WO2024040818A1 - Near-field communication control method, traffic statistics method, apparatus, and medium - Google Patents

Near-field communication control method, traffic statistics method, apparatus, and medium Download PDF

Info

Publication number
WO2024040818A1
WO2024040818A1 PCT/CN2022/140779 CN2022140779W WO2024040818A1 WO 2024040818 A1 WO2024040818 A1 WO 2024040818A1 CN 2022140779 W CN2022140779 W CN 2022140779W WO 2024040818 A1 WO2024040818 A1 WO 2024040818A1
Authority
WO
WIPO (PCT)
Prior art keywords
terminal
downstream
3gpp
session
relay terminal
Prior art date
Application number
PCT/CN2022/140779
Other languages
French (fr)
Chinese (zh)
Inventor
刘洁
毕奇
林奕琳
陈思柏
Original Assignee
中国电信股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中国电信股份有限公司 filed Critical 中国电信股份有限公司
Publication of WO2024040818A1 publication Critical patent/WO2024040818A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/24Accounting or billing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/80Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W76/00Connection management
    • H04W76/10Connection setup
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W88/00Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
    • H04W88/02Terminal devices
    • H04W88/04Terminal devices adapted for relaying to or from another terminal or user

Definitions

  • the present disclosure relates to the field of communication technology, and specifically, to a near-field communication control method, traffic statistics method, device, and computer-readable storage medium.
  • Near field communication is a new communication mode proposed by the Third Generation Partnership Project (3GPP) organization and defined as a method that allows mobile terminals to communicate through PC5 without mobile network coverage.
  • 3GPP Third Generation Partnership Project
  • WIFI and other near-domain connection technologies directly perform device-to-device (D2D) communication or rely on other new terminals to connect to mobile networks.
  • D2D device-to-device
  • end users can connect to other terminals (also called relay terminals) through wireless technology, and connect to the Internet through the mobile communication network services of the relay terminal, thereby improving the spectrum efficiency of the communication system.
  • embodiments of the present disclosure provide a near-field communication control method, a traffic statistics method, a device, and a computer-readable storage medium to facilitate traceability and statistics of business traffic in near-field communication.
  • a near-domain communication control method is provided, which is applied to a terminal.
  • the terminal is indirectly connected to the base station through an upstream relay terminal.
  • the upstream relay terminal includes at least one level one relay terminal.
  • the relay terminal connects to the base station through the new air interface NR.
  • the method includes: if it is detected that the connection with the upstream relay terminal is successfully established, then establishing the first non-3rd Generation Partnership Project 3GPP session of the terminal, and the first non-3GPP session communicates with the terminal through The first non-3GPP access connection established by the corresponding non-3GPP interworking function N3IWF is established; among them, the first non-3GPP session carries the service traffic initiated and encapsulated by the terminal; a connection is established with the downstream terminal, and the service of the downstream terminal is The traffic is bypassed and transparently transmitted to separate it from the session traffic of the terminal itself, and the service traffic of the downstream terminal is forwarded through the connection with the upstream relay terminal, so that the downstream terminal passes through the second non-3GPP established by the N3IWF corresponding to the downstream terminal.
  • the access connection establishes a second non-3GPP session; wherein the second non-3GPP session carries service traffic initiated and encapsulated by the downstream terminal.
  • the terminal is a remote terminal; before establishing a first non-3GPP session of the terminal if it is detected that the connection with the upstream relay terminal is successfully established, the method further includes: obtaining an accessible candidate upstream relay terminal. Set; confirm the upstream relay terminal to be connected based on the information of each candidate upstream relay terminal in the candidate upstream relay terminal set; initiate a connection request to the upstream relay terminal so that the upstream relay terminal establishes a connection with the terminal according to the connection request .
  • initiating a connection request to the upstream relay terminal so that the upstream relay terminal establishes a connection with the terminal according to the connection request includes: generating a connection request according to terminal information corresponding to the terminal; sending a connection request to the upstream relay terminal, This enables the upstream relay terminal to verify the terminal information corresponding to the terminal in the connection request, and allocate the Internet protocol address corresponding to the terminal after passing the verification; establish a connection with the upstream relay terminal based on the Internet protocol address.
  • the terminal is a remote terminal; if it is detected that the connection with the upstream relay terminal is successfully established, the first non-3GPP session of the terminal is established, and the first non-3GPP session passes through the non-3rd generation partner corresponding to the terminal.
  • the establishment of the first non-3GPP access connection established by the planned interworking function N3IWF includes: generating a first Internet key exchange protocol IKE packet according to the terminal information corresponding to the terminal, and sending the first IKE packet to the upstream relay terminal, so that the upstream After the terminal forwards the first IKE packet to the N3IWF corresponding to the terminal, so that the N3IWF corresponding to the terminal passes the verification of the first IKE packet, the first data based on the Internet Protocol Security Network Protocol IPSec is established between the N3IWF corresponding to the terminal and the terminal.
  • Transmission tunnel establish a first non-3GPP access connection via the upstream relay terminal through the N3IWF corresponding to the terminal according to the first data transmission tunnel; establish a first non-3GPP session of the terminal according to the first non-3GPP access connection.
  • a connection is established with the downstream terminal, the service traffic of the downstream terminal is bypassed and transparently transmitted, and the service traffic of the downstream terminal is forwarded through the connection with the upstream relay terminal, so that the downstream terminal establishes a connection with the corresponding N3IWF
  • the second non-3GPP access connection establishes a second non-3GPP session, including: receiving the second IKE packet sent by the downstream terminal, the second IKE packet is generated based on the terminal information corresponding to the downstream terminal; bypassing and transparently transmitting the second IKE packet Forward to the upstream relay terminal, so that the upstream relay terminal forwards the second IKE packet to N3IWF, so that after N3IWF passes the verification of the second IKE packet, a second data transmission tunnel based on IPSec is established between N3IWF and the downstream terminal.
  • the downstream terminal establishes a second non-3GPP access connection via the terminal and the upstream relay terminal through the N3IWF according to the second data transmission tunnel, so as to establish a second non-3GPP session according to the second non-3GPP access connection, wherein the terminal becomes Relay terminal.
  • the plurality of terminals are connected in sequence, and at least one terminal among the plurality of terminals is connected to a first-level relay terminal.
  • a traffic statistics method is provided.
  • the terminal is indirectly connected to the base station through an upstream relay terminal.
  • the upstream relay terminal includes at least one first-level relay terminal.
  • the first-level relay terminal passes through the new air interface NR.
  • Connected to the base station the terminal establishes a first non-3GPP session through the first non-3GPP access connection established by the N3IWF corresponding to the terminal.
  • the terminal is connected to the downstream terminal, and the downstream terminal establishes a second non-3GPP access through the N3IWF corresponding to the downstream terminal.
  • the connection establishes a second non-3GPP session, the first non-3GPP session carries service traffic initiated and encapsulated by the terminal, and the second non-3GPP session carries business traffic initiated and encapsulated by the downstream terminal; the method includes: modifying the session anchor corresponding to the first non-3GPP session Perform statistics on the traffic recorded by the point to confirm the service traffic usage corresponding to the terminal; perform statistics on the traffic recorded in the session anchor point corresponding to the second non-3GPP session to confirm the service traffic usage corresponding to the downstream terminal.
  • the upstream relay terminal is a first-level relay terminal, and the first-level relay terminal has established an NR session with the base station; the method also includes: obtaining the total traffic recorded by the session anchor point corresponding to the NR session; and corresponding The destination address is to eliminate all traffic whose current address is N3IWF; confirm the business traffic usage corresponding to the first-level relay terminal based on the elimination results.
  • a near-domain communication control device which is applied to a terminal.
  • the terminal is indirectly connected to a base station through an upstream relay terminal.
  • the upstream relay terminal includes at least one level one relay terminal.
  • the relay terminal is connected to the base station through the new air interface NR.
  • the device includes: a connection establishment device configured to establish the first non-3rd Generation Partnership Project 3GPP session of the terminal if it detects that the connection with the upstream relay terminal is successfully established.
  • the non-3GPP session is established through the first non-3GPP access connection established by the non-3GPP interworking function N3IWF corresponding to the terminal; wherein, the first non-3GPP session carries the service traffic initiated and encapsulated by the terminal; the bypass transparent transmission device, It is configured to establish a connection with the downstream terminal, perform bypass transparent transmission on the downstream terminal's service traffic, and forward the downstream terminal's service traffic through the connection with the upstream relay terminal, so that the downstream terminal passes through the second N3IWF established with the downstream terminal.
  • the non-3GPP access connection establishes a second non-3GPP session; wherein the second non-3GPP session carries service traffic initiated and encapsulated by the downstream terminal.
  • a traffic statistics device is provided.
  • the terminal is indirectly connected to the base station through the first-level relay terminal.
  • the first-level relay terminal is connected to the base station through the new air interface NR.
  • the terminal is established through the N3IWF corresponding to the terminal.
  • the first non-3GPP access connection establishes the first non-3GPP session.
  • the terminal connects to the downstream terminal.
  • the downstream terminal establishes the second non-3GPP session through the second non-3GPP access connection established by the N3IWF corresponding to the downstream terminal.
  • the first non-3GPP session is established.
  • the session carries the service traffic initiated and encapsulated by the terminal
  • the second non-3GPP session carries the service traffic initiated and encapsulated by the downstream terminal
  • the device includes: a first confirmation device configured to perform traffic processing on the session anchor record corresponding to the first non-3GPP session. Statistics are used to confirm the service traffic usage corresponding to the terminal; the second confirmation device is configured to make statistics on the traffic recorded by the session anchor point corresponding to the second non-3GPP session, and confirm the service traffic usage corresponding to the downstream terminal.
  • a computer-readable storage medium on which a computer program is stored.
  • the computer program is executed by a processor, the above near-field communication control method or traffic statistics method is implemented.
  • an electronic device including one or more processors; a storage device configured to store one or more programs, and when the one or more programs are executed by the electronic device, the electronic device The device implements the above near-domain communication control method or traffic statistics method.
  • the first non-3GPP session is established through the first non-3GPP access connection established with the N3IWF corresponding to the terminal, and a connection is established with the downstream terminal to bypass the business traffic of the downstream terminal.
  • transmission processing so that the downstream terminal establishes a second non-3GPP session through the second non-3GPP access connection established by the N3IWF corresponding to the downstream terminal.
  • the first non-3GPP session is used to carry the service traffic initiated and encapsulated by the terminal.
  • the second non-3GPP session Sessions are used to carry business traffic initiated and encapsulated by downstream terminals, so that the session user planes of terminals at all levels except the first-level relay terminal are independent, and there is no nesting relationship.
  • Each terminal is established to only carry its own business traffic. non-3GPP sessions, and only performs bypass transparent transmission processing on the downstream terminal's service traffic, which can achieve safe isolation of different terminals' service traffic for multi-level relay near-domain communication, and facilitate each terminal's traceability and billing of service traffic.
  • FIG. 1 is a schematic diagram of an exemplary application environment in which the technical solutions of embodiments of the present disclosure can be applied.
  • FIG. 2 is a flowchart of a control method for near-field communication according to an exemplary embodiment of the present disclosure.
  • FIG. 3 is a schematic diagram of a downstream terminal, a connection between the terminal and an upstream relay terminal, according to an exemplary embodiment of the present disclosure.
  • Figure 4 is a schematic diagram of session establishment between terminals according to an exemplary embodiment of the present disclosure.
  • FIG. 5 is a schematic diagram of a multi-level relay data transmission tunnel according to an exemplary embodiment of the present disclosure.
  • FIG. 6 is a schematic connection diagram when there are multiple terminals according to an exemplary embodiment of the present disclosure.
  • FIG. 7 is a flow chart of a traffic statistics method according to an exemplary embodiment of the present disclosure.
  • FIG. 8 is a flowchart of a near-field communication control method and a traffic statistics method according to an exemplary embodiment of the present disclosure.
  • FIG. 9 is a block diagram of a near-field communication control device according to an exemplary embodiment of the present disclosure.
  • FIG. 10 is a block diagram of a traffic statistics device according to an exemplary embodiment of the present disclosure.
  • FIG. 11 is a schematic structural diagram of a computer system suitable for implementing an electronic device according to an embodiment of the present disclosure.
  • the control method of near-field communication can be applied in the implementation environment as shown in Figure 1.
  • Figure 1 is a schematic diagram of the implementation environment of a near-domain communication control method according to an embodiment of the present disclosure.
  • the implementation environment includes a downstream terminal, a terminal, an upstream relay terminal and a base station.
  • Terminal 1 and the upstream relay terminal For near-domain communication, the upstream relay terminal communicates with the base station through the wireless air interface. Further, the downstream terminal may request to perform near-domain communication with the terminal, and at this time the terminal serves as a relay terminal for the downstream terminal.
  • the downstream terminal, terminal and upstream relay terminal have the user identity of the mobile network and can be electronic devices such as smartphones, tablets, laptops, computers, vehicle-mounted terminals, etc., but are not limited to this.
  • the downstream terminal, terminal and upstream relay terminal may generally refer to one of multiple terminals. Those skilled in the art will know that the number of the above-mentioned downstream terminals, terminals and upstream relay terminals may be greater.
  • the above-mentioned downstream terminal, terminal and upstream relay device may be only one, or the above-mentioned downstream terminal, terminal and upstream relay device may be dozens or hundreds, or more.
  • the above-mentioned control method for near-domain communication The implementation environment also includes other terminals.
  • the embodiments of the present disclosure do not limit the number of terminals and device types.
  • Figure 2 is a flow chart of a near-field communication control method according to an embodiment of the present disclosure.
  • the near-field communication control method can be applied to the implementation environment shown in Figure 1, and can be used in the implementation environment.
  • the terminal is specifically executed. It should be understood that this method can also be applied to other exemplary implementation environments and be specifically executed by devices in other implementation environments. This embodiment does not limit the implementation environments to which this method is applicable.
  • control method of near-field communication includes at least step S210 to step S220, which are described in detail as follows:
  • Step S210 If it is detected that the connection is successfully established with the upstream relay terminal, the first non-3rd Generation Partnership Project 3GPP session of the terminal is established.
  • the first non-3GPP session uses the non-3rd Generation Partnership Project interworking function corresponding to the terminal.
  • the first non-3GPP access connection established by the N3IWF is established; wherein, the first non-3GPP session carries service traffic initiated and encapsulated by the terminal.
  • Non-3GPP Interworking Function is responsible for connecting untrusted non-3GPP access networks to the mobile communications core network, such as the fifth-generation mobile communications technology ( 5th Generation Mobile Communication Technology, 5G) core network.
  • 5G Fifth Generation Mobile Communication Technology
  • the terminal establishes a connection with the upstream relay terminal, and establishes a first non-3GPP access connection with the N3IWF through the connection, and then the terminal establishes a first non-3GPP session via the upstream relay terminal according to the first non-3GPP access connection.
  • Non-3GPP sessions only carry service traffic initiated and encapsulated by the terminal. For example, after the terminal generates a service packet, it can encapsulate the terminal's address information, corresponding N3IWF tunnel address information, etc. into the service packet according to the preset definition.
  • the upstream relay terminal includes at least one first-level relay terminal, and the first-level relay terminal is connected to the base station through a new radio interface (New Radio, NR).
  • New Radio New Radio
  • the upstream relay terminal includes a first-level relay terminal A and a non-level one terminal B1.
  • the first-level relay terminal A communicates with the base station.
  • the terminal B2 can establish a connection with the non-level one terminal B1 and establish a connection via the first-level relay.
  • the first non-3GPP session between terminal A and non-level 1 terminal B1.
  • terminal B2 does not provide network connection services for other downstream terminals, then terminal B2 is a remote terminal.
  • terminal B2 provides network connection services for other downstream terminals, then terminal B2 is a relay terminal.
  • the first-level relay terminal refers to the terminal directly connected to the base station
  • the non-first-level terminal refers to the terminal indirectly connected to the base station. It can be understood that terminal B2 can also select other relay terminals for network connection, for example, choose to establish a connection with the first-level relay terminal A, and establish the first non-3GPP session via the first-level relay terminal A.
  • Step S220 Establish a connection with the downstream terminal, perform bypass transparent transmission processing on the downstream terminal's business traffic, and forward the downstream terminal's business traffic through the connection with the upstream relay terminal, so that the downstream terminal can pass the N3IWF corresponding to the downstream terminal.
  • the second non-3GPP access connection establishes a second non-3GPP session; wherein the second non-3GPP session carries service traffic initiated and encapsulated by the downstream terminal.
  • bypass and transparent transmission processing of the business traffic of the downstream terminal means that the terminal only forwards the business traffic of the downstream terminal, that is, it does not perform any processing on the data packets, including modification or encapsulation, etc.
  • the N3IWF that establishes the second non-3GPP access connection with the downstream terminal and the N3IWF that establishes the first non-3GPP access connection with the terminal may be the same N3IWF or different N3IWFs, and this disclosure does not limit this.
  • the downstream terminal establishes a connection with the terminal, and establishes a second non-3GPP access connection with the N3IWF corresponding to the downstream terminal through the connection, and then the downstream terminal establishes a second non-3GPP access connection via the terminal and the upstream relay terminal according to the second non-3GPP access connection. session, the second non-3GPP session only carries the service traffic of the downstream terminal.
  • the upstream relay terminal includes at least one first-level relay terminal, and the first-level relay terminal is connected to the base station through a new radio interface (New Radio, NR).
  • New Radio New Radio
  • terminal A first connects to the Internet through the base station. At this time, terminal A can serve as a first-level relay terminal to provide Internet services for other terminals; then terminal B selects terminal A as a first-level relay terminal to connect. After the connection is successful, terminal B It can also serve as the upstream relay terminal of other terminals to provide Internet services for other terminals; then terminal C selects terminal B as the upstream relay terminal to connect, and so on.
  • the upstream relay terminals of terminal C include terminal A and terminal B
  • the upstream relay terminals of terminal B include terminal A
  • the downstream terminals of terminal B include terminal C
  • the downstream relay terminals of terminal A include terminal B and terminal C.
  • terminal A is a first-level relay terminal
  • terminal B and terminal C are non-first-level terminals.
  • FIG. 3 is a schematic diagram of a downstream terminal, a connection between the terminal and an upstream relay terminal exemplarily shown in this disclosure.
  • the upstream relay terminal A is a first-level relay terminal, which is connected to the base station NG-RAN through a cellular network communication interface (Uu).
  • Terminal B communicates with the first-level relay terminal A in the near domain.
  • the terminal B communicates with the first-level relay terminal A through a direct communication interface (PC5 or Wi-fi).
  • the PC5 interface follows the sidelink communication protocol.
  • the downstream terminal C communicates with the terminal B in the near domain.
  • the downstream terminal C communicates with the terminal B through the PC5.
  • the terminal B serves as the upstream relay terminal of the downstream terminal C.
  • the first-level relay terminal A has established an NR session with the NG-RAN.
  • the first-level relay terminal user plane function (UPF) network element corresponding to the first-level relay terminal A in the NR session communicates with the NG through the N3 interface.
  • -RAN connection constructing a UPF network element whose user plane path corresponding to the first-level relay terminal A is from the first-level relay terminal A to the NG-RAN to the first-level relay terminal A.
  • the N3 interface is the interface between access equipment (such as 5G base stations, N3IWF) and UPF network elements. It is mainly used to transmit uplink and downlink user plane data between access equipment and UPF network elements.
  • Terminal B establishes a first non-3GPP access connection with N3IWF, and establishes a first non-3GPP session corresponding to terminal B through the first non-3GPP access connection.
  • Terminal B corresponding to terminal B in the first non-3GPP session The user plane function (UPF) network element is connected to the N3IWF through the N3 interface.
  • the N3IWF is connected to the UPF network element of the first-level relay terminal A through the N6 interface.
  • the user plane path corresponding to the terminal B is constructed from terminal B to the first-level relay terminal. From relay terminal A to NG-RAN to the UPF network element of primary relay terminal A to N3IWF to the UPF network element of terminal B.
  • the user plane path corresponding to terminal B can be understood as the service data in terminal B when terminal B performs service access.
  • the N6 interface is the interface between the UPF network element and the Data Network (DN), and is used to transmit upstream and downlink user data flows between UPF and DN.
  • DN Data Network
  • the downstream terminal C establishes a second non-3GPP access connection with the N3IWF, and establishes a second non-3GPP session corresponding to the downstream terminal C through the second non-3GPP access connection.
  • the downstream terminal C in the second non-3GPP session corresponds to
  • the user plane function (UPF) network element of the downstream terminal C is connected to the N3IWF through the N3 interface, and the N3IWF is connected to the UPF network element of the first-level relay terminal A through the N6 interface to construct the user plane path corresponding to the downstream terminal C.
  • UPF user plane function
  • the terminal shown in Figure 3 is connected to the upstream relay terminal, and the downstream terminal is connected to the terminal.
  • the terminal and the downstream terminal can also be connected to different network devices.
  • the terminal establishes the first non-3GPP session through the first non-3GPP access connection established with the N3IWF, establishes a connection with the downstream terminal, and performs bypass transparent transmission processing on the downstream terminal's business traffic. So that the downstream terminal establishes a second non-3GPP session through the second non-3GPP access connection established with the N3IWF.
  • the first non-3GPP session is used to carry the service traffic initiated and encapsulated by the terminal
  • the second non-3GPP session is used to carry the service traffic initiated and encapsulated by the downstream terminal.
  • Non-3GPP sessions of business traffic and only bypass transparent transmission processing of the business traffic of downstream terminals, which can realize the safe user plane and business traffic security isolation of different terminals for the near-domain communication of multi-level relays, so as to facilitate the subsequent isolation of different terminals.
  • the business traffic is processed such as traceability and billing.
  • the terminal is a remote terminal; before the first non-3GPP session of the terminal is established if it is detected that the connection with the upstream relay terminal is successfully established, the method further includes: obtaining the accessible candidate upstream terminal. A set of relay terminals; according to the information of each candidate upstream relay terminal in the set of candidate upstream relay terminals, confirm the upstream relay terminal to be connected; initiate a connection request to the upstream relay terminal so that the upstream relay terminal can communicate with all candidate upstream relay terminals according to the connection request. The terminal establishes a connection.
  • the terminal In order to establish a direct link between the terminal and the upstream relay terminal, the terminal is required to be able to detect and discover the upstream relay terminal that can be connected.
  • E-UTRA Evolved-UMTS Terrestrial Radio Access
  • WLAN Wireless Local Area Network
  • the proximity service direct discovery process is hereinafter referred to as the direct discovery process.
  • the direct discovery process includes two modes, namely, mode A and mode B.
  • the upstream relay terminal sends a broadcast message for direct discovery (UE-to-Network Relay Discovery Announcement message), and the terminal monitors the broadcast message.
  • UE-to-Network Relay Discovery Announcement message UE-to-Network Relay Discovery Announcement message
  • the terminal sends a request message (UE-to-Network Relay Discovery Solicitation message) for direct discovery, and the upstream relay terminal that matches the relay service code (Relay Service Code) contained in the request message sends a request message to the terminal.
  • Response message UE-to-Network Relay Discovery Response message.
  • the terminal After the terminal detects and discovers one or more candidate upstream relay terminals (candidate relay UE) through the above direct discovery process, it selects a candidate upstream relay terminal that meets the conditions to establish a direct link.
  • terminal B1 discovers the upstream relay terminal B1 and the upstream relay terminal B2 through the direct discovery detection process, and selects the upstream relay terminal B1 that meets the conditions to establish a direct link.
  • the conditions here may include but are not limited to: meeting ProSe layer criteria, meeting access layer criteria, etc.
  • the candidate upstream with the highest ranking according to the access layer criteria is selected.
  • the relay terminal serves as the upstream relay terminal to be connected.
  • the communication between the terminal and the upstream relay terminal can be one-to-one ProSe Direct Communication, or Wi-Fi (Wireless Fidelity) communication and direct communication between two or more nearby users. Other types of wireless communication between devices.
  • Figure 4 is a schematic diagram of session establishment between terminals.
  • the first-level relay terminal establishes an NR session, and the first-level relay terminal sends a broadcast message for direct discovery. Then the terminal discovers the first-level relay terminal through the direct discovery and detection process, establishes a connection with the first-level relay terminal, and establishes a first non-3GPP session through the connection to divert the service traffic related to the terminal to the first non-3GPP in session.
  • the terminal sends a broadcast message for direct discovery, so that the downstream terminal discovers the terminal through the direct discovery detection process, enables the downstream terminal to establish a connection with the terminal, and establishes a second non-3GPP session through the connection to communicate with the downstream terminal.
  • Service traffic is directed to the second non-3GPP session.
  • the NR session of the first-level relay terminal aggregates its own service traffic and the service traffic of downstream terminals corresponding to all first-level relay terminals.
  • the terminal bypasses and transparently transmits the service traffic of the downstream terminals outside the first non-3GPP session.
  • the terminal can communicate with the network through the upstream relay terminal.
  • initiating a connection request to the upstream relay terminal so that the upstream relay terminal establishes a connection with the terminal according to the connection request includes: generating a connection request according to terminal information corresponding to the terminal; sending a connection request to the upstream relay terminal, This enables the upstream relay terminal to verify the terminal information corresponding to the terminal in the connection request, and allocate the Internet protocol address corresponding to the terminal after passing the verification; establish a connection with the upstream relay terminal based on the Internet protocol address.
  • the upstream relay terminal executes the Dynamic Host Configuration Protocol (Dynamic Host Configuration Protocol, DHCP) server function to allocate an Internet Protocol (Internet Protocol, IP) address to the terminal.
  • DHCP Dynamic Host Configuration Protocol
  • DHCP is a dynamic address allocation scheme and address configuration protocol based on the TCP/IP (Transmission Control Protocol/Internet Protocol) protocol.
  • the terminal is a remote terminal; if it is detected that the connection with the upstream relay terminal is successfully established, the first non-3GPP session of the terminal is established, and the first non-3GPP session passes through the non-third-generation partner corresponding to the terminal.
  • the establishment of the first non-3GPP access connection established by the planned interworking function N3IWF includes: generating a first Internet key exchange protocol IKE packet according to the terminal information corresponding to the terminal, and sending the first IKE packet to the upstream relay terminal, so that the upstream After the terminal forwards the first IKE packet to the N3IWF corresponding to the terminal, so that the N3IWF corresponding to the terminal passes the verification of the first IKE packet, the first data based on the Internet Protocol Security Network Protocol IPSec is established between the N3IWF corresponding to the terminal and the terminal.
  • Transmission tunnel establish a first non-3GPP access connection via the upstream relay terminal through the N3IWF corresponding to the terminal according to the first data transmission tunnel; establish a first non-3GPP session of the terminal according to the first non-3GPP access connection.
  • the terminal accesses the non-3GPP network through the upstream relay terminal, and after selecting N3IWF, executes the IKE-SA process.
  • IKE-SA refers to the IKE Security Alliance.
  • the function of the IKE-SA process is to establish an insecure network for subsequent use.
  • a secure transmission channel for the Non-access stratum (NAS) authentication process to ensure the security of message transmission in the subsequent NAS authentication process.
  • the terminal generates a first Internet Key Exchange Protocol (IKE) packet based on its own terminal information, such as encrypting terminal identification, IP address and other information to obtain the terminal's identity certificate, and generates the first Internet Key Exchange Protocol (IKE) package based on the terminal's identity certificate.
  • IKE Internet Key Exchange Protocol
  • the first IKE packet is sent to the upstream relay terminal, and the upstream relay terminal forwards the first IKE packet to N3IWF, and N3IWF performs first identity authentication on the terminal based on the first IKE packet.
  • IPsec-SA Internet Protocol Security
  • IPsec-SA refers to the IPsec Security Alliance, and a secure first data transmission tunnel is established for the terminal through the IPsec-SA process ( First IPsec tunnel), all subsequent NAS signaling is transmitted through the secure first data transmission tunnel.
  • the terminal establishes its first non-3GPP session via the upstream relay terminal.
  • a connection is established with a downstream terminal, the business traffic of the downstream terminal is bypassed and transparently transmitted, and the business traffic of the downstream terminal is forwarded through the connection with the upstream relay terminal, so that the downstream terminal passes through the network corresponding to the downstream terminal.
  • the second non-3GPP access connection established by N3IWF establishes the second non-3GPP session, including: receiving the second IKE packet sent by the downstream terminal.
  • the second IKE packet is generated based on the terminal information corresponding to the downstream terminal;
  • the Reuters transmission is forwarded to the upstream relay terminal, so that the upstream relay terminal forwards the second IKE packet to the N3IWF corresponding to the downstream terminal, so that after the N3IWF corresponding to the downstream terminal passes the verification of the second IKE packet, the N3IWF corresponding to the downstream terminal Establish a second IPSec-based data transmission tunnel with the downstream terminal, so that the downstream terminal establishes a second non-3GPP access connection via the terminal and the upstream relay terminal through the N3IWF corresponding to the downstream terminal according to the second data transmission tunnel, so as to The second non-3GPP access connection establishes a second non-3GPP session, in which the terminal becomes a relay terminal.
  • the terminal establishes a connection with the downstream terminal and performs bypass transparent transmission on the downstream terminal's service traffic, allowing the downstream terminal to access the non-3GPP network.
  • the IKE-SA process is executed. For example, the downstream terminal generates a second Internet Key Exchange Protocol (IKE) packet based on its own downstream terminal information, such as encrypting the downstream terminal identification, IP address and other information to obtain the identity certificate of the downstream terminal.
  • the terminal's identity certificate generates a second IKE packet.
  • the downstream terminal sends the second IKE packet to the terminal, and the terminal forwards the second IKE packet to the upstream relay terminal in bypass transparent transmission.
  • IKE Internet Key Exchange Protocol
  • the upstream relay terminal forwards the second IKE packet to N3IWF, and N3IWF responds to the terminal based on the second IKE packet.
  • Perform second identity authentication After the authentication result of the second identity authentication is passed, the Internet Security Protocol IPsec-SA process is executed, and a secure second data transmission tunnel (second IPsec tunnel) is established for the terminal through the IPsec-SA process. All subsequent NAS signaling All are transmitted through a secure secondary data transmission tunnel.
  • second IPsec tunnel secure second data transmission tunnel
  • the downstream terminal establishes its second non-3GPP session via the terminal and the upstream relay terminal.
  • All non-first-level terminals establish IPsec tunnels with N3IWF. After the IPsec tunnel is established, GTP (GPRS Tunneling Protocol, GPRS Tunneling Protocol) tunnels corresponding to each terminal are established with the session anchor UPF network element of each non-first-level terminal, and finally form a terminal End-to-end secure user interface.
  • GTP GPRS Tunneling Protocol, GPRS Tunneling Protocol
  • Figure 5 is a schematic diagram of a multi-level relay data transmission tunnel.
  • the NR session between the first-level relay terminal and the first-level relay terminal UPF network element includes the NR secure connection and GTP tunnel corresponding to the first-level relay terminal, and the first non-3GPP session between the terminal and the terminal UPF network element.
  • the downstream terminal and the second non-3GPP session of the downstream terminal UPF network element include the IPsec tunnel and GTP tunnel corresponding to the downstream terminal, so that the non-3GPP access tunnels of each terminal are not nested, simplifying The network tunnel processing is ensured, network performance is ensured, and the business traffic of different terminals is safely isolated, so that the business traffic of different terminals can be traced and billed later.
  • the plurality of terminals are connected in sequence, and at least one terminal among the plurality of terminals is connected to a first-level relay terminal.
  • the terminals include terminal B1, terminal B2 and terminal B3.
  • the first-level relay terminal A is connected to the base station, the terminal B1, the terminal B2 and the terminal B3 are connected in sequence, and the terminal B1 is connected to the first-level relay Terminal A is connected, and terminal B3 is connected to downstream terminal C.
  • terminal B1, terminal B2, terminal B3, and downstream terminal C all serve as non-level terminals, that is, terminals indirectly connected to the base station, and downstream terminal C serves as a remote terminal, that is, a terminal that does not provide network connection services for other terminals.
  • Figure 5 is only a schematic illustration of the number of terminals. There may be more relay terminals between the actual remote terminal and the first-level relay terminal, and this disclosure does not limit this.
  • the upstream relay terminal and downstream terminal mentioned in this disclosure are confirmed according to the location of the execution subject.
  • the upstream relay terminal It includes first-level relay terminal A and terminal B1
  • the downstream terminal includes terminal B3 and downstream terminal C
  • the upstream relay terminal includes first-level relay terminal A, terminal B1 and terminal B2
  • the downstream terminal includes downstream terminal C.
  • terminal B1 establishes a first non-3GPP session through a first non-3GPP access connection established with N3IWF
  • terminal B2 establishes a second non-3GPP session through a second non-3GPP access connection established with N3IWF
  • terminal B3 establishes a second non-3GPP session through a second non-3GPP access connection established with N3IWF.
  • the established third non-3GPP access connection establishes a third non-3GPP session
  • the downstream terminal C establishes a fourth non-3GPP session through the fourth non-3GPP access connection established with the N3IWF to implement user plane sessions between non-level one terminals. of independence.
  • the number of non-3GPP access connections and non-3GPP sessions mentioned in the above solution is only an illustration. The number can be more or less. The specific number is confirmed based on the number of connected non-level one terminals and remote terminals. .
  • the downstream terminals include terminal B2, terminal B3 and downstream terminal C. Therefore, terminal B1 controls terminal B2, terminal B3 and downstream terminal C respectively.
  • the business traffic of terminal C is bypassed and transparently transmitted; when terminal B2 serves as the execution subject of the near-domain communication control method, the downstream terminals include terminal B3 and downstream terminal C, so terminal B2 transmits the business traffic of terminal B3 and downstream terminal C respectively.
  • FIG. 7 is a flow chart of a traffic statistics method according to an embodiment of the present disclosure.
  • the traffic statistics method can be performed by a UPF network element. Specific implementation. It should be understood that this method can also be specifically executed by other devices, and this embodiment does not limit the execution subject to which this method is applicable.
  • the following uses the UPF network element as the specific execution subject to introduce in detail the traffic statistics method proposed in the embodiment of the present disclosure.
  • the traffic statistics method includes at least step S710 to step S720, which are described in detail as follows:
  • Step S710 collect statistics on the traffic recorded by the session anchor point corresponding to the first non-3GPP session, and confirm the service traffic usage corresponding to the terminal;
  • Step S720 Statistics are performed on the traffic recorded in the session anchor point corresponding to the second non-3GPP session, and the corresponding service traffic usage of the downstream terminal is confirmed.
  • the UPF network element of each terminal serves as the session anchor point for the corresponding session of each terminal to collect statistics on the service traffic of each terminal and obtain the traffic usage of each terminal itself.
  • the service traffic usage of terminal B is the traffic recorded by the session anchor UPF network element corresponding to the first non-3GPP session
  • the service traffic usage of downstream terminal C is the session anchor UPF network element corresponding to the second non-3GPP session. Recorded traffic.
  • the upstream relay terminal is a first-level relay terminal, and the first-level relay terminal establishes an NR session with the base station; the method also includes: obtaining the total traffic recorded by the session anchor point corresponding to the NR session; corresponding to the total traffic according to Eliminate all traffic whose destination address is N3IWF; confirm the corresponding business traffic usage of the upstream relay terminal based on the elimination results.
  • the service traffic of the first-level relay terminal is equal to the session traffic of the first-level relay terminal minus the session traffic of all its subordinate terminals.
  • Session traffic that is, packet traffic whose destination address is the N3IWF address. If the UPF network element of the first-level relay terminal cannot obtain the N3IWF information of the downstream terminal, it will traverse all recorded N3IWF addresses to eliminate the traffic with the current address of N3IWF, and confirm the traffic usage corresponding to the upstream relay terminal based on the elimination results.
  • each terminal can establish a non-3GPP session that only carries its own business traffic, and the business traffic of downstream terminals is only bypassed and transparently transmitted. This can be used for multi-level relay near-term communication. Domain communication realizes the security isolation of business traffic of different terminals, and can directly perform traceability and billing based on the business traffic recorded by the UPF network element of each terminal session anchor point.
  • Terminal B (the identity of the remote terminal at this time) initiates the direct discovery process and selects a first-level relay terminal A;
  • Terminal B establishes a connection with terminal A, and the first-level relay terminal A’s relay
  • the service rules take effect, that is, the service traffic of terminal B will be processed uniformly with the service traffic of the first-level relay terminal A, and carried in the session of the first-level relay terminal A;
  • the first-level relay terminal A performs the DHCP server function , assign an IP address to terminal B; Step 4.
  • Terminal B and N3IWF initiate the signaling interaction of the IPsec tunnel through the IKE process and initiate a NAS message to its 5G core network for registration.
  • terminal B establishes its via The first non-3GPP session of the first-level relay terminal A; Step 5.
  • the remote terminal C initiates the direct discovery process and selects a relay terminal B; Step 6.
  • the remote terminal C establishes a connection with the relay terminal B ; Step 7.
  • Relay terminal B performs the DHCP server function and allocates an IP address to remote terminal C;
  • Remote terminal C and N3IWF initiate signaling interaction of the IPsec tunnel through the IKE process and initiates it to its 5G core network NAS message is registered.
  • remote terminal C When the IPsec tunnel is established, remote terminal C establishes its second non-3GPP session via relay terminal B and primary relay terminal A; Step 9.
  • the relay service rules of relay terminal B take effect. That is, bypass transparent transmission processing is implemented for the service traffic of remote terminal C, and only the service traffic of relay terminal B is carried in the first non-3GPP session.
  • Each terminal uses its own service and provides services according to the above connection relationship and processing rules. Relay services and divert traffic; Step 11.
  • the session anchor UPF of each terminal identifies and differentiates the traffic, and generates each terminal's own business bill. Among them, the UPF of the first-level relay terminal C eliminates the target from the session traffic. Traffic whose address is the N3IWF address.
  • the terminal establishes the first non-3GPP session through the first non-3GPP access connection established with the N3IWF, establishes a connection with the downstream terminal, and performs bypass transparent transmission processing on the downstream terminal's business traffic. So that the downstream terminal establishes a second non-3GPP session through the second non-3GPP access connection established with the N3IWF.
  • the first non-3GPP session is used to carry the service traffic initiated and encapsulated by the terminal
  • the second non-3GPP session is used to carry the service traffic initiated and encapsulated by the downstream terminal.
  • each terminal is established to only carry its own business.
  • Non-3GPP sessions of traffic, and the business traffic of downstream terminals is only bypassed and transparently transmitted. This can realize the security isolation of business traffic of different terminals for the near-domain communication of multi-level relays, and facilitate the traceability and billing of business traffic by each terminal. .
  • Figure 9 is a block diagram of a near-domain communication control device illustrating an embodiment of the present disclosure. It is applied to a terminal.
  • the terminal is indirectly connected to the base station through an upstream relay terminal.
  • the upstream relay terminal includes at least one level one relay terminal.
  • the relay terminal is connected to the base station through the new air interface NR, as shown in Figure 9.
  • the device includes:
  • the connection establishment device 910 is configured to establish a first non-3GPP 3GPP session of the terminal if it detects that the connection is successfully established with the upstream relay terminal.
  • the first non-3GPP session passes the non-3GPP session corresponding to the terminal.
  • the first non-3GPP access connection established by the partner program interworking function N3IWF is established; among them, the first non-3GPP session carries the service traffic initiated and encapsulated by the terminal;
  • the bypass transparent transmission device 920 is configured to establish a connection with the downstream terminal, perform bypass transparent transmission processing on the downstream terminal's business traffic, and forward the downstream terminal's business traffic through the connection with the upstream relay terminal, so that the downstream terminal passes through the downstream terminal.
  • the corresponding second non-3GPP access connection established by the N3IWF establishes a second non-3GPP session; wherein the second non-3GPP session carries service traffic initiated and encapsulated by the downstream terminal.
  • the terminal is a remote terminal;
  • the connection establishment device 910 may include:
  • a candidate upstream relay terminal acquisition unit configured to acquire a set of accessible candidate upstream relay terminals
  • the upstream relay terminal confirmation unit is configured to confirm the upstream relay terminal to be connected based on the information of each candidate upstream relay terminal in the candidate upstream relay terminal set;
  • the connection unit is configured to initiate a connection request to the upstream relay terminal, so that the upstream relay terminal establishes a connection with the terminal according to the connection request.
  • connection unit may include:
  • a connection request generating unit configured to generate a connection request based on terminal information corresponding to the terminal
  • the Internet protocol address acquisition unit is configured to send a connection request to the upstream relay terminal, so that the upstream relay terminal verifies the terminal information corresponding to the terminal in the connection request, and allocates the Internet protocol address corresponding to the terminal after passing the verification;
  • a connection establishment unit configured to establish a connection with the upstream relay terminal according to the Internet protocol address.
  • the terminal is a remote terminal;
  • the connection establishment device 910 may include:
  • the first data transmission tunnel establishment unit is configured to generate a first Internet key exchange protocol IKE packet according to the terminal information corresponding to the terminal, and send the first IKE packet to the upstream relay terminal, so that the upstream relay terminal transmits the first IKE packet Forward to the N3IWF corresponding to the terminal, so that after the N3IWF corresponding to the terminal passes the verification of the first IKE packet, a first data transmission tunnel based on the Internet Protocol Security Network Protocol IPSec is established between the N3IWF corresponding to the terminal and the terminal;
  • the first non-3GPP access connection establishment unit is configured to establish the first non-3GPP access connection via the upstream relay terminal through the N3IWF corresponding to the terminal according to the first data transmission tunnel;
  • the first non-3GPP session establishment unit is configured to establish the first non-3GPP session of the terminal according to the first non-3GPP access connection.
  • the bypass transparent transmission device 920 may include:
  • a packet receiving unit configured to receive data packets sent by the downstream terminal
  • the bypass transparent transmission unit is configured to forward the data packets sent by the downstream terminal to the upstream relay terminal in bypass transparent transmission, so that the upstream relay terminal forwards the data packets to the N3IWF corresponding to the downstream terminal.
  • the data packet includes a second IKE packet
  • the packet receiving unit is further configured to:
  • the second IKE packet is generated based on the terminal information corresponding to the downstream terminal;
  • the bypass transparent transmission unit is also configured as:
  • a second data transmission tunnel based on IPSec is established between the N3IWF corresponding to the downstream terminal and the downstream terminal, so that the downstream terminal establishes a second non-3GPP link between the terminal and the upstream relay terminal through the N3IWF corresponding to the downstream terminal according to the second data transmission tunnel.
  • the plurality of terminals are connected in sequence, and at least one terminal among the plurality of terminals is connected to a first-level relay terminal.
  • the near-field communication control device provided by the above-mentioned embodiments and the near-field communication control method provided by the above-mentioned embodiments belong to the same concept, and the specific manner in which each module and unit performs operations has been described in the method embodiment. It is described in detail and will not be repeated here.
  • the above function allocation can be completed by different functional modules as needed, that is, the internal structure of the device is divided into different functional modules to complete all the above descriptions. or some functions, which are not restricted here.
  • FIG. 10 is a block diagram of a traffic statistics device according to an embodiment of the present disclosure.
  • the terminal is indirectly connected to the base station through the first-level relay terminal.
  • the first-level relay terminal is connected to the base station through the new air interface NR.
  • the terminal is established through the N3IWF corresponding to the terminal.
  • the first non-3GPP access connection establishes the first non-3GPP session.
  • the terminal connects to the downstream terminal.
  • the downstream terminal establishes the second non-3GPP session through the second non-3GPP access connection established by the N3IWF corresponding to the downstream terminal.
  • the first non-3GPP session is established.
  • the session carries the service traffic initiated and encapsulated by the terminal, and the second non-3GPP session carries the service traffic initiated and encapsulated by the downstream terminal.
  • the device includes:
  • the first confirmation device 1010 is configured to collect statistics on the traffic recorded by the session anchor point corresponding to the first non-3GPP session, and confirm the service traffic usage corresponding to the terminal;
  • the second confirmation device 1020 is configured to collect statistics on the traffic recorded in the session anchor point corresponding to the second non-3GPP session, and confirm the service traffic usage corresponding to the downstream terminal.
  • the upstream relay terminal is a first-level relay terminal, and an NR session is established between the first-level relay terminal and the base station;
  • the traffic statistics device also includes:
  • the total traffic confirmation unit is configured to obtain the total business traffic recorded by the session anchor point corresponding to the NR session;
  • the elimination unit is configured to eliminate the traffic whose current address is N3IWF based on the target address corresponding to the total business traffic;
  • the upstream relay terminal traffic confirmation unit is configured to confirm the service traffic usage corresponding to the upstream relay terminal based on the elimination results.
  • the traffic statistics device provided by the above embodiments and the traffic statistics method provided by the above embodiments belong to the same concept, and the specific manner in which each module and unit performs operations has been described in detail in the method embodiments. No further details will be given.
  • the above function allocation can be completed by different functional modules as needed, that is, the internal structure of the device is divided into different functional modules to complete all or part of the functions described above. , there is no restriction on this.
  • FIG. 11 shows a schematic structural diagram of a computer system suitable for implementing an electronic device according to an embodiment of the present disclosure.
  • electronic device 1100 is embodied in the form of a general computing device.
  • the components of the electronic device 1100 may include, but are not limited to: the above-mentioned at least one processing unit 1110, the above-mentioned at least one storage unit 1120, a bus 1130 connecting different system components (including the storage unit 1120 and the processing unit 1110), and the display unit 1140.
  • the storage unit stores program code, and the program code can be executed by the processing unit 1110, so that the processing unit 1110 performs the steps according to various exemplary embodiments of the present disclosure described in the above-mentioned "Example Method" section of this specification.
  • the storage unit 1120 may include a readable medium in the form of a volatile storage unit, such as a random access storage unit (RAM) 1121 and/or a cache storage unit 1122, and may further include a read-only storage unit (ROM) 1123.
  • RAM random access storage unit
  • ROM read-only storage unit
  • Storage unit 1120 may also include a program/utility 1124 having a set of (at least one) program modules 1125 including, but not limited to: an operating system, one or more application programs, other program modules, and program data, Each of these examples, or some combination, may include the implementation of a network environment.
  • program/utility 1124 having a set of (at least one) program modules 1125 including, but not limited to: an operating system, one or more application programs, other program modules, and program data, Each of these examples, or some combination, may include the implementation of a network environment.
  • Bus 1130 may be a local area representing one or more of several types of bus structures, including a memory unit bus or memory unit controller, a peripheral bus, a graphics acceleration port, a processing unit, or using any of a variety of bus structures. bus.
  • Electronic device 1100 may also communicate with one or more external devices 1170 (e.g., keyboard, pointing device, Bluetooth device, etc.), may also communicate with one or more devices that enable a user to interact with electronic device 1100, and/or with Any device (eg, router, modem, etc.) that enables the electronic device 1100 to communicate with one or more other computing devices. This communication may occur through an input/output (I/O) interface 1150.
  • the electronic device 1100 may also communicate with one or more networks (eg, a local area network (LAN), a wide area network (WAN), and/or a public network, such as the Internet) through the network adapter 1160 . As shown, network adapter 1160 communicates with other modules of electronic device 1100 via bus 1130 .
  • network adapter 1160 communicates with other modules of electronic device 1100 via bus 1130 .
  • embodiments of the present disclosure include a computer program product including a computer program carried on a computer-readable medium, the computer program comprising a computer program for performing the method illustrated in the flowchart.
  • the computer program is executed by the processing unit 1110, various functions defined in the system of the present disclosure are performed.
  • the computer-readable medium shown in the embodiments of the present disclosure may be a computer-readable signal medium or a computer-readable storage medium, or any combination of the above two.
  • the computer-readable storage medium may be, for example, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, device or device, or any combination thereof.
  • Computer readable storage media may include, but are not limited to: an electrical connection having one or more wires, a portable computer disk, a hard drive, random access memory (RAM), read only memory (ROM), removable Programmable Read-Only Memory (Erasable Programmable Read Only Memory, EPROM), flash memory, optical fiber, portable compact disk read-only memory (Compact Disc Read-Only Memory, CD-ROM), optical storage device, magnetic storage device, or any of the above suitable The combination.
  • a computer-readable storage medium may be any tangible medium that contains or stores a program for use by or in connection with an instruction execution system, apparatus, or device.
  • a computer-readable signal medium may include a data signal propagated in baseband or as part of a carrier wave, carrying a computer-readable computer program therein. Such propagated data signals may take many forms, including but not limited to electromagnetic signals, optical signals, or any suitable combination of the above.
  • a computer-readable signal medium may also be any computer-readable medium other than a computer-readable storage medium that can initiate, propagate, or transmit a program for use by or in connection with an instruction execution system, apparatus, or device .
  • Computer programs embodied on computer-readable media may be transmitted using any suitable medium, including but not limited to: wireless, wired, etc., or any suitable combination of the above.
  • the units involved in the embodiments of the present disclosure can be implemented in the form of application programs or in the form of hardware.
  • the described units can also be provided in the processor. Among them, the names of these units do not constitute a limitation on the unit itself under certain circumstances.
  • Another aspect of the present disclosure also provides a computer-readable storage medium on which a computer program is stored.
  • the computer program is executed by a processor, the previous near-field communication control method or traffic statistics method is implemented.
  • the computer-readable storage medium may be included in the electronic device described in the above embodiments, or may exist separately without being assembled into the electronic device.
  • Another aspect of the present disclosure also provides a computer program product or computer program including computer instructions stored in a computer-readable storage medium.
  • the processor of the computer device reads the computer instructions from the computer-readable storage medium, and the processor executes the computer instructions, so that the computer device performs the near-field communication control method or the traffic statistics method provided in the above embodiments.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

A near-field communication control method, a traffic statistics method, an apparatus, and a medium. The near-field communication control method comprises: if it is detected that a connection to an upstream relay terminal is successfully established, establishing a first non-3GPP session of the terminal by means of an access connection established by an N3IWF corresponding to the terminal, wherein the first non-3GPP session carries service traffic initiated and encapsulated by the terminal; and performing bypass transparent transmission processing on service traffic of a downstream terminal, and enabling the downstream terminal to establish a second non-3GPP session by means of a second non-3GPP access connection established by an N3IWF corresponding to the downstream terminal, wherein the second non-3GPP session carries service traffic initiated and encapsulated by the downstream terminal. The terminal at each stage is enabled to establish a non-3GPP session which only carries its own service traffic, and only perform bypass transparent transmission processing on the service traffic of the downstream terminal.

Description

近域通信的控制方法、流量统计方法、装置及介质Control method, traffic statistics method, device and medium for near-field communication
交叉引用cross reference
本公开要求于2022年8月22日提交的申请号为202211009341.6、名称为“近域通信的控制方法、流量统计方法、装置及介质”的中国专利申请的优先权,该中国专利申请的全部内容通过引用全部并入本文。This disclosure requests the priority of the Chinese patent application with application number 202211009341.6 and titled "Control method, traffic statistics method, device and medium for near-field communication" submitted on August 22, 2022. The entire content of the Chinese patent application All incorporated herein by reference.
技术领域Technical field
本公开涉及通信技术领域,具体而言,涉及一种近域通信的控制方法、流量统计方法、装置及计算机可读存储介质。The present disclosure relates to the field of communication technology, and specifically, to a near-field communication control method, traffic statistics method, device, and computer-readable storage medium.
背景技术Background technique
近域通信是一种新型的通信模式,由第三代合作伙伴机会(The Third Generation Partnership Project,3GPP)组织提出,并定义为是一种允许移动终端在没有移动网络覆盖的情况下,通过PC5、WIFI等近域连接技术直接进行设备到设备(Device-to-Device,D2D)通信或依赖其他终端连接移动网络的新技术。基于近域通信,终端用户可通过无线技术连接到其他终端(也称中继终端)上,经过中继终端的移动通信网络服务连接到互联网上,以此提升通信系统的频谱效率。Near field communication is a new communication mode proposed by the Third Generation Partnership Project (3GPP) organization and defined as a method that allows mobile terminals to communicate through PC5 without mobile network coverage. , WIFI and other near-domain connection technologies directly perform device-to-device (D2D) communication or rely on other new terminals to connect to mobile networks. Based on near-field communication, end users can connect to other terminals (also called relay terminals) through wireless technology, and connect to the Internet through the mobile communication network services of the relay terminal, thereby improving the spectrum efficiency of the communication system.
但是在多级中继组网情况下,流量会层层叠加,在这种情况下如何保障用户级的流量安全以及实现流量的溯源,目前尚未有相关的标准和研究。However, in the case of multi-level relay networking, traffic will be superimposed layer by layer. In this case, there are currently no relevant standards and research on how to ensure user-level traffic security and achieve traffic traceability.
发明内容Contents of the invention
为解决上述技术问题,本公开的实施例提供了一种近域通信的控制方法、流量统计方法、装置及计算机可读存储介质,以便于对近域通信中的业务流量进行溯源及统计。In order to solve the above technical problems, embodiments of the present disclosure provide a near-field communication control method, a traffic statistics method, a device, and a computer-readable storage medium to facilitate traceability and statistics of business traffic in near-field communication.
根据本公开实施例的一个方面,提供了一种近域通信的控制方法,应用于终端,终端通过上游中继终端与基站间接连接,上游中继终端至少包括一个一级中继终端,一级中继终端通过新空口NR与基站连接,方法包括:若检测到与上游中继终端成功建立连接,则建立终端的第一非第三代合作伙伴计划3GPP会话,第一非3GPP会话通过与终端对应的非第三代合作伙伴计划互通功能N3IWF建立的第一非3GPP接入连接建立;其中,第一非3GPP会话承载终端发起并封装的业务流量;与下游终端建立连接,对下游终端的业务流量作旁路透传处理,以区隔于终端自身的会话流量,并通过与上游中继终端的连接转发下游终端的业务流量,以使下游终端通过与下游终端对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话;其中,第二非3GPP会话承载下游终端发起并封装的业 务流量。According to an aspect of an embodiment of the present disclosure, a near-domain communication control method is provided, which is applied to a terminal. The terminal is indirectly connected to the base station through an upstream relay terminal. The upstream relay terminal includes at least one level one relay terminal. The relay terminal connects to the base station through the new air interface NR. The method includes: if it is detected that the connection with the upstream relay terminal is successfully established, then establishing the first non-3rd Generation Partnership Project 3GPP session of the terminal, and the first non-3GPP session communicates with the terminal through The first non-3GPP access connection established by the corresponding non-3GPP interworking function N3IWF is established; among them, the first non-3GPP session carries the service traffic initiated and encapsulated by the terminal; a connection is established with the downstream terminal, and the service of the downstream terminal is The traffic is bypassed and transparently transmitted to separate it from the session traffic of the terminal itself, and the service traffic of the downstream terminal is forwarded through the connection with the upstream relay terminal, so that the downstream terminal passes through the second non-3GPP established by the N3IWF corresponding to the downstream terminal. The access connection establishes a second non-3GPP session; wherein the second non-3GPP session carries service traffic initiated and encapsulated by the downstream terminal.
在一些实施例中,终端为远端终端;在若检测到与上游中继终端成功建立连接,则建立终端的第一非3GPP会话之前,方法还包括:获取可接入的候选上游中继终端集合;根据候选上游中继终端集合中各个候选上游中继终端的信息,确认待连接的上游中继终端;向上游中继终端发起连接请求,以使上游中继终端根据连接请求与终端建立连接。In some embodiments, the terminal is a remote terminal; before establishing a first non-3GPP session of the terminal if it is detected that the connection with the upstream relay terminal is successfully established, the method further includes: obtaining an accessible candidate upstream relay terminal. Set; confirm the upstream relay terminal to be connected based on the information of each candidate upstream relay terminal in the candidate upstream relay terminal set; initiate a connection request to the upstream relay terminal so that the upstream relay terminal establishes a connection with the terminal according to the connection request .
在一些实施例中,向上游中继终端发起连接请求,以使上游中继终端根据连接请求与终端建立连接,包括:根据终端对应的终端信息生成连接请求;向上游中继终端发送连接请求,以使上游中继终端对连接请求中终端对应的终端信息进行验证,并在验证通过后分配终端对应的互联网协议地址;根据互联网协议地址与上游中继终端建立连接。In some embodiments, initiating a connection request to the upstream relay terminal so that the upstream relay terminal establishes a connection with the terminal according to the connection request includes: generating a connection request according to terminal information corresponding to the terminal; sending a connection request to the upstream relay terminal, This enables the upstream relay terminal to verify the terminal information corresponding to the terminal in the connection request, and allocate the Internet protocol address corresponding to the terminal after passing the verification; establish a connection with the upstream relay terminal based on the Internet protocol address.
在一些实施例中,终端为远端终端;若检测到与上游中继终端成功建立连接,则建立终端的第一非3GPP会话,第一非3GPP会话通过与终端对应的非第三代合作伙伴计划互通功能N3IWF建立的第一非3GPP接入连接建立,包括:根据终端对应的终端信息生成第一互联网密钥交换协议IKE包,并向上游中继终端发送第一IKE包,以使上游中继终端将第一IKE包转发给终端对应的N3IWF,以使终端对应的N3IWF对第一IKE包验证通过后,在终端对应的N3IWF与终端之间建立基于互联网协议安全网络协议IPSec的第一数据传输隧道;根据第一数据传输隧道通过终端对应的N3IWF建立经由上游中继终端的第一非3GPP接入连接;根据第一非3GPP接入连接建立终端的第一非3GPP会话。In some embodiments, the terminal is a remote terminal; if it is detected that the connection with the upstream relay terminal is successfully established, the first non-3GPP session of the terminal is established, and the first non-3GPP session passes through the non-3rd generation partner corresponding to the terminal. The establishment of the first non-3GPP access connection established by the planned interworking function N3IWF includes: generating a first Internet key exchange protocol IKE packet according to the terminal information corresponding to the terminal, and sending the first IKE packet to the upstream relay terminal, so that the upstream After the terminal forwards the first IKE packet to the N3IWF corresponding to the terminal, so that the N3IWF corresponding to the terminal passes the verification of the first IKE packet, the first data based on the Internet Protocol Security Network Protocol IPSec is established between the N3IWF corresponding to the terminal and the terminal. Transmission tunnel; establish a first non-3GPP access connection via the upstream relay terminal through the N3IWF corresponding to the terminal according to the first data transmission tunnel; establish a first non-3GPP session of the terminal according to the first non-3GPP access connection.
在一些实施例中,与下游终端建立连接,对下游终端的业务流量作旁路透传处理,并通过与上游中继终端的连接转发下游终端的业务流量,以使下游终端通过与对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话,包括:接收下游终端发送的第二IKE包,第二IKE包是根据下游终端对应的终端信息生成的;将第二IKE包旁路透传转发给上游中继终端,以使上游中继终端将第二IKE包转发给N3IWF,以使N3IWF对第二IKE包验证通过后,在N3IWF与下游终端之间建立基于IPSec的第二数据传输隧道,以使下游终端根据第二数据传输隧道通过N3IWF建立经由终端和上游中继终端的第二非3GPP接入连接,以根据第二非3GPP接入连接建立第二非3GPP会话,其中,终端成为中继终端。In some embodiments, a connection is established with the downstream terminal, the service traffic of the downstream terminal is bypassed and transparently transmitted, and the service traffic of the downstream terminal is forwarded through the connection with the upstream relay terminal, so that the downstream terminal establishes a connection with the corresponding N3IWF The second non-3GPP access connection establishes a second non-3GPP session, including: receiving the second IKE packet sent by the downstream terminal, the second IKE packet is generated based on the terminal information corresponding to the downstream terminal; bypassing and transparently transmitting the second IKE packet Forward to the upstream relay terminal, so that the upstream relay terminal forwards the second IKE packet to N3IWF, so that after N3IWF passes the verification of the second IKE packet, a second data transmission tunnel based on IPSec is established between N3IWF and the downstream terminal. , so that the downstream terminal establishes a second non-3GPP access connection via the terminal and the upstream relay terminal through the N3IWF according to the second data transmission tunnel, so as to establish a second non-3GPP session according to the second non-3GPP access connection, wherein the terminal becomes Relay terminal.
在一些实施例中,终端为一个或多个,多个终端依次连接,且多个终端中至少一个终端与一级中继终端连接。In some embodiments, there are one or more terminals, the plurality of terminals are connected in sequence, and at least one terminal among the plurality of terminals is connected to a first-level relay terminal.
在一些实施例中,下游终端为一个或多个,终端分别对多个下游终端的业务流量作旁路透传处理。In some embodiments, there are one or more downstream terminals, and the terminals respectively perform bypass and transparent transmission processing on the service traffic of multiple downstream terminals.
根据本公开实施例的一个方面,提供了一种流量统计方法,终端通过上游中继终端与基站间接连接,上游中继终端至少包括一个一级中继终端,一级中继终端通过新空口NR与基站连接,终端通过与终端对应的N3IWF建立的第一非3GPP接入连接建立第一非3GPP会话,终端与下游终端连接,下游终端通过与下游终端对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话,第一非3GPP会话承载终端发起并封装的业务流量,第二非3GPP会话承载下游终端发起并封装的业务流量;方法包括:对第一非3GPP会话对应的会话锚点记录的流量进行统计,确认终端对应的业务流量用量;对第二非3GPP会话对应的会话锚点记录的流量进行统计,确认下游终端对应的业务流量用量。According to one aspect of the embodiment of the present disclosure, a traffic statistics method is provided. The terminal is indirectly connected to the base station through an upstream relay terminal. The upstream relay terminal includes at least one first-level relay terminal. The first-level relay terminal passes through the new air interface NR. Connected to the base station, the terminal establishes a first non-3GPP session through the first non-3GPP access connection established by the N3IWF corresponding to the terminal. The terminal is connected to the downstream terminal, and the downstream terminal establishes a second non-3GPP access through the N3IWF corresponding to the downstream terminal. The connection establishes a second non-3GPP session, the first non-3GPP session carries service traffic initiated and encapsulated by the terminal, and the second non-3GPP session carries business traffic initiated and encapsulated by the downstream terminal; the method includes: modifying the session anchor corresponding to the first non-3GPP session Perform statistics on the traffic recorded by the point to confirm the service traffic usage corresponding to the terminal; perform statistics on the traffic recorded in the session anchor point corresponding to the second non-3GPP session to confirm the service traffic usage corresponding to the downstream terminal.
在一些实施例中,上游中继终端为一级中继终端,一级中继终端与基站建立有NR会话;方法还包括:获取NR会话对应的会话锚点记录的总流量;根据总流量对应的目标地址剔除目前地址为所有N3IWF的流量;根据剔除结果确认一级中继终端对应的业务流量用量。In some embodiments, the upstream relay terminal is a first-level relay terminal, and the first-level relay terminal has established an NR session with the base station; the method also includes: obtaining the total traffic recorded by the session anchor point corresponding to the NR session; and corresponding The destination address is to eliminate all traffic whose current address is N3IWF; confirm the business traffic usage corresponding to the first-level relay terminal based on the elimination results.
根据本公开实施例的一个方面,提供了一种近域通信的控制装置,应用于终端,终端通过上游中继终端与基站间接连接,上游中继终端至少包括一个一级中继终端,一级中继终端通过新空口NR与基站连接,装置包括:连接建立装置,配置为若检测到与上游中继终端成功建立连接,则建立终端的第一非第三代合作伙伴计划3GPP会话,第一非3GPP会话通过与终端对应的非第三代合作伙伴计划互通功能N3IWF建立的第一非3GPP接入连接建立;其中,第一非3GPP会话承载终端发起并封装的业务流量;旁路透传装置,配置为与下游终端建立连接,对下游终端的业务流量作旁路透传处理,并通过与上游中继终端的连接转发下游终端的业务流量,以使下游终端通过与下游终端对应N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话;其中,第二非3GPP会话承载下游终端发起并封装的业务流量。According to one aspect of an embodiment of the present disclosure, a near-domain communication control device is provided, which is applied to a terminal. The terminal is indirectly connected to a base station through an upstream relay terminal. The upstream relay terminal includes at least one level one relay terminal. The relay terminal is connected to the base station through the new air interface NR. The device includes: a connection establishment device configured to establish the first non-3rd Generation Partnership Project 3GPP session of the terminal if it detects that the connection with the upstream relay terminal is successfully established. The non-3GPP session is established through the first non-3GPP access connection established by the non-3GPP interworking function N3IWF corresponding to the terminal; wherein, the first non-3GPP session carries the service traffic initiated and encapsulated by the terminal; the bypass transparent transmission device, It is configured to establish a connection with the downstream terminal, perform bypass transparent transmission on the downstream terminal's service traffic, and forward the downstream terminal's service traffic through the connection with the upstream relay terminal, so that the downstream terminal passes through the second N3IWF established with the downstream terminal. The non-3GPP access connection establishes a second non-3GPP session; wherein the second non-3GPP session carries service traffic initiated and encapsulated by the downstream terminal.
根据本公开实施例的一个方面,提供了一种流量统计装置,终端通过一级中继终端与基站间接连接,一级中继终端通过新空口NR与基站连接,终端通过与终端对应的N3IWF建立的第一非3GPP接入连接建立第一非3GPP会话,终端与下游终端连接,下游终端通过与下游终端对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话,第一非3GPP会话承载终端发起并封装的业务流量,第二非3GPP会话承载下游终端发起并封装的业务流量;装置包括:第一确认装置,配置为对第一非3GPP会话对应的会话锚点记录的流量进行统计,确认终端对应的业务流量用量;第二确认装置,配置为对第二非3GPP会话对应的会话锚点记录的流量进行统计,确认下游终端对应的业务流量用量。According to one aspect of the embodiment of the present disclosure, a traffic statistics device is provided. The terminal is indirectly connected to the base station through the first-level relay terminal. The first-level relay terminal is connected to the base station through the new air interface NR. The terminal is established through the N3IWF corresponding to the terminal. The first non-3GPP access connection establishes the first non-3GPP session. The terminal connects to the downstream terminal. The downstream terminal establishes the second non-3GPP session through the second non-3GPP access connection established by the N3IWF corresponding to the downstream terminal. The first non-3GPP session is established. The session carries the service traffic initiated and encapsulated by the terminal, and the second non-3GPP session carries the service traffic initiated and encapsulated by the downstream terminal; the device includes: a first confirmation device configured to perform traffic processing on the session anchor record corresponding to the first non-3GPP session. Statistics are used to confirm the service traffic usage corresponding to the terminal; the second confirmation device is configured to make statistics on the traffic recorded by the session anchor point corresponding to the second non-3GPP session, and confirm the service traffic usage corresponding to the downstream terminal.
根据本公开实施例的一个方面,提供了一种计算机可读存储介质,其上存储有计算机程序,计算机程序被处理器执行时实现如上的近域通信的控制方法或流量统计方法。According to one aspect of an embodiment of the present disclosure, a computer-readable storage medium is provided, on which a computer program is stored. When the computer program is executed by a processor, the above near-field communication control method or traffic statistics method is implemented.
根据本公开实施例的一个方面,提供了一种电子设备,包括一个或多个处理器;存储装置,用于存储一个或多个程序,当一个或多个程序被电子设备执行时,使得电子设备实现如上的近域通信的控制方法或流量统计方法。According to an aspect of an embodiment of the present disclosure, an electronic device is provided, including one or more processors; a storage device configured to store one or more programs, and when the one or more programs are executed by the electronic device, the electronic device The device implements the above near-domain communication control method or traffic statistics method.
在本公开的实施例提供的技术方案中,通过与终端对应的N3IWF建立的第一非3GPP接入连接建立第一非3GPP会话,并与下游终端建立连接,对下游终端的业务流量作旁路透传处理,以使下游终端通过与下游终端对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话,第一非3GPP会话用于承载终端发起并封装的业务流量,第二非3GPP会话用于承载下游终端发起并封装的业务流量,使除一级中继终端之外的各级终端的会话用户面都是独立的,不存在嵌套关系,各个终端分别建立只承载自身业务流量的非3GPP会话,而对下游终端的业务流量仅作旁路透传处理,进而可以针对多级中继的近域通信实现不同终端的业务流量安全隔离,便于各终端进行业务流量的溯源计费。In the technical solution provided by the embodiments of the present disclosure, the first non-3GPP session is established through the first non-3GPP access connection established with the N3IWF corresponding to the terminal, and a connection is established with the downstream terminal to bypass the business traffic of the downstream terminal. transmission processing, so that the downstream terminal establishes a second non-3GPP session through the second non-3GPP access connection established by the N3IWF corresponding to the downstream terminal. The first non-3GPP session is used to carry the service traffic initiated and encapsulated by the terminal. The second non-3GPP session Sessions are used to carry business traffic initiated and encapsulated by downstream terminals, so that the session user planes of terminals at all levels except the first-level relay terminal are independent, and there is no nesting relationship. Each terminal is established to only carry its own business traffic. non-3GPP sessions, and only performs bypass transparent transmission processing on the downstream terminal's service traffic, which can achieve safe isolation of different terminals' service traffic for multi-level relay near-domain communication, and facilitate each terminal's traceability and billing of service traffic.
附图说明Description of drawings
此处的附图被并入说明书中并构成本说明书的一部分,示出了符合本公开的实施例,并与说明书一起用于解释本公开的原理。显而易见地,下面描述中的附图仅仅是本公开的一些实施例,对于本领域普通技术者来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。在附图中:The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the disclosure and together with the description, serve to explain the principles of the disclosure. Obviously, the drawings in the following description are only some embodiments of the present disclosure. For those of ordinary skill in the art, other drawings can be obtained based on these drawings without exerting creative efforts. In the attached picture:
图1是可以应用本公开实施例的技术方案的示例性应用环境的示意图。FIG. 1 is a schematic diagram of an exemplary application environment in which the technical solutions of embodiments of the present disclosure can be applied.
图2是本公开的一示例性实施例示出的近域通信的控制方法的流程图。FIG. 2 is a flowchart of a control method for near-field communication according to an exemplary embodiment of the present disclosure.
图3是本公开的一示例性实施例示出的下游终端、终端与上游中继终端的连接示意图。FIG. 3 is a schematic diagram of a downstream terminal, a connection between the terminal and an upstream relay terminal, according to an exemplary embodiment of the present disclosure.
图4是本公开的一示例性实施例示出的各终端之间的会话建立示意图。Figure 4 is a schematic diagram of session establishment between terminals according to an exemplary embodiment of the present disclosure.
图5是本公开的一示例性实施例示出的多级中继的数据传输隧道的示意图。FIG. 5 is a schematic diagram of a multi-level relay data transmission tunnel according to an exemplary embodiment of the present disclosure.
图6是本公开的一示例性实施例示出的终端为多个时的连接示意图。FIG. 6 is a schematic connection diagram when there are multiple terminals according to an exemplary embodiment of the present disclosure.
图7是本公开的一示例性实施例示出的流量统计方法的流程图。FIG. 7 is a flow chart of a traffic statistics method according to an exemplary embodiment of the present disclosure.
图8是本公开的一示例性实施例示出的近域通信的控制方法和流量统计方法的流程图。FIG. 8 is a flowchart of a near-field communication control method and a traffic statistics method according to an exemplary embodiment of the present disclosure.
图9是本公开的一示例性实施例示出的近域通信的控制装置的框图。FIG. 9 is a block diagram of a near-field communication control device according to an exemplary embodiment of the present disclosure.
图10是本公开的一示例性实施例示出的流量统计装置的框图。FIG. 10 is a block diagram of a traffic statistics device according to an exemplary embodiment of the present disclosure.
图11是适于用来实现本公开实施例的电子设备的计算机系统的结构示意图。FIG. 11 is a schematic structural diagram of a computer system suitable for implementing an electronic device according to an embodiment of the present disclosure.
具体实施方式Detailed ways
这里将详细地对示例性实施例执行说明,其示例表示在附图中。下面的描述涉及附图时,除非另有表示,不同附图中的相同数字表示相同或相似的要素。以下示例性实施例中所描述的实施方式并不代表与本公开相同的所有实施方式。相反,它们仅是与如所附权利要求书中所详述的、本公开的一些方面相同的装置和方法的例子。Reference will now be made in detail to exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the drawings, the same numbers in different drawings refer to the same or similar elements unless otherwise indicated. The implementations described in the following exemplary embodiments do not represent all implementations that are identical to the present disclosure. Rather, they are merely examples of apparatus and methods common to aspects of the disclosure as detailed in the appended claims.
附图中所示的方框图仅仅是功能实体,不一定必须与物理上独立的实体相对应。即,可以采用应用程序形式来实现这些功能实体,或在一个或多个硬件模块或集成电路中实现这些功能实体,或在不同网络和/或处理器装置和/或微控制器装置中实现这些功能实体。The block diagrams shown in the figures are functional entities only and do not necessarily correspond to physically separate entities. That is, these functional entities may be implemented in the form of an application program, or implemented in one or more hardware modules or integrated circuits, or implemented in different networks and/or processor devices and/or microcontroller devices. Functional entity.
附图中所示的流程图仅是示例性说明,不是必须包括所有的内容和操作/步骤,也不是必须按所描述的顺序执行。例如,有的操作/步骤还可以分解,而有的操作/步骤可以合并或部分合并,因此实际执行的顺序有可能根据实际情况改变。The flowcharts shown in the drawings are only illustrative, and do not necessarily include all contents and operations/steps, nor must they be performed in the order described. For example, some operations/steps can be decomposed, and some operations/steps can be merged or partially merged, so the actual order of execution may change according to the actual situation.
需要说明的是,在本公开中提及的“多个”是指两个或者两个以上。“和/或”描述关联对象的关联关系,表示可以存在三种关系,例如,A和/或B可以表示:单独存在A,同时存在A和B,单独存在B这三种情况。字符“/”一般表示前后关联对象是一种“或”的关系。It should be noted that the “plurality” mentioned in this disclosure refers to two or more. "And/or" describes the association of related objects, indicating that there can be three relationships. For example, A and/or B can mean: A exists alone, A and B exist simultaneously, and B exists alone. The character "/" generally indicates that the related objects are in an "or" relationship.
在本公开一些实施例中,近域通信的控制方法可以应用于如图1所示的实施环境中。图1是本公开实施例的一种近域通信的控制方法的实施环境示意图,如图1所示,该实施环境包括下游终端、终端、上游中继终端和基站,终端1与上游中继终端进行近域通信,上游中继终端通过无线空口与基站通信连接。进一步的,下游终端可以请求与终端进行近域通信,此时终端作为下游终端的中继终端。In some embodiments of the present disclosure, the control method of near-field communication can be applied in the implementation environment as shown in Figure 1. Figure 1 is a schematic diagram of the implementation environment of a near-domain communication control method according to an embodiment of the present disclosure. As shown in Figure 1, the implementation environment includes a downstream terminal, a terminal, an upstream relay terminal and a base station. Terminal 1 and the upstream relay terminal For near-domain communication, the upstream relay terminal communicates with the base station through the wireless air interface. Further, the downstream terminal may request to perform near-domain communication with the terminal, and at this time the terminal serves as a relay terminal for the downstream terminal.
其中,下游终端、终端和上游中继终端具备移动网络的用户身份,可以是智能手机、平板、笔记本电脑、计算机、车载终端等电子设备,但并不局限于此。下游终端、终端和上游中继终端可以泛指多个终端中的一个,本领域技术人员可以知晓,上述下游终端、终端和上游中继终端的数量可以更多。比如上述下游终端、终端和上游中继设备可以仅为一个,或者上述下游终端、终端和上游中继设备为几十个或几百个,或者更多数量,此时上述近域通信的控制方法的实施环境还包括其他终端。本公开实施例对终端的数量和设备类型不加以限定。Among them, the downstream terminal, terminal and upstream relay terminal have the user identity of the mobile network and can be electronic devices such as smartphones, tablets, laptops, computers, vehicle-mounted terminals, etc., but are not limited to this. The downstream terminal, terminal and upstream relay terminal may generally refer to one of multiple terminals. Those skilled in the art will know that the number of the above-mentioned downstream terminals, terminals and upstream relay terminals may be greater. For example, the above-mentioned downstream terminal, terminal and upstream relay device may be only one, or the above-mentioned downstream terminal, terminal and upstream relay device may be dozens or hundreds, or more. In this case, the above-mentioned control method for near-domain communication The implementation environment also includes other terminals. The embodiments of the present disclosure do not limit the number of terminals and device types.
请参阅图2,图2是本公开的一个实施例示出的近域通信的控制方法的流程图,该近域通信的控制方法可以应用于图1所示的实施环境,并由该实施环境中的终端具体执行。应理解的是,该方法也可以适用于其它的示例性实施环境,并由其它实施环境中的设备具体执行,本实施例不对该方法所适用的实施环境进行限制。Please refer to Figure 2. Figure 2 is a flow chart of a near-field communication control method according to an embodiment of the present disclosure. The near-field communication control method can be applied to the implementation environment shown in Figure 1, and can be used in the implementation environment. The terminal is specifically executed. It should be understood that this method can also be applied to other exemplary implementation environments and be specifically executed by devices in other implementation environments. This embodiment does not limit the implementation environments to which this method is applicable.
下面以终端作为具体的执行主体来对本公开实施例提出的近域通信的控制方法进行详细介绍。The following is a detailed introduction to the near-field communication control method proposed in the embodiment of the present disclosure, using the terminal as a specific execution subject.
如图2所示,在一示例性的实施例中,近域通信的控制方法至少包括步骤S210至步 骤S220,详细介绍如下:As shown in Figure 2, in an exemplary embodiment, the control method of near-field communication includes at least step S210 to step S220, which are described in detail as follows:
步骤S210、若检测到与上游中继终端成功建立连接,则建立终端的第一非第三代合作伙伴计划3GPP会话,第一非3GPP会话通过与终端对应的非第三代合作伙伴计划互通功能N3IWF建立的第一非3GPP接入连接建立;其中,第一非3GPP会话承载终端发起并封装的业务流量。Step S210: If it is detected that the connection is successfully established with the upstream relay terminal, the first non-3rd Generation Partnership Project 3GPP session of the terminal is established. The first non-3GPP session uses the non-3rd Generation Partnership Project interworking function corresponding to the terminal. The first non-3GPP access connection established by the N3IWF is established; wherein, the first non-3GPP session carries service traffic initiated and encapsulated by the terminal.
需要说明的是,非第三代合作伙伴计划互通功能(Non-3GPP Inter Working Function,N3IWF)负责将不可信的非3GPP接入网接入到移动通信核心网,如第五代移动通信技术(5th Generation Mobile Communication Technology,5G)核心网。It should be noted that the Non-3GPP Interworking Function (N3IWF) is responsible for connecting untrusted non-3GPP access networks to the mobile communications core network, such as the fifth-generation mobile communications technology ( 5th Generation Mobile Communication Technology, 5G) core network.
终端与上游中继终端建立连接,并通过该连接与N3IWF建立第一非3GPP接入连接,进而终端根据第一非3GPP接入连接建立经由上游中继终端的第一非3GPP会话,该第一非3GPP会话只承载该终端发起并封装的业务流量,如终端在生成业务报文后,可根据预设定义将该终端的地址信息、对应N3IWF的隧道地址信息等封装到该业务报文中。The terminal establishes a connection with the upstream relay terminal, and establishes a first non-3GPP access connection with the N3IWF through the connection, and then the terminal establishes a first non-3GPP session via the upstream relay terminal according to the first non-3GPP access connection. Non-3GPP sessions only carry service traffic initiated and encapsulated by the terminal. For example, after the terminal generates a service packet, it can encapsulate the terminal's address information, corresponding N3IWF tunnel address information, etc. into the service packet according to the preset definition.
其中,上游中继终端中包括至少一个一级中继终端,一级中继终端通过新空口(New Radio,NR)与基站连接。Among them, the upstream relay terminal includes at least one first-level relay terminal, and the first-level relay terminal is connected to the base station through a new radio interface (New Radio, NR).
例如,上游中继终端包括一级中继终端A和非一级终端B1,一级中继终端A和基站通信连接,终端B2可以与非一级终端B1建立连接,并建立经由一级中继终端A和非一级终端B1的第一非3GPP会话。此时,若终端B2没有为其它下游终端提供网络连接服务,则终端B2为远端终端,若终端B2有为其它下游终端提供网络连接服务,则终端B2为中继终端。其中,一级中继终端是指与基站直接连接的终端,非一级终端是指与基站间接连接的终端。可以理解的是,终端B2也可以选择其它中继终端进行网络连接,例如选择与一级中继终端A建立连接,并建立经由一级中继终端A的第一非3GPP会话。For example, the upstream relay terminal includes a first-level relay terminal A and a non-level one terminal B1. The first-level relay terminal A communicates with the base station. The terminal B2 can establish a connection with the non-level one terminal B1 and establish a connection via the first-level relay. The first non-3GPP session between terminal A and non-level 1 terminal B1. At this time, if terminal B2 does not provide network connection services for other downstream terminals, then terminal B2 is a remote terminal. If terminal B2 provides network connection services for other downstream terminals, then terminal B2 is a relay terminal. Among them, the first-level relay terminal refers to the terminal directly connected to the base station, and the non-first-level terminal refers to the terminal indirectly connected to the base station. It can be understood that terminal B2 can also select other relay terminals for network connection, for example, choose to establish a connection with the first-level relay terminal A, and establish the first non-3GPP session via the first-level relay terminal A.
步骤S220、与下游终端建立连接,对下游终端的业务流量作旁路透传处理,并通过与上游中继终端的连接转发下游终端的业务流量,以使下游终端通过与下游终端对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话;其中,第二非3GPP会话承载下游终端发起并封装的业务流量。Step S220: Establish a connection with the downstream terminal, perform bypass transparent transmission processing on the downstream terminal's business traffic, and forward the downstream terminal's business traffic through the connection with the upstream relay terminal, so that the downstream terminal can pass the N3IWF corresponding to the downstream terminal. The second non-3GPP access connection establishes a second non-3GPP session; wherein the second non-3GPP session carries service traffic initiated and encapsulated by the downstream terminal.
需要说明的是,对下游终端的业务流量作旁路透传处理是指终端仅对下游终端的业务流量进行转发,即不对数据包进行任何处理,包括修改或进行封装等。其中,与下游终端建立第二非3GPP接入连接的N3IWF和与终端建立第一非3GPP接入连接的N3IWF可以是同一N3IWF,也可以是不同N3IWF,本公开对此不进行限定。It should be noted that the bypass and transparent transmission processing of the business traffic of the downstream terminal means that the terminal only forwards the business traffic of the downstream terminal, that is, it does not perform any processing on the data packets, including modification or encapsulation, etc. The N3IWF that establishes the second non-3GPP access connection with the downstream terminal and the N3IWF that establishes the first non-3GPP access connection with the terminal may be the same N3IWF or different N3IWFs, and this disclosure does not limit this.
下游终端与终端建立连接,并通过该连接与下游终端对应的N3IWF建立第二非3GPP接入连接,进而下游终端根据第二非3GPP接入连接建立经由终端和上游中继终端的第二非3GPP会话,该第二非3GPP会话只承载该下游终端的业务流量。The downstream terminal establishes a connection with the terminal, and establishes a second non-3GPP access connection with the N3IWF corresponding to the downstream terminal through the connection, and then the downstream terminal establishes a second non-3GPP access connection via the terminal and the upstream relay terminal according to the second non-3GPP access connection. session, the second non-3GPP session only carries the service traffic of the downstream terminal.
其中,上游中继终端中包括至少一个一级中继终端,一级中继终端通过新空口(New Radio,NR)与基站连接。Among them, the upstream relay terminal includes at least one first-level relay terminal, and the first-level relay terminal is connected to the base station through a new radio interface (New Radio, NR).
可以理解的是,在多级中继的近域通信中,各级终端联网的次序是自上而下的。例如,终端A首先通过基站联网,此时终端A可以作为一级中继终端为其它终端提供上网服务;然后终端B选择作为一级中继终端的终端A进行连接,连接成功后,该终端B也可以作为其它终端的上游中继终端为其它终端提供上网服务;然后终端C选择作为上游中继终端的终端B进行连接,以此类推。其中,终端C的上游中继终端包括终端A和终端B,终端B的上游中继终端包括终端A,终端B的下游终端包括终端C,终端A的下游中继终端包括终端B和终端C,且终端A为一级中继终端,终端B和终端C为非一级终端。It can be understood that in multi-level relay near-field communication, the order of networking of terminals at each level is top-down. For example, terminal A first connects to the Internet through the base station. At this time, terminal A can serve as a first-level relay terminal to provide Internet services for other terminals; then terminal B selects terminal A as a first-level relay terminal to connect. After the connection is successful, terminal B It can also serve as the upstream relay terminal of other terminals to provide Internet services for other terminals; then terminal C selects terminal B as the upstream relay terminal to connect, and so on. Among them, the upstream relay terminals of terminal C include terminal A and terminal B, the upstream relay terminals of terminal B include terminal A, the downstream terminals of terminal B include terminal C, and the downstream relay terminals of terminal A include terminal B and terminal C. And terminal A is a first-level relay terminal, and terminal B and terminal C are non-first-level terminals.
示例性地,请参阅图3,图3为本公开示例性示出的下游终端、终端与上游中继终端的连接示意图。如图3所示,上游中继终端A为一级中继终端,其通过蜂窝网通信接口(Uu)与基站NG-RAN通信连接。终端B与一级中继终端A近域通信,如可以是通过直连通信接口(PC5或Wi-fi)与一级中继终端A通信连接,其中,PC5接口遵循sidelink通信协议。下游终端C与终端B近域通信,如下游终端C通过PC5与终端B通信连接,此时终端B作为下游终端C的上游中继终端。Exemplarily, please refer to FIG. 3 , which is a schematic diagram of a downstream terminal, a connection between the terminal and an upstream relay terminal exemplarily shown in this disclosure. As shown in Figure 3, the upstream relay terminal A is a first-level relay terminal, which is connected to the base station NG-RAN through a cellular network communication interface (Uu). Terminal B communicates with the first-level relay terminal A in the near domain. For example, the terminal B communicates with the first-level relay terminal A through a direct communication interface (PC5 or Wi-fi). The PC5 interface follows the sidelink communication protocol. The downstream terminal C communicates with the terminal B in the near domain. For example, the downstream terminal C communicates with the terminal B through the PC5. At this time, the terminal B serves as the upstream relay terminal of the downstream terminal C.
一级中继终端A与NG-RAN建立有NR会话,该NR会话中的一级中继终端A对应的一级中继终端用户面功能(User plane function,UPF)网元通过N3接口与NG-RAN连接,构建一级中继终端A对应的用户面路径为一级中继终端A到NG-RAN到一级中继终端A的UPF网元。其中,N3接口是接入设备(如5G基站、N3IWF)与UPF网元间的接口,主要用于传递接入设备与UPF网元间的上下行用户面数据。The first-level relay terminal A has established an NR session with the NG-RAN. The first-level relay terminal user plane function (UPF) network element corresponding to the first-level relay terminal A in the NR session communicates with the NG through the N3 interface. -RAN connection, constructing a UPF network element whose user plane path corresponding to the first-level relay terminal A is from the first-level relay terminal A to the NG-RAN to the first-level relay terminal A. Among them, the N3 interface is the interface between access equipment (such as 5G base stations, N3IWF) and UPF network elements. It is mainly used to transmit uplink and downlink user plane data between access equipment and UPF network elements.
终端B与N3IWF建立有第一非3GPP接入连接,并通过第一非3GPP接入连接建立有该终端B对应的第一非3GPP会话,该第一非3GPP会话中的终端B对应的终端B用户面功能(User plane function,UPF)网元通过N3接口与N3IWF连接,N3IWF通过N6接口与一级中继终端A的UPF网元连接,构建终端B对应的用户面路径为终端B到一级中继终端A到NG-RAN到一级中继终端A的UPF网元到N3IWF到终端B的UPF网元,终端B对应的用户面路径可理解为终端B进行业务访问时业务数据在终端B和会话锚点UPF网元之间的路由和转发路径。其中,N6接口是UPF网元与数据网络(Data Network,DN)的接口,用于传递UPF与DN之间的上下行用户数据流。Terminal B establishes a first non-3GPP access connection with N3IWF, and establishes a first non-3GPP session corresponding to terminal B through the first non-3GPP access connection. Terminal B corresponding to terminal B in the first non-3GPP session The user plane function (UPF) network element is connected to the N3IWF through the N3 interface. The N3IWF is connected to the UPF network element of the first-level relay terminal A through the N6 interface. The user plane path corresponding to the terminal B is constructed from terminal B to the first-level relay terminal. From relay terminal A to NG-RAN to the UPF network element of primary relay terminal A to N3IWF to the UPF network element of terminal B. The user plane path corresponding to terminal B can be understood as the service data in terminal B when terminal B performs service access. The routing and forwarding path between the session anchor UPF network element and the session anchor UPF network element. Among them, the N6 interface is the interface between the UPF network element and the Data Network (DN), and is used to transmit upstream and downlink user data flows between UPF and DN.
下游终端C与N3IWF建立有第二非3GPP接入连接,并通过第二非3GPP接入连接建立有该下游终端C对应的第二非3GPP会话,该第二非3GPP会话中的下游终端C对应的下游终端C的用户面功能(User plane function,UPF)网元通过N3接口与N3IWF连接,N3IWF通过N6接口与一级中继终端A的UPF网元连接,构建下游终端C对应的用户面路径为下游终端C到终端B到一级中继终端A到NG-RAN到一级中继终端A的UPF网元到N3IWF到下游终端C的UPF网元,下游终端C对应的用户面路径可理解为下游终端C进行业务访问时业务数据在下游终端C和会话锚点UPF网元之间的路由和转发路径。The downstream terminal C establishes a second non-3GPP access connection with the N3IWF, and establishes a second non-3GPP session corresponding to the downstream terminal C through the second non-3GPP access connection. The downstream terminal C in the second non-3GPP session corresponds to The user plane function (UPF) network element of the downstream terminal C is connected to the N3IWF through the N3 interface, and the N3IWF is connected to the UPF network element of the first-level relay terminal A through the N6 interface to construct the user plane path corresponding to the downstream terminal C. It is the UPF network element from downstream terminal C to terminal B to the first-level relay terminal A to NG-RAN to the first-level relay terminal A to the UPF network element from N3IWF to the downstream terminal C. The user plane path corresponding to the downstream terminal C can be understood. It is the routing and forwarding path of service data between the downstream terminal C and the session anchor UPF network element when the downstream terminal C performs service access.
另外,图3中所示的终端接入上游中继终端,下游终端接入终端,但是本领域技术人 员能够理解,终端和下游终端也可以接入不同的网络设备。In addition, the terminal shown in Figure 3 is connected to the upstream relay terminal, and the downstream terminal is connected to the terminal. However, those skilled in the art can understand that the terminal and the downstream terminal can also be connected to different network devices.
本公开提供的近域通信的控制方法,终端通过与N3IWF建立的第一非3GPP接入连接建立第一非3GPP会话,并与下游终端建立连接,对下游终端的业务流量作旁路透传处理,以使下游终端通过与N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话,第一非3GPP会话用于承载终端发起并封装的业务流量,第二非3GPP会话用于承载下游终端发起并封装的业务流量,使除一级中继终端之外的各级终端的会话用户面都是独立的,不存在嵌套关系,除一级中继终端之外的各个终端分别建立只承载自身业务流量的非3GPP会话,而对下游终端的业务流量仅作旁路透传处理,进而可以针对多级中继的近域通信实现不同终端的安全用户面及业务流量安全隔离,以便后续对不同终端的业务流量进行溯源计费等处理。In the near-domain communication control method provided by this disclosure, the terminal establishes the first non-3GPP session through the first non-3GPP access connection established with the N3IWF, establishes a connection with the downstream terminal, and performs bypass transparent transmission processing on the downstream terminal's business traffic. So that the downstream terminal establishes a second non-3GPP session through the second non-3GPP access connection established with the N3IWF. The first non-3GPP session is used to carry the service traffic initiated and encapsulated by the terminal, and the second non-3GPP session is used to carry the service traffic initiated and encapsulated by the downstream terminal. And encapsulated business traffic, so that the session user planes of terminals at all levels except the first-level relay terminal are independent, and there is no nesting relationship. Each terminal except the first-level relay terminal is established separately and only carries itself. Non-3GPP sessions of business traffic, and only bypass transparent transmission processing of the business traffic of downstream terminals, which can realize the safe user plane and business traffic security isolation of different terminals for the near-domain communication of multi-level relays, so as to facilitate the subsequent isolation of different terminals. The business traffic is processed such as traceability and billing.
在一些实施方式中,终端为远端终端;在若检测到与上游中继终端成功建立连接,则建立所述终端的第一非3GPP会话之前,方法还包括:获取可接入的候选上游中继终端集合;根据候选上游中继终端集合中各个候选上游中继终端的信息,确认待连接的上游中继终端;向上游中继终端发起连接请求,以使上游中继终端根据连接请求与所述终端建立连接。In some embodiments, the terminal is a remote terminal; before the first non-3GPP session of the terminal is established if it is detected that the connection with the upstream relay terminal is successfully established, the method further includes: obtaining the accessible candidate upstream terminal. A set of relay terminals; according to the information of each candidate upstream relay terminal in the set of candidate upstream relay terminals, confirm the upstream relay terminal to be connected; initiate a connection request to the upstream relay terminal so that the upstream relay terminal can communicate with all candidate upstream relay terminals according to the connection request. The terminal establishes a connection.
为了在终端和上游中继终端之间建立直接链路,要求终端能够检测和发现可以连接的上游中继终端。In order to establish a direct link between the terminal and the upstream relay terminal, the terminal is required to be able to detect and discover the upstream relay terminal that can be connected.
示例性地,在3GPP标准TS 23.303中定义了使用进化的UMTS陆地无线接入(Evolved-UMTS Terrestrial Radio Access,E-UTRA)或无线局域网(Wireless Local Area Network,WLAN)直接无线电信号检测和识别附近的另一个UE的过程的邻近服务直接发现(ProSe Direct Discovery)流程。下面将邻近服务直接发现流程简称为直接发现流程。根据3GPP标准TS23.303 5.3.1.2的规定,直接发现流程包括两种模式,即,模式A和模式B。For example, the use of Evolved-UMTS Terrestrial Radio Access (E-UTRA) or Wireless Local Area Network (Wireless Local Area Network, WLAN) direct radio signal detection and identification of nearby areas is defined in 3GPP standard TS 23.303 ProSe Direct Discovery (ProSe Direct Discovery) process of another UE process. The proximity service direct discovery process is hereinafter referred to as the direct discovery process. According to the provisions of 3GPP standard TS23.303 5.3.1.2, the direct discovery process includes two modes, namely, mode A and mode B.
其中,在模式A中,上游中继终端发送用于直接发现的广播消息(UE-to-Network Relay Discovery Announcement message),终端监听该广播消息。Among them, in mode A, the upstream relay terminal sends a broadcast message for direct discovery (UE-to-Network Relay Discovery Announcement message), and the terminal monitors the broadcast message.
在模式B中,终端发送用于直接发现的请求消息(UE-to-Network Relay Discovery Solicitation message),匹配了请求消息中包含的中继服务代码(Relay Service Code)的上游中继终端向终端发出响应消息(UE-to-Network Relay Discovery Response message)。In mode B, the terminal sends a request message (UE-to-Network Relay Discovery Solicitation message) for direct discovery, and the upstream relay terminal that matches the relay service code (Relay Service Code) contained in the request message sends a request message to the terminal. Response message (UE-to-Network Relay Discovery Response message).
当终端通过上述直接发现流程检测和发现到一个或多个候选上游中继终端(candidate relay UE)后,选择一个满足条件的候选上游中继终端以建立直接链路。例如,终端B1通过直接发现检测流程发现了上游中继终端B1和上游中继终端B2,并且从中选择了满足条件的上游中继终端B1以建立直接链路。这里的条件可以包括但不限定于:满足ProSe层准则,满足接入层准则等。After the terminal detects and discovers one or more candidate upstream relay terminals (candidate relay UE) through the above direct discovery process, it selects a candidate upstream relay terminal that meets the conditions to establish a direct link. For example, terminal B1 discovers the upstream relay terminal B1 and the upstream relay terminal B2 through the direct discovery detection process, and selects the upstream relay terminal B1 that meets the conditions to establish a direct link. The conditions here may include but are not limited to: meeting ProSe layer criteria, meeting access layer criteria, etc.
如果存在多个候选上游中继终端的情况下,即在发现了多个满足上述条件的候选上游中继终端的情况下,那么选择具有接入层准则最高排名的(the highest ranking)的候选上游 中继终端作为待连接的上游中继终端。If there are multiple candidate upstream relay terminals, that is, if multiple candidate upstream relay terminals are found that meet the above conditions, then the candidate upstream with the highest ranking according to the access layer criteria is selected. The relay terminal serves as the upstream relay terminal to be connected.
终端与上游中继终端之间的通信可以是一对一邻近服务直接通信(One-to-one ProSe Direct Communication),或者Wi-Fi(Wireless Fidelity)通信以及直接在两个或更多个邻近用户设备之间进行的其他类型的无线通信。The communication between the terminal and the upstream relay terminal can be one-to-one ProSe Direct Communication, or Wi-Fi (Wireless Fidelity) communication and direct communication between two or more nearby users. Other types of wireless communication between devices.
示例性地,请参阅图4,图4为各终端之间的会话建立示意图。如图4所示,一级中继终端建立NR会话,一级中继终端发送用于直接发现的广播消息。然后终端通过直接发现检测流程发现了一级中继终端,和该一级中继终端建立连接,并通过该连接建立第一非3GPP会话,以将与终端相关的业务流量疏导至第一非3GPP会话中。同时,终端发送用于直接发现的广播消息,以使下游终端通过直接发现检测流程发现该终端,使下游终端和终端建立连接,并通过该连接建立第二非3GPP会话,以将与下游终端的业务流量疏导至第二非3GPP会话中。一级中继终端的NR会话汇聚自身业务流量和所有一级中继终端对应的下游终端的业务流量,终端在第一非3GPP会话外旁路透传下游终端的业务流量。For example, please refer to Figure 4, which is a schematic diagram of session establishment between terminals. As shown in Figure 4, the first-level relay terminal establishes an NR session, and the first-level relay terminal sends a broadcast message for direct discovery. Then the terminal discovers the first-level relay terminal through the direct discovery and detection process, establishes a connection with the first-level relay terminal, and establishes a first non-3GPP session through the connection to divert the service traffic related to the terminal to the first non-3GPP in session. At the same time, the terminal sends a broadcast message for direct discovery, so that the downstream terminal discovers the terminal through the direct discovery detection process, enables the downstream terminal to establish a connection with the terminal, and establishes a second non-3GPP session through the connection to communicate with the downstream terminal. Service traffic is directed to the second non-3GPP session. The NR session of the first-level relay terminal aggregates its own service traffic and the service traffic of downstream terminals corresponding to all first-level relay terminals. The terminal bypasses and transparently transmits the service traffic of the downstream terminals outside the first non-3GPP session.
如上所述,当终端通过直接发现并且选择和待连接的上游中继终端成功建立了直接链路之后,终端可以通过上游中继终端与网络进行通信。As mentioned above, after the terminal successfully establishes a direct link with the upstream relay terminal to be connected through direct discovery and selection, the terminal can communicate with the network through the upstream relay terminal.
同样,本领域技术人员能够理解,上述的终端和上游中继终端建立连接的过程与下游终端和终端建立连接的过程是相同的。Similarly, those skilled in the art can understand that the above-mentioned process of establishing a connection between a terminal and an upstream relay terminal is the same as the process of establishing a connection between a downstream terminal and a terminal.
在一些实施方式中,向上游中继终端发起连接请求,以使上游中继终端根据连接请求与终端建立连接,包括:根据终端对应的终端信息生成连接请求;向上游中继终端发送连接请求,以使上游中继终端对连接请求中终端对应的终端信息进行验证,并在验证通过后分配终端对应的互联网协议地址;根据互联网协议地址与上游中继终端建立连接。In some embodiments, initiating a connection request to the upstream relay terminal so that the upstream relay terminal establishes a connection with the terminal according to the connection request includes: generating a connection request according to terminal information corresponding to the terminal; sending a connection request to the upstream relay terminal, This enables the upstream relay terminal to verify the terminal information corresponding to the terminal in the connection request, and allocate the Internet protocol address corresponding to the terminal after passing the verification; establish a connection with the upstream relay terminal based on the Internet protocol address.
示例性地,上游中继终端接收到终端发起的连接请求后,执行动态主机配置协议(Dynamic Host Configuration Protocol,DHCP)服务器功能,为终端分配互联网协议(Internet Protocol,IP)地址。For example, after receiving the connection request initiated by the terminal, the upstream relay terminal executes the Dynamic Host Configuration Protocol (Dynamic Host Configuration Protocol, DHCP) server function to allocate an Internet Protocol (Internet Protocol, IP) address to the terminal.
其中,DHCP是基于TCP/IP(Transmission Control Protocol/Internet Protocol,传输控制协议/互联网协议)协议的一种动态地址分配方案和地址配置协议。Among them, DHCP is a dynamic address allocation scheme and address configuration protocol based on the TCP/IP (Transmission Control Protocol/Internet Protocol) protocol.
在一些实施方式中,终端为远端终端;若检测到与上游中继终端成功建立连接,则建立终端的第一非3GPP会话,第一非3GPP会话通过与终端对应的非第三代合作伙伴计划互通功能N3IWF建立的第一非3GPP接入连接建立,包括:根据终端对应的终端信息生成第一互联网密钥交换协议IKE包,并向上游中继终端发送第一IKE包,以使上游中继终端将第一IKE包转发给终端对应的N3IWF,以使终端对应的N3IWF对第一IKE包验证通过后,在终端对应的N3IWF与终端之间建立基于互联网协议安全网络协议IPSec的第一数据传输隧道;根据第一数据传输隧道通过终端对应的N3IWF建立经由上游中继终端的第一非3GPP接入连接;根据第一非3GPP接入连接建立终端的第一非3GPP会话。In some embodiments, the terminal is a remote terminal; if it is detected that the connection with the upstream relay terminal is successfully established, the first non-3GPP session of the terminal is established, and the first non-3GPP session passes through the non-third-generation partner corresponding to the terminal. The establishment of the first non-3GPP access connection established by the planned interworking function N3IWF includes: generating a first Internet key exchange protocol IKE packet according to the terminal information corresponding to the terminal, and sending the first IKE packet to the upstream relay terminal, so that the upstream After the terminal forwards the first IKE packet to the N3IWF corresponding to the terminal, so that the N3IWF corresponding to the terminal passes the verification of the first IKE packet, the first data based on the Internet Protocol Security Network Protocol IPSec is established between the N3IWF corresponding to the terminal and the terminal. Transmission tunnel; establish a first non-3GPP access connection via the upstream relay terminal through the N3IWF corresponding to the terminal according to the first data transmission tunnel; establish a first non-3GPP session of the terminal according to the first non-3GPP access connection.
终端通过上游中继终端接入到非3GPP网络,并且选择N3IWF后,执行IKE-SA流程, IKE-SA指IKE安全联盟,IKE-SA流程的作用是在不安全的网络下建立一个用于后续的非接入层(Non-access stratum,NAS)鉴权流程的安全的传输通道,从而保证在后续的NAS鉴权流程中消息传输的安全性。例如,终端根据自身的终端信息生成第一互联网密钥交换协议(Internet Key Exchange,IKE)包,如对终端标识、IP地址等信息进行加密得到该终端的身份证书,根据该终端的身份证书生成第一IKE包。然后,将第一IKE包发送给上游中继终端,上游中继终端将第一IKE包转发给N3IWF,N3IWF根据第一IKE包对终端进行第一身份认证。在第一身份认证的认证结果为通过后,执行互联网安全协议IPsec(Internet Protocol Security)SA流程,IPsec-SA指IPsec安全联盟,通过IPsec-SA流程为终端建立一条安全的第一数据传输隧道(第一IPsec隧道),后续所有的NAS信令都通过安全的第一数据传输隧道进行传输。The terminal accesses the non-3GPP network through the upstream relay terminal, and after selecting N3IWF, executes the IKE-SA process. IKE-SA refers to the IKE Security Alliance. The function of the IKE-SA process is to establish an insecure network for subsequent use. A secure transmission channel for the Non-access stratum (NAS) authentication process to ensure the security of message transmission in the subsequent NAS authentication process. For example, the terminal generates a first Internet Key Exchange Protocol (IKE) packet based on its own terminal information, such as encrypting terminal identification, IP address and other information to obtain the terminal's identity certificate, and generates the first Internet Key Exchange Protocol (IKE) package based on the terminal's identity certificate. The first IKE bag. Then, the first IKE packet is sent to the upstream relay terminal, and the upstream relay terminal forwards the first IKE packet to N3IWF, and N3IWF performs first identity authentication on the terminal based on the first IKE packet. After the authentication result of the first identity authentication is passed, the Internet Security Protocol IPsec (Internet Protocol Security) SA process is executed. IPsec-SA refers to the IPsec Security Alliance, and a secure first data transmission tunnel is established for the terminal through the IPsec-SA process ( First IPsec tunnel), all subsequent NAS signaling is transmitted through the secure first data transmission tunnel.
进一步地,当第一数据传输隧道建立后,终端建立其经由上游中继终端的第一非3GPP会话。Further, after the first data transmission tunnel is established, the terminal establishes its first non-3GPP session via the upstream relay terminal.
在一些实施方式中,与下游终端建立连接,对下游终端的业务流量作旁路透传处理,并通过与上游中继终端的连接转发下游终端的业务流量,以使下游终端通过与下游终端对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话,包括:接收下游终端发送的第二IKE包,第二IKE包是根据下游终端对应的终端信息生成的;将第二IKE包旁路透传转发给上游中继终端,以使上游中继终端将第二IKE包转发给下游终端对应的N3IWF,以使下游终端对应的N3IWF对第二IKE包验证通过后,在下游终端对应的N3IWF与下游终端之间建立基于IPSec的第二数据传输隧道,以使下游终端根据第二数据传输隧道通过下游终端对应的N3IWF建立经由终端和上游中继终端的第二非3GPP接入连接,以根据第二非3GPP接入连接建立第二非3GPP会话,其中,终端成为中继终端。In some embodiments, a connection is established with a downstream terminal, the business traffic of the downstream terminal is bypassed and transparently transmitted, and the business traffic of the downstream terminal is forwarded through the connection with the upstream relay terminal, so that the downstream terminal passes through the network corresponding to the downstream terminal. The second non-3GPP access connection established by N3IWF establishes the second non-3GPP session, including: receiving the second IKE packet sent by the downstream terminal. The second IKE packet is generated based on the terminal information corresponding to the downstream terminal; The Reuters transmission is forwarded to the upstream relay terminal, so that the upstream relay terminal forwards the second IKE packet to the N3IWF corresponding to the downstream terminal, so that after the N3IWF corresponding to the downstream terminal passes the verification of the second IKE packet, the N3IWF corresponding to the downstream terminal Establish a second IPSec-based data transmission tunnel with the downstream terminal, so that the downstream terminal establishes a second non-3GPP access connection via the terminal and the upstream relay terminal through the N3IWF corresponding to the downstream terminal according to the second data transmission tunnel, so as to The second non-3GPP access connection establishes a second non-3GPP session, in which the terminal becomes a relay terminal.
终端与下游终端建立连接,并对下游终端的业务流量作旁路透传处理,使下游终端接入到非3GPP网络,并且选择N3IWF后,执行IKE-SA流程。例如,下游终端根据自身的下游终端信息生成第二互联网密钥交换协议(Internet Key Exchange,IKE)包,如对下游终端标识、IP地址等信息进行加密得到该下游终端的身份证书,根据该下游终端的身份证书生成第二IKE包。然后,下游终端将第二IKE包发送给终端,终端将第二IKE包旁路透传转发给上游中继终端,上游中继终端将第二IKE包转发给N3IWF,N3IWF根据第二IKE包对终端进行第二身份认证。在第二身份认证的认证结果为通过后,执行互联网安全协议IPsec-SA流程,通过IPsec-SA流程为终端建立一条安全的第二数据传输隧道(第二IPsec隧道),后续所有的NAS信令都通过安全的第二数据传输隧道进行传输。The terminal establishes a connection with the downstream terminal and performs bypass transparent transmission on the downstream terminal's service traffic, allowing the downstream terminal to access the non-3GPP network. After selecting N3IWF, the IKE-SA process is executed. For example, the downstream terminal generates a second Internet Key Exchange Protocol (IKE) packet based on its own downstream terminal information, such as encrypting the downstream terminal identification, IP address and other information to obtain the identity certificate of the downstream terminal. The terminal's identity certificate generates a second IKE packet. Then, the downstream terminal sends the second IKE packet to the terminal, and the terminal forwards the second IKE packet to the upstream relay terminal in bypass transparent transmission. The upstream relay terminal forwards the second IKE packet to N3IWF, and N3IWF responds to the terminal based on the second IKE packet. Perform second identity authentication. After the authentication result of the second identity authentication is passed, the Internet Security Protocol IPsec-SA process is executed, and a secure second data transmission tunnel (second IPsec tunnel) is established for the terminal through the IPsec-SA process. All subsequent NAS signaling All are transmitted through a secure secondary data transmission tunnel.
进一步地,当第二数据传输隧道建立后,下游终端建立其经由终端和上游中继终端的第二非3GPP会话。Further, after the second data transmission tunnel is established, the downstream terminal establishes its second non-3GPP session via the terminal and the upstream relay terminal.
所有非一级终端与N3IWF建立IPsec隧道,IPsec隧道建立后,与各个非一级终端的会话锚点UPF网元分别建立各个终端对应的GTP(GPRS Tunneling Protocol,GPRS隧道协 议)隧道,最终形成端到端的安全用户面。All non-first-level terminals establish IPsec tunnels with N3IWF. After the IPsec tunnel is established, GTP (GPRS Tunneling Protocol, GPRS Tunneling Protocol) tunnels corresponding to each terminal are established with the session anchor UPF network element of each non-first-level terminal, and finally form a terminal End-to-end secure user interface.
示例性地,请参阅图5,图5为多级中继的数据传输隧道的示意图。如图5所示,一级中继终端和一级中继终端UPF网元的NR会话包括一级中继终端对应的NR安全连接和GTP隧道,终端和终端UPF网元的第一非3GPP会话包括终端对应的IPsec隧道和GTP隧道,下游终端和下游终端UPF网元的第二非3GPP会话包括下游终端对应的IPsec隧道和GTP隧道,使得各个终端的非3GPP接入的隧道不嵌套,简化了网络隧道的处理,保证了网络性能,并实现不同终端的业务流量安全隔离,以便后续对不同终端的业务流量进行溯源计费等处理。For example, please refer to Figure 5, which is a schematic diagram of a multi-level relay data transmission tunnel. As shown in Figure 5, the NR session between the first-level relay terminal and the first-level relay terminal UPF network element includes the NR secure connection and GTP tunnel corresponding to the first-level relay terminal, and the first non-3GPP session between the terminal and the terminal UPF network element. Including the IPsec tunnel and GTP tunnel corresponding to the terminal, the downstream terminal and the second non-3GPP session of the downstream terminal UPF network element include the IPsec tunnel and GTP tunnel corresponding to the downstream terminal, so that the non-3GPP access tunnels of each terminal are not nested, simplifying The network tunnel processing is ensured, network performance is ensured, and the business traffic of different terminals is safely isolated, so that the business traffic of different terminals can be traced and billed later.
在一些实施方式中,终端为一个或多个,多个终端依次连接,且多个终端中至少一个终端与一级中继终端连接。In some embodiments, there are one or more terminals, the plurality of terminals are connected in sequence, and at least one terminal among the plurality of terminals is connected to a first-level relay terminal.
示例性地,如图6所示,终端包括终端B1、终端B2和终端B3,一级中继终端A与基站连接,终端B1、终端B2和终端B3依次连接,且终端B1与一级中继终端A连接,终端B3与下游终端C连接。此时,终端B1、终端B2、终端B3、下游终端C均作为非一级终端,即与基站间接连接的终端,且下游终端C作为远端终端,即没有为其它终端提供网络连接服务的终端。需要说明的是,图5只是对终端数量的示意性说明,实际远端终端和一级中继终端之间可以有更多的中继终端,本公开对此不进行限定。For example, as shown in Figure 6, the terminals include terminal B1, terminal B2 and terminal B3. The first-level relay terminal A is connected to the base station, the terminal B1, the terminal B2 and the terminal B3 are connected in sequence, and the terminal B1 is connected to the first-level relay Terminal A is connected, and terminal B3 is connected to downstream terminal C. At this time, terminal B1, terminal B2, terminal B3, and downstream terminal C all serve as non-level terminals, that is, terminals indirectly connected to the base station, and downstream terminal C serves as a remote terminal, that is, a terminal that does not provide network connection services for other terminals. . It should be noted that Figure 5 is only a schematic illustration of the number of terminals. There may be more relay terminals between the actual remote terminal and the first-level relay terminal, and this disclosure does not limit this.
可以理解的是,本公开中提到的上游中继终端和下游终端是根据执行主体的位置来确认的,例如,当终端B2作为近域通信的控制方法的执行主体时,则上游中继终端包括一级中继终端A和终端B1,下游终端包括终端B3和下游终端C;当终端B3作为近域通信的控制方法的执行主体时,则上游中继终端包括一级中继终端A、终端B1和终端B2,下游终端包括下游终端C。It can be understood that the upstream relay terminal and downstream terminal mentioned in this disclosure are confirmed according to the location of the execution subject. For example, when terminal B2 serves as the execution subject of the control method of near domain communication, then the upstream relay terminal It includes first-level relay terminal A and terminal B1, and the downstream terminal includes terminal B3 and downstream terminal C; when terminal B3 serves as the execution subject of the near-domain communication control method, the upstream relay terminal includes first-level relay terminal A, terminal B1 and terminal B2, the downstream terminal includes downstream terminal C.
进一步地,终端B1通过与N3IWF建立的第一非3GPP接入连接建立第一非3GPP会话,终端B2通过与N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话,终端B3通过与N3IWF建立的第三非3GPP接入连接建立第三非3GPP会话,下游终端C通过与N3IWF建立的第四非3GPP接入连接建立第四非3GPP会话,以实现各个非一级终端之间会话用户面的独立。上述方案中提到的非3GPP接入连接和非3GPP会话的数量仅是示例性说明,其数量可以更多或更少,具体数量是根据连接的非一级终端和远端终端的数量确认的。Further, terminal B1 establishes a first non-3GPP session through a first non-3GPP access connection established with N3IWF, terminal B2 establishes a second non-3GPP session through a second non-3GPP access connection established with N3IWF, and terminal B3 establishes a second non-3GPP session through a second non-3GPP access connection established with N3IWF. The established third non-3GPP access connection establishes a third non-3GPP session, and the downstream terminal C establishes a fourth non-3GPP session through the fourth non-3GPP access connection established with the N3IWF to implement user plane sessions between non-level one terminals. of independence. The number of non-3GPP access connections and non-3GPP sessions mentioned in the above solution is only an illustration. The number can be more or less. The specific number is confirmed based on the number of connected non-level one terminals and remote terminals. .
在一些实施方式中,下游终端为一个或多个,终端分别对多个下游终端的业务流量作旁路透传处理。In some embodiments, there are one or more downstream terminals, and the terminals respectively perform bypass and transparent transmission processing on the service traffic of multiple downstream terminals.
示例性地,如图6所示,当终端B1作为近域通信的控制方法的执行主体时,下游终端包括终端B2、终端B3和下游终端C,因此终端B1分别对终端B2、终端B3和下游终端C的业务流量作旁路透传处理;当终端B2作为近域通信的控制方法的执行主体时,下游终端包括终端B3和下游终端C,因此终端B2分别对终端B3和下游终端C的业务流量 作旁路透传处理;当终端B3作为近域通信的控制方法的执行主体时,下游终端包括下游终端C,因此终端B3对下游终端C的业务流量作旁路透传处理。For example, as shown in Figure 6, when terminal B1 serves as the execution subject of the near-domain communication control method, the downstream terminals include terminal B2, terminal B3 and downstream terminal C. Therefore, terminal B1 controls terminal B2, terminal B3 and downstream terminal C respectively. The business traffic of terminal C is bypassed and transparently transmitted; when terminal B2 serves as the execution subject of the near-domain communication control method, the downstream terminals include terminal B3 and downstream terminal C, so terminal B2 transmits the business traffic of terminal B3 and downstream terminal C respectively. Perform bypass transparent transmission processing; when terminal B3 serves as the execution subject of the near-domain communication control method, the downstream terminals include downstream terminal C, so terminal B3 performs bypass transparent transmission processing on the service traffic of downstream terminal C.
在上述任一实施例的基础上,还提供一种流量统计方法,请参阅图7,图7是本公开的一个实施例示出的流量统计方法的流程图,该流量统计方法可以由UPF网元具体执行。应理解的是,该方法也可以由其它设备具体执行,本实施例不对该方法所适用的执行主体进行限制。On the basis of any of the above embodiments, a traffic statistics method is also provided. Please refer to Figure 7. Figure 7 is a flow chart of a traffic statistics method according to an embodiment of the present disclosure. The traffic statistics method can be performed by a UPF network element. Specific implementation. It should be understood that this method can also be specifically executed by other devices, and this embodiment does not limit the execution subject to which this method is applicable.
下面以UPF网元作为具体的执行主体来对本公开实施例提出的流量统计方法进行详细介绍。The following uses the UPF network element as the specific execution subject to introduce in detail the traffic statistics method proposed in the embodiment of the present disclosure.
如图7所示,在一示例性的实施例中,流量统计方法至少包括步骤S710至步骤S720,详细介绍如下:As shown in Figure 7, in an exemplary embodiment, the traffic statistics method includes at least step S710 to step S720, which are described in detail as follows:
步骤S710,对第一非3GPP会话对应的会话锚点记录的流量进行统计,确认终端对应的业务流量用量;Step S710, collect statistics on the traffic recorded by the session anchor point corresponding to the first non-3GPP session, and confirm the service traffic usage corresponding to the terminal;
步骤S720,对第二非3GPP会话对应的会话锚点记录的流量进行统计,确认下游终端对应的业务流量用量。Step S720: Statistics are performed on the traffic recorded in the session anchor point corresponding to the second non-3GPP session, and the corresponding service traffic usage of the downstream terminal is confirmed.
如图3所示,各个终端的UPF网元作为各个终端对应会话的会话锚点,以对各个终端的业务流量进行统计,得到各个终端自身的流量用量。As shown in Figure 3, the UPF network element of each terminal serves as the session anchor point for the corresponding session of each terminal to collect statistics on the service traffic of each terminal and obtain the traffic usage of each terminal itself.
例如,图3中终端B的业务流量用量为第一非3GPP会话对应的会话锚点UPF网元记录的流量,下游终端C的业务流量用量为第二非3GPP会话对应的会话锚点UPF网元记录的流量。For example, in Figure 3, the service traffic usage of terminal B is the traffic recorded by the session anchor UPF network element corresponding to the first non-3GPP session, and the service traffic usage of downstream terminal C is the session anchor UPF network element corresponding to the second non-3GPP session. Recorded traffic.
在一些实施方式中,上游中继终端为一级中继终端,一级中继终端与基站建立有NR会话;方法还包括:获取NR会话对应的会话锚点记录的总流量;根据总流量对应的目标地址剔除所有目标地址为N3IWF的流量;根据剔除结果确认上游中继终端对应的业务流量用量。In some embodiments, the upstream relay terminal is a first-level relay terminal, and the first-level relay terminal establishes an NR session with the base station; the method also includes: obtaining the total traffic recorded by the session anchor point corresponding to the NR session; corresponding to the total traffic according to Eliminate all traffic whose destination address is N3IWF; confirm the corresponding business traffic usage of the upstream relay terminal based on the elimination results.
其中,由于一级中继终端的会话用户面包含了所有非一级终端的会话用户面,因此,一级中继终端自身业务流量等于一级中继终端的会话流量减去其所有下级终端的会话流量,即目标地址为N3IWF地址的数据包流量。如果一级中继终端UPF网元无法获取下游终端的N3IWF信息,则遍历记录的所有N3IWF地址,以剔除目前地址为N3IWF的流量,根据剔除结果确认上游中继终端对应的流量用量。Among them, since the session user plane of the first-level relay terminal includes the session user plane of all non-level one terminals, the service traffic of the first-level relay terminal is equal to the session traffic of the first-level relay terminal minus the session traffic of all its subordinate terminals. Session traffic, that is, packet traffic whose destination address is the N3IWF address. If the UPF network element of the first-level relay terminal cannot obtain the N3IWF information of the downstream terminal, it will traverse all recorded N3IWF addresses to eliminate the traffic with the current address of N3IWF, and confirm the traffic usage corresponding to the upstream relay terminal based on the elimination results.
通过将各级终端的会话用户面独立建立,使得各个终端分别建立只承载自身业务流量的非3GPP会话,而对下游终端的业务流量仅作旁路透传处理,进而可以针对多级中继的近域通信实现不同终端的业务流量安全隔离,直接根据各终端会话锚点UPF网元记录的业务流量进行溯源计费即可。By independently establishing the session user planes of terminals at each level, each terminal can establish a non-3GPP session that only carries its own business traffic, and the business traffic of downstream terminals is only bypassed and transparently transmitted. This can be used for multi-level relay near-term communication. Domain communication realizes the security isolation of business traffic of different terminals, and can directly perform traceability and billing based on the business traffic recorded by the UPF network element of each terminal session anchor point.
以下对本公开实施例的一个具体应用场景进行详细说明:A specific application scenario of the embodiment of the present disclosure is described in detail below:
请参阅图8,假定各非一级终端对应的N3IWF相同。步骤1.终端B(此时为远端终端 的身份)发起直接发现流程,选择了一个一级中继终端A;步骤2.终端B与终端A建立连接,一级中继终端A的中继服务规则生效,即终端B的业务流量将与一级中继终端A自身的业务流量统一处理,在一级中继终端A的会话中承载;步骤3.一级中继终端A执行DHCP服务器功能,为终端B分配IP地址;步骤4.终端B与N3IWF之间通过IKE流程发起IPsec隧道的信令交互并向其5G核心网发起NAS消息进行注册,当IPsec隧道建立后,终端B建立其经由一级中继终端A的第一非3GPP会话;步骤5.同样地,远端终端C发起直接发现流程,选择了一个中继终端B;步骤6.远端终端C与中继终端B建立连接;步骤7.中继终端B执行DHCP服务器功能,为远端终端C分配IP地址;步骤8.远端终端C与N3IWF之间通过IKE流程发起IPsec隧道的信令交互并向其5G核心网发起NAS消息进行注册,当IPsec隧道建立后,远端终端C建立其经由中继终端B和一级中继终端A的第二非3GPP会话;步骤9.中继终端B的中继服务规则生效,即对远端终端C的业务流量实施旁路透传处理,在第一非3GPP会话中只承载中继终端B的业务流量;步骤10、各个终端各自使用业务,并根据上述连接关系和处理规则提供中继服务、疏导流量;步骤11.各个终端的会话锚点UPF进行流量的识别和区分处理,生成各个终端自身的业务话单,其中,一级中继终端C的UPF在会话流量中剔除目标地址为N3IWF地址的流量。Referring to Figure 8, it is assumed that the N3IWF corresponding to each non-level 1 terminal is the same. Step 1. Terminal B (the identity of the remote terminal at this time) initiates the direct discovery process and selects a first-level relay terminal A; Step 2. Terminal B establishes a connection with terminal A, and the first-level relay terminal A’s relay The service rules take effect, that is, the service traffic of terminal B will be processed uniformly with the service traffic of the first-level relay terminal A, and carried in the session of the first-level relay terminal A; Step 3. The first-level relay terminal A performs the DHCP server function , assign an IP address to terminal B; Step 4. Terminal B and N3IWF initiate the signaling interaction of the IPsec tunnel through the IKE process and initiate a NAS message to its 5G core network for registration. When the IPsec tunnel is established, terminal B establishes its via The first non-3GPP session of the first-level relay terminal A; Step 5. Similarly, the remote terminal C initiates the direct discovery process and selects a relay terminal B; Step 6. The remote terminal C establishes a connection with the relay terminal B ; Step 7. Relay terminal B performs the DHCP server function and allocates an IP address to remote terminal C; Step 8. Remote terminal C and N3IWF initiate signaling interaction of the IPsec tunnel through the IKE process and initiates it to its 5G core network NAS message is registered. When the IPsec tunnel is established, remote terminal C establishes its second non-3GPP session via relay terminal B and primary relay terminal A; Step 9. The relay service rules of relay terminal B take effect. That is, bypass transparent transmission processing is implemented for the service traffic of remote terminal C, and only the service traffic of relay terminal B is carried in the first non-3GPP session. Step 10: Each terminal uses its own service and provides services according to the above connection relationship and processing rules. Relay services and divert traffic; Step 11. The session anchor UPF of each terminal identifies and differentiates the traffic, and generates each terminal's own business bill. Among them, the UPF of the first-level relay terminal C eliminates the target from the session traffic. Traffic whose address is the N3IWF address.
本公开提供的近域通信的控制方法,终端通过与N3IWF建立的第一非3GPP接入连接建立第一非3GPP会话,并与下游终端建立连接,对下游终端的业务流量作旁路透传处理,以使下游终端通过与N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话,第一非3GPP会话用于承载终端发起并封装的业务流量,第二非3GPP会话用于承载下游终端发起并封装的业务流量,使除一级中继终端之外的各级终端的会话用户面都是独立的,不存在嵌套关系,除一级中继终端外,各个终端分别建立只承载自身业务流量的非3GPP会话,而对下游终端的业务流量仅作旁路透传处理,进而可以针对多级中继的近域通信实现不同终端的业务流量安全隔离,便于各终端进行业务流量的溯源计费。In the near-domain communication control method provided by this disclosure, the terminal establishes the first non-3GPP session through the first non-3GPP access connection established with the N3IWF, establishes a connection with the downstream terminal, and performs bypass transparent transmission processing on the downstream terminal's business traffic. So that the downstream terminal establishes a second non-3GPP session through the second non-3GPP access connection established with the N3IWF. The first non-3GPP session is used to carry the service traffic initiated and encapsulated by the terminal, and the second non-3GPP session is used to carry the service traffic initiated and encapsulated by the downstream terminal. And encapsulated business traffic, so that the session user planes of terminals at all levels except the first-level relay terminal are independent, and there is no nesting relationship. Except for the first-level relay terminal, each terminal is established to only carry its own business. Non-3GPP sessions of traffic, and the business traffic of downstream terminals is only bypassed and transparently transmitted. This can realize the security isolation of business traffic of different terminals for the near-domain communication of multi-level relays, and facilitate the traceability and billing of business traffic by each terminal. .
图9是本公开的一个实施例示出的近域通信的控制装置的框图,应用于终端,终端通过上游中继终端与基站间接连接,上游中继终端至少包括一个一级中继终端,一级中继终端通过新空口NR与基站连接,如图9所示,该装置包括:Figure 9 is a block diagram of a near-domain communication control device illustrating an embodiment of the present disclosure. It is applied to a terminal. The terminal is indirectly connected to the base station through an upstream relay terminal. The upstream relay terminal includes at least one level one relay terminal. The relay terminal is connected to the base station through the new air interface NR, as shown in Figure 9. The device includes:
连接建立装置910,配置为若检测到与上游中继终端成功建立连接,则建立终端的第一非第三代合作伙伴计划3GPP会话,第一非3GPP会话通过与终端对应的非第三代合作伙伴计划互通功能N3IWF建立的第一非3GPP接入连接建立;其中,第一非3GPP会话承载终端发起并封装的业务流量;The connection establishment device 910 is configured to establish a first non-3GPP 3GPP session of the terminal if it detects that the connection is successfully established with the upstream relay terminal. The first non-3GPP session passes the non-3GPP session corresponding to the terminal. The first non-3GPP access connection established by the partner program interworking function N3IWF is established; among them, the first non-3GPP session carries the service traffic initiated and encapsulated by the terminal;
旁路透传装置920,配置为与下游终端建立连接,对下游终端的业务流量作旁路透传处理,并通过与上游中继终端的连接转发下游终端的业务流量,以使下游终端通过与下游终端对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话;其中,第二非 3GPP会话承载下游终端发起并封装的业务流量。The bypass transparent transmission device 920 is configured to establish a connection with the downstream terminal, perform bypass transparent transmission processing on the downstream terminal's business traffic, and forward the downstream terminal's business traffic through the connection with the upstream relay terminal, so that the downstream terminal passes through the downstream terminal. The corresponding second non-3GPP access connection established by the N3IWF establishes a second non-3GPP session; wherein the second non-3GPP session carries service traffic initiated and encapsulated by the downstream terminal.
在本公开的一个实施例中,终端为远端终端;连接建立装置910可以包括:In one embodiment of the present disclosure, the terminal is a remote terminal; the connection establishment device 910 may include:
候选上游中继终端获取单元,配置为获取可接入的候选上游中继终端集合;A candidate upstream relay terminal acquisition unit configured to acquire a set of accessible candidate upstream relay terminals;
上游中继终端确认单元,配置为根据候选上游中继终端集合中各个候选上游中继终端的信息,确认待连接的上游中继终端;The upstream relay terminal confirmation unit is configured to confirm the upstream relay terminal to be connected based on the information of each candidate upstream relay terminal in the candidate upstream relay terminal set;
连接单元,配置为向上游中继终端发起连接请求,以使上游中继终端根据连接请求与终端建立连接。The connection unit is configured to initiate a connection request to the upstream relay terminal, so that the upstream relay terminal establishes a connection with the terminal according to the connection request.
在本公开的一个实施例中,连接单元可以包括:In one embodiment of the present disclosure, the connection unit may include:
连接请求生成单元,配置为根据终端对应的终端信息生成连接请求;A connection request generating unit configured to generate a connection request based on terminal information corresponding to the terminal;
互联网协议地址获取单元,配置为向上游中继终端发送连接请求,以使上游中继终端对连接请求中终端对应的终端信息进行验证,并在验证通过后分配终端对应的互联网协议地址;The Internet protocol address acquisition unit is configured to send a connection request to the upstream relay terminal, so that the upstream relay terminal verifies the terminal information corresponding to the terminal in the connection request, and allocates the Internet protocol address corresponding to the terminal after passing the verification;
连接建立单元,配置为根据互联网协议地址与上游中继终端建立连接。A connection establishment unit configured to establish a connection with the upstream relay terminal according to the Internet protocol address.
在本公开的一个实施例中,终端为远端终端;连接建立装置910可以包括:In one embodiment of the present disclosure, the terminal is a remote terminal; the connection establishment device 910 may include:
第一数据传输隧道建立单元,配置为根据终端对应的终端信息生成第一互联网密钥交换协议IKE包,并向上游中继终端发送第一IKE包,以使上游中继终端将第一IKE包转发给终端对应的N3IWF,以使终端对应的N3IWF对第一IKE包验证通过后,在终端对应的N3IWF与终端之间建立基于互联网协议安全网络协议IPSec的第一数据传输隧道;The first data transmission tunnel establishment unit is configured to generate a first Internet key exchange protocol IKE packet according to the terminal information corresponding to the terminal, and send the first IKE packet to the upstream relay terminal, so that the upstream relay terminal transmits the first IKE packet Forward to the N3IWF corresponding to the terminal, so that after the N3IWF corresponding to the terminal passes the verification of the first IKE packet, a first data transmission tunnel based on the Internet Protocol Security Network Protocol IPSec is established between the N3IWF corresponding to the terminal and the terminal;
第一非3GPP接入连接建立单元,配置为根据第一数据传输隧道通过终端对应的N3IWF建立经由上游中继终端的第一非3GPP接入连接;The first non-3GPP access connection establishment unit is configured to establish the first non-3GPP access connection via the upstream relay terminal through the N3IWF corresponding to the terminal according to the first data transmission tunnel;
第一非3GPP会话建立单元,配置为根据第一非3GPP接入连接建立终端的第一非3GPP会话。The first non-3GPP session establishment unit is configured to establish the first non-3GPP session of the terminal according to the first non-3GPP access connection.
在本公开的一个实施例中,旁路透传装置920可以包括:In one embodiment of the present disclosure, the bypass transparent transmission device 920 may include:
包接收单元,配置为接收下游终端发送的数据包;a packet receiving unit configured to receive data packets sent by the downstream terminal;
旁路透传单元,配置为将下游终端发送的数据包旁路透传转发给上游中继终端,以使上游中继终端将数据包转发给下游终端对应的N3IWF。The bypass transparent transmission unit is configured to forward the data packets sent by the downstream terminal to the upstream relay terminal in bypass transparent transmission, so that the upstream relay terminal forwards the data packets to the N3IWF corresponding to the downstream terminal.
在本公开的一个实施例中,数据包包括第二IKE包,包接收单元还被配置为:In one embodiment of the present disclosure, the data packet includes a second IKE packet, and the packet receiving unit is further configured to:
接收下游终端发送的第二IKE包,第二IKE包是根据下游终端对应的终端信息生成的;Receive the second IKE packet sent by the downstream terminal. The second IKE packet is generated based on the terminal information corresponding to the downstream terminal;
旁路透传单元还被配置为:The bypass transparent transmission unit is also configured as:
将第二IKE包旁路透传转发给上游中继终端,以使上游中继终端将第二IKE包转发给下游终端对应的N3IWF,以使下游终端对应的N3IWF对第二IKE包验证通过后,在下游终端对应的N3IWF与下游终端之间建立基于IPSec的第二数据传输隧道,以使下游终端根据第二数据传输隧道通过下游终端对应的N3IWF建立经由终端和上游中继终端的第 二非3GPP接入连接,以根据第二非3GPP接入连接建立第二非3GPP会话,其中,终端成为中继终端。Forward the second IKE packet to the upstream relay terminal in bypass transparent transmission, so that the upstream relay terminal forwards the second IKE packet to the N3IWF corresponding to the downstream terminal, so that after the N3IWF corresponding to the downstream terminal passes the verification of the second IKE packet, A second data transmission tunnel based on IPSec is established between the N3IWF corresponding to the downstream terminal and the downstream terminal, so that the downstream terminal establishes a second non-3GPP link between the terminal and the upstream relay terminal through the N3IWF corresponding to the downstream terminal according to the second data transmission tunnel. Access connection to establish a second non-3GPP session according to the second non-3GPP access connection, wherein the terminal becomes a relay terminal.
在本公开的一个实施例中,终端为一个或多个,多个终端依次连接,且多个终端中至少一个终端与一级中继终端连接。In one embodiment of the present disclosure, there are one or more terminals, the plurality of terminals are connected in sequence, and at least one terminal among the plurality of terminals is connected to a first-level relay terminal.
在本公开的一个实施例中,下游终端为一个或多个,终端分别对多个下游终端的业务流量作旁路透传处理。In one embodiment of the present disclosure, there are one or more downstream terminals, and the terminals respectively perform bypass and transparent transmission processing on the service traffic of the multiple downstream terminals.
需要说明的是,上述实施例所提供的近域通信的控制装置与上述实施例所提供的近域通信的控制方法属于同一构思,其中各个模块和单元执行操作的具体方式已经在方法实施例中进行了详细描述,此处不再赘述。上述实施例所提供的近域通信的控制装置在实际应用中,可以根据需要而将上述功能分配由不同的功能模块完成,即将装置的内部结构划分成不同的功能模块,以完成以上描述的全部或者部分功能,本处不对此进行限制。It should be noted that the near-field communication control device provided by the above-mentioned embodiments and the near-field communication control method provided by the above-mentioned embodiments belong to the same concept, and the specific manner in which each module and unit performs operations has been described in the method embodiment. It is described in detail and will not be repeated here. In practical applications of the near-field communication control device provided by the above embodiments, the above function allocation can be completed by different functional modules as needed, that is, the internal structure of the device is divided into different functional modules to complete all the above descriptions. or some functions, which are not restricted here.
图10是本公开的一个实施例示出的流量统计装置的框图,终端通过一级中继终端与基站间接连接,一级中继终端通过新空口NR与基站连接,终端通过与终端对应的N3IWF建立的第一非3GPP接入连接建立第一非3GPP会话,终端与下游终端连接,下游终端通过与下游终端对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话,第一非3GPP会话承载终端发起并封装的业务流量,第二非3GPP会话承载下游终端发起并封装的业务流量,该装置包括:Figure 10 is a block diagram of a traffic statistics device according to an embodiment of the present disclosure. The terminal is indirectly connected to the base station through the first-level relay terminal. The first-level relay terminal is connected to the base station through the new air interface NR. The terminal is established through the N3IWF corresponding to the terminal. The first non-3GPP access connection establishes the first non-3GPP session. The terminal connects to the downstream terminal. The downstream terminal establishes the second non-3GPP session through the second non-3GPP access connection established by the N3IWF corresponding to the downstream terminal. The first non-3GPP session is established. The session carries the service traffic initiated and encapsulated by the terminal, and the second non-3GPP session carries the service traffic initiated and encapsulated by the downstream terminal. The device includes:
第一确认装置1010,配置为对第一非3GPP会话对应的会话锚点记录的流量进行统计,确认终端对应的业务流量用量;The first confirmation device 1010 is configured to collect statistics on the traffic recorded by the session anchor point corresponding to the first non-3GPP session, and confirm the service traffic usage corresponding to the terminal;
第二确认装置1020,配置为对第二非3GPP会话对应的会话锚点记录的流量进行统计,确认下游终端对应的业务流量用量。The second confirmation device 1020 is configured to collect statistics on the traffic recorded in the session anchor point corresponding to the second non-3GPP session, and confirm the service traffic usage corresponding to the downstream terminal.
在本公开的一个实施例中,上游中继终端为一级中继终端,一级中继终端与基站建立有NR会话;流量统计装置还包括:In one embodiment of the present disclosure, the upstream relay terminal is a first-level relay terminal, and an NR session is established between the first-level relay terminal and the base station; the traffic statistics device also includes:
总流量确认单元,配置为获取NR会话对应的会话锚点记录的总业务流量;The total traffic confirmation unit is configured to obtain the total business traffic recorded by the session anchor point corresponding to the NR session;
剔除单元,配置为根据总业务流量对应的目标地址剔除目前地址为N3IWF的流量;The elimination unit is configured to eliminate the traffic whose current address is N3IWF based on the target address corresponding to the total business traffic;
上游中继终端流量确认单元,配置为根据剔除结果确认上游中继终端对应的业务流量用量。The upstream relay terminal traffic confirmation unit is configured to confirm the service traffic usage corresponding to the upstream relay terminal based on the elimination results.
需要说明的是,上述实施例所提供的流量统计装置与上述实施例所提供的流量统计方法属于同一构思,其中各个模块和单元执行操作的具体方式已经在方法实施例中进行了详细描述,此处不再赘述。上述实施例所提供的流量统计装置在实际应用中,可以根据需要而将上述功能分配由不同的功能模块完成,即将装置的内部结构划分成不同的功能模块,以完成以上描述的全部或者部分功能,本处不对此进行限制。It should be noted that the traffic statistics device provided by the above embodiments and the traffic statistics method provided by the above embodiments belong to the same concept, and the specific manner in which each module and unit performs operations has been described in detail in the method embodiments. No further details will be given. In practical applications of the traffic statistics device provided by the above embodiments, the above function allocation can be completed by different functional modules as needed, that is, the internal structure of the device is divided into different functional modules to complete all or part of the functions described above. , there is no restriction on this.
图11示出了适于用来实现本公开实施例的电子设备的计算机系统的结构示意图。FIG. 11 shows a schematic structural diagram of a computer system suitable for implementing an electronic device according to an embodiment of the present disclosure.
需要说明的是,图11示出的电子设备的计算机系统1100仅是一个示例,不应对本公 开实施例的功能和使用范围带来任何限制。It should be noted that the computer system 1100 of the electronic device shown in Figure 11 is only an example, and should not bring any limitations to the functions and scope of use of the embodiments of the present disclosure.
如图11所示,电子设备1100以通用计算设备的形式表现。电子设备1100的组件可以包括但不限于:上述至少一个处理单元1110、上述至少一个存储单元1120、连接不同系统组件(包括存储单元1120和处理单元1110)的总线1130、显示单元1140。As shown in Figure 11, electronic device 1100 is embodied in the form of a general computing device. The components of the electronic device 1100 may include, but are not limited to: the above-mentioned at least one processing unit 1110, the above-mentioned at least one storage unit 1120, a bus 1130 connecting different system components (including the storage unit 1120 and the processing unit 1110), and the display unit 1140.
其中,存储单元存储有程序代码,程序代码可以被处理单元1110执行,使得处理单元1110执行本说明书上述“示例性方法”部分中描述的根据本公开各种示例性实施例的步骤。Wherein, the storage unit stores program code, and the program code can be executed by the processing unit 1110, so that the processing unit 1110 performs the steps according to various exemplary embodiments of the present disclosure described in the above-mentioned "Example Method" section of this specification.
存储单元1120可以包括易失性存储单元形式的可读介质,例如随机存取存储单元(RAM)1121和/或高速缓存存储单元1122,还可以进一步包括只读存储单元(ROM)1123。The storage unit 1120 may include a readable medium in the form of a volatile storage unit, such as a random access storage unit (RAM) 1121 and/or a cache storage unit 1122, and may further include a read-only storage unit (ROM) 1123.
存储单元1120还可以包括具有一组(至少一个)程序模块1125的程序/实用工具1124,这样的程序模块1125包括但不限于:操作系统、一个或者多个应用程序、其它程序模块以及程序数据,这些示例中的每一个或某种组合中可能包括网络环境的实现。 Storage unit 1120 may also include a program/utility 1124 having a set of (at least one) program modules 1125 including, but not limited to: an operating system, one or more application programs, other program modules, and program data, Each of these examples, or some combination, may include the implementation of a network environment.
总线1130可以为表示几类总线结构中的一种或多种,包括存储单元总线或者存储单元控制器、外围总线、图形加速端口、处理单元或者使用多种总线结构中的任意总线结构的局域总线。 Bus 1130 may be a local area representing one or more of several types of bus structures, including a memory unit bus or memory unit controller, a peripheral bus, a graphics acceleration port, a processing unit, or using any of a variety of bus structures. bus.
电子设备1100也可以与一个或多个外部设备1170(例如键盘、指向设备、蓝牙设备等)通信,还可与一个或者多个使得用户能与该电子设备1100交互的设备通信,和/或与使得该电子设备1100能与一个或多个其它计算设备进行通信的任何设备(例如路由器、调制解调器等等)通信。这种通信可以通过输入/输出(I/O)接口1150进行。并且,电子设备1100还可以通过网络适配器1160与一个或者多个网络(例如局域网(LAN),广域网(WAN)和/或公共网络,例如因特网)通信。如图所示,网络适配器1160通过总线1130与电子设备1100的其它模块通信。应当明白,尽管图中未示出,可以结合电子设备1100使用其它硬件和/或应用程序模块,包括但不限于:微代码、设备驱动器、冗余处理单元、外部磁盘驱动阵列、RAID系统、磁带驱动器以及数据备份存储系统等。 Electronic device 1100 may also communicate with one or more external devices 1170 (e.g., keyboard, pointing device, Bluetooth device, etc.), may also communicate with one or more devices that enable a user to interact with electronic device 1100, and/or with Any device (eg, router, modem, etc.) that enables the electronic device 1100 to communicate with one or more other computing devices. This communication may occur through an input/output (I/O) interface 1150. Furthermore, the electronic device 1100 may also communicate with one or more networks (eg, a local area network (LAN), a wide area network (WAN), and/or a public network, such as the Internet) through the network adapter 1160 . As shown, network adapter 1160 communicates with other modules of electronic device 1100 via bus 1130 . It should be understood that, although not shown in the figures, other hardware and/or application modules may be used in conjunction with electronic device 1100, including but not limited to: microcode, device drivers, redundant processing units, external disk drive arrays, RAID systems, tapes drives and data backup storage systems, etc.
特别地,根据本公开的实施例,上文参考流程图描述的过程可以被实现为计算机应用程序。例如,本公开的实施例包括一种计算机程序产品,其包括承载在计算机可读介质上的计算机程序,该计算机程序包含用于执行流程图所示的方法的计算机程序。在该计算机程序被处理单元1110执行时,执行本公开的系统中限定的各种功能。In particular, according to embodiments of the present disclosure, the process described above with reference to the flowchart may be implemented as a computer application program. For example, embodiments of the present disclosure include a computer program product including a computer program carried on a computer-readable medium, the computer program comprising a computer program for performing the method illustrated in the flowchart. When the computer program is executed by the processing unit 1110, various functions defined in the system of the present disclosure are performed.
需要说明的是,本公开实施例所示的计算机可读介质可以是计算机可读信号介质或者计算机可读存储介质或者是上述两者的任意组合。计算机可读存储介质例如可以是电、磁、光、电磁、红外线、或半导体的系统、装置或器件,或者任意以上的组合。计算机可读存储介质的更具体的例子可以包括但不限于:具有一个或多个导线的电连接、便携式计算机磁盘、硬盘、随机访问存储器(RAM)、只读存储器(ROM)、可擦式可编程只读存储器(Erasable Programmable Read Only Memory,EPROM)、闪存、光纤、便携式紧凑磁盘只读存储器 (Compact Disc Read-Only Memory,CD-ROM)、光存储器件、磁存储器件、或者上述的任意合适的组合。在本公开中,计算机可读存储介质可以是任何包含或存储程序的有形介质,该程序可以被指令执行系统、装置或者器件使用或者与其结合使用。而在本公开中,计算机可读的信号介质可以包括在基带中或者作为载波一部分传播的数据信号,其中承载了计算机可读的计算机程序。这种传播的数据信号可以采用多种形式,包括但不限于电磁信号、光信号或上述的任意合适的组合。计算机可读的信号介质还可以是计算机可读存储介质以外的任何计算机可读介质,该计算机可读介质可以发起、传播或者传输用于由指令执行系统、装置或者器件使用或者与其结合使用的程序。计算机可读介质上包含的计算机程序可以用任何适当的介质传输,包括但不限于:无线、有线等等,或者上述的任意合适的组合。It should be noted that the computer-readable medium shown in the embodiments of the present disclosure may be a computer-readable signal medium or a computer-readable storage medium, or any combination of the above two. The computer-readable storage medium may be, for example, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, device or device, or any combination thereof. More specific examples of computer readable storage media may include, but are not limited to: an electrical connection having one or more wires, a portable computer disk, a hard drive, random access memory (RAM), read only memory (ROM), removable Programmable Read-Only Memory (Erasable Programmable Read Only Memory, EPROM), flash memory, optical fiber, portable compact disk read-only memory (Compact Disc Read-Only Memory, CD-ROM), optical storage device, magnetic storage device, or any of the above suitable The combination. In this disclosure, a computer-readable storage medium may be any tangible medium that contains or stores a program for use by or in connection with an instruction execution system, apparatus, or device. In this disclosure, a computer-readable signal medium may include a data signal propagated in baseband or as part of a carrier wave, carrying a computer-readable computer program therein. Such propagated data signals may take many forms, including but not limited to electromagnetic signals, optical signals, or any suitable combination of the above. A computer-readable signal medium may also be any computer-readable medium other than a computer-readable storage medium that can initiate, propagate, or transmit a program for use by or in connection with an instruction execution system, apparatus, or device . Computer programs embodied on computer-readable media may be transmitted using any suitable medium, including but not limited to: wireless, wired, etc., or any suitable combination of the above.
描述于本公开实施例中所涉及到的单元可以通过应用程序的方式实现,也可以通过硬件的方式来实现,所描述的单元也可以设置在处理器中。其中,这些单元的名称在某种情况下并不构成对该单元本身的限定。The units involved in the embodiments of the present disclosure can be implemented in the form of application programs or in the form of hardware. The described units can also be provided in the processor. Among them, the names of these units do not constitute a limitation on the unit itself under certain circumstances.
本公开的另一方面还提供了一种计算机可读存储介质,其上存储有计算机程序,该计算机程序被处理器执行时实现如前的近域通信的控制方法或流量统计方法。该计算机可读存储介质可以是上述实施例中描述的电子设备中所包含的,也可以是单独存在,而未装配入该电子设备中。Another aspect of the present disclosure also provides a computer-readable storage medium on which a computer program is stored. When the computer program is executed by a processor, the previous near-field communication control method or traffic statistics method is implemented. The computer-readable storage medium may be included in the electronic device described in the above embodiments, or may exist separately without being assembled into the electronic device.
本公开的另一方面还提供了一种计算机程序产品或计算机程序,该计算机程序产品或计算机程序包括计算机指令,该计算机指令存储在计算机可读存储介质中。计算机设备的处理器从计算机可读存储介质读取该计算机指令,处理器执行该计算机指令,使得该计算机设备执行上述各个实施例中提供的近域通信的控制方法或流量统计方法。Another aspect of the present disclosure also provides a computer program product or computer program including computer instructions stored in a computer-readable storage medium. The processor of the computer device reads the computer instructions from the computer-readable storage medium, and the processor executes the computer instructions, so that the computer device performs the near-field communication control method or the traffic statistics method provided in the above embodiments.
上述内容,仅为本公开的较佳示例性实施例,并非用于限制本公开的实施方案,本领域普通技术人员根据本公开的主要构思和精神,可以十分方便地进行相应的变通或修改,故本公开的保护范围应以权利要求书所要求的保护范围为准。The above contents are only preferred exemplary embodiments of the present disclosure and are not intended to limit the implementation of the present disclosure. Those of ordinary skill in the art can easily make corresponding modifications or modifications based on the main concept and spirit of the present disclosure. Therefore, the protection scope of the present disclosure should be subject to the protection scope required by the claims.

Claims (12)

  1. 一种近域通信的控制方法,应用于终端,其中,所述终端通过上游中继终端与基站间接连接,所述上游中继终端至少包括一个一级中继终端,所述一级中继终端通过新空口NR与基站连接,所述方法包括:A control method for near-domain communication, applied to a terminal, wherein the terminal is indirectly connected to a base station through an upstream relay terminal, and the upstream relay terminal includes at least one first-level relay terminal, and the first-level relay terminal Connecting to the base station through the new air interface NR, the method includes:
    若检测到与上游中继终端成功建立连接,则建立所述终端的第一非第三代合作伙伴计划3GPP会话,所述第一非3GPP会话通过与所述终端对应的非第三代合作伙伴计划互通功能N3IWF建立的第一非3GPP接入连接建立;其中,所述第一非3GPP会话承载所述终端发起并封装的业务流量;If it is detected that the connection with the upstream relay terminal is successfully established, a first non-3rd generation partner plan 3GPP session of the terminal is established, and the first non-3GPP session passes through the non-3rd generation partner corresponding to the terminal. The first non-3GPP access connection established by the planned interworking function N3IWF is established; wherein the first non-3GPP session carries the service traffic initiated and encapsulated by the terminal;
    与下游终端建立连接,对所述下游终端的业务流量作旁路透传处理,并通过与所述上游中继终端的所述连接转发所述下游终端的业务流量,以使所述下游终端通过与所述下游终端对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话;其中,所述第二非3GPP会话承载所述下游终端发起并封装的业务流量。Establish a connection with a downstream terminal, perform bypass transparent transmission processing on the business traffic of the downstream terminal, and forward the business traffic of the downstream terminal through the connection with the upstream relay terminal, so that the downstream terminal passes through the connection with the upstream relay terminal. The second non-3GPP access connection established by the N3IWF corresponding to the downstream terminal establishes a second non-3GPP session; wherein the second non-3GPP session carries the service traffic initiated and encapsulated by the downstream terminal.
  2. 根据权利要求1所述的方法,其中,所述终端为远端终端;在所述若检测到与上游中继终端成功建立连接,则建立所述终端的第一非3GPP会话之前,所述方法还包括:The method according to claim 1, wherein the terminal is a remote terminal; before the first non-3GPP session of the terminal is established if it is detected that the connection with the upstream relay terminal is successfully established, the method Also includes:
    获取可接入的候选上游中继终端集合;Obtain the set of accessible candidate upstream relay terminals;
    根据所述候选上游中继终端集合中各个候选上游中继终端的信息,确认待连接的上游中继终端;Confirm the upstream relay terminal to be connected according to the information of each candidate upstream relay terminal in the candidate upstream relay terminal set;
    向所述上游中继终端发起连接请求,以使所述上游中继终端根据所述连接请求与所述终端建立连接。Initiate a connection request to the upstream relay terminal, so that the upstream relay terminal establishes a connection with the terminal according to the connection request.
  3. 根据权利要求2所述的方法,其中,所述向所述上游中继终端发起连接请求,以使所述上游中继终端根据所述连接请求与所述终端建立连接,包括:The method according to claim 2, wherein initiating a connection request to the upstream relay terminal so that the upstream relay terminal establishes a connection with the terminal according to the connection request includes:
    根据所述终端对应的终端信息生成连接请求;Generate a connection request according to the terminal information corresponding to the terminal;
    向所述上游中继终端发送所述连接请求,以使所述上游中继终端对所述连接请求中所述终端对应的终端信息进行验证,并在验证通过后分配所述终端对应的互联网协议地址;Send the connection request to the upstream relay terminal, so that the upstream relay terminal verifies the terminal information corresponding to the terminal in the connection request, and allocates the Internet protocol corresponding to the terminal after the verification is passed. address;
    根据所述互联网协议地址与所述上游中继终端建立连接。Establish a connection with the upstream relay terminal according to the Internet protocol address.
  4. 根据权利要求1所述的方法,其中,所述终端为远端终端;所述若检测到与上游中继终端成功建立连接,则建立所述终端的第一非3GPP会话,所述第一非3GPP会话通过与所述终端对应的非第三代合作伙伴计划互通功能N3IWF建立的第一非3GPP接入连接建立,包括:The method according to claim 1, wherein the terminal is a remote terminal; if it is detected that a connection with an upstream relay terminal is successfully established, a first non-3GPP session of the terminal is established, and the first non-3GPP session is established. The 3GPP session is established through the first non-3GPP access connection established by the non-3rd Generation Partnership Project interworking function N3IWF corresponding to the terminal, including:
    根据所述终端对应的终端信息生成第一互联网密钥交换协议IKE包,并向所述上游中继终端发送所述第一IKE包,以使所述上游中继终端将所述第一IKE包转发给所述终端对应的N3IWF,以使所述终端对应的N3IWF对所述第一IKE包验证通过后,在所 述终端对应的N3IWF与所述终端之间建立基于互联网协议安全网络协议IPSec的第一数据传输隧道;Generate a first Internet key exchange protocol IKE packet according to the terminal information corresponding to the terminal, and send the first IKE packet to the upstream relay terminal, so that the upstream relay terminal transmits the first IKE packet Forwarded to the N3IWF corresponding to the terminal, so that after the N3IWF corresponding to the terminal passes the verification of the first IKE packet, an IPSec-based IPSec protocol is established between the N3IWF corresponding to the terminal and the terminal. The first data transmission tunnel;
    根据所述第一数据传输隧道通过所述终端对应的N3IWF建立经由所述上游中继终端的第一非3GPP接入连接;Establish a first non-3GPP access connection via the upstream relay terminal through the N3IWF corresponding to the terminal according to the first data transmission tunnel;
    根据所述第一非3GPP接入连接建立所述终端的第一非3GPP会话。Establishing a first non-3GPP session of the terminal according to the first non-3GPP access connection.
  5. 根据权利要求1所述的方法,其中,所述与下游终端建立连接,对所述下游终端的业务流量作旁路透传处理,并通过与所述上游中继终端的所述连接转发所述下游终端的业务流量,以使所述下游终端通过与所述下游终端对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话,包括:The method according to claim 1, wherein the connection with the downstream terminal is established, the business traffic of the downstream terminal is bypassed and transparently transmitted, and the downstream relay terminal is forwarded through the connection with the upstream relay terminal. The service traffic of the terminal, so that the downstream terminal establishes a second non-3GPP session through the second non-3GPP access connection established by the N3IWF corresponding to the downstream terminal, includes:
    接收下游终端发送的第二IKE包,所述第二IKE包是根据所述下游终端对应的终端信息生成的;Receive the second IKE packet sent by the downstream terminal, where the second IKE packet is generated according to the terminal information corresponding to the downstream terminal;
    将所述第二IKE包旁路透传转发给所述上游中继终端,以使所述上游中继终端将所述第二IKE包转发给所述下游终端对应的N3IWF,以使所述下游终端对应的N3IWF对所述第二IKE包验证通过后,在所述下游终端对应的N3IWF与所述下游终端之间建立基于IPSec的第二数据传输隧道,以使所述下游终端根据所述第二数据传输隧道通过所述下游终端对应的N3IWF建立经由所述终端和所述上游中继终端的第二非3GPP接入连接,以根据所述第二非3GPP接入连接建立第二非3GPP会话,其中,所述终端成为中继终端。Forward the second IKE packet to the upstream relay terminal in bypass transparent transmission, so that the upstream relay terminal forwards the second IKE packet to the N3IWF corresponding to the downstream terminal, so that the downstream terminal After the corresponding N3IWF passes the verification of the second IKE packet, a second data transmission tunnel based on IPSec is established between the N3IWF corresponding to the downstream terminal and the downstream terminal, so that the downstream terminal can pass the verification according to the second data transmission tunnel. The data transmission tunnel establishes a second non-3GPP access connection via the terminal and the upstream relay terminal through the N3IWF corresponding to the downstream terminal, so as to establish a second non-3GPP session according to the second non-3GPP access connection, Wherein, the terminal becomes a relay terminal.
  6. 根据权利要求1所述的方法,其中,所述终端为一个或多个,多个所述终端依次连接,且多个所述终端中至少一个终端与所述一级中继终端连接。The method according to claim 1, wherein the terminal is one or more, a plurality of the terminals are connected in sequence, and at least one terminal among the plurality of terminals is connected to the first-level relay terminal.
  7. 根据权利要求1所述的方法,其中,所述下游终端为一个或多个,所述终端分别对多个所述下游终端的业务流量作旁路透传处理。The method according to claim 1, wherein there are one or more downstream terminals, and the terminals respectively perform bypass and transparent transmission processing on the service traffic of multiple downstream terminals.
  8. 一种流量统计方法,其中,终端通过上游中继终端与基站间接连接,所述上游中继终端至少包括一个一级中继终端,所述一级中继终端通过新空口NR与基站连接,所述终端通过与所述终端对应的N3IWF建立的第一非3GPP接入连接建立第一非3GPP会话,所述终端与下游终端连接,所述下游终端通过与所述下游终端对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话,所述第一非3GPP会话承载所述终端发起并封装的业务流量,所述第二非3GPP会话承载所述下游终端发起并封装的业务流量;所述方法包括:A traffic statistics method, in which a terminal is indirectly connected to a base station through an upstream relay terminal, the upstream relay terminal includes at least one first-level relay terminal, and the first-level relay terminal is connected to the base station through a new air interface NR, so The terminal establishes a first non-3GPP session through a first non-3GPP access connection established by the N3IWF corresponding to the terminal, the terminal is connected to a downstream terminal, and the downstream terminal establishes a first non-3GPP session through the N3IWF corresponding to the downstream terminal. The second non-3GPP access connection establishes a second non-3GPP session, the first non-3GPP session carries the service traffic initiated and encapsulated by the terminal, and the second non-3GPP session carries the service traffic initiated and encapsulated by the downstream terminal; The methods include:
    对所述第一非3GPP会话对应的会话锚点记录的流量进行统计,确认所述终端对应的业务流量用量;Perform statistics on the traffic recorded by the session anchor corresponding to the first non-3GPP session, and confirm the service traffic usage corresponding to the terminal;
    对所述第二非3GPP会话对应的会话锚点记录的流量进行统计,确认所述下游终端对应的业务流量用量。Statistics are performed on the traffic recorded in the session anchor point corresponding to the second non-3GPP session, and the service traffic usage corresponding to the downstream terminal is confirmed.
  9. 根据权利要求8所述的方法,其中,所述上游中继终端为所述一级中继终端,所 述一级中继终端与基站建立有NR会话;所述方法还包括:The method according to claim 8, wherein the upstream relay terminal is the first-level relay terminal, and the first-level relay terminal establishes an NR session with the base station; the method further includes:
    获取所述NR会话对应的会话锚点记录的总流量;Obtain the total traffic recorded by the session anchor point corresponding to the NR session;
    根据所述总业务流量对应的目标地址剔除目前地址为N3IWF的流量;Eliminate the traffic whose current address is N3IWF according to the target address corresponding to the total business traffic;
    根据剔除结果确认所述上游中继终端对应的业务流量用量。Confirm the service traffic usage corresponding to the upstream relay terminal according to the elimination result.
  10. 一种近域通信的控制装置,应用于终端,其中,所述终端通过上游中继终端与基站间接连接,所述上游中继终端至少包括一个一级中继终端,所述一级中继终端通过新空口NR与基站连接,所述装置包括:A control device for near-domain communication, applied to a terminal, wherein the terminal is indirectly connected to a base station through an upstream relay terminal, and the upstream relay terminal includes at least one first-level relay terminal, and the first-level relay terminal Connected to the base station through the new air interface NR, the device includes:
    连接建立装置,配置为若检测到与上游中继终端成功建立连接,则建立所述终端的第一非第三代合作伙伴计划3GPP会话,所述第一非3GPP会话通过与所述终端对应的非第三代合作伙伴计划互通功能N3IWF建立的第一非3GPP接入连接建立;其中,所述第一非3GPP会话承载所述终端发起并封装的业务流量;A connection establishment device configured to establish a first non-3rd Generation Partnership Project 3GPP session of the terminal if it detects that the connection is successfully established with the upstream relay terminal, and the first non-3GPP session passes the terminal corresponding to the terminal. The first non-3GPP access connection established by the non-3GPP interworking function N3IWF is established; wherein the first non-3GPP session carries the service traffic initiated and encapsulated by the terminal;
    旁路透传装置,配置为与下游终端建立连接,对所述下游终端的业务流量作旁路透传处理,并通过与所述上游中继终端的所述连接转发所述下游终端的业务流量,以使所述下游终端通过与所述下游终端对应的N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话;其中,所述第二非3GPP会话承载所述下游终端发起并封装的业务流量。A bypass transparent transmission device configured to establish a connection with a downstream terminal, perform bypass transparent transmission processing on the business traffic of the downstream terminal, and forward the business traffic of the downstream terminal through the connection with the upstream relay terminal, so as to causing the downstream terminal to establish a second non-3GPP session through a second non-3GPP access connection established by the N3IWF corresponding to the downstream terminal; wherein the second non-3GPP session carries business traffic initiated and encapsulated by the downstream terminal .
  11. 一种流量统计装置,其中,终端通过一级中继终端与基站间接连接,所述一级中继终端通过新空口NR与基站连接,所述终端通过与N3IWF建立的第一非3GPP接入连接建立第一非3GPP会话,所述终端与下游终端连接,所述下游终端通过与N3IWF建立的第二非3GPP接入连接建立第二非3GPP会话,所述第一非3GPP会话承载所述终端发起并封装的业务流量,所述第二非3GPP会话承载所述下游终端发起并封装的业务流量;所述装置包括:A traffic statistics device, in which the terminal is indirectly connected to the base station through a first-level relay terminal, the first-level relay terminal is connected to the base station through the new air interface NR, and the terminal is connected through the first non-3GPP access established with N3IWF A first non-3GPP session is established. The terminal is connected to a downstream terminal. The downstream terminal establishes a second non-3GPP session through a second non-3GPP access connection established with the N3IWF. The first non-3GPP session carries the information initiated by the terminal. and encapsulated business traffic, the second non-3GPP session carries the business traffic initiated and encapsulated by the downstream terminal; the device includes:
    第一确认装置,配置为对所述第一非3GPP会话对应的会话锚点记录的流量进行统计,确认所述终端对应的业务流量用量;The first confirmation device is configured to collect statistics on the traffic recorded by the session anchor point corresponding to the first non-3GPP session, and confirm the service traffic usage corresponding to the terminal;
    第二确认装置,配置为对所述第二非3GPP会话对应的会话锚点记录的流量进行统计,确认所述下游终端对应的业务流量用量。The second confirmation device is configured to collect statistics on the traffic recorded in the session anchor point corresponding to the second non-3GPP session, and confirm the service traffic usage corresponding to the downstream terminal.
  12. 一种计算机可读存储介质,其上存储有计算机程序,其中,所述程序被处理器执行时实现如权利要求1至7中任一项所述的近域通信的控制方法或权利要求8至9中任一项所述的流量统计方法。A computer-readable storage medium with a computer program stored thereon, wherein when the program is executed by a processor, the control method for near-field communication as claimed in any one of claims 1 to 7 or claims 8 to 7 is implemented. The traffic statistics method described in any one of 9.
PCT/CN2022/140779 2022-08-22 2022-12-21 Near-field communication control method, traffic statistics method, apparatus, and medium WO2024040818A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202211009341.6 2022-08-22
CN202211009341.6A CN117676492A (en) 2022-08-22 2022-08-22 Control method, flow statistics method, device and medium for near field communication

Publications (1)

Publication Number Publication Date
WO2024040818A1 true WO2024040818A1 (en) 2024-02-29

Family

ID=90012282

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2022/140779 WO2024040818A1 (en) 2022-08-22 2022-12-21 Near-field communication control method, traffic statistics method, apparatus, and medium

Country Status (2)

Country Link
CN (1) CN117676492A (en)
WO (1) WO2024040818A1 (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140179359A1 (en) * 2012-12-21 2014-06-26 Markport Limited Message router for concatenated sms
CN113728664A (en) * 2019-04-30 2021-11-30 康维达无线有限责任公司 Electronic device and method for data aggregation in 5G user equipment

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20140179359A1 (en) * 2012-12-21 2014-06-26 Markport Limited Message router for concatenated sms
CN113728664A (en) * 2019-04-30 2021-11-30 康维达无线有限责任公司 Electronic device and method for data aggregation in 5G user equipment

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
NOKIA, NOKIA SHANGHAI BELL: "Solution for switching between two indirect L3 UE-to-Network Relay paths using N3IWF", 3GPP DRAFT; S2-2202592, 3RD GENERATION PARTNERSHIP PROJECT (3GPP), MOBILE COMPETENCE CENTRE ; 650, ROUTE DES LUCIOLES ; F-06921 SOPHIA-ANTIPOLIS CEDEX ; FRANCE, vol. SA WG2, no. Elbonia; 20220406 - 20220412, 29 March 2022 (2022-03-29), Mobile Competence Centre ; 650, route des Lucioles ; F-06921 Sophia-Antipolis Cedex ; France, XP052133429 *
XIAOYANG LIU, FEI XIANG; DUAN YONG; HUANG HONGRU; OU LIANG: "Research and Application of Open Technology of Lightweight UPF N4 Interfaceions", MOBILE COMMUNICATIONS, YIDONG TONGXIN ZAZHISHE, CN, vol. 45, no. 1, 15 January 2021 (2021-01-15), CN , pages 66 - 70, XP093142128, ISSN: 1006-1010, DOI: 10.3969/j.issn.1006-1010.2021.01.012 *

Also Published As

Publication number Publication date
CN117676492A (en) 2024-03-08

Similar Documents

Publication Publication Date Title
KR101814969B1 (en) Systems and methods for accessing a network
CN104247505A (en) System and method for andsf enhancement with anqp server capability
EP3787258B1 (en) Communication method and apparatus
JP2014501057A (en) Method and apparatus for sharing internet connection based on automatic configuration of network interface
US8631232B2 (en) Wireless personal area network accessing method
CN105393565A (en) Method of device discovery for device-to-device communication in a telecommunication network, user equipment device and computer program product
CN111869261A (en) Discovery and security in LWA communications
CN106470465B (en) WIFI voice service initiating method, LTE communication equipment, terminal and communication system
WO2011116713A2 (en) Method, device and system for machine type communication (mtc) terminal communicating with network through gateway
WO2022171017A1 (en) Communication method, apparatus and system
US11889568B2 (en) Systems and methods for paging over WiFi for mobile terminating calls
WO2016078278A1 (en) Wireless relay node, method and system for wireless relay node to access core network
CN113811025A (en) Method, equipment and system for releasing relay connection
WO2021031055A1 (en) Communication method and device
WO2021204277A1 (en) Communication method, apparatus and system
US10219309B2 (en) D2D service authorizing method and device and home near field communication server
WO2014172836A1 (en) Method and apparatus for accessing network, and network system
CN112567812B (en) Location reporting for mobile devices
WO2024040818A1 (en) Near-field communication control method, traffic statistics method, apparatus, and medium
WO2014047923A1 (en) Method and device for accessing network
WO2016134543A1 (en) Cell access method, convergence terminal and access terminal
WO2021169683A1 (en) Communication method and device
WO2022067736A1 (en) Communication method and apparatus
CN116097890A (en) Communication equipment, data transmission method and device
WO2023197576A1 (en) Relay transmission method, switching method, apparatus, and user equipment

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 22956351

Country of ref document: EP

Kind code of ref document: A1