WO2015196908A1 - Procédé, terminal, serveur et système de traitement de service - Google Patents

Procédé, terminal, serveur et système de traitement de service Download PDF

Info

Publication number
WO2015196908A1
WO2015196908A1 PCT/CN2015/080674 CN2015080674W WO2015196908A1 WO 2015196908 A1 WO2015196908 A1 WO 2015196908A1 CN 2015080674 W CN2015080674 W CN 2015080674W WO 2015196908 A1 WO2015196908 A1 WO 2015196908A1
Authority
WO
WIPO (PCT)
Prior art keywords
terminal
service
service processing
information
verification
Prior art date
Application number
PCT/CN2015/080674
Other languages
English (en)
Chinese (zh)
Inventor
杜宗鹏
薛莉
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2015196908A1 publication Critical patent/WO2015196908A1/fr

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials

Definitions

  • the present invention relates to the field of Internet technologies, and in particular, to a service processing method, a terminal, a server, and a system.
  • OTT Over The Top
  • the OTT business has become increasingly eroded by operators.
  • operators cooperate with OTT to provide users with various services.
  • the quality of the service is an important reference for the user to measure the performance of the operator and the OTT. Therefore, how to handle the service in the mode of cooperation between the operator and the OTT becomes The key to the development of operators and OTT.
  • the server that processes the service is a service processing server, and the query service is taken as an example.
  • the terminal first accesses the service processing server, and then the service processing server acquires the terminal.
  • the UA (User Agent) attribute of the HTTP (Hyper Text Transfer Protocol) header of the browser is used to query the device information of the terminal carried in the UA attribute.
  • the related technology when processing the automatic login service, sets the automatic login time, and after the terminal enters the user name and password through the user name and password input option provided by the service processing server, the automatic setting is performed. Automatic login during login time.
  • the user when the related technology processes the directional speed-up service, the user first subscribes to the directional speed-up service, and the operator performs a specific ACL (Access Control List) for the user's traffic, and the ACL is the terminal local. Controlling the bandwidth of the terminal when accessing, of course After the user operates the terminal to access the service processing server, the traffic is matched to the ACL, and the user operates the terminal to access the service processing server to speed up the directionality by increasing the bandwidth of the terminal. In addition, when multiple terminals of the user access the service processing server at the same time, the traffic of the multiple terminals will be uniformly processed.
  • ACL Access Control List
  • the information that can be queried by the service processing is the device information of the terminal carried in the UA attribute, but the bandwidth information of the terminal accessing the network cannot be obtained, and the query-type service processed by the related technology is relatively simple. Business processing is not effective.
  • the related art can automatically log in after the user enters the user name and password in the user name and password input option provided by the service processing server, and the automatic login time can be set. After the automatic login time, you need to enter the user name and password to log in. As a result, the related technologies are not convenient for handling the automatic login service, and the service processing effect is not good.
  • the related services are used to process the directional speed-up service
  • the traffic of multiple terminals will be uniformly processed, and the service can only be accessed at a fixed access location, resulting in correlation.
  • the directional speed-up service of the technical processing does not support the user terminal to access the service at different access locations, and the user is inconvenient to use, and the service processing effect is not good.
  • an embodiment of the present invention provides a service processing method, a terminal, a server, and a system.
  • the technical solution is as follows:
  • a service processing method comprising:
  • the service processing request carries at least a service type and verification information, where the verification information includes at least a user identifier of the terminal that sends the access request to the service processing server;
  • the service processing service is performed Returns the business processing response.
  • the service type is an information query type
  • the verifying, according to the verification information, whether the terminal meets a verification condition corresponding to the service type include:
  • the terminal is verified to meet the verification condition corresponding to the information query type.
  • the service type is an automatic login type
  • the verification information further includes: a first random number, a first signature information, and a first URL (Universal Resource Locator, Uniform Resource Locator);
  • the verifying, according to the verification information, that the terminal meets the verification condition corresponding to the service type includes:
  • the user subscription information indicates that the terminal has activated the automatic login service
  • the service processing type is a directional speed-up type
  • the verification information further includes: a second random number, a second signature information, and a second URL
  • the verifying, according to the verification information, that the terminal meets the verification condition corresponding to the service type includes:
  • the user subscription information indicates that the terminal has activated the directional speed-up type service, querying the key corresponding to the terminal according to the user identifier of the terminal in the verification information, and the key and the second random Counting the number and the second URL to obtain second verification information;
  • the second verification information matches the second signature information, verify that the terminal meets the verification condition corresponding to the directional acceleration type.
  • a service processing method comprising:
  • the service processing request carries at least a service type and verification information, where the verification information includes at least a user identifier of the terminal;
  • the service type is an information query type
  • the service processing response carries an information query result, where the information query result includes a network condition of the terminal. At least one of information and device information of the terminal;
  • the processing the service of the service type according to the service processing response including:
  • the access request is an automatic login request
  • the sending the service processing request to the operator server according to the access request includes:
  • the service processing request to the operator server according to the login verification request, where the service type is an automatic login type, and the verification information further includes a first random number, first signature information, and a first URL.
  • the service processing response is configured to carry the carrier server to verify whether the terminal meets the service type corresponding to Verification results of the verification conditions;
  • the processing the service of the service type according to the service processing response including:
  • the access request is a directed speed request
  • the sending the service processing request to the operator server according to the access request includes:
  • the service type is a directional speedup type
  • the verification information further includes a second random number, second signature information, and a second URL.
  • the service processing response in the service processing, the server is configured to verify whether the terminal meets the service type Verification results of the verification conditions;
  • the processing the service of the service type according to the service processing response including:
  • a service processing method comprising:
  • the service processing feedback is sent to the service processing server according to the random number.
  • the access request is an automatic login request
  • the receiving the information returned by the service processing server according to the access request includes:
  • Generating first signature information according to the first random number and transmitting, to the service processing server, a login verification request that carries at least a user identifier of the terminal, the first random number, and the first signature information.
  • the access request is a directional speedup request; and the receiving, by the service processing server, the information returned according to the access request includes:
  • the second signature is generated according to the second random number, and the user identifier, the second random number, and the second The business confirmation response of the signature information.
  • an operator server is provided, where the carrier server includes:
  • the receiving module is configured to receive a service processing request sent by the service processing server, where the service processing request carries at least a service type and verification information, where the verification information includes at least a user identifier of the terminal that sends the access request to the service processing server. ;
  • a verification module configured to verify, according to the verification information, whether the terminal meets a verification condition corresponding to the service type
  • a returning module configured to: when the terminal meets the verification condition corresponding to the service type, The business processing server returns a business processing response.
  • the service type is an information query type
  • the verification module includes:
  • a first query sub-module configured to query, in the user database, the user subscription information corresponding to the user identifier of the terminal according to the user identifier of the terminal in the verification information;
  • the first verification sub-module is configured to verify that the terminal satisfies the verification condition corresponding to the information query type when the user subscription information indicates that the terminal has opened the device capability open service.
  • the service type is an automatic login type
  • the verification information further includes a first random number, first signature information, and a first URL
  • the verification module includes:
  • a first query sub-module configured to query, in the user database, the user subscription information corresponding to the user identifier of the terminal according to the user identifier of the terminal in the verification information;
  • a second query sub-module configured to query, according to the user identifier of the terminal in the verification information, a key corresponding to the terminal, when the user subscription information indicates that the terminal has activated the automatic login type service;
  • a first calculation submodule configured to hash the key with the first random number and the first URL to obtain first verification information
  • a first matching submodule configured to match the first verification information with the first signature information
  • a second verification submodule configured to: when the first verification information matches the first signature information, verify that the terminal meets the verification condition corresponding to the automatic login type.
  • the service processing type is a directional speed-up type
  • the verification information further includes a second random number, a second signature information, and a second URL
  • the verification module includes:
  • a first query submodule configured to determine, according to the user identifier of the terminal in the verification information, the number of users Querying the user subscription information corresponding to the user identifier of the terminal according to the library;
  • a third query sub-module configured to query, according to the user identifier of the terminal in the verification information, a key corresponding to the terminal, when the user subscription information indicates that the terminal has activated the directional speed-up type service;
  • a second calculation submodule configured to hash the key with the second random number and the second URL to obtain second verification information
  • a second matching submodule configured to match the second verification information with the second signature information
  • a third verification submodule configured to: when the second verification information matches the second signature information, verify that the terminal meets the verification condition corresponding to the directional speedup type.
  • a service processing server includes:
  • a first receiving module configured to receive an access request sent by the terminal, where the access request carries at least a user identifier of the terminal;
  • a sending module configured to send a service processing request to the operator server according to the access request, where the service processing request carries at least a service type and verification information, where the verification information includes at least a user identifier of the terminal;
  • a second receiving module configured to receive a service processing response returned by the operator server for a service processing request
  • a processing module configured to process the service of the service type according to the service processing response.
  • the service type is an information query type
  • the service processing response carries an information query result, where the information query result includes a network of the terminal At least one of situation information and device information of the terminal;
  • the processing module is configured to determine, according to the information query result carried in the service processing response, a service type provided for the terminal.
  • the access request is an automatic login request
  • the sending module includes:
  • Generating a submodule configured to determine, after receiving an automatic login request sent by the terminal When the terminal is not logged in, generating a first random number according to the automatic login request;
  • a first sending submodule configured to send the first random number to the terminal
  • a receiving submodule configured to receive a login verification request that is sent by the terminal and that carries at least the user identifier of the terminal, the first random number, and the first signature information generated by the terminal according to the first random number;
  • a second sending submodule configured to send the service processing request to the operator server according to the login verification request, where the service type is an automatic login type, and the verification information further includes a first random number and a first signature. Information and the first URL.
  • the service processing response where the carrier server is configured to verify whether the terminal meets the service type Verification result of the verification condition
  • the processing module is configured to process the service of the automatic login type of the terminal according to the verification result carried in the service processing response.
  • the access request is a directional speed request
  • the sending module includes:
  • a receiving submodule configured to receive a service processing request that is sent by the terminal and that carries at least a user identifier of the terminal, the second random number, and second signature information generated by the terminal according to the second random number;
  • a sending submodule configured to send the service processing request to the operator server, where the service type is a directional speedup type, where the verification information further includes a second random number, a second signature information, and a second uniform resource locator URL.
  • the service processing response in the service processing, the server is configured to verify whether the terminal meets the service type Verification result of the verification condition
  • the processing module is configured to process, according to the verification result carried in the service processing response, The directional speed-up type of service of the terminal.
  • a terminal where the terminal includes:
  • An obtaining module configured to acquire a user identifier of the terminal
  • a first sending module configured to send, to the service processing server, an access request that carries at least a user identifier of the terminal;
  • a receiving module configured to receive information returned by the service processing server according to the access request
  • the second sending module is configured to: when the information returned by the service processing server includes a random number, send the service processing feedback to the service processing server according to the random number.
  • the access request is an automatic login request
  • the receiving module is configured to receive, by the service processing server, a return according to the automatic login request. a random number
  • the second sending module includes:
  • a first generation submodule configured to generate first signature information according to the first random number
  • the first sending submodule is configured to send, to the service processing server, a login verification request that carries at least a user identifier of the terminal, the first random number, and the first signature information.
  • the access request is a directional speedup request
  • the receiving module is configured to receive a service prompt window returned by the service processing server, and according to the a second random number returned by the directional speedup request
  • the second sending module includes:
  • a second generation submodule configured to generate second signature information according to the second random number after performing service confirmation according to the service prompt window
  • a second sending submodule configured to send, to the service processing server, a service confirmation response that carries at least a user identifier, the second random number, and the second signature information of the terminal.
  • a seventh aspect provides a service processing system, where the system includes: an operator server, a service processing server, and a terminal;
  • the operator server is the operator server as described in the fourth aspect
  • the service processing server is the service processing server according to the fifth aspect
  • the terminal is the terminal according to the sixth aspect.
  • the service processing response is returned to the service processing server, thereby improving the service processing effect.
  • FIG. 1 is a schematic diagram of an implementation environment of a service processing method according to an embodiment of the present invention
  • FIG. 2 is a flowchart of a service processing method according to another embodiment of the present invention.
  • FIG. 3 is a flowchart of a service processing method according to another embodiment of the present invention.
  • FIG. 4 is a flowchart of a service processing method according to another embodiment of the present invention.
  • FIG. 5 is a flowchart of a service processing method according to another embodiment of the present invention.
  • FIG. 6 is a flowchart of a service processing method according to another embodiment of the present invention.
  • FIG. 7 is a flowchart of a service processing method according to another embodiment of the present invention.
  • FIG. 8 is a schematic structural diagram of an operator server according to another embodiment of the present invention.
  • FIG. 9 is a schematic structural diagram of a service processing server according to another embodiment of the present invention.
  • FIG. 10 is a schematic structural diagram of a terminal according to another embodiment of the present invention.
  • FIG. 11 is a schematic structural diagram of an operator server according to another embodiment of the present invention.
  • FIG. 12 is a schematic structural diagram of a service processing server according to another embodiment of the present invention.
  • FIG. 13 is a schematic structural diagram of a terminal according to another embodiment of the present invention.
  • FIG. 14 is a schematic structural diagram of a service processing system according to another embodiment of the present invention.
  • the embodiment of the present invention provides a service processing method.
  • FIG. 1 it is a schematic structural diagram of an implementation environment involved in a service processing method according to an embodiment of the present invention.
  • the implementation environment includes a terminal 101, a service processing server 102, and an operator server 103.
  • the terminal 101 is a terminal as described in the following embodiments.
  • the terminal 101 is configured to send an access request to the service processing server 102 after acquiring the user identifier of the terminal.
  • the terminal 101 can be a mobile phone, a computer, or the like.
  • the service processing server 102 is a service processing server as described in the following embodiments.
  • the service processing server 102 is configured to receive the access request sent by the terminal 101, and send a service processing request to the operator server according to the received access request.
  • the service processing server 102 is further configured to receive a service processing response returned by the operator server, and process the service according to the received service processing response.
  • the carrier server 103 is an operator server as described in the following embodiments.
  • the operator server 103 is configured to receive the service processing request sent by the service processing server 102, and send the service processing response to the service processing server after verifying that the terminal 101 satisfies the verification condition corresponding to the service type according to the received service processing request.
  • the terminal 101 and the service processing server 102 and the carrier server 103 can communicate via a wireless network or a wired network, and the service processing server 102 and the carrier server 103 can communicate via a wired network.
  • the embodiment of the present invention provides a method for service processing.
  • the method process provided by this embodiment includes:
  • 201 Receive a service processing request sent by the service processing server, where the service processing request carries at least a service type and verification information, where the verification information includes at least a user identifier of the terminal that sends the access request to the service processing server.
  • the service type is an information query type, and according to the verification information, it is verified whether the terminal meets the verification condition corresponding to the service type, including:
  • the verification terminal satisfies the verification condition corresponding to the information query type.
  • the service type is an automatic login type
  • the verification information further includes: a first random number, a first signature information, and a first URL
  • Verifying, by the verification information, whether the terminal meets the verification conditions corresponding to the service type including:
  • the key corresponding to the terminal is queried according to the user identifier of the terminal in the verification information, and the key is hashed with the first random number and the first URL to obtain the first a verification message;
  • the verification terminal satisfies the verification condition corresponding to the automatic login type.
  • the service processing type is a directional speed-up type
  • the verification information further includes: a second random number, a second signature information, and a second URL
  • the user subscription information indicates that the terminal has activated the directional speed-up type service, query the key corresponding to the terminal according to the user identifier of the terminal in the verification information, and hash the key with the second random number and the second URL to obtain the second key. verify message;
  • the verification terminal satisfies the verification condition corresponding to the directional acceleration type.
  • the present embodiment provides a service processing method, which, after verifying that the terminal satisfies the verification condition corresponding to the service type according to the verification information carried in the service processing request sent by the received service processing server, returns a service processing response to the service processing server, thereby improving the service. Processing effect.
  • the embodiment of the present invention provides a service processing method. Referring to FIG. 3, the method process provided by this embodiment includes:
  • the service type is an information query type
  • the service processing response carries an information query result, where the information query result includes at least one of network condition information of the terminal and device information of the terminal;
  • Businesses that process business types based on business processing responses including:
  • the service type provided for the terminal is determined according to the information query result carried in the service processing response.
  • the access request is an automatic login request
  • the service processing request is sent to the operator server according to the access request, including:
  • the service type is an automatic login type
  • the verification information further includes a first random number, a first signature information, and a first URL.
  • the service processing response carries a verification result that the operator server verifies whether the terminal meets the verification condition corresponding to the service type
  • Businesses that process business types based on business processing responses including:
  • the service of the automatic login type of the terminal is processed according to the verification result carried in the service processing response.
  • the access request is a directed speed request
  • the service request is sent to the operator server according to the access request, including:
  • a service identifier that is at least a user identifier of the mobile terminal, a second random number, and a second signature information generated by the terminal according to the first random number
  • the service type is a directional speedup type
  • the verification information further includes a second random number, a second signature information, and a second URL.
  • the service processing response carries a verification result that the operator server verifies whether the terminal meets the verification condition corresponding to the service type
  • Businesses that process business types based on business processing responses including:
  • the service of the directional speed-up type of the terminal is processed according to the verification result carried in the service processing response.
  • the service processing method provided by the embodiment by receiving an access request sent by the terminal, sends a service processing request that carries at least the service type and the verification information to the operator server according to the access request, and receives the service processing response returned by the operator server, The service processing response is processed according to the service type, thereby improving the business processing effect.
  • the embodiment of the present invention provides a service processing method. Referring to FIG. 4, the method process provided by this embodiment includes:
  • the access request is an automatic login request; and the information returned by the receiving service processing server according to the access request includes:
  • Generating first signature information according to the first random number and sending at least the carrier information to the service processing server A user identification of the terminal, a first random number, and a login verification request of the first signature information.
  • the access request is a directional speedup request; and the information returned by the service processing server according to the access request includes:
  • the second signature information is generated according to the second random number, and the service confirmation response that carries at least the user identifier, the second random number, and the second signature information of the terminal is sent to the service processing server.
  • the service processing method provided in this embodiment obtains the user identifier of the terminal, and sends an access request to the service processing server that carries at least the user identifier of the terminal, and then, after receiving the random number returned by the service processing server, the service is performed according to the random number.
  • the processing server sends service processing feedback, which improves the business processing effect.
  • the embodiment of the present invention provides a service processing method, in which the operator server verifies that the terminal meets the service type according to the verification information carried in the service processing request sent by the received service processing server. After the corresponding verification condition, the service processing response is returned to the service processing server, and after receiving the service processing response returned by the operator server, the service processing server processes the service type service according to the received service processing response.
  • the service processing type includes, but is not limited to, the information query type, the automatic login type, and the directional speed-up type.
  • the service type is an information query type as an example.
  • the method provided in this embodiment is exemplified by taking the service processing server as an OTT server as an example. Referring to FIG. 5, the method process provided by this embodiment includes:
  • the carrier server establishes a cooperative relationship with the OTT server, and opens an inquiry interface to the OTT server.
  • the OTT server is configured as an OTT server that has a cooperative relationship with the operator server. Therefore, in order to enable the OTT server to process the query service, the embodiment provides a service processing method. The method needs to establish cooperation with the OTT server. Then, the query interface is opened to the OTT server with the cooperation, so that the OTT server can process the query service according to the open query interface.
  • the operator server authenticates the terminal that opens the device capability open service.
  • the terminal may be a mobile phone, a computer, etc., and the terminal does not specifically limit the terminal.
  • the terminal that needs to open the device is required to be authenticated after the device is enabled to open the device.
  • the method for authenticating the terminal that opens the device capability open service includes, but is not limited to, the following methods:
  • Each terminal has a user identifier of a terminal distributed by the operator server. After the terminal accesses the carrier network through the home gateway, the terminal interacts with the operator server to exchange an EAP (Extensible Authenication Protocol) message, and the operator server The user identifier of the terminal is obtained from the EAP message, and the terminal is authenticated based on the user identifier of the terminal.
  • EAP Extensible Authenication Protocol
  • the user identifier of the terminal includes, but is not limited to, an IMSI (International Mobile Subscriber Identity), and the like, and the user identifier of the terminal is not specifically limited.
  • the home gateway includes, but is not limited to, a router, a modem, and the like. This embodiment does not specifically limit the home gateway.
  • EAP is a certification framework commonly used in wireless networks or point-to-point connections and supports a variety of different authentication methods.
  • the cooperation relationship established in the foregoing step 501 is not related to the user, and may be considered as a signing or cooperation action of the OTT server and the operator server. After the action is completed, the OTT and the operator remain maintained unless the OTT and the operator cancel the contract. constant.
  • the OTT server can be triggered to connect to the operator server.
  • Step 502 EAP authentication is triggered every time the user accesses the network of the operator, and the network is accessed after the authentication succeeds.
  • the terminal may be executed once every time the terminal is turned on, or when the terminal location changes, such as the terminal is from the office. The location moves to the home and authenticates the terminal.
  • the execution frequency of the foregoing step 501 is low, and may not be updated substantially.
  • the execution frequency of the step 502 is high, which may be performed when the user logs in, and then updated according to requirements, that is, the authentication operation is performed again.
  • the terminal sends an access request to the OTT server.
  • the information carried in the access request includes, but is not limited to, an IP (Internet Protocol) address of the terminal, a user identifier of the terminal, such as an IMSI, and the like.
  • the form of transmission of the access request includes, but is not limited to, sending in the form of a URL, and the like.
  • the manner in which the terminal sends an access request to the OTT server includes, but is not limited to, sending an access request to the OTT server in the manner of notification or message.
  • the OTT server receives the access request sent by the terminal, and sends a service processing request to the operator server according to the received access request, where the service processing request carries at least the service type and the verification information.
  • each terminal has a user identifier of the terminal, and the user identifier of each terminal is unique, the user identifier of each terminal can be used to know the situation of each terminal, such as the screen size of the terminal, the bandwidth used, and the like. Therefore, after receiving the access request sent by the terminal in the form of a URL, the OTT server may parse the received access request in order to process the query-type service, and parse the user identifier of the obtained terminal, and obtain the terminal according to the parsing. The user identifier generates a service processing request, and then processes the query type service by sending a service processing request to the operator server in a subsequent step.
  • the information carried in the service processing request includes, but is not limited to, a service type and verification information.
  • the service type includes, but is not limited to, a query type service, an automatic login type service, a directional speed-up type service, and the like. This embodiment does not specifically limit the service type.
  • the service type carried in this embodiment is a query type service. Therefore, the service type carried in the processing request of this embodiment is a query type service.
  • the verification information includes at least the user identifier of the terminal that has sent the access request to the OTT server, and the embodiment does not specifically limit the verification information.
  • the manner in which the OTT server sends a service processing request to the operator server according to the received access request includes, but is not limited to, a service processing request sent in the form of a message or a notification.
  • the operator server receives the service processing request sent by the OTT server, and verifies whether the terminal meets the verification condition corresponding to the information query type according to the verification information, and if yes, step 506 is performed.
  • the operator server After receiving the service processing request sent by the OTT server, the operator server verifies whether the terminal meets the verification condition corresponding to the information query type according to the verification information carried in the processing request. Specifically, the verification information is used to verify whether the terminal meets the verification condition corresponding to the information query type, including but not limited to:
  • the verification terminal satisfies the verification condition corresponding to the information query type.
  • the user subscription information includes, but is not limited to, the device capability open information, the automatic login information, the directional speedup information, and the like.
  • the user subscription information is not specifically limited in this embodiment.
  • the operator server receives the user identifier of the terminal carried in the service processing request sent by the OTT server as A, and if the user subscription information corresponding to the user identifier A of the terminal is queried in the user database according to the user identifier A of the terminal, the device has the device.
  • the capability open information indicates that the terminal has opened the device capability open service, and the verification terminal satisfies the verification condition corresponding to the information query type.
  • the operator server returns a service processing response to the OTT server.
  • the foregoing step 505 has determined that the terminal meets the verification condition corresponding to the information query type, indicating that the terminal allows the operator to open the device information to the service processing server that establishes the cooperation relationship. Therefore, the step is based on the foregoing step 505.
  • the server will return a service processing response to the service processing server, so that the service processing server can query the class service according to the service processing response information, thereby providing different service types for different terminals.
  • the information carried in the service processing response includes but is not limited to the information query result.
  • the information query result includes, but is not limited to, the network situation information, the device information of the terminal, and the like. This embodiment does not specifically limit the information query result.
  • the network situation information includes but is not limited to information such as the network speed.
  • the terminal device information includes, but is not limited to, a screen size of the terminal and the like.
  • the method provided in this embodiment needs to determine the terminal according to the user identifier of the terminal before the operator server returns the service processing response to the service processing server. Whether the terminal corresponding to the user ID is Line, and determine whether the IP used by the terminal corresponding to the user identifier of the terminal is the corresponding IP. If the terminal corresponding to the user identifier of the terminal is online, and the IP used by the terminal is the corresponding IP, it will return to the service processing server. Business processing response.
  • the OTT server receives the service processing response for the service processing request returned by the operator server, and queries the class service according to the service processing response processing information.
  • the OTT server receives the service processing response for the service processing request returned by the operator server, and queries the type of service according to the service processing response information.
  • the service of the service query response type according to the service processing includes, but is not limited to, determining the service type provided for the terminal according to the information query result carried in the service processing response. Since the information query result includes the network situation information, the device information of the terminal, and the like, and the network condition and the device information of the terminal determine the service type required by the terminal, the query result according to the information carried in the service processing response may be better
  • the terminal provides the type of service required.
  • service types include, but are not limited to, low network speed services, high speed services, and the like.
  • the OTT server cache can be utilized.
  • the device caches the device information, bandwidth, and other information of the terminal, and obtains device information, bandwidth, and other information of the terminal through the method of processing the information query type service when the information of the device information and the bandwidth of the cache terminal reaches a preset time.
  • the preset time may be one day or the like, and the preset time does not specifically limit the preset time.
  • the embodiment provides a service processing method.
  • the operator server receives the service processing information of the service type and the verification information sent by the OTT server, and verifies that the terminal meets the verification condition corresponding to the query type according to the verification information, and then returns a service processing response to the OTT server.
  • the OTT server processes the query-type service according to the service processing response, such as device information and bandwidth of the terminal, thereby enriching the processed query-type service.
  • the embodiment of the present invention provides a service processing method, in which the operator server verifies that the terminal meets the verification condition corresponding to the service type according to the verification information carried in the service processing request sent by the received OTT server. Will return the business to the OTT server After receiving the service processing response returned by the operator server, the OTT server processes the service type service according to the received service processing response.
  • the service processing type includes, but is not limited to, the information query type, the automatic login type, and the directional speed-up type.
  • the service type is an automatic login type
  • the access request sent by the terminal to the OTT server is an automatic login request.
  • the method provided in this embodiment is exemplified by taking the service processing server as an OTT server as an example. Referring to FIG. 6, the method process provided by this embodiment includes:
  • the carrier server establishes a cooperative relationship with the OTT server, and opens an authentication query interface to the OTT server.
  • the OTT server is an OTT server that has a cooperative relationship with the carrier server.
  • the OTT server is configured to cooperate with the OLT server. Therefore, in order to enable the OTT server to process the automatic login service, the embodiment is provided.
  • the method provided needs to establish a cooperative relationship with the OTT server, and then open the authentication query interface to the OTT server with the cooperation relationship, so that the cooperative OTT server processes the automatic login service according to the open authentication query interface.
  • the operator server authenticates the terminal that opens the automatic login service.
  • the terminal may be a mobile phone, a computer, etc., and the terminal does not specifically limit the terminal.
  • the premise of the implementation of the service processing method provided in this embodiment is that the terminal has activated the automatic login service. Under this premise, when the terminal accesses the OTT server that has a cooperative relationship with the operator server, and the operator server verifies the OTT server. After the verification conditions corresponding to the automatic login type are met, the OTT server can process the automatic login service.
  • the method for authenticating the terminal that has opened the automatic login service includes, but is not limited to, the following methods:
  • Each terminal has a user identifier of a terminal distributed by the operator server. After the terminal accesses the carrier network through the home gateway, the terminal exchanges an EAP message with the operator server, and the operator server obtains the user identifier of the terminal from the EAP message, based on The user ID of the terminal authenticates the terminal.
  • the user identifier of the terminal includes, but is not limited to, an IMSI, and the like, and the user identifier of the terminal is not specifically limited.
  • the home gateway includes, but is not limited to, a router, a modem, and the like. This embodiment does not specifically limit the home gateway.
  • EAP is a certification framework commonly used in wireless networks or point-to-point connections and supports a variety of different authentication methods.
  • the terminal and the operator server will generate a pair of identical keys, which are the basis of the subsequent EAP authentication access step, and are also in the subsequent steps.
  • the key may be a PMK (Pairwise Master Key), and the key is not specifically limited in this embodiment.
  • the cooperation relationship established in the foregoing step 601 is independent of the user, and can be regarded as a signing or cooperation action of the OTT server and the operator server. After the action is completed, the OTT and the operator remain maintained unless the OTT and the operator cancel the contract. constant.
  • the OTT server can be triggered to connect to the operator server.
  • Step 602 EAP authentication is triggered every time the user accesses the network of the operator, and the network is accessed after the authentication succeeds.
  • the terminal may be executed once every time the terminal is powered on, or when the terminal location changes, such as the terminal is from the office. The location moves to the home and authenticates the terminal.
  • the execution frequency of the above step 601 is low, and may not be updated substantially.
  • the execution frequency of the step 602 is high, which may be performed when the user logs in, and then updated according to requirements, that is, the authentication operation is performed again.
  • the terminal sends an automatic login request to the OTT server that carries at least the user identifier of the terminal.
  • the information carried in the automatic login request includes, but is not limited to, an IP address of the terminal, a user identifier of the terminal, an automatic login request code, and the like.
  • the form of transmission of the access request includes, but is not limited to, sending in the form of a URL, and the like.
  • the manner in which the terminal sends an automatic login request to the OTT server includes, but is not limited to, sending an automatic login request to the OTT server by means of a notification or a message.
  • the OTT server receives the automatic login request sent by the terminal, and sends a service processing request to the operator server according to the access request, where the service processing request carries at least the service type and the verification information.
  • the information carried in the service processing request includes, but is not limited to, a service type and verification information.
  • Service types include, but are not limited to, query-type services, automatic login-type services, and directional speed-up services. This embodiment does not specifically limit the type of service.
  • the service type of the processing in this embodiment is an automatic login type service. Therefore, the service type carried in the processing request in this embodiment is an automatic login type service.
  • the verification information includes, but is not limited to, the user identifier, the first random number, the first signature information, and the first URL of the terminal that sent the access request to the OTT server. The verification information is not specifically limited in this embodiment.
  • the manner in which the OTT server sends the service processing request to the operator server according to the access request includes, but is not limited to, the following manner: since the login status of the terminal is determined by the OTT server, when the terminal logs in to the OTT server, the OTT server changes the terminal. The current login status changes the login status of the terminal from online to offline. When the OTT server performs this operation, the OTT server does not necessarily notify the terminal of the result of performing this operation. Therefore, the OTT server receives the transmission from the terminal. After the automatic login request, the terminal's login status is determined according to the user identifier of the terminal. If the terminal is not logged in, the first random number may be generated according to the automatic login request, and the generated first random number is sent to the terminal.
  • the first random number received by the terminal is added to the URL corresponding to the access request, and the URL corresponding to the access request and the key generated by the terminal when the server authenticates the terminal are hashed by the specific algorithm to obtain the first Signing information, and then adding the obtained first signature information to the access request pair
  • the URL to obtain a new URL is the login authentication request.
  • the generated login verification request is sent to the OTT server, and the OTT server generates a service processing request according to the received login verification request, and sends the service processing request to the operator server.
  • the specific algorithm includes, but is not limited to, using MD5 (Message Digest Algorithm algorithm, information digest algorithm fifth edition) and the like. Among them, MD5 is a hash function widely used in the field of computer security to provide message integrity protection.
  • the operator server receives the service processing request sent by the OTT server, and verifies whether the terminal meets the verification condition corresponding to the automatic login type according to the verification information, and if yes, performs step 606.
  • the operator server After receiving the service processing request sent by the OTT server, the operator server verifies whether the terminal meets the verification condition corresponding to the automatic login type according to the verification information carried in the processing information. Specifically, it is verified according to the verification information whether the terminal meets the verification condition corresponding to the automatic login type, and the package But not limited to:
  • the key corresponding to the terminal is queried according to the user identifier of the terminal in the verification information, and the key is hashed with the first random number and the first URL to obtain the first verify message;
  • the verification terminal satisfies the verification condition corresponding to the automatic login type.
  • the subscription information of the user includes, but is not limited to, the device capability open information, the automatic login information, the directional speed information, and the like.
  • the user subscription information is not specifically limited in this embodiment.
  • the operator server receives the user identifier of the terminal carried in the service processing request sent by the OTT server as A, and queries the user identifier A of the terminal in the user database according to the user identifier A of the terminal carried in the received service processing request.
  • the corresponding user subscription information has automatic login information, indicating that the terminal has opened the automatic login service.
  • the operator server will query the key of the terminal according to the user identifier A of the terminal. If the key of the queried terminal is 123, the key 123 is hashed with the first random number and the first URL, and the first verification information is 010101.
  • the verification terminal satisfies the verification condition corresponding to the automatic login type. If the first signature information is 101101, since the first verification information 010101 does not match the first signature information 101101, the verification terminal does not satisfy the verification condition corresponding to the automatic login type.
  • the operator server returns a service processing response to the OTT server.
  • the carrier server Since the terminal has determined that the terminal meets the verification condition corresponding to the automatic login type in the above step 605, the carrier server returns a service processing response to the OTT server based on the foregoing step 605, so that the OTT server automatically processes the response according to the service processing.
  • the information carried in the service processing response includes, but is not limited to, whether the operator server verifies whether the terminal meets the verification result of the verification condition corresponding to the automatic login type service.
  • the verification result includes, but is not limited to, the terminal meets the verification condition corresponding to the automatic login type service, and the terminal does not satisfy the verification condition corresponding to the automatic login type service type. This implementation does not specifically limit the verification result.
  • the OTT server receives the service processing response for the service processing request returned by the operator server, and processes the automatic login service according to the service processing response.
  • the OTT server After receiving the service processing response for the service processing request returned by the operator server, the OTT server processes the automatic login service according to the verification result of the carrier server that is verified by the service processing response to verify whether the terminal meets the verification condition corresponding to the automatic login type. Specifically, the automatic login service is processed according to the verification result of the service processing response carrying the operator server to verify whether the terminal meets the verification condition corresponding to the service type, including but not limited to: processing the automatic login type of the terminal according to the verification result carried in the service processing response. Business.
  • the OTT server allows the terminal to automatically log in according to the verification result carried in the service processing response; if the verification result is that the terminal does not satisfy the verification condition corresponding to the automatic login type, the OTT server The terminal is not allowed to automatically log in according to the verification result carried in the service processing response.
  • the service processing method provided in this embodiment receives the processing request of the service type and the verification information sent by the OTT server, and then verifies that the terminal meets the verification condition corresponding to the automatic login type according to the verification information, and then returns a service processing response to the OTT server, and further
  • the OTT server processes the automatic login class service according to the service processing response. Since it is not necessary to enter a username and password, it is more convenient when dealing with automatic login services.
  • the embodiment of the present invention provides a service processing method, in which the operator server verifies that the terminal meets the verification condition corresponding to the service type according to the verification information carried in the service processing request sent by the received OTT server.
  • the service processing response is returned to the OTT server.
  • the OTT server processes the service type service according to the received service processing response.
  • the service processing type includes, but is not limited to, an information query type, an automatic login type, and a directional speed-up type.
  • the access request sent by the terminal to the OTT server is an example of a directional speedup request.
  • the method provided in this embodiment is exemplified by taking the service processing server as an OTT server as an example. Referring to FIG. 7, the method flow provided by this embodiment includes:
  • the operator server establishes a cooperative relationship with the OTT server, and opens a policy request interface to the OTT server.
  • the OTT server is an OTT server that has a cooperative relationship with the operator server.
  • the OTT server is configured to cooperate with the carrier server. Therefore, in order to enable the OTT server to process the directional speed-up service, the embodiment is provided.
  • the method provided needs to establish a cooperation relationship with the OTT server, and then open a policy request interface to the OTT server with the cooperation relationship, so that the OTT server can process the directional speed-up service according to the open policy request interface.
  • the operator server authenticates the terminal that opens the directional speed-up service.
  • the service processing method provided in this embodiment processes the directional speed-up service, it is required to verify whether the OTT server satisfies the verification condition corresponding to the directional speed-up service, and the verification of whether the OTT server satisfies the verification condition corresponding to the directional speed-up service is mainly
  • the authentication information of the terminal that performs the directional speed-up service is authenticated by the server. Therefore, in order to verify whether the OTT server meets the verification conditions corresponding to the directional speed-up service in the subsequent steps, the method provided in this embodiment needs to be opened first.
  • the terminal of the directional speed-up service is authenticated.
  • the manner of authenticating the terminal that opens the directional speed-up service includes but is not limited to the following:
  • Each terminal has a user identifier of a terminal distributed by the operator server. After the terminal accesses the carrier network through the home gateway, the terminal exchanges an EAP message with the operator server, and the operator server obtains the user identifier of the terminal from the EAP message, based on The user ID of the terminal authenticates the terminal.
  • the user identifier of the terminal includes, but is not limited to, an IMSI, and the like, and the user identifier of the terminal is not specifically limited.
  • the home gateway includes, but is not limited to, a router, a modem, and the like. This embodiment does not specifically limit the home gateway.
  • EAP is a certification framework commonly used in wireless networks or point-to-point connections and supports a variety of different authentication methods.
  • the terminal and The carrier server will generate a pair of identical keys, which is the basis for the subsequent EAP authentication access steps, and is also an important basis for the terminal to speed up the terminal in the subsequent steps.
  • the key may be a PMK or the like, and the key is not specifically limited in this embodiment.
  • step 701 EAP authentication is triggered every time the user accesses the network of the operator, and the network is accessed after the authentication succeeds.
  • the terminal may be executed once every time the terminal is turned on, or when the terminal location changes, such as the terminal is from the office. The location moves to the home and authenticates the terminal.
  • the execution frequency of the foregoing step 701 is low, and may not be updated substantially.
  • the execution frequency of the step 701 is high, which may be performed when the user logs in, and then updated according to requirements, that is, the authentication operation is performed again.
  • the terminal sends, to the OTT server, an directional speedup request that carries at least a user identifier of the terminal.
  • the terminal When the terminal logs in to the OTT server and starts the directional speedup service on the OTT server, the terminal sends a directional speedup request to the OTT server.
  • the terminal may be a mobile phone, a computer, etc., and the terminal does not specifically limit the terminal.
  • the information carried in the directional speedup request includes, but is not limited to, an IP address of the terminal, a user identifier of the terminal, such as an IMSI, and the like.
  • the transmission form of the directional speedup request includes, but is not limited to, sending in the form of a URL, and the like.
  • the manner in which the terminal sends the directional speedup request to the OTT server includes, but is not limited to, sending an access request to the OTT server in the manner of notification or message.
  • the OTT server receives the directional speedup request sent by the terminal, and sends a service processing request to the operator server according to the received directional speedup request, where the service processing request carries at least the service type and the verification information.
  • the information carried in the service processing request includes, but is not limited to, a service type, verification information, and the like.
  • the service type includes, but is not limited to, a query type service, an automatic login type service, a directional speed-up type service, and the like. This embodiment does not specifically limit the service type. Because the service processed in this embodiment is a directional speed-up type service, the service type carried in the processing request in this embodiment is a directional speed-up type. Type of business.
  • the authentication information includes, but is not limited to, the user identifier, the second random number, the second signature information, the second URL, and the policy requirement information of the terminal that accesses the OTT server.
  • the verification information is not specifically limited in this embodiment.
  • the OTT server When the terminal logs in to the OTT server and starts the directional speed-up service, the OTT server needs to charge the directional speed-up service initiated by the terminal. Therefore, in order to remind the terminal-side user, the OTT server will return the initiated directional speed-up service to the terminal.
  • the generated service prompt window generates a second random number and sends the generated second random number to the terminal. After receiving the second random number sent by the OTT server, the terminal receives the second random number, When the server authenticates the terminal, the key generated by the terminal, the user identifier of the terminal, and the URL corresponding to the access request are hashed to obtain the second signature information, and the second random number, the user identifier of the terminal, and the second signature information are added.
  • a new URL is obtained, and the new URL is a service confirmation response.
  • the terminal sends the generated service confirmation response to the OTT server, and the OTT server generates a service processing request according to the service confirmation response. If the OTT server detects that the user confirms the confirmation information in the service prompt window, the generated service processing request is sent to the operator server.
  • the manner in which the OTT server sends a service processing request to the operator server includes, but is not limited to, a service processing request sent in the form of a message or a notification.
  • the operator server receives the service processing request sent by the OTT server, and verifies whether the terminal meets the verification condition corresponding to the directional speed-up type according to the verification information, and if yes, performs step 706.
  • the operator server After receiving the service processing request sent by the OTT server, the operator server verifies whether the terminal meets the verification condition corresponding to the directional speed-up type according to the verification information carried in the processing information.
  • the verification information is used to verify whether the terminal meets the verification condition corresponding to the directional speed-up type service, including but not limited to:
  • the key corresponding to the terminal is queried according to the user identifier of the terminal in the verification information, and the key is hashed with the second random number and the second URL to obtain the second verification.
  • the verification terminal satisfies the verification condition corresponding to the directional acceleration type.
  • the user subscription information includes, but is not limited to, the device capability open information, the automatic login information, the directional speedup information, and the like.
  • the user subscription information is not specifically limited in this embodiment.
  • the operator server receives the user identifier of the terminal carried in the service processing request sent by the OTT server as B, and queries the user identifier B of the terminal in the user database according to the user identifier B of the terminal carried in the received service processing request.
  • the corresponding subscription information has the directional speed-up signing information, indicating that the terminal has opened the directional speed-up service.
  • the operator server queries the key of the terminal according to the user identifier B of the terminal. If the key of the queried terminal is 258, the query will be queried.
  • the obtained key 258 and the second random number and the second URL are hashed, and the second verification information is obtained as 101101.
  • the verification terminal satisfies the directional speedup condition; if the second signature information is 010101, the second verification information 101101 and the second signature information 010101 If there is no match, the verification terminal does not satisfy the verification condition corresponding to the directional speed-up type.
  • the operator server performs a directional acceleration operation on the terminal, and returns a service processing response to the OTT server.
  • the operator server performs the directional speed-up operation on the terminal based on the foregoing step 705, and performs the directional speed-up service. fee.
  • the operator server may adopt the following manner: first, generate a corresponding speedup policy according to the policy requirement information included in the verification information carried in the service processing request, and further generate the corresponding speedup policy according to the generated speedup policy.
  • the terminal accesses the OTT server for directional acceleration.
  • the manner in which the operator server directionally speeds up the terminal accessing the OTT server according to the generated speed-up policy including but not limited to: adjusting the bandwidth of the terminal accessing the OTT server through the gateway control device according to the generated speed-up policy And directionally speeding up the terminal accessing the OTT server according to the adjusted broadband.
  • the operator server performs a directional acceleration of the terminal, and returns a service processing response to the OTT server, so that the OTT server processes the directional speed-up service according to the service processing response.
  • the information carried in the service processing response includes, but is not limited to, whether the operator server verifies whether the terminal meets the verification result of the verification condition corresponding to the directional speed-up type service.
  • the verification result includes, but is not limited to, the verification condition that the terminal meets the directional speed-up type service and the verification condition that the terminal does not meet the directional speed-up type service. The implementation does not specifically limit the verification result.
  • the OTT server receives the service processing response returned by the operator server for the service processing request, and processes the directional speed-up service according to the service processing response.
  • the OTT server After receiving the service processing response for the service processing request returned by the operator server, the OTT server processes the directional speed-up service according to the verification result of the carrier server carried in the service processing response to verify whether the terminal meets the verification condition corresponding to the directional speed-up type.
  • the directional speed-up service is processed according to the verification result of the operator's server in the service processing response to verify whether the terminal meets the verification condition corresponding to the directional speed-up service, including but not limited to: processing the directional speed-up service according to the service processing response, including: The service of the directional speed-up type of the terminal is processed according to the verification result carried in the service processing response.
  • the OTT server allows the terminal to access the directional speed-up service according to the verification result carried in the service processing response, and performs charging on the directional speed-up service; If the terminal does not meet the verification condition corresponding to the directional speed-up type, the OTT server does not allow the terminal to access the directional speed-up service according to the verification result carried in the service processing response.
  • the OTT server needs to perform charging according to the directional speed-up service initiated by the terminal.
  • the manner in which the OTT server performs charging according to the directional speed-up service initiated by the terminal is not specifically limited in this embodiment. In the specific implementation, the charging may be performed according to the duration or traffic of the directional speed-up service initiated by the terminal, or may be performed according to the content of the directional speed-up service initiated by the terminal.
  • the service processing method provided in this embodiment receives the processing request of the service type and the verification information sent by the OTT server, and further verifies that the terminal meets the directional acceleration type according to the verification information. After the verification condition, the service processing response is returned to the OTT server, and the OTT server processes the directional speed-up service according to the service processing response. Since the directional speed-up services of different terminals are separately processed, and the terminal is not required to be in a fixed access line, the processed directional speed-up service has a certain mobility, and the service processing effect is better.
  • an embodiment of the present invention provides an operator server, which is used to perform a service processing method performed by an operator server in any one of the embodiments shown in FIG. 2 to FIG.
  • the carrier server includes:
  • the receiving module 801 is configured to receive a service processing request sent by the service processing server, where the service processing request carries at least a service type and verification information, where the verification information includes at least a user identifier of the terminal that sends the access request to the service processing server;
  • the verification module 802 is configured to verify, according to the verification information, whether the terminal meets the verification condition corresponding to the service type;
  • the returning module 803 is configured to return a service processing response to the service processing server when the terminal satisfies the verification condition corresponding to the service type.
  • the service type is an information query type
  • the verification module 802 includes:
  • a first query sub-module configured to query, in the user database, the user subscription information corresponding to the user identifier of the terminal according to the user identifier of the terminal in the verification information;
  • the first verification sub-module is configured to confirm that the terminal meets the verification condition corresponding to the information query type when the user subscription information indicates that the terminal has opened the device capability open service.
  • the service type is an automatic login type
  • the verification information further includes: a first random number, a first signature information, and a first URL
  • the verification module 802 includes:
  • a first query sub-module configured to query, in the user database, the user subscription information corresponding to the user identifier of the terminal according to the user identifier of the terminal in the verification information;
  • a second query sub-module configured to: when the user subscription information indicates that the terminal has opened the automatic login type service, query the key corresponding to the terminal according to the user identifier of the terminal in the verification information;
  • a first calculation submodule configured to hash the key with the first random number and the first URL, To the first verification information
  • a first matching submodule configured to match the first verification information with the first signature information
  • the second verification submodule is configured to: when the first verification information matches the first signature information, verify that the terminal meets the verification condition corresponding to the automatic login type.
  • the service processing type is a directional speed-up type
  • the verification information further includes: a second random number, a second signature information, and a second URL
  • the verification module 802 includes:
  • a first query sub-module configured to query, in the user database, the user subscription information corresponding to the user identifier of the terminal according to the user identifier of the terminal in the verification information;
  • the third query sub-module is configured to query the key corresponding to the terminal according to the user identifier of the terminal in the verification information when the user subscription information indicates that the terminal has activated the directional speed-up type service;
  • a second calculation submodule configured to hash the key with the second random number and the second URL to obtain second verification information
  • a second matching submodule configured to match the second verification information with the second signature information
  • a third verification submodule configured to: when the second verification information matches the second signature information, verify that the terminal meets the verification condition corresponding to the directional speedup type.
  • the service processing server provides a service processing response to the service processing server by verifying that the terminal meets the verification condition corresponding to the service type according to the verification information carried in the service processing request sent by the received service processing server, thereby improving the service.
  • the treatment effect is better.
  • an embodiment of the present invention provides a service processing server, where the service processing server is configured to perform a service processing method performed by a service processing server in any one of the embodiments shown in FIG. 2 to FIG.
  • the business processing server includes:
  • the first receiving module 901 is configured to receive an access request sent by the terminal, where the access request carries at least a user identifier of the terminal;
  • the sending module 902 is configured to send a service processing request to the operator server according to the access request, where the service processing request carries at least the service type and the verification information, and the verification information includes at least the user of the terminal.
  • the second receiving module 903 is configured to receive a service processing response returned by the operator server for the service processing request.
  • the processing module 904 is configured to process a service type service according to the service processing.
  • the service type is an information query type
  • the service processing response carries an information query result, where the information query result includes at least one of network condition information of the terminal and device information of the terminal;
  • the processing module 904 is configured to determine, according to the information query result carried in the service processing response, a service type provided for the terminal.
  • the access request is an automatic login request
  • the sending module 902 includes:
  • Generating a sub-module configured to: after receiving the automatic login request sent by the terminal, determining that the terminal is not logged in, generating a first random number according to the automatic login request;
  • a first sending submodule configured to send the first random number to the terminal
  • a receiving submodule configured to receive, by the terminal, a login authentication request that is at least a user identifier of the carrying terminal, a first random number, and first signature information generated by the terminal according to the first random number;
  • the second sending sub-module is configured to send a service processing request to the operator server according to the login verification request, where the service type is an automatic login type, and the verification information further includes a first random number, first signature information, and a first unified URL.
  • the service processing response carries a verification result that the operator server verifies whether the terminal meets the verification condition corresponding to the service type
  • the processing module 904 is configured to process the service of the automatic login type of the terminal according to the verification result carried in the service processing response.
  • the access request is a directed speed request
  • the sending module 902 includes:
  • a receiving submodule configured to receive, by the terminal, a service request that is at least a user identifier of the carrying terminal, a second random number, and a second signature information generated by the terminal according to the first random number;
  • the sending sub-module is configured to send a service processing request to the operator server, where the service type is a directional speed-up type, and the verification information further includes a second random number, a second signature information, and a second URL.
  • the service processing response carries a verification result that the operator server verifies whether the terminal meets the verification condition corresponding to the service type
  • the processing module 904 is configured to process the directional speed-up type service of the terminal according to the verification result carried in the service processing response.
  • the service processing server provided by the embodiment, by receiving an access request sent by the terminal, sends a service processing request that carries at least the service type and the verification information to the operator server according to the access request, and receives the service processing response returned by the operator server, The service processing response is processed according to the service type, thereby improving the business processing effect.
  • a terminal is configured to perform a service processing method performed by a terminal in any one of the foregoing embodiments shown in FIG. 2 to FIG.
  • the obtaining module 1001 is configured to acquire a user identifier of the terminal.
  • the first sending module 1002 is configured to send, to the service processing server, an access request that carries at least a user identifier of the terminal;
  • the receiving module 1003 is configured to receive information returned by the service processing server according to the access request;
  • the second sending module 1004 is configured to: when the information returned by the service processing server includes a random number, send the service processing feedback to the service processing server according to the random number.
  • the access request is an automatic login request
  • the receiving module 1003 is configured to receive a first random number returned by the service processing server according to the automatic login request
  • the second sending module 1004 includes:
  • a first generation submodule configured to generate first signature information according to the first random number
  • the first sending submodule is configured to send, to the service processing server, a login verification request that carries at least a user identifier of the terminal, a first random number, and first signature information.
  • the access request is a directional speedup request
  • the receiving module 1003 is configured to receive a service prompt window returned by the service processing server and a second random number returned according to the directional speedup request
  • the second sending module 1004 includes:
  • a second generation submodule configured to generate second signature information according to the second random number after performing service confirmation according to the service prompt window
  • a second sending submodule configured to send, to the service processing server, a service confirmation response that carries at least a user identifier, a second random number, and second signature information of the terminal.
  • the terminal provided by the embodiment obtains the user identifier of the terminal, and sends an access request to the service processing server that carries at least the user identifier of the terminal, and then receives the random number returned by the service processing server, and then proceeds to the service processing server according to the random number. Send business processing feedback to improve business processing results.
  • FIG. 11 is a schematic structural diagram of an operator server in an implementation manner, where the operator server is configured to perform a service processing method performed by an operator server in any one of the foregoing embodiments shown in FIG. 2 to FIG.
  • the merchant server includes a processor 1101, a transmit circuit 1102, a receive circuit 1103, a memory 1104, and a bus 1105, and one or more applications, the one or more applications including instructions 1106 for performing operations.
  • the bus 1105 is used to connect the processor 1101, the transmitting circuit 1102, the receiving circuit 1103, and the memory 1104.
  • Processor 1101 includes one or more processing components, and one or more programs are stored in memory 1104, configured to be executed by one or more processors;
  • the receiving circuit 1103 is configured to receive a service processing request sent by the service processing server, where the service processing request carries at least a service type and verification information, where the verification information includes at least a user identifier of the terminal that sends the access request to the service processing server;
  • the processor 1101 is configured to verify, according to the verification information, whether the terminal meets a verification condition corresponding to the service type;
  • the transmitting circuit 1102 is configured to return a service processing response to the service processing server when the terminal meets the verification condition corresponding to the service type.
  • the service type is an information query type
  • the processor 1101 is configured to query, in the user database, the user subscription information corresponding to the user identifier of the terminal according to the user identifier of the terminal in the verification information; when the user subscribes to the information Indicates that the terminal has opened the device capability to open the business.
  • the certificate terminal satisfies the verification condition corresponding to the information query type.
  • the service type is an automatic login type
  • the verification information further includes: a first random number, a first signature information, and a first URL
  • the processor 1101 is configured to query, in the user database, the user subscription information corresponding to the user identifier of the terminal according to the user identifier of the terminal in the verification information; when the user subscription information indicates that the terminal has activated the automatic login type service, according to the terminal in the verification information
  • the user identifier queries the key corresponding to the terminal, and hashes the key with the first random number and the first URL to obtain the first verification information; matches the first verification information with the first signature information; when the first verification When the information matches the first signature information, the verification terminal satisfies the verification condition corresponding to the automatic login type.
  • the service processing type is a directional speed-up type
  • the verification information further includes: a second random number, a second signature information, and a second URL
  • the processor 1101 is configured to query, in the user database, the user subscription information corresponding to the user identifier of the terminal according to the user identifier of the terminal in the verification information.
  • the terminal When the user subscription information indicates that the terminal activates the directional speed-up type service, the terminal according to the verification information
  • the user identifier queries the key corresponding to the terminal, and hashes the key with the second random number and the second URL to obtain second verification information; matches the second verification information with the second signature information; when the second verification When the information matches the second signature information, the verification terminal satisfies the verification condition corresponding to the directional acceleration type.
  • the service processing server provides a service processing response to the service processing server by verifying that the terminal meets the verification condition corresponding to the service type according to the verification information carried in the service processing request sent by the received service processing server, thereby improving the service. Processing effect.
  • FIG. 12 is a schematic structural diagram of a service processing server in an implementation manner, where the service processing server is configured to execute a service processing method performed by a service processing server in any one of the foregoing embodiments shown in FIG. 2 to FIG.
  • the processing server includes a processor 1201, a transmitting circuit 1202, a receiving circuit 1203, a memory 1204, and a bus 1205, and one or more applications, the one or more applications including instructions 1206 for performing operations.
  • the bus 1205 is used to connect the processor 1201, the transmitting circuit 1202, the receiving circuit 1203, and the memory 1204.
  • the processor 1201 includes one or more processing components, and one or more programs are stored in the storage In the device 1204, configured to be executed by one or more processors;
  • the receiving circuit 1203 is configured to receive an access request sent by the terminal, where the access request carries at least a user identifier of the terminal;
  • the transmitting circuit 1202 is configured to send a service processing request to the operator server according to the access request, where the service processing request carries at least the service type and the verification information, where the verification information includes at least the user identifier of the terminal;
  • the receiving circuit 1203 is configured to receive a service processing response returned by the operator server for the service processing request.
  • the processor 1201 is configured to process a service type service according to the service processing.
  • the service type is an information query type
  • the service processing response carries an information query result, where the information query result includes at least one of network condition information of the terminal and device information of the terminal;
  • the processor 1201 is configured to determine, according to the information query result carried in the service processing response, a service type provided for the terminal.
  • the access request is an automatic login request
  • the transmitting circuit 1202 is configured to: after receiving the automatic login request sent by the terminal, determine that the terminal does not log in, generate a first random number according to the automatic login request, and Sending the first random number to the terminal;
  • the receiving circuit 1203 is configured to receive, by the terminal, a login verification request that is at least a user identifier of the carrying terminal, a first random number, and first signature information generated by the terminal according to the first random number;
  • the transmitting circuit 1202 is configured to send a service processing request to the operator server according to the login verification request, where the service type is an automatic login type, and the verification information further includes a first random number, a first signature information, and a first URL.
  • the service processing response carries a verification result that the operator server verifies whether the terminal meets the verification condition corresponding to the service type
  • the processor 1201 is configured to process the service of the automatic login type of the terminal according to the verification result carried in the service processing response.
  • the access request is a directed speed request
  • the transmitting circuit 1202 uses Returning a service prompt window to the terminal, and returning the generated second random number to the terminal;
  • the receiving circuit 1203 is configured to receive, by the terminal, a service processing request that is at least a user identifier of the carrying terminal, a second random number, and second signature information generated by the terminal according to the second random number;
  • the transmitting circuit 1202 is configured to send a service processing request to the operator server, where the service type is an directional speed-up type, and the verification information further includes a second random number, a second signature information, and a second URL.
  • the service processing response carries a verification result that the operator server verifies whether the terminal meets the verification condition corresponding to the service type
  • the processor 1201 is configured to process the directional speed-up type service of the terminal according to the verification result carried in the service processing response.
  • the service processing server provided by the embodiment, by receiving an access request sent by the terminal, sends a service processing request that carries at least the service type and the verification information to the operator server according to the access request, and receives the service processing response returned by the operator server, The service processing response is processed according to the service type, thereby improving the business processing effect.
  • FIG. 13 is a schematic structural diagram of a terminal in an implementation manner, where the terminal is configured to perform a service processing method performed by a terminal in any one of the foregoing embodiments shown in FIG. 2 to FIG. Circuitry 1302, receiving circuitry 1303, memory 1304, and bus 1305, and one or more applications, the one or more applications include instructions 1306 for performing operations.
  • the bus 1305 is used to connect the processor 1301, the transmitting circuit 1302, the receiving circuit 1303, and the memory 1304.
  • Processor 1301 includes one or more processing components, and one or more programs are stored in memory 1304, configured to be executed by one or more processors;
  • the processor 1301 is configured to acquire a user identifier of the terminal.
  • a transmitting circuit 1302 configured to send, to the service processing server, an access request that carries at least a user identifier of the terminal;
  • the receiving circuit 1303 is configured to receive information returned by the service processing server according to the access request
  • the transmitting circuit 1302 is configured to: when the information returned by the service processing server includes a random number, send the service processing feedback to the service processing server according to the random number.
  • the access request is an automatic login request
  • the receiving circuit 1303 is configured to receive a first random number returned by the service processing server according to the automatic login request;
  • the transmitting circuit 1302 is configured to generate first signature information according to the first random number, and send a login verification request that carries at least a user identifier, a first random number, and first signature information of the terminal to the service processing server.
  • the access request is a directed speed request
  • the receiving circuit 1303 is configured to receive a service prompt window returned by the service processing server and a second random number returned according to the directional speedup request;
  • the transmitting circuit 1302 is configured to generate second signature information according to the second random number after performing service confirmation according to the service prompt window, and send, to the service processing server, a service that carries at least the user identifier, the second random number, and the second signature information of the terminal. Confirm the response.
  • the terminal provided by the embodiment obtains the user identifier of the terminal, and sends an access request to the service processing server that carries at least the user identifier of the terminal, and then receives the random number returned by the service processing server, and then proceeds to the service processing server according to the random number. Send business processing feedback to improve business processing results.
  • this embodiment provides a service processing system, where the system includes an operator service 1401, a service processing server 1402, and a terminal 1403.
  • the operator server is the operator server provided by the embodiment described in FIG. 8 or FIG. 11 above;
  • the service processing server is the service processing server provided by the embodiment described in FIG. 9 or FIG. 12 above;
  • the terminal is a terminal provided by the embodiment described in FIG. 10 or FIG. 13 above.
  • the system provided by the embodiment of the present invention after verifying that the terminal satisfies the verification condition corresponding to the service type according to the verification information carried in the service processing request sent by the received service processing server, returns a service processing response to the service processing server, thereby improving the service. Processing effect.
  • the service processing server provided in the foregoing embodiment processes the service
  • only The division of each functional module is illustrated by an example.
  • the function distribution may be completed by different functional modules according to requirements, that is, the internal structure of the service processing server and the terminal are divided into different functional modules to complete the above description. All or part of the function.
  • the embodiments of the service processing server, the service processing terminal, the service processing system, and the service processing method provided by the foregoing embodiments are in the same concept, and the specific implementation process is described in the method embodiment, and details are not described herein again.
  • the storage medium may be a read only memory, a magnetic disk or an optical disk or the like.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

La présente invention concerne un procédé, un terminal, un serveur et un système de traitement de service qui se rapportent au domaine technique d'Internet. Le procédé consiste à : recevoir une demande de traitement de service envoyée par le serveur de traitement de service, la demande de traitement de service comportant au moins un type de service et des informations de vérification et les informations de vérification comprenant au moins l'identifiant d'utilisateur du terminal qui envoie une demande d'accès au serveur de traitement de service; vérifier si le terminal satisfait à la condition de vérification correspondant au type de service selon les informations de vérification; et renvoyer une réponse de traitement de service au serveur de traitement de service si le terminal satisfait à la condition de vérification correspondant au type de service. Dans la présente invention, la réponse de traitement de service est renvoyée vers le serveur de traitement de service après qu'il ait vérifié qu'un terminal satisfait à la condition de vérification correspondant au type de service selon les informations de vérification contenues dans la demande de traitement de service reçue envoyée par le serveur de traitement de service, ce qui permet d'améliorer les résultats du traitement de service.
PCT/CN2015/080674 2014-06-24 2015-06-03 Procédé, terminal, serveur et système de traitement de service WO2015196908A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201410289730.8A CN105450582B (zh) 2014-06-24 2014-06-24 业务处理方法、终端、服务器及系统
CN201410289730.8 2014-06-24

Publications (1)

Publication Number Publication Date
WO2015196908A1 true WO2015196908A1 (fr) 2015-12-30

Family

ID=54936737

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/080674 WO2015196908A1 (fr) 2014-06-24 2015-06-03 Procédé, terminal, serveur et système de traitement de service

Country Status (2)

Country Link
CN (1) CN105450582B (fr)
WO (1) WO2015196908A1 (fr)

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109842611A (zh) * 2018-12-14 2019-06-04 平安科技(深圳)有限公司 身份验证方法、装置、计算机设备和存储介质
CN110147934A (zh) * 2019-04-17 2019-08-20 深圳壹账通智能科技有限公司 业务请求处理方法、装置、计算机设备和存储介质
CN110602733A (zh) * 2019-09-25 2019-12-20 腾讯科技(深圳)有限公司 应用提速、带宽管理方法、装置、终端及存储介质
CN111601297A (zh) * 2020-05-14 2020-08-28 中国联合网络通信集团有限公司 拥塞解决方法、业务开通方法、服务器和终端
CN112422633A (zh) * 2020-10-27 2021-02-26 京东方科技集团股份有限公司 用户请求响应方法、装置、计算机可读存储介质及设备
CN114257552A (zh) * 2020-09-10 2022-03-29 中国移动通信集团广东有限公司 流量加速方法、装置及终端
CN114285613A (zh) * 2021-12-15 2022-04-05 青岛海尔科技有限公司 数据信息的调用方法及装置、存储介质、电子装置

Families Citing this family (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107077278B (zh) * 2017-01-10 2020-07-21 深圳怡化电脑股份有限公司 一种自助终端业务处理方法及系统
CN107066591A (zh) * 2017-04-18 2017-08-18 北京思特奇信息技术股份有限公司 一种对业务进行处理的方法及装置
CN108510398A (zh) * 2017-07-25 2018-09-07 平安科技(深圳)有限公司 年金业务处理方法、系统、服务器和存储介质
CN109756885A (zh) * 2017-11-07 2019-05-14 中兴通讯股份有限公司 一种5g业务自动开通方法、装置、设备及存储介质
CN109034816A (zh) * 2018-06-08 2018-12-18 平安科技(深圳)有限公司 用户信息验证方法、装置、计算机设备及存储介质
CN109347795B (zh) * 2018-09-10 2021-11-16 广州视源电子科技股份有限公司 登录验证方法、装置、系统及设备、介质
CN110032842B (zh) * 2019-03-03 2020-11-13 北京立思辰安科技术有限公司 同时支持单点登录及第三方登录的方法和系统

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101127942A (zh) * 2006-08-18 2008-02-20 华为技术有限公司 提供移动业务的方法、系统及管理中心服务器
CN102143143A (zh) * 2010-10-15 2011-08-03 华为数字技术有限公司 一种网络攻击的防护方法、装置及路由器
CN102594817A (zh) * 2012-02-15 2012-07-18 李晶 一种密码代理方法、用户终端设备及密码代理服务器
CN103428176A (zh) * 2012-05-18 2013-12-04 中国电信股份有限公司 移动用户访问移动互联网应用的方法、系统及应用服务器

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101351027A (zh) * 2007-07-19 2009-01-21 中国移动通信集团公司 业务鉴权处理方法及系统
US20090089866A1 (en) * 2007-09-27 2009-04-02 Akifumi Yato Access authorization system, access control server, and business process execution system
CN102143134B (zh) * 2010-08-05 2014-04-30 华为技术有限公司 分布式身份认证方法、装置与系统

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101127942A (zh) * 2006-08-18 2008-02-20 华为技术有限公司 提供移动业务的方法、系统及管理中心服务器
CN102143143A (zh) * 2010-10-15 2011-08-03 华为数字技术有限公司 一种网络攻击的防护方法、装置及路由器
CN102594817A (zh) * 2012-02-15 2012-07-18 李晶 一种密码代理方法、用户终端设备及密码代理服务器
CN103428176A (zh) * 2012-05-18 2013-12-04 中国电信股份有限公司 移动用户访问移动互联网应用的方法、系统及应用服务器

Cited By (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109842611A (zh) * 2018-12-14 2019-06-04 平安科技(深圳)有限公司 身份验证方法、装置、计算机设备和存储介质
CN110147934A (zh) * 2019-04-17 2019-08-20 深圳壹账通智能科技有限公司 业务请求处理方法、装置、计算机设备和存储介质
CN110602733A (zh) * 2019-09-25 2019-12-20 腾讯科技(深圳)有限公司 应用提速、带宽管理方法、装置、终端及存储介质
CN110602733B (zh) * 2019-09-25 2021-08-17 腾讯科技(深圳)有限公司 应用提速、带宽管理方法、装置、终端及存储介质
CN111601297A (zh) * 2020-05-14 2020-08-28 中国联合网络通信集团有限公司 拥塞解决方法、业务开通方法、服务器和终端
CN111601297B (zh) * 2020-05-14 2023-06-09 中国联合网络通信集团有限公司 拥塞解决方法、业务开通方法、服务器和终端
CN114257552A (zh) * 2020-09-10 2022-03-29 中国移动通信集团广东有限公司 流量加速方法、装置及终端
CN114257552B (zh) * 2020-09-10 2023-11-21 中国移动通信集团广东有限公司 流量加速方法、装置及终端
CN112422633A (zh) * 2020-10-27 2021-02-26 京东方科技集团股份有限公司 用户请求响应方法、装置、计算机可读存储介质及设备
CN112422633B (zh) * 2020-10-27 2023-09-08 京东方科技集团股份有限公司 用户请求响应方法、装置、计算机可读存储介质及设备
US11777888B2 (en) 2020-10-27 2023-10-03 Boe Technology Group Co., Ltd. User request response method and apparatus, computer-readable storage medium, and device
CN114285613A (zh) * 2021-12-15 2022-04-05 青岛海尔科技有限公司 数据信息的调用方法及装置、存储介质、电子装置
CN114285613B (zh) * 2021-12-15 2024-03-22 青岛海尔科技有限公司 数据信息的调用方法及装置、存储介质、电子装置

Also Published As

Publication number Publication date
CN105450582B (zh) 2019-10-18
CN105450582A (zh) 2016-03-30

Similar Documents

Publication Publication Date Title
WO2015196908A1 (fr) Procédé, terminal, serveur et système de traitement de service
US10397239B2 (en) Secure access to cloud-based services
US20190090133A1 (en) Authentication method and server, and computer storage medium
US9191381B1 (en) Strong authentication via a federated identity protocol
WO2017028593A1 (fr) Procédé pour amener un dispositif d'accès à un réseau à accéder à un point d'accès à un réseau sans fil, dispositif d'accès à un réseau, serveur d'application et support de stockage lisible par ordinateur non volatil
US9356928B2 (en) Mechanisms to use network session identifiers for software-as-a-service authentication
WO2016188290A1 (fr) Système, dispositif et procédé d'authentification de sécurité pour un appel api
WO2022095730A1 (fr) Procédé, système et appareil de communication de service, et dispositif électronique
US8627493B1 (en) Single sign-on for network applications
WO2018145605A1 (fr) Procédé et serveur d'authentification, et dispositif de contrôle d'accès
KR20180053701A (ko) 로컬 디바이스 인증
US10320771B2 (en) Single sign-on framework for browser-based applications and native applications
US9787478B2 (en) Service provider certificate management
WO2017016252A1 (fr) Procédé de génération et d'authentification de jeton ainsi que serveur d'authentification
WO2017113763A1 (fr) Procédé et appareil d'authentification d'identité
US20130007867A1 (en) Network Identity for Software-as-a-Service Authentication
WO2015143855A1 (fr) Procédé, appareil et système pour accéder à des ressources de données
WO2019062666A1 (fr) Procédé et appareil permettant d'accéder de manière sécurisée à un réseau interne
DK2924944T3 (en) Presence authentication
US20150334103A1 (en) Device authentication using proxy automatic configuration script requests
US11848926B2 (en) Network authentication
EP4231680A1 (fr) Système, procédé et appareil d'authentification d'identité, dispositif et support de stockage lisible par ordinateur
WO2009129753A1 (fr) Procédé et appareil pour améliorer la sécurité de l'authentification d'identité de réseau
US20230208831A1 (en) Service processing method and apparatus, server, and storage medium
CN114339760A (zh) 通信网络中的授权

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15812306

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15812306

Country of ref document: EP

Kind code of ref document: A1