CN101547185A - Method and system for preventing mutual attack between mobile terminals in mobile network - Google Patents
Method and system for preventing mutual attack between mobile terminals in mobile network Download PDFInfo
- Publication number
- CN101547185A CN101547185A CN200810066433A CN200810066433A CN101547185A CN 101547185 A CN101547185 A CN 101547185A CN 200810066433 A CN200810066433 A CN 200810066433A CN 200810066433 A CN200810066433 A CN 200810066433A CN 101547185 A CN101547185 A CN 101547185A
- Authority
- CN
- China
- Prior art keywords
- message
- portable terminal
- address
- service point
- transmitter side
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a method and a system for preventing mutual attack between mobile terminals in a mobile network. The method comprises the following steps that: A, a control rule for mutual access of the mobile terminals is configured on a core network; B, the mobile terminal of a transmission side transmits a message to a user plane unit of the transmission side; C, the user plane unit of the transmission side determines that whether the target address of the message and the address of the mobile terminal of the transmission side belong to the same virtual routing space or not, if so, a service point label of the mobile terminal of the transmission side and a virtual routing space label are encapsulated for the message, and the message is forwarded to the user plane unit of a receiving side; and D, the user plane unit of the receiving side determines that whether the mobile terminal of the transmission side and the mobile terminal of the receiving side belong to the same service point or not according to the service point label and the virtual routing space label in the encapsulated message, if so, the encapsulated message is subjected to corresponding processing according to the control rule. The method and the system can effectively control mutual access between the mobile terminals, and enhance security of the mobile network.
Description
Technical field
The present invention relates to wireless telecommunication system, relate in particular to and prevent the method and system of running foul of each other between portable terminal in a kind of mobile network.
Background technology
Along with mobile network's development, mobile network's safety problem also more and more is subjected to people's attention.The contrast the Internet, the Internet is because developing history is far away relatively, a lot of security tools and strategy have been born in the network security game process of virus and anti-virus, attack and attack protection, aspect operator, still all have more complete security strategy aspect the internet terminal (mainly referring to PC), thereby providing good guarantee for the operation of the Internet; And in the mobile network; although aspect operator, have security strategy preferably; yet at portable terminal (Mobile Station; be called for short MS) aspect; because the restriction of portable terminal self software and hardware; can not resemble PC that works instruments such as operation personal fire wall, antivirus software and protect the safety of self, so just the safety to the mobile subscriber threatens, and makes troubles to the operation of mobile operator.
At present in the mobile network, no matter be GPRS (the GeneralPacket Radio Service of mobile radio communication, be called for short GPRS) network, the packet switching of 3G (Third Generation) Moblie net (Packet Switched, be called for short PS) the territory network, or microwave cut-in global interoperating system (Worldwide Interoperability for Microwave Access, abbreviation WiMax) etc. broadband mobile network network, mobile subscriber's business model all is to service provider (Service Provider by the mobile network, abbreviation SP) comes requested service, the gateway that between the network of mobile network and SP, has operator, a cover network security policy of the gateway internet usage that the network security between portable terminal and SP can be by operator ensures like this, and the technology before making eye bright so that the WiMax of the PS territory of 3G (Third Generation) Moblie and broadband wireless communications is example below realizes situation.
Fig. 1 shows is same APN (Access Point Name under the PS territory, be called for short APN, the MS of mobile communication visits the service content that SP provides by it) under the data flow of mutual visit of two portable terminals, its process is: suppose that two portable terminals (transmitter side mobile terminal MS 1 and receiver side mobile terminal MS 2) have all activated success, user's face message of MS1 is by UMTS (Universal Mobile Telecommunication System, universal mobile telecommunications system) terrestrial access network (UMTS Terrestrial Radio Access Network, be called for short UTRAN) arrival Serving GPRS Support Node (Service GPRS Support Node, be called for short SGSN, be the network element that core-network side is responsible for mobile management), arrive Gateway GPRS Support Node (Gateway GPRS Support Node through gn interface then, be called for short GGSN, be the network element that core-network side is responsible for being linked into and sending out core net), GGSN judges that the destination address of this message is the address of the MS2 under the same APN, then be not dealt into the gateway of operator by the Gi interface, but issue SGSN by gn interface, SGSN is transmitted to MS2 by UTRAN, promptly the message flow process be MS1-UTRAN-SGSN-GGSN-SGSN-UTRAN-MS2.
That Fig. 2 shows is (the Network Service Point of consolidated network service point under the WiMax network, the mutual visit data of two portable terminals abbreviation NSP) flows to, its process is: suppose that two portable terminals are in the network registry success, user's face message of MS1 is by base station (Base Station, be called for short BS) arrival access service network gateway (Access Service Network Gateway, be called for short AGW, it is the gateway of wireless wideband access network, mobile management is provided, function such as session management and access), AGW judges that the destination address of this message is the address of the MS2 under the same NSP, then be not dealt into the gateway of operator by Interface R3, but issue MS2 by BS, promptly the flow process of message be MS1-BS-AGW-BS-MS2.
The problem that is existed by the visible prior art scheme of last surface analysis is: the mutual visit between the portable terminal under the same APN (or NSP) is without the gateway of operator, and the fail safe of portable terminal itself is not high, therefore, propagation of the virus between the portable terminal under the same APN (or NSP) and network attack can get around the gateway of operator and bring threat for user security and mobile network's operation.
Summary of the invention
Because above-mentioned situation, the invention provides and prevent the method and system of running foul of each other between portable terminal in a kind of mobile network, so that improve the safety in utilization of the portable terminal among the mobile network.
In order to solve the problems of the technologies described above, the technical scheme that the present invention proposes is:
Prevent from a kind of mobile network the method for running foul of each other between portable terminal to comprise following steps:
A, the control law that the configuration portable terminal is visited mutually on core net;
B, transmitter side portable terminal send to the transmitter side user plane unit with message;
Whether the destination address that C, transmitter side user plane unit are judged message belongs to same virtual routing space with the address of transmitter side portable terminal, in this way, then to the service point mark and the virtual routing space mark of described message encapsulation transmitter side portable terminal, the message after the forwarding encapsulation is to the receiver side user plane unit;
Whether described service point mark in D, the receiver side user plane unit message after according to described encapsulation and virtual routing space marker for judgment transmitter side portable terminal and receiver side portable terminal belong to same service point, in this way, carry out respective handling according to the message of the described control law in the steps A after to described encapsulation.
Described control law comprises: 1) allow message to pass through; 2) dropping packets; 3) message redirecting is arrived operator's gateway.Described receiver side user plane unit is carried out one of following three kinds of processing according to described control law to sending the message correspondence: 1) be forwarded to the receiver side portable terminal; 2) dropping packets; 3) be redirected to operator's gateway.
Described service point is corresponding one by one with address pool, described address pool is local pool or nonlocal address pool, when the mobile terminal address method of salary distribution is the equipment of the core network method of salary distribution, the configuration local pool, when the mobile terminal address method of salary distribution is DHCP or long-distance user's access authentication system mode, dispose nonlocal address pool; Service point and the related at least virtual routing space of address pool.
Described portable terminal comprises mobile phone, Wimax terminal or uses the PC of data card.
Prevent from another mobile network of the present invention the method for running foul of each other between portable terminal to comprise following steps:
A, the control law that the configuration portable terminal is visited mutually on core net;
B, transmitter side portable terminal send to the transmitter side user plane unit with message;
Whether the destination address that C, transmitter side user plane unit are judged message belongs to same service point with the address of transmitter side portable terminal, in this way, then to the service point mark of described message encapsulation transmitter side portable terminal, the message after the forwarding encapsulation is to the receiver side user plane unit;
Whether described service point marker for judgment transmitter side portable terminal and receiver side portable terminal in D, the receiver side user plane unit message after according to described encapsulation belong to same service point, in this way, carry out respective handling according to the message of the described control law in the steps A after to described encapsulation.
The invention also discloses and prevent the system that runs foul of each other between portable terminal in a kind of mobile network, on core net, comprise:
Configuration module is used to dispose the portable terminal control law of visit mutually, and configuration service point and address pool, and service point and address pool are with the incidence relation of virtual routing space;
User plane unit, be used to receive the message that the transmitter side portable terminal sends, and judge whether the destination address of described message is in identical virtual routing space with the transmitter side portable terminal, if then the service point mark and the virtual routing space mark of described message encapsulation transmitter side portable terminal are also transmitted; And whether belong to same service point according to the service point mark of described transmitter side portable terminal and virtual routing space marker for judgment transmitter side portable terminal and receiver side portable terminal, and when being, carry out respective handling according to the control law of the described access rule configuration module configuration message after to encapsulation.
Described system, the control law of configuration module configuration comprises: 1) allow message to pass through; 2) dropping packets; 3) message redirecting is arrived operator's gateway.
The address pool that disposes in the described configuration module is local pool or nonlocal address pool, when the mobile terminal address method of salary distribution is the equipment of the core network method of salary distribution, the configuration local pool, when the mobile terminal address method of salary distribution is DHCP or long-distance user's access authentication system mode, dispose nonlocal address pool.
The rule that the present invention visits mutually by the configuration portable terminal, and when belonging to the same service point of same virtual routing space, handles accordingly the judgement portable terminal according to the access rule of configuration, thereby can control the mutual visit between portable terminal effectively, strengthen mobile network's fail safe.
Description of drawings
Fig. 1 is the system architecture diagram that MS visits mutually under the same APN of the prior art;
Fig. 2 is the system architecture diagram that MS visits mutually under the same NSP of the prior art;
Fig. 3 is the module map of running foul of each other between portable terminal of preventing of the specific embodiment of the invention;
Fig. 4 is the flow chart of running foul of each other between portable terminal of preventing of the specific embodiment of the invention;
Fig. 5 is the system diagram of running foul of each other between portable terminal of preventing of the specific embodiment of the invention.
Embodiment
Contrast accompanying drawing and the present invention is further elaborated below in conjunction with embodiment.
In order to prevent running foul of each other between portable terminal, must have can be to the following method controlled of the mutual visit of mobile terminal room of same service point (can be APN or NSP), for this reason, the present invention provides one group of mutual access control rule to go to select configuration for operator on the net at mobile core: (1) allows the MS under the same APN (or NSP) to visit mutually; (2) forbid that the MS under the same APN (or NSP) visits mutually, promptly abandons the exchanging visit message of MS; (3) the MS exchanging visit message redirecting under the same APN (or NSP) to the gateway of operator, decide this message forwarding or abandon by gateway.When the portable terminal under the same APN (or NSP) was visited message arrival GGSN (or AGW) mutually, GGSN (or AGW) decided message forwarding according to the access control rule that operator disposed or abandons.
By judging whether message is that the message that portable terminal is visited mutually under the same APN (or NSP) takes corresponding access control rule can realize the mutual secure access between two portable terminals.APN (or NSP) is corresponding one by one with address pool, address pool is according to the address distribution corresponding configuration of MS, if promptly APN (or NSP) selects is locally to distribute the address then need to dispose local pool, if DHCP (Dynamic Host configuration Protocol, be called for short DHCP) or long-distance user's access authentication system (Remote Authentication Dial In UserService is called for short RADIUS) distribute the address then to need the configuring external address pool.
Also to consider for this situation simultaneously: if equipment of the core network has virtual routing function (Virtue Route Function, be called for short VRF), be same APN (or NSP), for example APN1 belongs to different virtual routing spaces, for example VRF1 and VRF2, then belong to the portable terminal under the APN1 among the VRF1 and belong to that the portable terminal under the ANP1 should not belong to same APN at last among the VRF2, the present invention has also realized the differentiation to this situation.
On the whole, technical scheme of the present invention comprises following steps:
(a) control law that configuration MS visits mutually in system: (1) allows; (2) forbid; (3) be redirected, need dispose redirected gateway address when selecting this strategy.Three kinds of rules can only be selected wherein a kind of;
(b) the virtual routing space sign (VRF ID) at configuration local pool or external address pond and place thereof in system.The related corresponding local pool if this APN (or NSP) uses the home address mode is if use DHCP or RADIUS to distribute the address then related corresponding external address pond;
(c) when MS sends message, user plane unit at transmit leg MS place is searched database according to the destination address of message and the VRF ID at this MS place, if search success then represent that destination address is the mobile terminal address that belongs in this VRF space, the user plane unit that the APN ID and the VRF ID at this message and MS place, source is forwarded to recipient MS place according to the load sharing strategy of destination address then, the user plane unit at recipient place judges whether these two MS belong to same APN (or NSP), abandons this message if the control law that same APN (or NSP) then selects according to operator decides, allow this message by or with the gateway of this message redirecting to operator; If search failure then represent that two MS not under same APN (or NSP), then are forwarded to the Gi interface to message.
Main feature of the present invention is: in the step (a), disposed several control laws and can go flexible selection according to the operation situation of self for different operators in system.In the step (b), can judge that differentiation same services point and address pool are in the situation of different virtual routing space; Simultaneously, no matter operator uses the local address of distributing still is that DHCP or RADIUS distribute the address can both accurately judge whether to belong to same APN (or NSP).And in step (c), just in user plane unit, increased a kind of judgement, therefore do not influence the performance of system.
In the present invention, for normal MS business, the destination address of uplink service is still the server of SP, message sends GGSN (or AGW) by Gi interface (or Interface R3), downlink business is come from Gi interface (Interface R3), be transmitted to MS from gn interface (or R6 interface), implementation of the present invention does not influence normal MS business, has just added barrier one to correlation attacks such as virus propagation between MS under the same APN (or NSP).
Enforcement prerequisite of the present invention is that two portable terminals all activate (being registration for the WiMax terminal) success at network side, be not in state of activation if receive the portable terminal of data, then downlink data can trigger Reverse Activity (or registration) flow process, the concrete steps of activation process and Reverse Activity flow process see also 3GPP (3rd Generation Partnership Project, the 3G (Third Generation) Moblie partnership project) agreement TS23.060, registration and reverse register flow path see also NWG Stage3 (NetworksWork Group, the network work group of WiMax, be responsible for writing and managing of network side agreement), repeat no more herein.
Be that the present invention is described in detail for example below with the 3G subscription, describe for convenient, the portable terminal called after MS1 that sends message, receive the portable terminal called after MS2 of message, MS herein can be mobile phone, WiMax terminal and the various portable terminals such as PC that use data card.
Referring to Fig. 3, in equipment of the core network, mainly contain the realization the present invention that cooperatively interacts of three modules, comprising: the user plane unit at the user plane unit at MS1 place, database module and MS2 place.Wherein database module obtains related data by network management configuration, before describing handling process, at first the network management configuration data is sketched.
Network management configuration at first needs the control law of mutual visit between operator's configuration portable terminal; Secondly the mobile terminal address method of salary distribution of selecting according to operator is come configuration address pond and related VRF, if being portable terminal, equipment of the core network distribute the address then to need to dispose local pool and corresponding VRF, if use DHCP or RADIUS to distribute the address, then need configuring external address pool and corresponding VRF; Dispose the employed APN of mobile terminal activating at last, the related above-mentioned address pool of this APN.
Referring to Fig. 4, business processing flow of the present invention specifically comprises following steps:
Step S01, the message that MS1 sends arrive the user plane unit at MS1 user plane packets data protocol (Packet DataProtocol is called for short PDP) context place;
Step S02, the user plane unit at MS1 place goes to search database module according to the destination address of message and the VRF ID at MS1 place, if search failure then go to step S06; If search success then illustrate that the destination address of message and the address of MS1 are the addresses of the MS2 in the same VRF space;
Step S03, the user plane unit at MS1 place encapsulates message the user plane unit that is forwarded to the PDP Context place of MS2 behind APN ID and the VRF ID with the form of built-in message;
Step S04, behind the user plane unit decapsulation message at the PDP Context place of MS2, if relatively the APN ID in the message and the APN ID at MS2 place are difference then go to step S06; If identical then search between the portable terminal of operator configuration the control law of visit mutually, forward step S05 to;
Step S05, if the control law of operator's configuration is for allowing visit mutually, then transmit this message to the Gn mouth, control strategy then abandons this message for forbidding mutual visit else if, control strategy is the gateway that is redirected to operator else if, then search the redirected gateway of the operator of the identical VRF ID of having of system configuration, this gateway (necessary redirected gateway that disposes operator E-Packets, this should be guaranteed by the Operation and Maintenance personnel), occur unusually otherwise belong to system, produce alarm prompt Operation and Maintenance personnel;
Step S06 looks into routing table and E-Packets.
The present invention has also correspondingly proposed to implement the system that portable terminal is run foul of each other that prevents of the method for the invention, and referring to Fig. 5, it comprises on core net:
Configuration module is used to dispose the portable terminal control law of visit mutually, and control law comprises that (1) allows; (2) forbid; (3) be redirected, need dispose redirected gateway address when selecting this strategy.Simultaneously, configuration module also is used for configuration service point and address pool and service point and the address pool incidence relation with virtual routing space; Service point and address pool are corresponding one by one, and service point and address pool then can corresponding at least one virtual routing spaces, and both the incidence relation of the logical virtual routing space of service point and address pool can be an one-to-many.
User plane unit, comprise transmitter side and the two-part processing of receiver side, at transmitter side, it is used to receive the message that the transmitter side portable terminal sends, and judge whether the destination address of described message is in identical virtual routing space with the transmitter side portable terminal, if then described message is encapsulated the service point mark and the virtual routing space mark of transmitter side portable terminal and is forwarded to receiver side;
At receiver side, then whether belong to same service point according to the service point mark of described transmitter side portable terminal and virtual routing space marker for judgment transmitter side portable terminal and receiver side portable terminal, and when being, the control law that disposes according to described access rule configuration module carries out respective handling to the message after encapsulating.
The address pool that disposes in the configuration module is local pool or nonlocal address pool, when the mobile terminal address method of salary distribution is the equipment of the core network method of salary distribution, the configuration local pool, when the mobile terminal address method of salary distribution is DHCP or long-distance user's access authentication system mode, dispose nonlocal address pool.Because system operation flow process and method step are similar, repeat no more herein.
The present invention is directed to the mutual visit between portable terminal, provide configuration rule flexibly in core net for operator, equipment of the core network according to the configuration rule of operator decide between portable terminal mutually the message of visit transmit and abandon, thereby realized that mutual visit is controlled to mobile terminal room under the same APN (or NSP), improved mobile network's fail safe.
The above only is the preferred embodiments of the invention; should be pointed out that for those skilled in the art, under the prerequisite that does not break away from the principle of the invention; can also make some improvements and modifications, these improvements and modifications also should be considered as protection scope of the present invention.
Claims (9)
1. the method that prevents to run foul of each other between portable terminal in the mobile network is characterized in that, comprises following steps:
A, the control law that the configuration portable terminal is visited mutually on core net;
B, transmitter side portable terminal send to the transmitter side user plane unit with message;
Whether the destination address that C, transmitter side user plane unit are judged message belongs to same virtual routing space with the address of transmitter side portable terminal, in this way, then to the service point mark and the virtual routing space mark of described message encapsulation transmitter side portable terminal, the message after the forwarding encapsulation is to the receiver side user plane unit;
Whether described service point mark in D, the receiver side user plane unit message after according to described encapsulation and virtual routing space marker for judgment transmitter side portable terminal and receiver side portable terminal belong to same service point, in this way, carry out respective handling according to the message of the described control law in the steps A after to described encapsulation.
2. the method for claim 1 is characterized in that, described control law comprises: 1) allow message to pass through; 2) dropping packets; 3) message redirecting is arrived operator's gateway.Described receiver side user plane unit is carried out one of following three kinds of processing according to described control law to sending the message correspondence: 1) be forwarded to the receiver side portable terminal; 2) dropping packets; 3) be redirected to operator's gateway.
3. method as claimed in claim 1 or 2, it is characterized in that, described service point is corresponding one by one with address pool, described address pool is local pool or nonlocal address pool, when the mobile terminal address method of salary distribution is the equipment of the core network method of salary distribution, the configuration local pool when the mobile terminal address method of salary distribution is DHCP or long-distance user's access authentication system mode, disposes nonlocal address pool; Service point and the related at least virtual routing space of address pool.
4. method as claimed in claim 1 or 2 is characterized in that, described portable terminal comprises mobile phone, Wimax terminal or uses the PC of data card.
5. the method that prevents to run foul of each other between portable terminal in the mobile network is characterized in that, comprises following steps:
A, the control law that the configuration portable terminal is visited mutually on core net;
B, transmitter side portable terminal send to the transmitter side user plane unit with message;
Whether the destination address that C, transmitter side user plane unit are judged message belongs to same service point with the address of transmitter side portable terminal, in this way, then to the service point mark of described message encapsulation transmitter side portable terminal, the message after the forwarding encapsulation is to the receiver side user plane unit;
Whether described service point marker for judgment transmitter side portable terminal and receiver side portable terminal in D, the receiver side user plane unit message after according to described encapsulation belong to same service point, in this way, carry out respective handling according to the message of the described control law in the steps A after to described encapsulation.
6. the system that prevents to run foul of each other between portable terminal in the mobile network is characterized in that, comprises on core net:
Configuration module is used to dispose the portable terminal control law of visit mutually, and configuration service point and address pool, and service point and address pool are with the incidence relation of virtual routing space;
User plane unit, be used to receive the message that the transmitter side portable terminal sends, and judge whether the destination address of described message is in identical virtual routing space with the transmitter side portable terminal, if then the service point mark and the virtual routing space mark of described message encapsulation transmitter side portable terminal are also transmitted; And whether belong to same service point according to the service point mark of described transmitter side portable terminal and virtual routing space marker for judgment transmitter side portable terminal and receiver side portable terminal, and when being, carry out respective handling according to the control law of the described access rule configuration module configuration message after to encapsulation.
7. system as claimed in claim 6 is characterized in that, the control law of described configuration module configuration comprises: 1) allow message to pass through; 2) dropping packets; 3) message redirecting is arrived operator's gateway.
8. as claim 6 or 7 described systems, it is characterized in that, the address pool that disposes in the described configuration module is local pool or nonlocal address pool, when the mobile terminal address method of salary distribution is the equipment of the core network method of salary distribution, the configuration local pool, when the mobile terminal address method of salary distribution is DHCP or long-distance user's access authentication system mode, dispose nonlocal address pool.
9. as claim 6 or 7 described systems, it is characterized in that described portable terminal comprises mobile phone, Wimax terminal or uses the PC of data card.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200810066433A CN101547185B (en) | 2008-03-27 | 2008-03-27 | Method and system for preventing mutual attack between mobile terminals in mobile network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200810066433A CN101547185B (en) | 2008-03-27 | 2008-03-27 | Method and system for preventing mutual attack between mobile terminals in mobile network |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101547185A true CN101547185A (en) | 2009-09-30 |
| CN101547185B CN101547185B (en) | 2012-09-05 |
Family
ID=41194077
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200810066433A Active CN101547185B (en) | 2008-03-27 | 2008-03-27 | Method and system for preventing mutual attack between mobile terminals in mobile network |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101547185B (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109617863A (en) * | 2018-11-27 | 2019-04-12 | 杭州电子科技大学 | A method of the mobile target based on game theory defends optimal defence policies to choose |
| CN110278558A (en) * | 2019-07-25 | 2019-09-24 | 迈普通信技术股份有限公司 | The exchange method and wlan system of message |
| CN113395368A (en) * | 2020-03-13 | 2021-09-14 | 阿里巴巴集团控股有限公司 | Access configuration method, access method and device |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101031095A (en) * | 2006-02-28 | 2007-09-05 | 西门子通信技术(北京)有限公司 | Method of mobile telecommunication system |
-
2008
- 2008-03-27 CN CN200810066433A patent/CN101547185B/en active Active
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109617863A (en) * | 2018-11-27 | 2019-04-12 | 杭州电子科技大学 | A method of the mobile target based on game theory defends optimal defence policies to choose |
| CN110278558A (en) * | 2019-07-25 | 2019-09-24 | 迈普通信技术股份有限公司 | The exchange method and wlan system of message |
| CN113395368A (en) * | 2020-03-13 | 2021-09-14 | 阿里巴巴集团控股有限公司 | Access configuration method, access method and device |
| CN113395368B (en) * | 2020-03-13 | 2024-05-03 | 阿里巴巴集团控股有限公司 | Access configuration method, access method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101547185B (en) | 2012-09-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| KR101141958B1 (en) | Method and system for correlating ip layer traffic and wireless layer elements in a umts/gsm network | |
| AU782376B2 (en) | System and method for using an IP address as a wireless unit identifier | |
| EP1240744B1 (en) | Prevention of spoofing in telecommunications systems | |
| US6925087B2 (en) | Packet transfer scheme using mobile terminal and router for preventing attacks using global address | |
| CN101553796B (en) | System and method for redirecting requests | |
| CN108307355A (en) | A kind of method of realizing group broadcasting of LPWAN Internet of Things | |
| CN103563440A (en) | Mobile communications network and method | |
| CN102215154A (en) | Access control method of network business and terminal | |
| JP2001518744A (en) | Lawful interception in telecommunications networks | |
| CN103067215A (en) | Method, application server, network database and system achieving heartbeat mechanism | |
| Kempf et al. | Requirements and functional architecture for an IP host alerting protocol | |
| Geng et al. | Defending wireless infrastructure against the challenge of DDoS attacks | |
| CN102316416A (en) | Access method for terminal and wireless communication network | |
| EP1547352B1 (en) | Mobile terminal identity protection through home location register modification | |
| Rao et al. | We know where you are! | |
| CN101547185B (en) | Method and system for preventing mutual attack between mobile terminals in mobile network | |
| CN102752266B (en) | Access control method and equipment thereof | |
| CN101031133B (en) | Method and apparatus for determining mobile-node home agent | |
| CA2475628A1 (en) | Automatic setting of security in communication network system | |
| Abdelrazek et al. | SigPloit: A new signaling exploitation framework | |
| RU2517438C2 (en) | Method and system for allocating delivery reports | |
| CN100466768C (en) | The system and method for monitoring the in and out SMS of the mobile office call of the group | |
| CN105052183A (en) | Proximity discovery method and device | |
| de Carvalho Macedo et al. | Attacks to mobile networks using SS7 vulnerabilities: a real traffic analysis | |
| CN108282753B (en) | Short message proxy forwarding method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |