CN101562805B - Method and system for re-locking positions - Google Patents

Method and system for re-locking positions Download PDF

Info

Publication number
CN101562805B
CN101562805B CN200910085504.7A CN200910085504A CN101562805B CN 101562805 B CN101562805 B CN 101562805B CN 200910085504 A CN200910085504 A CN 200910085504A CN 101562805 B CN101562805 B CN 101562805B
Authority
CN
China
Prior art keywords
hnb
henb
position information
address
ahr
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN200910085504.7A
Other languages
Chinese (zh)
Other versions
CN101562805A (en
Inventor
朱李
滕志猛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN200910085504.7A priority Critical patent/CN101562805B/en
Publication of CN101562805A publication Critical patent/CN101562805A/en
Application granted granted Critical
Publication of CN101562805B publication Critical patent/CN101562805B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses a method for re-locking positions, which comprises that: an access point home register (AHR) cancels old position information corresponding to a current internet protocol (IP) address of a Home eNodeB (HeNB)/Home NodeB (HNB); when the AHR acquires new position information corresponding to an updated IP address, and a new position is determined according to the new position information and re-registration is realized; and the re-locking that the HeNB/HNB moves to the new position is successfully realized. The invention also discloses a system for re-locking positions. Inthe system, a re-registration and locking realization unit is used for determining the new position and realizing the re-registration according to the new position information to successfully realize the re-locking of the new position in the state that the AHR acquires the new position information corresponding to the updated IP address. The method and the system solve the problem of position re- locking after the HeNB/HNB moves to the new position.

Description

Position relocking method and system
Technical Field
The present invention relates to a location locking technique for a wireless cellular communication System, and more particularly, to a method and System for re-locking a location of a Home Evolved NodeB (HeNB) or a Home NodeB (HNB) after movement in a security architecture of a Universal Mobile Telephone System (UMTS) network and an Evolved Packet System (EPS) network.
Background
HNBs are used to provide 3G wireless coverage for third generation mobile communications system (3G) handsets located within homes. The HNB is connected to an already existing residential broadband service. The HNB has a standard function of a base station NodeB and a Radio resource management function of a Radio Network Controller (RNC). Wherein the NodeB is an element of the 3G macro radio access network.
Fig. 1 is a schematic system structure of the HNB. In fig. 1, an interface between a User Equipment (UE) and an HNB of a third Generation Partnership Project (3 GPP) is a backhaul and compatible air interface in a Universal Terrestrial Radio Access Network (UTRAN). The HNB accesses the core network of the operator through a security gateway (SeGW). A broadband Internet Protocol (IP) backhaul between the HNB and the SeGW, in which information propagated is to be protected by a secure channel established between the HNB and the SeGW, may be insecure. The SeGW is used for mutual authentication between a core network of an operator and the HNB; a home base station Gateway (HNB GW, HNB Gateway) and a SeGW are logically separated entities in a core network of an operator, and are used for access control of a UE that is not allowed to close a Subscriber Group (CSG); operations and Maintenance Administration (OAM) requires secure communication, especially when the OAM is placed outside the operator's core network.
Fig. 2 is a schematic diagram of a system structure of the HeNB. Fig. 2 is similar to the system architecture of fig. 1, except that the HNB in fig. 1 is replaced by a HeNB, which differs from the HNB in that: the HeNB is an air interface connecting the UE of the 3GPP and an Evolved Universal Terrestrial Radio Access Network (EUTRAN); henbs are typically used for Long Term Evolution (LTE) systems, while HNBs are typically used for 3G systems.
Here, h (e) NB is a generic term of HNB and HeNB, and hereinafter, for the sake of brevity, HNB or HeNB is denoted by h (e) NB.
For security of h (e) NB, 3GPP TR33.820 defines 27 threats. These 27 threats are grouped into 7 broad categories, namely: compromise of h (e) NB credentials, physical attacks on h (e) NB, attacks on the construction of h (e) NB, attacks on the protocols of h (e) NB, attacks on the core network including attacks based on the h (e) NB location, attacks on the data and identity privacy of the user, and attacks on the radio resources and management. Of the 27 threats defined within 3GPP TR33.820, an h (e) NB location based attack is associated with operating the h (e) NB in an out-of-place location. Based on h (e) NB location attack, 3GPP TR33.820 provides a location locking technique to overcome the h (e) NB location attack, and the location locking technique mainly includes two aspects: h (e) location registration of NB; h (e) location authentication of NB.
Specifically, fig. 3 is a prior art h (e) NB location fix solution, defined in 3GPP TR33.820, for overcoming h (e) NB location based attacks. When the location registration of the h (e) NB based on the IP address occurs only at the initial start of the h (e) NB, as shown in fig. 3, the location locking solution of the h (e) NB includes the following steps:
step 101, h (e) NB sends a request message containing an IP address to an Access point Home Register (AHR).
Step 102, the AHR sends the Location information request message related to the IP address to a connection Session Location and redundancy Function (CLF).
Step 103, the CLF obtains the location identifier associated with the IP address from its database.
Step 104, the AHR determines the location of h (e) NB based on the location identifier, and registers the location of h (e) NB.
Step 105, AHR replies a response message to h (e) NB.
Here, for location registration, after the location registration of h (e) NB based on IP address is completed, the AHR stores the location identifier of h (e) NB as an attribute of h (e) NB, and uses it as a criterion for determining the location of h (e) NB. For location authentication, the location authentication of h (e) NB based on IP address occurs each time h (e) NB requests access to the network, it determines whether the location of h (e) NB has changed by comparing the location identifier stored in the AHR with the location identifier obtained from the CLF based on the IP address of h (e) NB.
However, in practical use, this position locking solution is very imperfect with respect to the breadth and flexibility of h (e) NB applications. Since h (e) NB can be moved, after h (e) NB has moved to a new location for various reasons, if this new location of h (e) NB cannot be relocked, h (e) NB will not be reused, and thus, emergency calls from this h (e) NB will not be reliably located or routed to the correct emergency call center, interception of legitimate location reports will also become impossible a priori. Furthermore, without a mechanism for relocking new locations, this would result in a significant loss of operator revenue when users can use h (e) NB in unauthorized areas, especially abroad. In addition, after the h (e) NB IP address based location is moved, if there is no mechanism for re-locking the new h (e) NB IP address based location, when an h (e) NB is placed in another area, the proxy server can use the same IP address as the h (e) NB to impersonate the properly registered h (e) NB for proxy attack.
In summary, the new requirements are: h (e) the new location of the NB after the movement must also be relocked to overcome the threat of an attack resulting from operating the h (e) NB in an unsuitable location, i.e., a solution for relocking the new location after the h (e) NB movement needs to be provided. Currently, there is no effective solution to this new need.
Disclosure of Invention
It is therefore an objective of the present invention to provide a method and system for position relocking, which solves the problem of position relocking after moving the h (e) NB to a new position, so as to overcome the threat of attack caused by operating the h (e) NB at an inappropriate position.
In order to achieve the purpose, the technical scheme of the invention is realized as follows:
a method of position relocking, the method comprising:
an access point local register AHR logs off old position information corresponding to a home evolved node B HeNB/home node B HNB and a current Internet protocol IP address;
the HeNB/HNB re-registers according to the IP address updated by the HeNB/HNB obtained by moving to the new position under the authorization of the AHR; and when the AHR acquires new position information corresponding to the IP address updated by the HeNB/HNB, determining the new position according to the new position information, realizing the re-registration of the HeNB/HNB, and successfully realizing the re-locking of the HeNB/HNB when moving to the new position.
Wherein, the AHR deregistering the old location information specifically includes:
the HeNB/HNB sends a position information logout request message to an AHR; the HeNB/HNB current IP address is encapsulated in the position information logout request message;
the AHR analyzes the HeNB/HNB current IP address from the position information logout request message, inquires the old position information according to the HeNB/HNB current IP address and logs out; and returning the successful logout message to the HeNB/HNB.
Wherein, before the AHR acquiring the new location information, the method further comprises:
a11, the HeNB/HNB sends a position information request message to an AHR; the IP address updated by the HeNB/HNB is encapsulated in the position information request message;
a12, AHR analyzes the IP address updated by HeNB/HNB from the position information request message, and encapsulates the IP address into the position information search request message to send to the CLF;
a13, when the CLF analyzes the IP address updated by the HeNB/HNB from the position information searching request message, and searches the new position information according to the IP address updated by the HeNB/HNB, the new position information is sent to the AHR.
Wherein, before the AHR acquiring the new location information, the method further comprises:
a21, the HeNB/HNB sends a position information request message to an AHR; the IP address updated by the HeNB/HNB is encapsulated in the position information request message;
a22, AHR analyzes the IP address updated by HeNB/HNB from the position information request message, and encapsulates the IP address into the position information search request message to send to CLF;
a23, when the CLF analyzes the IP address updated by the HeNB/HNB from the position information searching request message, and does not search the new position information according to the IP address updated by the HeNB/HNB, the IP address updated by the HeNB/HNB is sent to the network management center;
a24, when the network center checks that the IP address updated by the HeNB/HNB is available, the network management center registers new position information corresponding to the IP address updated by the HeNB/HNB in CLF and binds the new position information with the IP address updated by the HeNB/HNB; the CLF sends the binding result to the AHR;
the AHR further obtains the new location information from the binding result.
Wherein the method further comprises:
a31, the HeNB/HNB sends a position information request message to an AHR; the IP address updated by the HeNB/HNB is encapsulated in the position information request message;
a32, AHR analyzes the IP address updated by HeNB/HNB from the position information request message, and encapsulates the IP address into the position information search request message to send to CLF;
a33, when the CLF analyzes the IP address updated by the HeNB/HNB from the position information searching request message, and does not search the new position information according to the IP address updated by the HeNB/HNB, the IP address updated by the HeNB/HNB is sent to the network management center;
a34, when the network center checks that the IP address updated by the HeNB/HNB is unavailable, the re-registration of the HeNB/HNB fails; service access of the HeNB/HNB which fails to be registered again is not permitted, and the HeNB/HNB fails to be locked again when moving to a new position.
A position relocking system, the system comprising: a logout unit, an authorization unit and a re-registration and locking realization unit; wherein,
a logout unit used for AHR logout of old position information corresponding to HeNB/HNB current IP address;
the authorization unit is used for the HeNB/HNB to re-register according to the IP address updated by the HeNB/HNB obtained by moving the HeNB/HNB to a new position under the authorization of the AHR;
and the re-registration and locking realization unit is used for determining the new position according to the new position information and realizing the re-registration of the HeNB/HNB and successfully realizing the re-locking of the HeNB/HNB when the AHR acquires the new position information corresponding to the IP address updated by the HeNB/HNB.
The logout unit is further used for the AHR to acquire a position information logout request message from the HeNB/HNB, the AHR resolves the current IP address of the HeNB/HNB from the position information logout request message, and inquires the old position information according to the current IP address of the HeNB/HNB and logs out; and returning the successful logout message to the HeNB/HNB.
Wherein, this system still includes: a new location information sending unit, configured to send the obtained new location information to the re-registration implementing unit; the new position information is obtained in a specific manner as follows:
the HeNB/HNB sends a position information request message to an AHR; the AHR analyzes the IP address updated by the HeNB/HNB from the position information request message, encapsulates the IP address into the position information searching request message and sends the position information searching request message to the CLF; and resolving the IP address updated by the HeNB/HNB from the position information searching request message in the CLF, and searching the new position information state according to the IP address updated by the HeNB/HNB to obtain the new position information.
Wherein, this system still includes: a new location information sending unit, configured to send the obtained new location information to the re-registration implementing unit; the new position information is obtained in a specific manner as follows:
the HeNB/HNB sends a position information request message to an AHR; the AHR analyzes the IP address updated by the HeNB/HNB from the position information request message, encapsulates the IP address into the position information searching request message and sends the position information searching request message to the CLF; resolving the IP address updated by the HeNB/HNB from the position information searching request message in the CLF, and sending the IP address updated by the HeNB/HNB to a network management center under the state that the new position information is not searched according to the IP address updated by the HeNB/HNB; and the network center checks that the IP address updated by the HeNB/HNB is available, and the network management center registers new position information corresponding to the IP address updated by the HeNB/HNB in the CLF to acquire the new position information.
The AHR logs out old position information corresponding to the current IP address of H (e) NB; h (e) the NB moves to a new position under the authorization of the AHR, and the IP address updated by the H (e) NB is registered again; when the AHR acquires new position information corresponding to the IP address updated by the H (e) NB, the new position is determined according to the new position information, the re-registration of the H (e) NB is realized, and the re-locking of the H (e) NB to the new position is successfully realized.
By adopting the invention, the problem of position relocking after the H (e) NB moves to a new position is solved, thereby perfecting the existing position locking technology of the H (e) NB based on the IP address, and increasing the usability of the H (e) NB and the flexibility of the movement thereof. Overcomes various inconveniences and attack threats brought by position movement of H (e) NB in practical use.
Drawings
Fig. 1 is a schematic system structure of a conventional HNB;
fig. 2 is a schematic system structure diagram of a conventional HeNB;
fig. 3 is a schematic flow chart of the implementation of the position locking solution of h (e) NB in the prior art;
FIG. 4 is a schematic flow chart of the implementation of the method of the present invention;
FIG. 5 is a schematic flow chart illustrating an implementation of a method embodiment of the present invention;
FIG. 6 is a schematic flow chart illustrating the implementation of another embodiment of the method of the present invention;
fig. 7 is a schematic flow chart of an implementation of another embodiment of the method of the present invention.
Detailed Description
The basic idea of the invention is: h (e) the NB moves to a new position under the authorization of the AHR, and the IP address updated by the H (e) NB is registered again; when the AHR acquires new position information corresponding to the IP address updated by the H (e) NB, the new position is determined according to the new position information, the re-registration of the H (e) NB is realized, and the re-locking of the H (e) NB to the new position is successfully realized.
The following describes the embodiments in further detail with reference to the accompanying drawings.
As shown in fig. 4, a method of position relocking, the method comprising the steps of:
step 201, AHR deregisters old location information corresponding to h (e) NB current IP address.
Here, the specific processing procedure of step 201 includes the following steps:
step 201a, H (e) NB sends the position information logout request message to AHR; the location information deregistration request message is encapsulated with H (e) NB current IP address.
Step 201b, AHR analyzes H (e) NB current IP address from the position information logout request message, inquires the old position information according to H (e) NB current IP address and logs out; a deregistration success message is returned to h (e) NB.
Step 202, h (e) NB, under the authorization of AHR, may re-register according to the IP address updated by h (e) NB obtained by moving h (e) NB to a new location.
Step 203, when the AHR acquires new location information corresponding to the IP address updated by h (e) NB, determining a new location to which h (e) NB moves according to the new location information, and implementing re-registration of h (e) NB, and successfully implementing re-locking of h (e) NB moving to the new location.
Here, in the above technical solution constituted by step 201 to step 203, before the AHR acquiring new location information corresponding to the IP address updated by h (e) NB in step 203, the method further includes:
step 2021a, H (e) NB sends the location information request message to the AHR; the location information request message encapsulates the IP address updated by the h (e) NB.
Step 2021b, AHR parses the IP address updated by h (e) NB from the location information request message, encapsulates the IP address into the location information search request message, and sends the location information search request message to CLF.
Step 2021c, when the CLF parses the IP address updated by h (e) NB from the location information search request message, and searches for the new location information according to the IP address updated by h (e) NB, sends the new location information to the AHR.
After step 2021c is executed, the AHR may acquire new location information corresponding to the IP address updated by h (e) NB from the CLF, determine a new location to which h (e) NB moves according to the new location information, and implement re-registration of h (e) NB; the network side permits the service access of the H (e) NB realizing the re-registration and successfully realizes the re-locking of the H (e) NB to the new position.
Here, in step 203, before the AHR acquiring the new location information corresponding to the IP address updated by h (e) NB, the method further includes:
step 2022a, H (e) NB sends the location information request message to the AHR; the location information request message encapsulates the IP address updated by the h (e) NB.
Step 2022b, AHR parses the IP address updated by h (e) NB from the location information request message, encapsulates the IP address into the location information search request message, and sends the location information search request message to CLF.
Step 2022c, when the CLF parses the IP address updated by h (e) NB from the location information search request message, and does not search new location information according to the IP address updated by h (e) NB, sends the IP address updated by h (e) NB to the network management center on the network side.
Step 2022d, when the network center checks that the IP address updated by h (e) NB is available, the network management center registers new location information corresponding to the IP address updated by h (e) NB in the CLF, and binds the new location information with the IP address updated by h (e) NB; the CLF sends the binding result to the AHR.
After step 2022d is executed, the AHR further acquires new location information corresponding to the IP address updated by h (e) NB from the binding result sent by the CLF, determines a new location to which h (e) NB moves according to the new location information, and implements re-registration of h (e) NB; the network management center grants service access to the H (e) NB implementing the re-registration and successfully implements the re-locking of the H (e) NB to the new location.
Here, the method further comprises the steps of:
step 2023a, H (e) NB sends the location information request message to the AHR; the location information request message encapsulates the IP address updated by the h (e) NB.
Step 2023b, AHR parses the IP address updated by h (e) NB from the location information request message, encapsulates it in the location information search request message, and sends it to CLF.
Step 2023c, when the CLF parses the IP address updated by h (e) NB from the location information search request message, and does not search the new location information according to the IP address updated by h (e) NB, sends the IP address updated by h (e) NB to the network management center on the network side.
Step 2023d, when the network center checks that the IP address updated by h (e) NB is not available, at this time, the AHR does not obtain the new location information corresponding to the IP address updated by h (e) NB, and the re-registration of h (e) NB fails; the network management center does not grant service access to the h (e) NB that failed the re-registration, and the h (e) NB fails to relock to move to a new location.
In summary, the present invention mainly includes the following contents:
firstly, the method comprises the following steps: when the location of an H (e) NB is about to change, such as H (e) NB is moved from one residence to another by its owner, H (e) NB sends its location information deregistration request message to the AHR based on the current IP address of H (e) NB.
Secondly, the method comprises the following steps: after receiving the logout request message, the AHR logs out the existing location information of h (e) NB based on the current IP address of h (e) NB, replies h (e) NB that the logout was successful, and authorizes the h (e) NB to re-register the corresponding new location based on the IP address updated by the h (e) NB obtained by moving to the new location.
Thirdly, the method comprises the following steps: h (e) after the NB moves and is installed at a new position, the NB sends a position request message to the AHR according to the IP address of the new position, namely the obtained IP address updated by the H (e) NB; the AHR sends a location information search request message to the CLF according to the IP address updated by the H (e) NB of the new location, so as to inquire and search new location information corresponding to the IP address updated by the H (e) NB.
Fourthly: the CLF searches its database to determine if there is new location information corresponding to the IP address updated by h (e) NB.
Fifth, the method comprises the following steps: if the search result is yes, the AHR determines a new position of H (e) NB according to new position information corresponding to the IP address updated by the H (e) NB based on the new position in the CLF, and the AHR re-registers the new position of the H (e) NB, the core network permits service access of the H (e) NB based on the IP address updated by the H (e) NB, and the H (e) NB successfully re-locks the new position based on the IP address updated by the H (e) NB; if the search result is not found, the CLF sends the IP address updated by the H (e) NB to the network management center.
Sixth: after receiving the updated IP address of h (e) NB, the network management center checks whether the updated IP address of h (e) NB is available, that is, checks whether the updated IP address of h (e) NB belongs to the operator of h (e) NB.
Seventh: if the check result is negative, the network management center does not permit the service access of H (e) NB based on the IP address updated by H (e) NB, and sends a rejection reason to H (e) NB, and the new position relocking of the NB based on the IP address updated by H (e) NB fails; if the check result is yes, the network management center registers new location information based on the IP address updated by the H (e) NB in the database of the CLF, binds the new location information with the IP address updated by the H (e) NB, and sends the binding result to the AHR.
Eighth: the AHR determines a new location of h (e) NB according to new location information corresponding to the IP address updated by h (e) NB, which is registered in the CLF database by the network management center, and registers the new location of h (e) NB.
Ninth: the network grants H (e) NB service access based on the H (e) NB updated IP address, and the new location relock of the NB based on the H (e) NB updated IP address is successful.
The first method embodiment is as follows: h (e) an embodiment of successful relock of the NB based on the new location of the IP address, as shown in fig. 5, an implementation flow of the embodiment of the method includes the following steps:
step 301, when the location of an h (e) NB is about to change, for example, h (e) NB is moved by its owner from one residence to another, h (e) NB sends its location information deregistration request message based on the current IP address of h (e) NB to the AHR.
Step 302, after receiving the logout request message, the AHR logs out the existing location information of h (e) NB based on the current IP address of h (e) NB.
Step 303, AHR replies to h (e) NB that the location deregistration based on h (e) NB's current IP address is successful, and h (e) NB is authorized to re-register the new location based on the IP address updated by h (e) NB obtained by moving to the new location.
Step 304, h (e) after NB moves and installs to the new location, it sends a location request message to the AHR according to the IP address updated by h (e) NB of its new location.
Step 305, the AHR sends a location information search request message to the CLF according to the IP address updated by the h (e) NB of the new location.
Step 306, the CLF searches its database and determines if there is new location information corresponding to the IP address updated by h (e) NB, and if so, performs step 307.
Step 307, the CLF sends the new location information corresponding to the IP address updated by h (e) NB in its database to the AHR.
Step 308, the AHR determines the new location of h (e) NB according to the new location information corresponding to the IP address updated by h (e) NB based on the new location in CLF, and the AHR re-registers the new location of h (e) NB; the network grants H (e) NB service access based on the H (e) NB updated IP address, and the new location relock of the NB based on the H (e) NB updated IP address is successful.
The second embodiment of the method is as follows: h (e) an embodiment of successful relocking of the NB based on the new location of the IP address, as shown in fig. 6, an implementation procedure of the embodiment of the present method includes the following steps:
step 401, when the location of an h (e) NB is about to change, for example, h (e) NB is moved by its owner from one residence to another, h (e) NB sends its location information deregistration request message based on the current IP address of h (e) NB to the AHR.
Step 402, after the AHR receives the deregistration request message, it deregisters the existing location information of h (e) NB based on the current IP address of h (e) NB.
Step 403, AHR replies h (e) that location deregistration of NB based on h (e) NB current IP address is successful, and h (e) NB is authorized to perform re-registration of new location based on IP address updated by h (e) NB obtained by moving to new location.
Step 404, h (e) after NB moves and installs to the new location, it sends a location request message to the AHR according to the IP address updated by h (e) NB of the new location.
Step 405, the AHR sends a location information search request message to the CLF according to the IP address updated by the h (e) NB of the new location.
Step 406, the CLF searches its database and determines if there is new location information corresponding to the IP address updated by h (e) NB, and if not, step 407 is performed.
Step 407, the CLF sends the IP address updated by h (e) NB to the network management center.
Step 408, the network management center checks whether the IP address updated by the h (e) NB is available, and the check result is yes.
Step 409, the network management center registers new location information based on the IP address updated by h (e) NB in the CLF database, binds the new location information with the IP address updated by h (e) NB, and sends the binding result to the AHR.
Step 410, the AHR determines a new location of h (e) NB according to new location information, which is registered in the CLF database by the network management center and corresponds to the IP address updated by h (e) NB, and the AHR registers the new location of h (e) NB; the network grants H (e) NB service access based on the H (e) NB updated IP address, and the new location relock of the NB based on the H (e) NB updated IP address is successful.
The third method embodiment is as follows: h (e) an embodiment of failure of relocking of the NB based on the new location of the IP address, as shown in fig. 7, an implementation flow of the embodiment of the method includes the following steps:
step 501, when the location of an h (e) NB is about to change, for example, h (e) NB is moved by its owner from one residence to another, h (e) NB sends its location information deregistration request message based on the current IP address of h (e) NB to AHR.
Step 502, after the AHR receives the logout request message, it logs out the existing location information of h (e) NB based on the current IP address of h (e) NB.
Step 503, AHR replies h (e) that location deregistration of NB based on h (e) NB's current IP address is successful, and authorizes h (e) NB to re-register new location based on the IP address updated by h (e) NB obtained by moving to the new location.
Step 504, h (e) after NB moves and installs to the new location, it sends a location request message to the AHR according to the IP address updated by h (e) NB of the new location.
And step 505, the AHR sends a location information search request message to the CLF according to the IP address updated by the h (e) NB of the new location.
Step 506, the CLF searches its database and determines if there is new location information corresponding to the IP address updated by h (e) NB, and if not, performs step 507.
And step 507, the CLF sends the IP address updated by the H (e) NB to the network management center.
Step 508, the network management center checks whether the IP address updated by the h (e) NB is available, and the check result is no.
Step 509, the network management center does not grant the service access of h (e) NB based on the IP address updated by h (e) NB, and sends a reject reason to h (e) NB, which fails to relock the new location of the IP address updated by h (e) NB.
A position relocking system, the system comprising: a logout unit, an authorization unit and a re-registration and lock realization unit. Wherein, the logout unit is used for AHR to logout old position information corresponding to the current IP address of H (e) NB. The authorization unit is used for the H (e) NB to re-register under the authorization of the AHR according to the IP address updated by the H (e) NB which is obtained by moving the H (e) NB to a new position. The re-registration and locking implementation unit is used for determining a new position according to the new position information when the AHR acquires the new position information corresponding to the IP address updated by the H (e) NB, implementing re-registration of the H (e) NB, and successfully implementing re-locking of the H (e) NB to the new position.
Here, the logout unit is further used for the AHR to obtain a location information logout request message from the h (e) NB, the AHR analyzes the h (e) NB current IP address from the location information logout request message, and inquires and logs out the old location information according to the h (e) NB current IP address; a deregistration success message is returned to h (e) NB.
Here, the system further includes: a new location information sending unit, configured to send the obtained new location information to the re-registration implementing unit; the new position information is obtained in a specific manner as follows:
h (e) NB sends the location information request message to AHR; AHR analyzes the IP address updated by H (e) NB from the request message of the position information, and encapsulates the IP address into the request message of the position information search and sends the request message to CLF; and the CLF analyzes the IP address updated by the H (e) NB from the position information searching request message, and acquires the new position information under the state that the new position information is searched according to the IP address updated by the H (e) NB.
Here, the system further includes: a new location information sending unit, configured to send the obtained new location information to the re-registration implementing unit; the new position information is obtained in a specific manner as follows:
h (e) NB sends the location information request message to AHR; AHR analyzes the IP address updated by H (e) NB from the request message of the position information, and encapsulates the IP address into the request message of the position information search and sends the request message to CLF; analyzing the IP address updated by H (e) NB from the position information search request message by the CLF, and sending the IP address updated by H (e) NB to a network management center under the state that no new position information is searched according to the IP address updated by H (e) NB; and the network center checks that the IP address updated by the H (e) NB is available, and the network management center registers new position information corresponding to the IP address updated by the H (e) NB in the CLF to acquire the new position information.
The above description is only a preferred embodiment of the present invention, and is not intended to limit the scope of the present invention.

Claims (9)

1. A method of position relocking, the method comprising:
an access point local register AHR logs off old position information corresponding to a current Internet protocol IP address of a home evolved node B HeNB/home node B HNB;
the HeNB/HNB re-registers according to the IP address updated by the HeNB/HNB obtained by moving to the new position under the authorization of the AHR; and when the AHR acquires new position information corresponding to the IP address updated by the HeNB/HNB, determining the new position according to the new position information, realizing the re-registration of the HeNB/HNB, and successfully realizing the re-locking of the HeNB/HNB when moving to the new position.
2. The method of claim 1, wherein the AHR deregistering the old location information specifically comprises:
the HeNB/HNB sends a position information logout request message to an AHR; the HeNB/HNB current IP address is encapsulated in the position information logout request message;
the AHR analyzes the HeNB/HNB current IP address from the position information logout request message, inquires the old position information according to the HeNB/HNB current IP address and logs out; and returning the successful logout message to the HeNB/HNB.
3. The method of claim 2, wherein prior to the AHR obtaining the new location information, further comprising:
a11, the HeNB/HNB sends a position information request message to an AHR; the IP address updated by the HeNB/HNB is encapsulated in the position information request message;
a12, AHR analyzes the IP address updated by HeNB/HNB from the position information request message, and encapsulates the IP address into the position information search request message to send to the CLF;
a13, when the CLF analyzes the IP address updated by the HeNB/HNB from the position information searching request message, and searches the new position information according to the IP address updated by the HeNB/HNB, the new position information is sent to the AHR.
4. The method of claim 2, wherein prior to the AHR obtaining the new location information, further comprising:
a21, the HeNB/HNB sends a position information request message to an AHR; the IP address updated by the HeNB/HNB is encapsulated in the position information request message;
a22, AHR analyzes the IP address updated by HeNB/HNB from the position information request message, and encapsulates the IP address into the position information search request message to send to CLF;
a23, when the CLF analyzes the IP address updated by the HeNB/HNB from the position information searching request message, and does not search the new position information according to the IP address updated by the HeNB/HNB, the IP address updated by the HeNB/HNB is sent to the network management center;
a24, when the network management center checks that the IP address updated by the HeNB/HNB is available, the network management center registers new position information corresponding to the IP address updated by the HeNB/HNB in CLF and binds the new position information with the IP address updated by the HeNB/HNB; the CLF sends the binding result to the AHR;
the AHR further obtains the new location information from the binding result.
5. The method of claim 2, further comprising:
a31, the HeNB/HNB sends a position information request message to an AHR; the IP address updated by the HeNB/HNB is encapsulated in the position information request message;
a32, AHR analyzes the IP address updated by HeNB/HNB from the position information request message, and encapsulates the IP address into the position information search request message to send to CLF;
a33, when the CLF analyzes the IP address updated by the HeNB/HNB from the position information searching request message, and does not search the new position information according to the IP address updated by the HeNB/HNB, the IP address updated by the HeNB/HNB is sent to the network management center;
a34, when the network management center checks that the IP address updated by the HeNB/HNB is unavailable, the re-registration of the HeNB/HNB fails; service access of the HeNB/HNB which fails to be registered again is not permitted, and the HeNB/HNB fails to be locked again when moving to a new position.
6. A position relocking system, the system comprising: a logout unit, an authorization unit and a re-registration and locking realization unit; wherein,
a logout unit used for AHR logout of old position information corresponding to HeNB/HNB current IP address;
the authorization unit is used for the HeNB/HNB to re-register according to the IP address updated by the HeNB/HNB obtained by moving the HeNB/HNB to a new position under the authorization of the AHR;
and the re-registration and locking realization unit is used for determining the new position according to the new position information and realizing the re-registration of the HeNB/HNB and successfully realizing the re-locking of the HeNB/HNB when the AHR acquires the new position information corresponding to the IP address updated by the HeNB/HNB.
7. The system of claim 6 wherein the deregistration unit is further configured to the AHR obtaining a location information deregistration request message from the HeNB/HNB, the AHR parsing the current IP address of the HeNB/HNB from the location information deregistration request message, querying for the old location information according to the current IP address of the HeNB/HNB and deregistering; and returning the successful logout message to the HeNB/HNB.
8. The system of claim 7, further comprising: a new location information sending unit, configured to send the obtained new location information to the re-registration and lock implementing unit; the new position information is obtained in a specific manner as follows:
the HeNB/HNB sends a position information request message to an AHR; the AHR analyzes the IP address updated by the HeNB/HNB from the position information request message, encapsulates the IP address into the position information searching request message and sends the position information searching request message to the CLF; and resolving the IP address updated by the HeNB/HNB from the position information searching request message in the CLF, and searching the new position information state according to the IP address updated by the HeNB/HNB to obtain the new position information.
9. The system of claim 7, further comprising: a new location information sending unit, configured to send the obtained new location information to the re-registration and lock implementing unit; the new position information is obtained in a specific manner as follows:
the HeNB/HNB sends a position information request message to an AHR; the AHR analyzes the IP address updated by the HeNB/HNB from the position information request message, encapsulates the IP address into the position information searching request message and sends the position information searching request message to the CLF; resolving the IP address updated by the HeNB/HNB from the position information searching request message in the CLF, and sending the IP address updated by the HeNB/HNB to a network management center under the state that the new position information is not searched according to the IP address updated by the HeNB/HNB; and the network management center checks that the IP address updated by the HeNB/HNB is available, and registers new position information corresponding to the IP address updated by the HeNB/HNB in the CLF to acquire the new position information.
CN200910085504.7A 2009-05-22 2009-05-22 Method and system for re-locking positions Expired - Fee Related CN101562805B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN200910085504.7A CN101562805B (en) 2009-05-22 2009-05-22 Method and system for re-locking positions

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN200910085504.7A CN101562805B (en) 2009-05-22 2009-05-22 Method and system for re-locking positions

Publications (2)

Publication Number Publication Date
CN101562805A CN101562805A (en) 2009-10-21
CN101562805B true CN101562805B (en) 2014-03-19

Family

ID=41221384

Family Applications (1)

Application Number Title Priority Date Filing Date
CN200910085504.7A Expired - Fee Related CN101562805B (en) 2009-05-22 2009-05-22 Method and system for re-locking positions

Country Status (1)

Country Link
CN (1) CN101562805B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101715177B (en) * 2009-11-05 2014-03-19 中兴通讯股份有限公司 Position locking method for network equipment and position locking system
CN102056164B (en) 2009-11-10 2015-04-01 中兴通讯股份有限公司 Method for accessing home base station into network and home base station management server
CN101730189B (en) * 2009-11-11 2014-12-10 中兴通讯股份有限公司 Method and system for locking femtocell positions
CN101778471B (en) * 2010-01-14 2015-08-12 中兴通讯股份有限公司 A kind of method of locking femtocell positions

Non-Patent Citations (7)

* Cited by examiner, † Cited by third party
Title
(Release 8).《3GPP TR 33.820 V8.0.0,3rd Generation Partnership Project
(Release 8)》.2009,
3GPP.3GPP TR 33.820 V8.0.0,3rd Generation Partnership Project
3GPP.3GPP TR 33.820 V8.0.0,3rd Generation Partnership Project Technical Specification Group Service and System Aspects Security of H(e)NB;(Release 8).《3GPP TR 33.820 V8.0.0,3rd Generation Partnership Project (Release 8)》.2009, *
Security of H(e)NB
Technical Specification Group Service and System Aspects
ZTE Corporation等.3GPP TSG-SA3 (Security),S3-090137,pCR for an Additional Part to TR 33.820 section 7.8 on Location Locking Mechanisms.《3GPP TSG-SA3 (Security),S3-090137,pCR for an Additional Part to TR 33.820 section 7.8 on Location Locking Mechanisms》.2009, *

Also Published As

Publication number Publication date
CN101562805A (en) 2009-10-21

Similar Documents

Publication Publication Date Title
RU2745719C2 (en) Implementation of inter-network connection function using untrusted network
JP5484487B2 (en) Method and apparatus in a communication network
KR102315881B1 (en) Mutual authentication between user equipment and an evolved packet core
EP1692903B1 (en) Contex transfer in a communication network comprising plural heterogeneous access networks
EP2276281B1 (en) Method, system and device for obtaining a trust type of a non-3gpp access system
US8711846B2 (en) Network attachment for IMS systems for legacy CS UE with home node B access
KR101516266B1 (en) Network registration procedures
US20150334615A1 (en) System and method for identifying a subscriber in a network environment
EP2624499B1 (en) Method of assigning a user key in a convergence network
EP2227060A2 (en) Telecommunications Networks and Devices
US9294965B2 (en) Handover control system, user terminal, signaling relay apparatus, and session control apparatus
EP2740299B1 (en) Method and apparatus for distributing wireless local area network access information
WO2009151553A1 (en) Method for handling roaming of mobile device to restricted area
JP2017034470A (en) Subscriber information registration method, communication service device, and program
CN101562805B (en) Method and system for re-locking positions
EP2520109B1 (en) Method for interworking among wireless technologies
US9031566B2 (en) Home base station access method, home base station system and home base station access point
US8787905B2 (en) Method and check node for locking location of user network device
CN101730189B (en) Method and system for locking femtocell positions
CN101715177B (en) Position locking method for network equipment and position locking system
CN101674682A (en) Method and system for relocking position of home base station
CN101646222B (en) Method and system for relocking position of home base station
Wu et al. uLIPA: A universal local IP access solution for 3GPP mobile networks

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20140319

Termination date: 20170522