WO2012174945A1 - Media content interception method and device in ip multimedia subsystem - Google Patents

Media content interception method and device in ip multimedia subsystem Download PDF

Info

Publication number
WO2012174945A1
WO2012174945A1 PCT/CN2012/074686 CN2012074686W WO2012174945A1 WO 2012174945 A1 WO2012174945 A1 WO 2012174945A1 CN 2012074686 W CN2012074686 W CN 2012074686W WO 2012174945 A1 WO2012174945 A1 WO 2012174945A1
Authority
WO
WIPO (PCT)
Prior art keywords
content
lic
media
ims
unit
Prior art date
Application number
PCT/CN2012/074686
Other languages
French (fr)
Chinese (zh)
Inventor
高扬
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2012174945A1 publication Critical patent/WO2012174945A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M3/00Automatic or semi-automatic exchanges
    • H04M3/22Arrangements for supervision, monitoring or testing
    • H04M3/2281Call monitoring, e.g. for law enforcement purposes; Call tracing; Detection or prevention of malicious calls
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/30Network architectures or network communication protocols for network security for supporting lawful interception, monitoring or retaining of communications or communication related information
    • H04L63/306Network architectures or network communication protocols for network security for supporting lawful interception, monitoring or retaining of communications or communication related information intercepting packet switched data communications, e.g. Web, Internet or IMS communications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/10Architectures or entities
    • H04L65/1016IP multimedia subsystem [IMS]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1083In-session procedures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M7/00Arrangements for interconnection between switching centres
    • H04M7/006Networks other than PSTN/ISDN providing telephone service, e.g. Voice over Internet Protocol (VoIP), including next generation networks with a packet-switched transport layer

Definitions

  • the invention relates to a monitoring technology in an IP Multimedia Subsystem (IMS) network structure, in particular to a media content monitoring method and device in an IP multimedia subsystem, and an access gateway control function entity (AGCF, Access Gateway Control) Function ).
  • IMS IP Multimedia Subsystem
  • AGCF Access Gateway Control Function
  • the Internet Protocol Multimedia Subsystem is the future of multi-media communication and the most important component of next-generation networks. It is a subsystem supporting IP multimedia services proposed by the 3GPP (3GPP, Third Generation Partnership Project). Its distinctive feature is the use of the Session Initial Protocol (SIP) system. Communication is independent of access mode. It can have multiple multimedia service control functions and bearer separation, call and session separation, application and service separation, service and network separation, and mobile network and Internet service integration.
  • IP Session Initial Protocol
  • Lawful interception technology has become a powerful weapon for national security agencies to fight crime. Lawful interception means that the security agency sets a specific monitoring target on the communication device for the purpose of law enforcement, and monitors the session event and communication content of the monitoring target. It is an indispensable function in the communication field. Standard organizations such as the European Telecommunications Standards Institute (ETSI) and the 3GPP have been developing standards for lawful interception. Legitimate monitoring in the field of IMS networks has also formed corresponding standards and can guide specific implementation.
  • ETSI European Telecommunications Standards Institute
  • 3GPP have been developing standards for lawful interception. Legitimate monitoring in the field of IMS networks has also formed corresponding standards and can guide specific implementation.
  • FIG. 1 is a schematic diagram of a 3GPP packet-switched lawful interception architecture.
  • 3GPP proposes a lawful interception standard in the field of IMS packet switched (PS, Packet Switch) networks. Among them, the monitoring is based on the following three interfaces:
  • HI1 interface used to implement fabric control management
  • the HI2 interface is used to report the interception related information (IRI, Intercept Related Information) of the monitored target communication;
  • HI3 interface used to output the communication content of the monitored target ( CC , Communication
  • the HI1 interface is separately controlled by the HI1, and the HI2 interface message is output to the control layer device, such as the Call Session Control Function (CSCF, Call Session Control Function), to output the HI3 communication content to the bearer layer network.
  • CSCF Call Session Control Function
  • XI to X3 are interfaces that are connected to the IMS and the GSN, respectively, corresponding to the HI1 interface to the HI3 interface.
  • the standard can be applied to include Law Enforcement Monitoring Facility (LEMF), Management Function (ADMF), Data Transfer Function 2 (DF2, Delivery Function2), Data Transfer Function 3 (DF3, Delivery Function3). And in the monitoring system of the Gigabyte System Network (GSN).
  • LEMF Law Enforcement Monitoring Facility
  • ADMF Management Function
  • DF2, Delivery Function2 Data Transfer Function 2
  • DF3, Delivery Function3 Data Transfer Function 3
  • GSN Gigabyte System Network
  • the LEMF notifies the monitoring request to the ADMF through the HI1, and the request message carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the bearer layer network GSN through the X1_1, and carries the information such as the identifier of the interception object; in the IMS domain, the ADMF will listen.
  • the request message is sent to a Proxy Call Session Control Function (P-CSCF)/Serving-Call Session Control Function (S-CSCF, Serving-Call Session Control Function); ADMF sends the interception request message to the X1_3 through Xl_3 DF3, carrying information such as the identifier of the interception object; during the start of the session to the end of the session, in the IMS domain, when the session request is routed to the P-CSCF/S-CSCF via the GSN, the P-CSCF/S-CSCF determines that the user is monitored.
  • P-CSCF Proxy Call Session Control Function
  • S-CSCF Serving-Call Session Control Function
  • the P-CSCF/S-CSCF reports the IRI in the session to the DF2 through the X2; the GSN reports the CC in the session to the DF3 through the X3; DF2 root
  • the received IRI is processed by the MF and reported to the LEMF through the HI2.
  • the DF3, according to the monitoring request from the ADMF, processes the received CC through the MF and reports it to the LEMF through the HI3.
  • the next generation network with IMS as the core has a rich variety of bearer layer networks, including WLAN (Wireless Local Area Networks) and Local Area Networks (LAN). It makes it very difficult to make the lawful interception in the IMS network domain adapt to various different bearer layer networks.
  • WLAN Wireless Local Area Networks
  • LAN Local Area Networks
  • the main object of the present invention is to provide a method and device for monitoring media content in an IP multimedia subsystem, and an AGCF, which can report the CC of the session to be monitored by the AGCF to the LIC.
  • a media content monitoring method in an IP multimedia subsystem comprising:
  • the AGCF controls the media device to copy the listening content, and reports the monitoring content to the monitoring center LIC.
  • the reporting the interception content to the LIC is:
  • the interception content is reported to the LIC through an X3 interface between the AGCF and the LIC.
  • the intercepting content is sent to the LIC by using an X3 interface between the AGCF and the LIC, where:
  • the AGCF calls the LIC through the INVITE message, and negotiates with the LIC for carrying the bearer channel of the intercepted content;
  • the AGCF controls the media device to copy the intercepted content and send it to the LIC through the bearer channel.
  • the method further includes:
  • the AGCF releases the bearer channel by sending BYE signaling to the LIC.
  • the listening content is a communication content of a session to be listened to.
  • a media content monitoring method in an IP multimedia subsystem comprising:
  • the IMS network device sends a media copy indication to the IMS access device/boundary device;
  • the IMS network device When the monitored call ends, the IMS network device issues a media copy cancellation indication to the IMS access device/boundary device.
  • the method further includes:
  • the IMS access device/boundary device Upon receiving the media copy cancellation indication, the IMS access device/boundary device stops reporting the communication content of the monitored call to the LIC, and releases the resource established for transmitting the communication content of the monitored call.
  • the media copy indication and the media copy cancellation indication are carried in a session initial protocol SIP INFO message for transmission.
  • the IMS network device is a serving call session control function entity S-CSCF, or a proxy call session control function entity P-CSCF, or a listening application server AS, or a function entity CCTF for calling content;
  • the IMS access device/boundary device is a border session control entity SBC, or an interconnection boundary control function entity IBCF.
  • the communication content of the monitored call includes at least one of the following information: voice, video, fax, short message, whiteboard application content, multimedia multimedia message content.
  • a media content monitoring device in an IP multimedia subsystem comprising a control unit and a reporting unit, among them:
  • control unit configured to control the media device to copy the monitoring content
  • the reporting unit is configured to report the monitored content to the LIC.
  • the reporting unit sends the interception content to the LIC through an X3 interface between the AGCF and the LIC.
  • the device further comprises a calling unit and a negotiating unit, wherein:
  • a calling unit configured to call the LIC by using an INVITE message
  • the negotiation unit is configured to negotiate with the LIC to carry the bearer channel of the interception content, and the reporting unit further reports the interception content to the LIC by using the bearer channel.
  • a media content monitoring device in an IP multimedia subsystem comprising:
  • a sending unit configured to send a media copy indication to the IMS access device/boundary device when the monitored call starts; and, when the monitored call ends, issue a media copy cancellation indication to the IMS access device/boundary device .
  • the device further includes a receiving unit, a reporting unit, and a releasing unit, which are disposed in the IMS access device/boundary device, where:
  • a receiving unit configured to receive a media copy indication or a media copy cancellation indication
  • a reporting unit configured to report the communication content of the monitored call to the LIC in real time when the receiving unit receives the media copy indication
  • a releasing unit configured to stop, when the receiving unit receives the media copy cancellation indication, the reporting unit to report the communication content of the monitored call, and release the resource established for transmitting the communication content of the monitored call.
  • the port related information of the CC to be monitored by the AGCF and the LIC is negotiated, and the CC of the to-be-listened session is sent by the AGCF to the LIC through the DF3 through the negotiated port.
  • the invention does not need to negotiate the interface of the X3 channel between the IMS and the LIC, but directly negotiates the X3 channel between the AGCF and the DF3, so that the X3 channel is established more quickly.
  • the DF3 directly negotiates with the DF3 to receive the port-related information of the CC of the to-be-listened session, and sends the information to the IMS access gateway/IBCF.
  • the IMS access gateway/IBCF obtains the port-related information of the CC of the DF3.
  • the CC of the session to be listened to, and then directly sent to the determined port.
  • the invention can realize the monitoring of the session without major modifications to the existing IMS network, and is compatible with various bearer layer networks because the IMS access gateway/IBCF is set.
  • the invention can realize the monitoring of the session without making major changes to the existing IMS network.
  • FIG. 1 is a schematic diagram of a 3GPP packet switching legal listening architecture
  • FIG. 2 is a schematic diagram of a legal listening architecture of an IMS network according to the present invention.
  • FIG. 3 is a flowchart of a method for monitoring media content in an IP multimedia subsystem according to the present invention
  • FIG. 4 is a schematic diagram of another legal listening architecture of an IMS network according to the present invention.
  • FIG. 5 is a flowchart of interaction between an AS/S-CSCF and an IMS access gateway/IBCF according to the present invention
  • FIG. 6 is a flowchart of interaction between a P-CSCF and an IMS access gateway/IBCF according to the present invention
  • FIG. 8 is a schematic structural diagram of a composition of a media content monitoring device in another IP multimedia subsystem according to the present invention.
  • the basic idea of the present invention is to add an IMS-Access GateWay/Interconnection Border Control Functions (IBCF) between the IMS network and the bearer layer network, and the AGCF uniformly faces the bearer layer network. .
  • IBCF IMS-Access GateWay/Interconnection Border Control Functions
  • the IMS can also output the CC, but there is a phenomenon of media bypass; since the AGCF has no media negotiation capability, the present invention adopts the AGCF or After the IMS network device negotiates with the DF3, it will The port information reported by the CC informs the AGCF that the AGCF directly outputs the CC to the DF3.
  • the AGCF may be a Session Border Control (SBC), but is not limited to this device.
  • SBC Session Border Control
  • FIG. 2 is a schematic diagram of a lawful interception architecture of an IMS network according to the present invention.
  • the bearer layer network GSN, WLAN, LAN, etc.
  • the IMS through the AGCF.
  • the LEMF notifies the monitoring request to the ADMF through the HI1, and the request message carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the bearer layer network GSN/.-AVLAN/LAN through the X1_1, and carries the information such as the identifier of the interception object;
  • the interception request message is sent to the IMS through the X1_3, and carries the information such as the identifier of the interception object;
  • the ADMF sends the interception request message to the DF2 through the X1_4, and carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the DF3 through the X1_5, and carries the interception.
  • Information such as object identification; session establishment process, when the session request passes GSNA../WLAN/LAN, GSNA../WLAN/LAN judges that this user is monitored, listens to the monitored object according to the interception object identifier, and listens to the object related information.
  • AFI Adaptation Function Interface
  • the CC reports the CC to the DF3 through X3, there will be a media roundback problem, that is, the CC is first sent by the AGCF to the IMS, and the IMS sends the CC to the DF3.
  • the media negotiation is end-to-end media negotiation, and does not pass through the IMS. Only the Session Description Protocol (SDP) passes through the IMS. If the IMS needs to report the CC, the media must be uploaded to the IMS.
  • SDP Session Description Protocol
  • the content of the body communication is also sent to the IMS, so that the media must be negotiated between the two ends through the IMS, which causes the media to be bypassed.
  • the AGCF is reported to the CC in order to solve the media return caused by the IMS reporting CC.
  • the technical solution of the present invention is mainly: when the AGCF determines that the to-be-listened session is enabled, and performs media negotiation IP and port with the DF3 (MGW/MGCF), after the media negotiates, the AGCF can directly directly view the CC of the session to be monitored. Reported to LIC via DF3.
  • the DF2 reports the received IRI to the LEMF through the MF through the MF processing.
  • the DF3 reports the received CC to the LEMF through the MF and then reports it to the LEMF.
  • the main functions of the AG3 X3 interface are: X3 signaling channel establishment request; X3 signaling channel establishment response; X3 signaling universal deletion request; X3 signaling channel deletion response; X3 signaling channel media capability modification;
  • the X3 bearer channel listens for content delivery.
  • the X3 interface protocol between AGCF and DF3 uses the SIP protocol, and its workflow includes two parts: the call signaling process and the bearer channel data transmission.
  • the X3 interface signaling process between AGCF and DF3 uses the SIP protocol flow, and its working protocol stack follows RFC3261.
  • the signaling flow of the X3 interface between the AGCF and the DF3 is generated by the AGCF network element, which mainly completes the functions of establishing, deleting, and modifying the capability of the channel.
  • the X3 bearer channel mainly realizes the transmission of the communication content of the controlled target.
  • FIG. 3 is a flowchart of a method for monitoring media content in an IP multimedia subsystem according to the present invention.
  • the AGCF initiates a message content monitoring process. Specifically, the AGCF sends an X3 channel creation request process to the LIC, and after receiving the X3 channel creation request INVITE message, the LIC returns an X3 channel creation response message 200 OK. Through this process, AGCF can obtain endpoint information and transmit a copy of the controlled target communication content. It should be noted that, in general, the AGCF needs to report the CC of the listening session to the LIC through the DF3.
  • the media content monitoring method in the IP multimedia subsystem includes the following steps:
  • Step F1 the AGCF sends an INVITE message to the LIC through the DF3 to (MGW/MGCF), Request information such as dynamically assigned IP and port;
  • step F2 the LIC sends an INVITE message to the AGCF by using a 200 OK response with a 200 OK response.
  • the INVITE message carries the dynamically assigned IP and/or port information.
  • step F3 the AGCF replies to the LIC with the Ack acknowledgement message, confirming that the IP address is received. And/or port information.
  • the AGCF establishes an X3 channel with the LIC (DF3 and LIC) based on the LIC reply to the assigned IP and/or port information. After receiving the information such as IP and/or port, the AGCF receives the communication content of the session to be monitored and sends it directly to the LIC through X3.
  • the subsequent processing method is exactly the same as the prior art, and the implementation details are not described herein again.
  • the AGCF releases the bearer channel by sending BYE signaling to the LIC.
  • the communication content of the monitored call includes at least one of the following information: voice, video, fax, short message, whiteboard application content, multimedia multimedia message content.
  • FIG. 4 is a schematic diagram of another IMS network legal listening architecture according to the present invention, as shown in FIG. 4, and 3GPP packet switching shown in FIG.
  • the bearer layer network GSN, WLAN, LAN, etc.
  • IMS access gateway/IBCF IMS access gateway/IBCF
  • the LEMF notifies the monitoring request to the ADMF through the HI1, and the request message carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the bearer layer network GSN/.-AVLAN/LAN through the X1_1, and carries the information such as the identifier of the interception object;
  • the interception request message is sent to the IMS through the X1_3, and carries the information such as the identifier of the interception object;
  • the ADMF sends the interception request message to the DF2 through the X1_4, and carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the DF3 through the X1_5, and carries the interception.
  • GSNA../WLAN/LAN judges that the user is monitored, listens to the monitored object according to the interception object identifier, and sends the interception object session related information to the IMS access gateway.
  • IMS access gateway / IBCF adapts the session information sent by the bearer layer network GSN/.-AVLAN/LAN to the IMS through the Adaptation Function Interface (AFI); IMS monitors from the ADMF The request, the user is monitored, and the session information sent by the IMS access gateway/IBCF is processed, and the IRI event in the session establishment process is reported to the DF2 through the X2; at the same time, the IMS determines the user according to the interception request from the ADMF. It can be monitored, and the CC in the session establishment process can also be reported to DF3 through X3.
  • AFI Adaptation Function Interface
  • the IMS access gateway/IBCF first needs to send the CC to the IMS, and the IMS sends the CC to the DF3.
  • the media negotiation is end-to-end media negotiation, and does not pass through the IMS. Only the Session Description Protocol (SDP) passes through the IMS. If the IMS needs to report the CC, the media must be uploaded to the IMS, that is, the IMS access gateway. / IBCF must also send the media communication content to the IMS, so that each end must pass the IMS to conduct media negotiation, which causes the media to be bypassed.
  • SDP Session Description Protocol
  • the IMS access gateway/IBCF is used to report the CC.
  • reporting the CC through the IMS access gateway/IBCF brings another problem: Since the IMS access gateway/IBCF has no media negotiation capability, the Media Gateway (MGW, Media GateWay) / Media Gateway Control Function Entity (MGCF, Media GateWay Control) Function) is the dynamic allocation of IP and port.
  • MGW Media GateWay
  • MGCF Media GateWay Control Function
  • DF3 is the MGW/MGCF device
  • the IMS access gateway/IBCF is not able to negotiate with the MGW/MGCF media to obtain the dynamically assigned IP and port, and cannot be >3 ⁇ 4 CC;
  • the technical solution of the present invention mainly uses the IMS network device and the DF3 (MGW/MGCF) to perform media negotiation IP and port. After the media negotiation, the IMS network device notifies the IMS access gateway of the media negotiated IP and port. / IBCF. In this way, the IMS access gateway/IBCF can directly report the CC to DF3.
  • Call content triggering functional entity in IMS judges that the user is monitored according to the interception request from the ADMF, and performs media negotiation with the DF3 (MGW/MGCF) by calling the Content Of Communication Negotiate Interface (CCNI);
  • the CCTF may be an AS/CSCF (S-CSCF or P-CSCF); the CCTF (AS/CSCF) will negotiate information (IP, port, etc.) with the DF3 (MGW/MGCF) media through the Call Content Control Interface (CCCI, Call).
  • the Content Control Interface is sent to the IMS Access Gateway/IBCF; the IMS Access Gateway/IBCF reports CC to DF3 through the media negotiation information sent from the CCTF (AS/CSCF); DF2 will receive the IRI according to the intercept request from the ADMF. After MF processing, it is reported to LEMF through HI2. According to the monitoring request from ADMF, DF3 passes the MF processing to the received CC and then uploads it to LEMF through HI3.
  • CCNI and CCCI interfaces are merely exemplary, and the present invention is not limited to the above interfaces, and may be other interfaces defined by protocols. However, the message between the above interfaces is determined.
  • the above CSCF may be an S-CSCF or a P-CSCF.
  • the CCTF negotiates with the DF3 to control the IMS access gateway/IBCF output CC.
  • the CCTF may be an AS/S-CSCF.
  • the AS/S-CSCF interacts with the IMS access gateway/IBCF through a control interface, and can pass INFO/200OK. Messages interact.
  • FIG. 5 is a flowchart of interaction between an AS/S-CSCF and an IMS access gateway/IBCF according to the present invention. As shown in FIG. 5, the method includes the following steps:
  • the AS/S-CSCF sends an INVITE message to DF3 (MGW/MGCF) to request information such as dynamically assigned IP and port;
  • DF3 (MGW/MGCF) responds with a 200 OK response.
  • the AS/S-CSCF sends an INVITE message carrying the dynamically assigned IP and/or port information.
  • the AS/S-CSCF replies to the assigned IP and/or port by DF3 (MGW/MGCF)
  • the information is sent to the IMS access gateway/IBCF through the INFO message;
  • the IMS access gateway/IBCF replies with 200 OK to the AS/S-CSCF, confirming receipt of information such as IP and / or port.
  • the IMS access gateway/IBCF After receiving the information such as the IP address and/or the port, the IMS access gateway/IBCF receives the communication content of the session to be monitored, and then directly sends the received IP and/or port determined for the session.
  • the subsequent processing manner is exactly the same as the prior art, and the implementation details thereof will not be described herein.
  • the CCTF negotiates with the DF3 to control the IMS access gateway/IBCF to output the CC; wherein, the CCTF may be a P-CSCF; and the P-CSCF has an internal private interface, that is, an Application Level Gate (ALG);
  • ALG Application Level Gate
  • the P-CSCF exchanges information between the ALG and the IMS access gateway/IBCF through the control interface, and can interact through H.248 messages.
  • FIG. 6 is a flowchart of interaction between a P-CSCF and an IMS access gateway/IBCF according to the present invention. As shown in FIG. 6, the method includes the following steps:
  • the P-CSCF sends an INVITE message to DF3 (MGW/MGCF) requesting information such as dynamically assigned IP and port;
  • DF3 (MGW/MGCF) responds with 200 OK response.
  • the P-CSCF sends an INVITE message carrying the dynamically assigned IP and/or port information.
  • the P-CSCF sends the IP and/or port information assigned by the DF3 (MGW/MGCF) to the IMS access gateway/IBCF through the H.248 message through its internal private interface ALG.
  • the IMS access gateway/IBCF After receiving the information such as the IP address and/or the port, the IMS access gateway/IBCF receives the communication content of the session to be monitored, and then directly sends the received IP and/or port determined for the session.
  • the subsequent processing manner is exactly the same as the prior art, and the implementation details thereof will not be described herein.
  • FIG. 7 is a schematic structural diagram of a media content monitoring apparatus in an IP multimedia subsystem according to the present invention.
  • the media content monitoring apparatus in the IP multimedia subsystem of the present invention includes a control unit 70 and a reporting unit 71, where:
  • the control unit 70 is configured to control the media device to copy the monitoring content.
  • the reporting unit 71 is configured to report the monitored content to the LIC.
  • the reporting unit 70 reports the interception content to the LIC through an X3 interface between the AGCF and the LIC.
  • the present invention Based on the media content monitoring device in the IP multimedia subsystem shown in FIG. 7, the present invention
  • the media content monitoring device in the IP Multimedia Subsystem further includes a calling unit (not shown in Fig. 7) and a negotiation unit (not shown in Fig. 7), wherein:
  • a calling unit configured to call the LIC by using an INVITE message
  • the negotiation unit is configured to negotiate with the LIC to carry the bearer channel of the interception content, and the reporting unit 71 also reports the interception content to the LIC by using the bearer channel. After the reporting unit 71 reports the intercepted content, the control unit 70 releases the bearer channel by sending BYE signaling to the LIC.
  • the listening content is the communication content of the session to be listened to.
  • the communication content of the session to be monitored includes at least one of the following information: voice, video, fax, short message, whiteboard application content, multimedia multimedia message content.
  • the media content monitoring apparatus in the IP multimedia subsystem shown in FIG. 7 is designed to implement the foregoing media content monitoring method in the IP multimedia subsystem, and the implementation functions of the foregoing processing units can be referred to.
  • the related description of the media content monitoring method in the aforementioned IP multimedia subsystem is understood.
  • the functions of the various processing units in the figures may be implemented by a program running on a processor or by a specific logic circuit.
  • FIG. 8 is a schematic structural diagram of a media content monitoring apparatus in another IP multimedia subsystem according to the present invention. As shown in FIG. 8, the apparatus includes:
  • the sending unit 80 is configured to: when the monitored call starts, issue a media copy indication to the IMS access device/boundary device; and, when the monitored call ends, issue a media copy cancellation to the IMS access device/boundary device Instructions.
  • the media content monitoring device in the IP multimedia subsystem further includes a receiving unit 81, a reporting unit 82, and a releasing unit 83, which are disposed in the IMS access device/boundary device, where:
  • the receiving unit 81 is configured to receive the media copy indication or the media copy cancellation indication;
  • the reporting unit 82 is configured to report the communication content of the monitored call to the LIC in real time when the receiving unit receives the media copy indication;
  • the releasing unit 83 is configured to stop the reporting unit from reporting the communication content of the monitored call when the receiving unit receives the media copy cancellation indication, and release the resource established for transmitting the communication content of the monitored call.
  • the media copy indication and the media copy cancellation indication are carried in a SIP INFO message for transmission.
  • the IMS network device is an S-CSCF, or a P-CSCF, or a listening AS, or a CCTF;
  • the IMS access device/boundary device is a border session control entity SBC, or an interconnection boundary control function entity IBCF.
  • the media content monitoring apparatus in the IP multimedia subsystem shown in FIG. 8 is designed to implement the foregoing media content monitoring method in the IP multimedia subsystem, and the implementation functions of the foregoing processing units can be referred to.
  • the related description of the media content monitoring method in the aforementioned IP multimedia subsystem is understood.
  • the functions of the various processing units in the figures may be implemented by a program running on a processor or by a specific logic circuit.
  • the embodiment of the present invention negotiates the port related information of the CC of the to-be-listened session by the AGCF and the LIC, and sends the CC of the to-be-listened session to the LIC through the DF3 through the negotiated port by the AGCF, without negotiating X3 between the IMS and the LIC.
  • the channel interface, and the X3 channel is negotiated directly between AGCF and DF3, making the X3 channel setup faster.
  • the DF3 directly negotiates with the DF3 to receive the port-related information of the CC of the to-be-listened session, and sends the information directly to the IMS access gateway/IBCF, so that the IMS access gateway/IBCF obtains the port-related information of the CC of the DF3, and then After obtaining the CC of the session to be monitored, it can be directly sent to the determined port.

Landscapes

  • Engineering & Computer Science (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Multimedia (AREA)
  • Computer Security & Cryptography (AREA)
  • Technology Law (AREA)
  • Business, Economics & Management (AREA)
  • General Business, Economics & Management (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Telephonic Communication Services (AREA)

Abstract

Disclosed is a media content interception method in an IP multimedia subsystem. The method comprises: an access gateway control function (AGCF) controlling a media device to duplicate interception content, and reporting the interception content to a legal interception center (LIC); or, when an intercepted call starts, the IMS network device sending a media duplication instruction to an IMS access device/border device; when the intercepted call ends, the IMS network device sending a media duplication cancel instruction to the IMS access device/border device. Also disclosed is a media content interception device in an IP multimedia subsystem for implementing the method above. In the present invention, an X3 channel is directly negotiated between the AGCF and DF3, so that the X3 channel can be established more rapidly, only a few modifications need to be made to the existing system, and the present invention is compatible to various bearer layer networks.

Description

IP多媒体子系统中媒体内容监听方法及装置 技术领域  Media content monitoring method and device in IP multimedia subsystem
本发明涉及在 IP多媒体子系统( IMS , IP Multimedia Subsystem ) 网络 构中的监听技术, 尤其涉及一种 IP多媒体子系统中媒体内容监听方法及 装置、 接入网关控制功能实体( AGCF, Access Gateway Control Function )。 背景技术  The invention relates to a monitoring technology in an IP Multimedia Subsystem (IMS) network structure, in particular to a media content monitoring method and device in an IP multimedia subsystem, and an access gateway control function entity (AGCF, Access Gateway Control) Function ). Background technique
网际协议多媒体子系统( IMS , IP Multimedia Subsystem )是未来多媒 体通信的发展方向, 也是下一代网络最为重要的组成部分。 它是第三代合 作伙伴计划 ( 3GPP, Third Generation Partnership Project )提出的支持 IP多 媒体业务的子系统,其显著特征是采用了会话初始协议(SIP, Session Initial Protocol )体系, 通信与接入方式无关, 可以具备多种多媒体业务控制功能 与承载能力分离、 呼叫与会话分离、 应用与服务分离、 业务与网络分离, 以及移动网与因特网业务融合等多种能力。  The Internet Protocol Multimedia Subsystem (IMS) is the future of multi-media communication and the most important component of next-generation networks. It is a subsystem supporting IP multimedia services proposed by the 3GPP (3GPP, Third Generation Partnership Project). Its distinctive feature is the use of the Session Initial Protocol (SIP) system. Communication is independent of access mode. It can have multiple multimedia service control functions and bearer separation, call and session separation, application and service separation, service and network separation, and mobile network and Internet service integration.
正因为通信技术越来越强大, 并深入到了社会和生活的各个方面, 利 用通讯技术从事违法犯罪活动的情况也日益严重。 合法监听技术成为各国 安全部门打击犯罪活动强有力的武器。 合法监听是指安全机构出于执法的 需要, 在通讯设备上设置特定的监听目标, 对监听目标的会话事件和通讯 内容进行监听, 它是通讯领域中必不可少的功能。 欧洲电信标准化委员会 ( ETSI, European Telecommunications Standards Institute )、 3 GPP等标准组 织一直在制定合法监听的相关标准。 目前在 IMS网络领域内的合法监听也 形成了相应的标准, 并且能指导具体的实施。  It is precisely because communication technology is becoming more and more powerful, and it has penetrated into all aspects of society and life, and the use of communication technology to engage in illegal and criminal activities has become increasingly serious. Lawful interception technology has become a powerful weapon for national security agencies to fight crime. Lawful interception means that the security agency sets a specific monitoring target on the communication device for the purpose of law enforcement, and monitors the session event and communication content of the monitoring target. It is an indispensable function in the communication field. Standard organizations such as the European Telecommunications Standards Institute (ETSI) and the 3GPP have been developing standards for lawful interception. Legitimate monitoring in the field of IMS networks has also formed corresponding standards and can guide specific implementation.
图 1为 3GPP分组交换合法监听架构示意图, 如图 1所示, 3GPP提出 了一种在 IMS分组交换(PS, Packet Switch ) 网络领域内的合法监听标准。 其中, 监听基于以下三个接口实现: FIG. 1 is a schematic diagram of a 3GPP packet-switched lawful interception architecture. As shown in FIG. 1, 3GPP proposes a lawful interception standard in the field of IMS packet switched (PS, Packet Switch) networks. Among them, the monitoring is based on the following three interfaces:
HI1接口, 用于实现布控管理;  HI1 interface, used to implement fabric control management;
HI2接口, 用于上报被监听目标通信的监听相关信息 (IRI , Intercept Related Information );  The HI2 interface is used to report the interception related information (IRI, Intercept Related Information) of the monitored target communication;
HI3 接口, 用于输出被监听目标的通信内容( CC , Communication HI3 interface, used to output the communication content of the monitored target ( CC , Communication
Content ); Content );
通过 HI1对^载层网络分别布控, 向控制层设备如呼叫会话控制功能 实体 ( CSCF, Call Session Control Function )输出 HI2接口消息, 向承载层 网络输出 HI3通信内容。 图中, XI至 X3为 IMS与 GSN连接的分别对应 于 HI1接口至 HI3接口的接口。  The HI1 interface is separately controlled by the HI1, and the HI2 interface message is output to the control layer device, such as the Call Session Control Function (CSCF, Call Session Control Function), to output the HI3 communication content to the bearer layer network. In the figure, XI to X3 are interfaces that are connected to the IMS and the GSN, respectively, corresponding to the HI1 interface to the HI3 interface.
该标准可应用于包括有法律强制监控单元 (LEMF, Law Enforcement Monitoring Facility )、 管理功能(ADMF, Administration Function )、 数据传 输功能 2 ( DF2 , Delivery Function2 )、 数据传输功能 3 ( DF3 , Delivery Function3 )和监听设备千兆字节系统网络( GSN, Gigabyte System Network ) 的监听系统中。  The standard can be applied to include Law Enforcement Monitoring Facility (LEMF), Management Function (ADMF), Data Transfer Function 2 (DF2, Delivery Function2), Data Transfer Function 3 (DF3, Delivery Function3). And in the monitoring system of the Gigabyte System Network (GSN).
LEMF通过 HI1将监听请求通知至 ADMF, 请求消息中携带监听对象 身份标识等信息; ADMF将监听请求消息通过 Xl_l 发送至承载层网络 GSN , 携带监听对象身份标识等信息; 在 IMS域内, ADMF将监听请求消 息发送至代理呼叫会话控制功能实体(P-CSCF, Proxy Call Session Control Function )/服务呼叫会话控制功能实体( S-CSCF, Serving-Call Session Control Function ); ADMF将监听请求消息通过 Xl_3发送至 DF3 , 携带监听对象 身份标识等信息; 在会话开始至会话结束期间, 在 IMS域内, 会话请求经 GSN路由至 P-CSCF/S-CSCF时, P-CSCF/S-CSCF判断此用户被监控时,根 据监听对象标识监听被监听对象; P-CSCF/S-CSCF将会话过程中的 IRI通 过 X2上报至 DF2; GSN将会话过程中的 CC通过 X3上报至 DF3 ; DF2根 据来自 ADMF的监听请求, 将接收的 IRI经过 MF处理后通过 HI2上报至 LEMF; DF3根据来自 ADMF的监听请求,将接收的 CC经过 MF处理后通 过 HI3上报至 LEMF。 The LEMF notifies the monitoring request to the ADMF through the HI1, and the request message carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the bearer layer network GSN through the X1_1, and carries the information such as the identifier of the interception object; in the IMS domain, the ADMF will listen. The request message is sent to a Proxy Call Session Control Function (P-CSCF)/Serving-Call Session Control Function (S-CSCF, Serving-Call Session Control Function); ADMF sends the interception request message to the X1_3 through Xl_3 DF3, carrying information such as the identifier of the interception object; during the start of the session to the end of the session, in the IMS domain, when the session request is routed to the P-CSCF/S-CSCF via the GSN, the P-CSCF/S-CSCF determines that the user is monitored. The P-CSCF/S-CSCF reports the IRI in the session to the DF2 through the X2; the GSN reports the CC in the session to the DF3 through the X3; DF2 root According to the monitoring request from the ADMF, the received IRI is processed by the MF and reported to the LEMF through the HI2. The DF3, according to the monitoring request from the ADMF, processes the received CC through the MF and reports it to the LEMF through the HI3.
如今, 在实际应用中, 以 IMS为核心的下一代网络中, 承载层网络种 类丰富, 包括无线局域网络( WLAN , Wireless Local Area Networks ), 局域 网络(LAN, Local Area Networks )等。 使得 IMS网络领域的合法监听需要 适应各类不同的承载层网络, 从而变得非常困难。 同时, 需要众多的承载 层网络都能够实现监听功能, 在现实中也很难实现。 很多设备, 在现网中 可能无法提供监听功能, 这样会造成监听功能不可用。 发明内容  Nowadays, in practical applications, the next generation network with IMS as the core has a rich variety of bearer layer networks, including WLAN (Wireless Local Area Networks) and Local Area Networks (LAN). It makes it very difficult to make the lawful interception in the IMS network domain adapt to various different bearer layer networks. At the same time, many carrier layer networks are required to implement the monitoring function, which is difficult to implement in reality. Many devices may not provide monitoring function on the live network, which may cause the monitoring function to be unavailable. Summary of the invention
有鉴于此, 本发明的主要目的在于提供一种 IP多媒体子系统中媒体内 容监听方法及装置、 AGCF, 能由 AGCF向 LIC上报待监听的会话的 CC。  In view of the above, the main object of the present invention is to provide a method and device for monitoring media content in an IP multimedia subsystem, and an AGCF, which can report the CC of the session to be monitored by the AGCF to the LIC.
为达到上述目的, 本发明的技术方案是这样实现的:  In order to achieve the above object, the technical solution of the present invention is achieved as follows:
一种 IP多媒体子系统中媒体内容监听方法, 包括:  A media content monitoring method in an IP multimedia subsystem, comprising:
AGCF控制媒体设备复制监听内容, 并将所述监听内容上报给监听中 心 LIC。  The AGCF controls the media device to copy the listening content, and reports the monitoring content to the monitoring center LIC.
优选地, 所述将所述监听内容上报给 LIC, 为:  Preferably, the reporting the interception content to the LIC is:
通过所述 AGCF与所述 LIC之间的 X3接口将所述监听内容上报给所 述 LIC。  The interception content is reported to the LIC through an X3 interface between the AGCF and the LIC.
优选地, 所述通过所述 AGCF与所述 LIC之间的 X3接口将所述监听 内容上才艮给所述 LIC, 为:  Preferably, the intercepting content is sent to the LIC by using an X3 interface between the AGCF and the LIC, where:
所述 AGCF通过 INVITE消息呼叫 LIC, 并与 LIC协商用于 载所述 监听内容的承载通道;  The AGCF calls the LIC through the INVITE message, and negotiates with the LIC for carrying the bearer channel of the intercepted content;
所述 AGCF控制所述媒体设备复制监听内容, 并通过所述承载通道发 送到 LIC。 优选地, 所述方法还包括: The AGCF controls the media device to copy the intercepted content and send it to the LIC through the bearer channel. Preferably, the method further includes:
所述监听内容上报完毕后, 所述 AGCF通过向 LIC发送 BYE信令,释 放所述承载通道。  After the monitoring content is reported, the AGCF releases the bearer channel by sending BYE signaling to the LIC.
优选地, 所述监听内容为待监听会话的通信内容。  Preferably, the listening content is a communication content of a session to be listened to.
一种 IP多媒体子系统中媒体内容监听方法, 包括:  A media content monitoring method in an IP multimedia subsystem, comprising:
被监听呼叫开始时, IMS网络设备向 IMS接入设备 /边界设备发出媒体 复制指示;  When the monitored call starts, the IMS network device sends a media copy indication to the IMS access device/boundary device;
被监听呼叫结束时,所述 IMS网络设备向所述 IMS接入设备 /边界设备 发出媒体复制取消指示。  When the monitored call ends, the IMS network device issues a media copy cancellation indication to the IMS access device/boundary device.
优选地, 所述方法还包括:  Preferably, the method further includes:
所述 IMS接入设备 /边界设备接收到所述媒体复制指示时, 实时向 LIC 上报被监听呼叫的通信内容;  Receiving, by the IMS access device/boundary device, the communication content of the monitored call to the LIC in real time when receiving the media copy indication;
所述 IMS接入设备 /边界设备接收到收到媒体复制取消指示时, 停止向 所述 LIC上报被监听呼叫的通信内容, 并释放为传输被监听呼叫的通信内 容建立的资源。  Upon receiving the media copy cancellation indication, the IMS access device/boundary device stops reporting the communication content of the monitored call to the LIC, and releases the resource established for transmitting the communication content of the monitored call.
优选地 , 所述媒体复制指示和所述媒体复制取消指示承载于会话初始 协议 SIP INFO消息中进行传输。  Preferably, the media copy indication and the media copy cancellation indication are carried in a session initial protocol SIP INFO message for transmission.
优选地,所述 IMS网络设备为服务呼叫会话控制功能实体 S-CSCF,或 为代理呼叫会话控制功能实体 P-CSCF, 或为监听应用服务器 AS, 或为呼 叫内容触发功能实体 CCTF;  Preferably, the IMS network device is a serving call session control function entity S-CSCF, or a proxy call session control function entity P-CSCF, or a listening application server AS, or a function entity CCTF for calling content;
所述 IMS接入设备 /边界设备为边界会话控制实体 SBC,或互联边界控 制功能实体 IBCF。  The IMS access device/boundary device is a border session control entity SBC, or an interconnection boundary control function entity IBCF.
优选地, 所述被监听呼叫的通信内容包括以下信息的至少一种: 语音、 视频、 传真、 短信、 白板应用内容、 多媒体彩信内容。  Preferably, the communication content of the monitored call includes at least one of the following information: voice, video, fax, short message, whiteboard application content, multimedia multimedia message content.
一种 IP多媒体子系统中媒体内容监听装置,包括控制单元和上报单元, 其中: A media content monitoring device in an IP multimedia subsystem, comprising a control unit and a reporting unit, among them:
控制单元, 用于控制媒体设备复制监听内容 ;  a control unit, configured to control the media device to copy the monitoring content;
上报单元, 用于将所述监听内容上报给 LIC。  The reporting unit is configured to report the monitored content to the LIC.
优选地, 所述上报单元通过 AGCF与所述 LIC之间的 X3接口将所述 监听内容上才艮给所述 LIC。  Preferably, the reporting unit sends the interception content to the LIC through an X3 interface between the AGCF and the LIC.
优选地, 所述装置还包括呼叫单元和协商单元, 其中:  Preferably, the device further comprises a calling unit and a negotiating unit, wherein:
呼叫单元 , 用于通过 INVITE消息呼叫 LIC;  a calling unit, configured to call the LIC by using an INVITE message;
协商单元, 用于与 LIC协商用于承载所述监听内容的承载通道; 所述上报单元还通过所述承载通道将所述监听内容上报给所述 LIC。 一种 IP多媒体子系统中媒体内容监听装置, 包括:  The negotiation unit is configured to negotiate with the LIC to carry the bearer channel of the interception content, and the reporting unit further reports the interception content to the LIC by using the bearer channel. A media content monitoring device in an IP multimedia subsystem, comprising:
发送单元, 用于在被监听呼叫开始时, 向 IMS接入设备 /边界设备, 发 出媒体复制指示; 以及, 在被监听呼叫结束时, 向所述 IMS接入设备 /边界 设备发出媒体复制取消指示。  a sending unit, configured to send a media copy indication to the IMS access device/boundary device when the monitored call starts; and, when the monitored call ends, issue a media copy cancellation indication to the IMS access device/boundary device .
优选地, 所述装置还包括设置于所述 IMS接入设备 /边界设备中的接收 单元、 上报单元和释放单元, 其中:  Preferably, the device further includes a receiving unit, a reporting unit, and a releasing unit, which are disposed in the IMS access device/boundary device, where:
接收单元, 用于接收媒体复制指示或媒体复制取消指示时;  a receiving unit, configured to receive a media copy indication or a media copy cancellation indication;
上报单元, 用于在所述接收单元接收到所述媒体复制指示时, 实时向 LIC上报被监听呼叫的通信内容;  a reporting unit, configured to report the communication content of the monitored call to the LIC in real time when the receiving unit receives the media copy indication;
释放单元, 用于在所述接收单元接收到所述媒体复制取消指示时, 停 止所述上报单元上报被监听呼叫的通信内容, 释放为传输被监听呼叫的通 信内容建立的资源。  And a releasing unit, configured to stop, when the receiving unit receives the media copy cancellation indication, the reporting unit to report the communication content of the monitored call, and release the resource established for transmitting the communication content of the monitored call.
本发明中, 通过由 AGCF与 LIC协商上 4艮待监听会话的 CC的端口相 关信息, 并由 AGCF通过所协商端口将待监听会话的 CC通过 DF3发送给 LIC。 本发明无需在 IMS与 LIC之间协商 X3通道的接口, 而直接由 AGCF 与 DF3之间协商 X3通道, 使 X3通道建立更快捷。 并且, 通过由 IMS网 络设备与 DF3直接协商该 DF3接收待监听会话的 CC的端口相关信息, 并 直接发送给 IMS接入网关 / IBCF , 这样, IMS接入网关 / IBCF获取 DF3的 CC的端口相关信息后, 获取到待监听会话的 CC, 进而直接发送至该所确 定的端口即可。 本发明不必对现有的 IMS网络进行较大的改动即可实现对 会话进行监听, 并且, 由于设置了 IMS接入网关 / IBCF, 可兼容各种承载 层网络。 本发明不必对现有的 IMS网络进行较大的改动即可实现对会话进 行监听。 附图说明 In the present invention, the port related information of the CC to be monitored by the AGCF and the LIC is negotiated, and the CC of the to-be-listened session is sent by the AGCF to the LIC through the DF3 through the negotiated port. The invention does not need to negotiate the interface of the X3 channel between the IMS and the LIC, but directly negotiates the X3 channel between the AGCF and the DF3, so that the X3 channel is established more quickly. And by the IMS network The DF3 directly negotiates with the DF3 to receive the port-related information of the CC of the to-be-listened session, and sends the information to the IMS access gateway/IBCF. The IMS access gateway/IBCF obtains the port-related information of the CC of the DF3. The CC of the session to be listened to, and then directly sent to the determined port. The invention can realize the monitoring of the session without major modifications to the existing IMS network, and is compatible with various bearer layer networks because the IMS access gateway/IBCF is set. The invention can realize the monitoring of the session without making major changes to the existing IMS network. DRAWINGS
图 1为 3GPP分组交换合法监听架构示意图;  FIG. 1 is a schematic diagram of a 3GPP packet switching legal listening architecture;
图 2为本发明 IMS网络合法监听架构示意图;  2 is a schematic diagram of a legal listening architecture of an IMS network according to the present invention;
图 3为本发明 IP多媒体子系统中媒体内容监听方法流程图;  3 is a flowchart of a method for monitoring media content in an IP multimedia subsystem according to the present invention;
图 4为本发明另一 IMS网络合法监听架构示意图;  4 is a schematic diagram of another legal listening architecture of an IMS network according to the present invention;
图 5为本发明中 AS/S-CSCF与 IMS接入网关/ IBCF进行交互的流程图; 图 6为本发明中 P-CSCF与 IMS接入网关/ IBCF进行交互的流程图; 图 7为本发明 IP多媒体子系统中媒体内容监听装置的组成结构示意图; 图 8为本发明另一 IP多媒体子系统中媒体内容监听装置的组成结构示 意图。 具体实施方式  5 is a flowchart of interaction between an AS/S-CSCF and an IMS access gateway/IBCF according to the present invention; FIG. 6 is a flowchart of interaction between a P-CSCF and an IMS access gateway/IBCF according to the present invention; FIG. 8 is a schematic structural diagram of a composition of a media content monitoring device in another IP multimedia subsystem according to the present invention; FIG. detailed description
本发明的基本思想是, 在 IMS网络与承载层网络之间增加 IMS接入网 关( IMS-Access GateWay ) /边界控制功能实体( IBCF, Interconnection Border Control Functions ), 由 AGCF统一面对接承载层网络。 这样, 通过 AGCF 将会话建立过程中的相关信息发送给 IMS, IMS输出 IRL 当然, IMS也可 以输出 CC, 但是会存在媒体迂回的现象; 由于 AGCF没有媒体协商能力, 本发明中采用了通过 AGCF或 IMS网络设备与 DF3进行媒体协商后, 将 CC上报的端口信息通知 AGCF,由 AGCF直接向 DF3输出 CC。其中, AGCF 可以为边界会话控制实体(SBC, Session Border Control ), 但是不仅限于此 设备。 The basic idea of the present invention is to add an IMS-Access GateWay/Interconnection Border Control Functions (IBCF) between the IMS network and the bearer layer network, and the AGCF uniformly faces the bearer layer network. . In this way, the related information in the session establishment process is sent to the IMS through the AGCF, and the IMS outputs the IRL. Of course, the IMS can also output the CC, but there is a phenomenon of media bypass; since the AGCF has no media negotiation capability, the present invention adopts the AGCF or After the IMS network device negotiates with the DF3, it will The port information reported by the CC informs the AGCF that the AGCF directly outputs the CC to the DF3. The AGCF may be a Session Border Control (SBC), but is not limited to this device.
图 2为本发明 IMS网络合法监听架构示意图, 如图 2所示, 与图 1所 示的 3GPP分组交换合法监听架构相比,本发明 IMS网络合法监听架构中, 承载层网络(GSN、 WLAN、 LAN等)通过 AGCF与 IMS连接, 以下详细 说明各网元及其之间的信息交互方式。  2 is a schematic diagram of a lawful interception architecture of an IMS network according to the present invention. As shown in FIG. 2, compared with the 3GPP packet switched lawful interception architecture shown in FIG. 1, the bearer layer network (GSN, WLAN, LAN, etc.) is connected to the IMS through the AGCF. The following describes in detail how each network element and its information exchange.
LEMF通过 HI1将监听请求通知至 ADMF, 请求消息中携带监听对象 身份标识等信息; ADMF将监听请求消息通过 Xl_l 发送至承载层网络 GSN/.-AVLAN/LAN, 携带监听对象身份标识等信息; ADMF将监听请求 消息通过 Xl_3发送至 IMS,携带监听对象身份标识等信息; ADMF将监听 请求消息通过 Xl_4发送至 DF2, 携带监听对象身份标识等信息; ADMF 将监听请求消息通过 Xl_5发送至 DF3,携带监听对象身份标识等信息; 会 话建立过程, 会话请求经过 GSNA../WLAN/LAN时, GSNA../WLAN/LAN 判断此用户被监控, 根据监听对象标识监听被监听对象, 将监听对象会话 相关信息发送至 AGCF; AGCF将承载层网络 GSN/.../WLAN/LAN发送的 会话信息进行适配后通过适配功能接口( AFI, Adaptation Function Interface ) 发送至 IMS; IMS根据来自 ADMF 的监听请求, 判断此用户被监控, 将 AGCF发送的会话信息进行处理后, 将会话建立过程中的 IRI事件通过 X2 上报至 DF2; 同时, IMS根据来自 ADMF的监听请求, 判断此用户被监控, 也可将会话建立过程中的 CC通过 X3上报至 DF3。 但是, 如果由 IMS将 CC通过 X3上报至 DF3, 会存在媒体迂回问题, 即首先需由 AGCF将 CC 发送至 IMS, IMS再将 CC发送给 DF3。 而媒体协商是端到端之间的媒体 协商,并不经过 IMS,只是会话描述协议( SDP, Session Description Protocol ) 经过 IMS; IMS若需上报 CC, 必须将媒体上载至 IMS, 即 AGCF必须将媒 体通信内容也发送给 IMS,这样各端之间必须通过 IMS才能进行媒体协商, 即造成媒体迂回; 针对上述问题, 为解决 IMS上报 CC造成媒体迂回, 采 用 AGCF上报 CC。 The LEMF notifies the monitoring request to the ADMF through the HI1, and the request message carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the bearer layer network GSN/.-AVLAN/LAN through the X1_1, and carries the information such as the identifier of the interception object; The interception request message is sent to the IMS through the X1_3, and carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the DF2 through the X1_4, and carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the DF3 through the X1_5, and carries the interception. Information such as object identification; session establishment process, when the session request passes GSNA../WLAN/LAN, GSNA../WLAN/LAN judges that this user is monitored, listens to the monitored object according to the interception object identifier, and listens to the object related information. Sending to the AGCF; the AGCF adapts the session information sent by the bearer layer network GSN/.../WLAN/LAN to the IMS through the Adaptation Function Interface (AFI); the IMS is based on the intercept request from the ADMF. It is judged that the user is monitored, and the session information sent by the AGCF is processed, and the IRI event in the session establishment process is performed. Reported to the DF2 via an X2; Meanwhile, according to the IMS from the ADMF listen request, it is determined the user is monitored, it can be established during the session to be reported by CC X3 DF3. However, if the CC reports the CC to the DF3 through X3, there will be a media roundback problem, that is, the CC is first sent by the AGCF to the IMS, and the IMS sends the CC to the DF3. The media negotiation is end-to-end media negotiation, and does not pass through the IMS. Only the Session Description Protocol (SDP) passes through the IMS. If the IMS needs to report the CC, the media must be uploaded to the IMS. The content of the body communication is also sent to the IMS, so that the media must be negotiated between the two ends through the IMS, which causes the media to be bypassed. In response to the above problem, the AGCF is reported to the CC in order to solve the media return caused by the IMS reporting CC.
针对上述场景问题, 本发明技术方案主要是, 在 AGCF确定待监听会 话开启时, 与 DF3 ( MGW/MGCF )进行媒体协商 IP和端口, 媒体协商好 之后, AGCF就能直接将待监听会话的 CC通过 DF3上报至 LIC。 DF2根 据来自 ADMF的监听请求, 将接收的 IRI经过 MF处理后通过 HI2上报至 LEMF; DF3根据来自 ADMF的监听请求,将接收的 CC经过 MF处理后通 过 HI3上报至 LEMF。  For the above scenario problem, the technical solution of the present invention is mainly: when the AGCF determines that the to-be-listened session is enabled, and performs media negotiation IP and port with the DF3 (MGW/MGCF), after the media negotiates, the AGCF can directly directly view the CC of the session to be monitored. Reported to LIC via DF3. The DF2 reports the received IRI to the LEMF through the MF through the MF processing. The DF3 reports the received CC to the LEMF through the MF and then reports it to the LEMF.
本发明中, AGCF的 X3接口主要的功能有: X3信令通道建立请求; X3信令通道建立响应; X3信令通通删除请求; X3信令通道删除响应; X3 信令通道媒体能力修改; 以及, X3承载通道监听内容传送。  In the present invention, the main functions of the AG3 X3 interface are: X3 signaling channel establishment request; X3 signaling channel establishment response; X3 signaling universal deletion request; X3 signaling channel deletion response; X3 signaling channel media capability modification; The X3 bearer channel listens for content delivery.
AGCF与 DF3之间的 X3接口协议采用 SIP协议,其工作流程包括呼叫 信令流程和承载通道数据发送两部分。 AGCF与 DF3之间的 X3接口信令 流程采用 SIP协议流程, 其工作协议栈遵循 RFC3261。 AGCF与 DF3之间 的 X3接口的信令流程由 AGCF网元产生, 主要完成通道的建立、删除、媒 体能力修改等功能, X3承载通道主要实现被控目标通信内容的传输。  The X3 interface protocol between AGCF and DF3 uses the SIP protocol, and its workflow includes two parts: the call signaling process and the bearer channel data transmission. The X3 interface signaling process between AGCF and DF3 uses the SIP protocol flow, and its working protocol stack follows RFC3261. The signaling flow of the X3 interface between the AGCF and the DF3 is generated by the AGCF network element, which mainly completes the functions of establishing, deleting, and modifying the capability of the channel. The X3 bearer channel mainly realizes the transmission of the communication content of the controlled target.
图 3为本发明 IP多媒体子系统中媒体内容监听方法流程图, 如图 3所 示, 当被控目标呼叫建立成功, 开始媒体流传送时, AGCF将发起消息内 容监听流程。 具体的, AGCF向 LIC发送 X3通道创建请求流程, LIC接收 到 X3通道创建请求 INVITE消息后,则返回 X3通道创建应答消息 200 OK。 AGCF 可以通过该流程得到端点信息, 传输被控目标通信内容的复本。 需 要说明的是, 一般而言, AGCF需通过 DF3向 LIC上报待监听会话的 CC; 本示例 IP多媒体子系统中媒体内容监听方法包括以下步驟:  3 is a flowchart of a method for monitoring media content in an IP multimedia subsystem according to the present invention. As shown in FIG. 3, when a controlled target call is successfully established and media stream transmission is started, the AGCF initiates a message content monitoring process. Specifically, the AGCF sends an X3 channel creation request process to the LIC, and after receiving the X3 channel creation request INVITE message, the LIC returns an X3 channel creation response message 200 OK. Through this process, AGCF can obtain endpoint information and transmit a copy of the controlled target communication content. It should be noted that, in general, the AGCF needs to report the CC of the listening session to the LIC through the DF3. The media content monitoring method in the IP multimedia subsystem includes the following steps:
步驟 Fl , AGCF通过 DF3向 LIC发送 INVITE消息至( MGW/MGCF ), 请求动态分配的 IP和端口等信息; Step F1, the AGCF sends an INVITE message to the LIC through the DF3 to (MGW/MGCF), Request information such as dynamically assigned IP and port;
步驟 F2, LIC通过 DF3 ( MGW/MGCF ) 以 200OK响应回复 AGCF发 送 INVITE消息, INVITE消息中携带动态分配的 IP和 /或端口等信息; 步驟 F3, AGCF向 LIC回复 Ack确认信息, 确认接收到 IP和 /或端口 等信息。 AGCF根据 LIC回复分配的 IP和 /或端口等信息,建立与 LIC( DF3 及 LIC ) X3通道。 接收到 IP和 /或端口等信息后, AGCF接收到待监听会话的通信内容后, 直接通过 X3通发送给 LIC。 后续处理方式与现有技术完全相同, 这里不再 赘述其实现细节。  In step F2, the LIC sends an INVITE message to the AGCF by using a 200 OK response with a 200 OK response. The INVITE message carries the dynamically assigned IP and/or port information. In step F3, the AGCF replies to the LIC with the Ack acknowledgement message, confirming that the IP address is received. And/or port information. The AGCF establishes an X3 channel with the LIC (DF3 and LIC) based on the LIC reply to the assigned IP and/or port information. After receiving the information such as IP and/or port, the AGCF receives the communication content of the session to be monitored and sends it directly to the LIC through X3. The subsequent processing method is exactly the same as the prior art, and the implementation details are not described herein again.
本发明中, 监听内容上报完毕后, AGCF通过向 LIC发送 BYE信令, 释放所述承载通道。  In the present invention, after the monitoring content is reported, the AGCF releases the bearer channel by sending BYE signaling to the LIC.
本发明中, 被监听呼叫的通信内容包括以下信息的至少一种: 语音、 视频、 传真、 短信、 白板应用内容、 多媒体彩信内容。  In the present invention, the communication content of the monitored call includes at least one of the following information: voice, video, fax, short message, whiteboard application content, multimedia multimedia message content.
或者, 本发明 IP多媒体子系统中媒体内容监听方法也可以由下述方式 实现: 图 4为本发明另一 IMS网络合法监听架构示意图, 如图 4所示, 与图 1所示的 3GPP分组交换合法监听架构相比, 本发明 IMS网络合法监听架 构中, 承载层网络(GSN、 WLAN、 LAN等)通过 IMS接入网关 / IBCF与  Alternatively, the media content monitoring method in the IP multimedia subsystem of the present invention may also be implemented in the following manner: FIG. 4 is a schematic diagram of another IMS network legal listening architecture according to the present invention, as shown in FIG. 4, and 3GPP packet switching shown in FIG. Compared with the lawful interception architecture, in the IMS network lawful interception architecture of the present invention, the bearer layer network (GSN, WLAN, LAN, etc.) passes through the IMS access gateway/IBCF and
LEMF通过 HI1将监听请求通知至 ADMF, 请求消息中携带监听对象 身份标识等信息; ADMF将监听请求消息通过 Xl_l 发送至承载层网络 GSN/.-AVLAN/LAN, 携带监听对象身份标识等信息; ADMF将监听请求 消息通过 Xl_3发送至 IMS,携带监听对象身份标识等信息; ADMF将监听 请求消息通过 Xl_4发送至 DF2, 携带监听对象身份标识等信息; ADMF 将监听请求消息通过 Xl_5发送至 DF3,携带监听对象身份标识等信息; 会 话建立过程, 会话请求经过 GSNA../WLAN/LAN时, GSNA../WLAN/LAN 判断此用户被监控, 根据监听对象标识监听被监听对象, 将监听对象会话 相关信息发送至 IMS接入网关/ IBCF; IMS接入网关/ IBCF将承载层网络 GSN/.-AVLAN/LAN发送的会话信息进行适配后通过适配功能接口 ( AFI, Adaptation Function Interface )发送至 IMS; IMS根据来自 ADMF的监听请 求, 判断此用户被监控, 将 IMS接入网关 /IBCF发送的会话信息进行处理 后, 将会话建立过程中的 IRI事件通过 X2上报至 DF2; 同时, IMS根据来 自 ADMF的监听请求, 判断此用户被监控, 也可将会话建立过程中的 CC 通过 X3上报至 DF3。 但是, 如果由 IMS将 CC通过 X3上报至 DF3, 会存 在媒体迂回问题, 即首先需由 IMS接入网关/ IBCF将 CC发送至 IMS, IMS 再将 CC发送给 DF3。而媒体协商是端到端之间的媒体协商,并不经过 IMS, 只是会话描述协议(SDP, Session Description Protocol )经过 IMS; IMS若 需上报 CC, 必须将媒体上载至 IMS, 即 IMS接入网关/ IBCF必须将媒体通 信内容也发送给 IMS, 这样各端必须通过 IMS才能进行媒体协商, 即造成 媒体迂回; 针对上述问题, 为解决 IMS上报 CC造成媒体迂回, 采用 IMS 接入网关/ IBCF上报 CC。 然而, 通过 IMS接入网关/ IBCF上报 CC会带来 另外一个问题: 由于 IMS 接入网关/ IBCF 没有媒体协商能力, 媒体网关 ( MGW, Media GateWay ) /媒体网关控制功能实体( MGCF, Media GateWay Control Function )又是动态分配 IP和端口的, 当 DF3为 MGW/MGCF设备 时, IMS接入网关/ IBCF没有能力与 MGW/MGCF媒体协商获得动态分配 的 IP和端口, 而就无法上 >¾ CC; The LEMF notifies the monitoring request to the ADMF through the HI1, and the request message carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the bearer layer network GSN/.-AVLAN/LAN through the X1_1, and carries the information such as the identifier of the interception object; The interception request message is sent to the IMS through the X1_3, and carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the DF2 through the X1_4, and carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the DF3 through the X1_5, and carries the interception. Information such as object identification; During the establishment process, when the session request passes GSNA../WLAN/LAN, GSNA../WLAN/LAN judges that the user is monitored, listens to the monitored object according to the interception object identifier, and sends the interception object session related information to the IMS access gateway. / IBCF; IMS access gateway / IBCF adapts the session information sent by the bearer layer network GSN/.-AVLAN/LAN to the IMS through the Adaptation Function Interface (AFI); IMS monitors from the ADMF The request, the user is monitored, and the session information sent by the IMS access gateway/IBCF is processed, and the IRI event in the session establishment process is reported to the DF2 through the X2; at the same time, the IMS determines the user according to the interception request from the ADMF. It can be monitored, and the CC in the session establishment process can also be reported to DF3 through X3. However, if the CC reports the CC to the DF3 through X3, there will be a media roundback problem, that is, the IMS access gateway/IBCF first needs to send the CC to the IMS, and the IMS sends the CC to the DF3. The media negotiation is end-to-end media negotiation, and does not pass through the IMS. Only the Session Description Protocol (SDP) passes through the IMS. If the IMS needs to report the CC, the media must be uploaded to the IMS, that is, the IMS access gateway. / IBCF must also send the media communication content to the IMS, so that each end must pass the IMS to conduct media negotiation, which causes the media to be bypassed. In response to the above problem, in order to solve the media return caused by the IMS reporting CC, the IMS access gateway/IBCF is used to report the CC. . However, reporting the CC through the IMS access gateway/IBCF brings another problem: Since the IMS access gateway/IBCF has no media negotiation capability, the Media Gateway (MGW, Media GateWay) / Media Gateway Control Function Entity (MGCF, Media GateWay Control) Function) is the dynamic allocation of IP and port. When DF3 is the MGW/MGCF device, the IMS access gateway/IBCF is not able to negotiate with the MGW/MGCF media to obtain the dynamically assigned IP and port, and cannot be >3⁄4 CC;
针对上述场景问题, 本发明技术方案主要是采用 IMS网络设备与 DF3 ( MGW/MGCF )进行媒体协商 IP和端口, 媒体协商好之后, IMS网络设 备将媒体协商后的 IP和端口通知 IMS接入网关/ IBCF。 这样, IMS接入网 关 /IBCF 就能直接将 CC 上报至 DF3。 IMS 中的呼叫内容触发功能实体 ( CCTF, Content Of Communication Trigger Function )根据来自 ADMF的 监听请求,判断此用户被监控,通过呼叫内容媒体协商接口(CCNI, Content Of Communication Negotiate Interface )与 DF3 ( MGW/MGCF )进行媒体协 商;其中, CCTF可以为 AS/CSCF ( S-CSCF或 P-CSCF ); CCTF ( AS/CSCF ) 将与 DF3 ( MGW/MGCF )媒体协商好的信息( IP和端口等 )通过呼叫内容 控制接口( CCCI, Call Content Control Interface )发送给 IMS接入网关/ IBCF; IMS接入网关/ IBCF通过从 CCTF ( AS/CSCF )发送的媒体协商信息, 上报 CC至 DF3; DF2根据来自 ADMF的监听请求,将接收的 IRI经过 MF处理 后通过 HI2上报至 LEMF; DF3根据来自 ADMF的监听请求,将接收的 CC 经过 MF处理后通过 HI3上艮至 LEMF。 For the above scenario, the technical solution of the present invention mainly uses the IMS network device and the DF3 (MGW/MGCF) to perform media negotiation IP and port. After the media negotiation, the IMS network device notifies the IMS access gateway of the media negotiated IP and port. / IBCF. In this way, the IMS access gateway/IBCF can directly report the CC to DF3. Call content triggering functional entity in IMS (CCTF, Content Of Communication Trigger Function) judges that the user is monitored according to the interception request from the ADMF, and performs media negotiation with the DF3 (MGW/MGCF) by calling the Content Of Communication Negotiate Interface (CCNI); The CCTF may be an AS/CSCF (S-CSCF or P-CSCF); the CCTF (AS/CSCF) will negotiate information (IP, port, etc.) with the DF3 (MGW/MGCF) media through the Call Content Control Interface (CCCI, Call). The Content Control Interface is sent to the IMS Access Gateway/IBCF; the IMS Access Gateway/IBCF reports CC to DF3 through the media negotiation information sent from the CCTF (AS/CSCF); DF2 will receive the IRI according to the intercept request from the ADMF. After MF processing, it is reported to LEMF through HI2. According to the monitoring request from ADMF, DF3 passes the MF processing to the received CC and then uploads it to LEMF through HI3.
本领域技术人员应当理解,上述的 CCNI及 CCCI接口仅是示例性说明, 本发明不限定于上述接口, 也可以是协议定义的其他接口。 但通过上述接 口之间的消息是确定的。  It should be understood by those skilled in the art that the foregoing CCNI and CCCI interfaces are merely exemplary, and the present invention is not limited to the above interfaces, and may be other interfaces defined by protocols. However, the message between the above interfaces is determined.
上述的 CSCF可以为 S-CSCF或 P-CSCF。  The above CSCF may be an S-CSCF or a P-CSCF.
CCTF与 DF3协商, 控制 IMS接入网关/ IBCF输出 CC; 其中, CCTF 可以为 AS/S-CSCF; AS/S-CSCF与 IMS接入网关/ IBCF之间通过控制接口 交互, 可通过 INFO/200OK消息进行交互。  The CCTF negotiates with the DF3 to control the IMS access gateway/IBCF output CC. The CCTF may be an AS/S-CSCF. The AS/S-CSCF interacts with the IMS access gateway/IBCF through a control interface, and can pass INFO/200OK. Messages interact.
图 5为本发明中 AS/S-CSCF与 IMS接入网关/ IBCF进行交互的流程图, 如图 5所示, 包括以下步驟:  FIG. 5 is a flowchart of interaction between an AS/S-CSCF and an IMS access gateway/IBCF according to the present invention. As shown in FIG. 5, the method includes the following steps:
1 ) AS/S-CSCF发送 INVITE消息至 DF3 ( MGW/MGCF ), 请求动态分 配的 IP和端口等信息;  1) The AS/S-CSCF sends an INVITE message to DF3 (MGW/MGCF) to request information such as dynamically assigned IP and port;
2 ) DF3 ( MGW/MGCF ) 以 200OK响应回复 AS/S-CSCF发送 INVITE 消息, INVITE消息中携带动态分配的 IP和 /或端口等信息;  2) DF3 (MGW/MGCF) responds with a 200 OK response. The AS/S-CSCF sends an INVITE message carrying the dynamically assigned IP and/or port information.
3 ) AS/S-CSCF将 DF3 ( MGW/MGCF ) 回复分配的 IP和 /或端口等信 息通过 INFO消息发送给 IMS接入网关 /IBCF; 3) The AS/S-CSCF replies to the assigned IP and/or port by DF3 (MGW/MGCF) The information is sent to the IMS access gateway/IBCF through the INFO message;
4 ) IMS接入网关/ IBCF向 AS/S-CSCF回复 200OK, 确认接收到 IP和 / 或端口等信息。  4) The IMS access gateway/IBCF replies with 200 OK to the AS/S-CSCF, confirming receipt of information such as IP and / or port.
接收到 IP和 /或端口等信息后, IMS接入网关/ IBCF接收到待监听会话 的通信内容后, 直接发送给所接收的为所述会话确定的 IP和 /或端口等。 后 续处理方式与现有技术完全相同, 这里不再赘述其实现细节。  After receiving the information such as the IP address and/or the port, the IMS access gateway/IBCF receives the communication content of the session to be monitored, and then directly sends the received IP and/or port determined for the session. The subsequent processing manner is exactly the same as the prior art, and the implementation details thereof will not be described herein.
本发明中, CCTF与 DF3协商, 控制 IMS接入网关 /IBCF输出 CC; 其 中, CCTF可以为 P-CSCF; P-CSCF中存在一个内部私有接口, 即应用层 网关 ( ALG, Application Level GateWay ); P-CSCF通过 ALG与 IMS接入 网关/ IBCF之间通过控制接口进行信息交互, 可通过 H.248消息进行交互。 图 6为本发明中 P-CSCF与 IMS接入网关/ IBCF进行交互的流程图,如图 6 所示, 包括以下步驟:  In the present invention, the CCTF negotiates with the DF3 to control the IMS access gateway/IBCF to output the CC; wherein, the CCTF may be a P-CSCF; and the P-CSCF has an internal private interface, that is, an Application Level Gate (ALG); The P-CSCF exchanges information between the ALG and the IMS access gateway/IBCF through the control interface, and can interact through H.248 messages. FIG. 6 is a flowchart of interaction between a P-CSCF and an IMS access gateway/IBCF according to the present invention. As shown in FIG. 6, the method includes the following steps:
1 ) P-CSCF发送 INVITE消息至 DF3 ( MGW/MGCF ), 请求动态分配 的 IP和端口等信息;  1) The P-CSCF sends an INVITE message to DF3 (MGW/MGCF) requesting information such as dynamically assigned IP and port;
2 ) DF3 ( MGW/MGCF ) 以 200OK响应回复 P-CSCF发送 INVITE消 息, 携带动态分配的 IP和 /或端口等信息;  2) DF3 (MGW/MGCF) responds with 200 OK response. The P-CSCF sends an INVITE message carrying the dynamically assigned IP and/or port information.
3 ) P-CSCF通过自身的内部私有接口 ALG将 DF3 ( MGW/MGCF )分 配的 IP和 /或端口等信息通过 H.248消息发送给 IMS接入网关 /IBCF。  3) The P-CSCF sends the IP and/or port information assigned by the DF3 (MGW/MGCF) to the IMS access gateway/IBCF through the H.248 message through its internal private interface ALG.
接收到 IP和 /或端口等信息后, IMS接入网关/ IBCF接收到待监听会话 的通信内容后, 直接发送给所接收的为所述会话确定的 IP和 /或端口等。 后 续处理方式与现有技术完全相同, 这里不再赘述其实现细节。  After receiving the information such as the IP address and/or the port, the IMS access gateway/IBCF receives the communication content of the session to be monitored, and then directly sends the received IP and/or port determined for the session. The subsequent processing manner is exactly the same as the prior art, and the implementation details thereof will not be described herein.
图 7为本发明 IP多媒体子系统中媒体内容监听装置的组成结构示意图, 如图 7所示,本发明 IP多媒体子系统中媒体内容监听装置包括控制单元 70 和上报单元 71 , 其中:  FIG. 7 is a schematic structural diagram of a media content monitoring apparatus in an IP multimedia subsystem according to the present invention. As shown in FIG. 7, the media content monitoring apparatus in the IP multimedia subsystem of the present invention includes a control unit 70 and a reporting unit 71, where:
控制单元 70, 用于控制媒体设备复制监听内容; 上报单元 71 , 用于将所述监听内容上报给 LIC。 The control unit 70 is configured to control the media device to copy the monitoring content. The reporting unit 71 is configured to report the monitored content to the LIC.
上报单元 70通过 AGCF与所述 LIC之间的 X3接口将所述监听内容上 报给所述 LIC。  The reporting unit 70 reports the interception content to the LIC through an X3 interface between the AGCF and the LIC.
在图 7所示 IP多媒体子系统中媒体内容监听装置的基础上, 本发明的 Based on the media content monitoring device in the IP multimedia subsystem shown in FIG. 7, the present invention
IP多媒体子系统中媒体内容监听装置还包括呼叫单元(图 7未图示)和协 商单元(图 7未图示), 其中: The media content monitoring device in the IP Multimedia Subsystem further includes a calling unit (not shown in Fig. 7) and a negotiation unit (not shown in Fig. 7), wherein:
呼叫单元 , 用于通过 INVITE消息呼叫 LIC;  a calling unit, configured to call the LIC by using an INVITE message;
协商单元, 用于与 LIC协商用于承载所述监听内容的承载通道; 上报单元 71还通过所述承载通道将所述监听内容上报给所述 LIC。 上报单元 71将所述监听内容上报完毕后, 控制单元 70通过向 LIC发 送 BYE信令, 释放所述承载通道。  The negotiation unit is configured to negotiate with the LIC to carry the bearer channel of the interception content, and the reporting unit 71 also reports the interception content to the LIC by using the bearer channel. After the reporting unit 71 reports the intercepted content, the control unit 70 releases the bearer channel by sending BYE signaling to the LIC.
所述监听内容为待监听会话的通信内容。  The listening content is the communication content of the session to be listened to.
本发明中, 待监听会话的通信内容包括以下信息的至少一种: 语音、 视频、 传真、 短信、 白板应用内容、 多媒体彩信内容。  In the present invention, the communication content of the session to be monitored includes at least one of the following information: voice, video, fax, short message, whiteboard application content, multimedia multimedia message content.
本领域技术人员应当理解, 本发明图 7所示的 IP多媒体子系统中媒体 内容监听装置是为实现前述的 IP多媒体子系统中媒体内容监听方法而设计 的, 上述各处理单元的实现功能可参照前述 IP多媒体子系统中媒体内容监 听方法的相关描述而理解。 图中的各处理单元的功能可通过运行于处理器 上的程序而实现, 也可通过具体的逻辑电路而实现。  It should be understood by those skilled in the art that the media content monitoring apparatus in the IP multimedia subsystem shown in FIG. 7 is designed to implement the foregoing media content monitoring method in the IP multimedia subsystem, and the implementation functions of the foregoing processing units can be referred to. The related description of the media content monitoring method in the aforementioned IP multimedia subsystem is understood. The functions of the various processing units in the figures may be implemented by a program running on a processor or by a specific logic circuit.
图 8为本发明另一 IP多媒体子系统中媒体内容监听装置的组成结构示 意图, 如图 8所示, 所述装置包括:  FIG. 8 is a schematic structural diagram of a media content monitoring apparatus in another IP multimedia subsystem according to the present invention. As shown in FIG. 8, the apparatus includes:
发送单元 80, 用于在被监听呼叫开始时, 向 IMS接入设备 /边界设备, 发出媒体复制指示; 以及, 在被监听呼叫结束时, 向所述 IMS接入设备 / 边界设备发出媒体复制取消指示。  The sending unit 80 is configured to: when the monitored call starts, issue a media copy indication to the IMS access device/boundary device; and, when the monitored call ends, issue a media copy cancellation to the IMS access device/boundary device Instructions.
在图 8所示 IP多媒体子系统中媒体内容监听装置的基础上, 本发明的 IP多媒体子系统中媒体内容监听装置还包括设置于所述 IMS接入设备 /边界 设备中的接收单元 81、 上报单元 82和释放单元 83 , 其中: On the basis of the media content monitoring device in the IP multimedia subsystem shown in FIG. 8, the present invention The media content monitoring device in the IP multimedia subsystem further includes a receiving unit 81, a reporting unit 82, and a releasing unit 83, which are disposed in the IMS access device/boundary device, where:
接收单元 81 , 用于接收媒体复制指示或媒体复制取消指示时; 上报单元 82, 用于在所述接收单元接收到所述媒体复制指示时, 实时 向 LIC上报被监听呼叫的通信内容;  The receiving unit 81 is configured to receive the media copy indication or the media copy cancellation indication; the reporting unit 82 is configured to report the communication content of the monitored call to the LIC in real time when the receiving unit receives the media copy indication;
释放单元 83 , 用于在所述接收单元接收到所述媒体复制取消指示时, 停止所述上报单元上报被监听呼叫的通信内容, 释放为传输被监听呼叫的 通信内容建立的资源。  The releasing unit 83 is configured to stop the reporting unit from reporting the communication content of the monitored call when the receiving unit receives the media copy cancellation indication, and release the resource established for transmitting the communication content of the monitored call.
所述媒体复制指示和所述媒体复制取消指示承载于 SIP INFO消息中进 行传输。  The media copy indication and the media copy cancellation indication are carried in a SIP INFO message for transmission.
所述 IMS网络设备为 S-CSCF,或为 P-CSCF,或为监听 AS,或为 CCTF; 所述 IMS接入设备 /边界设备为边界会话控制实体 SBC,或互联边界控 制功能实体 IBCF。  The IMS network device is an S-CSCF, or a P-CSCF, or a listening AS, or a CCTF; the IMS access device/boundary device is a border session control entity SBC, or an interconnection boundary control function entity IBCF.
本领域技术人员应当理解, 本发明图 8所示的 IP多媒体子系统中媒体 内容监听装置是为实现前述的 IP多媒体子系统中媒体内容监听方法而设计 的, 上述各处理单元的实现功能可参照前述 IP多媒体子系统中媒体内容监 听方法的相关描述而理解。 图中的各处理单元的功能可通过运行于处理器 上的程序而实现, 也可通过具体的逻辑电路而实现。  It should be understood by those skilled in the art that the media content monitoring apparatus in the IP multimedia subsystem shown in FIG. 8 is designed to implement the foregoing media content monitoring method in the IP multimedia subsystem, and the implementation functions of the foregoing processing units can be referred to. The related description of the media content monitoring method in the aforementioned IP multimedia subsystem is understood. The functions of the various processing units in the figures may be implemented by a program running on a processor or by a specific logic circuit.
以上所述, 仅为本发明的较佳实施例而已, 并非用于限定本发明的保 护范围。  The above is only the preferred embodiment of the present invention and is not intended to limit the scope of the present invention.
工业实用性  Industrial applicability
本发明的实施例通过由 AGCF与 LIC协商上报待监听会话的 CC的端 口相关信息, 并由 AGCF通过所协商端口将待监听会话的 CC通过 DF3发 送给 LIC, 无需在 IMS与 LIC之间协商 X3通道的接口, 而直接由 AGCF 与 DF3之间协商 X3通道, 使 X3通道建立更快捷。 并且, 通过由 IMS网 络设备与 DF3直接协商该 DF3接收待监听会话的 CC的端口相关信息, 并 直接发送给 IMS接入网关 / IBCF, 这样, IMS接入网关 / IBCF获取到 DF3 的 CC的端口相关信息后, 再获取到待监听会话的 CC后, 直接发送至该所 确定的端口即可。 The embodiment of the present invention negotiates the port related information of the CC of the to-be-listened session by the AGCF and the LIC, and sends the CC of the to-be-listened session to the LIC through the DF3 through the negotiated port by the AGCF, without negotiating X3 between the IMS and the LIC. The channel interface, and the X3 channel is negotiated directly between AGCF and DF3, making the X3 channel setup faster. And by the IMS network The DF3 directly negotiates with the DF3 to receive the port-related information of the CC of the to-be-listened session, and sends the information directly to the IMS access gateway/IBCF, so that the IMS access gateway/IBCF obtains the port-related information of the CC of the DF3, and then After obtaining the CC of the session to be monitored, it can be directly sent to the determined port.

Claims

权利要求书 Claim
1、 一种 IP多媒体子系统中媒体内容监听方法, 其中, 所述方法包括: 接入网关控制功能实体 AGCF控制媒体设备复制监听内容, 并将所述 监听内容上报给监听中心 LIC。  The media content monitoring method in the IP multimedia subsystem, wherein the method includes: the access gateway control function entity AGCF controls the media device to copy the monitoring content, and reports the monitoring content to the monitoring center LIC.
2、根据权利要求 1所述的方法,其中,所述将所述监听内容上报给 LIC, 为:  2. The method of claim 1, wherein the reporting the interception content to the LIC is:
通过所述 AGCF与所述 LIC之间的 X3接口将所述监听内容上报给所 述 LIC。  The interception content is reported to the LIC through an X3 interface between the AGCF and the LIC.
3、 根据权利要求 2所述的方法, 其中, 所述通过所述 AGCF与所述 LIC之间的 X3接口将所述监听内容上报给所述 LIC , 为:  The method according to claim 2, wherein the intercepting content is reported to the LIC by using an X3 interface between the AGCF and the LIC, as follows:
所述 AGCF通过 INVITE消息呼叫 LIC, 并与 LIC协商用于 载所述 监听内容的承载通道;  The AGCF calls the LIC through the INVITE message, and negotiates with the LIC for carrying the bearer channel of the intercepted content;
所述 AGCF控制所述媒体设备复制监听内容, 并通过所述承载通道发 送到 LIC。  The AGCF controls the media device to copy the intercepted content and send it to the LIC through the bearer channel.
4、 根据权利要求 3所述的方法, 其中, 所述方法还包括:  4. The method according to claim 3, wherein the method further comprises:
所述监听内容上报完毕后, 所述 AGCF通过向 LIC发送 BYE信令,释 放所述承载通道。  After the monitoring content is reported, the AGCF releases the bearer channel by sending BYE signaling to the LIC.
5、 根据权利要求 1至 4任一项所述的方法, 其中, 所述监听内容为待 监听会话的通信内容。  The method according to any one of claims 1 to 4, wherein the listening content is a communication content of a session to be listened to.
6、 一种 IP多媒体子系统中媒体内容监听方法, 其中, 所述方法包括: 被监听呼叫开始时, IMS网络设备向 IMS接入设备 /边界设备发出媒体 复制指示;  A media content monitoring method in an IP multimedia subsystem, wherein the method includes: when the monitored call starts, the IMS network device sends a media copy indication to the IMS access device/boundary device;
被监听呼叫结束时,所述 IMS网络设备向所述 IMS接入设备 /边界设备 发出媒体复制取消指示。  When the monitored call ends, the IMS network device issues a media copy cancellation indication to the IMS access device/boundary device.
7、 根据权利要求 6所述的方法, 其中, 所述方法还包括: 所述 IMS接入设备 /边界设备接收到所述媒体复制指示时, 实时向 LIC 上报被监听呼叫的通信内容; The method according to claim 6, wherein the method further comprises: Receiving, by the IMS access device/boundary device, the communication content of the monitored call to the LIC in real time when receiving the media copy indication;
所述 IMS接入设备 /边界设备接收到收到媒体复制取消指示时, 停止向 所述 LIC上报被监听呼叫的通信内容, 并释放为传输被监听呼叫的通信内 容建立的资源。  Upon receiving the media copy cancellation indication, the IMS access device/boundary device stops reporting the communication content of the monitored call to the LIC, and releases the resource established for transmitting the communication content of the monitored call.
8、 根据权利要求 6所述的方法, 其中, 所述媒体复制指示和所述媒体 复制取消指示承载于会话初始协议 SIP INFO消息中进行传输。  8. The method according to claim 6, wherein the media copy indication and the media copy cancellation indication are carried in a Session Initiation Protocol SIP INFO message for transmission.
9、 根据权利要求 6所述的方法, 其中, 所述 IMS网络设备为服务呼叫 会话控制功能实体 S-CSCF, 或为代理呼叫会话控制功能实体 P-CSCF, 或 为监听应用服务器 AS , 或为呼叫内容触发功能实体 CCTF;  9. The method according to claim 6, wherein the IMS network device is a serving call session control function entity S-CSCF, or is a proxy call session control function entity P-CSCF, or is a listening application server AS, or Call content triggering function entity CCTF;
所述 IMS接入设备 /边界设备为边界会话控制实体 SBC,或互联边界控 制功能实体 IBCF。  The IMS access device/boundary device is a border session control entity SBC, or an interconnection boundary control function entity IBCF.
10、 根据权利要求 6所述的方法, 其中, 所述被监听呼叫的通信内容 包括以下信息的至少一种:  10. The method according to claim 6, wherein the communication content of the monitored call comprises at least one of the following information:
语音、 视频、 传真、 短信、 白板应用内容、 多媒体彩信内容。  Voice, video, fax, SMS, whiteboard application content, multimedia MMS content.
11、 一种 IP多媒体子系统中媒体内容监听装置, 所述装置包括控制单 元和上报单元, 其中:  11. A media content monitoring device in an IP multimedia subsystem, the device comprising a control unit and a reporting unit, wherein:
控制单元, 用于控制媒体设备复制监听内容;  a control unit, configured to control the media device to copy the monitoring content;
上报单元, 用于将所述监听内容上报给 LIC。  The reporting unit is configured to report the monitored content to the LIC.
12、 根据权利要求 11所述的装置, 其中, 所述上报单元通过 AGCF与 所述 LIC之间的 X3接口将所述监听内容上报给所述 LIC。  The device according to claim 11, wherein the reporting unit reports the interception content to the LIC through an X3 interface between the AGCF and the LIC.
13、 根据权利要求 12所述的装置, 所述装置还包括呼叫单元和协商单 元, 其中:  13. Apparatus according to claim 12, said apparatus further comprising a call unit and a negotiation unit, wherein:
呼叫单元 , 用于通过 INVITE消息呼叫 LIC;  a calling unit, configured to call the LIC by using an INVITE message;
协商单元, 用于与 LIC协商用于承载所述监听内容的承载通道; 所述上报单元还通过所述承载通道将所述监听内容上报给所述 LIC。a negotiating unit, configured to negotiate with a LIC to carry a bearer channel of the interception content; The reporting unit also reports the interception content to the LIC by using the bearer channel.
14、 一种 IP多媒体子系统中媒体内容监听装置, 其中, 所述装置包括: 发送单元, 用于在被监听呼叫开始时, 向 IMS接入设备 /边界设备, 发 出媒体复制指示; 以及, 在被监听呼叫结束时, 向所述 IMS接入设备 /边界 设备发出媒体复制取消指示。 The media content monitoring device in the IP multimedia subsystem, wherein the device includes: a sending unit, configured to send a media copy indication to the IMS access device/boundary device when the monitored call starts; and When the monitored call ends, a media copy cancellation indication is issued to the IMS access device/boundary device.
15、根据权利要求 14所述的装置, 所述装置还包括设置于所述 IMS接 入设备 /边界设备中的接收单元、 上报单元和释放单元, 其中:  The apparatus according to claim 14, further comprising a receiving unit, a reporting unit, and a releasing unit disposed in the IMS access device/boundary device, wherein:
接收单元, 用于接收媒体复制指示或媒体复制取消指示时;  a receiving unit, configured to receive a media copy indication or a media copy cancellation indication;
上报单元, 用于在所述接收单元接收到所述媒体复制指示时, 实时向 LIC上才艮被监听呼叫的通信内容;  a reporting unit, configured to: when the receiving unit receives the media copy indication, send the communication content of the called call to the LIC in real time;
释放单元, 用于在所述接收单元接收到所述媒体复制取消指示时, 停 止所述上报单元上报被监听呼叫的通信内容, 释放为传输被监听呼叫的通 信内容建立的资源。  And a releasing unit, configured to stop, when the receiving unit receives the media copy cancellation indication, the reporting unit to report the communication content of the monitored call, and release the resource established for transmitting the communication content of the monitored call.
PCT/CN2012/074686 2011-06-20 2012-04-25 Media content interception method and device in ip multimedia subsystem WO2012174945A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201110166094.6A CN102843337B (en) 2011-06-20 2011-06-20 Media content monitor method and device in IP multimedia subsystem
CN201110166094.6 2011-06-20

Publications (1)

Publication Number Publication Date
WO2012174945A1 true WO2012174945A1 (en) 2012-12-27

Family

ID=47370402

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2012/074686 WO2012174945A1 (en) 2011-06-20 2012-04-25 Media content interception method and device in ip multimedia subsystem

Country Status (2)

Country Link
CN (1) CN102843337B (en)
WO (1) WO2012174945A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105681255A (en) * 2014-11-18 2016-06-15 中兴通讯股份有限公司 Method and device for sending and receiving media stream data between network elements
CN109756445B (en) * 2017-11-01 2021-11-16 中兴通讯股份有限公司 Media acquisition method, media acquisition request generation method and related equipment

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101005409A (en) * 2006-01-18 2007-07-25 华为技术有限公司 Method and system for realizing legal monitoring in nextgeneration network
CN101212356A (en) * 2006-12-31 2008-07-02 华为技术有限公司 Session border controller, home user server, communication system and listening method
CN101583129A (en) * 2009-06-12 2009-11-18 中兴通讯股份有限公司 Legal interception system and method in IP multi-media subsystem network

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE102005012667B4 (en) * 2005-03-18 2006-11-30 Siemens Ag Protocol extension of an IRI information message
CN100384160C (en) * 2005-07-14 2008-04-23 华为技术有限公司 Method and apparatus for monitoring video-calling
CN100512161C (en) * 2006-07-18 2009-07-08 华为技术有限公司 Method for transmitting legal monitoring information
CN101043691B (en) * 2007-04-28 2012-01-11 中兴通讯股份有限公司 Legal monitor method for IMS network

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101005409A (en) * 2006-01-18 2007-07-25 华为技术有限公司 Method and system for realizing legal monitoring in nextgeneration network
CN101212356A (en) * 2006-12-31 2008-07-02 华为技术有限公司 Session border controller, home user server, communication system and listening method
CN101583129A (en) * 2009-06-12 2009-11-18 中兴通讯股份有限公司 Legal interception system and method in IP multi-media subsystem network

Also Published As

Publication number Publication date
CN102843337B (en) 2017-07-14
CN102843337A (en) 2012-12-26

Similar Documents

Publication Publication Date Title
US20140241342A1 (en) Emergency services for packet networks
JP4599447B2 (en) Telephone system, server and terminal device
WO2009074070A1 (en) A method and equipment for uploading the real-time media content
US10320851B2 (en) Methods and devices for detecting and correlating data packet flows in a lawful interception system
US20060288423A1 (en) Method, system and network elements for establishing media protection over networks
EP1111892B1 (en) Methods and systems for internet protocol (IP) network surveillance
US20150150076A1 (en) Method and device for instructing and implementing communication monitoring
CN101557603B (en) Method, device and system for lawful monitoring
TWI621342B (en) Voice for Internet Protocol (VoIP) calls and systems in which the calling and called users are accommodated in the same Talk Edge Controller (SBC) and method thereof
US10313400B2 (en) Method of selecting a network resource
WO2011131051A1 (en) Method and device for security communication negotiation
WO2012174945A1 (en) Media content interception method and device in ip multimedia subsystem
US11218515B2 (en) Media protection within the core network of an IMS network
WO2012071829A1 (en) Method and apparatus for intercepting media contents in ip multimedia subsystem
WO2011060694A1 (en) Method and system for establishing media session
US20100246447A1 (en) Method and device for processing data and communication system comprising such device
WO2008119278A1 (en) Method,terminal and network device for changing status of packet switched domain
WO2007082435A1 (en) A system, method and network equipment for implementing the lawful interception in next generation network
WO2012071898A1 (en) Method and device for monitoring media contentss in ip multimedia subsystem
WO2012071875A1 (en) Media content monitoring method and device in ip multimedia subsystem
WO2012022266A1 (en) Method and system for voice intercom in video surveillance
CN109672692B (en) Media data encryption method based on RTP in VoIP communication network
WO2008080335A1 (en) A lawful interception system, method and application server
WO2008083620A1 (en) A method, a system and an apparatus for media flow security context negotiation
JP2011217031A (en) Communication equipment, and caller authentication method

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12802457

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 12802457

Country of ref document: EP

Kind code of ref document: A1