+

CN104244254B - Method and device for detecting pseudo base station based on short message center number - Google Patents

Method and device for detecting pseudo base station based on short message center number Download PDF

Info

Publication number
CN104244254B
CN104244254B CN201410547455.5A CN201410547455A CN104244254B CN 104244254 B CN104244254 B CN 104244254B CN 201410547455 A CN201410547455 A CN 201410547455A CN 104244254 B CN104244254 B CN 104244254B
Authority
CN
China
Prior art keywords
short message
base station
attribution
sender
content information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201410547455.5A
Other languages
Chinese (zh)
Other versions
CN104244254A (en
Inventor
丁超
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Qihoo Technology Co Ltd
Original Assignee
Beijing Qihoo Technology Co Ltd
Qizhi Software Beijing Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Qihoo Technology Co Ltd, Qizhi Software Beijing Co Ltd filed Critical Beijing Qihoo Technology Co Ltd
Priority to CN201410547455.5A priority Critical patent/CN104244254B/en
Publication of CN104244254A publication Critical patent/CN104244254A/en
Application granted granted Critical
Publication of CN104244254B publication Critical patent/CN104244254B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

The invention provides a method for detecting a pseudo base station based on a short message center number. The method comprises the steps of firstly, detecting a short message from a base station and identifying the short message center number of the short message, secondly, determining whether the short message center number accords with a predetermined identification rule, and if so, determining that the short message is from the pseudo base station. The method for detecting the pseudo base station based on the short message center number is capable of quickly determining whether the short message is from the pseudo base station by judging the short message center number of the received short message from the base station, and therefore, quick and efficient detection on the pseudo base station is realized.

Description

基于短信中心号码检测伪基站的方法和装置Method and device for detecting false base station based on short message center number

技术领域technical field

本发明涉及终端设备的技术领域,具体而言,本发明涉及基于短信中心号码检测伪基站的方法和装置。The present invention relates to the technical field of terminal equipment, specifically, the present invention relates to a method and a device for detecting a pseudo base station based on a short message center number.

背景技术Background technique

“伪基站”设备是当前一种实施电信诈骗手段的仪器,主要由主机和笔记本电脑组成,通过短信群发器、短信发信机等相关设备能够搜取以其为中心、一定半径范围内的手机信息,通过伪装成运营商基站,任意冒用他人手机号码强行向用户手机发送诈骗、广告推销等短信息。例如,在银行、商场等人流密集的地方,以各种汇款名义向一定范围内的手机发送诈骗短信息;或者,筛选出“尾数较好”的手机号,以这个号码的名义发送短信息,在其亲朋好友、同事等熟人中实施定向诈骗。此类设备运行时,用户手机信号被强制连接到该设备上,无法连接到公用移动网络,以致影响手机用户的正常使用。手机用户一般会暂时脱网8~12秒后恢复正常,部分手机则必须开关机才能重新入网。此外,它还会导致手机用户频繁地更新位置,使得该区域的无线网络资源紧张并出现网络拥塞现象,影响用户的正常通信。"Pseudo-base station" equipment is currently an instrument used to implement telecommunications fraud. It is mainly composed of a host computer and a laptop computer. Through SMS group senders, SMS senders and other related equipment, mobile phones within a certain radius around it can be searched. Information, by disguising as an operator's base station, arbitrarily using other people's mobile phone numbers to forcibly send short messages such as fraud and advertising to the user's mobile phone. For example, in crowded places such as banks and shopping malls, sending fraudulent short messages to mobile phones within a certain range in the name of various remittances; Carry out targeted fraud among their relatives, friends, colleagues and other acquaintances. When this type of device is running, the user's mobile phone signal is forced to connect to the device and cannot be connected to the public mobile network, which affects the normal use of mobile phone users. Mobile phone users generally go offline temporarily for 8 to 12 seconds before returning to normal, and some mobile phones must be switched on and off to reconnect to the network. In addition, it will cause mobile phone users to update their location frequently, which will make the wireless network resources in this area tense and cause network congestion, affecting the normal communication of users.

因此,急需一种有效识别伪基站的方法,从而为对来自伪基站的垃圾短信息进行屏蔽等处理提供前提条件和可靠保证。当前移动终端上主要通过安全软件对发送方的终端号码、短信息内容信息等进行检测来实现伪基站的识别,但是,该等方式对于伪基站的识别准确率均较低,用户在通信过程中仍然会收到较多来自伪基站的垃圾短信息,用户使用体验较差。Therefore, there is an urgent need for a method for effectively identifying fake base stations, so as to provide preconditions and reliable guarantees for processing such as shielding spam short messages from fake base stations. At present, mobile terminals mainly use security software to detect the sender's terminal number, short message content information, etc. to realize the identification of pseudo base stations. However, these methods have low recognition accuracy for pseudo base stations. It will still receive a lot of spam messages from pseudo base stations, and the user experience is poor.

发明内容Contents of the invention

本发明的目的旨在至少解决上述技术缺陷之一,特别是如何实现对大批量伪基站实现高效且准确地识别。The purpose of the present invention is to at least solve one of the above-mentioned technical defects, especially how to realize efficient and accurate identification of a large number of pseudo base stations.

本发明提供了一种基于短信中心号码检测伪基站的方法,包括:The invention provides a method for detecting a pseudo base station based on a short message center number, comprising:

检测到接收到来自基站的短信息,识别短信息的短信中心号码;Detecting the receipt of a short message from the base station, and identifying the short message center number of the short message;

判断短信中心号码是否符合预定识别规则,若符合预定识别规则,则确定短信息来自伪基站。Judging whether the number of the short message center complies with the predetermined identification rule, and if it complies with the predetermined identification rule, it is determined that the short message comes from the pseudo base station.

本发明还提供了一种基于短信中心号码检测伪基站的装置,包括:The present invention also provides a device for detecting pseudo-base stations based on the SMS center number, including:

中心号码识别模块,用于检测到接收到来自基站的短信息,识别短信息的短信中心号码;The center number identification module is used to detect and receive the short message from the base station, and identify the short message center number of the short message;

第一判断模块,用于判断短信中心号码是否符合预定识别规则,若符合预定识别规则,则确定短信息来自伪基站。The first judging module is used for judging whether the number of the short message center conforms to the predetermined identification rule, and if it conforms to the predetermined identification rule, it is determined that the short message comes from a pseudo base station.

本发明的实施例,通过对接收到的来自基站的短信息的短信中心号码进行判断,快速确定该短信息是否来自伪基站,实现了对伪基站快捷且高效地检测。本发明提出的上述方案,对现有系统的改动很小,不会影响系统的兼容性,而且实现简单、高效。In the embodiment of the present invention, by judging the short message center number of the short message received from the base station, it is quickly determined whether the short message comes from a fake base station, and the fast and efficient detection of the fake base station is realized. The above-mentioned solution proposed by the present invention requires little modification to the existing system, does not affect the compatibility of the system, and is simple and efficient to implement.

本发明附加的方面和优点将在下面的描述中部分给出,这些将从下面的描述中变得明显,或通过本发明的实践了解到。Additional aspects and advantages of the invention will be set forth in part in the description which follows, and will become apparent from the description, or may be learned by practice of the invention.

附图说明Description of drawings

本发明上述的和/或附加的方面和优点从下面结合附图对实施例的描述中将变得明显和容易理解,其中:The above and/or additional aspects and advantages of the present invention will become apparent and easy to understand from the following description of the embodiments in conjunction with the accompanying drawings, wherein:

图1为本发明基于短信中心号码检测伪基站的方法一个实施例的流程图;Fig. 1 is the flow chart of an embodiment of the method for detecting false base station based on SMS center number of the present invention;

图2为本发明基于短信中心号码检测伪基站的方法另一个实施例的流程图;Fig. 2 is the flow chart of another embodiment of the method for detecting a false base station based on a short message center number in the present invention;

图3为本发明基于短信中心号码检测伪基站的装置一个实施例的结构示意图;Fig. 3 is a structural schematic diagram of an embodiment of the device for detecting a pseudo base station based on a short message center number in the present invention;

图4为本发明基于短信中心号码检测伪基站的装置另一个实施例的结构示意图。FIG. 4 is a schematic structural diagram of another embodiment of the device for detecting a pseudo base station based on a short message center number in the present invention.

具体实施方式detailed description

下面详细描述本发明的实施例,所述实施例的示例在附图中示出,其中自始至终相同或类似的标号表示相同或类似的元件或具有相同或类似功能的元件。下面通过参考附图描述的实施例是示例性的,仅用于解释本发明,而不能解释为对本发明的限制。Embodiments of the present invention are described in detail below, examples of which are shown in the drawings, wherein the same or similar reference numerals designate the same or similar elements or elements having the same or similar functions throughout. The embodiments described below by referring to the figures are exemplary only for explaining the present invention and should not be construed as limiting the present invention.

本技术领域技术人员可以理解,除非特意声明,这里使用的单数形式“一”、“一个”、“所述”和“该”也可包括复数形式。应该进一步理解的是,本发明的说明书中使用的措辞“包括”是指存在所述特征、整数、步骤、操作、元件和/或组件,但是并不排除存在或添加一个或多个其他特征、整数、步骤、操作、元件、组件和/或它们的组。应该理解,当我们称元件被“连接”或“耦接”到另一元件时,它可以直接连接或耦接到其他元件,或者也可以存在中间元件。此外,这里使用的“连接”或“耦接”可以包括无线连接或无线耦接。这里使用的措辞“和/或”包括一个或更多个相关联的列出项的全部或任一单元和全部组合。Those skilled in the art will understand that unless otherwise stated, the singular forms "a", "an", "said" and "the" used herein may also include plural forms. It should be further understood that the word "comprising" used in the description of the present invention refers to the presence of said features, integers, steps, operations, elements and/or components, but does not exclude the presence or addition of one or more other features, Integers, steps, operations, elements, components, and/or groups thereof. It will be understood that when an element is referred to as being "connected" or "coupled" to another element, it can be directly connected or coupled to the other element or intervening elements may also be present. Additionally, "connected" or "coupled" as used herein may include wireless connection or wireless coupling. The expression "and/or" used herein includes all or any elements and all combinations of one or more associated listed items.

本技术领域技术人员可以理解,除非另外定义,这里使用的所有术语(包括技术术语和科学术语),具有与本发明所属领域中的普通技术人员的一般理解相同的意义。还应该理解的是,诸如通用字典中定义的那些术语,应该被理解为具有与现有技术的上下文中的意义一致的意义,并且除非像这里一样被特定定义,否则不会用理想化或过于正式的含义来解释。Those skilled in the art can understand that, unless otherwise defined, all terms (including technical terms and scientific terms) used herein have the same meaning as commonly understood by those of ordinary skill in the art to which this invention belongs. It should also be understood that terms, such as those defined in commonly used dictionaries, should be understood to have meanings consistent with their meaning in the context of the prior art, and unless specifically defined as herein, are not intended to be idealized or overly Formal meaning to explain.

本发明的实施例中,移动终端是指可以在移动中使用的计算机设备,包括但不限于手机、具有多种应用功能的智能手机、笔记本、平板电脑、POS机、车载电脑以及可穿戴式便携移动设备。In the embodiments of the present invention, a mobile terminal refers to a computer device that can be used on the move, including but not limited to mobile phones, smart phones with multiple application functions, notebooks, tablet computers, POS machines, vehicle-mounted computers, and wearable portable Mobile devices.

移动终端设备中的操作系统一般会为应用程序开放一些接口,供应用程序从系统中获取所需的信息。因此,在本发明实施例中,为了能够对移动终端的短信息接收情况进行监测,可以在移动终端中运行一应用程序,然后就可以利用移动终端系统的这一特点,在操作系统中对应用程序进行注册。这样,当操作系统广播通知消息时,应用程序就能够收听到这种通知消息,并从中获取所需的信息。例如,当接收短信时,移动终端的操作系统就会广播该短信接收消息,并携带短信息发送方的电话号码,这样,应用程序就能够监测到该事件,并从中获取到短信息发送方号码。The operating system in the mobile terminal device generally opens some interfaces for the application program, so that the application program can obtain the required information from the system. Therefore, in the embodiment of the present invention, in order to be able to monitor the receiving situation of the short message of the mobile terminal, an application program can be run in the mobile terminal, and then this feature of the mobile terminal system can be used to control the application program in the operating system. program to register. In this way, when the operating system broadcasts a notification message, the application program can listen to the notification message and obtain required information therefrom. For example, when receiving a short message, the operating system of the mobile terminal will broadcast the received message of the short message, and carry the phone number of the sender of the short message, so that the application program can monitor the event and obtain the sender's number of the short message .

本发明主要应用于安卓,IOS等操作系统中,可应用于检测欺诈非法短信息等。The present invention is mainly applied to operating systems such as Android and IOS, and can be applied to detecting fraudulent and illegal short messages and the like.

本发明的实施例中,基站即公用移动通信基站是无线电台站的一种形式,是指在一定的无线电覆盖区中,通过移动通信交换中心,与移动电话终端之间进行信息传递的无线电收发信电台。In the embodiment of the present invention, a base station, that is, a public mobile communication base station, is a form of a radio station, and refers to a radio transceiver that transmits information to a mobile phone terminal through a mobile communication switching center in a certain radio coverage area. letter radio.

图1为本发明基于短信中心号码检测伪基站的方法一个实施例的流程图。FIG. 1 is a flow chart of an embodiment of the method for detecting a pseudo base station based on a short message center number in the present invention.

在步骤S101中,检测到接收到来自基站的短信息,识别短信息的短信中心号码。In step S101, it is detected that the short message from the base station is received, and the short message center number of the short message is identified.

具体地,移动终端接收到来自基站的短信息后,读取该短信息中PDU(ProtocolData Unit,协议数据单元)格式的编码信息,通过对PDU格式的编码信息进行解析,识别出该短信息的短信中心号码。Specifically, after receiving the short message from the base station, the mobile terminal reads the coded information in the PDU (ProtocolData Unit, Protocol Data Unit) format in the short message, and identifies the coded information of the short message by parsing the coded information in the PDU format. SMS center number.

在步骤S102中,判断该短信中心号码是否符合预定识别规则,若符合预定识别规则,则确定该短信息来自伪基站。In step S102, it is judged whether the short message center number conforms to the predetermined identification rule, and if it conforms to the predetermined identification rule, it is determined that the short message is from a pseudo base station.

在一示例中,若短信中心号码的前四位字符为“0086”,判断该短信中心号码的前三位字符不符合预定标准短信中心号码的前三位字符“+86”,则确定该短信息来自伪基站。In one example, if the first four characters of the short message center number are "0086", it is determined that the first three characters of the short message center number do not meet the predetermined standard "+86" of the first three characters of the short message center number, and the short message center number is determined to be The information comes from a pseudo base station.

本发明的实施例中,通过对接收到的来自基站的短信息的短信中心号码进行判断,快速确定该短信息是否来自伪基站,实现了对伪基站快捷且高效地检测。In the embodiment of the present invention, by judging the short message center number of the short message received from the base station, it is quickly determined whether the short message comes from a fake base station, and the fast and efficient detection of the fake base station is realized.

具体地,预定识别规则,包括但不限于:Specifically, predetermined identification rules include but are not limited to:

1)短信中心号码属于预置的伪基站黑名单中;1) The number of the SMS center belongs to the preset blacklist of fake base stations;

更具体地,将伪基站黑名单预存在移动终端中,当读取到短信息的短信中心号码之后,将该短信中心号码基于伪基站黑名单进行匹配查询,若该短信中心号码在伪基站黑名单被匹配命中,则确定发送该短信息的基站为伪基站;其中,伪基站黑名单可通过远程服务器实时进行更新。More specifically, the pseudo base station blacklist is pre-stored in the mobile terminal. After the short message center number of the short message is read, the short message center number is matched and inquired based on the pseudo base station blacklist. If the list is matched, it is determined that the base station sending the short message is a fake base station; wherein, the blacklist of fake base stations can be updated in real time through the remote server.

2)短信中心号码不符合预定编码规则;2) The number of the SMS center does not comply with the predetermined coding rules;

更具体地,预定编码规则为短信中心号码的前三位字符为“+86”,当读取到短信息的短信中心号码之后,判断该短信中心号码的前三位字符是否为“+86”,若不是,则判断该短信中心号码不符合预定编码规则,如短信中心号码以“0086”、“0000”、“#86”开头,均不符合预定编码规则。More specifically, the predetermined encoding rule is that the first three characters of the SMS center number are "+86", and after reading the SMS center number of the short message, it is judged whether the first three characters of the SMS center number are "+86" , if not, it is judged that the number of the SMS center does not comply with the predetermined coding rules, such as the number of the SMS center starting with "0086", "0000" and "#86", all of which do not comply with the predetermined coding rules.

3)短信中心号码的归属地与短信息发送方号码的归属地不属于同一地区。3) The attribution of the SMS center number and the attribution of the SMS sender's number do not belong to the same region.

具体地,如图1所示,判断短信中心号码的归属地与短信息发送方号码的归属地是否属于同一地区的具体方式,包括步骤S1021(图中未示出)、步骤S1022(图中未示出)和步骤S1023(图中未示出):Specifically, as shown in Figure 1, the specific way of judging whether the attribution of the short message center number and the attribution of the short message sender number belong to the same area includes step S1021 (not shown in the figure), step S1022 (not shown in the figure) shown) and step S1023 (not shown in the figure):

在步骤S1021中,识别短信中心号码的归属地;在步骤S1022中,识别短信息发送方号码的归属地;在步骤S1023中,判断该短信中心号码的归属地与该短信息发送方号码的归属地是否相同。In step S1021, identify the attribution of the short message center number; in step S1022, identify the attribution of the short message sender number; in step S1023, judge the attribution of the short message center number and the attribution of the short message sender number whether the land is the same.

其中,短信息发送方号码具有特定的编码格式,且其中会包含地区编码信息。例如,中国使用的手机终端号码为11位:前3位为网络识别号,第4-7为地区编码,第8-11位为用户终端号码。通过地区编码就可以确定移动终端的终端号码的归属地。Wherein, the number of the sender of the short message has a specific encoding format, and the area code information will be included therein. For example, the mobile phone terminal number used in China has 11 digits: the first 3 digits are the network identification number, the 4th-7th digits are the area code, and the 8th-11th digits are the user terminal number. The attribution of the terminal number of the mobile terminal can be determined through the area code.

其中,运营商的短信息中心号码具有一定的编码规则,例如,对于中国移动,短信中心号码以“+861380”开头,紧接4位为该号码归属地的电话区号,如“0100”归属地为北京,最后3位一般是“500”。即通常依号码归属地不同,短信息中心的号码也不同。而伪基站的短信息中心号码不满足上述编码规则,例如,其短信息中心号码可能是10000000等非正常号码。Among them, the short message center number of the operator has certain coding rules. For example, for China Mobile, the short message center number starts with "+861380", and the next 4 digits are the telephone area code of the place where the number belongs, such as "0100" For Beijing, the last three digits are generally "500". That is to say, the number of the short message center is usually different according to the place where the number belongs to. However, the short message center number of the pseudo base station does not satisfy the above coding rules, for example, its short message center number may be an abnormal number such as 10000000.

具体地,识别短信息发送方号码的归属地的方式,包括但不限于:1)可预先在移动终端保存地区编码与归属地之间的对应关系,在接收到短信息时,直接通过查询该对应关系即可获知短信息对应的归属地;2)为了避免占用移动终端的存储资源,还可在接收到短信息时,将短信息发送方号码发送到云端服务器或者其他提供归属地查询服务的服务器进行查询,根据服务器返回的结果来确定该短信息的发送方号码归属地。优选地,在通过服务器查询的方式获取号码的归属地信息时,只需要将号码的地区编码号段发送给服务器,其他的号码可以不必发送。又优选地,当提供归属地查询的服务器要求输入的查询信息中包括网络识别码时,需将网络识别码以及地区编码,也即手机号码的前7位,一起发送到服务器端进行查询。Specifically, the way to identify the attribution of the number of the sender of the short message includes but is not limited to: 1) The corresponding relationship between the area code and the attribution can be stored in the mobile terminal in advance, and when the short message is received, directly by querying the 2) In order to avoid occupying the storage resources of the mobile terminal, when receiving the short message, the number of the sender of the short message can be sent to the cloud server or other service providers that provide the search service for the short message. The server performs an inquiry, and determines the attribution of the sender number of the short message according to the result returned by the server. Preferably, when the attribution information of the number is obtained through server query, only the area code segment of the number needs to be sent to the server, and other numbers do not need to be sent. Also preferably, when the server that provides the attribution inquiry requires that the input query information include the network identification code, the network identification code and the area code, that is, the first 7 digits of the mobile phone number, need to be sent to the server side together for query.

在一示例中,移动终端根据短信中心号码,通过在预置的短信中心号码地区编码与归属地之间的对应关系中进行查询匹配,来确定该短信中心号码的归属地;并根据短信息发送方号码,通过在预置的短信息发送方号码地区编码与归属地之间的对应关系中进行查询匹配,来确定该短信息发送方号码的归属地;随后,判断该短信中心号码的归属地与该短信息发送方号码的归属地是否相同。例如,移动终端根据短信息的短信中心号码“+8613800210500”,确定该短信中心号码的归属地为上海;并根据短信息发送方号码“13591805555”,确定该短信息发送方号码的归属地属于辽宁沈阳;则判断该短信中心号码的归属地与该短信息发送方号码的归属地不相同。In one example, according to the short message center number, the mobile terminal determines the attribution of the short message center number by performing query matching in the corresponding relationship between the preset area code of the short message center number and the attribution; sender number, by querying and matching in the corresponding relationship between the preset SMS sender number area code and the attribution, to determine the attribution of the short message sender number; then, determine the attribution of the SMS center number Whether it is the same as the attribution of the number of the sender of the short message. For example, according to the short message center number "+8613800210500", the mobile terminal determines that the attribution of the short message center number is Shanghai; and according to the short message sender's number "13591805555", it determines that the attribution of the short message sender number belongs to Liaoning Shenyang; then it is judged that the attribution of the short message center number is different from the attribution of the short message sender number.

在一个优选实施例中(参照图1),当判断短信中心号码不符合预定识别规则后,还包括步骤S103(图中未示出),在步骤S103中,判断短信息发送方号码是否包括预定字符串;在步骤S102中,若判断短信中心号码符合预定识别规则,且短信息发送方号码包括预定字符串,则确定短信息来自伪基站。In a preferred embodiment (referring to Fig. 1), after judging that the short message center number does not meet the predetermined identification rules, step S103 (not shown in the figure) is also included, and in step S103, it is judged whether the short message sender number includes the predetermined character string; in step S102, if it is judged that the number of the short message center conforms to the predetermined identification rule, and the number of the sender of the short message includes a predetermined character string, then it is determined that the short message is from a pseudo base station.

具体地,预定字符串包括但不限于:“weixin”、“taobao”、“@”等;移动终端接收到短信息后,识别出短信息发送方号码,接着,判断该号码是否包括预定字符串;若判断短信中心号码符合预定识别规则,且该短信息发送方号码包括预定字符串,则确定短信息来自伪基站。Specifically, the predetermined character string includes but is not limited to: "weixin", "taobao", "@", etc.; after receiving the short message, the mobile terminal recognizes the number of the sender of the short message, and then judges whether the number contains the predetermined character string ; If it is judged that the number of the short message center conforms to the predetermined identification rule, and the number of the sender of the short message includes a predetermined character string, then it is determined that the short message is from a pseudo base station.

本优选实施例中,通过对短信息发送方号码进行进一步字符串识别,提高检测伪基站的准确率。In this preferred embodiment, further character string identification is performed on the number of the sender of the short message to improve the accuracy of detecting the pseudo base station.

在另一个优选实施例中(参照图2),确定短信息来自伪基站后,该方法还包括步骤S201、步骤S202和步骤S203;在步骤S201中,将来自伪基站的短信息的内容信息作为第一内容信息记录;在步骤S202中,在接收到正常基站发送的短信息后,读取正常基站发送的短信息的内容信息作为第二内容信息记录;在步骤S203中,当第二内容信息包括第一内容信息时,将正常基站发送的短信息进行安全处理操作。In another preferred embodiment (with reference to Fig. 2), after determining that the short message is from the pseudo base station, the method also includes step S201, step S202 and step S203; in step S201, the content information of the short message from the pseudo base station is used as First content information record; In step S202, after receiving the short message that normal base station sends, read the content information of the short message that normal base station sends as the second content information record; In step S203, when the second content information When the first content information is included, the short message sent by the normal base station is processed safely.

具体地,确定短信息来自伪基站后,在步骤S201中,移动终端将来自伪基站的短信息的具体内容信息以一条数据的形式写入预定存储位置,作为第一内容信息记录;当移动终端接收到其他短信息后,判断发送该短信息的基站为正常基站,则在步骤S202中,读取该正常基站发送的短信息的具体内容信息,并以一条数据的形式写入缓存中,作为第二内容信息记录;随后,将第一内容信息记录与第二内容信息记录进行比较,当第二内容信息包括第一内容信息时,即判断短信息为恶意短信息,在步骤S203中,对该恶意短信息执行安全处理操作;例如,拦截该短信息或者针对该短信息进行安全提示,提示用户当前短信息为恶意短信息;另外,若根据一般恶意短信息判断方式,如根据短信息的属性信息,包括但不限于短信息的发送号码、短信息的内容等,未判断出短信息为恶意短信息,则判断短信息中是否包含伪基站特征,并在确定包含伪基站特征时,可根据数据库中预先保存的恶意伪基站名单确定该等伪基站特征是否为恶意伪基站特征。当根据确定结果确定短信息为恶意短信息时,对恶意短信息执行安全处理操作。Specifically, after determining that the short message comes from the pseudo base station, in step S201, the mobile terminal writes the specific content information of the short message from the pseudo base station into a predetermined storage location in the form of a piece of data, and records it as the first content information; when the mobile terminal After receiving other short messages, it is judged that the base station sending the short message is a normal base station, then in step S202, read the specific content information of the short message sent by the normal base station, and write in the buffer memory in the form of a piece of data, as The second content information record; subsequently, the first content information record is compared with the second content information record, when the second content information includes the first content information, it is judged that the short message is a malicious short message, in step S203, to The malicious short message performs security processing operations; for example, intercepting the short message or giving a security reminder for the short message, prompting the user that the current short message is a malicious short message; Attribute information, including but not limited to the sending number of the short message, the content of the short message, etc., if it is not judged that the short message is a malicious short message, then judge whether the short message contains the characteristics of a fake base station, and when it is determined that the characteristics of a fake base station are included, you can Determine whether the characteristics of these pseudo base stations are characteristics of malicious pseudo base stations according to the list of malicious pseudo base stations stored in the database in advance. When it is determined according to the determination result that the short message is a malicious short message, a security processing operation is performed on the malicious short message.

本优选实施例中,将检测确认的伪基站所发送的短信息进一步用于识别恶意短信息的应用中,提高了恶意短信息的识别处理的准确性,同时也反映出识别伪基站的重要性及其进一步应用。In this preferred embodiment, the short message sent by the detected fake base station is further used in the application of identifying malicious short messages, which improves the accuracy of identification processing of malicious short messages, and also reflects the importance of identifying fake base stations and its further applications.

当短信息结合伪基站进行发送时,能够确定短信息是否为恶意短信息,并在确定短信息为恶意短信息时,对恶意短信息执行相应处理;例如直接拦截恶意短信息或者在用户对恶意短信息进行查看时提示用户该短信息为恶意短信息。综上,依据本发明实施例,能够及时判断出结合伪基站进行发送的恶意短信息,并及时对恶意短信息进行处理,避免无法识别出结合伪基站发送的恶意短信息导致用户上当受骗,造成财产损失的不良后果,达到提高移动终端接收短信息的安全性,合理有效保护用户信息及财产安全的有益效果。When the short message is sent in combination with a pseudo base station, it can determine whether the short message is a malicious short message, and when it is determined that the short message is a malicious short message, perform corresponding processing on the malicious short message; When viewing the short message, the user is prompted that the short message is a malicious short message. To sum up, according to the embodiment of the present invention, it is possible to timely determine the malicious short message sent in combination with a fake base station, and process the malicious short message in a timely manner, so as to prevent the user from being deceived by failing to recognize the malicious short message sent in combination with a fake base station, resulting in The adverse consequences of property loss can achieve the beneficial effects of improving the security of mobile terminals receiving short messages and reasonably and effectively protecting user information and property safety.

图3为本发明基于短信中心号码检测伪基站的方法一个实施例的结构示意图。其中,该检测伪基站的装置处于移动终端中,下述描述中均以移动终端为例,对移动终端与该检测伪基站的装置不做区分。FIG. 3 is a schematic structural diagram of an embodiment of a method for detecting a pseudo base station based on a short message center number in the present invention. Wherein, the device for detecting a pseudo base station is located in the mobile terminal, and the following descriptions all take the mobile terminal as an example, and do not distinguish between the mobile terminal and the device for detecting a pseudo base station.

如图3所示,移动终端包括中心号码识别模块301和第一判断模块302。As shown in FIG. 3 , the mobile terminal includes a center number identification module 301 and a first judgment module 302 .

首先,中心号码识别模块301检测到接收到来自基站的短信息,识别短信息的短信中心号码。First, the center number identifying module 301 detects that a short message from the base station is received, and identifies the short message center number of the short message.

具体地,移动终端接收到来自基站的短信息后,读取该短信息中PDU(ProtocolData Unit,协议数据单元)格式的编码信息,通过对PDU格式的编码信息进行解析,识别出该短信息的短信中心号码。Specifically, after receiving the short message from the base station, the mobile terminal reads the coded information in the PDU (ProtocolData Unit, Protocol Data Unit) format in the short message, and identifies the coded information of the short message by parsing the coded information in the PDU format. SMS center number.

随后,第一判断模块302判断该短信中心号码是否符合预定识别规则,若符合预定识别规则,则确定该短信息来自伪基站。Subsequently, the first judging module 302 judges whether the short message center number conforms to the predetermined identification rule, and if it conforms to the predetermined identification rule, then it is determined that the short message is from a pseudo base station.

在一示例中,若短信中心号码的前四位字符为“0086”,判断该短信中心号码的前三位字符不符合预定标准短信中心号码的前三位字符“+86”,则确定该短信息来自伪基站。In one example, if the first four characters of the short message center number are "0086", it is determined that the first three characters of the short message center number do not meet the predetermined standard "+86" of the first three characters of the short message center number, and the short message center number is determined to be The information comes from a pseudo base station.

本发明的实施例中,通过对接收到的来自基站的短信息的短信中心号码进行判断,快速确定该短信息是否来自伪基站,实现了对伪基站快捷且高效地检测。In the embodiment of the present invention, by judging the short message center number of the short message received from the base station, it is quickly determined whether the short message comes from a fake base station, and the fast and efficient detection of the fake base station is realized.

具体地,预定识别规则,包括但不限于:Specifically, predetermined identification rules include but are not limited to:

1)短信中心号码属于预置的伪基站黑名单中;1) The number of the SMS center belongs to the preset blacklist of fake base stations;

更具体地,将伪基站黑名单预存在移动终端中,当读取到短信息的短信中心号码之后,将该短信中心号码基于伪基站黑名单进行匹配查询,若该短信中心号码在伪基站黑名单被匹配命中,则确定发送该短信息的基站为伪基站;其中,伪基站黑名单可通过远程服务器实时进行更新。More specifically, the pseudo base station blacklist is pre-stored in the mobile terminal. After the short message center number of the short message is read, the short message center number is matched and inquired based on the pseudo base station blacklist. If the list is matched, it is determined that the base station sending the short message is a fake base station; wherein, the blacklist of fake base stations can be updated in real time through the remote server.

2)短信中心号码不符合预定编码规则;2) The number of the SMS center does not comply with the predetermined coding rules;

更具体地,预定编码规则为短信中心号码的前三位字符为“+86”,当读取到短信息的短信中心号码之后,判断该短信中心号码的前三位字符是否为“+86”,若不是,则判断该短信中心号码不符合预定编码规则,如短信中心号码以“0086”、“0000”、“#86”开头,均不符合预定编码规则。More specifically, the predetermined encoding rule is that the first three characters of the SMS center number are "+86", and after reading the SMS center number of the short message, it is judged whether the first three characters of the SMS center number are "+86" , if not, it is judged that the number of the SMS center does not comply with the predetermined coding rules, such as the number of the SMS center starting with "0086", "0000" and "#86", all of which do not comply with the predetermined coding rules.

3)短信中心号码的归属地与短信息发送方号码的归属地不属于同一地区。3) The attribution of the SMS center number and the attribution of the SMS sender's number do not belong to the same region.

具体地,如图3所示,第一判断模块301具体包括第一归属地识别单元(图中未示出)、第二归属地识别单元(图中未示出)和归属地判断单元(图中未示出)。Specifically, as shown in FIG. 3 , the first judging module 301 specifically includes a first attribution identifying unit (not shown in the figure), a second attribution identifying unit (not shown in the figure), and an attribution judging unit (not shown in the figure). not shown).

首先,第一归属地识别单元识别短信中心号码的归属地;接着,第二归属地识别单元识别短信息发送方号码的归属地;随后,归属地判断单元判断该短信中心号码的归属地与该短信息发送方号码的归属地是否相同。First, the first attribution identification unit identifies the attribution of the short message center number; then, the second attribution identification unit identifies the attribution of the short message sender number; subsequently, the attribution judging unit judges the attribution of the short message center number and the Whether the attribution of the number of the sender of the short message is the same.

其中,短信息发送方号码具有特定的编码格式,且其中会包含地区编码信息。例如,中国使用的手机终端号码为11位:前3位为网络识别号,第4-7为地区编码,第8-11位为用户终端号码。通过地区编码就可以确定移动终端的终端号码的归属地。Wherein, the number of the sender of the short message has a specific encoding format, and the area code information will be included therein. For example, the mobile phone terminal number used in China has 11 digits: the first 3 digits are the network identification number, the 4th-7th digits are the area code, and the 8th-11th digits are the user terminal number. The attribution of the terminal number of the mobile terminal can be determined through the area code.

其中,运营商的短信息中心号码具有一定的编码规则,例如,对于中国移动,短信中心号码以“+861380”开头,紧接4位为该号码归属地的电话区号,如“0100”归属地为北京,最后3位一般是“500”。即通常依号码归属地不同,短信息中心的号码也不同。而伪基站的短信息中心号码不满足上述编码规则,例如,其短信息中心号码可能是10000000等非正常号码。Among them, the short message center number of the operator has certain coding rules. For example, for China Mobile, the short message center number starts with "+861380", and the next 4 digits are the telephone area code of the place where the number belongs, such as "0100" For Beijing, the last three digits are generally "500". That is to say, the number of the short message center is usually different according to the place where the number belongs to. However, the short message center number of the pseudo base station does not satisfy the above coding rules, for example, its short message center number may be an abnormal number such as 10000000.

具体地,识别短信息发送方号码的归属地的方式,包括但不限于:1)可预先在移动终端保存地区编码与归属地之间的对应关系,在接收到短信息时,直接通过查询该对应关系即可获知短信息对应的归属地;2)为了避免占用移动终端的存储资源,还可在接收到短信息时,将短信息发送方号码发送到云端服务器或者其他提供归属地查询服务的服务器进行查询,根据服务器返回的结果来确定该短信息的发送方号码归属地。优选地,在通过服务器查询的方式获取号码的归属地信息时,只需要将号码的地区编码号段发送给服务器,其他的号码可以不必发送。又优选地,当提供归属地查询的服务器要求输入的查询信息中包括网络识别码时,需将网络识别码以及地区编码,也即手机号码的前7位,一起发送到服务器端进行查询。Specifically, the way to identify the attribution of the number of the sender of the short message includes but is not limited to: 1) The corresponding relationship between the area code and the attribution can be stored in the mobile terminal in advance, and when the short message is received, directly by querying the 2) In order to avoid occupying the storage resources of the mobile terminal, when receiving the short message, the number of the sender of the short message can be sent to the cloud server or other service providers that provide the search service for the short message. The server performs an inquiry, and determines the attribution of the sender number of the short message according to the result returned by the server. Preferably, when the attribution information of the number is obtained through server query, only the area code segment of the number needs to be sent to the server, and other numbers do not need to be sent. Also preferably, when the server that provides the attribution inquiry requires that the input query information include the network identification code, the network identification code and the area code, that is, the first 7 digits of the mobile phone number, need to be sent to the server side together for query.

在一示例中,移动终端根据短信中心号码,通过在预置的短信中心号码地区编码与归属地之间的对应关系中进行查询匹配,来确定该短信中心号码的归属地;并根据短信息发送方号码,通过在预置的短信息发送方号码地区编码与归属地之间的对应关系中进行查询匹配,来确定该短信息发送方号码的归属地;随后,判断该短信中心号码的归属地与该短信息发送方号码的归属地是否相同。例如,移动终端根据短信息的短信中心号码“+8613800210500”,确定该短信中心号码的归属地为上海;并根据短信息发送方号码“13591805555”,确定该短信息发送方号码的归属地属于辽宁沈阳;则判断该短信中心号码的归属地与该短信息发送方号码的归属地不相同。In one example, according to the short message center number, the mobile terminal determines the attribution of the short message center number by performing query matching in the corresponding relationship between the preset area code of the short message center number and the attribution; sender number, by querying and matching in the corresponding relationship between the preset SMS sender number area code and the attribution, to determine the attribution of the short message sender number; then, determine the attribution of the SMS center number Whether it is the same as the attribution of the number of the sender of the short message. For example, according to the short message center number "+8613800210500", the mobile terminal determines that the attribution of the short message center number is Shanghai; and according to the short message sender's number "13591805555", it determines that the attribution of the short message sender number belongs to Liaoning Shenyang; then it is judged that the attribution of the short message center number is different from the attribution of the short message sender number.

在一个优选实施例中(参照图3),当判断短信中心号码不符合预定识别规则后,移动终端还包括第二判断模块(图中未示出),第二判断模块判断短信息发送方号码是否包括预定字符串;第一判断模块若判断短信中心号码符合预定识别规则,且短信息发送方号码包括预定字符串,则确定短信息来自伪基站。In a preferred embodiment (with reference to Fig. 3), after judging that the short message center number does not meet the predetermined identification rules, the mobile terminal also includes a second judging module (not shown in the figure), and the second judging module judges the short message sender number Whether it includes a predetermined character string; if the first judging module judges that the SMS center number conforms to the predetermined identification rule, and the number of the sender of the short message includes a predetermined character string, then it is determined that the short message is from a pseudo base station.

具体地,预定字符串包括但不限于:“weixin”、“taobao”、“@”等;在接收到短信息后,识别出短信息发送方号码,接着,判断该短信息发送方号码是否包括预定字符串;若判断短信中心号码符合预定识别规则,且该短信息发送方号码包括预定字符串,则确定短信息来自伪基站。Specifically, the predetermined character strings include but are not limited to: "weixin", "taobao", "@", etc.; after receiving the short message, identify the number of the sender of the short message, and then determine whether the sender number of the short message includes A predetermined character string; if it is judged that the number of the short message center meets the predetermined identification rules, and the number of the sender of the short message includes a predetermined character string, then it is determined that the short message is from a pseudo base station.

本优选实施例中,通过对短信息发送方号码进行进一步字符串识别,提高检测伪基站的准确率。In this preferred embodiment, further character string identification is performed on the number of the sender of the short message to improve the accuracy of detecting the pseudo base station.

在另一个优选实施例中(参照图4),确定短信息来自伪基站后,移动终端还包括第一记录模块401、第二记录模块402和安全处理模块403;第一记录模块401将来自伪基站的短信息的内容信息作为第一内容信息记录;第二记录模块402在接收到正常基站发送的短信息后,读取正常基站发送的短信息的内容信息作为第二内容信息记录;安全处理模块403当第二内容信息包括第一内容信息时,将正常基站发送的短信息进行安全处理操作。In another preferred embodiment (referring to Fig. 4), after determining that the short message comes from a fake base station, the mobile terminal also includes a first recording module 401, a second recording module 402 and a security processing module 403; The content information of the short message of the base station is recorded as the first content information; after receiving the short message sent by the normal base station, the second recording module 402 reads the content information of the short message sent by the normal base station as the second content information record; security processing Module 403, when the second content information includes the first content information, perform security processing on the short message sent by the normal base station.

具体地,确定短信息来自伪基站后,第一记录模块401将来自伪基站的短信息的具体内容信息以一条数据的形式写入预定存储位置,作为第一内容信息记录;当移动终端接收到其他短信息后,判断发送该短信息的基站为正常基站,则第二记录模块402读取该正常基站发送的短信息的具体内容信息,并以一条数据的形式写入缓存中,作为第二内容信息记录;随后,将第一内容信息记录与第二内容信息记录进行比较,当第二内容信息包括第一内容信息时,即判断短信息为恶意短信息,安全处理模块403对该恶意短信息执行安全处理操作;例如,拦截该短信息或者针对该短信息进行安全提示,提示用户当前短信息为恶意短信息;另外,若根据一般恶意短信息判断方式,如根据短信息的属性信息,包括但不限于短信息的发送号码、短信息的内容等,未判断出短信息为恶意短信息,则判断短信息中是否包含伪基站特征,并在确定包含伪基站特征时,可根据数据库中预先保存的恶意伪基站名单确定该等伪基站特征是否为恶意伪基站特征。当根据确定结果确定短信息为恶意短信息时,对恶意短信息执行安全处理操作。Specifically, after determining that the short message comes from the pseudo base station, the first recording module 401 writes the specific content information of the short message from the pseudo base station into a predetermined storage location in the form of a piece of data, and records it as the first content information; when the mobile terminal receives After other short messages, it is judged that the base station sending the short message is a normal base station, then the second record module 402 reads the specific content information of the short message sent by the normal base station, and writes it in the buffer memory in the form of a piece of data, as the second Content information record; Subsequently, the first content information record is compared with the second content information record, when the second content information includes the first content information, it is judged that the short message is a malicious short message, and the security processing module 403 is responsible for the malicious short message. information to perform security processing operations; for example, intercepting the short message or giving a security reminder for the short message, prompting the user that the current short message is a malicious short message; Including but not limited to the sending number of the short message, the content of the short message, etc., if it is not judged that the short message is a malicious short message, it is judged whether the short message contains the characteristics of a fake base station, and when it is determined that the characteristics of a fake base station are included, it can be based on the The pre-saved list of malicious pseudo-base stations determines whether the characteristics of these pseudo-base stations are characteristics of malicious pseudo-base stations. When it is determined according to the determination result that the short message is a malicious short message, a security processing operation is performed on the malicious short message.

本优选实施例中,将检测确认的伪基站所发送的短信息进一步用于识别恶意短信息的应用中,提高了恶意短信息的识别处理的准确性,同时也反映出识别伪基站的重要性及其进一步应用。In this preferred embodiment, the short message sent by the detected fake base station is further used in the application of identifying malicious short messages, which improves the accuracy of identification processing of malicious short messages, and also reflects the importance of identifying fake base stations and its further applications.

当短信息结合伪基站进行发送时,能够确定短信息是否为恶意短信息,并在确定短信息为恶意短信息时,对恶意短信息执行相应处理;例如直接拦截恶意短信息或者在用户对恶意短信息进行查看时提示用户该短信息为恶意短信息。综上,依据本发明实施例,能够及时判断出结合伪基站进行发送的恶意短信息,并及时对恶意短信息进行处理,避免无法识别出结合伪基站发送的恶意短信息导致用户上当受骗,造成财产损失的不良后果,达到提高移动终端接收短信息的安全性,合理有效保护用户信息及财产安全的有益效果。When the short message is sent in combination with a pseudo base station, it can determine whether the short message is a malicious short message, and when it is determined that the short message is a malicious short message, perform corresponding processing on the malicious short message; When viewing the short message, the user is prompted that the short message is a malicious short message. To sum up, according to the embodiment of the present invention, it is possible to timely determine the malicious short message sent in combination with a fake base station, and process the malicious short message in a timely manner, so as to prevent the user from being deceived by failing to recognize the malicious short message sent in combination with a fake base station, resulting in The adverse consequences of property loss can achieve the beneficial effects of improving the security of mobile terminals receiving short messages and reasonably and effectively protecting user information and property safety.

本技术领域技术人员可以理解,本发明包括涉及用于执行本申请中所述操作中的一项或多项的设备。这些设备可以为所需的目的而专门设计和制造,或者也可以包括通用计算机中的已知设备。这些设备具有存储在其内的计算机程序,这些计算机程序选择性地激活或重构。这样的计算机程序可以被存储在设备(例如,计算机)可读介质中或者存储在适于存储电子指令并分别耦联到总线的任何类型的介质中,所述计算机可读介质包括但不限于任何类型的盘(包括软盘、硬盘、光盘、CD-ROM、和磁光盘)、ROM(Read-Only Memory,只读存储器)、RAM(Random Access Memory,随即存储器)、EPROM(Erasable ProgrammableRead-Only Memory,可擦写可编程只读存储器)、EEPROM(Electrically ErasableProgrammable Read-Only Memory,电可擦可编程只读存储器)、闪存、磁性卡片或光线卡片。也就是,可读介质包括由设备(例如,计算机)以能够读的形式存储或传输信息的任何介质。Those skilled in the art will appreciate that the present invention includes devices related to performing one or more of the operations described in this application. These devices may be specially designed and fabricated for the required purposes, or they may include known devices found in general purpose computers. These devices have computer programs stored therein that are selectively activated or reconfigured. Such a computer program can be stored in a device (e.g., computer) readable medium, including but not limited to any type of medium suitable for storing electronic instructions and respectively coupled to a bus. Types of disks (including floppy disks, hard disks, CDs, CD-ROMs, and magneto-optical disks), ROM (Read-Only Memory, read-only memory), RAM (Random Access Memory, random access memory), EPROM (Erasable Programmable Read-Only Memory, Erasable Programmable Read-Only Memory), EEPROM (Electrically Erasable Programmable Read-Only Memory, Electrically Erasable Programmable Read-Only Memory), flash memory, magnetic card or optical card. That is, a readable medium includes any medium that stores or transmits information in a form readable by a device (eg, a computer).

本技术领域技术人员可以理解,可以用计算机程序指令来实现这些结构图和/或框图和/或流图中的每个框以及这些结构图和/或框图和/或流图中的框的组合。本技术领域技术人员可以理解,可以将这些计算机程序指令提供给通用计算机、专业计算机或其他可编程数据处理方法的处理器来实现,从而通过计算机或其他可编程数据处理方法的处理器来执行本发明公开的结构图和/或框图和/或流图的框或多个框中指定的方案。Those skilled in the art will understand that computer program instructions can be used to implement each block in these structural diagrams and/or block diagrams and/or flow diagrams and combinations of blocks in these structural diagrams and/or block diagrams and/or flow diagrams . Those skilled in the art can understand that these computer program instructions can be provided to general-purpose computers, professional computers, or processors of other programmable data processing methods for implementation, so that the computer or processors of other programmable data processing methods can execute the present invention. A scheme specified in a block or blocks of a structure diagram and/or a block diagram and/or a flow diagram of the invention disclosure.

本技术领域技术人员可以理解,本发明中已经讨论过的各种操作、方法、流程中的步骤、措施、方案可以被交替、更改、组合或删除。进一步地,具有本发明中已经讨论过的各种操作、方法、流程中的其他步骤、措施、方案也可以被交替、更改、重排、分解、组合或删除。进一步地,现有技术中的具有与本发明中公开的各种操作、方法、流程中的步骤、措施、方案也可以被交替、更改、重排、分解、组合或删除。Those skilled in the art can understand that the various operations, methods, and steps, measures, and solutions in the processes discussed in the present invention can be replaced, changed, combined, or deleted. Further, other steps, measures, and schemes in the various operations, methods, and processes that have been discussed in the present invention may also be replaced, changed, rearranged, decomposed, combined, or deleted. Further, steps, measures, and schemes in the prior art that have operations, methods, and processes disclosed in the present invention can also be alternated, changed, rearranged, decomposed, combined, or deleted.

以上所述仅是本发明的部分实施方式,应当指出,对于本技术领域的普通技术人员来说,在不脱离本发明原理的前提下,还可以做出若干改进和润饰,这些改进和润饰也应视为本发明的保护范围。The above descriptions are only part of the embodiments of the present invention. It should be pointed out that those skilled in the art can make some improvements and modifications without departing from the principles of the present invention. It should be regarded as the protection scope of the present invention.

Claims (4)

1.一种基于短信中心号码检测伪基站的方法,其特征在于,包括:1. A method for detecting false base stations based on SMS center number, characterized in that, comprising: 检测到接收到来自基站的短信息,识别所述短信息的短信中心号码;Detecting that the short message from the base station is received, and identifying the short message center number of the short message; 判断所述短信中心号码是否符合预定识别规则,若符合预定识别规则,则判断短信息发送方号码是否包括预定字符串;Judging whether the number of the short message center meets the predetermined identification rules, if it meets the predetermined identification rules, then judging whether the number of the short message sender includes a predetermined character string; 若所述短信息发送方号码包括预定字符串,则确定所述短信息来自伪基站;If the number of the sender of the short message includes a predetermined character string, then determine that the short message is from a pseudo base station; 其中,预定识别规则,包括以下任一项:Among them, the predetermined identification rules include any of the following: 所述短信中心号码属于预置的伪基站黑名单中;The SMS center number belongs to the preset blacklist of false base stations; 所述短信中心号码不符合预定编码规则;The number of the SMS center does not comply with the predetermined coding rules; 所述短信中心号码的归属地与短信息发送方号码的归属地不属于同一地区;The attribution of the SMS center number and the attribution of the SMS sender's number do not belong to the same region; 确定所述短信息来自伪基站后,还包括:After determining that the short message comes from a pseudo base station, it also includes: 将来自伪基站的所述短信息的内容信息作为第一内容信息记录;Recording the content information of the short message from the pseudo base station as the first content information; 在接收到正常基站发送的短信息后,读取所述正常基站发送的短信息的内容信息作为第二内容信息记录;After receiving the short message sent by the normal base station, read the content information of the short message sent by the normal base station as the second content information record; 当所述第二内容信息包括所述第一内容信息时,将所述正常基站发送的短信息进行安全处理操作。When the second content information includes the first content information, perform security processing on the short message sent by the normal base station. 2.根据权利要求1所述的基于短信中心号码检测伪基站的方法,其特征在于,判断所述短信中心号码的归属地与所述短信息发送方号码的归属地是否属于同一地区,包括:2. the method for detecting false base station based on short message center number according to claim 1, is characterized in that, judges whether the place of attribution of described short message center number and the place of attribution of described short message sender number belong to the same area, comprising: 识别所述短信中心号码的归属地;Identify the attribution of the SMS center number; 识别所述短信息发送方号码的归属地;identifying the attribution of the number of the sender of the short message; 判断所述短信中心号码的归属地与所述短信息发送方号码的归属地是否相同。Judging whether the attribution of the short message center number is the same as the attribution of the short message sender number. 3.一种基于短信中心号码检测伪基站的装置,其特征在于,包括:3. A device for detecting false base stations based on SMS center number, characterized in that, comprising: 中心号码识别模块,用于检测到接收到来自基站的短信息,识别所述短信息的短信中心号码;The central number identification module is used to detect that the short message from the base station is received, and identify the short message center number of the short message; 第一判断模块,用于判断所述短信中心号码是否符合预定识别规则;The first judging module is used to judge whether the number of the SMS center complies with predetermined identification rules; 第二判断模块,用于当所述短信中心号码符合预定识别规则时,判断短信息发送方号码是否包括预定字符串;The second judging module is used to judge whether the number of the sender of the short message includes a predetermined character string when the number of the short message center complies with a predetermined identification rule; 所述第一判断模块还用于当判断所述短信中心号码符合预定识别规则,且所述短信息发送方号码包括预定字符串时,确定所述短信息来自伪基站;The first judging module is also used to determine that the short message comes from a pseudo base station when it is judged that the short message center number conforms to a predetermined identification rule, and the short message sender number includes a predetermined character string; 其中,预定识别规则,包括以下任一项:Among them, the predetermined identification rules include any of the following: 所述短信中心号码属于预置的伪基站黑名单中;The SMS center number belongs to the preset blacklist of false base stations; 所述短信中心号码不符合预定编码规则;The number of the SMS center does not comply with the predetermined coding rules; 所述短信中心号码的归属地与短信息发送方号码的归属地不属于同一地区;The attribution of the SMS center number and the attribution of the SMS sender's number do not belong to the same region; 第一记录模块,用于确定所述短信息来自伪基站后,将来自伪基站的所述短信息的内容信息作为第一内容信息记录;The first recording module is configured to record the content information of the short message from the pseudo base station as the first content information after determining that the short message comes from the pseudo base station; 第二记录模块,用于在接收到正常基站发送的短信息后,读取所述正常基站发送的短信息的内容信息作为第二内容信息记录;The second recording module is used to read the content information of the short message sent by the normal base station as the second content information record after receiving the short message sent by the normal base station; 短信息拦截模块,用于当所述第二内容信息包括所述第一内容信息时,将所述正常基站发送的短信息进行安全处理操作。A short message interception module, configured to perform security processing on the short message sent by the normal base station when the second content information includes the first content information. 4.根据权利要求3所述的基于短信中心号码检测伪基站的装置,其特征在于,第一判断模块包括:4. the device based on short message center number detection false base station according to claim 3, is characterized in that, the first judging module comprises: 第一归属地识别单元,用于识别所述短信中心号码的归属地;The first attribution identification unit is used to identify the attribution of the short message center number; 第二归属地识别单元,用于识别短信息发送方号码的归属地;The second attribution identification unit is used to identify the attribution of the number of the sender of the short message; 归属地判断单元,用于判断所述短信中心号码的归属地与所述短信息发送方号码的归属地是否相同。The attribution judging unit is used to judge whether the attribution of the short message center number is the same as the attribution of the short message sender number.
CN201410547455.5A 2014-10-16 2014-10-16 Method and device for detecting pseudo base station based on short message center number Active CN104244254B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410547455.5A CN104244254B (en) 2014-10-16 2014-10-16 Method and device for detecting pseudo base station based on short message center number

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410547455.5A CN104244254B (en) 2014-10-16 2014-10-16 Method and device for detecting pseudo base station based on short message center number

Publications (2)

Publication Number Publication Date
CN104244254A CN104244254A (en) 2014-12-24
CN104244254B true CN104244254B (en) 2017-02-22

Family

ID=52231427

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410547455.5A Active CN104244254B (en) 2014-10-16 2014-10-16 Method and device for detecting pseudo base station based on short message center number

Country Status (1)

Country Link
CN (1) CN104244254B (en)

Families Citing this family (18)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104581732B (en) * 2014-12-25 2019-04-05 中国科学院信息工程研究所 A kind of pseudo base station real-time discrimination method and system based on short message
CN104836901A (en) * 2015-04-02 2015-08-12 深圳市金立通信设备有限公司 Terminal
CN105554763B (en) * 2015-12-17 2019-05-21 北京奇虎科技有限公司 A kind of method and server detecting pseudo-base station central number
CN106937290A (en) * 2015-12-30 2017-07-07 腾讯科技(深圳)有限公司 A kind of pseudo-base station recognition methods and relevant device
CN107241729A (en) * 2016-03-29 2017-10-10 努比亚技术有限公司 Pseudo-base station recognition methods and device
CN107241732A (en) * 2016-03-29 2017-10-10 努比亚技术有限公司 Start-up logging of mobile terminal network-based control method and device
CN105873056B (en) * 2016-04-29 2019-08-02 宇龙计算机通信科技(深圳)有限公司 Pseudo-base station recognition methods and device, base station, terminal
CN107466019A (en) * 2016-06-03 2017-12-12 中兴通讯股份有限公司 A kind of short message recognition methods and device
CN106231572A (en) * 2016-07-29 2016-12-14 宇龙计算机通信科技(深圳)有限公司 Pseudo-base station refuse messages discrimination method and system
CN107864458A (en) * 2016-09-22 2018-03-30 中兴通讯股份有限公司 A kind of recognition methods of pseudo-base station note, apparatus and system
CN106572451A (en) * 2016-10-28 2017-04-19 努比亚技术有限公司 Terminal and pseudo-base station short message identification method
CN106535197A (en) * 2017-01-18 2017-03-22 北京奇虎科技有限公司 Method and device for identifying pseudo base station based on network type
CN106851603A (en) * 2017-03-31 2017-06-13 深圳市金立通信设备有限公司 A kind of pseudo-base station note recognition methods and terminal
CN107172622B (en) * 2017-07-21 2021-03-09 北京奇虎科技有限公司 Method, device and system for identifying and analyzing pseudo base station short message
CN109362079B (en) * 2018-11-05 2023-09-12 北京小米移动软件有限公司 Data processing method and device
CN109379743A (en) * 2018-11-05 2019-02-22 北京小米移动软件有限公司 SMS identification method and device
CN110809316A (en) * 2019-09-27 2020-02-18 联创汽车电子有限公司 Pseudo base station detection positioning method and detection positioning system thereof
CN114466362B (en) * 2022-04-11 2022-06-28 武汉卓鹰世纪科技有限公司 Method and device for filtering junk short messages under 5G communication based on BilSTM

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103763690A (en) * 2014-01-28 2014-04-30 北京奇虎科技有限公司 Method and device for sending short messages to mobile terminal from detection fake base station
CN103856918A (en) * 2012-12-06 2014-06-11 中国人民解放军信息工程大学 Method and system for obtaining GSM cell phone number
CN104010285A (en) * 2014-06-18 2014-08-27 中国联合网络通信集团有限公司 A short message filtering method, system, short message service center and terminal

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103856918A (en) * 2012-12-06 2014-06-11 中国人民解放军信息工程大学 Method and system for obtaining GSM cell phone number
CN103763690A (en) * 2014-01-28 2014-04-30 北京奇虎科技有限公司 Method and device for sending short messages to mobile terminal from detection fake base station
CN104010285A (en) * 2014-06-18 2014-08-27 中国联合网络通信集团有限公司 A short message filtering method, system, short message service center and terminal

Also Published As

Publication number Publication date
CN104244254A (en) 2014-12-24

Similar Documents

Publication Publication Date Title
CN104244254B (en) Method and device for detecting pseudo base station based on short message center number
CN104244253B (en) The method and apparatus for recognizing pseudo-base station
US9900416B2 (en) Information processing method, information processing device, and apparatus
CN103763690B (en) Detect the method and apparatus that pseudo-base station sends short message to mobile terminal
US9277378B2 (en) Short message service validation engine
WO2016034063A1 (en) Method and client for processing malicious short message based on pseudo base station
CN103415004B (en) A kind of method and device detecting junk short message
CN105263142A (en) Method and device for identifying pseudo base station
US10387460B2 (en) Method and apparatus for processing text information
CN105025490A (en) A method and device for identifying a pseudo-base station
CN105246058B (en) Short message verification method and short message server
CN105141753A (en) Method and device for processing verification code short-message expiration
WO2014149186A1 (en) Premium messaging challenges
CN104166917B (en) The Notification Method and system of NFC transaction events
CN106331331A (en) Display method, generation method, display device and server of terminal information
CN105873056B (en) Pseudo-base station recognition methods and device, base station, terminal
CN106060825B (en) Client identification card copying reminding method and server
CN102098640B (en) Method, device and system for distinguishing and stopping equipment from sending SMS (short messaging service) spam
CN105554763A (en) Method for detecting pseudo base station center number and server
CN106332000B (en) Terminal position information acquisition method and device
CN102711112A (en) Method and device for intercepting short message
CN103067610B (en) Method and device for intercepting junk short messages and mobile terminal
CN105245494A (en) Method and device for determining network attack
CN103873698A (en) Terminal association device and terminal association method
CN106101248A (en) By external equipment detection terminal unit is harassed the method and system of communication service

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20220726

Address after: Room 801, 8th floor, No. 104, floors 1-19, building 2, yard 6, Jiuxianqiao Road, Chaoyang District, Beijing 100015

Patentee after: BEIJING QIHOO TECHNOLOGY Co.,Ltd.

Address before: 100088 room 112, block D, 28 new street, new street, Xicheng District, Beijing (Desheng Park)

Patentee before: BEIJING QIHOO TECHNOLOGY Co.,Ltd.

Patentee before: Qizhi software (Beijing) Co.,Ltd.

点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载