CN101257518A - Method and system for preventing lawless ordering without through charging gateway in WAP platform - Google Patents
Method and system for preventing lawless ordering without through charging gateway in WAP platform Download PDFInfo
- Publication number
- CN101257518A CN101257518A CNA2008101028723A CN200810102872A CN101257518A CN 101257518 A CN101257518 A CN 101257518A CN A2008101028723 A CNA2008101028723 A CN A2008101028723A CN 200810102872 A CN200810102872 A CN 200810102872A CN 101257518 A CN101257518 A CN 101257518A
- Authority
- CN
- China
- Prior art keywords
- wap
- charging gateway
- user
- order
- platform
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention relates to a method and system for preventing illegal ordering which does not go through a charging gateway. The method comprises that: step 101, the charging gateway creates parameters for identification of a subscriber ordering behaviors after receiving an ordering petition from the subscriber, and the parameters are stored in a data base; step 102, the charging gateway reorients the ordering promption page and sends the parameters to a WAP portal; step 103, the WAP portal sends the parameters and the ordering promption page to the subscriber; and step 104, after user confirmation, the WAP portal checks the parameters, executes the ordering, and returns promotion of successful ordering. The invention ensures that all of ordering behaviors go through and are controlled by the WAP platform and strictly controls the ordering behaviors not going through the WAP platform, thus ensuring CP/SP benefits, protecting lawful rights and interests of consumers, being capable of standardizing the increase value traffic marketable progression and ensuring the WAP traffic healthy development.
Description
Technical field
The present invention relates to the WAP platform, relate in particular to the method and system that prevent in the WAP platform without the illegal order of charging gateway.
Background technology
WAP (WAP (wireless application protocol)) platform comprises modules such as WAP door, charging gateway, is provided with database in the charging gateway.The order flow process of existing WAP platform is as follows: WAP user clicks corresponding linking request on mobile phone, arrive the WAP platform through WAP gateway, the BG of WAP platform (BillingGateway charging gateway) judges the user, judge whether the user orders this business, if do not order, will eject the charging page, allow the user order, can use after ordering; If judge that the user has ordered, just can allow user capture.
Be accompanied by the development of WAP business, the situation of increasing unauthorized access and order appears in the WAP platform, wherein a kind of is illegal order without charging gateway: (for example openwave) browses portal page by the IE/ simulator, walk around the control of WAP platform charging gateway, the phenomenon that malice is ordered occurs.
In the prior art, can judge whether the request source is legal, limits the visit of illegal request by means such as fire compartment walls.This scheme can be strengthened visit source fail safe in some link of network, but orders and can't control effectively for the malice that malicious script etc. is initiated by mobile phone.
Patent application " method for processing business of WAP gateway server " (application number 200610161852.4) discloses and can prevent the illegal technical scheme of ordering, blacklist by WAP browse request URL (URL(uniform resource locator)) or IP in this scheme and white list reach and prevent illegal subscription purposes, but this scheme can not be used to prevent the above-mentioned illegal order behavior of mentioning without charging gateway.
Summary of the invention
In order to solve above-mentioned technical problem, the invention provides the method and system that prevent in the WAP platform without the illegal order of charging gateway, its purpose is, prevents illegal order.
The invention provides the method that prevents in the WAP platform without the illegal order of charging gateway, comprising:
Step 101, charging gateway generate the parameter that identifying user is ordered behavior after receiving user's subscription request, and described parameter is stored in the database;
Step 102, charging gateway are redirected orders the prompting page, and described parameter is sent to the WAP door;
Step 103, the WAP door is sent to the user with the described parameter and the order prompting page;
Step 104, after the user confirmed, the WAP door was verified described parameter in database, order, and return order and successfully point out.
In the step 101, described parameter is the sequence number that charging gateway generates.
In the step 101, charging gateway also is recorded in described sequence number and user's corresponding relation in the database.
In the step 103, described WAP door is also through the charging gateway described sequence number of checking and described sequence number and user's in the database corresponding relation.
In the step 104, described WAP door is through the charging gateway described sequence number of checking and described sequence number and user's in the database corresponding relation.
The invention provides the system that prevents in the WAP platform without the illegal order of charging gateway, this system comprises WAP platform, WAP gateway, user terminal and CP/SP business site, wherein the WAP platform comprises charging gateway, WAP door, and charging gateway comprises database
Charging gateway comprises that parameter is provided with module, is used to be provided with the parameter that identifying user is ordered behavior;
The WAP door comprises authentication module, is used to verify described parameter, orders, and returns order and successfully point out;
Charging gateway also is used for being redirected and orders the prompting page, and described parameter is sent to the WAP door;
The WAP door also is used for described parameter and orders the prompting page being sent to the user;
Database is used for the parameter that the storaging mark user orders behavior.
Described parameter is the sequence number that charging gateway generates.
Described parameter is provided with module, also is used for described sequence number and user's corresponding relation is recorded in database.
Described authentication module also is used to verify described sequence number and described sequence number and user's corresponding relation.
Described corresponding relation is the corresponding relation of described sequence number and described user's telephone number.
The present invention guarantees that all order behaviors all pass through WAP platform control; to strictly controlling without the order behavior of WAP platform control; guaranteed the income of CP (content supplier)/SP (service provider); consumer's legitimate rights and interests have been protected; development that can standard value-added service market guarantees the sound development of WAP business.
Description of drawings
Fig. 1 is provided by the invention preventing without the detail flowchart of the illegal order of charging gateway;
Fig. 2 is provided by the invention preventing without the overview flow chart of the illegal order of charging gateway;
Fig. 3 is the structural representation of WAP platform provided by the invention.
Embodiment
Provided by the invention preventing without the solution of the illegal order of charging gateway is: the WAP platform is mainly taked by being kept at the order behavior that the sequence number (sequence) that is generated at random by charging gateway in the database comes the unique identification user, order behavior through WAP platform charging gateway all can have a sequence corresponding with its operation in database, order behavior without WAP platform charging gateway can not have the sequence record in database, therefore can be by the WAP platform processes without the illegal order of WAP platform charging gateway.The WAP platform has prevented without the illegal order of WAP platform charging gateway well by the normal order record of unique identification user in database.The sequence that generates in the time of the BG bullet quotation page is an agreement between BG and the WAP PORTAL (WAP door).If comprise sequence in user's the subscription request and be proved to be successful, the WAP door is carried out and is ordered, and returns order and successfully point out, and orders the failure prompting otherwise return.
Be elaborated below in conjunction with accompanying drawing.
Prevent to comprise without the flow process of the illegal order of charging gateway as shown in Figure 1:
Step 2 after WAP gateway obtains request, is transmitted to charging gateway with request;
Step 3, charging gateway judge whether the user ordered this business, find not order, and then generate sequence, and with sequence and and user's corresponding relation (for example corresponding relation of user's telephone number and sequence) be recorded into database;
Step 4, charging gateway are initiated redirect, request is turned to the order page on the WAP door, and transmit parameters such as sequence and user profile;
Step 5, whether whether the WAP door is received request, go database authentication sequence to exist through charging gateway, and correct with user's corresponding relation;
Step 6, charging gateway are returned the checking result;
Step 7 after the success of WAP portal authentication, is returned the prompting page of ordering;
Step 8, charging gateway are returned the prompting page of order;
Step 9, WAP gateway are returned the prompting page of order;
Step 10, after the user saw the page, the product type that selection is liked was clicked and is confirmed, initiated to confirm to ask to WAP gateway, comprised sequence in this request;
Step 11, after WAP gateway obtained request, the request that will comprise sequence was transmitted to charging gateway;
Step 12, charging gateway are seen the non-service URL of this request that comprises sequence, directly are transmitted to the WAP door;
Whether whether step 13, WAP door receive that ordering affirmation asks, go database authentication sequence to exist through charging gateway, and correct with user's corresponding relation;
Step 14, charging gateway are returned the checking result;
Step 15 after being proved to be successful, is carried out and is ordered logic;
Step 16 is returned order and is successfully pointed out the page;
Step 17, charging gateway will be ordered successfully prompting and return;
Step 18, WAP gateway will be ordered successfully prompting and return;
Step 19, the user sees that order successfully points out, and clicks the business that enters, and initiates the service URL request;
Step 20 after WAP gateway obtains request, is transmitted to charging gateway with request;
Step 21, charging gateway judge whether the user ordered this business, and at this moment the user orders, and the user can visit;
Step 22, charging gateway directly are transmitted to business site;
Step 23, the response of business site back page;
Step 24, the response of charging gateway back page;
Step 25, the response of WAP gateway back page.
Whether above-mentioned steps 5,6 can be omitted, and does not verify promptly whether sequence exists, and correct with user's corresponding relation, and the prompting page that directly will order in step 7 returns.
When directly visiting the order page of WAP door by the IE/ simulator, this moment is without the charging gateway of WAP platform, charging gateway BG can't insert the record that has the sequence sign in database, even therefore visit the order page of door, also can't finish order.
Fig. 2 is that provided by the invention preventing comprises without the overview flow chart of the illegal order of charging gateway:
In order to realize the illegal method of ordering that prevents shown in Figure 2, the invention provides the system that does not pass through the illegal order of charging gateway in a kind of WAP of preventing platform, this system comprises WAP platform, WAP gateway, user terminal, CP/SP business site, the detailed structure of WAP platform as shown in Figure 3, comprise: charging gateway 301, WAP door 302, charging gateway 301 comprises database 303
Charging gateway 301 comprises parameter module 304 is set, and is used to be provided with the parameter that identifying user is ordered behavior;
WAP door 302 comprises authentication module 305, is used to verify described parameter, orders, and returns order and successfully point out;
Charging gateway 301 also is used for being redirected and orders the prompting page, and described parameter is sent to WAP door 302;
WAP door 302 also is used for described parameter and orders the prompting page being sent to the user.
Database 303 is used for the parameter that the storaging mark user orders behavior.
Described parameter is the sequence number that charging gateway 301 generates.
Parameter is provided with module 304, also is used for described sequence number and user's corresponding relation is recorded in database 303.
Described authentication module 305 also is used to verify described sequence number and described sequence number and user's corresponding relation.
Described corresponding relation is the corresponding relation of described sequence number and described user's telephone number.
In addition, database 303 is arranged at outside the charging gateway 301 and also can realizes the present invention.
Those skilled in the art can also carry out various modifications to above content under the condition that does not break away from the definite the spirit and scope of the present invention of claims.Therefore scope of the present invention is not limited in above explanation, but determine by the scope of claims.
Claims (10)
1, prevent from the WAP platform to it is characterized in that, comprising without the method for the illegal order of charging gateway:
Step 101, charging gateway generate the parameter that identifying user is ordered behavior after receiving user's subscription request, and described parameter is stored in the database;
Step 102, charging gateway are redirected orders the prompting page, and described parameter is sent to the WAP door;
Step 103, the WAP door is sent to the user with the described parameter and the order prompting page;
Step 104, after the user confirmed, the WAP door was verified described parameter in database, order, and return order and successfully point out.
2, as claimed in claim 1 prevent in the WAP platform is characterized in that without the method for the illegal order of charging gateway, and in the step 101, described parameter is the sequence number that charging gateway generates.
3, as claimed in claim 2 prevent in the WAP platform is characterized in that without the method for the illegal order of charging gateway in the step 101, charging gateway also is recorded in described sequence number and user's corresponding relation in the database.
4, as claimed in claim 3 preventing in the WAP platform without the method for the illegal order of charging gateway, it is characterized in that, in the step 103, described WAP door is also through the charging gateway described sequence number of checking and described sequence number and user's in the database corresponding relation.
5, as claimed in claim 3 preventing in the WAP platform without the method for the illegal order of charging gateway, it is characterized in that, in the step 104, described WAP door is through the charging gateway described sequence number of checking and described sequence number and user's in the database corresponding relation.
6, prevent in the WAP platform without the system of the illegal order of charging gateway, this system comprises WAP platform, WAP gateway, user terminal and CP/SP business site, and wherein the WAP platform comprises charging gateway, WAP door, and charging gateway comprises database, it is characterized in that
Charging gateway comprises that parameter is provided with module, is used to be provided with the parameter that identifying user is ordered behavior;
The WAP door comprises authentication module, is used to verify described parameter, orders, and returns order and successfully point out;
Charging gateway also is used for being redirected and orders the prompting page, and described parameter is sent to the WAP door;
The WAP door also is used for described parameter and orders the prompting page being sent to the user;
Database is used for the parameter that the storaging mark user orders behavior.
7, as claimed in claim 6 prevent in the WAP platform is characterized in that without the system of the illegal order of charging gateway described parameter is the sequence number that charging gateway generates.
8, as claimed in claim 7 prevent in the WAP platform is characterized in that without the system of the illegal order of charging gateway described parameter is provided with module, also is used for described sequence number and user's corresponding relation is recorded in database.
9, as claimed in claim 8 prevent in the WAP platform is characterized in that without the system of the illegal order of charging gateway, and described authentication module also is used to verify described sequence number and described sequence number and user's corresponding relation.
10, prevent from as claimed in claim 8 or 9 in the WAP platform to it is characterized in that without the system of the illegal order of charging gateway described corresponding relation is the corresponding relation of described sequence number and described user's telephone number.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008101028723A CN101257518B (en) | 2008-03-27 | 2008-03-27 | Method and system for preventing lawless ordering without through charging gateway in WAP platform |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2008101028723A CN101257518B (en) | 2008-03-27 | 2008-03-27 | Method and system for preventing lawless ordering without through charging gateway in WAP platform |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101257518A true CN101257518A (en) | 2008-09-03 |
| CN101257518B CN101257518B (en) | 2010-12-08 |
Family
ID=39891983
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2008101028723A Active CN101257518B (en) | 2008-03-27 | 2008-03-27 | Method and system for preventing lawless ordering without through charging gateway in WAP platform |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101257518B (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102438244A (en) * | 2010-09-29 | 2012-05-02 | 西门子公司 | Detecting method and device |
| CN102469419A (en) * | 2010-10-29 | 2012-05-23 | 中国电信股份有限公司 | Method and device for charging client on line |
| CN102761576A (en) * | 2011-04-28 | 2012-10-31 | 中兴通讯股份有限公司 | Web system malicious polyphonic ringtone ordering preventing method and server |
| CN103986603A (en) * | 2014-05-23 | 2014-08-13 | 上海新炬网络技术有限公司 | SP service monitoring method based on user group consumption experience |
| CN106169956A (en) * | 2016-05-19 | 2016-11-30 | 成都逸动无限网络科技有限公司 | A kind of charging gateway |
-
2008
- 2008-03-27 CN CN2008101028723A patent/CN101257518B/en active Active
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102438244A (en) * | 2010-09-29 | 2012-05-02 | 西门子公司 | Detecting method and device |
| CN102438244B (en) * | 2010-09-29 | 2015-09-23 | 西门子公司 | Detection method and checkout gear |
| CN102469419A (en) * | 2010-10-29 | 2012-05-23 | 中国电信股份有限公司 | Method and device for charging client on line |
| CN102469419B (en) * | 2010-10-29 | 2014-12-17 | 中国电信股份有限公司 | Method for charging on line, charging gateway and system of online application content |
| CN102761576A (en) * | 2011-04-28 | 2012-10-31 | 中兴通讯股份有限公司 | Web system malicious polyphonic ringtone ordering preventing method and server |
| CN102761576B (en) * | 2011-04-28 | 2015-04-01 | 中兴通讯股份有限公司 | Web system malicious polyphonic ringtone ordering preventing method and server |
| CN103986603A (en) * | 2014-05-23 | 2014-08-13 | 上海新炬网络技术有限公司 | SP service monitoring method based on user group consumption experience |
| CN106169956A (en) * | 2016-05-19 | 2016-11-30 | 成都逸动无限网络科技有限公司 | A kind of charging gateway |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101257518B (en) | 2010-12-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101523859B (en) | System and method for authenticating remote server access | |
| US20080301444A1 (en) | Apparatus and Method for Providing Personal Information Sharing Service Using Signed Callback Url Message | |
| CN102811228B (en) | Network login method, equipment and system | |
| CN108496382A (en) | Security information transmitting system and method for personal identification | |
| CN102394887A (en) | OAuth protocol-based safety certificate method of open platform and system thereof | |
| CN101917431A (en) | Method and device for preventing illegal invasion of internal network of intelligent home | |
| CN110232568B (en) | Mobile payment method, mobile payment device, computer equipment and readable storage medium | |
| CN106162641B (en) | A kind of safe public WiFi authentication method and system | |
| CN105392136A (en) | Method and device for access to router based on two-dimensional code | |
| CN102088691A (en) | User authentication and identification system and method for mobile internet application of mobile phone | |
| CN101257518B (en) | Method and system for preventing lawless ordering without through charging gateway in WAP platform | |
| CN101883106A (en) | Network access authentication method and server based on digital certificate | |
| CN104822145A (en) | Method, apparatus and system for identifying a pseudo base-station short message | |
| CN104702760A (en) | Communication number updating method and device | |
| CN103905194A (en) | Identity traceability authentication method and system | |
| CN101304434B (en) | System and method for preventing WAP service from illegally ordering | |
| CN102843584A (en) | Method and system for authenticating network terminals | |
| CN104837134A (en) | Web authentication user registration method, device and system | |
| KR101879843B1 (en) | Authentication mehtod and system using ip address and short message service | |
| US20080260154A1 (en) | Method and system for protecting the internet access of a mobile telephone, and corresponding mobile telephone and terminal | |
| CN101257519B (en) | Method and system for preventing lawless order without WAP gateway | |
| EP2345975A1 (en) | Content delivery verification system | |
| CN103108316A (en) | Authentication method, device and system for aerial card writing | |
| CN106487776B (en) | Method, network entity and system for protecting machine type communication equipment | |
| CN101267456B (en) | Method and system for preventing CP subscription simulation |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| EE01 | Entry into force of recordation of patent licensing contract |
Assignee: China Telecom Co., Ltd. Assignor: China United Communication Co., Ltd. Contract fulfillment period: 2008.7.27 to 2028.5.21 contract change Contract record no.: 2008990000845 Denomination of invention: Method and system for preventing lawless ordering without through charging gateway in WAP platform License type: General permission Record date: 20081020 |
|
| LIC | Patent licence contract for exploitation submitted for record |
Free format text: COMMON LICENSE; TIME LIMIT OF IMPLEMENTING CONTACT: 2008.7.27 TO 2028.5.21; CHANGE OF CONTRACT Name of requester: CHINA TELECOMMUNICATIONS GROUP CO.,LTD. Effective date: 20081020 |
|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |