CN102036200A - Repositioning execution method and system - Google Patents
Repositioning execution method and system Download PDFInfo
- Publication number
- CN102036200A CN102036200A CN2009101763875A CN200910176387A CN102036200A CN 102036200 A CN102036200 A CN 102036200A CN 2009101763875 A CN2009101763875 A CN 2009101763875A CN 200910176387 A CN200910176387 A CN 200910176387A CN 102036200 A CN102036200 A CN 102036200A
- Authority
- CN
- China
- Prior art keywords
- rnc
- rrc
- message
- target rnc
- reorientation
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention discloses a repositioning execution method. The method comprises that: a source radio network controller (RNC) encrypts radio resource control (RRC) switching message by using the current used encryption algorithm, and then forwards the encrypted RRC switching message to user equipment (UE) through a target RNC. The invention also discloses a repositioning execution system. In the system, an encryption and sending unit is used for encrypting the RRC switching message by using the current used encryption algorithm and sending the encrypted RRC switching message to the target RNC through the source RNC; and a sending and repositioning implementation unit is used for acquiring the encrypted RRC switching message from the source RNC and forwarding the encrypted RRC switching message to the UE through the target RNC. The method and the system can solve the problem of repositioning process failure because the encryption algorithm selected by the target RNC and the current encryption algorithm used by the source RNC are different under the scene of repositioning of a service radio network subsystem (SRNS) without relating to the UE.
Description
Technical field
The present invention relates to re-positioning technology, relate in particular to reorientation manner of execution and system when professional cryptographic algorithm changes before and after the reorientation in a kind of 3-G (Generation Three mobile communication system).
Background technology
As shown in Figure 1, the wireless access network of universal mobile telecommunications system (UTRAN) is made up of RNS (RNS, Radio Network Subsystem), and these RNS link to each other with core net (CN) by the Iu interface.A RNS comprises a radio network controller (RNC) and one or more Node B (NodeB).NodeB links to each other with RNC by Iub interface.RNC between the RNS links to each other by the Iur interface.
Sometime, certain has been initiated professional subscriber equipment (UE), exist a RNC be responsible for its Radio Resource configuration, administer and maintain, this RNC is called Serving RNC (SRNC), the Access Network side tie point that is connected on the Iu interface between UE and the CN also is positioned on the SRNC.Because roaming or other reasons in the time of need making another one RNC become SRNC, will trigger the repositioning process of SRNC.In repositioning process, the RNC that is about to bear SRNC role is called Target RNC; And the RNC that SRNC role produces is called source RNC.Agreement 3GPP 25413V7.9.0 has pointed out that source RNC initiates when reorientation is prepared the reorientation type is set---comprise Serving Radio Network System (SRNS) reorientation that relates to UE and the SRNS reorientation that does not relate to UE; Target RNC is according to the corresponding reorientation resource allocation operations of this information and executing.Agreement 3GPP 25.303Interlayer procedures in Connected Mode has also advised comprising the basic agreement process that can trigger in the repositioning process in addition: the SRNS reorientation, be attended by the repositioning process that cell update or Acceditation Area upgrade, the repositioning process of following direct-cut operation; Wherein the SRNS reorientation is not for relating to the SRNS reorientation of UE.In each repositioning process, all there is interacting message between source RNC and Target RNC and the CN.
Fig. 2 has described the SRNS repositioning process that does not relate to UE.This process may further comprise the steps:
Reorientation is initiated in step 101, SRNC decision, initiates message reorientation requirement message to CN.
Here, source RNC can carry protection algorithm integrallty and the cryptographic algorithm that Signaling Radio Bearer and reorientation business are being used in this message.
Wherein, reorientation business may comprise circuit domain business and packet switch domain service; Protection algorithm integrallty that is using and cryptographic algorithm are given selected parameter in the transparent vessel of Target RNC with reference to cell by source RNC, such as the parameter in the container of the parameter in the container of protection algorithm integrallty, cryptographic algorithm.
Step 102, CN initiate RELOCATION REQUEST message to Target RNC.
Here, can carry CN in this message and recommend preferred protection algorithm integrallty tabulation and cryptographic algorithm tabulation, with reference to the cryptographic algorithm tabulation in the container of tabulation of the protection algorithm integrallty in the container of cell protection algorithm integrallty and cryptographic algorithm.
After step 103, Target RNC are received RELOCATION REQUEST message, carry out reorientation resource allocation work.
Wherein, Target RNC can according to self the cryptographic algorithm tenability CN recommend to select in the tabulation of preferred cryptographic algorithm the follow-up use of this RNC cryptographic algorithm---this cryptographic algorithm may be different with the cryptographic algorithm that source RNC is using.
Step 104, Target RNC send the re-positioning request response message to CN after reorientation resource allocation work is finished.
Wherein, comprise cryptographic algorithm and protection algorithm integrallty that the Target RNC selection is used in this message, with reference to the parameter in the container of parameter in the container of cell cryptographic algorithm and protection algorithm integrallty.
Step 105, CN initiate the reorientation command messages to SRNC.
After step 106, SRNC receive the reorientation command messages, initiate repositioning submission information to Target RNC.
Step 107, Target RNC send the message relocation detect-message and switch to source RNC role to CN.
Step 108, Target RNC send Utran mobility information message to UE.
The response message that step 109, UE return to Target RNC is a Utran mobility information acknowledgement message.
Step 110, for after source RNC role's Target RNC receives the response message that UE returns, send reorientation to CN and finish message.
Step 111, CN send out IU to old source RNC and discharge request, and repositioning process finishes.
In the above-mentioned repositioning process, Target RNC is by the UU flow process, be step 108~relevant information of 109 some SRNC of notice UE: such as URNTI, if Target RNC has been selected the different algorithm of cryptographic algorithm that using with source RNC in the reorientation resource allocation process, the change of this algorithm also must be by UU flow process notice UE.If Target RNC is not supported the cryptographic algorithm that source RNC is using, thereby selected the different algorithm of cryptographic algorithm that using with source RNC, the triggering message of UU flow process then, such as Utran mobility information message can't use source RNC just the cryptographic algorithm of usefulness encrypt, and UE is also deciphering with the current cryptographic algorithm of using of source RNC, the triggering message of UU flow process can not be identified by UE like this, and the UU flow process can not successfully be carried out, and then causes the repositioning process failure.At present, under the scene of the SRNS reorientation that does not relate to UE, the cryptographic algorithm that Target RNC is selected is different with the cryptographic algorithm of the current use of source RNC and there is not effective solution as yet in the problem that causes repositioning process to be failed.
Summary of the invention
In view of this, main purpose of the present invention is to provide a kind of reorientation manner of execution and system, can separate under the scene of the SRNS reorientation that never relates to UE, because the problem of the different repositioning process failures that cause of the cryptographic algorithm of cryptographic algorithm that Target RNC is selected and the current use of source RNC.
For achieving the above object, technical scheme of the present invention is achieved in that
A kind of reorientation manner of execution, this method comprises:
The reorientation type is when not relating to SRNS Serving Radio Network Subsystem (SRNS) reorientation of subscriber equipment (UE), and target radio network controller (RNC) checks out that the cryptographic algorithm of the current use of source RNC and the cryptographic algorithm that Target RNC is selected do not match;
Target RNC switches message with unencrypted Radio Resource control (RRC) and expects that the radio bearer sign that described RRC switching message issues offers source RNC;
Source RNC, switches message with the RRC after encrypting and is transmitted to UE via Target RNC, and carry out reorientation by Target RNC with after the encryption parameter relevant with described radio bearer sign switches message encryption to RRC with the cryptographic algorithm of self current use.
Wherein, described unencrypted RRC switching message specifically comprises: carried out integrity protection but unencrypted message by described Target RNC;
The encryption parameter relevant with described radio bearer sign specifically comprises: Radio Link control (RLC) data encryption parameter of the corresponding radio bearer sign of UE described in the RNC of source place radio bearer.
Wherein, described source RNC switches message encryption to RRC and further comprises: the situation according to the logic interfacing between source RNC and the Target RNC (Iur) interface is carried out segmentation, and the data content that described RRC is switched in the message carries out the segmentation encryption; Segmentation data encrypted content is submitted to described Target RNC by described Iur interface.
Wherein, the described radio bearer sign of the further local record of described Target RNC;
After described Target RNC obtains described segmentation data encrypted content, further comprise: according to the radio bearer sign of record, after carrying out medium access controls (MAC) processing on the radio bearer of expectation, the RRC that finishes the segment data encryption is switched forwards give described UE.
Wherein, described UE obtain described finish RRC that segment data encrypts and switch message after, further comprise:
The RRC switching decrypt messages that UE encrypts finishing segment data by the cryptographic algorithm that adopts the current use of source RNC, and identify described RRC switching message;
The cryptographic algorithm that UE adopts Target RNC to select is encrypted the data content in the RRC switching response message; The RRC switching response message of finishing data encryption is sent to described Target RNC;
The cryptographic algorithm that described Target RNC employing is selected self after the RRC switching response message deciphering of finishing data encryption, sends reorientation to core net (CN) and finishes message, and realizes the reorientation by the Target RNC execution.
A kind of reorientation executive system, this system comprises: inspection unit, provide unit, encryption and transmitting element, transmission and reorientation to realize the unit; Wherein,
Inspection unit, be used for when the reorientation type be: when not relating to the SRNS reorientation of UE, Target RNC checks whether the cryptographic algorithm of the current use of source RNC and the cryptographic algorithm of Target RNC selection mate;
The unit is provided, is used for when cryptographic algorithm that the cryptographic algorithm of the current use of source RNC and Target RNC are selected does not match, Target RNC switches message with unencrypted RRC and expects that described RRC switches the radio bearer sign that message issues and offers source RNC;
Encrypt and transmitting element, be used for source RNC with the cryptographic algorithm of self current use with identify relevant encryption parameter with described radio bearer RRC switched message encryption; RRC after source RNC will encrypt switches message and sends to Target RNC;
Send and reorientation realizes the unit, be used for Target RNC and switch message and be transmitted to UE from the RRC that source RNC obtains after the encryption; Carry out reorientation by Target RNC.
Wherein, described encryption and transmitting element are further used for described source RNC and carry out segmentation according to the situation of Iur interface, and the data content that described RRC is switched in the message carries out the segmentation encryption; Segmentation data encrypted content is submitted to described Target RNC by described Iur interface.
Wherein, this system also comprises: record cell is used for the described radio bearer sign of described Target RNC local record;
Described transmission and reorientation realize the unit, are further used for described Target RNC according to the radio bearer sign that writes down, and after execution MAC handles on the radio bearer of expectation, the RRC that finishes the segment data encryption is switched forwards give described UE.
Wherein, this system also comprises: the decrypting device of UE side and ciphering unit; Wherein,
Decrypting device, be used for described UE obtain described finish RRC that segment data encrypts and switch message after, the cryptographic algorithm of UE by adopting the current use of source RNC switched decrypt messages to the RRC that finishes segment data and encrypt, and identifies described RRC and switch message;
Ciphering unit is used for the cryptographic algorithm that UE adopts Target RNC to select, and the data content in the RRC switching response message is encrypted; The RRC switching response message of finishing data encryption is sent to described Target RNC;
Described transmission and reorientation realize the unit, and the cryptographic algorithm that further described Target RNC employing is selected self after the RRC switching response message deciphering of finishing data encryption, sends reorientation to CN and finishes message, and realizes the reorientation by the Target RNC execution.
Reorientation type of the present invention is when not relating to the SRNS reorientation of UE, and Target RNC checks out that the cryptographic algorithm of the current use of source RNC and the cryptographic algorithm that Target RNC is selected do not match; Target RNC switches message with unencrypted RRC and expects that the radio bearer sign that this RRC switching message issues offers source RNC; Source RNC, switches message with the RRC after encrypting and is transmitted to UE via Target RNC, and carry out reorientation by Target RNC with after the encryption parameter relevant with this radio bearer sign switches message encryption to RRC with the cryptographic algorithm of self current use.
Adopt the present invention, encrypt RRC by source RNC with the cryptographic algorithm of self current use and switch message, to guarantee that RRC switches message and can send to UE smoothly, above-mentioned UU flow process can be carried out smoothly, thereby guaranteed the effective switching of cryptographic algorithm before and after the reorientation and the continuation of business conduct, avoided the problem of the different repositioning process failures that cause of cryptographic algorithm of cryptographic algorithm that Target RNC selects and source RNC current use.
Description of drawings
Fig. 1 is the composition configuration diagram of UTRAN;
Fig. 2 is the existing schematic diagram that does not relate to the SRNS repositioning process of UE;
Fig. 3 is the realization flow schematic diagram of the inventive method.
Embodiment
Basic thought of the present invention is: encrypt RRC by source RNC with the cryptographic algorithm of self current use and switch message, to guarantee that RRC switches message and can send to UE smoothly, above-mentioned UU flow process can be carried out smoothly, thereby avoid the problem of the different repositioning process failures that cause of cryptographic algorithm of cryptographic algorithm that Target RNC selects and the current use of source RNC.
Be described in further detail below in conjunction with the enforcement of accompanying drawing technical scheme.
As shown in Figure 3, a kind of reorientation manner of execution, this method may further comprise the steps:
Here, unencrypted RRC switching message specifically comprises: carried out integrity protection but unencrypted message by Target RNC.
Here, relevant with above-mentioned radio bearer sign encryption parameter specifically comprises: the RLC data encryption parameter of the corresponding radio bearer sign of this UE place radio bearer among the RNC of source.
At the technical scheme that is constituted by above-mentioned steps 201~203, in the step 203, source RNC switches message encryption to RRC and further comprises: according to the logic interfacing (Iur between source RNC and the Target RNC, logical interface between two RNCs) situation of interface is carried out segmentation, and the data content that RRC is switched in the message carries out the segmentation encryption; Segmentation data encrypted content is submitted to Target RNC by this Iur interface.
In the step 202, Target RNC will expect that the radio bearer that this RRC switching message issues identifies when offering source RNC, this radio bearer sign of the further local record of Target RNC.
In the step 203, Target RNC further comprises after obtaining segmentation data encrypted content: according to this radio bearer sign that writes down, after carrying out the MAC processing on the radio bearer of expectation, the RRC that finishes the segment data encryption is switched forwards give UE.
Here, UE further comprises after obtaining the RRC switching message of finishing the segment data encryption:
The RRC switching decrypt messages that UE encrypts finishing segment data by the cryptographic algorithm that adopts the current use of source RNC, and identify RRC switching message.
The cryptographic algorithm that UE adopts Target RNC to select is encrypted the data content in the RRC switching response message; The RRC switching response message of finishing data encryption is sent to Target RNC.
The cryptographic algorithm that the Target RNC employing is selected self after the RRC switching response message deciphering of finishing data encryption, sends reorientation to CN and finishes message, and realizes the reorientation by the Target RNC execution.
In sum, the present invention is that a kind of reorientation when professional cryptographic algorithm changes before and after the SRNS reorientation that does not relate to UE carries into execution a plan, its objective is solution: do not relate under the scene of SRNS reorientation of UE, if the cryptographic algorithm that Target RNC is selected is different with the cryptographic algorithm of the current use of source RNC, cause notifying the UU flow process of UE changing encryption algorithm can not successful execution, thus the problem that finally causes the reorientation implementation to carry out.
The technical solution used in the present invention mainly comprises following content:
One: in not relating to the SRNS repositioning process of UE, if the cryptographic algorithm that Target RNC is selected is different with the cryptographic algorithm of the current use of source RNC, then Target RNC is carried out the RRC switching message that sends to UE---such as the integrity protection of Utran mobility information message; Target RNC is at the cell of re-positioning request response message then, that is: Target RNC switches message for the RRC that comprises the executed integrity protection in the transparent vessel of source RNC and expects that this RRC switches the radio bearer sign 3 that message issues; The radio bearer sign that while Target RNC local record should be expected is so that the follow-up passage that issues that is used to discern through the RRC of source RNC current data cryptographic algorithm encryption switching message data.
Wherein, Target RNC switches message for the RRC that comprises in the transparent vessel of source RNC, can be Utran mobility information message, and not carry out data encryption.
Two: source RNC gives from Target RNC and parses the radio bearer sign of RRC switching message such as Utran mobility information message and expectation the transparent vessel of source RNC; Identify the segmentation and the data encryption of the data encryption parameter execution RRC switching message of place radio bearer RLC then with the radio bearer of the current DEA of this RNC, expectation; To finish the ciphered data content then is encapsulated in repositioning submission information and notifies Target RNC by the Iur interface.
Three: Target RNC receives repositioning submission information, extracts the RRC that has carried out source RNC data encryption and switch message data from this message, sends to UE after carrying out the MAC downlink processing on the radio bearer of expectation.
Below to the present invention's elaboration of giving an example.
It is the situation of Utran mobility information message that example one: RRC switches message.
Enforcement at Target RNC in the preparation of reorientation resource may further comprise the steps:
Step 301, Target RNC receive RELOCATION REQUEST message, if the reorientation type is not for relating to the SRNS reorientation of UE, and the cryptographic algorithm that this Target RNC is selected is different with the cryptographic algorithm that source RNC uses, then RRC switches message, need carry out data encryption by the DEA of source RNC such as UTRAN mobile message message.
After step 302, Target RNC are finished the reorientation resource allocation; return the re-positioning request response message and give CN; wherein Target RNC is given RRC switching message---the Utran mobility information message that comprises the executed integrity protection in the transparent vessel of source RNC but do not carry out data encryption, also comprises the radio bearer sign of expectation.
Also comprise protection algorithm integrallty and cryptographic algorithm that Target RNC is selected in step 303, the re-positioning request response message.
Enforcement at source RNC in the reorientation may further comprise the steps:
Step 401, reorientation type be not for to relate in the SRNS repositioning process of UE, source RNC receives the reorientation command messages, check that Target RNC to comprising in the transparent vessel of source RNC that RRC switches message---Utran mobility information message, also comprises the radio bearer sign of expectation.
Step 402, source RNC carry out segmentation and the data encryption that RRC switches message with the data encryption parameter of the radio bearer sign place radio bearer RLC of current DEA, expectation.
Step 403, correctly receive the probability that RRC switches message for increasing UE, source RNC can repeat this step, issues a plurality of identical RRC and switches message.
Step 404, source RNC will finish the ciphered data content and be encapsulated in repositioning submission information and notify Target RNC by the Iur interface.
Receive at Target RNC and may further comprise the steps enforcement after the repositioning submission information:
Step 501, Target RNC are received after reorientation is submitted to and are switched to source RNC role.
The RRC that finishes data encryption that step 502, Target RNC extract in the repositioning submission information switches the message data piece.
Step 503, after handling, MAC sending to UE carrying out on the radio bearer of expectation.
Step 504, this RNC decipher upstream data, obtain UE RRC switching response message with the local DEA of selecting; Send reorientation to CN then and finish message, CN sends out IU to old source RNC again and discharges request, and repositioning process finishes.
Receive that at UE RRC switches the enforcement of message, comprise: after UE receives Utran mobility information message, carry out and return response message, that is: Utran mobility information acknowledgement message, this response message switches the cryptographic algorithm of appointment in the message with RRC, i.e. the cryptographic algorithm of Target RNC selection is carried out data encryption.
It is the situation of radio bearer reconfiguration message that example two: RRC switches message.
Enforcement at Target RNC in the preparation of reorientation resource may further comprise the steps:
Step 601, Target RNC receive RELOCATION REQUEST message, if the reorientation type is not for relating to the SRNS reorientation of UE, and the cryptographic algorithm that this Target RNC is selected is different with the cryptographic algorithm that source RNC uses, then RRC switching message is radio bearer reconfiguration message, the RRC that also may be any other switches message, need carry out data encryption by the DEA of source RNC.
After step 602, Target RNC are finished the reorientation resource allocation; return the re-positioning request response message and give CN; wherein Target RNC is given RRC switching message---the radio bearer reconfiguration message that comprises the executed integrity protection in the transparent vessel of source RNC but do not carry out data encryption; the RRC that also may be any other switches message, also comprises the radio bearer sign of expectation.
Also comprise protection algorithm integrallty and cryptographic algorithm that Target RNC is selected in step 603, the re-positioning request response message.
Enforcement at source RNC in the reorientation may further comprise the steps:
Step 701, reorientation type be not for to relate in the SRNS repositioning process of UE, source RNC receives the reorientation command messages, check that Target RNC switches message to the RRC that comprises in the transparent vessel of source RNC, such as radio bearer reconfiguration message, also may be that any other RRC switches message, also comprises the radio bearer sign of expectation.
Step 702, source RNC carry out segmentation and the data encryption that RRC switches message with the data encryption parameter of the radio bearer sign place radio bearer RLC of current DEA, expectation.
Step 703, correctly receive the probability that RRC switches message for increasing UE, source RNC can repeat this step, issues a plurality of identical RRC and switches message.
Step 704, source RNC will finish the ciphered data content and be encapsulated in repositioning submission information and notify Target RNC by the Iur interface.
Receive at Target RNC and may further comprise the steps enforcement after the repositioning submission information:
Step 801, Target RNC are received after reorientation is submitted to and are switched to source RNC role.
The RRC that finishes data encryption that step 802, Target RNC extract in the repositioning submission information switches the message data piece.
Step 803, after handling, MAC sending to UE carrying out on the radio bearer of expectation.
Step 804, this RNC decipher upstream data, obtain UE RRC switching response message with the local DEA of selecting; Send reorientation to CN then and finish message, CN sends out IU to old source RNC again and discharges request, and repositioning process finishes.
Receive that at UE RRC switches the enforcement of message, comprise: after UE receives radio bearer reconfiguration message, carry out and return the radio bearer reconfiguration response message---this response message switches the cryptographic algorithm of appointment in the message with RRC, i.e. the cryptographic algorithm of Target RNC selection is carried out data encryption.
A kind of reorientation executive system, this system comprises: inspection unit, provide unit, encryption and transmitting element, transmission and reorientation to realize the unit.Wherein, inspection unit, be used for when the reorientation type be: when not relating to the SRNS reorientation of UE, Target RNC checks whether the cryptographic algorithm of the current use of source RNC and the cryptographic algorithm of Target RNC selection mate.The unit is provided, is used for when cryptographic algorithm that the cryptographic algorithm of the current use of source RNC and Target RNC are selected does not match, Target RNC switches message with unencrypted RRC and expects that described RRC switches the radio bearer sign that message issues and offers source RNC.Encrypt and transmitting element, be used for source RNC with the cryptographic algorithm of self current use with identify relevant encryption parameter with radio bearer RRC switched message encryption; RRC after source RNC will encrypt switches message and sends to Target RNC.Send and reorientation realizes the unit, be used for Target RNC and switch message and be transmitted to UE from the RRC that source RNC obtains after the encryption; Carry out reorientation by Target RNC.
Here, encrypt and transmitting element, be further used for source RNC and carry out segmentation, and the data content that RRC is switched in the message carries out the segmentation encryption according to the situation of Iur interface; Segmentation data encrypted content is submitted to Target RNC by the Iur interface.
Here, this system also comprises: record cell is used for the described radio bearer sign of Target RNC local record.Send and reorientation realization unit, be further used for Target RNC according to the radio bearer sign that writes down, after carrying out the MAC processing on the radio bearer of expectation, the RRC that will finish the segment data encryption switches forwards and gives UE.
Here, this system also comprises: the decrypting device of UE side and ciphering unit.Wherein, decrypting device, be used for described UE obtain finish RRC that segment data encrypts and switch message after, the cryptographic algorithm of UE by adopting the current use of source RNC switched decrypt messages to the RRC that finishes segment data and encrypt, and identifies RRC and switch message.Ciphering unit is used for the cryptographic algorithm that UE adopts Target RNC to select, and the data content in the RRC switching response message is encrypted; The RRC switching response message of finishing data encryption is sent to Target RNC.
Send and reorientation realization unit, further the cryptographic algorithm of Target RNC employing self selection after the RRC switching response message deciphering of finishing data encryption, is finished message to CN transmission reorientation, and is realized the reorientation by the Target RNC execution.
Here, the Target RNC that more than relates to is represented with target RNC; Source RNC represents with Source RNC; Reorientation prepares to represent with Relocation Preparation; The reorientation type is represented with Relocation Type; The SRNS reorientation that relates to UE is represented with UE involved in relocation of SRNS; The SRNS reorientation that does not relate to UE is represented with UE not involved in relocation of SRNS; The reorientation resource allocation is represented with Relocation Resource Allocation; The reorientation requirement message is represented with RELOCATION REQUIRED; Radio bearer is represented with SRB; Circuit domain is represented with CS domain; Packet domain is represented with PS domain; Source RNC represents for the transparent vessel of Target RNC with Source RNC to Target RNC Transparent Container IE; The container of protection algorithm integrallty is represented with Chosen Integrity Protection Algorithm IE; The container of cryptographic algorithm is represented with Chosen Encryption Algorithm IE; RELOCATION REQUEST message is represented with RELOCATION REQUEST; The re-positioning request response message is represented with RELOCATION REQUEST ACKNOWLEDGE; The reorientation command messages is represented with RELOCATION COMMAND; Repositioning submission information is represented with RELOCATION COMMIT; Relocation detect-message is represented with RELOCATION DETECT; Utran mobility information message is represented with UTRAN MOBILITY INFORMATION; Utran mobility information acknowledgement message is represented with UTRAN Mobility Information Confirm; Reorientation is finished message and is represented with RELOCATION COMPLETE; The reorientation failed message is represented with RELOCATION FAILURE; The cryptographic algorithm of not supporting SRNC to use is represented with Chosen Ciphering algorithms not supported.
The above is preferred embodiment of the present invention only, is not to be used to limit protection scope of the present invention.
Claims (9)
1. a reorientation manner of execution is characterized in that, this method comprises:
The reorientation type is when not relating to SRNS Serving Radio Network Subsystem (SRNS) reorientation of subscriber equipment (UE), and target radio network controller (RNC) checks out that the cryptographic algorithm of the current use of source RNC and the cryptographic algorithm that Target RNC is selected do not match;
Target RNC switches message with unencrypted Radio Resource control (RRC) and expects that the radio bearer sign that described RRC switching message issues offers source RNC;
Source RNC, switches message with the RRC after encrypting and is transmitted to UE via Target RNC, and carry out reorientation by Target RNC with after the encryption parameter relevant with described radio bearer sign switches message encryption to RRC with the cryptographic algorithm of self current use.
2. method according to claim 1 is characterized in that, described unencrypted RRC switches message and specifically comprises: carried out integrity protection but unencrypted message by described Target RNC;
The encryption parameter relevant with described radio bearer sign specifically comprises: Radio Link control (RLC) data encryption parameter of the corresponding radio bearer sign of UE described in the RNC of source place radio bearer.
3. method according to claim 1 and 2, it is characterized in that, described source RNC switches message encryption to RRC and further comprises: the situation according to the logic interfacing between source RNC and the Target RNC (Iur) interface is carried out segmentation, and the data content that described RRC is switched in the message carries out the segmentation encryption; Segmentation data encrypted content is submitted to described Target RNC by described Iur interface.
4. method according to claim 3 is characterized in that, the described radio bearer sign of the further local record of described Target RNC;
After described Target RNC obtains described segmentation data encrypted content, further comprise: according to the radio bearer sign of record, after carrying out medium access controls (MAC) processing on the radio bearer of expectation, the RRC that finishes the segment data encryption is switched forwards give described UE.
5. method according to claim 4 is characterized in that, described UE obtain described finish RRC that segment data encrypts and switch message after, further comprise:
The RRC switching decrypt messages that UE encrypts finishing segment data by the cryptographic algorithm that adopts the current use of source RNC, and identify described RRC switching message;
The cryptographic algorithm that UE adopts Target RNC to select is encrypted the data content in the RRC switching response message; The RRC switching response message of finishing data encryption is sent to described Target RNC;
The cryptographic algorithm that described Target RNC employing is selected self after the RRC switching response message deciphering of finishing data encryption, sends reorientation to core net (CN) and finishes message, and realizes the reorientation by the Target RNC execution.
6. a reorientation executive system is characterized in that, this system comprises: inspection unit, provide unit, encryption and transmitting element, transmission and reorientation to realize the unit; Wherein,
Inspection unit, be used for when the reorientation type be: when not relating to the SRNS reorientation of UE, Target RNC checks whether the cryptographic algorithm of the current use of source RNC and the cryptographic algorithm of Target RNC selection mate;
The unit is provided, is used for when cryptographic algorithm that the cryptographic algorithm of the current use of source RNC and Target RNC are selected does not match, Target RNC switches message with unencrypted RRC and expects that described RRC switches the radio bearer sign that message issues and offers source RNC;
Encrypt and transmitting element, be used for source RNC with the cryptographic algorithm of self current use with identify relevant encryption parameter with described radio bearer RRC switched message encryption; RRC after source RNC will encrypt switches message and sends to Target RNC;
Send and reorientation realizes the unit, be used for Target RNC and switch message and be transmitted to UE from the RRC that source RNC obtains after the encryption; Carry out reorientation by Target RNC.
7. system according to claim 6 is characterized in that, described encryption and transmitting element are further used for described source RNC and carry out segmentation according to the situation of Iur interface, and the data content that described RRC is switched in the message carries out the segmentation encryption; Segmentation data encrypted content is submitted to described Target RNC by described Iur interface.
8. according to claim 6 or 7 described systems, it is characterized in that this system also comprises: record cell is used for the described radio bearer sign of described Target RNC local record;
Described transmission and reorientation realize the unit, are further used for described Target RNC according to the radio bearer sign that writes down, and after execution MAC handles on the radio bearer of expectation, the RRC that finishes the segment data encryption is switched forwards give described UE.
9. system according to claim 8 is characterized in that, this system also comprises: the decrypting device of UE side and ciphering unit; Wherein,
Decrypting device, be used for described UE obtain described finish RRC that segment data encrypts and switch message after, the cryptographic algorithm of UE by adopting the current use of source RNC switched decrypt messages to the RRC that finishes segment data and encrypt, and identifies described RRC and switch message;
Ciphering unit is used for the cryptographic algorithm that UE adopts Target RNC to select, and the data content in the RRC switching response message is encrypted; The RRC switching response message of finishing data encryption is sent to described Target RNC;
Described transmission and reorientation realize the unit, and the cryptographic algorithm that further described Target RNC employing is selected self after the RRC switching response message deciphering of finishing data encryption, sends reorientation to CN and finishes message, and realizes the reorientation by the Target RNC execution.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009101763875A CN102036200A (en) | 2009-09-29 | 2009-09-29 | Repositioning execution method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009101763875A CN102036200A (en) | 2009-09-29 | 2009-09-29 | Repositioning execution method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102036200A true CN102036200A (en) | 2011-04-27 |
Family
ID=43888379
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2009101763875A Pending CN102036200A (en) | 2009-09-29 | 2009-09-29 | Repositioning execution method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102036200A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2017143541A1 (en) * | 2016-02-24 | 2017-08-31 | 华为技术有限公司 | Data security protection method and apparatus |
-
2009
- 2009-09-29 CN CN2009101763875A patent/CN102036200A/en active Pending
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2017143541A1 (en) * | 2016-02-24 | 2017-08-31 | 华为技术有限公司 | Data security protection method and apparatus |
| CN108701195A (en) * | 2016-02-24 | 2018-10-23 | 华为技术有限公司 | A kind of data security protection method and device |
| CN108701195B (en) * | 2016-02-24 | 2020-10-16 | 华为技术有限公司 | Data security protection method and device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101232731B (en) | Method and system for UE to generate cryptographic key switching from UTRAN to EUTRAN | |
| TWI454160B (en) | Method and arrangement in a telecommunication system | |
| EP2548389B1 (en) | Enhanced key management for srns relocation | |
| US8494163B2 (en) | Encryption in a wireless telecommunications | |
| JP2020536424A (en) | Security protection methods, devices and systems | |
| US8452007B2 (en) | Security key generating method, device and system | |
| US20170359719A1 (en) | Key generation method, device, and system | |
| CN103747442A (en) | Security key context distribution method, mobility management entity and base station | |
| CN101946535A (en) | System and method for performing handovers, or key management while performing handovers in a wireless communication system | |
| US7826824B2 (en) | Method of protecting the integrity of messages sent in a mobile radio system | |
| CN101521873A (en) | Method for enabling local security context | |
| CN101953191A (en) | System and method for performing handovers, or key management while performing handovers in a wireless communication system | |
| CN101645877A (en) | Method, system and network node for consulting cipher key derivative function | |
| KR20070096392A (en) | Method and apparatus for lossless handover between inter-rat systems | |
| CN101128033B (en) | Method for changing encryption algorithm in relocation | |
| EP3410635A1 (en) | Method and device for radio bearer security configuration | |
| CN1937840B (en) | Method and device for obtaining safety alliance information during mobile terminal switching | |
| CN102036200A (en) | Repositioning execution method and system | |
| CN102036233B (en) | Repositioning processing method and system | |
| CN114642014A (en) | Communication method, device and equipment | |
| CN102469454A (en) | Key setting method in radio network controller (RNC) and wireless network controller as well as terminal | |
| CN102006644A (en) | Method and system for repositioning and encrypting third generation mobile communication system | |
| EP1976315B1 (en) | Mobile communication system, next generation core network, and handover method therefor | |
| EP2689605A1 (en) | Methods and devices for handling encrypted communication |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20110427 |