CN100414895C - System and method for realizing legally monitoring - Google Patents
System and method for realizing legally monitoring Download PDFInfo
- Publication number
- CN100414895C CN100414895C CNB2005101166626A CN200510116662A CN100414895C CN 100414895 C CN100414895 C CN 100414895C CN B2005101166626 A CNB2005101166626 A CN B2005101166626A CN 200510116662 A CN200510116662 A CN 200510116662A CN 100414895 C CN100414895 C CN 100414895C
- Authority
- CN
- China
- Prior art keywords
- entity
- targeted customer
- calling
- management
- party
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Abstract
The present invention discloses a system and a method for realizing legal monitor. The system comprises an access function (AF) entity and a delivering function (DF) entity in the next generation network (NGN). The method comprises the steps that the AF entity receives a monitor setting request which is sent by the DF entity, an object user which needs to be monitored is determined according to the monitor setting request; after the AF entity receives the message of the object user in the NGN network, the message of the object user is sent to the DF entity; the object user message which is sent by the AF entity is sent to a law enforcement agency side by the DF entity. The present invention can ensure to realize the legal monitor in the NGN network. Consequently, the applicability of legal monitoring service is enhanced, and the service quality of the service of the NGN network is increased.
Description
Technical field
The present invention relates to monitoring technique, particularly relate to a kind of system and method for in next generation network (NGN), realizing Lawful Interception.
Background technology
Lawful Interception is meant law enforcement agency (LEA) through corresponding authorities conducting the examination on the ministry's authorization approval, the law enforcement behavior of the communication service of public correspondence net (PSTN) being monitored according to national relevant law and public correspondence net industry standard.
Lawful Interception needs network side and law enforcement agency to cooperatively interact.Function in the required realization of network side comprises: the calling that identification is monitored sends to law enforcement agency with the relevant information and the call contents of institute's monitored call by the external interface between network side and the law enforcement agency's side.The function of the required realization of law enforcement agency comprises: the relevant information and the call contents of institute's monitored call that reception and phase-split network side are sent.
Because Lawful Interception has important practical significance for national security and social safety, therefore, should guarantee all can realize Lawful Interception in any one network.In addition, at present because the IPization of mobile communications network and fixed communication network, and the fusion of Internet and communication network, can support multiple access technology the NGN network application more and more widely, become networks development emphasis from now on.But, at present, also only there are the networking plan of NGN network and the scheme of realization common communication service, and do not have a solution that how in the NGN network, realizes Lawful Interception, that is to say, in the NGN network, for realizing Lawful Interception, should carry out the calling that identification is monitored by which network entity, the relevant information and the call contents of institute's monitored call are sent to law enforcement agency by external interface, which kind of which kind of and realize by interface and handling process, all not providing concrete implementation at present, therefore, greatly limited the scope of application of Lawful Interception, and greatly reduced the QoS of NGN network, thereby reduced the satisfaction of user to legal monitoring business and NGN network.
This shows how to realize in the NGN network that Lawful Interception has become a problem demanding prompt solution.
Summary of the invention
In view of this, main purpose of the present invention is to provide a kind of system that realizes Lawful Interception, another object of the present invention is to provide a kind of method that realizes Lawful Interception, to guarantee realizing Lawful Interception in the NGN network.
In order to achieve the above object, technical scheme of the present invention is achieved in that
A kind of system that realizes Lawful Interception comprises: the first access function AF entity, the 2nd AF entity, the 3rd AF entity and handoff functions DF entity among the next generation network NGN, wherein,
The one AF entity, the monitoring setting request that is used for sending according to the DF entity need to determine the targeted customer of monitoring, needs intercept target user's management information and needs being correlated with and irrelevant information of the corresponding calling of intercept target user to the transmission of DF entity;
The 2nd AF entity, the monitoring setting request that is used for sending according to the DF entity need to determine the targeted customer of monitoring, needs intercept target user's management information and needs the non-data medium of the corresponding calling of intercept target user to flow to the transmission of DF entity;
The 3rd AF entity is used for monitoring that the DF entity sends and sets request and need to determine the targeted customer that monitors, sends the management information that needs the intercept target user and needs the corresponding data medium stream of calling out of intercept target user to the DF entity;
The DF entity is used for sending the request of setting of monitoring to an AF entity, the 2nd AF entity and the 3rd AF entity, and the targeted customer's that an AF entity, the 2nd AF entity and the 3rd AF entity are sent information is sent to law enforcement agency's side;
Wherein,
The one AF entity is service control proxy function SCPF entity and the access control function ACF entity in the NGN network, the SCPF entity is used for and the described relevant and irrelevant information that needs intercept target user's management information and need the corresponding calling of intercept target user of DF entity interaction, and the ACF entity is used for and the described management information that needs the intercept target user of DF entity interaction;
Described the 2nd AF entity is access media gateway function AMGF entity and the Trunk Media Gateway function TMGF entity in the NGN network;
Described the 3rd AF entity is the edge router ERF in the NGN network;
Wherein,
For an AF entity is that the scheme of SCPF entity and ACF entity, scheme and the 3rd AF entity that the 2nd AF entity is AMGF entity and TMGF entity are the scheme of ERF, these three schemes are used simultaneously, perhaps, only use any one scheme, perhaps, only use any two schemes.
A described AF entity, the 2nd AF entity and the 3rd AF entity link to each other by the d interface with the DF entity respectively.
A described AF entity, be used for and DF entity set-up management channels, and pass through the mutual described management information that needs the intercept target user of the management channels created, and, the one AF entity is used for and DF entity set-up call control channel CDC, and passes through the mutual described corresponding relevant and irrelevant information of calling out of intercept target user that needs of the CDC passage created.
The mutual employing transmission control protocol/Internet protocol of CDC passage is carried out between a described AF entity and the DF entity.
Described the 2nd AF entity is used for and DF entity set-up management channels, and passes through the mutual described management information that needs the intercept target user of the management channels created; And the 2nd AF entity is used for and DF entity set-up call contents channel C CC, and the mutual described corresponding non-data medium of calling out of intercept target user that needs of CCC passage that passes through to be created flows.
The mutual employing RTP and the RTCP Real-time Transport Control Protocol of CCC passage carry out between described the 2nd AF entity and the DF entity.
Described the 3rd AF entity is used for and DF entity set-up management channels, and passes through the mutual described management information that needs the intercept target user of the management channels created; And the 3rd AF entity is used for the passage with DF entity set-up CCC, and the mutual described corresponding data medium of calling out of intercept target user that needs of CCC passage that passes through to be created flows.
The mutual employing transmission control protocol or the User Datagram Protoco (UDP) of CCC passage are carried out between described the 3rd AF entity and the DF entity.
The mutual employing transmission control protocol/Internet protocol of described management channels is carried out.
Described DF entity is independent of described AF entity.
A described DF entity and an AF entity set become same physical entity;
A described AF entity and DF entity by the mutual of the inner mutual management information that needing to realize the intercept target user and need the corresponding relevant and irrelevant information of calling out of intercept target user alternately.
A kind of method that realizes Lawful Interception is provided with an AF entity, the 2nd AF entity, the 3rd AF entity and DF entity in the NGN network, this method also comprises:
A, an AF entity, the 2nd AF entity, the 3rd AF entity receive the monitoring setting request that the DF entity is sent respectively, set the definite targeted customer who needs monitoring of request according to this monitoring;
The corresponding relevant and irrelevant information of calling out of B, AF entity receiving target user's in the NGN network management information and targeted customer sends to the DF entity,
The 2nd AF entity in the NGN network receiving target user management information and the corresponding non-data medium stream of calling out of targeted customer, send to the DF entity;
The 3rd AF entity in the NGN network receiving target user management information and need the corresponding data medium stream of calling out of intercept target user, send to the DF entity;
C, DF entity are sent to law enforcement agency's side with received targeted customer's information;
Wherein, an AF entity is service control proxy function SCPF entity and the access control function ACF entity in the NGN network; Among the described step B, the SCPF entity sends to the DF entity with targeted customer's management information with the corresponding relevant and irrelevant information of calling out of targeted customer, and the ACF entity sends to the DF entity with targeted customer's management information;
Described the 2nd AF entity is access media gateway function AMGF entity and the Trunk Media Gateway function TMGF entity in the NGN network;
Described the 3rd AF entity is the edge router ERF in the NGN network;
Wherein,
For an AF entity is that the scheme of SCPF entity and ACF entity, scheme and the 3rd AF entity that the 2nd AF entity is AMGF entity and TMGF entity are the scheme of ERF, these three schemes are used simultaneously, perhaps, only use any one scheme, perhaps, only use any two schemes.
The step of the described DF of setting entity comprises: in the NGN network, increase the DF entity be independent of an AF entity, the 2nd AF entity and the 3rd AF entity, or in the NGN network at an integrated DF entity of existing physical entity side.
When in the NGN network during at the integrated DF entity of existing physical entity side, this existing physical entity is an AF entity.
Before steps A, this method further comprises: the AF entity is set up management channels with the DF entity and is connected;
In steps A, the management channels that described AF entity passes through to be set up connects the monitoring setting request that the DF entity is sent that receives.
AF entity and DF entity are set up the management channels step of connecting and are comprised:
A1, described DF entity are connected with the transport layer that the AF entity is set up in the management channels;
A2, DF entity are that the management channels of current required foundation connect to distribute DF side management connection identifier, and the DF side management connection identifier that is distributed is carried at management channels connects in the request of foundation and be sent to the AF entity;
A3, AF entity are that the management channels of current required foundation connect to distribute AF side management connection identifier, and with the AF side management connection identifier that distributed with is connected the request of foundation from management channels the DF side management connection identifier that obtains and successful connection identify to be carried at and be sent to the DF entity in the management channels connection response message;
A4, DF entity are connected with the application layer that the AF entity is set up in the management channels;
In steps A, described monitoring is set in the request and is comprised: DF side management connection identifier, and AF side management connection identifier, the targeted customer identifies type and targeted customer's sign;
In steps A, described definite step of intercept target user that needs comprises: described AF entity identifies type according to the targeted customer who carries in the monitoring setting request and the targeted customer identifies the targeted customer who need to determine monitoring.
Described steps A further comprises: the management channels that described AF entity passes through to be set up receives the intercept target of carrying DF side management connection identifier, AF side management connection identifier and needing to revise attribute that the DF entity sends and revises request, and described AF entity is revised need in the request according to intercept target and revised attribute targeted customer's monitoring attribute is made amendment;
Described targeted customer's information is amended monitoring attribute.
This method further comprises: the management channels that described AF entity passes through to be set up receives the list of targeted subscribers query requests of carrying DF side management connection identifier and AF side management connection identifier that the DF entity is sent; Described AF entity is carried at the list of targeted subscribers of preserving in self and is sent to the DF entity in the list of targeted subscribers query response message; The DF entity obtains the list of targeted subscribers that the AF entity is preserved from the list of targeted subscribers query response message that receives, wherein, when the AF entity sent the list of targeted subscribers query requests of the described DF of carrying side management connection identifier and AF side management connection identifier, the DF entity was sent to law enforcement agency's side with the list of targeted subscribers of being obtained after described DF entity is to receive the list of targeted subscribers query requests that law enforcement agency's side sends.
Described steps A further comprises: the management channels that described AF entity passes through to be set up receives that the DF entity sends carries the position that DF side management connection identifier, AF side management connection identifier, targeted customer identify type and targeted customer's sign and monitors the request, described AF entity monitoring objective user position information in targeted customer's calling procedure of being provided with;
Described targeted customer's information is targeted customer's positional information.
Between steps A and step B, further comprise: the management channels that described AF entity passes through to be set up be connected receive that the DF entity transmits law enforcement agency's side carry DF side management connection identifier, AF side management connection identifier, the targeted customer identifies the monitoring cancellation request of type and targeted customer's sign, judge the current talking state that whether is in of targeted customer, if, execution in step B then, otherwise, AF entity targeted customer's monitoring sign is set to deactivation status, and release targeted customer shared system resource in AF entity self, stop monitoring activity, finish current flow process the targeted customer.
Described AF entity is an AF entity;
Before step B, this method further comprises: an AF entity is set up the CDC passage with the DF entity and is connected;
Described targeted customer's information is the corresponding information of calling out of targeted customer;
In step B, the CDC passage that an AF entity passes through to be set up connects the corresponding information of calling out of the targeted customer who will receive and sends to the DF entity.
A described AF entity and DF entity are set up the channel attached step of CDC and are comprised:
First party in b1, an AF entity and the DF entity is judged special-purpose CDC passage or the shared CDC passage that whether has existed between the second party in self and an AF entity and the DF entity corresponding to the targeted customer, if, then finish the channel attached flow process of the current CDC of foundation, otherwise, execution in step b2;
B2, described first party are connected with the transport layer that second party is set up in the CDC passage;
B3, first party are that the CDC passage of current required foundation connect to distribute first party side CDC connection identifier, and the first party side CDC connection identifier that is distributed is carried at the CDC passage connects in the request of foundation and be sent to second party;
B4, second party are that the CDC passage of current required foundation connect to distribute second party side CDC connection identifier, and with the second party side CDC connection identifier that distributed with is connected the request of foundation from the CDC passage the first party side CDC connection identifier that obtains and successful connection identify to be carried in the CDC passage connection response message and be sent to first party;
B5, first party are connected with the application layer that second party is set up in the CDC passage.
Described first party is an AF entity;
When listening to targeted customer's life event, carries out a described AF entity described step b1.
Calling or the son calling initiated as the targeted customer send to other user of the local domain of an AF entity management; Perhaps, the calling of targeted customer's initiation or son are called out other user's transmission to a non-AF entity local domain; Perhaps, the destination Mobile Station International ISDN Number of the calling of targeted customer's initiation or son calling need be translated or change; Perhaps, when calling that the targeted customer initiates or son calling are stopped by an AF entity, carry out described step B, wherein, described son is called out and is the adding of Conference Calling;
The corresponding information of calling out of described targeted customer is targeted customer's call initiation message.
When the targeted customer calls out as calling or son that other user of called party answer sends; Perhaps, other user of targeted customer's proxy response calling of sending or son are called out; Perhaps, the calling or the son of being initiated as other user answer targeted customer called out; Perhaps, when a calling that turns to is replied by the targeted customer; Perhaps, when the targeted customer replys the calling of a repetition, carry out described step B;
The corresponding information of calling out of described targeted customer is targeted customer's call answering message.
When the targeted customer turns to as the called calling that receives; Perhaps, the targeted customer deflects as the called calling that receives; Perhaps, when the targeted customer forwards new position to as the called calling that receives, carry out described step B;
The corresponding information of calling out of described targeted customer is targeted customer's call redirection message.
When two or more call identifications of targeted customer's correspondence are merged into a call identification; Perhaps, additional new call identification in the calling of already present targeted customer's correspondence; Perhaps, targeted customer's correspondence call identification is split into two or more call identifications; Perhaps, when a call identification of targeted customer's correspondence is transformed into another call identification, carry out described step B;
The corresponding information of calling out of described targeted customer is called out change message for the targeted customer.
The corresponding information of calling out of described targeted customer is that call contents begins to transmit message;
Described step B further comprises: the second or the 3rd AF entity is connected the Media Stream corresponding to the targeted customer that self is received by the CCC passage with the foundation of DF entity and is sent to the DF entity;
Described step C further comprises: the DF entity is sent to law enforcement agency's side with the Media Stream that receives.
This method further comprises:
First party among c1, DF entity and the AF entity is connected by described passage and described passage is connected the request of release is sent to second party among DF entity and the AF entity;
C2, described second party are released to the employed local resource of targeted customer and discharge transport layer connection resource in the described passage, and described passage connected discharge acknowledge message and be sent to first party;
C3, first party receive described passage connect discharge acknowledge message after, be released to the employed local resource of targeted customer and discharge transport layer connection resource in the described passage.
When described first party is the DF entity, when receiving the connection release request that law enforcement agency's side sends, carries out the DF entity described step c1;
When described first party is the AF entity, when the AF entity receives end of calling message corresponding to the targeted customer, or is connected with management channels between the DF entity at the AF entity and carries out described step c1 when not being used for a long time.
This shows, the a series of solutions that the present invention proposes in the NGN network the concrete system configuration that realizes Lawful Interception, how to discern the calling that needs to monitor, how the information and the call contents of institute's monitored call sent to law enforcement agency and realize Lawful Interception by which kind of interface and which kind of handling process by external interface, therefore can guarantee in the NGN network, to realize legal monitoring business, thereby strengthened the applicability of legal monitoring business, and improved the QoS of NGN network.
Description of drawings
Fig. 1 is the structural representation of system of the present invention.
Fig. 2 is the structural representation of system of the present invention in realizing embodiments of the invention.
Fig. 3 sets up the flow chart that management channels is connected between AF entity and the DF entity in realizing embodiments of the invention.
Fig. 3 A is a flow chart of setting required intercept target user in realizing embodiments of the invention between AF entity and DF entity.
Fig. 3 B carries out the flow chart that targeted customer's monitoring attribute is revised between AF entity and DF entity in realizing embodiments of the invention.
Fig. 3 C is the flow chart that carries out the list of targeted subscribers inquiry in realizing embodiments of the invention between AF entity and DF entity.
Fig. 3 D carries out the position to monitor the flow chart that is provided with between AF entity and DF entity in realizing embodiments of the invention.
Fig. 3 E carries out the flow chart that cancellation is monitored in the position between AF entity and DF entity in realizing embodiments of the invention.
Fig. 3 F is the flow chart that cancellation is monitored between AF entity and DF entity in realizing embodiments of the invention.
Fig. 4 sets up the channel attached flow chart of CDC between AF entity and the DF entity in realizing embodiments of the invention.
Fig. 4 A registers the flow chart of realizing monitoring at the targeted customer in realizing embodiments of the invention.
Fig. 4 B makes a call at the targeted customer to realize the flow chart monitored in realizing embodiments of the invention.
Fig. 4 C receives the flow chart of calling out the realization monitoring at the targeted customer in realizing embodiments of the invention.
Fig. 4 D is a flow chart of realizing monitoring in realizing embodiments of the invention at targeted customer's call answering.
Fig. 4 E is a flow chart of realizing monitoring in realizing embodiments of the invention at targeted customer's call redirection.
Fig. 4 F calls out the flow chart that changes the realization monitoring at the targeted customer in realizing embodiments of the invention.
Fig. 4 G is a flow chart of realizing monitoring in realizing embodiments of the invention at targeted customer's call contents.
Fig. 5 is the channel attached flow chart of release management in realizing embodiments of the invention.
Fig. 6 discharges the channel attached flow chart of CDC in realizing embodiments of the invention.
Embodiment
In order in the NGN network, to realize Lawful Interception, then must be provided at each network entity in the NGN network the function that realizes respectively corresponding to Lawful Interception, the interface between each network entity and realize the Message Processing flow process that Lawful Interception is relevant.Fig. 1 is the structural representation of system of the present invention.Referring to Fig. 1, for realizing Lawful Interception, the present invention proposes a kind of system that realizes Lawful Interception, this system comprises: links to each other by the d interface between (AF) entity of the access function in the NGN network and handoff functions (DF) entity, AF entity and DF entity, and,
AF entity in the NGN network is used for receiving the monitoring that the DF entity of NGN network sends and sets request, and monitors the targeted customer who sets the required monitoring of acquisition request according to this; And, the AF entity receives targeted customer's information in the NGN network after, targeted customer's information is sent to the DF entity; DF entity in the NGN network is used for sending monitoring to the AF entity and sets request, and the targeted customer's information that receives is sent to law enforcement agency's side.
In system of the present invention, the targeted customer's that AF entity in the NGN network and DF entity are transmitted information can be any information about need intercept target user.Such as, need the intercept target user management information, need the corresponding relevant and irrelevant information of calling out of intercept target user and should need the non-data medium stream of intercept target user correspondence and data medium stream etc.
In system of the present invention, the AF entity in the described NGN network is the network entity that can directly obtain various relevant informations in the call in the NGN network, specifically can be divided into an AF entity, the 2nd AF entity and the 3rd AF entity when realizing.Wherein,
The one AF entity specifically can correspond to service control proxy function (SCPF) entity and access control function (ACF) entity in the NGN network, such as Softswitch in the NGN network or BAS Broadband Access Server (BAS) etc., and, the SCPF entity needing with the DF entity interaction to be used for intercept target user's management information and the relevant and irrelevant information that needs the corresponding calling of intercept target user, and the ACF entity needing with the DF entity interaction to be used for intercept target user's management information; The 2nd AF entity needing with the DF entity interaction to be used for intercept target user's management information and the corresponding non-data medium stream of calling out of intercept target, such as sound and image etc., specifically can correspond to each the medium gateway function entity in the NGN network, such as access media gateway function (AMGF) entity and Trunk Media Gateway function (TMGF) entity; The 3rd AF entity is used for needing intercept target user's management information and needing the data medium of the corresponding calling of intercept target user to flow with the DF entity interaction, specifically can correspond to the edge router (ERF) in the NGN network.
When the specific implementation legal monitoring business, an AF entity and DF entity set-up management channels, and pass through the mutual described management information that needs the intercept target user of the management channels created; And, an AF entity and DF entity set-up call control channel (CDC), and pass through the mutual described corresponding relevant and irrelevant information of calling out of intercept target user that needs of the CDC passage created.Between an AF entity and DF entity, the mutual employing transmission control protocol (TCP) of management channels/Internet protocol (IP) agreement is carried out, and the mutual employing ICP/IP protocol of CDC passage is carried out.
The 2nd AF entity and DF entity set-up management channels, and pass through the mutual described management information that needs the intercept target user of the management channels created; And, the 2nd AF entity and DF entity set-up call contents passage (CCC), and the mutual described corresponding non-data medium of calling out of intercept target user that needs of CCC passage that passes through to be created flows.Between the 2nd AF entity and DF entity, the mutual employing ICP/IP protocol of management channels is carried out, and the mutual employing real-time transport protocol (rtp) and RTCP Real-time Transport Control Protocol (RTCP) agreement of the non-data medium stream of CCC passage are carried out.
The 3rd AF entity and DF entity set-up management channels, and pass through the mutual described management information that needs the intercept target user of the management channels created; And, the 3rd AF entity and DF entity set-up CCC passage, and the mutual described corresponding data medium of calling out of intercept target user that needs of CCC passage that passes through to be created flows.Between the 3rd AF entity and DF entity, the mutual employing ICP/IP protocol of management channels is carried out, and the mutual employing Transmission Control Protocol or the User Datagram Protoco (UDP) (UDP) of the data medium stream of CCC passage are carried out.
When specific implementation, AF entity in the system of the present invention can link to each other with the DF entity by the d1 interface, that is to say, comprise above-mentioned management channels and CDC passage in the d1 interface, and an AF entity is by d1 interface and DF entity interaction intercept target user's the management information and the relevant and irrelevant information of the mutual corresponding calling of intercept target user; The 2nd AF entity can link to each other with the DF entity by the d2 interface, that is to say, comprise above-mentioned management channels and CCC passage in the d2 interface, and the 2nd AF entity is by management information and the mutual intercept target user corresponding non-data medium stream called out of d2 interface with DF entity interaction intercept target user; The 3rd AF entity can link to each other with the DF entity by the d3 interface, that is to say, comprise above-mentioned management channels and CCC passage in the d3 interface, and the 3rd AF entity is by d3 interface and DF entity interaction intercept target user's the management information and the data medium stream of the mutual corresponding calling of intercept target.
In system of the present invention, the DF entity can increase, be independent of the network entity of each AF entity newly in the NGN network, also can become same physical entity, such as in the NGN network, original function entity SCPF entity being carried out obtaining the DF entity after the increased functionality with the AF entity set in the NGN network.
In system of the present invention, the DF entity links to each other with the law enforcement agency side external interface by standard, and described standard external interface can be the external interface of U.S. CALEA standard, the external interface of etsi standard or the external interface of TIIT standard etc.
For realizing legal monitoring business, on the basis of system of the present invention, the invention allows for a kind of method that realizes Lawful Interception, its core concept is: the AF entity in the NGN network receives the monitoring setting request that the DF entity is sent, and sets the targeted customer that acquisition request need be monitored according to this monitoring; The AF entity receives targeted customer's information in the NGN network after, targeted customer's information is sent to the DF entity; The DF entity is sent to law enforcement agency's side with the targeted customer's that receives information.
Wherein, described targeted customer's information can be: need intercept target user's management information, relevant and irrelevant information and non-data medium stream that needs the corresponding calling of intercept target user and the data medium stream etc. that need intercept target user correspondence to call out.
And the described management information that needs the intercept target user comprises but is not limited to: the targeted customer sets, targeted customer's cancellation, targeted customer are revised, targeted customer's inquiry; List of targeted subscribers inquiry, list of targeted subscribers inquiry cancellation; The position is monitored and is provided with, cancellation is monitored in the position, inquiry is monitored in the position; Various management information such as targeted customer location.The described corresponding irrelevant information of calling out of intercept target user that needs includes but not limited to: the current network system banner; Targeted customer's start, shutdown, registration or cancel register incident; The targeted customer position is upgraded; Targeted customer's (mobile subscriber) short message incident (transmission/reception is except that short message broadcasting); The irrelevant information of various callings such as relevant time, date and time information.The described relevant information that needs intercept target user correspondence to call out includes but not limited to: the normal call dependent event, such as calling out initiation, ring up, call answering, calling switching and calling out release etc.; The unsuccessful call dependent event, such as the eavesdropping target when the calling subscriber: call out and be cancelled, call out and be rejected, call out long-time nothing response, called online, the eavesdropping target is during for the called subscriber: call out be cancelled, the eavesdropping target refuses to call out, the eavesdropping target does not respond for a long time, the eavesdropping target does not surf the Net; Call redirection dependent event: calling transfer (unconditional branch, transfer on no reply, call forward on busy), Call Forwarding; The Call Waiting incident; The Three-Way Calling incident; The Conference Calling dependent event: the eavesdropping target adds, the eavesdropping target withdraws from, other user adds, other user withdraws from; Other signaling information in the communication process: as the relevant information of various callings such as dialing information.Described non-data medium stream includes but not limited to: audio stream, as dialog context and fax content etc., video flowing is as viewable pictures etc.
For making the purpose, technical solutions and advantages of the present invention clearer, the present invention is described in further detail below in conjunction with drawings and the specific embodiments.
Fig. 2 is the structural representation of system of the present invention in realizing embodiments of the invention.Referring to Fig. 2, the structural representation of system of the present invention can be as shown in Figure 2 in the NGN network.Fig. 3 sets up the flow chart that management channels is connected between AF entity and the DF entity in realizing embodiments of the invention.Referring to Fig. 2 and Fig. 3,, in the methods of the invention, set up the process that management channels is connected between the AF entity in the NGN network and the DF entity and specifically may further comprise the steps based on system of the present invention:
Step 301:DF entity is connected with the transport layer that the AF entity is set up in the management channels.
Here, the DF entity can be set up the process of carrying out this step when requiring receiving the connection that law enforcement agency's side sends, also can receive connection that law enforcement agency's side sends set up require before, carry out the described process of this step in advance.
Step 302: after the transport layer connection in the management channels was set up and finished, the DF entity was that the management channels of current required foundation connects distribution DF side management connection identifier.
Step 303:DF entity all is carried at management channels with the DF side management connection identifier that is distributed and the authentication password that sets in advance and DF sign and is connected in the request of foundation and is sent to the AF entity, then the first timer that is provided with in self in advance of startup.
After step 304:AF entity received management channels connection foundation request, connection is carried in setting up and asking according to management channels authentication password and DF identified to judge whether this DF entity is legal, if then execution in step 307, otherwise, execution in step 305.
The management channels connection failure message that step 305:AF entity will carry DF side management connection identifier is sent to the DF entity.
Step 306:DF entity discharges the transport layer of having set up with the AF entity and is connected, and finishes current flow process.
Here, the DF entity is to identify the management channels that concrete need set up according to the DF side management connection identifier that carries in the management channels connection failure message to connect, thereby carries out the described process that is connected with transport layer in the management channels that the release of AF entity has been set up.
Step 307:AF entity is that the management channels of current required foundation connects distribution AF side management connection identifier.
Step 308:AF entity with the AF side management connection identifier that distributed be connected the request of foundation from management channels the DF side management connection identifier that obtains and successful connection sign be carried at and be sent to the DF entity in the management channels connection response message.
Here, it is all can obtain this AF side and DF side management connection identifier for AF entity in subsequent process and DF entity that the AF entity is carried at AF side and DF side management connection identifier respectively in the management channels connection response message, thereby can identify once specifically being connected between this AF entity and this DF entity.Such as, there are two different AF entities to set up management channels respectively and are connected with the DF entity, then each AF entity and DF entity then can identify being connected between each AF entity self and the DF entity by AF side management connection identifier and DF side management connection identifier.
Step 309:DF entity judges whether receive the management channels connection response message that the AF entity is sent before first timer is overtime, if then execution in step 310, otherwise, turn to execution in step 306.
Here, the specific implementation process of described judgement is: the DF entity judges whether receive the message that the AF entity is sent before first timer is overtime, if, then judge whether carry AF side management connection identifier in this message, DF side management connection identifier and successful connection sign, if then think to receive the management channels connection response message that the AF entity is sent.
Step 310:DF entity is set up application layer with the AF entity and is connected.
Need to prove, because in the present invention, AF entity SCPF/ACF in the NGN network, the 2nd AF entity A MGF/TMGF all need to set up management channels with the DF entity with the 3rd AF entity ERF and are connected, therefore, the above-mentioned process of setting up the management channels connection shown in Figure 3 is applicable to all AF entities, that is to say that in above-mentioned process shown in Figure 3, described AF entity can be any one among an AF entity SCPF/ACF, the 2nd AF entity A MGF/TMGF and the 3rd AF entity ERF.
So far, then finished the DF entity and set up the process that management channels is connected with the AF entity.After this, then can utilize the management channels of being set up to connect the process of the management information that realizes DF entity and the required intercept target user of AF entity interaction.
And, in above-mentioned process shown in Figure 3, it can be the management channels connection of the call of each targeted customer's correspondence being set up a special use, it also can be shared management channels connection of call setup to all the targeted customer's correspondences that need monitor, correspondingly, when the later use management channels connects mutual required intercept target user's management information, if the management channels of being set up for special use connects, then the DF entity utilizes the corresponding dedicated management passage of targeted customer to connect the management information that needs the intercept target user alternately with the AF entity, if what set up is that shared management channels connects, then the DF entity utilizes the management information that this shared management channels is connected needs the intercept target user alternately with the AF entity.
Fig. 3 A is a flow chart of setting required intercept target user in realizing embodiments of the invention between AF entity and DF entity.Referring to Fig. 2 and Fig. 3 A, based on system of the present invention, in the methods of the invention, after having set up the management channels connection, AF entity in the NGN network then can utilize the management channels of being set up to be connected with the DF entity and finish the process of setting required intercept target user, specifically may further comprise the steps:
Step 3A1:DF entity is set request by the monitoring that self and the external interface of law enforcement between the structure receive the targeted customer's information of carrying that the law enforcement structure side sends.
Targeted customer described in the present invention is meant the user who is monitored.In addition, described targeted customer's information be can the unique identification user information, such as, the IP address of user's termination number or user's correspondence and port numbers etc.
Transport layer during step 3A2:DF entity connects by the management channels of having set up connects will monitor to set asks to be sent to the AF entity, and starts the second timer in self.
Here, the monitoring that the DF entity is sent is set and is included but not limited to following parameter in the request: DF side management connection identifier, and AF side management connection identifier, the targeted customer identifies type, targeted customer's sign and the relevant parameter that needs monitoring information.Here, the DF entity identifies unique targeted customer who determines a required monitoring by parameter objectives user ID type and targeted customer.Such as, it is the IP address class type that the targeted customer identifies type, then the targeted customer is designated the targeted customer's of required monitoring IP address.For another example, it is the user name type that the targeted customer identifies type, and then the targeted customer is designated the targeted customer's of required monitoring user name.
The targeted customer who carries in the request of setting identifies type to step 3A3:AF entity and targeted customer's sign is obtained the targeted customer according to monitoring, and for this targeted customer creates related resource, and this targeted customer is set to monitor state of activation.
Here, described AF entity is meant for the targeted customer creates related resource: the AF entity is set up corresponding related data and storage allocation, uses the internal memory that is distributed to preserve targeted customer's relevant information.
Step 3A4:AF entity will be monitored the setting response message and be sent to the DF entity.
Here, the monitoring that the AF entity is sent is set and is included but not limited to following parameter in the response message: DF side management connection identifier, and AF side management connection identifier, the targeted customer identifies type, and the targeted customer identifies and can identify the successful parameter of setting.
Step 3A5:DF entity judges whether receive the monitoring setting response message that the AF entity is sent before second timer is overtime, if then the targeted customer sets success, otherwise the targeted customer sets failure.
So far, then realized utilizing the management channels of being set up to connect the process that the targeted customer sets of finishing.After this, the AF entity then can be monitored the targeted customer who sets, and that is to say whether monitoring has targeted customer's life event or the corresponding incident of calling out of targeted customer to take place.
In addition, also need to prove, in the present invention, after the 2nd AF entity or the 3rd AF entity and DF entity had been set up management channels according to above-mentioned process shown in Figure 3 and be connected, the 2nd AF entity or the 3rd AF entity had then correspondingly been finished the channel attached process of CCC of setting up with the DF entity.And the 2nd AF entity or the 3rd AF entity and DF entity have been finished according to process shown in above-mentioned Fig. 3 A after targeted customer's the setting of required monitoring, then can monitor the Media Stream that the targeted customer transmitted that sets.Such as, when the 2nd AF entity A MGF/TMGF receives the non-data medium stream that sets the targeted customer, then correspondingly connect non-data medium stream is sent to the DF entity by the CCC passage, the DF entity correspondingly should be sent to law enforcement agency's side realization monitoring by non-data medium stream by external interface according to the targeted customer who sets.For another example, when the 3rd AF entity ERF receives the data medium stream that sets the targeted customer, then correspondingly connect data medium stream is sent to the DF entity by the CCC passage, the DF entity correspondingly is sent to law enforcement agency's side by external interface with this data medium stream and realizes monitoring according to the targeted customer who sets.
Fig. 3 B carries out the flow chart that targeted customer's monitoring attribute is revised between AF entity and DF entity in realizing embodiments of the invention.Referring to Fig. 2 and Fig. 3 B, based on system of the present invention, in the methods of the invention, after having set up the management channels connection and having finished setting need intercept target user's process, when needs modifying target user corresponding monitoring attribute, such as the data stream property of being monitored, the AF entity in the NGN network then can utilize the management channels of being set up to be connected with the DF entity and finish the process that targeted customer's monitoring attribute is revised, specifically may further comprise the steps:
Step 3B1:DF entity receives the intercept target of carrying required modification attribute that the law enforcement structure side sends by self and the external interface of law enforcement between the structure and revises request.
Transport layer during the management channels that step 3B2:DF entity is set up by self and AF entity is connected connects to be revised request with intercept target and is sent to the AF entity, and the 3rd timer that is provided with in self in advance of startup.
Here, the intercept target that the DF entity is sent is revised and is included but not limited to following parameter in the request: DF side management connection identifier, and AF side management connection identifier, the targeted customer identifies type, targeted customer's sign and the relevant parameter that needs to revise attribute.
Step 3B3:AF entity revises intercept target sign type, the intercept target sign of carrying in the request according to intercept target and the relevant parameter that identifies required modification attribute revised the targeted customer's who sets relevant monitoring attribute.
Step 3B4:AF entity is revised response message with intercept target and is sent to the DF entity.
Here, the intercept target that the AF entity is sent is revised and is included but not limited to following parameter in the response message: DF side management connection identifier, and AF side management connection identifier, intercept target sign type, intercept target identifies and can identify the relevant parameter that modification is finished.
Step 3B5:DF entity judges whether receive the intercept target modification response message that the AF entity is sent before the 3rd timer expiry, if, the then modification of intercept target attribute success, otherwise, the modification failure of intercept target attribute.
Fig. 3 C is the flow chart that carries out the list of targeted subscribers inquiry in realizing embodiments of the invention between AF entity and DF entity.Referring to Fig. 3 C, based on system of the present invention, in the methods of the invention, after having set up the management channels connection, need inquire about the list of targeted subscribers that in the AF entity, can be monitored when the DF entity, so that when carrying out follow-up increase, deletion or revising the targeted customer who is monitored, the AF entity in the NGN network then can utilize the management channels of being set up to be connected with the DF entity and finish the process that list of targeted subscribers is inquired about, specifically may further comprise the steps:
Transport layer connection during the management channels that step 3C1:DF entity is set up by self and AF entity is connected is sent to the AF entity with the list of targeted subscribers query requests.
Here, include but not limited to following parameter in the list of targeted subscribers query requests that the DF entity is sent: DF side management connection identifier and AF side management connection identifier.
In addition, the DF entity can be to carry out when receiving the list of targeted subscribers query requests that law enforcement agency's side sends that this step is described to be sent to the step of AF entity with the list of targeted subscribers query requests, also can be initiatively to carry out the described process that the list of targeted subscribers query requests is sent to the AF entity of this step in order to obtain management information by the DF entity when not receiving any request of law enforcement agency's side.
When step 3C2:AF entity receives the list of targeted subscribers query requests, judge according to DF side management connection identifier that carries in the list of targeted subscribers query requests and AF side management connection identifier whether this is connected legal, if, execution in step 3C3 then, otherwise, finish current flow process.
Step 3C3:AF entity is carried at the list of targeted subscribers of preserving in self and is sent to the DF entity in the list of targeted subscribers query response message.
Here, include but not limited to following parameter in the list of targeted subscribers query response message that the AF entity is sent: DF side management connection identifier, AF side management connection identifier, list of targeted subscribers.
Need to prove, if the targeted customer's number in the list of targeted subscribers that the AF entity is preserved is too many, then in this step, the AF entity is sent to the DF entity with each targeted customer in the list of targeted subscribers respectively by many target user list query response messages.Like this, in the AF entity is sent to the last item list of targeted subscribers query response message of DF entity, also further comprise end mark, sent with the targeted customer in the notice DF entity list of targeted subscribers and finish.
Step 3C4:DF entity obtains the list of targeted subscribers that the AF side is preserved from the list of targeted subscribers query response message that receives.
Here, if the DF entity is the step 3C1 that carries out when receiving the list of targeted subscribers query requests that law enforcement agency's side sends, then in this step 3C4, the DF entity further is sent to law enforcement agency's side with the list of targeted subscribers that the AF side of being obtained is preserved by external interface.
Fig. 3 D carries out the position to monitor the flow chart that is provided with between AF entity and DF entity in realizing embodiments of the invention.Referring to Fig. 3 D, based on system of the present invention, in the methods of the invention, after having set up the management channels connection, in the time need monitoring to set need intercept target user present position, AF entity in the NGN network then can utilize the management channels of being set up to be connected the completing place with the DF entity and monitor the process that is provided with, specifically may further comprise the steps:
Transport layer during the management channels that step 3D1:DF entity is set up by self and AF entity is connected connects the position monitored to be provided with asks to be sent to the AF entity.
Here, the position that the DF entity is sent is monitored to be provided with and included but not limited to following parameter in the request: DF side management connection identifier and AF side management connection identifier, the targeted customer identifies type and targeted customer's sign.
In addition, the DF entity is to monitor and carry out this step 3D1 when request is set receiving position that law enforcement agency's side sends.
Step 3D2:AF entity receives the position and monitors when request is set, and monitors according to this position and is provided with that the targeted customer who carries in the request identifies type and targeted customer's sign is obtained the targeted customer of required monitoring.
Step 3D3:AF entity is the active position sign in the targeted customer's who self preserves information, and obtains targeted customer's positional information in targeted customer's calling procedure.
Step 3D4:AF entity is carried at the position with targeted customer's current location information and monitors and the management channels that passes through to be set up in the response message is set connects and be sent to the DF entity.
Here, the position that the AF entity is sent is monitored to be provided with in the response message and is included but not limited to: DF side management connection identifier, and AF side management connection identifier, the targeted customer identifies type, targeted customer's sign and targeted customer's current location information.
Need to prove, in subsequent process, receive targeted customer's location updating message when the AF entity after, the management channels that the positional information after also can initiatively the targeted customer being upgraded pass through to be set up connects and is sent to the DF entity.
Step 3D5:DF entity is monitored from the position current location information that obtains the targeted customer the response message is set, and the targeted customer's that obtained current location information is sent to law enforcement agency's side by external interface.
Fig. 3 E carries out the flow chart that cancellation is monitored in the position between AF entity and DF entity in realizing embodiments of the invention.Referring to Fig. 3 E, based on system of the present invention, in the methods of the invention, after having set up the management channels connection, when the needs cancellation is monitored the targeted customer present position, AF entity in the NGN network then can utilize the management channels of being set up to be connected the process that cancellation is monitored in the completing place with the DF entity, specifically may further comprise the steps:
Transport layer during the management channels that step 3E1:DF entity is set up by self and AF entity is connected connects to be monitored cancellation with the position and asks to be sent to the AF entity.
Here, the position that the DF entity is sent is monitored and included but not limited to following parameter in the cancellation request: DF side management connection identifier and AF side management connection identifier, the targeted customer identifies type and targeted customer's sign.
In addition, the DF entity can be a process of carrying out this step when the canceling position request that receives law enforcement agency's side.
Step 3E2:AF entity receives the position when monitoring the cancellation request, monitors according to this position that the targeted customer who carries in the cancellation request identifies type and targeted customer's sign is obtained the targeted customer who needs canceling position to monitor.
The tick lables of preserving in the step 3E3:AF entity self is set to deactivation status, no longer obtains targeted customer's positional information in targeted customer's calling procedure.
The management channels connection that step 3E4:AF entity passes through to be set up is monitored the cancellation response message with the position and is sent to the DF entity.
Here, the position that the AF entity is sent is monitored and is included but not limited to following parameter in the cancellation response message: DF side management connection identifier, and AF side management connection identifier, the targeted customer identifies type, targeted customer's sign and the parameter that can identify the canceling position monitoring.
Step 3E5:DF entity is monitored the cancellation response message by the external interface between self and the law enforcement agency's side with the position and is sent to law enforcement agency's side.
Fig. 3 F is the flow chart that cancellation is monitored between AF entity and DF entity in realizing embodiments of the invention.Referring to Fig. 3 F, based on system of the present invention, in the methods of the invention, when monitoring activity end, cancellation is during to targeted customer's monitoring, and the AF entity in the NGN network then can utilize the management channels of being set up to be connected with the DF entity and finish cancellation intercept target user's process, specifically may further comprise the steps:
Step 3F1:DF entity receives the monitoring cancellation request that law enforcement agency's side is sent by external interface.
Step 3F2:DF entity connects will monitor to cancel by the management channels of having set up asks to be sent to the AF entity.
Here, the DF entity is sent in the monitoring cancellation request of AF entity and includes but not limited to following parameter: DF side management connection identifier and AF side management connection identifier, the targeted customer identifies type and targeted customer's sign.
Step 3F3:AF entity receives when monitoring the cancellation request, monitors according to this position that the targeted customer who carries in the cancellation request identifies type and targeted customer's sign is obtained the targeted customer who needs cancellation to monitor.
Step 3F4:AF entity is judged the current talking state that whether is in of targeted customer, if, then continue snoop procedure, finish current flow process, otherwise, execution in step 3F5.
Step 3F5:AF entity targeted customer's monitoring sign is set to deactivation status, and discharges targeted customer's shared system resource in AF entity self, and stops the monitoring activity to the targeted customer.
The management channels connection that step 3F6:AF entity passes through to be set up will be monitored the cancellation response message and will be sent to the DF entity.
Here, include but not limited to following parameter in the monitoring cancellation response message that the AF entity is sent: DF side management connection identifier, AF side management connection identifier, the targeted customer identifies type, targeted customer's sign and the parameter that can identify the cancellation monitoring.
Step 3F7:DF entity will be monitored the cancellation response message by the external interface between self and the law enforcement agency's side and be sent to law enforcement agency's side.
Need to prove, because in the present invention, AF entity SCPF/ACF, the 2nd AF entity A MGF/TMGF in the NGN network and the 3rd AF entity ERF all can realize the mutual process about targeted customer's management information of above-mentioned Fig. 3 A to Fig. 3 F with the DF entity, therefore, process shown in above-mentioned Fig. 3 A to Fig. 3 F is applicable to all AF entities, that is to say, in each process shown in above-mentioned Fig. 3 A to Fig. 3 F, described AF entity all can be any one among an AF entity SCPF/ACF, the 2nd AF entity A MGF/TMGF and the 3rd AF entity ERF.
Fig. 4 sets up the channel attached flow chart of CDC between AF entity and the DF entity in realizing embodiments of the invention.Referring to Fig. 2 and Fig. 4, based on system of the present invention, in the methods of the invention, AF entity in the NGN network and DF entity are set up the channel attached process of CDC and specifically be may further comprise the steps:
Step 401: an AF entity and the first party in the DF entity judge self with an AF entity and DF entity in second party between whether existed the CDC passage to be connected, if, then finish current flow process, otherwise, execution in step 402.
Here, if described first party is an AF entity, then an AF entity can be when listening to the life event that sets the targeted customer, initiatively initiates to carry out the process of this step 401 described judgements.
In this step, the specific implementation process of described judgement is: first party judge self with second party between whether existed CDC passage to be connected corresponding to the targeted customer, perhaps, first party judge self with second party between whether existed a shared CDC passage to be connected.That is to say, in the present invention, can be that targeted customer at each required monitoring sets up a corresponding CDC passage respectively and connects between the one AF entity and the DF entity, also can be that targeted customer at all required monitorings only sets up a shared CDC passage and connects.
Step 402: first party trigger to set up with second party between transport layer in the CDC passage be connected.
Step 403: after the transport layer in having set up the CDC passage connected, first party was that the CDC passage of current required foundation connects distribution first party side CDC connection identifier.
Step 404: first party is carried at the AF side CDC connection identifier that is distributed in the CDC connection foundation request and is sent to second party.
Need to prove that in this step, first party is sent in the CDC request of connect setting up of second party also can further carry authentication password and the first party sign that sets in advance.
Step 405: after second party received CDC connection foundation request, connection is carried in setting up and asking according to CDC authentication password and first party identified to judge whether this first party is legal, if then execution in step 408, otherwise, execution in step 406.
Here, further carry authentication password and the first party sign that sets in advance in the request of foundation in step 404, then correspondingly carry out the described verification process of this step if the CDC that sends connects, otherwise, follow-up step 406 directly carried out.
Step 406: the CDC connection failure message that second party will be carried first party CDC connection identifier is sent to first party.
Step 407: first party is connected with the transport layer that second party discharges in the CDC passage of having set up, finishes current flow process.
Here, first party is to identify the CDC passage that concrete need set up according to the first party side CDC connection identifier that carries in the CDC connection failure message to connect, thereby carries out the described process that is connected with transport layer in the CDC passage that second party release has been set up.
Step 408: second party is that the CDC passage of current required foundation connect to distribute second party side CDC connection identifier, and this second party side CDC connection identifier is set up the first party side CDC connection identifier that obtains asking and is carried in the CDC successful connection message and is sent to first party with being connected from CDC.
Here, second party is carried at first party side and first party side CDC connection identifier respectively and is connected that to set up in the success message be for an AF entity and DF entity in subsequent process all can obtain this AF side and DF side CDC connection identifier, is connected with once concrete CDC between this DF entity thereby can identify an AF entity.Such as, have two different AF entities to set up the CDC passage respectively with the DF entity and be connected, then each AF entity and DF entity can be that AF side CDC connection identifier and DF side CDC connection identifier identify the different CDC connections between each AF entity and the DF entity by first party side and first party side then.
Step 409: first party and second party are that the DF entity is set up application layer with an AF entity and is connected.
Here, in step 404, first party is when being sent to second party with the CDC connection request of setting up, can start a timer that is provided with in self in advance, so, first party judges that whether received the connection that second party sends before this timer expiry sets up success message, if, then carry out this step 409 described processes of setting up the application layer connection, otherwise current CDC passage connects sets up failure.
In the present invention, if listen to targeted customer's life event and initiatively trigger when carrying out above-mentioned flow process shown in Figure 4 at an AF entity, so, when being connected with CDC passage between the DF entity, an AF entity sets up failure, promptly the AF entity life event that listens to the targeted customer gives the correct time on but can't be in time, the one AF entity can be not carry out buffer memory to targeted customer's life event, thereby saves the storage resources of an AF entity.
So far, then finished the DF entity and an AF entity is set up the channel attached process of CDC.After this, then can utilize the CDC passage of being set up to connect and realize that a DF entity and an AF entity interaction need the process of the corresponding relevant and irrelevant information of calling out of intercept target user.
Fig. 4 A registers the flow chart of realizing monitoring at the targeted customer in realizing embodiments of the invention.Referring to Fig. 4 A, based on system of the present invention, in the methods of the invention, after having set up the connection of CDC passage, when the targeted customer of required monitoring registered in the NGN network, AF entity in the NGN network and DF entity realized that the process of monitoring specifically may further comprise the steps:
AF entity in the step 4A1:NGN network receives targeted customer's register requirement.
Here, described register requirement can insert any one register requirement in the NGN network corresponding to targeted customer's start incident or request online incident etc.
Step 4A2: an AF entity by self with the DF entity between the CDC passage set up be connected targeted customer's registration message be sent to the DF entity.
After step 4A3:DF entity receives targeted customer's registration message, preserve this targeted customer's log-on message.
Step 4A4:DF entity utilizes the external interface of self and law enforcement agency's side that targeted customer's registration message is sent to law enforcement agency's side, makes law enforcement agency's side obtain required intercept target user's registered events.
Here, the DF entity can be the described process of this step 4A4 of carrying out immediately after the described process of execution of step 4A3, also can be to carry out the described process of this step 4A4 after receiving a triggering message of law enforcement agency's side.
Include but not limited to following parameter in above-mentioned targeted customer's registration message: network system sign, the AF side CDC connection identifier that is obtained when setting up the connection of CDC passage and DF side CDC connection identifier, targeted customer identify type, targeted customer's sign and timestamp (time and date) etc.
So far, after law enforcement agency's side joint is received targeted customer's registration message, then can listen to the targeted customer and network, then can continue to carry out follow-up snoop procedure.
Fig. 4 B makes a call at the targeted customer to realize the flow chart monitored in realizing embodiments of the invention.Referring to Fig. 4 B, based on system of the present invention, in the methods of the invention, after having set up the connection of CDC passage, when the targeted customer of required monitoring in the NGN network when other user makes a call, the process that AF entity in the NGN network and DF entity are monitored specifically may further comprise the steps:
AF entity in the step 4B1:NGN network receives the targeted customer to targeted customer's call initiation message that other user initiated.
Here, triggering the process that this step carries out can be: calling that the targeted customer initiates or son are called out other user (as belonging to same Softswitch management) to the local domain of an AF entity management when sending; Perhaps, the calling of targeted customer's initiation or son are called out when other user of a non-AF entity local domain sends; When perhaps, the destination Mobile Station International ISDN Number of the calling of targeted customer's initiation or son calling need be translated or change; When perhaps, the calling initiated of targeted customer or son are called out and are stopped by an AF entity (as dialing entirely or destination Mobile Station International ISDN Number unreachable etc.); Perhaps, when destination Mobile Station International ISDN Number be that the number of special number or translation, conversion is a special number.Wherein, described sub-calling can be exemplified as the adding of Conference Calling etc.
Step 4B2: an AF entity is sent to the DF entity by the CDC passage connection of having set up with targeted customer's call initiation message.
Here, an AF entity is sent to and includes but not limited to following parameter in targeted customer's call initiation message of DF entity: AF side CDC connection identifier, DF side CDC connection identifier, targeted customer identify type, targeted customer's sign, timestamp (time and date) and call identification.
Need to prove that if there are the operations such as translation, expansion of number, then in this step, for same calling, an AF can repeatedly send targeted customer's call initiation message to the DF entity.
After step 4B3:DF entity received targeted customer's call initiation message, this calling for the targeted customer in self was created related resource to preserve the information of this calling.
Step 4B4:DF entity is sent to law enforcement agency's side by external interface with targeted customer's call initiation message of being preserved, and makes law enforcement agency's side obtain the targeted customer's of required monitoring the incident that makes a call.
Fig. 4 C receives the flow chart of calling out the realization monitoring at the targeted customer in realizing embodiments of the invention.Referring to Fig. 4 C, based on system of the present invention, in the methods of the invention, after having set up the connection of CDC passage, when the targeted customer of required monitoring received the calling that other user sends in the NGN network, the process that AF entity in the NGN network and DF entity are monitored specifically may further comprise the steps:
AF entity in the step 4C1:NGN network receives the call request that other user sends to the targeted customer.
What here, an AF entity was received can be one or more call request that one or more other users send to the targeted customer.
Step 4C2: an AF entity is sent to DF entity with the targeted customer by message related to calls by the CDC passage connection of having set up.
Here, the AF entity targeted customer that is sent to the DF entity is included but not limited to following parameter in the message related to calls: AF side CDC connection identifier, DF side CDC connection identifier, calling subscriber identification type, calling subscriber identification, targeted customer identify type, targeted customer's sign, timestamp (time and date) and call identification.
Step 4C3:DF entity receive the targeted customer by message related to calls after, in self, create related resource to preserve the information of this calling for calling out as called targeted customer.
Step 4C4:DF entity is sent to law enforcement agency side with the targeted customer who is preserved by message related to calls by external interface, and the targeted customer who makes law enforcement agency's side obtain required monitoring receives the incident of calling.
Fig. 4 D is a flow chart of realizing monitoring in realizing embodiments of the invention at targeted customer's call answering.Referring to Fig. 4 D, based on system of the present invention, in the methods of the invention, after having set up the connection of CDC passage, when the call answering incident that taken place in the NGN network corresponding to required intercept target user, the process that AF entity in the NGN network and DF entity are monitored specifically may further comprise the steps:
AF entity in the step 4D1:NGN network receives the call answering message corresponding to the targeted customer.
What trigger that this step carries out here, can be: the targeted customer calls out as calling or son that other user of called party answer sends; Perhaps, targeted customer's agency as Voice Mailbox, replys calling or son calling that other user sends; Perhaps, the calling or the son of being initiated as other user answer targeted customer called out; Perhaps, when a calling that turns to is replied by the targeted customer; Reply the calling of a repetition as the targeted customer.
Step 4D2: an AF entity is sent to the DF entity by the CDC passage connection of having set up with targeted customer's call answering message.
Here, an AF entity is sent to and includes but not limited to following parameter in targeted customer's call answering message of DF entity: AF side CDC connection identifier, DF side CDC connection identifier, targeted customer identify type, targeted customer's sign, timestamp (time and date) and call identification.
After step 4D3:DF entity received targeted customer's call answering message, targeted customer's state was set to response status in self.
Step 4D4:DF entity is sent to law enforcement agency's side by external interface with targeted customer's call answering message, and the targeted customer who makes law enforcement agency's side obtain required monitoring is in the state of call answering.
Fig. 4 E is a flow chart of realizing monitoring in realizing embodiments of the invention at targeted customer's call redirection.Referring to Fig. 4 E, based on system of the present invention, in the methods of the invention, after having set up the connection of CDC passage, when the call redirection incident that taken place in the NGN network corresponding to required intercept target user, the process that AF entity in the NGN network and DF entity are monitored specifically may further comprise the steps:
AF entity in the step 4E1:NGN network receives the calling that monitors corresponding to the targeted customer and turns to.
Here, triggering the process that this step carries out can be: the targeted customer turns to as the called calling that receives, as calling transfer or Call Forwarding etc.; Perhaps, the targeted customer deflects as the called calling that receives, as waits as long for or Call Deflexion etc.; Perhaps, the targeted customer forwards new position to as the called calling that receives, such as portable terminal or mobile phone etc.
In addition, an AF entity is to realize that by receiving the call redirection request that another user sends in the corresponding calling of required intercept target user or targeted customer the calling that monitors corresponding to the targeted customer described in this step turns to.
Step 4E2: an AF entity is sent to the DF entity by the CDC passage connection of having set up with targeted customer's call redirection message.
Here, an AF entity is sent in targeted customer's call redirection message of DF entity and includes but not limited to following parameter: AF side CDC connection identifier, DF side CDC connection identifier, targeted customer identify type, targeted customer's sign, the user ID type that redirect to, the user ID that redirect to, timestamp (time and date) and call identification.
After step 4E3:DF entity receives targeted customer's call redirection message, upgrade the corresponding relevant information of calling out of targeted customer.
Here, renewal that the DF entity is carried out is handled and can be exemplified as: the DF entity identifies type with the targeted customer and targeted customer's sign is revised as user ID type that redirect to and the user ID that redirect to etc. in the required intercept target user's who self preserves information.
Step 4E4:DF entity is sent to law enforcement agency's side by external interface with targeted customer's call redirection message, makes the information after law enforcement agency's side is obtained required intercept target user's call redirection.
Fig. 4 F calls out the flow chart that changes the realization monitoring at the targeted customer in realizing embodiments of the invention.Referring to Fig. 4 F, based on system of the present invention, in the methods of the invention, after having set up the connection of CDC passage, when having taken place to change incident corresponding to required intercept target user's calling in the NGN network, the process that AF entity in the NGN network and DF entity are monitored specifically may further comprise the steps:
The calling that an AF entity in the step 4F1:NGN network monitors corresponding to the targeted customer changes.
Here, triggering the process that this step carries out can be: when two or more call identifications of targeted customer's correspondence are merged into a call identification; Perhaps, additional new call identification in the calling of already present targeted customer's correspondence; Perhaps, targeted customer's correspondence call identification is split into two or more call identifications; Perhaps, targeted customer's correspondence call identification is transformed into another call identification etc.
In addition, an AF entity is to realize that by receiving the calling change request that another user sends in the corresponding calling of required intercept target user or targeted customer the calling that monitors corresponding to the targeted customer described in this step changes.
Step 4F2: an AF entity is called out the targeted customer to change message by the CDC passage connection of having set up and is sent to the DF entity.
Here, the AF entity targeted customer that is sent to the DF entity calls out to change and includes but not limited to following parameter in the message: AF side CDC connection identifier, DF side CDC connection identifier, targeted customer identify type, targeted customer's sign, timestamp (time and date), call identification, new call identification and new CCC gap marker.
Step 4F3:DF entity receive the targeted customer call out change message after, call out the relevant treatment of change.
Here, the relevant treatment that the DF entity carried out calling changes can be exemplified as: for the targeted customer of required monitoring creates new call control block or updating call relevant information etc.
Step 4F4:DF entity is called out the targeted customer to change message by external interface and is sent to law enforcement agency's side, the information after the calling that makes law enforcement agency's side obtain required intercept target user changes.
Fig. 4 G is a flow chart of realizing monitoring in realizing embodiments of the invention at targeted customer's call contents.Referring to Fig. 4 G, based on system of the present invention, in the methods of the invention, after having set up the CDC passage and the CCC passage be connected, when required intercept target user in the NGN network begins to transmit the Media Stream that call contents promptly calls out, AF entity notice DF entity call contents in the NGN network begins to transmit, and the Media Stream of calling out is realized that the process of monitoring specifically may further comprise the steps:
AF entity in the step 4G1:NGN network monitors the Media Stream that the targeted customer begins to send calling.
Step 4G2: an AF entity begins to transmit message by the CDC passage connection of having set up with call contents and is sent to the DF entity.
Here, the AF entity call contents that is sent to the DF entity begins to transmit and includes but not limited to following parameter in the message: AF side CDC connection identifier, DF side CDC connection identifier, timestamp (time and date), call identification and CCC gap marker.
Step 4G3:DF entity receives after call contents begins to transmit message, begins to transmit the CCC gap marker that carries in the message according to this call contents and opens corresponding CCC passage, and targeted customer's calling is associated with the CCC passage that this is opened.
Step 4G4: the second or the 3rd AF entity connects the Media Stream corresponding to the targeted customer that self is received by the CCC passage of having set up and is sent to the DF entity.
Step 4G5:DF entity will be sent to law enforcement agency's side corresponding to targeted customer's Media Stream by external interface, make law enforcement agency's side obtain the Media Stream that required intercept target user transmits.
Here, in process shown in above-mentioned Fig. 4 G, the Media Stream that the 2nd AF entity is sent to the DF entity and finally is sent to the law enforcement structure side is a non-data medium stream, such as Media Streams such as sound or images, the Media Stream that the 3rd AF entity is sent to the DF entity and finally is sent to the law enforcement structure side is a data medium stream.
Need to prove, setting up after CDC connects that an AF entity also can utilize this CDC to connect with the DF entity to carry out mutual at following situation, include but not limited to: required intercept target user is cancel register from the NGN network, such as shutdown or off line etc.; Required intercept target user's calling discharges; When the calling of targeted customer's correspondence belongs to Conference Calling, there is other calling to add this Conference Calling or withdraw from this Conference Calling; Targeted customer's position is upgraded; Required intercept target user sends or receives short message; The targeted customer operates in calling procedure, such as the incident of various callings such as button.Its specific implementation process is identical with Principle of Process shown in above-mentioned Fig. 4 A to Fig. 4 G, only needs to get final product by carry relevant parameter triggering corresponding operating in different messages.
Fig. 5 is the channel attached flow chart of release management in realizing embodiments of the invention.Referring to Fig. 5, in the present invention, the channel attached process of release management specifically may further comprise the steps between AF entity in the NGN network and the DF entity:
Step 501:DF entity is connected with the management channels that the first party among the AF entity passes through to be set up and management channels connect is discharged request is sent to second party among DF entity and the AF entity.
Here, if described first party is the DF entity, then the DF entity can be carried out the process of this step when receiving the connection release request that law enforcement agency's side sends.If described first party is the AF entity, then the AF entity can be when the end of calling message that receives corresponding to the targeted customer, or be connected with management channels between the DF entity when not being used for a long time at the AF entity, carries out the process of this step.In addition, described management channels connects in the request of release and comprises AF side management connection identifier and DF side management connection identifier at least.
Step 502: it is transport layer connection resource in employed local resource of targeted customer and the release management passage that described second party is released to this connection, and described second party connects management channels and discharges acknowledge message and be sent to described first party.
Here, described management channels connects in the release acknowledge message and comprises AF side management connection identifier and DF side management connection identifier at least.
Step 503: described first party receives after management channels connect to discharge acknowledge message, is released to this connection and is the transport layer connection resource in employed local resource of targeted customer and the release management passage.
In step 501, described first party can start a timer that sets in advance when sending management channels connection release request, then in this step 503, described first party is to judge that whether receiving management channels before this timer expiry connects the release acknowledge message, if receive, then continue to carry out the process described in this step.
So far, then finished the process that management channels is connected between AF entity and the DF entity that discharges.In above-mentioned process shown in Figure 5, described AF entity can be an AF entity SCPF/ACF, the 2nd AF entity A MGF/TMGF in the NGN network and any one among the 3rd AF entity ERF.
Fig. 6 discharges the channel attached flow chart of CDC in realizing embodiments of the invention.Referring to Fig. 6, in the present invention, discharge the channel attached process of CDC between AF entity in the NGN network and the DF entity and specifically may further comprise the steps:
Step 601:DF entity is connected with the CDC passage that the first party among the AF entity passes through to be set up and CDC connect is discharged request is sent to second party among a DF entity and the AF entity.
Here, if described first party is the DF entity, then the DF entity can receive the process of carrying out this step when CDC that law enforcement agency's side sends connects release request.If described first party is an AF entity, then an AF entity can be when the end of calling message that receives corresponding to the targeted customer, or be connected with CDC passage between the DF entity when not being used for a long time at an AF entity, carries out the process of this step.In addition, described CDC connects in the request of release and comprises an AF side CDC connection identifier and DF side CDC connection identifier at least.
Step 602: described second party is released to this connection to be the employed local resource of targeted customer and to discharge transport layer connection resource in the CDC passage, and described second party connects CDC and discharges acknowledge message and be sent to described first party.
Here, described CDC connects in the release acknowledge message and comprises AF side CDC connection identifier and DF side CDC connection identifier at least.
Step 603: described first party receives after CDC connect to discharge acknowledge message, is released to this connection and is the employed local resource of targeted customer and discharge transport layer connection resource in the CDC passage.
In step 601, described first party can start a timer that sets in advance when sending CDC connection release request, then in this step 603, described first party is to judge that whether receiving CDC before this timer expiry connects the release acknowledge message, if receive, then continue to carry out the process described in this step.
So far, then finished the channel attached process of CDC between an AF entity and the DF entity that discharges.
Executing after above-mentioned Fig. 5 is connected with release management passage shown in Figure 6 and discharges the CDC passage and connect, then can discharge being connected of CCC passage between DF entity and the 2nd AF entity and the 3rd AF entity by the DF entity triggers.
So far, the various channel attached processes between each AF entity and the DF entity that discharge have then been finished.
In a word, the above is preferred embodiment of the present invention only, is not to be used to limit protection scope of the present invention.Within the spirit and principles in the present invention all, any modification of being done, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (36)
1. a system that realizes Lawful Interception is characterized in that, this system comprises: the first access function AF entity, the 2nd AF entity, the 3rd AF entity and handoff functions DF entity among the next generation network NGN, wherein,
The one AF entity, the monitoring setting request that is used for sending according to the DF entity need to determine the targeted customer of monitoring, needs intercept target user's management information and needs being correlated with and irrelevant information of the corresponding calling of intercept target user to the transmission of DF entity;
The 2nd AF entity, the monitoring setting request that is used for sending according to the DF entity need to determine the targeted customer of monitoring, needs intercept target user's management information and needs the non-data medium of the corresponding calling of intercept target user to flow to the transmission of DF entity;
The 3rd AF entity, the monitoring setting request that is used for sending according to the DF entity need to determine the targeted customer of monitoring, needs intercept target user's management information and needs the data medium of the corresponding calling of intercept target user to flow to the transmission of DF entity;
The DF entity is used for sending the request of setting of monitoring to an AF entity, the 2nd AF entity and the 3rd AF entity, and the targeted customer's that an AF entity, the 2nd AF entity and the 3rd AF entity are sent information is sent to law enforcement agency's side;
Wherein,
The one AF entity is service control proxy function SCPF entity and the access control function ACF entity in the NGN network, the SCPF entity is used for and the described relevant and irrelevant information that needs intercept target user's management information and need the corresponding calling of intercept target user of DF entity interaction, and the ACF entity is used for and the described management information that needs the intercept target user of DF entity interaction;
Described the 2nd AF entity is access media gateway function AMGF entity and the Trunk Media Gateway function TMGF entity in the NGN network;
Described the 3rd AF entity is the edge router ERF in the NGN network;
Wherein,
For an AF entity is that the scheme of SCPF entity and ACF entity, scheme and the 3rd AF entity that the 2nd AF entity is AMGF entity and TMGF entity are the scheme of ERF, these three schemes are used simultaneously, perhaps, only use any one scheme, perhaps, only use any two schemes.
2. system according to claim 1 is characterized in that, a described AF entity, the 2nd AF entity and the 3rd AF entity link to each other by the d interface with the DF entity respectively.
3. system according to claim 1, it is characterized in that, a described AF entity, be used for and DF entity set-up management channels, and pass through the mutual described management information that needs the intercept target user of the management channels created, and an AF entity is used for and DF entity set-up call control channel CDC, and passes through the mutual described corresponding relevant and irrelevant information of calling out of intercept target user that needs of the CDC passage created.
4. system according to claim 3 is characterized in that, the mutual employing transmission control protocol/Internet protocol of CDC passage is carried out between a described AF entity and the DF entity.
5. system according to claim 1 is characterized in that, described the 2nd AF entity is used for and DF entity set-up management channels, and passes through the mutual described management information that needs the intercept target user of the management channels created; And the 2nd AF entity is used for and DF entity set-up call contents channel C CC, and the mutual described corresponding non-data medium of calling out of intercept target user that needs of CCC passage that passes through to be created flows.
6. system according to claim 5 is characterized in that, the mutual employing RTP and the RTCP Real-time Transport Control Protocol of CCC passage carry out between described the 2nd AF entity and the DF entity.
7. system according to claim 1 is characterized in that, described the 3rd AF entity is used for and DF entity set-up management channels, and passes through the mutual described management information that needs the intercept target user of the management channels created; And the 3rd AF entity is used for the passage with DF entity set-up CCC, and the mutual described corresponding data medium of calling out of intercept target user that needs of CCC passage that passes through to be created flows.
8. system according to claim 7 is characterized in that, the mutual employing transmission control protocol or the User Datagram Protoco (UDP) of CCC passage are carried out between described the 3rd AF entity and the DF entity.
9. according to claim 3,5 or 7 described systems, it is characterized in that the mutual employing transmission control protocol/Internet protocol of described management channels is carried out.
10. according to any described system in the claim 1 to 8, it is characterized in that described DF entity is independent of described AF entity.
11., it is characterized in that a described DF entity and an AF entity set become same physical entity according to any described system in the claim 1 to 8;
A described AF entity and DF entity by the mutual of the inner mutual management information that needing to realize the intercept target user and need the corresponding relevant and irrelevant information of calling out of intercept target user alternately.
12. according to any described system in the claim 1 to 8, it is characterized in that, described DF entity links to each other with the law enforcement agency side external interface by standard, wherein, described standard external interface is the external interface of CALEA standard, the external interface of etsi standard or the external interface of TIIT standard.
13. a method that realizes Lawful Interception is characterized in that, an AF entity, the 2nd AF entity, the 3rd AF entity and DF entity are set in the NGN network, this method also comprises:
A, an AF entity, the 2nd AF entity, the 3rd AF entity receive the monitoring setting request that the DF entity is sent respectively, set the definite targeted customer who needs monitoring of request according to this monitoring;
The corresponding relevant and irrelevant information of calling out of B, AF entity receiving target user's in the NGN network management information and targeted customer sends to the DF entity,
The 2nd AF entity in the NGN network receiving target user management information and the corresponding non-data medium stream of calling out of targeted customer, send to the DF entity;
The 3rd AF entity in the NGN network receiving target user management information and need the corresponding data medium stream of calling out of intercept target user, send to the DF entity;
C, DF entity are sent to law enforcement agency's side with received targeted customer's information;
Wherein,
The one AF entity is service control proxy function SCPF entity and the access control function ACF entity in the NGN network; Among the described step B, the SCPF entity sends to the DF entity with targeted customer's management information with the corresponding relevant and irrelevant information of calling out of targeted customer, and the ACF entity sends to the DF entity with targeted customer's management information;
Described the 2nd AF entity is access media gateway function AMGF entity and the Trunk Media Gateway function TMGF entity in the NGN network;
Described the 3rd AF entity is the edge router ERF in the NGN network;
Wherein,
For an AF entity is that the scheme of SCPF entity and ACF entity, scheme and the 3rd AF entity that the 2nd AF entity is AMGF entity and TMGF entity are the scheme of ERF, these three schemes are used simultaneously, perhaps, only use any one scheme, perhaps, only use any two schemes.
14. method according to claim 13, it is characterized in that, the step of the described DF of setting entity comprises: in the NGN network, increase the DF entity be independent of an AF entity, the 2nd AF entity and the 3rd AF entity, or in the NGN network at an integrated DF entity of existing physical entity side.
15. method according to claim 14 is characterized in that, when in the NGN network during at the integrated DF entity of existing physical entity side, this existing physical entity is an AF entity.
16. method according to claim 15 is characterized in that, before steps A, this method further comprises: the AF entity is set up management channels with the DF entity and is connected;
In steps A, the management channels that described AF entity passes through to be set up connects the monitoring setting request that the DF entity is sent that receives.
17. method according to claim 16 is characterized in that, described AF entity and DF entity are set up the management channels step of connecting and are comprised:
A1, described DF entity are connected with the transport layer that the AF entity is set up in the management channels;
A2, DF entity are that the management channels of current required foundation connect to distribute DF side management connection identifier, and the DF side management connection identifier that is distributed is carried at management channels connects in the request of foundation and be sent to the AF entity;
A3, AF entity are that the management channels of current required foundation connect to distribute AF side management connection identifier, and with the AF side management connection identifier that distributed with is connected the request of foundation from management channels the DF side management connection identifier that obtains and successful connection identify to be carried at and be sent to the DF entity in the management channels connection response message;
A4, DF entity are connected with the application layer that the AF entity is set up in the management channels;
In steps A, described monitoring is set in the request and is comprised: DF side management connection identifier, and AF side management connection identifier, the targeted customer identifies type and targeted customer's sign;
In steps A, described definite step of intercept target user that needs comprises: described AF entity identifies type according to the targeted customer who carries in the monitoring setting request and the targeted customer identifies the targeted customer who need to determine monitoring.
18. method according to claim 17 is characterized in that, sets up and carries out described step a1 when requiring when described DF entity receives connection that law enforcement agency's side sends.
19. method according to claim 17 is characterized in that, described step a2 further comprises: the DF entity is sent to the AF entity with DF sign and authentication password;
Further comprise between step a2 and step a3: DF sign and authentication password that the AF entity is sent according to the DF entity judge whether the DF entity is legal, if, execution in step a3 then, otherwise, the current process of setting up the management channels connection finished.
20. method according to claim 17, it is characterized in that, described steps A further comprises: the management channels that described AF entity passes through to be set up receives the intercept target of carrying DF side management connection identifier, AF side management connection identifier and needing to revise attribute that the DF entity sends and revises request, and described AF entity is revised need in the request according to intercept target and revised attribute targeted customer's monitoring attribute is made amendment;
Described targeted customer's information is amended monitoring attribute.
21. method according to claim 17, it is characterized in that this method further comprises: the management channels that described AF entity passes through to be set up receives the list of targeted subscribers query requests of carrying DF side management connection identifier and AF side management connection identifier that the DF entity is sent; Described AF entity is carried at the list of targeted subscribers of preserving in self and is sent to the DF entity in the list of targeted subscribers query response message; The DF entity obtains the list of targeted subscribers that the AF entity is preserved from the list of targeted subscribers query response message that receives, wherein, when the AF entity sent the list of targeted subscribers query requests of the described DF of carrying side management connection identifier and AF side management connection identifier, the DF entity was sent to law enforcement agency's side with the list of targeted subscribers of being obtained after described DF entity is to receive the list of targeted subscribers query requests that law enforcement agency's side sends.
22. method according to claim 17, it is characterized in that, described steps A further comprises: the management channels that described AF entity passes through to be set up receives that the DF entity sends carries the position that DF side management connection identifier, AF side management connection identifier, targeted customer identify type and targeted customer's sign and monitors the request, described AF entity monitoring objective user position information in targeted customer's calling procedure of being provided with;
Described targeted customer's information is targeted customer's positional information.
23. method according to claim 17, it is characterized in that, between steps A and step B, further comprise: the management channels that described AF entity passes through to be set up be connected receive that the DF entity transmits law enforcement agency's side carry DF side management connection identifier, AF side management connection identifier, the targeted customer identifies the monitoring cancellation request of type and targeted customer's sign, judge the current talking state that whether is in of targeted customer, if, execution in step B then, otherwise, AF entity targeted customer's monitoring sign is set to deactivation status, and release targeted customer shared system resource in AF entity self, stop monitoring activity, finish current flow process the targeted customer.
24., it is characterized in that described AF entity is any one in an AF entity, the 2nd AF entity and the 3rd AF entity according to any described method in the claim 16 to 23.
25. method according to claim 15 is characterized in that, described AF entity is an AF entity;
Before step B, this method further comprises: an AF entity is set up the CDC passage with the DF entity and is connected;
Described targeted customer's information is the corresponding information of calling out of targeted customer;
In step B, the CDC passage that an AF entity passes through to be set up connects the corresponding information of calling out of the targeted customer who will receive and sends to the DF entity.
26. method according to claim 25 is characterized in that, a described AF entity and DF entity are set up the channel attached step of CDC and are comprised:
First party in b1, an AF entity and the DF entity is judged special-purpose CDC passage or the shared CDC passage that whether has existed between the second party in self and an AF entity and the DF entity corresponding to the targeted customer, if, then finish the channel attached flow process of the current CDC of foundation, otherwise, execution in step b2;
B2, described first party are connected with the transport layer that second party is set up in the CDC passage;
B3, first party are that the CDC passage of current required foundation connect to distribute first party side CDC connection identifier, and the first party side CDC connection identifier that is distributed is carried at the CDC passage connects in the request of foundation and be sent to second party;
B4, second party are that the CDC passage of current required foundation connect to distribute second party side CDC connection identifier, and with the second party side CDC connection identifier that distributed with is connected the request of foundation from the CDC passage the first party side CDC connection identifier that obtains and successful connection identify to be carried in the CDC passage connection response message and be sent to first party;
B5, first party are connected with the application layer that second party is set up in the CDC passage.
27. method according to claim 26 is characterized in that, described first party is an AF entity;
When listening to targeted customer's life event, carries out a described AF entity described step b1.
28. according to claim 26 or 27 described methods, it is characterized in that described step b3 further comprises: described first party is sent to second party with first party sign and authentication password;
Further comprise between step b3 and step b4: first party sign and authentication password that second party is sent according to first party judge whether first party is legal, if, execution in step b4 then, otherwise, the current channel attached process of CDC of setting up finished.
29. method according to claim 25 is characterized in that, register requirement that the corresponding information of calling out of described targeted customer is the targeted customer or targeted customer are by message related to calls.
30. method according to claim 25 is characterized in that, calling or the son calling initiated as the targeted customer send to other user of the local domain of an AF entity management; Perhaps, the calling of targeted customer's initiation or son are called out other user's transmission to a non-AF entity local domain; Perhaps, the destination Mobile Station International ISDN Number of the calling of targeted customer's initiation or son calling need be translated or change; Perhaps, when calling that the targeted customer initiates or son calling are stopped by an AF entity, carry out described step B, wherein, described son is called out and is the adding of Conference Calling;
The corresponding information of calling out of described targeted customer is targeted customer's call initiation message.
31. method according to claim 25 is characterized in that, when the targeted customer calls out as calling or son that other user of called party answer sends; Perhaps, other user of targeted customer's proxy response calling of sending or son are called out; Perhaps, the calling or the son of being initiated as other user answer targeted customer called out; Perhaps, when a calling that turns to is replied by the targeted customer; Perhaps, when the targeted customer replys the calling of a repetition, carry out described step B;
The corresponding information of calling out of described targeted customer is targeted customer's call answering message.
32. method according to claim 25 is characterized in that, when the targeted customer turns to as the called calling that receives; Perhaps, the targeted customer deflects as the called calling that receives; Perhaps, when the targeted customer forwards new position to as the called calling that receives, carry out described step B;
The corresponding information of calling out of described targeted customer is targeted customer's call redirection message.
33. method according to claim 25 is characterized in that, when two or more call identifications of targeted customer's correspondence are merged into a call identification; Perhaps, additional new call identification in the calling of already present targeted customer's correspondence; Perhaps, targeted customer's correspondence call identification is split into two or more call identifications; Perhaps, when a call identification of targeted customer's correspondence is transformed into another call identification, carry out described step B;
The corresponding information of calling out of described targeted customer is called out change message for the targeted customer.
34. method according to claim 25 is characterized in that, the corresponding information of calling out of described targeted customer is that call contents begins to transmit message;
Described step B further comprises: the second or the 3rd AF entity is connected the Media Stream corresponding to the targeted customer that self is received by the CCC passage with the foundation of DF entity and is sent to the DF entity;
Described step C further comprises: the DF entity is sent to law enforcement agency's side with the Media Stream that receives.
35., it is characterized in that this method further comprises according to claim 16 or 25 described methods:
First party among c1, DF entity and the AF entity is connected by described passage and described passage is connected the request of release is sent to second party among DF entity and the AF entity;
C2, described second party are released to the employed local resource of targeted customer and discharge transport layer connection resource in the described passage, and described passage connected discharge acknowledge message and be sent to first party;
C3, first party receive described passage connect discharge acknowledge message after, be released to the employed local resource of targeted customer and discharge transport layer connection resource in the described passage.
36. method according to claim 35 is characterized in that, when described first party is the DF entity, carries out described step c1 when the DF entity receives the connection release request that law enforcement agency's side sends;
When described first party is the AF entity, when the AF entity receives end of calling message corresponding to the targeted customer, or is connected with management channels between the DF entity at the AF entity and carries out described step c1 when not being used for a long time.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005101166626A CN100414895C (en) | 2005-10-26 | 2005-10-26 | System and method for realizing legally monitoring |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005101166626A CN100414895C (en) | 2005-10-26 | 2005-10-26 | System and method for realizing legally monitoring |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1852179A CN1852179A (en) | 2006-10-25 |
| CN100414895C true CN100414895C (en) | 2008-08-27 |
Family
ID=37133649
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2005101166626A Expired - Fee Related CN100414895C (en) | 2005-10-26 | 2005-10-26 | System and method for realizing legally monitoring |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100414895C (en) |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101257412B (en) * | 2007-03-02 | 2010-09-29 | 中兴通讯股份有限公司 | Alarming interception system and method for WiMAX network |
| CN101035036B (en) * | 2007-04-19 | 2011-03-02 | 中兴通讯股份有限公司 | Legal monitoring system and method |
| CN101159625B (en) * | 2007-11-07 | 2011-04-20 | 中兴通讯股份有限公司 | System and method of implementing monitor for police for WiMAX |
| CN101594340B (en) * | 2008-05-28 | 2012-07-04 | 上海贝尔阿尔卡特股份有限公司 | Method and device for realizing internet lawful interception |
| EP2922240B1 (en) | 2012-11-19 | 2018-01-10 | Huawei Technologies Co., Ltd. | Method for configuring user data monitoring path, monitoring method, apparatus and entity |
| CN111490962A (en) * | 2019-01-25 | 2020-08-04 | 华为技术有限公司 | Monitoring method and network equipment |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO1999017499A2 (en) * | 1997-09-26 | 1999-04-08 | Nokia Networks Oy | Legal interception in a telecommunications network |
| CN1338173A (en) * | 1999-03-12 | 2002-02-27 | 诺基亚网络有限公司 | Interception system and method |
| US20020078384A1 (en) * | 1999-01-14 | 2002-06-20 | Lassi Hippelainen | Interception method and system |
| EP1389864A1 (en) * | 2002-08-13 | 2004-02-18 | Nortel Networks Limited | Network architecture for supporting the lawful intercept of a network communication |
| CN1642117A (en) * | 2004-07-07 | 2005-07-20 | 华为技术有限公司 | Method for realizing monitoring based on soft switch |
-
2005
- 2005-10-26 CN CNB2005101166626A patent/CN100414895C/en not_active Expired - Fee Related
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO1999017499A2 (en) * | 1997-09-26 | 1999-04-08 | Nokia Networks Oy | Legal interception in a telecommunications network |
| US20020078384A1 (en) * | 1999-01-14 | 2002-06-20 | Lassi Hippelainen | Interception method and system |
| CN1338173A (en) * | 1999-03-12 | 2002-02-27 | 诺基亚网络有限公司 | Interception system and method |
| EP1389864A1 (en) * | 2002-08-13 | 2004-02-18 | Nortel Networks Limited | Network architecture for supporting the lawful intercept of a network communication |
| CN1642117A (en) * | 2004-07-07 | 2005-07-20 | 华为技术有限公司 | Method for realizing monitoring based on soft switch |
Non-Patent Citations (2)
| Title |
|---|
| Telecommunications security,Lawful Interception(LI),Requirements for network functions. ETSI标准.ETSI 201 158 V1.2.1. 2002 * |
| 基于下一代网络的合法侦听. 杨国民等.电信网技术,第4期. 2004 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN1852179A (en) | 2006-10-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN100484274C (en) | Packet mode speech communication | |
| US7408948B2 (en) | Packet mode speech communication | |
| CN1993961B (en) | Method and device for session control in hybrid telecommunication networks | |
| US20010052081A1 (en) | Communication network with a service agent element and method for providing surveillance services | |
| US9467562B2 (en) | Method and unit used to determine useable services | |
| US20100086119A1 (en) | Lawful interception in wireline broadband networks | |
| US20020051518A1 (en) | Communication network with a collection gateway and method for providing surveillance services | |
| US20060153172A1 (en) | Emergency call system and emergency call method | |
| US20100199320A1 (en) | Multimodal escalation to endpoints in enhanced communication systems | |
| AU2002246172A1 (en) | Packet mode speech communication | |
| CN103517266B (en) | Method for activating mobile terminal on mobile network side and mobile gateway system | |
| CN100414895C (en) | System and method for realizing legally monitoring | |
| US20080137834A1 (en) | Communication system | |
| EP1665851B1 (en) | Monitoring in a telecommunication network | |
| US20020009973A1 (en) | Communication network and method for providing surveillance services | |
| CN101232536A (en) | Malicious call identification method | |
| EP1442583B1 (en) | Maintenance of third party service's subscription information | |
| EP1883256B1 (en) | A method, system and device for realizing the record of the speech data in semi-duplex talking | |
| CN101742011B (en) | Lawful interception method for internetwork telephone domain and system thereof | |
| CN105516176A (en) | Call center system, communication connection method and device of call center system | |
| CN1711785B (en) | System and method for managing access of communication network to mobile terminal | |
| CN107708103B (en) | Method for realizing number security based on MAP signaling | |
| CN101453694A (en) | Method, system and apparatus for value increasing service invoking Internet service capability | |
| JP2007521530A (en) | Monitoring in communication networks | |
| KR100415117B1 (en) | Apparatus and method for called compulsive on multi call into internet protocol phone in an internet protocol telephony system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20170926 Address after: 075000 No. 1, unit 36, No. 1, building 501, industrial Street, Qiaodong District, Qiaodong District, Hebei, Zhangjiakou Patentee after: Zhang Haimin Address before: 518129 Bantian HUAWEI headquarters office building, Longgang District, Guangdong, Shenzhen Patentee before: Huawei Technologies Co., Ltd. |
|
| TR01 | Transfer of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20080827 Termination date: 20171026 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |