WO2022237898A1 - Onboarding method, communication apparatus, medium and chip - Google Patents

Onboarding method, communication apparatus, medium and chip Download PDF

Info

Publication number
WO2022237898A1
WO2022237898A1 PCT/CN2022/092776 CN2022092776W WO2022237898A1 WO 2022237898 A1 WO2022237898 A1 WO 2022237898A1 CN 2022092776 W CN2022092776 W CN 2022092776W WO 2022237898 A1 WO2022237898 A1 WO 2022237898A1
Authority
WO
WIPO (PCT)
Prior art keywords
cell
access
terminal device
network device
online subscription
Prior art date
Application number
PCT/CN2022/092776
Other languages
French (fr)
Chinese (zh)
Inventor
朱浩仁
诸华林
徐艺珊
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2022237898A1 publication Critical patent/WO2022237898A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/60Context-dependent security
    • H04W12/69Identity-dependent
    • H04W12/73Access point logical identity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/16Discovering, processing access restriction or access information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W36/00Hand-off or reselection arrangements
    • H04W36/16Performing reselection for specific purposes
    • H04W36/22Performing reselection for specific purposes for handling the traffic

Definitions

  • the NPN can serve as a target network to be accessed by the terminal device, or as an intermediate network for assisting the terminal device in accessing the target network.
  • a terminal device eg, UE
  • the terminal device may temporarily establish a connection with an intermediate network to obtain subscription information or credentials for accessing the target network.
  • the terminal device can log out from the intermediate network, and register to the target network using the subscription information or credentials, and complete access to the target network.
  • the current process of obtaining subscription information or credentials should satisfy: (1) the intermediate network provides instructions on whether to support online subscription; and (2) providing online subscription services to terminal devices does not affect the traditional services and network security of the intermediate network itself. In order to meet the above requirements, it is necessary to further improve the cell selection and/or cell reselection mechanism of the terminal equipment.
  • the terminal device determines a candidate cell supporting online subscription among at least one cell based on the online subscription capability information.
  • the terminal device selects a second cell for camping on from the candidate cells.
  • the determination of candidate cells is implemented at the access layer of the terminal equipment.
  • a communication device includes components for implementing the method in any possible implementation manner according to the foregoing first aspect to the third aspect.
  • the communication system further includes other communication devices involved in the embodiments.
  • Fig. 4 shows an interactive signaling diagram of a communication process according to other embodiments of the present disclosure
  • b can be singular or plural.
  • plural means two or more than two.
  • At least one of the following or similar expressions refer to any combination of these items, including any combination of single or plural items.
  • at least one item (piece) of a, b, or c can represent: a, b, c, a-b, a-c, b-c, or a-b-c, where a, b, c can be single or multiple .
  • Access network device used in this disclosure is an entity or node that can be used to communicate with a terminal device, for example, it can be a radio access network (Radio Access Network, RAN) network device, which can provide Functions such as radio resource management, quality of service (QoS) management, data compression and encryption.
  • Access network equipment may include various types of base stations.
  • the access network equipment may include various forms of macro base stations, micro base stations, pico base stations, femto base stations, relay stations, access points, remote radio units (Remote Radio Unit, RRU), radio heads (Radio Head, RH ), Remote Radio Head (RRH) and so on.
  • Data network a network used to provide data transmission.
  • the data network may be a data network (data network, DN).
  • the data network may still be a DN, or may have other names, which are not limited in this application.
  • the authentication service network element is used to perform primary authentication, that is, the authentication between the terminal device and the operator's network. After the authentication service network element receives the authentication request initiated by the subscriber, it can authenticate and/or authorize the subscriber through the authentication information and/or authorization information stored in the unified data management network element, or generate an authentication request through the unified data management network element. Subscriber's authentication and/or authorization information. The authentication service network element can feed back authentication information and/or authorization information to the subscriber. In an implementation manner, the authentication service network element may also be co-located with the unified data management network element.
  • SNPN 140 acts as a target network
  • O-SNPN 120 acts as an intermediate network.
  • the O-SNPN 120 may broadcast an online subscription capability indication
  • the terminal device 130 determines that the O-SNPN 120 supports online subscription based on the online subscription capability indication, and establishes a connection with the O-SNPN 120 using default subscription or credential information.
  • the terminal device's online signing request for the O-SNPN 120 needs to be authenticated by the default credential server (Default Credential Server, DCS) 112.
  • DCS default Credential Server
  • the PS 114 has an agreement with the SNPN 140, and can store or obtain the signing or credential information of the SNPN 140.
  • the PS 114 sends the subscription or credential information for the SNPN 140 to the terminal device 130 through the limited UP or CP transmission channel.
  • the terminal device 130 can in turn de-register from the O-SNPN 120 and register to the SNPN 140 using the acquired subscription or credential information.
  • the core network device 210 may be responsible for subscription management and authentication, and store subscription information for terminal devices in the network.
  • the subscription information may further indicate the device type and/or capability information of the terminal device.
  • the core network device 210 can determine whether to restrict online subscriptions according to the device type and/or capability information indicated by the subscription information. Phase terminal equipment access to the cell.
  • the core network device 210 may be responsible for user plane network element selection, user plane network element redirection, IP address allocation, bearer establishment, modification and release, and QoS control. After the core network device 210 establishes a user plane transmission channel for the terminal device 230 , there is a user plane context for the terminal device 230 in the network.
  • Communications in the communication environment 200 may be implemented according to any suitable communication protocol, including but not limited to first generation cellular communication protocol (1G), second generation cellular communication protocol (2G), third generation cellular communication protocol (3G), WLAN communication protocols such as fourth-generation cellular communication protocols (4G) and fifth-generation cellular communication protocols (5G), such as Institute of Electrical and Electronics Engineers (IEEE) 802.11, etc., and/or any other currently known or will develop in the future.
  • first generation cellular communication protocol (1G
  • 3G third generation cellular communication protocol
  • WLAN communication protocols such as fourth-generation cellular communication protocols (4G) and fifth-generation cellular communication protocols (5G), such as Institute of Electrical and Electronics Engineers (IEEE) 802.11, etc., and/or any other currently known or will develop in the future.
  • IEEE Institute of Electrical and Electronics Engineers
  • the core network device 210 determines 340 that the terminal device 230's access to the first cell 221 is in a remote configuration phase.
  • the process in which the terminal device 230 obtains the authorization of the DCS 112 through the intermediate network is called the online signing phase, and the subsequent process of establishing a CP or UP transmission channel and obtaining the signing or certificate information for the target network can be It is called the remote configuration stage, but the naming of "online subscription stage" and "remote configuration stage" corresponds to the current standard, but the embodiments of the present disclosure are also applicable to equivalent or equivalent concepts in future or subsequent standards. Accordingly, the scope of the present disclosure is not limited in this respect.
  • the core network device 210 may judge according to the authorization result of the UDM network element to the terminal device 230 . If the UDM network element fails to authorize the terminal device 230, it means that the online subscription process of the terminal device 230 has not been completed, and the core network device 210 may determine that the access process of the terminal device 230 is in the online subscription stage.
  • the core network device 210 may determine 345 whether to restrict the terminal device 230 from accessing the first cell 221. If it is determined that the access is not restricted, the terminal device 230 is allowed to access the first cell 221 . further,
  • the terminal device 230 may perform 355 a cell reselection procedure with the access network device 220 .
  • the cell reselection process may be based on an existing criterion or a mechanism to be developed in the future, so details will not be described here. The scope of the present disclosure is not limited in this respect.
  • the access network device 220 After receiving the registration request, the access network device 220 sends 410 to the core network device 210 a first message including the cell identifier of the first cell 221 selected by the terminal device 230 . For example, the access network device 220 may forward the registration request of the terminal device 230 through the first message.
  • the first message may be an NGAP message, for example, an initial UE message (Initial UE Message).
  • the access network device 220 may determine 425 that the first cell 221 does not support the online subscription service based on the online subscription capability information of the first cell 221.
  • the access network device 220 may control access of the terminal device 230 to the first cell 221 based on the first indication information and the online subscription capability of the first cell 221 .
  • the core network device 210 may determine 440 that the access process is in a remote configuration phase. If the core network device 210 has previously sent the first indication information to the access network device 220 to instruct the terminal device 230 to restrict access to the first cell 221, the core network device 210 may send 445 the second indication information to the access network device 220. The indication information is used to indicate to cancel the access restriction on the first cell 221. In this case, the access network device 220 may use the second indication information to update the previously stored first indication information.
  • the AS of the terminal device 230 after receiving the broadcast messages from multiple access network devices, transmits the relevant parameters and indication information in the messages to the NAS layer.
  • the NAS layer of the terminal device 230 may select an access network device that supports online subscription services according to the online subscription capability indication, and instruct the AS layer to select a cell that supports online subscription provided by the access network device based on the online subscription capability indication for camping. Keep.
  • the access network device 220 and the core network device 210 may perform 525 an online subscription process with the terminal device 230 .
  • the core network device 210 sends 530 a fourth message to the terminal device 230 to indicate that the online subscription is completed.
  • the terminal device 230 may store the fourth message.
  • the terminal device 230 may determine 540 that the cell reselection need not be based on online subscription capability information.
  • the NAS layer of the terminal device 230 may instruct the AS layer to cancel the restriction on cell selection.
  • FIG. 6 shows a flowchart of a method 600 according to some embodiments of the present disclosure.
  • the method 600 can be implemented at a core network device.
  • the method 600 can be implemented at the core network device 210 .
  • the method 600 will be described below in conjunction with FIG. 2 . It should be understood that the method 600 is also applicable to other communication scenarios and devices.
  • the core network device 210 controls access of the terminal device 230 to the first cell 221 .
  • the core network device 210 may restrict the terminal device 230's access to the first cell 221 .
  • the core network device 210 may determine the access stage based on whether the first message includes an online subscription indication. For example, if the first message includes an online subscription indication, the access is in the online subscription phase. If the online subscription indication is not included in the first message, the access is in the remote configuration phase.
  • the core network device 210 may determine the access stage based on the authorization result of the credential server to the terminal device 230 . For example, if the credential server fails to authorize the terminal device 230, the access is in the online subscription phase. If the credential server authorizes the terminal device 230 successfully, the access is in the remote configuration stage.
  • the core network device 210 may determine the access stage based on whether there is a user plane context for the terminal device 230 in the network. For example, if there is no user plane context for the terminal device 230 in the network, the access is in the online subscription phase. If there is a user plane context for the terminal device 230 in the network, the access is in the remote configuration phase.
  • the access network device 220 sends a first message to the core network device 210 .
  • the first message may include a cell identifier of the first cell 221 of the access network device 220 to be accessed by the terminal device 230 .
  • the access network device 220 controls the terminal device 230's access to the first cell 221 based on the first indication information.
  • the access network device 220 may send the third message to the terminal device 230 .
  • the third message may include at least one of the following: a rejection indication, a rejection reason value, or a redirection indication for the terminal device 230 .
  • the access network device 220 receives the second indication information from the core network device.
  • the second indication information indicates to cancel the restriction on access to the first cell 221 .
  • the second indication information may indicate to cancel the access restriction on the first cell 2210 .
  • the terminal device 230 receives an online subscription capability indication from the access network device 220 .
  • the online subscription capability indication may include online subscription capability information of at least one cell (for example, the first cell 221 , the second cell 222 and the third cell 223 ) of the access network device 220 .
  • Fig. 9 is a schematic block diagram of a communication device provided by an embodiment of the present application.
  • the apparatus 900 may include a processing unit 910 and a transceiver unit 920 .
  • the processing unit 910 is used to control and manage the actions of the communication device, for example, the processing unit 910 is used to execute the steps of information/data processing in the communication device.
  • the transceiver unit 920 is used to support the communication device in the steps of sending or receiving information/data.
  • the transceiver unit 920 may be further divided into a sending unit and a receiving unit.
  • the apparatus 900 may be the core network device in the method embodiment above, or a module (such as a chip) applied to the core network device.
  • the apparatus 900 may be used to execute various steps or processes corresponding to the core network equipment in the above method 300-method 800. specifically,
  • the transceiver unit 920 is configured to: receive a first message from the access network device, where the first message includes a cell identifier of a first cell of the access network device to be accessed by the terminal device;
  • the first message includes an online subscription indication
  • the processing unit 910 is further configured to: determine that the terminal device's access to the first cell is in a remote configuration stage, and determine that the terminal device's access to the first cell is not restricted.
  • the access is in the online subscription phase
  • restricting the terminal device's access to the first cell includes:
  • the transceiving unit 920 is further configured to: send an online subscription request for the second cell to the access network device.
  • the apparatus 900 of each of the above-mentioned solutions has the function of implementing the corresponding steps performed by the core network equipment of the above-mentioned methods, or, the apparatus 900 of the above-mentioned various solutions has the function of implementing the corresponding steps of the terminal equipment in the above-mentioned methods, or, the above-mentioned each of the solutions Apparatus 900 has the function of implementing the corresponding steps performed by the access network device in the above methods.
  • the functions described above may be implemented by hardware, or may be implemented by executing corresponding software on the hardware.
  • the above-mentioned communication unit may also be a transceiver circuit (for example, may include a receiving circuit and a sending circuit), and the processing unit may be a processing circuit.
  • the processor 1010 may be used to execute the instructions stored in the memory, and when the processor 1010 executes the instructions stored in the memory, the processor 1010 is used to execute the above-mentioned instructions corresponding to the core network equipment, access network equipment or terminal equipment.
  • the steps of the methods disclosed in connection with the embodiments of the present application may be directly implemented by a hardware processor, or implemented by a combination of hardware and software modules in the processor.
  • the processor in the embodiment of the present application may be an integrated circuit chip, which has a signal processing capability.
  • each step of the above-mentioned method embodiments may be completed by an integrated logic circuit of hardware in a processor or instructions in the form of software.
  • the above-mentioned processor may be a general-purpose processor, a digital signal processor (DSP), an application-specific integrated circuit (ASIC), a field-programmable gate array (FPGA) or other programmable logic devices, discrete gate or transistor logic devices, discrete hardware components .
  • DSP digital signal processor
  • ASIC application-specific integrated circuit
  • FPGA field-programmable gate array
  • a general-purpose processor may be a microprocessor, or the processor may be any conventional processor, or the like.
  • a component may be, but is not limited to being, a process running on a processor, a processor, an object, an executable, a thread of execution, a program, and/or a computer.
  • an application running on a computing device and the computing device can be components.
  • One or more components can reside within a process and/or thread of execution and a component can be localized on one computer and/or distributed between two or more computers.
  • these components can execute from various computer readable storage media having various data structures stored thereon.
  • each functional unit in each embodiment of the present application may be integrated into one processing unit, each unit may exist separately physically, or two or more units may be integrated into one unit.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Provided in the embodiments of the present disclosure are an onboarding method, a communication apparatus, a medium and a chip. In the embodiments of the present disclosure, the method comprises: a core network device receiving a first message from an access network device, wherein the first message comprises a cell identifier of a first cell of the access network device to be accessed by a terminal device; on the basis of the cell identifier of the first cell, the core network device determining that the first cell does not support onboarding; and the core network device controlling the access of the terminal device to the first cell. By means of taking an onboarding capability of a cell into consideration, the restrictions on cell access can be realized on a core network side without needing to change a cell selection mechanism on a terminal device side. In this way, the load of a common cell can be effectively reduced, and the network performance and security can be improved.

Description

用于在线签约的方法、通信装置、介质及芯片Method, communication device, medium and chip for online signing
本申请要求在2021年5月14日提交中华人民共和国知识产权局、申请号为202110533778.9、发明名称为“用于在线签约的方法、通信装置、介质及芯片”的中国专利申请的优先权,其全部内容通过引用结合在本文中。This application claims the priority of the Chinese patent application filed with the Intellectual Property Office of the People's Republic of China on May 14, 2021, the application number is 202110533778.9, and the invention title is "method, communication device, medium and chip for online signing". The entire contents are hereby incorporated by reference.
技术领域technical field
本公开涉及通信领域,并且更具体地,涉及对终端设备进行在线签约(Onboarding)的方法、通信装置、介质及芯片。The present disclosure relates to the communication field, and more specifically, to a method, a communication device, a medium, and a chip for onboarding a terminal device.
背景技术Background technique
在第五代(5G)新无线电((New Radio,NR))通信系统中,定义了两种类型的非公共网络(Non-Public Network,NPN),即独立非公共网络(Standalone NPN,SNPN)和与公共网络集成的非公共网络(Public Network Integrated-NPN,PNI-NPN)。SNPN具有独立的无线电接入网(Radio Access Network,RAN)和核心网(5G Core,5GC),并且可以在不依赖于诸如公共陆地移动网(Public Land Mobile Network,PLMN)等公共网络的网络功能的情况下操作,而PNI-NPN可以部分依赖于公共网络的网络功能。PNI-NPN可以进一步分为封闭接入组(Closed Access Group,CAG)和网络切片(Slicing)。CAG提供针对特定业务或用户的服务,而Slicing利用5G定义的切片特性使用专门的切片为特定业务或用户提供服务。In the fifth generation (5G) new radio ((New Radio, NR)) communication system, two types of non-public networks (Non-Public Network, NPN) are defined, that is, independent non-public networks (Standalone NPN, SPNN) And a non-public network (Public Network Integrated-NPN, PNI-NPN) integrated with the public network. SNPN has an independent radio access network (Radio Access Network, RAN) and core network (5G Core, 5GC), and can be independent of network functions such as public land mobile network (Public Land Mobile Network, PLMN) and other public networks In the case of operation, PNI-NPN can partially rely on the network function of the public network. PNI-NPN can be further divided into Closed Access Group (CAG) and Network Slicing (Slicing). CAG provides services for specific businesses or users, while Slicing utilizes the slicing characteristics defined by 5G to use dedicated slices to provide services for specific businesses or users.
NPN可以充当终端设备要接入的目标网络,也可以充当用于协助终端设备接入目标网络的中间网络。例如,终端设备(例如,UE)可能没有用于接入目标网络的凭证,在这种情况下,终端设备可以临时与中间网络建立连接,以获取用于接入目标网络的签约信息或凭证。然后,终端设备可以从中间网络注销,并使用签约信息或凭证注册到目标网络,完成对目标网络的接入。当前的获取签约信息或凭证的流程应当满足:(1)中间网络提供关于是否支持在线签约的指示;以及(2)向终端设备提供在线签约业务不影响中间网络自身的传统业务和网络安全。为了满足上述要求,需要进一步改善终端设备的小区选择和/或小区重选机制。The NPN can serve as a target network to be accessed by the terminal device, or as an intermediate network for assisting the terminal device in accessing the target network. For example, a terminal device (eg, UE) may not have credentials for accessing the target network. In this case, the terminal device may temporarily establish a connection with an intermediate network to obtain subscription information or credentials for accessing the target network. Then, the terminal device can log out from the intermediate network, and register to the target network using the subscription information or credentials, and complete access to the target network. The current process of obtaining subscription information or credentials should satisfy: (1) the intermediate network provides instructions on whether to support online subscription; and (2) providing online subscription services to terminal devices does not affect the traditional services and network security of the intermediate network itself. In order to meet the above requirements, it is necessary to further improve the cell selection and/or cell reselection mechanism of the terminal equipment.
发明内容Contents of the invention
本公开的示例实施例提供了在通信系统中用于控制终端设备接入小区的方案。Exemplary embodiments of the present disclosure provide a solution for controlling a terminal device to access a cell in a communication system.
在本公开的第一方面,提供了一种用于通信的方法。在该方法中,核心网设备从接入网设备接收第一消息。第一消息包括终端设备要接入的接入网设备的第一小区的小区标识。核心网设备基于第一小区的小区标识确定第一小区不支持在线签约。核心网设备针对终端设备对第一小区的接入进行控制。以此方式,核心网设备可以根据接入网设备的小区是否支持在线签约来控制终端设备对小区的接入,从而有效地减少普通小区的负载,并且可以改善网络性能和安全性。In a first aspect of the present disclosure, a method for communication is provided. In this method, a core network device receives a first message from an access network device. The first message includes the cell identifier of the first cell of the access network device to be accessed by the terminal device. The core network device determines, based on the cell identifier of the first cell, that the first cell does not support online subscription. The core network device controls the terminal device's access to the first cell. In this way, the core network equipment can control the terminal equipment's access to the cell according to whether the cell of the access network equipment supports online subscription, thereby effectively reducing the load of common cells and improving network performance and security.
在某些实施例中,该方法还包括核心网设备从接入网设备接收小区能力信息。小区能力信息包括针对接入网设备的至少一个小区的小区标识和对应的在线签约能力,并且至少一个小区包括第一小区。核心网设备基于小区能力信息和第一小区的小区标识来确定第一小区不支持在线签约。In some embodiments, the method further includes the core network device receiving cell capability information from the access network device. The cell capability information includes a cell identifier and corresponding online subscription capability for at least one cell of the access network device, and the at least one cell includes the first cell. The core network device determines that the first cell does not support online subscription based on the cell capability information and the cell identifier of the first cell.
在某些实施例中,该方法还包括核心网设备从接入网设备接收更新消息。更新消息指示 对小区能力信息的更新。这样,核心网设备可以基于接入网设备的小区能力的动态变化来控制终端设备对小区的接入。In some embodiments, the method further includes the core network device receiving an update message from the access network device. The update message indicates an update to cell capability information. In this way, the core network device can control the terminal device's access to the cell based on the dynamic change of the cell capability of the access network device.
在某些实施例中,第一消息还指示第一小区的在线签约能力。该方法还包括核心网设备基于第一小区的小区标识和第一小区的在线签约能力,确定第一小区不支持在线签约。In some embodiments, the first message also indicates the online subscription capability of the first cell. The method further includes the core network device determining that the first cell does not support online subscription based on the cell identifier of the first cell and the online subscription capability of the first cell.
在某些实施例中,对第一小区的接入进行控制包括:核心网设备限制终端设备对第一小区的接入。In some embodiments, controlling the access to the first cell includes: the core network device restricts the terminal device from accessing the first cell.
在某些实施例中,核心网设备限制终端设备对第一小区的接入包括:核心网设备向终端设备发送第二消息。第二消息包括拒绝指示、拒绝原因值或重定向指示中的至少一项。In some embodiments, the core network device restricting the terminal device from accessing the first cell includes: the core network device sending a second message to the terminal device. The second message includes at least one of a rejection indication, a rejection reason value, or a redirection indication.
在某些实施例中,确定限制终端设备对第一小区的接入基于以下至少一项:第一消息中包括在线签约指示;凭证服务器对终端设备的授权失败;或不存在针对终端设备的用户面上下文。In some embodiments, determining to restrict the terminal device's access to the first cell is based on at least one of the following: the first message includes an online subscription indication; the credential server fails to authorize the terminal device; or there is no user for the terminal device surface context.
在某些实施例中,该方法还包括核心网设备确定终端设备对第一小区的接入处于远程配置阶段。对第一小区的接入进行控制包括核心网设备确定不限制终端设备对第一小区的接入。In some embodiments, the method further includes the core network device determining that the terminal device's access to the first cell is in a remote configuration phase. Controlling the access to the first cell includes the core network device determining not to restrict the terminal device's access to the first cell.
在某些实施例中,该方法还包括核心网设备确定终端设备对第一小区的接入处于远程配置阶段。对第一小区的接入进行控制包括核心网设备限制终端设备对第一小区的接入。In some embodiments, the method further includes the core network device determining that the terminal device's access to the first cell is in a remote configuration phase. Controlling the access to the first cell includes that the core network device restricts the terminal device from accessing the first cell.
在某些实施例中,核心网设备基于以下至少一项确定接入处于在线签约阶段。如果第一消息中包括在线签约指示,则接入处于在线签约阶段。如果凭证服务器对终端设备的授权失败,则接入处于在线签约阶段。如果不存在针对终端设备的用户面上下文,则接入处于在线签约阶段。In some embodiments, the core network device determines that the access is in an online subscription phase based on at least one of the following items. If the first message includes an online subscription indication, the access is in the online subscription phase. If the credential server fails to authorize the terminal device, the access is in the online subscription phase. If there is no user plane context for the terminal device, the access is in the online subscription phase.
在某些实施例中,核心网设备基于以下至少一项确定接入处于远程配置阶段。如果第一消息中不包括在线签约指示,则接入处于远程配置阶段。如果凭证服务器对终端设备的授权成功,则接入处于远程配置阶段。或如果存在用户面上下文,则接入处于远程配置阶段。In some embodiments, the core network device determines that the access is in the remote configuration phase based on at least one of the following items. If the online subscription indication is not included in the first message, the access is in the remote configuration phase. If the credential server authorizes the terminal device successfully, the access is in the remote configuration stage. Or if there is a user plane context, the access is in the remote configuration phase.
在本公开的第二方面,提供了一种用于通信的方法。在该方法中,接入网设备向核心网设备发送第一消息。第一消息包括终端设备要接入的接入网设备的第一小区的小区标识。接入网设备从核心网设备接收关于第一小区的接入的第一指示信息。接入网设备确定第一小区不支持在线签约。接入网设备基于第一指示信息,针对终端设备对第一小区的接入进行控制。这样,可以在不改变终端设备侧的小区选择或小区切换机制的情况下,使终端设备仅可通过支持在线签约业务的小区获得签约或凭证信息。该方案还可以灵活设置后续接入过程是否应用相同的接入限制。以此方式,可以降低小区负载,保障网络安全性,并提高通信系统的性能。In a second aspect of the present disclosure, a method for communication is provided. In this method, an access network device sends a first message to a core network device. The first message includes the cell identifier of the first cell of the access network device to be accessed by the terminal device. The access network device receives first indication information about access to the first cell from the core network device. The access network device determines that the first cell does not support online subscription. The access network device controls the terminal device's access to the first cell based on the first indication information. In this way, without changing the cell selection or cell switching mechanism on the terminal device side, the terminal device can only obtain subscription or credential information through a cell that supports online subscription services. This solution can also flexibly set whether to apply the same access restriction in the subsequent access process. In this manner, cell load can be reduced, network security can be ensured, and performance of the communication system can be improved.
在某些实施例中,第一指示信息指示限制终端设备对第一小区的接入。对第一小区的接入进行控制包括接入网设备限制终端设备对第一小区的接入。In some embodiments, the first indication information indicates that access of the terminal device to the first cell is restricted. Controlling the access to the first cell includes that the access network device restricts the terminal device from accessing the first cell.
在某些实施例中,接入网设备限制终端设备对第一小区的接入包括:接入网设备向终端设备发送第三消息。第三消息包括以下至少一项:拒绝指示、拒绝原因值或针对终端设备的重定向指示。In some embodiments, the access network device restricting the terminal device from accessing the first cell includes: the access network device sending a third message to the terminal device. The third message includes at least one of the following: a rejection indication, a rejection reason value, or a redirection indication for the terminal device.
在某些实施例中,该方法还包括:接入网设备从核心网设备接收第二指示信息。第二指示信息指示取消对第一小区的接入的限制。In some embodiments, the method further includes: the access network device receiving second indication information from the core network device. The second indication information indicates to cancel the restriction on access to the first cell.
在本公开的第三方面,提供了一种用于通信的方法。在该方法中,终端设备从接入网设备接收在线签约能力指示。至少一个小区的在线签约能力信息包括针对接入网设备的至少一个小区的小区标识和对应的在线签约能力。在线签约能力指示包括接入网设备的至少一个小 区的在线签约能力信息。终端设备基于在线签约能力信息,从至少一个小区中选择第二小区,第二小区支持在线签约。终端设备向接入网设备发送针对第二小区的在线签约请求。通过该机制,终端设备可以在进行小区选择或小区重选时,动态考虑小区在线签约能力。例如,当终端设备请求接入网络以获得签约或凭证信息时,可以根据各个小区的在线签约能力选择支持在线签约业务的小区,从而有效地减少了普通小区的负载。当在线签约完成之后,终端设备可以考虑是否应用小区接入限制。以此方式,可以实现小区负载均衡,同时可以保障网络安全性,提高通信系统的性能。In a third aspect of the present disclosure, a method for communicating is provided. In this method, the terminal device receives an online subscription capability indication from the access network device. The online subscription capability information of the at least one cell includes a cell identifier and corresponding online subscription capability for the at least one cell of the access network device. The online subscription capability indication includes online subscription capability information of at least one cell of the access network device. The terminal device selects a second cell from at least one cell based on the online subscription capability information, and the second cell supports online subscription. The terminal device sends an online subscription request for the second cell to the access network device. Through this mechanism, the terminal device can dynamically consider the online subscription capability of the cell when performing cell selection or cell reselection. For example, when a terminal device requests to access the network to obtain subscription or credential information, a cell that supports online subscription service can be selected according to the online subscription capability of each cell, thereby effectively reducing the load of common cells. After the online subscription is completed, the terminal device may consider whether to apply cell access restriction. In this manner, cell load balancing can be achieved, network security can be ensured, and performance of the communication system can be improved.
在某些实施例中,终端设备基于在线签约能力信息,确定至少一个小区中支持在线签约的候选小区。终端设备从候选小区中选择第二小区以用于驻留。对候选小区的确定在终端设备的接入层实现。In some embodiments, the terminal device determines a candidate cell supporting online subscription among at least one cell based on the online subscription capability information. The terminal device selects a second cell for camping on from the candidate cells. The determination of candidate cells is implemented at the access layer of the terminal equipment.
在某些实施例中,从核心网设备接收第四消息。第四消息指示在线签约完成。终端设备针对至少一个小区进行小区重选或小区切换。小区重选或小区切换可以无需基于在线签约能力信息。In some embodiments, the fourth message is received from a core network device. The fourth message indicates that online signing is complete. The terminal device performs cell reselection or cell handover for at least one cell. Cell reselection or cell switching may not be based on online subscription capability information.
在某些实施例中,终端设备基于在线签约能力信息针对至少一个小区进行小区重选或小区切换。In some embodiments, the terminal device performs cell reselection or cell handover for at least one cell based on the online subscription capability information.
在本公开的第四方面,提供了一种核心网设备。该核心网设备包括:至少一个处理单元;以及至少一个存储器,至少一个存储器被耦合到至少一个处理单元并且存储用于由至少一个处理单元执行的指令,指令在由至少一个处理单元执行时使核心网设备实现根据上述第一方面中的可能的实现方式中的方法。In a fourth aspect of the present disclosure, a core network device is provided. The core network device includes: at least one processing unit; and at least one memory, the at least one memory is coupled to the at least one processing unit and stores instructions for execution by the at least one processing unit, the instructions cause the core when executed by the at least one processing unit The network device implements the method in the possible implementation manners according to the above first aspect.
在本公开的第五方面,提供了一种接入网设备。该接入网设备包括:至少一个处理单元;以及至少一个存储器,至少一个存储器被耦合到至少一个处理单元并且存储用于由至少一个处理单元执行的指令,指令在由至少一个处理单元执行时使接入网设备实现根据上述第二方面的可能的实现方式中的方法。In a fifth aspect of the present disclosure, an access network device is provided. The access network device includes: at least one processing unit; and at least one memory, the at least one memory is coupled to the at least one processing unit and stores instructions for execution by the at least one processing unit, the instructions when executed by the at least one processing unit cause The access network device implements the method in a possible implementation manner according to the second aspect above.
在本公开的第六方面,提供了一种终端设备。该终端设备包括:至少一个处理单元;以及至少一个存储器,至少一个存储器被耦合到至少一个处理单元并且存储用于由至少一个处理单元执行的指令,指令在由至少一个处理单元执行时使终端设备实现根据上述第三方面的可能的实现方式中的方法。In a sixth aspect of the present disclosure, a terminal device is provided. The terminal device comprises: at least one processing unit; and at least one memory, the at least one memory being coupled to the at least one processing unit and storing instructions for execution by the at least one processing unit, the instructions causing the terminal device when executed by the at least one processing unit Implement the method in a possible implementation manner according to the third aspect above.
在本公开的第七方面,提供了一种计算机程序产品。计算机程序产品被有形地存储在计算机可读介质上并且包括计算机可执行指令,计算机可执行指令在被执行时使设备实现根据上述第一方面至第三方面中任意一种可能的实现方式中的方法的操作。In a seventh aspect of the present disclosure, a computer program product is provided. The computer program product is tangibly stored on a computer-readable medium and includes computer-executable instructions. When executed, the computer-executable instructions cause the device to implement the The operation of the method.
在本公开的第八方面,提供了一种通信装置。该通信装置包括用于实现根据上述第一方面至第三方面任一种可能的实现方式中的方法的部件。In an eighth aspect of the present disclosure, a communication device is provided. The communication device includes components for implementing the method in any possible implementation manner according to the foregoing first aspect to the third aspect.
在本公开的第九方面,提供了一种芯片。该芯片被配置为执行根据上述第一方面至第三方面中任一种可能的实现方式中的方法的操作。In a ninth aspect of the present disclosure, a chip is provided. The chip is configured to execute operations of the method according to any one possible implementation manner of the first aspect to the third aspect above.
在本公开的第十方面,提供了一种通信系统,包括前述的核心网设备、以及接入网设备中的一个或者多个。In a tenth aspect of the present disclosure, a communication system is provided, including one or more of the foregoing core network equipment and access network equipment.
在某些实施例中,该通信系统还包括实施例中涉及的其他通信设备。In some embodiments, the communication system further includes other communication devices involved in the embodiments.
附图说明Description of drawings
结合附图并参考以下详细说明,本公开各实现方式的特征、优点及其他方面将变得更加 明显。在此以示例性而非限制性的方式示出了本公开的若干实现方式,在附图中:The features, advantages and other aspects of various implementations of the present disclosure will become more apparent with reference to the following detailed description when taken in conjunction with the accompanying drawings. Several implementations of the present disclosure are shown here by way of illustration and not limitation, in the accompanying drawings:
图1示出了用于终端设备的在线签约过程的示意框图;FIG. 1 shows a schematic block diagram of an online subscription process for a terminal device;
图2示出了可以在其中本公开的实施例的通信环境的示意框图;Figure 2 shows a schematic block diagram of a communication environment in which embodiments of the present disclosure may be;
图3示出了根据本公开的一些实施例的通信过程的交互信令图;FIG. 3 shows an interactive signaling diagram of a communication process according to some embodiments of the present disclosure;
图4示出了根据本公开的另一些实施例的通信过程的交互信令图;Fig. 4 shows an interactive signaling diagram of a communication process according to other embodiments of the present disclosure;
图5示出了根据本公开的又一些实施例的通信过程的交互信令图;Fig. 5 shows an interactive signaling diagram of a communication process according to some other embodiments of the present disclosure;
图6示出了根据本公开的一些实施例的在核心网设备处实现的方法的流程图;Fig. 6 shows a flowchart of a method implemented at a core network device according to some embodiments of the present disclosure;
图7示出了根据本公开的另一些实施例的在接入网设备处实现的方法的流程图;Fig. 7 shows a flowchart of a method implemented at an access network device according to other embodiments of the present disclosure;
图8示出了根据本公开的又一些实施例的在终端设备处实现的方法的流程图;Fig. 8 shows a flow chart of a method implemented at a terminal device according to some other embodiments of the present disclosure;
图9示出了根据本公开的一些实施例的通信装置的示意框图;以及Figure 9 shows a schematic block diagram of a communication device according to some embodiments of the present disclosure; and
图10示出了适合实现本公开的实施例的示例设备的简化框图。Figure 10 shows a simplified block diagram of an example device suitable for implementing embodiments of the present disclosure.
在各个附图中,相同或相似参考数字表示相同或相似元素。In the various drawings, the same or similar reference numerals denote the same or similar elements.
具体实施方式Detailed ways
下面将参照附图更详细地描述本公开的实施例。虽然附图中显示了本公开的某些实施例,然而应当理解的是,本公开可以通过各种形式来实现,而且不应该被解释为限于这里阐述的实施例,相反提供这些实施例是为了更加透彻和完整地理解本公开。应当理解的是,本公开的附图及实施例仅用于示例性作用,并非用于限制本公开的保护范围。Embodiments of the present disclosure will be described in more detail below with reference to the accompanying drawings. Although certain embodiments of the present disclosure are shown in the drawings, it should be understood that the disclosure may be embodied in various forms and should not be construed as limited to the embodiments set forth herein; A more thorough and complete understanding of the present disclosure. It should be understood that the drawings and embodiments of the present disclosure are for exemplary purposes only, and are not intended to limit the protection scope of the present disclosure.
在本公开的实施例的描述中,术语“包括”及其类似用语应当理解为开放性包含,即“包括但不限于”。术语“基于”应当理解为“至少部分地基于”。术语“一个实施例”或“该实施例”应当理解为“至少一个实施例”。其中,在本申请的描述中,除非另有说明,“/”表示前后关联的对象是一种“或”的关系,例如,A/B可以表示A或B;本申请中的“和/或”仅仅是一种描述关联对象的关联关系,表示可以存在三种关系,例如,A和/或B,可以表示:单独存在A,同时存在A和B,单独存在B这三种情况,其中A,B可以是单数或者复数。并且,在本申请的描述中,除非另有说明,“多个”是指两个或多于两个。“以下至少一项(个)”或其类似表达,是指的这些项中的任意组合,包括单项(个)或复数项(个)的任意组合。例如,a,b,或c中的至少一项(个),可以表示:a,b,c,a-b,a-c,b-c,或a-b-c,其中a,b,c可以是单个,也可以是多个。另外,为了便于清楚描述本申请实施例的技术方案,在本申请的实施例中,采用了“第一”、“第二”等字样对功能和作用基本相同的相同项或相似项进行区分。本领域技术人员可以理解“第一”、“第二”等字样并不对数量和执行次序进行限定,并且“第一”、“第二”等字样也并不限定一定不同。In the description of the embodiments of the present disclosure, the term "comprising" and its similar expressions should be interpreted as an open inclusion, that is, "including but not limited to". The term "based on" should be understood as "based at least in part on". The term "one embodiment" or "the embodiment" should be read as "at least one embodiment". Among them, in the description of this application, unless otherwise specified, "/" indicates that the objects associated with each other are an "or" relationship, for example, A/B can indicate A or B; in this application, "and/or "It is just an association relationship describing associated objects, which means that there can be three kinds of relationships, for example, A and/or B, which can mean: A exists alone, A and B exist at the same time, and B exists alone. , B can be singular or plural. And, in the description of the present application, unless otherwise specified, "plurality" means two or more than two. "At least one of the following" or similar expressions refer to any combination of these items, including any combination of single or plural items. For example, at least one item (piece) of a, b, or c can represent: a, b, c, a-b, a-c, b-c, or a-b-c, where a, b, c can be single or multiple . In addition, in order to clearly describe the technical solutions of the embodiments of the present application, in the embodiments of the present application, words such as "first" and "second" are used to distinguish the same or similar items with basically the same function and effect. Those skilled in the art can understand that words such as "first" and "second" do not limit the number and execution order, and words such as "first" and "second" do not necessarily limit the difference.
本公开的实施例可以根据任何适当的通信协议来实施,包括但不限于,第四代(Fourth Generation,4G)和第五代(Fifth Generation,5G)等蜂窝通信协议、诸如电气与电子工程师协会(Institute of Electrical and Electronics Engineers,IEEE)802.11等的无线局域网通信协议、和/或目前已知或者将来开发的任何其他协议。本公开实施例的技术方案应用于遵循任何适当的通信系统,例如:通用分组无线业务(General Packet Radio Service,GPRS)、长期演进(Long Term Evolution,LTE)系统、频分双工(Frequency Division Duplex,FDD)系统、时分双工(Time Division Duplex,TDD)、通用移动通信系统(Universal Mobile Telecommunications Service,UMTS)、窄带物联网(Narrowband Internet Of Things,NB-IoT)通信系统、未来的第五代(5G)系统或新无线(New Radio,NR),等等。Embodiments of the present disclosure may be implemented according to any suitable communication protocol, including, but not limited to, cellular communication protocols such as Fourth Generation (4G) and Fifth Generation (5G), such as the Institute of Electrical and Electronics Engineers (Institute of Electrical and Electronics Engineers, IEEE) 802.11 and other wireless local area network communication protocols, and/or any other protocols currently known or developed in the future. The technical solutions of the embodiments of the present disclosure are applied to any appropriate communication system, for example: General Packet Radio Service (General Packet Radio Service, GPRS), Long Term Evolution (Long Term Evolution, LTE) system, Frequency Division Duplex (Frequency Division Duplex) , FDD) system, time division duplex (Time Division Duplex, TDD), universal mobile communication system (Universal Mobile Telecommunications Service, UMTS), narrowband Internet of Things (Narrowband Internet Of Things, NB-IoT) communication system, the future fifth generation (5G) system or New Radio (New Radio, NR), etc.
出于说明的目的,下文中将以5G的第三代合作伙伴计划(3 rd Generation Partnership Project,3GPP)通信系统为背景来描述本公开的实施例。然而,应当理解,本公开的实施例不限于对5G的3GPP通信系统的应用,而是可以被应用到任何存在类似问题的通信系统中,例如LTE通信系统、无线局域网(Wireless Local Area Network,WLAN)、有线通信系统、或者将来开发的其他通信系统等。 For illustration purposes, embodiments of the present disclosure will be described below in the context of a 5G 3rd Generation Partnership Project ( 3rd Generation Partnership Project, 3GPP) communication system. However, it should be understood that the embodiments of the present disclosure are not limited to the application of the 5G 3GPP communication system, but can be applied to any communication system with similar problems, such as LTE communication system, wireless local area network (Wireless Local Area Network, WLAN ), wired communication systems, or other communication systems developed in the future, etc.
在本公开中使用的术语“终端设备”是指能够与网络设备之间或者彼此之间进行有线或采用某种空中接口进行无线通信的任何终端设备。终端设备有时可以称为用户设备(User Equipment,UE)。终端设备可以是任意类型的移动终端、固定终端或便携式终端。作为示例,终端设备可以包括蜂窝电话、无绳电话、智能电话、站点、用户单元、手持终端、移动终端(Mobile Terminal,MT)、订阅台(Subscriber Station,SS)、便携式订阅台(Portable Subscriber Station,PSS)、互联网节点、通信器、台式计算机、膝上型计算机、笔记本计算机、平板计算机、无线数据卡、无线调制解调器、个人通信系统(PCS)设备、个人导航设备、个人数字助理(PDA)、定位设备、无线电广播接收器、电子书设备、游戏设备、物联网(Internet of Things,IoT)设备、无线本地环路(wireless local loop,WLL)台、机器类型通信(machine type communication,MTC)终端、车载设备、飞行器、虚拟现实(Virtual Reality,VR)设备、增强现实(Augmented Reality,AR)设备、可穿戴设备、5G网络中的终端设备或者未来演进的公用陆地移动网络(Public Land Mobile Network,PLMN)中的任何终端设备、可用于通信的其他设备、或者上述的任意组合。本公开的实施例对此并不做限定。The term "terminal device" used in this disclosure refers to any terminal device capable of performing wired or wireless communication with network devices or with each other using some kind of air interface. The terminal equipment may sometimes be called user equipment (User Equipment, UE). A terminal device may be any type of mobile terminal, stationary terminal or portable terminal. As examples, a terminal device may include a cellular phone, a cordless phone, a smart phone, a station, a subscriber unit, a handheld terminal, a mobile terminal (Mobile Terminal, MT), a subscription station (Subscriber Station, SS), a portable subscription station (Portable Subscriber Station, PSS), Internet node, communicator, desktop computer, laptop computer, notebook computer, tablet computer, wireless data card, wireless modem, personal communication system (PCS) device, personal navigation device, personal digital assistant (PDA), positioning devices, radio broadcast receivers, e-book devices, game devices, Internet of Things (IoT) devices, wireless local loop (WLL) stations, machine type communication (MTC) terminals, Vehicle-mounted devices, aircraft, virtual reality (Virtual Reality, VR) devices, augmented reality (Augmented Reality, AR) devices, wearable devices, terminal devices in 5G networks or future evolution of public land mobile networks (Public Land Mobile Network, PLMN) ), any terminal device in ), other device that can be used for communication, or any combination of the above. Embodiments of the present disclosure do not limit this.
在本公开中使用的术语“接入网设备”是可以用于与终端设备通信的实体或节点,例如可以是无线电接入网(Radio Access Network,RAN)网络设备,其可以提供空中接口侧的无线资源管理、服务质量(quality of service,QoS)管理、数据压缩和加密等功能。接入网设备可以包括各种类型的基站。作为示例,接入网设备可以包括各种形式的宏基站、微基站、微微基站、毫微微基站、中继站、接入点、远程无线电单元(Remote Radio Unit,RRU)、射频头(Radio Head,RH)、远程无线电头端(Remote Radio Head,RRH)等等。在采用不同的无线接入技术的系统中,接入网设备的名称可能有所不同,例如在3G网络中称为节点B(NodeB),在LTE网络中称为演进的节点B(eNB或eNodeB),在5G网络中可以称为g节点B(gNB)或NR节点B(NR NB)等等。本公开的实施例对此不做限定。本文中使用的术语“实体”是指可以实现特定功能的网元。The term "access network device" used in this disclosure is an entity or node that can be used to communicate with a terminal device, for example, it can be a radio access network (Radio Access Network, RAN) network device, which can provide Functions such as radio resource management, quality of service (QoS) management, data compression and encryption. Access network equipment may include various types of base stations. As an example, the access network equipment may include various forms of macro base stations, micro base stations, pico base stations, femto base stations, relay stations, access points, remote radio units (Remote Radio Unit, RRU), radio heads (Radio Head, RH ), Remote Radio Head (RRH) and so on. In systems using different wireless access technologies, the names of access network equipment may be different, for example, it is called Node B (NodeB) in 3G network, and it is called evolved Node B (eNB or eNodeB) in LTE network. ), which can be called g-Node B (gNB) or NR Node B (NR NB) and so on in the 5G network. Embodiments of the present disclosure do not limit this. The term "entity" used herein refers to a network element that can implement a specific function.
本公开的示例实施例可能涉及如下网元:Example embodiments of the present disclosure may involve the following network elements:
1、(无线)接入网络(radio access network,(R)AN)网元:用于为特定区域的授权终端设备提供入网功能,并能够根据终端设备的级别,业务的需求等使用不同质量的传输隧道。(R)AN网元能够管理无线资源,为终端设备提供接入服务,进而完成控制信号和终端设备数据在终端设备和核心网之间的转发,(R)AN网元也可以理解为传统网络中的基站。1. (wireless) access network (radio access network, (R)AN) network element: used to provide network access functions for authorized terminal equipment in a specific area, and can use different quality network elements according to the level of terminal equipment and business requirements, etc. transport tunnel. (R)AN network elements can manage wireless resources, provide access services for terminal devices, and then complete the forwarding of control signals and terminal device data between terminal devices and the core network. (R)AN network elements can also be understood as traditional networks base station in .
2、用户面网元:用于分组路由和转发以及用户面数据的服务质量(quality of service,QoS)处理等。在5G通信系统中,该用户面网元可以是用户面功能(user plane function,UPF)网元。在未来通信系统中,用户面网元仍可以是UPF网元,或者,还可以有其它的名称,本申请不做限定。2. User plane network element: used for packet routing and forwarding and quality of service (QoS) processing of user plane data. In a 5G communication system, the user plane network element may be a user plane function (user plane function, UPF) network element. In the future communication system, the user plane network element may still be a UPF network element, or may have other names, which are not limited in this application.
3、数据网络:用于提供传输数据的网络。在5G通信系统中,该数据网络可以是数据网络(data network,DN)。在未来通信系统中,数据网络仍可以是DN,或者,还可以有其它的名称,本申请不做限定。3. Data network: a network used to provide data transmission. In a 5G communication system, the data network may be a data network (data network, DN). In future communication systems, the data network may still be a DN, or may have other names, which are not limited in this application.
4、接入管理网元:主要用于移动性管理和接入管理等,可以用于实现移动性管理实体(mobility management entity,MME)功能中除会话管理之外的其它功能,例如,合法监听以及接入授权/鉴权等功能。在5G通信系统中,该接入管理网元可以是接入管理功能(access and mobility management function,AMF)网元。在未来通信系统中,接入管理网元仍可以是AMF网元,或者,还可以有其它的名称,本申请不做限定。4. Access management network element: mainly used for mobility management and access management, etc., and can be used to implement other functions in the mobility management entity (mobility management entity, MME) function except session management, for example, lawful interception And functions such as access authorization/authentication. In a 5G communication system, the access management network element may be an access and mobility management function (access and mobility management function, AMF) network element. In the future communication system, the access management network element may still be an AMF network element, or may have other names, which are not limited in this application.
5、会话管理网元:主要用于会话管理、终端设备的网络互连协议(internet protocol,IP)地址分配和管理、选择可管理用户平面功能、策略控制和收费功能接口的终结点以及下行数据通知等。在5G通信系统中,该会话管理网元可以是会话管理功能(session management function,SMF)网元。在未来通信系统中,会话管理网元仍可以是SMF网元,或者,还可以有其它的名称,本申请不做限定。5. Session management network element: mainly used for session management, Internet protocol (internet protocol, IP) address allocation and management of terminal equipment, selection of manageable user plane functions, policy control and charging interface endpoints, and downlink data notification etc. In a 5G communication system, the session management network element may be a session management function (session management function, SMF) network element. In the future communication system, the session management network element may still be an SMF network element, or may have other names, which are not limited in this application.
6、网络开放网元:用于安全地向外部开放由3GPP网络功能网元提供的业务和能力等。6. Network opening network element: used to securely open the services and capabilities provided by the 3GPP network function network element to the outside.
在5G通信系统中,该网络开放网元可以是网络开放功能(network exposure function,NEF)网元。在未来通信系统中,网络开放网元仍可以是NEF网元,或者,还可以有其它的名称,本申请不做限定。In the 5G communication system, the network exposure network element may be a network exposure function (network exposure function, NEF) network element. In the future communication system, the open network element may still be an NEF network element, or may have other names, which are not limited in this application.
7、统一数据管理网元:用于处理用户标识,接入鉴权,注册以及移动性管理等。7. Unified data management network element: used to process user identification, access authentication, registration, and mobility management.
在5G通信系统中,该统一数据管理网元可以是统一数据管理(unified data management,UDM)网元。在未来通信系统中,统一数据管理仍可以是UDM网元,或者,还可以有其它的名称,本申请不做限定。In a 5G communication system, the unified data management network element may be a unified data management (unified data management, UDM) network element. In the future communication system, the unified data management may still be a UDM network element, or may have other names, which are not limited in this application.
8、鉴权服务网元,用于执行主认证,即终端设备与运营商网络之间的认证。鉴权服务网元接收到签约用户发起的认证请求之后,可通过统一数据管理网元中存储的认证信息和/或授权信息对签约用户进行认证和/或授权,或者通过统一数据管理网元生成签约用户的认证和/或授权信息。鉴权服务网元可向签约用户反馈认证信息和/或授权信息。在一种实现方式中,鉴权服务网元也可以与统一数据管理网元合设。8. The authentication service network element is used to perform primary authentication, that is, the authentication between the terminal device and the operator's network. After the authentication service network element receives the authentication request initiated by the subscriber, it can authenticate and/or authorize the subscriber through the authentication information and/or authorization information stored in the unified data management network element, or generate an authentication request through the unified data management network element. Subscriber's authentication and/or authorization information. The authentication service network element can feed back authentication information and/or authorization information to the subscriber. In an implementation manner, the authentication service network element may also be co-located with the unified data management network element.
在5G通信系统中,该鉴权服务网元可以是鉴权服务功能(authentication server function,AUSF)网元。在未来通信系统中,统一数据管理仍可以是AUSF网元,或者,还可以有其它的名称,本申请不做限定。In a 5G communication system, the authentication service network element may be an authentication server function (authentication server function, AUSF) network element. In the future communication system, the unified data management may still be an AUSF network element, or may have other names, which are not limited in this application.
9、应用网元:用于进行应用影响的数据路由,接入网络开放功能网元,与策略框架交互进行策略控制等。在5G通信系统中,该应用网元可以是应用功能(application function,AF)网元。在未来通信系统中,应用网元仍可以是AF网元,或者,还可以有其它的名称,本申请不做限定。9. Application network element: used for data routing for application impact, access to network elements with open network functions, and interaction with the policy framework for policy control, etc. In a 5G communication system, the application network element may be an application function (application function, AF) network element. In the future communication system, the application network element may still be an AF network element, or may have other names, which are not limited in this application.
10、终端设备:可以包括各种具有无线通信功能的手持设备、车载设备、可穿戴设备、计算设备或连接到无线调制解调器的其它处理设备,以及各种形式的终端,移动台(mobile station,MS),终端(terminal),用户设备(user equipment,UE),软终端等等,例如水表、电表、传感器等。10. Terminal equipment: can include various handheld devices with wireless communication functions, vehicle-mounted devices, wearable devices, computing devices or other processing devices connected to wireless modems, as well as various forms of terminals, mobile stations (mobile station, MS ), terminals, user equipment (UE), soft terminals, etc., such as water meters, electricity meters, sensors, etc.
在网络架构中,Namf为AMF网元展现的基于服务的接口,Nsmf为SMF网元展现的基于服务的接口,Nnef为NEF网元展现的基于服务的接口,Nudm为UDM网元展现的基于服务的接口,Naf为AF网元展现的基于服务的接口。N1为终端设备111和AMF网元之间的参考点,N2为(R)AN网元和AMF网元之间的参考点,用于非接入层(non-access stratum,NAS)消息的发送等;N3为(R)AN网元和UPF网元之间的参考点,用于传输用户面的数据等;N4为SMF网元和UPF网元之间的参考点,用于传输例如N3连接的隧道标识信息,数 据缓存属性信息,以及下行数据通知消息等信息;N6接口为UPF网元和DN之间的参考点,用于传输用户面的数据等。In the network architecture, Namf is the service-based interface presented by the AMF network element, Nsmf is the service-based interface presented by the SMF network element, Nnef is the service-based interface presented by the NEF network element, and Nudm is the service-based interface presented by the UDM network element. The interface of Naf is the service-based interface displayed by the AF network element. N1 is the reference point between the terminal equipment 111 and the AMF network element, N2 is the reference point between the (R)AN network element and the AMF network element, and is used for sending non-access stratum (non-access stratum, NAS) messages etc.; N3 is the reference point between the (R)AN network element and the UPF network element, used to transmit user plane data, etc.; N4 is the reference point between the SMF network element and the UPF network element, used to transmit, for example, the N3 connection The tunnel identification information, data cache attribute information, and downlink data notification messages and other information; the N6 interface is the reference point between the UPF network element and the DN, and is used to transmit user plane data, etc.
需要说明的是,网络架构中包括的各种网元(例如,UPF网元、UDM网元等)的命名仅是一个名字,名字对网元本身的功能不构成限定。在5G网络以及未来其它的网络中,上述各个网元也可以是其他的名字,本申请实施例对此不作具体限定。例如,在6G网络中,上述各个网元中的部分或全部可以沿用5G中的术语,也可能是其他命名,等等,在此进行统一说明,以下不再赘述。此外,可以理解的是,上述网元或者功能既可以是硬件设备中的网络元件,也可以是在专用硬件上运行软件功能,或者是平台(例如,云平台)上实例化的虚拟化功能。上述网元或者功能可划分出一个或多个服务,进一步,还可能会出现独立于网络功能存在的服务。在本申请中,上述功能的实例、或上述功能中包括的服务的实例、或独立于网络功能存在的服务实例均可称为服务实例。在本文中使用的术语“小区选择”是指终端设备基于某些准则选择小区进行驻留,并把该小区作为服务小区的过程。在本公开的上下文中,“小区选择”可以指代初始小区选择,即终端设备在完成PLMN选择之后选择初始服务小区的过程,也可以指代“小区重选”,即,终端设备从当前小区切换至另一小区的过程。在本公开的一些实施例中,术语“小区选择”也可以包含“初始小区选择”和“小区重选”二者。It should be noted that the naming of various network elements (eg, UPF network elements, UDM network elements, etc.) included in the network architecture is only a name, and the name does not limit the functions of the network elements themselves. In the 5G network and other networks in the future, the above-mentioned network elements may also have other names, which are not specifically limited in this embodiment of the present application. For example, in a 6G network, some or all of the above-mentioned network elements may use the terms in 5G, or may be named by other names, etc., which will be described in a unified manner here, and will not be described in detail below. In addition, it can be understood that the foregoing network element or function may be a network element in a hardware device, or a software function running on dedicated hardware, or a virtualization function instantiated on a platform (for example, a cloud platform). The above-mentioned network elements or functions can be divided into one or more services, and further, there may also be services that exist independently of network functions. In this application, an instance of the above-mentioned function, or an instance of a service included in the above-mentioned function, or a service instance existing independently of the network function may be referred to as a service instance. The term "cell selection" used herein refers to a process in which a terminal device selects a cell to camp on based on certain criteria and uses the cell as a serving cell. In the context of this disclosure, "cell selection" may refer to initial cell selection, that is, the process by which a terminal device selects an initial serving cell after completing PLMN selection, and may also refer to "cell reselection", that is, a terminal device The process of switching to another cell. In some embodiments of the present disclosure, the term "cell selection" may also include both "initial cell selection" and "cell reselection".
目前5G的3GPP系统架构主要包括以下网络功能和实体:终端设备(例如,UE)、(R)AN、UPF、DN、AMF、SMF、PCF、AF、网络切片选择功能(Network Slice Selection Function,NSSF)、AUSF和UDM。这些网络功能和实体之间通过相应的接口进行交互,例如,UE与AMF之间可以采用N1接口进行交互。部分接口可以采用服务化接口的方式来实现。另外,网络数据分析功能(Network Data Analytics Function,NWDAF)与其他网络功能可以通过服务化接口Nnwdaf进行交互。本文中使用的术语“实体”是指可以实现特定功能的网元。The current 5G 3GPP system architecture mainly includes the following network functions and entities: terminal equipment (for example, UE), (R)AN, UPF, DN, AMF, SMF, PCF, AF, Network Slice Selection Function (Network Slice Selection Function, NSSF ), AUSF and UDM. These network functions and entities interact through corresponding interfaces, for example, an N1 interface may be used for interaction between UE and AMF. Part of the interface can be implemented in the form of a service-oriented interface. In addition, the Network Data Analytics Function (NWDAF) and other network functions can interact through the service interface Nnwdaf. The term "entity" used herein refers to a network element that can implement a specific function.
UE、(R)AN、UPF和DN一般被称为用户层网络功能实体。用户的数据流量可以通过UE与DN之间建立的PDU会话经由(R)AN和UPF进行传输。其他部分一般被称为控制层网络功能和实体,可以用于认证和鉴权、注册管理、会话管理、移动性管理以及策略控制等功能,从而实现用户层流量可靠稳定的传输。UE, (R)AN, UPF and DN are generally referred to as user layer network functional entities. User data traffic can be transmitted via (R)AN and UPF through the PDU session established between UE and DN. Other parts are generally called control layer network functions and entities, which can be used for functions such as authentication and authentication, registration management, session management, mobility management, and policy control, so as to realize reliable and stable transmission of user layer traffic.
如前文讨论的,当前的通信系统允许终端设备通过中间网络获取接入目标网络的签约信息或凭证,使得终端设备随后可以正常接入目标网络并建立PDU会话。图1示出了用于终端设备的在线签约过程100的示意框图。在图1所示的SNPN场景中,终端设备130期望接入SNPN 140,并且可以通过与O-SNPN 120建立连接而获取用于接入SNPN 140的签约或凭证信息。As discussed above, the current communication system allows the terminal device to obtain subscription information or credentials for accessing the target network through the intermediate network, so that the terminal device can then normally access the target network and establish a PDU session. Fig. 1 shows a schematic block diagram of an online subscription process 100 for a terminal device. In the SNPN scenario shown in FIG. 1 , the terminal device 130 expects to access the SNPN 140, and can obtain subscription or credential information for accessing the SNPN 140 by establishing a connection with the O-SNPN 120.
在图1的示例中,SNPN 140充当目标网络,而O-SNPN 120充当中间网络。具体而言,O-SNPN 120可以广播在线签约能力指示,终端设备130基于该在线签约能力指示确定O-SNPN 120支持在线签约,并利用缺省签约或凭证信息与O-SNPN 120建立连接。终端设备针对O-SNPN 120的在线签约请求需要由默认凭证服务器(Default Credential Server,DCS)112进行认证,只有通过认证,终端设备130才可以使用受限的用户面(User Plane,UP)或者控制面(Control Plane,CP)传输通道从配置服务器(Provisioning Server,PS)114获取针对目标网络的签约或凭证信息。In the example of FIG. 1, SNPN 140 acts as a target network, and O-SNPN 120 acts as an intermediate network. Specifically, the O-SNPN 120 may broadcast an online subscription capability indication, and the terminal device 130 determines that the O-SNPN 120 supports online subscription based on the online subscription capability indication, and establishes a connection with the O-SNPN 120 using default subscription or credential information. The terminal device's online signing request for the O-SNPN 120 needs to be authenticated by the default credential server (Default Credential Server, DCS) 112. Only after passing the authentication can the terminal device 130 use the restricted user plane (User Plane, UP) or control The plane (Control Plane, CP) transmission channel obtains the subscription or credential information for the target network from the provisioning server (Provisioning Server, PS) 114.
PS 114与SNPN 140存在协议,并可以存储或获取SNPN 140的签约或凭证信息。PS 114通过受限的UP或CP传输通道将针对SNPN 140的签约或凭证信息发送至终端设备130。终端设备130转而可以从O-SNPN 120注销(De-registration),并利用获取的签约或凭证信息注 册到SNPN 140。The PS 114 has an agreement with the SNPN 140, and can store or obtain the signing or credential information of the SNPN 140. The PS 114 sends the subscription or credential information for the SNPN 140 to the terminal device 130 through the limited UP or CP transmission channel. The terminal device 130 can in turn de-register from the O-SNPN 120 and register to the SNPN 140 using the acquired subscription or credential information.
在过程100中,终端设备130选择支持在线签约的网络并获得DCS 112的授权的流程可以称为在线签约阶段,后续建立CP或者UP传输通道并获取针对目标网络的签约或凭证信息的流程可以称为远程配置(Remote Provisioning)阶段。In the process 100, the process in which the terminal device 130 selects a network that supports online subscription and obtains the authorization of the DCS 112 may be referred to as the online subscription phase, and the subsequent process of establishing a CP or UP transmission channel and obtaining the subscription or credential information for the target network may be referred to as For the remote configuration (Remote Provisioning) stage.
在常规的通信系统中,提供在线签约业务的网络还提供其他传统业务。如果支持在线签约业务的接入网设备在其所有小区中都广播在线签约能力指示,大量请求在线签约的终端设备发起在线签约请求将可能增加小区的负载,影响接入网设备的传统业务,并且这些在线签约请求可能包含恶意请求。因而,接入网设备支持按小区粒度广播在线签约能力指示,即,接入网设备可以在特定小区中广播在线签约能力指示,以限制请求在线签约业务的终端设备的接入。In conventional communication systems, a network that provides online subscription services also provides other traditional services. If an access network device that supports online subscription service broadcasts an online subscription capability indication in all its cells, a large number of terminal devices that request online subscription initiate an online subscription request, which may increase the load of the cell, affect the traditional service of the access network device, and These online sign-up requests may contain malicious requests. Therefore, the access network device supports broadcasting the online subscription capability indication at the granularity of the cell, that is, the access network device can broadcast the online subscription capability indication in a specific cell, so as to limit the access of the terminal device requesting the online subscription service.
根据小区选择或重选机制,当终端设备的接入层(Access Stratum,AS)接收到接入网设备广播的包括网络标识、在线签约能力指示等参数的信息时,会发送至终端设备的NAS层(Non-Access Stratum,NAS)。终端设备的NAS层基于在线签约能力指示选择支持在线签约的网络,并指示AS层选择接入该网络中的小区。由于此时的小区选择参考包括小区频点信息、信号强度等信息以及系统消息包含的参数,因此,终端设备的AS层不会考虑小区的在线签约能力指示。换言之,由终端设备的AS层选择的小区有可能是不提供在线签约业务的普通小区,而当前的RAN侧和核心网侧不存在用于限制UE仅能从支持在线签约的小区接入的验证过程。According to the cell selection or reselection mechanism, when the access layer (Access Stratum, AS) of the terminal device receives the information broadcast by the access network device, including network identification, online subscription capability indication and other parameters, it will send it to the NAS of the terminal device layer (Non-Access Stratum, NAS). The NAS layer of the terminal device selects a network that supports online subscription based on the online subscription capability indication, and instructs the AS layer to select a cell for accessing the network. Since the cell selection reference at this time includes information such as cell frequency point information, signal strength, and parameters contained in system messages, the AS layer of the terminal device will not consider the online subscription capability indication of the cell. In other words, the cell selected by the AS layer of the terminal device may be an ordinary cell that does not provide online subscription services, and there is no verification on the current RAN side and the core network side to restrict the UE to only access from cells that support online subscription process.
此外,由终端设备的移动性引起的小区重选或小区切换过程不应当影响终端设备的远程配置阶段,也即,仅终端设备的在线签约阶段需要受到限制,而获得在线签约授权之后,可以不限制终端设备在何种小区中执行远程配置流程。现有的小区重选或小区切换机制无法根据阶段来灵活限制终端设备对小区的接入。In addition, the cell reselection or cell switching process caused by the mobility of the terminal equipment should not affect the remote configuration phase of the terminal equipment, that is, only the online subscription phase of the terminal equipment needs to be restricted, and after obtaining the online subscription authorization, it is not necessary to Restrict the type of cell in which the terminal device executes the remote configuration procedure. Existing cell reselection or cell switching mechanisms cannot flexibly restrict terminal equipment's access to cells according to stages.
针对上述问题以及其他潜在的问题,本公开的实施例提供了一种在线签约方案。该方案可以考虑接入网设备的小区的在线签约能力,针对终端设备对小区的接入过程进行控制。该方案还可以基于接入过程处于在线签约阶段而对接入过程应用限制,并基于接入过程处于远程配置阶段而选择是否对接入过程应用限制。当该方案在核心网或接入网侧实现时,可以无需改变终端设备的小区选择或小区切换机制。此外,该方案也可以用于增强现有的小区选择或小区切换机制,而无需改变核心网或接入网侧的操作。以此方式,可以有效地降低小区负载,并改善网络性能和安全性。To address the above problems and other potential problems, embodiments of the present disclosure provide an online signing solution. This solution may consider the online subscription capability of the cell of the access network device, and control the access process of the terminal device to the cell. The solution can also apply restrictions to the access process based on the access process being in the online subscription phase, and choose whether to apply restrictions to the access process based on the access process being in the remote configuration phase. When this solution is implemented on the core network or access network side, there is no need to change the cell selection or cell switching mechanism of the terminal equipment. In addition, this solution can also be used to enhance the existing cell selection or cell switching mechanism without changing the operation of the core network or the access network side. In this way, cell load can be effectively reduced, and network performance and security can be improved.
图2示出了可以在其中实现本公开的实施例的通信环境200的示意图。通信环境200包括核心网设备210、接入网设备220以及终端设备230。接入网设备提供第一小区221、第二小区222以及第三小区223。核心网设备210、接入网设备220以及终端设备230可以彼此通信。应当理解,网络环境200仅用于示例性目的,而不暗示对于本公开的范围的任何限制。本公开的实施例还可以被体现在其他网络环境或架构中。另外,还应理解,网络环境200还可以包括用于实现通信连接、数据传输、控制等目的的其他元件或实体。为了简化描述,在图2中并未示出这些元件或实体,但不意味着本公开的实施例不具备它们。FIG. 2 shows a schematic diagram of a communications environment 200 in which embodiments of the present disclosure may be implemented. The communication environment 200 includes a core network device 210 , an access network device 220 and a terminal device 230 . The access network device provides a first cell 221 , a second cell 222 and a third cell 223 . The core network device 210, the access network device 220, and the terminal device 230 can communicate with each other. It should be understood that network environment 200 is for exemplary purposes only and does not imply any limitation on the scope of the present disclosure. Embodiments of the present disclosure may also be embodied in other network environments or architectures. In addition, it should be understood that the network environment 200 may also include other elements or entities for realizing communication connection, data transmission, control and other purposes. In order to simplify the description, these elements or entities are not shown in FIG. 2 , but it does not mean that the embodiments of the present disclosure do not have them.
接入网设备220可以向位于其覆盖范围内的终端设备230广播消息,该消息可以包括例如网络标识、在线签约能力指示、调度信息、配置参数、小区接入相关信息等等。终端设备230可以基于该广播消息确定接入网设备220提供的网络支持在线签约业务,并选择要接入接入网设备220的小区(例如,第一小区221)。例如,终端设备230可以选择第一小区221 用于驻留,并通过接入网设备220向核心网设备210发送注册请求,该注册请求包括针对在线签约的指示信息。随着终端设备230的移动,终端设备230可以通过小区重选或小区切换机制切换到接入网设备220的除第一小区221之外的其他小区,例如小区222或223。仅为了说明的目的,在下文的描述中,接入网设备220指代向终端设备230提供用于接入目标网络(未示出)的签约或凭证信息的中间网络。The access network device 220 may broadcast a message to the terminal device 230 within its coverage, and the message may include, for example, a network identifier, an online subscription capability indication, scheduling information, configuration parameters, cell access related information, and the like. The terminal device 230 may determine based on the broadcast message that the network provided by the access network device 220 supports online subscription services, and select a cell (for example, the first cell 221 ) to access the access network device 220 . For example, the terminal device 230 may select the first cell 221 for camping, and send a registration request to the core network device 210 through the access network device 220, where the registration request includes indication information for online subscription. As the terminal device 230 moves, the terminal device 230 may switch to another cell of the access network device 220 except the first cell 221 , such as cell 222 or 223 , through a cell reselection or cell switching mechanism. For illustrative purposes only, in the following description, the access network device 220 refers to an intermediate network that provides the terminal device 230 with subscription or credential information for accessing a target network (not shown).
接入网设备220可以与核心网设备210进行通信。接入网设备220可以通过下一代应用协议(Next Generation Application Protocol,NGAP)消息向核心网设备210发送小区能力信息。作为示例,小区能力信息可以包括小区221至223的总体能力信息,诸如,小区221至223的小区标识符(例如,全球小区标识符(Cell Global identifier,CGI))、在线签约能力信息、业务支持能力信息等等。作为另一示例,小区能力信息可以仅包括终端设备230要接入的第一小区221的小区标识符和在线签约能力信息。此外,接入网设备220可以向核心网设备210发送用于指示终端设备230要接入的第一小区221的小区标识的消息。接入网设备220还可以向核心网设备210发送针对在线签约的指示信息,核心网设备210可以基于该指示信息确定终端设备230对第一小区221的接入过程处于在线签约阶段还是远程配置阶段。The access network device 220 can communicate with the core network device 210 . The access network device 220 may send the cell capability information to the core network device 210 through a Next Generation Application Protocol (Next Generation Application Protocol, NGAP) message. As an example, the cell capability information may include overall capability information of the cells 221 to 223, such as cell identifiers of the cells 221 to 223 (for example, global cell identifiers (Cell Global identifier, CGI)), online subscription capability information, service support capability information, etc. As another example, the cell capability information may only include the cell identifier of the first cell 221 to be accessed by the terminal device 230 and online subscription capability information. In addition, the access network device 220 may send to the core network device 210 a message for indicating the cell identity of the first cell 221 to be accessed by the terminal device 230 . The access network device 220 may also send instruction information for online subscription to the core network device 210, and the core network device 210 may determine whether the access process of the terminal device 230 to the first cell 221 is in the online subscription stage or the remote configuration stage based on the instruction information .
核心网设备210可以被实现为AMF、DCS、UDM、PCF、SMF以及核心网侧的任何其他适当的网元。例如,在核心网设备210被实现为AMF的情况下,其可以为终端设备230的会话提供控制面的存储资源,存储会话标识、与会话标识相关联的SMF网元标识等。The core network device 210 may be implemented as AMF, DCS, UDM, PCF, SMF and any other appropriate network elements on the core network side. For example, in the case that the core network device 210 is implemented as an AMF, it can provide a storage resource of the control plane for the session of the terminal device 230, and store the session identifier, the SMF network element identifier associated with the session identifier, and the like.
在核心网设备210被实现为DCS的情况下,其可以对终端设备230进行认证,并确定授权结果。如果核心网设备210对终端设备230授权成功,则终端设备230可以获取在线签约业务。In the case that the core network device 210 is implemented as a DCS, it can authenticate the terminal device 230 and determine an authorization result. If the core network device 210 authorizes the terminal device 230 successfully, the terminal device 230 can obtain the online subscription service.
在核心网设备210被实现为UDM的情况下,其可以负责签约管理和认证,并存储针对网络中的终端设备的签约信息。此外,签约信息可以进一步指示终端设备的设备类型和/或能力信息。在这种情况下,无论核心网设备210是UDM本身还是与UDM不同的另一网元,核心网设备210都可以根据签约信息所指示的设备类型和/或能力信息来确定是否限制处于在线签约阶段的终端设备对小区的接入。In the case that the core network device 210 is implemented as a UDM, it may be responsible for subscription management and authentication, and store subscription information for terminal devices in the network. In addition, the subscription information may further indicate the device type and/or capability information of the terminal device. In this case, regardless of whether the core network device 210 is the UDM itself or another network element different from the UDM, the core network device 210 can determine whether to restrict online subscriptions according to the device type and/or capability information indicated by the subscription information. Phase terminal equipment access to the cell.
在核心网设备210被实现为PCF的情况下,其可以提供移动性、接入选择和PDU会话相关的策略信息。此外,策略信息可以进一步指示终端设备的设备类型和/或能力信息。在这种情况下,在这种情况下,无论核心网设备210是PCF本身还是与PCF不同的另一网元,核心网设备210都可以根据策略信息所指示的设备类型和/或能力信息来确定是否限制处于在线签约阶段的终端设备对小区的接入。In case the core network device 210 is implemented as a PCF, it can provide policy information related to mobility, access selection and PDU sessions. In addition, the policy information may further indicate the device type and/or capability information of the terminal device. In this case, in this case, regardless of whether the core network device 210 is the PCF itself or another network element different from the PCF, the core network device 210 can implement the Determine whether to restrict the terminal equipment in the online subscription phase from accessing the cell.
在核心网设备210被实现为SMF的情况下,其可以负责用户面网元选择,用户面网元重定向,IP地址分配,承载建立、修改和释放以及QoS控制等。在核心网设备210为终端设备230建立用户面传输通道之后,网络中存在针对终端设备230的用户面上下文。In the case that the core network device 210 is implemented as an SMF, it may be responsible for user plane network element selection, user plane network element redirection, IP address allocation, bearer establishment, modification and release, and QoS control. After the core network device 210 establishes a user plane transmission channel for the terminal device 230 , there is a user plane context for the terminal device 230 in the network.
此外,核心网设备210还可以与通信环境200中的其他网络实体或功能通信。例如,在核心网设备210未被实现为DCS的情况下,其可以从DCS获取授权结果。如前所述,如果终端设备230在中间网络中完成DCS的认证,则可以获取在线签约业务,并且可以执行后续远程配置流程。因而,核心网设备210可以根据DCS的授权结果来确定终端设备230对第一小区221的接入过程处于在线签约阶段还是远程配置阶段,转而进一步选择是否限制终端设备230对第一小区221的接入。In addition, the core network device 210 can also communicate with other network entities or functions in the communication environment 200 . For example, in the case that the core network device 210 is not implemented as a DCS, it can obtain the authorization result from the DCS. As mentioned above, if the terminal device 230 completes the DCS authentication in the intermediate network, it can obtain the online subscription service, and can perform the subsequent remote configuration process. Therefore, the core network device 210 can determine whether the access process of the terminal device 230 to the first cell 221 is in the online subscription stage or the remote configuration stage according to the authorization result of the DCS, and then further select whether to restrict the access of the terminal device 230 to the first cell 221. access.
在核心网设备210未被实现为SMF的情况下,其可以与SMF通信以获取关于用户面上 下文的验证结果。如果不存在针对终端设备230的用户面上下文,则表示在线签约流程尚未完成,进而核心网设备210可以确定需要限制终端设备230对第一小区221的接入。如果存在针对终端设备230的用户面上下文,则表示在线签约流程已经完成,也即,接入过程处于远程配置阶段。这种情况下,核心网设备210可以进一步选择是否限制终端设备230对第一小区221的接入。In the case that the core network device 210 is not implemented as an SMF, it can communicate with the SMF to obtain verification results about the context of the user plane. If there is no user plane context for the terminal device 230 , it means that the online subscription process has not been completed, and then the core network device 210 may determine that it is necessary to restrict the terminal device 230 from accessing the first cell 221 . If there is a user plane context for the terminal device 230, it means that the online subscription process has been completed, that is, the access process is in the remote configuration stage. In this case, the core network device 210 may further choose whether to restrict the terminal device 230 from accessing the first cell 221 .
应当理解,图2所示的多种设备的数目及其连接是为了说明的目的而给出的,没有提出任何限制。通信环境200可以包括适合于实现本公开的实施例的任何合适数目的设备和网络。在通信环境200中,核心网设备210、接入网设备220和终端设备230可以彼此传输数据和控制信息。It should be understood that the number of various devices and their connections shown in FIG. 2 are given for illustrative purposes and no limitation is suggested. Communications environment 200 may include any suitable number of devices and networks suitable for implementing embodiments of the present disclosure. In the communication environment 200, the core network device 210, the access network device 220, and the terminal device 230 can transmit data and control information to each other.
通信环境200中的通信可以根据任何适当的通信协议来实现,包括但不限于第一代蜂窝通信协议(1G)、第二代蜂窝通信协议(2G)、第三代蜂窝通信协议(3G),第四代蜂窝通信协议(4G)和第五代蜂窝通信协议(5G)等之类的无线局域网通信协议,例如电气和电子工程师协会(IEEE)802.11等,和/或当前的任何其他协议已知或将来会发展。此外,通信可以利用任何适当的无线通信技术,包括但不限于:窄带物联网系统(Narrow Band-Internet of Things,NB-IoT)、全球移动通信系统(Global System for Mobile Communications,GSM)、增强型数据速率GSM演进系统(Enhanced Data rate for GSM Evolution,EDGE)、宽带码分多址系统(Wideband Code Division Multiple Access,WCDMA)、码分多址2000系统(Code Division Multiple Access,CDMA2000)、时分同步码分多址系统(Time Division-Synchronization Code Division Multiple Access,TD-SCDMA),长期演进系统(Long Term Evolution,LTE)、5G移动通信系统的三大应用场景eMBB、URLLC和eMTC和/或当前已知或将在其中开发的任何其他技术。Communications in the communication environment 200 may be implemented according to any suitable communication protocol, including but not limited to first generation cellular communication protocol (1G), second generation cellular communication protocol (2G), third generation cellular communication protocol (3G), WLAN communication protocols such as fourth-generation cellular communication protocols (4G) and fifth-generation cellular communication protocols (5G), such as Institute of Electrical and Electronics Engineers (IEEE) 802.11, etc., and/or any other currently known or will develop in the future. In addition, communication may utilize any suitable wireless communication technology, including but not limited to: Narrow Band-Internet of Things (NB-IoT), Global System for Mobile Communications (GSM), Enhanced Data rate GSM evolution system (Enhanced Data rate for GSM Evolution, EDGE), wideband code division multiple access system (Wideband Code Division Multiple Access, WCDMA), code division multiple access 2000 system (Code Division Multiple Access, CDMA2000), time division synchronization code Three major application scenarios of the Division Multiple Access System (Time Division-Synchronization Code Division Multiple Access, TD-SCDMA), Long Term Evolution (LTE), 5G mobile communication system eMBB, URLLC and eMTC and/or currently known Or any other technology that will be developed in it.
下文将参考图3至图9来具体讨论本公开的示例实施例。为便于讨论,下面将参考图2的示例通信环境来描述根据本公开的示例实施例的通信实体之间的信令交互。应当理解,本公开的示例实施例可以类似的方式应用于其他通信环境中。Example embodiments of the present disclosure will be discussed in detail below with reference to FIGS. 3 to 9 . For ease of discussion, signaling interactions between communicating entities according to example embodiments of the present disclosure will be described below with reference to the example communication environment of FIG. 2 . It should be appreciated that example embodiments of the present disclosure may be applied in a similar manner in other communication environments.
根据本公开的一些实施例,可以在核心网侧实现针对在线签约小区的接入限制,从而避免了改变用于终端设备的小区选择机制。例如,图3示出了根据上述方案的具体的通信过程300的交互信令图。如图3所示,通信过程300涉及核心网设备210、接入网设备220以及终端设备230。应当理解,图3中示出的通信过程仅为示例性的,而非限制性的。本公开的实施例可以包括图3中未示出的交互信令,或者省略图3中示出的某些信令。According to some embodiments of the present disclosure, access restrictions on online subscribed cells can be implemented on the core network side, thereby avoiding changing the cell selection mechanism for terminal equipment. For example, FIG. 3 shows an interactive signaling diagram of a specific communication process 300 according to the above solution. As shown in FIG. 3 , a communication process 300 involves a core network device 210 , an access network device 220 and a terminal device 230 . It should be understood that the communication process shown in FIG. 3 is only exemplary and not restrictive. Embodiments of the present disclosure may include interactive signaling not shown in FIG. 3 , or omit some signaling shown in FIG. 3 .
305.终端设备230与接入网设备220执行305小区选择过程。例如,接入网设备220可以在其小区221至223内广播系统消息,系统消息可以包括例如网络标识、在线签约能力指示、调度信息、配置参数、小区接入相关信息等等。终端设备230可以基于系统消息确定接入网设备220提供的网络支持在线签约业务,并选择接入网设备220的小区之一(例如,第一小区221)用于驻留。终端设备230可以向接入网设备220发送针对第一小区221的注册请求,该注册请求包括针对在线签约的指示信息。305. The terminal device 230 and the access network device 220 perform a 305 cell selection process. For example, the access network device 220 may broadcast system messages in its cells 221 to 223, and the system messages may include, for example, network identifiers, online subscription capability indications, scheduling information, configuration parameters, cell access related information, and the like. The terminal device 230 may determine based on the system message that the network provided by the access network device 220 supports online subscription services, and select one of the cells of the access network device 220 (for example, the first cell 221 ) to camp on. The terminal device 230 may send a registration request for the first cell 221 to the access network device 220, where the registration request includes indication information for online subscription.
310.接入网设备220接收到注册请求之后,向核心网设备210发送310包括终端设备230所选择的第一小区221的小区标识的第一消息。第一消息可以是NGAP消息,例如,初始UE消息(Initial UE Message)。在一些实施例中,第一消息还可以指示第一小区221的在线签约能力。310. After receiving the registration request, the access network device 220 sends 310 to the core network device 210 a first message including the cell identifier of the first cell 221 selected by the terminal device 230 . The first message may be an NGAP message, for example, an initial UE message (Initial UE Message). In some embodiments, the first message may also indicate the online subscription capability of the first cell 221 .
在另一些示例实施例中,核心网设备210可以从接入网设备220获得小区能力信息,包 括但不限于,小区221至223的小区标识和相对应的在线签约能力信息、业务支持能力信息等等。该小区能力信息可以包括在诸如,NG设置请求消息、RAN配置更新消息等消息中。核心网设备210还可以从接入网设备220接收更新信息,其指示对小区能力信息的更新。In some other exemplary embodiments, the core network device 210 may obtain cell capability information from the access network device 220, including but not limited to, cell identities of the cells 221 to 223 and corresponding online subscription capability information, service support capability information, etc. Wait. The cell capability information may be included in messages such as NG Setup Request message, RAN Configuration Update message and the like. The core network device 210 may also receive update information from the access network device 220, which indicates the update of the cell capability information.
315.核心网设备210基于第一消息可以确定终端设备230要接入的小区是否支持在线签约业务。例如,核心网设备210基于第一小区221的小区标识,确定315第一小区221不支持在线签约。然后,核心网设备210可以针对终端设备230对第一小区221的接入进行控制。315. The core network device 210 may determine, based on the first message, whether the cell to be accessed by the terminal device 230 supports online subscription services. For example, the core network device 210 determines 315 that the first cell 221 does not support online subscription based on the cell identifier of the first cell 221 . Then, the core network device 210 may control the access of the terminal device 230 to the first cell 221 .
320.核心网设备210可以确定接入过程处于在线签约阶段还是远程配置阶段,并基于接入过程所处的阶段和要接入的小区的在线签约能力,确定是否限制终端设备230对小区的接入。例如,核心网设备210可以确定320终端设备230对第一小区221的接入处于在线签约阶段。核心网设备210基于在315和320中对接入过程的判断,确定终端设备230被限制接入第一小区221。320. The core network device 210 may determine whether the access process is in the online subscription phase or the remote configuration phase, and based on the phase of the access process and the online subscription capability of the cell to be accessed, determine whether to restrict the terminal device 230 from accessing the cell. enter. For example, the core network device 210 may determine 320 that the terminal device 230's access to the first cell 221 is in an online subscription phase. The core network device 210 determines that the terminal device 230 is restricted from accessing the first cell 221 based on the judgment of the access process in 315 and 320 .
325.核心网设备210向接入网设备发送325指示消息,以限制对第一小区221的接入。325. The core network device 210 sends 325 an indication message to the access network device to restrict access to the first cell 221.
330.核心网设备210向终端设备230发送330第二消息。第二消息可以包括拒绝指示、拒绝原因值或重定向指示。330 . The core network device 210 sends 330 a second message to the terminal device 230 . The second message may include a rejection indication, a rejection reason value, or a redirection indication.
335.在接收到第二消息之后,终端设备230与接入网设备220执行335小区重选过程。接入网设备220可以向核心网设备210发送指示小区重选过程的消息,该消息可以包括不同于第一消息的其他消息,例如,上行链路NAS传输(Uplink NAS Transport)消息等,本公开在此方面不受限制。335. After receiving the second message, the terminal device 230 and the access network device 220 perform 335 a cell reselection process. The access network device 220 may send a message indicating a cell reselection process to the core network device 210, and the message may include other messages different from the first message, for example, an uplink NAS Transport (Uplink NAS Transport) message, etc., the present disclosure Unrestricted in this respect.
如前所述,一旦完成在线签约流程,终端设备230与接入网设备220的后续接入过程(诸如,远程配置、由于移动性而触发的小区重选/小区切换)可以不受小区在线签约能力的影响,因而可以不进行接入限制。当然,也可以对后续接入过程继续应用同样的接入限制。As mentioned above, once the online subscription process is completed, the subsequent access procedures of the terminal device 230 and the access network device 220 (such as remote configuration, cell reselection/cell handover triggered by mobility) may not be affected by the online subscription process of the cell. Capability, so no access restriction is required. Of course, the same access restriction can also be continuously applied to the subsequent access process.
340.作为示例,在315之后,核心网设备210确定340终端设备230对第一小区221的接入处于远程配置阶段。尽管在本公开的上下文中,将终端设备230通过中间网络获得DCS 112的授权的流程称为在线签约阶段,并将后续建立CP或者UP传输通道并获取针对目标网络的签约或凭证信息的流程可以称为远程配置阶段,但是对“在线签约阶段”和“远程配置阶段”的命名是对应于当前的标准,但是本公开的实施例同样适用于未来或后续标准中的等同或等效概念。因而,本公开的范围在这方面不受限制。340. As an example, after 315, the core network device 210 determines 340 that the terminal device 230's access to the first cell 221 is in a remote configuration phase. Although in the context of the present disclosure, the process in which the terminal device 230 obtains the authorization of the DCS 112 through the intermediate network is called the online signing phase, and the subsequent process of establishing a CP or UP transmission channel and obtaining the signing or certificate information for the target network can be It is called the remote configuration stage, but the naming of "online subscription stage" and "remote configuration stage" corresponds to the current standard, but the embodiments of the present disclosure are also applicable to equivalent or equivalent concepts in future or subsequent standards. Accordingly, the scope of the present disclosure is not limited in this respect.
在一些示例实施例中,核心网设备210可以基于一项或多项准则来确定终端设备230的接入过程所处的阶段,或者是否限制终端设备230对第一小区221的接入。作为示例,如果第一消息中包括在线签约指示,则核心网设备210可以确定接入过程处于在线签约阶段,并且需要限制终端设备230对第一小区221的接入。如果第一消息中不包括在线签约指示,则核心网设备210可以确定接入过程处于远程配置阶段,并且核心网设备210可以进一步选择是否限制终端设备230对第一小区221的接入。In some exemplary embodiments, the core network device 210 may determine the stage of the access process of the terminal device 230 or whether to restrict the terminal device 230 from accessing the first cell 221 based on one or more criteria. As an example, if the first message includes an online subscription indication, the core network device 210 may determine that the access process is in the online subscription phase, and the access of the terminal device 230 to the first cell 221 needs to be restricted. If the first message does not include an online subscription indication, the core network device 210 may determine that the access process is in the remote configuration phase, and the core network device 210 may further choose whether to restrict the terminal device 230 from accessing the first cell 221 .
作为另一示例,核心网设备210可以基于例如图1所示的DCS 112对终端设备230的授权结果来进行判断。如果DCS 112对终端设备230的授权失败,则表示在线签约流程尚未完成,并且核心网设备210可以确定需要限制终端设备230对第一小区221的接入。如果DCS 112对终端设备230的授权成功,则表示在线签约流程已经完成,也即,接入过程处于远程配置阶段。这种情况下,核心网设备210可以进一步选择是否限制终端设备230对第一小区221的接入。As another example, the core network device 210 may make a judgment based on, for example, the authorization result of the terminal device 230 by the DCS 112 shown in FIG. 1 . If the DCS 112 fails to authorize the terminal device 230, it means that the online subscription process has not been completed, and the core network device 210 may determine that it is necessary to restrict the terminal device 230 from accessing the first cell 221. If the authorization of the terminal device 230 by the DCS 112 is successful, it means that the online subscription process has been completed, that is, the access process is in the remote configuration stage. In this case, the core network device 210 may further choose whether to restrict the terminal device 230 from accessing the first cell 221 .
应当理解,根据DCS对终端设备230的授权结果来判断接入过程所处的阶段仅出于说明性的目的被给出。本公开的实施例不限于DCS认证,还可以适用于其他授权认证。例如,核心网设备210可以根据UDM网元对终端设备230的授权结果来进行判断。如果UDM网元对终端设备230的授权失败,则表示终端设备230的在线签约流程尚未完成,并且核心网设备210可以确定终端设备230的接入过程处于在线签约阶段。针对处于在线签约阶段的终端设备230,核心网设备210可以确定需要限制终端设备230对第一小区221的接入。如果UDM网元对终端设备230的授权成功,则表示在线签约流程已经完成,也即,接入过程处于远程配置阶段。这种情况下,核心网设备210可以进一步选择是否限制终端设备230对第一小区221的接入。It should be understood that judging the stage of the access process according to the authorization result of the DCS for the terminal device 230 is given for illustrative purposes only. Embodiments of the present disclosure are not limited to DCS authentication, and may also be applicable to other authorization authentications. For example, the core network device 210 may judge according to the authorization result of the UDM network element to the terminal device 230 . If the UDM network element fails to authorize the terminal device 230, it means that the online subscription process of the terminal device 230 has not been completed, and the core network device 210 may determine that the access process of the terminal device 230 is in the online subscription stage. For the terminal device 230 in the online subscription phase, the core network device 210 may determine that access of the terminal device 230 to the first cell 221 needs to be restricted. If the UDM network element authorizes the terminal device 230 successfully, it means that the online subscription process has been completed, that is, the access process is in the remote configuration stage. In this case, the core network device 210 may further choose whether to restrict the terminal device 230 from accessing the first cell 221 .
由于在在线签约阶段中将建立用于传输签约或凭证信息的用户面传输通道,因而核心网设备210也可以基于网络中是否存在针对终端设备230的用户面上下文来进行判断。例如,核心网设备210可以与SMF网元通信来验证是否存在用户面上下文信息。如果不存在针对终端设备230的用户面上下文,则表示在线签约流程尚未完成,进而核心网设备210可以确定需要限制终端设备230对第一小区221的接入。如果存在针对终端设备230的用户面上下文,则表示在线签约流程已经完成,也即,接入过程处于远程配置阶段。这种情况下,核心网设备210可以进一步选择是否限制终端设备230对第一小区221的接入。Since a user plane transmission channel for transmitting subscription or credential information will be established during the online subscription phase, the core network device 210 may also make a judgment based on whether there is a user plane context for the terminal device 230 in the network. For example, the core network device 210 may communicate with the SMF network element to verify whether there is user plane context information. If there is no user plane context for the terminal device 230 , it means that the online subscription process has not been completed, and then the core network device 210 may determine that it is necessary to restrict the terminal device 230 from accessing the first cell 221 . If there is a user plane context for the terminal device 230, it means that the online subscription process has been completed, that is, the access process is in the remote configuration stage. In this case, the core network device 210 may further choose whether to restrict the terminal device 230 from accessing the first cell 221 .
345.核心网设备210可以确定345是否限制终端设备230对第一小区221的接入。如果确定不限制接入,则终端设备230被允许接入第一小区221。进一步地,345. The core network device 210 may determine 345 whether to restrict the terminal device 230 from accessing the first cell 221. If it is determined that the access is not restricted, the terminal device 230 is allowed to access the first cell 221 . further,
350.替代地,如果在345中确定限制对第一小区221的接入,则与330类似,核心网设备210可以向终端设备230发送350第二消息。350. Alternatively, if it is determined in 345 that access to the first cell 221 is restricted, similar to 330, the core network device 210 may send 350 a second message to the terminal device 230.
355.响应于第二消息,终端设备230可以与接入网设备220执行355小区重选过程。小区重选过程可以基于已经存在的准则或将来待开发的机制,因而在此不进行赘述。本公开的范围在这方面不受限制。355. In response to the second message, the terminal device 230 may perform 355 a cell reselection procedure with the access network device 220 . The cell reselection process may be based on an existing criterion or a mechanism to be developed in the future, so details will not be described here. The scope of the present disclosure is not limited in this respect.
尽管在过程300中,将核心网设备210描述为先执行315再执行320或340,即,先判断第一小区221的在线签约能力,再确定终端设备230的接入过程所处的阶段,但是过程300的执行并不依赖于315、320或340的先后顺序。例如,在一些替代实施例中,核心网设备210可以先确定终端设备230的接入过程所处的阶段,即先执行320或340,再判断第一小区221的在线签约能力,即执315。在另一些示例实施例中,对接入过程所处的阶段和第一小区221的在线签约能力的判断也可以并行执行。本公开的范围在这方面不受限制。Although in process 300, the core network device 210 is described as first performing 315 and then performing 320 or 340, that is, first judging the online subscription capability of the first cell 221, and then determining the stage of the access process of the terminal device 230, but Execution of process 300 is not dependent on the order of 315 , 320 or 340 . For example, in some alternative embodiments, the core network device 210 may first determine the stage of the terminal device 230's access process, that is, first perform 320 or 340, and then determine the online subscription capability of the first cell 221, that is, perform 315. In some other example embodiments, the determination of the stage of the access process and the online subscription capability of the first cell 221 may also be performed in parallel. The scope of the present disclosure is not limited in this respect.
根据以上描述的示例实施例,提供了一种用于控制终端设备接入网络的方案。该方案在核心网侧实现,可以在不改变终端设备侧的小区选择或小区切换机制的情况下,使终端设备仅可通过支持在线签约业务的小区获得签约或凭证信息。该方案还可以灵活设置后续接入过程是否应用相同的接入限制。以此方式,可以调整小区负载情况,保障网络安全性,并提高通信系统的性能。According to the exemplary embodiments described above, a solution for controlling terminal device access to a network is provided. This solution is implemented on the core network side, and without changing the cell selection or cell switching mechanism on the terminal device side, the terminal device can only obtain subscription or credential information through cells that support online subscription services. This solution can also flexibly set whether to apply the same access restriction in the subsequent access process. In this way, the cell load can be adjusted, network security can be ensured, and the performance of the communication system can be improved.
根据本公开的另一些实施例,可以在接入网侧实现针对在线签约小区的接入限制,从而避免了改变用于终端设备的小区选择机制。例如,图4示出了根据上述方案的具体的通信过程400的交互信令图。如图4所示,通信过程400涉及核心网设备210、接入网设备220以及终端设备230。应当理解,图4中示出的通信过程仅为示例性的,而非限制性的。本公开的实施例可以包括图4中未示出的交互信令,或者省略图4中示出的某些信令。According to some other embodiments of the present disclosure, access restrictions on online subscribed cells can be implemented on the access network side, thereby avoiding changing the cell selection mechanism for terminal equipment. For example, FIG. 4 shows an interactive signaling diagram of a specific communication process 400 according to the above solution. As shown in FIG. 4 , the communication process 400 involves the core network device 210 , the access network device 220 and the terminal device 230 . It should be understood that the communication process shown in FIG. 4 is only exemplary rather than limiting. Embodiments of the present disclosure may include interactive signaling not shown in FIG. 4 , or omit some signaling shown in FIG. 4 .
405.终端设备230与接入网设备220执行405小区选择过程,并通过接入网设备220 向核心网设备210发送注册请求。405中的小区选择过程与图3的305类似,在此不再赘述。405. The terminal device 230 and the access network device 220 perform a 405 cell selection process, and send a registration request to the core network device 210 through the access network device 220 . The cell selection process in 405 is similar to 305 in FIG. 3 , and will not be repeated here.
410.在接收到注册请求之后,接入网设备220向核心网设备210发送410包括终端设备230所选择的第一小区221的小区标识的第一消息。例如,接入网设备220可以通过第一消息转发终端设备230的注册请求。第一消息可以是NGAP消息,例如,初始UE消息(Initial UE Message)。410. After receiving the registration request, the access network device 220 sends 410 to the core network device 210 a first message including the cell identifier of the first cell 221 selected by the terminal device 230 . For example, the access network device 220 may forward the registration request of the terminal device 230 through the first message. The first message may be an NGAP message, for example, an initial UE message (Initial UE Message).
在接收到第一消息之后,核心网设备210可以确定接入过程处于在线签约阶段还是远程配置阶段。核心网设备210与接入网设备220可以针对网络中的每个终端设备建立联系(例如,NGAP Association)。在接入网设备220处可以使用诸如RAN UE NGAP ID之类标识符唯一地标识该联系。类似地,在核心网设备210处可以使用诸如AMF UE NGAP ID之类的标识符唯一地标识该联系。在NGAP联系建立完成后,核心网设备210可以在任意时刻验证终端设备230所处的阶段,核心网设备210可以基于结合过程300所述的一个或多个准则来判断接入过程所处的阶段。因而,在此不再进行赘述。然后,核心网设备210可以向接入网设备220发送指示信息来指示接入过程所处的阶段。After receiving the first message, the core network device 210 may determine whether the access process is in the online subscription phase or the remote configuration phase. The core network device 210 and the access network device 220 can establish a connection (for example, NGAP Association) for each terminal device in the network. The association may be uniquely identified at the access network device 220 using an identifier such as a RAN UE NGAP ID. Similarly, an identifier such as AMF UE NGAP ID may be used at the core network device 210 to uniquely identify the association. After the NGAP connection is established, the core network device 210 can verify the stage of the terminal device 230 at any time, and the core network device 210 can judge the stage of the access process based on one or more criteria described in conjunction with the process 300 . Therefore, details are not repeated here. Then, the core network device 210 may send indication information to the access network device 220 to indicate the stage of the access process.
在一些示例实施例中,核心网设备210可以是由接入网设备220选择的网络中支持在线签约的核心网网元。在这种情况下,核心网设备210可以基于预配置规则或策略确定是否需要对终端设备230对第一小区221的接入进行控制。例如,核心网设备210可以基于终端设备230的预配置规则或策略所指示的设备类型和/或设备能力来确定是否对终端设备230的接入进行限制。在这样的实施例中,预配置规则或策略可以被存储核心网设备210本地。本公开的范围在此方面不受限制。In some example embodiments, the core network device 210 may be a core network element supporting online subscription in the network selected by the access network device 220 . In this case, the core network device 210 may determine whether to control the terminal device 230's access to the first cell 221 based on a preconfigured rule or policy. For example, the core network device 210 may determine whether to restrict the access of the terminal device 230 based on the device type and/or device capability indicated by the preconfigured rules or policies of the terminal device 230 . In such an embodiment, the pre-configured rules or policies may be stored locally on the core network device 210 . The scope of the present disclosure is not limited in this regard.
415.作为示例,核心网设备210可以确定415接入过程处于在线签约阶段。415. As an example, the core network device 210 may determine 415 that the access process is in an online subscription phase.
420.然后,核心网设备210向接入网设备220发送420第一指示信息,以指示限制终端设备230对第一小区221的接入。接入网设备220可以存储第一指示信息。在核心网设备210此前发送过另一指示信息的情况下,接入网设备220可以利用第一指示信息更新所存储的另一指示信息。420. Then, the core network device 210 sends 420 first indication information to the access network device 220, so as to indicate that the terminal device 230 is restricted from accessing the first cell 221. The access network device 220 may store the first indication information. In the case that the core network device 210 has previously sent another indication information, the access network device 220 may use the first indication information to update the stored another indication information.
425.接入网设备220基于第一小区221的在线签约能力信息,可以确定425第一小区221不支持在线签约业务。接入网设备220可以基于第一指示信息和第一小区221的在线签约能力,针对终端设备230对第一小区221的接入进行控制。425. The access network device 220 may determine 425 that the first cell 221 does not support the online subscription service based on the online subscription capability information of the first cell 221. The access network device 220 may control access of the terminal device 230 to the first cell 221 based on the first indication information and the online subscription capability of the first cell 221 .
在上述实施例中,接入网设备220可以确定应当限制终端设备230对第一小区221的接入。430.在这种情况下,接入网设备220向终端设备230发送430第三消息,第三消息可以包括拒绝指示、拒绝原因值或针对终端设备的重定向指示中的至少一项。In the foregoing embodiment, the access network device 220 may determine that the terminal device 230 should be restricted from accessing the first cell 221 . 430. In this case, the access network device 220 sends 430 a third message to the terminal device 230, where the third message may include at least one of a rejection indication, a rejection reason value, or a redirection indication for the terminal device.
435.在接收到第三消息之后,终端设备230与接入网设备220执行435小区重选过程。小区重选过程可以基于已经存在的准则或将来待开发的机制,因而在此不进行赘述。本公开的范围在这方面不受限制。435. After receiving the third message, the terminal device 230 and the access network device 220 perform 435 a cell reselection process. The cell reselection process may be based on an existing criterion or a mechanism to be developed in the future, so details will not be described here. The scope of the present disclosure is not limited in this respect.
440.作为另一示例,核心网设备210可以确定440接入过程处于远程配置阶段。如果核心网设备210此前向接入网设备220发送过第一指示信息,以指示限制终端设备230对第一小区221的接入,则核心网设备210可以向接入网设备220发送445第二指示信息,以用于指示取消对第一小区221的接入限制。在这种情况下,接入网设备220可以利用第二指示信息来更新此前存储的第一指示信息。440. As another example, the core network device 210 may determine 440 that the access process is in a remote configuration phase. If the core network device 210 has previously sent the first indication information to the access network device 220 to instruct the terminal device 230 to restrict access to the first cell 221, the core network device 210 may send 445 the second indication information to the access network device 220. The indication information is used to indicate to cancel the access restriction on the first cell 221. In this case, the access network device 220 may use the second indication information to update the previously stored first indication information.
作为又一示例,在核心网设备210确定440接入过程处于远程配置阶段的情况下,核心网设备210也可以向接入网设备220发送指示限制对第一小区221的接入的第一指示信息。 在这种情况下,接入网设备220和终端设备230可以执行与430和435类似的操作。本公开的范围在这方面不受限制。As yet another example, in the case that the core network device 210 determines 440 that the access process is in the remote configuration phase, the core network device 210 may also send a first indication indicating to restrict access to the first cell 221 to the access network device 220 information. In this case, the access network device 220 and the terminal device 230 may perform operations similar to 430 and 435 . The scope of the present disclosure is not limited in this respect.
尽管在过程400中,将接入网设备220描述为先执行415在执行420,即,先判断接入过程所处的阶段,再判断第一小区221的在线签约能力,但是过程400的执行并不依赖于415、420的先后顺序。例如,在一些替代实施例中,核心网设备210可以先判断第一小区221的在线签约能力,再确定终端设备230的接入过程所处的阶段,即先执行420,再执行415。在另一些示例实施例中,对接入过程所处的阶段和第一小区221的在线签约能力的判断也可以并行执行。本公开的范围在这方面不受限制。Although in the process 400, the access network device 220 is described as first executing 415 and then executing 420, that is, first judging the stage of the access process, and then judging the online subscription capability of the first cell 221, the execution of the process 400 does not The sequence of 415 and 420 is not dependent. For example, in some alternative embodiments, the core network device 210 may first determine the online subscription capability of the first cell 221, and then determine the stage of the access process of the terminal device 230, that is, first perform 420, and then perform 415. In some other example embodiments, the determination of the stage of the access process and the online subscription capability of the first cell 221 may also be performed in parallel. The scope of the present disclosure is not limited in this respect.
根据以上描述的示例实施例,提供了一种用于控制终端设备接入网络的方案。该方案在接入网侧实现,可以在不改变终端设备侧的小区选择或小区切换机制的情况下,使终端设备仅可通过支持在线签约业务的小区获得签约或凭证信息。该方案还可以灵活设置后续接入过程是否应用相同的接入限制。以此方式,可以降低小区负载,保障网络安全性,并提高通信系统的性能。According to the exemplary embodiments described above, a solution for controlling terminal device access to a network is provided. This solution is implemented on the access network side, and without changing the cell selection or cell switching mechanism on the terminal device side, the terminal device can only obtain subscription or credential information through cells that support online subscription services. This solution can also flexibly set whether to apply the same access restriction in the subsequent access process. In this manner, cell load can be reduced, network security can be ensured, and performance of the communication system can be improved.
根据本公开的又一些实施例,可以在终端设备处实现增强的小区选择或小区重选机制。例如,图5示出了根据上述方案的具体的通信过程500的交互信令图。如图5所示,通信过程500涉及核心网设备210、接入网设备220以及终端设备230。应当理解,图5中示出的通信过程仅为示例性的,而非限制性的。本公开的实施例可以包括图5中未示出的交互信令,或者省略图5中示出的某些信令。According to still other embodiments of the present disclosure, an enhanced cell selection or cell reselection mechanism may be implemented at a terminal device. For example, FIG. 5 shows an interactive signaling diagram of a specific communication process 500 according to the above solution. As shown in FIG. 5 , a communication process 500 involves a core network device 210 , an access network device 220 and a terminal device 230 . It should be understood that the communication process shown in FIG. 5 is only exemplary rather than limiting. Embodiments of the present disclosure may include interactive signaling not shown in FIG. 5 , or omit some signaling shown in FIG. 5 .
505.接入网设备220向终端设备230发送505在线签约能力指示。在线签约能力指示可以包括接入网设备220的小区221至223的在线签约能力信息。例如,接入网设备220可以向其覆盖范围内的终端设备广播包括在线签约能力指示的消息,该消息可以是系统消息,除了在线签约能力指示之外,还可以包括网络标识、调度信息、配置参数、小区接入相关信息等等。505. The access network device 220 sends 505 an online subscription capability indication to the terminal device 230. The online subscription capability indication may include online subscription capability information of the cells 221 to 223 of the access network device 220 . For example, the access network device 220 may broadcast a message including an online subscription capability indication to terminal devices within its coverage area. The message may be a system message, and may include network identification, scheduling information, configuration parameters, cell access related information, etc.
在一些示例实施例中,终端设备230的AS接收到来自多个接入网设备广播的消息之后,将消息中的相关参数和指示信息传输至NAS层。终端设备230的NAS层可以根据在线签约能力指示,选择支持在线签约业务的接入网设备,并指示AS层基于在线签约能力指示选择该接入网设备所提供的支持在线签约的小区用于驻留。In some example embodiments, after receiving the broadcast messages from multiple access network devices, the AS of the terminal device 230 transmits the relevant parameters and indication information in the messages to the NAS layer. The NAS layer of the terminal device 230 may select an access network device that supports online subscription services according to the online subscription capability indication, and instruct the AS layer to select a cell that supports online subscription provided by the access network device based on the online subscription capability indication for camping. Keep.
510.例如,终端设备230的NAS层确定接入网设备220提供的网络支持在线签约业务,因而指示AS层基于在线签约能力信息,从接入网设备220的小区221至223中确定510支持在线签约的候选小区,例如第二小区222和第三小区223。510. For example, the NAS layer of the terminal device 230 determines that the network provided by the access network device 220 supports online subscription services, and thus instructs the AS layer to determine 510 from the cells 221 to 223 of the access network device 220 to support online subscription services based on the online subscription capability information. Subscribed candidate cells, such as the second cell 222 and the third cell 223 .
515.终端设备230的AS层可以从候选小区222和223中选择515第二小区222用于驻留,并向接入网设备220发送520针对第二小区222的在线签约请求。应当理解,终端设备230可以基于任何已经存在的或将来待开发的准则从候选小区中确定用于驻留的小区,因而在此不进行赘述。本公开的范围在这方面不受限制。515. The AS layer of the terminal device 230 may select 515 the second cell 222 from the candidate cells 222 and 223 to camp on, and send 520 an online subscription request for the second cell 222 to the access network device 220 . It should be understood that the terminal device 230 may determine the cell for camping on from the candidate cells based on any existing or to-be-developed criteria, and thus details are not described here. The scope of the present disclosure is not limited in this respect.
525.在接收到在线签约请求之后,接入网设备220与核心网设备210可以与终端设备230执行525在线签约流程。525. After receiving the online subscription request, the access network device 220 and the core network device 210 may perform 525 an online subscription process with the terminal device 230 .
530.在线签约流程完成之后,核心网设备210向终端设备230发送530第四消息,以指示在线签约完成。在接收到第四消息之后,终端设备230可以存储第四消息。530. After the online subscription process is completed, the core network device 210 sends 530 a fourth message to the terminal device 230 to indicate that the online subscription is completed. After receiving the fourth message, the terminal device 230 may store the fourth message.
如前所述,一旦完成在线签约流程,终端设备230与接入网设备220的后续接入过程(诸如,远程配置、由于移动性而触发的小区重选或小区切换)可以不受小区在线签约能力的影 响,因而可以不进行接入限制。当然,也可以对后续接入过程继续应用同样的接入限制。As mentioned above, once the online subscription process is completed, the subsequent access procedures of the terminal device 230 and the access network device 220 (such as remote configuration, cell reselection triggered by mobility, or cell handover) may not be affected by the online subscription process of the cell. Capability, so no access restriction is required. Of course, the same access restriction can also be continuously applied to the subsequent access process.
535.作为示例,在接收到第四消息之后,终端设备230可以确定535小区重选需要基于在线签约能力信息。在这种情况下,终端设备230的AS层在小区重选过程中仍然考虑在线签约能力信息。在这种情况下,终端设备230可以在接入网设备220的支持在线签约的小区222和223中重选545用于驻留的小区。535. As an example, after receiving the fourth message, the terminal device 230 may determine 535 that cell reselection needs to be based on online subscription capability information. In this case, the AS layer of the terminal device 230 still considers the online subscription capability information during the cell reselection process. In this case, the terminal device 230 may reselect 545 a cell for camping on among the cells 222 and 223 of the access network device 220 that support online subscription.
540.作为另一示例,在接收到第四消息之后,终端设备230可以确定540小区重选无需基于在线签约能力信息。终端设备230的NAS层可以指示AS层取消小区选择的限制。540. As another example, after receiving the fourth message, the terminal device 230 may determine 540 that the cell reselection need not be based on online subscription capability information. The NAS layer of the terminal device 230 may instruct the AS layer to cancel the restriction on cell selection.
545.在这种情况下,终端设备230可以在接入网设备220的所有小区中重选545用于驻留的小区。545. In this case, the terminal device 230 may reselect 545 a cell for camping on among all the cells of the access network device 220.
应当理解,小区重选的其他步骤可以基于任何已经存在的或将来待开发的准则,因而在此不进行赘述。本公开的范围在这方面不受限制。It should be understood that other steps of cell reselection may be based on any existing or to-be-developed criteria, so details will not be described here. The scope of the present disclosure is not limited in this respect.
根据以上描述的示例实施例,提供了一种增强的小区选择机制。通过该机制,终端设备可以在进行小区选择或小区重选时,动态考虑小区在线签约能力。例如,当终端设备请求接入网络以获得签约或凭证信息时,可以根据各个小区的在线签约能力选择支持在线签约业务的小区,从而有效地减少了普通小区的负载。当在线签约完成之后,终端设备可以考虑是否应用小区接入限制。以此方式,可以实现小区负载均衡,同时可以保障网络安全性,提高通信系统的性能。According to the example embodiments described above, an enhanced cell selection mechanism is provided. Through this mechanism, the terminal device can dynamically consider the online subscription capability of the cell when performing cell selection or cell reselection. For example, when a terminal device requests to access the network to obtain subscription or credential information, a cell that supports online subscription service can be selected according to the online subscription capability of each cell, thereby effectively reducing the load of common cells. After the online subscription is completed, the terminal device may consider whether to apply cell access restriction. In this manner, cell load balancing can be achieved, network security can be ensured, and performance of the communication system can be improved.
下面将参考图6对结合图3描述的示例实施例中的通信过程进行详细说明。图6示出了根据本公开的一些实施例的方法600的流程图。方法600可以实现在核心网设备处。例如,方法600可以实现在核心网设备210处。为了方便讨论,以下将结合图2来描述方法600。应当理解,方法600同样适用于其他通信场景和设备。The communication process in the exemplary embodiment described in conjunction with FIG. 3 will be described in detail below with reference to FIG. 6 . FIG. 6 shows a flowchart of a method 600 according to some embodiments of the present disclosure. The method 600 can be implemented at a core network device. For example, the method 600 can be implemented at the core network device 210 . For convenience of discussion, the method 600 will be described below in conjunction with FIG. 2 . It should be understood that the method 600 is also applicable to other communication scenarios and devices.
在框610处,核心网设备210从接入网设备220接收第一消息。第一消息可以包括终端设备230要接入的接入网设备220的第一小区221的小区标识。例如,第一消息可以是NGAP消息。At block 610 , the core network device 210 receives a first message from the access network device 220 . The first message may include a cell identifier of the first cell 221 of the access network device 220 to be accessed by the terminal device 230 . For example, the first message may be an NGAP message.
在框620处,核心网设备210基于第一小区221的小区标识确定第一小区221不支持在线签约。At block 620, the core network device 210 determines based on the cell identity of the first cell 221 that the first cell 221 does not support online subscription.
在一些示例实施例中,核心网设备210可以从接入网设备220接收小区能力信息。小区能力信息可以包括针对接入网设备220的至少一个小区的小区标识和与至少一个小区相对应的在线签约能力,其中至少一个小区包括第一小区221。在这样的实施例中,核心网设备210可以基于小区能力信息和从第一消息中获得的第一小区221的小区标识,确定第一小区221不支持在线签约。In some example embodiments, the core network device 210 may receive cell capability information from the access network device 220 . The cell capability information may include a cell identifier for at least one cell of the access network device 220 and an online subscription capability corresponding to the at least one cell, where the at least one cell includes the first cell 221 . In such an embodiment, the core network device 210 may determine that the first cell 221 does not support online subscription based on the cell capability information and the cell identifier of the first cell 221 obtained from the first message.
在一些示例实施例中,核心网设备210可以从接入网设备220接收更新消息。该更新消息可以指示对此前接收的小区能力信息的更新。In some example embodiments, the core network device 210 may receive an update message from the access network device 220 . The update message may indicate an update to previously received cell capability information.
在一些示例实施例中,第一消息还可以指示第一小区221的在线签约能力,并且核心网设备210可以基于第一小区221的小区标识和第一小区221的在线签约能力来确定第一小区221不支持在线签约。In some example embodiments, the first message may also indicate the online subscription capability of the first cell 221, and the core network device 210 may determine the first cell based on the cell identity of the first cell 221 and the online subscription capability of the first cell 221 221 does not support online signing.
在框630处,核心网设备210针对终端设备230对第一小区221的接入进行控制。At block 630 , the core network device 210 controls access of the terminal device 230 to the first cell 221 .
在一些示例实施例中,核心网设备210可以限制终端设备230对第一小区221的接入。在这样的实施例中,核心网设备210可以向终端设备230发送第二消息。第二消息可以包括以下至少一项:拒绝指示、拒绝原因值或重定向指示。In some exemplary embodiments, the core network device 210 may restrict the terminal device 230 from accessing the first cell 221 . In such an embodiment, the core network device 210 may send the second message to the terminal device 230 . The second message may include at least one of the following: a rejection indication, a rejection reason value, or a redirection indication.
在一些示例实施例中,核心网设备210可以基于以下至少一项来确定限制终端设备230对第一小区221的接入:第一消息中包括在线签约指示、凭证服务器对终端设备230的授权失败、或网络中不存在针对终端设备230的用户面上下文。In some example embodiments, the core network device 210 may determine to restrict the terminal device 230's access to the first cell 221 based on at least one of the following: the first message includes an online subscription indication, and the credential server fails to authorize the terminal device 230 , or there is no user plane context for the terminal device 230 in the network.
在一些示例实施例中,核心网设备210可以确定终端设备230对第一小区221的接入处于在线签约阶段。基于上述确定,核心网设备210可以限制终端设备230对第一小区221的接入,并且向终端设备230发送第二消息。第二消息包括以下至少一项:拒绝指示、拒绝原因值或重定向指示。In some example embodiments, the core network device 210 may determine that the terminal device 230's access to the first cell 221 is in an online subscription phase. Based on the above determination, the core network device 210 may restrict the terminal device 230 from accessing the first cell 221 , and send the second message to the terminal device 230 . The second message includes at least one of the following: a rejection indication, a rejection reason value, or a redirection indication.
在另一些示例实施例中,核心网设备210可以确定终端设备230对第一小区221的接入处于远程配置阶段。基于上述确定,核心网设备210可以确定不限制终端设备230对第一小区221的接入。In some other exemplary embodiments, the core network device 210 may determine that the terminal device 230 is in a remote configuration phase when accessing the first cell 221 . Based on the foregoing determination, the core network device 210 may determine not to restrict the terminal device 230 from accessing the first cell 221 .
备选地,如果确定终端设备230对第一小区221的接入处于远程配置阶段,核心网设备210可以限制终端设备230对第一小区221的接入。Alternatively, if it is determined that the terminal device 230's access to the first cell 221 is in the remote configuration stage, the core network device 210 may restrict the terminal device 230's access to the first cell 221 .
核心网设备210可以基于第一消息中是否包括在线签约指示来确定接入所处的阶段。例如,如果第一消息中包括在线签约指示,则接入处于在线签约阶段。如果第一消息中不包括在线签约指示,则接入处于远程配置阶段。The core network device 210 may determine the access stage based on whether the first message includes an online subscription indication. For example, if the first message includes an online subscription indication, the access is in the online subscription phase. If the online subscription indication is not included in the first message, the access is in the remote configuration phase.
核心网设备210可以基于凭证服务器对终端设备230的授权结果确来确定接入所处的阶段。例如,如果凭证服务器对终端设备230的授权失败,则接入处于在线签约阶段。如果凭证服务器对终端设备230的授权成功,则接入处于远程配置阶段。The core network device 210 may determine the access stage based on the authorization result of the credential server to the terminal device 230 . For example, if the credential server fails to authorize the terminal device 230, the access is in the online subscription phase. If the credential server authorizes the terminal device 230 successfully, the access is in the remote configuration stage.
核心网设备210可以基于网络中是否存在针对终端设备230的用户面上下文来确定接入所处的阶段。例如,如果网络中不存在针对终端设备230的用户面上下文,则接入处于在线签约阶段。如果网络中存在针对终端设备230的用户面上下文,则接入处于远程配置阶段。The core network device 210 may determine the access stage based on whether there is a user plane context for the terminal device 230 in the network. For example, if there is no user plane context for the terminal device 230 in the network, the access is in the online subscription phase. If there is a user plane context for the terminal device 230 in the network, the access is in the remote configuration phase.
下面将参考图7对结合图4描述的示例实施例中的通信过程进行详细说明。图7示出了根据本公开的一些实施例的方法700的流程图。方法700可以实现在接入网设备处。例如,方法700可以实现在接入网设备220处。为了方便讨论,以下将结合图2来描述方法700。应当理解,方法700同样适用于其他通信场景和设备。The communication process in the exemplary embodiment described in conjunction with FIG. 4 will be described in detail below with reference to FIG. 7 . FIG. 7 shows a flowchart of a method 700 according to some embodiments of the present disclosure. The method 700 can be implemented at an access network device. For example, method 700 may be implemented at access network device 220 . For convenience of discussion, the method 700 will be described below in conjunction with FIG. 2 . It should be understood that the method 700 is also applicable to other communication scenarios and devices.
在框710处,接入网设备220向核心网设备210发送第一消息。第一消息可以包括终端设备230要接入的接入网设备220的第一小区221的小区标识。At block 710 , the access network device 220 sends a first message to the core network device 210 . The first message may include a cell identifier of the first cell 221 of the access network device 220 to be accessed by the terminal device 230 .
在框720处,接入网设备220从核心网设备210接收关于第一小区221的接入的第一指示信息。第一指示信息可以指示是否限制终端设备230对第一小区221的接入。At block 720 , the access network device 220 receives first indication information about access to the first cell 221 from the core network device 210 . The first indication information may indicate whether to restrict the terminal device 230 from accessing the first cell 221 .
在框730处,接入网设备220确定第一小区221不支持在线签约。At block 730, the access network device 220 determines that the first cell 221 does not support online subscription.
在框740处,接入网设备220基于第一指示信息,针对终端设备230对第一小区221的接入进行控制。在第一指示信息指示限制终端设备230对第一小区221的接入的实施例中,接入网设备220可以向终端设备230发送第三消息。第三消息可以包括以下至少一项:拒绝指示、拒绝原因值或针对终端设备230的重定向指示。At block 740, the access network device 220 controls the terminal device 230's access to the first cell 221 based on the first indication information. In the embodiment in which the first indication information indicates that the terminal device 230 is restricted from accessing the first cell 221 , the access network device 220 may send the third message to the terminal device 230 . The third message may include at least one of the following: a rejection indication, a rejection reason value, or a redirection indication for the terminal device 230 .
在一些示例实施例中,接入网设备220从核心网设备接收第二指示信息。第二指示信息指示取消对第一小区221的接入的限制。在这样的示例实施例中,第二指示信息可以指示取消对第一小区2210的接入限制。In some example embodiments, the access network device 220 receives the second indication information from the core network device. The second indication information indicates to cancel the restriction on access to the first cell 221 . In such an example embodiment, the second indication information may indicate to cancel the access restriction on the first cell 2210 .
下面将参考图8对结合图5描述的示例实施例中的通信过程进行详细说明.图8示出了根据本公开的一些实施例的方法800的流程图。方法800可以实现在终端设备处。例如,方法800可以实现在终端设备230处。为了方便讨论,以下将结合图2来描述方法800。应当 理解,方法800同样适用于其他通信场景和设备。The communication process in the example embodiment described in conjunction with FIG. 5 will be described in detail below with reference to FIG. 8. FIG. 8 shows a flowchart of a method 800 according to some embodiments of the present disclosure. The method 800 can be implemented at a terminal device. For example, the method 800 can be implemented at the terminal device 230 . For ease of discussion, the method 800 will be described below in conjunction with FIG. 2 . It should be understood that the method 800 is equally applicable to other communication scenarios and devices.
在框810处,终端设备230从接入网设备220接收在线签约能力指示。在线签约能力指示可以包括接入网设备220的至少一个小区(例如,第一小区221、第二小区222和第三小区223)的在线签约能力信息。At block 810 , the terminal device 230 receives an online subscription capability indication from the access network device 220 . The online subscription capability indication may include online subscription capability information of at least one cell (for example, the first cell 221 , the second cell 222 and the third cell 223 ) of the access network device 220 .
在框820处,终端设备230基于在线签约能力信息,从至少一个小区中选择支持在线签约的第二小区222。At block 820, the terminal device 230 selects the second cell 222 supporting online subscription from at least one cell based on the online subscription capability information.
在一些示例实施例中,终端设备230可以基于在线签约能力信息,确定至少一个小区221至223中支持在线签约的候选小区,例如第二小区222和第三小区223。然后,终端设备230可以从候选小区222和223中选择第二小区222以用于驻留。在上述实施例中,对候选小区222和223的确定在终端设备230的AS层实现。In some exemplary embodiments, the terminal device 230 may determine candidate cells supporting online subscription among at least one cell 221 to 223 based on the online subscription capability information, such as the second cell 222 and the third cell 223 . The terminal device 230 may then select the second cell 222 from the candidate cells 222 and 223 to camp on. In the above embodiments, the determination of the candidate cells 222 and 223 is implemented at the AS layer of the terminal device 230 .
在框830处,终端设备230向接入网设备220发送针对第二小区222的在线签约请求。At block 830 , the terminal device 230 sends an online subscription request for the second cell 222 to the access network device 220 .
在一些示例实施例中,终端设备230可以从核心网210设备接收第四消息。第四消息可以指示在线签约完成。响应于第四消息,终端设备230可以针对至少一个小区221至223进行小区重选或小区切换。例如,小区重选或小区切换无需基于在线签约能力信息。In some example embodiments, the terminal device 230 may receive the fourth message from the core network 210 device. The fourth message may indicate that the online subscription is complete. In response to the fourth message, the terminal device 230 may perform cell reselection or cell switching for at least one cell 221 to 223 . For example, cell reselection or cell switching need not be based on online subscription capability information.
在另一些示例实施例中,终端设备230也可以基于在线签约能力信息针对至少一个小区221至223进行小区重选或小区切换。In some other exemplary embodiments, the terminal device 230 may also perform cell reselection or cell switching for at least one of the cells 221 to 223 based on the online subscription capability information.
以上,结合图3至图8详细说明了本申请实施例提供的通信方法。以下,结合图9至图10详细说明本申请实施例提供的通信装置。Above, the communication method provided by the embodiment of the present application is described in detail with reference to FIG. 3 to FIG. 8 . Hereinafter, the communication device provided by the embodiment of the present application will be described in detail with reference to FIG. 9 to FIG. 10 .
图9是本申请实施例提供的通信装置的示意性框图。如图9所示,该装置900可以包括处理单元910和收发单元920。处理单元910用于对通信装置的动作进行控制管理,例如处理单元910用于执行在通信装置进行信息/数据处理的步骤。收发单元920用于支持通信装置进行信息/数据发送或者接收的步骤。Fig. 9 is a schematic block diagram of a communication device provided by an embodiment of the present application. As shown in FIG. 9 , the apparatus 900 may include a processing unit 910 and a transceiver unit 920 . The processing unit 910 is used to control and manage the actions of the communication device, for example, the processing unit 910 is used to execute the steps of information/data processing in the communication device. The transceiver unit 920 is used to support the communication device in the steps of sending or receiving information/data.
在一种可能的实施例中,收发单元920可以进一步分为发送单元和接收单元。In a possible embodiment, the transceiver unit 920 may be further divided into a sending unit and a receiving unit.
在一种可能的实施例中,通信装置还可以包括存储模块,用于存储通信装置可的程序代码和数据。In a possible embodiment, the communication device may further include a storage module, configured to store program codes and data available on the communication device.
(一)在一种可能的设计中,该装置900可以是上文方法实施例中的核心网设备,还可以是应用于核心网设备的模块(如芯片)。该装置900可以用于执行上述方法300-方法800中核心网设备对应的各个步骤或流程。具体地,(1) In a possible design, the apparatus 900 may be the core network device in the method embodiment above, or a module (such as a chip) applied to the core network device. The apparatus 900 may be used to execute various steps or processes corresponding to the core network equipment in the above method 300-method 800. specifically,
收发单元920用于:从接入网设备接收第一消息,所述第一消息包括终端设备要接入的所述接入网设备的第一小区的小区标识;The transceiver unit 920 is configured to: receive a first message from the access network device, where the first message includes a cell identifier of a first cell of the access network device to be accessed by the terminal device;
处理单元910用于:基于所述第一小区的小区标识确定所述第一小区不支持在线签约;以及针对所述终端设备对所述第一小区的接入进行控制。The processing unit 910 is configured to: determine based on the cell identifier of the first cell that the first cell does not support online subscription; and control the terminal device's access to the first cell.
可选地,收发单元920还用于:从所述接入网设备接收小区能力信息,所述小区能力信息包括针对所述接入网设备的至少一个小区的小区标识和对应的在线签约能力,所述至少一个小区包括所述第一小区;以及Optionally, the transceiving unit 920 is further configured to: receive cell capability information from the access network device, where the cell capability information includes a cell identifier and corresponding online subscription capability for at least one cell of the access network device, the at least one cell includes the first cell; and
处理单元910还用于:基于所述小区能力信息和所述第一小区的小区标识,确定所述第一小区不支持所述在线签约。The processing unit 910 is further configured to: determine that the first cell does not support the online subscription based on the cell capability information and the cell identity of the first cell.
可选地,收发单元920还用于:从所述接入网设备接收更新消息,所述更新消息指示对所述小区能力信息的更新。Optionally, the transceiving unit 920 is further configured to: receive an update message from the access network device, where the update message indicates an update to the cell capability information.
可选地,处理单元910还用于:所述第一小区的小区标识和所述第一小区的在线签约能 力,确定所述第一小区不支持所述在线签约。Optionally, the processing unit 910 is further configured to: determine the cell identifier of the first cell and the online subscription capability of the first cell, and determine that the first cell does not support the online subscription.
可选地,处理单元910还用于:限制所述终端设备对所述第一小区的接入。Optionally, the processing unit 910 is further configured to: restrict the terminal device from accessing the first cell.
可选地,确定限制所述终端设备对所述第一小区的接入基于以下至少一项:Optionally, determining to restrict the terminal device's access to the first cell is based on at least one of the following:
所述第一消息中包括在线签约指示;The first message includes an online subscription indication;
凭证服务器对所述终端设备的授权失败;或the credential server fails to authorize said terminal device; or
不存在针对所述终端设备的用户面上下文。There is no user plane context for the terminal device.
可选地,处理单元910还用于:确定所述终端设备对所述第一小区的接入处于在线签约阶段,并且其中对所述第一小区的接入进行控制包括:Optionally, the processing unit 910 is further configured to: determine that the terminal device's access to the first cell is in an online subscription phase, and controlling the access to the first cell includes:
处理单元910还用于:限制所述终端设备对所述第一小区的接入。The processing unit 910 is further configured to: restrict the terminal device from accessing the first cell.
可选地,收发单元920还用于:向所述终端设备发送第二消息,所述第二消息包括以下至少一项:拒绝指示、拒绝原因值或重定向指示。Optionally, the transceiving unit 920 is further configured to: send a second message to the terminal device, where the second message includes at least one of the following: a rejection indication, a rejection reason value, or a redirection indication.
可选地,处理单元910还用于:确定所述终端设备对所述第一小区的接入处于远程配置阶段,确定不限制所述终端设备对所述第一小区的接入。Optionally, the processing unit 910 is further configured to: determine that the terminal device's access to the first cell is in a remote configuration stage, and determine that the terminal device's access to the first cell is not restricted.
可选地,所述处理单元910确定所述终端设备对所述第一小区的接入处于远程配置阶段,限制所述终端设备对所述第一小区的接入。Optionally, the processing unit 910 determines that the terminal device's access to the first cell is in a remote configuration stage, and restricts the terminal device's access to the first cell.
可选地,,所述处理单元910基于以下至少一项确定所述接入处于所述在线签约阶段:Optionally, the processing unit 910 determines that the access is in the online subscription phase based on at least one of the following:
如果所述第一消息中包括在线签约指示,则所述接入处于所述在线签约阶段;If the first message includes an online subscription indication, the access is in the online subscription phase;
如果所述凭证服务器对所述终端设备的授权失败,则所述接入处于所述在线签约阶段;或said access is in said online subscription phase if said credential server fails to authorize said terminal device; or
如果不存在针对所述终端设备的用户面上下文,则所述接入处于所述在线签约阶段。If there is no user plane context for the terminal device, the access is in the online subscription phase.
可选地,所述处理单元910基于以下至少一项确定所述接入处于所述远程配置阶段:Optionally, the processing unit 910 determines that the access is in the remote configuration stage based on at least one of the following:
第一消息中不包括所述在线签约指示,则所述接入处于所述远程配置阶段;If the online subscription indication is not included in the first message, the access is in the remote configuration stage;
如果所述凭证服务器对所述终端设备的授权成功,则所述接入处于所述远程配置阶段;或If the credential server successfully authorizes the terminal device, the access is in the remote configuration phase; or
如果存在所述用户面上下文,则所述接入处于所述远程配置阶段。If the user plane context exists, the access is in the remote configuration phase.
(二)在一种可能的设计中,该装置900可以是上文方法实施例中的接入网设备,还可以是应用于接入网设备的模块(如芯片)。该装置900可以用于执行上述方法300-方法800中接入网设备对应的各个步骤或流程。具体地,(2) In a possible design, the apparatus 900 may be the access network device in the method embodiment above, or a module (such as a chip) applied to the access network device. The apparatus 900 may be used to execute each step or process corresponding to the access network device in the above method 300-method 800. specifically,
收发单元920用于:向核心网设备发送第一消息,所述第一消息包括终端设备要接入的所述接入网设备的第一小区的小区标识;从所述核心网设备接收关于所述第一小区的接入的第一指示信息;The transceiver unit 920 is configured to: send a first message to the core network device, where the first message includes the cell identifier of the first cell of the access network device to be accessed by the terminal device; receive from the core network device information about the The first indication information of the access of the first cell;
处理单元910用于:确定所述第一小区不支持在线签约;以及基于所述第一指示信息,针对所述终端设备对所述第一小区的接入进行控制。The processing unit 910 is configured to: determine that the first cell does not support online subscription; and control access of the terminal device to the first cell based on the first indication information.
可选地,所述第一指示信息指示限制所述终端设备对所述第一小区的接入,并且其中对所述第一小区的接入进行控制包括:Optionally, the first indication information indicates that the terminal device is restricted from accessing the first cell, and controlling access to the first cell includes:
处理单元910还用于:限制所述终端设备对所述第一小区的接入。The processing unit 910 is further configured to: restrict the terminal device from accessing the first cell.
可选地,限制所述终端设备对所述第一小区的接入包括:Optionally, restricting the terminal device's access to the first cell includes:
处理单元910还用于:通过收发单元920向所述终端设备发送第三消息,所述第三消息包括以下至少一项:拒绝指示、拒绝原因值或针对所述终端设备的重定向指示。The processing unit 910 is further configured to: send a third message to the terminal device through the transceiver unit 920, where the third message includes at least one of the following: a rejection indication, a rejection reason value, or a redirection indication for the terminal device.
可选地,收发单元920还用于:从所述核心网设备接收第二指示信息,所述第二指示信 息指示取消对所述第一小区的接入的限制。Optionally, the transceiving unit 920 is further configured to: receive second indication information from the core network device, where the second indication information indicates to cancel the restriction on access to the first cell.
(三)在一种可能的设计中,该装置900可以是上文方法实施例中的终端设备,还可以是应用于终端设备的模块(如芯片)。该装置900可以用于执行上述方法300-方法800中终端设备对应的各个步骤或流程。具体地,(3) In a possible design, the apparatus 900 may be the terminal device in the method embodiment above, or may be a module (such as a chip) applied to the terminal device. The apparatus 900 may be used to execute each step or process corresponding to the terminal device in the above-mentioned method 300-method 800. specifically,
收发单元920用于:从接入网设备接收在线签约能力指示,所述在线签约能力指示包括所述接入网设备的至少一个小区的在线签约能力信息,其中,所述至少一个小区的在线签约能力信息包括针对所述接入网设备的至少一个小区的小区标识和对应的在线签约能力;The transceiver unit 920 is configured to: receive an online subscription capability indication from an access network device, where the online subscription capability indication includes online subscription capability information of at least one cell of the access network device, wherein the online subscription capability of the at least one cell The capability information includes a cell identifier and a corresponding online subscription capability for at least one cell of the access network device;
处理单元910用于:基于所述至少一个小区的在线签约能力信息,从所述至少一个小区中选择第二小区,所述第二小区支持在线签约;以及The processing unit 910 is configured to: select a second cell from the at least one cell based on the online subscription capability information of the at least one cell, and the second cell supports online subscription; and
收发单元920还用于:向所述接入网设备发送针对所述第二小区的在线签约请求。The transceiving unit 920 is further configured to: send an online subscription request for the second cell to the access network device.
可选地,处理单元910还用于:基于所述至少一个小区的在线签约能力信息,确定所述至少一个小区中支持在线签约的候选小区;以及从所述候选小区中选择所述第二小区以用于驻留,Optionally, the processing unit 910 is further configured to: determine a candidate cell supporting online subscription among the at least one cell based on the online subscription capability information of the at least one cell; and select the second cell from the candidate cells for residency,
其中对所述候选小区的确定在所述终端设备的接入层实现。The determination of the candidate cell is implemented at the access layer of the terminal device.
可选地,收发单元920还用于从所述核心网设备接收第四消息,所述第四消息指示所述在线签约完成;以及Optionally, the transceiver unit 920 is further configured to receive a fourth message from the core network device, the fourth message indicating that the online subscription is completed; and
处理单元910还用于:针对所述至少一个小区进行小区重选或小区切换,所述小区重选或小区切换无需基于所述至少一个小区的在线签约能力信息。The processing unit 910 is further configured to: perform cell reselection or cell switching for the at least one cell, and the cell reselection or cell switching does not need to be based on the online subscription capability information of the at least one cell.
可选地,处理单元910还用于:基于所述至少一个小区的在线签约能力信息针对所述至少一个小区进行小区重选或小区切换。Optionally, the processing unit 910 is further configured to: perform cell reselection or cell switching for the at least one cell based on the online subscription capability information of the at least one cell.
应理解,这里的装置900以功能单元的形式体现。这里的术语“单元”可以指应用特有集成电路(application specific integrated circuit,ASIC)、电子电路、用于执行一个或多个软件或固件程序的处理器(例如共享处理器、专有处理器或组处理器等)和存储器、合并逻辑电路和/或其它支持所描述的功能的合适组件。在一个可选例子中,本领域技术人员可以理解,装置900可以具体为上述实施例中的核心网设备,可以用于执行上述方法实施例中与核心网设备对应的各个流程和/或步骤,或者,装置900可以具体为上述实施例中的终端设备,可以用于执行上述方法实施例中与终端设备对应的各个流程和/或步骤,或者,装置900可以具体为上述实施例中的接入网设备,可以用于执行上述方法实施例中与接入网设备对应的各个流程和/或步骤为避免重复,在此不再赘述。It should be understood that the device 900 here is embodied in the form of functional units. The term "unit" here may refer to an application specific integrated circuit (ASIC), an electronic circuit, a processor for executing one or more software or firmware programs (such as a shared processor, a dedicated processor, or a group processor, etc.) and memory, incorporated logic, and/or other suitable components to support the described functionality. In an optional example, those skilled in the art can understand that the apparatus 900 may specifically be the core network device in the above embodiment, and may be used to execute various processes and/or steps corresponding to the core network device in the above method embodiment, Alternatively, the apparatus 900 may specifically be the terminal device in the above-mentioned embodiment, and may be used to execute various procedures and/or steps corresponding to the terminal device in the above-mentioned method embodiment, or, the apparatus 900 may be specifically the access terminal device in the above-mentioned embodiment. The network equipment may be used to execute the processes and/or steps corresponding to the access network equipment in the foregoing method embodiments. In order to avoid repetition, details are not repeated here.
上述各个方案的装置900具有实现上述方法核心网设备所执行的相应步骤的功能,或者,上述各个方案的装置900具有实现上述方法中终端设备所执行的相应步骤的功能,或者,上述各个方案的装置900具有实现上述方法中接入网设备所执行的相应步骤的功能。所述功能可以通过硬件实现,也可以通过硬件执行相应的软件实现。所述硬件或软件包括一个或多个与上述功能相对应的模块;例如通信单元可以由收发机替代(例如,通信单元中的发送单元可以由发送机替代,通信单元中的接收单元可以由接收机替代),其它单元,如处理单元等可以由处理器替代,分别执行各个方法实施例中的收发操作以及相关的处理操作。The apparatus 900 of each of the above-mentioned solutions has the function of implementing the corresponding steps performed by the core network equipment of the above-mentioned methods, or, the apparatus 900 of the above-mentioned various solutions has the function of implementing the corresponding steps of the terminal equipment in the above-mentioned methods, or, the above-mentioned each of the solutions Apparatus 900 has the function of implementing the corresponding steps performed by the access network device in the above methods. The functions described above may be implemented by hardware, or may be implemented by executing corresponding software on the hardware. The hardware or software includes one or more modules corresponding to the above-mentioned functions; for example, the communication unit can be replaced by a transceiver (for example, the sending unit in the communication unit can be replaced by a transmitter, and the receiving unit in the communication unit can be replaced by a receiver computer), and other units, such as a processing unit, may be replaced by a processor to respectively perform the sending and receiving operations and related processing operations in each method embodiment.
此外,上述通信单元还可以是收发电路(例如可以包括接收电路和发送电路),处理单元可以是处理电路。In addition, the above-mentioned communication unit may also be a transceiver circuit (for example, may include a receiving circuit and a sending circuit), and the processing unit may be a processing circuit.
图10示出了本申请实施例提供的通信装置1000。该装置1000包括处理器1010和收发器1020。其中,处理器1010和收发器1020通过内部连接通路互相通信,该处理器1010用 于执行指令,以控制该收发器1020发送信号和/或接收信号。FIG. 10 shows a communication device 1000 provided by an embodiment of the present application. The apparatus 1000 includes a processor 1010 and a transceiver 1020 . Wherein, the processor 1010 and the transceiver 1020 communicate with each other through an internal connection path, and the processor 1010 is used to execute instructions to control the transceiver 1020 to send signals and/or receive signals.
可选地,该装置1000还可以包括存储器1030,该存储器1030与处理器1010、收发器1020通过内部连接通路互相通信。该存储器1030用于存储指令,该处理器1010可以执行该存储器1030中存储的指令。在一种可能的实现方式中,装置1000用于实现上述方法实施例中的核心网设备对应的各个流程和步骤。在另一种可能的实现方式中,装置1000用于实现上述方法实施例中的接入网设备对应的各个流程和步骤。在再一种可能的实现方式中,装置1000用于实现上述方法实施例中的终端设备对应的各个流程和步骤。Optionally, the apparatus 1000 may further include a memory 1030, and the memory 1030 communicates with the processor 1010 and the transceiver 1020 through an internal connection path. The memory 1030 is used to store instructions, and the processor 1010 can execute the instructions stored in the memory 1030 . In a possible implementation manner, the apparatus 1000 is configured to implement various processes and steps corresponding to the core network equipment in the foregoing method embodiments. In another possible implementation manner, the apparatus 1000 is configured to implement various processes and steps corresponding to the access network device in the foregoing method embodiments. In yet another possible implementation manner, the apparatus 1000 is configured to implement various processes and steps corresponding to the terminal device in the foregoing method embodiments.
应理解,装置1000可以具体为上述实施例中的核心网设备、接入网设备或终端设备,也可以是芯片或者芯片系统。对应的,该收发器1020可以是该芯片的收发电路,在此不做限定。具体地,该装置1000可以用于执行上述方法实施例中与核心网设备、接入网设备或终端设备对应的各个步骤和/或流程。可选地,该存储器1030可以包括只读存储器和随机存取存储器,并向处理器提供指令和数据。存储器的一部分还可以包括非易失性随机存取存储器。例如,存储器还可以存储设备类型的信息。该处理器1010可以用于执行存储器中存储的指令,并且当该处理器1010执行存储器中存储的指令时,该处理器1010用于执行上述与核心网设备、接入网设备或终端设备对应的方法实施例的各个步骤和/或流程。在实现过程中,上述方法的各步骤可以通过处理器中的硬件的集成逻辑电路或者软件形式的指令完成。结合本申请实施例所公开的方法的步骤可以直接体现为硬件处理器执行完成,或者用处理器中的硬件及软件模块组合执行完成。软件模块可以位于随机存储器,闪存、只读存储器,可编程只读存储器或者电可擦写可编程存储器、寄存器等本领域成熟的存储介质中。该存储介质位于存储器,处理器读取存储器中的信息,结合其硬件完成上述方法的步骤。为避免重复,这里不再详细描述。It should be understood that the apparatus 1000 may specifically be the core network device, the access network device, or the terminal device in the foregoing embodiments, or may be a chip or a chip system. Correspondingly, the transceiver 1020 may be a transceiver circuit of the chip, which is not limited here. Specifically, the apparatus 1000 can be used to execute various steps and/or processes corresponding to core network equipment, access network equipment or terminal equipment in the foregoing method embodiments. Optionally, the memory 1030 may include read-only memory and random-access memory, and provides instructions and data to the processor. A portion of the memory may also include non-volatile random access memory. For example, the memory may also store device type information. The processor 1010 may be used to execute the instructions stored in the memory, and when the processor 1010 executes the instructions stored in the memory, the processor 1010 is used to execute the above-mentioned instructions corresponding to the core network equipment, access network equipment or terminal equipment. Various steps and/or processes of the method embodiments. In the implementation process, each step of the above method can be completed by an integrated logic circuit of hardware in a processor or an instruction in the form of software. The steps of the methods disclosed in connection with the embodiments of the present application may be directly implemented by a hardware processor, or implemented by a combination of hardware and software modules in the processor. The software module can be located in a mature storage medium in the field such as random access memory, flash memory, read-only memory, programmable read-only memory or electrically erasable programmable memory, register. The storage medium is located in the memory, and the processor reads the information in the memory, and completes the steps of the above method in combination with its hardware. To avoid repetition, no detailed description is given here.
应注意,本申请实施例中的处理器可以是一种集成电路芯片,具有信号的处理能力。在实现过程中,上述方法实施例的各步骤可以通过处理器中的硬件的集成逻辑电路或者软件形式的指令完成。上述的处理器可以是通用处理器、数字信号处理器(DSP)、专用集成电路(ASIC)、现场可编程门阵列(FPGA)或者其他可编程逻辑器件、分立门或者晶体管逻辑器件、分立硬件组件。可以实现或者执行本申请实施例中的公开的各方法、步骤及逻辑框图。通用处理器可以是微处理器或者该处理器也可以是任何常规的处理器等。结合本申请实施例所公开的方法的步骤可以直接体现为硬件译码处理器执行完成,或者用译码处理器中的硬件及软件模块组合执行完成。软件模块可以位于随机存储器,闪存、只读存储器,可编程只读存储器或者电可擦写可编程存储器、寄存器等本领域成熟的存储介质中。该存储介质位于存储器,处理器读取存储器中的信息,结合其硬件完成上述方法的步骤。It should be noted that the processor in the embodiment of the present application may be an integrated circuit chip, which has a signal processing capability. In the implementation process, each step of the above-mentioned method embodiments may be completed by an integrated logic circuit of hardware in a processor or instructions in the form of software. The above-mentioned processor may be a general-purpose processor, a digital signal processor (DSP), an application-specific integrated circuit (ASIC), a field-programmable gate array (FPGA) or other programmable logic devices, discrete gate or transistor logic devices, discrete hardware components . Various methods, steps, and logic block diagrams disclosed in the embodiments of the present application may be implemented or executed. A general-purpose processor may be a microprocessor, or the processor may be any conventional processor, or the like. The steps of the method disclosed in connection with the embodiments of the present application may be directly implemented by a hardware decoding processor, or implemented by a combination of hardware and software modules in the decoding processor. The software module can be located in a mature storage medium in the field such as random access memory, flash memory, read-only memory, programmable read-only memory or electrically erasable programmable memory, register. The storage medium is located in the memory, and the processor reads the information in the memory, and completes the steps of the above method in combination with its hardware.
可以理解,本申请实施例中的存储器可以是易失性存储器或非易失性存储器,或可包括易失性和非易失性存储器两者。其中,非易失性存储器可以是只读存储器(read-only memory,ROM)、可编程只读存储器(programmable ROM,PROM)、可擦除可编程只读存储器(erasable PROM,EPROM)、电可擦除可编程只读存储器(electrically EPROM,EEPROM)或闪存。易失性存储器可以是随机存取存储器(random access memory,RAM),其用作外部高速缓存。通过示例性但不是限制性说明,许多形式的RAM可用,例如静态随机存取存储器(static RAM,SRAM)、动态随机存取存储器(dynamic RAM,DRAM)、同步动态随机存取存储器(synchronous DRAM,SDRAM)、双倍数据速率同步动态随机存取存储器(double data rate SDRAM,DDR SDRAM)、增强型同步动态随机存取存储器(enhanced SDRAM,ESDRAM)、 同步连接动态随机存取存储器(synchlink DRAM,SLDRAM)和直接内存总线随机存取存储器(direct rambus RAM,DR RAM)。应注意,本文描述的系统和方法的存储器旨在包括但不限于这些和任意其它适合类型的存储器。It can be understood that the memory in the embodiments of the present application may be a volatile memory or a nonvolatile memory, or may include both volatile and nonvolatile memories. Among them, the non-volatile memory can be read-only memory (read-only memory, ROM), programmable read-only memory (programmable ROM, PROM), erasable programmable read-only memory (erasable PROM, EPROM), electrically programmable Erases programmable read-only memory (electrically EPROM, EEPROM) or flash memory. Volatile memory can be random access memory (RAM), which acts as external cache memory. By way of illustration and not limitation, many forms of RAM are available such as static random access memory (static RAM, SRAM), dynamic random access memory (dynamic RAM, DRAM), synchronous dynamic random access memory (synchronous DRAM, SDRAM), double data rate synchronous dynamic random access memory (double data rate SDRAM, DDR SDRAM), enhanced synchronous dynamic random access memory (enhanced SDRAM, ESDRAM), synchronous connection dynamic random access memory (synchlink DRAM, SLDRAM ) and direct memory bus random access memory (direct rambus RAM, DR RAM). It should be noted that the memory of the systems and methods described herein is intended to include, but not be limited to, these and any other suitable types of memory.
根据本申请实施例提供的方法,本申请还提供一种计算机程序产品,该计算机程序产品包括:计算机程序代码,当该计算机程序代码在计算机上运行时,使得该计算机执行图3至图8所示的实施例中核心网设备、接入网设备或终端设备。According to the method provided in the embodiment of the present application, the present application also provides a computer program product, the computer program product including: computer program code, when the computer program code is run on the computer, the computer is made to execute the computer program described in Fig. 3 to Fig. 8 . The core network device, access network device or terminal device in the illustrated embodiment.
根据本申请实施例提供的方法,本申请还提供一种计算机可读存储介质,该计算机可读存储介质存储有程序代码,当该程序代码在计算机上运行时,使得该计算机执行图3至图8所示的实施例中核心网设备、接入网设备或终端设备。According to the methods provided in the embodiments of the present application, the present application also provides a computer-readable storage medium, the computer-readable storage medium stores program codes, and when the program codes are run on a computer, the computer is made to execute In the embodiment shown in 8, core network equipment, access network equipment or terminal equipment.
根据本申请实施例提供的方法,本申请还提供一种通信系统,其可以包括核心网设备、接入网设备以及图3至图8所示的实施例中的其他网元。According to the methods provided in the embodiments of the present application, the present application further provides a communication system, which may include core network equipment, access network equipment, and other network elements in the embodiments shown in FIGS. 3 to 8 .
上述各个装置实施例和方法实施例中的图3至图8所示的实施例完全对应,由相应的模块或单元执行相应的步骤,例如通信单元(收发器)执行方法实施例中接收或发送的步骤,除发送、接收外的其它步骤可以由处理单元(处理器)执行。具体单元的功能可以基于相应的方法实施例。其中,处理器可以为一个或多个。The embodiments shown in Figure 3 to Figure 8 in the above-mentioned various device embodiments and method embodiments correspond completely, and corresponding steps are performed by corresponding modules or units, for example, the communication unit (transceiver) performs receiving or sending in the method embodiments Steps, other steps except sending and receiving can be executed by a processing unit (processor). The functions of the specific units may be based on the corresponding method embodiments. Wherein, there may be one or more processors.
在本申请的实施例中,各术语及英文缩略语均为方便描述而给出的示例性举例,不应对本申请构成任何限定。本申请并不排除在已有或未来的协议中定义其它能够实现相同或相似功能的术语的可能。In the embodiments of the present application, each term and English abbreviation are illustrative examples given for convenience of description, and shall not constitute any limitation to the present application. This application does not exclude the possibility of defining other terms that can achieve the same or similar functions in existing or future agreements.
在本申请的实施例中,第一、第二以及各种数字编号仅为描述方便进行的区分,并不用来限制本申请实施例的范围。例如,区分不同的核心网设备、区分不同的属性信息等。In the embodiments of the present application, the first, second and various numbers are only for convenience of description, and are not used to limit the scope of the embodiments of the present application. For example, distinguishing different core network devices, distinguishing different attribute information, and so on.
在本说明书中使用的术语“部件”、“模块”、“系统”等用于表示计算机相关的实体、硬件、固件、硬件和软件的组合、软件、或执行中的软件。例如,部件可以是但不限于,在处理器上运行的进程、处理器、对象、可执行文件、执行线程、程序和/或计算机。通过图示,在计算设备上运行的应用和计算设备都可以是部件。一个或多个部件可驻留在进程和/或执行线程中,部件可位于一个计算机上和/或分布在两个或更多个计算机之间。此外,这些部件可从在上面存储有各种数据结构的各种计算机可读存储介质执行。部件可例如根据具有一个或多个数据分组(例如来自与本地系统、分布式系统和/或网络间的另一部件交互的二个部件的数据,例如通过信号与其它系统交互的互联网)的信号通过本地和/或远程进程来通信。The terms "component", "module", "system" and the like are used in this specification to refer to a computer-related entity, hardware, firmware, a combination of hardware and software, software, or software in execution. For example, a component may be, but is not limited to being, a process running on a processor, a processor, an object, an executable, a thread of execution, a program, and/or a computer. By way of illustration, both an application running on a computing device and the computing device can be components. One or more components can reside within a process and/or thread of execution and a component can be localized on one computer and/or distributed between two or more computers. In addition, these components can execute from various computer readable storage media having various data structures stored thereon. A component may, for example, be based on a signal having one or more packets of data, such as data from two components interacting with another component between a local system, a distributed system, and/or a network, such as the Internet through a signal interacting with other systems. Communicate through local and/or remote processes.
本领域普通技术人员可以意识到,结合本文中所公开的实施例描述的各种说明性逻辑块(illustrative logical block)和步骤(step),能够以电子硬件、或者计算机软件和电子硬件的结合来实现。这些功能究竟以硬件还是软件方式来执行,取决于技术方案的特定应用和设计约束条件。专业技术人员可以对每个特定的应用来使用不同方法来实现所描述的功能,但是这种实现不应认为超出本申请的范围。Those of ordinary skill in the art can appreciate that various illustrative logical blocks (illustrative logical blocks) and steps (steps) described in conjunction with the embodiments disclosed herein can be implemented with electronic hardware, or a combination of computer software and electronic hardware. accomplish. Whether these functions are executed by hardware or software depends on the specific application and design constraints of the technical solution. Those skilled in the art may use different methods to implement the described functions for each specific application, but such implementation should not be regarded as exceeding the scope of the present application.
所属领域的技术人员可以清楚地了解到,为描述的方便和简洁,上述描述的系统、装置和单元的具体工作过程,可以基于前述方法实施例中的对应过程,在此不再赘述。Those skilled in the art can clearly understand that for the convenience and brevity of description, the specific working process of the system, device and unit described above can be based on the corresponding process in the foregoing method embodiment, and will not be repeated here.
在本申请所提供的几个实施例中,应该理解到,所揭露的系统、装置和方法,可以通过其它的方式实现。例如,以上所描述的装置实施例仅仅是示意性的,例如,所述单元的划分,仅仅为一种逻辑功能划分,实际实现时可以有另外的划分方式,例如多个单元或组件可以结合或者可以集成到另一个系统,或一些特征可以忽略,或不执行。另一点,所显示或讨论的相互之间的耦合或直接耦合或通信连接可以是通过一些接口,装置或单元的间接耦合或通信 连接,可以是电性,机械或其它的形式。In the several embodiments provided in this application, it should be understood that the disclosed systems, devices and methods may be implemented in other ways. For example, the device embodiments described above are only illustrative. For example, the division of the units is only a logical function division. In actual implementation, there may be other division methods. For example, multiple units or components can be combined or May be integrated into another system, or some features may be ignored, or not implemented. In another point, the mutual coupling or direct coupling or communication connection shown or discussed may be through some interfaces, and the indirect coupling or communication connection of devices or units may be in electrical, mechanical or other forms.
所述作为分离部件说明的单元可以是或者也可以不是物理上分开的,作为单元显示的部件可以是或者也可以不是物理单元,即可以位于一个地方,或者也可以分布到多个网络单元上。可以根据实际的需要选择其中的部分或者全部单元来实现本实施例方案的目的。The units described as separate components may or may not be physically separated, and the components shown as units may or may not be physical units, that is, they may be located in one place, or may be distributed to multiple network units. Part or all of the units can be selected according to actual needs to achieve the purpose of the solution of this embodiment.
另外,在本申请各个实施例中的各功能单元可以集成在一个处理单元中,也可以是各个单元单独物理存在,也可以两个或两个以上单元集成在一个单元中。In addition, each functional unit in each embodiment of the present application may be integrated into one processing unit, each unit may exist separately physically, or two or more units may be integrated into one unit.
在上述实施例中,各功能单元的功能可以全部或部分地通过软件、硬件、固件或者其任意组合来实现。当使用软件实现时,可以全部或部分地以计算机程序产品的形式实现。所述计算机程序产品包括一个或多个计算机指令(程序)。在计算机上加载和执行所述计算机程序指令(程序)时,全部或部分地产生按照本申请实施例所述的流程或功能。所述计算机可以是通用计算机、专用计算机、计算机网络、或者其他可编程装置。所述计算机指令可以存储在计算机可读存储介质中,或者从一个计算机可读存储介质向另一个计算机可读存储介质传输,例如,所述计算机指令可以从一个网站站点、计算机、服务器或数据中心通过有线(例如同轴电缆、光纤、数字用户线(DSL))或无线(例如红外、无线、微波等)方式向另一个网站站点、计算机、服务器或数据中心进行传输。所述计算机可读存储介质可以是计算机能够存取的任何可用介质或者是包含一个或多个可用介质集成的服务器、数据中心等数据存储设备。所述可用介质可以是磁性介质,(例如,软盘、硬盘、磁带)、光介质(例如,DVD)、或者半导体介质(例如固态硬盘(solid state disk,SSD))等。In the above embodiments, the functions of each functional unit may be fully or partially implemented by software, hardware, firmware or any combination thereof. When implemented using software, it may be implemented in whole or in part in the form of a computer program product. The computer program product comprises one or more computer instructions (programs). When the computer program instructions (program) are loaded and executed on the computer, the processes or functions according to the embodiments of the present application will be generated in whole or in part. The computer can be a general purpose computer, a special purpose computer, a computer network, or other programmable devices. The computer instructions may be stored in or transmitted from one computer-readable storage medium to another computer-readable storage medium, for example, the computer instructions may be transmitted from a website, computer, server or data center Transmission to another website site, computer, server, or data center by wired (eg, coaxial cable, optical fiber, digital subscriber line (DSL)) or wireless (eg, infrared, wireless, microwave, etc.). The computer-readable storage medium may be any available medium that can be accessed by a computer, or a data storage device such as a server or a data center integrated with one or more available media. The available medium may be a magnetic medium (such as a floppy disk, a hard disk, or a magnetic tape), an optical medium (such as a DVD), or a semiconductor medium (such as a solid state disk (solid state disk, SSD)), etc.
所述功能如果以软件功能单元的形式实现并作为独立的产品销售或使用时,可以存储在一个计算机可读存储介质中。基于这样的理解,本申请的技术方案本质上或者说对现有技术做出贡献的部分或者该技术方案的部分可以以软件产品的形式体现出来,该计算机软件产品存储在一个存储介质中,包括若干指令用以使得一台计算机设备(可以是个人计算机,服务器,或者网络设备等)执行本申请各个实施例所述方法的全部或部分步骤。而前述的存储介质包括:U盘、移动硬盘、只读存储器(read-only memory,ROM)、随机存取存储器(random access memory,RAM)、磁碟或者光盘等各种可以存储程序代码的介质。If the functions are realized in the form of software function units and sold or used as independent products, they can be stored in a computer-readable storage medium. Based on this understanding, the technical solution of the present application is essentially or the part that contributes to the prior art or the part of the technical solution can be embodied in the form of a software product, and the computer software product is stored in a storage medium, including Several instructions are used to make a computer device (which may be a personal computer, a server, or a network device, etc.) execute all or part of the steps of the methods described in the various embodiments of the present application. The aforementioned storage medium includes: U disk, mobile hard disk, read-only memory (read-only memory, ROM), random access memory (random access memory, RAM), magnetic disk or optical disc and other media that can store program codes. .
以上所述,仅为本申请的具体实施方式,但本申请的保护范围并不局限于此,任何熟悉本技术领域的技术人员在本申请揭露的技术范围内,可轻易想到变化或替换,都应涵盖在本申请的保护范围之内。因此,本申请的保护范围应以所述权利要求的保护范围为准。The above is only a specific implementation of the application, but the scope of protection of the application is not limited thereto. Anyone familiar with the technical field can easily think of changes or substitutions within the technical scope disclosed in the application. Should be covered within the protection scope of this application. Therefore, the protection scope of the present application should be determined by the protection scope of the claims.

Claims (50)

  1. 一种用于通信的方法,其特征在于,所述方法包括:A method for communication, characterized in that the method comprises:
    核心网设备从接入网设备接收第一消息,所述第一消息包括终端设备要接入的所述接入网设备的第一小区的小区标识;The core network device receives a first message from the access network device, where the first message includes a cell identifier of a first cell of the access network device to be accessed by the terminal device;
    所述核心网设备基于所述第一小区的小区标识确定所述第一小区不支持在线签约;以及The core network device determines, based on the cell identity of the first cell, that the first cell does not support online subscription; and
    所述核心网设备针对所述终端设备对所述第一小区的接入进行控制。The core network device controls the terminal device's access to the first cell.
  2. 根据权利要求1所述的方法,其特征在于,所述方法还包括:The method according to claim 1, further comprising:
    所述核心网设备从所述接入网设备接收小区能力信息,所述小区能力信息包括针对所述接入网设备的至少一个小区的小区标识和对应的在线签约能力,所述至少一个小区包括所述第一小区;以及The core network device receives cell capability information from the access network device, the cell capability information includes a cell identifier and a corresponding online subscription capability for at least one cell of the access network device, and the at least one cell includes said first cell; and
    所述核心网设备基于所述小区能力信息和所述第一小区的小区标识,确定所述第一小区不支持所述在线签约。The core network device determines that the first cell does not support the online subscription based on the cell capability information and the cell identifier of the first cell.
  3. 根据权利要求2所述的方法,其特征在于,所述方法还包括:The method according to claim 2, further comprising:
    所述核心网设备从所述接入网设备接收更新消息,所述更新消息指示对所述小区能力信息的更新。The core network device receives an update message from the access network device, where the update message indicates an update to the cell capability information.
  4. 根据权利要求1所述的方法,其特征在于,所述第一消息还指示所述第一小区的在线签约能力,并且所述方法还包括:The method according to claim 1, wherein the first message also indicates the online subscription capability of the first cell, and the method further comprises:
    所述核心网设备基于所述第一小区的小区标识和所述第一小区的在线签约能力,确定所述第一小区不支持所述在线签约。The core network device determines that the first cell does not support the online subscription based on the cell identifier of the first cell and the online subscription capability of the first cell.
  5. 根据权利要求1所述的方法,其特征在于,对所述第一小区的接入进行控制包括:The method according to claim 1, wherein controlling access to the first cell comprises:
    所述核心网设备限制所述终端设备对所述第一小区的接入。The core network device restricts the terminal device's access to the first cell.
  6. 根据权利要求5所述的方法,其特征在于,确定限制所述终端设备对所述第一小区的接入基于以下至少一项:The method according to claim 5, wherein determining to restrict the terminal device's access to the first cell is based on at least one of the following:
    所述第一消息中包括在线签约指示;The first message includes an online subscription indication;
    凭证服务器对所述终端设备的授权失败;或the credential server fails to authorize said terminal device; or
    不存在针对所述终端设备的用户面上下文。There is no user plane context for the terminal device.
  7. 根据权利要求5所述的方法,其特征在于,所述方法还包括:The method according to claim 5, wherein the method further comprises:
    所述核心网设备确定所述终端设备对所述第一小区的接入处于在线签约阶段,并且其中对所述第一小区的接入进行控制包括:The core network device determines that the terminal device's access to the first cell is in an online subscription phase, and controlling access to the first cell includes:
    所述核心网设备限制所述终端设备对所述第一小区的接入。The core network device restricts the terminal device's access to the first cell.
  8. 根据权利要求5或7所述的方法,其特征在于,所述核心网设备限制所述终端设备对所述第一小区的接入包括:The method according to claim 5 or 7, wherein the core network device restricting the terminal device from accessing the first cell includes:
    所述核心网设备向所述终端设备发送第二消息,所述第二消息包括以下至少一项:拒绝指示、拒绝原因值或重定向指示。The core network device sends a second message to the terminal device, where the second message includes at least one of the following: a rejection indication, a rejection reason value, or a redirection indication.
  9. 根据权利要求1所述的方法,其特征在于,所述方法还包括:The method according to claim 1, further comprising:
    所述核心网设备确定所述终端设备对所述第一小区的接入处于远程配置阶段,并且其中对所述第一小区的接入进行控制包括:The core network device determines that the terminal device's access to the first cell is in a remote configuration stage, and controlling access to the first cell includes:
    所述核心网设备确定不限制所述终端设备对所述第一小区的接入。The core network device determines not to restrict the terminal device's access to the first cell.
  10. 根据权利要求1所述的方法,其特征在于,所述方法还包括:The method according to claim 1, further comprising:
    所述核心网设备确定所述终端设备对所述第一小区的接入处于远程配置阶段,并且The core network device determines that the terminal device's access to the first cell is in a remote configuration phase, and
    其中对所述第一小区的接入进行控制包括:Wherein, controlling the access of the first cell includes:
    所述核心网设备限制所述终端设备对所述第一小区的接入。The core network device restricts the terminal device's access to the first cell.
  11. 根据权利要求7至10中任一项所述的方法,其特征在于,所述核心网设备基于以下至少一项确定所述接入处于所述在线签约阶段:The method according to any one of claims 7 to 10, wherein the core network device determines that the access is in the online subscription phase based on at least one of the following:
    如果所述第一消息中包括在线签约指示,则所述接入处于所述在线签约阶段;If the first message includes an online subscription indication, the access is in the online subscription phase;
    如果所述凭证服务器对所述终端设备的授权失败,则所述接入处于所述在线签约阶段;或said access is in said online subscription phase if said credential server fails to authorize said terminal device; or
    如果不存在针对所述终端设备的用户面上下文,则所述接入处于所述在线签约阶段。If there is no user plane context for the terminal device, the access is in the online subscription phase.
  12. 根据权利要求7至10中任一项所述的方法,其特征在于,所述核心网设备基于以下至少一项确定所述接入处于所述远程配置阶段:The method according to any one of claims 7 to 10, wherein the core network device determines that the access is in the remote configuration stage based on at least one of the following:
    第一消息中不包括所述在线签约指示,则所述接入处于所述远程配置阶段;If the online subscription indication is not included in the first message, the access is in the remote configuration stage;
    如果所述凭证服务器对所述终端设备的授权成功,则所述接入处于所述远程配置阶段;或If the credential server successfully authorizes the terminal device, the access is in the remote configuration phase; or
    如果存在所述用户面上下文,则所述接入处于所述远程配置阶段。If the user plane context exists, the access is in the remote configuration phase.
  13. 一种用于通信的方法,其特征在于,所述方法包括:A method for communication, characterized in that the method comprises:
    接入网设备向核心网设备发送第一消息,所述第一消息包括终端设备要接入的所述接入网设备的第一小区的小区标识;The access network device sends a first message to the core network device, where the first message includes the cell identifier of the first cell of the access network device to be accessed by the terminal device;
    所述接入网设备从所述核心网设备接收关于所述第一小区的接入的第一指示信息;receiving, by the access network device, first indication information about access to the first cell from the core network device;
    所述接入网设备确定所述第一小区不支持在线签约;以及The access network device determines that the first cell does not support online subscription; and
    所述接入网设备基于所述第一指示信息,针对所述终端设备对所述第一小区的接入进行控制。The access network device controls the terminal device's access to the first cell based on the first indication information.
  14. 根据权利要求13所述的方法,其特征在于,所述第一指示信息指示限制所述终端设备对所述第一小区的接入,并且其中对所述第一小区的接入进行控制包括:The method according to claim 13, wherein the first indication information indicates that the terminal device is restricted from accessing the first cell, and controlling access to the first cell includes:
    所述接入网设备限制所述终端设备对所述第一小区的接入。The access network device restricts the terminal device's access to the first cell.
  15. 根据权利要求13所述的方法,其特征在于,所述接入网设备限制所述终端设备对所述第一小区的接入包括:The method according to claim 13, wherein the access network device restricting the terminal device from accessing the first cell comprises:
    所述接入网设备向所述终端设备发送第三消息,所述第三消息包括以下至少一项:拒绝指示、拒绝原因值或针对所述终端设备的重定向指示。The access network device sends a third message to the terminal device, where the third message includes at least one of the following: a rejection indication, a rejection reason value, or a redirection indication for the terminal device.
  16. 根据权利要求14所述的方法,其特征在于,所述方法还包括:The method according to claim 14, characterized in that the method further comprises:
    所述接入网设备从所述核心网设备接收第二指示信息,所述第二指示信息指示取消对所述第一小区的接入的限制。The access network device receives second indication information from the core network device, where the second indication information indicates to cancel the restriction on access to the first cell.
  17. 一种用于通信的方法,其特征在于,所述方法包括:A method for communication, characterized in that the method comprises:
    终端设备从接入网设备接收在线签约能力指示,所述在线签约能力指示包括所述接入网设备的至少一个小区的在线签约能力信息,其中,所述至少一个小区的在线签约能力信息包括针对所述接入网设备的至少一个小区的小区标识和对应的在线签约能力;The terminal device receives an online subscription capability indication from the access network device, where the online subscription capability indication includes online subscription capability information of at least one cell of the access network device, where the online subscription capability information of the at least one cell includes The cell identity of at least one cell of the access network device and the corresponding online subscription capability;
    所述终端设备基于所述至少一个小区的在线签约能力信息,从所述至少一个小区中选择第二小区,所述第二小区支持在线签约;以及The terminal device selects a second cell from the at least one cell based on the online subscription capability information of the at least one cell, and the second cell supports online subscription; and
    所述终端设备向所述接入网设备发送针对所述第二小区的在线签约请求。The terminal device sends an online subscription request for the second cell to the access network device.
  18. 根据权利要求17所述的方法,其特征在于,选择所述第二小区包括:The method according to claim 17, wherein selecting the second cell comprises:
    所述终端设备基于所述至少一个小区的在线签约能力信息,确定所述至少一个小区中支持在线签约的候选小区;以及The terminal device determines a candidate cell supporting online subscription in the at least one cell based on the online subscription capability information of the at least one cell; and
    所述终端设备从所述候选小区中选择所述第二小区以用于驻留,the terminal device selects the second cell for camping on from among the candidate cells,
    其中对所述候选小区的确定在所述终端设备的接入层实现。The determination of the candidate cell is implemented at the access layer of the terminal device.
  19. 根据权利要求17所述的方法,其特征在于,所述方法还包括:The method according to claim 17, further comprising:
    所述终端设备从所述核心网设备接收第四消息,所述第四消息指示所述在线签约完成;以及The terminal device receives a fourth message from the core network device, the fourth message indicating that the online subscription is completed; and
    所述终端设备针对所述至少一个小区进行小区重选或小区切换,所述小区重选或小区切换无需基于所述至少一个小区的在线签约能力信息。The terminal device performs cell reselection or cell switching for the at least one cell, and the cell reselection or cell switching does not need to be based on online subscription capability information of the at least one cell.
  20. 根据权利要求17所述的方法,其特征在于,所述方法还包括:The method according to claim 17, further comprising:
    所述终端设备基于所述至少一个小区的在线签约能力信息针对所述至少一个小区进行小区重选或小区切换。The terminal device performs cell reselection or cell switching for the at least one cell based on the online subscription capability information of the at least one cell.
  21. 一种通信装置,其特征在于,所述装置包括:A communication device, characterized in that the device includes:
    收发单元,被配置为从接入网设备接收第一消息,所述第一消息包括终端设备要接入的所述接入网设备的第一小区的小区标识;a transceiver unit configured to receive a first message from an access network device, where the first message includes a cell identifier of a first cell of the access network device to be accessed by a terminal device;
    处理单元,被配置为基于所述第一小区的小区标识确定所述第一小区不支持在线签约;以及a processing unit configured to determine based on the cell identity of the first cell that the first cell does not support online subscription; and
    所述处理单元,还被配置为针对所述终端设备对所述第一小区的接入进行控制。The processing unit is further configured to control the terminal device's access to the first cell.
  22. 根据权利要求21所述的装置,其特征在于,The device according to claim 21, characterized in that,
    所述收发单元,还被配置为从所述接入网设备接收小区能力信息,所述小区能力信息包括针对所述接入网设备的至少一个小区的小区标识和对应的在线签约能力,所述至少一个小区包括所述第一小区;以及The transceiving unit is further configured to receive cell capability information from the access network device, the cell capability information includes a cell identity and corresponding online subscription capability for at least one cell of the access network device, the at least one cell includes said first cell; and
    所述处理单元,还被配置为基于所述小区能力信息和所述第一小区的小区标识,确定所述第一小区不支持所述在线签约。The processing unit is further configured to determine that the first cell does not support the online subscription based on the cell capability information and the cell identity of the first cell.
  23. 根据权利要求22所述的装置,其特征在于,所述收发单元还被配置为:The device according to claim 22, wherein the transceiver unit is further configured as:
    从所述接入网设备接收更新消息,所述更新消息指示对所述小区能力信息的更新。An update message is received from the access network device, the update message indicating an update to the cell capability information.
  24. 根据权利要求21所述的装置,其特征在于,所述第一消息还指示所述第一小区的在线签约能力,并且所述处理单元还被配置为:The device according to claim 21, wherein the first message also indicates the online subscription capability of the first cell, and the processing unit is further configured to:
    基于所述第一小区的小区标识和所述第一小区的在线签约能力,确定所述第一小区不支持所述在线签约。Based on the cell identifier of the first cell and the online subscription capability of the first cell, determine that the first cell does not support the online subscription.
  25. 根据权利要求21所述的装置,其特征在于,所述处理单元被配置为:The device according to claim 21, wherein the processing unit is configured to:
    限制所述终端设备对所述第一小区的接入。Restricting the terminal device's access to the first cell.
  26. 根据权利要求25所述的装置,其特征在于,所述处理单元被配置为确定限制所述终端设备对所述第一小区的接入基于以下至少一项:The apparatus according to claim 25, wherein the processing unit is configured to determine to restrict the terminal device's access to the first cell based on at least one of the following:
    所述第一消息中包括在线签约指示;The first message includes an online subscription indication;
    凭证服务器对所述终端设备的授权失败;或the credential server fails to authorize said terminal device; or
    不存在针对所述终端设备的用户面上下文。There is no user plane context for the terminal device.
  27. 根据权利要求25所述的装置,其特征在于,所述处理单元还被配置为:The device according to claim 25, wherein the processing unit is further configured to:
    确定所述终端设备对所述第一小区的接入处于在线签约阶段;determining that the terminal device's access to the first cell is in an online subscription phase;
    限制所述终端设备对所述第一小区的接入。Restricting the terminal device's access to the first cell.
  28. 根据权利要求25或27所述的装置,其特征在于,所述处理单元被配置为:The device according to claim 25 or 27, wherein the processing unit is configured to:
    向所述终端设备发送第二消息,所述第二消息包括以下至少一项:拒绝指示、拒绝原因值或重定向指示。Sending a second message to the terminal device, where the second message includes at least one of the following: a rejection indication, a rejection reason value, or a redirection indication.
  29. 根据权利要求21所述的装置,其特征在于,所述处理单元被配置为:The device according to claim 21, wherein the processing unit is configured to:
    确定所述终端设备对所述第一小区的接入处于远程配置阶段;determining that the terminal device's access to the first cell is in a remote configuration phase;
    确定不限制所述终端设备对所述第一小区的接入。It is determined not to restrict the terminal device's access to the first cell.
  30. 根据权利要求21所述的装置,其特征在于,所述处理单元被配置为:The device according to claim 21, wherein the processing unit is configured to:
    确定所述终端设备对所述第一小区的接入处于远程配置阶段;determining that the terminal device's access to the first cell is in a remote configuration phase;
    限制所述终端设备对所述第一小区的接入。Restricting the terminal device's access to the first cell.
  31. 根据权利要求27至30中任一项所述的装置,其特征在于,所述处理单元被配置为基于以下至少一项确定所述接入处于所述在线签约阶段:The apparatus according to any one of claims 27 to 30, wherein the processing unit is configured to determine that the access is in the online subscription phase based on at least one of the following:
    如果所述第一消息中包括在线签约指示,则所述接入处于所述在线签约阶段;If the first message includes an online subscription indication, the access is in the online subscription phase;
    如果所述凭证服务器对所述终端设备的授权失败,则所述接入处于所述在线签约阶段;或said access is in said online subscription phase if said credential server fails to authorize said terminal device; or
    如果不存在针对所述终端设备的用户面上下文,则所述接入处于所述在线签约阶段。If there is no user plane context for the terminal device, the access is in the online subscription phase.
  32. 根据权利要求27至30中任一项所述的装置,其特征在于,所述处理单元被配置为基于以下至少一项确定所述接入处于所述远程配置阶段:The device according to any one of claims 27 to 30, wherein the processing unit is configured to determine that the access is in the remote configuration stage based on at least one of the following:
    第一消息中不包括所述在线签约指示,则所述接入处于所述远程配置阶段;If the online subscription indication is not included in the first message, the access is in the remote configuration stage;
    如果所述凭证服务器对所述终端设备的授权成功,则所述接入处于所述远程配置阶段;或If the credential server successfully authorizes the terminal device, the access is in the remote configuration phase; or
    如果存在所述用户面上下文,则所述接入处于所述远程配置阶段。If the user plane context exists, the access is in the remote configuration phase.
  33. 一种通信装置,其特征在于,所述装置包括:A communication device, characterized in that the device includes:
    收发单元,被配置为向核心网设备发送第一消息,所述第一消息包括终端设备要接入的所述通信装置的第一小区的小区标识;a transceiver unit configured to send a first message to a core network device, where the first message includes a cell identifier of a first cell of the communication device to be accessed by a terminal device;
    所述收发单元,被配置为从所述核心网设备接收关于所述第一小区的接入的第一指示信息;The transceiving unit is configured to receive first indication information about the access of the first cell from the core network device;
    处理单元,被配置为确定所述第一小区不支持在线签约;以及a processing unit configured to determine that the first cell does not support online subscription; and
    所述处理单元,还被配置为基于所述第一指示信息,针对所述终端设备对所述第一小区的接入进行控制。The processing unit is further configured to control access of the terminal device to the first cell based on the first indication information.
  34. 根据权利要求33所述的装置,其特征在于,所述第一指示信息指示限制所述终端设备对所述第一小区的接入,并且所述处理单元还被配置为:The apparatus according to claim 33, wherein the first indication information indicates that the terminal device is restricted from accessing the first cell, and the processing unit is further configured to:
    限制所述终端设备对所述第一小区的接入。Restricting the terminal device's access to the first cell.
  35. 根据权利要求33所述的装置,其特征在于,所述处理单元被配置为:The device according to claim 33, wherein the processing unit is configured to:
    向所述终端设备发送第三消息,所述第三消息包括以下至少一项:拒绝指示、拒绝原因值或针对所述终端设备的重定向指示。Sending a third message to the terminal device, where the third message includes at least one of the following: a rejection indication, a rejection reason value, or a redirection indication for the terminal device.
  36. 根据权利要求34所述的装置,其特征在于,所述收发单元还被配置为:The device according to claim 34, wherein the transceiver unit is further configured as:
    从所述核心网设备接收第二指示信息,所述第二指示信息指示取消对所述第一小区的接入的限制。Receive second indication information from the core network device, where the second indication information indicates to cancel the restriction on access to the first cell.
  37. 一种通信装置,其特征在于,所述装置包括:A communication device, characterized in that the device includes:
    收发单元,被配置从接入网设备接收在线签约能力指示,所述在线签约能力指示包括所 述接入网设备的至少一个小区的在线签约能力信息,其中,所述至少一个小区的在线签约能力信息包括针对所述接入网设备的至少一个小区的小区标识和对应的在线签约能力;A transceiver unit configured to receive an online subscription capability indication from an access network device, where the online subscription capability indication includes online subscription capability information of at least one cell of the access network device, wherein the online subscription capability of the at least one cell The information includes a cell identity and a corresponding online subscription capability for at least one cell of the access network device;
    处理单元,被配置为基于所述至少一个小区的在线签约能力信息,从所述至少一个小区中选择第二小区,所述第二小区支持在线签约;以及A processing unit configured to select a second cell from the at least one cell based on the online subscription capability information of the at least one cell, and the second cell supports online subscription; and
    所述收发单元,还被配置为向所述接入网设备发送针对所述第二小区的在线签约请求。The transceiving unit is further configured to send an online subscription request for the second cell to the access network device.
  38. 根据权利要求37所述的装置,其特征在于,所述处理单元被配置为:The device according to claim 37, wherein the processing unit is configured to:
    基于所述至少一个小区的在线签约能力信息,确定所述至少一个小区中支持在线签约的候选小区;以及Based on the online subscription capability information of the at least one cell, determine a candidate cell supporting online subscription in the at least one cell; and
    从所述候选小区中选择所述第二小区以用于驻留,selecting said second cell for camping on from among said candidate cells,
    其中对所述候选小区的确定在所述通信装置的接入层实现。The determination of the candidate cell is implemented at the access layer of the communication device.
  39. 根据权利要求37所述的装置,其特征在于,Apparatus according to claim 37, characterized in that
    所述收发单元还被配置为:从所述核心网设备接收第四消息,所述第四消息指示所述在线签约完成;以及The transceiving unit is further configured to: receive a fourth message from the core network device, the fourth message indicating that the online subscription is completed; and
    所述处理单元还被配置为:针对所述至少一个小区进行小区重选或小区切换,所述小区重选或小区切换无需基于所述至少一个小区的在线签约能力信息。The processing unit is further configured to: perform cell reselection or cell switching for the at least one cell, and the cell reselection or cell switching does not need to be based on online subscription capability information of the at least one cell.
  40. 根据权利要求37所述的装置,其特征在于,所述处理单元还被配置为:The device according to claim 37, wherein the processing unit is further configured to:
    基于所述至少一个小区的在线签约能力信息针对所述至少一个小区进行小区重选或小区切换。Performing cell reselection or cell switching for the at least one cell based on the online subscription capability information of the at least one cell.
  41. 根据权利要求37至40中任一项所述的装置,其特征在于,所述装置为终端设备。The device according to any one of claims 37 to 40, wherein the device is a terminal device.
  42. 一种通信装置,用于执行根据权利要求1至12中任一项所述的方法、或者执行根据权利要求13至16中任一项所述的方法、或者执行根据权利要求17至20中任一项所述的方法。A communication device, configured to perform the method according to any one of claims 1 to 12, or to perform the method according to any one of claims 13 to 16, or to perform the method according to any one of claims 17 to 20 one of the methods described.
  43. 一种通信装置,其特征在于,包括通信接口和至少一个处理器,所述通信接口和所述至少一个处理器通过线路互联,A communication device, characterized in that it includes a communication interface and at least one processor, the communication interface and the at least one processor are interconnected by a line,
    所述通信接口用于执行权利要求1到12任一项所述的方法中,在所述装置侧进行消息接收和发送的操作;The communication interface is used to execute the method according to any one of claims 1 to 12, and the operation of receiving and sending messages is performed on the device side;
    所述至少一个处理器调用指令,执行权利要求1到12任一项所述的方法中,在所述装置进行的消息处理或控制操作。The at least one processor invokes an instruction to execute the message processing or control operation performed on the device in the method according to any one of claims 1 to 12.
  44. 一种通信装置,其特征在于,包括通信接口和至少一个处理器,所述通信接口和所述至少一个处理器通过线路互联,A communication device, characterized in that it includes a communication interface and at least one processor, the communication interface and the at least one processor are interconnected by a line,
    所述通信接口用于执行权利要求13到16任一项所述的方法中,在所述装置侧进行消息接收和发送的操作;The communication interface is used to execute the method according to any one of claims 13 to 16, and the operation of receiving and sending messages is performed on the device side;
    所述至少一个处理器调用指令,执行权利要求13到16任一项所述的方法中,在所述装置进行的消息处理或控制操作。The at least one processor invokes an instruction to execute the message processing or control operation performed on the device in the method according to any one of claims 13 to 16.
  45. 一种通信装置,其特征在于,包括通信接口和至少一个处理器,所述通信接口和所述至少一个处理器通过线路互联,A communication device, characterized in that it includes a communication interface and at least one processor, the communication interface and the at least one processor are interconnected by a line,
    所述通信接口用于执行权利要求17到20任一项所述的方法中,在所述装置侧进行消息接收和发送的操作;The communication interface is used to execute the method according to any one of claims 17 to 20, and the operation of receiving and sending messages is performed on the device side;
    所述至少一个处理器调用指令,执行权利要求17到20任一项所述的方法中,在所述装置进行的消息处理或控制操作。The at least one processor invokes an instruction to execute the message processing or control operation performed on the device in the method according to any one of claims 17 to 20.
  46. 根据权利要求45所述的装置,其特征在于,所述装置为终端设备。The device according to claim 45, wherein the device is a terminal device.
  47. 一种通信系统,包括:A communication system comprising:
    如权利要求21至32中任一项或者如权利要求43所述的通信装置;A communication device as claimed in any one of claims 21 to 32 or claim 43;
    如权利要求33至36中任一项或者如权利要求44所述的通信装置;和/或A communication device as claimed in any one of claims 33 to 36 or as claimed in claim 44; and/or
    如权利要求37至41中任一项或者如权利要求45或46所述的通信装置。A communication device as claimed in any one of claims 37 to 41 or as claimed in claim 45 or 46.
  48. 一种计算机可读存储介质,所述计算机可读存储介质上存储有计算机程序,所述计算机程序被处理器执行时实现根据权利要求1至12中任一项、权利要求13至16中任一项、或权利要求17至20中任一项的方法所述的操作。A computer-readable storage medium, where a computer program is stored on the computer-readable storage medium, and when the computer program is executed by a processor, the computer program according to any one of claims 1 to 12 and any one of claims 13 to 16 is implemented. item, or the operation described in any one of claims 17 to 20.
  49. 一种芯片,被配置为执行根据权利要求1至12中任一项、权利要求13至16中任一项、或权利要求17至20中任一项的方法所述的操作。A chip configured to perform the operations recited in the method of any one of claims 1-12, any one of claims 13-16, or any one of claims 17-20.
  50. 一种包含指令的计算机程序产品,当其在计算机上运行时,使得计算机执行根据权利要求1至12中任一项、权利要求13至16中任一项、或权利要求14至27中任一项的所述的方法。A computer program product comprising instructions which, when run on a computer, cause the computer to execute any of claims 1 to 12, 13 to 16, or 14 to 27 Item's described method.
PCT/CN2022/092776 2021-05-14 2022-05-13 Onboarding method, communication apparatus, medium and chip WO2022237898A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202110533778.9A CN115348582A (en) 2021-05-14 2021-05-14 Method, communication device, medium and chip for online signing
CN202110533778.9 2021-05-14

Publications (1)

Publication Number Publication Date
WO2022237898A1 true WO2022237898A1 (en) 2022-11-17

Family

ID=83977906

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2022/092776 WO2022237898A1 (en) 2021-05-14 2022-05-13 Onboarding method, communication apparatus, medium and chip

Country Status (2)

Country Link
CN (1) CN115348582A (en)
WO (1) WO2022237898A1 (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112153757A (en) * 2019-06-29 2020-12-29 华为技术有限公司 Communication method, device and system
CN112543455A (en) * 2019-01-31 2021-03-23 华为技术有限公司 Communication method, device and system

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112543455A (en) * 2019-01-31 2021-03-23 华为技术有限公司 Communication method, device and system
CN112153757A (en) * 2019-06-29 2020-12-29 华为技术有限公司 Communication method, device and system

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
CATT: "Further Discussion on UE Onboarding and Provisioning for NPN", 3GPP DRAFT; R2-2102915, vol. RAN WG2, 2 April 2021 (2021-04-02), pages 1 - 3, XP052174486 *
OPPO: "Support UE onboarding and provisioning for NPN", 3GPP DRAFT; R2-2104768, vol. RAN WG2, 11 May 2021 (2021-05-11), pages 1 - 12, XP052006530 *
VIVO: "Remaining issues on supporting UE onboarding and provisioning", 3GPP DRAFT; R2-2105292, vol. RAN WG2, 11 May 2021 (2021-05-11), pages 1 - 4, XP052006938 *

Also Published As

Publication number Publication date
CN115348582A (en) 2022-11-15

Similar Documents

Publication Publication Date Title
KR102310821B1 (en) Target cell access method and device
US10779345B2 (en) User plane relocation techniques in wireless communication systems
WO2018161796A1 (en) Connection processing method and apparatus in multi-access scenario
US20240064514A1 (en) Delegated data connection
US20140376515A1 (en) Methods, apparatuses and computer program products for wlan discovery and handover in coexisted lte and wlan networks
WO2023280121A1 (en) Method and apparatus for obtaining edge service
WO2020224622A1 (en) Information configuration method and device
US20230319556A1 (en) Key obtaining method and communication apparatus
US20170339626A1 (en) Method, apparatus and system
US20160337922A1 (en) RAN-WLAN Traffic Steering
WO2022199451A1 (en) Session switching method and apparatus
WO2022247812A1 (en) Authentication method, communication device, and system
CN113727342B (en) Network registration method and device
WO2023185880A1 (en) Access network device determining method
JP7053878B2 (en) Improved cell access procedure
KR20240060670A (en) Communication methods and devices
WO2022237898A1 (en) Onboarding method, communication apparatus, medium and chip
BR112020026846A2 (en) ACCESS CONTROL FOR USER EQUIPMENT IN A CONNECTED MODE
CN116325996A (en) Paging management
WO2021087696A1 (en) Identity authentication method and communication device
WO2021087801A1 (en) Communication method, communication device, and communication system
US20240155325A1 (en) Information obtaining method and apparatus, and system
US11812375B2 (en) Simultaneous network slice usage via dual connectivity
WO2022170798A1 (en) Strategy determining method and communication apparatus
WO2023160199A1 (en) Method and apparatus for accessing communication network

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 22806860

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 22806860

Country of ref document: EP

Kind code of ref document: A1