WO2013170668A1 - Method, device and system for performing communication through mobile communication network - Google Patents

Method, device and system for performing communication through mobile communication network Download PDF

Info

Publication number
WO2013170668A1
WO2013170668A1 PCT/CN2013/073399 CN2013073399W WO2013170668A1 WO 2013170668 A1 WO2013170668 A1 WO 2013170668A1 CN 2013073399 W CN2013073399 W CN 2013073399W WO 2013170668 A1 WO2013170668 A1 WO 2013170668A1
Authority
WO
WIPO (PCT)
Prior art keywords
communication
devices
mme
communication data
enb
Prior art date
Application number
PCT/CN2013/073399
Other languages
French (fr)
Chinese (zh)
Inventor
张向东
国炜
张丽佳
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2013170668A1 publication Critical patent/WO2013170668A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/80Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W76/00Connection management
    • H04W76/10Connection setup
    • H04W76/14Direct-mode setup

Definitions

  • the present invention pertains to the field of communications, and more particularly to a method, apparatus and system for communicating over a mobile communication network.
  • eNB enhanced NodeB, evolved NodeB, which is equivalent to a base station in existing mobile communication technologies.
  • MME Mobility Management Entity, a mobility management entity, a key control node in existing mobile communication systems.
  • UE User Equipment, client device.
  • RNTI The temporary identifier of the wireless network, which is used as the identity of the UE inside the signal.
  • RRC Radio Resource Control, Radio Resource Control Protocol.
  • the Internet of Things refers to the acquisition of information in the physical world by deploying various devices with certain sensing, computing, execution, and communication capabilities, and the realization of information transmission, coordination, and processing through the network, thereby realizing the interconnection of people, objects, and objects.
  • the internet Device to device D2D communication, as a kind of IoT application, mainly to achieve direct communication between two devices.
  • Possible technologies may include short-range wireless communication technologies such as Wireless Personal Area Network (WPAN), Ultra Wideband (UWB: Ultra Wideband), Bluetooth (Bluetooth), and Wifi.
  • the key can be implemented based on the existing security mechanism of the mobile communication network.
  • negotiation and data encryption are independent of each other.
  • Devices with different capabilities may have different support for the encryption (integrity check) algorithm, and the encryption (integrity check) algorithm they choose may be different.
  • the embodiment of the present invention is implemented by the method for performing D2D communication through a mobile communication network, and the method includes the following steps:
  • the MME sends communication data to the communication device, and the communication data includes: information about whether the two communication devices can perform D2D communication, a security algorithm of an existing mobile communication technology supported by both communication devices, and a D2D communication key material;
  • the eNB instructs the two communication devices to establish a communication data bearer, generates an RNTI, and distributes the RNTI to the communication device, where the RNTI is used for D2D communication;
  • the communication device communicates using the selected security algorithm and the key obtained from the key material based on the received communication data.
  • Another object of embodiments of the present invention is to provide a method for communicating over a mobile communication network, the method comprising the steps of:
  • the communication data includes: Whether to perform D2D communication information, a security algorithm of an existing mobile communication technology supported by both communication devices, and a key material for D2D communication.
  • Another object of embodiments of the present invention is to provide a method for communicating over a mobile communication network, the method comprising the steps of:
  • the communication data includes: information about whether the two communication devices can perform D2D communication, a security algorithm of an existing mobile communication technology supported by both communication devices, and a key material of D2D communication;
  • An RNTI is generated and distributed to both communication devices.
  • Another object of embodiments of the present invention is to provide a method for communicating over a mobile communication network, the method comprising the following steps:
  • the communication request includes information about whether to support D2D communication; receiving communication data, where the communication data includes: information that the two communication devices can perform D2D communication, and existing mobile communication supported by both communication devices Technical security algorithms, and keying materials for D2D communication;
  • Another object of embodiments of the present invention is to provide a method for communicating over a mobile communication network, the method comprising the steps of:
  • the communication data includes: information about whether the two communication devices can perform D2D communication, a security algorithm of an existing mobile communication technology supported by both communication devices, and D2D communication Key material
  • the communication initiated by the calling party UE is responded to using the selected security algorithm and the key obtained from the key material.
  • Another object of the embodiments of the present invention is to provide an apparatus for communicating over a mobile communication network, the apparatus comprising:
  • the D2D communication information acquiring unit is configured to obtain information about whether the two devices of the communication can perform D2D communication;
  • the same security algorithm determining unit is configured to determine whether the devices of the communication parties have the same security algorithm
  • the communication data sending unit is configured to send the communication data to the communication device.
  • Another object of the embodiments of the present invention is to provide an apparatus for communicating over a mobile communication network, the apparatus comprising:
  • a communication data receiving unit configured to receive communication data sent by the MME
  • a communication data forwarding unit configured to forward the communication data received by the communication data receiving unit to the communication device
  • a communication data bearer indicating unit configured to instruct the communication device to establish a communication data bearer
  • an RNTI distribution unit configured to generate the RNTI and distribute the RNTI to the communication device.
  • D2D communication self-test unit used for self-test to support D2D communication
  • a communication request sending unit configured to initiate a communication request to the MME, where the communication request carries information about whether the D2D communication self-test unit self-test supports D2D communication;
  • a communication data receiving unit configured to receive communication data sent by the MME or the eNB;
  • a communication data bearer establishing unit configured to establish a communication data bearer according to an indication of the eNB
  • An RNTI receiving unit configured to receive an RNTI distributed by an eNB
  • a communication unit configured to initiate communication to the called party UE according to the communication data received by the communication data receiving unit using the selected security algorithm and the key acquired according to the key material.
  • Another object of the embodiments of the present invention is to provide an apparatus for communicating over a mobile communication network, the apparatus comprising:
  • a D2D detection information receiving unit configured to receive information sent by the MME for performing D2D communication function detection
  • a D2D detecting unit configured to support, according to the information received by the D2D detection information receiving unit, whether the D2D communication function is supported;
  • a D2D communication information sending unit configured to send, to the MME, information about whether the D2D pass function is supported according to the detection result of the D2D detecting unit;
  • a communication data receiving unit configured to receive communication data sent by the MME or the eNB;
  • a communication data bearer establishing unit configured to establish a communication data bearer according to an indication of the eNB
  • An RNTI receiving unit configured to receive an RNTI distributed by the eNB
  • a communication unit configured to respond to the communication initiated by the calling party UE according to the communication data received by the communication data receiving unit using the selected security algorithm and the key acquired according to the key material.
  • Another object of the embodiments of the present invention is to provide a system for communicating over a mobile communication network, the system comprising:
  • the MME is configured to obtain information about whether the devices of the communication device can perform D2D communication, determine whether the devices of the two communication devices support the same security algorithm, and send the communication data to the communication device, where the communication data includes: whether the communication device can perform D2D communication Security algorithms for existing mobile communication technologies supported by both information and communication devices, and keying materials;
  • the eNB is configured to receive and store the communication data sent by the MME, send the communication data to the communication device, and instruct the communication device to establish a communication data bearer, generate the RNTI, and distribute the RNTI to the communication device;
  • a calling party UE configured to send a communication request to the MME, where the communication request includes whether to support The D2D communication information, receiving the communication data, establishing a communication data bearer according to the indication of the eNB, receiving the RNTI distributed by the eNB, and initiating communication to the called party UE by using the selected security algorithm and the key obtained according to the key material;
  • the called party UE is configured to receive a communication call of the MME, send information to the MME whether to support the D2D communication, receive the communication data, establish a communication data bearer according to the indication of the eNB, receive the RNTI distributed by the eNB, and respond to the calling party UE using the selected The security algorithm and the communication initiated by the key obtained from the key material.
  • the MME obtains information about whether the UE supports D2D communication, determines whether the communication parties have the same security algorithm, and discovers a security algorithm used by the mobile communication to the communication parties, so that the communication parties use the existing mobile communication technology to mature and secure.
  • the communication of the security algorithm not only enables the mobile communication technology to be applied in D2D communication, but also because the communication using the existing mobile communication technology is simple, and the security is high.
  • FIG. 1 is a flowchart of a method for performing communication by using a mobile communication network according to an embodiment of the present invention
  • FIG. 2 is a flowchart of a specific implementation of step S101 shown in FIG. 1 according to an embodiment of the present invention
  • FIG. 3 is another embodiment of the present invention
  • FIG. 4 is a flow chart of a method for communicating over a mobile communication network according to another embodiment of the present invention.
  • FIG. 5 is a flow chart of a communication method performed by a mobile communication network according to another embodiment of the present invention.
  • FIG. 6 is a flow chart of a method for communicating over a mobile communication network according to another embodiment of the present invention.
  • FIG. 7 is a structural diagram of a communication system performed by a mobile communication network according to an embodiment of the present invention
  • FIG. 8 is a specific structural diagram of the MME shown in FIG. 7 according to an embodiment of the present invention
  • FIG. 9 is a specific structural diagram of an eNB shown in FIG. 7 according to an embodiment of the present disclosure
  • FIG. 10 is a specific structural diagram of the calling party UE shown in FIG. 7 according to an embodiment of the present invention
  • FIG. 11 is a specific structural diagram of the called party UE shown in FIG. 7 according to an embodiment of the present invention.
  • the MME obtains information about whether the UE supports D2D communication, determines whether the communication parties have the same security algorithm, and discovers a security algorithm used by the mobile communication to the communication parties, so that the communication parties use the existing mobile communication technology to mature and secure.
  • the communication of the security algorithm not only enables the mobile communication technology to be applied in D2D communication, but also because the communication using the existing mobile communication technology is simple, and the security is high.
  • FIG. 1 is a flow chart of a communication method performed by a mobile communication network according to an embodiment of the present invention, which is described in detail as follows:
  • step S101 the MME acquires information on whether the two communication devices support D2D communication.
  • the MME needs to obtain information about whether the communication device supports D2D communication. If yes, the process proceeds to step S102. If not, the existing mobile communication system is selected for communication.
  • the specific process for the MME to obtain whether the two communication devices support D2D communication is shown in FIG. 2 and the description of FIG. 2 .
  • step S102 the MME determines whether the two communication devices have the same security algorithm.
  • the security algorithms owned by each device may be different. If the same security algorithm is present, the process proceeds to step S103. Otherwise, the eNB or the UE is notified to end the communication, or the existing mobile communication system is selected for communication.
  • the present application uses the prior art for detection, and details are not described herein again.
  • step S103 the MME sends communication data to the communication device, and the communication data includes: information about whether the communication device can perform D2D communication, and the existing migration supported by both communication devices. Security algorithms for mobile communication technologies, and D2D communication keying materials.
  • the MME sends communication data to the communication UE, where the communication data is used by the communication parties to perform verification when transmitting and receiving data, and the communication data includes: information about whether the two communication devices can perform D2D communication, and both communication devices Supported security algorithms for existing mobile communication technologies, and keying materials, the security algorithms including: encryption and decryption algorithms and integrity verification algorithms.
  • the method for the MME to send communication data to the UE includes the following two methods:
  • the MME sends the communication data to the eNB, and the eNB forwards the information to the communication device.
  • the step of the MME transmitting the communication data to the eNB is specifically:
  • the communication data is carried to the eNB by defining the following message:
  • the MME directly sends the communication data to the communication device, and the steps are specifically: transmitting the communication data by using the NAS information communicated between the MME and the UE.
  • the two communication devices or the MME need to transmit information indicating whether or not the communication device can perform D2D communication to the eNB.
  • step S104 the eNB instructs the two communication devices to establish a communication data bearer, generates an RNTI, and distributes the RNTI to the communication two-party equipment, and the RNTI is used for D2D communication.
  • the eNB instructs the two communication devices to establish a communication data bearer, generate an RNTI, and distribute the RNTI to the communication device.
  • the eNB indicates the communication double by modifying the RRC
  • the party device establishes a communication data bearer, which is specifically:
  • the Connection Reconfiguration message contains the elements radio Resource Config Dedicated->drb-To Add Mod List->DRB-To Add Mod:
  • step S105 the two communication devices communicate using the selected security algorithm and the key acquired based on the key material based on the received communication data.
  • the communication device receives the communication data, and determines the opposite according to the communication data: D2D communication can be performed, and the same security algorithm is supported.
  • the communication is based on the security algorithm of the existing mobile communication technology in the communication data, and the key obtained by the key material in the communication data.
  • the communication between the calling party device and the called party device and the MME and the eNB is divided into the following four cases:
  • the calling party device and the called party device communicate with the same MME and perform the same eNB Communication; or,
  • the calling party device and the called party device communicate with the same MME but communicate with different eNBs; or
  • the calling party device and the called party device communicate with different MMEs and communicate with different eNBs; or
  • the calling party device and the called party device communicate with different MMEs but communicate with the same eNB.
  • the MME obtains information about whether the UE supports D2D communication, determines whether the communication parties have the same security algorithm, and discovers a security algorithm used by the mobile communication to the communication parties, so that the communication parties use the existing mobile communication technology to mature and secure.
  • the communication of the security algorithm not only enables the mobile communication technology to be applied in D2D communication, but also because the communication using the existing mobile communication technology is simple, and the security is high.
  • FIG. 2 is a flowchart of a specific implementation of step S101 shown in FIG. 1 according to an embodiment of the present invention, and details are as follows:
  • step S201 the calling party UE self-checks whether to support D2D communication, and in the case of supporting D2D communication, the calling party UE initiates a D2D communication request to the MME.
  • step S202 the MME receives the communication request sent by the calling party UE and the information supporting the D2D communication, and carries an instruction to detect whether to support the D2D communication when calling the called party UE.
  • step S203 the called party UE receives the communication call of the MME, and according to the detection instruction, the self-checking supports D2D communication, and sends the detection result to the MME.
  • the MME in the mobile communication technology detects the UEs of the calling and the called parties.
  • the MME calls the called UE
  • the MME carries an instruction to detect whether to support the D2D communication, and the called UE sends the result back after the self-test.
  • the MME provides a reasonable method for detecting whether a device can perform D2D traffic.
  • FIG. 3 is a flowchart of a method for communicating over a mobile communication network according to another embodiment of the present invention, where the method includes the following steps:
  • step S301 information is obtained whether the calling party UE and the called party UE support D2D communication.
  • the MME needs to obtain information about whether the communication device supports D2D communication. If yes, the process goes to step S302. If not, the existing mobile communication system is selected for communication. The steps are as follows:
  • the calling party UE self-checks whether to support D2D communication. In the case of supporting D2D communication, the calling party UE initiates a D2D communication request to the MME;
  • the called party UE receives the communication call of the MME, and according to the detection instruction, the self-test supports D2D communication, and sends the detection result to the MME.
  • step S302 it is determined whether the calling party UE and the called party UE have the same security algorithm.
  • the security algorithm owned by each device may be different. If the same security algorithm is present, the process proceeds to step S303. Otherwise, the eNB or the UE is notified to end the communication, or the existing mobile communication system is selected for communication. .
  • the present application uses the prior art for detection, and details are not described herein.
  • step S303 the communication data is sent to the communication dual-issue device, and the communication data includes: information that the calling party UE and the called party UE can perform D2D communication, and the calling party UE and the called party UE support Security algorithms for existing mobile communication technologies, and keying materials for D2D communication.
  • the communication data is sent to the UE, where the communication data is used by the communication parties to perform verification when transmitting and receiving data, and the communication data includes: information about whether the calling party UE and the called party UE can perform D2D communication, A security algorithm of an existing mobile communication technology supported by both the calling UE and the called UE, and a keying material, the security algorithm comprising: an encryption and decryption algorithm and an integrity verification algorithm.
  • the method for transmitting communication data to a communication dual-issue device includes: A.
  • the MME sends the communication data to the eNB, and the eNB forwards the information to the calling UE and the called UE.
  • the step of the MME sending the communication data to the eNB is specifically:
  • the communication data is carried to the eNB by defining the following message:
  • the MME directly sends the communication data to the calling party UE and the called party UE, and the steps are specifically: transmitting the communication data by using the NAS information communicated between the MME and the UE.
  • the calling party UE and the called party UE or the MME need to send information about whether the calling party UE and the called party UE can perform D2D communication to the eNB.
  • FIG. 4 is a flowchart of a method for communicating over a mobile communication network according to another embodiment of the present invention, where the method includes the following steps:
  • step S401 the communication data sent by the MME is received and stored
  • the eNB accepts and stores the communication data sent by the MME, where the communication data includes: information about whether the two devices of the communication can perform D2D communication, a security algorithm of an existing mobile communication technology supported by both communication devices, and Key material for D2D communication.
  • step S402 the communication material is transmitted to the communication device.
  • step S403 the communication device is instructed to establish a communication data bearer.
  • the eNB instructs the two communication devices to establish a communication data bearer.
  • an RNTI is generated, and the RNTI is distributed to both communication devices.
  • the eNB also generates an RNTI, and distributes the RNTI to the communication device, where the RNTI is used for D2D communication.
  • FIG. 5 is a flowchart of a method for performing communication by using a mobile communication network according to another embodiment of the present invention, where the method includes the following steps:
  • step S501 the self-test supports D2D communication.
  • step S502 a communication request is sent to the MME, and the communication request includes information on whether or not to support D2D communication.
  • the calling party UE sends a communication request to the MME, and carries information about whether to support D2D communication in the communication request.
  • step S503 the communication data is received, and the communication data includes: information about whether the two communication devices can perform D2D communication, a security algorithm of an existing mobile communication technology supported by both communication devices, and a key material of D2D communication.
  • the communication data directly sent by the MME is received or the communication data forwarded by the eNB is received.
  • step S504 a communication data bearer is established according to an indication of the eNB.
  • step S505 the RNTI distributed by the eNB is received.
  • the calling party UE receives the RNTI for D2D communication distributed by the eNB.
  • step S506 communication is initiated to the called party UE using the selected security algorithm and the key obtained from the key material.
  • the calling party UE initiates communication with the called party UE using the selected security algorithm and the key obtained from the keying material.
  • FIG. 6 is a flowchart of a method for performing communication by using a mobile communication network according to another embodiment of the present invention, where the method includes the following steps:
  • step S601 a communication call of the MME is received, where the communication call includes information asking whether to support D2D communication.
  • the called party UE receives the communication call sent by the MME, and the communication call includes information for inquiring whether the called party UE supports D2D communication.
  • step S602 the self-test supports D2D communication, and sends information to the MME whether or not to support D2D communication.
  • step S603 the communication data is received, and the communication data includes: information about whether the two communication devices can perform D2D communication, a security algorithm of an existing mobile communication technology supported by both communication devices, and a key material of D2D communication.
  • the communication data directly sent by the MME is received or the communication data forwarded by the eNB is received.
  • step S604 a communication data bearer is established according to an indication of the eNB.
  • step S605 the RNTI distributed by the eNB is received.
  • the called party UE receives the RNTI for D2D communication distributed by the eNB.
  • the communication initiated by the calling party UE is responded to using the selected security algorithm and the key obtained from the key material.
  • FIG. 7 is a structural diagram of a communication system performed by using a mobile communication network according to an embodiment of the present invention. For the convenience of description, only parts related to the embodiment of the present invention are shown, including:
  • the MME 71 is configured to obtain information about whether the devices of the two communication parties support the D2D communication, determine whether the devices of the communication parties support the same security algorithm, and send the communication data to the communication device, where the communication data includes: whether the communication device can perform D2D communication. Security algorithms and keying materials for existing mobile communication technologies supported by both information and communication devices.
  • the eNB 72 is configured to receive and store the communication data sent by the MME 71, send the communication data to the communication device, and instruct the communication device to establish a communication data bearer, generate an RNTI, and distribute the RNTI to the communication device.
  • the calling party UE73 is configured to send a communication request to the MME, where the communication request includes information about whether to support D2D communication, receive communication data, establish a communication data bearer according to the indication of the eNB 72, receive the RNTI distributed by the eNB 72, and use the selected security algorithm. The communication is initiated to the called party UE with a key obtained from the key material.
  • the called party UE74 is configured to receive a communication call of the MME, send information to the MME whether to support the D2D communication, receive the communication data, establish a communication data bearer according to the indication of the eNB 72, receive the RNTI distributed by the eNB 72, and respond to the calling party UE using the selected The security algorithm and the communication initiated by the key obtained from the key material.
  • the MME 71 specifically includes:
  • the D2D communication information acquiring unit 711 is configured to acquire information about whether the devices of the communication parties support D2D communication.
  • the same security algorithm determining unit 712 is configured to determine whether the devices of the communication parties have the same security algorithm.
  • the communication data sending unit 713 is configured to send the communication data to the communication device, and includes: sending the communication data to the eNB, forwarding the information to the communication device, or directly transmitting the communication data to the communication device.
  • the eNB 72 specifically includes:
  • the communication data receiving unit 721 is configured to receive the communication data sent by the MME 71.
  • the communication data forwarding unit 722 is configured to forward the communication data received by the communication data receiving unit 721 to the communication device.
  • the communication data bearer indicating unit 723 is configured to instruct the communication device to establish a communication data bearer.
  • the RNTI distribution unit 724 is configured to generate an RNTI and distribute the RNTI to the communication device.
  • the calling party UE33 specifically includes:
  • the D2D communication self-test unit 731 is used to perform self-test to support D2D communication.
  • a communication request sending unit 732 configured to initiate a communication request to the MME, where the communication request carries Whether or not the information of the D2D communication is supported by the D2D communication self-test unit 731 self-test.
  • the communication data receiving unit 733 is configured to receive the communication data sent by the MME or the eNB.
  • the communication data bearer establishing unit 734 is configured to establish a communication data bearer according to the indication of the eNB.
  • the RNTI receiving unit 735 is configured to receive the RNTI distributed by the eNB.
  • the communication unit 736 is configured to communicate with the called party UE according to the communication data received by the communication data receiving unit 733 using the selected security algorithm and the key obtained according to the key material.
  • the called party UE74 specifically includes:
  • the D2D detection information receiving unit 741 is configured to receive information sent by the MME for performing D2D communication function detection.
  • the D2D detecting unit 742 is configured to perform a D2D communication function according to the information self-checking received by the D2D detecting information receiving unit 741.
  • the D2D communication information transmitting unit 743 is configured to send, to the MME, information about whether the D2D traffic is supported according to the detection result of the D2D detecting unit 742.
  • the communication data receiving unit 744 is configured to receive the communication data sent by the MME or the eNB.
  • the communication data bearer establishing unit 745 is configured to establish a communication data bearer according to the indication of the eNB.
  • the RNTI receiving unit 746 is configured to receive an RNTI distributed by the eNB.
  • the communication unit 747 is configured to respond to the communication initiated by the calling party UE according to the communication data received by the communication data receiving unit 333 using the selected security algorithm and the key obtained according to the key material.
  • the communication between the calling party device and the called party device and the MME and the eNB is divided into the following four cases:
  • the calling party device and the called party device communicate with the same MME and communicate with the same eNB; or
  • the calling party device and the called party device communicate with the same MME but communicate with different eNBs; or
  • the calling party device and the called party device communicate with different MMEs and communicate with different eNBs; or The calling party device and the called party device communicate with different MMEs but communicate with the same eNB.
  • the MME obtains information about whether the UE supports D2D communication, determines whether the communication parties can perform the same security algorithm, and discovers a security algorithm used by the mobile communication to the communication parties, so that the communication parties mature using the existing mobile communication technology.
  • the secure security algorithm communicates not only to make mobile communication technology applicable to D2D communication, but also to communicate using existing mobile communication technology, which not only has a simple verification process but also high security.

Abstract

The present invention is applicable to the field of communications, and provided is a method for performing communication through a mobile communication network. The method comprises the steps of: a mobility management entity (MME) sending communication data to devices of both communication parties; an evolved nodeB (eNB) instructing the devices of both communication parties to establish a communication data bearer, generating a radio network temporary identifier (RNTI), and distributing the RNTI to the devices of both communication parties; and according to the received communication data, the devices of both communication parties using an existing mobile communication network to perform communication. In the embodiments of the present invention, an MME acquires information as to whether user equipment (UE) can perform device-to-device (D2D) communication, judges whether both communication parties can perform the same security algorithm, and issues a security algorithm used in the existing mobile communication to both communication parties, so as to allow both communication parties to perform communication using the mature and safe security algorithm of the existing mobile communication technology, so that not only the mobile communication technology is applied in the aspect of D2D communication, but also the verification process is simple and the security is high because of using the existing mobile communication technology to perform communication.

Description

通过移动通信网络进行通信的方法、 装置及系统 技术领域  Method, device and system for communicating through mobile communication network
本发明属于通信领域, 尤其涉及通过移动通信网络进行通信的方法、 装 置及系统。  The present invention pertains to the field of communications, and more particularly to a method, apparatus and system for communicating over a mobile communication network.
背景技术 Background technique
eNB: enhanced NodeB, 演进型 NodeB, 在现有移动通信技术中相当于基 站。  eNB: enhanced NodeB, evolved NodeB, which is equivalent to a base station in existing mobile communication technologies.
MME: Mobility Management Entity, 移动管理实体, 现有移动通信系统 中的关键控制节点。  MME: Mobility Management Entity, a mobility management entity, a key control node in existing mobile communication systems.
UE: User Equipment, 用户端设备。  UE: User Equipment, client device.
RNTI: 无线网络临时标识符, 在信号内部作为 UE的标识。  RNTI: The temporary identifier of the wireless network, which is used as the identity of the UE inside the signal.
RRC: Radio Resource Control, 无线资源控制协议。  RRC: Radio Resource Control, Radio Resource Control Protocol.
物联网是指, 通过部署具有一定感知、 计算、 执行和通信能力的各种设 备, 获取物理世界的信息, 通过网络实现信息传输、 协同和处理, 从而实现 人与物、物与物的互联的网络。设备对设备通信 ( device to device D2D )通信, 作为物联网应用的一种, 主要是实现两个设备之间的直接通信。 可能的技术 可以包括无线个域网 (WPAN: Wireless Personal Area Network ) 、 超宽带 ( UWB: Ultra Wideband ) 、 蓝牙 (Bluetooth ) 、 Wifi等短距无线通信技术。  The Internet of Things (IoT) refers to the acquisition of information in the physical world by deploying various devices with certain sensing, computing, execution, and communication capabilities, and the realization of information transmission, coordination, and processing through the network, thereby realizing the interconnection of people, objects, and objects. The internet. Device to device D2D communication, as a kind of IoT application, mainly to achieve direct communication between two devices. Possible technologies may include short-range wireless communication technologies such as Wireless Personal Area Network (WPAN), Ultra Wideband (UWB: Ultra Wideband), Bluetooth (Bluetooth), and Wifi.
物联网的蓬勃发展, 更彰显了短距无线应用的巨大市场潜力和价值。 而 移动运营商在这一领域却少有涉及, 或者缺乏必要的控制权。 目前, 已经有 相关公司开展了在运营商的授权频段支持 D2D应用的研究, 并积极推动在知 名标准组织 3GPP立项。其目的就是,使用运营商的授权频段来支持和实现 D2D 应用, 使得运营商能够在短距无线应用市场占有更大的主动权。  The booming Internet of Things has further demonstrated the huge market potential and value of short-range wireless applications. Mobile operators have little to do in this area or lack the necessary control. At present, relevant companies have carried out research on supporting D2D applications in the licensed frequency bands of operators, and actively promoted the establishment of 3GPP in the well-known standards organization. The goal is to support and implement D2D applications using carrier licensed bands, enabling operators to take greater advantage in the short-range wireless applications market.
在运营商的移动通信网络中实现 D2D所带来的一个便利就是, 安全操作 方便, 不再需要人为参与, 而可以基于移动通信网现有的安全机制实现密钥 协商和数据加密。 但是按照现有的移动通信网络, 主叫侧和被叫侧的安全过 程, 包括认证、 密钥协商和加密 (完整性校验) 算法协商等, 都是相互独立 的。 不同能力的设备对加密 (完整性校验) 算法的支持能力可能也不同, 进 而其选择的加密 (完整性校验) 算法也可能不一样。 所以, 如果仅在通信设 备侧进行是否能够进行 D2D通信的判断, 有可能加密 (完整性校验) 算法支 持能力不同两个设备被判断为可以进行 D2D通信, 结果两个设备却选择了不 同的加密 (完整性校验)算法, 从而不能进行实际的 D2D通信。 这就不能很 好的利用移动通信网现有的安全机制为 D2D通信服务。 One of the conveniences of implementing D2D in the operator's mobile communication network is that it is easy to operate safely and no longer requires human intervention. The key can be implemented based on the existing security mechanism of the mobile communication network. Negotiation and data encryption. However, according to the existing mobile communication network, the security processes of the calling side and the called side, including authentication, key agreement and encryption (integrity check) algorithm negotiation, are independent of each other. Devices with different capabilities may have different support for the encryption (integrity check) algorithm, and the encryption (integrity check) algorithm they choose may be different. Therefore, if the judgment of whether or not D2D communication can be performed is performed only on the communication device side, it is possible that the encryption (integrity check) algorithm support capability is different, and two devices are judged to be D2D communication, and as a result, the two devices select different ones. Encryption (integrity check) algorithm, so that actual D2D communication cannot be performed. This does not make good use of the existing security mechanisms of the mobile communication network for D2D communication services.
发明内容 Summary of the invention
本发明实施例的目的在于提供一种通过移动通信网络进行 D2D通信的方 通信技术进行 D2D通信的问题。  It is an object of embodiments of the present invention to provide a D2D communication problem by a party communication technology for performing D2D communication through a mobile communication network.
本发明实施例是这样实现的, 一种通过移动通信网络进行 D2D通信的方 法, 所述方法包括以下步骤:  The embodiment of the present invention is implemented by the method for performing D2D communication through a mobile communication network, and the method includes the following steps:
MME向通信双方设备发送通信资料, 所述通信资料包括: 通信双方设备 能否进行 D2D通信的信息、 通信双方设备都支持的现有移动通信技术的安全 算法、 以及 D2D通信密钥材料;  The MME sends communication data to the communication device, and the communication data includes: information about whether the two communication devices can perform D2D communication, a security algorithm of an existing mobile communication technology supported by both communication devices, and a D2D communication key material;
eNB指示通信双方设备建立通信数据承载, 生成 RNTI并将所述 RNTI 分发到通信双方设备, 所述 RNTI用于 D2D通信;  The eNB instructs the two communication devices to establish a communication data bearer, generates an RNTI, and distributes the RNTI to the communication device, where the RNTI is used for D2D communication;
通信双方设备根据接收的通信资料, 使用选择的安全算法和根据密钥材 料获取的密钥进行通信。  The communication device communicates using the selected security algorithm and the key obtained from the key material based on the received communication data.
本发明实施例的另一目的在于提供一种通过移动通信网络进行通信的方 法, 所述方法包括以下步骤:  Another object of embodiments of the present invention is to provide a method for communicating over a mobile communication network, the method comprising the steps of:
获取通信双方设备能否进行 D2D通信的信息;  Obtaining information on whether D2D communication can be performed by devices on both sides of the communication;
判断通信双方设备是否拥有相同的安全算法;  Determining whether the devices on both sides of the communication have the same security algorithm;
将通信资料发送到通信双方设备, 所述通信资料包括: 通信双方设备能 否进行 D2D通信的信息、 通信双方设备都支持的现有移动通信技术的安全算 法、 以及 D2D通信的密钥材料。 Sending the communication data to the communication device, the communication data includes: Whether to perform D2D communication information, a security algorithm of an existing mobile communication technology supported by both communication devices, and a key material for D2D communication.
本发明实施例的另一目的在于提供一种通过移动通信网络进行通信的方 法, 所述方法包括以下步骤:  Another object of embodiments of the present invention is to provide a method for communicating over a mobile communication network, the method comprising the steps of:
接收并存储 MME发送的通信资料, 所述通信资料包括: 通信双方设备 能否进行 D2D通信的信息、 通信双方设备都支持的现有移动通信技术的安全 算法、 以及 D2D通信的密钥材料;  Receiving and storing communication data sent by the MME, where the communication data includes: information about whether the two communication devices can perform D2D communication, a security algorithm of an existing mobile communication technology supported by both communication devices, and a key material of D2D communication;
将所述通信资料发送到通信双方设备;  Transmitting the communication data to the communication device;
指示通信双方设备建立通信数据承载;  Instructing the two communication devices to establish a communication data bearer;
生成 RNTI , 并将所述 RNTI分发到通信双方设备。  An RNTI is generated and distributed to both communication devices.
本发明实施例的另一目的在于提供一种通过移动通信网络进行通信的方 法, 所述方法啊包括以下步骤:  Another object of embodiments of the present invention is to provide a method for communicating over a mobile communication network, the method comprising the following steps:
向 MME发送通信请求,所述通信请求中包含是否支持 D2D通信的信息; 接收通信资料, 所述通信资料包括: 通信双方设备能否进行 D2D通信的 信息、 通信双方设备都支持的现有移动通信技术的安全算法、 以及 D2D通信 的密钥材料;  Sending a communication request to the MME, the communication request includes information about whether to support D2D communication; receiving communication data, where the communication data includes: information that the two communication devices can perform D2D communication, and existing mobile communication supported by both communication devices Technical security algorithms, and keying materials for D2D communication;
根据 eNB的指示建立通信数据承载;  Establishing a communication data bearer according to an indication of the eNB;
接收 eNB分发的 RNTI;  Receiving an RNTI distributed by the eNB;
使用选择的安全算法和根据密钥材料获取的密钥向被叫方 UE发起通信。 本发明实施例的另一目的在于提供一种通过移动通信网络进行通信的方 法, 所述方法包括以下步骤:  The communication is initiated to the called party UE using the selected security algorithm and the key obtained from the key material. Another object of embodiments of the present invention is to provide a method for communicating over a mobile communication network, the method comprising the steps of:
接收 MME的通信呼叫, 所述通信呼叫中包含询问是否支持 D2D通信的 信息;  Receiving a communication call of the MME, where the communication call includes information asking whether to support D2D communication;
向 MME发送是否支持 D2D通信的信息;  Sending information to the MME whether to support D2D communication;
接收通信资料, 所述通信资料包括: 通信双方设备能否进行 D2D通信的 信息、 通信双方设备都支持的现有移动通信技术的安全算法、 以及 D2D通信 的密钥材料; Receiving communication data, the communication data includes: information about whether the two communication devices can perform D2D communication, a security algorithm of an existing mobile communication technology supported by both communication devices, and D2D communication Key material
根据 eNB的指示建立通信数据承载;  Establishing a communication data bearer according to an indication of the eNB;
接收 eNB分发的 RNTI;  Receiving an RNTI distributed by the eNB;
使用选择的安全算法和根据密钥材料获取的密钥响应主叫方 UE发起的 通信。  The communication initiated by the calling party UE is responded to using the selected security algorithm and the key obtained from the key material.
本发明实施例的另一目的在于提供一种通过移动通信网络进行通信的装 置, 所述装置包括:  Another object of the embodiments of the present invention is to provide an apparatus for communicating over a mobile communication network, the apparatus comprising:
D2D通信信息获取单元,用于获取通信双方设备能否进行 D2D通信的信 息;  The D2D communication information acquiring unit is configured to obtain information about whether the two devices of the communication can perform D2D communication;
相同安全算法判断单元, 用于判断通信双方设备是否拥有相同的安全算 法;  The same security algorithm determining unit is configured to determine whether the devices of the communication parties have the same security algorithm;
通信资料发送单元, 用于将通信资料发送到通信双方设备。  The communication data sending unit is configured to send the communication data to the communication device.
本发明实施例的另一目的在于提供一种通过移动通信网络进行通信的装 置, 所述装置包括:  Another object of the embodiments of the present invention is to provide an apparatus for communicating over a mobile communication network, the apparatus comprising:
通信资料接收单元, 用于接收所述 MME发送的通信资料;  a communication data receiving unit, configured to receive communication data sent by the MME;
通信资料转发单元, 用于将所述通信资料接收单元接收的通信资料转发 到通信双方设备;  a communication data forwarding unit, configured to forward the communication data received by the communication data receiving unit to the communication device;
通信数据承载指示单元, 用于指示通信双方设备建立通信数据承载; RNTI分发单元, 用于生成 RNTI并将所述 RNTI分发到通信双方设备。 本发明实施例的另一目的在于提供一种通过移动通信网络进行通信的装 置, 所述装置包括:  And a communication data bearer indicating unit, configured to instruct the communication device to establish a communication data bearer, and an RNTI distribution unit, configured to generate the RNTI and distribute the RNTI to the communication device. Another object of the embodiments of the present invention is to provide an apparatus for communicating over a mobile communication network, the apparatus comprising:
D2D通信自检单元, 用于进行自检是否支持 D2D通信;  D2D communication self-test unit, used for self-test to support D2D communication;
通信请求发送单元,用于向 MME发起通信请求,所述通信请求中携带有 所述 D2D通信自检单元自检的是否支持 D2D通信的信息;  a communication request sending unit, configured to initiate a communication request to the MME, where the communication request carries information about whether the D2D communication self-test unit self-test supports D2D communication;
通信资料接收单元, 用于接收 MME或 eNB发送的通信资料;  a communication data receiving unit, configured to receive communication data sent by the MME or the eNB;
通信数据承载建立单元, 用于根据 eNB的指示建立通信数据承载; RNTI接收单元, 用于接收 eNB分发的 RNTI; a communication data bearer establishing unit, configured to establish a communication data bearer according to an indication of the eNB; An RNTI receiving unit, configured to receive an RNTI distributed by an eNB;
通信单元, 用于根据所述通信资料接收单元接收的通信资料使用选择的 安全算法和根据密钥材料获取的密钥向被叫方 UE发起通信。  And a communication unit, configured to initiate communication to the called party UE according to the communication data received by the communication data receiving unit using the selected security algorithm and the key acquired according to the key material.
本发明实施例的另一目的在于提供一种通过移动通信网络进行通信的装 置, 所述装置包括:  Another object of the embodiments of the present invention is to provide an apparatus for communicating over a mobile communication network, the apparatus comprising:
D2D检测信息接收单元 , 用于接收 MME发送的进行 D2D通信功能检测 的信息;  a D2D detection information receiving unit, configured to receive information sent by the MME for performing D2D communication function detection;
D2D检测单元,用于根据所述 D2D检测信息接收单元接收的信息自检是 否支持 D2D通信功能;  a D2D detecting unit, configured to support, according to the information received by the D2D detection information receiving unit, whether the D2D communication function is supported;
D2D通信信息发送单元,用于根据所述 D2D检测单元的检测结果向 MME 发送是否支持 D2D通行功能的信息;  a D2D communication information sending unit, configured to send, to the MME, information about whether the D2D pass function is supported according to the detection result of the D2D detecting unit;
通信资料接收单元, 用于接收 MME或 eNB发送的通信资料;  a communication data receiving unit, configured to receive communication data sent by the MME or the eNB;
通信数据承载建立单元, 用于根据 eNB的指示建立通信数据承载;  a communication data bearer establishing unit, configured to establish a communication data bearer according to an indication of the eNB;
RNTI接收单元, 用于接收 eNB分发的 RNTI;  An RNTI receiving unit, configured to receive an RNTI distributed by the eNB;
通信单元, 用于根据所述通信资料接收单元接收的通信资料使用选择的 安全算法和根据密钥材料获取的密钥响应主叫方 UE发起的通信。  And a communication unit, configured to respond to the communication initiated by the calling party UE according to the communication data received by the communication data receiving unit using the selected security algorithm and the key acquired according to the key material.
本发明实施例的另一目的在于提供一种通过移动通信网络进行通信的系 统, 所述系统包括:  Another object of the embodiments of the present invention is to provide a system for communicating over a mobile communication network, the system comprising:
MME,用于获取通信双方设备能否进行 D2D通信的信息,判断通信双方 设备是否支持相同的安全算法, 将通信资料发送到通信双方设备, 所述通信 资料包括: 通信双方设备能否进行 D2D通信的信息、 通信双方设备都支持的 现有移动通信技术的安全算法、 以及密钥材料;  The MME is configured to obtain information about whether the devices of the communication device can perform D2D communication, determine whether the devices of the two communication devices support the same security algorithm, and send the communication data to the communication device, where the communication data includes: whether the communication device can perform D2D communication Security algorithms for existing mobile communication technologies supported by both information and communication devices, and keying materials;
eNB, 用于接收并存储所述 MME发送的通信资料, 将通信资料发送到通 信双方设备,指示通信双方设备建立通信数据承载,生成 RNTI并将所述 RNTI 分发到通信双方设备;  The eNB is configured to receive and store the communication data sent by the MME, send the communication data to the communication device, and instruct the communication device to establish a communication data bearer, generate the RNTI, and distribute the RNTI to the communication device;
主叫方 UE, 用于向 MME发送通信请求, 所述通信请求中包含是否支持 D2D通信的信息, 接收通信资料, 根据 eNB的指示建立通信数据承载, 接收 eNB分发的 RNTI,使用选择的安全算法和根据密钥材料获取的密钥向被叫方 UE发起通信; a calling party UE, configured to send a communication request to the MME, where the communication request includes whether to support The D2D communication information, receiving the communication data, establishing a communication data bearer according to the indication of the eNB, receiving the RNTI distributed by the eNB, and initiating communication to the called party UE by using the selected security algorithm and the key obtained according to the key material;
被叫方 UE, 用于接收 MME的通信呼叫 , 向 MME发送是否支持 D2D通 信的信息, 接收通信资料, 根据 eNB的指示建立通信数据承载, 接收 eNB分 发的 RNTI, 响应主叫方 UE使用选择的安全算法和根据密钥材料获取的密钥 发起的通信。  The called party UE is configured to receive a communication call of the MME, send information to the MME whether to support the D2D communication, receive the communication data, establish a communication data bearer according to the indication of the eNB, receive the RNTI distributed by the eNB, and respond to the calling party UE using the selected The security algorithm and the communication initiated by the key obtained from the key material.
本发明实施例, MME获取 UE是否支持 D2D通信的信息, 判断通信双 方是否拥有相同的安全算法, 向通信双方下发现有移动通信所使用的安全算 法, 使得通信双方使用现有移动通信技术成熟安全的安全算法进行通信, 不 仅使移动通信技术在 D2D通信方面得到了应用, 而且因为使用现有移动通信 技术进行通信不仅验证过程简单, 而且安全性高。  In the embodiment of the present invention, the MME obtains information about whether the UE supports D2D communication, determines whether the communication parties have the same security algorithm, and discovers a security algorithm used by the mobile communication to the communication parties, so that the communication parties use the existing mobile communication technology to mature and secure. The communication of the security algorithm not only enables the mobile communication technology to be applied in D2D communication, but also because the communication using the existing mobile communication technology is simple, and the security is high.
附图说明 DRAWINGS
图 1是本发明实施例提供的通过移动通信网络进行通信方法的流程图; 图 2是本发明实施例提供的图 1所示步骤 S101的具体实现流程图; 图 3 是本发明另一实施例提供的通过移动通信网络进行通信方法的流程 图;  1 is a flowchart of a method for performing communication by using a mobile communication network according to an embodiment of the present invention; FIG. 2 is a flowchart of a specific implementation of step S101 shown in FIG. 1 according to an embodiment of the present invention; FIG. 3 is another embodiment of the present invention; A flow chart of a communication method provided by a mobile communication network;
图 4是本发明又一实施例提供的通过移动通信网络进行通信方法的流程 图;  4 is a flow chart of a method for communicating over a mobile communication network according to another embodiment of the present invention;
图 5是本发明又一实施例提供的通过移动通信网络进行通信方法的流程 图;  FIG. 5 is a flow chart of a communication method performed by a mobile communication network according to another embodiment of the present invention; FIG.
图 6是本发明又一实施例提供的通过移动通信网络进行通信方法的流程 图;  6 is a flow chart of a method for communicating over a mobile communication network according to another embodiment of the present invention;
图 7是本发明实施例提供的通过移动通信网络进行通信系统的结构图; 图 8是本发明实施例提供的图 7所述 MME的具体结构图;  7 is a structural diagram of a communication system performed by a mobile communication network according to an embodiment of the present invention; FIG. 8 is a specific structural diagram of the MME shown in FIG. 7 according to an embodiment of the present invention;
图 9是本发明实施例提供的图 7所述 eNB的具体结构图; 图 10是本发明实施例提供的图 7所述主叫方 UE的具体结构图; 图 11是本发明实施例提供的图 7所述被叫方 UE的具体结构图。 FIG. 9 is a specific structural diagram of an eNB shown in FIG. 7 according to an embodiment of the present disclosure; FIG. 10 is a specific structural diagram of the calling party UE shown in FIG. 7 according to an embodiment of the present invention; FIG. 11 is a specific structural diagram of the called party UE shown in FIG. 7 according to an embodiment of the present invention.
具体实施方式 detailed description
为了使本发明的目的、 技术方案及优点更加清楚明白, 以下结合附图及 实施例, 对本发明进行进一步详细说明。 应当理解, 此处所描述的具体实施 例仅仅用以解释本发明, 并不用于限定本发明。  The present invention will be further described in detail below with reference to the accompanying drawings and embodiments. It is understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
本发明实施例, MME获取 UE是否支持 D2D通信的信息, 判断通信双 方是否拥有相同的安全算法, 向通信双方下发现有移动通信所使用的安全算 法, 使得通信双方使用现有移动通信技术成熟安全的安全算法进行通信, 不 仅使移动通信技术在 D2D通信方面得到了应用, 而且因为使用现有移动通信 技术进行通信不仅验证过程简单, 而且安全性高。  In the embodiment of the present invention, the MME obtains information about whether the UE supports D2D communication, determines whether the communication parties have the same security algorithm, and discovers a security algorithm used by the mobile communication to the communication parties, so that the communication parties use the existing mobile communication technology to mature and secure. The communication of the security algorithm not only enables the mobile communication technology to be applied in D2D communication, but also because the communication using the existing mobile communication technology is simple, and the security is high.
实施例一  Embodiment 1
如图 1 所示为本发明实施例提供的通过移动通信网络进行通信方法的流 程图, 详述如下:  FIG. 1 is a flow chart of a communication method performed by a mobile communication network according to an embodiment of the present invention, which is described in detail as follows:
在步骤 S101中, MME获取通信双方设备是否支持 D2D通信的信息。 在本发明实施例中, 通信设备双方进行通信之前, MME需要获取通信设 备双方是否支持 D2D通信的信息, 如果支持则进入步骤 S102, 如果不支持 则选择现有的移动通信系统进行通信。关于 MME获取通信双方设备是否支持 D2D通信的具体过程详见图 2以及对图 2的描述。  In step S101, the MME acquires information on whether the two communication devices support D2D communication. In the embodiment of the present invention, before the communication device performs communication, the MME needs to obtain information about whether the communication device supports D2D communication. If yes, the process proceeds to step S102. If not, the existing mobile communication system is selected for communication. The specific process for the MME to obtain whether the two communication devices support D2D communication is shown in FIG. 2 and the description of FIG. 2 .
在步骤 S102中, MME判断通信双方设备是否拥有相同的安全算法。 在本发明实施例中, 每件设备拥有的安全算法可能不同, 如果拥有相同 的安全算法, 则进入步骤 S103 , 否则, 通知 eNB或者 UE结束本次通信, 或 者选择现有的移动通信系统通信。关于 MME判断通信双方设备是否拥有相同 的安全算法的问题, 本申请使用现有技术进行检测, 在此不再赘述。  In step S102, the MME determines whether the two communication devices have the same security algorithm. In the embodiment of the present invention, the security algorithms owned by each device may be different. If the same security algorithm is present, the process proceeds to step S103. Otherwise, the eNB or the UE is notified to end the communication, or the existing mobile communication system is selected for communication. For the problem that the MME determines whether the devices of the two communication devices have the same security algorithm, the present application uses the prior art for detection, and details are not described herein again.
在步骤 S103中, MME向通信双方设备发送通信资料, 所述通信资料包 括: 通信双方设备能否进行 D2D通信的信息、 通信双方设备都支持的现有移 动通信技术的安全算法、 以及 D2D通信密钥材料。 In step S103, the MME sends communication data to the communication device, and the communication data includes: information about whether the communication device can perform D2D communication, and the existing migration supported by both communication devices. Security algorithms for mobile communication technologies, and D2D communication keying materials.
在本发明实施例中, MME向通信 UE发送通信资料, 该通信资料用于通 信双方在收发数据时进行验证, 所述通信资料包括: 通信双方设备能否进行 D2D通信的信息、 通信双方设备都支持的现有移动通信技术的安全算法、 以 及密钥材料, 所述安全算法包括: 加解密算法和完整性校验算法。 MME 向 UE发送通信资料的方法包括以下两种:  In the embodiment of the present invention, the MME sends communication data to the communication UE, where the communication data is used by the communication parties to perform verification when transmitting and receiving data, and the communication data includes: information about whether the two communication devices can perform D2D communication, and both communication devices Supported security algorithms for existing mobile communication technologies, and keying materials, the security algorithms including: encryption and decryption algorithms and integrity verification algorithms. The method for the MME to send communication data to the UE includes the following two methods:
A、 MME向 eNB发送所述通信资料,由 eNB转发到通信双方设备, MME 向 eNB发送所述通信资料的步骤具体为:  A. The MME sends the communication data to the eNB, and the eNB forwards the information to the communication device. The step of the MME transmitting the communication data to the eNB is specifically:
通过定义以下消息将所述通信资料携带发送到 eNB:  The communication data is carried to the eNB by defining the following message:
Initial Context Setup Request  Initial Context Setup Request
- Message Type  - Message Type
- MME UE S1AP ID  - MME UE S1AP ID
- eNB UE S1AP ID  - eNB UE S1AP ID
- UE Aggregate Maximum Bit Rate  - UE Aggregate Maximum Bit Rate
- E-RAB to Be Setup List  - E-RAB to Be Setup List
• E-RAB to Be Setup Item IEs  • E-RAB to Be Setup Item IEs
- UE Security Capabilities  - UE Security Capabilities
• Encryption Algorithms: BIT STRING (16, ...) • Encryption Algorithms: BIT STRING (16, ...)
• Integrity Protection Algorithms: BIT STRING• Integrity Protection Algorithms: BIT STRING
(16, . · ·) (16, . . . )
- Security Key  - Security Key
- D2D capability  - D2D capability
- D2D UE Security Capabilities  - D2D UE Security Capabilities
• D2D Encryption Algorithms: BIT STRING (16, . · ·)  • D2D Encryption Algorithms: BIT STRING (16, . . . )
• D2D Integrity Protection Algorithms: BIT STRING (16, . · ·) D2D Security stuff • D2D Integrity Protection Algorithms: BIT STRING (16, . . . ) D2D Security stuff
以及 as well as
UE CONTEXT MODIFICATION REQUEST  UE CONTEXT MODIFICATION REQUEST
- Message Type  - Message Type
- MME UE S1AP ID  - MME UE S1AP ID
- eNB UE S1AP ID  - eNB UE S1AP ID
- UE Security Capabilities  - UE Security Capabilities
- Security Key  - Security Key
- Subscriber Profile ID for RAT/Frequency priority  - Subscriber Profile ID for RAT/Frequency priority
- UE Aggregate Maximum Bit Rate  - UE Aggregate Maximum Bit Rate
- CS Fallback Indicator  - CS Fallback Indicator
- UE Security Capabilities  - UE Security Capabilities
- CSG Membership Status  - CSG Membership Status
- D2D capability  - D2D capability
- D2D UE Security Capabilities  - D2D UE Security Capabilities
• D2D Encryption Algorithms: BIT STRING (16, . · ·)  • D2D Encryption Algorithms: BIT STRING (16, . . . )
• D2D Integrity Protection Algorithms: BIT STRING • D2D Integrity Protection Algorithms: BIT STRING
(16, . · ·) (16, . . . )
D2D Security stuff  D2D Security stuff
B、 MME直接将通信资料发送到通信双方设备, 其步骤具体为: 通过在 MME与 UE之间通信的 NAS信息传递通信资料。 在该方法中, 通信双方设 备或者 MME , 需要把通信双方设备能否进行 D2D通信的信息发送给 eNB。  B. The MME directly sends the communication data to the communication device, and the steps are specifically: transmitting the communication data by using the NAS information communicated between the MME and the UE. In this method, the two communication devices or the MME need to transmit information indicating whether or not the communication device can perform D2D communication to the eNB.
在步骤 S104中, eNB指示通信双方设备建立通信数据承载, 生成 RNTI 并将所述 RNTI分发到通信双方设备, 所述 RNTI用于 D2D通信。  In step S104, the eNB instructs the two communication devices to establish a communication data bearer, generates an RNTI, and distributes the RNTI to the communication two-party equipment, and the RNTI is used for D2D communication.
在本发明实施例中, eNB 指示通信双方设备建立通信数据承载, 生成 RNTI并将所述 RNTI分发到通信双方设备。 eNB通过修改 RRC指示通信双 方设备建立通信数据承载, 具体为: In the embodiment of the present invention, the eNB instructs the two communication devices to establish a communication data bearer, generate an RNTI, and distribute the RNTI to the communication device. The eNB indicates the communication double by modifying the RRC The party device establishes a communication data bearer, which is specifically:
Connection Reconfiguration消息中包含元素 radio Resource Config Dedicated->drb-To Add Mod List->DRB-To Add Mod:  The Connection Reconfiguration message contains the elements radio Resource Config Dedicated->drb-To Add Mod List->DRB-To Add Mod:
- DRB-ToAddMod ::=SEQUENCE {  - DRB-ToAddMod ::=SEQUENCE {
- eps-Bearerldentity INTEGER (0..15) OPTIONAL, -- - eps-Bearerldentity INTEGER (0..15) OPTIONAL, --
Cond DRB- Setup Cond DRB- Setup
- drb-Identity DRB-Identity,  - drb-Identity DRB-Identity,
- dcp-ConfigPDCP-Config OPTIONAL,-Cond PDCP - rlc-ConfigRLC-ConfigOPTIONAL, -- Cond Setup - logicalChannelldentity INTEGER (3..10) OPTIONAL, - dcp-ConfigPDCP-Config OPTIONAL, -Cond PDCP - rlc-ConfigRLC-ConfigOPTIONAL, -- Cond Setup - logicalChannelldentity INTEGER (3..10) OPTIONAL,
-- Cond DRB-Setup -- Cond DRB-Setup
- logicalChannelConfig LogicalChannelConfiOPTIONAL, - logicalChannelConfig LogicalChannelConfiOPTIONAL,
― Cond Setup ― Cond Setup
- D2D security AlgorithmConfig  - D2D security AlgorithmConfig
- D2D Security stuff  - D2D Security stuff
- D2D-RNTI  - D2D-RNTI
在步骤 S105中, 通信双方设备根据接收的通信资料, 使用选择的安全算 法和根据密钥材料获取的密钥进行通信。 In step S105, the two communication devices communicate using the selected security algorithm and the key acquired based on the key material based on the received communication data.
在本发明实施例中, 通信双方设备接收通信资料, 根据通信资料确定对 方: 可以进行 D2D通信, 并且支持相同的安全算法。 根据通信资料中的现有 移动通信技术的安全算法, 以及通信资料中的密钥材料获取的密钥, 进行通 信。  In the embodiment of the present invention, the communication device receives the communication data, and determines the opposite according to the communication data: D2D communication can be performed, and the same security algorithm is supported. The communication is based on the security algorithm of the existing mobile communication technology in the communication data, and the key obtained by the key material in the communication data.
需要指出的是, 主叫方设备和被叫方设备与 MME和 eNB进行通信分为 以下四种情况:  It should be noted that the communication between the calling party device and the called party device and the MME and the eNB is divided into the following four cases:
主叫方设备和被叫方设备与相同 MME进行通信, 且与相同的 eNB进行 通信; 或者, The calling party device and the called party device communicate with the same MME and perform the same eNB Communication; or,
主叫方设备和被叫方设备与相同的 MME进行通信, 但与不同的 eNB进 行通信; 或者,  The calling party device and the called party device communicate with the same MME but communicate with different eNBs; or
主叫方设备和被叫方设备与不同的 MME进行通信, 且与不同的 eNB进 行通信; 或者,  The calling party device and the called party device communicate with different MMEs and communicate with different eNBs; or
主叫方设备和被叫方设备与不同的 MME进行通信, 但与相同的 eNB进行 通信。  The calling party device and the called party device communicate with different MMEs but communicate with the same eNB.
本发明实施例, MME获取 UE 是否支持 D2D通信的信息, 判断通信双方 是否拥有相同的安全算法, 向通信双方下发现有移动通信所使用的安全算法, 使得通信双方使用现有移动通信技术成熟安全的安全算法进行通信, 不仅使 移动通信技术在 D2D通信方面得到了应用, 而且因为使用现有移动通信技术 进行通信不仅验证过程简单, 而且安全性高。  In the embodiment of the present invention, the MME obtains information about whether the UE supports D2D communication, determines whether the communication parties have the same security algorithm, and discovers a security algorithm used by the mobile communication to the communication parties, so that the communication parties use the existing mobile communication technology to mature and secure. The communication of the security algorithm not only enables the mobile communication technology to be applied in D2D communication, but also because the communication using the existing mobile communication technology is simple, and the security is high.
实施例二  Embodiment 2
如图 2所示为本发明实施例图 1所示步骤 S101的具体实现流程图, 详述如 下:  FIG. 2 is a flowchart of a specific implementation of step S101 shown in FIG. 1 according to an embodiment of the present invention, and details are as follows:
在步骤 S201中, 主叫方 UE自检是否支持 D2D通信, 在支持 D2D通信的情 况下 , 主叫方 UE向 MME发起 D2D通信请求。  In step S201, the calling party UE self-checks whether to support D2D communication, and in the case of supporting D2D communication, the calling party UE initiates a D2D communication request to the MME.
在步骤 S202中, MME接收所述主叫方 UE发送的通信请求和支持 D2D 通信的信息, 并在呼叫被叫方 UE时携带检测是否支持 D2D通信的指令。  In step S202, the MME receives the communication request sent by the calling party UE and the information supporting the D2D communication, and carries an instruction to detect whether to support the D2D communication when calling the called party UE.
在步骤 S203中, 被叫方 UE接收 MME的通信呼叫, 根据所述检测指令 自检是否支持 D2D通信, 并将检测结果发送给 MME。  In step S203, the called party UE receives the communication call of the MME, and according to the detection instruction, the self-checking supports D2D communication, and sends the detection result to the MME.
本发明实施例,通过移动通信技术中的 MME检测主 /被叫双方 UE, MME 在呼叫被叫方 UE时, 携带检测是否支持 D2D通信的指令, 被叫方 UE在自 检后将结果发送回 MME, 提供了一种合理的检测设备能否进行 D2D通行的 方法。  In the embodiment of the present invention, the MME in the mobile communication technology detects the UEs of the calling and the called parties. When the MME calls the called UE, the MME carries an instruction to detect whether to support the D2D communication, and the called UE sends the result back after the self-test. The MME provides a reasonable method for detecting whether a device can perform D2D traffic.
实施例三 如图 3 所示为本发明另一实施例提供的通过移动通信网络进行通信方法 的流程图, 所述方法包括以下步骤: Embodiment 3 FIG. 3 is a flowchart of a method for communicating over a mobile communication network according to another embodiment of the present invention, where the method includes the following steps:
在步骤 S301中,获取主叫方 UE和被叫方 UE是否支持 D2D通信的信息。 在本发明实施例中, 通信设备双方进行通信之前, MME需要获取通信设 备双方是否支持 D2D通信的信息, 如果支持则进入步骤 S302, 如果不支持 则选择现有的移动通信系统进行通信。 其步骤具体为:  In step S301, information is obtained whether the calling party UE and the called party UE support D2D communication. In the embodiment of the present invention, before the communication device performs communication, the MME needs to obtain information about whether the communication device supports D2D communication. If yes, the process goes to step S302. If not, the existing mobile communication system is selected for communication. The steps are as follows:
51、 主叫方 UE自检是否支持 D2D通信, 在支持 D2D通信的情况下, 主 叫方 UE向 MME发起 D2D通信请求;  51. The calling party UE self-checks whether to support D2D communication. In the case of supporting D2D communication, the calling party UE initiates a D2D communication request to the MME;
52、 接收所述主叫方 UE发送的通信请求和支持 D2D通信的信息, 并在 呼叫被叫方 UE时携带检测是否支持 D2D通信的指令;  52. Receive a communication request sent by the calling party UE and information supporting D2D communication, and carry an instruction to detect whether to support D2D communication when calling the called UE.
53、被叫方 UE接收 MME的通信呼叫,根据所述检测指令自检是否支持 D2D通信, 并将检测结果发送给 MME。  53. The called party UE receives the communication call of the MME, and according to the detection instruction, the self-test supports D2D communication, and sends the detection result to the MME.
在步骤 S302中,判断主叫方 UE和被叫方 UE是否拥有相同的安全算法。 在本发明实施例中, 每件设备拥有的安全算法可能不同, 如果拥有相同 的安全算法, 则进入步骤 S303 , 否则, 通知 eNB或者 UE结束本次通信, 或 者选择现有的移动通信系统进行通信。 关于 MME判断主叫方 UE和被叫方 UE是否拥有相同的安全算法的问题, 本申请使用现有技术进行检测, 在此不 再赘述。  In step S302, it is determined whether the calling party UE and the called party UE have the same security algorithm. In the embodiment of the present invention, the security algorithm owned by each device may be different. If the same security algorithm is present, the process proceeds to step S303. Otherwise, the eNB or the UE is notified to end the communication, or the existing mobile communication system is selected for communication. . Regarding the problem that the MME determines whether the calling UE and the called UE have the same security algorithm, the present application uses the prior art for detection, and details are not described herein.
在步骤 S303中, 将通信资料发送到通信双发设备, 所述通信资料包括: 主叫方 UE和被叫方 UE能否进行 D2D通信的信息、 主叫方 UE和被叫方 UE 都支持的现有移动通信技术的安全算法、 以及 D2D通信的密钥材料。  In step S303, the communication data is sent to the communication dual-issue device, and the communication data includes: information that the calling party UE and the called party UE can perform D2D communication, and the calling party UE and the called party UE support Security algorithms for existing mobile communication technologies, and keying materials for D2D communication.
在本发明实施例中, 向 UE发送通信资料,该通信资料用于通信双方在收 发数据时进行验证, 所述通信资料包括: 主叫方 UE和被叫方 UE能否进行 D2D通信的信息、主叫方 UE和被叫方 UE都支持的现有移动通信技术的安全 算法、 以及密钥材料, 所述安全算法包括: 加解密算法和完整性校验算法。 其中将通信资料发送到通信双发设备的方法包括: A、 MME向 eNB发送所述通信资料, 由 eNB转发到主叫方 UE和被叫方 UE, MME向 eNB发送所述通信资料的步骤具体为: In the embodiment of the present invention, the communication data is sent to the UE, where the communication data is used by the communication parties to perform verification when transmitting and receiving data, and the communication data includes: information about whether the calling party UE and the called party UE can perform D2D communication, A security algorithm of an existing mobile communication technology supported by both the calling UE and the called UE, and a keying material, the security algorithm comprising: an encryption and decryption algorithm and an integrity verification algorithm. The method for transmitting communication data to a communication dual-issue device includes: A. The MME sends the communication data to the eNB, and the eNB forwards the information to the calling UE and the called UE. The step of the MME sending the communication data to the eNB is specifically:
通过定义以下消息将所述通信资料携带发送到 eNB:  The communication data is carried to the eNB by defining the following message:
Initial Context Setup Request  Initial Context Setup Request
- Message Type  - Message Type
- MMEUE S1APID  - MMEUE S1APID
- eNBUE S1APID  - eNBUE S1APID
- UE Aggregate Maximum Bit Rate  - UE Aggregate Maximum Bit Rate
- E-RAB to Be Setup List  - E-RAB to Be Setup List
• E-RAB to Be Setup Item IEs  • E-RAB to Be Setup Item IEs
- UE Security Capabilities  - UE Security Capabilities
• Encryption Algorithms: BIT STRING (16, ...) • Encryption Algorithms: BIT STRING (16, ...)
• Integrity Protection Algorithms: BIT STRING• Integrity Protection Algorithms: BIT STRING
(16, .··) (16, ..·)
- Security Key  - Security Key
- D2D capability  - D2D capability
- D2D UE Security Capabilities  - D2D UE Security Capabilities
• D2D Encryption Algorithms: BIT STRING (16, .··)  • D2D Encryption Algorithms: BIT STRING (16, ..·)
• D2D Integrity Protection Algorithms: BIT STRING • D2D Integrity Protection Algorithms: BIT STRING
(16, .··) (16, ..·)
D2D Security stuff  D2D Security stuff
以及 as well as
UE CONTEXT MODIFICATION REQUEST  UE CONTEXT MODIFICATION REQUEST
- Message Type  - Message Type
- MMEUE S1AP ID  - MMEUE S1AP ID
- eNBUE S1AP ID  - eNBUE S1AP ID
- UE Security Capabilities - Security Key - UE Security Capabilities - Security Key
- Subscriber Profile ID for RAT/Frequency priority  - Subscriber Profile ID for RAT/Frequency priority
- UE Aggregate Maximum Bit Rate  - UE Aggregate Maximum Bit Rate
- CS Fallback Indicator  - CS Fallback Indicator
- UE Security Capabilities  - UE Security Capabilities
- CSG Membership Status  - CSG Membership Status
- D2D capability  - D2D capability
- D2D UE Security Capabilities  - D2D UE Security Capabilities
• D2D Encryption Algorithms : BIT STRING (16, . · ·)  • D2D Encryption Algorithms : BIT STRING (16, . · ·)
• D2D Integrity Protection Algorithms: BIT STRING • D2D Integrity Protection Algorithms: BIT STRING
(16, . · ·) (16, . . . )
D2D Security stuff  D2D Security stuff
B、 MME直接将通信资料发送到主叫方 UE和被叫方 UE,其步骤具体为: 通过在 MME与 UE之间通信的 NAS信息传递通信资料。 在该方法中, 主叫 方 UE和被叫方 UE或者 MME,需要把主叫方 UE和被叫方 UE能否进行 D2D 通信的信息发送给 eNB。  B. The MME directly sends the communication data to the calling party UE and the called party UE, and the steps are specifically: transmitting the communication data by using the NAS information communicated between the MME and the UE. In this method, the calling party UE and the called party UE or the MME need to send information about whether the calling party UE and the called party UE can perform D2D communication to the eNB.
实施例四  Embodiment 4
如图 4 所示为本发明又一实施例提供的通过移动通信网络进行通信方法 的流程图, 所述方法包括以下步骤:  FIG. 4 is a flowchart of a method for communicating over a mobile communication network according to another embodiment of the present invention, where the method includes the following steps:
在步骤 S401中, 接收并存储 MME发送的通信资料;  In step S401, the communication data sent by the MME is received and stored;
在本发明实施例中, eNB接受并存储 MME发送的通信资料, 所述通信 资料包括: 通信双方设备能否进行 D2D通信的信息、 通信双方设备都支持的 现有移动通信技术的安全算法、 以及 D2D通信的密钥材料。  In the embodiment of the present invention, the eNB accepts and stores the communication data sent by the MME, where the communication data includes: information about whether the two devices of the communication can perform D2D communication, a security algorithm of an existing mobile communication technology supported by both communication devices, and Key material for D2D communication.
在步骤 S402中, 将所述通信资料发送到通信双方设备。  In step S402, the communication material is transmitted to the communication device.
在步骤 S403中, 指示通信双方设备建立通信数据承载。  In step S403, the communication device is instructed to establish a communication data bearer.
在本发明实施例中个, eNB指示通信双方设备建立通信数据承载。 在步骤 S404中 , 生成 RNTI, 并将所述 RNTI分发到通信双方设备。 在本发明实施例中, eNB还会生成 RNTI, 并将所述 RNTI分发到通信双 方设备, 所述 RNTI用于在 D2D通信时使用。 In the embodiment of the present invention, the eNB instructs the two communication devices to establish a communication data bearer. In step S404, an RNTI is generated, and the RNTI is distributed to both communication devices. In the embodiment of the present invention, the eNB also generates an RNTI, and distributes the RNTI to the communication device, where the RNTI is used for D2D communication.
实施例五  Embodiment 5
如图 5 所示为本发明又一实施例提供的通过移动通信网络进行通信方法 的流程图, 所述方法包括以下步骤:  FIG. 5 is a flowchart of a method for performing communication by using a mobile communication network according to another embodiment of the present invention, where the method includes the following steps:
在步骤 S501中, 自检是否支持 D2D通信。  In step S501, the self-test supports D2D communication.
在步骤 S502中, 向 MME发送通信请求, 所述通信请求中包含是否支持 D2D通信的信息。  In step S502, a communication request is sent to the MME, and the communication request includes information on whether or not to support D2D communication.
在本发明实施例中, 主叫方 UE向 MME发送通信请求, 并在所述通信请 求中携带是否支持 D2D通信的信息。  In the embodiment of the present invention, the calling party UE sends a communication request to the MME, and carries information about whether to support D2D communication in the communication request.
在步骤 S503中, 接收通信资料, 所述通信资料包括: 通信双方设备能否 进行 D2D通信的信息、通信双方设备都支持的现有移动通信技术的安全算法、 以及 D2D通信的密钥材料。  In step S503, the communication data is received, and the communication data includes: information about whether the two communication devices can perform D2D communication, a security algorithm of an existing mobile communication technology supported by both communication devices, and a key material of D2D communication.
在本发明实施例中, 接收 MME直接发送的通信资料或者接收 eNB转 发的通信资料。  In the embodiment of the present invention, the communication data directly sent by the MME is received or the communication data forwarded by the eNB is received.
在步骤 S504中, 根据 eNB的指示建立通信数据承载。  In step S504, a communication data bearer is established according to an indication of the eNB.
在步骤 S505中, 接收 eNB分发的 RNTI。  In step S505, the RNTI distributed by the eNB is received.
在本发明实施例中,主叫方 UE接收 eNB分发的用于 D2D通信的 RNTI。 在步骤 S506中, 使用选择的安全算法和根据密钥材料获取的密钥向被叫 方 UE发起通信。  In the embodiment of the present invention, the calling party UE receives the RNTI for D2D communication distributed by the eNB. In step S506, communication is initiated to the called party UE using the selected security algorithm and the key obtained from the key material.
在本发明实施例中,主叫方 UE使用选择的安全算法和根据密钥材料获取 的密钥向被叫方 UE发起通信。  In an embodiment of the invention, the calling party UE initiates communication with the called party UE using the selected security algorithm and the key obtained from the keying material.
实施例六  Embodiment 6
如图 6 所示为本发明又一实施例提供的通过移动通信网络进行通信方法 的流程图, 所述方法包括以下步骤: 在步骤 S601中, 接收 MME的通信呼叫, 所述通信呼叫中包含询问是否 支持 D2D通信的信息 FIG. 6 is a flowchart of a method for performing communication by using a mobile communication network according to another embodiment of the present invention, where the method includes the following steps: In step S601, a communication call of the MME is received, where the communication call includes information asking whether to support D2D communication.
在本发明实施例中 , 被叫方 UE接收 MME发送的通信呼叫 , 所述通信呼 叫中包含询问被叫方 UE是否支持 D2D通信的信息。  In the embodiment of the present invention, the called party UE receives the communication call sent by the MME, and the communication call includes information for inquiring whether the called party UE supports D2D communication.
在步骤 S602中, 自检是否支持 D2D通信,并向 MME发送是否支持 D2D 通信的信息。  In step S602, the self-test supports D2D communication, and sends information to the MME whether or not to support D2D communication.
在步骤 S603中, 接收通信资料, 所述通信资料包括: 通信双方设备能否 进行 D2D通信的信息、通信双方设备都支持的现有移动通信技术的安全算法、 以及 D2D通信的密钥材料。  In step S603, the communication data is received, and the communication data includes: information about whether the two communication devices can perform D2D communication, a security algorithm of an existing mobile communication technology supported by both communication devices, and a key material of D2D communication.
在本发明实施例中, 接收 MME直接发送的通信资料或者接收 eNB转 发的通信资料。  In the embodiment of the present invention, the communication data directly sent by the MME is received or the communication data forwarded by the eNB is received.
在步骤 S604中, 根据 eNB的指示建立通信数据承载。  In step S604, a communication data bearer is established according to an indication of the eNB.
在步骤 S605中, 接收 eNB分发的 RNTI。  In step S605, the RNTI distributed by the eNB is received.
在本发明实施例中,被叫方 UE接收 eNB分发的用于 D2D通信的 RNTI。 在步骤 S606中, 使用选择的安全算法和根据密钥材料获取的密钥响应主 叫方 UE发起的通信。  In the embodiment of the present invention, the called party UE receives the RNTI for D2D communication distributed by the eNB. In step S606, the communication initiated by the calling party UE is responded to using the selected security algorithm and the key obtained from the key material.
实施例七  Example 7
如图 7 所示为本发明实施例提供的通过移动通信网络进行通信系统的结 构图, 为了便于说明仅示出与本发明实施例相关的部分, 包括:  FIG. 7 is a structural diagram of a communication system performed by using a mobile communication network according to an embodiment of the present invention. For the convenience of description, only parts related to the embodiment of the present invention are shown, including:
MME71 ,用于获取通信双方设备是否支持 D2D通信的信息,判断通信双 方设备是否支持相同的安全算法, 将通信资料发送到通信双方设备, 所述通 信资料包括: 通信双方设备能否进行 D2D通信的信息、 通信双方设备都支持 的现有移动通信技术的安全算法、 以及密钥材料。  The MME 71 is configured to obtain information about whether the devices of the two communication parties support the D2D communication, determine whether the devices of the communication parties support the same security algorithm, and send the communication data to the communication device, where the communication data includes: whether the communication device can perform D2D communication. Security algorithms and keying materials for existing mobile communication technologies supported by both information and communication devices.
eNB72, 用于接收并存储所述 MME71发送的通信资料, 将通信资料发送 到通信双方设备,指示通信双方设备建立通信数据承载, 生成 RNTI并将所述 RNTI分发到通信双方设备。 主叫方 UE73 , 用于向 MME发送通信请求, 所述通信请求中包含是否支 持 D2D通信的信息, 接收通信资料, 根据 eNB72的指示建立通信数据承载, 接收 eNB72分发的 RNTI, 使用选择的安全算法和根据密钥材料获取的密钥 向被叫方 UE发起通信。 The eNB 72 is configured to receive and store the communication data sent by the MME 71, send the communication data to the communication device, and instruct the communication device to establish a communication data bearer, generate an RNTI, and distribute the RNTI to the communication device. The calling party UE73 is configured to send a communication request to the MME, where the communication request includes information about whether to support D2D communication, receive communication data, establish a communication data bearer according to the indication of the eNB 72, receive the RNTI distributed by the eNB 72, and use the selected security algorithm. The communication is initiated to the called party UE with a key obtained from the key material.
被叫方 UE74 , 用于接收 MME的通信呼叫 , 向 MME发送是否支持 D2D 通信的信息, 接收通信资料, 根据 eNB72 的指示建立通信数据承载, 接收 eNB72分发的 RNTI, 响应主叫方 UE使用选择的安全算法和根据密钥材料获 取的密钥发起的通信。  The called party UE74 is configured to receive a communication call of the MME, send information to the MME whether to support the D2D communication, receive the communication data, establish a communication data bearer according to the indication of the eNB 72, receive the RNTI distributed by the eNB 72, and respond to the calling party UE using the selected The security algorithm and the communication initiated by the key obtained from the key material.
其中, 如图 8所示, MME71具体包括:  As shown in FIG. 8, the MME 71 specifically includes:
D2D通信信息获取单元 711 , 用于获取通信双方设备是否支持 D2D通信 的信息。  The D2D communication information acquiring unit 711 is configured to acquire information about whether the devices of the communication parties support D2D communication.
相同安全算法判断单元 712,用于判断通信双方设备是否拥有相同的安全 算法。  The same security algorithm determining unit 712 is configured to determine whether the devices of the communication parties have the same security algorithm.
通信资料发送单元 713 , 用于将通信资料发送到通信双方设备, 包括: 向 eNB发送所述通信资料, 由 eNB转发到通信双方设备, 或者直接将通信资料 发送到通信双方设备。  The communication data sending unit 713 is configured to send the communication data to the communication device, and includes: sending the communication data to the eNB, forwarding the information to the communication device, or directly transmitting the communication data to the communication device.
其中如图 8所示, 所述 eNB72具体包括:  As shown in FIG. 8, the eNB 72 specifically includes:
通信资料接收单元 721 , 用于接收所述 MME71发送的通信资料。  The communication data receiving unit 721 is configured to receive the communication data sent by the MME 71.
通信资料转发单元 722,用于将所述通信资料接收单元 721接收的通信资 料转发到通信双方设备。  The communication data forwarding unit 722 is configured to forward the communication data received by the communication data receiving unit 721 to the communication device.
通信数据承载指示单元 723 , 用于指示通信双方设备建立通信数据承载。  The communication data bearer indicating unit 723 is configured to instruct the communication device to establish a communication data bearer.
RNTI分发单元 724, 用于生成 RNTI并将所述 RNTI分发到通信双方设 备。  The RNTI distribution unit 724 is configured to generate an RNTI and distribute the RNTI to the communication device.
其中如图六所示, 所述主叫方 UE33具体包括:  As shown in FIG. 6, the calling party UE33 specifically includes:
D2D通信自检单元 731 , 用于进行自检是否支持 D2D通信。  The D2D communication self-test unit 731 is used to perform self-test to support D2D communication.
通信请求发送单元 732, 用于向 MME发起通信请求, 所述通信请求中携 带有所述 D2D通信自检单元 731 自检的是否支持 D2D通信的信息。 a communication request sending unit 732, configured to initiate a communication request to the MME, where the communication request carries Whether or not the information of the D2D communication is supported by the D2D communication self-test unit 731 self-test.
通信资料接收单元 733 , 用于接收 MME或 eNB发送的通信资料。  The communication data receiving unit 733 is configured to receive the communication data sent by the MME or the eNB.
通信数据承载建立单元 734, 用于根据 eNB的指示建立通信数据承载。  The communication data bearer establishing unit 734 is configured to establish a communication data bearer according to the indication of the eNB.
RNTI接收单元 735 , 用于接收 eNB分发的 RNTI。  The RNTI receiving unit 735 is configured to receive the RNTI distributed by the eNB.
通信单元 736,用于根据所述通信资料接收单元 733接收的通信资料使用 选择的安全算法和根据密钥材料获取的密钥向被叫方 UE进行通信。  The communication unit 736 is configured to communicate with the called party UE according to the communication data received by the communication data receiving unit 733 using the selected security algorithm and the key obtained according to the key material.
其中如图 9所示, 所述被叫方 UE74具体包括:  As shown in FIG. 9, the called party UE74 specifically includes:
D2D检测信息接收单元 741 , 用于接收 MME发送的进行 D2D通信功能 检测的信息。  The D2D detection information receiving unit 741 is configured to receive information sent by the MME for performing D2D communication function detection.
D2D检测单元 742 , 用于根据所述 D2D检测信息接收单元 741接收的信 息自检是否支持 D2D通信功能。  The D2D detecting unit 742 is configured to perform a D2D communication function according to the information self-checking received by the D2D detecting information receiving unit 741.
D2D通信信息发送单元 743 , 用于根据所述 D2D检测单元 742的检测结 果向 MME发送是否支持 D2D通行的信息。  The D2D communication information transmitting unit 743 is configured to send, to the MME, information about whether the D2D traffic is supported according to the detection result of the D2D detecting unit 742.
通信资料接收单元 744, 用于接收 MME或 eNB发送的通信资料。  The communication data receiving unit 744 is configured to receive the communication data sent by the MME or the eNB.
通信数据承载建立单元 745 , 用于根据 eNB的指示建立通信数据承载。  The communication data bearer establishing unit 745 is configured to establish a communication data bearer according to the indication of the eNB.
RNTI接收单元 746, 用于接收 eNB分发的 RNTI。  The RNTI receiving unit 746 is configured to receive an RNTI distributed by the eNB.
通信单元 747 ,用于根据所述通信资料接收单元 333接收的通信资料使用 选择的安全算法和根据密钥材料获取的密钥响应主叫方 UE发起的通信。  The communication unit 747 is configured to respond to the communication initiated by the calling party UE according to the communication data received by the communication data receiving unit 333 using the selected security algorithm and the key obtained according to the key material.
需要指出的是, 主叫方设备和被叫方设备与 MME和 eNB进行通信分为 以下四种情况:  It should be noted that the communication between the calling party device and the called party device and the MME and the eNB is divided into the following four cases:
主叫方设备和被叫方设备与相同 MME进行通信, 且与相同的 eNB进行 通信; 或者,  The calling party device and the called party device communicate with the same MME and communicate with the same eNB; or
主叫方设备和被叫方设备与相同的 MME进行通信, 但与不同的 eNB进 行通信; 或者,  The calling party device and the called party device communicate with the same MME but communicate with different eNBs; or
主叫方设备和被叫方设备与不同的 MME进行通信, 且与不同的 eNB进 行通信; 或者, 主叫方设备和被叫方设备与不同的 MME进行通信, 但与相同的 eNB进 行通信。 The calling party device and the called party device communicate with different MMEs and communicate with different eNBs; or The calling party device and the called party device communicate with different MMEs but communicate with the same eNB.
本发明实施例, MME获取 UE是否支持 D2D通信的信息, 判断通信双 方能否进行相同的安全算法, 向通信双方下发现有移动通信所使用的安全算 法, 使得通信双方使用现有移动通信技术成熟安全的安全算法进行通信, 不 仅使移动通信技术在 D2D通信方面得到了应用, 而且因为使用现有移动通信 技术进行通信不仅验证过程简单, 而且安全性高。  In the embodiment of the present invention, the MME obtains information about whether the UE supports D2D communication, determines whether the communication parties can perform the same security algorithm, and discovers a security algorithm used by the mobile communication to the communication parties, so that the communication parties mature using the existing mobile communication technology. The secure security algorithm communicates not only to make mobile communication technology applicable to D2D communication, but also to communicate using existing mobile communication technology, which not only has a simple verification process but also high security.
以上所述仅为本发明的较佳实施例而已, 并不用以限制本发明, 凡在本 发明的精神和原则之内所作的任何修改、 等同替换和改进等, 均应包含在本 发明的保护范围之内。  The above is only the preferred embodiment of the present invention, and is not intended to limit the present invention. Any modifications, equivalent substitutions and improvements made within the spirit and principles of the present invention should be included in the protection of the present invention. Within the scope.

Claims

权 利 要求 书 claims
1、 一种通过移动通信网络进行通信的方法, 其特征在于, 所述方法包括以 下步骤: 1. A method of communicating through a mobile communication network, characterized in that the method includes the following steps:
MME向通信双方设备发送通信资料, 所述通信资料包括: 通信双方设备能 否进行 D2D通信的信息、通信双方设备都支持的现有移动通信技术的安全算法、 以及 D2D通信密钥材料; The MME sends communication data to the devices of both communicating parties. The communication data includes: information on whether the devices of both communicating parties can perform D2D communication, security algorithms of existing mobile communication technologies supported by devices of both communicating parties, and D2D communication key materials;
eNB指示通信双方设备建立通信数据承载,生成 RNTI并将所述 RNTI分发 到通信双方设备, 所述 RNTI用于 D2D通信; The eNB instructs the devices of both communicating parties to establish a communication data bearer, generates an RNTI and distributes the RNTI to the devices of both communicating parties, and the RNTI is used for D2D communication;
通信双方设备根据接收的通信资料, 使用选择的安全算法和根据密钥材料 获取的密钥进行通信。 The devices on both sides of the communication communicate using the selected security algorithm and the key obtained based on the key material based on the received communication data.
2、 如权利要求 1所述的方法, 其特征在于, 在所述 MME向通信双方设备 发送通信资料的步骤之前, 所述方法还包括以下步骤: 2. The method of claim 1, wherein before the MME sends communication data to the devices of both communicating parties, the method further includes the following steps:
MME获取通信双方设备是否支持 D2D通信的信息; The MME obtains information about whether the devices of both communicating parties support D2D communication;
MME判断通信双方设备是否拥有相同的安全算法。 The MME determines whether the devices on both sides of the communication have the same security algorithm.
3、 如权利要求 2所述的方法, 其特征在于, 所述 MME获取通信双方设备 能否进行 D2D通信的信息的步骤具体为: 3. The method of claim 2, wherein the step for the MME to obtain information on whether the devices of both communicating parties can perform D2D communication is specifically:
主叫方 UE 自检是否支持 D2D通信, 在支持 D2D通信的情况下, 主叫方 UE向 MME发起通信请求; The calling party UE self-checks whether it supports D2D communication. If it supports D2D communication, the calling party UE initiates a communication request to the MME;
MME接收所述主叫方 UE发送的通信请求和支持 D2D通信的信息, 并在 呼叫被叫方 UE时携带检测是否支持 D2D通信的指令; The MME receives the communication request and information supporting D2D communication sent by the calling party UE, and carries an instruction to detect whether D2D communication is supported when calling the called party UE;
被叫方 UE接收 MME的通信呼叫, 根据所述检测指令自检是否支持 D2D 通信, 并将检测结果发送给 MME。 The called party UE receives the communication call from the MME, self-checks whether it supports D2D communication according to the detection instruction, and sends the detection result to the MME.
4、 如权利要求 1所述的方法, 其特征在于, 所述 MME向通信双方设备发 送通信资料的步骤, 具体为: 4. The method according to claim 1, characterized in that the step of the MME sending communication data to the devices of both communicating parties is specifically:
MME向 eNB发送通信资料, 由 eNB转发所述通信资料到通信双方设备; 或者, MME直接将通信资料发送到通信双方设备。 The MME sends communication data to the eNB, and the eNB forwards the communication data to the devices of both communicating parties; or, The MME directly sends communication data to the devices of both communicating parties.
5、 如权利要求 1所述的方法, 其特征在于, 所述 eNB通过修改 RRC指示 通信双方设备建立通信数据承载。 5. The method of claim 1, wherein the eNB instructs the devices of both communicating parties to establish a communication data bearer by modifying the RRC.
6、 如权利要求 1-5任一项所述的方法, 其特征在于, 主叫方设备和被叫方 设备与 MME和 eNB进行通信分为以下四种情况: 6. The method according to any one of claims 1 to 5, characterized in that the communication between the calling party equipment and the called party equipment and the MME and eNB is divided into the following four situations:
主叫方设备和被叫方设备与相同 MME进行通信, 且与相同的 eNB进行通 信; 或者, The calling party equipment and the called party equipment communicate with the same MME and the same eNB; or,
主叫方设备和被叫方设备与相同的 MME进行通信, 但与不同的 eNB进行 通信; 或者, The calling party equipment and the called party equipment communicate with the same MME but different eNBs; or,
主叫方设备和被叫方设备与不同的 MME进行通信, 且与不同的 eNB进行 通信; 或者, The calling party equipment and the called party equipment communicate with different MMEs and communicate with different eNBs; or,
主叫方设备和被叫方设备与不同的 MME进行通信, 但与相同的 eNB进行 通信。 The calling party device and the called party device communicate with different MMEs but with the same eNB.
7、 一种通过移动通信网络进行通信的方法, 其特征在于, 所述方法包括以 下步骤: 7. A method of communicating through a mobile communication network, characterized in that the method includes the following steps:
获取通信双方设备是否支持 D2D通信的信息; Obtain information about whether the devices of both communicating parties support D2D communication;
判断通信双方设备是否拥有相同的安全算法; Determine whether the devices on both sides of the communication have the same security algorithm;
将通信资料发送到通信双方设备, 所述通信资料包括: 通信双方设备能否 进行 D2D通信的信息、 通信双方设备都支持的现有移动通信技术的安全算法、 以及 D2D通信的密钥材料。 Send communication data to the devices of both communicating parties. The communication data includes: information on whether the devices of both communicating parties can perform D2D communication, security algorithms of existing mobile communication technologies supported by devices of both communicating parties, and key materials for D2D communication.
8、 如权利要求 7所述的方法, 其特征在于, 所述获取通信双方设备是否支 持 D2D通信的信息的步骤具体为: 8. The method of claim 7, wherein the step of obtaining information on whether the devices of both communicating parties support D2D communication is specifically:
主叫方 UE 自检是否支持 D2D通信, 在支持 D2D通信的情况下, 主叫方 UE向 MME发起通信请求; The calling party UE self-checks whether it supports D2D communication. If it supports D2D communication, the calling party UE initiates a communication request to the MME;
接收所述主叫方 UE发送的通信请求和支持 D2D通信的信息, 并在呼叫被 叫方 UE时携带检测是否支持 D2D通信的指令; 被叫方 UE接收 MME的通信呼叫, 根据所述检测指令自检是否支持 D2D 通信, 并将检测结果发送给 MME。 Receive the communication request and information supporting D2D communication sent by the calling party UE, and carry an instruction to detect whether D2D communication is supported when calling the called party UE; The called party UE receives the communication call from the MME, self-checks whether it supports D2D communication according to the detection instruction, and sends the detection result to the MME.
9、 如权利要求 8所述的方法, 其特征在于, 所述将通信资料发送到通信双 方设备的步骤, 具体为: 9. The method of claim 8, wherein the step of sending communication data to the devices of both communicating parties is specifically:
MME向 eNB发送通信资料, 由 eNB转发所述通信资料到通信双方设备; 或者, The MME sends communication data to the eNB, and the eNB forwards the communication data to the devices of both communicating parties; or,
MME直接将通信资料发送到通信双方设备。 The MME directly sends communication data to the devices of both communicating parties.
10、 一种通过移动通信网路进行通信的方法, 其特征在于, 所述方法包括 以下步骤: 10. A method of communicating through a mobile communication network, characterized in that the method includes the following steps:
接收并存储 MME发送的通信资料, 所述通信资料包括: 通信双方设备能 否进行 D2D通信的信息、通信双方设备都支持的现有移动通信技术的安全算法、 以及 D2D通信的密钥材料; Receive and store the communication data sent by the MME. The communication data includes: information on whether the devices of both communicating parties can perform D2D communication, security algorithms of existing mobile communication technologies supported by the devices of both communicating parties, and key materials for D2D communication;
将所述通信资料发送到通信双方设备; Send the communication data to the devices of both communicating parties;
指示通信双方设备建立通信数据承载; Instruct the devices on both sides of the communication to establish communication data bearers;
生成 RNTI , 并将所述 RNTI分发到通信双方设备。 Generate RNTI and distribute the RNTI to the devices of both communicating parties.
11、 一种通过移动通信网络进行通信的方法, 其特征在于, 所述方法包括 以下步骤: 11. A method of communicating through a mobile communication network, characterized in that the method includes the following steps:
向 MME发送通信请求, 所述通信请求中包含是否支持 D2D通信的信息; 接收通信资料, 所述通信资料包括: 通信双方设备能否进行 D2D通信的信 息、 通信双方设备都支持的现有移动通信技术的安全算法、 以及 D2D通信的密 钥材料; Send a communication request to the MME, where the communication request includes information on whether D2D communication is supported; receive communication data, where the communication data includes: information on whether the devices on both sides of the communication can perform D2D communication, and existing mobile communications supported by the devices on both sides of the communication. Technical security algorithms and key materials for D2D communications;
根据 eNB的指示建立通信数据承载; Establish communication data bearers according to eNB instructions;
接收 eNB分发的 RNTI; Receive RNTI distributed by eNB;
使用选择的安全算法和根据密钥材料获取的密钥向被叫方 UE发起通信。 Initiate communication to the called party UE using the selected security algorithm and the key obtained based on the key material.
12、 一种通过移动通信网络进行通信的方法, 其特征在于, 所述方法包括 以下步骤: 接收 MME的通信呼叫, 所述通信呼叫中包含询问是否支持 D2D通信的信 息; 12. A method of communicating through a mobile communication network, characterized in that the method includes the following steps: Receive a communication call from the MME, where the communication call includes information asking whether D2D communication is supported;
向 ΜΜΕ发送是否支持 D2D通信的信息; Send information to ΜΜE whether D2D communication is supported;
接收通信资料, 所述通信资料包括: 通信双方设备能否进行 D2D通信的信 息、 通信双方设备都支持的现有移动通信技术的安全算法、 以及 D2D通信的密 钥材料; Receive communication data. The communication data includes: information on whether the devices of both communicating parties can perform D2D communication, security algorithms of existing mobile communication technologies supported by the devices of both communicating parties, and key materials for D2D communication;
根据 eNB的指示建立通信数据承载; Establish communication data bearers according to eNB instructions;
接收 eNB分发的 RNTI; Receive RNTI distributed by eNB;
使用选择的安全算法和根据密钥材料获取的密钥响应主叫方 UE发起的通 信。 Respond to the communication initiated by the calling party UE using the selected security algorithm and the key obtained based on the key material.
13、 一种通过移动通信网络进行通信的装置, 其特征在于, 所述装置包括: D2D通信信息获取单元,用于获取通信双方设备是否支持 D2D通信的信息; 相同安全算法判断单元, 用于判断通信双方设备是否拥有相同的安全算法; 通信资料发送单元, 用于将通信资料发送到通信双方设备。 13. A device for communicating through a mobile communication network, characterized in that the device includes: a D2D communication information acquisition unit, used to obtain information on whether the devices of both communicating parties support D2D communication; an identical security algorithm judgment unit, used to judge Whether the devices on both sides of the communication have the same security algorithm; the communication data sending unit is used to send communication data to the devices on both sides of the communication.
14、 一种通过移动通信网络进行通信的装置, 其特征在于, 所述装置包括; 通信资料接收单元, 用于接收所述 MME发送的通信资料; 14. A device for communicating through a mobile communication network, characterized in that the device includes: a communication data receiving unit, configured to receive communication data sent by the MME;
通信资料转发单元, 用于将所述通信资料接收单元接收的通信资料转发到 通信双方设备; A communication data forwarding unit, used to forward the communication data received by the communication data receiving unit to the devices of both communicating parties;
通信数据承载指示单元, 用于指示通信双方设备建立通信数据承载; The communication data bearer instruction unit is used to instruct the devices of both communicating parties to establish the communication data bearer;
RNTI分发单元, 用于生成 RNTI并将所述 RNTI分发到通信双方设备。 RNTI distribution unit, used to generate RNTI and distribute the RNTI to the devices of both communicating parties.
15、 一种通过移动通信网络进行通信的装置, 其特征在于, 所述装置包括: D2D通信自检单元, 用于进行自检是否支持 D2D通信; 15. A device for communicating through a mobile communication network, characterized in that the device includes: a D2D communication self-test unit, used to self-test whether D2D communication is supported;
通信请求发送单元, 用于向 MME发起通信请求, 所述通信请求中携带有 所述 D2D通信自检单元自检的是否支持 D2D通信的信息; A communication request sending unit, configured to initiate a communication request to the MME, where the communication request carries information on whether the D2D communication self-checking unit self-tests to support D2D communication;
通信资料接收单元, 用于接收 MME或 eNB发送的通信资料; Communication data receiving unit, used to receive communication data sent by MME or eNB;
通信数据承载建立单元, 用于根据 eNB的指示建立通信数据承载; RNTI接收单元, 用于接收 eNB分发的 RNTI; A communication data bearer establishment unit, configured to establish a communication data bearer according to instructions from the eNB; RNTI receiving unit, used to receive the RNTI distributed by the eNB;
通信单元, 用于根据所述通信资料接收单元接收的通信资料使用选择的安 全算法和根据密钥材料获取的密钥向被叫方 UE发起通信。 A communication unit, configured to initiate communication to the called party UE using the selected security algorithm and the key obtained according to the key material according to the communication material received by the communication material receiving unit.
16、 一种通过移动通信网络进行通信的装置, 其特征在于, 所述装置包括: D2D检测信息接收单元, 用于接收 MME发送的进行 D2D通信功能检测的 信息; 16. A device for communicating through a mobile communication network, characterized in that the device includes: a D2D detection information receiving unit, configured to receive information sent by the MME for D2D communication function detection;
D2D检测单元,用于根据所述 D2D检测信息接收单元接收的信息自检是否 支持 D2D通信功能; A D2D detection unit, configured to self-check whether the D2D communication function is supported based on the information received by the D2D detection information receiving unit;
D2D通信信息发送单元, 用于根据所述 D2D检测单元的检测结果向 MME 发送是否支持 D2D通行的信息; A D2D communication information sending unit, configured to send information about whether D2D traffic is supported to the MME according to the detection result of the D2D detection unit;
通信资料接收单元, 用于接收 MME或 eNB发送的通信资料; Communication data receiving unit, used to receive communication data sent by MME or eNB;
通信数据承载建立单元, 用于根据 eNB的指示建立通信数据承载; The communication data bearer establishment unit is used to establish the communication data bearer according to the instructions of the eNB;
RNTI接收单元, 用于接收 eNB分发的 RNTI; RNTI receiving unit, used to receive RNTI distributed by eNB;
通信单元, 用于根据所述通信资料接收单元接收的通信资料使用选择的安 全算法和根据密钥材料获取的密钥响应主叫方 UE发起的通信。 The communication unit is configured to use the selected security algorithm according to the communication material received by the communication material receiving unit and the key obtained according to the key material to respond to the communication initiated by the calling party UE.
17、 一种通过移动通信网络进行通信的系统, 其特征在于, 所述系统包括: MME,用于获取通信双方设备是否支持 D2D通信的信息,判断通信双方设 备是否支持相同的安全算法, 将通信资料发送到通信双方设备, 所述通信资料 包括: 通信双方设备能否进行 D2D通信的信息、 通信双方设备都支持的现有移 动通信技术的安全算法、 以及密钥材料; 17. A system for communicating through a mobile communication network, characterized in that the system includes: MME, used to obtain information about whether the devices of both communicating parties support D2D communication, determine whether the devices of both communicating parties support the same security algorithm, and transfer the communication The data is sent to the devices of both communicating parties. The communication data includes: information on whether the devices of both communicating parties can perform D2D communication, security algorithms of existing mobile communication technologies supported by the devices of both communicating parties, and key materials;
eNB, 用于接收并存储所述 MME发送的通信资料, 将通信资料发送到通信 双方设备, 指示通信双方设备建立通信数据承载, 生成 RNTI并将所述 RNTI分 发到通信双方设备, 所述 RNTI用于 D2D通信; eNB, used to receive and store the communication data sent by the MME, send the communication data to the devices of both communicating parties, instruct the devices of both communicating parties to establish communication data bearers, generate RNTI and distribute the RNTI to the devices of both communicating parties, where the RNTI is used In D2D communication;
主叫方 UE, 用于向 MME发送通信请求, 所述通信请求中包含是否支持 D2D通信的信息,接收通信资料,根据 eNB的指示建立通信数据承载,接收 eNB 分发的 RNTI, 使用选择的安全算法和根据密钥材料获取的密钥向被叫方 UE发 起通信; The calling party UE is used to send a communication request to the MME. The communication request contains information about whether D2D communication is supported, receives communication data, establishes a communication data bearer according to the instructions of the eNB, receives the RNTI distributed by the eNB, and uses the selected security algorithm. and sends the key obtained based on the key material to the called party UE. start communication;
被叫方 UE, 用于接收 MME的通信呼叫 , 向 MME发送是否支持 D2D通信 的信息, 接收通信资料, 根据 eNB的指示建立通信数据承载, 接收 eNB分发的 RNTI, 响应主叫方 UE使用选择的安全算法和根据密钥材料获取的密钥发起的 通信。 The called party UE is used to receive the communication call from the MME, send information to the MME whether it supports D2D communication, receive communication data, establish a communication data bearer according to the instructions of the eNB, receive the RNTI distributed by the eNB, and respond to the calling party UE using the selected Security algorithms and communications initiated by keys derived from key material.
18、 如权利要求 17所述的系统, 其特征在于, 所述主叫方设备和被叫方设 备与 MME和 eNB进行通信分为以下四种情况: 18. The system according to claim 17, wherein the communication between the calling party equipment and the called party equipment and the MME and eNB is divided into the following four situations:
主叫方设备和被叫方设备与相同 MME进行通信, 且与相同的 eNB进行通 信; 或者, The calling party equipment and the called party equipment communicate with the same MME and the same eNB; or,
主叫方设备和被叫方设备与相同的 MME进行通信, 但与不同的 eNB进行 通信; 或者, The calling party equipment and the called party equipment communicate with the same MME but different eNBs; or,
主叫方设备和被叫方设备与不同的 MME进行通信, 且与不同的 eNB进行 通信; 或者, The calling party equipment and the called party equipment communicate with different MMEs and communicate with different eNBs; or,
主叫方设备和被叫方设备与不同的 MME进行通信, 但与相同的 eNB进行 通信。 The calling party device and the called party device communicate with different MMEs but with the same eNB.
PCT/CN2013/073399 2012-05-18 2013-03-29 Method, device and system for performing communication through mobile communication network WO2013170668A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201210154986.9A CN102711105B (en) 2012-05-18 2012-05-18 The method, the Apparatus and system that communicate is carried out by mobile communications network
CN201210154986.9 2012-05-18

Publications (1)

Publication Number Publication Date
WO2013170668A1 true WO2013170668A1 (en) 2013-11-21

Family

ID=46903626

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2013/073399 WO2013170668A1 (en) 2012-05-18 2013-03-29 Method, device and system for performing communication through mobile communication network

Country Status (2)

Country Link
CN (1) CN102711105B (en)
WO (1) WO2013170668A1 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103369585A (en) * 2013-04-24 2013-10-23 华为技术有限公司 Method and device for rapidly establishing D2D (Device-to-Device) communication
EP3139647A4 (en) * 2014-04-30 2017-07-05 ZTE Corporation Configuration method, prose key management functional entity, terminal, system, and storage medium
US10462660B2 (en) 2014-05-12 2019-10-29 Nokia Technologies Oy Method, network element, user equipment and system for securing device-to-device communication in a wireless network

Families Citing this family (26)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102711105B (en) * 2012-05-18 2016-03-02 华为技术有限公司 The method, the Apparatus and system that communicate is carried out by mobile communications network
GB2506611B (en) * 2012-10-02 2015-07-22 Broadcom Corp Direct communication among devices
CN103731826A (en) * 2012-10-11 2014-04-16 中兴通讯股份有限公司 D2d user equipment authentication method and device
WO2014071555A1 (en) * 2012-11-06 2014-05-15 Nokia Corporation Method and apparatus for device-to-device communication
CN104010381B (en) * 2013-02-25 2018-05-11 电信科学技术研究院 A kind of method, equipment and system for establishing direct communication path
US8989807B2 (en) 2013-02-28 2015-03-24 Intel Mobile Communications GmbH Communication terminal device, communication device, communication network server and method for controlling
EP2955897B1 (en) 2013-03-05 2018-08-01 Huawei Technologies Co., Ltd. Key interaction method and device
CN104038920B (en) * 2013-03-08 2018-05-22 电信科学技术研究院 A kind of method of data transmission, system and equipment
CN104053191B (en) * 2013-03-12 2018-03-20 电信科学技术研究院 A kind of method and apparatus for establishing adjacent communication, system
CN104053192B (en) * 2013-03-12 2018-07-03 电信科学技术研究院 A kind of method and apparatus for establishing adjacent communication, system
CN104066194B (en) * 2013-03-19 2018-10-30 电信科学技术研究院 Data transmission scheduling and data transmission method and equipment
CN104066200B (en) 2013-03-21 2020-11-06 北京三星通信技术研究有限公司 Method for realizing end-to-end communication between UE (user equipment) and user equipment
KR102039908B1 (en) 2013-04-01 2019-11-04 삼성전자주식회사 Method and apparatus for state transition of device-to-device communications
CN104113833A (en) * 2013-04-17 2014-10-22 中国移动通信集团公司 Device to device (D2D) configuration method, D2D configuration device and D2D configuration system
CN104185166B (en) * 2013-05-20 2018-03-09 华为终端有限公司 The method, apparatus and network system of communication
CN104185208B (en) * 2013-05-20 2017-06-20 华为终端有限公司 Close to business authorization method and device, system
CN104244443B (en) * 2013-06-08 2017-09-08 中国移动通信集团公司 Terminal-to-terminal service connects method for building up and mobile management entity
CN104349355B (en) * 2013-08-02 2019-04-02 电信科学技术研究院 A kind of method, system and equipment carrying out data communication
CN104519550A (en) * 2013-09-26 2015-04-15 中兴通讯股份有限公司 Method, device and system for finding D2D (Device to Device) equipment
US10212597B2 (en) 2013-10-30 2019-02-19 Nec Corporation Apparatus, system and method for secure direct communication in proximity based services
CN104618903A (en) * 2013-11-04 2015-05-13 华为技术有限公司 Key negotiation processing method and apparatus
WO2015066864A1 (en) * 2013-11-06 2015-05-14 Nokia Technologies Oy Method and apparatus for controlling d2d discovery process
CN105592434A (en) * 2014-10-23 2016-05-18 中兴通讯股份有限公司 Method and device for managing D2D (Device to Device) communication group
CN110011791B (en) * 2019-02-18 2021-07-09 西安电子科技大学 D2D-based electronic credential secure circulation method and system and electronic credential system
CN112019489B (en) * 2019-05-31 2022-03-04 华为技术有限公司 Verification method and device
CN114339818A (en) * 2020-10-12 2022-04-12 中国联合网络通信集团有限公司 Method, device and storage medium for determining base station upgrading

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1471326A (en) * 2002-07-26 2004-01-28 ��Ϊ�������޹�˾ Method of wireless link encrypting aglorithm for autonomous selective secret communication
CN1527621A (en) * 2003-03-07 2004-09-08 皇家飞利浦电子股份有限公司 Method and apparatus for establishing point-to-point coordinate communication in radio communication network
US20090325625A1 (en) * 2008-06-03 2009-12-31 Nokia Corporation Method, apparatus and computer program for power control to mitigate interference
WO2011117677A1 (en) * 2010-03-24 2011-09-29 Nokia Corporation Method and apparatus for device-to-device key management
CN102711105A (en) * 2012-05-18 2012-10-03 华为技术有限公司 Method, device and system for communication through mobile communication network

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1622678A (en) * 2003-11-27 2005-06-01 皇家飞利浦电子股份有限公司 Method and apparatus for establishing point-to-point communication between subscriber terminals in different cells
CN101132617B (en) * 2006-08-24 2010-08-04 华为技术有限公司 Method and system for implementing point-to-point peer communication

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1471326A (en) * 2002-07-26 2004-01-28 ��Ϊ�������޹�˾ Method of wireless link encrypting aglorithm for autonomous selective secret communication
CN1527621A (en) * 2003-03-07 2004-09-08 皇家飞利浦电子股份有限公司 Method and apparatus for establishing point-to-point coordinate communication in radio communication network
US20090325625A1 (en) * 2008-06-03 2009-12-31 Nokia Corporation Method, apparatus and computer program for power control to mitigate interference
WO2011117677A1 (en) * 2010-03-24 2011-09-29 Nokia Corporation Method and apparatus for device-to-device key management
CN102711105A (en) * 2012-05-18 2012-10-03 华为技术有限公司 Method, device and system for communication through mobile communication network

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103369585A (en) * 2013-04-24 2013-10-23 华为技术有限公司 Method and device for rapidly establishing D2D (Device-to-Device) communication
EP3139647A4 (en) * 2014-04-30 2017-07-05 ZTE Corporation Configuration method, prose key management functional entity, terminal, system, and storage medium
US10382953B2 (en) 2014-04-30 2019-08-13 Zte Corporation Configuration method, ProSe key management functional entity, terminal, system, and storage medium
US10462660B2 (en) 2014-05-12 2019-10-29 Nokia Technologies Oy Method, network element, user equipment and system for securing device-to-device communication in a wireless network

Also Published As

Publication number Publication date
CN102711105B (en) 2016-03-02
CN102711105A (en) 2012-10-03

Similar Documents

Publication Publication Date Title
WO2013170668A1 (en) Method, device and system for performing communication through mobile communication network
KR101717719B1 (en) Station-to-station security associations in personal basic service sets
US11483705B2 (en) Method and device for generating access stratum key in communications system
CN102056157B (en) Method, system and device for determining keys and ciphertexts
KR102100159B1 (en) Security supporting method and system for service discovery and group communication in mobile telecommunication system environment
WO2020177501A1 (en) Key configuration method and apparatus, and terminal
US11109206B2 (en) Security method and system for supporting discovery and communication between proximity based service terminals in mobile communication system environment
WO2014023269A1 (en) Switching control method and apparatus
KR102416366B1 (en) Method for configuring and transmitting key
KR20150084628A (en) Security supporting method and system for proximity based service group communication or public safety in mobile telecommunication system environment
CN107196822B (en) Method for configuring monitoring user data path, monitoring method, device and entity
WO2015062239A1 (en) Method and device for key negotiation processing
WO2022027476A1 (en) Key management method and communication apparatus
US20190350026A1 (en) A multi-connectivity establishment method, communication system, user equipment and access point
EP3314932B1 (en) Methods and apparatuses for handling data traffic in a radio node having a split protocol stack
WO2015149468A1 (en) Interception method and device
JPWO2015064475A1 (en) Communication control method, authentication server, and user terminal
KR20140071853A (en) Method and apparatus for setting up initial link in a wireless communication system
WO2014110763A1 (en) Information report method for device-to-device communication, user equipment, and base station
CN102065420B (en) Method, system and device for determining secret key
WO2015070374A1 (en) Carrier aggregation method and base station

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 13790929

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 13790929

Country of ref document: EP

Kind code of ref document: A1