[go: up one dir, main page]

WO2018176492A1 - Configuration file management method and device - Google Patents

Configuration file management method and device Download PDF

Info

Publication number
WO2018176492A1
WO2018176492A1 PCT/CN2017/079360 CN2017079360W WO2018176492A1 WO 2018176492 A1 WO2018176492 A1 WO 2018176492A1 CN 2017079360 W CN2017079360 W CN 2017079360W WO 2018176492 A1 WO2018176492 A1 WO 2018176492A1
Authority
WO
WIPO (PCT)
Prior art keywords
terminal
remote management
configuration file
command
management
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2017/079360
Other languages
French (fr)
Chinese (zh)
Inventor
高林毅
龙水平
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Priority to PCT/CN2017/079360 priority Critical patent/WO2018176492A1/en
Priority to CN201780050348.3A priority patent/CN109565666B/en
Publication of WO2018176492A1 publication Critical patent/WO2018176492A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/18Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data

Definitions

  • the present application relates to the field of communications technologies, and in particular, to a method and an apparatus for managing a configuration file.
  • the embedded Universal Integrated Circuit Card is a telecom smart card integrated in the terminal that can support remote or local management profiles.
  • downloading and remote management of configuration files are performed separately.
  • the user wants to download the configuration file and activate the configuration file after the download is completed.
  • the specific management process is as follows: the terminal first establishes a connection with the remote management platform according to the user's download command, and obtains the confirmation of the user to download the configuration file. After that, the configuration file is downloaded; then, the terminal activates the configuration file after obtaining the confirmation of the activation profile by the user according to the activation request of the remote management platform.
  • the present application provides a management method and device for configuring a profile, which implements a combination of downloading and remote management of a configuration file, thereby simplifying network interaction and improving user experience.
  • the application provides a method for managing a configuration file, where the method includes:
  • the terminal sends the first message to the remote management platform
  • the second message includes N management commands; the N management commands include a download command and a remote management command; N is an integer greater than 1;
  • the terminal manages the configuration file according to the N management commands.
  • the terminal can obtain a plurality of management commands associated with each other by performing a communication interaction with the remote management platform (that is, sending the first message to the remote management platform and receiving the second message sent by the remote management platform).
  • the interrelated management commands include download commands and remote management commands, which enable the combination of downloading and remote management of configuration files, simplifying network interaction and improving user experience.
  • the terminal manages the configuration file according to the N management commands, including:
  • the terminal when the order of the download command is before the remote management command, the terminal first executes the download command, and then executes the remote management command;
  • the terminal When the order of the download command is after the remote management command in the second message, the terminal first executes the remote management command, and then executes the download command.
  • the terminal manages the configuration file according to the N management commands, including:
  • the terminal When the order of the download command is before the remote management command, the terminal first caches the download command, and after executing the remote management command, executes the cached download command. ;
  • the terminal when the order of the download command is after the remote management command, the terminal first caches the remote management command, and after performing the download command, performs the remote management of the cache. command.
  • the first message is sent after the terminal receives the management request command selected by the user;
  • the terminal Before the terminal manages the configuration file according to the N management commands, the terminal further includes:
  • the terminal determines that the N management commands match the management request instruction.
  • the terminal determines that the N management commands match the management request instruction, including:
  • the terminal determines that the N management commands include the download command, and determines that the N management commands match the management request instruction;
  • the terminal determines that the N management commands include a remote management command, and after the download command is not included, determining that the N management commands match the management request instruction ;
  • the terminal determines that the N management commands match the management request instruction.
  • the terminal determines that the remote management command and the download command are included in the N management commands, and determines a remote management command among the N management commands and the The management request instruction matches, and the download command of the N management commands does not match the management request instruction;
  • the terminal manages the first configuration file according to the N management commands, including:
  • the terminal executes a remote management command of the N management commands, and reports to the remote management platform that the download command of the N management commands does not match the management request command.
  • the method further includes:
  • the terminal determines that the N management commands do not match the management request instruction, reporting, to the remote management platform, that the N management commands do not match the management request instruction.
  • the terminal sends the first message to the remote management platform, including:
  • the terminal receives the N management commands sent by the remote management platform; the N management commands are management commands corresponding to the first identifier;
  • the remote management platform includes a first remote management platform and a second remote management platform;
  • the terminal Sending, by the terminal, the first identifier to the second remote management platform; the first identifier is one of the M identifiers; and M is a positive integer.
  • the method further includes:
  • the terminal After receiving the confirmation instruction that the user continues to obtain the management command, the terminal sends a second identifier to the remote management platform; the second identifier is an identifier of the M identifiers other than the first identifier.
  • the terminal sends the first message to the remote management platform, including:
  • the terminal receives K management commands corresponding to the EID of the terminal sent by the remote management platform; and the K management commands include at least one management command set formed by the N management commands.
  • the terminal sends the first message to the remote management platform, including:
  • the management request identifier is set by the terminal according to a management request command selected by the user;
  • the N management commands are obtained by the remote management platform according to the EID of the terminal and the management request identifier.
  • the terminal sends the first message to the remote management platform, including:
  • the terminal receives K management commands corresponding to the EID of the terminal sent by the remote management platform.
  • the first message is sent after the terminal receives the management request command selected by the user;
  • the terminal manages the configuration file according to the N management commands, including:
  • the second message further includes an identifier corresponding to the K management commands, and the terminal selects, from the K management commands, a first management command that matches the management request command and the first
  • the management command corresponding to the same command is used to manage the configuration file, and the configuration file is managed according to the first management command and the same management command as the first management command; or
  • the terminal selects, from the K management commands, a first management command that matches the management request command and a management command associated with the first management command, and according to the first management command and the The management command associated with the first management command manages the configuration file.
  • the application provides a method for managing a configuration file, where the method includes:
  • the remote management platform receives the first message sent by the terminal
  • the remote management platform sends a second message to the terminal; the second message includes N management commands; the N management commands include a download command and a remote management command; N is an integer greater than 1.
  • the remote management platform receives the first message sent by the terminal, including:
  • the remote management platform receives a first identifier sent by the terminal
  • the method further includes:
  • the remote management platform obtains the N management commands corresponding to the first identifier according to the first identifier.
  • the remote management platform includes a first remote management platform and a second remote management platform;
  • the remote management platform receives the first identifier sent by the terminal, including:
  • the second remote management platform receives the first identifier sent by the terminal, where the first identifier is one of the M identifiers; and M is a positive integer.
  • the remote management platform receives the first message sent by the terminal, including:
  • the remote management platform receives an EID and a management request identifier of the terminal sent by the terminal; the management request identifier is set by the terminal according to a management request command selected by a user;
  • the remote management platform acquires a first management command corresponding to the EID of the terminal, and acquires a management corresponding to the EID of the terminal and associated with the first management command. command;
  • the remote management platform acquires all management commands corresponding to the EID of the terminal.
  • the remote management platform receives the first message sent by the terminal, including:
  • the remote management platform obtains K management commands corresponding to the EID of the terminal, and sends the K management commands to the terminal; the K management commands include at least the N management commands. a collection of administrative commands; or,
  • the remote management platform obtains K management commands corresponding to the EID of the terminal, and sends an identifier corresponding to the K management commands and the K management commands to the terminal; or
  • the remote management platform obtains K management commands corresponding to the EID of the terminal, and sends the K management commands to the terminal.
  • the application provides a method for managing a configuration file, where the method includes:
  • the terminal sends a first message to the remote management platform, where the first message is used to request to download a configuration file or the first message is used to request to acquire all management commands corresponding to the EID of the terminal, where the terminal is installed.
  • the second message includes metadata of the first configuration file and a remote management command of the second configuration file;
  • the terminal downloads the first configuration file according to metadata of the first configuration file
  • the terminal manages the second configuration file according to a remote management command of the second configuration file.
  • the terminal downloads the first configuration file according to the metadata of the first configuration file; and the terminal manages the second configuration file according to the remote management command of the second configuration file, including:
  • the terminal When the order of the metadata of the first configuration file is before the remote management command of the second configuration file, the terminal first downloads the first configuration file, and then manages the first Two configuration files;
  • the terminal When the order of the metadata of the first configuration file is after the remote management command of the second configuration file, the terminal first manages the second configuration file, and then downloads the first A configuration file.
  • the terminal downloads the first configuration file according to the metadata of the first configuration file; and the terminal manages the second configuration file according to the remote management command of the second configuration file, including:
  • the terminal When the order of the metadata of the first configuration file is before the remote management command of the second configuration file, the terminal first caches the metadata of the first configuration file, and After managing the second configuration file, downloading the first configuration file according to the metadata of the cached first configuration file;
  • the terminal When the order of the metadata of the first configuration file is after the remote management command of the second configuration file, the terminal first caches the remote management command of the second configuration file, and After downloading the first configuration file, the second configuration file is managed according to the remote management command of the cached second configuration file.
  • the terminal sends the first message to the remote management platform, including:
  • the terminal sends a first identifier to the remote management platform; the first identifier is used by the remote management platform to obtain metadata of the first configuration file and a remote management command of the second configuration file.
  • the remote management platform includes a first remote management platform and a second remote management platform;
  • the terminal sends the first identifier to the second remote management platform.
  • the terminal sends the first message to the remote management platform, including:
  • the EID and the management request identifier are used by the remote management platform to obtain the metadata of the first configuration file and the remote management command of the second configuration file.
  • the first message is sent after the terminal receives the download request command selected by the user;
  • the terminal Before the terminal downloads the first configuration file according to the metadata of the first configuration file, and the terminal manages the second configuration file according to the remote management command of the second configuration file, the terminal further includes:
  • the terminal selects metadata of a first configuration file that matches the download request instruction from metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files. Obtaining a remote management command of the metadata of the first configuration file and the second configuration file in the same set as the metadata of the first configuration file.
  • the terminal sends a request message to the remote management platform, including:
  • the terminal Before the terminal downloads the first configuration file according to the metadata of the first configuration file, and the terminal manages the second configuration file according to the remote management command of the second configuration file, the terminal further includes:
  • the terminal sends a request message to the remote management platform, including:
  • the terminal Before the terminal downloads the first configuration file according to the metadata of the first configuration file, and the management of the second configuration file according to the remote management command of the second configuration file, the terminal further includes:
  • the terminal selects metadata of a first configuration file that matches the download request instruction from metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files. And a remote management command of the second configuration file associated with the metadata of the first configuration file.
  • the application provides a method for managing a configuration file, where the method includes:
  • the remote management platform Receiving, by the remote management platform, the first message sent by the terminal, where the first message is used to request to download a configuration file or the first message is used to request to acquire all management commands corresponding to the EID of the terminal;
  • the remote management platform sends a second message to the terminal; the second message includes metadata of the first configuration file and a remote management command of the second configuration file; the second configuration file is already in the terminal The installed configuration file.
  • the remote management platform receives the first message sent by the terminal, including:
  • the remote management platform receives a first identifier sent by the terminal
  • the method further includes:
  • the remote management platform obtains the metadata of the first configuration file corresponding to the first identifier and the remote management command of the second configuration file according to the first identifier.
  • the remote management platform includes a first remote management platform and a second remote management platform;
  • the remote management platform receives the first identifier sent by the terminal, including:
  • the second remote management platform receives the first identifier sent by the terminal; the first identifier is one of the M identifiers corresponding to the EID of the terminal; and M is a positive integer.
  • the remote management platform receives the first message sent by the terminal, including:
  • the remote management platform receives the EID and the management request identifier of the terminal sent by the terminal;
  • the management request identifier is a download request identifier or all update identifiers;
  • the method further includes:
  • the remote management platform acquires the first configuration file corresponding to the EID of the terminal, creates metadata of the first configuration file, and acquires the metadata of the first configuration file.
  • a remote management command of the second configuration file is associated with the first configuration file;
  • the remote management platform acquires the first configuration file corresponding to the EID of the terminal, and the remote management command of the second configuration file corresponding to the EID of the terminal.
  • the remote management platform receives the first message sent by the terminal, including:
  • the remote management command of the metadata of the file and the one or more configuration files includes at least a set of metadata of the first configuration file and a remote management command of the second configuration file; or
  • the metadata of the one or more configuration files includes metadata of the first configuration file; and the remote management command of the one or more configuration files includes a remote management command of the second configuration file.
  • the application provides a terminal, where the terminal includes a function module, a sending module, a receiving module, and a processing module, where the sending module, the receiving module, and the processing module are configured to execute the method flow described in the first aspect.
  • the application provides a remote management platform, where the remote management platform includes the following functional modules: a sending module, a receiving module, and a processing module.
  • the sending module, the receiving module, and the processing module are configured to perform the second aspect. Method flow.
  • the application provides a terminal, where the terminal includes the following functional modules: a sending module, a receiving module, and a processing module; the sending module, the receiving module, and the processing module are configured to execute the method flow described in the third aspect.
  • the application provides a remote management platform, where the remote management platform includes the following functional modules: a sending module, a receiving module, and a processing module; the sending module, the receiving module, and the processing module are configured to perform the fourth aspect.
  • Method flow includes the following functional modules: a sending module, a receiving module, and a processing module; the sending module, the receiving module, and the processing module are configured to perform the fourth aspect.
  • the application provides a terminal, where the terminal includes:
  • a communication interface configured to send a first message to the remote management platform; and receive a second message sent by the remote management platform; the second message includes N management commands; the N management commands are associated management Command; the N management commands include a download command and a remote management command; N is an integer greater than one;
  • a processor configured to manage the configuration file according to the N management commands.
  • the processor is specifically configured to:
  • the terminal when the order of the download command is before the remote management command, the terminal first executes the download command, and then executes the remote management command;
  • the terminal When the order of the download command is after the remote management command in the second message, the terminal first executes the remote management command, and then executes the download command.
  • the processor is specifically configured to:
  • the terminal When the order of the download command is before the remote management command, the terminal first caches the download command, and after executing the remote management command, executes the cached download command. ;
  • the terminal when the order of the download command is after the remote management command, the terminal first caches the remote management command, and after performing the download command, performs the remote management of the cache. command.
  • the first message is sent after the terminal receives the management request command selected by the user;
  • the processor Before the processor manages the configuration file according to the N management commands, the processor is further configured to:
  • the processor is specifically configured to:
  • the terminal determines that the N management commands include the download command, and determines that the N management commands match the management request instruction;
  • the terminal determines that the N management commands include a remote management command, and after the download command is not included, determining that the N management commands match the management request instruction ;
  • the terminal determines that the N management commands match the management request instruction.
  • the processor determines that the remote management command and the download command are included in the N management commands, and determines a remote management command and location in the N management commands.
  • the management request instruction matches, and the download command of the N management commands does not match the management request instruction;
  • the processor is specifically configured to:
  • the processor is further configured to:
  • the terminal determines that the N management commands do not match the management request instruction, reporting, to the remote management platform, that the N management commands do not match the management request instruction.
  • the communication interface is specifically configured to:
  • the remote management platform includes a first remote management platform and a second remote management platform;
  • the communication interface is specifically configured to:
  • the first identifier is one of the M identifiers; and M is a positive integer.
  • the communication interface is further configured to:
  • the second identifier is sent to the remote management platform; the second identifier is an identifier of the M identifiers other than the first identifier.
  • the communication interface is specifically configured to:
  • K management commands corresponding to the EID of the terminal where the K management commands include at least one management command set formed by the N management commands.
  • the communication interface is specifically configured to:
  • the management request identifier is set by the terminal according to a management request instruction selected by a user;
  • the communication interface is specifically configured to:
  • the first message is sent after the terminal receives the management request command selected by the user;
  • the processor is specifically configured to:
  • the second message further includes an identifier corresponding to each of the K management commands, and the processor selects, from the K management commands, a first management command that matches the management request command, and the first a management command corresponding to the same management command, and managing the configuration file according to the first management command and the same management command as the first management command; or
  • the processor selects, from the K management commands, a first management command that matches the management request instruction and a management command associated with the first management command, and according to the first management command and the An administrative command management profile associated with the first management command.
  • the application provides a remote management platform, where the remote management platform includes: a communication interface and a processor; and the processor performs the communication interface:
  • N is an integer greater than 1.
  • the communication interface is specifically configured to:
  • the method further includes:
  • the remote management platform includes a first remote management platform and a second remote management platform.
  • the communication interface includes a communication interface of the first remote management platform and a communication interface of the second remote management platform;
  • the communication interface of the first remote management platform receives the EID of the terminal sent by the terminal;
  • the communication interface of the first remote management platform obtains M identifiers corresponding to the EID of the terminal, and sends the identifiers to the terminal;
  • the communication interface of the second remote management platform receives the first identifier sent by the terminal, where the first identifier is one of the M identifiers; and M is a positive integer.
  • the communication interface is specifically configured to:
  • the processor is specifically configured to: if the management request identifier is a download request identifier, acquire a first management command corresponding to the EID of the terminal, and obtain an EID corresponding to the terminal and the first management The management command associated with the command; if the management request identifier is an identifier of all management commands corresponding to the EID of the terminal, all management commands corresponding to the EID of the terminal are obtained.
  • the communication interface is specifically configured to: send the first management command and a management command associated with the first management command to the terminal.
  • the communication interface is specifically configured to:
  • the K management commands include at least one management command set formed by the N management commands; or,
  • the application provides a terminal, where the terminal includes:
  • a communication interface configured to send a first message to the remote management platform, where the first message is used to request to download a configuration file or the first message is used to request to acquire all management commands corresponding to the EID of the terminal,
  • a second configuration file is installed in the terminal; and receiving a second message sent by the remote management platform; the second message includes metadata of the first configuration file and a remote management command of the second configuration file;
  • a processor configured to download the first configuration file according to metadata of the first configuration file; and manage the second configuration file according to a remote management command of the second configuration file.
  • the processor is specifically configured to:
  • the terminal When the order of the metadata of the first configuration file is before the remote management command of the second configuration file, the terminal first downloads the first configuration file, and then manages the first Two configuration files;
  • the terminal When the order of the metadata of the first configuration file is after the remote management command of the second configuration file, the terminal first manages the second configuration file, and then downloads the first A configuration file.
  • the processor is specifically configured to:
  • the terminal When the order of the metadata of the first configuration file is before the remote management command of the second configuration file, the terminal first caches the metadata of the first configuration file, and After managing the second configuration file, downloading the first configuration file according to the metadata of the cached first configuration file;
  • the terminal When the order of the metadata of the first configuration file is after the remote management command of the second configuration file, the terminal first caches the remote management command of the second configuration file, and After downloading the first configuration file, the second configuration file is managed according to the remote management command of the cached second configuration file.
  • the communication interface is specifically configured to:
  • the first identifier is used by the remote management platform to obtain metadata of the first configuration file and a remote management command of the second configuration file.
  • the remote management platform includes a first remote management platform and a second remote management platform;
  • the communication interface is specifically configured to:
  • the communication interface is specifically configured to:
  • the management request identifier is an identifier of a download request identifier or an identifier of all management commands corresponding to an EID of the terminal; an EID of the terminal and the management The request identifies a remote management command for the remote management platform to obtain the metadata of the first configuration file and the second configuration file.
  • the first message is sent after the terminal receives the download request command selected by the user;
  • the communication interface is specifically configured to:
  • the remote management command of the metadata and the one or more configuration files includes at least a set of metadata of the first configuration file and a remote management command of the second configuration file;
  • the processor is specifically configured to:
  • the communication interface is specifically configured to:
  • the processor is specifically configured to:
  • the communication interface is specifically configured to:
  • the processor is specifically configured to:
  • the application provides a method for managing a configuration file, the method comprising: a communication interface and a processor; and the processor performs the following in conjunction with the communication interface:
  • the second message includes metadata of the first configuration file and a remote management command of the second configuration file; and the second configuration file is a configuration file that is installed in the terminal.
  • the communication interface is specifically configured to:
  • the processor is further configured to: before the communication interface sends the second message to the terminal:
  • the remote management platform includes a first remote management platform and a second remote management platform;
  • the communication interface includes a communication interface of the first remote management platform and a communication interface of the second remote management platform;
  • the communication interface of the first remote management platform receives the EID of the terminal sent by the terminal;
  • the communication interface of the second remote management platform receives the first identifier sent by the terminal; the first identifier is one of the M identifiers corresponding to the EID of the terminal; and M is a positive integer.
  • the communication interface is specifically configured to:
  • the processor is further configured to: before the communication interface sends the second message to the terminal:
  • the remote management platform acquires the first configuration file corresponding to the EID of the terminal, creates metadata of the first configuration file, and acquires the metadata of the first configuration file.
  • a remote management command of the second configuration file is associated with the first configuration file;
  • the remote management platform acquires the first configuration file corresponding to the EID of the terminal, and the first corresponding to the EID of the terminal. Remote management command for the second configuration file.
  • the communication interface is specifically configured to:
  • the metadata of the one or more configuration files includes metadata of the first configuration file; and the remote management command of the one or more configuration files includes a remote management command of the second configuration file.
  • the embodiment of the present application further provides a computer storage medium, where the software program stores a software program, and the software program can implement the configuration file management method provided by any one of the above designs when being read and executed by one or more processors. .
  • the embodiment of the present application further provides a communication system, which includes any terminal provided by any one of the foregoing designs.
  • the system may further include remote management of interacting with the terminal in the solution provided by the embodiment of the present application. platform.
  • the embodiment of the present application also provides a computer program product comprising instructions which, when run on a computer, cause the computer to perform the method described in the above aspects.
  • Figure 1a is a system architecture diagram applicable to the present application
  • Figure 1b is a specific system architecture diagram applicable to the present application.
  • FIG. 3 is a schematic flowchart of a remote management profile in the prior art
  • FIG. 4 is a schematic flowchart of a method for managing a configuration file provided by the present application.
  • FIG. 5 is a schematic diagram of a management process of a first configuration file provided in Embodiment 2 of the present application.
  • FIG. 6 is a schematic diagram of a management process of a second configuration file provided in Embodiment 2 of the present application.
  • FIG. 7 is a schematic diagram of a management process of a third configuration file provided in Embodiment 2 of the present application.
  • FIG. 8 is a schematic diagram of a management process of a configuration file provided in Embodiment 3 of the present application.
  • FIG. 9 is a schematic diagram of a management process of a configuration file provided in Embodiment 4 of the present application.
  • FIG. 10 is a schematic structural diagram of a terminal provided by the present application.
  • FIG. 11 is a schematic structural diagram of a remote management platform provided by the present application.
  • FIG. 13 is a schematic structural diagram of another remote management platform provided by the present application.
  • FIG. 1a is a system architecture diagram applicable to the present application.
  • the system architecture includes a mobile operator's remote management platform 101 and one or more terminals, such as terminal 102 shown in FIG. 1a.
  • the eUICC is integrated in the terminal 102, and can communicate with the remote management platform 101 through a network (for example, a wireless network), thereby implementing downloading and remote management of the configuration file.
  • a network for example, a wireless network
  • the terminal in FIG. 1a may include a local profile assistant (LPA), and the remote management platform 101 may include a subscription manager-data preparation (SM-DP+), subscription management-discovery.
  • LPA local profile assistant
  • SM-DP+ subscription manager-data preparation
  • SM-DS subscription manager-discovery service
  • FIG. 1b To more specifically describe the system architecture to which the present application applies, the following is described in conjunction with FIG. 1b.
  • FIG. 1b is a specific system architecture diagram applicable to the present application.
  • the system architecture includes SM-DP+, SM-DS, LPA, eUICC, mobile network operator (MNO), card merchant EUM, certificate issuer (CI), user. (User).
  • MNO mobile network operator
  • CI certificate issuer
  • User User
  • SM-DP+ is mainly responsible for profile generation, profile protection, profile storage, profile binding, profile sending, and remote profile management. It should be noted that in other possible system architectures, the SM-DP+ in FIG. 1b can be split into multiple platforms, such as SM-DP, subscription manager-secure routing (SM-SR). Etc. In this case, the SM-DP is responsible for profile generation, profile protection, profile storage, profile binding, etc., SM-SR is responsible for profile transmission, remote profile management, and the like.
  • SM-DP subscription manager-secure routing
  • the SM-DS is mainly responsible for receiving event registrations sent by the SM-DP+ and transmitting the events to the terminal.
  • the event may include a profile download event (ie: SM-DP+ has a profile waiting for the terminal to download) and a profile management event (ie: SM-DP+ has a profile management command waiting for the terminal to acquire).
  • the terminal includes an LPA.
  • the LPA may include a local discovery service (LDS), a local profile download (LPD), and a local user interface (LUI).
  • LDS is responsible for event query, that is, querying the event to the SM-DS;
  • the LPD is responsible for downloading the profile, that is, the LPD downloads the profile from the SM-DP+ to the LPD through a secure connection such as a Hyper Text Transport Protocol (HTTP), and then
  • HTTP Hyper Text Transport Protocol
  • the downloaded profile is sent to the eUICC.
  • the downloaded profile can be sent to the eUICC through the local application protocol data unit (APDU) command.
  • APDU application protocol data unit
  • the LPD can also obtain the remote profile management from the SM-DP+.
  • RPM Remote profile management
  • ReM remote eUICC management
  • the command is passed to the eUICC to implement remote management of the eUICC and the profile
  • the LUI provides interaction logic and interface with the user, and the user can pass
  • the LUI performs local management of the profile, such as downloading a new profile, activating a profile, activating a profile, deleting a profile, updating a profile, or updating all profiles.
  • FIG. 2 is a schematic flowchart of downloading a profile in the prior art. As shown in Figure 2, the process includes:
  • the LPA obtains the address of the SM-DP+.
  • the LPA may also obtain an event identifier or an activation code token, where the event identifier and the activation code token may be collectively referred to as a matching identifier ( Matching identifier).
  • step 202 the LPA and the SM-DP+ perform mutual authentication.
  • the LPA sends the eUICC identifier (eIDCC identifier, EID) to the SM-DP+. If the LPA obtains the matching identifier in step 201, the LPA will The matching identifier is sent to SM-DP+.
  • eUICC identifier eIDCC identifier, EID
  • Step 203 After the mutual authentication is passed, the SM-DP+ searches for the corresponding profile according to the EID or the matching identifier, and checks the eUICC information and the terminal information to determine whether the profile can be downloaded. If the eUICC and the terminal cannot download the profile, the SM -DP+ notifies the operator; if it can be downloaded, SM-DP+ creates profile metadata, creates smdpSigned2, and calculates the signature using SM-DP+ private key SK.DPpb.ECDSA for the profile binding certificate, and Profile metadata, as well as signatures, etc. are sent to the LPA.
  • the SM-DP+ searches for the corresponding profile according to the EID or the matching identifier, and checks the eUICC information and the terminal information to determine whether the profile can be downloaded. If the eUICC and the terminal cannot download the profile, the SM -DP+ notifies the operator; if it can be downloaded, SM-DP+ creates profile metadata, creates smdp
  • Step 204 The LPA checks the profile metadata, and determines whether the policy rules are included. If yes, it is determined according to the RAT (Rules Authorisation Table) whether to allow downloading the profile including the policy rules; optionally, the user can also obtain the confirmation that the user installs the profile; If the download is allowed according to the RAT and the user agrees to download, the flow in FIG. 2 continues.
  • RAT Rules Authorisation Table
  • Step 205 The LPA sends a prepare download command to the eUICC, where the request carries information such as a certificate and a signature of the SM-DP+.
  • Step 206 The eUICC verifies the SM-DP+ certificate and the signature. After the verification is passed, the eUICC generates a temporary key pair, generates eucicSigned2, generates an eUICC signature (euiccSignature2) by using the eUICC private key, and sends the eUICC signature and the like to the LPA.
  • eUICCSignature2 an eUICC signature
  • step 207 the LPA sends information such as an eUICC signature to the SM-DP+.
  • Step 208 After verifying the eUICC signature, the SM-DP+ determines whether the confirmation code is needed. If the confirmation code is needed, it is verified whether the confirmation code input by the user is correct. After the confirmation code input by the user is correct, the SM-DP+ generates a temporary key pair. The session key is calculated, and the profile is encrypted to generate a profile to be downloaded, that is, a bound profile package (BPP), and the profile to be downloaded is sent to the LPA.
  • BPP bound profile package
  • Step 209 The LPA verifies that the metadata in the profile has changed. If the user confirmation is not obtained in step 204, the user is prompted to confirm, and after the user confirms, the BPP is sent to the eUICC for installation.
  • the LPA configuration file can be notified that the installation has been completed.
  • the LPA can further notify the SM-DP+ configuration file that the installation is complete.
  • FIG. 3 is a schematic flowchart of a remote management configuration file in the prior art. As shown in Figure 3, the process includes:
  • step 301 the LPA obtains the address of the SM-DP+, and optionally, the event identifier.
  • step 302 the LPA and the SM-DP+ perform mutual authentication.
  • the LPA sends the EID (or event identifier) to the SM-DP+.
  • Step 303 The SM-DP+ search remote management command matching the EID or the event identifier may be a command packet composed of multiple remote management commands; the SM-DP+ notifies the mobile network operator to perform remote management (if there is an error in the foregoing steps) , to inform the mobile network operator that there is an error); SM-DP+ creates smdpSigned3, including transaction ID, remote management command packet, and private key SK.DPauth.ECDSA for calculating smdpSigned3 using SM-DP+ certificate for authentication with eUICC Sign and send smdpSigned3 and the signature to LPA.
  • Step 304 the LPA determines the policy rules in the RPM, and obtains the user's consent to execute the remote management command. If the user confirms the remote management, the process of FIG. 3 is continued.
  • step 305 the LPA sends the RPM command packet to the eUICC.
  • Step 306 the eUICC verifies the signature of the SM-DP+, and after the verification is passed, sequentially executes the commands in the remote management command packet.
  • the LPA remote management command can be notified that the execution has been completed, and the LPA can further notify the SM-DP+ that the command has been executed.
  • the download and remote management profiles are separate processes.
  • the download and remote management profiles need to be combined, for example, the old profile needs to be deleted before downloading the new profile, or the profile needs to be activated after downloading the new profile, if The technical processes are executed separately.
  • it is necessary to obtain multiple user consents download and remote management separately obtain user consent).
  • downloading profiles and RPMs are performed separately, it is impossible to ensure that they are executed in the order specified, which may result in downloading profiles or Remote management command execution failed.
  • the present application provides a management method for a configuration file, which is used to combine the downloading of the configuration file and the remote management, thereby simplifying network interaction and improving the user experience.
  • the terminal in the present application also referred to as a User Equipment (UE) is a device that provides voice and/or data connectivity to a user, for example, a handheld device with a wireless connection function. , in-vehicle equipment, etc.
  • UE User Equipment
  • Common terminals include: mobile phones, tablets, laptops, PDAs, mobile internet devices (MIDs), wearable devices, and the like.
  • FIG. 4 is a schematic flowchart of a method for managing a configuration file provided by the present application. As shown in FIG. 4, the method includes:
  • Step 401 The terminal sends a first message to the remote management platform.
  • Step 402 The remote management platform receives the first message sent by the terminal, and sends a second message to the terminal.
  • the second message includes N management commands.
  • the N management commands include a download command and a remote management command. Is an integer greater than 1;
  • Step 403 The terminal receives the second message, and manages the configuration file according to the N management commands.
  • the terminal can obtain a plurality of management commands associated with each other by performing a communication interaction with the remote management platform (that is, sending the first message to the remote management platform and receiving the second message sent by the remote management platform).
  • the interrelated management commands include download commands and remote management commands, which enable the combination of downloading and remote management of configuration files, simplifying network interaction and improving user experience.
  • the first message may be sent by the terminal after receiving the management request command selected by the user.
  • the user-selected management request instruction may be any one of a download request instruction, a remote management request instruction, and an update all request instruction.
  • the download request instruction is used to request to download a profile; the remote management request instruction is used to request an instruction to update a profile; all update request instructions are used to request to acquire all management commands corresponding to the EID of the terminal; all management commands corresponding to the EID of the terminal It may include updating all profiles installed in the terminal, or it may include downloading profiles and updating all profiles installed in the terminal.
  • the first message sent by the terminal to the remote management platform may be referred to as a download request message (corresponding to a case where the management request instruction is a download request instruction), a remote management request message (corresponding to a case where the management request instruction is a remote management request instruction) or All update request messages (corresponding to the case where the management request instruction is all update request instructions) are not limited.
  • the first message may be an authentication client request, which is not limited.
  • the management command may be a download command, the download command is used to instruct the terminal to download the configuration file, and the download command may include metadata of the configuration file to be downloaded; the management command may also refer to a remote management command, and the remote management command indicates The terminal remotely manages the configuration file, and the remote management command may include remote management commands and the like. Therefore, the N management commands sent by the remote management platform can include both the download command and the remote management command, and then the terminal is based on The download command downloads the configuration file related to the download command and manages the configuration file related to the remote management command according to the remote management command.
  • the N management commands may be interrelated management commands, and the mutual association may be embodied in various forms, for example, having the same ICCID, or having the same profile owner identifier.
  • the N management commands include a download command of the first configuration file and a remote management command of the second configuration file
  • the association between the download command of the first configuration file and the remote management command of the second configuration file may refer to
  • the download schedule of one configuration file and the remote management command of the second configuration file are scheduled to correspond to the same identifier (event identifier or matching identifier), that is, due to the download schedule of the first profile and the remote management command of the second profile.
  • the download command of the subsequently generated first configuration file and the remote management command of the second configuration file are associated with each other.
  • the association between the download command of the first configuration file and the remote management command of the second configuration file may also mean that the download command of the first configuration file and the remote management command of the second configuration file have the same ICCID.
  • the association between the download command of the first configuration file and the remote management command of the second configuration file may also mean that the download command of the first configuration file and the remote management command of the second configuration file have the same profile owner (profile) Owner) identification.
  • the remote management commands included in the N management commands are not limited to be from the same owner. In some possible cases, the N management commands may also include from different profile owners (profile owner). Remote management commands.
  • the present application specifically provides five possible implementation manners, which are respectively introduced based on the system architecture shown in FIG. 1a.
  • the mobile network operator may perform a profile download reservation and an RPM reservation to the remote management platform, and if the profile download and the remote management are associated operations, the mobile network operation
  • the merchant sets the same identifier (event identifier or matching identifier) for the profile download reservation and the remote management command.
  • the terminal receives a management request instruction of the user.
  • the terminal sends the EID of the terminal to the remote management platform.
  • the remote management platform receives the EID of the terminal, obtains M identifiers corresponding to the EID of the terminal, and sends the M identifiers to the terminal;
  • A4 The terminal receives the M identifiers corresponding to the EIDs of the terminals sent by the remote management platform, and sends the first identifier to the remote management platform; the first identifier is one of the M identifiers; M is a positive integer;
  • the remote management platform obtains the N management commands corresponding to the first identifier, and sends the N management commands to the terminal.
  • the N management commands corresponding to the first identifier may include the download command corresponding to the first identifier and the first identifier.
  • the remote management command, the download command corresponding to the first identifier may specifically be the download command of the configuration file generated according to the configuration file corresponding to the first identifier;
  • the terminal After the terminal determines that the N management commands are matched with the management request command, the terminal manages the configuration file according to the N management commands; if the terminal determines that the N management commands do not match the management request command, And the terminal reports to the remote management platform that the N management commands do not match the management request instruction.
  • the terminal determines that the N management commands are matched with the management request instruction, and specifically includes: if the management request instruction is a download request instruction, the terminal determines that the N management commands include the download command Determining that the N management commands are matched with the management request instruction; if the management request instruction is a remote management request instruction, The terminal determines that the N management commands include a remote management command, and after the download command is not included, determining that the N management commands match the management request instruction; if the management request instruction is all updates (update All) requesting the instruction, the terminal may directly determine that the N management commands match the management request instruction.
  • the terminal may directly determine the N management commands and the management request. The command does not match; or the terminal may determine that the remote management command of the N management commands matches the management request instruction, and the download command of the N management commands does not match the management request instruction, such that The terminal may execute a remote management command among the N management commands, and report to the remote management platform that the download command of the N management commands does not match the management request instruction.
  • the terminal may refer to the first identifier for processing any one of the identifiers.
  • the terminal manages the configuration file according to the N management commands
  • the user may confirm whether to continue to acquire the management command and receive the user's first configuration file.
  • the second identifier is sent to the remote management platform, and the second identifier is an identifier that is not processed in the M identifiers.
  • the N management commands are related management commands, and the mutual associations are specifically represented by the N management commands corresponding to the same identifier (event identifier or matching identifier).
  • the terminal receives a management request instruction of the user, where the management request instruction includes a management request identifier.
  • the terminal sends the EID of the terminal and the management request identifier to the remote management platform.
  • a method may be: the remote management platform obtains K management commands corresponding to the EID of the terminal according to the EID of the terminal, and selects and manages the management request from the K management commands according to the management request identifier.
  • the first management command that matches the command and the management command that is associated with the first management command sends the selected N management commands (that is, the first management command and the management command associated with the first management command) to the terminal;
  • the other method may be: if the management request identifier is a download request identifier, the remote management platform acquires a first management command corresponding to the EID of the terminal, and acquires an EID corresponding to the terminal and the The management command associated with the first management command; for example, the first management command is a download command of the first configuration file, and the management command associated with the first management command is a remote management command of the second configuration file, and the remote management platform first Obtaining a first configuration file corresponding to the terminal EID, creating metadata of the first configuration file, and acquiring a remote management command of the second configuration file corresponding to the EID of the terminal, and the remote configuration command of the second configuration file and the first configuration file Corresponding (specifically, the remote management command reservation of the second configuration file and the download reservation of the first configuration file correspond to the same identifier). If the management request is identified as all update identifiers, the remote management platform acquires all management commands corresponding to the EID of the terminal.
  • the terminal manages the configuration file according to the N management commands.
  • the terminal receives a management request instruction of the user.
  • the terminal sends the EID of the terminal to the remote management platform.
  • the remote management platform after receiving the EID of the terminal, the remote management platform obtains K management commands corresponding to the EID of the terminal; the remote management platform combines the management commands associated with each other in the K management commands into one management command set, and Send the combined K management commands to the terminal.
  • the terminal may select a first management command that matches the management request command from the K management commands, thereby obtaining the first management command and being in the same management command set as the first management command.
  • the management command and manages the configuration file according to the obtained N management commands, that is, the first management command and the management command in the same set as the first management command.
  • the terminal receives a management request instruction of the user.
  • the terminal sends the EID of the terminal to the remote management platform.
  • the remote management platform After receiving the EID of the terminal, the remote management platform obtains K management commands corresponding to the EID of the terminal; the remote management platform sets the same group ID (group ID) for the management commands associated with each other in the K management commands. And sending the K management commands and the corresponding group identifiers to the terminal, where the group identifiers may be the same as the matching identifiers.
  • the terminal may select a first management command that matches the management request command from the K management commands, thereby obtaining the first management command and the same management command as the group identifier of the first management command. And managing the configuration file according to the obtained N management commands, that is, the same management command as the first management command and the group identifier of the first management command.
  • the terminal receives a management request instruction of the user.
  • the terminal sends the EID of the terminal to the remote management platform.
  • the remote management platform after receiving the EID of the terminal, the remote management platform obtains K management commands corresponding to the EID of the terminal, and sends K management commands to the terminal;
  • the terminal After receiving the K management commands, the terminal selects, from the K management commands, a first management command that matches the management request command and a management command associated with the first management command, and according to the selected N managements.
  • the command ie, the first management command and the management command associated with the first management command
  • the terminal can determine whether the two management commands are associated in multiple manners, for example, whether the two management commands include the same integrated circuit card identity (ICCID), or whether the same profile owner is included. The identity of the profile owner, or whether one of the administrative commands depends on the previous execution of another administrative command.
  • ICCID integrated circuit card identity
  • the terminal when the terminal manages the configuration file according to the N management commands, the terminal may execute N management commands in the order of N management commands in the second message.
  • the terminal when the order of the download command is before the remote management command in the second message, the terminal first executes the download command, and then executes the remote management command, for example, the second message includes downloading the first configuration file (download command) And activating the first configuration file (remote management command), the terminal may first download the first configuration file and then activate the first configuration file; and in the second message, the order of the download command is in the remote management command Thereafter, the terminal first executes a remote management command and then executes a download command.
  • the N management commands may include deactivating and deleting another configuration file and downloading the first configuration file.
  • the terminal executes N management commands in the order of N management commands in the second message, You may first perform deactivation and delete another configuration file (remote management command), resulting in no network connection to download the first configuration file (download command), so the terminal can choose to download the first configuration file before performing deactivation. And delete another configuration file. That is, the terminal may also determine the order in which the N management commands are executed according to actual conditions.
  • the terminal when the order of downloading commands is before the remote management command in the second message, the terminal first caches the download command and executes After the remote management command, the cached download command is executed; when the order of the download command is after the remote management command in the second message, the terminal first caches the remote management command, and after executing the download command, executes Cached remote management commands.
  • the message format of the second message can be various, and a possible example is given below:
  • the order of the download command is before the remote management command (rpm).
  • the download command can also be located after the remote management command.
  • the second message includes multiple management commands in the same management command set (comandSet), and an example of the management command set is given below:
  • the management command set includes a download command (profileMetaData) and a remote management command (rpm).
  • Embodiment 1 the method flow described in Embodiment 1 will be described in detail based on the system architecture shown in FIG. 1b.
  • FIG. 5 is a schematic diagram of a management process of a first configuration file provided in Embodiment 2 of the present application, corresponding to the first possible implementation manner in Embodiment 1.
  • the mobile network operator may perform profile download scheduling and RPM reservation to the remote management platform SM-DP+. If the profile download and the RPM are associated operations, the mobile network operator sets the profile download schedule and the RPM subscription setting to be the same. Event ID (or match ID). SM-DP+ performs event registration on SM-DS.
  • the specific process includes:
  • step 501 the user selects a download profile (update profile), or a remote management request profile (update profile), or all update request commands (update all) through the LPA.
  • Step 502 The LPA and the SM-DS (ie, the first remote management platform) perform mutual authentication. During the authentication process, the LPA sends the EID of the terminal to the SM-DS.
  • the two-way authentication process is the same as the existing process.
  • Step 503 After the authentication is passed, the SM-DS searches for all events corresponding to the EID of the terminal according to the EID of the terminal (set to M events), and sets an event identifier of the M events and an SM-DP+ corresponding to each event identifier (ie, The address of the second remote management platform is sent to the LPA.
  • Step 504 The LPA receives M event identifiers corresponding to the EIDs of the terminals sent by the SM-DS, and performs bidirectional authentication for each event, LPA and SM-DP+. In the two-way authentication process, the LPA sends the event identifier of each event to The event identifies the corresponding SM-DP+.
  • the first event identifier is used as an example in the process.
  • the first event identifier is an event identifier in the M event identifiers.
  • Step 505 The SM-DP+ searches for the download command and the remote management command corresponding to the first event identifier according to the first event identifier, constructs a data structure such as profile metadata, smdpSigned2, smdpSignature2, and constructs a data structure such as smdpSigned3, smdpSignature3, and the The relevant data corresponding to the first event identifier is sent to the LPA.
  • a data structure such as profile metadata, smdpSigned2, smdpSignature2
  • a data structure such as smdpSigned3, smdpSignature3
  • the LPA verifies whether the received data matches the management request command selected by the user locally.
  • verification methods For example, if the user selects a download request command, it determines whether the received data contains at least the data structure of the profile metadata, and if so, it is judged to be a match. Otherwise, it is judged that the received data does not match the management request command selected by the user; for example, 2, the user selects a remote management command (updates a profile), and determines whether the received data is a remote management command and is in a remote management command.
  • the ICCID corresponds to the ICCID of the profile selected by the user, and if so, it is determined to be a match; otherwise, it is determined that the received data does not match the management request command selected by the user; for example, 3, the user selects all update request commands, if LPA This function can process any command, so no judgment is needed. Otherwise, according to the implementation of the LPA, it may be judged whether the received data is only a remote management command, and if so, it is judged as a match, otherwise, it is judged as a mismatch.
  • the LPA sends a message that the operation does not match or the ICCID does not match to the SM-DP+.
  • the message may carry a mismatched ICCID and a specific operation type.
  • the SM-DP+ Keep mismatched events so that LPA gets it next time.
  • the LPA obtains the user's consent to the received plurality of download and/or remote management commands. For example, if the user selects a download request instruction, the received data is to deactivate and delete the current other profile, and download a new profile, the LPA prompts the user whether to agree to activate and delete the current other profile and download The new profile, if the user agrees, the LPA may further determine the execution order according to the received data. For details, refer to the content of the execution order of the N management commands described in the first embodiment, and details are not described herein again.
  • the remote management platform can send the associated management commands to the terminal together, and the terminal can uniformly obtain the user's consent and perform operations in a reasonable order, thereby effectively avoiding the user's multiple commands.
  • the second time agreed, and the number of interactions between the terminal and the network was reduced.
  • FIG. 6 is a schematic diagram of a management process of a second configuration file provided in Embodiment 2 of the present application, which corresponds to a second possible implementation manner in Embodiment 1.
  • the SM-DS is not used in FIG. 6 with respect to the management flow of the first profile shown in FIG. 5, and the LPA sends the user-selected management to the SM-DP+ in the two-way authentication process of the LPA and the SM-DP+.
  • the request identifier (specifically, the type of operation selected by the user) is embodied in steps 502 and 503. A detailed description will be given below.
  • the management request identifier is set according to the management request command selected by the user. If the management request command selected by the user is a download request command, the management request identifier is a download request identifier; if the management request command selected by the user is a remote Management request instruction, the management request identifier is a remote management request identifier (at this time, the LPA also needs to send the corresponding ICCID to the SM-DP+); if the management request command selected by the user is all the profiles installed by the update terminal in all the update instructions, The management request identifier is a remote management request identifier (in this case, the LPA may not need to send the corresponding ICCID to the SM-DP+); if the management request command selected by the user is the download profile in all the update instructions and all the profiles installed in the update terminal, The management request identifier is all update identifiers (specifically, may be an indication of all).
  • step 601 the user selects a download profile (update profile), or a remote management request profile (update profile), or all update request commands (update all) through the LPA.
  • Step 602 In the two-way authentication process, the LPA sends an EID and a management request identifier to the SM-DP+. If the user selects the add profile, the LPA sends a download request identifier. If the user selects the update profile, the LPA sends the remote management request identifier. When the user selects update all, the LPA sends an indication of the remote management request identifier or all.
  • the SM-DP+ obtains a download command and a remote management command according to the EID and the management request identifier. For example, the user selects the add profile, and the SM-DP+ determines whether there is a profile download order corresponding to the EID according to the EID and the download request identifier. If yes, it determines whether there is an event identifier related to the download reservation, if any And determining whether there is an RPM command having the same event identifier, and if so, as a download management scheduled association command, and generating a corresponding download command according to the download schedule, the generated download command and the download scheduled association management command (RPM) ) is sent to the LPA.
  • RPM download scheduled association management command
  • step 604 the LPA receives the data sent by the SM-DP+ that matches the management request command selected by the user, and performs downloading and remote management.
  • the LPA receives the data sent by the SM-DP+ that matches the management request command selected by the user, and performs downloading and remote management.
  • the terminal may not use the SM-DS, and the terminal sends the operation type selected by the user to the remote management platform, so that the remote management platform can select and match the operation type. Management commands are sent to the terminal. In this way, the terminal can directly execute the received management command without determining whether the received management command matches the operation type selected by the user, thereby effectively reducing the processing load of the terminal.
  • FIG. 7 is a schematic diagram of a management process of a third configuration file provided in Embodiment 2 of the present application, corresponding to a third possible implementation manner in Embodiment 1.
  • step 701 the user selects a download profile (update profile), or a remote management request profile (update profile), or all update request commands (update all) through the LPA.
  • Step 702 In the two-way authentication process, the LPA sends the EID of the terminal to the SM-DP+.
  • Step 703 The SM-DP+ queries all download commands and remote management commands corresponding to the EID of the terminal, and searches for a request for the same event identifier. For requests with the same event ID, SM-DP+ builds a collection of management commands, The set of control commands includes data related to the request with the same event identifier; for a separate request, the data structure of each request can be directly sent, that is, SM-DP+ sends the management command set and the separately requested data to the LPA.
  • Step 704 the LPA verifies whether there is a download command or a remote management command in each management command set that matches the management request command selected by the user, or verifies whether each individual download command or remote management command matches the management request command selected by the user. If there is a request in the management command set that matches the management request command selected by the user, the LPA executes the other requests in the data set as association requests.
  • the terminal may not use the SM-DS with respect to the first and second types, and the terminal does not need to report the type of operation selected by the user.
  • the second embodiment of the present application provides a management flow of the fourth configuration file, and corresponds to the fourth possible implementation manner in the first embodiment.
  • the management process of the fourth configuration file has the same technical effect as the third method described above.
  • the difference is that the SM-DP+ assigns the same group ID to the interrelated request, and the group identifier can be an event identifier.
  • the SM-DP+ sequentially constructs the data structure of the download command or the remote management command, and assigns the same group identifier to the interrelated request in the data structure, and sends the same group identifier to the LPA.
  • the LPA verifies whether there is a download command or a remote management command in the received management command that matches the management request command selected by the user, and if so, acquires a download command or a remote match with the management request command selected by the user. Manage the group ID of the command and execute other requests with the same group ID as the associated request for the matching request.
  • the second embodiment of the present application provides a management flow of the fifth configuration file, and corresponds to the fifth possible implementation manner in the first embodiment.
  • the difference from the above several methods is that SM-DP+ sends all management commands corresponding to the EID of the terminal to the LPA, and the LPA determines which requests are executed. Specifically, the LPA determines whether there is a management request command selected by the user. The request, if any, is further determined whether there is a request for the merge execution (the inter-related request can be combined and executed).
  • the fifth possible implementation manner does not need to modify the interface of the LPA and the network, the flexibility of the terminal implementation can be effectively improved.
  • the management request command selected by the user may be a download request instruction, a remote management request instruction, or a full update request instruction.
  • the management request instruction selected by the user is taken as an example of the download request instruction. The management method of the configuration file described in the first embodiment and the second embodiment will be described.
  • FIG. 8 is a schematic diagram of a management process of a configuration file in Embodiment 3 of the present application. As shown in Figure 8, the process includes:
  • Step 801 The terminal sends a first message to the remote management platform, where the first message is used to request to download the first configuration file, and the second configuration file is already installed in the terminal.
  • Step 802 The remote management platform receives the first message, and sends a second message to the terminal.
  • the second message includes metadata of the first configuration file and a remote management command of the second configuration file.
  • Step 803 The terminal receives the second message, and downloads the first configuration file according to the metadata of the first configuration file, and manages the second configuration file according to the remote management command of the second configuration file.
  • the foregoing steps 801 to 803 can be applied to various scenarios.
  • One exemplary scenario is that the user wants to download the first configuration file, and the second configuration file is already installed in the terminal, and the first configuration file includes the configuration that cannot be deactivated.
  • the second configuration file needs to be remotely managed before the first configuration file is successfully downloaded.
  • the terminal needs to mention The user first selects the remote management request command, and after remotely managing the second configuration file, the download request command of the first configuration file may be downloaded.
  • the remote management platform sends the metadata of the first configuration file and the remote management command of the second configuration file to the terminal by using the second message, so that the terminal can select the second configuration file according to the second configuration file.
  • the remote management command manages the second configuration file, and then downloads the first configuration file according to the metadata of the first configuration file, thereby effectively saving network interaction and improving user experience.
  • the first message sent by the terminal to the remote management platform may also be referred to as a download request message.
  • the first message may be an authentication client request, which is not limited.
  • the foregoing process is also applicable to a scenario in which the first message is used to request to acquire all management commands corresponding to the EID of the terminal (in this case, the management request command selected by the user is all update request instructions).
  • the order in which the terminal downloads the first configuration file and manages the second configuration file may be performed according to the following manner: in the second message, the order of the metadata of the first configuration file is in the second configuration file Before the remote management command, the terminal first downloads the first configuration file, and then manages the second configuration file; when the second message, the order of the metadata of the first configuration file is in the After the remote management command of the second configuration file, the terminal first manages the second configuration file, and then downloads the first configuration file. That is, the terminal performs downloading of the first configuration file and managing the second configuration file in the order of the metadata of the first configuration file and the remote management command of the second configuration file in the second message.
  • remotely managing the second configuration file refers to deactivating and deleting the second configuration file.
  • the terminal follows the metadata and the second configuration of the first configuration file in the second message. If the remote management commands of the file are executed in sequence, the second configuration file may be deactivated and deleted (remote management of the second configuration file), resulting in no network connection to download the first configuration file. Therefore, the terminal may select to download the first configuration first. A configuration file is then executed to deactivate and delete the second configuration file.
  • the order in which the terminal downloads the first configuration file and manages the second configuration file may also be performed according to the following manner: in the second message, the order of the metadata of the first configuration file is in the second configuration Before the remote management command of the file, the terminal first caches the metadata of the first configuration file, and after managing the second configuration file, downloads the first configuration file according to the metadata of the cached first configuration file;
  • the terminal first caches the remote management command of the second configuration file After downloading the first configuration file, the second configuration file is managed according to the remote management command of the cached second configuration file.
  • the terminal may confirm to the user whether to agree to download the first configuration file and remotely manage the second configuration file, specifically, the terminal may download the first When configuring the file, confirm to the user whether to agree to download the first configuration file, and when remotely managing the second configuration file, confirm to the user whether to agree to remotely manage the second configuration file, that is, the terminal separately confirms to the user whether to agree to download the first configuration file.
  • Profile and remote management of the second profile In the application, in order to improve the user experience, the terminal may confirm to the user whether to agree to download the first configuration file and remotely manage the second configuration file, and obtain the user, before downloading the first configuration file and remotely managing the second configuration file.
  • the terminal After the consent is obtained, the first configuration file is downloaded and the second configuration file is remotely managed according to the corresponding execution sequence.
  • the terminal only needs to obtain the user's first consent, and can obtain the user's multiple consents in the prior art. Effectively improve the user experience and save interaction costs.
  • the terminal downloads the first configuration file according to the metadata of the first configuration file, which may be: the terminal verifies the metadata of the first configuration file, and after the verification is passed, downloads the first configuration file.
  • the specific process can be: terminal check Whether the policy of the configuration file includes the policy rules. If yes, the RAT determines whether the first configuration file including the policy rules is allowed to be downloaded. If allowed, the terminal can execute the process shown in FIG. 2 in the prior art. Download the first configuration file, which will not be described here.
  • FIG. 9 is a schematic diagram of a management process of a configuration file provided in Embodiment 4 of the present application.
  • the mobile network operator may perform profile download scheduling and RPM reservation to the remote management platform SM-DP+. If the profile download and the RPM are associated operations, the mobile network operator sets the profile download schedule and the RPM subscription setting to be the same. Event ID (or match ID).
  • SM-DP+ performs event registration on SM-DS.
  • the specific process includes:
  • step 901 the user selects a download request instruction through the LPA.
  • Step 902 The LPA and the SM-DS perform mutual authentication. During the authentication process, the LPA sends the EID of the terminal to the SM-DS.
  • Step 903 After the authentication is passed, the SM-DS searches for an event corresponding to the EID of the terminal according to the EID of the terminal, where the event corresponding to the EID of the terminal includes downloading the first configuration file and remotely managing the second configuration file, because the first configuration file is downloaded. And the remote management second configuration file is associated operation, and therefore has the same event identifier. At this time, the SM-DS can send the event identifier and the address of the SM-DP+ to the LPA.
  • Step 904 The LPA receives the event identifier sent by the SM-DS and performs mutual authentication with the SM-DP+. In the two-way authentication process, the LPA sends the event identifier to the SM-DP+.
  • Step 905 The SM-DP+ searches for the download command and the remote management command corresponding to the event identifier according to the received event identifier, constructs a data structure such as profile metadata, smdpSigned2, smdpSignature2, and constructs a data structure such as smdpSigned3 and smdpSignature3, and constructs the data structure.
  • the relevant data corresponding to the event identifier is sent to the LPA.
  • Step 906 The LPA checks that the received data includes profile metadata, and determines that the received data matches the download request command selected by the user locally, and may continue to perform step 907.
  • step 907 the LPA confirms to the user whether to agree to download the first configuration file and remotely manage the second configuration file, and after obtaining the user's consent, proceeds to step 908.
  • step 908 the LPA determines that the second configuration file is remotely managed, and then downloads the first configuration file; the LPA sends the remote management command packet, such as smdpSigned3 and smdpSignature3, to the eUICC.
  • the remote management command packet such as smdpSigned3 and smdpSignature3, to the eUICC.
  • step 909 the eUICC verifies the smdpSignature3 of the SM-DP+, and after the verification is passed, sequentially executes the command in the remote management command packet. After the execution is completed, the eUICC sends a first notification message to the LPA to notify the LPA remote management that the second configuration file has been executed. Finished.
  • Step 910 After receiving the first notification message sent by the eUICC, the LPA checks the metadata of the first configuration file to determine whether the policy rules are included. If yes, the RAT determines whether to allow the download to include the policy rules. The first configuration file, and after determining the permission, determines whether the user is required to input the confirmation code. If the confirmation code is required, the confirmation code input by the user is obtained, and then step 911 is performed. In the process, the LPA may also obtain the consent of the user to download the first configuration file.
  • step 911 the LPA sends a prepare download command to the eUICC, where the request carries information such as a certificate and a signature of the SM-DP+.
  • Step 912 the eUICC verifies the certificate and signature of the SM-DP+. After the verification is passed, the eUICC generates a temporary key pair, eucicSigned2, and generates an eUICC signature (euiccSignature2) using the private key of the eUICC, and the public key in the temporary key pair, The eUICC certificate, eUICC signature, and the like are sent to the LPA.
  • the LPA sends information such as a public key, an eUIC certificate, and an eUICC signature in the temporary key pair to the SM-DP+.
  • Step 914 After verifying the eUICC signature, the SM-DP+ determines whether the confirmation code is needed. If the confirmation code is needed, it is verified whether the confirmation code input by the user is correct. After the confirmation code input by the user is correct, the SM-DP+ generates a temporary key pair. The session key is calculated, the first configuration file is encrypted to generate a BPP, and the BPP is sent to the LPA.
  • step 915 the LPA verifies whether the metadata of the first configuration file in the BPP is changed, prompts the user to confirm, and the BPP is sent to the eUICC for installation after the user confirms.
  • Step 916 After the eUICC is installed, send a second notification message to the LPA to notify the LPA that the installation of the first configuration file has been completed.
  • Step 917 After receiving the second notification message sent by the eUICC, the LPA sends the first notification message and the second notification message to the SM-DP+.
  • step 918 the SM-DP+ notifies the mobile network operator to execute the result.
  • Step 919 The LPA removes the first notification message and the second notification message sent by the eUICC.
  • step numbers are merely exemplary representations of the execution order.
  • the order of execution is not specifically limited in the present application.
  • step 918 and step 919 may also be performed simultaneously.
  • the present application further provides a terminal and a remote management platform.
  • the specific implementation of the terminal and the remote management platform may refer to the foregoing method flow.
  • the terminal includes the following functional modules: a sending module 1001, a receiving module 1002, and a processing module 1003; and a sending module 1001, a receiving module 1002, and a processing module 1003.
  • the method flow of the terminal side described in the above-mentioned first to fourth embodiments is performed.
  • FIG. 11 is a schematic structural diagram of a remote management platform according to the present application.
  • the remote management platform includes the following functional modules: a sending module 1101, a receiving module 1102, and a processing module 1103; a sending module 1101, a receiving module 1102, and The processing module 1103 is configured to execute the method flow of the remote management platform side described in Embodiments 1 to 4 above.
  • FIG. 12 is a schematic structural diagram of another terminal provided by the present application. As shown in FIG. 12, the terminal 1200 includes: a communication interface 1201, a processor 1202, a memory 1203, and a bus system 1204;
  • the memory 1203 is configured to store a program.
  • the program can include program code, the program code including computer operating instructions.
  • the memory 1203 may be a random access memory (RAM) or a non-volatile memory, such as at least one disk storage. Only shown in the figure A memory, of course, the memory can also be set to multiple as needed. Memory 1203 can also be a memory in processor 1202.
  • the memory 1203 stores the following elements, executable modules or data structures, or a subset thereof, or an extended set thereof:
  • Operation instructions include various operation instructions for implementing various operations.
  • Operating system Includes a variety of system programs for implementing various basic services and handling hardware-based tasks.
  • the processor 1202 controls the operation of the terminal 1200, and the processor 1202 may also be referred to as a CPU (Central Processing Unit).
  • the components of the terminal 1200 are coupled together by a bus system 1204.
  • the bus system 1204 may include a power bus, a control bus, a status signal bus, and the like in addition to the data bus.
  • various buses are labeled as bus system 1204 in the figure. For ease of representation, only the schematic drawing is shown in FIG.
  • Processor 1202 may be an integrated circuit chip with signal processing capabilities. In the implementation process, each step of the above method may be completed by an integrated logic circuit of hardware in the processor 1202 or an instruction in a form of software.
  • the processor 1202 described above may be a general purpose processor, a digital signal processor (DSP), an application specific integrated circuit (ASIC), a field programmable gate array (FPGA) or other programmable logic device, a discrete gate or transistor logic device, or discrete hardware. Component.
  • DSP digital signal processor
  • ASIC application specific integrated circuit
  • FPGA field programmable gate array
  • the methods, steps, and logical block diagrams disclosed in the embodiments of the present application can be implemented or executed.
  • the general purpose processor may be a microprocessor or the processor or any conventional processor or the like.
  • the steps of the method disclosed in the embodiments of the present application may be directly implemented by the hardware decoding processor, or may be performed by a combination of hardware and software modules in the decoding processor.
  • the software module can be located in a conventional storage medium such as random access memory, flash memory, read only memory, programmable read only memory or electrically erasable programmable memory, registers, and the like.
  • the storage medium is located in the memory 1203, and the processor 1202 reads the information in the memory 1203, and performs the method flow of the terminal side described in the above-mentioned first to fourth embodiments in combination with the hardware thereof.
  • FIG. 13 is a schematic structural diagram of another remote management platform provided by the present application.
  • the remote management platform 1300 includes: a communication interface 1301, a processor 1302, a memory 1303, and a bus system 1304;
  • the memory 1303 is configured to store a program.
  • the program can include program code, the program code including computer operating instructions.
  • the memory 1303 may be a random access memory (RAM) or a non-volatile memory, such as at least one disk storage. Only one memory is shown in the figure, of course, the memory can also be set to a plurality as needed. Memory 1303 can also be a memory in processor 1302.
  • the memory 1303 stores the following elements, executable modules or data structures, or a subset thereof, or an extended set thereof:
  • Operation instructions include various operation instructions for implementing various operations.
  • Operating system Includes a variety of system programs for implementing various basic services and handling hardware-based tasks.
  • the processor 1302 controls the operation of the remote management platform 1300, and the processor 1302 may also be referred to as a CPU (Central Processing Unit).
  • the components of the remote management platform 1300 are coupled together by a bus system 1304.
  • the bus system 1304 may include a power bus, a control bus, a status signal bus, and the like in addition to the data bus.
  • various buses are labeled as bus system 1304 in the figure. For ease of representation, only the schematic drawing is shown in FIG.
  • the method disclosed in the foregoing embodiment of the present application may be applied to the processor 1302 or implemented by the processor 1302.
  • the processor 1302 may be an integrated circuit chip with signal processing capabilities. In the implementation process, each step of the above method may be completed by an integrated logic circuit of hardware in the processor 1302 or an instruction in a form of software.
  • the processor 1302 described above may be a general purpose processor, a digital signal processor (DSP), an application specific integrated circuit (ASIC), a field programmable gate array (FPGA) or other programmable logic device, a discrete gate or transistor logic device, or discrete hardware. Component.
  • DSP digital signal processor
  • ASIC application specific integrated circuit
  • FPGA field programmable gate array
  • the methods, steps, and logical block diagrams disclosed in the embodiments of the present application can be implemented or executed.
  • the general purpose processor may be a microprocessor or the processor or any conventional processor or the like.
  • the steps of the method disclosed in the embodiments of the present application may be directly implemented by the hardware decoding processor, or may be performed by a combination of hardware and software modules in the decoding processor.
  • the software module can be located in a conventional storage medium such as random access memory, flash memory, read only memory, programmable read only memory or electrically erasable programmable memory, registers, and the like.
  • the storage medium is located in the memory 1303, and the processor 1302 reads the information in the memory 1303, and performs the method flow on the remote management platform side described in the above-mentioned first to fourth embodiments in combination with the hardware thereof.
  • the embodiment of the present application further provides a computer readable storage medium for storing computer software instructions required to execute the foregoing processor, which includes a program for executing the above-mentioned processor.
  • embodiments of the present application can be provided as a method, system, or computer program product.
  • the present application can take the form of an entirely hardware embodiment, an entirely software embodiment, or an embodiment in combination of software and hardware.
  • the application can take the form of a computer program product embodied on one or more computer-usable storage media (including but not limited to disk storage, optical storage, etc.) including computer usable program code.
  • the computer program instructions can also be stored in a computer readable memory that can direct a computer or other programmable data processing device to operate in a particular manner, such that the instructions stored in the computer readable memory produce an article of manufacture comprising the instruction device.
  • the apparatus implements the functions specified in one or more blocks of a flow or a flow and/or block diagram of the flowchart.
  • These computer program instructions can also be loaded onto a computer or other programmable data processing device such that a series of operational steps are performed on a computer or other programmable device to produce computer-implemented processing for execution on a computer or other programmable device.
  • the instructions provide steps for implementing the functions specified in one or more of the flow or in a block or blocks of a flow diagram.

Landscapes

  • Engineering & Computer Science (AREA)
  • Databases & Information Systems (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

A configuration file management method and device, wherein the method comprises: a terminal sending a first message to a remote management platform and receiving a second message which is sent by the remote management platform, wherein the second message comprises N management commands, and the N management commands comprise a download command and a remote management command, N being an integer greater than 1; the terminal manages a configuration file according to the N management commands. In the present application, since the N management commands comprise the download command and the remote management command, downloading and remote management of a configuration file may be combined, thus effectively simplifying network interaction and improving user experience.

Description

一种配置文件的管理方法及装置Configuration method and device for configuration file 技术领域Technical field

本申请涉及通信技术领域,尤其涉及一种配置文件的管理方法及装置。The present application relates to the field of communications technologies, and in particular, to a method and an apparatus for managing a configuration file.

背景技术Background technique

嵌入式通用集成电路卡(embedded Universal Integrated Circuit Card,eUICC)是集成在终端中的电信智能卡,可以支持远程或本地管理配置文件(profile)。The embedded Universal Integrated Circuit Card (eUICC) is a telecom smart card integrated in the terminal that can support remote or local management profiles.

现有技术中,配置文件的下载和远程管理是分别执行的。例如,用户想要下载配置文件,并在下载完成后激活该配置文件,具体的管理过程为:终端首先根据用户的下载命令,与远程管理平台建立连接,在获取到用户对下载配置文件的确认后,下载配置文件;然后,终端根据远程管理平台的激活请求,在获取到用户对激活配置文件的确认后,激活该配置文件。In the prior art, downloading and remote management of configuration files are performed separately. For example, the user wants to download the configuration file and activate the configuration file after the download is completed. The specific management process is as follows: the terminal first establishes a connection with the remote management platform according to the user's download command, and obtains the confirmation of the user to download the configuration file. After that, the configuration file is downloaded; then, the terminal activates the configuration file after obtaining the confirmation of the activation profile by the user according to the activation request of the remote management platform.

目前,针对于如何将配置文件的下载和远程管理合并起来执行,还没有一种解决方案。Currently, there is no solution for how to combine the download and remote management of configuration files.

发明内容Summary of the invention

本申请提供一种配置文件的管理方法及装置,实现了将配置文件的下载和远程管理合并起来执行,从而简化网络交互,提高用户体验。The present application provides a management method and device for configuring a profile, which implements a combination of downloading and remote management of a configuration file, thereby simplifying network interaction and improving user experience.

第一方面,本申请提供一种配置文件的管理方法,该方法包括:In a first aspect, the application provides a method for managing a configuration file, where the method includes:

终端向远程管理平台发送第一消息;The terminal sends the first message to the remote management platform;

所述终端接收所述远程管理平台发送的第二消息;所述第二消息中包括N个管理命令;所述N个管理命令包括下载命令和远程管理命令;N为大于1的整数;Receiving, by the terminal, the second message sent by the remote management platform; the second message includes N management commands; the N management commands include a download command and a remote management command; N is an integer greater than 1;

所述终端根据所述N个管理命令管理配置文件。The terminal manages the configuration file according to the N management commands.

本申请中,终端通过与远程管理平台进行一次通信交互(即向远程管理平台发送第一消息,接收远程管理平台发送的第二消息),便可得到相互关联的多个管理命令,由于N个相互关联的管理命令中包括下载命令和远程管理命令,从而能够实现将配置文件的下载和远程管理结合起来,有效简化网络交互,提高用户体验。In the present application, the terminal can obtain a plurality of management commands associated with each other by performing a communication interaction with the remote management platform (that is, sending the first message to the remote management platform and receiving the second message sent by the remote management platform). The interrelated management commands include download commands and remote management commands, which enable the combination of downloading and remote management of configuration files, simplifying network interaction and improving user experience.

可选地,所述终端根据所述N个管理命令管理配置文件,包括:Optionally, the terminal manages the configuration file according to the N management commands, including:

当所述第二消息中,所述下载命令的顺序在所述远程管理命令之前时,所述终端先执行所述下载命令,然后执行所述远程管理命令;In the second message, when the order of the download command is before the remote management command, the terminal first executes the download command, and then executes the remote management command;

当所述第二消息中,所述下载命令的顺序在所述远程管理命令之后时,所述终端先执行所述远程管理命令,然后执行所述下载命令。When the order of the download command is after the remote management command in the second message, the terminal first executes the remote management command, and then executes the download command.

可选地,所述终端根据所述N个管理命令管理配置文件,包括:Optionally, the terminal manages the configuration file according to the N management commands, including:

当所述第二消息中,所述下载命令的顺序在所述远程管理命令之前时,所述终端先缓存所述下载命令,并在执行所述远程管理命令后,执行缓存的所述下载命令;When the order of the download command is before the remote management command, the terminal first caches the download command, and after executing the remote management command, executes the cached download command. ;

当所述第二消息中,所述下载命令的顺序在所述远程管理命令之后时,所述终端先缓存所述远程管理命令,并在执行所述下载命令后,执行缓存的所述远程管理命令。In the second message, when the order of the download command is after the remote management command, the terminal first caches the remote management command, and after performing the download command, performs the remote management of the cache. command.

可选地,所述第一消息为所述终端接收到用户选择的管理请求指令后发送的; Optionally, the first message is sent after the terminal receives the management request command selected by the user;

所述终端根据所述N个管理命令管理配置文件之前,还包括:Before the terminal manages the configuration file according to the N management commands, the terminal further includes:

所述终端确定所述N个管理命令与所述管理请求指令匹配。The terminal determines that the N management commands match the management request instruction.

可选地,所述终端确定所述N个管理命令与所述管理请求指令匹配,包括:Optionally, the terminal determines that the N management commands match the management request instruction, including:

若所述管理请求指令为下载请求指令,则所述终端确定所述N个管理命令中包括所述下载命令后,确定所述N个管理命令与所述管理请求指令匹配;If the management request instruction is a download request instruction, the terminal determines that the N management commands include the download command, and determines that the N management commands match the management request instruction;

若所述管理请求指令为远程管理请求指令,则所述终端确定所述N个管理命令中包括远程管理命令,且不包括下载命令后,确定所述N个管理命令与所述管理请求指令匹配;If the management request instruction is a remote management request instruction, the terminal determines that the N management commands include a remote management command, and after the download command is not included, determining that the N management commands match the management request instruction ;

若所述管理请求指令为全部更新(update all)请求指令,则所述终端确定所述N个管理命令与所述管理请求指令匹配。If the management request instruction is an update all request instruction, the terminal determines that the N management commands match the management request instruction.

可选地,若所述管理命令为远程管理命令,则所述终端确定所述N个管理命令中包括远程管理命令和下载命令后,确定所述N个管理命令中的远程管理命令与所述管理请求指令匹配,所述N个管理命令中的下载命令与所述管理请求指令不匹配;Optionally, if the management command is a remote management command, the terminal determines that the remote management command and the download command are included in the N management commands, and determines a remote management command among the N management commands and the The management request instruction matches, and the download command of the N management commands does not match the management request instruction;

所述终端根据所述N个管理命令对所述第一配置文件进行管理,包括:The terminal manages the first configuration file according to the N management commands, including:

所述终端执行所述N个管理命令中的远程管理命令,并向所述远程管理平台报告所述N个管理命令中的下载命令与所述管理请求指令不匹配。The terminal executes a remote management command of the N management commands, and reports to the remote management platform that the download command of the N management commands does not match the management request command.

可选地,所述方法还包括:Optionally, the method further includes:

若所述终端确定所述N个管理命令与所述管理请求指令不匹配,则向所述远程管理平台报告所述N个管理命令与所述管理请求指令不匹配。And if the terminal determines that the N management commands do not match the management request instruction, reporting, to the remote management platform, that the N management commands do not match the management request instruction.

可选地,所述终端向远程管理平台发送第一消息,包括:Optionally, the terminal sends the first message to the remote management platform, including:

所述终端向所述远程管理平台发送第一标识;Transmitting, by the terminal, the first identifier to the remote management platform;

所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including:

所述终端接收所述远程管理平台发送的所述N个管理命令;所述N个管理命令为所述第一标识对应的管理命令;The terminal receives the N management commands sent by the remote management platform; the N management commands are management commands corresponding to the first identifier;

可选地,所述远程管理平台包括第一远程管理平台和第二远程管理平台;Optionally, the remote management platform includes a first remote management platform and a second remote management platform;

所述终端向所述远程管理平台发送第一标识,包括:Sending, by the terminal, the first identifier to the remote management platform, including:

所述终端向所述第一远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to the first remote management platform;

所述终端接收所述第一远程管理平台发送的所述终端的EID对应的M个标识;Receiving, by the terminal, M identifiers corresponding to the EID of the terminal sent by the first remote management platform;

所述终端向所述第二远程管理平台发送所述第一标识;所述第一标识为所述M个标识中的一个标识;M为正整数。Sending, by the terminal, the first identifier to the second remote management platform; the first identifier is one of the M identifiers; and M is a positive integer.

可选地,所述终端根据所述N个管理命令管理配置文件之后,还包括:Optionally, after the terminal manages the configuration file according to the N management commands, the method further includes:

所述终端接收用户继续获取管理命令的确认指令后,向所述远程管理平台发送第二标识;所述第二标识为所述M个标识中除所述第一标识以外的一个标识。After receiving the confirmation instruction that the user continues to obtain the management command, the terminal sends a second identifier to the remote management platform; the second identifier is an identifier of the M identifiers other than the first identifier.

可选地,所述终端向远程管理平台发送第一消息,包括:Optionally, the terminal sends the first message to the remote management platform, including:

所述终端向所述远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to the remote management platform;

所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including:

所述终端接收所述远程管理平台发送的所述终端的EID对应的K个管理命令;所述K个管理命令中至少包括所述N个管理命令构成的一个管理命令集合。The terminal receives K management commands corresponding to the EID of the terminal sent by the remote management platform; and the K management commands include at least one management command set formed by the N management commands.

可选地,所述终端向远程管理平台发送第一消息,包括:Optionally, the terminal sends the first message to the remote management platform, including:

所述终端向所述远程管理平台发送所述终端的EID和管理请求标识;所述管理请求标识是所述终端根据用户选择的管理请求指令设置的; Sending, by the terminal, the EID and the management request identifier of the terminal to the remote management platform; the management request identifier is set by the terminal according to a management request command selected by the user;

所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including:

所述终端接收所述远程管理平台发送的所述N个管理命令;所述N个管理命令为所述远程管理平台根据所述终端的EID和所述管理请求标识得到的。Receiving, by the terminal, the N management commands sent by the remote management platform; the N management commands are obtained by the remote management platform according to the EID of the terminal and the management request identifier.

可选地,所述终端向远程管理平台发送第一消息,包括:Optionally, the terminal sends the first message to the remote management platform, including:

所述终端向所述远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to the remote management platform;

所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including:

所述终端接收所述远程管理平台发送的所述终端的EID对应的K个管理命令。The terminal receives K management commands corresponding to the EID of the terminal sent by the remote management platform.

可选地,所述第一消息为所述终端接收到用户选择的管理请求指令后发送的;Optionally, the first message is sent after the terminal receives the management request command selected by the user;

所述终端根据所述N个管理命令管理配置文件,包括:The terminal manages the configuration file according to the N management commands, including:

所述第二消息中还包括所述K个管理命令分别对应的标识,所述终端从所述K个管理命令中选择出与所述管理请求指令匹配的第一管理命令以及与所述第一管理命令对应的标识相同的管理命令,并根据所述第一管理命令和与所述第一管理命令对应的标识相同的管理命令管理配置文件;或者,The second message further includes an identifier corresponding to the K management commands, and the terminal selects, from the K management commands, a first management command that matches the management request command and the first The management command corresponding to the same command is used to manage the configuration file, and the configuration file is managed according to the first management command and the same management command as the first management command; or

所述终端从所述K个管理命令中选择出与所述管理请求指令匹配的第一管理命令以及与所述第一管理命令关联的管理命令,并根据所述第一管理命令和与所述第一管理命令关联的管理命令管理配置文件。The terminal selects, from the K management commands, a first management command that matches the management request command and a management command associated with the first management command, and according to the first management command and the The management command associated with the first management command manages the configuration file.

第二方面,本申请提供一种配置文件的管理方法,所述方法包括:In a second aspect, the application provides a method for managing a configuration file, where the method includes:

远程管理平台接收终端发送的第一消息;The remote management platform receives the first message sent by the terminal;

所述远程管理平台向所述终端发送第二消息;所述第二消息中包括N个管理命令;所述N个管理命令包括下载命令和远程管理命令;N为大于1的整数。The remote management platform sends a second message to the terminal; the second message includes N management commands; the N management commands include a download command and a remote management command; N is an integer greater than 1.

可选地,所述远程管理平台接收终端发送的第一消息,包括:Optionally, the remote management platform receives the first message sent by the terminal, including:

所述远程管理平台接收终端发送的第一标识;The remote management platform receives a first identifier sent by the terminal;

所述远程管理平台向所述终端发送第二消息之前,还包括:Before the remote management platform sends the second message to the terminal, the method further includes:

所述远程管理平台根据所述第一标识,得到所述第一标识对应的所述N个管理命令。The remote management platform obtains the N management commands corresponding to the first identifier according to the first identifier.

可选地,所述远程管理平台包括第一远程管理平台和第二远程管理平台;Optionally, the remote management platform includes a first remote management platform and a second remote management platform;

所述远程管理平台接收终端发送的第一标识,包括:The remote management platform receives the first identifier sent by the terminal, including:

所述第一远程管理平台接收所述终端发送的所述终端的EID;Receiving, by the first remote management platform, an EID of the terminal sent by the terminal;

所述第一远程管理平台得到所述终端的EID对应的M个标识并发送给所述终端;Obtaining, by the first remote management platform, M identifiers corresponding to the EID of the terminal, and sending the identifiers to the terminal;

所述第二远程管理平台接收终端发送的所述第一标识,所述第一标识为所述M个标识中的一个标识;M为正整数。The second remote management platform receives the first identifier sent by the terminal, where the first identifier is one of the M identifiers; and M is a positive integer.

可选地,所述远程管理平台接收终端发送的第一消息,包括:Optionally, the remote management platform receives the first message sent by the terminal, including:

所述远程管理平台接收所述终端发送的所述终端的EID和管理请求标识;所述管理请求标识是所述终端根据用户选择的管理请求指令设置的;The remote management platform receives an EID and a management request identifier of the terminal sent by the terminal; the management request identifier is set by the terminal according to a management request command selected by a user;

所述远程管理平台向所述终端发送第二消息,包括:Sending, by the remote management platform, the second message to the terminal, including:

若所述管理请求标识为下载请求标识,所述远程管理平台获取与所述终端的EID对应的第一管理命令,并获取与所述终端的EID对应且与所述第一管理命令关联的管理命令;If the management request identifier is a download request identifier, the remote management platform acquires a first management command corresponding to the EID of the terminal, and acquires a management corresponding to the EID of the terminal and associated with the first management command. command;

若所述管理请求标识为全部更新标识,所述远程管理平台获取所述终端的EID对应的所有管理命令。If the management request is identified as all update identifiers, the remote management platform acquires all management commands corresponding to the EID of the terminal.

可选地,所述远程管理平台接收终端发送的第一消息,包括:Optionally, the remote management platform receives the first message sent by the terminal, including:

所述远程管理平台接收所述终端发送的所述终端的EID; Receiving, by the remote management platform, an EID of the terminal sent by the terminal;

所述远程管理平台向所述终端发送第二消息,包括:Sending, by the remote management platform, the second message to the terminal, including:

所述远程管理平台得到与所述终端的EID对应的K个管理命令,并将所述K个管理命令发送给所述终端;所述K个管理命令中至少包括所述N个管理命令构成的一个管理命令集合;或者,The remote management platform obtains K management commands corresponding to the EID of the terminal, and sends the K management commands to the terminal; the K management commands include at least the N management commands. a collection of administrative commands; or,

所述远程管理平台得到与所述终端的EID对应的K个管理命令,并将所述K个管理命令和所述K个管理命令分别对应的标识发送给所述终端;或者,The remote management platform obtains K management commands corresponding to the EID of the terminal, and sends an identifier corresponding to the K management commands and the K management commands to the terminal; or

所述远程管理平台得到与所述终端的EID对应的K个管理命令,并将所述K个管理命令发送给所述终端。The remote management platform obtains K management commands corresponding to the EID of the terminal, and sends the K management commands to the terminal.

第三方面,本申请提供一种配置文件的管理方法,所述方法包括:In a third aspect, the application provides a method for managing a configuration file, where the method includes:

终端向远程管理平台发送第一消息,其中,所述第一消息用于请求下载配置文件或所述第一消息用于请求获取所述终端的EID对应的所有管理命令,所述终端中已安装有第二配置文件;The terminal sends a first message to the remote management platform, where the first message is used to request to download a configuration file or the first message is used to request to acquire all management commands corresponding to the EID of the terminal, where the terminal is installed. Have a second configuration file;

所述终端接收所述远程管理平台发送的第二消息;所述第二消息中包括第一配置文件的元数据和所述第二配置文件的远程管理命令;Receiving, by the terminal, the second message sent by the remote management platform; the second message includes metadata of the first configuration file and a remote management command of the second configuration file;

所述终端根据所述第一配置文件的元数据下载所述第一配置文件;以及The terminal downloads the first configuration file according to metadata of the first configuration file;

所述终端根据所述第二配置文件的远程管理命令管理所述第二配置文件。The terminal manages the second configuration file according to a remote management command of the second configuration file.

可选地,所述终端根据所述第一配置文件的元数据下载所述第一配置文件;以及所述终端根据所述第二配置文件的远程管理命令管理所述第二配置文件,包括:Optionally, the terminal downloads the first configuration file according to the metadata of the first configuration file; and the terminal manages the second configuration file according to the remote management command of the second configuration file, including:

当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之前时,所述终端先下载所述第一配置文件,然后管理所述第二配置文件;When the order of the metadata of the first configuration file is before the remote management command of the second configuration file, the terminal first downloads the first configuration file, and then manages the first Two configuration files;

当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之后时,所述终端先管理所述第二配置文件,然后下载所述第一配置文件。When the order of the metadata of the first configuration file is after the remote management command of the second configuration file, the terminal first manages the second configuration file, and then downloads the first A configuration file.

可选地,所述终端根据所述第一配置文件的元数据下载所述第一配置文件;以及所述终端根据所述第二配置文件的远程管理命令管理所述第二配置文件,包括:Optionally, the terminal downloads the first configuration file according to the metadata of the first configuration file; and the terminal manages the second configuration file according to the remote management command of the second configuration file, including:

当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之前时,所述终端先缓存所述第一配置文件的元数据,并在管理第二配置文件后,根据缓存的第一配置文件的元数据下载所述第一配置文件;When the order of the metadata of the first configuration file is before the remote management command of the second configuration file, the terminal first caches the metadata of the first configuration file, and After managing the second configuration file, downloading the first configuration file according to the metadata of the cached first configuration file;

当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之后时,所述终端先缓存所述第二配置文件的远程管理命令,并在下载所述第一配置文件后,根据缓存的所述第二配置文件的远程管理命令管理所述第二配置文件。When the order of the metadata of the first configuration file is after the remote management command of the second configuration file, the terminal first caches the remote management command of the second configuration file, and After downloading the first configuration file, the second configuration file is managed according to the remote management command of the cached second configuration file.

可选地,所述终端向远程管理平台发送第一消息,包括:Optionally, the terminal sends the first message to the remote management platform, including:

所述终端向所述远程管理平台发送第一标识;所述第一标识用于所述远程管理平台得到第一配置文件的元数据和第二配置文件的远程管理命令。The terminal sends a first identifier to the remote management platform; the first identifier is used by the remote management platform to obtain metadata of the first configuration file and a remote management command of the second configuration file.

可选地,所述远程管理平台包括第一远程管理平台和第二远程管理平台;Optionally, the remote management platform includes a first remote management platform and a second remote management platform;

所述终端向所述远程管理平台发送第一标识,包括:Sending, by the terminal, the first identifier to the remote management platform, including:

所述终端向第一远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to the first remote management platform;

所述终端接收所述第一远程管理平台发送的所述终端的EID对应的第一标识;Receiving, by the terminal, a first identifier corresponding to an EID of the terminal sent by the first remote management platform;

所述终端向所述第二远程管理平台发送所述第一标识。The terminal sends the first identifier to the second remote management platform.

可选地,所述终端向远程管理平台发送第一消息,包括:Optionally, the terminal sends the first message to the remote management platform, including:

所述终端向所述远程管理平台发送所述终端的EID和管理请求标识;所述管理请求标 识为下载请求标识或全部更新标识;所述终端的EID和所述管理请求标识用于所述远程管理平台得到第一配置文件的元数据和第二配置文件的远程管理命令。Transmitting, by the terminal, the EID and the management request identifier of the terminal to the remote management platform; The EID and the management request identifier are used by the remote management platform to obtain the metadata of the first configuration file and the remote management command of the second configuration file.

可选地,所述第一消息为所述终端接收到用户选择的下载请求指令后发送的;Optionally, the first message is sent after the terminal receives the download request command selected by the user;

所述终端向远程管理平台发送第一消息,包括:Sending, by the terminal, the first message to the remote management platform, including:

所述终端向远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to a remote management platform;

所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including:

所述终端接收所述远程管理平台发送的所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令;所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中至少包括所述第一配置文件的元数据和第二配置文件的远程管理命令构成的集合;Receiving, by the terminal, metadata of one or more configuration files corresponding to an EID of the terminal and a remote management command of one or more configuration files, where the EID of the terminal corresponds to one or more The remote management command of the metadata of the configuration file and the one or more configuration files includes at least a set of metadata of the first configuration file and a remote management command of the second configuration file;

所述终端根据所述第一配置文件的元数据下载所述第一配置文件,以及所述终端根据所述第二配置文件的远程管理命令管理所述第二配置文件之前,还包括:Before the terminal downloads the first configuration file according to the metadata of the first configuration file, and the terminal manages the second configuration file according to the remote management command of the second configuration file, the terminal further includes:

所述终端从所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中选择出与所述下载请求指令匹配的第一配置文件的元数据,得到所述第一配置文件的元数据和与所述第一配置文件的元数据在同一个集合中的第二配置文件的远程管理命令。The terminal selects metadata of a first configuration file that matches the download request instruction from metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files. Obtaining a remote management command of the metadata of the first configuration file and the second configuration file in the same set as the metadata of the first configuration file.

可选地,所述终端向远程管理平台发送请求消息,包括:Optionally, the terminal sends a request message to the remote management platform, including:

所述终端向远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to a remote management platform;

所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including:

所述接收所述远程管理平台发送的所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令以及所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令分别对应的标识;Receiving, by the remote management platform, metadata of one or more configuration files corresponding to an EID of the terminal and a remote management command of one or more configuration files and one or more configurations corresponding to an EID of the terminal An identifier corresponding to the metadata of the file and the remote management command of one or more configuration files;

所述终端根据所述第一配置文件的元数据下载所述第一配置文件,以及所述终端根据所述第二配置文件的远程管理命令管理所述第二配置文件之前,还包括:Before the terminal downloads the first configuration file according to the metadata of the first configuration file, and the terminal manages the second configuration file according to the remote management command of the second configuration file, the terminal further includes:

所述终端从所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中选择出与所述下载请求指令匹配的第一配置文件的元数据以及与所述第一配置文件的元数据对应的标识相同的第二配置文件的远程管理命令。Determining, by the terminal, metadata of a first configuration file that matches the download request instruction from metadata of one or more configuration files corresponding to an EID of the terminal and remote management commands of one or more configuration files A remote management command identifying the same second configuration file corresponding to the metadata of the first configuration file.

可选地,所述终端向远程管理平台发送请求消息,包括:Optionally, the terminal sends a request message to the remote management platform, including:

所述终端向远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to a remote management platform;

所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including:

所述终端接收所述远程管理平台发送的所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令;Receiving, by the terminal, the metadata of one or more configuration files corresponding to the EID of the terminal and the remote management command of one or more configuration files sent by the remote management platform;

所述终端根据所述第一配置文件的元数据下载所述第一配置文件,以及根据所述第二配置文件的远程管理命令管理所述第二配置文件之前,还包括:Before the terminal downloads the first configuration file according to the metadata of the first configuration file, and the management of the second configuration file according to the remote management command of the second configuration file, the terminal further includes:

所述终端从所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中选择出与所述下载请求指令匹配的第一配置文件的元数据,以及与所述第一配置文件的元数据关联的第二配置文件的远程管理命令。The terminal selects metadata of a first configuration file that matches the download request instruction from metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files. And a remote management command of the second configuration file associated with the metadata of the first configuration file.

第四方面,本申请提供一种配置文件的管理方法,所述方法包括:In a fourth aspect, the application provides a method for managing a configuration file, where the method includes:

远程管理平台接收终端发送的第一消息,其中,所述第一消息用于请求下载配置文件或所述第一消息用于请求获取所述终端的EID对应的所有管理命令; Receiving, by the remote management platform, the first message sent by the terminal, where the first message is used to request to download a configuration file or the first message is used to request to acquire all management commands corresponding to the EID of the terminal;

所述远程管理平台向所述终端发送第二消息;所述第二消息中包括第一配置文件的元数据和第二配置文件的远程管理命令;所述第二配置文件为所述终端中已安装的配置文件。The remote management platform sends a second message to the terminal; the second message includes metadata of the first configuration file and a remote management command of the second configuration file; the second configuration file is already in the terminal The installed configuration file.

可选地,所述远程管理平台接收终端发送的第一消息,包括:Optionally, the remote management platform receives the first message sent by the terminal, including:

所述远程管理平台接收终端发送的第一标识;The remote management platform receives a first identifier sent by the terminal;

所述远程管理平台向所述终端发送第二消息之前,还包括:Before the remote management platform sends the second message to the terminal, the method further includes:

所述远程管理平台根据所述第一标识,得到所述第一标识对应的第一配置文件的元数据和第二配置文件的远程管理命令。The remote management platform obtains the metadata of the first configuration file corresponding to the first identifier and the remote management command of the second configuration file according to the first identifier.

可选地,所述远程管理平台包括第一远程管理平台和第二远程管理平台;Optionally, the remote management platform includes a first remote management platform and a second remote management platform;

所述远程管理平台接收终端发送的第一标识,包括:The remote management platform receives the first identifier sent by the terminal, including:

所述第一远程管理平台接收所述终端发送的所述终端的EID;Receiving, by the first remote management platform, an EID of the terminal sent by the terminal;

所述第一远程管理平台向所述终端发送所述终端的EID对应的M个标识;Transmitting, by the first remote management platform, the M identifiers corresponding to the EID of the terminal to the terminal;

所述第二远程管理平台接收终端发送的第一标识;所述第一标识为所述终端的EID对应的M个标识中的一个标识;M为正整数。The second remote management platform receives the first identifier sent by the terminal; the first identifier is one of the M identifiers corresponding to the EID of the terminal; and M is a positive integer.

可选地,所述远程管理平台接收终端发送的第一消息,包括:Optionally, the remote management platform receives the first message sent by the terminal, including:

所述远程管理平台接收所述终端发送的所述终端的EID和管理请求标识;所述管理请求标识为下载请求标识或全部更新标识;The remote management platform receives the EID and the management request identifier of the terminal sent by the terminal; the management request identifier is a download request identifier or all update identifiers;

所述远程管理平台向所述终端发送第二消息之前,还包括:Before the remote management platform sends the second message to the terminal, the method further includes:

若所述管理请求标识为下载请求标识,所述远程管理平台获取与所述终端的EID对应的所述第一配置文件,创建所述第一配置文件的元数据,并获取与所述终端的EID对应的所述第二配置文件的远程管理命令;所述第二配置文件的远程管理命令与所述第一配置文件相关联;If the management request identifier is a download request identifier, the remote management platform acquires the first configuration file corresponding to the EID of the terminal, creates metadata of the first configuration file, and acquires the metadata of the first configuration file. a remote management command of the second configuration file corresponding to the EID; a remote management command of the second configuration file is associated with the first configuration file;

若所述管理请求标识为全部更新标识,所述远程管理平台获取所述终端的EID对应的所述第一配置文件,以及所述终端的EID对应的所述第二配置文件的远程管理命令。If the management request is identified as all the update identifiers, the remote management platform acquires the first configuration file corresponding to the EID of the terminal, and the remote management command of the second configuration file corresponding to the EID of the terminal.

可选地,所述远程管理平台接收终端发送的第一消息,包括:Optionally, the remote management platform receives the first message sent by the terminal, including:

所述远程管理平台接收所述终端发送的所述终端的EID;Receiving, by the remote management platform, an EID of the terminal sent by the terminal;

所述远程管理平台向所述终端发送第二消息,包括:Sending, by the remote management platform, the second message to the terminal, including:

所述远程管理平台向所述终端发送所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令;所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中至少包括所述第一配置文件的元数据和第二配置文件的远程管理命令构成的集合;或者,Transmitting, by the remote management platform, metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files to the terminal; one or more configurations corresponding to the EID of the terminal The remote management command of the metadata of the file and the one or more configuration files includes at least a set of metadata of the first configuration file and a remote management command of the second configuration file; or

所述远程管理平台向所述终端发送所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令以及所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令分别对应的标识;或者,Transmitting, by the remote management platform, metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files and one or more configurations corresponding to the EID of the terminal The identifier corresponding to the metadata of the file and the remote management command of one or more configuration files; or

所述远程管理平台向所述终端发送所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令;Transmitting, by the remote management platform, metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files to the terminal;

所述一个或多个配置文件的元数据中包括所述第一配置文件的元数据;所述一个或多个配置文件的远程管理命令中包括所述第二配置文件的远程管理命令。The metadata of the one or more configuration files includes metadata of the first configuration file; and the remote management command of the one or more configuration files includes a remote management command of the second configuration file.

第五方面,本申请提供一种终端,该终端包括如下功能模块:发送模块、接收模块和处理模块;所述发送模块、接收模块和处理模块用于执行第一方面所述的方法流程。 In a fifth aspect, the application provides a terminal, where the terminal includes a function module, a sending module, a receiving module, and a processing module, where the sending module, the receiving module, and the processing module are configured to execute the method flow described in the first aspect.

第六方面,本申请提供一种远程管理平台,该远程管理平台包括如下功能模块:发送模块、接收模块和处理模块;所述发送模块、接收模块和处理模块用于执行第二方面所述的方法流程。In a sixth aspect, the application provides a remote management platform, where the remote management platform includes the following functional modules: a sending module, a receiving module, and a processing module. The sending module, the receiving module, and the processing module are configured to perform the second aspect. Method flow.

第七方面,本申请提供一种终端,该终端包括如下功能模块:发送模块、接收模块和处理模块;所述发送模块、接收模块和处理模块用于执行第三方面所述的方法流程。In a seventh aspect, the application provides a terminal, where the terminal includes the following functional modules: a sending module, a receiving module, and a processing module; the sending module, the receiving module, and the processing module are configured to execute the method flow described in the third aspect.

第八方面,本申请提供一种远程管理平台,该远程管理平台包括如下功能模块:发送模块、接收模块和处理模块;所述发送模块、接收模块和处理模块用于执行第四方面所述的方法流程。In an eighth aspect, the application provides a remote management platform, where the remote management platform includes the following functional modules: a sending module, a receiving module, and a processing module; the sending module, the receiving module, and the processing module are configured to perform the fourth aspect. Method flow.

第九方面,本申请提供一种终端,该终端包括:In a ninth aspect, the application provides a terminal, where the terminal includes:

通信接口,用于向远程管理平台发送第一消息;以及接收所述远程管理平台发送的第二消息;所述第二消息中包括N个管理命令;所述N个管理命令为相互关联的管理命令;所述N个管理命令包括下载命令和远程管理命令;N为大于1的整数;a communication interface, configured to send a first message to the remote management platform; and receive a second message sent by the remote management platform; the second message includes N management commands; the N management commands are associated management Command; the N management commands include a download command and a remote management command; N is an integer greater than one;

处理器,用于根据所述N个管理命令管理配置文件。And a processor, configured to manage the configuration file according to the N management commands.

可选地,所述处理器具体用于:Optionally, the processor is specifically configured to:

当所述第二消息中,所述下载命令的顺序在所述远程管理命令之前时,所述终端先执行所述下载命令,然后执行所述远程管理命令;In the second message, when the order of the download command is before the remote management command, the terminal first executes the download command, and then executes the remote management command;

当所述第二消息中,所述下载命令的顺序在所述远程管理命令之后时,所述终端先执行所述远程管理命令,然后执行所述下载命令。When the order of the download command is after the remote management command in the second message, the terminal first executes the remote management command, and then executes the download command.

可选地,所述处理器具体用于:Optionally, the processor is specifically configured to:

当所述第二消息中,所述下载命令的顺序在所述远程管理命令之前时,所述终端先缓存所述下载命令,并在执行所述远程管理命令后,执行缓存的所述下载命令;When the order of the download command is before the remote management command, the terminal first caches the download command, and after executing the remote management command, executes the cached download command. ;

当所述第二消息中,所述下载命令的顺序在所述远程管理命令之后时,所述终端先缓存所述远程管理命令,并在执行所述下载命令后,执行缓存的所述远程管理命令。In the second message, when the order of the download command is after the remote management command, the terminal first caches the remote management command, and after performing the download command, performs the remote management of the cache. command.

可选地,所述第一消息为所述终端接收到用户选择的管理请求指令后发送的;Optionally, the first message is sent after the terminal receives the management request command selected by the user;

所述处理器根据所述N个管理命令管理配置文件之前,还用于:Before the processor manages the configuration file according to the N management commands, the processor is further configured to:

确定所述N个管理命令与所述管理请求指令匹配。Determining that the N management commands match the management request instruction.

可选地,所述处理器具体用于:Optionally, the processor is specifically configured to:

若所述管理请求指令为下载请求指令,则所述终端确定所述N个管理命令中包括所述下载命令后,确定所述N个管理命令与所述管理请求指令匹配;If the management request instruction is a download request instruction, the terminal determines that the N management commands include the download command, and determines that the N management commands match the management request instruction;

若所述管理请求指令为远程管理请求指令,则所述终端确定所述N个管理命令中包括远程管理命令,且不包括下载命令后,确定所述N个管理命令与所述管理请求指令匹配;If the management request instruction is a remote management request instruction, the terminal determines that the N management commands include a remote management command, and after the download command is not included, determining that the N management commands match the management request instruction ;

若所述管理请求指令为全部更新(update all)请求指令,则所述终端确定所述N个管理命令与所述管理请求指令匹配。If the management request instruction is an update all request instruction, the terminal determines that the N management commands match the management request instruction.

可选地,若所述管理命令为远程管理命令,则所述处理器确定所述N个管理命令中包括远程管理命令和下载命令后,确定所述N个管理命令中的远程管理命令与所述管理请求指令匹配,所述N个管理命令中的下载命令与所述管理请求指令不匹配;Optionally, if the management command is a remote management command, the processor determines that the remote management command and the download command are included in the N management commands, and determines a remote management command and location in the N management commands. The management request instruction matches, and the download command of the N management commands does not match the management request instruction;

所述处理器具体用于:The processor is specifically configured to:

执行所述N个管理命令中的远程管理命令,并向所述远程管理平台报告所述N个管理命令中的下载命令与所述管理请求指令不匹配。Executing a remote management command of the N management commands, and reporting to the remote management platform that the download command of the N management commands does not match the management request instruction.

可选地,所述处理器还用于: Optionally, the processor is further configured to:

若所述终端确定所述N个管理命令与所述管理请求指令不匹配,则向所述远程管理平台报告所述N个管理命令与所述管理请求指令不匹配。And if the terminal determines that the N management commands do not match the management request instruction, reporting, to the remote management platform, that the N management commands do not match the management request instruction.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

向所述远程管理平台发送第一标识;Sending a first identifier to the remote management platform;

接收所述远程管理平台发送的所述N个管理命令;所述N个管理命令为所述第一标识对应的管理命令;Receiving, by the remote management platform, the N management commands, where the N management commands are management commands corresponding to the first identifier;

可选地,所述远程管理平台包括第一远程管理平台和第二远程管理平台;Optionally, the remote management platform includes a first remote management platform and a second remote management platform;

所述通信接口具体用于:The communication interface is specifically configured to:

向所述第一远程管理平台发送所述终端的EID;Sending an EID of the terminal to the first remote management platform;

接收所述第一远程管理平台发送的所述终端的EID对应的M个标识;Receiving M identifiers corresponding to the EID of the terminal sent by the first remote management platform;

向所述第二远程管理平台发送所述第一标识;所述第一标识为所述M个标识中的一个标识;M为正整数。Sending the first identifier to the second remote management platform; the first identifier is one of the M identifiers; and M is a positive integer.

可选地,所述通信接口在所述处理器根据所述N个管理命令管理配置文件之后,还用于:Optionally, after the management interface manages the configuration file according to the N management commands, the communication interface is further configured to:

接收用户继续获取管理命令的确认指令后,向所述远程管理平台发送第二标识;所述第二标识为所述M个标识中除所述第一标识以外的一个标识。After receiving the confirmation command that the user continues to obtain the management command, the second identifier is sent to the remote management platform; the second identifier is an identifier of the M identifiers other than the first identifier.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

向所述远程管理平台发送所述终端的EID;Sending an EID of the terminal to the remote management platform;

接收所述远程管理平台发送的所述终端的EID对应的K个管理命令;所述K个管理命令中至少包括所述N个管理命令构成的一个管理命令集合。And receiving, by the remote management platform, K management commands corresponding to the EID of the terminal, where the K management commands include at least one management command set formed by the N management commands.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

向所述远程管理平台发送所述终端的EID和管理请求标识;所述管理请求标识是所述终端根据用户选择的管理请求指令设置的;Transmitting, to the remote management platform, an EID and a management request identifier of the terminal; the management request identifier is set by the terminal according to a management request instruction selected by a user;

接收所述远程管理平台发送的所述N个管理命令;所述N个管理命令为所述远程管理平台根据所述终端的EID和所述管理请求标识得到的。Receiving, by the remote management platform, the N management commands, where the N management commands are obtained by the remote management platform according to the EID of the terminal and the management request identifier.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

向所述远程管理平台发送所述终端的EID;Sending an EID of the terminal to the remote management platform;

接收所述远程管理平台发送的所述终端的EID对应的K个管理命令。Receiving K management commands corresponding to the EID of the terminal sent by the remote management platform.

可选地,所述第一消息为所述终端接收到用户选择的管理请求指令后发送的;Optionally, the first message is sent after the terminal receives the management request command selected by the user;

所述处理器具体用于:The processor is specifically configured to:

所述第二消息中还包括所述K个管理命令分别对应的标识,所述处理器从所述K个管理命令中选择出与所述管理请求指令匹配的第一管理命令以及与所述第一管理命令对应的标识相同的管理命令,并根据所述第一管理命令和与所述第一管理命令对应的标识相同的管理命令管理配置文件;或者,The second message further includes an identifier corresponding to each of the K management commands, and the processor selects, from the K management commands, a first management command that matches the management request command, and the first a management command corresponding to the same management command, and managing the configuration file according to the first management command and the same management command as the first management command; or

所述处理器从所述K个管理命令中选择出与所述管理请求指令匹配的第一管理命令以及与所述第一管理命令关联的管理命令,并根据所述第一管理命令和所述与所述第一管理命令关联的管理命令管理配置文件。The processor selects, from the K management commands, a first management command that matches the management request instruction and a management command associated with the first management command, and according to the first management command and the An administrative command management profile associated with the first management command.

第十方面,本申请提供一种远程管理平台,所述远程管理平台包括:通信接口和处理器;所述处理器结合所述通信接口执行:In a tenth aspect, the application provides a remote management platform, where the remote management platform includes: a communication interface and a processor; and the processor performs the communication interface:

接收终端发送的第一消息;向所述终端发送第二消息;所述第二消息中包括N个管理 命令;所述N个管理命令包括下载命令和远程管理命令;N为大于1的整数。Receiving a first message sent by the terminal; sending a second message to the terminal; the second message includes N management The N management commands include a download command and a remote management command; N is an integer greater than 1.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

接收终端发送的第一标识;Receiving a first identifier sent by the terminal;

向所述终端发送第二消息之前,还包括:Before sending the second message to the terminal, the method further includes:

根据所述第一标识,得到所述第一标识对应的所述N个管理命令。Obtaining, according to the first identifier, the N management commands corresponding to the first identifier.

可选地,所述远程管理平台包括第一远程管理平台和第二远程管理平台Optionally, the remote management platform includes a first remote management platform and a second remote management platform.

所述通信接口包括所述第一远程管理平台的通信接口和所述第二远程管理平台的通信接口;The communication interface includes a communication interface of the first remote management platform and a communication interface of the second remote management platform;

所述第一远程管理平台的通信接口接收所述终端发送的所述终端的EID;The communication interface of the first remote management platform receives the EID of the terminal sent by the terminal;

所述第一远程管理平台的通信接口得到所述终端的EID对应的M个标识并发送给所述终端;The communication interface of the first remote management platform obtains M identifiers corresponding to the EID of the terminal, and sends the identifiers to the terminal;

所述第二远程管理平台的通信接口接收终端发送的所述第一标识,所述第一标识为所述M个标识中的一个标识;M为正整数。The communication interface of the second remote management platform receives the first identifier sent by the terminal, where the first identifier is one of the M identifiers; and M is a positive integer.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

接收所述终端发送的所述终端的EID和管理请求标识;所述管理请求标识是所述终端根据用户选择的管理请求指令设置的;Receiving, by the terminal, an EID and a management request identifier of the terminal, where the management request identifier is set by the terminal according to a management request command selected by a user;

所述处理器具体用于:若所述管理请求标识为下载请求标识,则获取与所述终端的EID对应的第一管理命令,并获取与所述终端的EID对应且与所述第一管理命令关联的管理命令;若所述管理请求标识为获取终端的EID对应的所有管理命令的标识,则获取所述终端的EID对应的所有管理命令。The processor is specifically configured to: if the management request identifier is a download request identifier, acquire a first management command corresponding to the EID of the terminal, and obtain an EID corresponding to the terminal and the first management The management command associated with the command; if the management request identifier is an identifier of all management commands corresponding to the EID of the terminal, all management commands corresponding to the EID of the terminal are obtained.

所述通信接口具体用于:将所述第一管理命令和与所述第一管理命令关联的管理命令发送给所述终端。The communication interface is specifically configured to: send the first management command and a management command associated with the first management command to the terminal.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

接收所述终端发送的所述终端的EID;Receiving an EID of the terminal sent by the terminal;

得到与所述终端的EID对应的K个管理命令,并将所述K个管理命令发送给所述终端;所述K个管理命令中至少包括所述N个管理命令构成的一个管理命令集合;或者,Obtaining K management commands corresponding to the EID of the terminal, and sending the K management commands to the terminal; the K management commands include at least one management command set formed by the N management commands; or,

得到与所述终端的EID对应的K个管理命令,并将所述K个管理命令和所述K个管理命令分别对应的标识发送给所述终端;或者,Obtaining K management commands corresponding to the EID of the terminal, and sending, to the terminal, an identifier corresponding to the K management commands and the K management commands respectively; or

得到与所述终端的EID对应的K个管理命令,并将所述K个管理命令发送给所述终端。Obtaining K management commands corresponding to the EID of the terminal, and transmitting the K management commands to the terminal.

第十一方面,本申请提供一种终端,所述终端包括:In an eleventh aspect, the application provides a terminal, where the terminal includes:

通信接口,用于向远程管理平台发送第一消息,其中,所述第一消息用于请求下载配置文件或所述第一消息用于请求获取所述终端的EID对应的所有管理命令,所述终端中已安装有第二配置文件;以及,接收所述远程管理平台发送的第二消息;所述第二消息中包括第一配置文件的元数据和所述第二配置文件的远程管理命令;a communication interface, configured to send a first message to the remote management platform, where the first message is used to request to download a configuration file or the first message is used to request to acquire all management commands corresponding to the EID of the terminal, A second configuration file is installed in the terminal; and receiving a second message sent by the remote management platform; the second message includes metadata of the first configuration file and a remote management command of the second configuration file;

处理器,用于根据所述第一配置文件的元数据下载所述第一配置文件;以及根据所述第二配置文件的远程管理命令管理所述第二配置文件。a processor, configured to download the first configuration file according to metadata of the first configuration file; and manage the second configuration file according to a remote management command of the second configuration file.

可选地,所述处理器具体用于:Optionally, the processor is specifically configured to:

当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之前时,所述终端先下载所述第一配置文件,然后管理所述第二配置文件; When the order of the metadata of the first configuration file is before the remote management command of the second configuration file, the terminal first downloads the first configuration file, and then manages the first Two configuration files;

当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之后时,所述终端先管理所述第二配置文件,然后下载所述第一配置文件。When the order of the metadata of the first configuration file is after the remote management command of the second configuration file, the terminal first manages the second configuration file, and then downloads the first A configuration file.

可选地,所述处理器具体用于:Optionally, the processor is specifically configured to:

当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之前时,所述终端先缓存所述第一配置文件的元数据,并在管理第二配置文件后,根据缓存的第一配置文件的元数据下载所述第一配置文件;When the order of the metadata of the first configuration file is before the remote management command of the second configuration file, the terminal first caches the metadata of the first configuration file, and After managing the second configuration file, downloading the first configuration file according to the metadata of the cached first configuration file;

当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之后时,所述终端先缓存所述第二配置文件的远程管理命令,并在下载所述第一配置文件后,根据缓存的所述第二配置文件的远程管理命令管理所述第二配置文件。When the order of the metadata of the first configuration file is after the remote management command of the second configuration file, the terminal first caches the remote management command of the second configuration file, and After downloading the first configuration file, the second configuration file is managed according to the remote management command of the cached second configuration file.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

向所述远程管理平台发送第一标识;所述第一标识用于所述远程管理平台得到第一配置文件的元数据和第二配置文件的远程管理命令。Sending a first identifier to the remote management platform; the first identifier is used by the remote management platform to obtain metadata of the first configuration file and a remote management command of the second configuration file.

可选地,所述远程管理平台包括第一远程管理平台和第二远程管理平台;Optionally, the remote management platform includes a first remote management platform and a second remote management platform;

所述通信接口具体用于:The communication interface is specifically configured to:

向第一远程管理平台发送所述终端的EID;Sending an EID of the terminal to the first remote management platform;

接收所述第一远程管理平台发送的所述终端的EID对应的第一标识;Receiving, by the first remote management platform, a first identifier corresponding to an EID of the terminal;

向所述第二远程管理平台发送所述第一标识。Sending the first identifier to the second remote management platform.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

向所述远程管理平台发送所述终端的EID和管理请求标识;所述管理请求标识为下载请求标识或获取所述终端的EID对应的所有管理命令的标识;所述终端的EID和所述管理请求标识用于所述远程管理平台得到第一配置文件的元数据和第二配置文件的远程管理命令。Sending an EID and a management request identifier of the terminal to the remote management platform; the management request identifier is an identifier of a download request identifier or an identifier of all management commands corresponding to an EID of the terminal; an EID of the terminal and the management The request identifies a remote management command for the remote management platform to obtain the metadata of the first configuration file and the second configuration file.

可选地,所述第一消息为所述终端接收到用户选择的下载请求指令后发送的;Optionally, the first message is sent after the terminal receives the download request command selected by the user;

所述通信接口具体用于:The communication interface is specifically configured to:

向远程管理平台发送所述终端的EID;Sending the EID of the terminal to the remote management platform;

接收所述远程管理平台发送的所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令;所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中至少包括所述第一配置文件的元数据和第二配置文件的远程管理命令构成的集合;Receiving, by the remote management platform, metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files; and one or more configuration files corresponding to the EID of the terminal The remote management command of the metadata and the one or more configuration files includes at least a set of metadata of the first configuration file and a remote management command of the second configuration file;

所述处理器具体用于:The processor is specifically configured to:

从所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中选择出与所述下载请求指令匹配的第一配置文件的元数据,得到所述第一配置文件的元数据和与所述第一配置文件的元数据在同一个集合中的第二配置文件的远程管理命令。Selecting, from the metadata of the one or more configuration files corresponding to the EID of the terminal and the remote management command of the one or more configuration files, the metadata of the first configuration file that matches the download request instruction, to obtain the A remote management command of the first configuration file and the second configuration file in the same set as the metadata of the first configuration file.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

向远程管理平台发送所述终端的EID;Sending the EID of the terminal to the remote management platform;

接收所述远程管理平台发送的所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令以及所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令分别对应的标识;Receiving, by the remote management platform, metadata of one or more configuration files corresponding to an EID of the terminal and a remote management command of one or more configuration files and one or more configuration files corresponding to an EID of the terminal An identifier corresponding to the remote management command of the metadata and one or more configuration files;

所述处理器具体用于: The processor is specifically configured to:

从所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中选择出与所述下载请求指令匹配的第一配置文件的元数据以及与所述第一配置文件的元数据对应的标识相同的第二配置文件的远程管理命令。Selecting, from the metadata of the one or more configuration files corresponding to the EID of the terminal and the remote management command of the one or more configuration files, the metadata of the first configuration file that matches the download request instruction, and the The metadata of the first configuration file corresponds to a remote management command that identifies the same second configuration file.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

向远程管理平台发送所述终端的EID;Sending the EID of the terminal to the remote management platform;

接收所述远程管理平台发送的所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令;Receiving, by the remote management platform, metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files;

所述处理器具体用于:The processor is specifically configured to:

从所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中选择出与所述下载请求指令匹配的第一配置文件的元数据,以及与所述第一配置文件的元数据关联的第二配置文件的远程管理命令。Selecting, from the metadata of the one or more configuration files corresponding to the EID of the terminal and the remote management command of the one or more configuration files, the metadata of the first configuration file that matches the download request instruction, and A remote management command of the second configuration file associated with the metadata of the first configuration file.

第十二方面,本申请提供一种配置文件的管理方法,所述方法包括:通信接口和处理器;所述处理器结合所述通信接口执行:In a twelfth aspect, the application provides a method for managing a configuration file, the method comprising: a communication interface and a processor; and the processor performs the following in conjunction with the communication interface:

接收终端发送的第一消息,其中,所述第一消息用于请求下载配置文件或所述第一消息用于请求获取所述终端的EID对应的所有管理命令;Receiving a first message sent by the terminal, where the first message is used to request to download a configuration file or the first message is used to request to acquire all management commands corresponding to the EID of the terminal;

向所述终端发送第二消息;所述第二消息中包括第一配置文件的元数据和第二配置文件的远程管理命令;所述第二配置文件为所述终端中已安装的配置文件。Sending a second message to the terminal; the second message includes metadata of the first configuration file and a remote management command of the second configuration file; and the second configuration file is a configuration file that is installed in the terminal.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

接收终端发送的第一标识;Receiving a first identifier sent by the terminal;

所述处理器在所述通信接口向所述终端发送第二消息之前,还用于:The processor is further configured to: before the communication interface sends the second message to the terminal:

根据所述第一标识,得到所述第一标识对应的第一配置文件的元数据和第二配置文件的远程管理命令。And obtaining, according to the first identifier, metadata of the first configuration file corresponding to the first identifier and a remote management command of the second configuration file.

可选地,所述远程管理平台包括第一远程管理平台和第二远程管理平台;所述通信接口包括所述第一远程管理平台的通信接口和所述第二远程管理平台的通信接口;Optionally, the remote management platform includes a first remote management platform and a second remote management platform; the communication interface includes a communication interface of the first remote management platform and a communication interface of the second remote management platform;

所述第一远程管理平台的通信接口接收所述终端发送的所述终端的EID;The communication interface of the first remote management platform receives the EID of the terminal sent by the terminal;

所述第一远程管理平台的通信接口向所述终端发送所述终端的EID对应的M个标识;Transmitting, by the communication interface of the first remote management platform, the M identifiers corresponding to the EIDs of the terminal to the terminal;

所述第二远程管理平台的通信接口接收终端发送的第一标识;所述第一标识为所述终端的EID对应的M个标识中的一个标识;M为正整数。The communication interface of the second remote management platform receives the first identifier sent by the terminal; the first identifier is one of the M identifiers corresponding to the EID of the terminal; and M is a positive integer.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

接收所述终端发送的所述终端的EID和管理请求标识;所述管理请求标识为所述终端根据用户选择的下载配置文件的操作或获取终端的EID对应的所有管理命令的操作生成的;Receiving, by the terminal, an EID and a management request identifier of the terminal, where the management request identifier is generated by the terminal according to an operation of downloading a configuration file selected by a user or acquiring an operation command corresponding to an EID of the terminal;

所述处理器在所述通信接口向所述终端发送第二消息之前,还用于:The processor is further configured to: before the communication interface sends the second message to the terminal:

若所述管理请求标识为下载请求标识,所述远程管理平台获取与所述终端的EID对应的所述第一配置文件,创建所述第一配置文件的元数据,并获取与所述终端的EID对应的所述第二配置文件的远程管理命令;所述第二配置文件的远程管理命令与所述第一配置文件相关联;If the management request identifier is a download request identifier, the remote management platform acquires the first configuration file corresponding to the EID of the terminal, creates metadata of the first configuration file, and acquires the metadata of the first configuration file. a remote management command of the second configuration file corresponding to the EID; a remote management command of the second configuration file is associated with the first configuration file;

若所述管理请求标识为获取终端的EID对应的所有管理命令的标识,所述远程管理平台获取所述终端的EID对应的所述第一配置文件,以及所述终端的EID对应的所述第二配置文件的远程管理命令。 If the management request identifier is an identifier of all the management commands corresponding to the EID of the terminal, the remote management platform acquires the first configuration file corresponding to the EID of the terminal, and the first corresponding to the EID of the terminal. Remote management command for the second configuration file.

可选地,所述通信接口具体用于:Optionally, the communication interface is specifically configured to:

接收所述终端发送的所述终端的EID;以及Receiving an EID of the terminal sent by the terminal;

向所述终端发送所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令;所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中至少包括所述第一配置文件的元数据和第二配置文件的远程管理命令构成的集合;或者,Transmitting, to the terminal, metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files; metadata of one or more configuration files corresponding to the EID of the terminal The remote management command of the one or more configuration files includes at least a set of metadata of the first configuration file and a remote management command of the second configuration file; or

向所述终端发送所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令以及所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令分别对应的标识;或者,Transmitting, to the terminal, metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files and metadata of one or more configuration files corresponding to the EID of the terminal The identifier corresponding to the remote management command of one or more configuration files; or

向所述终端发送所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令;Transmitting, to the terminal, metadata of one or more configuration files corresponding to an EID of the terminal and a remote management command of one or more configuration files;

所述一个或多个配置文件的元数据中包括所述第一配置文件的元数据;所述一个或多个配置文件的远程管理命令中包括所述第二配置文件的远程管理命令。The metadata of the one or more configuration files includes metadata of the first configuration file; and the remote management command of the one or more configuration files includes a remote management command of the second configuration file.

本申请实施例还提供一种计算机存储介质,该存储介质中存储软件程序,该软件程序在被一个或多个处理器读取并执行时可实现上述任意一种设计提供的配置文件的管理方法。The embodiment of the present application further provides a computer storage medium, where the software program stores a software program, and the software program can implement the configuration file management method provided by any one of the above designs when being read and executed by one or more processors. .

本申请实施例还提供了一种通信系统,该系统包括上述任意一种设计提供的终端,可选的,该系统还可以包括本申请实施例提供的方案中与所述终端进行交互的远程管理平台。The embodiment of the present application further provides a communication system, which includes any terminal provided by any one of the foregoing designs. Optionally, the system may further include remote management of interacting with the terminal in the solution provided by the embodiment of the present application. platform.

本申请实施例还提供了一种包含指令的计算机程序产品,当其在计算机上运行时,使得计算机执行上述各方面所述的方法。The embodiment of the present application also provides a computer program product comprising instructions which, when run on a computer, cause the computer to perform the method described in the above aspects.

附图说明DRAWINGS

图1a为本申请适用的一种系统架构图;Figure 1a is a system architecture diagram applicable to the present application;

图1b为本申请适用的一种具体系统架构图;Figure 1b is a specific system architecture diagram applicable to the present application;

图2为现有技术中下载profile的流程示意图;2 is a schematic flowchart of downloading a profile in the prior art;

图3为现有技术中远程管理profile的流程示意图;3 is a schematic flowchart of a remote management profile in the prior art;

图4为本申请提供的一种配置文件的管理方法对应的流程示意图;4 is a schematic flowchart of a method for managing a configuration file provided by the present application;

图5为本申请实施例二中提供的第一种配置文件的管理流程示意图;5 is a schematic diagram of a management process of a first configuration file provided in Embodiment 2 of the present application;

图6为本申请实施例二中提供的第二种配置文件的管理流程示意图;FIG. 6 is a schematic diagram of a management process of a second configuration file provided in Embodiment 2 of the present application;

图7为本申请实施例二中提供的第三种配置文件的管理流程示意图;FIG. 7 is a schematic diagram of a management process of a third configuration file provided in Embodiment 2 of the present application;

图8为本申请实施例三中提供的配置文件的管理流程示意图;8 is a schematic diagram of a management process of a configuration file provided in Embodiment 3 of the present application;

图9为本申请实施例四中提供的配置文件的管理流程示意图;9 is a schematic diagram of a management process of a configuration file provided in Embodiment 4 of the present application;

图10为本申请提供的一种终端的结构示意图;FIG. 10 is a schematic structural diagram of a terminal provided by the present application;

图11为本申请提供的一种远程管理平台的结构示意图;11 is a schematic structural diagram of a remote management platform provided by the present application;

图12为本申请提供的另一种终端的结构示意图;12 is a schematic structural diagram of another terminal provided by the present application;

图13为本申请提供的另一种远程管理平台的结构示意图。FIG. 13 is a schematic structural diagram of another remote management platform provided by the present application.

具体实施方式 detailed description

下面将结合附图对本申请实施例作进一步地详细描述。The embodiments of the present application will be further described in detail below with reference to the accompanying drawings.

图1a为本申请适用的一种系统架构图。如图1a所示,该系统架构中包括移动运营商的远程管理平台101和一个或多个终端,如图1a中所示出的终端102。终端102中集成有eUICC,并可通过网络(例如:无线网络)与远程管理平台101进行通信,从而实现对配置文件的下载和远程管理。FIG. 1a is a system architecture diagram applicable to the present application. As shown in FIG. 1a, the system architecture includes a mobile operator's remote management platform 101 and one or more terminals, such as terminal 102 shown in FIG. 1a. The eUICC is integrated in the terminal 102, and can communicate with the remote management platform 101 through a network (for example, a wireless network), thereby implementing downloading and remote management of the configuration file.

进一步地,图1a中的终端中可包括有本地文件助手(local profile assistant,LPA),远程管理平台101可包括签约管理-数据准备(subscription manager-data preparation,SM-DP+),签约管理-发现服务(subscription manager-discovery service,SM-DS)等,其中,SM-DP+和SM-DS可以为两个分开部署的平台。为更具体地描述本申请适用的系统架构,下面结合图1b进行介绍。Further, the terminal in FIG. 1a may include a local profile assistant (LPA), and the remote management platform 101 may include a subscription manager-data preparation (SM-DP+), subscription management-discovery. A subscription manager-discovery service (SM-DS) or the like, wherein the SM-DP+ and the SM-DS can be two separately deployed platforms. To more specifically describe the system architecture to which the present application applies, the following is described in conjunction with FIG. 1b.

图1b为本申请适用的一种具体系统架构图。如图1b所示,该系统架构中包括SM-DP+,SM-DS,LPA,eUICC,移动网络运营商(mobile network operator,MNO),卡商EUM,证书发布中心(certificate issuer,CI),用户(User)。FIG. 1b is a specific system architecture diagram applicable to the present application. As shown in FIG. 1b, the system architecture includes SM-DP+, SM-DS, LPA, eUICC, mobile network operator (MNO), card merchant EUM, certificate issuer (CI), user. (User).

其中,SM-DP+主要负责profile生成,profile保护,profile存储,profile绑定,profile发送,远程profile管理等。需要说明的是,在其它可能的系统架构中,可以将图1b中的SM-DP+拆分为多个平台,例如SM-DP、签约管理-安全路由(subscription manager-secure routing,SM-SR)等,此种情况下,SM-DP负责profile生成,profile保护,profile存储,profile绑定等,SM-SR负责profile发送,远程profile管理等。Among them, SM-DP+ is mainly responsible for profile generation, profile protection, profile storage, profile binding, profile sending, and remote profile management. It should be noted that in other possible system architectures, the SM-DP+ in FIG. 1b can be split into multiple platforms, such as SM-DP, subscription manager-secure routing (SM-SR). Etc. In this case, the SM-DP is responsible for profile generation, profile protection, profile storage, profile binding, etc., SM-SR is responsible for profile transmission, remote profile management, and the like.

SM-DS主要负责接收SM-DP+发送的事件(event)注册,并将事件发送给终端。事件可包括profile下载事件(即:SM-DP+有profile等待终端下载)和profile管理事件(即:SM-DP+有profile管理命令等待终端获取)。The SM-DS is mainly responsible for receiving event registrations sent by the SM-DP+ and transmitting the events to the terminal. The event may include a profile download event (ie: SM-DP+ has a profile waiting for the terminal to download) and a profile management event (ie: SM-DP+ has a profile management command waiting for the terminal to acquire).

终端中包括LPA,进一步地,LPA中可包括本地发现服务(local discovery Service,LDS),本地配置文件下载(local profile download,LPD)和本地用户接口(local user interface,LUI)。LDS负责事件查询,即:向SM-DS查询事件;LPD负责下载profile,即:LPD通过超文本传输协议(Hyper Text Transport Protocol,HTTP)等安全连接从SM-DP+下载profile到LPD中,然后将下载下来的profile发送到eUICC中,具体的可以通过本地应用协议数据单元(application protocol data unit,APDU)命令将下载下来的profile发送到eUICC中,或者,LPD也可以从SM-DP+获取远程profile管理命令(remote profile management,RPM)或者远程eUICC管理命令(remote eUICC management,ReM),并将命令传递给eUICC,实现对eUICC以及profile的远程管理;LUI提供和用户的交互逻辑和界面,用户可以通过LUI来完成对profile的本地管理,如下载新的profile,激活profile,去激活profile,删除profile,更新某一个profile或者更新所有的profile等。The terminal includes an LPA. Further, the LPA may include a local discovery service (LDS), a local profile download (LPD), and a local user interface (LUI). The LDS is responsible for event query, that is, querying the event to the SM-DS; the LPD is responsible for downloading the profile, that is, the LPD downloads the profile from the SM-DP+ to the LPD through a secure connection such as a Hyper Text Transport Protocol (HTTP), and then The downloaded profile is sent to the eUICC. The downloaded profile can be sent to the eUICC through the local application protocol data unit (APDU) command. Alternatively, the LPD can also obtain the remote profile management from the SM-DP+. Remote profile management (RPM) or remote eUICC management (ReM), and the command is passed to the eUICC to implement remote management of the eUICC and the profile; the LUI provides interaction logic and interface with the user, and the user can pass The LUI performs local management of the profile, such as downloading a new profile, activating a profile, activating a profile, deleting a profile, updating a profile, or updating all profiles.

现有技术中,下载和远程管理profile是分别执行的。In the prior art, the download and remote management profiles are executed separately.

图2为现有技术中下载profile的流程示意图。如图2所示,该流程包括:FIG. 2 is a schematic flowchart of downloading a profile in the prior art. As shown in Figure 2, the process includes:

步骤201,LPA获取SM-DP+的地址,可选地,LPA还可以获取事件标识(event identifier)或激活码令牌(activation code token),其中,事件标识和激活码标记可统称为匹配标识(matching identifier)。In step 201, the LPA obtains the address of the SM-DP+. Optionally, the LPA may also obtain an event identifier or an activation code token, where the event identifier and the activation code token may be collectively referred to as a matching identifier ( Matching identifier).

步骤202,LPA和SM-DP+进行双向认证,在双向认证过程中,LPA将eUICC的标识码(eUICC identifier,EID)发送给SM-DP+,若步骤201中,LPA获取到了匹配标识,则LPA将匹配标识发送给SM-DP+。 In step 202, the LPA and the SM-DP+ perform mutual authentication. In the two-way authentication process, the LPA sends the eUICC identifier (eIDCC identifier, EID) to the SM-DP+. If the LPA obtains the matching identifier in step 201, the LPA will The matching identifier is sent to SM-DP+.

步骤203,双向认证通过后,SM-DP+根据EID或匹配标识,查找是否有对应的profile,并检查eUICC信息和终端信息,判断是否可以下载该profile;若eUICC和终端无法下载该profile,则SM-DP+通知运营商;若可以下载,则SM-DP+创建profile元数据(metadata),创建smdpSigned2,并使用SM-DP+用于绑定profile的证书的私钥SK.DPpb.ECDSA计算签名,并将profile metadata,以及签名等信息发送给LPA。Step 203: After the mutual authentication is passed, the SM-DP+ searches for the corresponding profile according to the EID or the matching identifier, and checks the eUICC information and the terminal information to determine whether the profile can be downloaded. If the eUICC and the terminal cannot download the profile, the SM -DP+ notifies the operator; if it can be downloaded, SM-DP+ creates profile metadata, creates smdpSigned2, and calculates the signature using SM-DP+ private key SK.DPpb.ECDSA for the profile binding certificate, and Profile metadata, as well as signatures, etc. are sent to the LPA.

步骤204,LPA检查profile metadata,判断是否包括policy rules,若包含,根据RAT(Rules Authorisation Table)判断是否允许下载包含这些policy rules的profile;可选地,还可以获取用户对安装该profile的确认;若根据RAT判断允许下载,且获取到用户同意下载,则图2中的流程继续。Step 204: The LPA checks the profile metadata, and determines whether the policy rules are included. If yes, it is determined according to the RAT (Rules Authorisation Table) whether to allow downloading the profile including the policy rules; optionally, the user can also obtain the confirmation that the user installs the profile; If the download is allowed according to the RAT and the user agrees to download, the flow in FIG. 2 continues.

步骤205,LPA向eUICC发送准备下载命令,请求中携带SM-DP+的证书、签名等信息。Step 205: The LPA sends a prepare download command to the eUICC, where the request carries information such as a certificate and a signature of the SM-DP+.

步骤206,eUICC验证SM-DP+证书和签名,验证通过后,eUICC生成临时密钥对,生成euiccSigned2,使用eUICC的私钥生成eUICC签名(euiccSignature2),并将eUICC签名等信息发送给LPA。Step 206: The eUICC verifies the SM-DP+ certificate and the signature. After the verification is passed, the eUICC generates a temporary key pair, generates eucicSigned2, generates an eUICC signature (euiccSignature2) by using the eUICC private key, and sends the eUICC signature and the like to the LPA.

步骤207,LPA将eUICC签名等信息发送给SM-DP+。In step 207, the LPA sends information such as an eUICC signature to the SM-DP+.

步骤208,SM-DP+验证eUICC签名后,判断是否需要确认码,若需要确认码,则验证用户输入的确认码是否正确,在用户输入的确认码正确后,SM-DP+产生临时密钥对,计算会话密钥,对profile进行加密生成要下载的profile,即绑定的配置文件包(bound profile package,BPP),并将要下载的profile发送给LPA。Step 208: After verifying the eUICC signature, the SM-DP+ determines whether the confirmation code is needed. If the confirmation code is needed, it is verified whether the confirmation code input by the user is correct. After the confirmation code input by the user is correct, the SM-DP+ generates a temporary key pair. The session key is calculated, and the profile is encrypted to generate a profile to be downloaded, that is, a bound profile package (BPP), and the profile to be downloaded is sent to the LPA.

步骤209,LPA验证profile中的metadata是否有改变,若在204步中未获取用户确认,则提示用户确认等,并在用户确认后,将BPP发送给eUICC进行安装。Step 209: The LPA verifies that the metadata in the profile has changed. If the user confirmation is not obtained in step 204, the user is prompted to confirm, and after the user confirms, the BPP is sent to the eUICC for installation.

eUICC安装完成后,可通知LPA配置文件已安装完成,LPA可进一步通知SM-DP+配置文件已安装完成。After the eUICC installation is completed, the LPA configuration file can be notified that the installation has been completed. The LPA can further notify the SM-DP+ configuration file that the installation is complete.

图3为现有技术中远程管理配置文件的流程示意图。如图3所示,该流程包括:FIG. 3 is a schematic flowchart of a remote management configuration file in the prior art. As shown in Figure 3, the process includes:

步骤301,LPA获取SM-DP+的地址,可选地,还可以获取事件标识。In step 301, the LPA obtains the address of the SM-DP+, and optionally, the event identifier.

步骤302,LPA和SM-DP+进行双向认证,在双向认证过程中,LPA将EID(或者事件标识)发送给SM-DP+。In step 302, the LPA and the SM-DP+ perform mutual authentication. In the two-way authentication process, the LPA sends the EID (or event identifier) to the SM-DP+.

步骤303,SM-DP+查找和EID或者事件标识匹配的远程管理命令,可以是多个远程管理命令组成的命令包;SM-DP+通知移动网络运营商将执行远程管理(如果在前述步骤中有错误,则通知移动网络运营商有错误);SM-DP+创建smdpSigned3,包括transaction ID、远程管理命令包,以及使用SM-DP+用于和eUICC进行认证的证书的私钥SK.DPauth.ECDSA计算smdpSigned3的签名,并将smdpSigned3以及签名发送给LPA。Step 303: The SM-DP+ search remote management command matching the EID or the event identifier may be a command packet composed of multiple remote management commands; the SM-DP+ notifies the mobile network operator to perform remote management (if there is an error in the foregoing steps) , to inform the mobile network operator that there is an error); SM-DP+ creates smdpSigned3, including transaction ID, remote management command packet, and private key SK.DPauth.ECDSA for calculating smdpSigned3 using SM-DP+ certificate for authentication with eUICC Sign and send smdpSigned3 and the signature to LPA.

步骤304,可选的,LPA判断RPM中的policy rules,并获取用户对执行远程管理命令的同意,如果用户确认进行远程管理,则继续执行图3的流程。Step 304: Optionally, the LPA determines the policy rules in the RPM, and obtains the user's consent to execute the remote management command. If the user confirms the remote management, the process of FIG. 3 is continued.

步骤305,LPA将RPM命令包发送给eUICC。In step 305, the LPA sends the RPM command packet to the eUICC.

步骤306,eUICC验证SM-DP+的签名,验证通过后,依次执行远程管理命令包中的命令。Step 306, the eUICC verifies the signature of the SM-DP+, and after the verification is passed, sequentially executes the commands in the remote management command packet.

eUICC在执行完毕后,可通知LPA远程管理命令已执行完毕,LPA可进一步通知SM-DP+命令已执行完毕。After the execution of the eUICC, the LPA remote management command can be notified that the execution has been completed, and the LPA can further notify the SM-DP+ that the command has been executed.

根据上述图2和图3中所示出的流程可知,下载和远程管理profile是单独的流程。然 而,在有些情况下,需要将下载和远程管理profile结合起来执行,例如,在下载新的profile之前需要删除旧的profile,或者,下载完新的profile之后需要激活该profile等,如果按照现有技术的流程分开执行,则一方面需要获取多次用户同意(下载和远程管理单独获取用户同意),另一方面下载profile和RPM分开执行时,无法确保按照既定的顺序执行,可能导致下载profile或者远程管理命令执行失败。According to the flow shown in Figures 2 and 3 above, the download and remote management profiles are separate processes. Of course However, in some cases, the download and remote management profiles need to be combined, for example, the old profile needs to be deleted before downloading the new profile, or the profile needs to be activated after downloading the new profile, if The technical processes are executed separately. On the one hand, it is necessary to obtain multiple user consents (download and remote management separately obtain user consent). On the other hand, when downloading profiles and RPMs are performed separately, it is impossible to ensure that they are executed in the order specified, which may result in downloading profiles or Remote management command execution failed.

基于此,本申请提供一种配置文件的管理方法,用于将配置文件的下载和远程管理合并起来执行,从而简化网络交互,提高用户体验。Based on this, the present application provides a management method for a configuration file, which is used to combine the downloading of the configuration file and the remote management, thereby simplifying network interaction and improving the user experience.

需要说明的是,本申请中的终端,又称之为用户设备(User Equipment,UE),是一种向用户提供语音和/或数据连通性的设备,例如,具有无线连接功能的手持式设备、车载设备等。常见的终端包括:手机、平板电脑、笔记本电脑、掌上电脑、移动互联网设备(mobile internet device,MID)、可穿戴设备等。It should be noted that the terminal in the present application, also referred to as a User Equipment (UE), is a device that provides voice and/or data connectivity to a user, for example, a handheld device with a wireless connection function. , in-vehicle equipment, etc. Common terminals include: mobile phones, tablets, laptops, PDAs, mobile internet devices (MIDs), wearable devices, and the like.

实施例一Embodiment 1

基于上述描述,图4为本申请提供的一种配置文件的管理方法对应的流程示意图,如图4所示,该方法包括:Based on the above description, FIG. 4 is a schematic flowchart of a method for managing a configuration file provided by the present application. As shown in FIG. 4, the method includes:

步骤401,终端向远程管理平台发送第一消息;Step 401: The terminal sends a first message to the remote management platform.

步骤402,远程管理平台接收终端发送的第一消息,并向终端发送第二消息;所述第二消息中包括N个管理命令;所述N个管理命令中包括下载命令和远程管理命令;N为大于1的整数;Step 402: The remote management platform receives the first message sent by the terminal, and sends a second message to the terminal. The second message includes N management commands. The N management commands include a download command and a remote management command. Is an integer greater than 1;

步骤403,终端接收所述第二消息,并根据所述N个管理命令管理配置文件。Step 403: The terminal receives the second message, and manages the configuration file according to the N management commands.

本申请中,终端通过与远程管理平台进行一次通信交互(即向远程管理平台发送第一消息,接收远程管理平台发送的第二消息),便可得到相互关联的多个管理命令,由于N个相互关联的管理命令中包括下载命令和远程管理命令,从而能够实现将配置文件的下载和远程管理结合起来,有效简化网络交互,提高用户体验。In the present application, the terminal can obtain a plurality of management commands associated with each other by performing a communication interaction with the remote management platform (that is, sending the first message to the remote management platform and receiving the second message sent by the remote management platform). The interrelated management commands include download commands and remote management commands, which enable the combination of downloading and remote management of configuration files, simplifying network interaction and improving user experience.

针对于上述步骤401至步骤403,需要说明以下几点:For the above steps 401 to 403, the following points need to be explained:

(1)本申请中,第一消息可以是终端在接收到用户选择的管理请求指令后发送的。用户选择的管理请求指令可以为下载请求指令、远程管理请求指令和全部更新(update all)请求指令中的任意一项。其中,下载请求指令用于请求下载profile;远程管理请求指令用于请求更新某一个profile的指令;全部更新请求指令用于请求获取终端的EID对应的所有管理命令;终端的EID对应的所有管理命令可以包括更新终端中已安装的所有profile,或者,也可以包括下载profile和更新终端中已安装的所有profile。(1) In the present application, the first message may be sent by the terminal after receiving the management request command selected by the user. The user-selected management request instruction may be any one of a download request instruction, a remote management request instruction, and an update all request instruction. The download request instruction is used to request to download a profile; the remote management request instruction is used to request an instruction to update a profile; all update request instructions are used to request to acquire all management commands corresponding to the EID of the terminal; all management commands corresponding to the EID of the terminal It may include updating all profiles installed in the terminal, or it may include downloading profiles and updating all profiles installed in the terminal.

(2)终端向远程管理平台发送的第一消息可以称为下载请求消息(对应管理请求指令为下载请求指令的情形)、远程管理请求消息(对应管理请求指令为远程管理请求指令的情形)或者全部更新请求消息(对应管理请求指令为全部更新请求指令的情形),具体不做限定。(2) The first message sent by the terminal to the remote management platform may be referred to as a download request message (corresponding to a case where the management request instruction is a download request instruction), a remote management request message (corresponding to a case where the management request instruction is a remote management request instruction) or All update request messages (corresponding to the case where the management request instruction is all update request instructions) are not limited.

实际过程中,第一消息可以为认证客户端请求,具体不做限定。In the actual process, the first message may be an authentication client request, which is not limited.

(3)管理命令可以是指下载命令,下载命令用于指示终端下载配置文件,下载命令中可以包括待下载的配置文件的元数据;管理命令也可以是指远程管理命令,远程管理命令于指示终端远程管理配置文件,远程管理命令中可以包括远程管理命令等内容。因此,远程管理平台所发送的N个管理命令可同时包括下载命令和远程管理命令,进而终端根据 下载命令下载与下载命令相关的配置文件,根据远程管理命令管理与远程管理命令相关的配置文件。(3) The management command may be a download command, the download command is used to instruct the terminal to download the configuration file, and the download command may include metadata of the configuration file to be downloaded; the management command may also refer to a remote management command, and the remote management command indicates The terminal remotely manages the configuration file, and the remote management command may include remote management commands and the like. Therefore, the N management commands sent by the remote management platform can include both the download command and the remote management command, and then the terminal is based on The download command downloads the configuration file related to the download command and manages the configuration file related to the remote management command according to the remote management command.

本申请中,N个管理命令可以为相互关联的管理命令,相互关联具体可以通过多种形式体现,例如,具有相同的ICCID,或者,具有相同的配置文件所有者(profile owner)标识等。In this application, the N management commands may be interrelated management commands, and the mutual association may be embodied in various forms, for example, having the same ICCID, or having the same profile owner identifier.

举个例子,N个管理命令中包括第一配置文件的下载命令和第二配置文件的远程管理命令,则第一配置文件的下载命令和第二配置文件的远程管理命令相互关联可以是指第一配置文件的下载预定和第二配置文件的远程管理命令预定对应相同的标识(事件标识或匹配标识),也就是说,由于第一配置文件的下载预定和第二配置文件的远程管理命令预定对应相同的标识,因此,后续生成的第一配置文件的下载命令和第二配置文件的远程管理命令相互关联。For example, the N management commands include a download command of the first configuration file and a remote management command of the second configuration file, and the association between the download command of the first configuration file and the remote management command of the second configuration file may refer to The download schedule of one configuration file and the remote management command of the second configuration file are scheduled to correspond to the same identifier (event identifier or matching identifier), that is, due to the download schedule of the first profile and the remote management command of the second profile. Corresponding to the same identifier, the download command of the subsequently generated first configuration file and the remote management command of the second configuration file are associated with each other.

或者,第一配置文件的下载命令和第二配置文件的远程管理命令相互关联也可以是指第一配置文件的下载命令和第二配置文件的远程管理命令具有相同的ICCID。Alternatively, the association between the download command of the first configuration file and the remote management command of the second configuration file may also mean that the download command of the first configuration file and the remote management command of the second configuration file have the same ICCID.

又或者,第一配置文件的下载命令和第二配置文件的远程管理命令相互关联也可以是指第一配置文件的下载命令和第二配置文件的远程管理命令具有相同的配置文件所有者(profile owner)标识。当然,本申请中,并不限定N个管理命令中所包括的远程管理命令来自于同一个所有者,在一些可能的情形下,N个管理命令也可以包括来自不同配置文件所有者(profile owner)的远程管理命令。Or, the association between the download command of the first configuration file and the remote management command of the second configuration file may also mean that the download command of the first configuration file and the remote management command of the second configuration file have the same profile owner (profile) Owner) identification. Certainly, in the present application, the remote management commands included in the N management commands are not limited to be from the same owner. In some possible cases, the N management commands may also include from different profile owners (profile owner). Remote management commands.

针对于上述流程,本申请具体提供五种可能的实现方式,下面基于图1a所示出的系统架构分别进行介绍。For the above process, the present application specifically provides five possible implementation manners, which are respectively introduced based on the system architecture shown in FIG. 1a.

需要说明的是,在第一种至第四种可能的实现方式中,移动网络运营商可向远程管理平台进行profile下载预定和RPM预定,若profile下载和远程管理为关联操作,则移动网络运营商为profile下载预定和远程管理命令预定设置相同的标识(事件标识或匹配标识)。It should be noted that, in the first to fourth possible implementation manners, the mobile network operator may perform a profile download reservation and an RPM reservation to the remote management platform, and if the profile download and the remote management are associated operations, the mobile network operation The merchant sets the same identifier (event identifier or matching identifier) for the profile download reservation and the remote management command.

第一种可能的实现方式The first possible implementation

a1,终端接收用户的管理请求指令;A1. The terminal receives a management request instruction of the user.

a2,终端向所述远程管理平台发送所述终端的EID;A2. The terminal sends the EID of the terminal to the remote management platform.

a3,远程管理平台接收到终端的EID,得到与终端的EID对应的M个标识,并将M个标识发送给终端;A3, the remote management platform receives the EID of the terminal, obtains M identifiers corresponding to the EID of the terminal, and sends the M identifiers to the terminal;

a4,终端接收远程管理平台发送的终端的EID对应的M个标识,并向远程管理平台发送第一标识;第一标识为所述M个标识中的一个标识;M为正整数;A4: The terminal receives the M identifiers corresponding to the EIDs of the terminals sent by the remote management platform, and sends the first identifier to the remote management platform; the first identifier is one of the M identifiers; M is a positive integer;

a5,远程管理平台得到第一标识对应的N个管理命令,并将N个管理命令发送给终端;第一标识对应的N个管理命令可以包括第一标识对应的下载命令和第一标识对应的远程管理命令,第一标识对应的下载命令具体可以是指根据第一标识对应的配置文件生成的该配置文件的下载命令;A5: The remote management platform obtains the N management commands corresponding to the first identifier, and sends the N management commands to the terminal. The N management commands corresponding to the first identifier may include the download command corresponding to the first identifier and the first identifier. The remote management command, the download command corresponding to the first identifier may specifically be the download command of the configuration file generated according to the configuration file corresponding to the first identifier;

a6,终端确定所述N个管理命令与所述管理请求指令匹配后,根据所述N个管理命令管理配置文件;若所述终端确定所述N个管理命令与所述管理请求指令不匹配,则所述终端向所述远程管理平台报告所述N个管理命令与所述管理请求指令不匹配。After the terminal determines that the N management commands are matched with the management request command, the terminal manages the configuration file according to the N management commands; if the terminal determines that the N management commands do not match the management request command, And the terminal reports to the remote management platform that the N management commands do not match the management request instruction.

其中,终端确定所述N个管理命令与所述管理请求指令匹配,具体包括:若所述管理请求指令为下载请求指令,则所述终端确定所述N个管理命令中包括所述下载命令后,确定所述N个管理命令与所述管理请求指令匹配;若所述管理请求指令为远程管理请求指令, 则所述终端确定所述N个管理命令中包括远程管理命令,且不包括下载命令后,确定所述N个管理命令与所述管理请求指令匹配;若所述管理请求指令为全部更新(update all)请求指令,则所述终端可直接确定所述N个管理命令与所述管理请求指令匹配。The terminal determines that the N management commands are matched with the management request instruction, and specifically includes: if the management request instruction is a download request instruction, the terminal determines that the N management commands include the download command Determining that the N management commands are matched with the management request instruction; if the management request instruction is a remote management request instruction, The terminal determines that the N management commands include a remote management command, and after the download command is not included, determining that the N management commands match the management request instruction; if the management request instruction is all updates (update All) requesting the instruction, the terminal may directly determine that the N management commands match the management request instruction.

进一步地,若所述管理请求指令为远程管理请求指令,所述终端确定所述N个管理命令中包括远程管理命令和下载命令后,终端可直接确定所述N个管理命令与所述管理请求指令不匹配;或者,终端也可以确定所述N个管理命令中的远程管理命令与所述管理请求指令匹配,所述N个管理命令中的下载命令与所述管理请求指令不匹配,如此,终端可执行所述N个管理命令中的远程管理命令,并向所述远程管理平台报告所述N个管理命令中的下载命令与所述管理请求指令不匹配。Further, if the management request instruction is a remote management request instruction, and the terminal determines that the remote management command and the download command are included in the N management commands, the terminal may directly determine the N management commands and the management request. The command does not match; or the terminal may determine that the remote management command of the N management commands matches the management request instruction, and the download command of the N management commands does not match the management request instruction, such that The terminal may execute a remote management command among the N management commands, and report to the remote management platform that the download command of the N management commands does not match the management request instruction.

上述过程中,仅是以第一标识为例进行说明,终端接收到终端的EID对应的M个标识后,可针对任一标识均参照上述第一标识来处理。In the above process, only the first identifier is taken as an example. After receiving the M identifiers corresponding to the EID of the terminal, the terminal may refer to the first identifier for processing any one of the identifiers.

需要说明的是,终端根据N个管理命令管理配置文件后,若判断还有第一标识以外的标识未被处理,则可向用户确认是否继续获取管理命令并在接收到用户对第一配置文件进行继续管理的确认指令后,向远程管理平台发送第二标识,第二标识为所述M个标识中未被处理的一个标识。It should be noted that, after the terminal manages the configuration file according to the N management commands, if it is determined that the identifier other than the first identifier is not processed, the user may confirm whether to continue to acquire the management command and receive the user's first configuration file. After performing the confirmation instruction of the continuation management, the second identifier is sent to the remote management platform, and the second identifier is an identifier that is not processed in the M identifiers.

在上述第一种可能的实现方式中,N个管理命令为相互关联的管理命令,其相互关联具体体现为N个管理命令对应相同的标识(事件标识或匹配标识)。In the first possible implementation manner, the N management commands are related management commands, and the mutual associations are specifically represented by the N management commands corresponding to the same identifier (event identifier or matching identifier).

第二种可能的实现方式The second possible implementation

b1,终端接收用户的管理请求指令,管理请求指令中包括管理请求标识;B1. The terminal receives a management request instruction of the user, where the management request instruction includes a management request identifier.

b2,终端向所述远程管理平台发送所述终端的EID和所述管理请求标识;B2. The terminal sends the EID of the terminal and the management request identifier to the remote management platform.

b3,一种方式可以为:远程管理平台根据所述终端的EID,得到与所述终端的EID对应的K个管理命令,并根据管理请求标识从K个管理命令中选择出与所述管理请求指令匹配的第一管理命令以及与第一管理命令关联的管理命令,将选择出的N个管理命令(即为所述第一管理命令和与第一管理命令关联的管理命令)发送给终端;B3, a method may be: the remote management platform obtains K management commands corresponding to the EID of the terminal according to the EID of the terminal, and selects and manages the management request from the K management commands according to the management request identifier. The first management command that matches the command and the management command that is associated with the first management command sends the selected N management commands (that is, the first management command and the management command associated with the first management command) to the terminal;

另一种方式可以为:若所述管理请求标识为下载请求标识,所述远程管理平台获取与所述终端的EID对应的第一管理命令,并获取与所述终端的EID对应且与所述第一管理命令关联的管理命令;举个例子,第一管理命令为第一配置文件的下载命令,与第一管理命令关联的管理命令为第二配置文件的远程管理命令,则远程管理平台首先获取与终端EID对应的第一配置文件,创建第一配置文件的元数据,并获取与终端的EID对应的第二配置文件的远程管理命令,第二配置文件的远程管理命令与第一配置文件相关联(具体可以是指第二配置文件的远程管理命令预定和第一配置文件的下载预定对应相同的标识)。若所述管理请求标识为全部更新标识,所述远程管理平台获取所述终端的EID对应的所有管理命令。The other method may be: if the management request identifier is a download request identifier, the remote management platform acquires a first management command corresponding to the EID of the terminal, and acquires an EID corresponding to the terminal and the The management command associated with the first management command; for example, the first management command is a download command of the first configuration file, and the management command associated with the first management command is a remote management command of the second configuration file, and the remote management platform first Obtaining a first configuration file corresponding to the terminal EID, creating metadata of the first configuration file, and acquiring a remote management command of the second configuration file corresponding to the EID of the terminal, and the remote configuration command of the second configuration file and the first configuration file Corresponding (specifically, the remote management command reservation of the second configuration file and the download reservation of the first configuration file correspond to the same identifier). If the management request is identified as all update identifiers, the remote management platform acquires all management commands corresponding to the EID of the terminal.

b4,终端根据所述N个管理命令管理配置文件。B4. The terminal manages the configuration file according to the N management commands.

第三种可能的实现方式The third possible implementation

c1,终端接收用户的管理请求指令;C1. The terminal receives a management request instruction of the user.

c2,终端向所述远程管理平台发送所述终端的EID;C2. The terminal sends the EID of the terminal to the remote management platform.

c3,远程管理平台接收到所述终端的EID后,得到所述终端的EID对应的K个管理命令;远程管理平台将K个管理命令中相互关联的管理命令组合到一个管理命令集合中,并将组合后的K个管理命令发送给终端。 C3, after receiving the EID of the terminal, the remote management platform obtains K management commands corresponding to the EID of the terminal; the remote management platform combines the management commands associated with each other in the K management commands into one management command set, and Send the combined K management commands to the terminal.

c4,终端接收到K个管理命令后,可从K个管理命令中选择出与管理请求指令匹配的第一管理命令,从而得到第一管理命令以及与第一管理命令在同一个管理命令集合中的管理命令,并根据得到的N个管理命令(即为所述第一管理命令和与第一管理命令在同一个集合中的管理命令)管理配置文件。C4. After receiving the K management commands, the terminal may select a first management command that matches the management request command from the K management commands, thereby obtaining the first management command and being in the same management command set as the first management command. The management command, and manages the configuration file according to the obtained N management commands, that is, the first management command and the management command in the same set as the first management command.

第四种可能的实现方式The fourth possible implementation

d1,终端接收用户的管理请求指令;D1. The terminal receives a management request instruction of the user.

d2,终端向所述远程管理平台发送所述终端的EID;D2. The terminal sends the EID of the terminal to the remote management platform.

d3,远程管理平台接收到所述终端的EID后,得到所述终端的EID对应的K个管理命令;远程管理平台为K个管理命令中相互关联的管理命令设置相同的组标识(group ID),并将K个管理命令及对应的组标识发送给终端,其中,组标识可以和匹配标识相同。D3. After receiving the EID of the terminal, the remote management platform obtains K management commands corresponding to the EID of the terminal; the remote management platform sets the same group ID (group ID) for the management commands associated with each other in the K management commands. And sending the K management commands and the corresponding group identifiers to the terminal, where the group identifiers may be the same as the matching identifiers.

d4,终端接收到K个管理命令后,可从K个管理命令中选择出与管理请求指令匹配的第一管理命令,从而得到第一管理命令以及与第一管理命令的组标识相同的管理命令,并根据得到的N个管理命令(即为所述第一管理命令和与第一管理命令的组标识相同的管理命令)管理配置文件。D4. After receiving the K management commands, the terminal may select a first management command that matches the management request command from the K management commands, thereby obtaining the first management command and the same management command as the group identifier of the first management command. And managing the configuration file according to the obtained N management commands, that is, the same management command as the first management command and the group identifier of the first management command.

第五种可能的实现方式The fifth possible implementation

e1,终端接收用户的管理请求指令;E1. The terminal receives a management request instruction of the user.

e2,终端向所述远程管理平台发送所述终端的EID;E2. The terminal sends the EID of the terminal to the remote management platform.

e3,远程管理平台接收到所述终端的EID后,得到所述终端的EID对应的K个管理命令,并将K个管理命令发送给终端;E3, after receiving the EID of the terminal, the remote management platform obtains K management commands corresponding to the EID of the terminal, and sends K management commands to the terminal;

e4,终端接收到K个管理命令后,从K个管理命令中选择出与管理请求指令匹配的第一管理命令以及与所述第一管理命令关联的管理命令,并根据选择出的N个管理命令(即为所述第一管理命令和与第一管理命令关联的管理命令)管理配置文件。其中,终端可通过多种方式判断两个管理命令是否关联,例如,判断两个管理命令是否包含相同的集成电路卡识别码(Integrate circuit card identity,ICCID),或者是否包含同一个配置文件所有者(profile owner)的标识,或者其中一个管理命令是否依赖于另一个管理命令的在先执行。E4. After receiving the K management commands, the terminal selects, from the K management commands, a first management command that matches the management request command and a management command associated with the first management command, and according to the selected N managements. The command (ie, the first management command and the management command associated with the first management command) manages the configuration file. The terminal can determine whether the two management commands are associated in multiple manners, for example, whether the two management commands include the same integrated circuit card identity (ICCID), or whether the same profile owner is included. The identity of the profile owner, or whether one of the administrative commands depends on the previous execution of another administrative command.

针对于上述第一种至第五种可能的实现方式,需要说明的是,终端根据N个管理命令管理配置文件时,终端可以按照第二消息中N个管理命令的顺序执行N个管理命令,例如,当所述第二消息中,下载命令的顺序在远程管理命令之前时,所述终端先执行下载命令,然后执行远程管理命令,例如,第二消息中包括下载第一配置文件(下载命令)和激活第一配置文件(远程管理命令),则终端在执行时,可先下载第一配置文件,然后激活第一配置文件;当所述第二消息中,下载命令的顺序在远程管理命令之后时,所述终端先执行远程管理命令,然后执行下载命令。For the foregoing first to fifth possible implementation manners, it is to be noted that, when the terminal manages the configuration file according to the N management commands, the terminal may execute N management commands in the order of N management commands in the second message. For example, when the order of the download command is before the remote management command in the second message, the terminal first executes the download command, and then executes the remote management command, for example, the second message includes downloading the first configuration file (download command) And activating the first configuration file (remote management command), the terminal may first download the first configuration file and then activate the first configuration file; and in the second message, the order of the download command is in the remote management command Thereafter, the terminal first executes a remote management command and then executes a download command.

考虑到实际过程中,N个管理命令中可能包括去激活并删除另一个配置文件以及下载第一配置文件,此时,若终端按照第二消息中N个管理命令的顺序执行N个管理命令,则可能会先执行去激活并删除另一个配置文件(远程管理命令),导致没有网络连接下载第一配置文件(下载命令),因此,终端可选择先下载第一配置文件,然后再执行去激活并删除另一个配置文件。也就是说,终端也可以根据实际情况来确定执行N个管理命令的顺序,例如,当第二消息中,下载命令的顺序在远程管理命令之前时,所述终端先缓存下载命令,并在执行远程管理命令后,执行缓存的下载命令;当所述第二消息中,下载命令的顺序在远程管理命令之后时,所述终端先缓存远程管理命令,并在执行下载命令后,执行 缓存的远程管理命令。Considering the actual process, the N management commands may include deactivating and deleting another configuration file and downloading the first configuration file. At this time, if the terminal executes N management commands in the order of N management commands in the second message, You may first perform deactivation and delete another configuration file (remote management command), resulting in no network connection to download the first configuration file (download command), so the terminal can choose to download the first configuration file before performing deactivation. And delete another configuration file. That is, the terminal may also determine the order in which the N management commands are executed according to actual conditions. For example, when the order of downloading commands is before the remote management command in the second message, the terminal first caches the download command and executes After the remote management command, the cached download command is executed; when the order of the download command is after the remote management command in the second message, the terminal first caches the remote management command, and after executing the download command, executes Cached remote management commands.

本申请中,第二消息的消息格式可以有多种,下面给出一种可能的示例:In this application, the message format of the second message can be various, and a possible example is given below:

Figure PCTCN2017079360-appb-000001
Figure PCTCN2017079360-appb-000001

在上述示例中,下载命令(即profileMetaData)的顺序位于远程管理命令(rpm)之前。In the above example, the order of the download command (ie profileMetaData) is before the remote management command (rpm).

在其它的示例中,下载命令也可以位于远程管理命令之后。In other examples, the download command can also be located after the remote management command.

进一步地,在第三种可能的实现方式中,第二消息包括在同一个管理命令集合(comandSet)中的多个管理命令,下面给出一种管理命令集合的示例:Further, in a third possible implementation manner, the second message includes multiple management commands in the same management command set (comandSet), and an example of the management command set is given below:

Figure PCTCN2017079360-appb-000002
Figure PCTCN2017079360-appb-000002

在上述示例中,管理命令集合(comandSet)中包括下载命令(profileMetaData)和远程管理命令(rpm)。In the above example, the management command set (comandSet) includes a download command (profileMetaData) and a remote management command (rpm).

实施例二 Embodiment 2

在实施例中,将基于图1b中所示出的系统架构对实施例一中所描述的方法流程进行详细介绍。In the embodiment, the method flow described in Embodiment 1 will be described in detail based on the system architecture shown in FIG. 1b.

图5为本申请实施例二中提供的第一种配置文件的管理流程示意图,对应实施例一中第一种可能的实现方式。在执行具体流程之前,移动网络运营商可向远程管理平台SM-DP+进行profile下载预定和RPM预定,若profile下载和RPM为关联操作,则移动网络运营商为profile下载预定和RPM预定设置相同的事件标识(或匹配标识)。SM-DP+在SM-DS进行事件注册。FIG. 5 is a schematic diagram of a management process of a first configuration file provided in Embodiment 2 of the present application, corresponding to the first possible implementation manner in Embodiment 1. Before performing the specific process, the mobile network operator may perform profile download scheduling and RPM reservation to the remote management platform SM-DP+. If the profile download and the RPM are associated operations, the mobile network operator sets the profile download schedule and the RPM subscription setting to be the same. Event ID (or match ID). SM-DP+ performs event registration on SM-DS.

如图5所示,具体流程包括:As shown in Figure 5, the specific process includes:

步骤501,用户通过LPA选择下载请求指令(add profile),或远程管理请求指令(update profile),或全部更新请求指令(update all)。In step 501, the user selects a download profile (update profile), or a remote management request profile (update profile), or all update request commands (update all) through the LPA.

步骤502,LPA和SM-DS(即第一远程管理平台)进行双向认证,认证过程中,LPA向SM-DS发送所述终端的EID;双向认证过程和现有流程相同。Step 502: The LPA and the SM-DS (ie, the first remote management platform) perform mutual authentication. During the authentication process, the LPA sends the EID of the terminal to the SM-DS. The two-way authentication process is the same as the existing process.

步骤503,认证通过后,SM-DS根据终端的EID查找终端的EID对应的所有事件(设为M个事件),并将M个事件的事件标识以及各事件标识对应的SM-DP+(即第二远程管理平台)的地址发送给LPA。Step 503: After the authentication is passed, the SM-DS searches for all events corresponding to the EID of the terminal according to the EID of the terminal (set to M events), and sets an event identifier of the M events and an SM-DP+ corresponding to each event identifier (ie, The address of the second remote management platform is sent to the LPA.

步骤504,LPA接收SM-DS发送的终端的EID对应的M个事件标识,对每一个事件,LPA和SM-DP+进行双向认证,在双向认证过程中,LPA将每一个事件的事件标识发送给该事件标识对应的SM-DP+,该流程中以第一事件标识为例进行说明,第一事件标识为M个事件标识中的一个事件标识。Step 504: The LPA receives M event identifiers corresponding to the EIDs of the terminals sent by the SM-DS, and performs bidirectional authentication for each event, LPA and SM-DP+. In the two-way authentication process, the LPA sends the event identifier of each event to The event identifies the corresponding SM-DP+. The first event identifier is used as an example in the process. The first event identifier is an event identifier in the M event identifiers.

步骤505,SM-DP+根据第一事件标识查找第一事件标识对应的下载命令和远程管理命令,构建profile metadata,smdpSigned2,smdpSignature2等数据结构,以及构建smdpSigned3,smdpSignature3等数据结构,以及将构建的与第一事件标识对应的相关数据发送给LPA。Step 505: The SM-DP+ searches for the download command and the remote management command corresponding to the first event identifier according to the first event identifier, constructs a data structure such as profile metadata, smdpSigned2, smdpSignature2, and constructs a data structure such as smdpSigned3, smdpSignature3, and the The relevant data corresponding to the first event identifier is sent to the LPA.

步骤506,LPA验证接收到的数据是否和用户本地选择的管理请求指令相匹配。具体的验证方式有多种,此处列举几种可能的方式:例如1,用户选择的是下载请求指令,则判断接收到数据中是否至少包含profile metadata的数据结构,若是,则判断为匹配,否则,判断接收到的数据和用户选择的管理请求指令不匹配;例如2,用户选择的是远程管理命令(更新某一个profile),则判断接收到的数据是否为远程管理命令并且远程管理命令中的ICCID和用户选择的profile的ICCID对应,若是,则判断为匹配,否则,判断接收到的数据和用户选择的管理请求指令不匹配;例如3,用户选择的是全部更新请求指令,若LPA的该功能可以处理任何命令,则不需要做判断,否则根据LPA的实现,可能会判断接收到的数据是否仅为远程管理命令,若是,则判断为匹配,否则,判断为不匹配。In step 506, the LPA verifies whether the received data matches the management request command selected by the user locally. There are several specific verification methods. Here are several possible ways: for example, if the user selects a download request command, it determines whether the received data contains at least the data structure of the profile metadata, and if so, it is judged to be a match. Otherwise, it is judged that the received data does not match the management request command selected by the user; for example, 2, the user selects a remote management command (updates a profile), and determines whether the received data is a remote management command and is in a remote management command. The ICCID corresponds to the ICCID of the profile selected by the user, and if so, it is determined to be a match; otherwise, it is determined that the received data does not match the management request command selected by the user; for example, 3, the user selects all update request commands, if LPA This function can process any command, so no judgment is needed. Otherwise, according to the implementation of the LPA, it may be judged whether the received data is only a remote management command, and if so, it is judged as a match, otherwise, it is judged as a mismatch.

若接收到的数据和用户选择的管理请求指令不匹配,则LPA向SM-DP+发送操作不匹配或ICCID不匹配的消息,消息中可以携带不匹配的ICCID和具体的操作类型,SM-DP+将保留不匹配的事件,以便LPA下次获取。If the received data does not match the management request command selected by the user, the LPA sends a message that the operation does not match or the ICCID does not match to the SM-DP+. The message may carry a mismatched ICCID and a specific operation type. The SM-DP+ Keep mismatched events so that LPA gets it next time.

若接收到的数据和用户选择的管理请求指令匹配,则LPA获取用户对于接收到的多个下载和/或远程管理命令的同意。例如,如果用户选择的是下载请求指令,接收到的数据为去激活并删除当前的另一个profile,以及下载新的profile,则LPA提示用户是否同意去激活并删除当前的另一个profile,并下载新的profile,若用户同意,则LPA可能进一步根据接收到的数据判断执行顺序,具体可参见实施例一中所描述的关于N个管理命令的执行顺序的内容,此处不再赘述。 If the received data matches the user selected management request command, the LPA obtains the user's consent to the received plurality of download and/or remote management commands. For example, if the user selects a download request instruction, the received data is to deactivate and delete the current other profile, and download a new profile, the LPA prompts the user whether to agree to activate and delete the current other profile and download The new profile, if the user agrees, the LPA may further determine the execution order according to the received data. For details, refer to the content of the execution order of the N management commands described in the first embodiment, and details are not described herein again.

本申请中,LPA根据接收到的数据执行下载或远程管理的具体过程可参照现有技术。In the present application, the specific process by which the LPA performs download or remote management according to the received data can refer to the prior art.

采用第一种可能的实现方式,远程管理平台可以将相互关联的管理命令一并发送给终端,终端可以统一获取用户的同意,并按照合理的顺序执行操作,有效避免了用户针对不同命令的多次同意,且减少了终端和网络之间的交互次数。With the first possible implementation, the remote management platform can send the associated management commands to the terminal together, and the terminal can uniformly obtain the user's consent and perform operations in a reasonable order, thereby effectively avoiding the user's multiple commands. The second time agreed, and the number of interactions between the terminal and the network was reduced.

图6为本申请实施例二中提供的第二种配置文件的管理流程示意图,对应实施例一中第二种可能的实现方式。相对于图5所示出的第一种配置文件的管理流程,图6中没有使用SM-DS,并且在LPA和SM-DP+的双向认证过程中,LPA向SM-DP+发送了用户选择的管理请求标识(具体可以为用户选择的操作类型),具体的区别体现在步骤502和步骤503。下面进行具体描述。FIG. 6 is a schematic diagram of a management process of a second configuration file provided in Embodiment 2 of the present application, which corresponds to a second possible implementation manner in Embodiment 1. The SM-DS is not used in FIG. 6 with respect to the management flow of the first profile shown in FIG. 5, and the LPA sends the user-selected management to the SM-DP+ in the two-way authentication process of the LPA and the SM-DP+. The request identifier (specifically, the type of operation selected by the user) is embodied in steps 502 and 503. A detailed description will be given below.

首先需要说明的是,管理请求标识是根据用户选择的管理请求指令设置的,若用户选择的管理请求指令为下载请求指令,则管理请求标识为下载请求标识;若用户选择的管理请求指令为远程管理请求指令,则管理请求标识为远程管理请求标识(此时LPA还需向SM-DP+发送相应的ICCID);若用户选择的管理请求指令为全部更新指令中的更新终端已安装的所有profile,则管理请求标识为远程管理请求标识(此时LPA可无需向SM-DP+发送相应的ICCID);若用户选择的管理请求指令为全部更新指令中的下载profile和更新终端中已安装的所有profile,则管理请求标识为全部更新标识(具体来说,可以是all的指示)。First, the management request identifier is set according to the management request command selected by the user. If the management request command selected by the user is a download request command, the management request identifier is a download request identifier; if the management request command selected by the user is a remote Management request instruction, the management request identifier is a remote management request identifier (at this time, the LPA also needs to send the corresponding ICCID to the SM-DP+); if the management request command selected by the user is all the profiles installed by the update terminal in all the update instructions, The management request identifier is a remote management request identifier (in this case, the LPA may not need to send the corresponding ICCID to the SM-DP+); if the management request command selected by the user is the download profile in all the update instructions and all the profiles installed in the update terminal, The management request identifier is all update identifiers (specifically, may be an indication of all).

步骤601,用户通过LPA选择下载请求指令(add profile),或远程管理请求指令(update profile),或全部更新请求指令(update all)。In step 601, the user selects a download profile (update profile), or a remote management request profile (update profile), or all update request commands (update all) through the LPA.

步骤602,在双向认证过程中,LPA向SM-DP+发送EID和管理请求标识,若用户选择add profile,则LPA发送下载请求标识,若用户选择update profile,则LPA发送远程管理请求标识等,若用户选择update all,则LPA发送远程管理请求标识或all的指示。Step 602: In the two-way authentication process, the LPA sends an EID and a management request identifier to the SM-DP+. If the user selects the add profile, the LPA sends a download request identifier. If the user selects the update profile, the LPA sends the remote management request identifier. When the user selects update all, the LPA sends an indication of the remote management request identifier or all.

步骤603,SM-DP+根据EID以及管理请求标识,得到下载命令和远程管理命令。例如,用户选择的为add profile,SM-DP+根据EID和下载请求标识判断是否有和EID对应的profile下载预定(download order),若有,则判断是否有和下载预定相关的事件标识,若有,则判断是否有具有相同事件标识的RPM命令,若有,则作为下载预定的关联管理命令,并根据下载预定生成对应的下载命令后,将生成的下载命令和下载预定的关联管理命令(RPM)发送给LPA。In step 603, the SM-DP+ obtains a download command and a remote management command according to the EID and the management request identifier. For example, the user selects the add profile, and the SM-DP+ determines whether there is a profile download order corresponding to the EID according to the EID and the download request identifier. If yes, it determines whether there is an event identifier related to the download reservation, if any And determining whether there is an RPM command having the same event identifier, and if so, as a download management scheduled association command, and generating a corresponding download command according to the download schedule, the generated download command and the download scheduled association management command (RPM) ) is sent to the LPA.

步骤604,LPA接收SM-DP+发送的与用户选择的管理请求指令匹配的数据,并执行下载和远程管理。具体过程可参见图5中对应的内容不再赘述。In step 604, the LPA receives the data sent by the SM-DP+ that matches the management request command selected by the user, and performs downloading and remote management. For the specific process, reference may be made to the corresponding content in FIG. 5 for details.

采用第二种可能的实现方式,相对于第一种来说,终端可以不使用SM-DS,且终端通过将用户选择的操作类型发送给远程管理平台,使得远程管理平台可以选择与操作类型匹配的管理命令并发送给终端。如此,终端可直接执行接收到的管理命令,而无需判断接收到的管理命令与用户选择的操作类型是否匹配,有效降低了终端的处理负担。With the second possible implementation manner, the terminal may not use the SM-DS, and the terminal sends the operation type selected by the user to the remote management platform, so that the remote management platform can select and match the operation type. Management commands are sent to the terminal. In this way, the terminal can directly execute the received management command without determining whether the received management command matches the operation type selected by the user, thereby effectively reducing the processing load of the terminal.

图7为本申请实施例二中提供的第三种配置文件的管理流程示意图,对应实施例一中第三种可能的实现方式。FIG. 7 is a schematic diagram of a management process of a third configuration file provided in Embodiment 2 of the present application, corresponding to a third possible implementation manner in Embodiment 1.

步骤701,用户通过LPA选择下载请求指令(add profile),或远程管理请求指令(update profile),或全部更新请求指令(update all)。In step 701, the user selects a download profile (update profile), or a remote management request profile (update profile), or all update request commands (update all) through the LPA.

步骤702,在双向认证过程中,LPA向SM-DP+发送所述终端的EID。Step 702: In the two-way authentication process, the LPA sends the EID of the terminal to the SM-DP+.

步骤703,SM-DP+查询终端的EID对应的所有下载命令和远程管理命令,并查找是否有相同事件标识的请求。对于有相同事件标识的请求,SM-DP+构建管理命令集合,管 理命令集合包括具有相同事件标识的请求相关的数据;对于单独的请求,可直接发送各请求的数据结构,即SM-DP+将管理命令集合和单独请求的数据发送给LPA。Step 703: The SM-DP+ queries all download commands and remote management commands corresponding to the EID of the terminal, and searches for a request for the same event identifier. For requests with the same event ID, SM-DP+ builds a collection of management commands, The set of control commands includes data related to the request with the same event identifier; for a separate request, the data structure of each request can be directly sent, that is, SM-DP+ sends the management command set and the separately requested data to the LPA.

步骤704,LPA验证每一个管理命令集合中是否有和用户选择的管理请求指令匹配的下载命令或远程管理命令,或者验证各单独的下载命令或远程管理命令是否和用户选择的管理请求指令匹配。若管理命令集合中有和用户选择的管理请求指令匹配的请求,则LPA将该数据集中的其它请求作为关联请求,一并执行。Step 704, the LPA verifies whether there is a download command or a remote management command in each management command set that matches the management request command selected by the user, or verifies whether each individual download command or remote management command matches the management request command selected by the user. If there is a request in the management command set that matches the management request command selected by the user, the LPA executes the other requests in the data set as association requests.

采用第三种可能的实现方式,相对于第一种和第二种来说,终端可以不使用SM-DS,并且终端无需上报用户选择的操作类型。With the third possible implementation, the terminal may not use the SM-DS with respect to the first and second types, and the terminal does not need to report the type of operation selected by the user.

本申请实施例二提供第四种配置文件的管理流程,对应实施例一中第四种可能的实现方式。第四种配置文件的管理流程与上述第三种具有相同的技术效果,区别在于,SM-DP+为相互关联的请求分配相同的组标识(group ID),该组标识可以为事件标识。The second embodiment of the present application provides a management flow of the fourth configuration file, and corresponds to the fourth possible implementation manner in the first embodiment. The management process of the fourth configuration file has the same technical effect as the third method described above. The difference is that the SM-DP+ assigns the same group ID to the interrelated request, and the group identifier can be an event identifier.

具体来说,在上述步骤703中,SM-DP+依序构建下载命令或远程管理命令的数据结构,并在数据结构中为相互关联的请求分配相同的组标识,并发送给LPA。Specifically, in the above step 703, the SM-DP+ sequentially constructs the data structure of the download command or the remote management command, and assigns the same group identifier to the interrelated request in the data structure, and sends the same group identifier to the LPA.

在上述步骤704中,LPA验证接收到的管理命令中是否有和用户选择的管理请求指令匹配的下载命令或远程管理命令,若有,则获取和用户选择的管理请求指令匹配的下载命令或远程管理命令的组标识,并将具有相同组标识的其它请求作为匹配的请求的关联请求,一并执行。In the above step 704, the LPA verifies whether there is a download command or a remote management command in the received management command that matches the management request command selected by the user, and if so, acquires a download command or a remote match with the management request command selected by the user. Manage the group ID of the command and execute other requests with the same group ID as the associated request for the matching request.

本申请实施例二提供第五种配置文件的管理流程,对应实施例一中第五种可能的实现方式。与上述几种方式的区别在于,SM-DP+将终端的EID对应的所有管理命令发送给LPA,由LPA来决定执行哪些请求,具体来说,LPA判断是否有和用户选择的管理请求指令相匹配的请求,若有,则进一步判断是否有需要合并执行(相互关联的请求可合并执行)的请求,具体判断方式可参见实施例中的介绍,不再赘述。由于第五种可能的实现方式中,无需对LPA和网络的接口进行修改,从而能够有效提高终端实现的灵活性。The second embodiment of the present application provides a management flow of the fifth configuration file, and corresponds to the fifth possible implementation manner in the first embodiment. The difference from the above several methods is that SM-DP+ sends all management commands corresponding to the EID of the terminal to the LPA, and the LPA determines which requests are executed. Specifically, the LPA determines whether there is a management request command selected by the user. The request, if any, is further determined whether there is a request for the merge execution (the inter-related request can be combined and executed). For the specific judgment manner, refer to the introduction in the embodiment, and no further details are provided. Because the fifth possible implementation manner does not need to modify the interface of the LPA and the network, the flexibility of the terminal implementation can be effectively improved.

实施例三Embodiment 3

如上述内容所述,用户选择的管理请求指令可能为下载请求指令、远程管理请求指令或全部更新请求指令,在实施例三中,将以用户选择的管理请求指令为下载请求指令为例,来对上述实施例一和实施例二中所描述的配置文件的管理方法进行介绍。As described above, the management request command selected by the user may be a download request instruction, a remote management request instruction, or a full update request instruction. In the third embodiment, the management request instruction selected by the user is taken as an example of the download request instruction. The management method of the configuration file described in the first embodiment and the second embodiment will be described.

图8为本申请实施例三中的配置文件的管理流程示意图。如图8所示,该流程包括:FIG. 8 is a schematic diagram of a management process of a configuration file in Embodiment 3 of the present application. As shown in Figure 8, the process includes:

步骤801,终端向远程管理平台发送第一消息,其中,所述第一消息用于请求下载第一配置文件,所述终端中已安装有第二配置文件;Step 801: The terminal sends a first message to the remote management platform, where the first message is used to request to download the first configuration file, and the second configuration file is already installed in the terminal.

步骤802,远程管理平台接收第一消息,并向所述终端发送第二消息;所述第二消息中包括所述第一配置文件的元数据和第二配置文件的远程管理命令;Step 802: The remote management platform receives the first message, and sends a second message to the terminal. The second message includes metadata of the first configuration file and a remote management command of the second configuration file.

步骤803,终端接收第二消息,并根据所述第一配置文件的元数据下载所述第一配置文件,以及根据所述第二配置文件的远程管理命令管理所述第二配置文件。Step 803: The terminal receives the second message, and downloads the first configuration file according to the metadata of the first configuration file, and manages the second configuration file according to the remote management command of the second configuration file.

上述步骤801至步骤803可适用多种场景,一种示例性场景为用户想要下载第一配置文件,而终端中已安装有第二配置文件,在第一配置文件包含有无法去激活该配置文件的策略规则的情况下,成功下载第一配置文件前需要先远程管理第二配置文件。针对于该种场景,若采用现有技术中的方法,用户选择下载第一配置文件的下载请求指令后,由于终端尚未对第二配置文件进行远程管理,因此无法成功下载第一配置文件,此时,终端需提 示用户先选择远程管理请求指令,对第二配置文件进行远程管理后,方可选择下载第一配置文件的下载请求指令。由此可知,现有技术中的方式较为繁琐,导致用户体验较差。而采用本申请中的方法,则远程管理平台通过第二消息将第一配置文件的元数据和第二配置文件的远程管理命令均发送给终端,由此,终端可选择先根据第二配置文件的远程管理命令管理第二配置文件,然后根据第一配置文件的元数据下载第一配置文件,从而能够有效节省网络交互,提高用户体验。The foregoing steps 801 to 803 can be applied to various scenarios. One exemplary scenario is that the user wants to download the first configuration file, and the second configuration file is already installed in the terminal, and the first configuration file includes the configuration that cannot be deactivated. In the case of a policy rule of a file, the second configuration file needs to be remotely managed before the first configuration file is successfully downloaded. For the scenario, if the user selects the download request command of the first configuration file after the user selects the download request command of the first configuration file, the first configuration file cannot be successfully downloaded because the terminal has not remotely managed the second configuration file. When the terminal needs to mention The user first selects the remote management request command, and after remotely managing the second configuration file, the download request command of the first configuration file may be downloaded. It can be seen that the methods in the prior art are cumbersome, resulting in poor user experience. The remote management platform sends the metadata of the first configuration file and the remote management command of the second configuration file to the terminal by using the second message, so that the terminal can select the second configuration file according to the second configuration file. The remote management command manages the second configuration file, and then downloads the first configuration file according to the metadata of the first configuration file, thereby effectively saving network interaction and improving user experience.

针对于上述步骤801至步骤803,需要说明以下三点:For the above steps 801 to 803, the following three points need to be explained:

(1)本申请中,终端向远程管理平台发送的第一消息还可以称为下载请求消息。实际过程中,第一消息可以为认证客户端请求,具体不做限定。上述流程也可适用于第一消息用于请求获取所述终端的EID对应的所有管理命令(此时用户选择的管理请求指令为全部更新请求指令)的场景。(1) In the present application, the first message sent by the terminal to the remote management platform may also be referred to as a download request message. In the actual process, the first message may be an authentication client request, which is not limited. The foregoing process is also applicable to a scenario in which the first message is used to request to acquire all management commands corresponding to the EID of the terminal (in this case, the management request command selected by the user is all update request instructions).

(2)终端下载第一配置文件以及管理第二配置文件的执行顺序,可依据如下方式:当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之前时,所述终端先下载所述第一配置文件,然后管理所述第二配置文件;当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之后时,所述终端先管理所述第二配置文件,然后下载所述第一配置文件。即,终端按照第二消息中第一配置文件的元数据和第二配置文件的远程管理命令的顺序执行下载第一配置文件以及管理第二配置文件。(2) The order in which the terminal downloads the first configuration file and manages the second configuration file may be performed according to the following manner: in the second message, the order of the metadata of the first configuration file is in the second configuration file Before the remote management command, the terminal first downloads the first configuration file, and then manages the second configuration file; when the second message, the order of the metadata of the first configuration file is in the After the remote management command of the second configuration file, the terminal first manages the second configuration file, and then downloads the first configuration file. That is, the terminal performs downloading of the first configuration file and managing the second configuration file in the order of the metadata of the first configuration file and the remote management command of the second configuration file in the second message.

然而,在一种可能的情形下,例如,远程管理第二配置文件是指去激活并删除第二配置文件,此时,若终端按照第二消息中第一配置文件的元数据和第二配置文件的远程管理命令的顺序来执行,则可能会先执行去激活并删除第二配置文件(远程管理第二配置文件),导致没有网络连接下载第一配置文件,因此,终端可选择先下载第一配置文件,然后再执行去激活并删除第二配置文件。基于此,终端下载第一配置文件以及管理第二配置文件的执行顺序,也可以依据如下方式:当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之前时,所述终端先缓存所述第一配置文件的元数据,并在管理所述第二配置文件后,根据缓存的第一配置文件的元数据下载第一配置文件;当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之后时,所述终端先缓存所述第二配置文件的远程管理命令,并在下载所述第一配置文件后,根据缓存的所述第二配置文件的远程管理命令管理所述第二配置文件。However, in a possible scenario, for example, remotely managing the second configuration file refers to deactivating and deleting the second configuration file. At this time, if the terminal follows the metadata and the second configuration of the first configuration file in the second message. If the remote management commands of the file are executed in sequence, the second configuration file may be deactivated and deleted (remote management of the second configuration file), resulting in no network connection to download the first configuration file. Therefore, the terminal may select to download the first configuration first. A configuration file is then executed to deactivate and delete the second configuration file. Based on this, the order in which the terminal downloads the first configuration file and manages the second configuration file may also be performed according to the following manner: in the second message, the order of the metadata of the first configuration file is in the second configuration Before the remote management command of the file, the terminal first caches the metadata of the first configuration file, and after managing the second configuration file, downloads the first configuration file according to the metadata of the cached first configuration file; When the order of the metadata of the first configuration file is after the remote management command of the second configuration file, the terminal first caches the remote management command of the second configuration file, and After downloading the first configuration file, the second configuration file is managed according to the remote management command of the cached second configuration file.

进一步地,终端在下载第一配置文件和远程管理第二配置文件的过程中,可向用户确认是否同意下载第一配置文件和远程管理第二配置文件,具体来说,终端可以在下载第一配置文件时,向用户确认是否同意下载第一配置文件,在远程管理第二配置文件时,向用户确认是否同意远程管理第二配置文件,也就是说,终端分别向用户确认是否同意下载第一配置文件和远程管理第二配置文件。本申请中,为了提高用户体验,终端可以在下载第一配置文件和远程管理第二配置文件前,先向用户确认是否同意下载第一配置文件和远程管理第二配置文件,并在获取到用户的同意后,根据相应的执行顺序下载第一配置文件和远程管理第二配置文件,此时,终端只需要获取用户的一次同意,相比于现有技术中需要获取用户的多次同意,能够有效提高用户体验,节省交互开销。Further, in the process of downloading the first configuration file and remotely managing the second configuration file, the terminal may confirm to the user whether to agree to download the first configuration file and remotely manage the second configuration file, specifically, the terminal may download the first When configuring the file, confirm to the user whether to agree to download the first configuration file, and when remotely managing the second configuration file, confirm to the user whether to agree to remotely manage the second configuration file, that is, the terminal separately confirms to the user whether to agree to download the first configuration file. Profile and remote management of the second profile. In the application, in order to improve the user experience, the terminal may confirm to the user whether to agree to download the first configuration file and remotely manage the second configuration file, and obtain the user, before downloading the first configuration file and remotely managing the second configuration file. After the consent is obtained, the first configuration file is downloaded and the second configuration file is remotely managed according to the corresponding execution sequence. At this time, the terminal only needs to obtain the user's first consent, and can obtain the user's multiple consents in the prior art. Effectively improve the user experience and save interaction costs.

(3)终端根据第一配置文件的元数据下载第一配置文件,可以是指:终端验证第一配置文件的元数据,并在验证通过后,下载第一配置文件。具体过程可以为:终端检查第 一配置文件的元数据中是否包含policy rules,若包含,则根据RAT判断是否允许下载包含这些policy rules的第一配置文件,若允许,则终端可执行现有技术中图2所示出的流程下载第一配置文件,此处不再赘述。(3) The terminal downloads the first configuration file according to the metadata of the first configuration file, which may be: the terminal verifies the metadata of the first configuration file, and after the verification is passed, downloads the first configuration file. The specific process can be: terminal check Whether the policy of the configuration file includes the policy rules. If yes, the RAT determines whether the first configuration file including the policy rules is allowed to be downloaded. If allowed, the terminal can execute the process shown in FIG. 2 in the prior art. Download the first configuration file, which will not be described here.

结合实施例一中所描述的实现过程,本申请实施例三中也有五种可能的实现方式来实现上述流程,其与实施例一中的内容具有相同的发明构思,具体实现过程可参照上述实施例一,此处不再赘述。With reference to the implementation process described in the first embodiment, there are also five possible implementation manners in the third embodiment of the present application to implement the foregoing process, which has the same inventive concept as the content in the first embodiment, and the specific implementation process may refer to the foregoing implementation. For example, the details are not described here.

实施例四Embodiment 4

为更加清楚和完整地说明本申请,下面介绍本申请在实施例三中所描述的示例性场景中的实现过程,由于具体的实现方式有五种,在实施例四中仅对第一种可能的实现方式进行展开。For a clearer and more complete description of the present application, the implementation process in the exemplary scenario described in the third embodiment of the present application is described below. Since there are five specific implementation manners, only the first one is possible in the fourth embodiment. The implementation of the implementation.

图9为本申请实施例四中提供的配置文件的管理流程示意图。在执行具体流程之前,移动网络运营商可向远程管理平台SM-DP+进行profile下载预定和RPM预定,若profile下载和RPM为关联操作,则移动网络运营商为profile下载预定和RPM预定设置相同的事件标识(或匹配标识)。SM-DP+在SM-DS进行事件注册。FIG. 9 is a schematic diagram of a management process of a configuration file provided in Embodiment 4 of the present application. Before performing the specific process, the mobile network operator may perform profile download scheduling and RPM reservation to the remote management platform SM-DP+. If the profile download and the RPM are associated operations, the mobile network operator sets the profile download schedule and the RPM subscription setting to be the same. Event ID (or match ID). SM-DP+ performs event registration on SM-DS.

如图9所示,具体流程包括:As shown in Figure 9, the specific process includes:

步骤901,用户通过LPA选择下载请求指令。In step 901, the user selects a download request instruction through the LPA.

步骤902,LPA和SM-DS进行双向认证,认证过程中,LPA向SM-DS发送所述终端的EID。Step 902: The LPA and the SM-DS perform mutual authentication. During the authentication process, the LPA sends the EID of the terminal to the SM-DS.

步骤903,认证通过后,SM-DS根据终端的EID查找终端的EID对应的事件,其中,终端的EID对应的事件包括下载第一配置文件和远程管理第二配置文件,由于下载第一配置文件和远程管理第二配置文件为关联操作,因此具有相同的事件标识,此时,SM-DS可将该事件标识以及SM-DP+的地址发送给LPA。Step 903: After the authentication is passed, the SM-DS searches for an event corresponding to the EID of the terminal according to the EID of the terminal, where the event corresponding to the EID of the terminal includes downloading the first configuration file and remotely managing the second configuration file, because the first configuration file is downloaded. And the remote management second configuration file is associated operation, and therefore has the same event identifier. At this time, the SM-DS can send the event identifier and the address of the SM-DP+ to the LPA.

步骤904,LPA接收SM-DS发送的事件标识,并和SM-DP+进行双向认证,在双向认证过程中,LPA将事件标识发送给SM-DP+。Step 904: The LPA receives the event identifier sent by the SM-DS and performs mutual authentication with the SM-DP+. In the two-way authentication process, the LPA sends the event identifier to the SM-DP+.

步骤905,SM-DP+根据接收到的事件标识查找该事件标识对应的下载命令和远程管理命令,构建profile metadata,smdpSigned2,smdpSignature2等数据结构,以及构建smdpSigned3,smdpSignature3等数据结构,并将构建的与事件标识对应的相关数据发送给LPA。Step 905: The SM-DP+ searches for the download command and the remote management command corresponding to the event identifier according to the received event identifier, constructs a data structure such as profile metadata, smdpSigned2, smdpSignature2, and constructs a data structure such as smdpSigned3 and smdpSignature3, and constructs the data structure. The relevant data corresponding to the event identifier is sent to the LPA.

步骤906,LPA检查接收到的数据中包括profile metadata,则确定接收到的数据和用户本地选择的下载请求指令相匹配,并可继续执行步骤907。Step 906: The LPA checks that the received data includes profile metadata, and determines that the received data matches the download request command selected by the user locally, and may continue to perform step 907.

步骤907,LPA向用户确认是否同意下载第一配置文件以及远程管理第二配置文件,并在获取到用户的同意后,继续执行步骤908。In step 907, the LPA confirms to the user whether to agree to download the first configuration file and remotely manage the second configuration file, and after obtaining the user's consent, proceeds to step 908.

步骤908,LPA将判断,确定先远程管理第二配置文件,后下载第一配置文件;LPA将接收到的数据中的smdpSigned3,smdpSignature3等组成远程管理命令包发送给eUICC。In step 908, the LPA determines that the second configuration file is remotely managed, and then downloads the first configuration file; the LPA sends the remote management command packet, such as smdpSigned3 and smdpSignature3, to the eUICC.

步骤909,eUICC验证SM-DP+的smdpSignature3,并在验证通过后,依次执行远程管理命令包中的命令,执行完毕后,eUICC向LPA发送第一通知消息,通知LPA远程管理第二配置文件已执行完毕。In step 909, the eUICC verifies the smdpSignature3 of the SM-DP+, and after the verification is passed, sequentially executes the command in the remote management command packet. After the execution is completed, the eUICC sends a first notification message to the LPA to notify the LPA remote management that the second configuration file has been executed. Finished.

步骤910,LPA接收到eUICC发送的第一通知消息后,检查第一配置文件的元数据,判断是否包括policy rules,若包含,则根据RAT判断是否允许下载包含这些policy rules 的第一配置文件,并在确定允许后,判断是否需要用户输入确认码,若需要确认码,则获取用户输入的确认码,之后执行步骤911。在此过程中,LPA也可能获取用户下载所述第一配置文件的同意。Step 910: After receiving the first notification message sent by the eUICC, the LPA checks the metadata of the first configuration file to determine whether the policy rules are included. If yes, the RAT determines whether to allow the download to include the policy rules. The first configuration file, and after determining the permission, determines whether the user is required to input the confirmation code. If the confirmation code is required, the confirmation code input by the user is obtained, and then step 911 is performed. In the process, the LPA may also obtain the consent of the user to download the first configuration file.

步骤911,LPA向eUICC发送准备下载命令,请求中携带SM-DP+的证书、签名等信息。In step 911, the LPA sends a prepare download command to the eUICC, where the request carries information such as a certificate and a signature of the SM-DP+.

步骤912,eUICC验证SM-DP+的证书和签名,验证通过后,eUICC生成临时密钥对、euiccSigned2,以及使用eUICC的私钥生成eUICC签名(euiccSignature2),并将临时密钥对中的公钥,eUICC证书,eUICC签名等信息发送给LPA。Step 912, the eUICC verifies the certificate and signature of the SM-DP+. After the verification is passed, the eUICC generates a temporary key pair, eucicSigned2, and generates an eUICC signature (euiccSignature2) using the private key of the eUICC, and the public key in the temporary key pair, The eUICC certificate, eUICC signature, and the like are sent to the LPA.

步骤913,LPA将临时密钥对中的公钥,eUIC证书,eUICC签名等信息发送给SM-DP+。In step 913, the LPA sends information such as a public key, an eUIC certificate, and an eUICC signature in the temporary key pair to the SM-DP+.

步骤914,SM-DP+验证eUICC签名后,判断是否需要确认码,若需要确认码,则验证用户输入的确认码是否正确,在用户输入的确认码正确后,SM-DP+产生临时密钥对,计算会话密钥,对第一配置文件进行加密生成BPP,并将BPP发送给LPA。Step 914: After verifying the eUICC signature, the SM-DP+ determines whether the confirmation code is needed. If the confirmation code is needed, it is verified whether the confirmation code input by the user is correct. After the confirmation code input by the user is correct, the SM-DP+ generates a temporary key pair. The session key is calculated, the first configuration file is encrypted to generate a BPP, and the BPP is sent to the LPA.

步骤915,LPA验证BPP中第一配置文件的元数据是否有改变,提示用户确认等,并在用户确认后,将BPP发送给eUICC进行安装。In step 915, the LPA verifies whether the metadata of the first configuration file in the BPP is changed, prompts the user to confirm, and the BPP is sent to the eUICC for installation after the user confirms.

步骤916,eUICC安装完毕后,向LPA发送第二通知消息,通知LPA安装第一配置文件已执行完毕。Step 916: After the eUICC is installed, send a second notification message to the LPA to notify the LPA that the installation of the first configuration file has been completed.

步骤917,LPA接收到eUICC发送的第二通知消息后,将第一通知消息和第二通知消息一并发送给SM-DP+。Step 917: After receiving the second notification message sent by the eUICC, the LPA sends the first notification message and the second notification message to the SM-DP+.

步骤918,SM-DP+通知移动网络运营商执行结果。In step 918, the SM-DP+ notifies the mobile network operator to execute the result.

步骤919,LPA移除eUICC发送的第一通知消息和第二通知消息。Step 919: The LPA removes the first notification message and the second notification message sent by the eUICC.

需要说明的是:(1)本申请实施例四中所介绍的执行过程仅为实施例一至实施三中所描述的配置文件的管理方法的一种示例,具体实现不限于此。It should be noted that: (1) The execution process described in Embodiment 4 of the present application is only one example of the management method of the configuration file described in Embodiments 1 to 3. The specific implementation is not limited thereto.

(2)上述步骤编号仅是一种执行顺序的示例性表示,本申请中对执行顺序不做具体限定,例如,步骤918和步骤919也可以同时执行。(2) The above step numbers are merely exemplary representations of the execution order. The order of execution is not specifically limited in the present application. For example, step 918 and step 919 may also be performed simultaneously.

针对于上述方法流程,本申请还提供一种终端和远程管理平台,该终端和远程管理平台的具体实现可参照上述方法流程。The present application further provides a terminal and a remote management platform. The specific implementation of the terminal and the remote management platform may refer to the foregoing method flow.

图10为本申请提供一种终端的结构示意图,如图10所示,该终端包括如下功能模块:发送模块1001、接收模块1002和处理模块1003;发送模块1001、接收模块1002和处理模块1003用于执行上述实施一至实施例四中所述的终端侧的方法流程。10 is a schematic structural diagram of a terminal according to the present application. As shown in FIG. 10, the terminal includes the following functional modules: a sending module 1001, a receiving module 1002, and a processing module 1003; and a sending module 1001, a receiving module 1002, and a processing module 1003. The method flow of the terminal side described in the above-mentioned first to fourth embodiments is performed.

图11为本申请提供一种远程管理平台的结构示意图,如图11所示,该远程管理平台包括如下功能模块:发送模块1101、接收模块1102和处理模块1103;发送模块1101、接收模块1102和处理模块1103用于执行上述实施一至实施例四中所述的远程管理平台侧的方法流程。FIG. 11 is a schematic structural diagram of a remote management platform according to the present application. As shown in FIG. 11, the remote management platform includes the following functional modules: a sending module 1101, a receiving module 1102, and a processing module 1103; a sending module 1101, a receiving module 1102, and The processing module 1103 is configured to execute the method flow of the remote management platform side described in Embodiments 1 to 4 above.

图12为本申请提供的另一种终端的结构示意图。如图12所示,所述终端1200包括:通信接口1201、处理器1202、存储器1203和总线系统1204;FIG. 12 is a schematic structural diagram of another terminal provided by the present application. As shown in FIG. 12, the terminal 1200 includes: a communication interface 1201, a processor 1202, a memory 1203, and a bus system 1204;

其中,存储器1203,用于存放程序。具体地,程序可以包括程序代码,程序代码包括计算机操作指令。存储器1203可能为随机存取存储器(random access memory,简称RAM),也可能为非易失性存储器(non-volatile memory),例如至少一个磁盘存储器。图中仅示出 了一个存储器,当然,存储器也可以根据需要,设置为多个。存储器1203也可以是处理器1202中的存储器。The memory 1203 is configured to store a program. In particular, the program can include program code, the program code including computer operating instructions. The memory 1203 may be a random access memory (RAM) or a non-volatile memory, such as at least one disk storage. Only shown in the figure A memory, of course, the memory can also be set to multiple as needed. Memory 1203 can also be a memory in processor 1202.

存储器1203存储了如下的元素,可执行模块或者数据结构,或者它们的子集,或者它们的扩展集:The memory 1203 stores the following elements, executable modules or data structures, or a subset thereof, or an extended set thereof:

操作指令:包括各种操作指令,用于实现各种操作。Operation instructions: include various operation instructions for implementing various operations.

操作系统:包括各种系统程序,用于实现各种基础业务以及处理基于硬件的任务。Operating system: Includes a variety of system programs for implementing various basic services and handling hardware-based tasks.

处理器1202控制终端1200的操作,处理器1202还可以称为CPU(Central Processing Unit,中央处理单元)。具体的应用中,终端1200的各个组件通过总线系统1204耦合在一起,其中总线系统1204除包括数据总线之外,还可以包括电源总线、控制总线和状态信号总线等。但是为了清楚说明起见,在图中将各种总线都标为总线系统1204。为便于表示,图12中仅是示意性画出。The processor 1202 controls the operation of the terminal 1200, and the processor 1202 may also be referred to as a CPU (Central Processing Unit). In a specific application, the components of the terminal 1200 are coupled together by a bus system 1204. The bus system 1204 may include a power bus, a control bus, a status signal bus, and the like in addition to the data bus. However, for clarity of description, various buses are labeled as bus system 1204 in the figure. For ease of representation, only the schematic drawing is shown in FIG.

上述本申请实施例揭示的方法可以应用于处理器1202中,或者由处理器1202实现。处理器1202可能是一种集成电路芯片,具有信号的处理能力。在实现过程中,上述方法的各步骤可以通过处理器1202中的硬件的集成逻辑电路或者软件形式的指令完成。上述的处理器1202可以是通用处理器、数字信号处理器(DSP)、专用集成电路(ASIC)、现场可编程门阵列(FPGA)或者其他可编程逻辑器件、分立门或者晶体管逻辑器件、分立硬件组件。可以实现或者执行本申请实施例中的公开的各方法、步骤及逻辑框图。通用处理器可以是微处理器或者该处理器也可以是任何常规的处理器等。结合本申请实施例所公开的方法的步骤可以直接体现为硬件译码处理器执行完成,或者用译码处理器中的硬件及软件模块组合执行完成。软件模块可以位于随机存储器,闪存、只读存储器,可编程只读存储器或者电可擦写可编程存储器、寄存器等本领域成熟的存储介质中。该存储介质位于存储器1203,处理器1202读取存储器1203中的信息,结合其硬件执行上述实施一至实施例四中所述的终端侧的方法流程。The method disclosed in the foregoing embodiment of the present application may be applied to the processor 1202 or implemented by the processor 1202. Processor 1202 may be an integrated circuit chip with signal processing capabilities. In the implementation process, each step of the above method may be completed by an integrated logic circuit of hardware in the processor 1202 or an instruction in a form of software. The processor 1202 described above may be a general purpose processor, a digital signal processor (DSP), an application specific integrated circuit (ASIC), a field programmable gate array (FPGA) or other programmable logic device, a discrete gate or transistor logic device, or discrete hardware. Component. The methods, steps, and logical block diagrams disclosed in the embodiments of the present application can be implemented or executed. The general purpose processor may be a microprocessor or the processor or any conventional processor or the like. The steps of the method disclosed in the embodiments of the present application may be directly implemented by the hardware decoding processor, or may be performed by a combination of hardware and software modules in the decoding processor. The software module can be located in a conventional storage medium such as random access memory, flash memory, read only memory, programmable read only memory or electrically erasable programmable memory, registers, and the like. The storage medium is located in the memory 1203, and the processor 1202 reads the information in the memory 1203, and performs the method flow of the terminal side described in the above-mentioned first to fourth embodiments in combination with the hardware thereof.

图13为本申请提供的另一种远程管理平台的结构示意图。如图13所示,所述远程管理平台1300包括:通信接口1301、处理器1302、存储器1303和总线系统1304;FIG. 13 is a schematic structural diagram of another remote management platform provided by the present application. As shown in FIG. 13, the remote management platform 1300 includes: a communication interface 1301, a processor 1302, a memory 1303, and a bus system 1304;

其中,存储器1303,用于存放程序。具体地,程序可以包括程序代码,程序代码包括计算机操作指令。存储器1303可能为随机存取存储器(random access memory,简称RAM),也可能为非易失性存储器(non-volatile memory),例如至少一个磁盘存储器。图中仅示出了一个存储器,当然,存储器也可以根据需要,设置为多个。存储器1303也可以是处理器1302中的存储器。The memory 1303 is configured to store a program. In particular, the program can include program code, the program code including computer operating instructions. The memory 1303 may be a random access memory (RAM) or a non-volatile memory, such as at least one disk storage. Only one memory is shown in the figure, of course, the memory can also be set to a plurality as needed. Memory 1303 can also be a memory in processor 1302.

存储器1303存储了如下的元素,可执行模块或者数据结构,或者它们的子集,或者它们的扩展集:The memory 1303 stores the following elements, executable modules or data structures, or a subset thereof, or an extended set thereof:

操作指令:包括各种操作指令,用于实现各种操作。Operation instructions: include various operation instructions for implementing various operations.

操作系统:包括各种系统程序,用于实现各种基础业务以及处理基于硬件的任务。Operating system: Includes a variety of system programs for implementing various basic services and handling hardware-based tasks.

处理器1302控制远程管理平台1300的操作,处理器1302还可以称为CPU(Central Processing Unit,中央处理单元)。具体的应用中,远程管理平台1300的各个组件通过总线系统1304耦合在一起,其中总线系统1304除包括数据总线之外,还可以包括电源总线、控制总线和状态信号总线等。但是为了清楚说明起见,在图中将各种总线都标为总线系统1304。为便于表示,图13中仅是示意性画出。The processor 1302 controls the operation of the remote management platform 1300, and the processor 1302 may also be referred to as a CPU (Central Processing Unit). In a specific application, the components of the remote management platform 1300 are coupled together by a bus system 1304. The bus system 1304 may include a power bus, a control bus, a status signal bus, and the like in addition to the data bus. However, for clarity of description, various buses are labeled as bus system 1304 in the figure. For ease of representation, only the schematic drawing is shown in FIG.

上述本申请实施例揭示的方法可以应用于处理器1302中,或者由处理器1302实现。 处理器1302可能是一种集成电路芯片,具有信号的处理能力。在实现过程中,上述方法的各步骤可以通过处理器1302中的硬件的集成逻辑电路或者软件形式的指令完成。上述的处理器1302可以是通用处理器、数字信号处理器(DSP)、专用集成电路(ASIC)、现场可编程门阵列(FPGA)或者其他可编程逻辑器件、分立门或者晶体管逻辑器件、分立硬件组件。可以实现或者执行本申请实施例中的公开的各方法、步骤及逻辑框图。通用处理器可以是微处理器或者该处理器也可以是任何常规的处理器等。结合本申请实施例所公开的方法的步骤可以直接体现为硬件译码处理器执行完成,或者用译码处理器中的硬件及软件模块组合执行完成。软件模块可以位于随机存储器,闪存、只读存储器,可编程只读存储器或者电可擦写可编程存储器、寄存器等本领域成熟的存储介质中。该存储介质位于存储器1303,处理器1302读取存储器1303中的信息,结合其硬件执行上述实施一至实施例四中所述的远程管理平台侧的方法流程。The method disclosed in the foregoing embodiment of the present application may be applied to the processor 1302 or implemented by the processor 1302. The processor 1302 may be an integrated circuit chip with signal processing capabilities. In the implementation process, each step of the above method may be completed by an integrated logic circuit of hardware in the processor 1302 or an instruction in a form of software. The processor 1302 described above may be a general purpose processor, a digital signal processor (DSP), an application specific integrated circuit (ASIC), a field programmable gate array (FPGA) or other programmable logic device, a discrete gate or transistor logic device, or discrete hardware. Component. The methods, steps, and logical block diagrams disclosed in the embodiments of the present application can be implemented or executed. The general purpose processor may be a microprocessor or the processor or any conventional processor or the like. The steps of the method disclosed in the embodiments of the present application may be directly implemented by the hardware decoding processor, or may be performed by a combination of hardware and software modules in the decoding processor. The software module can be located in a conventional storage medium such as random access memory, flash memory, read only memory, programmable read only memory or electrically erasable programmable memory, registers, and the like. The storage medium is located in the memory 1303, and the processor 1302 reads the information in the memory 1303, and performs the method flow on the remote management platform side described in the above-mentioned first to fourth embodiments in combination with the hardware thereof.

本申请实施例还提供了一种计算机可读存储介质,用于存储为执行上述处理器所需执行的计算机软件指令,其包含用于执行上述处理器所需执行的程序。The embodiment of the present application further provides a computer readable storage medium for storing computer software instructions required to execute the foregoing processor, which includes a program for executing the above-mentioned processor.

本领域内的技术人员应明白,本申请的实施例可提供为方法、系统、或计算机程序产品。因此,本申请可采用完全硬件实施例、完全软件实施例、或结合软件和硬件方面的实施例的形式。而且,本申请可采用在一个或多个其中包含有计算机可用程序代码的计算机可用存储介质(包括但不限于磁盘存储器、光学存储器等)上实施的计算机程序产品的形式。Those skilled in the art will appreciate that embodiments of the present application can be provided as a method, system, or computer program product. Thus, the present application can take the form of an entirely hardware embodiment, an entirely software embodiment, or an embodiment in combination of software and hardware. Moreover, the application can take the form of a computer program product embodied on one or more computer-usable storage media (including but not limited to disk storage, optical storage, etc.) including computer usable program code.

本申请是参照根据本申请的方法、设备(系统)、和计算机程序产品的流程图和/或方框图来描述的。应理解可由计算机程序指令实现流程图和/或方框图中的每一流程和/或方框、以及流程图和/或方框图中的流程和/或方框的结合。可提供这些计算机程序指令到通用计算机、专用计算机、嵌入式处理机或其他可编程数据处理设备的处理器以产生一个机器,使得通过计算机或其他可编程数据处理设备的处理器执行的指令产生用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的装置。The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to the present application. It will be understood that each flow and/or block of the flowchart illustrations and/or FIG. These computer program instructions can be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing device to produce a machine for the execution of instructions for execution by a processor of a computer or other programmable data processing device. Means for implementing the functions specified in one or more of the flow or in a block or blocks of the flow chart.

这些计算机程序指令也可存储在能引导计算机或其他可编程数据处理设备以特定方式工作的计算机可读存储器中,使得存储在该计算机可读存储器中的指令产生包括指令装置的制造品,该指令装置实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能。The computer program instructions can also be stored in a computer readable memory that can direct a computer or other programmable data processing device to operate in a particular manner, such that the instructions stored in the computer readable memory produce an article of manufacture comprising the instruction device. The apparatus implements the functions specified in one or more blocks of a flow or a flow and/or block diagram of the flowchart.

这些计算机程序指令也可装载到计算机或其他可编程数据处理设备上,使得在计算机或其他可编程设备上执行一系列操作步骤以产生计算机实现的处理,从而在计算机或其他可编程设备上执行的指令提供用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的步骤。These computer program instructions can also be loaded onto a computer or other programmable data processing device such that a series of operational steps are performed on a computer or other programmable device to produce computer-implemented processing for execution on a computer or other programmable device. The instructions provide steps for implementing the functions specified in one or more of the flow or in a block or blocks of a flow diagram.

显然,本领域的技术人员可以对本申请进行各种改动和变型而不脱离本申请的精神和范围。这样,倘若本申请的这些修改和变型属于本申请权利要求及其等同技术的范围之内,则本申请也意图包含这些改动和变型在内。 It will be apparent to those skilled in the art that various modifications and changes can be made in the present application without departing from the spirit and scope of the application. Thus, it is intended that the present invention cover the modifications and variations of the present invention.

Claims (35)

一种配置文件的管理方法,其特征在于,所述方法包括:A method for managing a configuration file, the method comprising: 终端向远程管理平台发送第一消息;The terminal sends the first message to the remote management platform; 所述终端接收所述远程管理平台发送的第二消息;所述第二消息中包括N个管理命令;所述N个管理命令包括下载命令和远程管理命令;N为大于1的整数;Receiving, by the terminal, the second message sent by the remote management platform; the second message includes N management commands; the N management commands include a download command and a remote management command; N is an integer greater than 1; 所述终端根据所述N个管理命令管理配置文件。The terminal manages the configuration file according to the N management commands. 根据权利要求1所述的方法,其特征在于,所述终端根据所述N个管理命令管理配置文件,包括:The method according to claim 1, wherein the terminal manages the configuration file according to the N management commands, including: 当所述第二消息中,所述下载命令的顺序在所述远程管理命令之前时,所述终端先执行所述下载命令,然后执行所述远程管理命令;In the second message, when the order of the download command is before the remote management command, the terminal first executes the download command, and then executes the remote management command; 当所述第二消息中,所述下载命令的顺序在所述远程管理命令之后时,所述终端先执行所述远程管理命令,然后执行所述下载命令。When the order of the download command is after the remote management command in the second message, the terminal first executes the remote management command, and then executes the download command. 根据权利要求1所述的方法,其特征在于,所述终端根据所述N个管理命令管理配置文件,包括:The method according to claim 1, wherein the terminal manages the configuration file according to the N management commands, including: 当所述第二消息中,所述下载命令的顺序在所述远程管理命令之前时,所述终端先缓存所述下载命令,并在执行所述远程管理命令后,执行缓存的所述下载命令;When the order of the download command is before the remote management command, the terminal first caches the download command, and after executing the remote management command, executes the cached download command. ; 当所述第二消息中,所述下载命令的顺序在所述远程管理命令之后时,所述终端先缓存所述远程管理命令,并在执行所述下载命令后,执行缓存的所述远程管理命令。In the second message, when the order of the download command is after the remote management command, the terminal first caches the remote management command, and after performing the download command, performs the remote management of the cache. command. 根据权利要求1至3中任一项所述的方法,其特征在于,所述第一消息为所述终端接收到用户选择的管理请求指令后发送的;The method according to any one of claims 1 to 3, wherein the first message is sent after the terminal receives a management request command selected by a user; 所述终端根据所述N个管理命令管理配置文件之前,还包括:Before the terminal manages the configuration file according to the N management commands, the terminal further includes: 所述终端确定所述N个管理命令与所述管理请求指令匹配。The terminal determines that the N management commands match the management request instruction. 根据权利要求4所述的方法,其特征在于,所述终端确定所述N个管理命令与所述管理请求指令匹配,包括:The method according to claim 4, wherein the terminal determines that the N management commands match the management request instruction, including: 若所述管理请求指令为下载请求指令,则所述终端确定所述N个管理命令中包括所述下载命令后,确定所述N个管理命令与所述管理请求指令匹配;If the management request instruction is a download request instruction, the terminal determines that the N management commands include the download command, and determines that the N management commands match the management request instruction; 若所述管理请求指令为远程管理请求指令,则所述终端确定所述N个管理命令中包括远程管理命令,且不包括下载命令后,确定所述N个管理命令与所述管理请求指令匹配;If the management request instruction is a remote management request instruction, the terminal determines that the N management commands include a remote management command, and after the download command is not included, determining that the N management commands match the management request instruction ; 若所述管理请求指令为全部更新(update all)请求指令,则所述终端确定所述N个管理命令与所述管理请求指令匹配。If the management request instruction is an update all request instruction, the terminal determines that the N management commands match the management request instruction. 根据权利要求5所述的方法,其特征在于,若所述管理命令为远程管理命令,则所述终端确定所述N个管理命令中包括远程管理命令和下载命令后,确定所述N个管理命令中的远程管理命令与所述管理请求指令匹配,所述N个管理命令中的下载命令与所述管理请求指令不匹配;The method according to claim 5, wherein, if the management command is a remote management command, the terminal determines that the N management commands include a remote management command and a download command, and determines the N managements. The remote management command in the command matches the management request instruction, and the download command in the N management commands does not match the management request instruction; 所述终端根据所述N个管理命令对所述第一配置文件进行管理,包括:The terminal manages the first configuration file according to the N management commands, including: 所述终端执行所述N个管理命令中的远程管理命令,并向所述远程管理平台报告所述N个管理命令中的下载命令与所述管理请求指令不匹配。The terminal executes a remote management command of the N management commands, and reports to the remote management platform that the download command of the N management commands does not match the management request command. 根据权利要求5所述的方法,其特征在于,所述方法还包括:The method of claim 5, wherein the method further comprises: 若所述终端确定所述N个管理命令与所述管理请求指令不匹配,则向所述远程管理平 台报告所述N个管理命令与所述管理请求指令不匹配。If the terminal determines that the N management commands do not match the management request command, then the remote management is The N management commands reported that the management command does not match the management request command. 根据权利要求1至7中任一项所述的方法,其特征在于,所述终端向远程管理平台发送第一消息,包括:The method according to any one of claims 1 to 7, wherein the terminal sends the first message to the remote management platform, including: 所述终端向所述远程管理平台发送第一标识;Transmitting, by the terminal, the first identifier to the remote management platform; 所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including: 所述终端接收所述远程管理平台发送的所述N个管理命令;所述N个管理命令为所述第一标识对应的管理命令;The terminal receives the N management commands sent by the remote management platform; the N management commands are management commands corresponding to the first identifier; 根据权利要求8所述的方法,其特征在于,所述远程管理平台包括第一远程管理平台和第二远程管理平台;The method according to claim 8, wherein the remote management platform comprises a first remote management platform and a second remote management platform; 所述终端向所述远程管理平台发送第一标识,包括:Sending, by the terminal, the first identifier to the remote management platform, including: 所述终端向所述第一远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to the first remote management platform; 所述终端接收所述第一远程管理平台发送的所述终端的EID对应的M个标识;Receiving, by the terminal, M identifiers corresponding to the EID of the terminal sent by the first remote management platform; 所述终端向所述第二远程管理平台发送所述第一标识;所述第一标识为所述M个标识中的一个标识;M为正整数。Sending, by the terminal, the first identifier to the second remote management platform; the first identifier is one of the M identifiers; and M is a positive integer. 根据权利要求9所述的方法,其特征在于,所述终端根据所述N个管理命令管理配置文件之后,还包括:The method according to claim 9, wherein after the terminal manages the configuration file according to the N management commands, the method further includes: 所述终端接收用户继续获取管理命令的确认指令后,向所述远程管理平台发送第二标识;所述第二标识为所述M个标识中除所述第一标识以外的一个标识。After receiving the confirmation instruction that the user continues to obtain the management command, the terminal sends a second identifier to the remote management platform; the second identifier is an identifier of the M identifiers other than the first identifier. 根据权利要求1至7中任一项所述的方法,其特征在于,所述终端向远程管理平台发送第一消息,包括:The method according to any one of claims 1 to 7, wherein the terminal sends the first message to the remote management platform, including: 所述终端向所述远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to the remote management platform; 所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including: 所述终端接收所述远程管理平台发送的所述终端的EID对应的K个管理命令;所述K个管理命令中至少包括所述N个管理命令构成的一个管理命令集合。The terminal receives K management commands corresponding to the EID of the terminal sent by the remote management platform; and the K management commands include at least one management command set formed by the N management commands. 根据权利要求1至3中任一项所述的方法,其特征在于,所述终端向远程管理平台发送第一消息,包括:The method according to any one of claims 1 to 3, wherein the terminal sends the first message to the remote management platform, including: 所述终端向所述远程管理平台发送所述终端的EID和管理请求标识;所述管理请求标识是所述终端根据用户选择的管理请求指令设置的;Sending, by the terminal, the EID and the management request identifier of the terminal to the remote management platform; the management request identifier is set by the terminal according to a management request command selected by the user; 所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including: 所述终端接收所述远程管理平台发送的所述N个管理命令;所述N个管理命令为所述远程管理平台根据所述终端的EID和所述管理请求标识得到的。Receiving, by the terminal, the N management commands sent by the remote management platform; the N management commands are obtained by the remote management platform according to the EID of the terminal and the management request identifier. 根据权利要求1至3中任一项所述的方法,其特征在于,所述终端向远程管理平台发送第一消息,包括:The method according to any one of claims 1 to 3, wherein the terminal sends the first message to the remote management platform, including: 所述终端向所述远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to the remote management platform; 所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including: 所述终端接收所述远程管理平台发送的所述终端的EID对应的K个管理命令。The terminal receives K management commands corresponding to the EID of the terminal sent by the remote management platform. 根据权利要求13所述的方法,其特征在于,所述第一消息为所述终端接收到用户选择的管理请求指令后发送的;The method according to claim 13, wherein the first message is sent after the terminal receives a management request command selected by a user; 所述终端根据所述N个管理命令管理配置文件,包括:The terminal manages the configuration file according to the N management commands, including: 所述第二消息中还包括所述K个管理命令分别对应的标识,所述终端从所述K个管理 命令中选择出与所述管理请求指令匹配的第一管理命令以及与所述第一管理命令对应的标识相同的管理命令,并根据所述第一管理命令和与所述第一管理命令对应的标识相同的管理命令管理配置文件;或者,The second message further includes an identifier corresponding to the K management commands, where the terminal manages from the K And selecting, by the command, a first management command that matches the management request instruction and a management command that is the same as the identifier corresponding to the first management command, and according to the first management command and the first management command Identify the same administrative command management profile; or, 所述终端从所述K个管理命令中选择出与所述管理请求指令匹配的第一管理命令以及与所述第一管理命令关联的管理命令,并根据所述第一管理命令和与所述第一管理命令关联的管理命令管理配置文件。The terminal selects, from the K management commands, a first management command that matches the management request command and a management command associated with the first management command, and according to the first management command and the The management command associated with the first management command manages the configuration file. 一种配置文件的管理方法,其特征在于,所述方法包括:A method for managing a configuration file, the method comprising: 远程管理平台接收终端发送的第一消息;The remote management platform receives the first message sent by the terminal; 所述远程管理平台向所述终端发送第二消息;所述第二消息中包括N个管理命令;所述N个管理命令包括下载命令和远程管理命令;N为大于1的整数。The remote management platform sends a second message to the terminal; the second message includes N management commands; the N management commands include a download command and a remote management command; N is an integer greater than 1. 根据权利要求15所述的方法,其特征在于,所述远程管理平台接收终端发送的第一消息,包括:The method according to claim 15, wherein the remote management platform receives the first message sent by the terminal, including: 所述远程管理平台接收终端发送的第一标识;The remote management platform receives a first identifier sent by the terminal; 所述远程管理平台向所述终端发送第二消息之前,还包括:Before the remote management platform sends the second message to the terminal, the method further includes: 所述远程管理平台根据所述第一标识,得到所述第一标识对应的所述N个管理命令。The remote management platform obtains the N management commands corresponding to the first identifier according to the first identifier. 根据权利要求16所述的方法,其特征在于,所述远程管理平台包括第一远程管理平台和第二远程管理平台;The method according to claim 16, wherein the remote management platform comprises a first remote management platform and a second remote management platform; 所述远程管理平台接收终端发送的第一标识,包括:The remote management platform receives the first identifier sent by the terminal, including: 所述第一远程管理平台接收所述终端发送的所述终端的EID;Receiving, by the first remote management platform, an EID of the terminal sent by the terminal; 所述第一远程管理平台得到所述终端的EID对应的M个标识并发送给所述终端;Obtaining, by the first remote management platform, M identifiers corresponding to the EID of the terminal, and sending the identifiers to the terminal; 所述第二远程管理平台接收终端发送的所述第一标识,所述第一标识为所述M个标识中的一个标识;M为正整数。The second remote management platform receives the first identifier sent by the terminal, where the first identifier is one of the M identifiers; and M is a positive integer. 根据权利要求15所述的方法,其特征在于,所述远程管理平台接收终端发送的第一消息,包括:The method according to claim 15, wherein the remote management platform receives the first message sent by the terminal, including: 所述远程管理平台接收所述终端发送的所述终端的EID和管理请求标识;所述管理请求标识是所述终端根据用户选择的管理请求指令设置的;The remote management platform receives an EID and a management request identifier of the terminal sent by the terminal; the management request identifier is set by the terminal according to a management request command selected by a user; 所述远程管理平台向所述终端发送第二消息,包括:Sending, by the remote management platform, the second message to the terminal, including: 若所述管理请求标识为下载请求标识,所述远程管理平台获取与所述终端的EID对应的第一管理命令,并获取与所述终端的EID对应且与所述第一管理命令关联的管理命令;If the management request identifier is a download request identifier, the remote management platform acquires a first management command corresponding to the EID of the terminal, and acquires a management corresponding to the EID of the terminal and associated with the first management command. command; 若所述管理请求标识为全部更新标识,所述远程管理平台获取所述终端的EID对应的所有管理命令。If the management request is identified as all update identifiers, the remote management platform acquires all management commands corresponding to the EID of the terminal. 根据权利要求15所述的方法,其特征在于,所述远程管理平台接收终端发送的第一消息,包括:The method according to claim 15, wherein the remote management platform receives the first message sent by the terminal, including: 所述远程管理平台接收所述终端发送的所述终端的EID;Receiving, by the remote management platform, an EID of the terminal sent by the terminal; 所述远程管理平台向所述终端发送第二消息,包括:Sending, by the remote management platform, the second message to the terminal, including: 所述远程管理平台得到与所述终端的EID对应的K个管理命令,并将所述K个管理命令发送给所述终端;所述K个管理命令中至少包括所述N个管理命令构成的一个管理命令集合;或者,The remote management platform obtains K management commands corresponding to the EID of the terminal, and sends the K management commands to the terminal; the K management commands include at least the N management commands. a collection of administrative commands; or, 所述远程管理平台得到与所述终端的EID对应的K个管理命令,并将所述K个管理命令和所述K个管理命令分别对应的标识发送给所述终端;或者, The remote management platform obtains K management commands corresponding to the EID of the terminal, and sends an identifier corresponding to the K management commands and the K management commands to the terminal; or 所述远程管理平台得到与所述终端的EID对应的K个管理命令,并将所述K个管理命令发送给所述终端。The remote management platform obtains K management commands corresponding to the EID of the terminal, and sends the K management commands to the terminal. 一种配置文件的管理方法,其特征在于,所述方法包括:A method for managing a configuration file, the method comprising: 终端向远程管理平台发送第一消息,其中,所述第一消息用于请求下载配置文件或所述第一消息用于请求获取所述终端的EID对应的所有管理命令,所述终端中已安装有第二配置文件;The terminal sends a first message to the remote management platform, where the first message is used to request to download a configuration file or the first message is used to request to acquire all management commands corresponding to the EID of the terminal, where the terminal is installed. Have a second configuration file; 所述终端接收所述远程管理平台发送的第二消息;所述第二消息中包括第一配置文件的元数据和所述第二配置文件的远程管理命令;Receiving, by the terminal, the second message sent by the remote management platform; the second message includes metadata of the first configuration file and a remote management command of the second configuration file; 所述终端根据所述第一配置文件的元数据下载所述第一配置文件;以及The terminal downloads the first configuration file according to metadata of the first configuration file; 所述终端根据所述第二配置文件的远程管理命令管理所述第二配置文件。The terminal manages the second configuration file according to a remote management command of the second configuration file. 根据权利要求20所述的方法,其特征在于,所述终端根据所述第一配置文件的元数据下载所述第一配置文件;以及所述终端根据所述第二配置文件的远程管理命令管理所述第二配置文件,包括:The method according to claim 20, wherein the terminal downloads the first configuration file according to metadata of the first configuration file; and the terminal manages according to remote management commands of the second configuration file The second configuration file includes: 当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之前时,所述终端先下载所述第一配置文件,然后管理所述第二配置文件;When the order of the metadata of the first configuration file is before the remote management command of the second configuration file, the terminal first downloads the first configuration file, and then manages the first Two configuration files; 当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之后时,所述终端先管理所述第二配置文件,然后下载所述第一配置文件。When the order of the metadata of the first configuration file is after the remote management command of the second configuration file, the terminal first manages the second configuration file, and then downloads the first A configuration file. 根据权利要求20所述的方法,其特征在于,所述终端根据所述第一配置文件的元数据下载所述第一配置文件;以及所述终端根据所述第二配置文件的远程管理命令管理所述第二配置文件,包括:The method according to claim 20, wherein the terminal downloads the first configuration file according to metadata of the first configuration file; and the terminal manages according to remote management commands of the second configuration file The second configuration file includes: 当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之前时,所述终端先缓存所述第一配置文件的元数据,并在管理第二配置文件后,根据缓存的第一配置文件的元数据下载所述第一配置文件;When the order of the metadata of the first configuration file is before the remote management command of the second configuration file, the terminal first caches the metadata of the first configuration file, and After managing the second configuration file, downloading the first configuration file according to the metadata of the cached first configuration file; 当所述第二消息中,所述第一配置文件的元数据的顺序在所述第二配置文件的远程管理命令之后时,所述终端先缓存所述第二配置文件的远程管理命令,并在下载所述第一配置文件后,根据缓存的所述第二配置文件的远程管理命令管理所述第二配置文件。When the order of the metadata of the first configuration file is after the remote management command of the second configuration file, the terminal first caches the remote management command of the second configuration file, and After downloading the first configuration file, the second configuration file is managed according to the remote management command of the cached second configuration file. 根据权利要求20至22中任一项所述的方法,其特征在于,所述终端向远程管理平台发送第一消息,包括:The method according to any one of claims 20 to 22, wherein the terminal sends the first message to the remote management platform, including: 所述终端向所述远程管理平台发送第一标识;所述第一标识用于所述远程管理平台得到第一配置文件的元数据和第二配置文件的远程管理命令。The terminal sends a first identifier to the remote management platform; the first identifier is used by the remote management platform to obtain metadata of the first configuration file and a remote management command of the second configuration file. 根据权利要求23所述的方法,其特征在于,所述远程管理平台包括第一远程管理平台和第二远程管理平台;The method according to claim 23, wherein the remote management platform comprises a first remote management platform and a second remote management platform; 所述终端向所述远程管理平台发送第一标识,包括:Sending, by the terminal, the first identifier to the remote management platform, including: 所述终端向第一远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to the first remote management platform; 所述终端接收所述第一远程管理平台发送的所述终端的EID对应的第一标识;Receiving, by the terminal, a first identifier corresponding to an EID of the terminal sent by the first remote management platform; 所述终端向所述第二远程管理平台发送所述第一标识。The terminal sends the first identifier to the second remote management platform. 根据权利要求20至22中任一项所述的方法,其特征在于,所述终端向远程管理平台发送第一消息,包括:The method according to any one of claims 20 to 22, wherein the terminal sends the first message to the remote management platform, including: 所述终端向所述远程管理平台发送所述终端的EID和管理请求标识;所述管理请求标识为下载请求标识或全部更新标识;所述终端的EID和所述管理请求标识用于所述远程管 理平台得到第一配置文件的元数据和第二配置文件的远程管理命令。Sending, by the terminal, the EID and the management request identifier of the terminal to the remote management platform; the management request identifier is a download request identifier or all update identifiers; the EID of the terminal and the management request identifier are used by the remote Tube The platform obtains the metadata of the first configuration file and the remote management command of the second configuration file. 根据权利要求20至22中任一项所述的方法,其特征在于,所述第一消息为所述终端接收到用户选择的下载请求指令后发送的;The method according to any one of claims 20 to 22, wherein the first message is sent after the terminal receives a download request command selected by a user; 所述终端向远程管理平台发送第一消息,包括:Sending, by the terminal, the first message to the remote management platform, including: 所述终端向远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to a remote management platform; 所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including: 所述终端接收所述远程管理平台发送的所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令;所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中至少包括所述第一配置文件的元数据和第二配置文件的远程管理命令构成的集合;Receiving, by the terminal, metadata of one or more configuration files corresponding to an EID of the terminal and a remote management command of one or more configuration files, where the EID of the terminal corresponds to one or more The remote management command of the metadata of the configuration file and the one or more configuration files includes at least a set of metadata of the first configuration file and a remote management command of the second configuration file; 所述终端根据所述第一配置文件的元数据下载所述第一配置文件,以及所述终端根据所述第二配置文件的远程管理命令管理所述第二配置文件之前,还包括:Before the terminal downloads the first configuration file according to the metadata of the first configuration file, and the terminal manages the second configuration file according to the remote management command of the second configuration file, the terminal further includes: 所述终端从所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中选择出与所述下载请求指令匹配的第一配置文件的元数据,得到所述第一配置文件的元数据和与所述第一配置文件的元数据在同一个集合中的第二配置文件的远程管理命令。The terminal selects metadata of a first configuration file that matches the download request instruction from metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files. Obtaining a remote management command of the metadata of the first configuration file and the second configuration file in the same set as the metadata of the first configuration file. 根据权利要求20至22中任一项所述的方法,其特征在于,所述终端向远程管理平台发送请求消息,包括:The method according to any one of claims 20 to 22, wherein the terminal sends a request message to the remote management platform, including: 所述终端向远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to a remote management platform; 所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including: 所述接收所述远程管理平台发送的所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令以及所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令分别对应的标识;Receiving, by the remote management platform, metadata of one or more configuration files corresponding to an EID of the terminal and a remote management command of one or more configuration files and one or more configurations corresponding to an EID of the terminal An identifier corresponding to the metadata of the file and the remote management command of one or more configuration files; 所述终端根据所述第一配置文件的元数据下载所述第一配置文件,以及所述终端根据所述第二配置文件的远程管理命令管理所述第二配置文件之前,还包括:Before the terminal downloads the first configuration file according to the metadata of the first configuration file, and the terminal manages the second configuration file according to the remote management command of the second configuration file, the terminal further includes: 所述终端从所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中选择出与所述下载请求指令匹配的第一配置文件的元数据以及与所述第一配置文件的元数据对应的标识相同的第二配置文件的远程管理命令。Determining, by the terminal, metadata of a first configuration file that matches the download request instruction from metadata of one or more configuration files corresponding to an EID of the terminal and remote management commands of one or more configuration files A remote management command identifying the same second configuration file corresponding to the metadata of the first configuration file. 根据权利要求20至22中任一项所述的方法,其特征在于,所述终端向远程管理平台发送请求消息,包括:The method according to any one of claims 20 to 22, wherein the terminal sends a request message to the remote management platform, including: 所述终端向远程管理平台发送所述终端的EID;Transmitting, by the terminal, the EID of the terminal to a remote management platform; 所述终端接收所述远程管理平台发送的第二消息,包括:Receiving, by the terminal, the second message sent by the remote management platform, including: 所述终端接收所述远程管理平台发送的所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令;Receiving, by the terminal, the metadata of one or more configuration files corresponding to the EID of the terminal and the remote management command of one or more configuration files sent by the remote management platform; 所述终端根据所述第一配置文件的元数据下载所述第一配置文件,以及根据所述第二配置文件的远程管理命令管理所述第二配置文件之前,还包括:Before the terminal downloads the first configuration file according to the metadata of the first configuration file, and the management of the second configuration file according to the remote management command of the second configuration file, the terminal further includes: 所述终端从所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中选择出与所述下载请求指令匹配的第一配置文件的元数据,以及与所述第一配置文件的元数据关联的第二配置文件的远程管理命令。The terminal selects metadata of a first configuration file that matches the download request instruction from metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files. And a remote management command of the second configuration file associated with the metadata of the first configuration file. 一种配置文件的管理方法,其特征在于,所述方法包括: A method for managing a configuration file, the method comprising: 远程管理平台接收终端发送的第一消息,其中,所述第一消息用于请求下载配置文件或所述第一消息用于请求获取所述终端的EID对应的所有管理命令;Receiving, by the remote management platform, the first message sent by the terminal, where the first message is used to request to download a configuration file or the first message is used to request to acquire all management commands corresponding to the EID of the terminal; 所述远程管理平台向所述终端发送第二消息;所述第二消息中包括第一配置文件的元数据和第二配置文件的远程管理命令;所述第二配置文件为所述终端中已安装的配置文件。The remote management platform sends a second message to the terminal; the second message includes metadata of the first configuration file and a remote management command of the second configuration file; the second configuration file is already in the terminal The installed configuration file. 根据权利要求29所述的方法,其特征在于,所述远程管理平台接收终端发送的第一消息,包括:The method according to claim 29, wherein the remote management platform receives the first message sent by the terminal, including: 所述远程管理平台接收终端发送的第一标识;The remote management platform receives a first identifier sent by the terminal; 所述远程管理平台向所述终端发送第二消息之前,还包括:Before the remote management platform sends the second message to the terminal, the method further includes: 所述远程管理平台根据所述第一标识,得到所述第一标识对应的第一配置文件的元数据和第二配置文件的远程管理命令。The remote management platform obtains the metadata of the first configuration file corresponding to the first identifier and the remote management command of the second configuration file according to the first identifier. 根据权利要求30所述的方法,其特征在于,所述远程管理平台包括第一远程管理平台和第二远程管理平台;The method of claim 30, wherein the remote management platform comprises a first remote management platform and a second remote management platform; 所述远程管理平台接收终端发送的第一标识,包括:The remote management platform receives the first identifier sent by the terminal, including: 所述第一远程管理平台接收所述终端发送的所述终端的EID;Receiving, by the first remote management platform, an EID of the terminal sent by the terminal; 所述第一远程管理平台向所述终端发送所述终端的EID对应的M个标识;Transmitting, by the first remote management platform, the M identifiers corresponding to the EID of the terminal to the terminal; 所述第二远程管理平台接收终端发送的第一标识;所述第一标识为所述终端的EID对应的M个标识中的一个标识;M为正整数。The second remote management platform receives the first identifier sent by the terminal; the first identifier is one of the M identifiers corresponding to the EID of the terminal; and M is a positive integer. 根据权利要求29所述的方法,其特征在于,所述远程管理平台接收终端发送的第一消息,包括:The method according to claim 29, wherein the remote management platform receives the first message sent by the terminal, including: 所述远程管理平台接收所述终端发送的所述终端的EID和管理请求标识;所述管理请求标识为下载请求标识或全部更新标识;The remote management platform receives the EID and the management request identifier of the terminal sent by the terminal; the management request identifier is a download request identifier or all update identifiers; 所述远程管理平台向所述终端发送第二消息之前,还包括:Before the remote management platform sends the second message to the terminal, the method further includes: 若所述管理请求标识为下载请求标识,所述远程管理平台获取与所述终端的EID对应的所述第一配置文件,创建所述第一配置文件的元数据,并获取与所述终端的EID对应的所述第二配置文件的远程管理命令;所述第二配置文件的远程管理命令与所述第一配置文件相关联;If the management request identifier is a download request identifier, the remote management platform acquires the first configuration file corresponding to the EID of the terminal, creates metadata of the first configuration file, and acquires the metadata of the first configuration file. a remote management command of the second configuration file corresponding to the EID; a remote management command of the second configuration file is associated with the first configuration file; 若所述管理请求标识为全部更新标识,所述远程管理平台获取所述终端的EID对应的所述第一配置文件,以及所述终端的EID对应的所述第二配置文件的远程管理命令。If the management request is identified as all the update identifiers, the remote management platform acquires the first configuration file corresponding to the EID of the terminal, and the remote management command of the second configuration file corresponding to the EID of the terminal. 根据权利要求29所述的方法,其特征在于,所述远程管理平台接收终端发送的第一消息,包括:The method according to claim 29, wherein the remote management platform receives the first message sent by the terminal, including: 所述远程管理平台接收所述终端发送的所述终端的EID;Receiving, by the remote management platform, an EID of the terminal sent by the terminal; 所述远程管理平台向所述终端发送第二消息,包括:Sending, by the remote management platform, the second message to the terminal, including: 所述远程管理平台向所述终端发送所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令;所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令中至少包括所述第一配置文件的元数据和第二配置文件的远程管理命令构成的集合;或者,Transmitting, by the remote management platform, metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files to the terminal; one or more configurations corresponding to the EID of the terminal The remote management command of the metadata of the file and the one or more configuration files includes at least a set of metadata of the first configuration file and a remote management command of the second configuration file; or 所述远程管理平台向所述终端发送所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令以及所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令分别对应的标识;或者, Transmitting, by the remote management platform, metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files and one or more configurations corresponding to the EID of the terminal The identifier corresponding to the metadata of the file and the remote management command of one or more configuration files; or 所述远程管理平台向所述终端发送所述终端的EID对应的一个或多个配置文件的元数据和一个或多个配置文件的远程管理命令;Transmitting, by the remote management platform, metadata of one or more configuration files corresponding to the EID of the terminal and remote management commands of one or more configuration files to the terminal; 所述一个或多个配置文件的元数据中包括所述第一配置文件的元数据;所述一个或多个配置文件的远程管理命令中包括所述第二配置文件的远程管理命令。The metadata of the one or more configuration files includes metadata of the first configuration file; and the remote management command of the one or more configuration files includes a remote management command of the second configuration file. 一种终端,其特征在于,所述终端包括:存储器和处理器;所述存储器用于存放包括计算机操作指令的程序代码,所述处理运行所述计算机操作指令执行上述权利要求1至14所述的方法或者执行上述权利要求20至28所述的方法。A terminal, comprising: a memory and a processor; the memory for storing program code including computer operation instructions, the processing running the computer operation instruction to perform the above claims 1 to 14 Method or method of performing the above claims 20 to 28. 一种远程管理平台,其特征在于,所述远程管理平台包括:存储器和处理器;所述存储器用于存放包括计算机操作指令的程序代码,所述处理运行所述计算机操作指令执行上述权利要求15至19所述的方法或者执行上述权利要求29至33所述的方法。 A remote management platform, characterized in that the remote management platform comprises: a memory and a processor; the memory is for storing program code including computer operating instructions, and the processing runs the computer operating instructions to perform the above claim 15. The method of any of the preceding claims 29 to 33.
PCT/CN2017/079360 2017-04-01 2017-04-01 Configuration file management method and device Ceased WO2018176492A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
PCT/CN2017/079360 WO2018176492A1 (en) 2017-04-01 2017-04-01 Configuration file management method and device
CN201780050348.3A CN109565666B (en) 2017-04-01 2017-04-01 A configuration file management method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2017/079360 WO2018176492A1 (en) 2017-04-01 2017-04-01 Configuration file management method and device

Publications (1)

Publication Number Publication Date
WO2018176492A1 true WO2018176492A1 (en) 2018-10-04

Family

ID=63674552

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2017/079360 Ceased WO2018176492A1 (en) 2017-04-01 2017-04-01 Configuration file management method and device

Country Status (2)

Country Link
CN (1) CN109565666B (en)
WO (1) WO2018176492A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116782227B (en) * 2023-07-05 2025-09-16 中国电信股份有限公司技术创新中心 Remote configuration method, terminal equipment, system and storage medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103533634A (en) * 2013-10-25 2014-01-22 中国联合网络通信集团有限公司 Profile activation system, eUICC and profile activation method of eUICC
CN104469737A (en) * 2014-11-17 2015-03-25 中国联合网络通信集团有限公司 An embedded universal integrated circuit card and its user subscription information activation method
CN104883674A (en) * 2014-02-28 2015-09-02 华为终端有限公司 Profile relating management method and apparatus
US20150271662A1 (en) * 2014-03-21 2015-09-24 T-Mobile Usa, Inc. Polling by Universal Integrated Circuit Card for Remote Subscription
CN105516962A (en) * 2015-12-03 2016-04-20 中国联合网络通信集团有限公司 Account opening method and system based on eUICC (Embedded Universal Integrated Circuit Card)

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105530107B (en) * 2015-12-03 2018-10-16 中国联合网络通信集团有限公司 Batch account-opening method based on eUICC and platform

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103533634A (en) * 2013-10-25 2014-01-22 中国联合网络通信集团有限公司 Profile activation system, eUICC and profile activation method of eUICC
CN104883674A (en) * 2014-02-28 2015-09-02 华为终端有限公司 Profile relating management method and apparatus
US20150271662A1 (en) * 2014-03-21 2015-09-24 T-Mobile Usa, Inc. Polling by Universal Integrated Circuit Card for Remote Subscription
CN104469737A (en) * 2014-11-17 2015-03-25 中国联合网络通信集团有限公司 An embedded universal integrated circuit card and its user subscription information activation method
CN105516962A (en) * 2015-12-03 2016-04-20 中国联合网络通信集团有限公司 Account opening method and system based on eUICC (Embedded Universal Integrated Circuit Card)

Also Published As

Publication number Publication date
CN109565666A (en) 2019-04-02
CN109565666B (en) 2020-12-15

Similar Documents

Publication Publication Date Title
CN110636492B (en) Handover of mobile service providers using blockchains
CN110352605B (en) A method for adding an authentication algorithm program, related equipment and system
US10911939B2 (en) Embedded universal integrated circuit card profile management method and apparatus
US10356070B2 (en) Method for transferring profile and electronic device supporting the same
EP4304222B1 (en) Remote management method, and device
CN111263352B (en) OTA upgrading method and system of vehicle-mounted equipment, storage medium and vehicle-mounted equipment
CN101208971B (en) Methods and apparatus for simultaneously hosting multiple service providers on a network
CN109716805B (en) Installation method of subscription data set, terminal and server
JP7100153B2 (en) Service API call method and related devices
WO2018129724A1 (en) Subscription profile download method, device and server
CN111182527B (en) OTA (over the air) firmware upgrading method and device, terminal equipment and storage medium thereof
CN111837374B (en) Method and device for registering API provider domain functional entity on CAPIF core functional entity
WO2019071650A1 (en) Method for upgrading application in security element and related device
CN107852603A (en) The method and apparatus of terminal authentication
WO2018129723A1 (en) Management method for subscription data set, terminal, and server
WO2018010480A1 (en) Network locking method for esim card, terminal, and network locking authentication server
WO2014150737A2 (en) Method and system for enabling the federation of unrelated applications
US11290870B2 (en) Combined migration and remigration of a network subscription
CN109565666B (en) A configuration file management method and device
CN110741617A (en) Resource updating method and device, computer equipment and storage medium
WO2025007511A1 (en) Method for allocating network slices, data processing method and system, and electronic device
CN117319992A (en) Vehicle software upgrading method, system, device, electronic equipment and storage medium
US11777742B2 (en) Network device authentication
CN110267253A (en) eSIM management platform, eSIM installation method and device
WO2013067856A1 (en) Application implementation method and device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 17904242

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 17904242

Country of ref document: EP

Kind code of ref document: A1