CN100407618C - Integral service discrimination interface and integral service implementing method - Google Patents

Integral service discrimination interface and integral service implementing method Download PDF

Info

Publication number
CN100407618C
CN100407618C CN2004100061853A CN200410006185A CN100407618C CN 100407618 C CN100407618 C CN 100407618C CN 2004100061853 A CN2004100061853 A CN 2004100061853A CN 200410006185 A CN200410006185 A CN 200410006185A CN 100407618 C CN100407618 C CN 100407618C
Authority
CN
China
Prior art keywords
authentication
message
group
ppt
authorization
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Lifetime
Application number
CN2004100061853A
Other languages
Chinese (zh)
Other versions
CN1561027A (en
Inventor
李永奇
杜涛
吴强
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Caltta Technologies Co ltd
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN2004100061853A priority Critical patent/CN100407618C/en
Publication of CN1561027A publication Critical patent/CN1561027A/en
Application granted granted Critical
Publication of CN100407618C publication Critical patent/CN100407618C/en
Anticipated expiration legal-status Critical
Expired - Lifetime legal-status Critical Current

Links

Images

Abstract

The present invention relates to an interface for cluster service authentication and a method for realizing cluster service authentication. The present invention is used for digital cluster systems. The interface comprises an authentication client terminal and an authentication server, wherein the authentication client terminal is connected with the authentication server through a communication network. The authentication client terminal is used for transmitting authentication request message to the authentication server, for receiving the response message of the authentication server, and for processing cluster service. The authentication server is used for authenticating the received authentication request message, and returns the response message of authentication results. The present invention separates the service processing from the authentication logic of cluster systems, and enhances service processing efficiency.

Description

A kind of group service authorization interface and group service authentication implementation method
Technical field
The present invention relates to a kind of group service authorization interface and centralization of state power service authentication implementation method, relate in particular to a kind of group service authorization interface and group service authentication implementation method that is applied to digital cluster system.
Background technology
Trunked communication system is born in the seventies in 20th century, and trunking communication the earliest is an analogue system, and the Digital Clustering technology was risen in the world from the mid-90 in 20th century, and digital colony network occur in China the latter stage nineties.The Digital Clustering technology have continue fast, the availability of frequency spectrum is high, the advantage of networking flexibility, is mainly used in the dedicated mobile communications subsystem of production scheduling, commander's control, for improving production and operating efficiency, assurance safety etc. epochmaking effect is arranged.
Two kinds of digital cluster systems of extensive use at present comprise iDEN digital clustering communication system and land trunked radio TETRA (Terresttial Trunked Radio) communication system, iDEN is developed by Motorola Inc., working frequency range 800MHz adopts vector sum excited linear prediction speech coding (VSELP) and 16QAM modulation technique.The TETRA communication system, the digital cluster communication standard operation frequency range that adopts ETSI (ETSI) to recommend is 400MHz or 800MHz, is an aerial signaling interface open system.Its adopt advanced ACELP speech coding and/the 4-DQPSK modulation.
More than two kinds of cluster common networks realize it all being that the second generation digital communication technology that adopts is realized, their method for authenticating also with second generation digital communication technology in the speech business method for authenticating similar.AC/VDB (AuthenticationCentre/Visitor DataBase) among DAP/D-VLR/D-HLR among the iDEN (Dispatch Application Processor/DAP Visited LocationRegister/DAP Home Location Register) and the TETRA is equivalent to the MSC/VLR in present G (GSM) net or C (CDMA2000) net, and the HDB (Home DataBase) among iHLR among the iDEN (iden HLR) and the TETRA is equivalent to the HLR in present G net or the C net.This authentication mode has apparent in view defective for the authentication of group service, at first in the group system owing to increased group, notions such as tissue, user may belong to factor such as a plurality of groups simultaneously increases sharply amount of user data, adopt the mode of VLR memory database to have very big memory pressure, in addition because the authentication of group service is more complicated more than conventional voice authentication, this can bring pressure on the CPU to service processor, directly has influence on the efficient of Business Processing.
Summary of the invention
Technical problem to be solved by this invention is to provide a kind of group service authorization interface and its implementation, realize Business Processing and authentication logical separation, overcome in the existing group service right discriminating system service processor and not only manage business, also processing section authentication logic causes the lower defective of efficient.
To achieve these goals, the invention provides a kind of group service authorization interface, be applied to digital cluster system, comprise the authentication client and the authentication server that connect by communication network, wherein,
This authentication client is used for sending the service authentication request message to this authentication server, receives the response message of this authentication server, and carries out group service according to this response message and handle;
This authentication server, be used for the service authentication request message of receiving is carried out authentication process, and the response message of loopback traffic authenticating result, wherein, if authentication is not passed through, then this service authentication result's response message is a service authentication refusal message, if authentication is passed through, then this service authentication result's response message is that service authentication is accepted message, and this message comprises the professional required authorization message of this authentication;
Wherein, when this response message is a service authentication when accepting message, authentication client is carried out corresponding group service and is handled.
Above-mentioned group service authorization interface, wherein, this group service authorization interface is based on open trunking architecture GoTa (Global open Trunking Architechture) system, the PTT Distributor PDS of this open trunking architecture system (PTT Dispatcher Server) is as authentication client, and PTT home location register PHR (PTT Home Register) is as authentication server.Wherein PDS is not only that authentication client also has the group service processing to wait other function.
Above-mentioned group service authorization interface, wherein this communication network is an IP network, exchanges data is based on udp protocol or Transmission Control Protocol in this IP network.
Above-mentioned group service authorization interface, wherein this PTT Distributor comprises that also the IP bag receives distribution module, calling authorization client modules, position renewal client modules, management and group client modules, wherein:
The IP bag receives distribution module, is used for sending the authentication request message to this PTT home location register, receives all messages from this PTT home location register, and message is distributed to other modules of this PTT Distributor according to the type of message;
The calling authorization client modules is used to make up the calling authorization request message and sends, and carries out corresponding group service processing to obtain authenticating result from this PTT home location register;
Client modules is upgraded in the position, is used to make up the position and upgrades the transmission of authentication request message, carries out corresponding group service processing to obtain authenticating result from this PTT home location register;
The management and group client modules is used to make up management and group authentication request message and sends, and carries out corresponding group service processing to obtain authenticating result from this PTT home location register.
Above-mentioned group service authorization interface, wherein this PTT home location register comprises that also the IP bag receives distribution module, calling authorization module, position update module, group management module, database access module, wherein:
The IP bag receives distribution module, is used to receive all messages from this PTT Distributor, and according to the type of message other modules that message is distributed to this PTT home location register is carried out authentication, and the authenticating result response is recycled to this PTT Distributor;
The calling authorization module is used to carry out calling authorization and handles;
The position update module is used to carry out the position and upgrades authentication process;
Group management module is used to carry out the management and group authentication process;
Database access module is used to other module reading databases of this PTT home location register.
The present invention also provides a kind of group service authentication implementation method, be applied to digital cluster system, group service authorization interface by this digital cluster system, authentication client sends the authentication server of authentication request message to this group service authorization interface, authentication server carries out authentication process to the message of receiving, and the response message of loopback authenticating result is to this authentication client, wherein, if authentication is not passed through, then this service authentication result's response message is a service authentication refusal message, if authentication is passed through, then this service authentication result's response message is that service authentication is accepted message, and this message comprises the professional required authorization message of this authentication; When this response message is a service authentication when accepting message, authentication client is handled to carry out follow-up corresponding group service, realizes Business Processing and authentication logical separation.
Above-mentioned group service authentication implementation method, wherein, this centralization of state power service authentication interface is based on the open trunking architecture system, and the PTT Distributor of this open trunking architecture system is as authentication client, and the PTT home location register is as authentication server.
Above-mentioned group service authentication implementation method, wherein, this authentication process comprises that group calling authentication is handled, secret is exhaled authentication process, Call Forwarding authentication process, group member authentication process, subscription authentication processing, position upgrade authentication process, management and group authentication process.
Above-mentioned group service authentication implementation method, wherein, this group calling authentication is handled and is comprised the steps:
Step 1, this PTT Distributor sends the group calling authentication request message to this PTT home location register, contains the information of group and caller in this message;
Step 2, this PTT home location register is carried out authentication to the message of receiving, and authentication is not by then loopback authentication refusal message, otherwise the loopback authentication is accepted message, contains group in the message, the authorization message of caller;
Step 3, the authorization message that this PTT Distributor is received according to step 2 sends the authentication request message of asking for other group member information to this PTT home location register, contains member's number and the relative position information asked in the message;
Step 4, this PTT home location register is carried out authentication to the authorization requests of receiving from step 3, authentication by then loopback authentication refusal message, is not accepted message otherwise send authentication to this PTT Distributor, contains the authorization message of the group member of this PTT Distributor request in the message;
Step 5, repeating step three and step 4 have obtained the authorization message of all group members from this PTT home location register up to this PTT Distributor;
Step 6, this PTT Distributor sends the authentication request that group calling authentication finishes to this PTT home location register;
Step 7, this PTT home location register discharges respective resources, sends response message to this PTT Distributor.
Above-mentioned group service authentication implementation method, wherein, this secret exhales authentication process to comprise the steps:
This PTT Distributor sends secret to this PTT home location register and exhales the authentication request message, contains the information of called and caller in the message;
This PTT home location register is carried out authentication to the message of receiving, authentication is not by then loopback authentication refusal message, otherwise the loopback authentication is accepted message, contains caller in the message, called authorization message.
Above-mentioned group service authentication implementation method, wherein, this Call Forwarding authentication process comprises the steps:
This PTT Distributor sends Call Forwarding authentication request message to this PTT home location register, contains the essential information and the preceding commentaries on classics type information that need forwarding subscriber in the message;
This PTT home location register is carried out authentication to the message of receiving, authentication is not passed through then loopback refusal message, otherwise the loopback authentication is accepted message, forwards user's information before containing in the message to.
Above-mentioned group service authentication implementation method, wherein, this group member authentication process comprises the steps:
This PTT Distributor sends group member authentication request message to this PTT home location register, contains the information of group member in the message;
This PTT home location register is carried out authentication to the message of receiving, authentication is not by then loopback authentication refusal message, otherwise the loopback authentication is accepted message, contains relevant groups member's authorization message in the message.
Above-mentioned group service authentication implementation method, wherein, this subscription authentication is handled and is comprised the steps:
This PTT Distributor sends the subscription authentication request message to this PTT home location register, contains user's information in the message;
This PTT home location register is carried out authentication to the message of receiving, authentication is not by then loopback authentication refusal message, otherwise the loopback authentication is accepted message, contains this user's authorization message in the message.
Above-mentioned group service authentication implementation method, wherein, this position is upgraded authentication process and is comprised the steps:
This PTT Distributor sends the position to this PTT home location register and upgrades the authentication request message, and containing in the message needs the position to upgrade user position information;
This PTT home location register is carried out authentication to the message of receiving, authentication is not by then loopback authentication refusal message, otherwise the loopback authentication is accepted message, contains user position information in the message.
Above-mentioned group service authentication implementation method, wherein, this management and group authentication process comprises the steps:
This PTT Distributor sends management and group authentication request message to this PTT home location register, contains group leader in the message and wishes the new property value that the person of being operated is set up;
This PTT home location register is carried out authentication to the message of receiving, authentication is not by then loopback authentication refusal message, otherwise the loopback authentication is accepted message, according to containing group leader's information in the different situations message, the person's of being operated information.
Can make the group service processor need not handle the authentication logic by enforcement of the present invention, directly from PHR, get authenticating result, thereby improve the traffic handing capacity of group service processor.
Describe the present invention below in conjunction with the drawings and specific embodiments, but not as a limitation of the invention.
Description of drawings
Fig. 1 is that the required authentication entity of authorization interface concerns schematic diagram among the present invention;
Fig. 2 is the structural representation of authentication client PDS required among the present invention;
Fig. 3 is the structural representation of authentication service end PHR required among the present invention;
Fig. 4 is a group calling authentication flow chart of the present invention;
Fig. 5 is that secret of the present invention is exhaled authorizing procedure figure;
Fig. 6 is Call Forwarding authorizing procedure figure of the present invention;
Fig. 7 is group member authorizing procedure figure of the present invention;
Fig. 8 is a subscription authentication flow chart of the present invention;
Fig. 9 is that authorizing procedure figure is upgraded in position of the present invention;
Figure 10 is management and group authorizing procedure figure of the present invention.
Embodiment
Below in conjunction with accompanying drawing, describe the present invention.
Fig. 1 is that the required authentication entity of authorization interface of the present invention concerns schematic diagram, and authorization interface of the present invention is not only applicable to the GoTa system, is applicable to other digital cluster systems yet.The present invention adopts two functional node PDS of GoTa system and PHR authentication client 20 and the authentication server 30 as interface respectively as we can see from the figure, and they are connected by IP network 10.Wherein:
PDS 20 (seeing Fig. 2 for details) is used for sending the authentication request message to this authentication server, receives the response message of this authentication server, and is used to carry out the group service processing.In the present invention, this PDS 20 comprises that the IP bag receives distribution module 21, calling authorization client modules 22, position renewal client modules 23, management and group client modules 24, wherein:
The IP bag receives distribution module 21, is used for sending the authentication request message to PHR, receives all messages from this PHR, and message is distributed to other modules of this PDS according to the type of message;
Calling authorization client modules 22 is used to make up the calling authorization request message and sends, and carries out corresponding group service processing to obtain authenticating result from this PHR;
Client modules 23 is upgraded in the position, is used to make up the position and upgrades the transmission of authentication request message, carries out corresponding group service processing to obtain authenticating result from this PHR;
Management and group client modules 24 is used to make up management and group authentication request message and sends, and carries out corresponding group service processing to obtain authenticating result from this PHR.
In addition, in this PDS 20, also can increase other PDS modules 25 as required, be used to handle other group services.
PHR 30 (seeing Fig. 3 for details) is used for the authentication request message of receiving is carried out authentication process, and the response message of loopback authenticating result.In the present invention, this PHR comprises that the IP bag receives distribution module 31, calling authorization module 32, position update module 33, group management module 34, database access module 35, wherein:
The IP bag receives distribution module 31, is used to receive all messages from this PDS, and according to the type of message other modules that message is distributed to this PHR is carried out authentication, and the authenticating result response is recycled to this PDS;
Calling authorization module 32 is used to carry out calling authorization and handles;
Position update module 33 is used to carry out the position and upgrades authentication process;
Group management module 34 is used to carry out the management and group authentication process;
Database access module 35 is used to other module reading databases of this PHR.
Among the present invention, a PHR can handle the authentication request of a plurality of PDS.
And in the present invention, the IP bag in this group service authorization interface not only can adopt the mode of UDP alternately, also can adopt other forms such as TCP.
The present invention also provides a kind of group service authentication implementation method, be applied to digital cluster system, the authentication client of the group service authorization interface by this digital cluster system sends the authentication server of authentication request message to this group service authorization interface, carry out authentication process, and the response message of loopback authenticating result to this authentication client is handled realization Business Processing and authentication logical separation to carry out the subsequent set group business.
Wherein, this authentication process can comprise that group calling authentication is handled, secret is exhaled authentication process, Call Forwarding authentication process, group member authentication process, subscription authentication processing, position upgrade authentication process, management and group authentication process.
Below in conjunction with Fig. 4~Figure 10, be example with PDS and two functional nodes of PHR of GoTa system, describe authentication implementation method of the present invention in detail.
Fig. 4 has provided the flow chart of group calling authentication, and concrete steps are as follows:
Step 401, PDS sends the group calling authentication request to PHR.Contain GMDN (group's telephone number) in the request, work the person's of exhaling information such as IMSI (International Mobile Subscriber Identitity, IMSI International Mobile Subscriber Identity), ESN (Electronic Serial Number, electronics string number).
Step 402, PHR is to group calling authentication request authentication.
Step 4021, does PHR judge that authentication passes through? if the success would forward step 4022 to, if the failure would forward step 4023 to.
Step 4022, PHR sends authentication to PDS and accepts message.This message message comprises loopback GID (group identification), member's number in the group, group information such as member's number that the multipotency of each authentication bag carries and work the person's of exhaling IMSI, ESN, MDN (Mobile Directory Number, Mobile Directory Number), preceding commentaries on classics attribute, play call right, positional information etc., execution in step 403.
Step 4023, PHR sends group calling authentication refusal message to PDS, the loopback failure cause, the group calling authentication flow process finishes.
Step 403, PDS sends to PHR and asks for partial group group membership infomational message.In this step, PDS is according to the message information of receiving, decide information (member's number that number must be carried smaller or equal to the multipotency of each authentication bag that PHR gives from several group members to PHR that ask in its sole discretion in previous step, general recommendations equals), and PDS need provide the numbering of initial group member.The information of these two indispensabilities adds that other information have constituted the middle group authentication message that PDS sends to PHR.
Step 4031, does PHR judge that authentication passes through? if success then forward step 4032 to otherwise forwards step 4033 to.
Step 4032, PHR is to the relevant group member infomational message of PDS loopback.Wherein, comprise PDS require a plurality of group members obtain IMSI, ESN, MDN, preceding commentaries on classics attribute, play call right, positional information etc., execution in step 404.
Step 4033, PHR refuses message to PDS loopback authentication, the loopback failure cause, and change step 404 over to.
Step 404, does PDS judge whether that all group member information all obtain? if obtain all information about firms, then forward step 405 to, otherwise repeating step 403,4031,4032,4033, obtained the authorization message of all group members from PHR up to PDS.Group member several tens in the general group or up to a hundred, obviously PHR can not allow all information about firms in step 403,4031,4032,4033 authentications return to PDS in back and forth, so generally speaking, repeating step 403,4031,4032,4033 is to obtain all group member information.
Step 405 after PDS obtains the authorization message of all group members, sends the message that the group member message pick-up finishes to PHR.
Step 406, PHR loopback PDS acknowledge message, and discharge respective resources.
Fig. 5 has provided the flow chart that secret is exhaled (another user's of customer call calling in the group system) authentication, and concrete steps are as follows:
Step 501, PDS sends authentication request message to PHR.Comprise IMSI, the ESN of caller, called information such as MDN in the message.
Step 502, PHR carries out authentication to the message of receiving.
Does step 503 judge that authentication passes through? authentication is by then forwarding step 504 to, otherwise forwards step 505 to.
Step 504, PHR accepts message message to PDS loopback authentication, have in the message calling and called IMSI, ESN, MDN, OID (Organization ID, organization identification), short codes, preceding commentaries on classics attribute, play call right, positional information etc., secret exhales authorizing procedure to finish.
Step 505, PHR contains failure code to PDS loopback authentication refusal message message in the message, show failure cause, and secret exhales authorizing procedure to finish.
Fig. 6 has provided the flow chart of Call Forwarding authentication.Calledly in group system be provided with Call Forwarding, and other conditions also satisfy the Call Forwarding condition, PDS can change authentication before the request of commentaries on classics authentication request message before PHR sends, and concrete steps are as follows:
Step 601, PDS changes authentication request message before PHR sends.Contain information such as IMSI, the ESN that needs the preceding user who changes, preceding commentaries on classics type in the message.
Step 602, the message request authentication of PHR to receiving.
Does step 603 judge that authentication passes through? authentication is by then forwarding step 604 to, otherwise forwards step 605 to.
Step 604, PHR accepts message message to PDS loopback authentication, forwards user's IMSI, ESN, MDN, OID, short codes, calling authority, positional information etc. before having in the message to, and the Call Forwarding authorizing procedure finishes.
Step 605, PHR contains failure code to PDS loopback authentication refusal message message in the message, show failure cause, and the Call Forwarding authorizing procedure finishes.
Fig. 7 has provided the flow chart of group member authentication.In group system, when a group member that just adds after group calling is set up was initiated group calling, PDS can send the authentication of group member authentication request message request group member to PHR, and concrete steps are as follows:
Step 701, PDS sends the group member authentication request message to PHR.IMSI, the ESN, the information such as GID, GMDN that contain the user in the message.
Step 702, the message request authentication of PHR to receiving.
Does step 703 judge that authentication passes through? authentication is by then forwarding step 704 to, otherwise forwards step 705 to.
Step 704, PHR accepts message message to PDS loopback authentication, and user's IMSI, ESN, MDN, calling authority, preceding commentaries on classics setting and positional information etc. are arranged in the message, and the group member authorizing procedure finishes.
Step 705, PHR contains failure code to PDS loopback authentication refusal message message in the message, show failure cause, and the group member authorizing procedure finishes.
Fig. 8 has provided the flow chart of subscription authentication.In group system, as the user being added by force in the ongoing group calling, PDS can send the subscription authentication of subscription authentication request message requests to PHR, and concrete steps are as follows:
Step 801, PDS sends the subscription authentication request message to PHR.Contain the information such as MDN that need the user in the message.
Step 802, the message request authentication of PHR to receiving.
Does step 803 judge that authentication passes through? authentication is by then forwarding step 804 to, otherwise forwards step 805 to.
Step 804, PHR accepts message message to PDS loopback authentication, and user's IMSI, ESN, MDN, calling authority, preceding commentaries on classics setting and positional information etc. are arranged in the message, and the subscription authentication flow process finishes.
Step 805, PHR contains failure code to PDS loopback authentication refusal message message in the message, show failure cause, and the subscription authentication flow process finishes.
Fig. 9 has provided the flow chart of position registering and authentifying, in group system, terminal is exhaled rising, regularly registration, all can carry out location registers under the multiple situations such as switching to right discriminating system, PDS can send position registering and authentifying request message requests position registering and authentifying to PHR during location registers, and concrete steps are as follows:
Step 901, PDS sends the position registering and authentifying request message to PHR, contains information such as the IMSI, the ESN that need the user, positional information in the message.
Step 902, the message request authentication of PHR to receiving.
Does step 903 judge that authentication passes through? authentication is by then forwarding step 904 to, otherwise forwards step 905 to.
Step 904, PHR accepts message message to PDS loopback authentication, and user's information such as IMSI, ESN, MDN and positional information are arranged in the message, and the position is upgraded authorizing procedure and is finished.
Step 905, PHR contains failure code to PDS loopback authentication refusal message message in the message, show failure cause, and the position is upgraded authorizing procedure and is finished.
Figure 10 has provided the flow chart of management and group authentication.The group leader of group plans additions and deletions and changes group member in group system, and PDS can send management and group authentication request message request management and group authentication to PHR, and concrete steps are as follows:
Step 1001, PDS sends the management and group authentication request message to PHR.Contain group leader's IMSI, ESN, GMDN, member's MDN in the message, as also having information such as amended value for revising the group member request.
Step 1002, the message request authentication of PHR to receiving.
Does step 1003 judge that authentication passes through? authentication is by then forwarding step 1004 to, otherwise forwards step 1005 to.
Step 1004, PHR accepts message message to PDS loopback authentication, and IMSI, ESN, MDN, calling authority, positional information of group leader etc. are arranged in the message.If the interpolation group member, IMSI, ESN, MDN, calling authority, the positional information etc. that are added the member also should be in response messages, and the management and group authorizing procedure finishes.
Step 1005, PHR contains failure code to PDS loopback authentication refusal message message in the message, show failure cause, and the management and group authorizing procedure finishes.
In sum, the present invention proposes a kind of interface and its implementation that solves the required authentication of group service, constitute a ring important in the GoTa group system.And interface and its implementation of the required authentication of above-mentioned group service are not only applicable to the GoTa system, are fit to too for other digital cluster systems; And the bag of IP wherein not only can adopt udp protocol alternately, also can adopt other modes such as Transmission Control Protocol.
Certainly; the present invention also can have other various embodiments; under the situation that does not deviate from spirit of the present invention and essence thereof; those of ordinary skill in the art work as can make various corresponding changes and distortion according to the present invention, but these corresponding changes and distortion all should belong to the protection range of the appended claim of the present invention.

Claims (5)

1. a group service authorization interface is applied to digital cluster system, it is characterized in that, comprises the authentication client and the authentication server that connect by communication network, wherein,
This authentication client comprises that the IP bag receives distribution module, calling authorization client modules, wherein:
The IP bag receives distribution module, is used for sending the authentication request message to this authentication server, receives all response messages from this authentication server, and response message is distributed to other modules of this authentication client according to the type of response message;
The calling authorization client modules is used to make up the calling authorization request message and sends, and carries out corresponding group service processing to obtain authenticating result from this authentication server;
This authentication server comprises that the IP bag receives distribution module, calling authorization module, database access module, wherein:
The IP bag receives distribution module, be used to receive all request messages from this authentication client, and other modules that request message is distributed to this authentication server are carried out authentication, and the response message of authenticating result is recycled to this authentication client according to the type of request message; Wherein, if authentication is not passed through, then this service authentication result's response message is a service authentication refusal message, if authentication is passed through, then this service authentication result's response message is that service authentication is accepted message, and this response message comprises the professional required authorization message of this authentication;
The calling authorization module is used to carry out calling authorization and handles;
Database access module is used to other module reading databases of this authentication server.
2. group service authorization interface according to claim 1, it is characterized in that, this authentication client also comprises management and group client modules, position renewal client modules, described management and group client modules is used to make up management and group authentication request message and sends, and carries out corresponding group service processing to obtain authenticating result from authentication server; Client modules is upgraded in described position, is used to make up the position and upgrades the transmission of authentication request message, carries out corresponding group service processing to obtain authenticating result from this authentication server;
This authentication server also comprises group management module, position update module, and described group management module is used to carry out the management and group authentication process; Described position update module is used to carry out the position and upgrades authentication process.
3. group service authorization interface according to claim 1 and 2, it is characterized in that, this group service authorization interface is based on the open trunking architecture system, and the PPT Distributor PDS of this open trunking architecture system is as authentication client, and PHR is as authentication server for the PPT home location register.
4. group service authorization interface according to claim 3 is characterized in that, this communication network is an IP network, and exchanges data is based on udp protocol and/or Transmission Control Protocol in this IP network.
5. group service method for authenticating that utilizes claim 1 or 2 described group service authorization interfaces to realize, described authentication client is the PPT Distributor, described authentication server is the PPT home location register,
When carrying out the group calling authentication processing, comprise the steps:
Step 1, this PPT Distributor sends the group calling authentication request message to this PPT home location register, contains the information of group and caller in this message;
Step 2, this PPT home location register is carried out authentication to the message of receiving, and authentication is not by then loopback authentication refusal message, otherwise the loopback authentication is accepted message, contains group in the message, the authorization message of caller;
Step 3, the authorization message that this PPT Distributor is received according to step 2 sends the authentication request message of asking for other group member information to this PPT home location register, contains member's number and the relative position information asked in the message;
Step 4, this PPT home location register is carried out authentication to the authorization requests of receiving from step 3, authentication by then loopback authentication refusal message, is not accepted message otherwise send authentication to this PPT Distributor, contains the authorization message of the group member of this PPT Distributor request in the message;
Step 5, repeating step three and step 4 have obtained the authorization message of all group members from this PPT home location register up to this PPT Distributor;
Step 6, this PPT Distributor sends the authentication request that group calling authentication finishes to this PPT home location register;
Step 7, this PPT home location register discharges respective resources, sends response message to this PPT Distributor;
When carrying out position renewal authentication process, comprise the steps:
This PPT Distributor sends the position to this PPT home location register and upgrades the authentication request message, and containing in the message needs the position to upgrade user position information;
This PPT home location register is carried out authentication to the message of receiving, authentication is not by then loopback authentication refusal message, otherwise the loopback authentication is accepted message, contains user position information in the message;
When carrying out the management and group authentication process, comprise the steps:
This PPT Distributor sends management and group authentication request message to this PPT home location register, contains group leader in the message and wishes the new property value that the person of being operated is set up;
This PPT home location register is carried out authentication to the message of receiving, authentication is not by then loopback authentication refusal message, otherwise the loopback authentication is accepted message, according to containing group leader's information in the different situations message, the person's of being operated information.
CN2004100061853A 2004-03-05 2004-03-05 Integral service discrimination interface and integral service implementing method Expired - Lifetime CN100407618C (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2004100061853A CN100407618C (en) 2004-03-05 2004-03-05 Integral service discrimination interface and integral service implementing method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2004100061853A CN100407618C (en) 2004-03-05 2004-03-05 Integral service discrimination interface and integral service implementing method

Publications (2)

Publication Number Publication Date
CN1561027A CN1561027A (en) 2005-01-05
CN100407618C true CN100407618C (en) 2008-07-30

Family

ID=34439735

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2004100061853A Expired - Lifetime CN100407618C (en) 2004-03-05 2004-03-05 Integral service discrimination interface and integral service implementing method

Country Status (1)

Country Link
CN (1) CN100407618C (en)

Families Citing this family (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100536591C (en) * 2005-09-01 2009-09-02 中兴通讯股份有限公司 Calling method in colony system
CN1992763B (en) * 2005-12-31 2010-12-01 中兴通讯股份有限公司 Method for realizing prepayment of digital trunking system
CN101001298B (en) * 2006-01-12 2010-12-08 中兴通讯股份有限公司 Method for group prepayment of digital trunking system
CN101072390B (en) * 2006-05-12 2010-12-01 中兴通讯股份有限公司 Dynamic group management method for digital trunking communication system
CN101083804B (en) * 2006-06-02 2010-10-06 中兴通讯股份有限公司 Realizing method for packet member to perform temporary scheduling by digital cluster communication system
CN1968090B (en) * 2006-06-09 2010-10-27 华为技术有限公司 Method and system for obtaining user terminal authentication information by data service center
CN100433861C (en) * 2006-09-30 2008-11-12 华为技术有限公司 Method for disposing colony user and colony user disposing system
CN101094514B (en) * 2006-09-30 2010-07-14 中兴通讯股份有限公司 Access control method for prepaid users in cluster communication system
CN101217367B (en) * 2007-01-04 2010-12-29 中国移动通信集团公司 An operation right judgment system and method realized by introducing right judgment client end
CN101835105A (en) * 2010-05-24 2010-09-15 中兴通讯股份有限公司 Digital trunking system and method for realizing group call
CN108491701B (en) * 2018-03-23 2020-11-10 深圳乐信软件技术有限公司 Authentication method, device, server and storage medium
CN113453211A (en) * 2021-05-11 2021-09-28 阳光凯讯(北京)科技有限公司 Roaming scene service processing system applied to narrow-band cluster communication system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002067495A2 (en) * 2001-02-16 2002-08-29 Motorola, Inc. Method and apparatus for providing authentication in a communication system
CN1392706A (en) * 2002-08-13 2003-01-22 北京长城鼎兴网络通信技术有限公司 Method for realizing multiple point communication by using serial bus
CN1403952A (en) * 2002-09-24 2003-03-19 武汉邮电科学研究院 Ethernet confirming access method
CN1418021A (en) * 2001-10-30 2003-05-14 深圳市中兴通讯股份有限公司 Modile communicatoin system and its group service realizing method

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002067495A2 (en) * 2001-02-16 2002-08-29 Motorola, Inc. Method and apparatus for providing authentication in a communication system
CN1418021A (en) * 2001-10-30 2003-05-14 深圳市中兴通讯股份有限公司 Modile communicatoin system and its group service realizing method
CN1392706A (en) * 2002-08-13 2003-01-22 北京长城鼎兴网络通信技术有限公司 Method for realizing multiple point communication by using serial bus
CN1403952A (en) * 2002-09-24 2003-03-19 武汉邮电科学研究院 Ethernet confirming access method

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
无线数字集群系统安全与信息保护. 文炜,温斌.现代电信科技. 2003
无线数字集群系统安全与信息保护. 文炜,温斌.现代电信科技. 2003 *

Also Published As

Publication number Publication date
CN1561027A (en) 2005-01-05

Similar Documents

Publication Publication Date Title
US7420941B2 (en) Mobile communication system and mobile station
US9028577B2 (en) Network adapted to manage different mobile telephony services
US7386302B2 (en) Hotline routing of pre-activated GSM subscribers using pseudo-MSISDNs
EP2932744B1 (en) Method for serving visitor subscribers in a mobile communication system
CN1174576C (en) Cheat detecting method in mobile telecommunication network
CN112423301A (en) Private network registration management method and AMF network element
CN110214459A (en) The method and apparatus of business processing
CN100459799C (en) Control system and control method for terminal to use network
CN100407618C (en) Integral service discrimination interface and integral service implementing method
WO2009042670A1 (en) Methods, systems, and computer readable media for providing dynamic roaming arbitrage service
US20100056102A1 (en) Open to all prepaid roaming systems and methods
EP1715626B1 (en) A method for processing the request of position information from a user equipment
US20050254655A1 (en) System and method for aggregating network
US7957754B2 (en) Method and system for authenticating short message calling party
RU2314551C2 (en) Mode of execution service of definition of the locality in a communication system
EP2149275B1 (en) A system and method for utilizing a shared network having one mobile network code
HU223922B1 (en) Method and arrangement for providing intelligent network support to a mobile subscriber
CN101090530A (en) Method for terminal in digital trunking communication system active late into group calling
US20070135124A1 (en) Method and system of multiple wireless HPLMN
US6721560B1 (en) Signalling over the Gs interface in a mobile telecommunications network
CN100384265C (en) A method for identifying different cluster groups
CN110381450B (en) Group establishing method and device
US6532362B1 (en) Over the air service provisioning (OTASP) method in mobile communication system
US10827449B2 (en) Communication apparatus and communication method
US20190141531A1 (en) Vertical industry user system, device, and identification number distribution method

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20210308

Address after: 801-6, 8 / F, building 52, 2 Jingyuan North Street, Beijing Economic and Technological Development Zone, Daxing District, Beijing

Patentee after: CALTTA TECHNOLOGIES Co.,Ltd.

Address before: 518057, Nanshan District high tech Industrial Park, Guangdong province Shenzhen science and technology south road Zhongxing building A block 6

Patentee before: ZTE Corp.

CX01 Expiry of patent term
CX01 Expiry of patent term

Granted publication date: 20080730