是否开放自己的数据,即用户输入自己的用户标识,例如用户的媒体接入控制(Media Access Control,以下简称:MAC)地址、或者国际移动用户识别码(International Mobile Subscriber Identification Number,以下简称:IMSI)号码,告诉运营商不能使用/可以使用自己的用户数据,以及用户数据的应用范围、时间范围、区域范围等。The UE 13 can be a mobile device such as a mobile phone or a tablet. The UE 13 may include a privacy negotiation module and a privacy selection module, wherein the privacy negotiation module is responsible for interacting with the privacy negotiation server 12, receiving the privacy negotiation request sent by the privacy negotiation server 12, and feeding back the negotiation result to the privacy negotiation server according to the user's selection. 12. The privacy negotiation request may include: information about the purpose, time, location, and the like of the data application, so that the user may be prompted to agree to user data collection, data analysis, and data opening through the wireless network device. The function of the privacy selection module is responsible for providing the user with a selectable human-computer interaction interface, which allows the user to select whether to open his or her own data through the mobile phone software or on the operator's Web Portal webpage, that is, the user inputs his/her own user identification, such as the user's media. Access Control (Media Access Control, MAC address) or International Mobile Subscriber Identification Number (IMSI) number, telling operators that they cannot use/use their own user data, and users The application range, time range, and area range of the data.
应用服务器14负责支持无线通信网络、互联网、企业网等网络中的各类业务应用,该业务应用可以是需要使用用户数据的应用,例如灾难预警应用、交通规划应用、精准营销应用等。应用服务器14向数据分析开放系统11发送无线信息获取请求,该无线信息获取请求用于请求获取业务应用对应的用户数据。The application server 14 is responsible for supporting various service applications in a network such as a wireless communication network, an Internet, and an enterprise network. The service application may be an application that needs to use user data, such as a disaster warning application, a traffic planning application, a precision marketing application, and the like. The application server 14 sends a wireless information acquisition request to the data analysis open system 11 for requesting acquisition of user data corresponding to the business application.
配置与管理设备15用于管理隐私配置信息。隐私配置信息包括:白名单 或者黑名单,所述白名单用于指示允许对所述业务应用开放的用户数据的范围,所述黑名单用于指示不允许对所述业务应用开放的用户数据的范围。白名单和黑名单指示的范围可以是用户数据所属的用户范围、时间范围、地域范围等,根据白名单或黑名单可以确定允许收集、分析的用户数据。配置与管理设备15将隐私配置信息发送给数据分析开放系统11或无线网络设备16,使得数据分析开放系统11将属于白名单指示的范围或不属于黑名单指示的范围的用户数据发送给应用服务器14,或者使得无线网络设备16只收集属于白名单指示的范围或不属于黑名单指示的范围的用户数据。The configuration and management device 15 is used to manage privacy configuration information. Privacy configuration information includes: whitelist Or a blacklist, the whitelist is used to indicate a range of user data that is allowed to be open to the service application, and the blacklist is used to indicate a range of user data that is not allowed to be open to the service application. The range of the whitelist and the blacklist may be the user range, the time range, the geographical range, and the like to which the user data belongs. The user data allowed to be collected and analyzed may be determined according to the whitelist or the blacklist. The configuration and management device 15 transmits the privacy configuration information to the data analysis open system 11 or the wireless network device 16, so that the data analysis open system 11 transmits the user data belonging to the range indicated by the whitelist or the range not indicated by the blacklist to the application server. 14. Or cause the wireless network device 16 to collect only user data that falls within the scope of the whitelist indication or that does not belong to the blacklist indication.
可选的,配置与管理设备15还可以负责日志管理、隐私配置信息维护查询等功能,配置与管理设备15需要对这些操作维护功能进行特殊的权限管理。Optionally, the configuration and management device 15 can also be responsible for functions such as log management and privacy configuration information maintenance query. The configuration and management device 15 needs to perform special rights management on these operation and maintenance functions.
无线网络设备16用于对用户数据进行收集。进一步的,无线网络管理设备16可以根据配置与管理设备15发送的隐私配置信息有选择的对用户数据进行收集,还可以根据数据分析开放设备11与UE 13进行隐私协商后的隐私保护策略,有选择的对用户数据进行收集。无线网络设备16例如可以为基站控制器(Base Station Controller,以下简称:BSC)、无线网络控制器(Radio Network Controller,以下简称:RNC),演进型节点B(Evolved Node B,以下简称:eNodeB)等。无线网络设备16可以与数据分析开放设备11交互,接收数据分析开放设备11发送的隐私协商结果,并根据该隐私协商结果收集用户数据;无线网络设备16还可以与配置与管理设备15交互,根据隐私配置信息收集用户数据。 Wireless network device 16 is used to collect user data. Further, the wireless network management device 16 may selectively collect the user data according to the configuration and the privacy configuration information sent by the management device 15, and may further analyze the privacy protection policy after the privacy negotiation between the open device 11 and the UE 13 according to the data. The selected user data is collected. The wireless network device 16 may be, for example, a base station controller (hereinafter referred to as: BSC), a radio network controller (Radio Network Controller, hereinafter referred to as RNC), and an evolved Node B (hereinafter referred to as eNodeB). Wait. The wireless network device 16 can interact with the data analysis open device 11, receive the privacy negotiation result sent by the data analysis open device 11, and collect user data according to the privacy negotiation result; the wireless network device 16 can also interact with the configuration and management device 15, according to Privacy configuration information collects user data.
在图2所示的系统中,数据分析开放设备11、配置与管理设备15和无线网络设备之间可以进行隐私配置。该隐私配置是一种全局的配置,主要用于预先配置默认的白名单或黑名单,还可以包括其他的隐私配置信息。图3为本发明实施例提供的一种隐私配置方法的信令流程图,示例性的示出了一种隐私配置的方法,该方法包括:In the system shown in FIG. 2, privacy configuration can be performed between the data analysis open device 11, the configuration and management device 15, and the wireless network device. The privacy configuration is a global configuration. It is mainly used to pre-configure the default whitelist or blacklist. It can also include other privacy configuration information. FIG. 3 is a signaling flowchart of a privacy configuration method according to an embodiment of the present invention, and exemplarily shows a method for configuring a privacy, the method includes:
S301、配置与管理设备15向数据分析开放设备11下发用户过滤的黑名单或者白名单;S301, the configuration and management device 15 delivers a blacklist or whitelist filtered by the user to the data analysis open device 11;
S301’、配置与管理设备15向无线网络设备16下发用户过滤的黑名单或者白名单。 S301', the configuration and management device 15 delivers a blacklist or whitelist filtered by the user to the wireless network device 16.
用户过滤可以是基于UE 13的MAC地址、IMSI、移动用户ISDN号(Mobile Subscriber ISDN Number,以下简称:MSISDN)等进行设置;数据分析开放设备11收到配置与管理设备15发送的用户过滤的黑名单或者白名单后,将不进行或者进行这些用户的用户数据的分析和开放(即向应用服务器14发送用户数据);无线网络设备16收到用户过滤的黑名单或者白名单后,将不进行或者进行这些用户的用户数据的收集。The user filtering may be set based on the MAC address of the UE 13, the IMSI, the Mobile Subscriber ISDN Number (MSISDN), etc.; the data analysis open device 11 receives the black of the user filtering sent by the configuration and management device 15. After the list or the whitelist, the analysis and opening of the user data of the users will not be performed or performed (ie, the user data is sent to the application server 14); after receiving the blacklist or whitelist filtered by the user, the wireless network device 16 will not perform the operation. Or collect the user data of these users.
S302、配置与管理设备15向数据分析开放设备11下发时间过滤的黑名单或者白名单;S302, the configuration and management device 15 sends a blacklist or whitelist of time filtering to the data analysis open device 11;
S302’、配置与管理设备15向无线网络设备16下发时间过滤的黑名单或者白名单。S302', the configuration and management device 15 delivers a blacklist or whitelist of time filtering to the wireless network device 16.
时间过滤支持按照年月天分钟等进行设置;数据分析开放设备11收到配置与管理设备15发送的时间过滤的黑名单或者白名单后,将不进行或者进行这些时间范围内的用户数据的分析和开放;无线网络设备收到时间过滤的黑名单或者白名单后,将不进行或者进行这些时间范围内的用户数据的采集。The time filtering support is set according to the year, month, day, minute, etc.; after the data analysis open device 11 receives the blacklist or white list of the time filtering sent by the configuration and management device 15, the user data in these time ranges will not be analyzed or analyzed. And open; after receiving the blacklist or whitelist of time filtering, the wireless network device will not perform or collect user data in these time ranges.
S303、配置与管理设备15向数据分析开放设备11下发区域过滤的黑名单或者白名单;S303. The configuration and management device 15 sends a blacklist or a whitelist for area filtering to the data analysis open device 11.
S303’、配置与管理设备15向无线网络设备16下发区域过滤的黑名单或者白名单。S303', the configuration and management device 15 delivers a blacklist or whitelist for area filtering to the wireless network device 16.
区域标识可以为小区身份标识号码(identity,以下简称:ID),也可以为多个经纬度点组成区域标识等;数据分析开放设备11收到配置与管理设备15发送的区域过滤的黑名单或者白名单后,将不进行或者进行这些地域范围内的用户数据的分析和开放;无线网络设备收到用户过滤的黑名单或者白名单后,将不进行或者进行这些地域范围内的用户数据的采集。The area identifier may be a cell identity number (hereinafter referred to as ID), or may be a plurality of latitude and longitude points to form an area identifier, etc.; the data analysis open device 11 receives the blacklist or white of the area filtering sent by the configuration and management device 15. After the list, the user data in these geographical areas will not be analyzed or opened. After receiving the blacklist or whitelist filtered by the user, the wireless network device will not perform or collect the user data in these geographical areas.
S304、配置与管理设备15向数据分析开放设备11下发业务应用使用的黑名单或白名单;S304, the configuration and management device 15 sends a blacklist or a whitelist used by the service application to the data analysis open device 11;
S304’、配置与管理设备15向无线网络设备16下发业务应用使用的黑名单或白名单。S304', the configuration and management device 15 delivers a blacklist or whitelist used by the service application to the wireless network device 16.
业务应用可以是针对某些流氓手机应用、计费软件等设置黑名单或白名单,对于信誉良好、评分较高的应用可以对其开放用户数据,设为白名单内,而一些后台消耗流量、广告等应用可以严禁对其开放用户数据,设为黑名单。 数据分析开放设备11、无线网络设备16可以根据白名单或黑名单进行相应的处理。The business application may be configured to set a blacklist or a whitelist for some rogue mobile applications, billing software, etc., for an application with good reputation and high score, the user data may be opened to the whitelist, and some background consumes traffic, Applications such as advertisements can be strictly prohibited from opening user data to blacklists. The data analysis open device 11 and the wireless network device 16 can perform corresponding processing according to the whitelist or the blacklist.
可以理解的是,上述S301(S301’)~S304(S304’)均为可选的步骤,而无需全部配置。It can be understood that the above S301 (S301') to S304 (S304') are optional steps, and need not be all configured.
而且,配置与管理设备15也可以只配置数据分析开放设备11,从而使得该数据分析开放设备11能够基于隐私配置信息进行用户数据的隐私安全保护。Moreover, the configuration and management device 15 can also configure only the data analysis open device 11 so that the data analysis open device 11 can perform privacy protection of the user data based on the privacy configuration information.
另外,图1所示方法中的业务应用和隐私保护策略的对应关系也可以由配置与管理设备15在数据分析开放设备11上预先配置。In addition, the correspondence between the service application and the privacy protection policy in the method shown in FIG. 1 can also be pre-configured by the configuration and management device 15 on the data analysis open device 11.
表1给出了一种隐私保护策略的示例,其中业务应用的不同分类对应不同的隐私保护策略。Table 1 gives an example of a privacy protection policy in which different classifications of business applications correspond to different privacy protection policies.
表1Table 1
Figure PCTCN2014091678-appb-000001
Figure PCTCN2014091678-appb-000001
其中,隐私协商是指不同设备通过协商的方式确定隐私方面的事宜。在本发明实施例中,通过隐私协商可以获得隐私协商结果,该隐私协商结果用于指示是否向业务应用开放用户数据。Among them, privacy negotiation refers to different devices to determine privacy issues through negotiation. In the embodiment of the present invention, a privacy negotiation result may be obtained through privacy negotiation, and the privacy negotiation result is used to indicate whether to open user data to the business application.
示例性的,在图2所示的系统中,数据分析开放设备11与UE 13之 间可以通过隐私协商服务器12进行隐私协商。图4为本发明实施例提供的一种隐私协商方法的信令流程图。其中,步骤S402-S408示出了数据分析开放设备11通过隐私协商服务器12与UE 13进行隐私协商的过程,步骤S401可以触发数据分析开放设备11发起隐私协商。如图4所示:Exemplarily, in the system shown in FIG. 2, the data analysis open device 11 and the UE 13 Privacy negotiation can be performed through the privacy negotiation server 12. FIG. 4 is a signaling flowchart of a privacy negotiation method according to an embodiment of the present invention. Steps S402-S408 show a process in which the data analysis open device 11 performs privacy negotiation with the UE 13 through the privacy negotiation server 12, and step S401 can trigger the data analysis open device 11 to initiate privacy negotiation. As shown in Figure 4:
S401、数据分析开放设备11收到应用服务器14发送的无线信息获取请求;S401. The data analysis open device 11 receives the wireless information acquisition request sent by the application server 14;
其中,该无线信息获取请求用于请求获取业务应用对应的用户数据。数据分析开放设备11在收到该无线信息获取请求后,可以根据预先配置的业务应用和隐私保护策略的对应关系,获得对应的隐私保护策略。示例性的,根据表1的内容,若该无线信息获取请求是请求获取精准营销业务所需的用户数据时,数据分析开放设备11获得的隐私保护策略为指示进行隐私协商的隐私保护策略。The wireless information acquisition request is used to request to acquire user data corresponding to the service application. After receiving the wireless information acquisition request, the data analysis open device 11 can obtain a corresponding privacy protection policy according to the correspondence between the pre-configured service application and the privacy protection policy. Exemplarily, according to the content of Table 1, if the wireless information acquisition request is the user data required to obtain the accurate marketing service, the privacy protection policy obtained by the data analysis open device 11 is a privacy protection policy indicating privacy negotiation.
S402、数据分析开放设备11根据隐私保护策略,向隐私协商服务器12发送隐私协商请求;S402. The data analysis open device 11 sends a privacy negotiation request to the privacy negotiation server 12 according to the privacy protection policy.
其中,隐私协商请求用于请求获取是否对业务应用开放用户数据的指示。The privacy negotiation request is used to request an indication of whether to open user data for the service application.
示例性的,在数据分析开放设备11获得用于指示进行隐私协商的隐私保护策略后,数据分析开放设备11可以主动通过隐私协商服务器12下发隐私协商请求,该隐私协商请求中可以包括用户标识、请求用户数据的业务应用的信息,是否同意收集、分析用户数据的提示信息,是否同意对该业务应用开放用户数据的提示信息、所请求用户数据所属的地域范围、所请求用户数据所属的时间范围、、用户数据的使用用途等内容。Illustratively, after the data analysis open device 11 obtains the privacy protection policy for instructing the privacy negotiation, the data analysis open device 11 may actively send a privacy negotiation request through the privacy negotiation server 12, where the privacy negotiation request may include the user identifier. Whether the information of the service application requesting the user data agrees to collect and analyze the prompt information of the user data, whether to agree to the prompt information of the open user data for the service application, the geographical scope of the requested user data, and the time of the requested user data. The scope, use of user data, etc.
S403、隐私协商服务器12向UE 13转发该隐私协商请求;S403. The privacy negotiation server 12 forwards the privacy negotiation request to the UE 13;
隐私协商服务器12在收到数据分析开放设备11的隐私协商请求后,可以是以短信或者网页(Web)操作的方式将隐私协商请求发送给UE 13。After receiving the privacy negotiation request of the data analysis open device 11, the privacy negotiation server 12 may send the privacy negotiation request to the UE 13 in the manner of a short message or a webpage (Web) operation.
S404、UE 13进行隐私选择;S404. The UE 13 performs privacy selection.
用户可以选择是否对业务应用开放用户数据,允许使用用户数据的地域范围,允许使用用户数据的时间期限等内容。The user can choose whether to open user data for the business application, allow the use of the geographical scope of the user data, and allow the use of the time limit of the user data and the like.
S405、UE 13向隐私协商服务器12发送隐私协商结果; S405. The UE 13 sends a privacy negotiation result to the privacy negotiation server 12;
UE 13可以是以短信或者网页(Web)操作的方式将隐私协商结果发送给隐私协商服务器12。其中,隐私协商结果主要用于指示是否向业务应用开放用户数据,同时还可以包括其他用于隐私处理的信息。The UE 13 may send the privacy negotiation result to the privacy negotiation server 12 in the form of a short message or a web page (Web) operation. The privacy negotiation result is mainly used to indicate whether to open user data to the business application, and may also include other information for privacy processing.
S406、隐私协商服务器12向数据分析开放设备11发送隐私协商结果;S406. The privacy negotiation server 12 sends a privacy negotiation result to the data analysis open device 11;
示例性的,该隐私协商结果,可以包括用户标识、是否允许用户数据收集、分析,是否允许向业务应用开放用户数据,允许使用用户数据的地域范围、允许使用用户数据的时间限制、是否需要周期性与用户重新进行隐私协商等内容。Exemplarily, the result of the privacy negotiation may include user identification, whether to allow user data collection, analysis, whether to allow open user data to the business application, the geographical scope of the user data to be allowed, the time limit for allowing the use of the user data, and whether the period is required. Sex and users re-private privacy and other content.
S407、数据分析开放设备11获取隐私协商结果;S407. The data analysis open device 11 obtains a privacy negotiation result.
另外,数据分析开放设备11在获取隐私协商结果后,可以保存该隐私协商结果,也可以根据该隐私协商结果对无线信息获取请求进行响应。In addition, after obtaining the privacy negotiation result, the data analysis open device 11 may save the privacy negotiation result, or may respond to the wireless information acquisition request according to the privacy negotiation result.
至此,数据分析开放设备11成功获取了与UE 13之间进行隐私协商的隐私协商结果。So far, the data analysis open device 11 successfully acquired the privacy negotiation result of the privacy negotiation with the UE 13.
可选的,隐私协商服务器12可以向UE 13发送确认消息以告知UE 13隐私协商完成。例如:Alternatively, the privacy negotiation server 12 may send an acknowledgement message to the UE 13 to inform the UE 13 that the privacy negotiation is complete. E.g:
S408、隐私协商服务器12向UE 13发送确认消息。S408. The privacy negotiation server 12 sends an acknowledgement message to the UE 13.
图4示出了由无线信息获取请求触发的隐私协商的过程,与图4不同的是,图5所示的隐私协商方法由隐私协商服务器12主动发起隐私协商。FIG. 4 shows a procedure of privacy negotiation triggered by a wireless information acquisition request. Unlike FIG. 4, the privacy negotiation method shown in FIG. 5 is initiated by the privacy negotiation server 12 to initiate privacy negotiation.
如图5所示:As shown in Figure 5:
S501、隐私协商服务器12进行隐私声明;S501. The privacy negotiation server 12 performs a privacy statement.
在该方法中,隐私协商服务器在用户入网时,或者订阅了新的业务应用后,可以主动向UE 13发送隐私声明。该隐私声明的作用与内容可以参考图4中隐私协商请求的相关内容,此处不做赘述。In this method, the privacy negotiation server can actively send a privacy statement to the UE 13 when the user enters the network or subscribes to the new service application. For the role and content of the privacy statement, refer to the related content of the privacy negotiation request in FIG. 4, and details are not described herein.
S502、UE 13进行隐私选择;S502. The UE 13 performs privacy selection.
该步骤的相关内容可参考图4中的S404的相关内容。For related content of this step, reference may be made to the related content of S404 in FIG.
S503、UE 13向隐私协商服务器12发送隐私协商结果;S503. The UE 13 sends a privacy negotiation result to the privacy negotiation server 12;
该步骤的相关内容可参考图4中的S405的相关内容。 For related content of this step, reference may be made to the related content of S405 in FIG.
S504、隐私协商服务器12向数据分析开放设备11发送隐私协商结果;S504. The privacy negotiation server 12 sends a privacy negotiation result to the data analysis open device 11;
该步骤的相关内容可参考图4中的S406的相关内容。For related content of this step, reference may be made to the related content of S406 in FIG.
S505、数据分析开放设备11保存隐私协商结果;S505. The data analysis open device 11 saves a privacy negotiation result.
数据分析开放设备11保存该隐私协商结果后,当隐私保护策略为采用预存的隐私协商结果时,可以直接使用该保存的隐私协商结果对用户数据进行隐私处理。After the data analysis open device 11 saves the privacy negotiation result, when the privacy protection policy is a pre-stored privacy negotiation result, the user data may be directly processed using the saved privacy negotiation result.
S506、隐私协商服务器12向UE 13发送确认消息。S506. The privacy negotiation server 12 sends an acknowledgement message to the UE 13.
该步骤为可选步骤,可参考图4中S408的相关内容。This step is an optional step, and reference may be made to the related content of S408 in FIG.
图5示出了由隐私协商服务器12主动发起隐私协商的过程,与图5不同的是,图6所示的隐私协商过程是由数据分析开放设备11主动发起的,其中数据分析开放设备可以周期性的向UE 13发起隐私协商,以重新获取与UE 13的隐私协商结果。FIG. 5 shows a process of actively initiating privacy negotiation by the privacy negotiation server 12. Different from FIG. 5, the privacy negotiation process shown in FIG. 6 is actively initiated by the data analysis open device 11, wherein the data analysis open device can be cycled. The privacy negotiation is initiated to the UE 13 to reacquire the privacy negotiation result with the UE 13.
如图6所示:As shown in Figure 6:
S601、数据分析开放设备11向隐私协商服务器12发送隐私协商请求;S601. The data analysis open device 11 sends a privacy negotiation request to the privacy negotiation server 12;
数据分析开放设备11可以根据周期性隐私协商指示信息,周期性的向UE 13主动发起隐私协商。其中,业务应用对应的隐私保护策略中、配置与管理设备15下发的隐私配置中、或者UE 13反馈的隐私协商结果中可以包括该周期性隐私协商指示信息。另外,隐私协商结果可以设置有有效期,当到达有效期时,数据分析开放设备11也可以主动发起隐私协商。The data analysis open device 11 can periodically initiate privacy negotiation to the UE 13 according to the periodic privacy negotiation indication information. The periodic privacy negotiation indication information may be included in the privacy protection policy corresponding to the service application, the privacy configuration delivered by the configuration and management device 15, or the privacy negotiation result fed back by the UE 13. In addition, the privacy negotiation result may be set with an expiration date, and when the expiration date is reached, the data analysis open device 11 may also initiate privacy negotiation.
隐私协商请求的相关内容可参考图4中的S402的相关内容。For related content of the privacy negotiation request, reference may be made to the related content of S402 in FIG.
S602、隐私协商服务器12向UE 13转发隐私协商请求;S602. The privacy negotiation server 12 forwards the privacy negotiation request to the UE 13;
该步骤的相关内容可参考图4中的S403的相关内容。For related content of this step, reference may be made to the related content of S403 in FIG.
S603、UE 13进行隐私选择;S603. The UE 13 performs privacy selection.
该步骤的相关内容可参考图4中的S404的相关内容。For related content of this step, reference may be made to the related content of S404 in FIG.
S604、UE 13向隐私协商服务器12发送隐私协商结果;S604. The UE 13 sends a privacy negotiation result to the privacy negotiation server 12;
该步骤的相关内容可参考图4中的S405的相关内容。For related content of this step, reference may be made to the related content of S405 in FIG.
S605、隐私协商服务器12向数据分析开放设备11发送隐私协商结 果;S605. The privacy negotiation server 12 sends a privacy negotiation node to the data analysis open device 11. fruit;
该步骤的相关内容可参考图4中的S406的相关内容。For related content of this step, reference may be made to the related content of S406 in FIG.
S606、数据分析开放设备11获取隐私协商结果;S606. The data analysis open device 11 obtains a privacy negotiation result.
该步骤的相关内容可以参考图4中的S407的相关内容。For related content of this step, reference may be made to the related content of S407 in FIG.
S607、隐私协商服务器12向UE 13发送确认消息。S607. The privacy negotiation server 12 sends an acknowledgement message to the UE 13.
该步骤为可选步骤,相关内容可参考图4中的S408的相关内容。This step is an optional step. For related content, refer to related content of S408 in FIG. 4.
本领域技术人员应知,隐私协商也可以由UE 13主动发起。例如由UE 13向隐私协商服务器12发起隐私协商触发请求,触发隐私协商服务器12向UE 13发送隐私协商请求,此处不做赘述。Those skilled in the art should be aware that privacy negotiation can also be initiated by the UE 13. For example, the UE 13 initiates a privacy negotiation trigger request to the privacy negotiation server 12, and triggers the privacy negotiation server 12 to send a privacy negotiation request to the UE 13, which is not described herein.
为了更清楚的介绍本发明实施例提供的用户数据处理方法,以下结合图2所示的系统,分别以精准营销应用、交通规划应用和灾难预警应用为例进行说明。In order to more clearly describe the user data processing method provided by the embodiment of the present invention, the following uses the system shown in FIG. 2 to illustrate the precise marketing application, the traffic planning application, and the disaster warning application respectively.
图7以精准营销应用请求获取用户数据为例,示出了本发明实施例提供的用户数据的处理方法的流程图。精准营销应用为进行商业利用的业务应用,该业务应用主要获取用户的位置信息等用户数据以进行精准的广告推荐。对于此类业务,可以采用表1中指示进行隐私协商的隐私保护策略。精准营销应用与该隐私保护策略的对应关系可以由配置与管理设备15预先配置在数据分析开放设备11上。FIG. 7 is a flowchart of a method for processing user data according to an embodiment of the present invention, taking an example of obtaining a user data by a precision marketing application. The precision marketing application is a business application for commercial use, which mainly acquires user data such as user location information for accurate advertisement recommendation. For such services, the privacy protection policy indicated in Table 1 for privacy negotiation can be used. The correspondence between the precision marketing application and the privacy protection policy can be pre-configured on the data analysis open device 11 by the configuration and management device 15.
如图7所示:As shown in Figure 7:
S701、应用服务器14向数据分析开放设备11发送无线信息获取请求;S701. The application server 14 sends a wireless information acquisition request to the data analysis open device 11;
该无线信息获取请求中可以包括精准营销应用的应用标识、所请求的用户数据所属用户UE 13的用户标识、所请求的用户数据的种类(例如:位置信息,无线信号质量)。The wireless information acquisition request may include an application identifier of the precision marketing application, a user identifier of the user UE 13 to which the requested user data belongs, and a type of the requested user data (eg, location information, wireless signal quality).
S702、数据分析开放设备11获取与精准营销应用对应的隐私保护策略;S702. The data analysis open device 11 obtains a privacy protection policy corresponding to the precision marketing application.
其中,该隐私保护策略用于指示进行隐私协商;The privacy protection policy is used to indicate privacy negotiation;
S703、数据分析开放设备11通过隐私协商服务器12与UE 13进行隐私协商以获取隐私协商结果;S703. The data analysis open device 11 performs privacy negotiation with the UE 13 through the privacy negotiation server 12 to obtain a privacy negotiation result.
隐私协商的过程,可以参考图4所示隐私协商过程的相关内容。 For the process of privacy negotiation, refer to the related content of the privacy negotiation process shown in FIG. 4.
S704、数据分析开放设备11确定该隐私协商结果用于指示向精准营销应用开放用户数据;S704. The data analysis open device 11 determines that the privacy negotiation result is used to indicate that the user data is opened to the precision marketing application.
在确定向精准营销应用开放用户数据后,数据分析开放设备11可以向精准营销应用提供该用户数据。这里,数据分析开放设备11可以直接发送该用户数据至应用服务器14。After determining to open user data to the precision marketing application, the data analytics open device 11 can provide the user data to the precision marketing application. Here, the data analysis open device 11 can directly transmit the user data to the application server 14.
S705、数据分析开放设备11向应用服务器14发送UE 13的用户数据;S705. The data analysis open device 11 sends the user data of the UE 13 to the application server 14;
用户数据中可以携带UE 13的标识、UE 13的位置信息和无线信号质量等信息。The user data may carry information such as the identifier of the UE 13, the location information of the UE 13, and the quality of the wireless signal.
另外,若数据分析开放设备11不存在所请求的用户数据或者数据分析开放设备11上所存储的用户数据比较陈旧时,数据分析开放设备还可以向无线网络设备16发送数据收集指示信息,无线网络设备16收到数据收集指示信息后,收集精准营销应用所需的用户数据,并将收集的用户数据发送至数据分析开放设备11。In addition, if the data analysis open device 11 does not have the requested user data or the user data stored on the data analysis open device 11 is relatively old, the data analysis open device may also send data collection indication information to the wireless network device 16, the wireless network. After receiving the data collection indication information, the device 16 collects the user data required for the precise marketing application, and sends the collected user data to the data analysis open device 11.
至此,精准营销应用成功获得了UE 13的用户数据。At this point, the precision marketing application successfully obtained the user data of the UE 13.
可选的,当数据分析开放设备11确定该隐私协商结果用于指示不向精准营销应用开放用户数据时,数据分析开放设备11不向业务应用发送UE 13的用户数据。此时,可执行S706。Optionally, when the data analysis open device 11 determines that the privacy negotiation result is used to indicate that the user data is not to be opened to the precision marketing application, the data analysis open device 11 does not send the user data of the UE 13 to the service application. At this time, S706 can be performed.
S706、数据分析开放设备11向应用服务器14发送指示信息,该指示信息用于指示无法获取所述用户数据。S706. The data analysis open device 11 sends the indication information to the application server 14, where the indication information is used to indicate that the user data cannot be obtained.
通过图7所示的用户数据的处理方法,在精准营销应用在请求获取UE 13的用户数据时,可以让UE 13进行确认,当UE 13允许向精准营销应用开放用户数据时,才向精准营销应用提供UE 13的用户数据,提高了UE 13的用户数据的安全性。Through the processing method of the user data shown in FIG. 7, when the precision marketing application requests to acquire the user data of the UE 13, the UE 13 can be confirmed, and when the UE 13 allows the user data to be opened to the precision marketing application, the accurate marketing is performed. The application provides user data of the UE 13 to improve the security of the user data of the UE 13.
图8以交通规划应用请求获取用户数据为例,示出了本发明实施例提供的用户数据的处理方法的流程图。交通规划应用为进行公共事业的业务应用,该业务应用主要获取用户的运动轨迹的统计分析信息等用户数据以进行交通规划的决策。对于此类业务应用,可以采用表1中指示采用预存的隐私协商结果的隐私保护策略。交通规划应用与该隐私保护策略的对应关系可以由配置与管理设备15预先配置在数据分析开放设备11 上。FIG. 8 is a flowchart of a method for processing user data provided by an embodiment of the present invention, taking a traffic planning application request for acquiring user data as an example. The traffic planning application is a business application for a public utility, and the business application mainly acquires user data such as statistical analysis information of the user's motion trajectory to make a traffic planning decision. For such service applications, the privacy protection policy indicated in Table 1 indicating the use of pre-stored privacy negotiation results may be used. The correspondence between the traffic planning application and the privacy protection policy may be pre-configured by the configuration and management device 15 in the data analysis open device 11 on.
如图8所示:As shown in Figure 8:
S801、UE 13、隐私协商服务器12以及数据分析开放设备11进行隐私协商;S801, the UE 13, the privacy negotiation server 12, and the data analysis open device 11 perform privacy negotiation;
该隐私选择过程可以参考图5所示的隐私协商的过程。示例性的,S801的隐私协商过程可以在用户签约入网时进行,也可以在应用服务器14部署交通规划应用后进行。The privacy selection process can refer to the process of privacy negotiation shown in FIG. 5. Exemplarily, the privacy negotiation process of the S801 may be performed when the user subscribes to the network, or after the application server 14 deploys the traffic planning application.
在UE 13签约入网后,交通规划应用需要请求用户时,可以向数据分析开放设备11请求获取用户数据,如下所示:After the UE 13 signs up for the network, when the traffic planning application needs to request the user, the data analysis open device 11 may request to obtain the user data, as follows:
S802、应用服务器14向数据分析开放设备11发送无线信息获取请求;S802. The application server 14 sends a wireless information acquisition request to the data analysis open device 11;
该请求中可以包括交通规划应用的应用标识、用户数据的种类(例如:用户移动轨迹的统计分析信息),用户数据所属的用户范围(例如:A行政区内的用户)等内容;The request may include an application identifier of the traffic planning application, a type of user data (for example, statistical analysis information of the user's movement trajectory), a user range to which the user data belongs (for example, a user in the administrative area), and the like;
S803、数据分析开放设备11获取与交通规划应用对应的隐私保护策略;S803. The data analysis open device 11 obtains a privacy protection policy corresponding to the traffic planning application.
其中,该策略指示采用预存的隐私协商结果;Wherein, the policy indicates that the pre-stored privacy negotiation result is adopted;
当该隐私协商结果用于指示向交通规划应用提供用户数据时,When the privacy negotiation result is used to indicate that user data is provided to the traffic planning application,
S804、数据分析开放设备11确定UE 13的用户数据参与用户移动轨迹的统计分析;S804. The data analysis open device 11 determines that the user data of the UE 13 participates in statistical analysis of the user movement track.
在确定UE 13的用户数据参与用户移动轨迹的统计分析后,可以向交通规划应用提供UE 13的用户数据,即让UE 13的用户数据参与用户移动轨迹的统计分析。After determining the statistical analysis of the user data of the UE 13 participating in the user's movement trajectory, the user data of the UE 13 may be provided to the traffic planning application, that is, the user data of the UE 13 participates in the statistical analysis of the user's movement trajectory.
S805、数据分析开放设备11根据参与的用户数据进行用户移动轨迹的统计分析,得到统计分析结果;S805, the data analysis open device 11 performs statistical analysis of the user movement trajectory according to the participating user data, and obtains a statistical analysis result;
S806、数据分析开放设备11向应用服务器14返回统计分析结果。S806. The data analysis open device 11 returns a statistical analysis result to the application server 14.
可选的,当该隐私协商结果用于指示不向交通规划应用提供用户数据时,数据分析开放设备11确定UE 13的用户数据不参与用户移动轨迹的统计分析,因此在进行用户移动轨迹的统计分析时,不会采用UE 13的用户数据作为样本,其得到的统计分析结果也不会包含UE 13的用户数 据。Optionally, when the privacy negotiation result is used to indicate that the user data is not provided to the traffic planning application, the data analysis open device 11 determines that the user data of the UE 13 does not participate in the statistical analysis of the user movement trajectory, and therefore performs statistics on the user movement trajectory. In the analysis, the user data of the UE 13 is not taken as a sample, and the obtained statistical analysis result does not include the number of users of the UE 13. according to.
图8所示的用户数据的处理方法,在交通规划应用请求获取用户数据前,UE 13和数据分析开放设备11事先进行了隐私协商并保存了隐私协商结果,当交通规划应用需要调用用户数据时,可以直接获取该预存的隐私协商结果,并根据隐私协商结果来决定是否向交通规划应用提供UE13的用户数据,在合理开放用户数据的同时,可以提供用户数据的安全性。The user data processing method shown in FIG. 8 is, before the traffic planning application requests to acquire user data, the UE 13 and the data analysis open device 11 perform privacy negotiation in advance and save the privacy negotiation result, when the traffic planning application needs to call the user data. The pre-stored privacy negotiation result can be directly obtained, and according to the privacy negotiation result, whether to provide the user data of the UE 13 to the traffic planning application can provide the security of the user data while reasonably opening the user data.
图9以灾难预警应用请求获取用户数据为例,示出了本发明实施例提供的用户数据的处理方法的流程图。灾难预警应用为应对紧急状况的应用,该应用主要用于获取灾难发生地周围的用户的用户数据,以便进行灾难预警。对应此类业务应用,可以采用表1中不需要进行隐私处理的隐私保护策略。灾难预警应用与该隐私保护策略的对应关系可以由配置与管理设备15预先配置在数据分析开放设备11上。FIG. 9 is a flowchart of a method for processing user data according to an embodiment of the present invention. The disaster warning application is an application for emergency situations. The application is mainly used to obtain user data of users around the disaster site for disaster warning. Corresponding to such a business application, a privacy protection policy that does not require privacy processing in Table 1 can be used. The correspondence between the disaster warning application and the privacy protection policy may be pre-configured by the configuration and management device 15 on the data analysis open device 11.
如图9所示:As shown in Figure 9:
S901、灾难预警应用获知A地点出现灾难事故;S901, the disaster warning application learned that a disaster occurred at the A site;
S902、应用服务器14向数据分析开放设备11发送无线信息获取请求;S902. The application server 14 sends a wireless information acquisition request to the data analysis open device 11;
该请求中可以携带灾难预警应用的应用标识、用户数据所述的用户范围(例如:A地点10公里以内的用户)、用户数据的种类(例如:用户距离A地点的距离)等内容;The request may carry the application identifier of the disaster warning application, the user range described by the user data (for example, the user within 10 km of the A location), the type of the user data (for example, the distance of the user from the A location), and the like;
S903、数据分析开放设备11获取与灾难预警应用对应的隐私保护策略;S903. The data analysis open device 11 obtains a privacy protection policy corresponding to the disaster warning application.
其中,该隐私保护策略指示不需要进行隐私处理;Wherein, the privacy protection policy indicates that privacy processing is not required;
S904、数据分析开放设备11向应用服务器14发送用户数据;S904. The data analysis open device 11 sends user data to the application server 14;
由于该隐私保护策略指示不需要进行隐私处理,数据分析开放设备11可以直接向灾难预警应用提供UE 13的用户数据。Since the privacy protection policy indicates that privacy processing is not required, the data analysis open device 11 can directly provide the user data of the UE 13 to the disaster warning application.
S905、灾难预警应用根据收到的用户数据做后续处理。S905. The disaster warning application performs subsequent processing according to the received user data.
图9所示的用户数据的处理方法,通过为灾难预警应用设置不需要进行隐私处理的隐私保护策略,可以便于灾难预警应用能够快速获得所需的用户数据,体现了用户数据的合理开放。 The user data processing method shown in FIG. 9 can facilitate the disaster warning application to quickly obtain the required user data by setting a privacy protection policy for the disaster warning application that does not require privacy processing, and embodies the reasonable opening of the user data.
为了实现图1、图2-图9所示的方法,本发明实施例还提供一种用户数据处理装置,该装置可以集成在数据分析开放设备11上。In order to implement the method shown in FIG. 1 and FIG. 2, the embodiment of the present invention further provides a user data processing apparatus, which can be integrated on the data analysis open device 11.
如图10所示,该装置包括:接收单元11、策略确定单元12以及隐私处理单元13,其中,接收单元11,用于接收网元设备发送的无线信息获取请求,所述无线信息获取请求用于请求获取业务应用对应的用户数据;策略确定单元12,用于根据所述业务应用,以及所述业务应用和隐私保护策略的对应关系确定所述业务应用对应的隐私保护策略;隐私处理单元13,用于当所述隐私保护策略用于指示进行隐私处理时,根据所述隐私保护策略对所述用户数据进行所述隐私处理。As shown in FIG. 10, the apparatus includes: a receiving unit 11, a policy determining unit 12, and a privacy processing unit 13, wherein the receiving unit 11 is configured to receive a wireless information acquiring request sent by the network element device, where the wireless information acquiring request is used. Requesting the user data corresponding to the service application; the policy determining unit 12 is configured to determine a privacy protection policy corresponding to the service application according to the service application and the corresponding relationship between the service application and the privacy protection policy; the privacy processing unit 13 And performing, when the privacy protection policy is used to indicate privacy processing, performing the privacy processing on the user data according to the privacy protection policy.
该装置进行用户数据处理的机制可以参考图1、图2-图9所示的方法,其实现原理和技术效果类似,此处不再赘述。The mechanism for performing the user data processing of the device may refer to the methods shown in FIG. 1 and FIG. 2 to FIG. 9. The implementation principle and technical effects are similar, and details are not described herein again.
图10所示的用户数据处理装置,可以针对不同的业务应用确定与其对应的隐私保护策略,并根据隐私保护策略对用户数据进行隐私处理,在合理开放用户数据的同时,可以提高用户数据的安全性。The user data processing apparatus shown in FIG. 10 can determine a privacy protection policy corresponding to different service applications, and perform privacy processing on user data according to the privacy protection policy, and can improve user data security while reasonably opening user data. Sex.
作为一个可选的实施方式,在图10所示装置的基础上,本发明实施例还提供又一种用户数据处理装置。图11所示的用户数据处理装置同样包括接收单元11、策略确定单元12以及隐私处理单元13。更进一步的,图11所示的用户处理装置的隐私处理单元包括协商结果获取单元131和协商结果处理单元132。其中,协商结果获取单元131,用于当所述隐私保护策略用于指示进行隐私协商时,根据所述隐私保护策略与所述用户数据对应的用户设备进行所述隐私协商以获得隐私协商结果;协商结果处理单元132,用于当所述隐私协商结果用于指示向所述业务应用开放所述用户数据时,向所述业务应用提供所述用户数据;或者,当所述隐私协商结果用于指示不向所述业务应用开放所述用户数据时,发送指示信息至所述网元设备,所述指示信息用于指示无法获取所述用户数据。As an optional implementation manner, on the basis of the apparatus shown in FIG. 10, the embodiment of the present invention further provides another user data processing apparatus. The user data processing apparatus shown in FIG. 11 also includes a receiving unit 11, a policy determining unit 12, and a privacy processing unit 13. Further, the privacy processing unit of the user processing apparatus shown in FIG. 11 includes a negotiation result acquisition unit 131 and a negotiation result processing unit 132. The negotiation result obtaining unit 131 is configured to: when the privacy protection policy is used to indicate the privacy negotiation, perform the privacy negotiation according to the user equipment corresponding to the user data according to the privacy protection policy to obtain a privacy negotiation result; The negotiation result processing unit 132 is configured to: when the privacy negotiation result is used to indicate that the user data is opened to the service application, provide the user data to the service application; or when the privacy negotiation result is used When the user data is not opened to the service application, the indication information is sent to the network element device, where the indication information is used to indicate that the user data cannot be obtained.
进一步的,协商结果获取单元131,具体用于发送隐私协商请求至所述用户设备,所述隐私协商请求用于请求获取是否对所述业务应用开放所述用户数据的指示;接收所述用户设备发送的隐私协商请求响应,所述隐私协商请求响应包括所述隐私协商结果。Further, the negotiation result obtaining unit 131 is specifically configured to send a privacy negotiation request to the user equipment, where the privacy negotiation request is used to request an indication of whether to open the user data to the service application; and receive the user equipment. The sent privacy negotiation request response, the privacy negotiation request response includes the privacy negotiation result.
进一步的,协商结果获取单元131,还用于当所述隐私保护策略用于 指示采用预存的隐私协商结果时,根据所述隐私保护策略直接获取预存的隐私协商结果;协商结果处理单元132,用于当所述隐私协商结果用于指示向所述业务应用开放所述用户数据时,向所述业务应用提供所述用户数据;或者,当所述隐私协商结果用于指示不向所述业务应用开放所述用户数据时,发送指示信息至所述网元设备,所述指示信息用于指示无法获取所述用户数据。Further, the negotiation result obtaining unit 131 is further configured to use when the privacy protection policy is used When the pre-stored privacy negotiation result is used, the pre-stored privacy negotiation result is directly obtained according to the privacy protection policy; the negotiation result processing unit 132 is configured to: when the privacy negotiation result is used to indicate to open the user data to the service application Providing the user data to the service application; or sending the indication information to the network element device when the privacy negotiation result is used to indicate that the user data is not to be opened to the service application, the indication The information is used to indicate that the user data cannot be obtained.
进一步的,协商结果获取单元131,还用于在所述接收单元11接收所述网元设备发送的所述无线信息获取请求之前接收用户设备发送的所述隐私协商结果,并保存所述隐私协商结果。Further, the negotiation result obtaining unit 131 is further configured to: before the receiving unit 11 receives the wireless information acquisition request sent by the network element device, receive the privacy negotiation result sent by the user equipment, and save the privacy negotiation. result.
进一步的,隐私处理单元13,还用于当所述隐私保护策略用于指示不进行隐私处理时,向所述业务应用提供所述用户数据。Further, the privacy processing unit 13 is further configured to: when the privacy protection policy is used to indicate that privacy processing is not performed, provide the user data to the service application.
进一步的,接收单元11,还用于接收隐私配置信息,所述隐私配置信息包括:白名单或者黑名单,所述白名单用于指示允许对所述业务应用开放的用户数据的范围,所述黑名单用于指示不允许对所述业务应用开放的用户数据的范围;当所述协商结果处理单元用于向所述业务应用提供所述用户数据时,隐私处理单元13,具体用于向所述业务应用提供所述用户数据,其中,所述用户数据属于所述白名单指示的范围或者不属于所述黑名单指示的范围。Further, the receiving unit 11 is further configured to receive the privacy configuration information, where the privacy configuration information includes: a whitelist or a blacklist, where the whitelist is used to indicate a range of user data that is allowed to be open to the service application, The blacklist is used to indicate a range of user data that is not allowed to be open to the service application; when the negotiation result processing unit is configured to provide the user data to the service application, the privacy processing unit 13 is specifically configured to serve The service application provides the user data, where the user data belongs to a range indicated by the whitelist or does not belong to a range indicated by the blacklist.
图11所示的用户数据处理装置,可以用于执行图1、图2-图9所示的方法,其实现原理和产生的技术效果类似,此处不再赘述。The user data processing device shown in FIG. 11 can be used to execute the method shown in FIG. 1 and FIG. 2 to FIG. 9. The implementation principle and the generated technical effect are similar, and details are not described herein again.
通过图11所示的用户数据处理装置,可以针对不同的业务应用确定与其对应的隐私保护策略,并根据隐私保护策略对用户数据进行隐私处理,在合理开放用户数据的同时,可以提高用户数据的安全性。The user data processing device shown in FIG. 11 can determine a privacy protection policy corresponding to different service applications, and perform privacy processing on the user data according to the privacy protection policy, and can improve user data while reasonably opening user data. safety.
作为一种可选的实施方式,图10和图11所示的用户数据处理装置可以由硬件实现。例如图12和图13所示的用户数据处理设备,该设备也可以和数据分析开放设备集成在一起。As an alternative embodiment, the user data processing apparatus shown in Figures 10 and 11 can be implemented in hardware. For example, the user data processing device shown in Figures 12 and 13 can also be integrated with the data analysis open device.
如图12所示,用户数据处理可以包括:接收器11和处理器12,其中,接收器11,用于接收网元设备发送的无线信息获取请求,所述无线信息获取请求用于请求获取业务应用对应的用户数据;处理器12,用于根据所述业务应用,以及所述业务应用和隐私保护策略的对应关系确定 所述业务应用对应的隐私保护策略;当所述隐私保护策略用于指示进行隐私处理时,根据所述隐私保护策略对所述用户数据进行所述隐私处理。As shown in FIG. 12, the user data processing may include: a receiver 11 and a processor 12, wherein the receiver 11 is configured to receive a wireless information acquisition request sent by the network element device, where the wireless information acquisition request is used to request to acquire a service. Applying corresponding user data; the processor 12 is configured to determine, according to the service application, a correspondence between the service application and a privacy protection policy And the privacy protection policy corresponding to the service application; when the privacy protection policy is used to indicate privacy processing, performing the privacy processing on the user data according to the privacy protection policy.
图12所示的用户数据处理设备进行用户数据处理的机制可以参考图1、图2-图9所示的方法,其实现原理和技术效果类似,此处不再赘述。The mechanism for processing the user data by the user data processing device shown in FIG. 12 can be referred to the method shown in FIG. 1 and FIG. 2 to FIG. 9. The implementation principle and technical effects are similar, and details are not described herein again.
图13为本发明实施例提供的另一种用户数据处理设备的结构示意图。如图13所示,在图12所示的用户数据处理设备的基础上,还包括:发送器13。FIG. 13 is a schematic structural diagram of another user data processing device according to an embodiment of the present invention. As shown in FIG. 13, on the basis of the user data processing device shown in FIG. 12, a transmitter 13 is further included.
当所述隐私保护策略用于指示进行隐私处理具体为:所述隐私保护策略用于指示进行隐私协商时,发送器13用于发送隐私协商请求至所述用户设备,所述隐私协商请求用于请求获取是否对所述业务应用开放所述用户数据的指示;接收器11用于接收所述用户设备发送的隐私协商请求响应,所述隐私协商请求响应包括所述隐私协商结果;发送器13还用于当所述隐私协商结果用于指示向所述业务应用开放所述用户数据时,向所述业务应用提供所述用户数据;或者,当所述隐私协商结果用于指示不向所述业务应用开放所述用户数据时,发送指示信息至所述网元设备,所述指示信息用于指示无法获取所述用户数据。When the privacy protection policy is used to indicate that the privacy process is performed, specifically: when the privacy protection policy is used to indicate that the privacy negotiation is performed, the sender 13 is configured to send a privacy negotiation request to the user equipment, where the privacy negotiation request is used for And the receiver 11 is configured to receive an indication of whether the user data is opened for the service application; the receiver 11 is configured to receive a privacy negotiation request response sent by the user equipment, where the privacy negotiation request response includes the privacy negotiation result; and the sender 13 further When the privacy negotiation result is used to indicate that the user data is opened to the service application, the user data is provided to the service application; or when the privacy negotiation result is used to indicate that the service is not When the user data is opened, the indication information is sent to the network element device, and the indication information is used to indicate that the user data cannot be obtained.
或者,当所述隐私保护策略用于指示进行隐私处理具体为:所述隐私保护策略用于指示采用预存的隐私协商结果时,发送器13用于当所述预存的隐私协商结果用于指示向所述业务应用开放所述用户数据时,向所述业务应用提供所述用户数据;或者,当所预存的述隐私协商结果用于指示不向所述业务应用开放所述用户数据时,发送指示信息至所述网元设备,所述指示信息用于指示无法获取所述用户数据。Or, when the privacy protection policy is used to indicate that the privacy process is performed, where the privacy protection policy is used to indicate that the pre-stored privacy negotiation result is used, the sender 13 is configured to use the pre-stored privacy negotiation result to indicate the direction. When the service application opens the user data, the user data is provided to the service application; or when the pre-stored privacy negotiation result is used to indicate that the user data is not to be opened to the service application, the indication information is sent. To the network element device, the indication information is used to indicate that the user data cannot be obtained.
进一步的,发送器13还用于当所述隐私保护策略用于指示不进行隐私处理时,向所述业务应用提供所述用户数据。Further, the sender 13 is further configured to: when the privacy protection policy is used to indicate that privacy processing is not performed, provide the user data to the service application.
进一步的,接收器11还用于接收隐私配置信息,所述隐私配置信息包括:白名单或者黑名单,所述白名单用于指示允许对所述业务应用开放的用户数据的范围,所述黑名单用于指示不允许对所述业务应用开放的用户数据的范围;当发送器13向所述业务应用提供所述用户数据时,发送器13具体用于向所述业务应用提供所述用户数据,其中所述用户数 据属于所述白名单指示的范围或者不属于所述黑名单指示的范围。Further, the receiver 11 is further configured to receive privacy configuration information, where the privacy configuration information includes: a whitelist or a blacklist, where the whitelist is used to indicate a range of user data that is allowed to be open to the service application, the black The list is used to indicate a range of user data that is not allowed to be open to the service application; when the sender 13 provides the user data to the service application, the sender 13 is specifically configured to provide the user data to the service application. Where the number of users The range according to the whitelist indication or the range that does not belong to the blacklist indication.
图13所示的用户数据处理设备,可以用于执行图1、图2-图9所示的方法,其实现原理和产生的技术效果类似,此处不再赘述。The user data processing device shown in FIG. 13 can be used to perform the method shown in FIG. 1 and FIG. 2 to FIG. 9. The implementation principle and the generated technical effect are similar, and details are not described herein again.
通过图13所示的用户数据处理装置,可以针对不同的业务应用确定与其对应的隐私保护策略,并根据隐私保护策略对用户数据进行隐私处理,在合理开放用户数据的同时,可以提高用户数据的安全性。The user data processing device shown in FIG. 13 can determine a privacy protection policy corresponding to different service applications, and perform privacy processing on user data according to the privacy protection policy, and can improve user data while reasonably opening user data. safety.
本领域普通技术人员可以理解:实现上述各方法实施例的全部或部分步骤可以通过程序指令相关的硬件来完成。前述的程序可以存储于一计算机可读取存储介质中。该程序在执行时,执行包括上述各方法实施例的步骤;而前述的存储介质包括:ROM、RAM、磁碟或者光盘等各种可以存储程序代码的介质。One of ordinary skill in the art will appreciate that all or part of the steps to implement the various method embodiments described above may be accomplished by hardware associated with the program instructions. The aforementioned program can be stored in a computer readable storage medium. The program, when executed, performs the steps including the foregoing method embodiments; and the foregoing storage medium includes various media that can store program codes, such as a ROM, a RAM, a magnetic disk, or an optical disk.
最后应说明的是:以上各实施例仅用以说明本发明的技术方案,而非对其限制;尽管参照前述各实施例对本发明进行了详细的说明,本领域的普通技术人员应当理解:其依然可以对前述各实施例所记载的技术方案进行修改,或者对其中部分或者全部技术特征进行等同替换;而这些修改或者替换,并不使相应技术方案的本质脱离本发明各实施例技术方案的范围。 Finally, it should be noted that the above embodiments are merely illustrative of the technical solutions of the present invention, and are not intended to be limiting; although the present invention has been described in detail with reference to the foregoing embodiments, those skilled in the art will understand that The technical solutions described in the foregoing embodiments may be modified, or some or all of the technical features may be equivalently replaced; and the modifications or substitutions do not deviate from the technical solutions of the embodiments of the present invention. range.

Claims (14)

  1. 一种用户数据处理装置,其特征在于,包括:A user data processing device, comprising:
    接收单元,用于接收网元设备发送的无线信息获取请求,所述无线信息获取请求用于请求获取业务应用对应的用户数据;a receiving unit, configured to receive a wireless information acquisition request sent by the network element device, where the wireless information acquisition request is used to request to acquire user data corresponding to the service application;
    策略确定单元,用于根据所述业务应用,以及所述业务应用和隐私保护策略的对应关系确定所述业务应用对应的隐私保护策略;a policy determining unit, configured to determine, according to the service application, a correspondence between the service application and the privacy protection policy, a privacy protection policy corresponding to the service application;
    隐私处理单元,用于当所述隐私保护策略用于指示进行隐私处理时,根据所述隐私保护策略对所述用户数据进行所述隐私处理。a privacy processing unit, configured to perform the privacy processing on the user data according to the privacy protection policy when the privacy protection policy is used to indicate privacy processing.
  2. 根据权利要求1所述的装置,其特征在于,所述隐私处理单元,包括:The device according to claim 1, wherein the privacy processing unit comprises:
    协商结果获取单元,用于当所述隐私保护策略用于指示进行隐私协商时,根据所述隐私保护策略与所述用户数据对应的用户设备进行所述隐私协商以获得隐私协商结果;a negotiation result obtaining unit, configured to: when the privacy protection policy is used to indicate that the privacy negotiation is performed, perform the privacy negotiation according to the user equipment corresponding to the user data according to the privacy protection policy to obtain a privacy negotiation result;
    协商结果处理单元,用于当所述隐私协商结果用于指示向所述业务应用开放所述用户数据时,向所述业务应用提供所述用户数据;或者,当所述隐私协商结果用于指示不向所述业务应用开放所述用户数据时,发送指示信息至所述网元设备,所述指示信息用于指示无法获取所述用户数据。a negotiation result processing unit, configured to provide the user data to the service application when the privacy negotiation result is used to indicate that the user data is opened to the service application; or when the privacy negotiation result is used to indicate When the user data is not opened to the service application, the indication information is sent to the network element device, and the indication information is used to indicate that the user data cannot be obtained.
  3. 根据权利要求2所述的装置,其特征在于,所述协商结果获取单元,具体用于发送隐私协商请求至所述用户设备,所述隐私协商请求用于请求获取是否对所述业务应用开放所述用户数据的指示;接收所述用户设备发送的隐私协商请求响应,所述隐私协商请求响应包括所述隐私协商结果。The device according to claim 2, wherein the negotiation result obtaining unit is configured to send a privacy negotiation request to the user equipment, where the privacy negotiation request is used to request whether the application is open to the service application. Determining an indication of user data; receiving a privacy negotiation request response sent by the user equipment, where the privacy negotiation request response includes the privacy negotiation result.
  4. 根据权利要求1所述的装置,其特征在于,所述协商结果获取单元,用于当所述隐私保护策略用于指示采用预存的隐私协商结果时,根据所述隐私保护策略直接获取预存的隐私协商结果;The apparatus according to claim 1, wherein the negotiation result obtaining unit is configured to directly obtain the pre-stored privacy according to the privacy protection policy when the privacy protection policy is used to indicate that the pre-stored privacy negotiation result is adopted. Negotiation result;
    所述协商结果处理单元,用于当所述隐私协商结果用于指示向所述业务应用开放所述用户数据时,向所述业务应用提供所述用户数据;或者,当所述隐私协商结果用于指示不向所述业务应用开放所述用户数据时,发送指示信息至所述网元设备,所述指示信息用于指示无法获取所 述用户数据。The negotiation result processing unit is configured to: when the privacy negotiation result is used to indicate that the user data is opened to the service application, provide the user data to the service application; or, when the privacy negotiation result is used When the user data is not opened to the service application, the indication information is sent to the network element device, where the indication information is used to indicate that the user information cannot be obtained. User data.
  5. 根据权利要求4所述的装置,其特征在于,所述协商结果获取单元,还用于在所述接收单元接收所述网元设备发送的所述无线信息获取请求之前接收用户设备发送的所述隐私协商结果,并保存所述隐私协商结果。The device according to claim 4, wherein the negotiation result obtaining unit is further configured to receive, according to the wireless information acquiring request sent by the network element device, the receiving unit, Privacy negotiation results and save the privacy negotiation results.
  6. 根据权利要求1-5中任一项所述的装置,其特征在于,所述协商结果处理单元,还用于当所述隐私保护策略用于指示不进行隐私处理时,向所述业务应用提供所述用户数据。The device according to any one of claims 1 to 5, wherein the negotiation result processing unit is further configured to provide the service application when the privacy protection policy is used to indicate that privacy processing is not performed. The user data.
  7. 根据权利要求2-6中任一项所述的装置,其特征在于,所述接收单元,还用于接收隐私配置信息,所述隐私配置信息包括:白名单或者黑名单,所述白名单用于指示允许对所述业务应用开放的用户数据的范围,所述黑名单用于指示不允许对所述业务应用开放的用户数据的范围;The device according to any one of claims 2-6, wherein the receiving unit is further configured to receive privacy configuration information, where the privacy configuration information comprises: a whitelist or a blacklist, and the whitelist is used by the whitelist or the blacklist. And indicating a range of user data that is allowed to be open to the service application, where the blacklist is used to indicate a range of user data that is not allowed to be open to the service application;
    当所述协商结果处理单元用于向所述业务应用提供所述用户数据时,所述协商结果处理单元具体用于向所述业务应用提供所述用户数据,其中,所述用户数据属于所述白名单指示的范围或者不属于所述黑名单指示的范围。When the negotiation result processing unit is configured to provide the user data to the service application, the negotiation result processing unit is specifically configured to provide the user data to the service application, where the user data belongs to the The range indicated by the whitelist does not belong to the range indicated by the blacklist.
  8. 一种用户数据的处理方法,其特征在于,包括:A method for processing user data, comprising:
    用户数据处理装置接收网元设备发送的无线信息获取请求,所述无线信息获取请求用于请求获取业务应用对应的用户数据;The user data processing device receives a wireless information acquisition request sent by the network element device, where the wireless information acquisition request is used to request to acquire user data corresponding to the service application;
    所述用户数据处理装置根据所述业务应用,以及所述业务应用和隐私保护策略的对应关系确定所述业务应用对应的隐私保护策略;Determining, by the user data processing device, a privacy protection policy corresponding to the service application according to the service application and a correspondence between the service application and a privacy protection policy;
    当所述隐私保护策略用于指示进行隐私处理时,所述用户数据处理装置根据所述隐私保护策略对所述用户数据进行所述隐私处理。When the privacy protection policy is used to indicate privacy processing, the user data processing apparatus performs the privacy processing on the user data according to the privacy protection policy.
  9. 根据权利要求8所述的方法,其特征在于,所述隐私保护策略用于指示进行隐私处理具体为:所述隐私保护策略用于指示进行隐私协商;The method according to claim 8, wherein the privacy protection policy is used to indicate that the privacy process is performed: the privacy protection policy is used to indicate that the privacy negotiation is performed;
    所述用户数据处理装置根据所述隐私保护策略对所述用户数据进行所述隐私处理,包括:The user data processing apparatus performs the privacy processing on the user data according to the privacy protection policy, including:
    所述用户数据处理装置根据所述隐私保护策略与所述用户数据对应 的用户设备进行所述隐私协商以获得隐私协商结果;The user data processing apparatus corresponds to the user data according to the privacy protection policy User equipment performs the privacy negotiation to obtain a privacy negotiation result;
    当所述隐私协商结果用于指示向所述业务应用开放所述用户数据时,所述用户数据处理装置向所述业务应用提供所述用户数据;或者,When the privacy negotiation result is used to indicate that the user data is opened to the service application, the user data processing apparatus provides the user data to the service application; or
    当所述隐私协商结果用于指示不向所述业务应用开放所述用户数据时,所述用户数据处理装置发送指示信息至所述网元设备,所述指示信息用于指示无法获取所述用户数据。When the result of the privacy negotiation is used to indicate that the user data is not to be opened to the service application, the user data processing apparatus sends the indication information to the network element device, where the indication information is used to indicate that the user cannot be obtained. data.
  10. 根据权利要求9所述的方法,其特征在于,所述用户数据处理装置根据所述隐私保护策略与所述用户数据对应的用户设备进行所述隐私协商以获得隐私协商结果,包括:The method according to claim 9, wherein the user data processing apparatus performs the privacy negotiation according to the user equipment corresponding to the user data according to the privacy protection policy to obtain a privacy negotiation result, including:
    所述用户数据处理装置发送隐私协商请求至所述用户设备,所述隐私协商请求用于请求获取是否对所述业务应用开放所述用户数据的指示;The user data processing device sends a privacy negotiation request to the user equipment, where the privacy negotiation request is used to request an indication of whether to open the user data to the service application;
    所述用户数据处理装置接收所述用户设备发送的隐私协商请求响应,所述隐私协商请求响应包括所述隐私协商结果。The user data processing apparatus receives a privacy negotiation request response sent by the user equipment, where the privacy negotiation request response includes the privacy negotiation result.
  11. 根据权利要求8所述的方法,其特征在于,所述隐私保护策略用于指示进行隐私处理具体为:所述隐私保护策略用于指示采用预存的隐私协商结果;The method according to claim 8, wherein the privacy protection policy is used to indicate that the privacy process is performed: the privacy protection policy is used to indicate that the pre-stored privacy negotiation result is adopted;
    所述用户数据处理装置根据所述隐私保护策略对所述用户数据进行所述隐私处理,包括:The user data processing apparatus performs the privacy processing on the user data according to the privacy protection policy, including:
    所述用户数据处理装置根据所述隐私保护策略直接获取预存的隐私协商结果;The user data processing device directly obtains a pre-stored privacy negotiation result according to the privacy protection policy;
    当所述隐私协商结果用于指示向所述业务应用开放所述用户数据时,所述用户数据处理装置向所述业务应用提供所述用户数据;或者,When the privacy negotiation result is used to indicate that the user data is opened to the service application, the user data processing apparatus provides the user data to the service application; or
    当所述隐私协商结果用于指示不向所述业务应用开放所述用户数据时,所述用户数据处理装置发送指示信息至所述网元设备,所述指示信息用于指示无法获取所述用户数据。When the result of the privacy negotiation is used to indicate that the user data is not to be opened to the service application, the user data processing apparatus sends the indication information to the network element device, where the indication information is used to indicate that the user cannot be obtained. data.
  12. 根据权利要求11所述的方法,其特征在于,所述用户数据处理装置接收网元设备发送的无线信息获取请求之前,还包括:The method according to claim 11, wherein before the user data processing device receives the wireless information acquisition request sent by the network element device, the method further includes:
    所述用户数据处理装置接收用户设备发送的所述隐私协商结果;Receiving, by the user data processing device, the privacy negotiation result sent by the user equipment;
    所述用户数据处理装置保存所述隐私协商结果。 The user data processing device saves the privacy negotiation result.
  13. 根据权利要求8-12中任一项所述的方法,其特征在于,还包括:The method of any of claims 8-12, further comprising:
    当所述隐私保护策略用于指示不进行隐私处理时,所述用户数据处理装置向所述业务应用提供所述用户数据。The user data processing apparatus provides the user data to the business application when the privacy protection policy is used to indicate that privacy processing is not performed.
  14. 根据权利要求9-13中任一项所述的方法,其特征在于,还包括:The method of any of claims 9-13, further comprising:
    所述用户数据处理装置接收隐私配置信息,所述隐私配置信息包括:白名单或者黑名单,所述白名单用于指示允许对所述业务应用开放的用户数据的范围,所述黑名单用于指示不允许对所述业务应用开放的用户数据的范围;The user data processing apparatus receives the privacy configuration information, where the privacy configuration information includes: a whitelist or a blacklist, where the whitelist is used to indicate a range of user data that is allowed to be open to the service application, and the blacklist is used for Indicating a range of user data that is not allowed to be open to the business application;
    所述用户数据处理装置向所述业务应用提供所述用户数据,包括:The user data processing apparatus provides the user data to the service application, including:
    所述用户数据处理装置向所述业务应用提供所述用户数据,其中,所述用户数据属于所述白名单指示的范围或者不属于所述黑名单指示的范围。 The user data processing apparatus provides the user data to the service application, wherein the user data belongs to a range indicated by the whitelist or does not belong to a range indicated by the blacklist.
PCT/CN2014/091678 2014-05-30 2014-11-19 Method and apparatus for processing user data WO2015180427A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201410239109.0 2014-05-30
CN201410239109.0A CN103986728B (en) 2014-05-30 2014-05-30 Method and device for processing user data

Publications (1)

Publication Number Publication Date
WO2015180427A1 true WO2015180427A1 (en) 2015-12-03

Family

ID=51278553

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2014/091678 WO2015180427A1 (en) 2014-05-30 2014-11-19 Method and apparatus for processing user data

Country Status (2)

Country Link
CN (1) CN103986728B (en)
WO (1) WO2015180427A1 (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103986728B (en) * 2014-05-30 2017-05-24 华为技术有限公司 Method and device for processing user data
CN106503555A (en) * 2016-10-21 2017-03-15 维沃移动通信有限公司 A kind of method for ensureing safety of payment and mobile terminal
CN112787837A (en) * 2019-11-07 2021-05-11 华为技术有限公司 Data sharing method, device and system
CN114692194A (en) * 2020-12-31 2022-07-01 维沃移动通信有限公司 Method, device, equipment and storage medium for protecting information privacy
CN117062052A (en) * 2022-05-07 2023-11-14 维沃移动通信有限公司 Data processing method, device, core network node, electronic equipment and storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101667235A (en) * 2008-09-02 2010-03-10 北京瑞星国际软件有限公司 Method and device for protecting user privacy
CN102025498A (en) * 2009-09-19 2011-04-20 华为技术有限公司 Method, device and system for protecting user privacy
CN102394941A (en) * 2004-06-28 2012-03-28 诺基亚公司 User confirmation in data downloading
CN103986728A (en) * 2014-05-30 2014-08-13 华为技术有限公司 Method and device for processing user data

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7340438B2 (en) * 2001-05-21 2008-03-04 Nokia Corporation Method and apparatus for managing and enforcing user privacy
EP1307019A1 (en) * 2001-10-25 2003-05-02 Telefonaktiebolaget L M Ericsson (Publ) Method and apparatus for personal information access control
US20030145044A1 (en) * 2002-01-28 2003-07-31 Nokia Corporation Virtual terminal for mobile network interface between mobile terminal and software applications node
CN103596172A (en) * 2013-11-25 2014-02-19 中国联合网络通信集团有限公司 User information protection method, device and system
CN103701778A (en) * 2013-12-11 2014-04-02 清华大学 System and method for protecting privacy information in mobile terminal

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102394941A (en) * 2004-06-28 2012-03-28 诺基亚公司 User confirmation in data downloading
CN101667235A (en) * 2008-09-02 2010-03-10 北京瑞星国际软件有限公司 Method and device for protecting user privacy
CN102025498A (en) * 2009-09-19 2011-04-20 华为技术有限公司 Method, device and system for protecting user privacy
CN103986728A (en) * 2014-05-30 2014-08-13 华为技术有限公司 Method and device for processing user data

Also Published As

Publication number Publication date
CN103986728A (en) 2014-08-13
CN103986728B (en) 2017-05-24

Similar Documents

Publication Publication Date Title
US11012328B2 (en) Managing a 5G network using extension information
JP6911263B2 (en) Service management method and its equipment
US10313036B2 (en) Receiving an emergency alert message via a broadcast data channel
US11218939B2 (en) Methods relating to network slice selection requests
US20200170052A1 (en) Systems and methods for ran slicing in a wireless access network
WO2015180427A1 (en) Method and apparatus for processing user data
US20110105084A1 (en) Back-channeled packeted data
WO2017125025A1 (en) Call method, device, system, and storage medium
US11172460B2 (en) User location monitoring in mobile edge environment
CN110177382B (en) Congestion notification method, related equipment and system
US10645565B2 (en) Systems and methods for external group identification in wireless networks
US10945232B2 (en) Systems and methods for a network paging policy based on device mobility category
US11129092B2 (en) Application specific location discovery
CN107241701B (en) data transmission method and device
CN115552952A (en) Network detection in Service Enabled Architecture Layer (SEAL)
CN115379420A (en) Communication method and communication device for executing perception task
US20230336957A1 (en) Systems and methods for emergency broadcast using delegated discovery
US11438463B1 (en) System and method for hybrid network data consumption tracking in a wireless network
EP3139572A1 (en) User profiling for location based advertising
CN113170276A (en) Method and system for delivering dedicated services restricted to predefined service areas
US11792282B1 (en) System and method for determining device location and providing access authorization
US20240007880A1 (en) Systems and methods for quality of service monitoring activated by policy control function
US11202177B2 (en) Systems and methods for caching and managing multicast content
WO2016112540A1 (en) Service authorization method, proximity-based service server and user equipment
CN117528443A (en) Communication perception method and device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14893401

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14893401

Country of ref document: EP

Kind code of ref document: A1