Search

CN-110267253-B - eSIM management platform, eSIM installation method and device

CN110267253BCN 110267253 BCN110267253 BCN 110267253BCN-110267253-B

Abstract

The application provides an eSIM management platform, an eSIM installation method and an eSIM installation device, relates to the field of communication, and can solve the problem that data migration flexibility of the eSIM management platform is not high due to the fact that the eSIM management platform of an existing operator relies on hardware encryption/decryption. The present application provides an eSIM management platform, which includes: the card business task list module and the operation management platform module are positioned in a first virtual server; the ES2 module is located in a second virtual server; the ES9 module is located in a third virtual server; the plurality of databases are located in a fourth virtual server; the plurality of virtual servers are internally provided with application servers and software development tools; the application server is used for verifying the terminal, and the software development tool is used for encrypting the message between the terminal and the eSIM management platform.

Inventors

  • LIU YINGWEI
  • XUE SHAOLONG
  • ZHAO DONGHUI
  • HOU XIAOJUN
  • YANG PEI
  • ZANG NANQI
  • DONG LIGUO
  • SHAO CHENLONG
  • WANG XUESONG
  • HE MINGYAN

Assignees

  • 中国联合网络通信集团有限公司
  • 中国联合网络通信集团有限公司

Dates

Publication Date
20220927
Application Date
20190513
Priority Date
20190513

Claims (10)

  1. 1. An embedded Subscriber Identity Module (SIM) eSIM management platform, the eSIM management platform comprising: the system comprises a card business task list module, an entity service ES2 module, an entity service ES9 module, an operation management platform module, a plurality of databases and a plurality of virtual servers, wherein: the card business task list module and the operation management platform module are positioned in a first virtual server; wherein the first virtual server is any one of a plurality of virtual servers; the ES2 module is located in a second virtual server, the second virtual server being any one of a plurality of the virtual servers; the ES9 module being located in a third virtual server, the third virtual server being any one of a plurality of the virtual servers; the plurality of databases are located in a fourth virtual server, and the fourth virtual server is any one of the plurality of virtual servers; the plurality of virtual servers are internally provided with application servers and software development tools; the application server is used for verifying a terminal, and the software development tool is used for encrypting messages between the terminal and the eSIM management platform; the eSIM management platform is used for: receiving and analyzing an eSIM installation request of a terminal, and determining request information; verifying whether the request information is bound with an EID; if the installation request is bound with the EID, verifying whether the EID is bound with the first template which is not downloaded, and if the EID is bound with the first template which is not downloaded, reporting an error; if the EID is not bound with the first template which is not downloaded, verifying the first ICCID in the request information, and distributing the first template to the terminal according to the first ICCID; if the installation request is not bound with the EID, verifying a first ICCID in the request information, and distributing a first template to the terminal according to the first ICCID; after a first template is distributed to the terminal according to the first ICCID, checking the state of the first template, and storing the first template in a database after the checking is passed; the first template state comprises: available and unavailable; after the first template is stored in the database, updating the state of the first template and generating a downloading identifier of the first template; and the terminal acquires the first template according to the downloading identifier.
  2. 2. The eSIM management platform of claim 1, the database comprises a relational database Mysql, a distributed data storage database Redis and a distributed file storage database Mongodb; the Mysql database is used for storing first data, and the first data comprises data generated by an eSIM management platform; the Redis database is used for storing second data, and the second data comprises data generated by an eSIM management platform; the Mongdb database is used for storing third data, and the third data comprises data generated by the card business task list module and the ES9 module.
  3. 3. An eSIM installation method applied to the eSIM management platform of claim 1 or 2; the method comprises the following steps: allocating a first template to a terminal according to an eSIM installation request of the terminal; the installation request includes: a first Integrated Circuit Card Identification (ICCID) of the eSIM; the first template comprises: a first ICCID and eSIM installation parameters of the eSIM; the first ICCID is an ICCID allocated to the eSIM in advance; carrying out encryption verification on the terminal through an application server and a software development tool in an eSIM management platform; the application server is used for verifying the terminal, and the software development tool is used for encrypting a verification message in a verification process; after the verification is passed, the first template is encrypted by using the software development tool and is sent to the terminal, so that the terminal completes the eSIM installation according to the eSIM installation parameters in the first template; the allocating a first template to a terminal according to an eSIM installation request of the terminal includes: receiving and analyzing an eSIM installation request of a terminal, and determining request information; verifying whether the request information is bound with an EID; if the installation request is bound with the EID, verifying whether the EID is bound with the first template which is not downloaded, and if the EID is bound with the first template which is not downloaded, reporting an error; if the EID is not bound with the first template which is not downloaded, verifying a first ICCID in the request information, and distributing the first template to the terminal according to the first ICCID; if the installation request is not bound with the EID, verifying a first ICCID in the request information, and distributing a first template to the terminal according to the first ICCID; after allocating the first template to the terminal according to the first ICCID, the method further includes: checking the state of a first template, and storing the first template in a database after the checking is passed; the first template state comprises: available and unavailable; after the first template is stored in the database, updating the state of the first template and generating a download identifier of the first template; and the terminal acquires the first template according to the downloading identifier.
  4. 4. The eSIM installation method of claim 3, wherein prior to said assigning a first template to a terminal in accordance with a request for eSIM installation for the terminal, the method further comprises: acquiring and analyzing a to-be-processed task list, and determining task list information; the task order information comprises a plurality of ICCIDs and a plurality of eSIM installation parameters; the plurality of ICCIDs and the plurality of eSIM installation parameters have corresponding relations; and respectively writing the plurality of ICCIDs and the plurality of eSIM installation parameters into preset templates to generate a plurality of first templates, and encrypting each first template.
  5. 5. The method of claim 3, wherein after generating the download identifier of the first template, further comprising: judging whether the first template can be downloaded, and if the first template can be downloaded, issuing the first template; and if the first template is not downloadable, updating the state of the first template to be downloadable.
  6. 6. An eSIM management platform deployment apparatus, for use in an eSIM management platform, the eSIM management platform comprising: the system comprises a card business task list module, an entity service ES2 module, an entity service ES9 module, an operation management platform module, a plurality of databases and a plurality of virtual servers; the device comprises: the processing module is used for enabling the card business task list module and the operation management platform module to be located in a first virtual server; wherein the first virtual server is any one of a plurality of virtual servers; the processing module is further configured to enable the ES2 module to be located in a second virtual server, where the second virtual server is any one of the plurality of virtual servers; the processing module is further configured to enable the ES9 module to be located in a third virtual server, where the third virtual server is any one of the plurality of virtual servers; the processing module is further configured to enable the plurality of databases to be located in a fourth virtual server, where the fourth virtual server is any one of the plurality of virtual servers; the processing module is further used for enabling the plurality of virtual servers to be internally provided with application servers and software development tools; the application server is used for verifying the terminal, and the software development tool is used for encrypting the message between the terminal and the eSIM management platform The processing module is specifically used for receiving and analyzing an eSIM installation request of the terminal and determining request information; verifying whether the request information is bound with an EID; if the installation request is bound with the EID, verifying whether the EID is bound with the first template which is not downloaded, and if the EID is bound with the first template which is not downloaded, reporting an error; if the EID is not bound with the first template which is not downloaded, verifying the first ICCID in the request information, and distributing the first template to the terminal according to the first ICCID; if the installation request is not bound with the EID, verifying a first ICCID in the request information, and distributing a first template for the terminal according to the first ICCID; after allocating the first template to the terminal according to the first ICCID, the processing module is further configured to: checking the state of a first template, and storing the first template in a database after the checking is passed; the first template state comprises: available and unavailable; after the first template is stored in the database, updating the state of the first template and generating a download identifier of the first template; and the terminal acquires the first template according to the downloading identifier.
  7. 7. An eSIM installation device is applied to an eSIM management platform; the device comprises: the system comprises a processing module, a first template and a second template, wherein the processing module is used for distributing the first template to a terminal according to an eSIM (embedded subscriber identity Module) installation request of the terminal; the installation request includes: a first ICCID of the eSIM; the first template comprises: a first ICCID and eSIM installation parameters of the eSIM; the first ICCID is an ICCID allocated to the eSIM in advance; the processing module is further used for carrying out encryption verification on the terminal through an application server and a software development tool in the eSIM management platform; the application server is used for verifying the terminal, and the software development tool is used for encrypting a verification message in a verification process; the sending module is used for encrypting the first template by using the software development tool after the verification is passed and sending the first template to the terminal so that the terminal can complete the eSIM installation according to the eSIM installation parameters in the first template; the processing module is specifically used for receiving and analyzing an eSIM installation request of the terminal and determining request information; verifying whether the request information is bound with an EID; if the installation request is bound with the EID, verifying whether the EID is bound with the first template which is not downloaded, and if the EID is bound with the first template which is not downloaded, reporting an error; if the EID is not bound with the first template which is not downloaded, verifying the first ICCID in the request information, and distributing the first template to the terminal according to the first ICCID; if the installation request is not bound with the EID, verifying a first ICCID in the request information, and distributing a first template to the terminal according to the first ICCID; after allocating the first template to the terminal according to the first ICCID, the processing module is further configured to: checking the state of a first template, and storing the first template in a database after the checking is passed; the first template state comprises: available and unavailable; after the first template is stored in the database, updating the state of the first template and generating a downloading identifier of the first template; and the terminal acquires the first template according to the downloading identifier.
  8. 8. An eSIM management platform deployment device, the eSIM management platform deployment device comprising: a processor, a transceiver, and a memory; wherein the memory is configured to store one or more programs, the one or more programs comprising computer-executable instructions that, when executed by the eSIM management platform deployment device, cause the eSIM management platform deployment device to deploy the eSIM management platform of any one of claims 1-2.
  9. 9. An eSIM installation apparatus, the eSIM installation apparatus comprising: a processor, a transceiver, and a memory; wherein the memory is configured to store one or more programs, the one or more programs comprising computer-executable instructions that, when executed by the eSIM installation apparatus, cause the eSIM installation apparatus to perform the eSIM installation method of any one of claims 3 through 5.
  10. 10. A computer-readable storage medium having stored therein instructions which, when executed by a computer, deploy an eSIM management platform in accordance with any one of claims 1-2 or perform an eSIM installation method in accordance with any one of claims 3-5.

Description

eSIM management platform, eSIM installation method and device Technical Field The present application relates to the field of communications, and in particular, to an eSIM management platform, an eSIM installation method, and an eSIM installation apparatus. Background With the continuous development of society and the continuous progress of science and technology, the conventional Subscriber Identity Module (SIM) card cannot meet the requirements of people on smart life and convenient life, and the embedded SIM card technology is generated immediately. After a user can open an account through an operator, the electronic card is downloaded and activated by using the terminal equipment, and finally the terminal has an independent communication function. Currently, eSIM management platforms owned by operators all over the world are established according to global system for mobile communications alliance (GSMA) standard specifications. Electronic cards are opened and downloaded through Entity Services (ES) ES2 and ES9 interfaces, an eSIM management platform communicates with a terminal through a hypertext transfer protocol secure (HTTPS), bidirectional authentication is performed through a certificate chain technology, and the security of transmitted data is ensured through an SCP03t technology. Because the eSIM management platform of the existing operator is located in an internal server of the operator, and the eSIM management platform needs to rely on physical machines such as a Secure Socket Layer (SSL) gateway and an encryption engine to implement the encryption/decryption functions of certificate verification and data transmission, the external dependency is large. For example, when business expansion is performed, an eSIM management platform of an existing operator relies on hardware encryption/decryption, so that the coupling degree between the eSIM management platform and hardware is too high, and the data migration flexibility of the eSIM management platform is not high. Therefore, in the mobile communication technology, how to reduce the hardware dependency and improve the data migration flexibility of the eSIM management platform when using the eSIM management platform is a problem to be solved. Disclosure of Invention The application provides an eSIM management platform, an eSIM installation method and an eSIM installation device, which can reduce hardware dependency and improve data migration flexibility of the eSIM management platform when the eSIM management platform is used for expanding services. In order to achieve the purpose, the technical scheme is as follows: in a first aspect, the present application provides an eSIM management platform, including: the system comprises a card business task list module, an entity service ES2 module, an entity service ES9 module, an operation management platform module, a plurality of databases and a plurality of virtual servers. Wherein: the card business task list module and the operation management platform module are positioned in a first virtual server; wherein the first virtual server is any one of a plurality of virtual servers; the ES2 module is located in a second virtual server, the second virtual server being any one of a plurality of the virtual servers; the ES9 module being located in a third virtual server, the third virtual server being any one of a plurality of the virtual servers; the databases are located in a fourth virtual server, and the fourth virtual server is any one of the virtual servers; the virtual servers are internally provided with application servers and software development tools; the application server is used for verifying the terminal, and the software development tool is used for encrypting messages between the terminal and the eSIM management platform. In a second aspect, the present application provides an eSIM installation method, including: allocating a first template to a terminal according to an eSIM installation request of the terminal; the installation request includes: a first integrated circuit card of the eSIM identifies the ICCID; the first template comprises: a first ICCID and eSIM installation parameters of the eSIM; the first ICCID is an ICCID which is allocated to the eSIM in advance; carrying out encryption verification on the terminal through an application server and a software development tool in an eSIM management platform; the application server is used for verifying the terminal, and the software development tool is used for encrypting a verification message in the verification process; and after the verification is passed, the first template is encrypted by using the software development tool and is sent to the terminal, so that the terminal completes the eSIM installation according to the eSIM installation parameters in the first template. In a third aspect, the present application provides an eSIM management platform deployment apparatus, including: the processing module is used for positionin