CN114173335A

CN114173335A - Session processing method, device, terminal and network side equipment

Info

Publication number: CN114173335A
Application number: CN202010845182.8A
Authority: CN
Inventors: 韩鲁峰; 康艳超
Original assignee: Vivo Mobile Communication Co Ltd
Current assignee: Vivo Mobile Communication Co Ltd
Priority date: 2020-08-20
Filing date: 2020-08-20
Publication date: 2022-03-11

Abstract

The application discloses a session processing method, a session processing device, a terminal and network side equipment, and belongs to the technical field of communication. The session processing method comprises the following steps: receiving PDU session authentication and authorization command information sent by network side equipment; if the PDU session indicated in the PDU session authentication and authorization command information and the PDU session of the terminal in the PDU session modification process are the same PDU session, processing according to one of the following modes: stopping the PDU session modification process and executing the PDU session authentication and authorization process; stopping the PDU session authentication and authorization process and executing the PDU session modification process; a PDU session modification procedure and a PDU session authentication and authorization procedure are performed, respectively. The method can avoid flow conflict generated by executing the PDU session modification process and the PDU session authentication and authorization process, and avoid flow confusion.

Description

Session processing method, device, terminal and network side equipment

Technical Field

The application belongs to the technical field of communication, and particularly relates to a session processing method, a session processing device, a terminal and network side equipment.

Background

After a Protocol Data Unit (PDU) session is established successfully, the network side device may initiate a re-authentication and authentication process of the PDU session, and at the same time, the terminal may also trigger a modification process of the PDU session, and the network side device may also initiate a modification process of the PDU session independently.

The authentication and authorization process of the PDU session initiated by the network side device may collide with the modification process of the PDU session initiated by the terminal, resulting in a chaotic flow and thus causing service interruption.

Disclosure of Invention

The embodiment of the application aims to provide a session processing method, a session processing device, a terminal and network side equipment, which can solve the problem that in the current network session processing, the authentication and authorization process of a PDU session and the modification process of the PDU session may conflict, so that the process is disordered, and the service is interrupted.

In order to solve the technical problem, the present application is implemented as follows:

in a first aspect, a session processing method is provided, which is applied to a terminal, and includes:

receiving PDU session authentication and authorization command information sent by network side equipment;

if the PDU session indicated in the PDU session authentication and authorization command information and the PDU session of the terminal in the PDU session modification process are the same PDU session, processing according to one of the following modes:

stopping the PDU session modification process and executing the PDU session authentication and authorization process;

stopping the PDU session authentication and authorization process and executing the PDU session modification process;

a PDU session modification procedure and a PDU session authentication and authorization procedure are performed, respectively.

In a second aspect, a session processing method is provided, which is applied to a network side device, and includes:

transmitting PDU session authentication and authorization command information to the terminal;

if the PDU session indicated in the PDU session authentication and authorization command information and the PDU session in the PDU session modification process of the network side equipment are the same PDU session, processing according to one of the following modes:

In a third aspect, a session processing apparatus is provided, which is applied to a terminal, and includes:

the receiving module is used for receiving PDU session authentication and authorization command information sent by network side equipment;

a processing module, configured to, if the PDU session indicated in the PDU session authentication and authorization command information is the same as the PDU session of the terminal in the PDU session modification process, perform processing in one of the following manners:

In a fourth aspect, a session processing apparatus is provided, which is applied to a network side device, and includes:

the sending module is used for sending PDU session authentication and authorization command information to the terminal;

a processing module, configured to, if the PDU session indicated in the PDU session authentication and authorization command information is the same as the PDU session of the network side device in the PDU session modification process, perform processing in one of the following manners:

In a fifth aspect, a terminal is provided, which comprises a processor, a memory, and a program or instructions stored on the memory and executable on the processor, which when executed by the processor, implement the steps of the session processing method according to the first aspect.

In a sixth aspect, a network-side device is provided, which includes a processor, a memory, and a program or an instruction stored on the memory and executable on the processor, and when executed by the processor, the program or the instruction implements the steps of the session processing method according to the second aspect.

In a seventh aspect, a readable storage medium is provided, on which a program or instructions are stored, which when executed by a processor implement the steps of the session processing method according to the first aspect or implement the steps of the session processing method according to the second aspect.

In an eighth aspect, a chip is provided, where the chip includes a processor and a communication interface, where the communication interface is coupled to the processor, and the processor is configured to run a network-side device program or instruction, to implement the session processing method according to the first aspect, or to implement the session processing method according to the second aspect.

In the embodiment of the application, if the PDU session indicated in the PDU session authentication and authorization command information is the same as the PDU session of the terminal in the PDU session modification process, the PDU session modification process is suspended, the PDU session authentication and authorization process is executed, or the PDU session authentication and authorization process is suspended, the PDU session modification process is executed, or the PDU session modification process and the PDU session authentication and authorization process are respectively executed, which can avoid the flow conflict generated by executing the PDU session modification process and the PDU session authentication and authorization process, avoid the flow confusion, and thus avoid the service interruption.

Drawings

Fig. 1 is a block diagram of a network system according to an embodiment of the present application;

FIG. 2 is a flowchart of a session processing method provided by an embodiment of the present application;

3 a-3 e are flowcharts of a session processing method provided by an embodiment of the present application;

fig. 4 is another flowchart of a session processing method provided in an embodiment of the present application;

fig. 5 is a block diagram of a first session processing apparatus according to an embodiment of the present application;

fig. 6 is a block diagram of a second session processing apparatus according to an embodiment of the present application;

fig. 7 is a block diagram of a communication device provided in an embodiment of the present application;

fig. 8 is another structural diagram of a terminal provided in an embodiment of the present application;

fig. 9 is a structural diagram of a network-side device according to an embodiment of the present application.

Detailed Description

The technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are some, but not all, embodiments of the present application. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.

The terms first, second and the like in the description and in the claims of the present application are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order. It should be understood that the data so used are interchangeable under appropriate circumstances such that embodiments of the application can be practiced in sequences other than those illustrated or described herein, and the terms "first" and "second" used herein generally do not denote any order, nor do they denote any order, for example, the first object may be one or more. In addition, "and/or" in the specification and the claims means at least one of connected objects, and a character "/" generally means that a preceding and succeeding related objects are in an "or" relationship.

It is noted that the technology described in the embodiments of the present application is not limited to Long Term Evolution (LTE)/LTE Evolution (LTE-Advanced) systems, but may also be used in other wireless communication systems, such as Code Division Multiple Access (CDMA), Time Division Multiple Access (TDMA), Frequency Division Multiple Access (Frequency Division Multiple Access)ess, FDMA), Orthogonal Frequency Division Multiple Access (OFDMA), Single-carrier Frequency-Division Multiple Access (SC-FDMA), and other systems. The terms "system" and "network" in the embodiments of the present application are often used interchangeably, and the described techniques can be used for both the above-mentioned systems and radio technologies, as well as for other systems and radio technologies. However, the following description describes a New Radio (NR) system for purposes of example, and NR terminology is used in much of the description below, although the techniques may also be applied to applications other than NR system applications, such as 6 th generation (6 th generation)^thGeneration, 6G) communication system.

Fig. 1 shows a block diagram of a wireless communication system to which embodiments of the present application are applicable. The wireless communication system includes a terminal 11 and a network-side device 12. Wherein, the terminal 11 may also be called as a terminal Device or a User Equipment (UE), the terminal 11 may be a Mobile phone, a Tablet Personal Computer (Tablet Personal Computer), a Laptop Computer (Laptop Computer) or a notebook Computer, a Personal Digital Assistant (PDA), a palmtop Computer, a netbook, a super-Mobile Personal Computer (UMPC), a Mobile Internet Device (MID), a Wearable Device (Wearable Device) or a vehicle-mounted Device (VUE), a pedestrian terminal (PUE), and other terminal side devices, the Wearable Device includes: bracelets, earphones, glasses and the like. It should be noted that the embodiment of the present application does not limit the specific type of the terminal 11. The network-side device 12 may be a Base Station or a core network, where the Base Station may be referred to as a node B, an evolved node B, an access Point, a Base Transceiver Station (BTS), a radio Base Station, a radio Transceiver, a Basic Service Set (BSS), an Extended Service Set (ESS), a node B, an evolved node B (eNB), a home node B, a WLAN access Point, a WiFi node, a Transmit Receiving Point (TRP), or some other suitable terminology in the field, as long as the same technical effect is achieved, the Base Station is not limited to a specific technical vocabulary, and it should be noted that, in the embodiment of the present application, only the Base Station in the NR system is taken as an example, but a specific type of the Base Station is not limited.

The following describes in detail the session processing method provided in the embodiments of the present application with reference to the accompanying drawings through specific embodiments and application scenarios thereof.

Referring to fig. 2, fig. 2 is a flowchart of a session processing method provided in an embodiment of the present application, where the session processing method is applied to a terminal, and includes the following steps:

and step 21, receiving PDU session authentication and authorization command information sent by the network side equipment.

Step 22, if the PDU session indicated in the PDU session authentication and authorization command information and the PDU session of the terminal in the PDU session modification process are the same PDU session, processing according to one of the following manners:

The network side equipment sends PDU session authentication and authorization command information to the terminal to trigger the PDU session authentication and authorization process.

If the PDU session indicated in the PDU session authentication and authorization command information and the PDU session in the PDU session modification process of the terminal are the same PDU session, the PDU session modification process and the PDU session authentication and authorization process may conflict, and to avoid the conflict, the PDU session modification process may be stopped, the PDU session authentication and authorization process may be executed, or the PDU session authentication and authorization process may be stopped, the PDU session modification process may be executed, or the PDU session modification process and the PDU session authentication and authorization process may be executed respectively.

That is, if the PDU session indicated in the PDU session authentication and authorization command information and the PDU session of the terminal in the PDU session modification process are the same PDU session, one of the PDU session modification process and the PDU session authentication and authorization process may be suspended, and the other process may be executed, or both processes may be executed, and a method of executing them independently in sequence is adopted, for example, the PDU session modification process is executed first, and after the PDU session modification process is completed, the PDU session authentication and authorization process is executed, or the PDU session authentication and authorization process is executed first, and after the PDU session authentication and authorization process is completed, the PDU session modification process is executed again.

In this embodiment, if the PDU session indicated in the PDU session authentication and authorization command information and the PDU session of the terminal in the PDU session modification process are the same PDU session, the PDU session modification process is suspended, and the PDU session authentication and authorization process is executed, or the PDU session authentication and authorization process is suspended, and the PDU session modification process is executed, or the PDU session modification process and the PDU session authentication and authorization process are respectively executed, so that flow conflicts generated by executing the PDU session modification process and the PDU session authentication and authorization process can be avoided, and service interruption is avoided.

In an embodiment of the present application, before step 22, the session processing method further includes:

sending a PDU session modification request message to the network side equipment;

starting a timer;

the suspending PDU session modification process and executing PDU session authentication and authorization process includes:

aborting the timer;

a PDU session authentication and authorization procedure is performed.

In this embodiment, the terminal sends a PDU session modification request message to the network side device, to trigger a PDU session modification process, where the step may be executed before step 21, or may be executed after step 21, which is not limited herein. At the same time, the terminal starts a timer, which is used to protect the PDU session modification process.

In this embodiment, the terminal performs processing by using a processing method of stopping the PDU session modification process and executing the PDU session authentication and authorization process, that is, stopping the timer to stop the PDU session modification process and execute the PDU session authentication and authorization process. The detailed process description of this embodiment can be referred to the related description of fig. 3a, and is not repeated herein.

In an embodiment of the present application, a terminal performs processing in a processing manner of suspending a PDU session authentication and authorization process and executing a PDU session modification process, that is, the PDU session authentication and authorization process is suspended and the PDU session modification process is executed, where the processing manner includes:

discarding PDU session authentication and authorization command information;

a PDU session modification procedure is performed.

In this application, the terminal may also be referred to as a User Equipment (UE), and the UE receives PDU session authentication and authorization command information sent by the network side device in a process of waiting for the network side device to respond to the PDU session modification request message. The UE checks the PDU session Identification (ID) in the received PDU session authentication and authorization command information. If finding that the PDU conversation ID is the same as the PDU conversation ID sent in the PDU conversation modification request message, discarding the PDU conversation authentication and authorization command information, and continuing to execute the PDU conversation modification process.

Wherein, executing PDU conversation modifying process includes: and receiving a PDU session modification command message sent by the network side equipment. Further, after the performing the PDU session modification procedure, the method further includes:

and receiving the PDU session authentication and authorization command information sent by the network side equipment.

After the PDU session modification process is completed, the network side equipment checks whether to reinitiate the PDU session authentication and authorization process according to the actual situation, and if the PDU session authentication and authorization process is reinitiated, the network side equipment sends the PDU session authentication and authorization command information to the terminal again. The detailed process description of this embodiment can be referred to the related description of fig. 3b, and is not repeated herein.

In an embodiment of the present application, the terminal performs processing by respectively executing a PDU session modification process and a PDU session authentication and authentication process, that is, the respectively executing the PDU session modification process and the PDU session authentication and authentication process includes:

executing PDU session authentication and authorization process, and executing PDU session modification process under the condition of finishing the PDU session authentication and authorization process; or

And executing a PDU session modification process, and executing a PDU session authentication and authorization process under the condition of finishing the PDU session modification process.

That is to say, under the condition that both processes are executed, the PDU session modification process is executed first, and after the PDU session modification process is executed, the PDU session authentication and authentication process is executed, or the PDU session authentication and authentication process is executed first, and after the PDU session authentication and authentication process is executed, the PDU session modification process is executed, so as to avoid service interruption caused by flow chaos.

Specifically, the respectively executing the PDU session modification process and the PDU session authentication and authentication process includes:

and receiving a PDU session modification command message sent by the network side equipment, wherein the PDU session modification command message carries PDU session authentication and authentication result information.

Alternatively, the first and second electrodes may be,

and receiving a PDU session modification rejection message sent by the network side equipment, wherein the PDU session modification rejection message carries PDU session authentication and authentication result information.

The processing method of this embodiment is to perform the PDU session authentication and authorization process, and then perform the PDU session modification process after obtaining the PDU session authentication and authorization result information.

In this embodiment, the air interface messages in the PDU session modification process and the PDU session authentication and authorization process are merged into the same message, so that the waste of network resources is reduced, and the utilization rate of network resources is improved.

For example, the PDU session modification command message and the PDU session authentication and authorization result message are merged into one message, for example, the PDU session modification command message carries part of related Information (IE) in the PDU session authentication and authorization result message, for example, EAP Information, that is, the PDU session modification command message carries the PDU session authentication and authorization result Information;

or, the PDU session modification reject message and the PDU session authentication and authorization result message are merged into one message, for example, the PDU session modification reject message carries part of the related IEs in the PDU session authentication and authorization result message, such as EAP information, that is, the PDU session modification reject message carries the PDU session authentication and authorization result information.

When executing the PDU session modification process, the network side equipment sends a PDU session modification command message or a PDU session modification rejection message to the terminal, both the PDU session modification command message and the PDU session modification rejection message carry PDU session authentication and authorization result information, and the PDU session authentication and authorization result information is the result of the network side equipment executing the PDU session authentication and authorization process.

If the PDU session authentication and authorization of the network side equipment is successful and the network side equipment receives a PDU session modification request message of the UE, the network side equipment sends a PDU session modification command message to the UE, wherein the PDU session modification command message carries PDU session authentication and authorization result information, such as EAP-success information;

if the PDU session authentication and authorization of the network side equipment is successful and the network side equipment refuses to accept the PDU session modification request message of the UE, the network side equipment sends the PDU session modification refusing message to the UE, wherein the PDU session modification refusing message carries the PDU session authentication and authorization result information, such as EAP-success information;

if the PDU session authentication and authorization of the network side equipment fails and the network side equipment receives a PDU session modification request message of the UE, the network side equipment sends a PDU session modification command message to the UE, wherein the PDU session modification command message carries PDU session authentication and authorization result information, such as EAP-failure information;

if the network side equipment fails to authenticate and authenticate the PDU session and refuses to accept the PDU session modification request message of the UE, the network side equipment sends a PDU session modification refusing message to the UE, wherein the PDU session modification refuses to carry PDU session authentication and authentication result information, such as EAP-failure information.

The UE receives a PDU session modification command message carrying PDU session authentication and authentication result information, processes the information related to the PDU session authentication and authentication, such as EAP information, and completes the PDU session authentication and authentication process; in addition, the UE executes the PDU session modification command message sent by the network side equipment and continues to execute the PDU session modification process initiated previously.

In the above, if the network side device rejects the PDU session modification request message initiated by the UE, and the network side device considers that the authentication and authorization of the PDU session are failed, the PDU session modification rejection message may be sent to the UE, and carries the cue: for example, #29 user authentication and authorization failed (user authentication or authorization failed); meanwhile, the UE may carry EAP-failure information and/or Extended protocol configuration options (Extended protocol configuration options) information to notify the UE that the PDU session is authenticated and authenticated unsuccessfully.

The detailed process description of this embodiment can be referred to the related description of fig. 3c, which is not repeated herein.

In an embodiment of the present application, the PDU session authentication and authorization command information is carried in a PDU session modification command message;

alternatively, the first and second electrodes may be,

the PDU session authentication and authorization command information is a PDU session authentication and authorization command message, and the PDU session authentication and authorization command message carries PDU session modification command information.

For example, the PDU session authentication and authorization command message and the PDU session modification command message are merged into one message, for example, the session modification command message carries part of the related IEs in the PDU session authentication and authorization command message, such as EAP information, that is, the PDU session authentication and authorization command message is carried in the PDU session modification command message. Or, under the condition that the PDU session authentication and authorization command information is the PDU session authentication and authorization command information, the PDU session authentication and authorization command information carries the PDU session modification command information.

In an embodiment of the present application, the separately executing the PDU session modification procedure and the PDU session authentication and authorization procedure includes:

sending a PDU session modification command rejection message or a PDU session modification command completion message to the network side equipment, wherein the PDU session modification command rejection message or the PDU session modification command completion message carries response information to PDU session authentication and authentication command information;

alternatively, the first and second electrodes may be,

and sending a response message of the PDU session authentication and authorization command information to the network side equipment, wherein the response message of the PDU session authentication and authorization command information carries PDU session modification command rejection information or PDU session modification command completion information.

In the embodiment, the response message of the PDU session authentication and authorization command information (namely the PDU session authentication and authorization completion message) and the PDU session modification command rejection message (or the PDU session modification command completion message) are fused into one message, so that the waste of network resources is reduced, and the utilization rate of the network resources is improved.

For example, the related IE in the response message carrying the PDU session authentication and authentication command information in the PDU session modification command reject message (or PDU session modification command complete message), such as EAP information, i.e., the response message carrying the PDU session authentication and authentication command information in the PDU session modification command reject message (or PDU session modification command complete message).

The detailed process description of this embodiment can be referred to the related description of fig. 3d, which is not repeated herein.

suspending the PDU session modification process;

a PDU session authentication and authorization procedure is performed.

In this embodiment, the PDU session authentication and authorization process is performed first, and then the PDU session modification process is performed, and the PDU session modification process is suspended when the PDU session authentication and authorization process is performed.

In an embodiment of the present application, the PDU session modification process and the PDU session authentication and authorization process are respectively performed, including:

receiving PDU session authentication and authorization result information sent by the network side equipment under the condition that the PDU session authentication and authorization process is successful;

recovering the PDU session modification process;

and receiving a PDU session modification command message or a PDU session modification rejection message sent by the network side equipment.

The network side device sends a PDU session authentication and authorization result message (if the PDU session authentication and authorization is successful) or a PDU session release message (if the PDU session authentication and authorization is failed) to the UE, where the PDU session release message may carry related information of the PDU session authentication and authorization failure, such as CAUSE and EAP failure (failure) messages.

If the UE receives the PDU session authentication and authorization result message, the UE finishes processing the PDU session authentication and authorization result message, considers that the PDU session authentication and authorization process is finished, recovers the PDU session modification process, and continuously waits for the response of the network side equipment to the PDU session modification request message, namely receives the PDU session modification command message or the PDU session modification rejection message sent by the network side equipment.

Further, the separately executing the PDU session modification procedure and the PDU session authentication and authorization procedure includes:

receiving a PDU session release message sent by the network side equipment under the condition that the PDU session authentication and authentication process fails;

the PDU session modification procedure is aborted.

If the UE receives the PDU session release message, the PDU session release message carries information indicating that the PDU session authentication and authentication process fails, after receiving the PDU session release message, the UE considers that the PDU session is released, and stops (abort) the previous initiation and the subsequent suspended PDU session modification process; at the same time, the network side device also suspends the previously suspended PDU session modification procedure.

The detailed process description of this embodiment can be referred to the related description of fig. 3e, which is not repeated herein.

In the above embodiment, the PDU session modification command message or the PDU session modification command message includes a field for carrying Extensible Authentication Protocol (EAP) information.

In particular, a PDU session modification command message or PDU session modification command information may be sent by the SMF to the UE to indicate that a modification of the PDU session is to be made.

When the network side device sends the PDU session modification command message, if the PDU session authentication and authentication related information needs to be sent, the PDU session modification command message may carry the EAP information, such as EAP request information (i.e., EAP-request information), EAP success information (i.e., EAP-success information), and EAP failure information (i.e., EAP-failure information);

for example, when the network side device sends the PDU session modification command message, the external data network performs authentication and authorization (re-authentication and re-authorization) on the UE using EAP, and the procedure is successfully completed, and the network side device may send an EAP success (EAP-success) message carried in the PDU session modification command message to the UE.

Table 1 is a field definition (PDU SESSION MODIFICATION management message) of the PDU SESSION MODIFICATION COMMAND message, and as shown in table 1, related information of PDU SESSION authentication and authorization, that is, EAP information, which may be stored in the EAP message field in table 1, is added to the PDU SESSION MODIFICATION COMMAND message, and the EAP message field may store EAP-request information, EAP-success information, EAP-failure information, and the like.

TABLE 1

In the above embodiment, the PDU session modification reject message includes a field for carrying EAP information.

When the network side equipment sends the PDU session modification rejection message, if the PDU session authentication and authentication related information, such as EAP-request information, EAP-success information and EAP-failure information, needs to be sent, the EAP-message, that is, the EAP information, can be carried;

for example, when the network side device sends the PDU session modification command message, the external data network performs authentication and re-authorization on the UE using EAP, and the procedure is not completed successfully, and the network side device may send the PDU session modification reject message carrying the EAP-failure message to the UE.

Table 2 shows the field definition (PDU SESSION MODIFICATION request message content) of the PDU SESSION MODIFICATION REJECT message.

TABLE 2

In the above embodiment, the PDU session modification command completion message or the PDU session modification command completion message includes a field for carrying EAP information.

When the UE sends the PDU session modification command complete message, if it needs to send the session authentication and authentication related information, such as the EAP-response message, the EAP-message (i.e., the EAP information) may be carried in the PDU session modification command complete message;

for example, when the UE sends the PDU session modification command complete message, the external data network performs authentication and authorization (re-authentication and re-authorization) on the UE using EAP, and the UE may carry the EAP-response message in the PDU session modification command complete message and send the EAP-response message to the network side device.

Table 3 shows the field definition (PDU SESSION MODIFICATION COMPLETE message) of the PDU SESSION MODIFICATION command COMPLETE message, and as shown in table 3, the PDU SESSION MODIFICATION command COMPLETE message is added with related information of PDU SESSION authentication and authorization, that is, EAP information, which may specifically be EAP response information.

TABLE 3

In the above embodiment, the PDU session modification command reject message or the PDU session modification command reject message includes a field for carrying EAP information.

When the UE sends the PDU session modification command reject message, if the PDU session authentication and authentication related information needs to be sent, the PDU session modification command reject message may carry an EAP message, where the EAP message may be EAP response information (i.e., EAP response information).

For example, when the UE sends the PDU session modification command reject message or the PDU session modification command reject information, the external data network performs authentication and authorization (re-authentication and re-authorization) on the UE using EAP, and the UE may send the PDU session modification command reject message carrying the EAP-response message to the network side device.

Table 4 shows the content (PDU SESSION MODIFICATION COMMAND request message content) included in the PDU SESSION MODIFICATION COMMAND REJECT message.

TABLE 4

Referring to fig. 4, fig. 4 is a flowchart of a session processing method provided in an embodiment of the present application, where the session processing method is applied to a network side device, and includes the following steps:

step 41, sending the PDU session authentication and authorization command information to the terminal.

Step 42, if the PDU session indicated in the PDU session authentication and authorization command information and the PDU session in the PDU session modification process of the network side device are the same PDU session, then processing according to one of the following manners:

If the PDU session indicated in the PDU session authentication and authorization command information is the same as the PDU session in the PDU session modification process of the network side device, the PDU session modification process may collide with the PDU session authentication and authorization process, and to avoid the collision, the PDU session modification process may be suspended and the PDU session authentication and authorization process may be performed, or the PDU session authentication and authorization process may be suspended and the PDU session modification process may be performed, or the PDU session modification process and the PDU session authentication and authorization process may be performed separately.

That is, if the PDU session indicated in the PDU session authentication and authorization command information and the PDU session in the PDU session modification process of the network side device are the same PDU session, one of the PDU session modification process and the PDU session authentication and authorization process may be suspended, and the other process may be executed, or both processes may be executed, and a method of executing them independently in sequence is adopted, for example, the PDU session modification process is executed first, and the PDU session authentication and authorization process is executed after the execution of the PDU session modification process is completed, or the PDU session authentication and authorization process is executed first, and the PDU session modification process is executed after the execution of the PDU session authentication and authorization process is completed.

In this embodiment, if the PDU session indicated in the PDU session authentication and authorization command information and the PDU session in the PDU session modification process of the network side device are the same PDU session, the PDU session modification process is suspended, and the PDU session authentication and authorization process is executed, or the PDU session authentication and authorization process is suspended, and the PDU session modification process is executed, or the PDU session modification process and the PDU session authentication and authorization process are respectively executed, so that a flow conflict generated by executing the PDU session modification process and the PDU session authentication and authorization process can be avoided, and service interruption is avoided.

In an embodiment of the present application, before step 42, the session processing method further includes:

receiving a PDU session modification request message sent by the terminal;

discarding the PDU session modification request message;

a PDU session authentication and authorization procedure is performed.

In this embodiment, the terminal sends the PDU session modification request message to the network side device, and triggers the PDU session modification process, and the network side device may receive the PDU session modification request message before step 41, or after step 41, which is not limited herein. At the same time, the terminal may start a timer, which is used to protect the PDU session modification procedure.

As an example, the network side device may execute the receiving of the PDU Session modification request message after step 41, where the network side device (specifically, Session Management Function (SMF)) receives the PDU Session modification request message sent by the UE in the process of waiting for the response of the UE to the PDU Session authentication and authorization command information, and the SMF checks that the PDU Session ID in the PDU Session modification request message is the same as the PDU Session ID in the PDU Session authentication and authorization command information, discards the PDU Session modification request message, and executes the PDU Session authentication and authorization process.

In this embodiment, the network side device discards the PDU session modification request message, and executes the PDU session authentication and authentication process, so as to avoid service interruption due to flow confusion of the PDU session modification process and the PDU session authentication and authentication process. The detailed process description of this embodiment can be referred to the related description of fig. 3a, and is not repeated herein.

Further, in an embodiment of the present application, the network side device may further perform processing in a processing manner of suspending a PDU session modification process and executing a PDU session authentication and authorization process.

After the network side device (specifically, SMF) sends the PDU session authentication and authorization command information to the terminal, and in the process of waiting for the response of the UE to the PDU session authentication and authorization command information, the network side device receives the PDU session authentication and authorization request message sent by the UE, and if it detects that the PDU session ID in the PDU session authentication and authorization request message is the same as the PDU session ID in the PDU session authentication and authorization command information, the network side device stops the PDU session authentication and authorization process and executes the PDU session modification process initiated by the UE. Wherein, executing PDU conversation modifying process includes: and receiving a PDU session modification command message sent by the network side equipment. Further, after the performing the PDU session modification procedure, the session processing method further includes:

and sending the PDU session authentication and authorization command information to a terminal.

In an embodiment of the present application, a network side device performs processing by respectively executing a PDU session modification process and a PDU session authentication and authentication process, that is, the respectively executing the PDU session modification process and the PDU session authentication and authentication process includes:

if the authentication and authorization process of the network side equipment is successfully executed and the PDU session modification request message sent by the terminal is received, sending a PDU session modification command message to the terminal, wherein the PDU session modification command message carries PDU session authentication and authorization result information;

alternatively, the first and second electrodes may be,

if the authentication and authorization process of the network side equipment fails to be executed and the PDU session modification request message sent by the terminal is received, sending the PDU session modification command message to the terminal, wherein the PDU session modification command message carries PDU session authentication and authorization result information;

alternatively, the first and second electrodes may be,

if the authentication and authorization process of the network side equipment is successfully executed and the PDU session modification request message sent by the terminal is refused to be accepted, sending a PDU session modification refusing message to the terminal, wherein the PDU session modification refusing message carries PDU session authentication and authorization result information;

alternatively, the first and second electrodes may be,

and if the authentication and authorization process of the network side equipment fails to be executed and the PDU session modification request message sent by the terminal is refused to be accepted, sending the PDU session modification refusing message to the terminal, wherein the PDU session modification refusing message carries PDU session authentication and authorization result information.

Merging the PDU session modification command message and the PDU session authentication and authentication result message into a message, for example, the PDU session modification command message carries part of related IE in the PDU session authentication and authentication result message, such as EAP information, that is, the PDU session modification command message carries the PDU session authentication and authentication result information;

In an embodiment of the present application, the PDU session authentication and authorization command information is carried in the PDU session modification command message;

alternatively, the first and second electrodes may be,

The PDU session authentication and authorization command message and the PDU session modification command message are merged into one message, for example, the session modification command message carries part of the related IE in the PDU session authentication and authorization command message, for example, EAP information, that is, the PDU session authentication and authorization command message is carried in the PDU session modification command message. Or, under the condition that the PDU session authentication and authorization command information is the PDU session authentication and authorization command information, the PDU session authentication and authorization command information carries the PDU session modification command information.

In an embodiment of the present application, the separately performing the PDU session modification procedure and the PDU session authentication and authorization procedure includes:

receiving a PDU session modification command rejection message or a PDU session modification command completion message sent by the terminal, wherein the PDU session modification command rejection message or the PDU session modification command completion message carries response information to PDU session authentication and authentication command information;

alternatively, the first and second electrodes may be,

and receiving a response message of the PDU session authentication and authorization command information sent by the terminal, wherein the response message of the PDU session authentication and authorization command information carries PDU session modification command rejection information or PDU session modification command completion information.

suspending the PDU session modification process;

a PDU session authentication and authorization procedure is performed.

In this embodiment, the network side device executes the PDU session authentication and authorization process first, and then executes the PDU session modification process, and suspends the PDU session modification process when executing the PDU session authentication and authorization process.

under the condition that the PDU session authentication and authorization process is successful, sending a PDU session authentication and authorization result message to the terminal;

recovering the PDU session modification process;

and sending a PDU session modification command message or a PDU session modification rejection message to the terminal.

The network side equipment sends a PDU session authentication and authorization result message (if the PDU session authentication and authorization is successful) or a PDU session release message (if the PDU session authentication and authorization is failed) to the UE, wherein the PDU session release message may carry related information of the PDU session authentication and authorization failure, such as CAUSE and EAP failure messages.

The network side equipment sends a PDU session authentication and authorization result message to the terminal, then recovers the previously suspended PDU session modification process, and sends a response message of the PDU session modification request message to the terminal, namely sends a PDU session modification command message or a PDU session modification rejection message to the terminal.

under the condition that the PDU session authentication and authentication process fails, sending a PDU session release message to the terminal;

the PDU session modification procedure is aborted.

The network side equipment sends a PDU session release message to the terminal, the PDU session release message carries information indicating that the PDU session authentication and authentication process fails, and the PDU session modification process which is previously suspended is stopped (abort).

In the above embodiment, the PDU session modification command message or the PDU session modification command information includes a field for carrying EAP information, which can be specifically referred to the related description in table 1 above.

The PDU session modification reject message includes a field for carrying EAP information, which is described in table 2 above.

The PDU session modification command complete message or the PDU session modification command complete message includes a field for carrying EAP information, which can be referred to the related description in table 3 above.

The PDU session modification command reject message or the PDU session modification command reject message includes a field for carrying EAP information, which can be specifically referred to the related description in table 4 above.

In the embodiment of the present application, both the UE and the network side device may process (including generate, send, receive, and analyze) a null message and simultaneously carry information required by a PDU session modification process and information required by a PDU session authentication and authorization process.

And the UE can identify and process the information related to the PDU session authentication and authentication process sent by the network side equipment in the PDU session modification process.

The UE and the network side device may agree, for example, by agreement, for the same PDU session, the PDU session modification process and the PDU session authentication and authorization process cannot be executed simultaneously, for example, if a conflict between the two processes occurs at the UE side, that is, the UE receives the information related to the PDU session authentication and authorization process of the same PDU session sent by the network side device in the PDU session modification process, the PDU session modification process is stopped; or both parties can also agree to continue to execute the process initiated first and ignore the process initiated later;

both parties can also agree, for example, through protocol agreement, for the same PDU session, the PDU session modification process and the PDU session authentication and authorization process can be executed simultaneously, if the UE receives the information related to the PDU session authentication and authorization process of the same PDU session sent by the network side device in the PDU session modification process, the UE processes the information related to the PDU session authentication and authorization process and continues the PDU session modification process at the same time;

if the information related to the PDU session authentication and authorization process is sent to the UE in the PDU session modification command message, the UE can analyze the information in the PDU session modification process.

The following describes the session processing method provided in the present application in detail.

The AMF is an Access and Mobility Management Function (AMF) and is mainly responsible for Mobility Management of the UE;

SMF is Session Management Function (SMF);

UPF is User Plane Function (UPF);

AAA is an Authentication, Authorization, Accounting (Authentication, Authorization) server;

the gNB is a base station;

UDM is a Unified Data Management (UDM);

the PCF is a Policy Control Function (PCF).

As shown in fig. 3a, fig. 3a shows that a PDU session authentication and authorization process needs to be performed in a PDU session modification process initiated by a UE, and then the PDU session modification process is stopped, and the PDU session authentication and authorization process is continued.

Step 101, UE completes registration and PDU session establishment in a network;

102, UE sends PDU conversation amending request to network side equipment;

103, UE starts a timer T3580 for protecting the PDU session modification process;

step 104a, a Data Network (DN) (e.g. AAA server) may initiate a process (re-authentication) of authentication and authorization of the PDU session;

step 104, the SMF or AAA server initiates a process (re-authentication) of PDU session authentication and authorization for the PDU session;

105, the SMF sends a PDU session authentication and authorization command message (or PDU session authentication and authorization command message) to the UE, and the message is forwarded to the UE through the AMF;

106, in the process of waiting for the network side equipment to respond to the PDU session modification, the UE receives the PDU session authentication and authorization command message, the UE checks the PDU session ID in the received PDU session authentication and authorization command message, if the PDU session ID is the same as the PDU session ID sent in the step 102, the PDU session modification process initiated in the step 102 is stopped, the timer T3580 started in the step 103 for protecting the PDU session modification process is stopped, and the PDU session authentication and authorization process is continuously executed;

the PDU session modification procedure requested by the UE conflicts with the PDU session authentication and authorization procedure. When the UE receives the PDU session authentication and authorization command message in the PDU session modification process requested by the UE, and the PDU session indicated in the PDU session authentication and authorization command message is the PDU session requested by the UE to be modified, the UE should abort the PDU session modification process requested by the UE and continue the PDU session authentication and authorization process.

Step 107a, the SMF receives the PDU session modification request message sent by the UE while waiting for the response of the UE to the PDU session authentication and authorization command message, and the SMF discards the PDU session modification request message if it finds that the PDU session ID in the PDU session modification request message is the same as the PDU session ID in the PDU session authentication and authorization command message.

Step 107, after the UE processes the PDU session authentication and authorization command message, it sends a response message to the PDU session authentication and authorization command message, i.e. a PDU session authentication and authorization complete message, to the network side device.

Step 108, the network side equipment receives and processes the PDU session authentication and authorization completion message;

step 109, the network side equipment sends the result of the authentication and authorization of the PDU session to the UE;

after receiving the result of the PDU session authentication and authorization, the UE determines whether to initiate the PDU session modification process which is stopped just before again according to the result and the actual requirement of the UE.

As shown in fig. 3b, fig. 3b shows that the PDU session authentication and authorization process needs to be performed in the PDU session modification process initiated by the UE, then the PDU session authentication and authorization process is stopped, and the PDU session modification process is continued.

Wherein, steps 201 to 205 are the same as steps 101 to 105, and can be referred to the related records of steps 101 to 105, which are not described herein.

Step 206, the UE receives the PDU session authentication and authorization command message while waiting for the network side device to respond to the PDU session modification. The UE checks the PDU session ID in the received PDU session authentication and authorization command message, if the PDU session ID is found to be the same as the PDU session ID sent in the step 102, the PDU session authentication and authorization command message is discarded, and the PDU session modification process is continuously executed;

step 204b, the SMF receives the PDU session modification request message sent by the UE in the process of waiting for the response of the UE to the PDU session authentication and authorization command, the SMF checks that the PDU session ID in the PDU session modification request message is the same as the PDU session ID in the PDU session authentication and authorization command, the PDU session authentication and authorization process is stopped, and the PDU session modification process initiated by the UE is executed;

step 207, the network side device (specifically SMF) responds to the PDU session modification request message sent by the UE, and sends a PDU session modification command message to the UE;

step 208, the UE responds to the PDU session modification command message sent by the network side device;

step 209, after the network side device completes the PDU session modification process, it checks whether to reinitiate the PDU session authentication and authorization process according to the conditions.

As shown in fig. 3c, fig. 3c shows that the PDU session authentication and authorization process needs to be performed in the UE-initiated PDU session modification process, and then both processes continue to be performed.

In this embodiment, the air interface messages of the two processes are merged into the same air interface message:

the PDU session authentication and authorization result message and the PDU session modification command message are merged into one message, for example, the PDU session modification command message carries part of related IEs in the PDU session authentication and authorization result message, such as EAP information (message), that is, the PDU session authentication and authorization result message is carried in the PDU session modification command message.

The PDU session authentication and authorization result message and the PDU session modification reject message are merged into one message, for example, the PDU session modification reject message carries part of the related IEs in the PDU session authentication and authorization result message, for example, the EAP message, that is, the PDU session authentication and authorization result message is carried in the PDU session modification reject message.

Step 301, the UE completes registration and establishes a PDU session;

step 302, the UE sends a PDU session modification request message to initiate a PDU session modification process;

step 302a, AMF informs SMF to update Session Management (SM) context (context);

step 303, the UE waits for a response from the network side device to the PDU session modification request message;

step 304a, the AAA server may initiate an authentication and authorization procedure (re-authentication) for the PDU session;

step 304b, the SMF receives the PDU session modification request message initiated by the UE or decides to initiate the PDU session modification process in the process of waiting for the authentication and authorization response of the UE, then the SMF temporarily suspends the PDU session modification process, and continues to execute the PDU session modification process according to the response result of the authentication and authorization process of the PDU session after receiving the authentication and authorization message of the PDU session from the UE;

305, the UE receives a trigger message of a PDU session authentication and authorization process initiated by a network side device, i.e. a PDU session authentication and authorization command message;

step 306, the UE finds that the PDU session authentication and authorization command message is received in the PDU session modification process, and then the UE simultaneously executes the PDU session authentication and authorization process and the PDU session modification process:

the UE forwards the PDU session authentication and authorization command to an upper layer (upper layer), and meanwhile, the UE continues to wait for the response of the network side equipment to the PDU session modification process;

the PDU session modification procedure requested by the UE conflicts with the PDU session authentication and authorization procedure. When the UE receives the PDU session authentication and authorization command message in the PDU session modification process requested by the UE, and the PDU session indicated in the PDU session authentication and authorization command message is the PDU session requested by the UE to be modified, the UE should perform both processes at the same time.

307, the upper layer sends the response to the PDU session authentication and authorization command message to a Non-Access-Stratum (NAS) of the UE, and the NAS of the UE is sent to the network side equipment again;

step 308, the network side device receives the response message to the PDU session authentication and authorization command sent by the UE, completes the PDU session authentication and authorization process, and decides to continue to execute the PDU session modification process requested by the UE:

if the authentication and authorization process of the network side equipment is successfully executed and the network side equipment receives a PDU modification request message of the UE, sending a PDU modification command message to the UE, wherein the PDU modification command message comprises EAP-success information;

if the authentication and authorization process of the network side equipment is successfully executed, but the network side equipment refuses to accept the PDU modification request message of the UE, sending the PDU modification refusing message to the UE, wherein the PDU modification refusing message comprises EAP-success information;

if the authentication and authorization process of the network side equipment fails to be executed, but the network side equipment determines to accept the PDU modification request message of the UE, sending a PDU modification command message to the UE, wherein the PDU modification command message comprises EAP-failure information;

if the authentication and authorization process of the network side equipment fails to be executed and the network side equipment refuses to accept the PDU modification request message of the UE, sending the PDU modification refusing message to the UE, wherein the PDU modification refusing message comprises EAP-failure information.

309, the network side equipment carries PDU session authentication and authorization result information to the UE in the PDU session modification command message;

step 310, the UE receives the PDU session modification command message carrying the PDU session authentication and authorization result information, processes the authentication and authorization related information therein, such as EAP message, and completes the PDU session authentication and authorization process;

the UE executes the PDU session modification message sent by the network side device, and continues the PDU session modification process initiated in step 302;

311, if the network side device rejects the PDU session modification initiated by the UE, for example, in 307 to 309b, the network side device considers that the authentication and authorization of the PDU session are failed, and may send a PDU session modification rejection message to the UE, and carry the guard: for example, #29 user authentication and authorization failed (user authentication or authorization failed); meanwhile, the UE may carry EAP-failure information and/or Extended protocol configuration options (Extended protocol configuration options) information to notify the UE that the PDU session is authenticated and authenticated unsuccessfully.

As shown in fig. 3d, fig. 3d shows a case that the UE receives the PDU session modification command message, and the PDU session modification command message carries PDU session authentication and authentication related information.

the PDU session authentication and authorization command message and the PDU session modification command message are fused into a message, for example, the message PDU session modification command carries part of related IE in the message PDU session authentication and authorization command message, such as EAP information, that is, the message PDU session authentication and authorization command message is carried in the message PDU session modification command;

the PDU session authentication and authorization completion message (i.e. the response message to the PDU session authentication and authorization command message) and the PDU session modification command reject message (or the PDU session modification command completion message) are merged into one message, for example, the PDU session modification command reject message (or the PDU session modification command completion message) carries the related IE in the PDU session authentication and authorization completion message, for example, the EAP information, i.e. the PDU session modification command reject message or the PDU session modification command completion message carries the response message to the PDU session authentication and authorization command message.

Step 401, the UE completes registration and establishes PDU session;

step 402, the UE initiates a PDU session modification procedure (if the PDU session is initiated by the UE), that is, the UE sends a PDU session modification request message to the network side device;

step 402a, AMF informs SMF to update SM context (context) (if PDU session is UE or gNb originated);

step 403, the UE (if the PDU session is initiated by the UE) waits for a response from the network side device to the PDU session modification request message;

in step 404, if the SMF decides to initiate a PDU session modification procedure (possibly UE-triggered or SMF-triggered) and also needs to initiate a PDU session authentication and authorization procedure (possibly SMF-triggered or AAA-triggered), then the two messages may be merged together and sent to the UE, for example:

the PDU session modification command message carries information required by PDU session authentication and authorization, for example, IE in the PDU session authentication and authorization command message is EAP information, Extended Protocol Configuration Options (PCO) information; in the present embodiment, this scheme is taken as an example for explanation;

or adding information required for PDU session modification in the PDU session authentication and authorization command message, such as IE in the PDU session modification command message;

step 405a, the SMF carries the information required by the PDU session authentication and authorization command message, such as EAP information, extended PCO information in the PDU session modification command message. The PDU SESSION modification command Message may be carried in an SMF and AMF interface (e.g., Nsmf _ PDU SESSION _ Update SM Context Response or Namf _ Communication _ N1N2Message _ Transfer), and sent to the AMF;

step 405, the AMF carries the PDU session modification command message which carries the information required for PDU session authentication and authorization in the message of 5GS mobility management (5 GMM) in 405a, and sends the 5GMM message to the UE, for example, a NAS DownLink (DL) transport (transport) message, where the 5GS is a fifth generation mobile communication technology (5th generation mobile networks, 5G) system.

Step 406, after receiving the 5GMM message, the UE transmits a PDU session modification command message carrying information required for PDU session authentication and authorization to a 5GS session management (5 GSM);

GSM processes PDU conversation amending command message and provides the relevant information of PDU conversation authentication and authorization, such as EAP information to the upper layer;

step 407, the UE generates a response message to the PDU session modification command message, where the message carries EAP information 2 provided by the upper layer to 5GSM, and the EAP information 2 is a response to the EAP message in step 406;

the response message to the PDU session modification command message may be a PDU session modification command complete message or a PDU session modification command reject message;

step 408a, the AMF sends the PDU conversation modification and the information related to the PDU conversation authentication and authorization to the SMF;

step 408b, SMF responds to the 408a message;

step 408, the SMF determines whether the PDU session authentication and authorization related information needs to be sent to the DN (e.g., AAA server); if necessary, 409a and 409b are executed; otherwise 409 is performed.

Step 409a, the SMF sends the PDU session authentication and the authentication related information to DN (e.g. AAA SERVER);

step 409b.dn (e.g. AAA server) responds to 409a message, which may contain PDU session authentication and authentication result related information;

step 409, the SMF sends the PDU session authentication and authorization result message to the UE.

As shown in fig. 3e, fig. 3e illustrates a case where the PDU session modification procedure and the PDU session authentication and authorization procedure are independently performed.

Wherein, steps 501 to 507 are the same as steps 301 to 307, and reference may be made to the related records in steps 301 to 307, which are not described herein again.

Step 508, the network side device continues to suspend the PDU session modification process, and continues to execute the PDU session authentication and authorization process, i.e. execute 509a, 509b, 509;

step 509a, the SMF sends the PDU session authentication and authentication related information to the DN (in this embodiment, the AAA server;

step 509b, the AAA server responds to the 409a message, which may include PDU session authentication and authentication result related information;

step 509, the SMF sends a PDU session authentication and authorization result message (if the PDU session authentication and authorization process is successful) or a PDU session release message (if the PDU session authentication and authorization process is failed) to the UE, where the PDU session release message may carry related information of PDU session authentication and authorization failure, such as CAUSE and EAP failure messages;

step 510, for the PDU session release message, the UE finishes processing the PDU session authentication and authorization result message, considers that the PDU session authentication and authorization process is finished, resumes the PDU session modification process, and continues to wait for the response of the network side device to the message in step 502; step 511 is entered;

for the PDU session release message, which carries information indicating authentication and authentication failure, after receiving the PDU session release message, the UE considers that the PDU session is released, and terminates (abort) the initiation in step 502, and starts the suspended PDU session modification procedure from step 505; meanwhile, the network side device also suspends the PDU session modification process suspended in step 504;

step 511, if the network side device finds that the PDU session authentication and authorization result information is successfully sent (if the PDU session authentication and authorization process is successful), the PDU session modification process suspended in step 504 is resumed, and a PDU session modification response message, i.e. a PDU session modification command message or a PDU session modification reject message, is sent to the UE.

Referring to fig. 5, fig. 5 is a structural diagram of a session processing apparatus according to an embodiment of the present application, and a first session processing apparatus 50, applied to a terminal, includes:

a first receiving module 51, configured to receive PDU session authentication and authorization command information sent by a network side device;

a first processing module 52, configured to, if the PDU session indicated in the PDU session authentication and authorization command information is the same as the PDU session of the terminal in the PDU session modification process, perform processing in one of the following manners:

In one embodiment of the present application, the first session processing apparatus 50 further includes:

a first sending module, configured to send a PDU session modification request message to the network side device;

the starting module is used for starting the timer;

the first processing module 52 includes a first processing sub-module, which includes:

a suspension unit configured to suspend the timer;

the first execution unit is used for executing the PDU session authentication and authorization process.

In one embodiment of the present application, the first processing module 52 includes a second processing sub-module, and the second processing sub-module includes:

the discarding unit is used for discarding the PDU session authentication and authorization command information;

and the second execution unit is used for executing the PDU session modification process.

In one embodiment of the present application, the first processing module 52 includes a third processing sub-module, and the third processing sub-module includes:

the third execution unit is used for executing the PDU session authentication and authorization process, and executing the PDU session modification process under the condition of finishing the PDU session authentication and authorization process; or

And the fourth execution unit is used for executing the PDU session modification process, and executing the PDU session authentication and authorization process under the condition of finishing the PDU session modification process.

In an embodiment of the present application, the third processing sub-module includes:

and the second receiving unit is used for receiving a PDU session modification command message sent by the network side equipment, wherein the PDU session modification command message carries PDU session authentication and authentication result information.

Alternatively, the first and second electrodes may be,

and a third receiving unit, configured to receive a PDU session modification rejection message sent by the network side device, where the PDU session modification rejection message carries PDU session authentication and authentication result information.

alternatively, the first and second electrodes may be,

a second sending unit, configured to send a PDU session modification command reject message or a PDU session modification command complete message to the network side device, where the PDU session modification command reject message or the PDU session modification command complete message carries response information for PDU session authentication and authentication command information;

alternatively, the first and second electrodes may be,

and a third sending unit, configured to send a response message of the PDU session authentication and authorization command information to the network side device, where the response message of the PDU session authentication and authorization command information carries PDU session modification command rejection information or PDU session modification command completion information.

a suspending unit for suspending the PDU session modification process;

and the first execution unit executes the PDU session authentication and authorization process.

a fourth receiving unit, configured to receive a PDU session authentication and authorization result message sent by the network side device when the PDU session authentication and authorization process is successful;

the recovery unit is used for recovering the PDU session modification process;

a fifth receiving unit, configured to receive a PDU session modification command message or a PDU session modification reject message sent by the network side device.

In an embodiment of the present application, the third processing sub-module further includes:

a sixth receiving unit, configured to receive a PDU session release message sent by the network side device when the PDU session authentication and authorization process fails;

and the termination unit is used for terminating the PDU session modification process.

In one embodiment of the present application, the PDU session modification command message or PDU session modification command information includes a field for carrying EAP information.

In an embodiment of the present application, the PDU session modification reject message includes a field for carrying EAP information.

In an embodiment of the present application, the PDU session modify command complete message or the PDU session modify command complete message includes a field for carrying EAP information.

In an embodiment of the present application, the PDU session modification command reject message or the PDU session modification command reject message includes a field for carrying EAP information.

The first session processing device in the embodiment of the present application may be a device, and may also be a component, an integrated circuit, or a chip in a terminal. The device can be a mobile terminal or a non-mobile terminal. By way of example, the mobile terminal may include, but is not limited to, the above-listed type of terminal 11, and the non-mobile terminal may be a server, a Network Attached Storage (NAS), a Personal Computer (PC), a Television (TV), a teller machine, a kiosk, or the like, and the embodiments of the present application are not limited in particular.

The first session processing device in the embodiment of the present application may be a device having an operating system. The operating system may be an Android (Android) operating system, an ios operating system, or other possible operating systems, and embodiments of the present application are not limited specifically.

The session processing apparatus 500 provided in this embodiment of the application can implement each process implemented in the method embodiment of fig. 2, and achieve the same technical effect, and for avoiding repetition, details are not described here again.

Referring to fig. 6, fig. 6 is a structural diagram of a session processing apparatus according to an embodiment of the present application, where the second session processing apparatus 60 is applied to a network side device, and includes:

a first sending module 61, configured to send PDU session authentication and authorization command information to the terminal;

a second processing module 62, configured to, if the PDU session indicated in the PDU session authentication and authorization command information is the same as the PDU session of the network side device in the PDU session modification process, perform processing in one of the following manners:

In one embodiment of the present application, the second session processing device 60 further includes:

a first receiving module, configured to receive a PDU session modification request message sent by the terminal;

the second processing module 62 includes a first processing sub-module, which includes:

a discarding unit, configured to discard the PDU session modification request message;

In one embodiment of the present application, the second processing module 62 includes a second processing sub-module, which includes:

the second execution unit is used for executing the PDU session authentication and authorization process, and executing the PDU session modification process under the condition of finishing the PDU session authentication and authorization process; or

And the third execution unit is used for executing the PDU session modification process, and executing the PDU session authentication and authorization process under the condition of finishing the PDU session modification process.

In one embodiment of the present application, the second processing module 62 includes a third processing sub-module, which includes:

a second sending unit, configured to send a PDU session modification command message to the terminal if the authentication and authorization process of the network side device is successfully executed and the PDU session modification request message sent by the terminal is accepted, where the PDU session modification command message carries PDU session authentication and authorization result information;

alternatively, the first and second electrodes may be,

a third sending unit, configured to send the PDU session modification command message to the terminal if the authentication and authorization process of the network device fails to be executed and the PDU session modification request message sent by the terminal is accepted;

alternatively, the first and second electrodes may be,

a fourth sending unit, configured to send a PDU session modification reject message to the terminal if the authentication and authorization process of the network side device is successfully executed and the PDU session modification request message sent by the terminal is rejected, where the PDU session modification reject message carries PDU session authentication and authorization result information;

alternatively, the first and second electrodes may be,

a fifth sending unit, configured to send the PDU session modification reject message to the terminal if the authentication and authorization process of the network device fails to be executed and the PDU session modification request message sent by the terminal is rejected.

alternatively, the first and second electrodes may be,

In one embodiment of the present application, the third processing sub-module includes:

a second receiving unit, configured to receive a PDU session modification command reject message or a PDU session modification command complete message sent by the terminal, where the PDU session modification command reject message or the PDU session modification command complete message carries response information to PDU session authentication and authorization command information;

alternatively, the first and second electrodes may be,

and a third receiving unit, configured to receive a response message of the PDU session authentication and authorization command information sent by the terminal, where the response message of the PDU session authentication and authorization command information carries PDU session modification command rejection information or PDU session modification command completion information.

a suspending unit for suspending the PDU session modification process;

a sixth sending unit, configured to send a PDU session authentication and authorization result message to the terminal when the PDU session authentication and authorization process is successful;

the recovery unit is used for recovering the PDU session modification process;

a seventh sending unit, configured to send a PDU session modification command message or a PDU session modification reject message to the terminal.

an eighth sending unit, configured to send a PDU session release message to the terminal when the PDU session authentication and authorization process fails;

The second session processing apparatus 60 provided in this embodiment of the application can implement each process implemented in the method embodiment of fig. 4, and achieve the same technical effect, and for avoiding repetition, details are not described here again.

Optionally, as shown in fig. 7, an embodiment of the present application further provides a communication device 70, which includes a processor 71, a memory 72, and a program or an instruction stored on the memory 72 and executable on the processor 71, for example, when the communication device 70 is a terminal, the program or the instruction is executed by the processor 71 to implement the processes of the session processing method embodiment described in fig. 2, and the same technical effect can be achieved. When the communication device 70 is a network-side device, the program or the instruction is executed by the processor 71 to implement the processes of the session processing method embodiment shown in fig. 4, and the same technical effect can be achieved, and details are not repeated here to avoid repetition.

Fig. 8 is a schematic diagram of a hardware structure of a terminal for implementing the embodiment of the present application.

The terminal 1000 includes, but is not limited to: a radio frequency unit 1001, a network module 1002, an audio output unit 1003, an input unit 1004, a sensor 1005, a display unit 1006, a user input unit 1007, an interface unit 1008, a memory 1009, and a processor 1010.

Those skilled in the art will appreciate that terminal 1000 can also include a power supply (e.g., a battery) for powering the various components, which can be logically coupled to processor 1010 via a power management system to provide management of charging, discharging, and power consumption via the power management system. The terminal structure shown in fig. 8 does not constitute a limitation of the terminal, and the terminal may include more or less components than those shown, or combine some components, or have a different arrangement of components, and thus will not be described again.

It should be understood that in the embodiment of the present application, the input Unit 1004 may include a Graphics Processing Unit (GPU) 10041 and a microphone 10042, and the Graphics Processing Unit 10041 processes image data of still pictures or videos obtained by an image capturing device (such as a camera) in a video capturing mode or an image capturing mode. The display unit 1006 may include a display panel 10061, and the display panel 10061 may be configured in the form of a liquid crystal display, an organic light emitting diode, or the like. The user input unit 1007 includes a touch panel 10071 and other input devices 10072. The touch panel 10071 is also referred to as a touch screen. The touch panel 10071 may include two parts, a touch detection device and a touch controller. Other input devices 10072 may include, but are not limited to, a physical keyboard, function keys (e.g., volume control keys, switch keys, etc.), a trackball, a mouse, and a joystick, which are not described in detail herein.

In this embodiment of the application, the radio frequency unit 1001 receives downlink data from a network side device and then processes the downlink data to the processor 1010; in addition, the uplink data is transmitted to the base station. In general, radio frequency unit 1001 includes, but is not limited to, an antenna, at least one amplifier, a transceiver, a coupler, a low noise amplifier, a duplexer, and the like.

The memory 1009 may be used to store software programs or instructions and various data. The memory 1009 may mainly include a program or instruction storage area and a data storage area, wherein the program or instruction storage area may store an operating system, an application program or instruction (such as a sound playing function, an image playing function, and the like) required for at least one function, and the like. Further, the Memory 1009 may include a high-speed random access Memory and may also include a nonvolatile Memory, where the nonvolatile Memory may be a Read-Only Memory (ROM), a Programmable ROM (PROM), an Erasable Programmable PROM (EPROM), an Electrically Erasable Programmable ROM (EEPROM), or a flash Memory. Such as at least one magnetic disk storage device, flash memory device, or other non-volatile solid state storage device.

Processor 1010 may include one or more processing units; alternatively, processor 1010 may integrate an application processor that handles primarily the operating system, user interface, and application programs or instructions, and a modem processor that handles primarily wireless communications, such as a baseband processor. It will be appreciated that the modem processor described above may not be integrated into processor 1010.

The radio frequency unit 1001 is configured to receive PDU session authentication and authorization command information sent by a network side device;

a processor 1010, configured to, if the PDU session indicated in the PDU session authentication and authorization command information is the same as the PDU session of the terminal in the PDU session modification process, perform processing in one of the following manners:

In an embodiment of the present application, the radio frequency unit 1001 is further configured to send a PDU session modification request message to the network side device;

the processor 1010 is further configured to start a timer, and when the PDU session modification abort process is performed and the PDU session authentication and authorization process is performed, perform the PDU session authentication and authorization process by aborting the timer.

In an embodiment of the present application, the processor 1010 is further configured to discard the PDU session authentication and authorization command information;

a PDU session modification procedure is performed.

In an embodiment of the present application, the processor 1010 is further configured to perform a PDU session authentication and authorization process, and perform a PDU session modification process when the PDU session authentication and authorization process is completed; or

In an embodiment of the present application, the radio frequency unit 1001 is further configured to receive a PDU session modification command message sent by the network side device, where the PDU session modification command message carries PDU session authentication and authentication result information.

Alternatively, the first and second electrodes may be,

alternatively, the first and second electrodes may be,

In an embodiment of the present application, the radio frequency unit 1001 is further configured to send a PDU session modification command reject message or a PDU session modification command complete message to the network side device, where the PDU session modification command reject message or the PDU session modification command complete message carries response information for PDU session authentication and authentication command information;

alternatively, the first and second electrodes may be,

In an embodiment of the present application, the processor 1010 is further configured to:

suspending the PDU session modification process;

a PDU session authentication and authorization procedure is performed.

In an embodiment of the present application, the radio frequency unit 1001 is further configured to receive a PDU session authentication and authorization result message sent by the network side device under the condition that the PDU session authentication and authorization process is successful;

a processor 1010, further configured to resume the PDU session modification procedure;

the radio frequency unit 1001 is further configured to receive a PDU session modification command message or a PDU session modification rejection message sent by the network side device.

In an embodiment of the present application, the radio frequency unit 1001 is further configured to receive a PDU session release message sent by the network side device when the PDU session authentication and authorization process fails;

the processor 1010 is further configured to abort the PDU session modification procedure.

The terminal provided in the embodiment of the present application can implement each process implemented by the method embodiment of fig. 2, and achieve the same technical effect, and for avoiding repetition, details are not repeated here.

Specifically, the embodiment of the application further provides a network side device. As shown in fig. 9, the network-side device 90 includes: antenna 91, radio frequency device 92, baseband device 93. The antenna 91 is connected to a radio frequency device 92. In the uplink direction, the rf device 92 receives information via the antenna 91 and sends the received information to the baseband device 93 for processing. In the downlink direction, the baseband device 93 processes information to be transmitted and transmits the information to the rf device 92, and the rf device 92 processes the received information and transmits the processed information through the antenna 91.

The above-mentioned frequency band processing means may be located in the baseband means 93, and the method performed by the network side device in the above embodiment may be implemented in the baseband means 93, where the baseband means 93 includes a processor 94 and a memory 95.

The baseband device 93 may include, for example, at least one baseband board, on which a plurality of chips are disposed, as shown in fig. 9, where one of the chips, for example, a processor 94, is connected to the memory 95 to call up a program in the memory 95 to perform the network-side device operation shown in the above method embodiment.

The baseband device 93 may further include a network interface 96 for exchanging information with the radio frequency device 92, for example, a Common Public Radio Interface (CPRI).

Specifically, the network side device of the embodiment of the present invention further includes: the instructions or programs stored in the memory 95 and capable of being executed on the processor 94, and the processor 94 calls the instructions or programs in the memory 95 to execute the method executed by each module shown in fig. 6, and achieve the same technical effect, and are not described herein in detail to avoid repetition.

An embodiment of the present application further provides a readable storage medium, where a program or an instruction is stored on the readable storage medium, and when the program or the instruction is executed by a processor, the program or the instruction implements each process of the embodiment of the session processing method shown in fig. 2 or fig. 4, and can achieve the same technical effect, and in order to avoid repetition, details are not repeated here.

Wherein, the processor is the processor in the terminal described in the above embodiment. The readable storage medium includes a computer readable storage medium, such as a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and so on.

The embodiment of the present application further provides a chip, where the chip includes a processor and a communication interface, the communication interface is coupled to the processor, and the processor is configured to run a network-side device program or an instruction, to implement each process in the session processing method embodiments of fig. 2 and 4, and can achieve the same technical effect, and details are not repeated here to avoid repetition.

It should be understood that the chips mentioned in the embodiments of the present application may also be referred to as a system-on-chip, a system-on-chip or a system-on-chip, etc.

It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element. Further, it should be noted that the scope of the methods and apparatus of the embodiments of the present application is not limited to performing the functions in the order illustrated or discussed, but may include performing the functions in a substantially simultaneous manner or in a reverse order based on the functions involved, e.g., the methods described may be performed in an order different than that described, and various steps may be added, omitted, or combined. In addition, features described with reference to certain examples may be combined in other examples.

Through the above description of the embodiments, those skilled in the art will clearly understand that the method of the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but in many cases, the former is a better implementation manner. Based on such understanding, the technical solutions of the present application may be embodied in the form of a software product, which is stored in a storage medium (such as ROM/RAM, magnetic disk, optical disk) and includes instructions for enabling a terminal (such as a mobile phone, a computer, a server, an air conditioner, or a network device) to execute the method according to the embodiments of the present application.

While the present embodiments have been described with reference to the accompanying drawings, it is to be understood that the invention is not limited to the precise embodiments described above, which are meant to be illustrative and not restrictive, and that various changes may be made therein by those skilled in the art without departing from the spirit and scope of the invention as defined by the appended claims.

Claims

1. A session processing method is applied to a terminal, and is characterized by comprising the following steps:

2. The method of claim 1, further comprising:

starting a timer;

aborting the timer;

a PDU session authentication and authorization procedure is performed.

3. The method of claim 1, wherein the aborting the PDU session authentication and authorization process and performing a PDU session modification process comprises:

discarding the PDU session authentication and authorization command information;

a PDU session modification procedure is performed.

4. The method of claim 1, wherein the performing the PDU session modification procedure and the PDU session authentication and authorization procedure, respectively, comprises:

5. The method of claim 1, wherein the performing the PDU session modification procedure and the PDU session authentication and authorization procedure, respectively, comprises:

receiving a PDU session modification command message sent by the network side equipment, wherein the PDU session modification command message carries PDU session authentication and authentication result information;

alternatively, the first and second electrodes may be,

6. The method of claim 1 wherein the PDU session authentication and authorization command information is carried in a PDU session modification command message;

alternatively, the first and second electrodes may be,

7. The method of claim 1, wherein the performing the PDU session modification procedure and the PDU session authentication and authorization procedure, respectively, comprises:

sending a PDU session modification command rejection message or a PDU session modification command completion message to the network side equipment, wherein the PDU session modification command rejection message or the PDU session modification command completion message carries response information to the PDU session authentication and authentication command information;

alternatively, the first and second electrodes may be,

8. The method of claim 1, wherein the performing the PDU session modification procedure and the PDU session authentication and authorization procedure, respectively, comprises:

suspending the PDU session modification process;

a PDU session authentication and authorization procedure is performed.

9. The method of claim 1, wherein the performing the PDU session modification procedure and the PDU session authentication and authorization procedure, respectively, comprises:

recovering the PDU session modification process;

10. The method of claim 1, wherein the performing the PDU session modification procedure and the PDU session authentication and authorization procedure, respectively, comprises:

the PDU session modification procedure is aborted.

11. The method according to claim 5, 6 or 9, characterized in that the PDU session modification command message or PDU session modification command information comprises a field for carrying extensible authentication protocol, EAP, information.

12. Method according to claim 5 or 9, characterized in that said PDU session modification reject message comprises a field for carrying EAP information.

13. The method of claim 7, wherein the PDU session modification command completion message or the PDU session modification command completion information includes a field for carrying EAP information.

14. The method according to claim 7, wherein the PDU Session modification Command reject message or the PDU Session modification Command reject message includes a field for carrying EAP information.

15. A session processing method is applied to a network side device, and is characterized by comprising the following steps:

16. The method of claim 15, further comprising:

receiving a PDU session modification request message sent by the terminal;

discarding the PDU session modification request message;

a PDU session authentication and authorization procedure is performed.

17. The method of claim 15, wherein the performing the PDU session modification procedure and the PDU session authentication and authorization procedure, respectively, comprises:

18. The method of claim 15, wherein the performing the PDU session modification procedure and the PDU session authentication and authorization procedure, respectively, comprises:

alternatively, the first and second electrodes may be,

if the authentication and authorization process of the network side equipment fails to be executed and the PDU session modification request message sent by the terminal is accepted, sending a PDU session modification command message to the terminal;

alternatively, the first and second electrodes may be,

and if the authentication and authorization process of the network side equipment fails to be executed and the PDU session modification request message sent by the terminal is refused to be accepted, sending the PDU session modification refusing message to the terminal.

19. The method of claim 15 wherein the PDU session authentication and authorization command information is carried in a PDU session modify command message;

alternatively, the first and second electrodes may be,

20. The method of claim 15, wherein the performing the PDU session modification procedure and the PDU session authentication and authorization procedure, respectively, comprises:

receiving a PDU session modification command rejection message or a PDU session modification command completion message sent by the terminal, wherein the PDU session modification command rejection message or the PDU session modification command completion message carries response information to the PDU session authentication and authentication command information;

alternatively, the first and second electrodes may be,

21. The method of claim 15, wherein the performing the PDU session modification procedure and the PDU session authentication and authorization procedure, respectively, comprises:

suspending the PDU session modification process;

a PDU session authentication and authorization procedure is performed.

22. The method of claim 15, wherein the performing the PDU session modification procedure and the PDU session authentication and authorization procedure, respectively, comprises:

recovering the PDU session modification process;

23. The method of claim 15, wherein the performing the PDU session modification procedure and the PDU session authentication and authorization procedure, respectively, comprises:

under the condition that the PDU session authentication and authorization process fails, sending a PDU session release message to the terminal;

the PDU session modification procedure is aborted.

24. The method according to claim 18, 19 or 22, characterized in that the PDU session modification command message or PDU session modification command information comprises a field for carrying extensible authentication protocol, EAP, information.

25. The method according to claim 18 or 22, characterized in that said PDU session modification reject message comprises a field for carrying EAP information.

26. The method of claim 20 wherein the PDU session modification command complete message or the PDU session modification command complete information includes a field for carrying EAP information.

27. The method according to claim 20, wherein the PDU session modification command reject message or the PDU session modification command reject information comprises a field for carrying EAP information.

28. A session processing apparatus applied to a terminal, comprising:

29. The apparatus according to claim 28, wherein the processing module includes a receiving sub-module, and the receiving sub-module is configured to receive a PDU session modification command message sent by the network side device, where the PDU session modification command message carries PDU session authentication and authentication result information;

alternatively, the first and second electrodes may be,

30. The apparatus of claim 28 wherein the PDU session authentication and authorization command information is carried in a PDU session modification command message;

alternatively, the first and second electrodes may be,

31. A session processing apparatus applied to a network side device includes:

32. The apparatus of claim 31, wherein the processing module comprises a sending sub-module configured to:

alternatively, the first and second electrodes may be,

33. The apparatus of claim 31 wherein the PDU session authentication and authorization command information is carried in the PDU session modify command message;

alternatively, the first and second electrodes may be,

34. A terminal comprising a processor, a memory and a program or instructions stored on the memory and executable on the processor, the program or instructions when executed by the processor implementing the steps of the session processing method according to any one of claims 1 to 14.

35. A network-side device comprising a processor, a memory, and a program or instructions stored on the memory and executable on the processor, wherein the program or instructions, when executed by the processor, implement the steps of the session processing method according to any one of claims 15 to 27.

36. A readable storage medium, on which a program or instructions are stored, which, when executed by a processor, implement the session processing method of any one of claims 1-14 or the steps of the session processing method of any one of claims 15-27.