CN100428700C - Reporting method and system of using server, monitoring correlation event using it - Google Patents
Reporting method and system of using server, monitoring correlation event using it Download PDFInfo
- Publication number
- CN100428700C CN100428700C CNB2005100975939A CN200510097593A CN100428700C CN 100428700 C CN100428700 C CN 100428700C CN B2005100975939 A CNB2005100975939 A CN B2005100975939A CN 200510097593 A CN200510097593 A CN 200510097593A CN 100428700 C CN100428700 C CN 100428700C
- Authority
- CN
- China
- Prior art keywords
- application server
- supplementary service
- monitoring
- correlation event
- incident
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000012544 monitoring process Methods 0.000 title claims abstract description 140
- 238000000034 method Methods 0.000 title claims abstract description 46
- 230000006870 function Effects 0.000 description 19
- 230000001413 cellular effect Effects 0.000 description 14
- AILFSZXBRNLVHY-UHFFFAOYSA-N 2,5-Dimethyl-4-ethoxy-3(2H)-furanone Chemical compound CCOC1=C(C)OC(C)C1=O AILFSZXBRNLVHY-UHFFFAOYSA-N 0.000 description 9
- 230000006854 communication Effects 0.000 description 9
- 230000008569 process Effects 0.000 description 9
- 238000004891 communication Methods 0.000 description 8
- 230000011664 signaling Effects 0.000 description 5
- 238000010276 construction Methods 0.000 description 4
- 230000008447 perception Effects 0.000 description 4
- 230000002950 deficient Effects 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 3
- 238000012545 processing Methods 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 238000012546 transfer Methods 0.000 description 2
- 230000009471 action Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 230000005540 biological transmission Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 230000008878 coupling Effects 0.000 description 1
- 238000010168 coupling process Methods 0.000 description 1
- 238000005859 coupling reaction Methods 0.000 description 1
- 230000001419 dependent effect Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000008034 disappearance Effects 0.000 description 1
- 230000002708 enhancing effect Effects 0.000 description 1
- 230000000977 initiatory effect Effects 0.000 description 1
- 230000009191 jumping Effects 0.000 description 1
- 230000035800 maturation Effects 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
Images
Landscapes
- Telephonic Communication Services (AREA)
Abstract
The present invention provides a reporting method and a system for using servers to monitor correlation events. The reporting method of monitoring correlation events comprises the following steps: the server is used for judging whether relevant objects in received or transmitted messages are monitored according to monitored data corresponding to the monitored request from a legal monitored management function entity; if a user is monitored, the present invention reports the monitoring correlation event. The present invention with the method can meet the reporting needs of monitored attached service events to increase the application of the IMS network.
Description
Technical field
The present invention relates to communication technical field, relate in particular to a kind of application server that is used for reporting IMS territory legal monitoring business monitoring correlation event, and the report method and the system that use the monitoring correlation event of this application server.
Background technology
Lawful Interception (LI) is meant the needs of (country) release mechanism for law enforcement, and certain user or certain communication process are monitored.Monitoring comprises that the signaling aspect is monitored and the medium aspect is monitored: for the monitoring of signaling aspect, need output eavesdropping target's Intercept related information (IRI); For the monitoring of medium aspect, need output eavesdropping target's Content of Communication (CC).
ETSI (ETSI) has provided the demand of monitoring in ETSI TS 101 331 (annex [01]), and has provided three interfaces between the communication equipment and Lawful Interception law actuating equipment in traditional circuit switching (CS) territory in ETSI ES 201 671 (annex [02]): data-interface, Intercept related information report interface and Content of Communication to report interface.Wherein, to report interface (for example, X2 interface) be the interface that communication network reports Intercept related information to Intercept related information.
At present, continuous maturation along with group technology, to the broadband telecommunication net development based on packet switching, wherein, using Session Initiation Protocol is one of current technology trends as the call control signalling of grouping telecommunications core network based on Circuit-switched conventional telecommunication network.Based on the Lawful Interception standard in packet switching (PS) territory and the disappearance of operation flow and scheme, the user who causes being arranged in packet network is in the blind area of monitoring, thus the potential safety hazard of some countries and regions is also brought influence.
At this situation, in 3GPP TS33.107 (annex [05]), the identify label that has provided the Lawful Interception object in IP Multimedia System (IMS) territory is SIP URI and TEL URL; Think that the monitoring control network element (ICEs) in the IMS territory is P-CSCF (Proxy-CSCF) and S-CSCF (Serving-CSCF); And provided the Lawful Interception model in 3GPP IMS territory as shown in Figure 1.
Fig. 1 has shown the cellular logic structure chart that the monitoring correlation event in the legal monitoring business of 3GPP IMS territory reports.As shown in Figure 1, in this cellular logic structure chart, judicial execution monitoring equipment (LEMF) links to each other with the management function entity (ADMF) of Lawful Interception by non-electrical interface HI1, and by electrical interface HI2 with submit functional entity 2 (DF2) and link to each other; The management function entity of Lawful Interception links to each other with call conversation control function entity (CSCF) by electrical interface X1_1, and links to each other with DF2 by electrical interface X1_2; And this call conversation control function entity (CSCF) reports interface (X2) to link to each other with this DF2 by Intercept related information (IRI).Wherein, this call conversation control function entity comprise as the P-CSCF that monitors control network element (ICE) (agency-CSCF) and S-CSCF (serve-CSCF), this P-CSCF is used for professional registration, authentication and authentication, and this S-CSCF is used for calling out control, route and continues etc.This DF2 is corresponding with X2.
Easy and simple and clear for what describe, the appellation to functional entity will directly adopt english abbreviation below.
In the process that the administration of justice performed according to network configuration shown in Figure 1 monitored, LEMF at first by HI1, utilizes nonelectronic mode, as paper spare, interception request is notified to ADMF, for example provides eavesdropping target's identify label SIP URI.
Afterwards, this ADMF sends to DF2 and CSCF (comprising P-CSCF and S-CSCF) simultaneously with this interception request, and at this moment, this P-CSCF and S-CSCF are reported to DF2 as the IRI information source with the Intercept related information incident (IRI incident) of eavesdropping target in the IMS territory.
DF2 is according to the interception request from this ADMF, utilize monitoring correlation event to submit functional block (Mediation Function block, MF), the Intercept related information that reports is handled (for example judge whether to belong to eavesdropping target's Intercept related information or not for the Intercept related information that repeats etc.), afterwards, DF2 is reported to LEMF with this Intercept related information, thereby can be in the monitoring of LEMF realization to the eavesdropping target.
It should be noted that, above-mentioned DF2 can link to each other with a plurality of LEMF (for example listening center of law enforcement agency), and the cellular logic structure of the Intercept related information reporting events in the legal monitoring business of above-mentioned IMS territory clearly definition in the 3GPP agreement, here only sketch the method that CSCF reports monitoring correlation event, no longer the report relevant method and functional entity and above-mentioned interface to Content of Communication (CC) specifically describes.
Yet in the cellular logic structure in above-mentioned IMS territory, P-CSCF and S-CSCF can not solve all listen requirement as monitoring the control network element.In other words, the monitoring correlation event that above-mentioned P-CSCF and/or S-CSCF can report (IRI incident) is meant other IRI incident (in 3GPP TS 33.107 appendix corresponding description is arranged, no longer repeat at this) except that the supplementary service incident.Wherein, this supplementary service is meant other business except that basic session, for example application of Call Forwarding Unconditional business, register, cancel and call out or the like, caller identification or the like.
Specifically, when utilizing above-mentioned cellular logic structure that the eavesdropping target is monitored, P-CSCF and/or S-CSCF can not perception services.Therefore, when supplementary service took place the eavesdropping target, P-CSCF and/or S-CSCF can not be known the business of concrete generation, can not report this supplementary service incident.
The example that is applied as with the Call Forwarding Unconditional business: in the registered Call Forwarding Unconditional business of a user A, changeing object before it is user B, and this user A is monitored under the situation of (according to the interception request of ADMF), if certain user C calls out this user A, then the S-CSCF corresponding to user A carries out triggering rule (IFC), and this call request is routed to the application server (not showing among AS, the figure) of Call Forwarding Unconditional business, carry out the service logic of Call Forwarding Unconditional business by the AS of this Call Forwarding Unconditional business, call out the preceding commentaries on classics object (user B) that is finally before forwarded to registration.In said process, S-CSCF still is P-CSCF does not carry out the Call Forwarding Unconditional business in calling a service logic, thereby can not report Call Forwarding Unconditional service application incident (supplementary service).It should be noted that the implementation about application server (AS) and above-mentioned supplementary service all is to adopt existing techniques in realizing (referring to list of references: 3GPP TS 24.229 " IP Multimedia Call Control based on SIP and SDp; Stage 3 " And 3GPP TS24.228 " Signalling flows for the IP multimedia call control based on SIP and SDP; Stage 3 "), no longer repeat at this.
In sum, be necessary to propose can report the monitoring correlation event method of (comprising the supplementary service incident) in a kind of new IMS territory, thus the exploitativeness of enhancing IMS network.
Summary of the invention
First purpose of the present invention is to provide the report method of monitoring correlation event in the legal monitoring business of a kind of IMS territory, thereby can satisfy the supplementary service reporting events demand of monitoring, strengthens the exploitativeness of IMS network.
Second purpose of the present invention is to provide the reporting system of monitoring correlation event in the legal monitoring business of a kind of IMS territory, thereby can satisfy the supplementary service reporting events demand of monitoring, strengthens the exploitativeness of IMS network.
The 3rd purpose of the present invention is to provide the application server of monitoring correlation event in the legal monitoring business of a kind of IMS territory, thereby can satisfy the supplementary service reporting events demand of monitoring, strengthens the exploitativeness of IMS network.
According to first purpose of the present invention, the invention provides a kind of report method of monitoring correlation event, its basis is from the monitored data of the interception request correspondence of the management function entity of Lawful Interception, application server judge its reception and/or the message sent in related object whether monitored, if monitored, then report monitoring correlation event, wherein, this monitoring correlation event comprises supplementary service incident and other Intercept related information incident except that the supplementary service incident.
According to second purpose of the present invention, the invention provides a kind of reporting system of monitoring correlation event, it comprises judicial execution monitoring equipment, the management function entity of Lawful Interception, call conversation control function entity, and monitoring correlation event is submitted functional block, wherein judicial execution monitoring equipment sends to interception request the management function entity of Lawful Interception, call conversation control function entity and monitoring correlation event are submitted functional block and are obtained this interception request from the management function entity of this Lawful Interception, and this monitoring correlation event is submitted functional block will report judicial execution monitoring equipment from the monitoring correlation event except that supplementary service of call conversation control function entity, comprise: application server, it is used for the monitored data of basis from the interception request correspondence of the management function entity of Lawful Interception, judge whether it is monitored from call conversation control function entity reception and/or the related object to the message that call conversation control function entity sends, if monitored, then submit functional block and report monitoring correlation event to this monitoring correlation event, wherein, this monitoring correlation event comprises supplementary service incident and other Intercept related information incident except that the supplementary service incident.
According to the 3rd purpose of the present invention, the invention provides a kind of application server, comprising: business logic modules is used for carrying out service logic according to the message that this application server receives and/or sends; And monitoring correlation event reporting module, be used for the monitored data of basis from the interception request correspondence of the management function entity of Lawful Interception, judge whether the related object in this message is monitored, if monitored, then report monitoring correlation event, wherein, this monitoring correlation event comprises supplementary service incident and other Intercept related information incident except that the supplementary service incident.
The invention has the beneficial effects as follows: the method, system and the application server that report according to monitoring correlation event provided by the invention, solved the problem that existing standard can not solve the supplementary service reporting events, having remedied P-CSCF and S-CSCF all can not perception service, and report the defective of supplementary service incident, thereby the present invention is perfect original monitoring correlation event report scheme, satisfy the supplementary service reporting events demand of monitoring, strengthened the exploitativeness of IMS network.
Description of drawings
Fig. 1 is the cellular logic structure chart that reports according to the monitoring correlation event in the IMS territory legal monitoring business of prior art;
Fig. 2 is the cellular logic structure chart that reports according to the monitoring correlation event in the legal monitoring business of IMS of the present invention territory;
Fig. 3 has shown the logical construction module map according to the application server of embodiments of the invention 1;
Fig. 4 has shown the schematic diagram that reports the Call Forwarding Unconditional business procedure according to IMS of the present invention territory;
Fig. 5 has shown the flow chart that reports the IRI incident according to the Lawful Interception application server of embodiments of the invention 2.
Embodiment
Below in conjunction with accompanying drawing the present invention is specifically described.
Fig. 2 is the cellular logic structure chart that reports according to the monitoring correlation event in the IMS territory legal monitoring business of embodiments of the invention 1.
According to the description to the functional entity among Fig. 1, identical processing procedure is not described in detail in this.
As shown in Figure 2, basic identical according to cellular logic structure and structure shown in Figure 1 that the monitoring correlation event in the legal monitoring business of IMS of the present invention territory reports, be outside unique difference: application server in the present embodiment (AS) is except that carrying out the service logic, it also can be used as the monitoring control network element (ICE) of IMS territory Lawful Interception, thereby on the basis of carrying out service logic, also can further report the supplementary service incident to DF2.Wherein, this application server also links to each other with this DF2 by interface X2.
This X2 interface is to monitor control gateway (ICE, Interception Control Element) and the interface between the DF2, this interface defines its transport layer in existing standard be TCP/IP, and provided the HI2 interface that the X2 interface application layer is near the mark as far as possible when transmitting Intercept related information (IRI), and transmitted initial data in the call signaling as far as possible and do not make amendment.Application server (AS) is followed above-mentioned criterion equally with the X2 interface of DF2 in the present invention.Adopt the mode of FTP (File Transfer Protocol, file transfer protocol (FTP)) to give DF2 with the IRI reporting events as AS.
Fig. 3 has shown the logical construction module map according to the application server of embodiments of the invention 1, wherein, according to the application server of embodiments of the invention 1 corresponding to the supplementary service application server.
According to above-mentioned cellular logic structure, and the module map of application server shown in Figure 3, the supplementary service application server comprises business logic modules 11 and monitoring correlation event reporting module 12, this business logic modules 11 is according to receiving from call conversation control function entity and/or to the message that call conversation control function entity sends, and carries out service logic (comprise professional registration, professional cancel, professional application and professional checking etc.).
And this monitoring correlation event reporting module 12 is according to the interception request from ADMF, judge and take place whether professional object is the eavesdropping target, if, then monitoring correlation event reporting module 12 reports corresponding supplementary service incident (incident and supplementary service checking incident etc. are cancelled in supplementary service registering events, supplementary service application affairs, supplementary service), if not, then only carry out service logic.
To be example with the Call Forwarding Unconditional business below, the method for the cellular logic structure realization supplementary service reporting events that monitoring correlation event of the present invention reports will be described.
Fig. 4 has shown the schematic diagram that reports the Call Forwarding Unconditional business procedure according to IMS of the present invention territory.
Be understood that, the application server AS that the present invention mentions is known functional entity, different business is to there being different application server AS, be that the Call Forwarding Unconditional business is with regard to a corresponding Call Forwarding Unconditional service application service device (CFU-AS), and in above-mentioned cellular logic structure, there is the application server of the different supplementary services of a plurality of correspondences; And in the IMS territory, the corresponding different CSCF (comprising P-CSCF and S-CSCF) of different user possibility also may be corresponding to identical CSCF.
Shown in Figure 4 reporting in the Call Forwarding Unconditional business procedure, Call Forwarding Unconditional business that user SIP URI B is registered, and preceding commentaries on classics is to liking user SIP URI C.Simultaneously, according to interception request from ADMF, the CSCF of user SIP URI B correspondence has known that user SIP URI B is the eavesdropping target, and the monitoring correlation event reporting module 12 in the Call Forwarding Unconditional service application service device is according to acquisitions and the corresponding monitored data of this interception request such as monitored data query interfaces.
When user UE calling party SIP URI B (called subscriber), the professional AS of Call Forwarding Unconditional reports the process of Call Forwarding Unconditional business as follows:
Step 1: user UE is initiated to the calling (Invite URI B) of called subscriber (SIP URI B), the P-CSCF that this call request arrival is corresponding with user UE;
Step 2: the P-CSCF corresponding with user UE further is forwarded to this call request the corresponding S-CSCF of called subscriber (SIP URI B), wherein, because above-mentioned forwarded call request process is consistent with existing operation flow, so omitted the S-CSCF of user UE correspondence and the I-CSCF of called subscriber's correspondence (the processing description of inquiry-CSCF) herein;
Step 3: the corresponding S-CSCF of called subscriber (SIP URI B) receives after the call request, carries out called subscriber's initial filter criteria (IFC); And in step 4: this call request is routed to corresponding Call Forwarding Unconditional service application service device;
Step 5: this Call Forwarding Unconditional service application service device utilizes business logic modules 11 to carry out the Call Forwarding Unconditional service logic according to this call request (message of reception); Then in step 6: this Call Forwarding Unconditional service application service device is replied 181 message to the S-CSCF of called subscriber's correspondence, indicates this calling by preceding commentaries on classics; And in step 7: the S-CSCF of called subscriber's correspondence is forwarded to the P-CSCF of this user UE correspondence with this 181 message; In step 8: the P-CSCF of this user UE correspondence further finally is forwarded to user UE with this 181 message;
Step 9: after Call Forwarding Unconditional service application service device is carried out above-mentioned Call Forwarding Unconditional service logic, business logic modules 11 in this Call Forwarding Unconditional service application service device is according to the registered Call Forwarding Unconditional business of called subscriber, change purpose user's (user SIP URI C) sign before the inquiry, this Call Forwarding Unconditional service application service device is carried out two steps simultaneously:
Step 11: the business logic modules 11 in this Call Forwarding Unconditional service application service device, according to the preceding commentaries on classics purpose user's who inquires about sign, this call request is passed through S-CSCF, is routed to the preceding purpose user SIP URI C (transmission message) of commentaries on classics; And
Step 10: the monitoring correlation event module 12 in this Call Forwarding Unconditional service application service device, the pairing monitored data of interception request that sends according to aforementioned ADMF (for example eavesdropping target's number etc.), judge whether user SIP URI B is monitored, if monitored, then the monitoring correlation event module 12 of this application server is reported to DF2 by X2 interface with the Call Forwarding Unconditional business event of Lawful Interception.In being reported to the process of DF2, the supplementary service that reports is the Call Forwarding Unconditional business, and the business operation type is for using, and this reports and has carried preceding commentaries on classics purpose user ID SIP URI C simultaneously.
Wherein, Call Forwarding Unconditional service application service device judges that the method whether user SIP URI B is monitored is: according to the service logic of its execution, this Call Forwarding Unconditional service application service device reception just and/or the message that sends, judge whether this monitored data comprises the identify label of related object in this message (this related object may be meant aforementioned user UE, called subscriber or preceding commentaries on classics object), if comprise, think that then this related object is monitored.
In addition, application server is reported to DF2 by X2 interface with the Call Forwarding Unconditional business event of Lawful Interception.Carrying by the business of the current generation of eavesdropping target in the reporting message is the Call Forwarding Unconditional business, and professional action type is for using, and the purpose user ID of preceding commentaries on classics is SIP URI C.Thereby DF2 can therefrom obtain information, and according to the HI2 interface of standard, Intercept related information is sent to LEMF.
Be understood that, present embodiment has only provided service application service device (the professional AS except that legal monitoring business AS) with regard to the application of the Call Forwarding Unconditional business in the standard I P IP multimedia subsystem, IMS (IMS) and has reported the process of supplementary service incident to be described, but the present invention is equally applicable to registration, the Call Forwarding Unconditional of Call Forwarding Unconditional business to be cancelled etc., thereby is reported the Lawful Interception dependent event (IRI incident) of supplementary service by corresponding service application server (AS).Equally, the method in the present embodiment can be generalized to other supplementary service, and as when by business such as eavesdropping target's application (register or cancel) Call Waiting, caller identifications, corresponding professional application server also can report corresponding supplementary service incident.
And present embodiment also can be applicable in the PSTN/ISDN Emulation Subsystem (PES) based on IMS, and specific implementation method and flow process are consistent, no longer repeat at this.
By above-mentioned method to the supplementary service reporting events, application server reports the supplementary service incident to DF2, and P-CSCF and S-CSCF report except that the supplementary service incident other IRI incident (for example, call setup), the invention solves existing standard and can not solve the problem of supplementary service reporting events, having remedied P-CSCF and S-CSCF all can not perception service, and report the defective of supplementary service incident, thereby the present invention is perfect original monitoring correlation event report scheme, satisfy the supplementary service reporting events demand of monitoring, strengthened the exploitativeness of IMS network.
Consistent according to the cellular logic structure chart that the monitoring correlation event in the IMS territory legal monitoring business of embodiments of the invention 2 reports with structure shown in Figure 2, and method and flow process that monitoring correlation event reports are unanimous on the whole, unique difference is: the application server according to embodiment 2 is the Lawful Interception application server, and this application server reports the supplementary service incident to DF2, simultaneously, also to other IRI incident that reports except that the supplementary service incident.Wherein, the Lawful Interception application server also comprises business logic modules 11 and monitoring correlation event reporting module 12, and the business logic modules 11 in the Lawful Interception application server is carried out is the legal monitoring business logic, and its monitoring correlation event reporting module 12 reports is other IRI incident except that supplementary service.
Wherein, according to interception request from ADMF, the CSCF of user SIP URI B correspondence has known that user SIP URI B is the eavesdropping target, and Call Forwarding Unconditional service application service device can be according to acquisitions and the corresponding monitored data of this interception request such as monitored data query interfaces.
It should be noted that: because The present invention be directed to monitoring service, even so in basic call, the Lawful Interception application server also is present in the above-mentioned cellular logic structure always, and this Lawful Interception application server can at any time report IRI incident (for example call setup), and do not rely on other business (application of supplementary service etc.).That is, reporting of this supplementary service application server and this legal monitoring business application server is separate.
That is to say, at user SIP URI B is under eavesdropping target's the situation, the Lawful Interception application server is present in the aforementioned network logical construction always, and the monitoring correlation event reporting module 12 in the Lawful Interception application server can report other IRI incident except that supplementary service.Only in the aforementioned network logical construction, has other supplementary service application server, and when supplementary service takes place, business logic modules 11 in the supplementary service application server is carried out the service logic of supplementary service, and its monitoring correlation event 12 just reports the supplementary service incident.
Fig. 5 has shown the flow chart that reports the IRI incident according to the Lawful Interception application server of embodiments of the invention 2.
As shown in Figure 5, be that to make a call with user SIP URI B be that example explanation Lawful Interception application server reports the IRI incident here.Its idiographic flow is as follows:
Step 1: user SIP URI B (by the eavesdropping target) makes a call to called, and this call request (message) is routed to the S-CSCF (Invite) of user SIP URI B correspondence through the P-CSCF (not shown);
Step 2: this S-CSCF triggers and checks the initial filter criteria (IFC) of Lawful Interception;
After the step 3:IFC coupling, this S-CSCF routes the call to legal monitoring business application server (LI-AS);
Step 4:LI-AS calls out according to this, judges whether the user is monitored (identical with the criterion among the embodiment 1);
Step 5: under the situation that the user is monitored, the business logic modules 11 among the LI-AS is carried out the legal monitoring business logic, and should call out route and return this S-CSCF;
Step 6: the monitoring correlation event reporting module 12 in the legal monitoring business application server (LI-AS) reports Intercept related information incident (IRI incident) to give DF2, promptly points out to be attempted calling out by the eavesdropping target in the message that reports;
Step 7: this S-CSCF is routed to next jumping according to called identify label with call request.
On the basis of above-mentioned steps, when if professional (comprise and making a call and supplementary service) takes place in user SIP URI B, after then the S-CSCF of user SIP URI B correspondence carries out initial filter criteria, should call out (message) and be routed to Lawful Interception application server and supplementary service application server respectively, its corresponding supplementary service application server reports the supplementary service incident to DF2, and the processing procedure of Lawful Interception application server and supplementary service application server is independent of each other.
Be understood that, only provide the IRI incident that legal monitoring business application server (LI-AS) reports setup requests in the foregoing description, in fact, except that the supplementary service incident, legal monitoring business application server (LI-AS) can report other any IRI incidents.
Certainly, the method that present embodiment provides also can be applicable in the PSTN/ISDN Emulation Subsystem (PES) based on IMS, and specific implementation method and flow process are consistent, no longer repeat at this.
The method that the monitoring correlation event that provides by present embodiment reports, the legal monitoring business application server reports other IRI incident except that the supplementary service incident to DF2, other service application service device reports the supplementary service incident to DF2 simultaneously, then need not P-CSCF and S-CSCF and report the IRI incident, thus further perfect original monitoring correlation event report scheme.
In sum, the method that reports according to monitoring correlation event provided by the invention, solved the problem that existing standard can not solve the supplementary service reporting events, having remedied P-CSCF and S-CSCF all can not perception service, and report the defective of supplementary service incident, thereby the present invention is perfect original monitoring correlation event report scheme, satisfied the supplementary service reporting events demand of monitoring, strengthen the exploitativeness of IMS network.
Concerning those skilled in the art, can associate other advantage and distortion easily according to above implementation type.Therefore, the present invention is not limited to above-mentioned specific embodiment, and it carries out detailed, exemplary explanation as just example to a kind of form of the present invention.In the scope that does not deviate from aim of the present invention, those of ordinary skills can replace resulting technical scheme by various being equal to according to above-mentioned specific embodiment, but these technical schemes all should be included in the scope of claim of the present invention and the scope that is equal within.
Claims (21)
1. the report method of a monitoring correlation event is characterized in that:
According to monitored data from the interception request correspondence of the management function entity of Lawful Interception, application server judge its reception and/or the message sent in related object whether monitored, if monitored, then report monitoring correlation event, wherein, this monitoring correlation event comprises supplementary service incident and other Intercept related information incident except that the supplementary service incident.
2. the report method of monitoring correlation event as claimed in claim 1, wherein,
Comprise at this monitored data under the situation of identify label of this related object, judge that this related object is monitored.
3. the report method of monitoring correlation event as claimed in claim 2, wherein,
This application server comprises legal monitoring business application server and supplementary service application server.
4. the report method of monitoring correlation event as claimed in claim 3, wherein,
After this supplementary service application server was carried out service logic, this supplementary service application server reported the supplementary service incident.
5. the report method of monitoring correlation event as claimed in claim 3, wherein,
After the supplementary service application server was carried out service logic, this supplementary service application server reported the supplementary service incident; And
This legal monitoring business application server is carried out the legal monitoring business logic, and report other Intercept related information incident except that the supplementary service incident, wherein, reporting of this supplementary service application server and this legal monitoring business application server is separate.
6. as the report method of claim 4 or 5 described monitoring correlation events, wherein,
The service logic that described supplementary service application server is carried out for professional registration, professional cancel, professional application or professional checking.
7. the report method of monitoring correlation event as claimed in claim 6, wherein,
This report method is applied to the IMS territory of standard, or based on the PSTN/ISDN Emulation Subsystem of IMS.
8. the reporting system of a monitoring correlation event, it comprises judicial execution monitoring equipment, the management function entity of Lawful Interception, call conversation control function entity, and monitoring correlation event is submitted functional block, wherein judicial execution monitoring equipment sends to interception request the management function entity of Lawful Interception, call conversation control function entity and monitoring correlation event are submitted functional block and are obtained this interception request from the management function entity of this Lawful Interception, and this monitoring correlation event is submitted functional block will report judicial execution monitoring equipment from the monitoring correlation event except that supplementary service of call conversation control function entity, it is characterized in that, further comprise:
Application server, be used for the monitored data of basis from the interception request correspondence of the management function entity of Lawful Interception, judge whether it is monitored from call conversation control function entity reception and/or the related object to the message that call conversation control function entity sends, if monitored, then submit functional block and report monitoring correlation event to this monitoring correlation event, wherein, this monitoring correlation event comprises supplementary service incident and other Intercept related information incident except that the supplementary service incident.
9. the reporting system of monitoring correlation event as claimed in claim 8, wherein,
This application server comprises at this monitored data under the situation of identify label of this related object, judges that this related object is monitored.
10. the reporting system of monitoring correlation event as claimed in claim 9, wherein,
This application server comprises legal monitoring business application server and supplementary service application server.
11. the report method of monitoring correlation event as claimed in claim 10, wherein,
After described supplementary service application server was carried out the service logic of supplementary service, this supplementary service application server reported the supplementary service incident.
12. the reporting system of monitoring correlation event as claimed in claim 10, wherein,
After the supplementary service application server was carried out the service logic of supplementary service, this supplementary service application server reported the supplementary service incident; And
This legal monitoring business application server is carried out the legal monitoring business logic, and report other Intercept related information incident except that the supplementary service incident, wherein, reporting of this supplementary service application server and this legal monitoring business application server is separate.
13. as the reporting system of claim 11 or 12 described monitoring correlation events, wherein,
The service logic that described supplementary service application server is carried out for professional registration, professional cancel, professional application or professional checking.
14. the reporting system of monitoring correlation event as claimed in claim 13, wherein,
This reporting system is applied to the IMS territory of standard, or based on the PSTN/ISDN Emulation Subsystem of IMS.
15. an application server is used to report monitoring correlation event, comprising:
Business logic modules is used for carrying out service logic according to the message that this application server receives and/or sends; And
The monitoring correlation event reporting module, be used for the monitored data of basis from the interception request correspondence of the management function entity of Lawful Interception, judge whether the related object in this message is monitored, if monitored, then report monitoring correlation event, wherein, this monitoring correlation event comprises supplementary service incident and other Intercept related information incident except that the supplementary service incident.
16. application server as claimed in claim 15, wherein, this application server comprises:
This monitoring correlation event reporting module comprises at this monitored data under the situation of identify label of this related object, judges that this related object is monitored.
17. application server as claimed in claim 16, wherein,
This application server comprises legal monitoring business application server and supplementary service application server.
18. application server as claimed in claim 17, wherein,
Business logic modules in this supplementary service application server is carried out the service logic of supplementary service, and after carrying out service logic, the monitoring correlation event reporting module in this supplementary service application server reports the supplementary service incident.
19. application server as claimed in claim 17, wherein,
Business logic modules in this supplementary service application server is carried out the service logic of supplementary service, and after carrying out service logic, the monitoring correlation event reporting module in this supplementary service application server reports the supplementary service incident; And
Business logic modules in this legal monitoring business application server is carried out the legal monitoring business logic, and the monitoring correlation event module in this legal monitoring business application server reports other Intercept related information incident except that the supplementary service incident, wherein, reporting of this supplementary service application server and this legal monitoring business application server is separate.
20. as claim 18 or 19 described application servers, wherein,
The service logic that described supplementary service application server is carried out for professional registration, professional cancel, professional application or professional checking.
21. application server as claimed in claim 20, wherein,
This application server is in the IMS territory of standard, or based on the PSTN/ISDN Emulation Subsystem of IMS.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005100975939A CN100428700C (en) | 2005-12-30 | 2005-12-30 | Reporting method and system of using server, monitoring correlation event using it |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005100975939A CN100428700C (en) | 2005-12-30 | 2005-12-30 | Reporting method and system of using server, monitoring correlation event using it |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1870543A CN1870543A (en) | 2006-11-29 |
| CN100428700C true CN100428700C (en) | 2008-10-22 |
Family
ID=37444099
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2005100975939A Expired - Fee Related CN100428700C (en) | 2005-12-30 | 2005-12-30 | Reporting method and system of using server, monitoring correlation event using it |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100428700C (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101222539B (en) * | 2008-01-30 | 2012-02-29 | 中兴通讯股份有限公司 | IP multimedia subsystem and its supplementary service monitoring method |
| US8320363B2 (en) | 2008-12-01 | 2012-11-27 | Huawei Technologies Co., Ltd. | Implementation method, system and device of IMS interception |
| CN101420432B (en) * | 2008-12-01 | 2012-10-17 | 华为技术有限公司 | Implementing method, system and apparatus for IMS listening |
| CN103905398B (en) * | 2012-12-27 | 2018-01-23 | 华为技术有限公司 | Distributed monitor method, act on behalf of monitoring device, interception control device and system |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1538778A (en) * | 2003-04-15 | 2004-10-20 | 华为技术有限公司 | Method of proceeding grouping business listening based on mobile telephone number |
| WO2005025133A1 (en) * | 2003-09-05 | 2005-03-17 | Telefonaktiebolaget Lm Ericsson (Publ) | Monitoring in a telecommunication network |
| CN1612563A (en) * | 2003-10-28 | 2005-05-04 | 华为技术有限公司 | System and method for monitoring and intercepting activity |
| CN1642115A (en) * | 2004-01-16 | 2005-07-20 | 华为技术有限公司 | System and method for realizing IP multimedia business monitoring |
| WO2005069663A1 (en) * | 2004-01-14 | 2005-07-28 | Nokia Corporation | Method, system, and network element for monitoring of both session content and signalling information in networks |
| CN1658684A (en) * | 2005-03-18 | 2005-08-24 | 华为技术有限公司 | Method for implementing listening |
| CN1684529A (en) * | 2004-04-12 | 2005-10-19 | 华为技术有限公司 | Monitoring method based on general mobile communication system |
-
2005
- 2005-12-30 CN CNB2005100975939A patent/CN100428700C/en not_active Expired - Fee Related
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1538778A (en) * | 2003-04-15 | 2004-10-20 | 华为技术有限公司 | Method of proceeding grouping business listening based on mobile telephone number |
| WO2005025133A1 (en) * | 2003-09-05 | 2005-03-17 | Telefonaktiebolaget Lm Ericsson (Publ) | Monitoring in a telecommunication network |
| CN1612563A (en) * | 2003-10-28 | 2005-05-04 | 华为技术有限公司 | System and method for monitoring and intercepting activity |
| WO2005069663A1 (en) * | 2004-01-14 | 2005-07-28 | Nokia Corporation | Method, system, and network element for monitoring of both session content and signalling information in networks |
| CN1642115A (en) * | 2004-01-16 | 2005-07-20 | 华为技术有限公司 | System and method for realizing IP multimedia business monitoring |
| CN1684529A (en) * | 2004-04-12 | 2005-10-19 | 华为技术有限公司 | Monitoring method based on general mobile communication system |
| CN1658684A (en) * | 2005-03-18 | 2005-08-24 | 华为技术有限公司 | Method for implementing listening |
Non-Patent Citations (2)
| Title |
|---|
| 3rd Generation Partnership Project,Technacal SpecificationGroup Core Network And Termanals,IP multimedia CallControl Protocol Based On Session Initiation Protocol(SIP)And Session Description Protocol(SDP),Stage 3. 3GPP TS 24.229 V7.1.0. 2005 |
| 3rd Generation Partnership Project,Technacal SpecificationGroup Core Network And Termanals,IP multimedia CallControl Protocol Based On Session Initiation Protocol(SIP)And Session Description Protocol(SDP),Stage 3. 3GPP TS 24.229 V7.1.0. 2005 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1870543A (en) | 2006-11-29 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9973541B2 (en) | Lawful interception in an IP multimedia subsystem network | |
| JP5518485B2 (en) | Authenticate caller ID information to protect against caller ID spoofing | |
| US8223927B2 (en) | Lawful interception of non-local subscribers | |
| CN100531074C (en) | Method and system for legally monitoring IP multimedia subsystem network | |
| US9131048B2 (en) | Communication system and communication control method | |
| CN101043691B (en) | Legal monitor method for IMS network | |
| CN100428700C (en) | Reporting method and system of using server, monitoring correlation event using it | |
| US20140073295A1 (en) | Interception of databases | |
| CN101123822B (en) | Implementation method for emergent call service in IP multimedia subsystem central service | |
| EP2569998B1 (en) | Enabling set up of a connection from a non-registered UE in IMS | |
| CN101068279B (en) | Emergency call return call realizing method | |
| US20070274462A1 (en) | Method, System and Access Control Function for Detecting Emergency Service | |
| CN101448233A (en) | Method for realizing IP multimedia subsystem emergency call | |
| Tóthfalusi et al. | Assembling SIP-based VoLTE Call Data Records based on network monitoring | |
| EP1832098B1 (en) | Lawful interception of dss1 based virtual private network | |
| CN100561951C (en) | The IP Multimedia System common service is carried out the method and system of Lawful Interception | |
| CN101237660B (en) | A monitoring system and method for next generation network | |
| CN101883371A (en) | Distributed control method and system for legally monitoring in IMS (IP Multimedia Subsystem) network | |
| CN100518101C (en) | Method and system for legal monitoring of public service in IP multimedia subsystem | |
| CN101115237B (en) | Method for performing call deflexion in IP multimedia subsystem centralized control service | |
| US20080095342A1 (en) | Interception Of Cashless Calling Service Subscription | |
| CN101267428B (en) | A method for indication and prevention in related message | |
| Paulins et al. | Vulnerability Analysis of IP Multimedia Subsystem (IMS) | |
| CN101267318A (en) | A method for indicating and realizing associated billing of related message |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20081022 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |