WO2008083620A1 - A method, a system and an apparatus for media flow security context negotiation - Google Patents

A method, a system and an apparatus for media flow security context negotiation Download PDF

Info

Publication number
WO2008083620A1
WO2008083620A1 PCT/CN2008/070042 CN2008070042W WO2008083620A1 WO 2008083620 A1 WO2008083620 A1 WO 2008083620A1 CN 2008070042 W CN2008070042 W CN 2008070042W WO 2008083620 A1 WO2008083620 A1 WO 2008083620A1
Authority
WO
WIPO (PCT)
Prior art keywords
media stream
called
calling
key
security context
Prior art date
Application number
PCT/CN2008/070042
Other languages
French (fr)
Chinese (zh)
Inventor
Chengdong He
Zhanjun Zhang
Original Assignee
Huawei Technologies Co., Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from CN2007101627602A external-priority patent/CN101222320B/en
Application filed by Huawei Technologies Co., Ltd. filed Critical Huawei Technologies Co., Ltd.
Publication of WO2008083620A1 publication Critical patent/WO2008083620A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0838Key agreement, i.e. key establishment technique in which a shared key is derived by parties as a function of information contributed by, or associated with, each of these
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/061Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/30Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption

Definitions

  • the present invention relates to media stream encryption technologies, and in particular, to a method, system and apparatus for media stream security context negotiation. Background of the invention
  • the IMS network is divided into an access domain and a network domain, and security specifications of the access domain and the network domain are respectively defined.
  • the method embodiment of the present invention provides a method for media network security context negotiation, which can implement media stream security context negotiation in the IMS system, which is beneficial for the IMS system to use the key obtained by the negotiation to protect the media stream;
  • the called UE checks the media stream protection indication information to determine that it supports the media stream protection; the called UE and the calling UE obtain the media stream security context information including the security algorithm and the key.
  • An apparatus for implementing media stream security context negotiation comprising:
  • the called UE may also carry the generated key in the media stream security capability information, and the media stream security capability information may further include information such as a key identifier, a key validity period, and the like.
  • the media stream security capability information is referred to as the media stream security context information
  • the security algorithm is a security algorithm supported by both parties, and the key can be generated directly according to the security algorithm.
  • steps 203 and 205 Different keys are generated for different media streams, and the key identifiers are used for distinguishing.
  • the calling UE and the MGW can also transmit the media stream using the derived key.
  • the method further includes: the MGCF deriving the key generated by the calling UE and the key generated by the UE to generate a new key; The key.
  • the calling UE further needs to derive a new key according to the key generated by itself and the key generated by the MGCF.
  • the call process will continue.
  • the calling UE also needs to send an UPDATE message to the MGCF, and the MGCF returns a 200 message.
  • 4 is a schematic diagram of a message flow of Embodiment 4 of the present invention.
  • the first entity is the calling UE
  • the second entity is the calling side CSCF
  • the method of user-to-network security capability negotiation is adopted, and both parties generate a key.
  • Step 401 The calling UE sends a session establishment request message to the calling side CSCF, where the session establishment request message carries the media of the calling UE.
  • Step 401 The calling UE sends a session establishment request message to the calling side CSCF, where the session establishment request message carries the media of the calling UE.
  • Flow security capability information The calling UE sends a session establishment request message to the calling side CSCF, where the session establishment request message carries the media of the calling UE.
  • the first entity needs to send the media stream security capability information to the second entity by using the session establishment request message, and the second entity returns the information provided by the second entity according to the media stream security capability information of the first entity.
  • Media stream security capability information In actual applications, the ability of the first entity and the second entity to support secure transmission of media streams may be different.
  • the first entity may set one or more media stream security capability information in advance, and the second entity selects one of the media stream security capability information.
  • Step 501 The first entity sends a session establishment request message to the second entity, where the session establishment request message includes one or more media stream security capability information.
  • the media stream security capability information may further include a priority.
  • the second entity may select the priority according to the priority level, and select the highest level media stream security capability information that can be supported by the second entity.
  • Media stream security capability information may be further included.
  • the generated key may be carried in the media stream security capability information and sent to the other party.
  • the media stream security capability information may further include parameters such as a key validity period. If there are multiple media streams to be protected, a different key may be generated for each different media stream, and the media stream security capability information may further include a key identifier to distinguish the corresponding media stream.
  • the key-method parameter can be used to indicate a key carrying method, such as an inline method. Use the key-info parameter to carry the key and parameters such as key identification and expiration date.
  • the security algorithm may also be extended by a security algorithm header field in the Session Initiation Protocol (SIP); likewise, the generated key, the key identifier, the key validity period, and the like are also The corresponding header field can be extended in the SIP protocol to carry.
  • SIP Session Initiation Protocol
  • FIG. 6 is a schematic diagram showing the basic structure of Embodiment 1 of a media stream security capability negotiation system. As shown in Figure 6, the system includes:
  • the first entity 601 may also be the calling UE, and the second entity 602 is the calling side CSCF; or the first entity 601 is the called side CSCF, and the second entity is the called UE; in this case, the
  • the system further includes an MP, configured to receive a key delivered from the CSCF.
  • the media stream security capability information and the media stream security capability information supported by the MGW 703 generate a key Y, and the key X and the key Y are sent to the MGW 701, and the key Y is returned to the calling UE 701 through the 200 message.
  • the session response message described in this step may also be a 200 response message.
  • Step 904' The called UE derives a media stream security key according to the key generation parameters Pa and Pb.
  • Step 905 After receiving the response message sent by the called UE, the calling UE derives the media stream security key according to the key generation parameters Pa and Pb. Similarly, in this step, the calling UE generates a key according to the key generation parameter Pb and the key generation parameter Pa in the media stream security context sent by the called UE in step 904.
  • KEY is the key of the derived encrypted media
  • the first method is: the called UE sends at least one set of media stream security context information provided by itself to the calling UE, and each set of media stream security context information includes a security algorithm and a corresponding key; the calling UE directly from the A set of all media stream security context information sent by the UE is selected, and the selected set of media stream security context information is sent to the called UE. That is, since the key already exists in the media stream security context information provided by the called UE, the calling UE only needs to select one set and notify the called UE, and both parties can determine the security algorithm and the corresponding key, thereby achieving The purpose of the consultation.
  • the method embodiment 7 includes the following steps:
  • Step 1003 The calling UE sends a PRACK response message to the called UE, where the media stream security context information provided by the local side is carried, for example, ( Algorithm 2, Key 2) in the 183 message is selected.
  • the media stream security context information provided by the local side is carried, for example, ( Algorithm 2, Key 2) in the 183 message is selected.
  • Step 1004 The called UE returns a 200 message corresponding to the PRACK to the calling UE, where the media stream security context information selected by the called UE is negotiated, in this embodiment, (algorithm 2, key 2).
  • the information such as the algorithm and the key correspondingly, the state of the security premise in the INVITE and the subsequent 183 message sent by the calling UE and the called UE is set to the value of the actual state, and the specific value can be set by referring to RFC 3312 and The state setting method in the IETF draft of the security premise, because the INVITE and the subsequent 183 messages do not carry information such as a security algorithm and a key, so the setting method of the security premise in the subsequent PRACK and 200 messages can be adopted.
  • a method of setting a transmission protocol of the media to be protected as a secure transmission protocol to indicate that the session media stream needs security protection for example, setting the media transmission protocol to RTP/SAVP.
  • Step 1104 The called UE returns a 200 message corresponding to the PRACK to the calling UE, where the media stream security context information selected by the called UE is carried, which is (Algorithm 2, Key 2) in this embodiment.
  • the media stream security context information described herein is a set selected by the called UE from at least one set of media stream security context information carried by the PRACK message, and sent to the calling UE in the PRACK 200 message. If the media stream security context information is arranged according to the priority order set in advance or the priority indication indicating the priority order is set, the selection may be performed according to the priority order, that is, the media stream security context information with the highest priority may be selected. .
  • the calling UE and the called UE transmit the key through the PRACK message and the 200 message.
  • other messages such as UPDATE messages and 200 messages, can also be used to transmit keys.
  • the key-method parameter can be used to indicate the carrying method, such as the inline method or the method using the key-method-ext extension.
  • the key generating unit 1201c is configured to generate a key according to the security algorithm in the selected media stream security context information.
  • the called UE 1202 includes:
  • the selecting unit 1202b is configured to select at least one set of media stream security upper and lower information supported by the media stream security context information provided by the calling UE 1201, and use the selected at least one set of media stream security context information as the media provided by itself.
  • the security context information is transmitted and sent to the calling UE 1201 through the transceiver unit 1202a.
  • the derivation unit 1201d derives a new key according to the key generated by the two parties;
  • the called UE 1302 receives the session request message carrying the media stream protection indication information, checks the media stream protection indication information, determines that it supports the media stream protection, and obtains the media stream security context including the security algorithm and the key.
  • the calling UE 1301 includes:
  • the selecting unit 1301b selects from all the media stream security context information sent by the called UE 1302.

Abstract

A method, a system and an apparatus for media flow security context negotiation are provided. The calling user equipment (UE) sends the media flow security context information provided by itself to the called UE through the session request message. The media flow security context information includes security arithmetic. The calling UE receives the media flow security context information from the called UE, the calling UE and the called UE obtain the cipher key according to the media flow security context information comprising the security arithmetic provided by them. As a result of the calling UE and the called UE intercommunicating to obtain the media flow security context information comprising the security arithmetic and the cipher key directly without complicatedly computing from UE, and without the public key or other demands in the network, it realizes the media flow security context negotiation in IMS system, and it is propitious to process the media flow security protection in IMS network subsequently.

Description

一种媒体流安全上下文协商的方法、 系统和装置  Method, system and device for media stream security context negotiation
技术领域 Technical field
本发明涉及媒体流加密技术, 特别是涉及一种媒体流安全上下文协 商的方法、 系统和装置。 发明背景  The present invention relates to media stream encryption technologies, and in particular, to a method, system and apparatus for media stream security context negotiation. Background of the invention
IP多媒体业务子系统( IMS , IP Multimedia Network Subsystem )是 固定和移动网络的核心会话控制层, 是通信领域发展的重点之一, 并已 经在第三代伙伴项目 ( 3GPP, The Third Generation Partnership Project ) 和先进网络的电信与因特网融合的服务与协议标准化组织 (TISPAN, Telecommunications and Internet Converged Services and Protocols for Advanced Networking ) 中定义了与 IMS相关的规范, 比如: 网络架构、 接口、 协议等等。  The IP Multimedia Service Subsystem (IMS) is the core session control layer for fixed and mobile networks. It is one of the focuses of the development of the communications field and is already in the 3GPP, The Third Generation Partnership Project. IMS-related specifications are defined in the Telecommunications and Internet Converged Services and Protocols for Advanced Networking (TISPAN), such as: network architecture, interfaces, protocols, and so on.
其中, 安全问题是 3GPP和 TISPAN制定规范的一个重要方面。 为 了能够保证安全, 将 IMS网络划分为接入域和网络域, 并分别定义了接 入域和网络域的安全规范。  Among them, security issues are an important aspect of 3GPP and TISPAN specifications. In order to ensure security, the IMS network is divided into an access domain and a network domain, and security specifications of the access domain and the network domain are respectively defined.
但目前关于安全的规范都是针对 IMS网络中控制面的, 即如何保证 IMS网络中会话协议的安全, 而媒体流本身则是通过明文传输。 在这种 情况下, 用户在通话过程中, 媒体流可能被窃听、 窜改等, 用户通话安 全无法得到保障。  However, the current security specifications are for the control plane in the IMS network, that is, how to ensure the security of the session protocol in the IMS network, and the media stream itself is transmitted in plaintext. In this case, the user may be eavesdropped, tampered, etc. during the call, and the user's call security cannot be guaranteed.
主叫用户设备 ( UE, User Equipment )和被叫 UE对媒体流进行安全 保护, 则双方需要对媒体流安全上下文达成一致。 这里的媒体流安全上 下文主要是指用来加密媒体流的密钥、 安全算法、 密钥标识、 密钥的有 效期等安全参数。 具体协商的时候, 消息中可以只携带部分参数, 其它 的参数可以是预先设置好的默认参数, 例如默认的密钥有效期等, 也可 以在后续的消息中继续携带和协商。 目前, 现有的因特网工程任务组The user equipment (UE, User Equipment) and the called UE perform security protection on the media stream, and both parties need to agree on the security context of the media stream. The media stream security context here mainly refers to security parameters such as a key used to encrypt the media stream, a security algorithm, a key identifier, and a validity period of the key. In the specific negotiation, the message can only carry some parameters, other The parameter may be a preset default parameter, such as a default key validity period, etc., and may continue to be carried and negotiated in subsequent messages. Currently, the existing Internet Engineering Task Force
( IETF, Internet Engineering Tesk Force ) 中有 4艮多协商媒体流安全上下 文信息的机制, 例如 RFC 3830 (RFC, Request for Comments)多媒体因特 网密钥(MIKEY, Multimedia Internet KEYing)协议中的预先共享密钥 (PSK,Pre-Shared-Key)模式, 赫尔曼 (DH,Deffi-Helman)模式, 公钥(PKI, Public Key Infrastructure)模式等等, RFC 4568中的安全信息描述 SDES 协议等。 但是这些协议都不能直接应用于 IMS的媒体流安全保护之中, 比如, MIKEY - DH模式对 UE的计算性能要求很高, 但目前的终端能 力还不能满足要求, 所以 MIKEY - DH模式无法直接应用于 IMS 中; 又比如, MIKEY - PKI模式需要公钥设施,但目前的 IMS网络种还没有 部署 PKI , 所以 MIKEY - PKI模式也无法直接应用于 IMS中; 再比如, MIKEY - PSK模式需要主叫和被叫 UE预先共享密钥,但目前还没有共 享密钥的机制, 所以 MIKEY - PSK模式也无法直接应用于 IMS中。 由 此可见, 目前还没有可以解决 IMS网络中的媒体流安全问题的方法。 发明内容 There are more than 4 mechanisms for negotiating media stream security context information in IETF (Internet Engineering Tesk Force), such as RFC 3830 (RFC, Request for Comments) pre-shared key in the Multimedia Internet Keying (MIKEY) protocol. (PSK, Pre-Shared-Key) mode, Herman (DH, Deffi-Helman) mode, Public Key Infrastructure (PKI) mode, etc. The security information in RFC 4568 describes the SDES protocol. However, these protocols cannot be directly applied to the media stream security protection of IMS. For example, the MIKEY-DH mode requires high computing performance of the UE, but the current terminal capability cannot meet the requirements, so the MIKEY-DH mode cannot be directly applied. In IMS; for example, the MIKEY-PKI mode requires a public key facility, but the current IMS network does not have a PKI deployed, so the MIKEY-PKI mode cannot be directly applied to the IMS; for example, the MIKEY-PSK mode requires a caller. The key is shared with the called UE in advance, but there is no mechanism for sharing the key, so the MIKEY-PSK mode cannot be directly applied to the IMS. It can be seen that there is currently no way to solve the problem of media stream security in the IMS network. Summary of the invention
有鉴于此, 本发明方法实施例提供一种媒体流安全上下文协商的方 法, 可以在 IMS系统中实现媒体流安全上下文协商, 有利于 IMS系统 利用协商获得的密钥进行保护媒体流;  In view of this, the method embodiment of the present invention provides a method for media network security context negotiation, which can implement media stream security context negotiation in the IMS system, which is beneficial for the IMS system to use the key obtained by the negotiation to protect the media stream;
本发明实施例还提供一种媒体流安全上下文协商的系统, 可以在 IMS系统中实现媒体流安全上下文协商,有利于 IMS系统利用协商获得 的密钥进行保护媒体流;  The embodiment of the present invention further provides a system for media stream security context negotiation, which can implement media stream security context negotiation in the IMS system, and is beneficial for the IMS system to use the key obtained by the negotiation to protect the media stream;
本发明实施例还提供一种媒体流安全上下文协商的装置, 可以在 IMS系统中媒体流安全上下文协商,有利于 IMS系统利用协商获得的密 钥进行保护媒体流。 The embodiment of the invention further provides a device for media stream security context negotiation, which can negotiate media media security context in the IMS system, which is beneficial to the IMS system to obtain the confidentiality obtained through negotiation. The key protects the media stream.
为了达到上述第一个发明目的, 本发明实施例提出的技术方案为: 一种实现媒体流安全上下文协商的方法, 该方法包括:  In order to achieve the above first object, the technical solution provided by the embodiment of the present invention is: A method for implementing media stream security context negotiation, the method includes:
主叫终端设备 UE通过会话请求消息将自身提供的媒体流安全上下 文信息发送给被叫 UE, 所述媒体流安全上下文信息包括安全算法; 主叫 UE接收被叫 UE通过会话应答消息提供的媒体流安全上下文 信息, 所述被叫 UE提供的媒体流安全上下文是根据主叫 UE提供的媒 体流安全上下文信息所确定的;  The calling terminal device UE sends the media stream security context information provided by itself to the called UE by using a session request message, where the media stream security context information includes a security algorithm; the calling UE receives the media stream provided by the called UE through the session response message. Security context information, the media stream security context provided by the called UE is determined according to media stream security context information provided by the calling UE;
主叫 UE和被叫 UE根据双方提供的包括安全算法的媒体流安全上 下文信息获得密钥。  The calling UE and the called UE obtain the key according to the media stream security context information provided by the two parties including the security algorithm.
为了达到上述第一个发明目的, 本发明实施例还提出另外的技术方 案为:  In order to achieve the above first object of the present invention, an embodiment of the present invention also proposes another technical solution:
一种实现媒体流安全上下文协商的方法, 该方法包括:  A method for implementing media stream security context negotiation, the method comprising:
主叫 UE将携带有媒体流保护指示信息的会话请求消息发送给被叫 The calling UE sends a session request message carrying the media stream protection indication information to the called party.
UE; UE;
被叫 UE检查媒体流保护指示信息, 确定自身支持媒体流保护; 被叫 UE和主叫 UE获得包括安全算法和密钥的媒体流安全上下文 信息。  The called UE checks the media stream protection indication information to determine that it supports the media stream protection; the called UE and the calling UE obtain the media stream security context information including the security algorithm and the key.
对于第二个发明目的, 本发明实施例提出的技术方案为: 一种实现媒体流安全上下文协商的系统, 该系统包括:  For the second object of the present invention, the technical solution proposed by the embodiment of the present invention is: A system for implementing media stream security context negotiation, the system includes:
主叫 UE, 通过会话请求消息将自身提供的包括安全算法的媒体流 安全上下文信息发送给被叫 UE;  The calling UE sends the media stream security context information including the security algorithm provided by itself to the called UE through the session request message;
被叫 UE,被叫 UE根据会话请求消息中主叫 UE提供的媒体流安全 上下文信息确定自身需要提供的媒体流安全上下文信息, 通过会话应答 消息将确定提供的媒体流安全上下文信息发送给主叫 UE; 所述主叫 UE和被叫 UE根据双方提供的包括安全算法的媒体流安 全上下文信息获得密钥。。 The called UE, the called UE determines the media stream security context information that needs to be provided according to the media stream security context information provided by the calling UE in the session request message, and sends the determined media stream security context information to the calling party through the session response message. UE; The calling UE and the called UE obtain a key according to the media stream security context information provided by the two parties including the security algorithm. .
对于第二个发明目的, 本发明实施例还提出另外的技术方案为: 一种实现媒体流安全上下文协商的系统, 该系统包括:  For the second object of the present invention, the embodiment of the present invention further provides another technical solution: A system for implementing media stream security context negotiation, the system includes:
主叫 UE, 将携带有媒体流保护指示信息的会话请求消息发送给被 叫 UE, 获得包括安全算法和密钥的媒体流安全上下文信息;  The calling UE sends a session request message carrying the media stream protection indication information to the called UE, and obtains media stream security context information including the security algorithm and the key;
被叫 UE, 接收携带有媒体流保护指示信息的会话请求消息, 检查 媒体流保护指示信息, 确定自身支持媒体流保护, 获得包括安全算法和 密钥的媒体流安全上下文信息。  The called UE receives the session request message carrying the media stream protection indication information, checks the media stream protection indication information, determines that it supports the media stream protection, and obtains the media stream security context information including the security algorithm and the key.
对于第三个发明目的, 本发明提出的技术方案为:  For the third object of the invention, the technical solution proposed by the invention is:
一种实现媒体流安全上下文协商的装置, 该装置包括:  An apparatus for implementing media stream security context negotiation, the apparatus comprising:
收发单元, 通过会话请求消息将自身提供的至少一套的媒体流安全 上下文信息发送给被叫 UE, 所述每一套媒体流安全上下文包括安全算 法; 接收被叫 UE通过会话应答消息提供的至少一套媒体流安全上下文 信息, 所述被叫 UE提供的媒体流安全上下文是根据主叫 UE提供的至 少一套媒体流安全上下文信息中选择出的; 将生成的密钥携带于选择出 的一套媒体流安全上下文中发送给被叫 UE;  The transceiver unit sends at least one set of media stream security context information provided by itself to the called UE by using a session request message, where each set of media stream security context includes a security algorithm; and receiving at least the called UE provides the session response message a set of media stream security context information, wherein the media stream security context provided by the called UE is selected according to at least one set of media stream security context information provided by the calling UE; and the generated key is carried in the selected one The set of media stream security context is sent to the called UE;
选择单元, 从被叫 UE提供的所有媒体流安全上下文信息中选择出 一套;  The selecting unit selects one set of all media stream security context information provided by the called UE;
密钥生成单元, 根据选择出的媒体流安全上下文信息中的安全算法 生成密钥。  The key generation unit generates a key according to the security algorithm in the selected media stream security context information.
综上所述, 本发明提出的一种媒体流安全上下文协商的方法、 系统 和装置, 由于不需要 UE 进行复杂的计算, 也不需要网络中具备公钥设 施等要求, 而是直接由主叫 UE和被叫 UE进行交互来获得包括安全算法 和密钥的媒体流安全上下文信息, 从而实现了 IMS系统中媒体流安全上 下文协商, 有利于后续在 IMS网络中进行媒体流安全保护。 附图简要说明 In summary, the method, system and device for media stream security context negotiation proposed by the present invention do not require the UE to perform complex calculations, and do not need the public key facility in the network, but directly by the calling party. The UE interacts with the called UE to obtain media stream security context information including the security algorithm and the key, thereby implementing media stream security in the IMS system. Negotiation below facilitates subsequent media stream security protection in the IMS network. BRIEF DESCRIPTION OF THE DRAWINGS
图 1为本发明方法实施例一的方法流程图;  1 is a flowchart of a method according to Embodiment 1 of the method of the present invention;
图 2为本发明方法实施例二的消息流示意图;  2 is a schematic diagram of a message flow according to Embodiment 2 of the method according to the present invention;
图 3为本发明方法实施例三的消息流示意图;  3 is a schematic diagram of a message flow according to Embodiment 3 of the method of the present invention;
图 4为本发明方法实施例四的消息流示意图;  4 is a schematic diagram of a message flow according to Embodiment 4 of the method of the present invention;
图 5为本发明方法实施例五的消息流示意图;  FIG. 5 is a schematic diagram of a message flow according to Embodiment 5 of the method of the present invention; FIG.
图 6为本发明系统实施例一基本结构示意图;  6 is a schematic structural diagram of a first embodiment of a system according to the present invention;
图 7为本发明系统实施例二的基本结构示意图;  7 is a schematic diagram of a basic structure of a second embodiment of a system according to the present invention;
图 8为本发明系统实施例三的基本结构示意图;  8 is a schematic structural diagram of a third embodiment of a system according to the present invention;
图 9为本发明方法实施例六的消息流示意图;  9 is a schematic diagram of a message flow according to Embodiment 6 of the method of the present invention;
图 10为本发明方法实施例七的消息流示意图;  10 is a schematic diagram of a message flow according to Embodiment 7 of the method of the present invention;
图 11为本发明方法实施例八的消息流示意图;  11 is a schematic diagram of a message flow according to Embodiment 8 of the method of the present invention;
图 12为本发明系统实施例四的基本结构示意图;  12 is a schematic structural diagram of a fourth embodiment of a system according to the present invention;
图 12A为本发明系统实施例五的基本结构示意图;  12A is a schematic diagram showing the basic structure of Embodiment 5 of the system of the present invention;
图 12B为本发明系统实施例六的基本结构示意图;  12B is a schematic diagram showing the basic structure of a sixth embodiment of the system according to the present invention;
图 13A为本发明系统实施例七的基本结构示意图;  13A is a schematic diagram showing the basic structure of a seventh embodiment of the system according to the present invention;
图 13B为本发明系统实施例八的基本结构示意图。 实施本发明的方式  FIG. 13B is a schematic diagram of the basic structure of Embodiment 8 of the system of the present invention. Mode for carrying out the invention
为使本发明实施例的目的、 技术方案和优点更加清楚, 下面将结合 附图作进一步地详细描述。  In order to make the objects, technical solutions and advantages of the embodiments of the present invention more apparent, the following detailed description will be made in conjunction with the accompanying drawings.
图 1是本发明方法实施例一的流程图。 如图 1所示, 方法实施例一 包括以下步骤: 步骤 101 : 第一实体发送会话建立请求消息给第二实体, 所述会话 建立请求消息携带有第一实体侧提供的媒体流安全能力信息。 BRIEF DESCRIPTION OF THE DRAWINGS Figure 1 is a flow chart of a first embodiment of the method of the present invention. As shown in FIG. 1, the method embodiment 1 includes the following steps: Step 101: The first entity sends a session establishment request message to the second entity, where the session establishment request message carries the media stream security capability information provided by the first entity side.
步骤 102: 第二实体根据会话建立请求消息确定本侧需提供的媒体 流安全能力信息, 并将提供的媒体流安全能力信息通过会话建立响应消 息返回给第一实体。  Step 102: The second entity determines, according to the session establishment request message, the media stream security capability information that is to be provided by the current side, and returns the provided media stream security capability information to the first entity by using the session establishment response message.
步骤 103: 第一实体根据本侧提供的媒体流安全能力信息和第二实 体侧提供的媒体流安全能力信息生成密钥, 并将生成的密钥发送给第二 实体。  Step 103: The first entity generates a key according to the media stream security capability information provided by the current side and the media stream security capability information provided by the second entity side, and sends the generated key to the second entity.
这里所述第一实体侧提供的媒体流安全能力信息可以为第一实体自 身向第二实体提供的媒体流安全能力信息, 也可以为第一实体侧其它实 体向第二实体提供的媒体流安全能力信息。 相应地, 所述第二实体提供 的媒体流安全能力信息可以为第二实体自身向第一实体提供的媒体流 安全能力信息, 也可以为第二实体侧其它实体向第一实体提供的媒体流 安全能力信息。  The media stream security capability information provided by the first entity side may be the media stream security capability information provided by the first entity itself to the second entity, or may be the media stream security provided by the other entity on the first entity side to the second entity. Capability information. Correspondingly, the media stream security capability information provided by the second entity may be the media stream security capability information provided by the second entity itself to the first entity, or may be the media stream provided by the other entity on the second entity side to the first entity. Security capability information.
上述媒体流安全能力协商方法中, 只有第一实体生成密钥。 此后, 第一实体侧和第二实体侧可以利用所述第一实体生成的密钥保护传输 的媒体流。  In the above media stream security capability negotiation method, only the first entity generates a key. Thereafter, the first entity side and the second entity side may protect the transmitted media stream by using a key generated by the first entity.
实际应用中,第二实体也可以生成密钥,其具体实现为:在步骤 103 之后进一步包括: 第二实体根据第一实体侧提供的媒体流安全能力信息 和本侧提供的媒体流安全能力信息生成密钥, 再将生成的密钥发送给第 一实体。 之后, 第一实体侧和第二实体侧可以利用双方生成的密钥保护 传输媒体流。  In a practical application, the second entity may also generate a key, which is specifically implemented as follows: after the step 103, the method further includes: the second entity according to the media stream security capability information provided by the first entity side and the media stream security capability information provided by the side Generate a key and send the generated key to the first entity. Thereafter, the first entity side and the second entity side may protect the transport media stream by using a key generated by both parties.
实际应用中, 第二实体侧其它实体也可以生成密钥, 并将生成的密 钥发送给第一实体。 比如: 第一实体为 UE, 第二实体为 MGCF/CSCF, 在步骤 103之后进一步包括: MGCF/CSCF将所述 UE生成的密钥下发 给媒体网关 MGW/媒体代理 MP, MGW/MP根据 UE提供的媒体流安全 能力信息和自身提供的媒体流安全能力信息生成密钥, 并将自身生成的 密钥通过 MGCF/CSCF发生给主叫 UE。 In an actual application, other entities on the second entity side may also generate a key, and send the generated key to the first entity. For example, the first entity is the UE, and the second entity is the MGCF/CSCF. After the step 103, the MGCF/CSCF sends the key generated by the UE. The media gateway MGW/media proxy MP, the MGW/MP generates a key according to the media stream security capability information provided by the UE and the media stream security capability information provided by the UE, and generates a key generated by itself to the calling UE through the MGCF/CSCF. .
当然, 双方生成密钥之后, 第一实体侧和第二实体侧也可以不直接 利用双方生成的密钥传输媒体流, 而是分别根据本侧生成的密钥和对侧 生成的密钥衍生出新的密钥。 之后, 第一实体侧和第二实体侧再利用衍 生出的密钥传输媒体流, 同样可以达到保护媒体流的目的。  Of course, after the two parties generate the key, the first entity side and the second entity side may not directly use the key generated by the two parties to transmit the media stream, but are respectively derived from the key generated by the side and the key generated by the opposite side. New key. Then, the first entity side and the second entity side reuse the derived key to transmit the media stream, and the purpose of protecting the media stream can also be achieved.
不管是一方生成密钥, 还是双方都生成密钥, 本发明所述的第一实 体和第二实体可以分别为: 主叫 UE和被叫 UE, 或者主叫 UE和被叫侧 媒体网关控制功能实体(MGCF ), 或者主叫 UE和主叫侧会话控制功能 实体( CSCF ) , 或者被叫侧 CSCF和被叫 UE。  The first entity and the second entity in the present invention may be: a calling UE and a called UE, or a calling UE and a called side media gateway control function, whether the key is generated by one party or the key is generated by both parties. Entity (MGCF), or the calling UE and the calling side session control function entity (CSCF), or the called side CSCF and the called UE.
其中,如果第一实体和第二实体分别为主叫 UE和被叫 UE, 其安全 能力协商的方法又可以称为用户到用户的媒体流安全能力协商的方法; 而如果第一实体和第二实体为主叫 UE和主叫侧 CSCF, 或者为被叫侧 CSCF和被叫 UE, 或者为主叫 UE和被叫侧 MGCF, 其安全协商的方法 又可以称为用户到网络的媒体流安全能力协商的方法。  If the first entity and the second entity are the calling UE and the called UE, respectively, the method for negotiating the security capability may be referred to as a method for negotiating the media stream security capability of the user to the user; and if the first entity and the second entity The entity is called the UE and the calling side CSCF, or is the called side CSCF and the called UE, or the calling UE and the called side MGCF. The method of security negotiation can also be called the media stream security capability of the user to the network. The method of negotiation.
在用户到用户媒体流安全能力协商方法中, 即第一实体和第二实体 分别为主叫 UE和被叫 UE, 所述主叫 UE和被叫 UE之间可以直接利用 密钥保护传输的媒体流;  In the user-to-user media stream security capability negotiation method, that is, the first entity and the second entity are the calling UE and the called UE, respectively, and the media that can be directly protected by the key protection between the calling UE and the called UE Flow
在用户到网络的媒体流安全能力协商方法中, 如果第一实体和第二 实体分别为主叫 UE和被叫侧 MGCF, 所述主叫 UE和被叫侧 MGCF之 间并不直接传输媒体流,所述被叫侧 MGCF需要将密钥下发给被叫侧媒 体网关( MGW ) , 由主叫 UE和被叫侧 MGW之间利用密钥保护传输的 媒体流。 具体分为以下几种情况:  In the media stream security capability negotiation method of the user to the network, if the first entity and the second entity are the calling UE and the called side MGCF, respectively, the media stream is not directly transmitted between the calling UE and the called side MGCF. The called side MGCF needs to send the key to the called side media gateway (MGW), and the media stream transmitted by the key protection between the calling UE and the called side MGW. Specifically divided into the following situations:
如果只有一方生成密钥, 当被叫侧 MGCF接收到主叫 UE生成的密 钥后, 将接收到的密钥下发给被叫侧 MGW; 或者, If only one party generates a key, when the called side MGCF receives the secret generated by the calling UE After the key is received, the received key is sent to the called side MGW; or
如果双方都生成密钥, 当被叫侧 MGCF 自身生成密钥后, 将主叫 UE生成的密钥和自身生成的密钥下发给被叫侧 MGW; 或者, 当被叫侧 MGCF自身生成密钥后, 将主叫 UE生成的密钥和自身生成的密钥衍生 出新的密钥, 再将新的密钥下发给被叫侧 MGW; 或者,  If both parties generate a key, the MGCF itself generates a key, and the key generated by the calling UE and the generated key are sent to the called side MGW; or when the called side MGCF generates the secret itself. After the key is generated, the key generated by the calling UE and the key generated by the calling party are derived from the new key, and the new key is sent to the called side MGW; or
如果双方都生成密钥, 当被叫侧 MGCF先将主叫 UE生成的密钥下 发给被叫侧 MGW, 被叫侧 MGW再生成密钥, 并将生成的密钥通过被 叫侧 MGCF返回给主叫侧 UE; 或者主叫 UE和被叫侧 MGW再根据本 侧和对侧生成的密钥^ "生出新的密钥。 也就是说, 主叫 UE 居自身生 成的密钥和 MGW生成的密钥衍生出新的密钥, 被叫侧 MGW根据主叫 UE生成的密钥和自身生成的密钥衍生出新的密钥。  If both parties generate a key, the called side MGCF first sends the key generated by the calling UE to the called side MGW, and the called side MGW regenerates the key, and returns the generated key through the called side MGCF. The calling side UE; or the calling UE and the called side MGW generate a new key according to the key generated by the local side and the opposite side. That is, the calling UE generates the generated key and the MGW. The key derives a new key, and the called side MGW derives a new key based on the key generated by the calling UE and the key generated by itself.
如果第一实体和第二实体分别为主叫 UE和主叫侧 CSCF,或者为被 叫侧 CSCF和被叫 UE, 它们之间也并不直接传输媒体流, 所述主 /被叫 侧 CSCF还需要将密钥下发给主 /被叫侧媒体代理 MP, 由主 /被叫 UE和 主 /被叫侧 MP之间利用密钥传输媒体流。 以主叫 UE和主叫侧 CSCF为 例, 具体也分为以下几种情况:  If the first entity and the second entity are the calling UE and the calling side CSCF, respectively, or the called side CSCF and the called UE, the media stream is not directly transmitted between them, and the primary/called side CSCF is also The key needs to be sent to the primary/called side media agent MP, and the media stream is transmitted by the key between the primary/called UE and the primary/called side MP. Take the calling UE and the calling side CSCF as examples, which are also divided into the following cases:
如果只有一方生成密钥, 当主叫侧 CSCF接收到主叫 UE生成的密 钥后, 将接收到的密钥下发给主叫侧 MP; 或者,  If only one party generates a key, the calling side CSCF sends the received key to the calling side MP after receiving the key generated by the calling UE; or
如果双方都生成密钥, 当主叫侧 CSCF自身生成密钥后,将主叫 UE 生成的密钥和自身生成的密钥下发给主叫侧 MP; 或者, 当主叫侧 CSCF 自身生成密钥后, 将主叫 UE生成的密钥和自身生成的密钥衍生出新的 密钥, 再将新的密钥下发给主叫侧 MP; 或者,  If both parties generate a key, the calling party CSCF generates a key, and the key generated by the calling UE and the generated key are sent to the calling side MP; or when the calling side CSCF generates the secret itself. After the key is generated, the key generated by the calling UE and the generated key are derived from the new key, and the new key is sent to the calling side MP; or
如果双方都生成密钥, 当主叫侧 CSCF先将主叫 UE生成的密钥下 发给主叫侧 MP, 主叫侧 MP再生成密钥, 并将生成的密钥通过主叫侧 CSCF返回给主叫 UE; 或者主叫 UE和主叫侧 MP再根据本侧和对侧生 成的密钥衍生出新的密钥。 也就是说, 主叫 UE根据自身生成的密钥和 主叫侧 MP生成的密钥衍生出新的密钥, 主叫侧 MP根据主叫 UE生成 的密钥和自身生成的密钥衍生出新的密钥。 If both parties generate a key, the calling side CSCF first sends the key generated by the calling UE to the calling side MP, and the calling side MP regenerates the key, and returns the generated key through the calling side CSCF. Give the calling UE; or the calling UE and the calling side MP are based on the side and the opposite side. The resulting key derives a new key. That is to say, the calling UE derives a new key according to the key generated by the calling party and the key generated by the calling side MP, and the calling side MP derives a new key according to the key generated by the calling UE and the key generated by the calling UE. Key.
被叫 CSCF和被叫 UE的情况与此相似, 此处不再赘述。  The situation of the called CSCF and the called UE is similar, and will not be described here.
这里所述 MP的功能是处理媒体层面的数据流, 具体可以为媒体资 源处理器(MRFP )、 GPRS支持节点(GGSN )、边界网关功能实体( BGF ) 等功能实体的一个功能单元, 也可以是单独的一个功能实体。 图 2是本发明方法实施例二的消息流示意图。 实施例二中, 第一实 体为主叫 UE, 第二实体为被叫 UE, 采用用户到用户安全能力协商的方 法, 并且第一实体和第二实体双方都生成密钥。  The function of the MP is to process the data stream at the media level, and may be a functional unit of a functional entity such as a media resource processor (MRFP), a GPRS support node (GGSN), or a border gateway function entity (BGF), or may be A separate functional entity. 2 is a schematic diagram of a message flow of Embodiment 2 of the method of the present invention. In the second embodiment, the first entity is the calling UE, the second entity is the called UE, and the user-to-user security capability negotiation method is adopted, and both the first entity and the second entity generate a key.
如图 2所示, 方法实施例二包括以下步骤:  As shown in FIG. 2, the method embodiment 2 includes the following steps:
步骤 201: 主叫 UE向被叫 UE发送会话建立请求消息, 所述会话建 立请求消息携带有主叫 UE的媒体流安全能力信息。  Step 201: The calling UE sends a session establishment request message to the called UE, where the session establishment request message carries the media stream security capability information of the calling UE.
本步骤所述的会话建立请求消息就是一种会话请求消息, 比如为邀 请( INVITE )消息, 所述媒体流安全能力信息包括安全算法, 还可以包 括需保护的媒体类型、 安全传输协议类型和安全前提中一种或几种任意 的组合。  The session establishment request message described in this step is a session request message, such as an INVITE message, the media stream security capability information includes a security algorithm, and may also include a media type to be protected, a security transport protocol type, and security. One or a combination of any of the premise.
这里所述安全算法可以为完整性安全算法或机密性安全算法, 所述 需保护的媒体类型可以为文本、 音频、 视频等, 所述安全传输协议类型 可以为 RTP/SAVP或 RTP/SAVPF等。  The security algorithm may be an integrity security algorithm or a confidentiality security algorithm, and the media type to be protected may be text, audio, video, etc., and the security transmission protocol type may be RTP/SAVP or RTP/SAVPF.
所述安全前提是用来指示本次会话对媒体流安全的要求, 可以包括 第一实体期望的媒体流安全保护的强度标识,比如:强制的(mandatory ), 可选的(optional ), 可忽略的( none )。 所述安全前提还可以包括期望的 安全协商配置结果和当前的配置情况, 比如: 是否完成协商、 接收方向 已经完成安全配置、 接收和发送方法都完成安全配置等。 The security premise is used to indicate the security requirements of the media stream in the current session, and may include the strength identifier of the media stream security protection expected by the first entity, such as mandatory (mandatory), optional (optional), and negligible. ( none ). The security premise may also include a desired security negotiation configuration result and a current configuration situation, such as: whether to complete the negotiation, the receiving direction The security configuration, receiving, and sending methods have been completed to complete the security configuration.
另外, 这里所述主叫 UE的媒体流安全能力信息可以为主叫 UE提 供给被叫 UE的媒体流安全能力信息。 比如: 主叫 UE可以支持 5种安 全算法,但可以只选择其中 3种安全算法提供给被叫 UE,那么, INVITE 消息中就可以只携带所提供的 3种安全算法即可。 当然, 主叫 UE也可 以将支持的 5 中安全算法都提供给被叫 UE, 如何确定提供的媒体流安 全能力信息则需要由实际情况决定。 这里的媒体流安全能力信息相当于 一套或一套以上媒体流安全上下文, 每一套媒体流安全上下文包括一种 安全算法。  In addition, the media stream security capability information of the calling UE may be used by the calling UE to provide the media stream security capability information of the called UE. For example, the calling UE can support five security algorithms, but only three security algorithms can be selected for the called UE. Then, the INVITE message can carry only three security algorithms provided. Of course, the calling UE can also provide the supported 5 security algorithms to the called UE. How to determine the provided media stream security capability information needs to be determined by the actual situation. The media stream security capability information here is equivalent to one or more sets of media stream security contexts, and each set of media stream security contexts includes a security algorithm.
步骤 202: 被叫 UE将携带有自身媒体流安全能力信息的会话建立 响应消息返回给主叫 UE。  Step 202: The called UE returns a session establishment response message carrying its own media stream security capability information to the calling UE.
本步骤所述的会话建立响应消息就是一种会话应答消息, 比如为 183消息, 所述自身媒体流安全能力信息是被叫 UE提供的媒体流安全 能力信息, 可以为能够被主叫 UE支持的全部或部分信息。 比如: 被叫 UE从接收到的 INVITE消息中确定主叫 UE可以支持 3种安全算法,如 果被叫 UE 自身只支持其中的两种安全算法, 则可以向主叫 UE返回可 以支持的全部两种安全算法,也可以向主叫 UE返回其中一种安全算法。 实际应用中, 由于媒体流安全能力信息就是一套或一套以上媒体流安全 上下文信息的总称, 并且, 每一套媒体流安全上下文信息都包括安全算 法, 所以, 如果被叫 UE返回一种或一种以上安全算法, 也可以称为返 回一套或一套以上媒体流安全上下文信息。 即: 被叫 UE从主叫 UE提 供的所有媒体流安全上下文中选择出自身支持的至少一套媒体流安全 上下信息, 将选择出的至少一套媒体流安全上下文信息作为自身提供的 媒体流安全上下文信息, 并返回给主叫 UE。  The session establishment response message described in this step is a session response message, such as a 183 message, and the self-media stream security capability information is the media stream security capability information provided by the called UE, and can be supported by the calling UE. All or part of the information. For example, the called UE determines from the received INVITE message that the calling UE can support three security algorithms. If the called UE supports only two security algorithms, it can return all two types that can be supported to the calling UE. The security algorithm may also return one of the security algorithms to the calling UE. In practical applications, since the media stream security capability information is a general term for one or more sets of media stream security context information, and each set of media stream security context information includes a security algorithm, if the called UE returns one or One or more security algorithms may also be referred to as returning one or more sets of media stream security context information. That is, the called UE selects at least one set of media stream security context information supported by the media stream security context provided by the calling UE, and selects at least one set of media stream security context information as the media stream security provided by itself. Context information, and returned to the calling UE.
步骤 203 ~步骤 204:主叫 UE根据自身的媒体流安全能力信息和被 叫 UE提供的媒体流安全能力信息生成密钥, 并将生成的密钥通过确认 ( PRACK ) 消息发送给被叫 UE。 Step 203 to step 204: The calling UE according to its own media stream security capability information and is The media stream security capability information generated by the UE is generated to generate a key, and the generated key is sent to the called UE through a confirmation (PRACK) message.
这里, 所述主叫 UE可以从自身和被叫 UE都支持的安全算法中确 定一种算法, 并根据该算法生成密钥, 例如, 算法中的密钥长度要求是 128位的, 则生成对应 128位长度的密钥。 生成的密钥可以携带于媒体 流安全能力信息中。 同时, 携带密钥的媒体流安全能力信息还可以包括 密钥标识、 密钥有效期等信息。 如果将媒体流安全能力信息称为媒体流 安全上下文信息, 也就是说, 主叫 UE可以从被叫 UE提供的至少一套 的媒体流安全上下文信息中选择出一套, 将自身生成的密钥携带于选择 出的媒体流安全上下文信息, 并通过确认 PRACK消息发送给被叫 UE。 实际应用中, 也可以通过 UPDATE消息发送给被叫 UE。  Here, the calling UE may determine an algorithm from a security algorithm supported by both the calling UE and the called UE, and generate a key according to the algorithm. For example, if the key length requirement in the algorithm is 128 bits, a corresponding correspondence is generated. A 128-bit key. The generated key can be carried in the media stream security capability information. At the same time, the media stream security capability information carrying the key may further include information such as a key identifier, a key validity period, and the like. If the media stream security capability information is referred to as media stream security context information, that is, the calling UE may select one set from at least one set of media stream security context information provided by the called UE, and generate the generated key. It is carried in the selected media stream security context information, and is sent to the called UE by confirming the PRACK message. In actual applications, it can also be sent to the called UE through an UPDATE message.
步骤 205 ~步骤 206:被叫 UE根据自身的媒体流安全能力信息和主 叫 UE的媒体流安全能力信息生成密钥, 并将生成的密钥通过 200消息 返回给主叫 UE。  Step 205 to step 206: The called UE generates a key according to the media stream security capability information of the UE and the media stream security capability information of the calling UE, and returns the generated key to the calling UE through the 200 message.
同样,被叫 UE也可以将生成的密钥携带于媒体流安全能力信息中, 所述媒体流安全能力信息还可以包括密钥标识、 密钥有效期等信息。 这 里, 如果将媒体流安全能力信息称为媒体流安全上下文信息, 那么, 被 叫 UE获得主叫 UE返回的携带有密钥的媒体流安全上下文信息后, 就 可以确定该媒体流安全上下文信息中的安全算法是双方都支持的安全 算法, 直接根据该安全算法生成密钥即可。  Similarly, the called UE may also carry the generated key in the media stream security capability information, and the media stream security capability information may further include information such as a key identifier, a key validity period, and the like. Here, if the media stream security capability information is referred to as the media stream security context information, after the called UE obtains the security context information of the media stream carrying the key returned by the calling UE, the media stream security context information may be determined. The security algorithm is a security algorithm supported by both parties, and the key can be generated directly according to the security algorithm.
此时, 主叫 UE和被叫 UE都获得了双方生成的密钥, 可以利用所 述密钥保护传输的媒体流。 比如: 主叫 UE生成密钥 X, 被叫 UE生成 密钥 Y。 当主叫 UE需要向被叫 UE传输媒体流时, 就可以利用密钥 X/ 密钥 Υ将媒体流保护后传输给被叫 UE; 反之亦然。  At this time, both the calling UE and the called UE obtain the keys generated by both parties, and the transmitted media stream can be protected by the key. For example: The calling UE generates a key X, and the called UE generates a key Y. When the calling UE needs to transmit the media stream to the called UE, the media stream can be protected and transmitted to the called UE by using the key X/key ;; vice versa.
如果传输的媒体流有多个或多种, 在步骤 203和步骤 205中还可以 分别对不同的媒体流生成不同的密钥, 并利用密钥标识进行区分。 If there are multiple or more media streams to be transmitted, in steps 203 and 205, Different keys are generated for different media streams, and the key identifiers are used for distinguishing.
实际应用中, 如果只需要主叫 UE生成密钥, 被叫 UE和主叫 UE 利用相同的密钥对媒体流进行保护, 则可以省略步骤 205和步骤 206; 或者, 如果只需要被叫 UE生成密钥, 则可以省略步骤 203。 如果主叫 UE和被叫 UE需要利用衍生的密钥进行加解密,则可以在步骤 206之后, 进一步包括: 主叫 UE和被叫 UE分别根据双方生成的密钥衍生出新的 密钥, 并将衍生出的密钥作为保护媒体流的密钥。  In the actual application, if only the calling UE generates the key, and the called UE and the calling UE use the same key to protect the media stream, step 205 and step 206 may be omitted; or if only the called UE needs to be generated. For the key, step 203 can be omitted. If the calling UE and the called UE need to use the derived key for encryption and decryption, after step 206, the method further includes: the calling UE and the called UE respectively derive a new key according to the keys generated by the two parties, and The derived key is used as a key to protect the media stream.
当然, 本实施例是利用呼叫过程进行安全能力协商, 实际应用中, 还可以利用专门的安全能力协商的过程, 其方法与本实施例相似, 只是 承载密钥或媒体流安全能力信息的消息不同而已。  Certainly, in this embodiment, the security process is negotiated by using the call process. In the actual application, the process of negotiating the security capability may also be utilized. The method is similar to the embodiment, except that the message carrying the key or the media stream security capability information is different. Only.
本实施例安全协商结束后, 呼叫过程还将继续进行, 比如: 在步骤 206之后, 主叫 UE还需要向被叫 UE发送更新 ( UPDATE )消息, 被叫 UE返回 200消息等。  After the security negotiation is completed in this embodiment, the call process will continue. For example, after the step 206, the calling UE also needs to send an update (UPDATE) message to the called UE, and the called UE returns a 200 message.
另外, 本实施例是主叫 UE和被叫 UE是通过 PRACK消息和 200 消息传输密钥的。 实际应用中, 还可以利用其他的消息, 比如 UPDATE 消息和 200消息来传输密钥。 图 3 是本发明实施例三的流程图。 本实施例中, 第一实体为主叫 UE, 第二实体为 MGCF; 本实施例中, 由于第二实体为 MGCF, 被叫 用户为 CS域中的用户。 当主叫 UE与 MGCF之间建立呼叫连接之后, 主叫 UE通过 MGCF控制之下的 MGW传输媒体流。  In addition, in this embodiment, the calling UE and the called UE transmit the key through the PRACK message and the 200 message. In practical applications, other messages, such as UPDATE messages and 200 messages, can also be used to transmit keys. 3 is a flow chart of Embodiment 3 of the present invention. In this embodiment, the first entity is the calling UE, and the second entity is the MGCF. In this embodiment, the second entity is the MGCF, and the called user is the user in the CS domain. After the call connection is established between the calling UE and the MGCF, the calling UE transmits the media stream through the MGW under the control of the MGCF.
如图 3所示, 实施例四实现媒体流安全协商的方法包括以下步骤: 步骤 301 : 主叫 UE向 MGCF发送会话建立请求消息, 所述会话建 立请求消息携带有主叫 UE提供的媒体流安全能力信息。  As shown in FIG. 3, the method for implementing the media stream security negotiation in the fourth embodiment includes the following steps: Step 301: The calling UE sends a session establishment request message to the MGCF, where the session establishment request message carries the media stream security provided by the calling UE. Capability information.
本步骤与实施例二的步骤 201相同, 此处不再赘述。 步骤 302 ~步骤 303: MGCF通知 MGW进行资源预留, MGW向 MGCF返回响应消息。 This step is the same as step 201 of the second embodiment, and details are not described herein again. Step 302 ~ Step 303: The MGCF notifies the MGW to perform resource reservation, and the MGW returns a response message to the MGCF.
本步骤中,所述资源预留就是 MGCF指示 MGW增加实时传输协议 ( RTP )端点等, 至于如何进行资源预留则属于现有技术, 此处不再详 细描述。  In this step, the resource reservation is that the MGCF instructs the MGW to add a real-time transport protocol (RTP) endpoint, etc., and how to perform resource reservation is a prior art, and is not described in detail herein.
步骤 304: MGCF向主叫 UE返回会话建立响应消息, 即 183消息, 所述 183消息携带有 MGW支持的媒体流安全能力信息。  Step 306: The MGCF returns a session establishment response message, that is, a 183 message, to the calling UE, where the 183 message carries the media stream security capability information supported by the MGW.
这里所述 MGW支持的媒体流安全能力信息可以是主叫 UE提供并 可以由 MGW支持的全部信息,也可以是 MGCF从所述支持的全部信息 选择出的部分信息。  The media stream security capability information supported by the MGW may be all information provided by the calling UE and supported by the MGW, or may be part of the information selected by the MGCF from all the supported information.
步骤 305 ~步骤 306:主叫 UE根据自身提供的媒体流安全能力信息 和 MGW可以支持的媒体流安全能力信息生成密钥, 并将生成的密钥通 过 PRACK消息发送给 MGCF。  Step 305 ~ Step 306: The calling UE generates a key according to the media stream security capability information provided by the UE and the media stream security capability information that the MGW can support, and sends the generated key to the MGCF through a PRACK message.
步骤 307 ~步骤 309: MGCF根据 MGW支持的媒体流安全能力信 息和主叫 UE提供的媒体流安全能力信息生成密钥, 并将主叫 UE生成 的密钥和自身生成的密钥下发给 MGW,并接收 MGW返回的响应消息。  Step 307 to step 309: The MGCF generates a key according to the media stream security capability information supported by the MGW and the media stream security capability information provided by the calling UE, and sends the key generated by the calling UE and the generated key to the MGW. And receive the response message returned by the MGW.
实际应用中, MGCF可以通过修改( MODIFY )消息将密钥下发给 MGW。 当然, 下发的信息还可以包括需要保护的媒体类型、 安全传输 协议类型、 安全算法、 密钥标识、 密钥有效期等信息。  In practical applications, the MGCF can send the key to the MGW by modifying the (MODIFY) message. Of course, the delivered information may also include information such as the type of media to be protected, the type of security transport protocol, the security algorithm, the key identifier, the key validity period, and the like.
步骤 310: MGCF将自身生成的密钥通过 200消息返回给主叫 UE。 此时, 主叫 UE和被叫用户一侧的 MGW都获得了密钥, 就可以利 用获得的密钥保护传输媒体流。  Step 310: The MGCF returns the generated key to the calling UE through the 200 message. At this time, both the calling UE and the MGW on the called user side obtain the key, and the obtained key can be used to protect the transmission media stream.
与实施例二相似, 主叫 UE和 MGW还可以利用衍生的密钥传输媒 体流。 那么, 在步骤 307中还进一步包括: MGCF将主叫 UE生成的密 钥和自身生成的密钥衍生出新的密钥; 所述步骤 308下发的密钥为衍生 出的密钥。 相应地, 所述步骤 310之后, 主叫 UE还需要根据自身生成 的密钥和 MGCF生成的密钥衍生出新的密钥。 Similar to the second embodiment, the calling UE and the MGW can also transmit the media stream using the derived key. Then, in step 307, the method further includes: the MGCF deriving the key generated by the calling UE and the key generated by the UE to generate a new key; The key. Correspondingly, after the step 310, the calling UE further needs to derive a new key according to the key generated by itself and the key generated by the MGCF.
实际应用中, MGCF自身也可以不生成密钥, 而是由 MGW生成密 钥。 这样, MGCF只需将主叫 UE生成的密钥下发给 MGW即可, 同时 将 MGW生成的密钥发送给主叫 UE。  In practical applications, the MGCF itself may not generate a key, but the MGW generates a key. In this way, the MGCF only needs to send the key generated by the calling UE to the MGW, and simultaneously sends the key generated by the MGW to the calling UE.
本实施例是以双方都生成密钥为例进行描述的。 实际应用中, 如果 只需要主叫 UE生成密钥, 就可以省略步骤 307; 如果只需要 MGCF生 成密钥, 就可以省略 305。  This embodiment describes an example in which both parties generate a key. In practical applications, if only the calling UE needs to generate a key, step 307 can be omitted; if only the MGCF needs to generate a key, 305 can be omitted.
与实施例二相似, 本实施例安全协商结束后, 呼叫过程还将继续进 行, 比如: 在步骤 310之后, 主叫 UE还需要向 MGCF发送 UPDATE 消息, MGCF返回 200消息等。 图 4是本发明实施四的消息流示意图。 本实施例中, 第一实体为主 叫 UE,第二实体为主叫侧 CSCF,采用用户到网络安全能力协商的方法, 并且双方都生成密钥。  Similar to the second embodiment, after the security negotiation is completed in this embodiment, the call process will continue. For example, after the step 310, the calling UE also needs to send an UPDATE message to the MGCF, and the MGCF returns a 200 message. 4 is a schematic diagram of a message flow of Embodiment 4 of the present invention. In this embodiment, the first entity is the calling UE, and the second entity is the calling side CSCF, and the method of user-to-network security capability negotiation is adopted, and both parties generate a key.
本实施例所述第一实体和第二实体都是主叫侧的实体,实际应用中, 由于主叫 UE发起呼叫时, 被叫侧实体也需要参与呼叫过程, 所以, 被 叫侧也有相应的第一实体和第二实体。 被叫侧的第一实体和第二实体也 可以如主叫侧一样生成密钥, 并利用密钥进行媒体流的传输。 但需要注 意的是, 主叫侧和被叫侧进行安全协商完全是独立的。 比如: 主叫侧进 行安全协商, 并生成密钥, 被叫侧可以不进行安全协商, 仍然采用普通 的呼叫过程。 也就是说, 呼叫结束之后, 主叫侧和被叫侧都可以分别采 用各侧生成的密钥保护各侧的媒体流, 也可以只有一侧采用密钥保护传 输的媒体流。  In this embodiment, the first entity and the second entity are both entities on the calling side. In actual application, when the calling UE initiates a call, the called side entity also needs to participate in the calling process, so the called side also has a corresponding The first entity and the second entity. The first entity and the second entity on the called side may also generate a key as the calling side, and use the key to perform media stream transmission. However, it should be noted that the security negotiation between the calling side and the called side is completely independent. For example, the calling side performs security negotiation and generates a key. The called side can not perform security negotiation and still adopt the normal calling process. That is to say, after the call ends, both the calling side and the called side can use the keys generated by each side to protect the media streams on each side, or only one side can protect the transmitted media stream by using a key.
本实施例中, 假设主叫侧和被叫侧都进行安全能力协商。 如图 4所示, 实施例四实现媒体流安全协商的方法包括以下步骤: 步骤 401: 主叫 UE向主叫侧 CSCF发送会话建立请求消息,所述会 话建立请求消息携带有主叫 UE的媒体流安全能力信息。 In this embodiment, it is assumed that both the calling side and the called side perform security capability negotiation. As shown in FIG. 4, the method for implementing the media stream security negotiation in the fourth embodiment includes the following steps: Step 401: The calling UE sends a session establishment request message to the calling side CSCF, where the session establishment request message carries the media of the calling UE. Flow security capability information.
与实施例二相似,本步骤所述的会话建立请求消息为 INVITE消息, 所述媒体流安全能力信息包括安全算法。  Similar to the second embodiment, the session establishment request message described in this step is an INVITE message, and the media stream security capability information includes a security algorithm.
步骤 402:主叫侧 CSCF删除会话建立请求消息中主叫 UE的安全算 法, 并将所述会话建立请求消息继续发送给被叫侧 CSCF。  Step 402: The calling side CSCF deletes the security algorithm of the calling UE in the session establishment request message, and sends the session establishment request message to the called side CSCF.
由于主叫侧和被叫侧安全协商是完全独立的, 被叫侧不需要获取主 叫 UE提供的媒体流安全能力信息, 所以, 可以由主叫侧 CSCF将主叫 UE提供的安全算法删除。 当然, 如果被叫侧 CSCF直接忽略掉会话建 立请求中的主叫 UE的安全算法, 也可以不删除。  Since the security negotiation between the calling side and the called side is completely independent, the called side does not need to obtain the media stream security capability information provided by the calling UE. Therefore, the security algorithm provided by the calling UE can be deleted by the calling side CSCF. Of course, if the called side CSCF directly ignores the security algorithm of the calling UE in the session establishment request, it may not delete.
步骤 403: 被叫侧 CSCF将被叫侧 MP支持的安全算法添加到会话 建立请求消息, 并将所述会话建立请求消息继续发送给被叫 UE。  Step 403: The called side CSCF adds the security algorithm supported by the called side MP to the session establishment request message, and continues to send the session establishment request message to the called UE.
步骤 404: 被叫 UE将携带有自身媒体流安全能力信息的会话建立 响应消息返回给被叫侧 CSCF。  Step 404: The called UE returns a session establishment response message carrying its own media stream security capability information to the called side CSCF.
与实施例二相同, 本步骤所述的会话建立响应消息为 183消息。 步骤 405:被叫侧 CSCF记录被叫 UE的媒体流安全能力信息,再删 除会话建立响应消息中被叫 UE的安全算法, 并将所述会话建立响应消 息继续返回给主叫侧 CSCF。  As in the second embodiment, the session establishment response message described in this step is a 183 message. Step 405: The called side CSCF records the media stream security capability information of the called UE, deletes the security algorithm of the called UE in the session establishment response message, and continues to return the session establishment response message to the calling side CSCF.
步骤 406: 主叫侧 CSCF将主叫侧 MP支持的安全算法添加到会话 建立响应消息中, 并继续返回给主叫 UE。  Step 406: The calling side CSCF adds the security algorithm supported by the calling side MP to the session establishment response message, and continues to return to the calling UE.
与实施例二的步骤 202相似, 这里所述主叫 MP支持的安全算法可 以是主叫 UE提供并由主叫侧 MP支持的全部安全算法, 也可以是主叫 侧 CSCF从所述全部安全算法中选择出的部分安全算法。  Similar to the step 202 of the second embodiment, the security algorithm supported by the calling MP may be all security algorithms provided by the calling UE and supported by the calling side MP, or may be the calling side CSCF from all the security algorithms. Part of the security algorithm selected.
步骤 407 ~步骤 408:主叫 UE根据自身的媒体流安全能力信息和主 叫侧 CSCF返回的媒体流安全能力信息生成密钥 XI , 并将生成的密钥 XI通过 PRACK消息发送给主叫侧 CSCF。 Step 407 ~ Step 408: The calling UE according to its own media stream security capability information and the main The media stream security capability information returned by the side CSCF is generated to generate a key XI, and the generated key XI is sent to the calling side CSCF through a PRACK message.
所述步骤 407 ~步骤 408与实施例二中步骤 203 ~步骤 204相似,只 是主叫 UE接收到的是由主叫侧 CSCF提供的主叫侧 MP支持的媒体流 安全能力信息。  The steps 407 to 408 are similar to the steps 203 to 204 in the second embodiment. Only the calling UE receives the media stream security capability information supported by the calling side MP provided by the calling side CSCF.
步骤 409: 主叫侧 CSCF记录 PRACK消息中媒体流安全能力信息, 再删除 PRACK消息中的密钥 XI、 安全算法, 并继续将 PRACK消息发 送给被叫侧 CSCF。  Step 409: The calling side CSCF records the media stream security capability information in the PRACK message, deletes the key XI and the security algorithm in the PRACK message, and continues to send the PRACK message to the called side CSCF.
这里, 由于主叫侧和被叫侧安全协商是独立的, 被叫侧不需要主叫 UE生成的密钥,所以需要将 PRACK消息中主叫侧密钥、安全算法等相 关信息删除。 当然, 如果被叫侧 CSCF忽略 PRACK消息中主叫侧密钥 XI和安全算法, 也可以不删除。  Here, since the security negotiation between the calling side and the called side is independent, the called side does not need the key generated by the calling UE, so the related information such as the calling side key and the security algorithm in the PRACK message needs to be deleted. Of course, if the called side CSCF ignores the calling side key XI and the security algorithm in the PRACK message, it may not delete.
步骤 410 ~步骤 411 :被叫侧 CSCF根据被叫侧 MP支持的媒体流安 全能力信息和被叫 UE提供的媒体流安全能力信息生成密钥 Y1 ,并将生 成的密钥 Y1添加到 PRACK消息中发送给被叫 UE。  Steps 410 to 411: The called side CSCF generates a key Y1 according to the media stream security capability information supported by the called side MP and the media stream security capability information provided by the called UE, and adds the generated key Y1 to the PRACK message. Send to the called UE.
步骤 412 ~步骤 413: 被叫 UE记录密钥 Y1 , 再根据自身的媒体流 安全能力信息和被叫侧 MP支持的媒体流安全能力生成密钥 Y2,并将生 成的密钥 Y2通过 200消息返回给被叫侧 CSCF。  Steps 412 to 413: The called UE records the key Y1, and generates a key Y2 according to the media stream security capability information of the media stream and the media stream security capability supported by the MP on the called side, and returns the generated key Y2 through the 200 message. Give the called side CSCF.
步骤 414 ~步骤 415: 被叫侧 CSCF将密钥 Y1和密钥 Y2下发给被 叫侧 MP, 再删除 200消息中密钥 Y2, 并将所述 200消息继续返回给主 叫侧 CSCF。  Step 414 ~ Step 415: The CSCF of the called side sends the key Y1 and the key Y2 to the called side MP, deletes the key Y2 in the 200 message, and returns the 200 message to the calling side CSCF.
步骤 416 ~步骤 418: 主叫侧 CSCF根据事先记录的主叫 UE的媒体 流安全能力信息和主叫侧 MP支持的媒体流能力信息生成密钥 X2,再将 密钥 XI和密钥 X2下发给主叫侧 MP, 并将生成的密钥 X2添加到 200 消息中继续返回给主叫 UE。 此时, 主叫 UE和主叫侧 CSCF获得了密钥 XI和密钥 X2, 被叫侧 CSCF和被叫 UE获得了密钥 Y1和密钥 Y2。 在之后传输媒体流的过程 中,主叫 UE和主叫侧 CSCF将利用密钥 XI和密钥 X2保护传输媒体流, 被叫侧 CSCF和被叫 UE将利用密钥 Y1和密钥 Y2保护传输媒体流。也 就是说, 在整个传输过程中, 媒体流并不是全程保护, 而是分段进行保 护的。 Step 416 to step 418: The calling side CSCF generates a key X2 according to the previously recorded media stream security capability information of the calling UE and the media stream capability information supported by the calling side MP, and then issues the key XI and the key X2. The calling side MP is added, and the generated key X2 is added to the 200 message to continue to return to the calling UE. At this time, the calling UE and the calling side CSCF obtain the key XI and the key X2, and the called side CSCF and the called UE obtain the key Y1 and the key Y2. In the process of transmitting the media stream later, the calling UE and the calling side CSCF will protect the transmission media stream by using the key XI and the key X2, and the called side CSCF and the called UE will protect and transmit by using the key Y1 and the key Y2. Media stream. That is to say, during the entire transmission process, the media stream is not protected in full, but is protected in segments.
与实施例三相似, 步骤 417 中, 主叫侧 CSCF也可以不将密钥 XI 和密钥 X2下发给主叫侧 MP, 而是利用密钥 XI和密钥 X2衍生出新的 密钥 X,, 并将衍生出的密钥 X,下发给主叫侧 MP。 相应地, 步骤 418之 后, 主叫 UE也将根据密钥 XI和密钥 X2衍生出新的密钥 X,。 这里所 述是主叫侧的情况, 被叫侧情况与之相似, 此处不再赘述。  Similar to the third embodiment, in step 417, the calling side CSCF may also not issue the key XI and the key X2 to the calling side MP, but derive the new key X by using the key XI and the key X2. , and the derived key X is sent to the calling side MP. Correspondingly, after step 418, the calling UE will also derive a new key X based on the key XI and the key X2. The situation described here is on the calling side, and the situation on the called side is similar, and will not be described here.
与实施例三相似, 主叫侧 CSCF自身也可以不生成密钥, 而是由主 叫侧 MP生成密钥。 这样, 主叫侧 CSCF只需将主叫 UE生成的密钥下 发给 MP即可, 之后将 MP生成的密钥发送给主叫 UE。  Similar to the third embodiment, the calling side CSCF itself may not generate a key, but the calling side MP generates a key. In this way, the calling side CSCF only needs to send the key generated by the calling UE to the MP, and then sends the key generated by the MP to the calling UE.
对于被叫侧一方, 被叫侧 CSCF自身也可以不生成密钥, 而是由被 叫侧 MP先生成密钥,并将生成的密钥通过被叫侧 CSCF发送给被叫 UE; 当被叫 UE生成密钥后, 再通过被叫侧 CSCF将被叫 UE生成的密钥下 发给被叫侧 MP。  For the called party side, the called side CSCF itself may not generate a key, but the called side MP is a key, and the generated key is sent to the called UE through the called side CSCF; After the UE generates the key, the key generated by the called UE is sent to the called side MP through the CSCF on the called side.
本实施例是以双方都生成密钥为例进行描述的, 实际应用中, 主叫 侧和被叫侧也可以分别只有一方生成密钥。 比如: 如果主叫侧只需要由 主叫 UE生成密钥,则可以省略步骤 417,如果主叫侧只需要主叫侧 CSCF 生成密钥, 则可以省略步骤 407。 进一步地, 主叫侧 CSCF可以在步骤 408接收到 PRACK消息后, 就可以将密钥下发给主叫侧 MP, 而不必等 到 200消息时才下发。这里所述为主叫侧的情况,被叫侧情况与此相似, 当然, 与实施例二〜实施三相似, 本实施例步骤 418之后, 还需要 继续执行呼叫其他流程,比如:主叫 UE通过主叫侧 CSCF、被叫侧 CSCF 向被叫 UE发送 UPDATE消息, 并接收返回的 200消息等。 This embodiment is described by taking the key generation by both parties. In actual applications, only one party can generate a key on the calling side and the called side. For example, if the calling side only needs to generate a key by the calling UE, step 417 may be omitted. If the calling side only needs the calling side CSCF to generate a key, step 407 may be omitted. Further, the calling side CSCF may send the key to the calling side MP after receiving the PRACK message in step 408, and does not have to wait until the 200 message is sent. Here, the case of the calling side is similar to the case of the called side. Certainly, similar to the second embodiment to the third embodiment, after the step 418 in this embodiment, the call further needs to continue to perform other processes, for example, the calling UE sends an UPDATE message to the called UE through the calling side CSCF and the called side CSCF, and Receive the returned 200 message, etc.
另外, 本实施例所述的 CSCF可以为代理的 CSCF, 即 P-CSCF, 也 可以为服务的 CSCF, 即 S-CSCF。  In addition, the CSCF described in this embodiment may be a CSCF of a proxy, that is, a P-CSCF, or a CSCF of a service, that is, an S-CSCF.
上述实施例二 ~实施例四中, 第一实体需要通过会话建立请求消息 向第二实体发送自身提供媒体流安全能力信息, 第二实体根据第一实体 的媒体流安全能力信息再返回自身提供的媒体流安全能力信息。 实际应 用中, 第一实体和第二实体支持媒体流安全传输的能力可能不相同。 为 了第二实体可以灵活地选择第一实体的媒体流安全能力信息, 第一实体 可以事先设置一个或一个以上媒体流安全能力信息, 第二实体从所述媒 体流安全能力信息中选择一个。  In the foregoing Embodiment 2 to Embodiment 4, the first entity needs to send the media stream security capability information to the second entity by using the session establishment request message, and the second entity returns the information provided by the second entity according to the media stream security capability information of the first entity. Media stream security capability information. In actual applications, the ability of the first entity and the second entity to support secure transmission of media streams may be different. In order for the second entity to flexibly select the media stream security capability information of the first entity, the first entity may set one or more media stream security capability information in advance, and the second entity selects one of the media stream security capability information.
图 5 是实现选择媒体流安全能力信息方法实施例五的消息流示意 图。 如图 5所示, 该方法为:  FIG. 5 is a schematic diagram of a message flow of Embodiment 5 of a method for selecting a media stream security capability information. As shown in Figure 5, the method is:
步骤 501: 第一实体向第二实体发送会话建立请求消息, 所述会话 建立请求消息包含一个或一个以上媒体流安全能力信息。  Step 501: The first entity sends a session establishment request message to the second entity, where the session establishment request message includes one or more media stream security capability information.
步骤 502~步骤 503: 第二实体从所述媒体流安全能力信息中选择出 一个, 根据选择出的媒体流安全能力信息和本侧支持的媒体流安全能力 信息确定本侧需提供的媒体流安全能力信息, 再将本侧提供的媒体流安 全能力信息通过会话建立响应消息返回给第一实体。  Step 502 to step 503: The second entity selects one of the media stream security capability information, and determines the media stream security to be provided on the side according to the selected media stream security capability information and the media stream security capability information supported by the local side. The capability information is returned to the first entity by using the session establishment response message provided by the side.
这里所述媒体流安全能力信息还可以包含优先级, 当第二实体选择 媒体流安全能力信息时, 可以按照优先级别进行选择, 并将自身能够支 持的最高一级的媒体流安全能力信息作为选择出的媒体流安全能力信 息。  The media stream security capability information may further include a priority. When the second entity selects the media stream security capability information, the second entity may select the priority according to the priority level, and select the highest level media stream security capability information that can be supported by the second entity. Media stream security capability information.
本发明的实施例都是以第二实体可以支持安全传输为例进行描述 的。 实际应用中, 如果第二实体不支持第一实体提供的安全算法, 或者 第二实体不具备安全传输媒体流的能力, 那么, 当接收到会话建立请求 消息时, 第二实体将返回失败响应消息, 比如 4xx消息。 Embodiments of the present invention are described by taking an example in which the second entity can support secure transmission. of. In a practical application, if the second entity does not support the security algorithm provided by the first entity, or the second entity does not have the capability of securely transmitting the media stream, the second entity returns a failure response message when receiving the session establishment request message. , such as 4xx messages.
对于这种情况, 如果要保证呼叫成功, 可以在事先设置基本会话描 述配置, 并且基本会话描述配置不包含媒体流安全能力信息。 当第二实 体从接收到的会话建立请求消息中找不到支持的媒体流安全能力信息, 或者不支持选择媒体流安全能力信息的能力时, 可以直接将基本会话描 述配置作为第一实体提供给自身的配置, 此后的呼叫流程将按照现有技 术的呼叫流程进行。  In this case, if the call is to be guaranteed to be successful, the basic session description configuration can be set in advance, and the basic session description configuration does not include the media stream security capability information. When the second entity cannot find the supported media stream security capability information in the received session establishment request message, or does not support the capability of selecting the media stream security capability information, the basic session description configuration may be directly provided as the first entity. With its own configuration, the subsequent call flow will proceed according to the prior art call flow.
与实施例二相似, 实施例三〜实施例五中, 当第一实体发送的 INVITE 消息中, 所述媒体流安全能力信息除了包括安全算法, 还可以 包括需保护的媒体类型、 安全传输协议类型、 安全前提中一种或几种任 意的组合。 第一实体和第二实体之间交互的其他消息中, 所述媒体流安 全能力信息也可以包括媒体类型、 安全传输协议类型、 安全前提中一种 或几种任意的组合, 至于是否包括密钥和安全算法则与具体的实现相 关。 比如: 在实施例四的步骤 409中, 就需要主叫侧 CSCF将媒体流安 全能力信息中的密钥和安全算法删除, 此处不再——列举。  Similar to the second embodiment, in the INVITE message sent by the first entity, the media stream security capability information may include a media type to be protected and a secure transmission protocol type in addition to the security algorithm. One or several arbitrary combinations of safety preconditions. In other messages that are exchanged between the first entity and the second entity, the media stream security capability information may also include one or a combination of any one of a media type, a security transport protocol type, and a security premise, and whether the key is included. And security algorithms are related to specific implementations. For example, in step 409 of the fourth embodiment, the calling side CSCF is required to delete the key and security algorithm in the media stream security capability information, and is not enumerated here.
与实施例二相似, 实施例三〜实施例五中, 可以将生成的密钥携带 于媒体流安全能力信息中发送给对方。 此时, 所述媒体流安全能力信息 中还可以包括密钥有效期等参数。 如果有多个需要保护的媒体流, 每次 还可以针对每一个不同的媒体流生成不同的密钥, 所述媒体流安全能力 信息中还可以包括密钥标识, 以区分对应的媒体流。  Similar to the second embodiment, in the third to fifth embodiments, the generated key may be carried in the media stream security capability information and sent to the other party. In this case, the media stream security capability information may further include parameters such as a key validity period. If there are multiple media streams to be protected, a different key may be generated for each different media stream, and the media stream security capability information may further include a key identifier to distinguish the corresponding media stream.
实施例二 ~实施例五中, 所述安全算法可以在 rfc 4568中定义的媒 体流安全描述协议 ( SDES ) 中 a =crypto头域中作为 crypto- suite参数来 携带; 所述生成的密钥、 密钥标识、 密钥有效期等可以在 SDES协议中 的 a =crypto头域中的 key-params参数来携带, 具体的可以使用 key - method参数指示密钥携带方法, 例如内联( inline )方法。 使用 key-info 参数来携带密钥以及密钥标识和有效期等参数。 SDES 中对应 SRTP协 议的可以使用^口下头 i或: srtp-crypto-suite携带安全算法, srtp-key-method 参数指示密钥携带方法, 例如是用内联(inline )头域表示, srtp-key-info 参数携带密钥密钥标识和有效期等参数。 对于仅仅携带算法而没有携带 密钥的 a =crypto 头域, 可以仅仅使用 crypto-suite 头域, 或者使用 key-params参数中的密钥字段, 但将 key-info参数设置成一个特殊的值 表示没有有效的密钥, 例如将 key-info字段都标识成空值 NULL, 或者 设置成随便一个没有意义的值。 In the second to fifth embodiments, the security algorithm may be carried as a crypto-suite parameter in the a =crypto header field in the Media Stream Security Description Protocol (SDES) defined in rfc 4568; the generated key, Key identification, key validity period, etc. can be in the SDES protocol The key-params parameter in the a=crypto header field is carried. Specifically, the key-method parameter can be used to indicate a key carrying method, such as an inline method. Use the key-info parameter to carry the key and parameters such as key identification and expiration date. The corresponding SRTP protocol in SDES can use the following i or: srtp-crypto-suite carries the security algorithm, and the srtp-key-method parameter indicates the key carrying method, for example, it is represented by inline header field, srtp-key The -info parameter carries parameters such as the key key identifier and validity period. For the a = crypto header field that only carries the algorithm and does not carry the key, you can just use the crypto-suite header field, or use the key field in the key-params parameter, but set the key-info parameter to a special value. There is no valid key, such as identifying the key-info field as a null value NULL, or setting it to a meaningless value.
实施例二〜实施例五中,如果采用多媒体因特网密钥协商(MIKEY ) 管理协议, 其中的安全算法、 包括密钥长度、 密钥产生率等的安全上下 文都可以携带于 RFC 3830 MIKEY协议中安全策略负载( Security Policy payload )字段中定义的参数中。 所述生成的密钥、 密钥有效期等可以携 带于 MIKEY中密钥传输负载( KEMAC, Key data transport payload )字 段中。整个 MIKEY消息则可以携带于 RFC4567规定的 a =key-mgmt SDP 属性字段中。  In the second embodiment to the fifth embodiment, if the multimedia Internet key agreement (MIKEY) management protocol is adopted, the security algorithm, including the key length, the key generation rate, and the like, may be carried in the RFC 3830 MIKEY protocol. In the parameters defined in the Security Policy payload field. The generated key, key validity period, and the like can be carried in the key transfer payload (KEMAC, Key data transport payload) field. The entire MIKEY message can be carried in the a =key-mgmt SDP attribute field specified in RFC4567.
实施例二 ~实施例五中,所述安全算法也可以在会话发起协议( SIP ) 中扩展一个安全算法头域来携带; 同样, 所述生成的密钥、 密钥标识、 密钥有效期等也可以在 SIP协议来中扩展对应的头域来携带。  In the second embodiment to the fifth embodiment, the security algorithm may also be extended by a security algorithm header field in the Session Initiation Protocol (SIP); likewise, the generated key, the key identifier, the key validity period, and the like are also The corresponding header field can be extended in the SIP protocol to carry.
应用本发明实施例方案, 呼叫中的第一实体和第二实体都可以获得 密钥, 从而实现安全传输媒体流的目的。 至于是采用用户到用户安全能 力协商的方法, 还是用户到网络安全能力协商的方法, 是采用一方生成 密钥的方法, 还是双方都生成密钥或者进一步衍生出新的密钥的方法, 第一实体和第二实体之间需要协商的具体内容, 协商过程采用是否采用 呼叫过程中的消息, 采用呼叫过程中的哪些消息, 协商过程中的信息如 何携带于消息中等情况都可以根据网络部署应用本发明方案, 此处不再 歹 针对本发明提出的媒体流安全能力协商的方法, 本发明还提出一种 媒体流安全能力协商的系统。 With the solution of the embodiment of the present invention, the first entity and the second entity in the call can obtain the key, thereby achieving the purpose of securely transmitting the media stream. Whether it is a user-to-user security capability negotiation method or a user-to-network security capability negotiation method, is a method of generating a key by one party, or a method of generating a key or further deriving a new key by both parties, first The specific content of the negotiation between the entity and the second entity, whether the negotiation process adopts The message in the process of the call, the use of the message in the call process, and the information in the negotiation process are carried in the message. The solution of the present invention can be applied according to the network deployment, and the media stream security capability negotiation proposed by the present invention is not discussed here. The method also provides a system for media stream security capability negotiation.
图 6显示了实现媒体流安全能力协商系统实施例一的基本结构示意 图。 如图 6所示, 该系统包括:  FIG. 6 is a schematic diagram showing the basic structure of Embodiment 1 of a media stream security capability negotiation system. As shown in Figure 6, the system includes:
第一实体 601 , 用于向第二实体 602发送会话建立请求消息, 接收 返回的会话响应消息, 根据本侧提供的媒体流安全能力信息和第二实体 602提供的媒体流安全能力信息生成密钥, 并将生成的密钥发送给第二 实体 602;  The first entity 601 is configured to send a session establishment request message to the second entity 602, receive the returned session response message, and generate a key according to the media stream security capability information provided by the current entity and the media stream security capability information provided by the second entity 602. And sending the generated key to the second entity 602;
第二实体 602, 用于接收第一实体 601发送的会话建立消息, 向第 一实体 601提供本侧媒体流安全能力信息, 并接收第一实体 601生成的 密钥。  The second entity 602 is configured to receive the session establishment message sent by the first entity 601, provide the first entity media stream security capability information to the first entity 601, and receive the key generated by the first entity 601.
其中, 第一实体 601中包括密钥生成单元 6011 , 用于根据本侧已有 的媒体流安全能力信息和第二实体 602提供的媒体流安全能力信息生成 密钥; 第一实体 601中还包括收发单元 6012, 用于收发与第二实体 602 之间交互的消息。  The first entity 601 includes a key generating unit 6011, configured to generate a key according to the existing media stream security capability information of the current side and the media stream security capability information provided by the second entity 602. The first entity 601 further includes The transceiver unit 6012 is configured to send and receive messages exchanged with the second entity 602.
当然, 如果需要双方都生成密钥, 第二实体 602中也可以包括密钥 生成单元 6021和收发单元 6022, 其功能与第一实体 601中的相似, 此 处不再详细描述。  Of course, if both parties need to generate a key, the second entity 602 may also include a key generation unit 6021 and a transceiver unit 6022, the functions of which are similar to those in the first entity 601, and will not be described in detail herein.
这里所述第一实体 601可以为主叫 UE, 第二实体 602可以为被叫 Here, the first entity 601 can be a calling UE, and the second entity 602 can be a called party.
UE。 UE.
所述第一实体 601还可以为主叫 UE, 第二实体 602为 MGCF, 此 时, 该系统还包括 MGW, 用于接收从 MGCF下发的密钥。 The first entity 601 may also be a calling UE, and the second entity 602 is an MGCF. The system further includes an MGW for receiving a key delivered from the MGCF.
所述第一实体 601还可以为主叫 UE,第二实体 602为主叫侧 CSCF; 或者, 第一实体 601为被叫侧 CSCF, 第二实体为被叫 UE; 在这种情况 下, 该系统还包括 MP, 用于接收从 CSCF下发的密钥。  The first entity 601 may also be the calling UE, and the second entity 602 is the calling side CSCF; or the first entity 601 is the called side CSCF, and the second entity is the called UE; in this case, the The system further includes an MP, configured to receive a key delivered from the CSCF.
图 7是本发明系统实施例二的基本结构示意图。 如图 7所示, 本实 施例包括:  Figure 7 is a schematic diagram showing the basic structure of the second embodiment of the system of the present invention. As shown in Figure 7, this embodiment includes:
主叫 UE701 , 用于向 MGCF702发送会话建立消息, 接收返回的会 话响应消息, 根据本侧提供的媒体流安全能力信息和 MGCF702提供的 媒体流安全能力信息生成密钥, 并将生成的密钥发送给 MGCF702;  The calling UE 701 is configured to send a session establishment message to the MGCF 702, receive the returned session response message, generate a key according to the media stream security capability information provided by the side and the media stream security capability information provided by the MGCF 702, and send the generated key. To MGCF702;
MGCF702, 用于向主叫 UE701提供 MGW703可以支持的媒体流安 全能力信息, 接收主叫 UE701生成的密钥, 根据主叫 UE701提供的媒 体流安全能力信息和 MGW703 支持的媒体流安全能力信息生成密钥, 将主叫 UE701生成的密钥和自身生成的密钥下发给 MGW703;  The MGCF 702 is configured to provide the calling UE 701 with the media stream security capability information that the MGW 703 can support, receive the key generated by the calling UE 701, and generate the confidentiality according to the media stream security capability information provided by the calling UE 701 and the media stream security capability information supported by the MGW 703. Key, the key generated by the calling UE 701 and the key generated by itself are sent to the MGW 703;
MGW703 , 用于接收从 MGCF702下发的密钥。  The MGW 703 is configured to receive a key that is delivered from the MGCF 702.
当需要进行安全能力协商时, 主叫 UE701向 MGCF702发送携带有 自身媒体流安全能力信息的 INVITE消息; MGCF702通知 MGW703进 行资源预留, 并将 MGW703支持的媒体流安全能力信息携带于 183消 息中返回给主叫 UE701;主叫 UE701根据自身的媒体流安全能力信息和 MGW703支持的媒体流安全能力信息生成密钥 X, 并将密钥 X携带于 PRACK消息中发送给 MGCF702; MGCF702根据主叫 UE701提供的媒 体流安全能力信息和 MGW703支持的媒体流安全能力信息生成密钥 Y, 并将密钥 X和密钥 Y下发给 MGW701 , 同时将密钥 Y通过 200消息返 回给主叫 UE701。  When the security capability negotiation is required, the calling UE 701 sends an INVITE message carrying the information about the security capability of the media stream to the MGCF 702. The MGCF 702 notifies the MGW 703 to perform resource reservation, and carries the media stream security capability information supported by the MGW 703 in the 183 message. The calling UE 701 generates a key X according to the media stream security capability information of the media stream and the media stream security capability information supported by the MGW 703, and carries the key X in the PRACK message and sends the key X to the MGCF 702. The MGCF 702 provides the message according to the calling UE 701. The media stream security capability information and the media stream security capability information supported by the MGW 703 generate a key Y, and the key X and the key Y are sent to the MGW 701, and the key Y is returned to the calling UE 701 through the 200 message.
此时, 主叫 UE701和 MGW703都获得了密钥 X和密钥 Y, 就可以 利用密钥 X和密钥 Y进行媒体流传输, 达到保护媒体流的目的。 当然, 也可以由主叫 UE701和 MGCF702 ^据密钥 X和密钥 Y 4汙生出新的密 钥, 并且, MGCF702将衍生出的密钥下发给 MGW701。 At this time, both the calling UE 701 and the MGW 703 obtain the key X and the key Y, and the key stream X and the key Y can be used for media stream transmission to achieve the purpose of protecting the media stream. of course, The new key is also generated by the calling UE 701 and the MGCF 702 according to the key X and the key Y 4, and the MGCF 702 sends the derived key to the MGW 701.
图 8是本发明系统实施例三的基本结构示意图。 如图 8所示, 本实 施例包括:  Figure 8 is a schematic diagram showing the basic structure of a third embodiment of the system of the present invention. As shown in Figure 8, this embodiment includes:
主叫 UE801 ,用于根据自身媒体流安全能力信息和主叫侧 CSCF802 提供的媒体流安全能力信息生成密钥 XI ,并将生成的密钥 XI发送给主 叫侧 CSCF802;  The calling UE 801 is configured to generate a key XI according to the media stream security capability information and the media stream security capability information provided by the calling side CSCF 802, and send the generated key XI to the calling side CSCF 802;
主叫侧 CSCF802, 用于接收主叫 UE801生成的密钥 XI , 根据主叫 UE801 的媒体流安全能力信息和主叫侧 MP803支持的媒体流安全能力 信息生成密钥 X2,并将密钥 XI和密钥 X2下发给主叫侧 MP803,同时, 将密钥 X2发送给主叫 UE801;  The calling side CSCF 802 is configured to receive the key XI generated by the calling UE 801, generate a key X2 according to the media stream security capability information of the calling UE 801 and the media stream security capability information supported by the calling side MP 803, and generate the key XI and The key X2 is sent to the calling side MP803, and the key X2 is sent to the calling UE 801;
被叫侧 CSCF804, 用于根据被叫侧 CSCF806支持的媒体流安全能 力信息和被叫 UE805的媒体流安全能力信息生成密钥 Y1 , 并将生成的 密钥 Y1发送给被叫 UE805, 接收被叫 UE805生成的密钥 Y2, 并将密 钥 Y1和 Y2下发给被叫侧 MP806;  The called side CSCF 804 is configured to generate a key Y1 according to the media stream security capability information supported by the called side CSCF 806 and the media stream security capability information of the called UE 805, and send the generated key Y1 to the called UE 805 to receive the called party. The key Y2 generated by the UE 805, and the keys Y1 and Y2 are sent to the called side MP806;
被叫 UE805, 接收被叫侧 CSCF806生成的密钥 Y1 , 并根据被叫侧 CSCF806的媒体流安全能力信息和被叫侧 MP806支持的媒体流安全能 力信息生成密钥 Y2, 将密钥 Y2发送给被叫侧 CSCF806。  The called UE 805 receives the key Y1 generated by the called side CSCF 806, and generates a key Y2 according to the media stream security capability information of the called side CSCF 806 and the media stream security capability information supported by the called side MP 806, and sends the key Y2 to The called side CSCF806.
当需要进行媒体流安全能力协商时, 在主叫侧, 主叫 UE801向主叫 侧 CSCF802发送携带有自身媒体流安全能力信息的 INVITE消息;主叫 侧 CSCF802将主叫侧 MP803支持的媒体流安全能力信息携带于 183消 息中返回给主叫 UE801;主叫 UE801根据自身的媒体流安全能力信息和 主叫侧 MP803支持的媒体流安全能力信息生成密钥 XI , 并将密钥 XI 携带于 PRACK消息中发送给主叫侧 CSCF802; 主叫侧 CSCF802根据 主叫 UE801提供的媒体流安全能力信息和 MP803支持的媒体流安全能 力信息生成密钥 X2, 并将密钥 XI和密钥 X2下发给 MP803, 同时将密 钥 X2通过 200消息返回给主叫 UE801。 至于被叫侧的情况与主叫侧相 似, 此处不再详细描述。 When the media stream security capability negotiation is required, on the calling side, the calling UE 801 sends an INVITE message carrying the security information of the own media stream to the calling side CSCF 802. The calling side CSCF 802 secures the media stream supported by the calling side MP 803. The capability information is carried in the 183 message and returned to the calling UE 801. The calling UE 801 generates the key XI according to the media stream security capability information of the media stream and the media stream security capability information supported by the calling side MP 803, and carries the key XI to the PRACK message. Transmitted to the calling side CSCF 802; the calling side CSCF 802 according to the media stream security capability information provided by the calling UE 801 and the media stream security capability supported by the MP 803 The force information generates a key X2, and the key XI and the key X2 are sent to the MP 803, and the key X2 is returned to the calling UE 801 through the 200 message. As for the called side, the situation is similar to that of the calling side, and will not be described in detail here.
其中, 系统实施例一和系统实施例二的实体中还包括密钥生成单元 和收发单元, 其功能和结构与图 6中的相同, 此处不再赘述。  The entity of the system embodiment 1 and the system embodiment 2 further includes a key generation unit and a transceiver unit, and the functions and structures thereof are the same as those in FIG. 6, and details are not described herein again.
上述图 1至图 8中描述了实现媒体流安全能力协商的方法和系统等 情况。 实际应用中, 媒体流安全能力信息可以包含一套或多套媒体流安 全能力上下文信息, 媒体流安全能力协商也可以称为媒体流安全上下文 协商。 另外, 方法实施例二中描述了主叫 UE和被叫 UE之间进行媒体 流安全上下文协商的方法, 本申请还在以下的方法实施例六至方法实施 例八中提出另外几种主叫 UE和被叫 UE之间进行媒体流安全上下文协 商的方法。  The methods and systems for implementing media stream security capability negotiation are described in the above Figures 1 to 8. In actual applications, the media stream security capability information may include one or more sets of media stream security capability context information, and the media stream security capability negotiation may also be referred to as media stream security context negotiation. In addition, the method for performing media stream security context negotiation between the calling UE and the called UE is described in the second embodiment of the method, and the present application further proposes several other calling UEs in the following method embodiment 6 to method embodiment 8. A method of media stream security context negotiation between the called UE and the called UE.
图 9是本发明方法实施例六的消息流示意图。 方法实施例六中, 第 一实体为主叫 UE, 第二实体为被叫 UE。 实际应用中, 第一实体和第二 实体也可以是 MGCF/MGW, 具体流程与下述类似, 本实施例不再单独 描述。  FIG. 9 is a schematic diagram of a message flow of Embodiment 6 of the method of the present invention. In the sixth embodiment of the method, the first entity is the calling UE, and the second entity is the called UE. In an actual application, the first entity and the second entity may also be MGCF/MGW, and the specific process is similar to the following, and this embodiment is not separately described.
方法实施例二和方法实施例六的共同之处在于: 主叫 UE通过会话 请求消息将自身提供的媒体流安全上下文信息发送给被叫 UE, 所述媒 体流安全上下文信息包括安全算法; 主叫 UE接收被叫 UE通过会话应 答消息提供的媒体流安全上下文信息, 所述被叫 UE提供的媒体流安全 上下文是根据主叫 UE提供的媒体流安全上下文信息所确定的;主叫 UE 和被叫 UE根据双方提供的包括安全算法的媒体流安全上下文信息获得 密钥。  The second embodiment of the method is the same as the method embodiment 6. The calling UE sends the media stream security context information provided by the calling UE to the called UE through the session request message, where the media stream security context information includes a security algorithm; The UE receives the media stream security context information provided by the called UE through the session response message, and the media stream security context provided by the called UE is determined according to the media stream security context information provided by the calling UE; the calling UE and the called party The UE obtains a key according to the media stream security context information provided by the two parties including the security algorithm.
其中, 至于主叫 UE和被叫 UE根据双方提供的包括安全算法的媒 体流安全上下文信息获得密钥等情况可以具体参见方法实施例二和方 法实施例六。 其中, 方法实施例六可以如图 9所示, 可以包括以下步骤: 步骤 901: 主叫 UE产生本侧的密钥生成参数 Pa。 For the case where the calling UE and the called UE obtain the key according to the media stream security context information provided by the two parties including the security algorithm, refer to the method embodiment 2 and the method. Example 6 of the law. The method embodiment 6 may be as shown in FIG. 9 and may include the following steps: Step 901: The calling UE generates a key generation parameter Pa of the local side.
本步骤中, Pa是用来生成媒体流安全密钥的一个参数, 具体实现时 可以采用现有技术而生成的一个随机数( nonce )。  In this step, Pa is a parameter used to generate a media stream security key, and a random number (nonce) generated by the prior art may be used in the specific implementation.
步骤 902: 主叫 UE向被叫 UE发送会话请求消息, 其中携带有主叫 UE提供的媒体流安全上下文信息。例如: 主叫 UE提供了 2套媒体流安 全上下文信息, 可以表示为: (算法 1 , Pal ); (算法 2, Pa2 )。  Step 902: The calling UE sends a session request message to the called UE, where the media stream security context information provided by the calling UE is carried. For example: The calling UE provides two sets of media stream security context information, which can be expressed as: (Algorithm 1, Pal); (Algorithm 2, Pa2).
本步骤所述的会话请求消息是会话发起协议 SIP的邀请 ( INVITE ) 消息, 也可以是更新(UPDATE ) 消息。 所述媒体流安全上下文信息至 少包括密钥生成参数 Pa 和安全算法, 此外, 还可能包括密钥有效期 ( lifetime )和密钥标识 ( key identifier ) 中一种或两种。 会话请求消息 中可以包括至少一套的媒体流安全上下文信息, 供被叫 UE来选择, 这 里的每一套媒体流安全上下文信息可以按照优先级来进行排列或者每 套都增加对应的优先级指示, 表明主叫对各套媒体流安全上下文信息选 择的优先程度。 另外, 如果是多套媒体流安全上下文信息, 则步骤 901 中将会为每一套媒体流安全上下文生成各自的密钥生成参数。  The session request message described in this step is an invitation (INVITE) message of the session initiation protocol SIP, and may also be an update (UPDATE) message. The media stream security context information includes at least a key generation parameter Pa and a security algorithm, and may also include one or both of a key lifetime and a key identifier. The session request message may include at least one set of media stream security context information, which is selected by the called UE, where each set of media stream security context information may be arranged according to priority or each set is added with a corresponding priority indication. Indicates the priority of the caller's choice of security context information for each set of media streams. In addition, if there are multiple sets of media stream security context information, then step 901 will generate respective key generation parameters for each set of media stream security contexts.
这里的媒体安全算法可以为完整性安全算法或机密性安全算法的一 种或者两种的组合。  The media security algorithm herein may be one or a combination of an integrity security algorithm or a confidentiality security algorithm.
步骤 903: 被叫 UE收到会话请求消息后, 产生本侧的密钥生成参 数 Pb。  Step 903: After the called UE receives the session request message, the key generation parameter Pb of the local side is generated.
步骤 904: 被叫 UE向主叫 UE发送 183响应消息, 其中携带本侧提 供的媒体流安全上下文信息。 例如(算法 2, Pb )  Step 904: The called UE sends a 183 response message to the calling UE, where the media stream security context information provided by the side is carried. For example (algorithm 2, Pb)
这里, 被叫 UE提供的媒体流安全上下文信息是被叫 UE根据会话 请求消息中主叫 UE提供所有的媒体流安全上下文信息中确定自身需要 提供的媒体流安全上下文信息。 也就是说, 如果主叫 UE向被叫 UE提 供至少一套的媒体流安全上下文信息时,被叫 UE根据自身支持的情况, 从主叫提供的所有媒体流安全上下文信息中选择并确定一套, 作为自身 提供给主叫 UE的媒体流安全上下文信息。 当然, 被叫 UE并不是直接 将选择的媒体流安全上下文信息发送给主叫 UE, 还需要将自身的密钥 生成参数作为选择出的媒体流安全上下文信息中的密钥生成参数发送 给主叫 UE, 即: 发送给主叫的媒体流安全上下文信息应该包括密钥生 成参数 Pb和对应选择的安全算法。 Here, the media stream security context information provided by the called UE is the media stream security context information that the called UE needs to provide according to all the media stream security context information provided by the calling UE in the session request message. In other words, if the calling UE mentions the called UE When at least one set of media stream security context information is provided, the called UE selects and determines a set from all media stream security context information provided by the calling party according to the situation supported by itself, as the media stream security provided by the calling UE to itself. Contextual information. Certainly, the called UE does not directly send the selected media stream security context information to the calling UE, and needs to send its own key generation parameter as the key generation parameter in the selected media stream security context information to the calling party. The UE, ie the media stream security context information sent to the calling party should include the key generation parameter Pb and the corresponding selected security algorithm.
另外, 如果主叫 UE只提供一套媒体流安全上下文信息, 那么, 被 叫 UE也可以不进行选择, 主叫 UE和被叫 UE根据双方提供的包括安 全算法的媒体流安全上下文信息获得密钥的方法为: 被叫 UE根据的主 叫 UE提供的媒体流安全上下文中的密钥生成参数和自身的密钥生成参 数产生密钥, 主叫 UE根据被叫 UE提供的媒体流安全上下文中的密钥 生成参数和自身的密钥生成参数产生密钥。  In addition, if the calling UE only provides a set of media stream security context information, the called UE may also not select, and the calling UE and the called UE obtain the key according to the media stream security context information provided by the two parties including the security algorithm. The method is: the called UE generates a key according to the key generation parameter in the media stream security context provided by the calling UE and the key generation parameter thereof, and the calling UE is in accordance with the media stream security context provided by the called UE. The key generation parameter and its own key generation parameters generate a key.
实际应用中, 本步骤所述的会话响应消息也可以为 200响应消息。 步骤 904': 被叫 UE根据密钥生成参数 Pa和 Pb衍生出媒体流安全 密钥。  In practical applications, the session response message described in this step may also be a 200 response message. Step 904': The called UE derives a media stream security key according to the key generation parameters Pa and Pb.
本步骤的参数 Pa是被叫 UE选择出的媒体流安全上下文中的密钥生 成参数, 参数 Pb是被叫 UE的密钥生成参数, 即: 被叫 UE根据选择出 的媒体流安全上下文中的密钥生成参数和自身的密钥生成参数产生密 钥。  The parameter Pa of this step is a key generation parameter in the media stream security context selected by the called UE, and the parameter Pb is a key generation parameter of the called UE, that is, the called UE is in accordance with the selected media stream security context. The key generation parameter and its own key generation parameters generate a key.
这里,步骤 904和 904,没有必然的先后顺序。实际应用中,步骤 901 和步骤 903中的密钥生成参数也可以是已有的, 或者由主叫 UE和被叫 UE事先生成的, 没有必要在本流程中临时生成。  Here, steps 904 and 904 have no inevitable sequence. In actual applications, the key generation parameters in step 901 and step 903 may also be existing, or generated by the calling UE and the called UE in advance, and need not be temporarily generated in this process.
步骤 905: 主叫 UE收到被叫 UE发送的响应消息后,根据密钥生成 参数 Pa和 Pb衍生出媒体流安全密钥。 同样, 本步骤是主叫 UE根据步骤 904中被叫 UE发送的媒体流安 全上下文中的密钥生成参数 Pb和自身的密钥生成参数 Pa产生密钥。 Step 905: After receiving the response message sent by the called UE, the calling UE derives the media stream security key according to the key generation parameters Pa and Pb. Similarly, in this step, the calling UE generates a key according to the key generation parameter Pb and the key generation parameter Pa in the media stream security context sent by the called UE in step 904.
这里衍生密钥的方法可以使用主叫 UE和被叫 UE事先规定好的密 钥产生函数, 例如使用如下的函数:  Here, the method of deriving a key may use a key generation function specified by the calling UE and the called UE in advance, for example, using the following function:
KEY = KDF (Pa , Pb , [other])  KEY = KDF (Pa , Pb , [other])
KEY是衍生出的加密媒体的密钥;  KEY is the key of the derived encrypted media;
KDF是一个密钥生成函数, 具体的可以使用一个哈希 Hash函数。  KDF is a key generation function, specifically a hash Hash function can be used.
[other]是其它相关参数, 例如 RTP流的标识 SSRC等信息, 这样就可以 用来进一步的为每个 RTP流产生一个密钥; 或者 [other]代表所要产生的 KEY的密钥的长度; 也可以不使用 [other]参数。 [other] is other related parameters, such as the identifier of the RTP stream, SSRC, etc., so that it can be used to further generate a key for each RTP stream; or [other] represents the length of the key of the KEY to be generated; You can not use the [other] parameter.
此后, 主叫 UE和被叫 UE还需要继续后续的呼叫流程。  Thereafter, the calling UE and the called UE also need to continue the subsequent call flow.
由于主叫 UE和被叫 UE都获得了密钥, 此后就可以利用获得的密 钥保护传输的媒体流。  Since both the calling UE and the called UE obtain the key, the obtained media key can be protected by the obtained key.
本实施例中, 所述安全算法可以使用 RFC 4568中定义的媒体流安 全描述协议( SDES ) 中的 a =crypto头域作为 crypto-suite参数来携带; 所述密钥生成参数 Pa和 Pb、密钥标识、密钥有效期等参数可以在 SDES 协议 a =crypto 头域中的 key-params 参数来携带, 具体的可以使用 key-method参数指示方法, 例^口内联 ( inline )方法或者 key-method-ext 扩展的新的方法, 使用 key-info参数来携带密钥生成参数 Pa和 Pb以及 密钥标识和有效期等参数。 SRTP协议对应的 SDES协议中的头域可以 按照如下的方法使用 : srtp-crypto-suite 头域携带安全算法, srtp-key-method 参数指示携带方法, 例如内联 ( inline ) 方法或者使用 key-method-ext扩展的新的方法, srtp-key-info参数携带密钥生成参数 Pa 和 Pb以及密钥标识和有效期等参数。 使用 SDES携带多套媒体流安全 上下文信息可以使用多个 a =crypto头域进行携带,优先级信息可以按照 a =crypto头域的排列顺序标识。 In this embodiment, the security algorithm may be carried by using the a=crypto header field in the Media Stream Security Description Protocol (SDES) defined in RFC 4568 as a crypto-suite parameter; the key generation parameters Pa and Pb, and the secret Key parameters such as key identifier and key validity period can be carried in the key-params parameter in the S= protocol a =crypto header field. Specifically, the key-method parameter can be used to indicate the method, such as inline method or key-method- A new method of ext extension, using the key-info parameter to carry parameters such as key generation parameters Pa and Pb and key identification and validity period. The header field in the SDES protocol corresponding to the SRTP protocol can be used as follows: The srtp-crypto-suite header field carries a security algorithm, and the srtp-key-method parameter indicates a carrying method, such as an inline method or a key-method. A new method of -ext extension, the srtp-key-info parameter carries parameters such as key generation parameters Pa and Pb and key identification and expiration date. Using SDES to carry multiple sets of media stream security context information can be carried by multiple a = crypto header fields, and the priority information can be followed. a = the ordering identifier of the crypto header field.
本实施例中,如果采用多媒体因特网密钥协商( MIKEY )管理协议, 其中的安全算法、 包括密钥长度、 密钥产生率等的安全上下文都可以携 带于 RFC 3830 MIKEY协议中安全策略负载( Security Policy payload ) 字段中定义的各个参数中。 所述密钥生成参数 Pa 和 Pb 可以携带于 MIKEY中密钥传输负载( KEMAC, Key data transport payload ) 字段中 的 Key data sub-payload字段。 整个 MIKEY消息则可以携带于 RFC4567 规定的 a =key-mgmt SDP的属性字段中。 使用多个 a =key-mgmt头域也 可以携带多套媒体流安全上下文信息, 优先级信息可以按照 a =key-mgmt头域的排列顺序标识。  In this embodiment, if a multimedia internet key agreement (MIKEY) management protocol is adopted, a security algorithm, a security context including a key length, a key generation rate, and the like may be carried in the RFC 3830 MIKEY protocol. The policy payload ) is in each of the parameters defined in the field. The key generation parameters Pa and Pb may be carried in a Key data sub-payload field in a Key Transfer Transport (KEMAC) field in MIKEY. The entire MIKEY message can be carried in the attribute field of a =key-mgmt SDP specified in RFC4567. Multiple sets of a =key-mgmt header fields can also carry multiple sets of media stream security context information, and the priority information can be identified according to the order of a =key-mgmt header fields.
以下的方法实施例七和方法实施例八的共同之处在于: 主叫 UE将 携带有媒体流保护指示信息的会话请求消息发送给被叫 UE; 被叫 UE 检查媒体流保护指示信息, 确定自身支持媒体流保护, 被叫 UE和主叫 UE获得包括安全算法和密钥的媒体流安全上下文。  The method embodiment 7 and the method embodiment 8 have the following features in common: the calling UE sends a session request message carrying the media stream protection indication information to the called UE; the called UE checks the media stream protection indication information, and determines the self. Media stream protection is supported, and the called UE and the calling UE obtain a media stream security context including a security algorithm and a key.
也就是说, 被叫 UE在接收到媒体流保护指示信息时, 可以根据媒 体流保护指示信息确定本次会话的媒体流要求保护, 判断自身是否支持 媒体流保护, 如果自身支持, 则可以继续执行本流程。 实际应用中, 如 果被叫 UE确定自身不支持媒体流保护, 就可以直接结束会话。  That is, when the received media stream protection indication information is received, the called UE may determine the media stream request protection of the current session according to the media stream protection indication information, and determine whether it supports the media stream protection. If it supports itself, it may continue to perform. This process. In practical applications, if the called UE determines that it does not support media stream protection, it can directly end the session.
至于被叫 UE与主叫 UE如何获得包括安全算法和密钥的媒体流安 全上下文信息的方法则可以包括以下三种方法:  The method for how the called UE and the calling UE obtain the media stream security context information including the security algorithm and the key may include the following three methods:
第一种方法是: 被叫 UE将自身提供的至少一套媒体流安全上下文 信息发送给主叫 UE, 每一套媒体流安全上下文信息包括安全算法和对 应的密钥; 主叫 UE直接从被叫 UE发送的所有的媒体流安全上下文信 息中选择出一套, 并将选择出的一套媒体流安全上下文信息发送给被叫 UE。 也就是说, 由于被叫 UE提供的媒体流安全上下文信息中已经存在 密钥,主叫 UE只需要从中选择一套并通知被叫 UE,双方就可以确定安 全算法和对应的密钥, 从而达到协商的目的。 The first method is: the called UE sends at least one set of media stream security context information provided by itself to the calling UE, and each set of media stream security context information includes a security algorithm and a corresponding key; the calling UE directly from the A set of all media stream security context information sent by the UE is selected, and the selected set of media stream security context information is sent to the called UE. That is, since the key already exists in the media stream security context information provided by the called UE, the calling UE only needs to select one set and notify the called UE, and both parties can determine the security algorithm and the corresponding key, thereby achieving The purpose of the consultation.
当然, 实际应用中, 主叫 UE从被叫 UE发送的所有的媒体流安全 上下文信息中选择出一套, 以及将选择出的一套媒体流安全上下文信息 发送给被叫 UE之间, 该方法还可以进一步包括: 主叫 UE将自身生成 的新的密钥作为所述选择出的一套媒体流安全上下文中的密钥。  Of course, in a practical application, the calling UE selects one set of all media stream security context information sent by the called UE, and sends the selected set of media stream security context information to the called UE. The method further includes: the calling UE uses the new key generated by itself as a key in the selected set of media stream security contexts.
也就是说, 虽然供主叫 UE选择的媒体流安全上下文信息是由被叫 UE提供的,但主叫 UE也完全可以自行确定密钥,只是确定的密钥需要 符合所选择的媒体流安全上下文中的安全算法的规定即可。  That is, although the media stream security context information selected by the calling UE is provided by the called UE, the calling UE can also determine the key by itself, but the determined key needs to conform to the selected media stream security context. The rules of the security algorithm can be used.
第二种方法是: 被叫 UE将自身提供的至少一套媒体流安全上下文 信息发送给主叫 UE, 每一套媒体流安全上下文信息包括安全算法和对 应的密钥; 主叫 UE从被叫 UE提供的所有媒体流安全上下文信息中选 择出自身支持的至少一套媒体流安全上下信息, 将选择出的至少一套媒 体流安全上下文信息发送给被叫 UE;所述被叫 UE从主叫 UE提供的至 少一套的媒体流安全上下文信息中选择出一套, 并发送给主叫 UE。  The second method is: the called UE sends at least one set of media stream security context information provided by itself to the calling UE, and each set of media stream security context information includes a security algorithm and a corresponding key; the calling UE is called from the called party. Selecting at least one set of media stream security context information supported by the UE, and selecting at least one set of media stream security context information to be sent to the called UE; the called UE from the calling party A set of at least one set of media stream security context information provided by the UE is selected and sent to the calling UE.
也就是说, 主叫 UE可以从被叫 UE提供的媒体流安全上下文信息 进行选择, 但最后决定使用哪一套仍然由被叫 UE确定, 这里主叫 UE 也可以将自身生成的新的密钥作为所述选择出的一套媒体流安全上下 文中的密钥。 这样, 经过协商之后, 双方都可以确定安全算法和对应的 密钥, 同样达到协商的目的。  That is to say, the calling UE can select the media stream security context information provided by the called UE, but finally decide which set to use is still determined by the called UE, where the calling UE can also generate a new key generated by itself. As a key in the selected set of media stream security contexts. In this way, after negotiation, both parties can determine the security algorithm and the corresponding key, and also achieve the purpose of negotiation.
第三种方法是: 被叫 UE将媒体流保护指示信息返回给主叫 UE; 主 叫 UE检查媒体流保护指示信息, 确定所述被叫 UE支持媒体流保护; 主叫 UE将自身提供的至少一套媒体流安全上下文信息发送给被叫 UE, 每一套媒体流安全上下文信息包括安全算法和对应的密钥; 被叫 UE从 主叫 UE发送的所有的媒体流安全上下文信息中选择出一套, 并将选择 出的一套媒体流安全上下文信息发送给主叫 UE。 The third method is: the called UE returns the media stream protection indication information to the calling UE; the calling UE checks the media stream protection indication information, and determines that the called UE supports the media stream protection; the calling UE provides at least the self-provided A set of media stream security context information is sent to the called UE, and each set of media stream security context information includes a security algorithm and a corresponding key; A set of all media stream security context information sent by the calling UE is selected, and the selected set of media stream security context information is sent to the calling UE.
也就是说, 当被叫 UE检查到媒体流保护指示信息时, 可以确定本 次会话的媒体流需要进行保护。 如果被叫 UE 自身支持媒体流保护, 则 向主叫 UE返回相应的媒体流保护指示信息。 当主叫 UE接收到被叫 UE 的媒体流保护指示信息时, 就可以确定主叫 UE是支持本次会话的媒体 流保护的。 此后, 双方再继续进行协商, 确定一套媒体流安全上下文信 息, 就可以利用其中密钥对后续传输的媒体流进行保护了。  That is to say, when the called UE checks the media stream protection indication information, it can be determined that the media stream of the session needs to be protected. If the called UE itself supports media stream protection, the corresponding media stream protection indication information is returned to the calling UE. When the calling UE receives the media stream protection indication information of the called UE, it can be determined that the calling UE supports the media stream protection of the current session. Thereafter, the two parties continue to negotiate to determine a set of media stream security context information, and then use the key to protect the subsequently transmitted media stream.
这里, 被叫 UE从主叫 UE发送的所有的媒体流安全上下文信息中 选择出一套, 以及将选择出的一套媒体流安全上下文信息发送给主叫 UE之间,该方法也可以进一步包括:被叫 UE将自身生成的新的密钥作 为选择出的一套媒体流安全上下文信息中的密钥。  Here, the called UE selects one set from all the media stream security context information sent by the calling UE, and sends the selected set of media stream security context information between the calling UEs, and the method may further include The called UE uses the new key generated by itself as the key in the selected set of media stream security context information.
也就是说, 虽然供被叫 UE选择的媒体流安全上下文信息是由主叫 UE提供的,但被叫 UE也完全可以自行确定密钥,只是确定的密钥需要 符合所选择的媒体流安全上下文中的安全算法的规定即可。  That is, although the media stream security context information selected by the called UE is provided by the calling UE, the called UE can also determine the key by itself, but the determined key needs to conform to the selected media stream security context. The rules of the security algorithm can be used.
图 10是本发明方法实施例七的消息流示意图。 实施例七中,第一实 体为主叫 UE, 第二实体为被叫 UE。 主叫或者被叫也可以是媒体网关控 制功能实体 /媒体网关功能实体(MGCF/MGW ), 具体流程类似。  FIG. 10 is a schematic diagram of a message flow of Embodiment 7 of the method of the present invention. In the seventh embodiment, the first entity is the calling UE, and the second entity is the called UE. The calling or called party can also be a media gateway control function entity/media gateway function entity (MGCF/MGW), and the specific process is similar.
如图 10所示, 方法实施例七包括以下步骤:  As shown in FIG. 10, the method embodiment 7 includes the following steps:
步骤 1001: 主叫 UE向被叫 UE发送 INVITE消息, 其中携带媒体 流安全保护的指示信息, 来指示需要媒体流安全保护的媒体, 例如: 音 频 1和视频 2。  Step 1001: The calling UE sends an INVITE message to the called UE, where the media stream security protection indication information is used to indicate media that needs media stream security protection, for example, audio 1 and video 2.
具体实施时, 媒体流安全保护的指示信息可以使用 IETF 的草案 draft-ietf-mmusic-securityprecondition-04.txt 中描述的安全前提的使用方 法来指示需要保护的媒体。 也可以不使用安全前提的方法, 而使用将需 要保护的媒体的传输协议设置为安全传输协议的方法来指示, 例如将媒 体传输协议设置为 RTP/SAVP。 也可以使用 RFC4566中的 k=prompt头 域来指示需要媒体流安全保护的媒体。 During specific implementation, the media stream security protection indication information may be used to indicate the media to be protected by using the security premise described in the IETF draft draft-ietf-mmusic-securityprecondition-04.txt. It is also possible not to use the method of security premise, but the use will be The transport protocol of the media to be protected is set to a method of secure transport protocol, such as setting the media transport protocol to RTP/SAVP. The k=prompt header field in RFC4566 can also be used to indicate media that requires media stream security.
步骤 1002: 被叫 UE收到会话请求消息后, 检查媒体流安全保护的 指示信息, 确定自身支持媒体流保护; 返回 183应答消息, 其中携带支 持的需要媒体流安全保护的媒体对应的本侧的媒体安全上下文信息, 例 如: 被叫 UE仅仅支持视频 2, 并为视频 2提供 2套媒体流安全上下文 信息, (算法 1 , 密钥 1 ); (算法 2, 密钥 2 )。  Step 1002: After receiving the session request message, the called UE checks the indication information of the media stream security protection, and determines that it supports the media stream protection. The 183 response message is returned, where the media corresponding to the supported media stream security protection is carried. Media security context information, for example: The called UE only supports video 2, and provides 2 sets of media stream security context information for video 2 (algorithm 1, key 1); (algorithm 2, key 2).
所述媒体流安全上下文信息至少包括密钥和媒体安全算法, 此外, 还可以包括密钥有效期 (lifetime )和密钥标识(key identifier ) 中的一 种或两种的组合。 响应消息中可以包括多套媒体流安全上下文信息, 供 主叫 UE来选择。 这里的每一套媒体流安全上下文信息可以按照优先级 来进行排列或者每套都增加对应的优先级指示, 表明被叫 UE对各套媒 体流安全上下文信息的选择的优先程度。  The media stream security context information includes at least a key and a media security algorithm, and may further include a combination of one or both of a key lifetime and a key identifier. The response message may include multiple sets of media stream security context information for the calling UE to select. Each set of media stream security context information herein may be arranged according to priority or each set is added with a corresponding priority indication, indicating that the called UE prioritizes the selection of each set of media stream security context information.
这里的媒体安全算法可以为完整性安全算法或机密性安全算法的一 种或者两种的组合。 这里使用的消息也可以是 200应答消息。  The media security algorithm herein may be one or a combination of an integrity security algorithm or a confidentiality security algorithm. The message used here can also be a 200 response message.
步骤 1003: 主叫 UE向被叫 UE发送 PRACK响应消息, 其中携带 本侧的提供的媒体流安全上下文信息, 例如: 选择 183消息中的 (算法 2, 密钥 2 )。  Step 1003: The calling UE sends a PRACK response message to the called UE, where the media stream security context information provided by the local side is carried, for example, ( Algorithm 2, Key 2) in the 183 message is selected.
这里主叫 UE对于 183消息的处理方式有两种, 一种是 PRACK消 息中的媒体流安全上下文信息是主叫 UE根据 183消息中被叫 UE提供 的媒体流安全上下文信息中确定自身需要提供的媒体流安全上下文信 息。也就是说,如果被叫 UE提供至少一套的媒体流安全上下文信息时, 主叫 UE可以根据自身支持的情况, 从被叫提供的所有媒体流安全上下 文信息中选择并确定一套或一套以上, 作为自身提供给被叫 UE的媒体 流安全上下文信息并利用 PRACK消息等发送给被叫 UE。 此后, 被叫 UE在收到 PRACK后,从 PRACK消息中媒体流安全上下文信息中最终 确定一套,并通过 PRACK消息后的 200消息发送给主叫 UE,步骤 1003 和 1004描述这种情况。 Here, the calling UE processes the 183 message in two ways. One is that the media stream security context information in the PRACK message is determined by the calling UE according to the media stream security context information provided by the called UE in the 183 message. Media stream security context information. That is, if the called UE provides at least one set of media stream security context information, the calling UE may select and determine a set or a set from all the media stream security context information provided by the called party according to the situation supported by the calling UE. Above, as the media provided by itself to the called UE The security context information is streamed and sent to the called UE using a PRACK message or the like. Thereafter, after receiving the PRACK, the called UE finally determines a set from the media stream security context information in the PRACK message, and sends the 200 message after the PRACK message to the calling UE. Steps 1003 and 1004 describe the situation.
另外一种处理方式是主叫 UE收到 183响应后, 直接确定最终使用 的一套媒体流安全上下文信息, 并在 PRACK消息中发送给被叫 UE,被 叫 UE在收到 PRACK后, 再发送的 200响应中就不一定要携带媒体流 安全上下文信息了。  Another processing method is that after the calling UE receives the 183 response, it directly determines the final set of media stream security context information, and sends it to the called UE in the PRACK message, and the called UE sends the PRACK after receiving the PRACK. The media stream security context information does not have to be carried in the 200 response.
本步骤中, PRACK 中选择和提供的媒体流安全上下文信息至少包 括密钥和对应的安全算法, 此外, 还可以包括密钥有效期(lifetime )和 密钥标识( key identifier ) 中的一种或两种的组合。 不论 PRACK中携带 几套媒体流安全上下文, PRACK 中的媒体流安全上下文信息中的密钥 都可以与被叫中发送的密钥不同, 例如, 这里可以不使用"密钥 2", 而 主叫自己产生一个"密钥 3"并发送给被叫。 这里的主被叫使用不同的密 钥的使用方法可以参考 RFC4568中的主被叫密钥不同的使用方法。  In this step, the media stream security context information selected and provided in the PRACK includes at least a key and a corresponding security algorithm, and may further include one or two of a key lifetime and a key identifier. Combination of species. Regardless of the number of media stream security contexts carried in the PRACK, the key in the media stream security context information in the PRACK can be different from the key sent in the called party. For example, instead of using "key 2", the calling party Generate a "key 3" yourself and send it to the called party. Here, the method of using the different keys by the calling party and the called party can refer to the different usage methods of the calling and called keys in RFC4568.
如果主叫 UE收到被叫 UE发送的消息不是 183消息, 而是 200消 息, 则本步骤所述的确认消息为 ACK确认消息, 消息携带的内容类似。  If the calling UE receives the message sent by the called UE as a non-183 message, but a message, the acknowledgement message in this step is an ACK acknowledgement message, and the content carried by the message is similar.
步骤 1004: 被叫 UE向主叫 UE返回 PRACK对应的 200消息, 其 中携带协商被叫 UE选定的媒体流安全上下文信息, 本实施例中为 (算 法 2, 密钥 2 )。  Step 1004: The called UE returns a 200 message corresponding to the PRACK to the calling UE, where the media stream security context information selected by the called UE is negotiated, in this embodiment, (algorithm 2, key 2).
此后, 主叫 UE和被叫 UE还需要继续后续的呼叫流程。  Thereafter, the calling UE and the called UE also need to continue the subsequent call flow.
由于主叫 UE和被叫 UE都获得了对应的密钥, 可以利用所述密钥 保护传输的媒体流。  Since both the calling UE and the called UE obtain the corresponding key, the transmitted media stream can be protected by the key.
本实施例中,所述安全算法可以在 RFC4568中定义的媒体流安全描 述协议( SDES ) 中的 a =crypto头域作为 crypto-suite参数来携带; 所述 密钥、 密钥标识、 密钥有效期等参数可以在 SDES协议 a =crypto头域中 的 key-params参数来携带, 具体的可以使用 key - method参数指示携带 方法, 例如内联 ( inline )方法或者使用 key-method-ext扩展的方法。 使 用 key-info参数来携带密钥以及密钥标识和有效期等参数。 对应 SRTP 协议的 SDES的头域可以按照如下的方法使用: srtp-crypto-suite携带安 全算法, srtp-key-method指示携带方法, 例如内联( inline )方法或者使 用 key-method-ext扩展的方法, srtp-key-info携带密钥以及密钥标识和有 效期等参数。 使用 SDES可以携带多套媒体流安全上下文信息, 即使用 多个 a =crypto头域即可以进行携带, 优先级信息可以按照 a =crypto头 域的排列顺序标识。 In this embodiment, the security algorithm may be carried as a crypto-suite parameter in the media stream security description protocol (SDES) defined in RFC4568; Parameters such as key, key identifier, and key validity period can be carried in the key-params parameter in the SDES protocol a =crypto header field. Specifically, the key-method parameter can be used to indicate the carrying method, such as the inline method or Use the key-method-ext extension method. Use the key-info parameter to carry the key and parameters such as key identification and expiration date. The header field of the SDES corresponding to the SRTP protocol can be used as follows: srtp-crypto-suite carries a security algorithm, and srtp-key-method indicates a carrying method, such as an inline method or a method using key-method-ext extension. , srtp-key-info carries the key and parameters such as key identification and expiration date. SDES can carry multiple sets of media stream security context information, that is, it can be carried by using multiple a = crypto header fields. The priority information can be identified according to the order of a = crypto header fields.
本实施例中,如果采用多媒体因特网密钥协商( MIKEY )管理协议, 其中的安全算法、 密钥有效期等的安全上下文都可以携带于 RFC 3830 MIKEY协议中安全策略负载( Security Policy payload )字段中定义的参 数中。 所述密钥以及密钥标识可以携带于 MIKEY 中密钥传输负载 ( KEMAC, Key data transport payload )字段中的 Key data sub-payload 字段。整个 MIKEY消息则可以携带于 RFC4567规定的 a =key-mgmt SDP 属性字段中。 使用多个 a =key-mgmt头域也可以携带多套媒体流安全上 下文信息, 优先级信息可以按照 a =key-mgmt头域的排列顺序标识。  In this embodiment, if a multimedia internet key agreement (MIKEY) management protocol is adopted, security contexts such as a security algorithm and a key validity period may be carried in the Security Policy payload field defined in the RFC 3830 MIKEY protocol. In the parameters. The key and the key identifier may be carried in a Key data sub-payload field in a Key Transfer Transport (KEMAC) field in MIKEY. The entire MIKEY message can be carried in the a =key-mgmt SDP attribute field specified in RFC4567. Multiple a =key-mgmt header fields can also carry multiple sets of media stream security context information, and the priority information can be identified according to the order of a =key-mgmt header fields.
图 11是本发明方法实施例八的消息流示意图, 包括以下步骤: 步骤 1101: 主叫 UE向被叫 UE发送 INVITE消息, 其中携带媒体 流安全保护的指示信息, 来指示需要媒体流安全保护的媒体, 例如: 音 频 1和视频 2。  11 is a schematic diagram of a message flow according to Embodiment 8 of the method of the present invention, including the following steps: Step 1101: The calling UE sends an INVITE message to the called UE, where the indication information of the media stream security protection is carried, to indicate that the media stream security protection is required. Media, for example: Audio 1 and Video 2.
具体实施时, 媒体流安全保护的指示信息可以使用 IETF 的草案 draft-ietf-mmusic-securityprecondition-04.txt 中描述的安全前提的方法来 指示需要保护的媒体。 这里的用法和 IETF的草案中的用法不同的地方 是这里的 INVITE和后续的 183消息不携带安全算法和密钥等信息, 例 如,如果使用 SDES协议,就不携带 a=crypto:..头域,而在后续的 PRACK 和 200消息中才携带安全算法和密钥等信息, 相应的, 主叫 UE和被叫 UE发送的 INVITE和后续的 183消息中的安全前提的状态则设置为实际 状态的值即可, 具体值的设置可以参考 RFC 3312和所述的安全前提的 IETF的草案中的状态设置方法, 因为这里 INVITE和后续的 183消息中 没有携带安全算法和密钥等信息, 所以后续的 PRACK和 200消息中的 安全前提的设置方法可以采用如下的方法进行设置: 方法一, PRACK 中的设置方法还是设置实际的状态值, 而 200中的目前状态值设置为最 终的^犬态值 , 列^口 , a=curr:sec e2e sendrecv a=des:sec mandatory e2e sendrecv; 方法二, PRACK和 200消息中的目前状态值仍然设置为实际 的状态值,后续的安全前提的状态值使用 update和对应的 200消息进行 最后的确认设置, 具体的方法参见 RFC 3312和所述的安全前提的 IETF 草案。 这里也可以不使用安全前提的方法, 而使用将需要保护的媒体的 传输协议设置为安全传输协议的方法来指示本次会话媒体流需要安全 保护, 例如将媒体传输协议设置为 RTP/SAVP。 也可以使用 RFC4566中 的 k=prompt头域来指示需要媒体流安全保护的媒体。 During specific implementation, the indication of the media stream security protection may indicate the media to be protected by using the security premise method described in the draft draft-ietf-mmusic-securityprecondition-04.txt of the IETF. The usage here is different from the usage in the IETF draft. Here, the INVITE and the subsequent 183 messages do not carry information such as security algorithms and keys. For example, if the SDES protocol is used, the a=crypto:.. header field is not carried, and the security is carried in subsequent PRACK and 200 messages. The information such as the algorithm and the key, correspondingly, the state of the security premise in the INVITE and the subsequent 183 message sent by the calling UE and the called UE is set to the value of the actual state, and the specific value can be set by referring to RFC 3312 and The state setting method in the IETF draft of the security premise, because the INVITE and the subsequent 183 messages do not carry information such as a security algorithm and a key, so the setting method of the security premise in the subsequent PRACK and 200 messages can be adopted. The following methods are used to set: Method 1, the setting method in PRACK still sets the actual state value, and the current state value in 200 is set to the final ^ dog state value, column ^ port, a=curr:sec e2e sendrecv a= Des:sec mandatory e2e sendrecv; Method 2, the current state value in the PRACK and 200 messages is still set to the actual state value, and the subsequent security premise state value uses update and pair The final acknowledgment 200 message set, refer to the specific method of a draft IETF RFC 3312 and the security provided according to. Here, it is also possible to use a method of setting a transmission protocol of the media to be protected as a secure transmission protocol to indicate that the session media stream needs security protection, for example, setting the media transmission protocol to RTP/SAVP. The k=prompt header field in RFC4566 can also be used to indicate media that requires media stream security.
步骤 1102: 被叫 UE收到 INVITE消息后, 检查媒体流安全保护的 指示信息, 确定自身支持保护指示出的需要媒体流安全保护的媒体, 返 回 183应答消息, 其中携带本侧的媒体流安全保护的指示信息, 指示出 本侧支持的需要媒体流安全保护的媒体, 例如, 视频 2。  Step 1102: After receiving the INVITE message, the called UE checks the media stream security protection indication information, determines the media that needs to protect the media stream security protection, and returns a 183 response message, which carries the media stream security protection of the local side. The indication information indicates the media supported by the side that requires media stream security protection, for example, video 2.
与方法实施例七不同的是, 本步骤并不直接向主叫 UE返回提供的 媒体流安全上下文信息, 而仅仅将自身可以支持媒体流保护的信息通知 给主叫 UE。 其中, 183消息中的参数具体设置的方法类似于 INVITE消 息中的设置方法。 步骤 1103: 主叫 UE检查被叫 UE返回的指示信息, 确定被叫 UE 支持指示出的媒体的安全保护, 并向被叫 UE发送 PRACK消息, 其中 携带本侧提供的媒体流安全上下文信息, 例如: 主叫 UE提供了 2套媒 体流安全上下文信息, (算法 1 , 密钥 1 ); (算法 2, 密钥 2 )。 Different from the seventh embodiment of the method, this step does not directly return the provided media stream security context information to the calling UE, but only informs the calling UE of the information that can support the media stream protection. The method of setting the parameters in the 183 message is similar to the setting method in the INVITE message. Step 1103: The calling UE checks the indication information returned by the called UE, determines that the called UE supports the security protection of the indicated media, and sends a PRACK message to the called UE, where the media stream security context information provided by the local side is carried, for example. : The calling UE provides 2 sets of media stream security context information (algorithm 1, key 1); (algorithm 2, key 2).
所述媒体流安全上下文信息至少包括密钥和媒体安全算法, 此外, 还可以包括密钥有效期 (lifetime )和密钥标识(key identifier ) 中的一 种或两种的组合。 PRACK消息中可以包括多套媒体流安全上下文信息, 供被叫 UE来选择。 这里, 主叫 UE向被叫 UE提供至少一套媒体流上 下文信息, 每一套媒体流安全上下文信息可以按照优先级来进行排列或 者每套都设置有对应的优先级指示, 表明主叫 UE对各套媒体流安全上 下文信息的选择的优先程度。  The media stream security context information includes at least a key and a media security algorithm, and may further include a combination of one or both of a key lifetime and a key identifier. The PRACK message may include multiple sets of media stream security context information for the called UE to select. Here, the calling UE provides at least one set of media stream context information to the called UE, and each set of media stream security context information may be arranged according to priority or each set is set with a corresponding priority indication, indicating that the calling UE is The priority of the selection of security context information for each set of media streams.
这里的媒体安全算法可以为完整性安全算法或机密性安全算法的一 种或者两种的组合。  The media security algorithm herein may be one or a combination of an integrity security algorithm or a confidentiality security algorithm.
步骤 1104: 被叫 UE向主叫 UE返回 PRACK对应的 200消息, 其 中携带被叫 UE选择的媒体流安全上下文信息, 本实施例中为 (算法 2, 密钥 2 )。  Step 1104: The called UE returns a 200 message corresponding to the PRACK to the calling UE, where the media stream security context information selected by the called UE is carried, which is (Algorithm 2, Key 2) in this embodiment.
这里所述的媒体流安全上下文信息是被叫 UE从 PRACK消息携带 的至少一套的媒体流安全上下文信息中选择的一套,并在 PRACK的 200 消息中发送给主叫 UE。 如果媒体流安全上下文信息是按照事先设置的 优先级顺序进行排列或者设置有表示优先级顺序的优先级指示, 则可以 按照优先级顺序来进行选择, 即可以选择优先级最高的媒体流安全上下 文信息。  The media stream security context information described herein is a set selected by the called UE from at least one set of media stream security context information carried by the PRACK message, and sent to the calling UE in the PRACK 200 message. If the media stream security context information is arranged according to the priority order set in advance or the priority indication indicating the priority order is set, the selection may be performed according to the priority order, that is, the media stream security context information with the highest priority may be selected. .
当然, 200 消息中的媒体流安全上下文信息中的密钥也可以与步骤 1104被叫 UE发送的密钥不同。 例如, 这里可以不使用"密钥 2", 而是 由被叫 UE 自己产生一个 "密钥 3"并发送给主叫。 主被叫使用不同的密 钥的使用方法可以参考 RFC4568中的主被叫密钥不同的使用方法。 Of course, the key in the media stream security context information in the 200 message may also be different from the key sent by the called UE in step 1104. For example, instead of using "key 2", the called UE itself generates a "key 3" and sends it to the caller. The main callee uses a different secret The method of using the key can refer to the different usage methods of the calling and called keys in RFC4568.
此后, 主叫 UE和被叫 UE继续后续的呼叫流程。  Thereafter, the calling UE and the called UE continue the subsequent call flow.
由于主叫 UE和被叫 UE都获得了对应的密钥, 可以利用所述密钥 保护传输的媒体流。  Since both the calling UE and the called UE obtain the corresponding key, the transmitted media stream can be protected by the key.
实际应用中, 主叫 UE和被叫 UE也可以使用衍生的密钥进行加解 密, 则可以在步骤 1104之后, 进一步包括: 主叫 UE和被叫 UE分别根 据双方的密钥衍生出新的密钥, 并将衍生出的密钥作为保护媒体流的密 钥。  In an actual application, the calling UE and the called UE may also use the derived key for encryption and decryption, and after step 1104, the method further includes: the calling UE and the called UE respectively derive a new secret according to the keys of the two parties. The key, and the derived key is used as the key to protect the media stream.
另外, 本实施例是主叫 UE和被叫 UE是通过 PRACK消息和 200 消息传输密钥的。 实际应用中, 还可以利用其他的消息, 比如 UPDATE 消息和 200消息来传输密钥。 本实施例中,所述安全算法可以在 RFC4568中定义的媒体流安全描 述协议( SDES ) 中 a =crypto头域中作为 crypto-suite参数来携带; 所述 密钥、 密钥标识、 密钥有效期等参数可以在 SDES协议 a =crypto头域中 的 key-params参数来携带, 具体的可以使用 key - method参数指示携带 方法, 例如内联 ( inline )方法或者使用 key-method-ext扩展的方法。 使 用 key-info参数来携带密钥以及密钥标识和有效期等参数。 具体的对应 SRTP协议的 SDES 的头域可以按照如下的方法使用: srtp-crypto-suite 携带安全算法, srtp-key-method指示携带方法, 例如内联( inline )方法 或者使用 key-method-ext扩展的方法, srtp-key-info携带密钥以及密钥标 识和有效期等参数。 使用 SDES可以携带多套媒体流安全上下文信息, 即使用多个 a =crypto 头域即可以进行携带, 优先级信息可以按照 a =crypto头域的排列顺序标识。 本实施例中,如果采用多媒体因特网密钥协商( MIKEY )管理协议, 其中的安全算法、 密钥有效期等的安全上下文都可以携带于 RFC 3830 MIKEY协议中安全策略负载( Security Policy payload )字段中定义的参 数中。 所述密钥以及密钥标识可以携带于 MIKEY 中密钥传输负载 ( KEMAC, Key data transport payload )字段中的 Key data sub-payload 字段。整个 MIKEY消息则可以携带于 RFC4567规定的 a =key-mgmt SDP 属性字段中。 使用多个 a =key-mgmt头域也可以携带多套媒体流安全上 下文信息, 优先级信息可以按照 a =key-mgmt头域的排列顺序标识。 In addition, in this embodiment, the calling UE and the called UE transmit the key through the PRACK message and the 200 message. In practical applications, other messages, such as UPDATE messages and 200 messages, can also be used to transmit keys. In this embodiment, the security algorithm may be carried as a crypto-suite parameter in the a =crypto header field in the Media Stream Security Description Protocol (SDES) defined in RFC4568; the key, the key identifier, and the key validity period. The parameters can be carried in the key-params parameter in the S = crypto header field of the SDES protocol. Specifically, the key-method parameter can be used to indicate the carrying method, such as the inline method or the method using the key-method-ext extension. Use the key-info parameter to carry the key and parameters such as key identification and expiration date. The specific SDES header field corresponding to the SRTP protocol can be used as follows: srtp-crypto-suite carries a security algorithm, srtp-key-method indicates a carrying method, such as inline (inline) method or use key-method-ext extension The method, srtp-key-info carries the key and parameters such as key identification and expiration date. SDES can carry multiple sets of media stream security context information, that is, it can be carried by using multiple a = crypto header fields. The priority information can be identified according to the order of a = crypto header fields. In this embodiment, if a multimedia internet key agreement (MIKEY) management protocol is adopted, The security context of the security algorithm, key validity period, etc. can be carried in the parameters defined in the Security Policy payload field of the RFC 3830 MIKEY protocol. The key and the key identifier may be carried in a Key data sub-payload field in a Key Transfer Transport (KEMAC) field in MIKEY. The entire MIKEY message can be carried in the a =key-mgmt SDP attribute field specified in RFC4567. Multiple sets of media flow security context information can also be carried by using multiple a =key-mgmt header fields. The priority information can be identified according to the order of a =key-mgmt header fields.
针对上述主叫 UE和被叫 UE之间进行媒体流安全上下文协商的方 法, 本发明还提出相应的系统实施例。  The present invention also proposes a corresponding system embodiment for the method for media stream security context negotiation between the calling UE and the called UE.
图 12 是针对方法实施例二和方法实施六的系统实施例四的结构示 意图。 如图 12所示, 该系统可以包括:  Figure 12 is a schematic diagram showing the structure of a system embodiment 4 for the method embodiment 2 and the method implementation 6. As shown in Figure 12, the system can include:
主叫 UE1201 , 通过会话请求消息将自身提供的包括安全算法的媒 体流安全上下文信息发送给被叫 UE1202。  The calling UE 1201 sends the media stream security context information including the security algorithm provided by itself to the called UE 1202 through the session request message.
被叫 UE1202,被叫 UE根据会话请求消息中主叫 UE提供的媒体流 安全上下文信息确定自身需要提供的媒体流安全上下文信息, 通过会话 应答消息将确定提供的媒体流安全上下文信息发送给主叫 UE。  The called UE 1202, the called UE determines the media stream security context information that needs to be provided according to the media stream security context information provided by the calling UE in the session request message, and sends the determined media stream security context information to the calling party through the session response message. UE.
所述主叫 UE1201和被叫 UE1202根据双方提供的包括安全算法的 媒体流安全上下文信息获得密钥。  The calling UE 1201 and the called UE 1202 obtain a key according to the media stream security context information provided by the two parties including the security algorithm.
当然, 如果该系统应用于不同的方法, 其中功能模块的划分可能是 不一样的。  Of course, if the system is applied to different methods, the division of functional modules may be different.
如果该系统用于方法实施例二, 那么, 会话请求消息为 INVITE消 息, 会话应答消息为 183消息, 所述主叫 UE1201通过会话请求消息提 供的媒体流安全上下文信息为至少一套媒体流安全上下文信息。 该系统 的具体情况可以由图 12A表示, 如图 12A 所示的系统实施五, 主叫 UE1201可以包括: 收发单元 1201a, 通过会话请求消息将自身提供的包括安全算法的 媒体流安全上下文信息发送给被叫 UE1202 , 将生成的密钥通过确认 PRACK消息或 UPDATE消息发送给被叫 UE1202。 If the system is used in the method embodiment 2, the session request message is an INVITE message, and the session response message is a 183 message, and the media stream security context information provided by the calling UE 1201 through the session request message is at least one set of media stream security context. information. The specific situation of the system can be represented by FIG. 12A. As shown in FIG. 12A, the system implementation fifth may include: The transceiver unit 1201a sends the media stream security context information including the security algorithm provided by itself to the called UE 1202 through the session request message, and sends the generated key to the called UE 1202 by using an acknowledgement PRACK message or an UPDATE message.
当然,这里收发单元 1201可以提供至少一套的媒体流安全上下文信 息; 另外, 还可以接收被叫 UE1202通过会话应答消息提供的至少一套 媒体流安全上下文信息, 所述被叫 UE1202提供的媒体流安全上下文是 根据主叫 UE1201提供的至少一套媒体流安全上下文信息中选择出的; 选择单元 1201b, 用于从被叫 UE1202提供的至少一套的媒体流安 全上下文信息中选择出一套;  Of course, the transceiver unit 1201 may provide at least one set of media stream security context information. In addition, at least one set of media stream security context information provided by the called UE 1202 through the session response message may be received, and the called UE 1202 provides the media stream. The security context is selected according to at least one set of media stream security context information provided by the calling UE 1201. The selecting unit 1201b is configured to select one set of at least one set of media stream security context information provided by the called UE 1202.
密钥生成单元 1201c, 用于根据选择出的媒体流安全上下文信息中 的安全算法生成密钥。  The key generating unit 1201c is configured to generate a key according to the security algorithm in the selected media stream security context information.
相应地, 被叫 UE1202包括:  Accordingly, the called UE 1202 includes:
收发单元 1202a,用于接收主叫 UE1201通过会话请求消息提供的包 括安全算法的媒体流安全上下文信息; 接收主叫 UE通过确认 PRACK 消息或 UPDATE消息发送的密钥。  The transceiver unit 1202a is configured to receive media stream security context information including a security algorithm provided by the calling UE 1201 by using a session request message, and receive a key sent by the calling UE by confirming a PRACK message or an UPDATE message.
选择单元 1202b, 用于从主叫 UE1201提供的所有媒体流安全上下 文信息中选择出自身支持的至少一套媒体流安全上下信息, 将选择出的 至少一套媒体流安全上下文信息作为自身提供的媒体流安全上下文信 息, 并通过收发单元 1202a发送给主叫 UE1201。  The selecting unit 1202b is configured to select at least one set of media stream security upper and lower information supported by the media stream security context information provided by the calling UE 1201, and use the selected at least one set of media stream security context information as the media provided by itself. The security context information is transmitted and sent to the calling UE 1201 through the transceiver unit 1202a.
进一步地, 被叫 UE1202还可以包括:  Further, the called UE 1202 may further include:
密钥生成单元 1202c, 用于根据双方提供的媒体流安全上下文信息 中的安全算法生成密钥, 并通过收发单元发送给主叫 UE1201。  The key generating unit 1202c is configured to generate a key according to a security algorithm in the media stream security context information provided by the two parties, and send the key to the calling UE 1201 through the transceiver unit.
进一步地, 主叫 UE1201还可以包括:  Further, the calling UE 1201 may further include:
衍生单元 1201d, 根据双方生成的密钥衍生出新的密钥;  The derivation unit 1201d derives a new key according to the key generated by the two parties;
同样, 被叫 UE1202还可以包括: 衍生单元 1202d, 根据双方生成的密钥衍生出新的密钥。 Similarly, the called UE1202 may further include: The derivation unit 1202d derives a new key from the keys generated by both parties.
如果该系统用于方法实施例六,那么,所述会话请求消息为 INVITE 消息, 所述会话应答消息为 183消息或 200消息, 所述主叫 UE发送给 被叫 UE的媒体流安全上下文信息包括事先生成的密钥生成参数, 所述 被叫 UE发送给主叫 UE的媒体流安全上下文信息包括事先生成的密钥 生成参数。该系统的具体情况可以由图 12B表示,如图 12B所示的系统 实施例六的示意图, 主叫 UE1201可以包括:  If the system is used in the method embodiment 6, the session request message is an INVITE message, the session response message is a 183 message or a 200 message, and the media stream security context information that the calling UE sends to the called UE includes: The previously generated key generation parameter, the media stream security context information sent by the called UE to the calling UE includes a key generation parameter generated in advance. The specific situation of the system can be represented by FIG. 12B. As shown in FIG. 12B, the calling UE 1201 may include:
收发单元 1201m, 用于通过会话请求消息将自身提供的至少一套媒 体流安全上下文信息发送给被叫 UE1202, 每一套媒体流安全上下文中 信息中包括安全算法和主叫 UE自身的密钥生成参数;接收被叫 UE1202 提供的包括安全算法和被叫 UE 自身的密钥生成参数的一套媒体流安全 上下文信息。  The transceiver unit 1201m is configured to send at least one set of media stream security context information provided by itself to the called UE 1202 by using a session request message, where the information in each set of media stream security context includes a security algorithm and a key generation of the calling UE itself. Parameter; receiving a set of media stream security context information provided by the called UE 1202, including a security algorithm and a key generation parameter of the called UE itself.
密钥生成单元 1201η, 根据被叫 UE1202发送的媒体流安全上下文 中的密钥生成参数和自身的密钥生成参数产生密钥。  The key generation unit 1201n generates a key based on the key generation parameter in the media stream security context transmitted by the called UE 1202 and its own key generation parameter.
相应地, 被叫 UE1202包括:  Accordingly, the called UE 1202 includes:
收发单元 1202m, 用于接收主叫 UE1201D的会话请求消息, 通过 183消息或 200消息向主叫 UE1201发送选择的媒体流安全上下文信息, 所述选择出的媒体流安全上下文信息包括安全算法和被叫 UE自身的密 钥生成参数。  The transceiver unit 1202m is configured to receive a session request message of the calling UE 1201D, and send the selected media stream security context information to the calling UE 1201 by using a 183 message or a 200 message, where the selected media stream security context information includes a security algorithm and a called The key generation parameters of the UE itself.
选择单元 1202r,从主叫 UE1201发送的多套媒体流安全上下文中选 择出一套媒体流安全上下文。  The selecting unit 1202r selects a set of media stream security contexts from the plurality of sets of media stream security contexts sent by the calling UE 1201.
密钥生成单元 1202η, 根据选择单元 1202r选择出的媒体流安全上 下文中主叫 UE的密钥生成参数和被叫 UE 自身的密钥生成参数产生密 钥。  The key generation unit 1202n generates a key according to the key generation parameter of the calling UE in the media stream security context selected by the selecting unit 1202r and the key generation parameter of the called UE itself.
图 13A和 13B分别是针对方法实施例七和方法实施八的系统结构示 意图。 如图 13A所示的系统实施例七的示意图, 该系统可以包括: 主叫 UE1301 , 将携带有媒体流保护指示信息的会话请求消息发送 给被叫 UE1302, 获得包括安全算法和密钥的媒体流安全上下文。 13A and 13B are respectively a system structure diagram for the method embodiment VII and the method implementation VIII. Intention. As shown in FIG. 13A, the system may include: a calling UE 1301, and sending a session request message carrying the media stream protection indication information to the called UE 1302 to obtain a media stream including a security algorithm and a key. Security context.
被叫 UE1302, 接收携带有媒体流保护指示信息的会话请求消息, 检查媒体流保护指示信息, 确定自身支持媒体流保护, 获得包括安全算 法和密钥的媒体流安全上下文。  The called UE 1302 receives the session request message carrying the media stream protection indication information, checks the media stream protection indication information, determines that it supports the media stream protection, and obtains the media stream security context including the security algorithm and the key.
实际应用中, 如果该系统应用于不同的方法, 其中的功能模块划分 可能是不一样的。  In practical applications, if the system is applied to different methods, the functional module division may be different.
其中, 主叫 UE1301包括:  The calling UE 1301 includes:
收发单元 1301a, 用于将携带有媒体流保护指示信息的会话请求消 息发送给被叫 UE1302;接收被叫 UE1302的 183消息或 200消息,将选 择出的媒体流安全上下文信息通过 PRACK消息或 UPDATE消息发送给 被叫 UE1302。  The transceiver unit 1301a is configured to send a session request message carrying the media stream protection indication information to the called UE 1302, receive the 183 message or 200 message of the called UE 1302, and use the selected media stream security context information to pass the PRACK message or the UPDATE message. Send to the called UE1302.
当然, 收发单元 1301a接收被叫 UE1302提供的媒体流安全上下文 信息可以至少为一套媒体流安全上下文信息, 所述媒体流安全上下文信 息包括安全算法和对应的密钥。  Certainly, the transceiver unit 1301a receives the media stream security context information provided by the called UE 1302, and may be at least one set of media stream security context information, where the media stream security context information includes a security algorithm and a corresponding key.
选择单元 1301b, 从被叫 UE1302发送的所有的媒体流安全上下文 信息中进行选择。  The selecting unit 1301b selects from all the media stream security context information sent by the called UE 1302.
被叫 UE1302可以包括:  The called UE1302 may include:
收发单元 1302a, 用于接收携带有媒体流保护指示信息的会话请求 消息; 检查媒体流保护指示信息, 确定自身支持媒体流保护, 将自身提 供的至少一套媒体流安全上下文信息通过 183消息或 200消息发送给主 叫 UE1301 , 所述媒体流安全上下文信息包括安全算法和对应的密钥; 接收主叫 UE1301通过 PRACK消息或 ACK消息返回的选择出的媒体流 安全上下文信息。 如果该系统应用于方法实施例七中由主叫 UE直接确定一套媒体流 安全上下文信息, 那么, 所述主叫 UE1301中的选择单元 1301b选择出 的媒体流安全上下文信息为一套媒体流安全上下文信息。 在这种情况 下, 主叫 UE1301 中还可以增加一个密钥替换单元 1301c, 将所述选择 单元选择出的媒体流安全上下文信息中的密钥替换为主叫 UE自身生成 的密钥, 并发送给被叫 UE1302。 The transceiver unit 1302a is configured to receive a session request message carrying the media stream protection indication information, check the media stream protection indication information, determine that the media stream protection is supported by itself, and pass at least one set of media stream security context information provided by itself to the 183 message or 200. The message is sent to the calling UE 1301, and the media stream security context information includes a security algorithm and a corresponding key. The selected media stream security context information returned by the calling UE 1301 through the PRACK message or the ACK message is received. If the system is applied to determine a set of media stream security context information directly by the calling UE in the method embodiment VII, the media stream security context information selected by the selecting unit 1301b in the calling UE 1301 is a set of media stream security. Contextual information. In this case, a key replacement unit 1301c may be added to the calling UE 1301, and the key in the media stream security context information selected by the selecting unit is replaced by the key generated by the UE itself, and sent. Give the called UE1302.
如果该系统应用于方法实施例七中由被叫 UE确定一套媒体流安全 上下信息的方法, 那么, 主叫 UE1301中的选择单元 1301b选择出的媒 体流安全上下文信息为至少一套媒体流安全上下文信息, 所述被叫 UE 的收发单元进一步用于向主叫 UE发送携带有媒体流保护指示信息的消 息。 被叫 UE1302还可以进一步包括:  If the system is applied to the method for determining a set of media stream security upper and lower information by the called UE in the method embodiment 7, the media stream security context information selected by the selecting unit 1301b in the calling UE 1301 is at least one set of media stream security. Context information, the transceiver unit of the called UE is further configured to send a message carrying the media stream protection indication information to the calling UE. The called UE1302 may further include:
选择单元 1302b, 用于从主叫 UE1301提供的至少一套的媒体流安 全上下文信息中选择出一套, 并通过收发单元发送给主叫 UE1301。  The selecting unit 1302b is configured to select one set from at least one set of media stream security context information provided by the calling UE 1301, and send the set to the calling UE 1301 through the transceiver unit.
图 13B是应用于方法实施例八的系统结构示意图,如图 13B所示的 系统实施例八的示意图, 主叫 UE1301包括:  13B is a schematic structural diagram of a system applied to the eighth embodiment of the method. As shown in FIG. 13B, the calling UE 1301 includes:
收发单元 1301m, 用于将携带有媒体流保护指示信息的会话请求消 息发送给被叫 UE1302;接收被叫 UE通过 183消息或 200消息发送的媒 体流保护指示信息, 确定所述被叫 UE支持媒体流保护; 将自身提供的 至少一套媒体流安全上下文信息通过 PRACK消息或 ACK消息发送给被 叫 UE,并接收被叫 UE1302通过 200消息发送的选择出的一套媒体流安 全上下文信息。  The transceiver unit 1301m is configured to send a session request message carrying the media stream protection indication information to the called UE 1302, and receive the media stream protection indication information sent by the called UE by using the 183 message or the 200 message, and determine that the called UE supports the media. The flow protection is configured to send at least one set of media stream security context information provided by itself to the called UE by using a PRACK message or an ACK message, and receive the selected set of media stream security context information sent by the called UE 1302 through the 200 message.
相应地, 被叫 UE1302包括:  Accordingly, the called UE 1302 includes:
收发单元 1302m, 用于接收携带有媒体流保护指示信息的会话请求 消息; 检查媒体流保护指示信息, 确定自身支持媒体流保护, 通过 183 消息或 200消息将携带有媒体流保护指示信息发送给主叫 UE1301 ; 接 收主叫 UE1301通过 PRACK消息或 UPDATE消息发送的至少一套媒体 流安全上下文信息; 将选择出的一套媒体流安全上下文信息通过 200消 息发送给主叫 UE1301 , 所述媒体流安全上下文信息包括安全算法和对 应的密钥。 The transceiver unit 1302m is configured to receive a session request message carrying the media stream protection indication information, check the media stream protection indication information, determine that the media stream protection is supported by itself, and send the media stream protection indication information to the host by using the 183 message or the 200 message. Call UE1301; Receiving at least one set of media stream security context information sent by the UE 1301 through a PRACK message or an UPDATE message; sending the selected set of media stream security context information to the calling UE 1301 by using a 200 message, where the media stream security context information includes security Algorithm and corresponding key.
选择单元 1302η, 用于从主叫 UE1301提供的至少一套的媒体流安 全上下文信息中选择出一套, 并通过收发单元发送给主叫 UE1301。  The selecting unit 1302n is configured to select one set from at least one set of media stream security context information provided by the calling UE 1301, and send the set to the calling UE 1301 through the transceiver unit.
实际应用中, 被叫 UE1302中还可以包括一个密钥替换单元 1302r, 将所述选择单元 1302η选择出的媒体流安全上下文信息中的密钥替换为 被叫 UE1302自身生成的密钥, 并发送给主叫 UE1302。  In the actual application, the called UE 1302 may further include a key replacement unit 1302r, and replace the key in the media stream security context information selected by the selecting unit 1302n with the key generated by the called UE 1302, and send it to the key. The calling party is UE1302.
上述方法和系统可以应用于 IMS等系统中。  The above methods and systems can be applied to systems such as IMS.
从上述内容可以看出, 主叫 UE和被叫 UE中可以包括收发单元、 密钥生成单元、 选择单元、 衍生单元等等情况, 这些单元如何组合, 其 功能具体是什么, 则与上述具体的方法或系统相关。  It can be seen from the foregoing that the calling UE and the called UE may include a transceiver unit, a key generation unit, a selection unit, a derivative unit, and the like. How are the units combined, and what is the function thereof, and the specific Method or system related.
比如: 以方法实施例二中的主叫 UE为例, 如果主叫 UE可以根据 自身生成的密钥和被叫 UE生成的密钥衍生新的密钥,那么,该主叫 UE 可以包括收发单元、 选择单元、 密钥生成单元、 衍生单元, 各个单元的 功能和连接关系可以与图 12A中 UE1201中的各个单元对应。 当然, 如 果所述主叫 UE被其它 UE呼叫时, 也应该同时具备被叫 UE1202的功 能, 此处不再赘述。  For example, the calling UE in the second embodiment of the method is used as an example. If the calling UE can derive a new key according to the generated key and the generated key of the called UE, the calling UE may include a transceiver unit. The selection unit, the key generation unit, the derivative unit, and the functions and connection relationships of the respective units may correspond to the respective units in the UE 1201 in FIG. 12A. Of course, if the calling UE is called by another UE, it should also have the function of the called UE 1202, and details are not described herein again.
又比如: 以方法实施例六为例, 如果主叫 UE可以根据自身的密钥 生成参数和被叫 UE的密钥生成参数来产生密钥, 那么, 该主叫 UE可 以包括收发单元和密钥生成单元, 其情况与图 12B中 UE1201中的各个 单元对应, 此处不再赘述。  For example, in the sixth embodiment of the method, if the calling UE can generate a key according to its own key generation parameter and the key generation parameter of the called UE, the calling UE can include the transceiver unit and the key. The unit is generated, and the situation corresponds to each unit in the UE 1201 in FIG. 12B, and details are not described herein again.
又比如: 以方法实施例七为例, 如果只有主叫 UE发送媒体流保护 指示信息, 那么, 该主叫 UE可以包括收发单元、 选择单元和密钥替换 单元, 其情况与图 13A中 UE1301中的各个单元对应, 此处不再赘述。 总之, 本发明还提出实现媒体流安全上下文协商的装置, 其内部结 构示意图按照其实现方式的不同而不同, 可以分别用图 12、 图 12A、 图 12B、 图 13A以及图 13B中 UE内部结构图表示, 此处不再赘述。 For example, in the seventh embodiment of the method, if only the calling UE sends the media stream protection indication information, the calling UE may include a transceiver unit, a selection unit, and a key replacement. The unit corresponds to each unit in the UE 1301 in FIG. 13A, and details are not described herein again. In summary, the present invention also proposes an apparatus for implementing media stream security context negotiation, and the internal structure diagram thereof is different according to the implementation manner thereof, and the internal structure diagram of the UE in FIG. 12, FIG. 12A, FIG. 12B, FIG. 13A, and FIG. 13B may be respectively used. Indicates that it will not be described here.
应用本发明实施例方案, 由于不需要 UE进行复杂的计算, 也不需 要网络中具备公钥设施等要求, 而是直接由主叫 UE和被叫 UE进行交 互来获得包括安全算法和密钥的媒体流安全上下文信息, 从而实现了 IMS系统中媒体流安全上下文协商,有利于后续在 IMS网络中进行媒体 流安全保护。  Applying the solution of the embodiment of the present invention, since the UE does not need to perform complicated calculation, and does not need the public key facility in the network, the calling UE and the called UE directly interact to obtain the security algorithm and the key. The media stream security context information, thereby implementing media stream security context negotiation in the IMS system, and facilitating subsequent media stream security protection in the IMS network.
综上所述, 以上仅为本发明的较佳实施例而已, 并非用于限定本发 明的保护范围。 凡在本发明的精神和原则之内, 所作的任何修改、 等同 替换、 改进等, 均应包含在本发明的保护范围之内。  In conclusion, the above is only the preferred embodiment of the present invention and is not intended to limit the scope of the present invention. Any modifications, equivalents, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.

Claims

权利要求书 Claim
1、 一种实现媒体流安全上下文协商的方法, 其特征在于, 该方法包 括: A method for implementing media stream security context negotiation, the method comprising:
主叫终端设备 UE通过会话请求消息将自身提供的媒体流安全上下 文信息发送给被叫 UE, 所述媒体流安全上下文信息包括安全算法; 主叫 UE接收被叫 UE通过会话应答消息提供的媒体流安全上下文 信息, 所述被叫 UE提供的媒体流安全上下文是根据主叫 UE提供的媒 体流安全上下文信息所确定的;  The calling terminal device UE sends the media stream security context information provided by itself to the called UE by using a session request message, where the media stream security context information includes a security algorithm; the calling UE receives the media stream provided by the called UE through the session response message. Security context information, the media stream security context provided by the called UE is determined according to media stream security context information provided by the calling UE;
主叫 UE和被叫 UE根据双方提供的包括安全算法的媒体流安全上 下文信息获得密钥。  The calling UE and the called UE obtain the key according to the media stream security context information provided by the two parties including the security algorithm.
2、根据权利要求 1所述的方法, 其特征在于, 所述会话请求消息为 邀请 INVITE消息, 所述会话应答消息为 183消息或 200消息, 所述主 叫 UE通过会话请求消息提供的媒体流安全上下文信息为至少一套媒体 流安全上下文信息;  The method according to claim 1, wherein the session request message is an invite INVITE message, and the session response message is a 183 message or a 200 message, and the media stream provided by the calling UE through the session request message The security context information is at least one set of media stream security context information;
所述被叫 UE确定自身提供媒体流安全上下文信息的方法为: 所述 被叫 UE从主叫 UE提供的所有媒体流安全上下文信息中选择出自身支 持的至少一套媒体流安全上下信息, 将选择出的至少一套媒体流安全上 下文信息作为自身提供的媒体流安全上下文信息。  The method for the called UE to determine the security context information of the media stream is: the called UE selects at least one set of media stream security upper and lower information supported by the media stream security context information provided by the calling UE, At least one set of media stream security context information is selected as the media stream security context information provided by itself.
3、 根据权利要求 2所述的方法, 其特征在于, 所述主叫 UE和被叫 UE根据双方提供的包括安全算法的媒体流安全上下文信息获得密钥的 步骤包括:  The method according to claim 2, wherein the step of obtaining the key by the calling UE and the called UE according to the media stream security context information of the security algorithm provided by the two parties includes:
所述主叫 UE从被叫 UE提供的至少一套的媒体流安全上下文信息 中选择出一套, 将自身生成的密钥携带于选择出的媒体流安全上下文信 息, 并通过确认 PRACK消息或 UPDATE消息发送给所述被叫 UE。 The calling UE selects a set of at least one set of media stream security context information provided by the called UE, and carries the generated key to the selected media stream security context information, and confirms the PRACK message or UPDATE. A message is sent to the called UE.
4、 根据权利要求 3所述的方法, 其特征在于, 所述主叫 UE将生成 的密钥通过确认 PRACK消息或 UPDATE消息发送给被叫 UE之后, 该 方法进一步包括: The method according to claim 3, wherein, after the calling UE sends the generated key to the called UE by using an acknowledge PRACK message or an UPDATE message, the method further includes:
所述被叫 UE生成密钥并通过 200消息发送给所述主叫 UE。  The called UE generates a key and sends the message to the calling UE through a 200 message.
5、 根据权利要求 4所述的方法, 其特征在于, 所述被叫 UE将生成 的密钥通过 200消息发送给所述主叫 UE之后, 该方法进一步包括: 所述主叫 UE和被叫 UE根据双方生成的密钥衍生出新的密钥。 The method according to claim 4, after the called UE sends the generated key to the calling UE by using a 200 message, the method further includes: the calling UE and the called party The UE derives a new key based on the keys generated by both parties.
6、 根据权利要求 1所述的方法, 其特征在于, 所述主叫 UE发送给 被叫 UE的媒体流安全上下文信息还包括主叫 UE自身的密钥生成参数; 所述被叫 UE提供的媒体流安全上下文信息还包括被叫 UE 自身的 密钥生成参数; The method according to claim 1, wherein the media stream security context information sent by the calling UE to the called UE further includes a key generation parameter of the calling UE itself; The media stream security context information also includes a key generation parameter of the called UE itself;
所述主叫 UE和被叫 UE根据双方提供的包括安全算法的媒体流安 全上下文信息获得密钥的方法为: 所述被叫 UE根据的主叫 UE提供的 媒体流安全上下文中的密钥生成参数和自身的密钥生成参数产生密钥, 所述主叫 UE根据被叫 UE提供的媒体流安全上下文中的密钥生成参数 和自身的密钥生成参数产生密钥。  The method for obtaining the key by the calling UE and the called UE according to the media stream security context information of the security algorithm provided by the two parties is: the key generation in the media stream security context provided by the calling UE according to the called UE The parameter and its own key generation parameter generate a key, and the calling UE generates a key according to the key generation parameter in the media stream security context provided by the called UE and its own key generation parameter.
7、根据权利要求 6所述的方法, 其特征在于, 所述会话请求消息为 INVITE消息, 所述会话应答消息为 183或 200消息。  The method according to claim 6, wherein the session request message is an INVITE message, and the session response message is a 183 or 200 message.
8、根据权利要求 1所述的方法, 其特征在于, 所述会话请求消息为 INVITE消息,所述会话应答消息为 183或 200消息,所述主叫 UE发送 给被叫 UE 的媒体流安全上下文信息为至少一套媒体流安全上下文信 息, 每一套媒体流安全上下文中信息中还包括密钥生成参数;  The method according to claim 1, wherein the session request message is an INVITE message, and the session response message is a 183 or 200 message, and the media stream security context sent by the calling UE to the called UE The information is at least one set of media stream security context information, and each set of media stream security context information further includes a key generation parameter;
所述被叫 UE确定自身提供的媒体流安全上下文信息的方法为: 从 主叫 UE提供的至少一套的媒体流安全上下文信息中选择出自身支持的 一套, 并将自身的密钥生成参数作为选择出的媒体流安全上下文信息中 The method for the called UE to determine the security context information of the media stream provided by the UE is: selecting a set supported by the media stream security context information provided by the calling UE, and generating a parameter of the key. As selected media stream security context information
9、 根据权利要求 8所述的方法, 其特征在于, 所述主叫 UE和被叫 UE根据双方提供的包括安全算法的媒体流安全上下文信息获得密钥的 步骤包括: The method according to claim 8, wherein the step of obtaining the key by the calling UE and the called UE according to the media stream security context information of the security algorithm provided by the two parties includes:
所述被叫 UE根据选择出的媒体流安全上下文中的密钥生成参数和 自身的密钥生成参数产生密钥, 所述主叫 UE根据被叫 UE发送的媒体 流安全上下文中的密钥生成参数和自身的密钥生成参数产生密钥。  The called UE generates a key according to the key generation parameter in the selected media stream security context and its own key generation parameter, and the calling UE generates the key according to the key in the media stream security context sent by the called UE. The parameter and its own key generation parameters generate a key.
10、 一种实现媒体流安全上下文协商的方法, 其特征在于, 该方法 包括:  10. A method for implementing media stream security context negotiation, the method comprising:
主叫 UE将携带有媒体流保护指示信息的会话请求消息发送给被叫 The calling UE sends a session request message carrying the media stream protection indication information to the called party.
UE; UE;
被叫 UE检查媒体流保护指示信息, 确定自身支持媒体流保护; 被叫 UE与主叫 UE获得包括安全算法和密钥的媒体流安全上下文 信息。  The called UE checks the media stream protection indication information to determine that it supports the media stream protection; the called UE and the calling UE obtain the media stream security context information including the security algorithm and the key.
11、 根据权利要求 10所述的方法, 其特征在于, 所述被叫 UE和主 叫 UE获得包括安全算法和密钥的媒体流安全上下文信息的步骤包括: 所述被叫 UE将自身提供的至少一套媒体流安全上下文信息发送给 主叫 UE, 所述媒体流安全上下文信息包括安全算法和对应的密钥; 所述主叫 UE直接从被叫 UE发送的所有的媒体流安全上下文信息 中选择出一套, 并将选择出的一套媒体流安全上下文信息发送给被叫 UE。  The method according to claim 10, wherein the step of the called UE and the calling UE obtaining the media stream security context information including the security algorithm and the key comprises: the called UE providing the self-provided At least one set of media stream security context information is sent to the calling UE, where the media stream security context information includes a security algorithm and a corresponding key; the calling UE directly directly from the media stream security context information sent by the called UE A set is selected, and a selected set of media stream security context information is sent to the called UE.
12、根据权利要求 11所述的方法, 其特征在于, 所述会话请求消息 为 INVITE消息;  The method according to claim 11, wherein the session request message is an INVITE message;
所述被叫 UE将自身提供的至少一套媒体流安全上下文信息通过 183消息或 200消息发送给主叫 UE; 所述主叫 UE将选择出的一套媒体流安全上下文信息通过 PRACK 消息或 ACK消息发送给被叫 UE。 The called UE sends at least one set of media stream security context information provided by itself to the calling UE by using a 183 message or a 200 message; The calling UE sends the selected set of media stream security context information to the called UE by using a PRACK message or an ACK message.
13、 根据权利要求 11所述的方法, 其特征在于, 所述主叫 UE从被 叫 UE发送的所有的媒体流安全上下文信息中选择出一套, 以及将选择 出的一套媒体流安全上下文信息发送给被叫 UE之间, 该方法进一步包 括:  The method according to claim 11, wherein the calling UE selects one set of all media stream security context information sent by the called UE, and selects a set of media stream security contexts. The information is sent between the called UEs, and the method further includes:
所述主叫 UE将自身生成的新的密钥作为所述选择出的一套媒体流 安全上下文中的密钥。  The calling UE uses the new key generated by itself as the key in the selected set of media stream security contexts.
14、 根据权利要求 10所述的方法, 其特征在于, 所述被叫 UE和主 叫 UE获得包括安全算法和密钥的媒体流安全上下文信息的步骤包括: 所述被叫 UE将自身提供的至少一套媒体流安全上下文信息发送给 主叫 UE, 所述媒体流安全上下文信息包括安全算法和对应的密钥; 所述主叫 UE从被叫 UE提供的所有媒体流安全上下文信息中选择 出自身支持的至少一套媒体流安全上下信息, 将选择出的至少一套媒体 流安全上下文信息发送给被叫 UE;  The method according to claim 10, wherein the step of the called UE and the calling UE obtaining the media stream security context information including the security algorithm and the key comprises: the called UE providing the self-provided At least one set of media stream security context information is sent to the calling UE, the media stream security context information includes a security algorithm and a corresponding key; the calling UE selects from all media stream security context information provided by the called UE At least one set of media stream security upper and lower information supported by itself, and sending at least one set of media stream security context information to the called UE;
所述被叫 UE从主叫 UE提供的至少一套的媒体流安全上下文信息 中选择出一套, 并发送给主叫 UE。  The called UE selects one set from at least one set of media stream security context information provided by the calling UE, and sends the set to the calling UE.
15、 根据权利要求 14 所述的方法, 其特征在于, 所述请求消息为 INVITE消息;  The method according to claim 14, wherein the request message is an INVITE message;
所述被叫 UE 将自身提供的至少一套媒体流安全上下文信息通过 183消息或 200消息发送给主叫 UE,;  The called UE sends at least one set of media stream security context information provided by itself to the calling UE by using a 183 message or a 200 message;
所述主叫 UE 将选择出的至少一套媒体流安全上下文信息通过 PRACK消息或 UPDATE消息发送给被叫 UE;  The calling UE sends the selected at least one set of media stream security context information to the called UE by using a PRACK message or an UPDATE message;
所述被叫 UE将选择出的一套媒体流安全上下文信息中通过 200消 息发送给主叫 UE。 The called UE sends a selected set of media stream security context information to the calling UE through a 200 message.
16、 根据权利要求 10所述的方法, 其特征在于, 所述被叫 UE和主 叫 UE获得包括安全算法和密钥的媒体流安全上下文信息的步骤包括: 所述被叫 UE将媒体流保护指示信息返回给所述主叫 UE; The method according to claim 10, wherein the step of the called UE and the calling UE obtaining the media stream security context information including the security algorithm and the key comprises: the called UE protecting the media stream Instructing information is returned to the calling UE;
所述主叫 UE检查媒体流保护指示信息, 确定所述被叫 UE支持媒 体流保护;  The calling UE checks media stream protection indication information, and determines that the called UE supports media stream protection;
所述主叫 UE将自身提供的至少一套媒体流安全上下文信息发送给 被叫 UE, 所述媒体流安全上下文信息包括安全算法和对应的密钥; 所述被叫 UE从主叫 UE发送的所有的媒体流安全上下文信息中选 择出一套, 并将选择出的一套媒体流安全上下文信息发送给主叫 UE。  The calling UE sends at least one set of media stream security context information provided by the calling UE to the called UE, where the media stream security context information includes a security algorithm and a corresponding key; the called UE sends the message from the calling UE. A set of all media stream security context information is selected, and a selected set of media stream security context information is sent to the calling UE.
17、根据权利要求 16所述的方法, 其特征在于, 所述会话请求消息 为 INVITE消息;  The method according to claim 16, wherein the session request message is an INVITE message;
所述被叫 UE将媒体流保护指示信息通过 183消息或 200消息返回 给所述主叫 UE;  The called UE returns the media stream protection indication information to the calling UE by using a 183 message or a 200 message;
所述主叫 UE 将自身提供的至少一套媒体流安全上下文信息通过 PRACK消息或 UPDATE消息发送给被叫 UE;  The calling UE sends at least one set of media stream security context information provided by itself to the called UE by using a PRACK message or an UPDATE message;
所述被叫 UE将选择出的一套媒体流安全上下文信息通过 200消息 发送给主叫 UE。  The called UE sends the selected set of media stream security context information to the calling UE through the 200 message.
18、 根据权利要求 16所述的方法, 其特征在于, 所述被叫 UE从主 叫 UE发送的所有的媒体流安全上下文信息中选择出一套, 以及将选择 出的一套媒体流安全上下文信息发送给主叫 UE之间, 该方法进一步包 括:  The method according to claim 16, wherein the called UE selects one set of all media stream security context information sent by the calling UE, and selects a set of media stream security contexts. The information is sent between the calling UEs, and the method further includes:
所述被叫 UE将自身生成的新的密钥作为选择出的一套媒体流安全 上下文信息中的密钥。  The called UE uses the new key generated by itself as a key in the selected set of media stream security context information.
19、 根据权利要求 10至 18任一项所述的方法, 其特征在于, 所述 媒体流保护指示信息是采用安全前提的方法所设置的媒体流保护指示 信息, 或者是采用将媒体对应的传输协议设置成安全传输协议的方法得 到的媒体流保护指示信息,或者是采用设置会话描述协议 SDP协议中的 k头域中的值得到媒体流保护指示信息。 The method according to any one of claims 10 to 18, wherein the media stream protection indication information is a media stream protection indication set by a method using a security premise. The information, or the media stream protection indication information obtained by setting the transmission protocol corresponding to the media to the secure transmission protocol, or the media stream protection indication information by using the value in the k header field in the SCP protocol.
20、 一种实现媒体流安全上下文协商的系统, 其特征在于, 该系统 包括:  20. A system for implementing media stream security context negotiation, the system comprising:
主叫 UE, 通过会话请求消息将自身提供的包括安全算法的媒体流 安全上下文信息发送给被叫 UE;  The calling UE sends the media stream security context information including the security algorithm provided by itself to the called UE through the session request message;
被叫 UE,被叫 UE根据会话请求消息中主叫 UE提供的媒体流安全 上下文信息确定自身需要提供的媒体流安全上下文信息, 通过会话应答 消息将确定提供的媒体流安全上下文信息发送给主叫 UE;  The called UE, the called UE determines the media stream security context information that needs to be provided according to the media stream security context information provided by the calling UE in the session request message, and sends the determined media stream security context information to the calling party through the session response message. UE;
所述主叫 UE和被叫 UE根据双方提供的包括安全算法的媒体流安 全上下文信息获得密钥。  The calling UE and the called UE obtain a key according to the media stream security context information provided by the two parties including the security algorithm.
21、根据权利要求 20所述的系统, 其特征在于, 所述会话请求消息 为 INVITE消息, 所述会话应答消息为 183消息或 200消息, 所述主叫 UE通过会话请求消息提供的媒体流安全上下文信息为至少一套媒体流 安全上下文信息; 所述被叫 UE包括:  The system according to claim 20, wherein the session request message is an INVITE message, the session response message is a 183 message or a 200 message, and the mediation flow provided by the calling UE through the session request message is secure. The context information is at least one set of media stream security context information; the called UE includes:
收发单元, 用于接收主叫 UE通过会话请求消息提供的包括安全算 法的媒体流安全上下文信息; 接收主叫 UE通过确认 PRACK 消息或 UPDATE消息发送的密钥;  a transceiver unit, configured to receive media stream security context information including a security algorithm provided by the calling UE through the session request message; and receive a key that is sent by the calling UE by confirming the PRACK message or the UPDATE message;
选择单元, 用于从主叫 UE提供的所有媒体流安全上下文信息中选 择出自身支持的至少一套媒体流安全上下信息, 将选择出的至少一套媒 体流安全上下文信息作为自身提供的媒体流安全上下文信息, 并通过收 发单元发送给主叫 UE;  a selecting unit, configured to select at least one set of media stream security upper and lower information supported by the media stream security context information provided by the calling UE, and select at least one set of media stream security context information as the media stream provided by itself Security context information, and sent to the calling UE through the transceiver unit;
所述主叫 UE包括:  The calling UE includes:
收发单元, 通过会话请求消息将自身提供的包括安全算法的媒体流 安全上下文信息发送给被叫 UE,将生成的密钥通过确认 PRACK消息或 UPDATE消息发送给所述被叫 UE; Transceiver unit, the media stream including the security algorithm provided by itself through the session request message The security context information is sent to the called UE, and the generated key is sent to the called UE by using an acknowledge PRACK message or an UPDATE message;
选择单元, 用于从被叫 UE提供的至少一套的媒体流安全上下文信 息中选择出一套;  a selecting unit, configured to select one set from at least one set of media stream security context information provided by the called UE;
密钥生成单元, 用于根据选择出的媒体流安全上下文信息中的安全 算法生成密钥。  And a key generating unit, configured to generate a key according to the security algorithm in the selected media stream security context information.
22、 根据权利要求 21所述的系统, 其特征在于, 所述被叫 UE进一 步包括:  The system according to claim 21, wherein the called UE further comprises:
密钥生成单元, 用于根据双方提供的媒体流安全上下文信息中的安 全算法生成密钥, 并通过收发单元发送给主叫 UE。  The key generation unit is configured to generate a key according to a security algorithm in the media stream security context information provided by the two parties, and send the key to the calling UE through the transceiver unit.
23、 根据权利要求 22所述的系统, 其特征在于, 所述主叫 UE进一 步包括:  The system according to claim 22, wherein the calling UE further comprises:
衍生单元, 根据双方生成的密钥衍生出新的密钥;  a derivative unit that derives a new key based on a key generated by both parties;
所述被叫 UE进一步包括:  The called UE further includes:
衍生单元, 根据双方生成的密钥衍生出新的密钥。  The derivative unit derives a new key based on the keys generated by both parties.
24、根据权利要求 20所述的系统, 其特征在于, 所述会话请求消息 为 INVITE消息, 所述会话应答消息为 183消息或 200消息;  The system according to claim 20, wherein the session request message is an INVITE message, and the session response message is a 183 message or a 200 message;
所述主叫 UE包括:  The calling UE includes:
收发单元, 用于通过会话请求消息将自身提供的至少一套媒体流安 全上下文信息发送给被叫 UE, 每一套媒体流安全上下文中信息中包括 安全算法和主叫 UE 自身的密钥生成参数; 接收被叫 UE提供的包括安 全算法和被叫 UE自身的密钥生成参数的一套媒体流安全上下文信息; 密钥生成单元, 根据被叫 UE发送的媒体流安全上下文中的密钥生 成参数和自身的密钥生成参数产生密钥;  a transceiver unit, configured to send at least one set of media stream security context information provided by the session request message to the called UE by using a session request message, where the information in each set of media stream security context includes a security algorithm and a key generation parameter of the calling UE itself Receiving a set of media stream security context information provided by the called UE, including the security algorithm and the key generation parameter of the called UE itself; the key generation unit, according to the key generation parameter in the media stream security context sent by the called UE Generating a key with its own key generation parameters;
所述被叫 UE包括: 收发单元,用于接收主叫 UE的会话请求消息,通过 183消息或 200 消息向主叫 UE发送选择的媒体流安全上下文信息, 所述选择出的媒体 流安全上下文信息包括安全算法和被叫 UE自身的密钥生成参数; The called UE includes: The transceiver unit is configured to receive a session request message of the calling UE, and send the selected media stream security context information to the calling UE by using a 183 message or a 200 message, where the selected media stream security context information includes a security algorithm and a called UE. Its own key generation parameters;
选择单元, 从主叫 UE发送的至少一套的媒体流安全上下文中选择 出一套;  The selecting unit selects one set from at least one set of media stream security contexts sent by the calling UE;
密钥生成单元,根据选择单元选择出的媒体流安全上下文中主叫 UE 的密钥生成参数和被叫 UE自身的密钥生成参数产生密钥。  The key generation unit generates a key according to the key generation parameter of the calling UE in the media stream security context selected by the selecting unit and the key generation parameter of the called UE itself.
25、 一种实现媒体流安全上下文协商的系统, 其特征在于, 该系统 包括:  25. A system for implementing media stream security context negotiation, the system comprising:
主叫 UE, 将携带有媒体流保护指示信息的会话请求消息发送给被 叫 UE, 获得包括安全算法和密钥的媒体流安全上下文信息;  The calling UE sends a session request message carrying the media stream protection indication information to the called UE, and obtains media stream security context information including the security algorithm and the key;
被叫 UE, 接收携带有媒体流保护指示信息的会话请求消息, 检查 媒体流保护指示信息, 确定自身支持媒体流保护, 获得包括安全算法和 密钥的媒体流安全上下文信息。  The called UE receives the session request message carrying the media stream protection indication information, checks the media stream protection indication information, determines that it supports the media stream protection, and obtains the media stream security context information including the security algorithm and the key.
26、根据权利要求 25所述的系统, 其特征在于, 所述会话请求消息 为 INVITE消息, 所述被叫 UE包括:  The system according to claim 25, wherein the session request message is an INVITE message, and the called UE includes:
收发单元, 用于接收携带有媒体流保护指示信息的会话请求消息; 检查媒体流保护指示信息, 确定自身支持媒体流保护, 将自身提供的至 少一套媒体流安全上下文信息通过 183消息或 200消息发送给主叫 UE, 所述媒体流安全上下文信息包括安全算法和对应的密钥; 接收主叫 UE 通过 PRACK消息或 UPDATE消息返回的选择出的媒体流安全上下文信 息。  The transceiver unit is configured to receive a session request message carrying the media stream protection indication information, check the media stream protection indication information, determine that the media stream protection is supported by itself, and pass at least one set of media stream security context information provided by itself to the 183 message or the 200 message. Sending to the calling UE, the media stream security context information includes a security algorithm and a corresponding key; and receiving the selected media stream security context information returned by the calling UE by using a PRACK message or an UPDATE message.
27、根据权利要求 26所述的系统,其特征在于,所述主叫 UE包括: 收发单元, 用于将携带有媒体流保护指示信息的会话请求消息发送 给被叫 UE;接收被叫 UE的 183消息或 200消息,将选择出的媒体流安 全上下文信息通过 PRACK消息或 UPDATE消息发送给被叫 UE; The system according to claim 26, wherein the calling UE comprises: a transceiver unit, configured to send a session request message carrying the media stream protection indication information to the called UE; and receive the called UE 183 messages or 200 messages, will select the media stream The full context information is sent to the called UE through a PRACK message or an UPDATE message;
选择单元, 从被叫 UE发送的所有的媒体流安全上下文信息中进行 选择。  The selecting unit selects from all the media stream security context information sent by the called UE.
28、 根据权利要求 26所述的系统, 其特征在于, 所述主叫 UE中的 选择单元选择出的媒体流安全上下文信息为一套媒体流安全上下文信 息。  The system according to claim 26, wherein the media stream security context information selected by the selecting unit in the calling UE is a set of media stream security context information.
29、 根据权利要求 27所述的系统, 其特征在于, 所述主叫 UE中的 选择单元选择出的媒体流安全上下文信息为至少一套媒体流安全上下 文信息, 所述被叫 UE的收发单元进一步用于向主叫 UE发送携带有媒 体流保护指示信息的消息, 所述被叫 UE进一步包括:  The system according to claim 27, wherein the media stream security context information selected by the selecting unit in the calling UE is at least one set of media stream security context information, and the called UE transceiver unit Further, the method further includes: sending, to the calling UE, a message that carries the media stream protection indication information, where the called UE further includes:
选择单元, 用于从主叫 UE提供的至少一套的媒体流安全上下文信 息中选择出一套, 并通过收发单元发送给主叫 UE。  And a selecting unit, configured to select one set from at least one set of media stream security context information provided by the calling UE, and send the set to the calling UE by using the sending and receiving unit.
30、根据权利要求 25所述的系统, 其特征在于, 所述会话请求消息 为 INVITE消息, 所述主叫 UE包括:  The system according to claim 25, wherein the session request message is an INVITE message, and the calling UE includes:
收发单元, 用于将携带有媒体流保护指示信息的会话请求消息发送 给被叫 UE;接收被叫 UE通过 183消息或 200消息发送的媒体流保护指 示信息, 确定所述被叫 UE支持媒体流保护; 将自身提供的至少一套媒 体流安全上下文信息通过 PRACK消息或 UPDATE消息发送给被叫 UE, 并接收被叫 UE通过 200消息发送的选择出的一套媒体流安全上下文信 息;  The transceiver unit is configured to send a session request message carrying the media stream protection indication information to the called UE, and receive the media stream protection indication information sent by the called UE by using the 183 message or the 200 message, and determine that the called UE supports the media stream. Protecting; transmitting at least one set of media stream security context information provided by itself to the called UE by using a PRACK message or an UPDATE message, and receiving the selected set of media stream security context information sent by the called UE through the 200 message;
所述被叫 UE包括:  The called UE includes:
收发单元, 用于接收携带有媒体流保护指示信息的会话请求消息; 检查媒体流保护指示信息, 确定自身支持媒体流保护, 通过 183消息或 200消息将携带有媒体流保护指示信息发送给主叫 UE;接收主叫 UE通 过 PRACK消息或 UPDATE消息发送的至少一套媒体流安全上下文信 息; 将选择出的一套媒体流安全上下文信息通过 200 消息发送给主叫 UE, 所述媒体流安全上下文信息包括安全算法和对应的密钥; The transceiver unit is configured to receive a session request message carrying the media stream protection indication information, check the media stream protection indication information, determine that the media stream protection is supported by itself, and send the media stream protection indication information to the calling party by using the 183 message or the 200 message. UE: receiving at least one set of media stream security context messages sent by the calling UE through a PRACK message or an UPDATE message Sending a selected set of media stream security context information to the calling UE by using a 200 message, where the media stream security context information includes a security algorithm and a corresponding key;
选择单元, 用于从主叫 UE提供的至少一套的媒体流安全上下文信 息中选择出一套, 并通过收发单元发送给主叫 UE。  And a selecting unit, configured to select one set from at least one set of media stream security context information provided by the calling UE, and send the set to the calling UE by using the sending and receiving unit.
31、 一种实现媒体流安全上下文协商的装置, 其特征在于, 该装置 为主叫 UE, 包括:  31. An apparatus for implementing a security context negotiation of a media stream, where the apparatus is a calling UE, and includes:
收发单元, 通过会话请求消息将自身提供的至少一套的媒体流安全 上下文信息发送给被叫 UE, 所述每一套媒体流安全上下文包括安全算 法; 接收被叫 UE通过会话应答消息提供的至少一套媒体流安全上下文 信息, 所述被叫 UE提供的媒体流安全上下文是根据主叫 UE提供的至 少一套媒体流安全上下文信息中选择出的; 将生成的密钥携带于选择出 的一套媒体流安全上下文中发送给被叫 UE;  The transceiver unit sends at least one set of media stream security context information provided by itself to the called UE by using a session request message, where each set of media stream security context includes a security algorithm; and receiving at least the called UE provides the session response message a set of media stream security context information, wherein the media stream security context provided by the called UE is selected according to at least one set of media stream security context information provided by the calling UE; and the generated key is carried in the selected one The set of media stream security context is sent to the called UE;
选择单元, 从被叫 UE提供的所有媒体流安全上下文信息中选择出 一套;  The selecting unit selects one set of all media stream security context information provided by the called UE;
密钥生成单元, 根据选择出的媒体流安全上下文信息中的安全算法 生成密钥。  The key generation unit generates a key according to the security algorithm in the selected media stream security context information.
32、根据权利要求 31所述的装置, 其特征在于, 所述收发单元进一 步用于接收被叫 UE发送的密钥;  The device according to claim 31, wherein the transceiver unit is further configured to receive a key sent by the called UE;
该装置进一步包括:  The device further includes:
衍生单元, 根据所述密钥生成单元产生的密钥和被叫 UE发送来的 密钥衍生出新的密钥。  The deriving unit derives a new key according to the key generated by the key generating unit and the key sent by the called UE.
33、 一种实现媒体流安全上下文协商的装置, 其特征在于, 该装置 为主叫 UE, 包括:  33. An apparatus for implementing media stream security context negotiation, where the apparatus is a calling UE, and includes:
收发单元, 通过会话请求消息将提供的至少一套媒体流安全上下文 信息发送给被叫 UE, 所述每一套媒体流安全上下文信息包括安全算法 和主叫 UE 自身的密钥生成参数; 接收被叫 UE通过会话应答消息提供 的一套媒体流安全上下文信息, 所述被叫 UE提供的一套媒体流安全上 下文中的密钥生成参数为被叫 UE自身的密钥生成参数; The transceiver unit sends at least one set of media stream security context information that is provided to the called UE by using a session request message, where each set of media stream security context information includes a security algorithm And a key generation parameter of the calling UE itself; receiving a set of media stream security context information provided by the called UE through the session response message, where the key generation parameter in the set of media stream security context provided by the called UE is Call the UE's own key generation parameters;
密钥生成单元, 根据主叫 UE 自身的密钥生成参数以及被叫 UE 自 身的密钥生成参数产生密钥。  The key generation unit generates a key according to the key generation parameter of the calling UE itself and the key generation parameter of the called UE.
34、 一种实现媒体流安全上下文协商的装置, 其特征在于, 该装置 为主叫 UE, 包括:  34. An apparatus for implementing a media stream security context negotiation, where the apparatus is a calling UE, and includes:
收发单元, 将携带有媒体流保护指示信息的会话请求消息发送给被 叫 UE;接收被叫 UE通过会话应答消息提供的至少一套媒体流安全上下 文信息, 所述媒体流安全上下文信息包括安全算法和对应的密钥; 将选 择单元选择出的媒体流安全上下文信息发送给被叫;  The transceiver unit sends a session request message carrying the media stream protection indication information to the called UE, and receives at least one set of media stream security context information provided by the called UE through the session response message, where the media stream security context information includes a security algorithm. And the corresponding key; sending the media stream security context information selected by the selecting unit to the called party;
选择单元, 从被叫 UE提供的所有媒体流安全上下文信息中进行选 择。  The selection unit selects from all media stream security context information provided by the called UE.
35、根据权利要求 34所述的装置, 其特征在于, 所述选择单元选择 出的媒体流安全上下文信息为一套媒体流安全上下文信息, 该装置进一 步包括:  The device according to claim 34, wherein the media stream security context information selected by the selecting unit is a set of media stream security context information, and the device further comprises:
密钥替换单元, 将所述选择单元选择出的媒体流安全上下文信息中 的密钥替换为主叫 UE自身生成的密钥。  The key replacement unit replaces the key in the media stream security context information selected by the selecting unit with the key generated by the calling UE itself.
36、根据权利要求 33所述的装置, 其特征在于, 所述选择单元选择 出的媒体流安全上下文信息为至少一套媒体流安全上下文信息;  The device according to claim 33, wherein the media stream security context information selected by the selecting unit is at least one set of media stream security context information;
所述收发单元进一步用于: 接收被叫 UE发送的携带有媒体流保护 指示信息的消息, 并接收被叫 UE发送的选择出的一套媒体流安全上下 文信息;  The transceiver unit is further configured to: receive a message that is sent by the called UE and carry the media stream protection indication information, and receive the selected set of media stream security context information sent by the called UE;
该装置进一步包括:  The device further includes:
密钥替换单元, 将被叫 UE发送来的一套媒体流安全上下文信息中 的密钥替换为主叫 UE 自身生成的密钥, 并通过收发单元发送给被叫 UE。 a key replacement unit, in a set of media stream security context information sent by the called UE The key is replaced by the key generated by the UE itself and sent to the called UE through the transceiver unit.
PCT/CN2008/070042 2007-01-11 2008-01-08 A method, a system and an apparatus for media flow security context negotiation WO2008083620A1 (en)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
CN200710001261 2007-01-11
CN200710001261.5 2007-01-11
CN2007101627602A CN101222320B (en) 2007-01-11 2007-09-30 Method, system and device for media stream safety context negotiation
CN200710162760.2 2007-09-30

Publications (1)

Publication Number Publication Date
WO2008083620A1 true WO2008083620A1 (en) 2008-07-17

Family

ID=39608374

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2008/070042 WO2008083620A1 (en) 2007-01-11 2008-01-08 A method, a system and an apparatus for media flow security context negotiation

Country Status (1)

Country Link
WO (1) WO2008083620A1 (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1722689A (en) * 2005-06-21 2006-01-18 中兴通讯股份有限公司 A protection method for access security of IP multimedia subsystem
CN1790982A (en) * 2005-12-26 2006-06-21 北京航空航天大学 Method and system for realizing trust identification based on negotiation communication
CN1801698A (en) * 2005-01-07 2006-07-12 华为技术有限公司 Method for ensuring media stream safety in IP multimedia service subsystem network
CN1983921A (en) * 2005-12-16 2007-06-20 华为技术有限公司 Method and system for realizing end to end media fluid safety

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1801698A (en) * 2005-01-07 2006-07-12 华为技术有限公司 Method for ensuring media stream safety in IP multimedia service subsystem network
CN1722689A (en) * 2005-06-21 2006-01-18 中兴通讯股份有限公司 A protection method for access security of IP multimedia subsystem
CN1983921A (en) * 2005-12-16 2007-06-20 华为技术有限公司 Method and system for realizing end to end media fluid safety
CN1790982A (en) * 2005-12-26 2006-06-21 北京航空航天大学 Method and system for realizing trust identification based on negotiation communication

Similar Documents

Publication Publication Date Title
US9537837B2 (en) Method for ensuring media stream security in IP multimedia sub-system
EP2124379B1 (en) A method and system for distributing secret keys of media stream
JP4284324B2 (en) Method and mobile radio system for forming and distributing encryption key in mobile radio system
CN101635823B (en) Method and system of terminal for encrypting videoconference data
US7813509B2 (en) Key distribution method
WO2015180654A1 (en) Method and apparatus for achieving secret communications
JP4856723B2 (en) Method, apparatus and / or computer program product for encrypting and transmitting media data between a media server and a subscriber device
WO2009021441A1 (en) Transmitting and receiving method, apparatus and system for security policy of multicast session
EP2426852A1 (en) Method and system for implementing secure forking calling session in ip multi-media subsystem
JP4838881B2 (en) Method, apparatus and computer program product for encoding and decoding media data
WO2008089694A1 (en) A method, a system and an equipment for obtaining the media stream protecting key in ims network
WO2008040213A1 (en) Message encryption and signature method, system and device in communication system
CN101222320B (en) Method, system and device for media stream safety context negotiation
WO2011020332A1 (en) Method and system for encrypting media data of ip multimedia subsystem session
WO2008083607A1 (en) Method and system of safely transferring media stream
WO2011131051A1 (en) Method and device for security communication negotiation
US11218515B2 (en) Media protection within the core network of an IMS network
Chen et al. An efficient end-to-end security mechanism for IP multimedia subsystem
WO2009094813A1 (en) Security parameters negotiation method and apparatus for realizing the security of the media flow
CN100583733C (en) Method for realizing safety of media flow and communication system
WO2008083620A1 (en) A method, a system and an apparatus for media flow security context negotiation
WO2009094814A1 (en) A security parameter generating method for implementing media stream security and the apparatus thereof

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 08700068

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 08700068

Country of ref document: EP

Kind code of ref document: A1