[go: up one dir, main page]

CN111885586B - Blockchain-based roaming management method and network access node - Google Patents

Blockchain-based roaming management method and network access node Download PDF

Info

Publication number
CN111885586B
CN111885586B CN202010712514.5A CN202010712514A CN111885586B CN 111885586 B CN111885586 B CN 111885586B CN 202010712514 A CN202010712514 A CN 202010712514A CN 111885586 B CN111885586 B CN 111885586B
Authority
CN
China
Prior art keywords
terminal
access
base station
network element
information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202010712514.5A
Other languages
Chinese (zh)
Other versions
CN111885586A (en
Inventor
黄珂
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China United Network Communications Group Co Ltd
Original Assignee
China United Network Communications Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China United Network Communications Group Co Ltd filed Critical China United Network Communications Group Co Ltd
Priority to CN202010712514.5A priority Critical patent/CN111885586B/en
Publication of CN111885586A publication Critical patent/CN111885586A/en
Application granted granted Critical
Publication of CN111885586B publication Critical patent/CN111885586B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/02Processing of mobility data, e.g. registration information at HLR [Home Location Register] or VLR [Visitor Location Register]; Transfer of mobility data, e.g. between HLR, VLR or external networks
    • H04W8/08Mobility data transfer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3297Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving time stamps, e.g. generation of time stamps
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/18Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data
    • H04W8/20Transfer of user or subscriber data
    • H04W8/205Transfer to or from user equipment or user record carrier

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Databases & Information Systems (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

本公开提出了一种基于区块链的漫游管理方法及网络接入节点,所述方法包括:接收基站侧网元发送的请求接入消息,获取其中携带的国际移动用户识别码,请求接入消息是终端请求接入拜访地网络时向所述基站侧网元发送的;根据国际移动用户识别码从区块链账本中获取预先存储的终端当前的用户信息,区块链包括拜访地网络的各个拜访地接入节点和归属地网络的各个归属地接入节点;若根据终端当前的用户信息确定允许终端接入,则将允许接入消息发送至基站侧网元,以使基站侧网元根据允许接入消息将终端接入拜访地网络。拜访地网络无需频繁向归属地网络获取用户的签约信息等数据,使用区块链的加密技术来保护用户的签约信息等数据,更加安全便捷。

Figure 202010712514

This disclosure proposes a blockchain-based roaming management method and a network access node. The method includes: receiving an access request message sent by a network element on the base station side, obtaining an International Mobile Subscriber Identification Code carried in it, and requesting access The message is sent to the network element on the base station side when the terminal requests to access the visited network; the pre-stored current user information of the terminal is obtained from the blockchain account book according to the International Mobile Subscriber Identity Code, and the blockchain includes the information of the visited network. Each visited access node and each home access node of the home network; if it is determined that the terminal is allowed to access according to the current user information of the terminal, the access permission message is sent to the network element on the base station side, so that the network element on the base station side The terminal is connected to the visited network according to the access permission message. The visited network does not need to frequently obtain the user's contract information and other data from the home network, and uses blockchain encryption technology to protect the user's contract information and other data, which is more secure and convenient.

Figure 202010712514

Description

基于区块链的漫游管理方法及网络接入节点Blockchain-based roaming management method and network access node

技术领域technical field

本公开属于通信技术领域,具体涉及一种基于区块链的漫游管理方法及网络接入节点。The disclosure belongs to the field of communication technologies, and in particular relates to a blockchain-based roaming management method and network access nodes.

背景技术Background technique

终端用户在拜访地或异网漫游时,由拜访地网络对移动终端的漫游业务进行管理和监控,但由于用户的签约信息等信息存储在归属地网络寄存器,并随时可能发生变化,拜访地网络需频繁向归属地网络获取用户签约信息等数据,并且数据在存储和传输过程中无法避免被篡改等安全问题。When a terminal user roams in a visited location or a different network, the roaming service of the mobile terminal is managed and monitored by the visited network. It is necessary to frequently obtain data such as user subscription information from the home network, and security issues such as tampering cannot be avoided during data storage and transmission.

发明内容Contents of the invention

本公开针对现有技术中存在的上述不足,提供一种基于区块链的漫游管理方法及网络接入节点。Aiming at the above-mentioned deficiencies in the prior art, the present disclosure provides a blockchain-based roaming management method and a network access node.

作为本公开的第一个方面,提供一种基于区块链的漫游管理方法,包括:As a first aspect of the present disclosure, a blockchain-based roaming management method is provided, including:

接收基站侧网元发送的请求接入消息,获取其中携带的国际移动用户识别码,所述请求接入消息是终端请求接入拜访地网络时向所述基站侧网元发送的;receiving an access request message sent by a network element at the base station side, and acquiring an International Mobile Subscriber Identity code carried therein, where the access request message is sent to the network element at the base station side when the terminal requests to access a visited network;

根据所述国际移动用户识别码从区块链账本中获取预先存储的终端当前的用户信息,所述区块链包括拜访地网络的各个拜访地接入节点和归属地网络的各个归属地接入节点;According to the international mobile subscriber identification code, the pre-stored current user information of the terminal is obtained from the blockchain ledger, and the blockchain includes each visited access node of the visited network and each home access node of the home network. node;

若根据所述终端当前的用户信息确定允许所述终端接入,则将允许接入消息发送至所述基站侧网元,以使所述基站侧网元根据所述允许接入消息将所述终端接入拜访地网络。If it is determined according to the current user information of the terminal that the terminal is allowed to access, then send an access allowing message to the network element on the base station side, so that the network element on the base station side sends the access allowing message to the The terminal accesses the visited network.

优选地,所述方法还包括:Preferably, the method also includes:

在所述基站侧网元将所述终端接入拜访地网络之后,通过监测网元获取终端用户行为;After the network element at the base station side connects the terminal to the visited network, acquire the behavior of the terminal user by monitoring the network element;

根据所述终端用户行为和所述终端当前的用户信息判断是否终止所述终端接入拜访地网络,并将判断结果发送至所述基站侧网元,以使所述基站侧网元将所述判断结果发送至所述终端。According to the user behavior of the terminal and the current user information of the terminal, it is judged whether to terminate the access of the terminal to the visited network, and the judgment result is sent to the network element at the base station side, so that the network element at the base station side sends the network element at the base station side The judgment result is sent to the terminal.

优选地,所述根据所述终端当前的用户信息确定允许所述终端接入,包括:Preferably, the determining to allow the terminal to access according to the current user information of the terminal includes:

获取所述终端当前的用户信息中的用户签约信息;Obtaining user subscription information in the current user information of the terminal;

获取区块链账本中预先存储的漫游协议信息;Obtain roaming agreement information pre-stored in the blockchain ledger;

若所述用户签约信息与所述漫游协议信息匹配,则确定允许所述终端接入。If the user subscription information matches the roaming agreement information, determine that the terminal is allowed to access.

优选地,所述方法还包括:Preferably, the method also includes:

获取终端当前的用户信息,所述终端当前的用户信息是更新后的终端的用户信息;Acquire current user information of the terminal, where the current user information of the terminal is updated user information of the terminal;

根据所述终端当前的用户信息和当前时间戳生成新区块,并在所述区块链中广播所述新区块。Generate a new block according to the current user information of the terminal and the current time stamp, and broadcast the new block in the block chain.

优选地,所述方法还包括:Preferably, the method also includes:

获取漫游协议信息;Obtain roaming agreement information;

根据所述漫游协议信息生成新区块,并在区块链中广播所述新区块。Generate a new block according to the roaming agreement information, and broadcast the new block in the block chain.

作为本公开的第二个方面,提供一种网络接入节点,包括:As a second aspect of the present disclosure, a network access node is provided, including:

接收模块,用于接收基站侧网元发送的请求接入消息;A receiving module, configured to receive an access request message sent by a base station side network element;

第一获取模块,用于获取所述请求接入消息中携带的国际移动用户识别码,所述请求接入消息是终端请求接入拜访地网络时向所述基站侧网元发送的;A first acquiring module, configured to acquire the International Mobile Subscriber Identity code carried in the access request message, which is sent to the network element at the base station side when the terminal requests access to the visited network;

第二获取模块,用于根据所述国际移动用户识别码从区块链账本中获取预先存储的终端当前的用户信息,所述区块链包括拜访地网络的各个拜访地接入节点和归属地网络的各个归属地接入节点;The second obtaining module is used to obtain the pre-stored current user information of the terminal from the block chain account book according to the international mobile subscriber identification code, and the block chain includes each visiting point access node and home of the visiting point network Each home access node of the network;

发送模块,用于若根据所述终端当前的用户信息确定允许所述终端接入,则将允许接入消息发送至所述基站侧网元,以使所述基站侧网元根据所述允许接入消息将所述终端接入拜访地网络。A sending module, configured to send an access permission message to the network element on the base station side if it is determined that the terminal is allowed to access according to the current user information of the terminal, so that the network element on the base station side can The incoming message connects the terminal to the visited network.

优选地,还包括:Preferably, it also includes:

第三获取模块,用于在所述基站侧网元将所述终端接入拜访地网络之后,通过监测网元获取终端用户行为;The third acquiring module is configured to acquire the behavior of the terminal user by monitoring the network element after the network element at the base station side connects the terminal to the visited network;

判断模块,用于根据所述终端用户行为和所述终端当前的用户信息判断是否终止所述终端接入拜访地网络;A judging module, configured to judge whether to terminate the terminal's access to the visited network according to the user behavior of the terminal and the current user information of the terminal;

所述发送模块还用于将判断结果发送至所述基站侧网元,以使所述基站侧网元将所述判断结果发送至所述终端。The sending module is further configured to send the judgment result to the base station side network element, so that the base station side network element sends the judgment result to the terminal.

优选地,所述发送模块中,根据所述终端当前的用户信息确定允许所述终端接入,具体用于:Preferably, in the sending module, according to the current user information of the terminal, it is determined that the terminal is allowed to access, specifically for:

获取所述终端当前的用户信息中的用户签约信息;Obtaining user subscription information in the current user information of the terminal;

获取区块链账本中预先存储的漫游协议信息;Obtain roaming agreement information pre-stored in the blockchain ledger;

若所述用户签约信息与所述漫游协议信息匹配,则确定允许所述终端接入。If the user subscription information matches the roaming agreement information, determine that the terminal is allowed to access.

优选地,还包括:Preferably, it also includes:

第四获取模块,用于获取终端当前的用户信息,所述终端当前的用户信息是更新后的终端的用户信息;A fourth acquiring module, configured to acquire current user information of the terminal, where the current user information of the terminal is updated user information of the terminal;

第一广播模块,用于根据所述终端当前的用户信息和当前时间戳生成新区块,并在所述区块链中广播所述新区块。The first broadcast module is configured to generate a new block according to the current user information of the terminal and the current time stamp, and broadcast the new block in the block chain.

优选地,还包括:Preferably, it also includes:

第五获取模块,用于获取漫游协议信息;A fifth acquiring module, configured to acquire roaming agreement information;

第二广播模块,用于根据所述漫游协议信息生成新区块,并在区块链中广播所述新区块。The second broadcast module is configured to generate a new block according to the roaming agreement information, and broadcast the new block in the block chain.

本公开实施例中,用户的签约信息等数据不再存储在归属地网络寄存器,而是预先存储在由拜访地接入节点和归属地接入节点构建的区块链的区块链账本中,用户的签约信息等数据随时可能发生变化,拜访地网络无需频繁向归属地网络获取用户的签约信息等数据。同时,在移动通信网络和区块链技术的基础上,使用区块链的加密技术来保护用户的签约信息等数据,构建在移动通信网络下更加安全便捷的漫游管理方法。In the embodiment of the present disclosure, data such as the user's subscription information is no longer stored in the home network register, but is pre-stored in the blockchain ledger of the blockchain constructed by the visited access node and the home access node. The user's subscription information and other data may change at any time, and the visited network does not need to frequently obtain the user's subscription information and other data from the home network. At the same time, on the basis of mobile communication network and blockchain technology, blockchain encryption technology is used to protect data such as user signing information, and a more secure and convenient roaming management method under the mobile communication network is constructed.

附图说明Description of drawings

图1为本公开实施例提供的一种基于区块链的漫游管理方法的流程图;FIG. 1 is a flow chart of a blockchain-based roaming management method provided by an embodiment of the present disclosure;

图2为本公开实施例提供的一种基于区块链的漫游管理方法的另一流程图;FIG. 2 is another flow chart of a blockchain-based roaming management method provided by an embodiment of the present disclosure;

图3为本公开实施例提供的一种基于区块链的漫游管理方法的另一流程图;FIG. 3 is another flow chart of a blockchain-based roaming management method provided by an embodiment of the present disclosure;

图4为本公开实施例提供的一种基于区块链的漫游管理方法的另一流程图;FIG. 4 is another flow chart of a blockchain-based roaming management method provided by an embodiment of the present disclosure;

图5为本公开实施例提供的一种网络接入节点的结构示意图。Fig. 5 is a schematic structural diagram of a network access node provided by an embodiment of the present disclosure.

具体实施方式Detailed ways

为使本领域技术人员更好地理解本公开的技术方案,下面结合附图和具体实施方式对本公开作进一步详细描述。In order to enable those skilled in the art to better understand the technical solution of the present disclosure, the present disclosure will be described in further detail below in conjunction with the accompanying drawings and specific embodiments.

本公开提供一种基于区块链的漫游管理方法、网络接入节点。以下分别结合本公开提供的实施例的附图逐一进行详细说明。The present disclosure provides a blockchain-based roaming management method and a network access node. The following will be described in detail one by one with reference to the drawings of the embodiments provided in the present disclosure.

在初始阶段,预先构建区块链。所述区块链包括拜访地网络的各个拜访地接入节点和归属地网络的各个归属地接入节点。用户的终端开通漫游业务,并签署漫游业务服务协议。拜访地接入节点和归属地接入节点均认可该漫游业务服务协议。In the initial phase, the blockchain is pre-built. The block chain includes each visited access node of the visited network and each home access node of the home network. The user's terminal activates the roaming service and signs a roaming service agreement. Both the visited access node and the home access node approve the roaming service agreement.

图1示出本公开实施例提供的基于区块链的漫游管理方法的流程图。所述网络接入节点包括拜访地接入节点,该基于区块链的漫游管理方法可应用于拜访地接入节点。如图1所示,本实施例提供的基于区块链的漫游管理方法包括以下步骤。FIG. 1 shows a flow chart of a blockchain-based roaming management method provided by an embodiment of the present disclosure. The network access node includes a visited access node, and the blockchain-based roaming management method can be applied to the visited access node. As shown in FIG. 1 , the blockchain-based roaming management method provided by this embodiment includes the following steps.

步骤101,接收基站侧网元发送的请求接入消息。Step 101, receiving an access request message sent by a base station side network element.

其中,所述请求接入消息是终端请求接入拜访地网络时向所述基站侧网元发送的。Wherein, the access request message is sent to the base station side network element when the terminal requests to access the visited network.

在该步骤中,用户在拜访地漫游时,终端将请求接入消息发送至基站侧网元,基站侧网元转发该请求接入消息至拜访地接入节点,拜访地接入节点接收该请求接入消息。In this step, when the user is roaming in the visited place, the terminal sends an access request message to the base station side network element, and the base station side network element forwards the request access message to the visited place access node, and the visited place access node receives the request Access messages.

步骤102,获取请求接入消息中携带的国际移动用户识别码。Step 102, acquire the International Mobile Subscriber Identity code carried in the access request message.

在该步骤中,拜访地接入节点获取请求接入消息中携带的国际移动用户识别码。其中,所述请求接入消息中除了国际移动用户识别码还包括国际移动用户识别码和终端标识等接入拜访地网络需要的数据。In this step, the visited access node acquires the International Mobile Subscriber Identity code carried in the access request message. Wherein, the access request message includes, in addition to the IMSI, data required for accessing the visited network, such as the IMSI and the terminal ID.

步骤103,根据国际移动用户识别码从区块链账本中获取预先存储的终端当前的用户信息。Step 103, obtain the pre-stored current user information of the terminal from the blockchain ledger according to the International Mobile Subscriber Identification Code.

在该步骤中,拜访地接入节点根据国际移动用户识别码(即IMSI)从区块链账本中获取预先存储的终端当前的用户信息。所述终端当前的用户信息包括用户签约信息、信用额度、漫游计费策略和余额状态等与用户相关的信息。其中,用户签约信息是指与用户签约的漫游协议相关的数据。In this step, the visited access node obtains the pre-stored current user information of the terminal from the blockchain ledger according to the International Mobile Subscriber Identity (IMSI). The current user information of the terminal includes user-related information such as user subscription information, credit limit, roaming charging policy, and balance status. Wherein, the user subscription information refers to data related to the roaming agreement signed by the user.

需要说明的是,终端开通漫游业务,并签署漫游业务服务协议之后,归属地接入节点将终端的用户信息保存到区块链账本中。终端也可以更新用户信息,可以通过归属地接入节点将更新后的终端的用户信息加上当前时间戳生成新区块保存到区块链账本中。保存到区块链账本中的终端当前的用户信息是加密后的数据。拜访地接入节点及归属地接入节点之间可以共享可信互认的终端当前的用户信息,共同管理和监控终端的漫游业务。It should be noted that after the terminal activates the roaming service and signs the roaming service agreement, the home access node saves the user information of the terminal in the blockchain ledger. The terminal can also update the user information, and the updated user information of the terminal can be added to the current timestamp to generate a new block and saved in the blockchain ledger through the attributable access node. The current user information of the terminal saved in the blockchain ledger is encrypted data. The visited access node and the home access node can share the trusted and mutually recognized terminal current user information, and jointly manage and monitor the roaming service of the terminal.

步骤104,若根据终端当前的用户信息确定允许终端接入,则将允许接入消息发送至基站侧网元,以使基站侧网元根据允许接入消息将终端接入拜访地网络。Step 104: If it is determined that the terminal is allowed to access according to the current user information of the terminal, then send an access allowing message to the network element on the base station side, so that the network element on the base station side can access the terminal to the visited network according to the access allowing message.

在该步骤中,若拜访地接入节点根据终端当前的用户信息确定允许终端接入,即确定所述请求接入消息正确,所述请求接入消息携带的信息均合理,则将允许接入消息发送至基站侧网元,以使基站侧网元根据允许接入消息将终端接入拜访地网络。In this step, if the visited access node determines that the terminal is allowed to access according to the current user information of the terminal, that is, it determines that the access request message is correct and the information carried in the access request message is reasonable, then the access will be allowed. The message is sent to the network element on the base station side, so that the network element on the base station side can access the terminal to the visited network according to the access permission message.

需要说明的是,若拜访地接入节点根据终端当前的用户信息确定不允许终端接入,即确定所述请求接入消息不正确,所述请求接入消息携带的信息存在不合理的信息,则将拒绝接入消息返回至基站侧网元,基站侧网元根据拒绝接入消息拒绝所述终端接入拜访地网络。被拒绝入网的终端可以再次向基站侧网元发送请求接入消息,基站侧网元将请求接入消息转发至拜访地接入节点,拜访地接入节点从区块链账本中获取最新的终端当前的用户信息,并再次判断是否允许终端接入拜访地网络。It should be noted that if the visited access node determines that the terminal is not allowed to access according to the current user information of the terminal, that is, it determines that the access request message is incorrect, and the information carried in the access request message contains unreasonable information, Then, the access rejection message is returned to the base station side network element, and the base station side network element refuses the terminal to access the visited network according to the access rejection message. The terminal that is denied access to the network can send an access request message to the network element on the base station side again, and the network element on the base station side forwards the access request message to the visited access node, and the visited access node obtains the latest terminal from the blockchain ledger The current user information, and judge again whether to allow the terminal to access the visited network.

本公开实施例中,用户的签约信息等数据不再存储在归属地网络寄存器,而是预先存储在由拜访地接入节点和归属地接入节点构建的区块链的区块链账本中,用户的签约信息等数据随时可能发生变化,拜访地网络无需频繁向归属地网络获取用户的签约信息等数据。同时,在移动通信网络和区块链技术的基础上,使用区块链的加密技术来保护用户的签约信息等数据,构建在移动通信网络下更加安全便捷的漫游管理方法。In the embodiment of the present disclosure, data such as the user's subscription information is no longer stored in the home network register, but is pre-stored in the blockchain ledger of the blockchain constructed by the visited access node and the home access node. The user's subscription information and other data may change at any time, and the visited network does not need to frequently obtain the user's subscription information and other data from the home network. At the same time, on the basis of mobile communication network and blockchain technology, blockchain encryption technology is used to protect data such as user signing information, and a more secure and convenient roaming management method under the mobile communication network is constructed.

图2示出本公开实施例提供的基于区块链的漫游管理方法的另一流程图。进一步的,如图2所示,所述方法还包括:Fig. 2 shows another flow chart of the blockchain-based roaming management method provided by an embodiment of the present disclosure. Further, as shown in Figure 2, the method also includes:

步骤201,在基站侧网元将终端接入拜访地网络之后,通过监测网元获取终端用户行为。Step 201, after the network element at the base station side connects the terminal to the visited network, acquire the behavior of the terminal user by monitoring the network element.

在该步骤中,在基站侧网元将终端接入拜访地网络之后,拜访地接入节点通过拜访地网络相关监测网元监测终端用户行为,并将终端用户行为按照业务类型分别存储到区块链的区块中。终端用户行为包括打电话、发短信等会产生资费的行为。In this step, after the network element at the base station side connects the terminal to the visited network, the visited access node monitors the behavior of the terminal user through the related monitoring network elements of the visited network, and stores the behavior of the terminal user in blocks according to the service type in the block of the chain. End user behaviors include calling, sending text messages and other behaviors that will generate charges.

步骤202,根据终端用户行为和终端当前的用户信息判断是否终止终端接入拜访地网络,并将判断结果发送至基站侧网元,以使基站侧网元将判断结果发送至终端。Step 202, judge whether to terminate the terminal's access to the visited network according to the terminal user behavior and the current user information of the terminal, and send the judgment result to the network element on the base station side, so that the network element on the base station side can send the judgment result to the terminal.

在该步骤中,拜访地接入节点根据终端用户行为结合最新的终端当前的用户信息判断是否终止终端接入拜访地网络,例如,判断用户在拜访地打电话之后是否欠费,若欠费则终止终端接入拜访地网络。同时拜访地接入节点将判断结果发送至基站侧网元,以使基站侧网元将判断结果反馈至终端。In this step, the visited access node judges whether to terminate the terminal’s access to the visited network based on the terminal user’s behavior and the latest current user information of the terminal. Terminate the terminal's access to the visited network. At the same time, the visited access node sends the judgment result to the network element at the base station side, so that the network element at the base station side feeds back the judgment result to the terminal.

进一步的,所述步骤104中,所述根据终端当前的用户信息确定允许终端接入,包括:获取终端当前的用户信息中的用户签约信息;获取区块链账本中预先存储的漫游协议信息;若用户签约信息与漫游协议信息匹配,则确定允许终端接入。Further, in the step 104, the determining to allow terminal access according to the current user information of the terminal includes: obtaining the user subscription information in the current user information of the terminal; obtaining roaming agreement information pre-stored in the blockchain ledger; If the user subscription information matches the roaming agreement information, it is determined that the terminal is allowed to access.

在上述步骤中,拜访地接入节点若判断出终端当前的用户信息中的用户签约信息与区块链账本中预先存储的漫游协议信息匹配,即用户签约的就是漫游协议信息中的漫游业务服务协议,则拜访地接入节点确定允许终端接入。In the above steps, if the visited access node judges that the user subscription information in the current user information of the terminal matches the roaming agreement information pre-stored in the blockchain ledger, that is, the user signed up for the roaming service in the roaming agreement information protocol, the visited access node determines to allow terminal access.

需要说明的是,拜访地接入节点还需要判断终端当前的用户信息除用户签约信息之外的其他信息是否合理(例如,根据余额状态判断用户是否欠费,欠费则不能允许终端接入),若均合理,则确定请求接入消息正确,允许终端接入。It should be noted that the visited access node also needs to judge whether the current user information of the terminal other than the user subscription information is reasonable (for example, judge whether the user is in arrears according to the balance status, and the terminal cannot be allowed to access if the arrears are in arrears) , if both are reasonable, it is determined that the access request message is correct, and the terminal is allowed to access.

图3示出本公开实施例提供的基于区块链的漫游管理方法的另一流程图。进一步的,所述网络接入节点包括归属地接入节点,该基于区块链的漫游管理方法可应用于归属地接入节点。如图3所示,所述方法还包括:Fig. 3 shows another flow chart of the blockchain-based roaming management method provided by an embodiment of the present disclosure. Further, the network access node includes a home access node, and the blockchain-based roaming management method can be applied to the home access node. As shown in Figure 3, the method also includes:

步骤301,获取终端当前的用户信息。Step 301, acquiring current user information of a terminal.

其中,所述终端当前的用户信息是更新后的终端的用户信息。在拜访地接入节点接收基站侧网元发送的请求接入消息之前,用户签约漫游业务服务协议之后,若用户更新用户信息,归属地接入节点获取更新后的终端的用户信息,即获取更新后的用户签约信息、信用额度、漫游计费策略和余额状态等与用户相关的信息。Wherein, the current user information of the terminal is updated user information of the terminal. Before the visited access node receives the access request message sent by the network element on the base station side, after the user signs the roaming service agreement, if the user updates the user information, the home access node obtains the updated user information of the terminal, that is, obtains the update Subsequent user subscription information, credit limit, roaming charging policy and balance status and other information related to the user.

需要说明的是,在基站侧网元拒绝终端接入拜访地网络时,终端可以更新终端的用户信息,当更新后的终端的用户信息保存到区块链账本之后,终端可以再次向基站侧网元发送请求接入消息。It should be noted that when the network element on the base station side refuses the terminal to access the visited network, the terminal can update the user information of the terminal. The element sends a Request Access message.

步骤302,根据终端当前的用户信息和当前时间戳生成新区块,并在区块链中广播新区块。Step 302, generate a new block according to the current user information of the terminal and the current time stamp, and broadcast the new block in the block chain.

在该步骤中,归属地接入节点根据更新后的终端的用户信息加上当前时间戳生成新区块,在区块链中广播新区块,以在区块链账本中保存所述新区块中的内容。此处,保存的终端当前的用户信息为加密后的信息。In this step, the home access node generates a new block according to the updated user information of the terminal plus the current time stamp, and broadcasts the new block in the block chain to save the information in the new block in the block chain ledger. content. Here, the stored current user information of the terminal is encrypted information.

图4示出本公开实施例提供的基于区块链的漫游管理方法的另一流程图。进一步的,该基于区块链的漫游管理方法可应用于归属地接入节点。所述方法还包括:Fig. 4 shows another flow chart of the blockchain-based roaming management method provided by an embodiment of the present disclosure. Furthermore, the blockchain-based roaming management method can be applied to the home access node. The method also includes:

步骤401,获取漫游协议信息。Step 401, acquire roaming agreement information.

在拜访地接入节点接收基站侧网元发送的请求接入消息之前,归属地接入节点与拜访地接入节点预先互相认证漫游协议信息,即认证同一个漫游业务服务协议,具体认证的过程此处不作限定。区块链中的归属地接入节点获取该已经认证过的漫游协议信息。Before the visited access node receives the access request message sent by the network element on the base station side, the home access node and the visited access node pre-authenticate the roaming agreement information, that is, authenticate the same roaming service agreement, and the specific authentication process It is not limited here. The home access node in the blockchain obtains the authenticated roaming agreement information.

步骤401,根据漫游协议信息生成新区块,并在区块链中广播新区块。Step 401, generate a new block according to roaming agreement information, and broadcast the new block in the block chain.

在该步骤中,归属地接入节点根据漫游协议信息生成新区块,在区块链中广播新区块,以在区块链账本中保存所述新区块中的内容。In this step, the home access node generates a new block according to the roaming agreement information, broadcasts the new block in the block chain, and saves the content in the new block in the block chain ledger.

图5示出本公开实施例提供的网络接入节点的结构示意图。基于与图1对应的实施例相同的技术构思,如图5所示,本公开实施例提供的网络接入节点,包括如下模块。Fig. 5 shows a schematic structural diagram of a network access node provided by an embodiment of the present disclosure. Based on the same technical concept as the embodiment corresponding to FIG. 1 , as shown in FIG. 5 , the network access node provided by the embodiment of the present disclosure includes the following modules.

接收模块11,用于接收基站侧网元发送的请求接入消息。The receiving module 11 is configured to receive an access request message sent by a base station side network element.

第一获取模块12,用于获取所述请求接入消息中携带的国际移动用户识别码,所述请求接入消息是终端请求接入拜访地网络时向所述基站侧网元发送的。The first acquiring module 12 is configured to acquire the International Mobile Subscriber Identity code carried in the access request message, which is sent to the base station side network element when the terminal requests to access the visited network.

第二获取模块13,用于根据所述国际移动用户识别码从区块链账本中获取预先存储的终端当前的用户信息,所述区块链包括拜访地网络的各个拜访地接入节点和归属地网络的各个归属地接入节点。The second obtaining module 13 is used to obtain the pre-stored current user information of the terminal from the block chain account book according to the international mobile subscriber identification code, and the block chain includes each visiting point access node and the attribution of the visiting point network Each home access node of the local network.

发送模块14,用于若根据所述终端当前的用户信息确定允许所述终端接入,则将允许接入消息发送至所述基站侧网元,以使所述基站侧网元根据所述允许接入消息将所述终端接入拜访地网络。The sending module 14 is configured to send an access permission message to the network element on the base station side if it is determined that the terminal is allowed to access according to the current user information of the terminal, so that the network element on the base station side can The access message connects the terminal to the visited network.

优选地,还包括:Preferably, it also includes:

第三获取模块,用于在所述基站侧网元将所述终端接入拜访地网络之后,通过监测网元获取终端用户行为。The third acquiring module is configured to acquire the behavior of the terminal user by monitoring the network element after the network element at the base station side connects the terminal to the visited network.

判断模块,用于根据所述终端用户行为和所述终端当前的用户信息判断是否终止所述终端接入拜访地网络。A judging module, configured to judge whether to terminate the terminal's access to the visited network according to the user behavior of the terminal and the current user information of the terminal.

所述发送模块还用于将判断结果发送至所述基站侧网元,以使所述基站侧网元将所述判断结果发送至所述终端。The sending module is further configured to send the judgment result to the base station side network element, so that the base station side network element sends the judgment result to the terminal.

优选地,所述发送模块中,根据所述终端当前的用户信息确定允许所述终端接入,具体用于:Preferably, in the sending module, according to the current user information of the terminal, it is determined that the terminal is allowed to access, specifically for:

获取所述终端当前的用户信息中的用户签约信息。Obtain the user subscription information in the current user information of the terminal.

获取区块链账本中预先存储的漫游协议信息。Obtain roaming agreement information pre-stored in the blockchain ledger.

若所述用户签约信息与所述漫游协议信息匹配,则确定允许所述终端接入。If the user subscription information matches the roaming agreement information, determine that the terminal is allowed to access.

优选地,还包括:Preferably, it also includes:

第四获取模块,用于获取终端当前的用户信息,所述终端当前的用户信息是更新后的终端的用户信息。The fourth obtaining module is configured to obtain current user information of the terminal, where the current user information of the terminal is updated user information of the terminal.

第一广播模块,用于根据所述终端当前的用户信息和当前时间戳生成新区块,并在所述区块链中广播所述新区块。The first broadcast module is configured to generate a new block according to the current user information of the terminal and the current time stamp, and broadcast the new block in the block chain.

优选地,还包括:Preferably, it also includes:

第五获取模块,用于获取漫游协议信息。A fifth acquiring module, configured to acquire roaming agreement information.

第二广播模块,用于根据所述漫游协议信息生成新区块,并在区块链中广播所述新区块。The second broadcast module is configured to generate a new block according to the roaming agreement information, and broadcast the new block in the block chain.

可以理解的是,以上实施方式仅仅是为了说明本公开的原理而采用的示例性实施方式,然而本公开并不局限于此。对于本领域内的普通技术人员而言,在不脱离本公开的精神和实质的情况下,可以做出各种变型和改进,这些变型和改进也视为本公开的保护范围。It can be understood that, the above implementations are only exemplary implementations adopted to illustrate the principle of the present disclosure, but the present disclosure is not limited thereto. For those skilled in the art, various modifications and improvements can be made without departing from the spirit and essence of the present disclosure, and these modifications and improvements are also regarded as the protection scope of the present disclosure.

Claims (8)

1. A roaming management method based on a block chain is characterized by comprising the following steps:
receiving an access request message sent by a base station side network element, and acquiring an international mobile subscriber identity carried in the access request message, wherein the access request message is sent to the base station side network element when a terminal requests to access a visited network;
acquiring pre-stored current user information of the terminal from a blockchain account book according to the international mobile subscriber identity, wherein the blockchain comprises each visited access node of a visited network and each home access node of a home network;
if the terminal is allowed to access according to the current user information of the terminal, an access allowing message is sent to the base station side network element, so that the base station side network element can access the terminal to the visited network according to the access allowing message;
the determining to allow the terminal to access according to the current user information of the terminal includes:
acquiring user subscription information in the current user information of the terminal;
acquiring roaming agreement information prestored in a block chain account book;
and if the user subscription information is matched with the roaming agreement information, determining that the terminal is allowed to access.
2. The method for block chain based roaming management as claimed in claim 1, wherein the method further comprises:
after the base station side network element accesses the terminal to the visited network, acquiring the terminal user behavior through a monitoring network element;
and judging whether to terminate the access of the terminal to the visited network according to the terminal user behavior and the current user information of the terminal, and sending a judgment result to the base station side network element so that the base station side network element sends the judgment result to the terminal.
3. The method for block chain based roaming management as claimed in claim 1, wherein the method further comprises:
acquiring current user information of a terminal, wherein the current user information of the terminal is updated user information of the terminal;
and generating a new block according to the current user information and the current timestamp of the terminal, and broadcasting the new block in the block chain.
4. The method for block chain based roaming management as claimed in claim 1, wherein the method further comprises:
acquiring roaming agreement information;
and generating a new block according to the roaming agreement information, and broadcasting the new block in a block chain.
5. A network access node, comprising:
the receiving module is used for receiving a request access message sent by a network element at a base station side;
a first obtaining module, configured to obtain an international mobile subscriber identity carried in the request access message, where the request access message is sent to the base station side network element when a terminal requests to access a visited network;
a second obtaining module, configured to obtain, according to the international mobile subscriber identity, pre-stored current user information of the terminal from a blockchain account book, where the blockchain includes each visited access node of the visited network and each home access node of the home network;
a sending module, configured to send an access permission message to the base station side network element if it is determined that the terminal is permitted to access according to the current user information of the terminal, so that the base station side network element accesses the terminal to a visited network according to the access permission message;
the sending module determines, according to the current user information of the terminal, to allow the terminal to access, and is specifically configured to: acquiring user subscription information in the current user information of the terminal; acquiring roaming agreement information prestored in a block chain account book; and if the user subscription information is matched with the roaming agreement information, determining that the terminal is allowed to access.
6. The network access node of claim 5, further comprising:
a third obtaining module, configured to obtain a terminal user behavior through a monitoring network element after the base station-side network element accesses the terminal to the visited network;
the judging module is used for judging whether to terminate the access of the terminal to the visited place network according to the terminal user behavior and the current user information of the terminal;
the sending module is further configured to send the determination result to the base station side network element, so that the base station side network element sends the determination result to the terminal.
7. The network access node of claim 5, further comprising:
a fourth obtaining module, configured to obtain current user information of the terminal, where the current user information of the terminal is updated user information of the terminal;
and the first broadcasting module is used for generating a new block according to the current user information and the current timestamp of the terminal and broadcasting the new block in the block chain.
8. The network access node of claim 5, further comprising:
a fifth obtaining module, configured to obtain roaming agreement information;
and the second broadcasting module is used for generating a new block according to the roaming protocol information and broadcasting the new block in a block chain.
CN202010712514.5A 2020-07-22 2020-07-22 Blockchain-based roaming management method and network access node Active CN111885586B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010712514.5A CN111885586B (en) 2020-07-22 2020-07-22 Blockchain-based roaming management method and network access node

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010712514.5A CN111885586B (en) 2020-07-22 2020-07-22 Blockchain-based roaming management method and network access node

Publications (2)

Publication Number Publication Date
CN111885586A CN111885586A (en) 2020-11-03
CN111885586B true CN111885586B (en) 2023-02-17

Family

ID=73155296

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010712514.5A Active CN111885586B (en) 2020-07-22 2020-07-22 Blockchain-based roaming management method and network access node

Country Status (1)

Country Link
CN (1) CN111885586B (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11516648B2 (en) * 2021-01-25 2022-11-29 T-Mobile Usa, Inc. Device IMEI/IMEISV/TAC screening and steering while roaming in wireless networks
CN113316144B (en) * 2021-05-21 2023-01-31 中国联合网络通信集团有限公司 Wireless network access method, wireless access equipment and terminal equipment
CN115484583A (en) * 2021-05-31 2022-12-16 华为技术有限公司 A roaming access method and device

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109409882A (en) * 2018-10-18 2019-03-01 中国联合网络通信集团有限公司 A kind of credit accreditation storage method and device based on block chain
CN109451451A (en) * 2019-01-04 2019-03-08 中国联合网络通信集团有限公司 Terminal roaming method, equipment and storage medium
CN109600389A (en) * 2019-01-04 2019-04-09 中国联合网络通信集团有限公司 A kind of group user communication means and system based on block chain
CN109756847A (en) * 2019-01-04 2019-05-14 中国联合网络通信集团有限公司 Number porting call method, device and computer-readable storage medium
CN112333650A (en) * 2020-11-04 2021-02-05 中国联合网络通信集团有限公司 Roaming tariff adjustment method, device and system based on blockchain network

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108234443B (en) * 2017-10-26 2021-11-23 招商银行股份有限公司 Subscription method, system and computer readable storage medium
CN109035024A (en) * 2018-08-15 2018-12-18 杭州链汇通区块链科技有限公司 Method, system and the storage medium of electronic signature
CN110324817A (en) * 2019-07-02 2019-10-11 中国联合网络通信集团有限公司 International roaming communication means, service control point node based on block chain
CN110248351B (en) * 2019-07-02 2021-12-03 中国联合网络通信集团有限公司 Communication method based on block chain and number portability home location register

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109409882A (en) * 2018-10-18 2019-03-01 中国联合网络通信集团有限公司 A kind of credit accreditation storage method and device based on block chain
CN109451451A (en) * 2019-01-04 2019-03-08 中国联合网络通信集团有限公司 Terminal roaming method, equipment and storage medium
CN109600389A (en) * 2019-01-04 2019-04-09 中国联合网络通信集团有限公司 A kind of group user communication means and system based on block chain
CN109756847A (en) * 2019-01-04 2019-05-14 中国联合网络通信集团有限公司 Number porting call method, device and computer-readable storage medium
CN112333650A (en) * 2020-11-04 2021-02-05 中国联合网络通信集团有限公司 Roaming tariff adjustment method, device and system based on blockchain network

Also Published As

Publication number Publication date
CN111885586A (en) 2020-11-03

Similar Documents

Publication Publication Date Title
US9065641B2 (en) Method and device for updating a key
US20080294891A1 (en) Method for Authenticating a Mobile Node in a Communication Network
US11539683B2 (en) Operation related to user equipment using secret identifier
US20040162998A1 (en) Service authentication in a communication system
JP2003501891A (en) Method and apparatus for communicating securely
CN111885586B (en) Blockchain-based roaming management method and network access node
JP2007511122A (en) How to manage application security with security modules
TW200952424A (en) Authenticating a wireless device in a visited network
JP2003510987A (en) Security procedures for universal mobile phone service
CN109792443B (en) Blacklist management method of distributed authentication framework based on IBC
WO2009135367A1 (en) User device validation method, device identification register and access control system
EP1698197B1 (en) Authentication in a communication network
CN101119197B (en) Contracting method and system
US7636845B2 (en) System for preventing IP allocation to cloned mobile communication terminal
CN109905394B (en) Blockchain-based anti-counterfeiting method, base station, user terminal, user support system
CN113329403B (en) One-number multi-terminal authentication network access method and system
CN101568116B (en) Method for obtaining certificate state information and certificate state management system
WO2006079953A1 (en) Authentication method and device for use in wireless communication system
WO2007025484A1 (en) Updating negotiation method for authorization key and device thereof
EP3488627B1 (en) Proof-of-presence indicator
CN112988412B (en) Edge caching method, base station and system based on block chain network
CN111918292B (en) Access method and device
WO2008026047A2 (en) Ascertaining the authentication of a roaming subscriber
CN106899568A (en) The method and apparatus that a kind of Service Ticket of internet of things equipment updates
CN112566106B (en) Multi-network and multi-link equipment authentication method based on 5G

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant