CN1708129A - Method and system for realizing safety running of digital television user management system - Google Patents
Method and system for realizing safety running of digital television user management system Download PDFInfo
- Publication number
- CN1708129A CN1708129A CN 200410048050 CN200410048050A CN1708129A CN 1708129 A CN1708129 A CN 1708129A CN 200410048050 CN200410048050 CN 200410048050 CN 200410048050 A CN200410048050 A CN 200410048050A CN 1708129 A CN1708129 A CN 1708129A
- Authority
- CN
- China
- Prior art keywords
- data
- application server
- terminal
- operator
- request
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 41
- 238000012795 verification Methods 0.000 claims description 33
- 238000012545 processing Methods 0.000 claims description 20
- 230000008569 process Effects 0.000 claims description 15
- 238000012423 maintenance Methods 0.000 claims description 11
- 238000007639 printing Methods 0.000 claims description 9
- 230000005540 biological transmission Effects 0.000 claims description 7
- 230000004044 response Effects 0.000 claims description 6
- 230000008859 change Effects 0.000 claims description 3
- 238000004321 preservation Methods 0.000 claims description 3
- 230000001360 synchronised effect Effects 0.000 description 10
- 238000010586 diagram Methods 0.000 description 8
- 238000012546 transfer Methods 0.000 description 5
- 230000002159 abnormal effect Effects 0.000 description 2
- 238000013475 authorization Methods 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
Images
Landscapes
- Information Transfer Between Computers (AREA)
Abstract
The present invention provides method and system for safe running of digital TV user management system. The digital TV user management system includes application server and at least one running terminal connected via network with the application server. The method includes the following steps: the back-up step for the running terminal to back up the running data of the present terminal; the emergency running step for the running terminal detecting interruption the network sends to run with the said running data; and data echoing step for the running terminal to echo the newly increased running data to the application server after the network restores normally. In case of interruption in the network connected to the application server, the running terminal can run normally via backing up its running data; and the emergency scheme needs no excessive network and thus has less investment and low emergency cost.
Description
Technical Field
The invention relates to a method for realizing safe operation, in particular to a method for realizing safe operation of a digital television user management system and the digital television user management system.
Background
The development of digital video and audio broadcasting technology enables video and audio data service providers to provide paid services to the public through television broadcasting networks with broad prospects, and the conditional access system is one of the necessary means for the paid services provided by the video and audio data service providers. Through the conditional access system, the video and audio data service provider can encrypt the service data stream provided by the video and audio data service provider, and the user can decrypt the service data stream provided by the video and audio data service provider by purchasing the service provided by the video and audio data service provider. The video and audio data service provider manages the digital television broadcasting condition receiving users by SMS (Subscriber Management System), including recording, processing, maintaining and managing user information, user equipment information, user reservation information, user authorization information, financial information, and the like.
The SMS generally adopts a centralized control and distributed operation mode when applied to a broadcast television provincial network, that is, the SMS uniformly manages all service information by an application server in a provincial center, and operation terminals in cities and counties in various regions request the application server to operate local information in a B/S (browser/server) or C/S (client/server) mode. This networking mode has a high requirement on the network condition between the application server and the operation terminal, and once a problem occurs in the connected network, the operation of the whole SMS is directly affected. For a network interruption situation that may occur, an emergency implementation safety operation scheme needs to be provided to ensure that an operator can still perform operation.
One currently adopted method for achieving secure operation is to additionally erect a standby network between the application server and the operation terminal. When the existing network is in a normal state, the operation terminal and the application server communicate through the existing network, and when the existing network is in a fault or unstable state, the operation terminal and the application server communicate by adopting a standby network. Because a standby network needs to be additionally erected, not only network equipment is increased, but also a large amount of manpower is needed to maintain the normal operation of the network after the standby network is established, so the specific implementation cost of the emergency method is very high. Especially, when the standby network is also unstable or fails, it is still impossible to ensure safe operation of the operation terminal.
Disclosure of Invention
In view of the above, the present invention provides a method for implementing a low-cost secure operation of a digital television subscriber management system, which is used to solve the problem that a network interruption in the digital television subscriber management system affects the secure operation of each operation terminal.
Another object of the present invention is to provide a digital tv subscriber management system capable of implementing safe operation in emergency.
The invention provides a method for realizing the safe operation of a digital television user management system, wherein the digital television user management system comprises an application server and at least one operation terminal connected with the application server through a network, and the method comprises the following steps: a backup step: the operation terminal backs up operation data of the operation terminal; emergency operation steps: when the network interruption is detected, the operation terminal operates by using the operation data; a data loopback step: and when the network recovers to be normal, the operation terminal returns the newly added operation data to the application server.
Wherein, the backup step specifically comprises: a request step: the operation terminal sends a data synchronization request to the application server; a data sending step: the application server responds to the request and sends back the latest operation data of the terminal; a preservation step: and the operation terminal stores the received data.
Wherein the step of backing up comprises the steps of: a registration step: at least one operator information of the operation terminal is registered in the application server, wherein the operator information at least comprises an operator account and a corresponding password; binding: the application server stores the binding relationship between the operator information and the operation terminal; an updating step: and the application server stores the operator information as a data record in the operator data of the operation terminal bound with the application server.
Wherein, the data sending step also comprises that the application server sends back the operator data of the terminal or sends back the encrypted operator data to the operation terminal.
Wherein the data loopback step further comprises: the operation terminal sends an operation data return request; the application server responds to the request; the operation terminal organizes the newly added operation data into a return data file and sends the return data file to the application server; and the application server receives the returned data file and sends back a response result of successful sending.
Wherein the application server responding to the request comprises: the application server verifies whether the operation terminal is configured on the application server, if so, the application server sends back a verification message that the terminal authority passes, otherwise, the operation process is quitted.
Wherein the application server responding to the request further comprises: the application server verifies whether the operator information sending the request is bound with the operation terminal, if so, the application server sends back an operation right binding relationship passing verification message, otherwise, the application server quits the operation process.
Wherein the application server responding to the request comprises: the application server authenticates the operator information sending the request, if the operator information is the same as the request, the application server sends back an operator authority authentication success message, otherwise, the application server quits the operation process.
The invention also provides a data television user management system, which comprises an application server and at least one operation terminal connected with the application server through a network, wherein the operation terminal comprises: the data synchronization module is used for requesting local data synchronization to the application server and receiving the response of the application server; the data returning module: the system is used for sending the newly added operation data of the local terminal to the application server after the network is recovered to normal; the data maintenance module is used for storing the operation data downloaded by the application server into the operation data of the home terminal and exporting the return data from the operation data of the home terminal; the application server also comprises an emergency operation interface module for responding to the request of the operation terminal and the data transmission of the application server and the operation terminal.
Wherein the emergency operation interface module comprises: operation data downloading module: the system comprises a data processing module, a data processing module and a data processing module, wherein the data processing module is used for receiving a request of an operation terminal and downloading the latest operation data of the operation terminal stored by an application server; operation data upload module: the system is used for receiving the request of the operating terminal and retrieving the return data of the operating terminal.
Wherein the operation terminal further comprises: a service acceptance module: the system is used for completing operation at the local terminal according to the user service request; the log processing module: the system is used for recording detailed information of each operation and an operation terminal operation log; the login control module is used for authenticating an operator when the operator logs in the operation terminal; or the bill printing module is used for printing the user payment bill.
Wherein the application server further comprises: an operator data download module: the operator terminal is used for transmitting the operator data to the operator terminal bound with the operator data; or, the node configuration processing module: the application server also comprises a module for reading the node configuration information of the operation terminal and the change of the configuration information in the operation step.
Compared with the prior art, the invention has the following advantages:
firstly, when the network connected with the application server is interrupted, the operation terminal normally operates by backing up the operation data of the operation terminal, and in the emergency scheme, no additional network needs to be erected, so that the recommended investment of an operator is reduced, and the emergency cost is reduced. And the operation terminal directly uses the local operation data to complete the service acceptance, thereby completely avoiding influencing the normal operation of the operation terminal when the network is abnormal.
Secondly, in the data sending step, the user data and the operator data synchronized to the operation terminal are encrypted, so that the safety of the data is ensured. And triple verification is carried out on the binding relationship among the operation terminal, the operator and the authority of the operator in data synchronization and return, so that the safety of the data is ensured.
Finally, when the SMS is applied to the broadcast television provincial network, no matter data synchronization or data return is adopted, the operation terminal provides data transmission service, the safety of the provincial center application server is ensured, meanwhile, an additional standby network does not need to be managed, and the management difficulty is reduced.
Drawings
Fig. 1 is a schematic diagram of a structure of a digital tv subscriber management system SMS.
Fig. 2 is a flow chart of the implementation of the secure operation of the digital television user management system.
Fig. 3 is a detailed flowchart of the backup operation of the operator terminal.
Fig. 4 is a structural composition diagram of an operator terminal in SMS.
Fig. 5 is a structural composition diagram of an application server in SMS.
Fig. 6 is a flow chart of the login steps in the secure operation of a data tv user management system.
Fig. 7 is a timing diagram of operator data download in a secure operation based on a data tv subscriber management system.
Fig. 8 is a sequence diagram of operation data downloading in a secure operation based on a data tv subscriber management system.
Fig. 9 is a sequence diagram of operation data uploading in security operation based on a data television user management system.
Detailed Description
The present invention will be described in detail below with reference to the accompanying drawings.
Fig. 1 is a schematic structural diagram of a digital television user management system according to the present invention. The digital television subscriber management system comprises an application server 1 and a number of operator terminals 2 connected thereto via a network. The application server 1 adopts a centralized control and distributed operation mode to uniformly manage the operation terminals 2 so as to control the normal operation of each operation terminal 2.
Please refer to fig. 2, which is a flowchart illustrating a security operation implemented in the digital tv subscriber management system according to the present invention.
Firstly, when the operation terminal 2 and the application server 1 communicate normally, the operation terminal 2 backs up the operation data of the operation terminal (step S110);
referring to fig. 3, the backup step specifically includes: a request step: the operation terminal 2 sends a data synchronization request to the application server (step S210); a data sending step: the application server 1 responds to the request and sends back the latest operation data of the operation terminal 2; a preservation step: the operator terminal 2 saves the received data (step S220).
Secondly, when detecting that the network is interrupted, the operation terminal 2 directly uses the operation data stored in the home terminal to perform operation (step S120); when the operation terminal 2 detects that a network dedicated line connected with the application server 1 has a fault, and cannot receive data sent by the application server 1 and cannot send data to the application server 1, the operation terminal 2 operates by using the operation data backed up by the home terminal, namely, accepts operation operations such as ordering programs, canceling programs, paying fees and the like of a user according to an instruction of the user, and stores newly-added operation data on the operation terminal 2, so that influence on operation of the operation terminal when the network is abnormal can be completely avoided.
Finally, when the network returns to normal, the operation terminal 2 returns the added operation data to the application server 1 (step S130). The application server 1 updates the operation data corresponding to the operation terminal 2 stored locally by using the received operation data. At this time, the application server 1 and the operation terminal 2 resume normal communication, and step S110 is performed, and the operation terminal 2 starts to backup operation data of its own terminal.
The present invention discloses a method for implementing the safe operation, and the following describes a digital tv user management system for implementing the above safe operation and a method for implementing the safe operation based on the digital tv user management system.
Please refer to fig. 4 and 5, which are schematic structural diagrams of the operation terminal 2 and the application server 1 in the SMS of the present invention, respectively. Referring to fig. 3, the operation terminal 2 includes a log processing module 21, a data synchronization module 22, a login module 23, a data return module 24, a service acceptance module 25, a bill printing module 26, and a data maintenance module 27. Wherein,
the log processing module 21: for recording detailed information of each operation and an emergency operation terminal 2 operation log. All operation requests initiated by the operator record detailed operation log information. The recorded information includes: time of operation, operator account number, details of operation, etc. And recording a detailed operation log when the key steps and processing exceptions of the operation terminal 2 are processed. And when the data is transmitted back to the application server 1, the log information stored in the log processing module 21 is transmitted back through the data transmission module 24.
The data synchronization module 22: the data maintenance module 27 is used for calling the data maintenance module 27 to store the received data when the application server 1 requests the synchronous data at regular time and the application server 1 returns the synchronous data. The synchronization data includes operator data and operation data, the operator data includes at least one record, each record stores information of an operator bound with the operation terminal 2, the information includes an account number and a corresponding password of the operator, and the operation data includes user data and service data of the operation terminal 2, so that the operation terminal 2 can directly operate. In order to prevent the operator data of the operation terminal 2 and the operator data of the terminal stored in the application server from being inconsistent, the data synchronization module 22 actively sends out a request for synchronizing the operator data of the terminal under the control of the operator, and when the application server 1 returns the operator data of the terminal, the data maintenance module 27 is called to store the received operator data.
The data backhaul module 24: the system is used for requesting the application server 1 to retrieve local latest operation data after the network is interrupted and recovered, and clearing the returned operation data, and each operation data generated by the operation terminal 2 in an emergency is provided with a return mark for marking whether the record is returned or not. The operation data provided with the return mark is organized into a return data file, a data return request is sent to the application server, and the local operation data are marked as returned after the data return is successful. The operation data needing to be returned comprises program ordering, record canceling, payment record and operation log record. Different types of records are stored in different data files, distinguished by different file names.
The service acceptance module 25: the method is used for processing service requests of users for ordering programs, canceling ordered programs, paying fees and the like, locally generating service operation records and providing recorded queries.
The ticket printing module 26: the method is used for printing the user payment bill.
The login control module 23: for authenticating the operator when he logs in to the operator terminal 2.
The data maintenance module 27: locally stored operator data and operational data are maintained. The operator terminal 2 data is stored in a database. The data maintenance module 27 is responsible for maintaining the data, including saving the user data and the service data downloaded by the application server 1 as local operation data, deriving data to be transmitted back from the local operation data, adding data records, deleting data records, modifying data records, and querying data records. The data that the data maintenance module 27 needs to operate on may include: user profile data, business data, user subscription program data, operator data, user payment records, operation logs, and the like.
The application server 1 is provided with an emergency operation interface module, which is used for responding to an emergency request of the operation terminal 2 and can adopt an FTP mode to perform data synchronization and operation data return between the operation terminal 2 and the application server 1. In order to ensure the safety of the application server 1, the ftp service is provided at the operation terminal 2 of the emergency operation system, and the data transfer operation is initiated by the application server 1. The emergency operation interface module includes an operator data download module 11, an operation data download module 12, and an operation data upload module 13. Wherein:
the operator data download module 11: for transferring operator data bound to the operator terminal 2.
The operation data downloading module 12: for transferring user data and service data of the operator terminal 2 to the operator terminal 2.
The operation data uploading module 13: and the operation terminal is used for retrieving the newly added operation data from the operation terminal 2, wherein the operation data comprises newly added order records, payment records and operation log records, and the operation data processes the records.
The node configuration processing module 14: for reading the configuration information of the node of the operation terminal 2 and processing the change of the configuration information in the operation step of the system.
The implementation method for completing the safe operation based on the digital television user management system. The method comprises a login step, a data sending step, an emergency operation step and an operation data returning step. Referring to fig. 6-9, each step is described in detail below. Wherein:
the login step specifically comprises the following steps:
before the operator logs in, the operation terminal 2 sets an operator login interface for the operator to input an account number and a password thereof so as to authenticate the operation terminal 2. The operator information (including at least an account number and a corresponding password) of the operator terminal 2 must be registered in the application server 1 (step S310); the application server 1 saves the binding relationship between the operator and the operator terminal 2 (step S320); the application server 1 stores the operator information as a record of the operator data in the operator data of the operator terminal 2 (step S330). In the data transmission step, the application server 1 transmits the operator data back to the operator terminal 2. In order to improve data security, the application server 1 encrypts the password in the operator data and transmits the encrypted password to the operator terminal 2.
After the operator inputs the account and the password, the operator terminal first determines whether the local terminal stores the operator data (step S340), if yes, step S350 is performed, otherwise, step S380 is performed.
S350: when the operator terminal 2 does not store the operator data of the local terminal, for example, when the operator of the operator terminal 1 logs in for the first time, the operator terminal 2 does not synchronize the operator data with the application server 1, and the operator terminal 2 calls the data synchronization module 22 to send an operator data synchronization request to the application server 1.
S360: the application server 1 responds to the request by sending back the operator data of the terminal. Referring to fig. 6, the operator data download module 11 of the application server 1 is responsible for responding to the operator data synchronization request of the emergency operation terminal.
First, it is verified whether the number of the operator terminal 2 is already configured in the application server (S351). The application server 1 presets an operation terminal table, wherein the operation terminal table stores the numbers of operation terminals capable of performing emergency operation and the operation terminal IP numbers corresponding to the operation terminal numbers, and the application server 1 judges whether the emergency operation terminal numbers sending out the synchronization request are already set in the operation terminal table and whether the corresponding terminal IP is correct. If yes, sending back a message that the terminal authority passes the verification, and performing step S352, otherwise, recording the reason of the failure of the synchronous data.
Next, it is verified whether the operator who has issued the request is bound to the operator terminal (step S352). When the operator information is registered with the application server 1, the application server 1 determines the binding relationship between the operator and the operator terminal by saving the account number of the operator and the number or IP number of the bound operator terminal. The operator data downloading module 11 judges whether the account of the operator is bound to the number or the IP number of the operator terminal by querying the operator data, and if so, sends back an operation right binding relationship verification passing message to perform step S353, otherwise, records the reason for the failure of the synchronous data.
Again, operator authentication is performed (step S354). And judging whether the password of the operator sending the request is consistent with the password stored in the operator data or not according to the operator account, if so, sending back an operator authority verification passing message, and performing step S354, otherwise, recording the reason of the failure of the synchronous data.
In order to ensure a sufficiently high safety factor, the following steps can be performed after the terminal authority verification, the operation authority binding relationship verification and the operator authority verification are performed at the same time in the embodiment. However, the present invention is not limited to this, and the following steps may be performed by using one or two of the terminal right verification, the operation right binding relationship verification, and the operator right verification according to the specific security requirement in the operation process.
Then, the operator data is acquired from the relevant area of the application server 1 (step S354), and the password in the operator data is encrypted (step S355).
The application server 1 sends a synchronization response back to the operation terminal 2, if the downloading of the synchronization data is unsuccessful, the application server sends a reason for the failure of the synchronization data to the operation terminal, otherwise, the application server sends the obtained encrypted operator data.
S370: and if the returned response information is the reason of the failure of the synchronous data, refusing the login of the operator, otherwise, saving the operator data, and performing the step S380.
S380: and authenticating the account number and the password input by the operator. The account and the password to be input are compared with records in the operator data stored in the local terminal, whether the account and the password are the same or not is judged, if yes, the login is successful (step S390), and if not, the login is rejected (step S400). If the application server 1 sends back the encrypted operator data, the operation terminal 2 encrypts the password input by the operator by using the same encryption algorithm as the application server 1, and performs login authentication by comparing the encrypted ciphertext.
The data sending step specifically comprises the following steps:
the data synchronization module 22 of the operation terminal 2 periodically initiates a data synchronization request (step S410), and the data synchronization includes operator data synchronization and operation data synchronization. Operator data synchronization is described in detail above in the login step. In order to prevent the local operator data from being inconsistent with the operator data of the application server 1, the operator of the operation terminal 2 may also actively send out an operator data synchronization instruction to complete the synchronization of the operator data. The specific steps of the operation data synchronization are described below.
The operation data download module 22 of the application server 1 processes the data synchronization request. First, it is verified whether the number of the operator terminal 2 has been configured in the application server (S420). The application server 1 presets an operation terminal table, wherein the operation terminal table stores the numbers of operation terminals capable of performing emergency operation and the operation terminal IP numbers corresponding to the operation terminal numbers, and the application server 1 judges whether the emergency operation terminal numbers sending out the synchronization request are already set in the operation terminal table and whether the corresponding terminal IP is correct. If the verification is passed, a terminal authority verification passing message is sent back, and the step S430 is carried out, otherwise, the reason for the failure of the synchronous data is recorded.
Next, it is verified whether the operator who has issued the request is bound to the operator terminal (step S430). When the operator information is registered with the application server 1, the application server 1 determines the binding relationship between the operator and the operator terminal by saving the account number of the operator and the number or IP number of the bound operator terminal. And judging whether the account of the operator is bound with the number or the IP number of the operation terminal or not by inquiring the operator data, if so, sending back an operation right binding relationship verification passing message, and performing step S440, otherwise, recording the reason of the failure of the synchronous data.
Again, operator authentication is performed (step S440). And judging whether the password of the operator sending the request is consistent with the password stored in the operator data or not according to the operator account, if so, sending back an operator authority authentication success message, and performing the step S450, otherwise, recording the reason of the failure of the synchronous data.
Then, the user data and the service data are acquired (step S450, step S460), and the user data and the service data are downloaded via the FTP (step S470), and the data download result is returned to the operator terminal 2 (step S480). And if the first three verification works are not passed, the data downloading is refused, and the reason for the operation failure is returned.
In order to ensure a sufficiently high safety factor, the following steps can be performed after the terminal authority verification, the operation authority binding relationship verification and the operator authority verification are performed at the same time in the embodiment. However, the present invention is not limited to this, and the following steps may be performed by using one or two of the terminal right verification, the operation right binding relationship verification, and the operator right verification according to the specific security requirement in the operation process.
The application server 1 may preset a threshold for the size of the downloaded data file, and when the size of the downloaded data file exceeds the threshold, the file is divided into a plurality of files. The application server 1 controls the size of each transferred data file by setting a file size threshold, reducing the probability of file transfer failure due to network connection instability (because smaller files have shorter transfer duration). Even if a certain file fails to be transmitted, the retransmitted data are not too much, so that the file transmission efficiency is improved.
The application server 1 downloads data in a secure FTP mode, compares the record number of the application server and the record number of the terminal file after the data downloading is finished, and judges whether the data transmission is successful.
And (III) an emergency operation step, in which when the network is interrupted, the service acceptance module 25 of the operation terminal 2 performs operation operations including accepting the ordered program of the user, canceling the ordered program, paying the fee and the like by using the backed-up data, and in the payment service of the accepted user, the bill printing module 26 supports printing of the payment bill and stores the newly added operation data by using the calling data maintenance module 27.
And (IV) returning the operation data, namely, downloading the operation data when the network is recovered to be normal. The operation data downloading specifically comprises the following steps:
and the data returning module initiates an operation data returning request by an operator after the network connection is recovered to be normal, and clears the returned operation data according to an operator instruction.
The data returning module 24 responds to the data returning instruction of the operator, and sets a returning mark for each operation data generated by the newly added (not returned) emergency operation terminal, so as to identify whether the record has been returned or not. The operation terminal 2 organizes the operation data with the unreturned mark into a returned data file, initiates a data returning request to the application server 1, and marks the local operation data as returned after the data returning is successful. The data maintenance module 27 deletes the local operational data marked as "returned".
The operator terminal 2 sets a file size threshold, and when the size of the returned data file exceeds the threshold, the file is divided into a plurality of files. By setting a file size threshold, the size of each transferred data file is controlled, reducing the probability of file transfer failure due to network connection instability (because smaller files have shorter transfer durations). Even if a certain file fails to be delivered, the retransmitted data is not much.
The operation data needing to be returned comprises program ordering, record canceling, payment record and operation log record. Different types of records are stored in different data files, distinguished by different file names.
The operation data uploading module 12 of the application server 1 responds to the operation data returning request of the operation terminal 2, retrieves the terminal operation data file and processes the terminal operation data file. The method comprises the following steps:
verifying whether the operating terminal number is configured (step S520), if so, sending a terminal authority verification passing message, otherwise, exiting the operating process;
verifying whether the operator sending the request is bound with the terminal (step S530), if so, sending an operation right binding relationship verification passing message, otherwise, exiting the operation process;
carrying out operator authentication (step S540), if the operator passes the authentication, sending out an operator authority authentication success message, otherwise, quitting the operation process;
the operation terminal transmits the latest operation data through the FTP (step S550), and feeds back the operation data return result (step S560). And if the first three verification works are not passed, uploading operation data is refused, and the reason of operation failure is fed back through a remote interface.
When the operation data is uploaded through the FTP, comparing the record number of the emergency operation terminal file with the record number of the uploaded file, and judging whether the data uploading is complete.
In order to ensure a sufficiently high safety factor, the following steps can be performed after the terminal authority verification, the operation authority binding relationship verification and the operator authority verification are performed at the same time in the embodiment. However, the present invention is not limited to this, and the following steps may be performed by using one or two of the terminal right verification, the operation right binding relationship verification, and the operator right verification according to the specific security requirement in the operation process.
Claims (12)
1. A method for realizing safe operation of a digital television user management system, wherein the digital television user management system comprises an application server and at least one operation terminal connected with the application server through a network, and is characterized by comprising the following steps:
a backup step: the operation terminal backs up operation data of the operation terminal;
emergency operation steps: when the network interruption is detected, the operation terminal operates by using the operation data;
a data loopback step: and when the network recovers to be normal, the operation terminal returns the newly added operation data to the application server.
2. The method for implementing secure operation of a digital television subscriber management system according to claim 1, wherein the step of backing up specifically comprises:
a request step: the operation terminal sends a data synchronization request to the application server;
a data sending step: the application server responds to the request and sends back the latest operation data of the terminal;
a preservation step: and the operation terminal stores the received data.
3. A method for implementing the secure operation of the digital tv subscriber management system according to claim 1 or 2, wherein the step of backing up is preceded by the steps of:
a registration step: at least one operator information of the operation terminal is registered in the application server, wherein the operator information at least comprises an operator account and a corresponding password;
binding: the application server stores the binding relationship between the operator information and the operation terminal;
an updating step: and the application server stores the operator information as a data record in the operator data of the operation terminal bound with the application server.
4. The method of claim 2, wherein the data sending step further comprises the application server sending back operator data of the terminal or encrypted operator data to the operator terminal.
5. The method of claim 1, wherein the data loopback step further comprises:
the operation terminal sends an operation data return request;
the application server responds to the request;
the operation terminal organizes the newly added operation data into a return data file and sends the return data file to the application server;
and the application server receives the returned data file and sends back a response result of successful sending.
6. A method for implementing the secure operation of the digital TV subscriber management system as claimed in claim 2 or 5, wherein the application server responding to the request comprises: the application server verifies whether the operation terminal is configured on the application server, if so, the application server sends back a verification message that the terminal authority passes, otherwise, the operation process is quitted.
7. The method for implementing secure operation of a digital tv subscriber management system as claimed in claim 2 or 5, wherein the step of responding to the request by the application server further comprises: the application server verifies whether the operator information sending the request is bound with the operation terminal, if so, the application server sends back an operation right binding relationship passing verification message, otherwise, the application server quits the operation process.
8. A method for implementing the secure operation of the digital TV subscriber management system as claimed in claim 2 or 5, wherein the application server responding to the request comprises: the application server authenticates the operator information sending the request, if the operator information is the same as the request, the application server sends back an operator authority authentication success message, otherwise, the application server quits the operation process.
9. A data tv subscriber management system, said data tv subscriber management system comprising an application server and at least one operator terminal connected to said application server via a network, said operator terminal comprising:
the data synchronization module is used for requesting local data synchronization to the application server and receiving the response of the application server;
the data returning module: the system is used for sending the newly added operation data of the local terminal to the application server after the network is recovered to normal; and
the data maintenance module is used for storing the operation data downloaded by the application server into the operation data of the home terminal and exporting the return data from the operation data of the home terminal;
the application server also comprises an emergency operation interface module for responding to the request of the operation terminal and the data transmission of the application server and the operation terminal.
10. The data television subscriber management system of claim 9, wherein the emergency operations interface module comprises:
operation data downloading module: the system comprises a data processing module, a data processing module and a data processing module, wherein the data processing module is used for receiving a request of an operation terminal and downloading the latest operation data of the operation terminal stored by an application server;
operation data upload module: the system is used for receiving the request of the operating terminal and retrieving the return data of the operating terminal.
11. The data television subscriber management system according to claim 9 or 10, wherein the operator terminal further includes:
a service acceptance module: the system is used for completing operation at the local terminal according to the user service request;
the log processing module: the system is used for recording detailed information of each operation and an operation terminal operation log;
the login control module is used for authenticating an operator when the operator logs in the operation terminal; or
And the bill printing module is used for printing the user payment bill.
12. The data television subscriber management system according to claim 9 or 10, wherein the application server further comprises:
an operator data download module: the operator terminal is used for transmitting the operator data to the operator terminal bound with the operator data; or
The node configuration processing module: the application server also comprises a module for reading the node configuration information of the operation terminal and the change of the configuration information in the operation step.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2004100480503A CN100358360C (en) | 2004-06-10 | 2004-06-10 | Method and system for realizing safety running of digital television user management system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2004100480503A CN100358360C (en) | 2004-06-10 | 2004-06-10 | Method and system for realizing safety running of digital television user management system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1708129A true CN1708129A (en) | 2005-12-14 |
| CN100358360C CN100358360C (en) | 2007-12-26 |
Family
ID=35581738
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2004100480503A Expired - Fee Related CN100358360C (en) | 2004-06-10 | 2004-06-10 | Method and system for realizing safety running of digital television user management system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100358360C (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101742231B (en) * | 2008-11-25 | 2012-04-25 | 北京视博数字电视科技有限公司 | Equipment management method, system and server thereof |
| CN104426901A (en) * | 2013-08-22 | 2015-03-18 | 宇瞻科技股份有限公司 | Set top box, data resetting method and data registering method thereof |
| CN104639890A (en) * | 2013-11-14 | 2015-05-20 | 株式会社日立制作所 | Facility monitoring control system |
| CN102999554B (en) * | 2012-10-15 | 2016-04-06 | 北京京东世纪贸易有限公司 | Business data processing method and device |
| CN105792103A (en) * | 2016-02-19 | 2016-07-20 | 青岛海尔智能家电科技有限公司 | Intelligent device binding method and device |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5307481A (en) * | 1990-02-28 | 1994-04-26 | Hitachi, Ltd. | Highly reliable online system |
| JPH06348628A (en) * | 1993-06-07 | 1994-12-22 | Nec Corp | Intelligent network system |
| US20030028592A1 (en) * | 2001-08-03 | 2003-02-06 | Masahiro Ooho | Backup-restoration system and right management server |
| CN100388698C (en) * | 2001-10-19 | 2008-05-14 | 上海贝尔有限公司 | Supervisory assigned control component for entering module into digital data network and its control method |
-
2004
- 2004-06-10 CN CNB2004100480503A patent/CN100358360C/en not_active Expired - Fee Related
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101742231B (en) * | 2008-11-25 | 2012-04-25 | 北京视博数字电视科技有限公司 | Equipment management method, system and server thereof |
| CN102999554B (en) * | 2012-10-15 | 2016-04-06 | 北京京东世纪贸易有限公司 | Business data processing method and device |
| CN104426901A (en) * | 2013-08-22 | 2015-03-18 | 宇瞻科技股份有限公司 | Set top box, data resetting method and data registering method thereof |
| CN104639890A (en) * | 2013-11-14 | 2015-05-20 | 株式会社日立制作所 | Facility monitoring control system |
| CN104639890B (en) * | 2013-11-14 | 2018-01-09 | 株式会社日立制作所 | System of monitoring and controlling plant |
| CN105792103A (en) * | 2016-02-19 | 2016-07-20 | 青岛海尔智能家电科技有限公司 | Intelligent device binding method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN100358360C (en) | 2007-12-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US7721104B2 (en) | System, method and computer program product for downloading pushed content | |
| CN1285235C (en) | Method and system of preventing handset from theft by using international id code of mobile facilities | |
| JP4272920B2 (en) | Method and apparatus for checking the validity of a first communication participant in a communication network | |
| EP1487168B1 (en) | Secure multicast flow | |
| US7653933B2 (en) | System and method of network authentication, authorization and accounting | |
| US20130174230A1 (en) | Method and system for secure linking with authentication and authorization in a media exchange network | |
| CN101068245A (en) | Shared file issuing and downloading method and file sharing control system | |
| CN1871819A (en) | Wireless communication terminal and connection information setting method | |
| CN1265609C (en) | Confirmation method for safe mobile e-business platform digital certificate | |
| EP2293561A1 (en) | Network autodiscovery as a lever to decorrelated service activation through event driven architecture | |
| CN1606751A (en) | Charging mechanism for multicasting | |
| JP2007509565A5 (en) | ||
| CN101227374B (en) | Apparatus, system and method for implementing business for transmitting as soon as shooting | |
| US20090187978A1 (en) | Security and authentications in peer-to-peer networks | |
| CN1946024A (en) | Method and system for identifying service block | |
| CN105827624A (en) | Identity verifying system | |
| WO2007051406A1 (en) | A control system and method for terminal using network and device therefore | |
| CN103874065A (en) | Method and device for judging user position abnormity | |
| CN1588850A (en) | Network identifying method and system | |
| CN1708129A (en) | Method and system for realizing safety running of digital television user management system | |
| CN101374225A (en) | Time-shifting method for interactive network television system | |
| CN1859120A (en) | System and method for realizing service | |
| CN1802817A (en) | Method and network for WLAN session control | |
| WO2012016434A1 (en) | Management method for authentication parameters and terminal | |
| CN107872728B (en) | Method for realizing forced activation of intelligent television account |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20071226 Termination date: 20130610 |