CN101626623A - User access control method - Google Patents
User access control method Download PDFInfo
- Publication number
- CN101626623A CN101626623A CN200810137898A CN200810137898A CN101626623A CN 101626623 A CN101626623 A CN 101626623A CN 200810137898 A CN200810137898 A CN 200810137898A CN 200810137898 A CN200810137898 A CN 200810137898A CN 101626623 A CN101626623 A CN 101626623A
- Authority
- CN
- China
- Prior art keywords
- user
- hnb
- home
- message
- base
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention relates to a user access control method comprising the following steps: a home base station sends information to a home base station gateway, wherein the information includes the information on the measurement of surrounding cells by user equipment (UE) and the non-access stratum (NAS) information which is sent to a core network node by the UE; the home base station gateway analyzes the NAS information so as to obtain the user identification contained in the NAS information; the home base station gateway compares the user identification and a user group list and decides if the UE is allowed to be accessed; and the home base station gateway sends the response of NAS information to the home base station and informs the home base station of the UE access indication. The invention simplifies the complexity of a home node B (HNB), improves the safety performance of the HNB and enables the user to reside in the HNB under the condition of the coverage of a micro cell nearby or reside in the micro cell.
Description
Technical field
The present invention relates to the communications field, particularly support HNB carries out access control to UE method.
Background technology
The system configuration of SAE as shown in Figure 1.Be description below to Fig. 1 SAE system configuration.
101 subscriber equipmenies (hereinafter to be referred as UE) are the terminal equipments that is used for receiving data.102 EUTRAN are the Radio Access Networks among the evolution system SAE, also can be ENB, be responsible for providing the interface of access of radio network, and be connected by the S1 interface with user plane entity 104 Serving Gateway with the mobile management entity 103MME of mobile phone to the LTE mobile phone.103MME is in charge of mobile context, the session context of subscriber equipment, preserves user and security-related information.104 Serving Gateway mainly provide the function of user plane.S1-MME interface is responsible for providing RAB to set up to UE, and the message that UE is sent to MME is carried out the forwarding from wireless access network.Some is similar for function that 103MME and 104 ServingGateway combine and original 106SGSN (GPRS (hereinafter to be referred as GPRS) support node), and MME and Serving Gateway might be in same physical entity.105PDN Gateway is responsible for functions such as charging, Lawful Interception.Serving Gateway and PDN Gateway might be in same physical entity.106SGSN is that the transmission for data provides route among the present UMTS.Existing SGSN finds corresponding Gateway GPRS Support Node (hereinafter to be referred as GGSN) according to access point name (hereinafter to be referred as APN).107 HSS are local ownership subsystems of subscriber equipment, it is responsible for preserving user's information, comprises the current location of subscriber equipment, the address of service node, user's security-related information, packet data protocol (hereinafter to be referred as PDP) context that subscriber equipment activates or the like.108PCRF provides Qos policy and charging criterion by the S7 interface.
Usually, customer traffic is to 104 Serving Gateway through 105PDN Gateway, Serving Gateway sends to the ENB at UE place to data by GPRS Tunnel Protocol (hereinafter to be referred as GTP) passage, and ENB sends to corresponding user equipment to data.
EPC is the core network of evolution, comprises MME and S-GW.Wherein each eNB links to each other with a plurality of MME in MME pond (Pool).Each eNodeB links to each other with a plurality of S-GW among the S-GW Pool.Interface between ENodeB and the eNodeB is called X2 interface.
Fig. 2 is the system construction drawing of 3G HNB.3G HNB is the base station that is used in family, can also be applied to places such as university, company.HNB is a plug and play.Be with the difference of common macro base station: common not every subscriber equipment can insert HNB.Can insert the HNB of family such as the subscriber equipment that has only subscriber household, perhaps this household agrees the subscriber equipment that other can insert.Have only the employee of company and the affiliate of its company permission to insert in a company.There is the one group of HNB HNB of same company (as be used in) of identical access customer group to be called closed user group (hereinafter to be referred as CSG, Closed Subscriber Group).Under 3G HNB system, the closed user group list records be the permanent identification that can be linked into the user of certain HNB, for example, IMSI.3G HNB is connected to gateway, and gateway is connected to above the SGSN.It between HNB and the gateway Iuh interface.It between gateway and the SGSN traditional Iu interface.
The owner of HNB can join the user group list the inside to the user under the supervision of operator.Network is preserved user group list.This user group list can download on the HNB connecting system (for example HNB or HNB GW), below the user moves to the covering of HNB, the user can initiate RA UpdateRequest message, HNB resolves RA Update Request message, perhaps resolve RRC message, if what comprise in the message is user's temporary mark, network is not known user's permanent identification, HNB forges a NAS message-UE identification request message, send to UE, requirement obtains user's IMSI, HNB sends to this IMSI above the gateway then, and gateway judges by comparing user's IMSI user group list whether the user can insert this HNB, if can not, GW sends message and tells HNB.HNB refusal RA Update message.If can insert, GW also sends message and tells HNB, and HNB arrives GW to RA UpdateRequest forwards.GW and then send to CN.In this scheme, user's access control is needed two steps, first step is set up the P-TMSI that obtains the user in message or the RA Update Request message at RRC, and this P-TMSI sends to HNB under the non-encrypted situation.Second step, HNB is desirable, and the user sends IMSI, and IMSI also sends to HNB under unencrypted situation.
This solution has been brought complexity to HNB.Not only GW need preserve user group list, and HNB also needs to preserve.And, the safety of system has also been brought threat.In the UMTS system, the corresponding relation of IMSI and P-TMSI not aloft interface transmit with unencrypted mode.IMSI is two kinds of situations below, interface transmission aloft.In the Attach process, IMSI is the non-encrypted network that sends to, and network authenticates the user, and network allocation P-TMSI sends to UE with the message of encrypting then, and that later signaling is used is P-TMSI.If that send in Attach Request or the RA UpdateRequest message is P-TMSI, network can not find user's contextual information, and network sends Identity Request, requires to obtain user's IMSI.Obtain after the IMSI, network must carry out verification process, guarantees that the user is a legal users.And present solution after HNB obtains IMSI, does not have a verification process, and like this, 3G HNB can not guarantee with the same security performance of UMTS.
And, if refusing user's has been used " routing region updating refusal " message, when the reason of refusal is " band of position does not allow ", " band of position does not have proper cell ", " band of position roaming does not allow ", UE can be kept at RAI on the SIM card, at 24 hours, perhaps can not send the RA update inquiry information at same RA within 12 hours.Because under the situation of HNB, RA can reuse, so, with " routing region updating refusal " message UE is got back to below oneself the HNB, might can not initiate the RA update inquiry information.Scheme is arranged at present, UE can be resided in above non-oneself the HNB, as long as this HNB is with the own identical RA of HNB use.But, like this, when the user carries out service request, request that can only refusing user's.
As mentioned above,, brought complexity, and present solution can not guarantee that 3G HNB system is with the same security performance of UMTSI to HNB because HNB preserves user group list.
Summary of the invention
The purpose of this invention is to provide the method that a kind of HNB of support gateway carries out user's access control.
For achieving the above object, a kind of method that the user is carried out access control comprises step:
Base station from home sends message to home base-station gateway, comprises the non access stratum NAS message that UE sends to core network node to the metrical information and the UE of peripheral cell in the described message;
Home base-station gateway is resolved non-access layer information, the user ID that obtains comprising in the non access stratum NAS message;
Whether home base-station gateway contrast user ID and user group list, decision can allow UE to insert;
Home base-station gateway sends the response of NAS message to base station from home, informs the access indication of base station from home to UE simultaneously.
The present invention has reduced the complexity of HNB, improves security performance, and can only reside in this HNB under the situation that allows the user have macrocell to cover around, perhaps resides in macrocell.
Description of drawings
Fig. 1 is the network structure of SAE;
Fig. 2 is the structure chart of 3G HNB;
Fig. 3 is embodiments of the invention;
Fig. 4 is the action flow chart of base-station gateway of the present invention;
Fig. 5 is the flow chart that 3G HNB GW control user inserts;
Fig. 6 is the flow chart that 3G HNB GW control user inserts.
Embodiment
Embodiments of the invention are that example is described with 3G HNB, but the invention is not restricted to 3G HNB, also comprise the HNB under LTE HNB and other connecting systems.
Embodiments of the invention one as shown in Figure 3.Be detailed description below to this figure.In the following description the technology that has nothing to do with the present invention has been ignored detailed technical descriptioon.
RRC between 301 steps: UE foundation and the 3G HNB connects.From the angle of UE, UE does not distinguish macro base station and base station from home.If UE is in idle pulley, find that as the user RAI at current area place is inconsistent with the RAI that UE preserves, the user will initiate the process of routing update.Perhaps when user's start, the user will initiate the Attach process; Perhaps the routing update clock has arrived updated time, and UE will initiate periodic routing update process.Under these scenes, UE will at first set up with the RRC between the base station from home and connect.When setting up the RRC connection, UE reports the measurement report to peripheral cell.302 steps, UE sends non-access layer information, and for example " the routing update request information, perhaps " Attach request information or " service request " message are given base station from home in transmission.
303 steps, base station from home is transmitted to home base-station gateway to non-access layer information.In this step, the measurement report that base station from home is received 301 steps also sends to gateway.Identify if the measurement result that HNB receives from UE is the physical layer ID with the sub-district, optionally, HNB can change into cell ID UTRAN under to physical layer identifications, and the cell identification list of measurement is sent to base-station gateway.
304 steps, home base-station gateway is resolved non-access layer information, the user ID that obtains comprising in the non-access layer information.If user ID is permanent user ID, IMSI carries out 307 steps.If the sign that comprises in the non-access layer information is user's a temporary mark, whether the base-station gateway inspection has preserved the mobile management context of UE.The mobile management contextual information has comprised user's permanent identification.Home base-station gateway is checked and whether has been preserved this user's mobile management context according to user's the temporary mark and the signing messages of temporary mark.If can find the contextual information of subscriber equipment according to P-TMSI, home base-station gateway obtains user's permanent identification from contextual information.If base-station gateway is not preserved the contextual information of subscriber equipment, carry out 305 steps.
305 steps: base-station gateway is forged a message " identification request ", sends to UE.This message is arranged to require to obtain user's permanent identification IMSI.
306 steps: UE sends response message, and message comprises user's permanent identification IMSI.
307 steps: base-station gateway has been preserved the tabulation of the user ID that allows to be linked into this base station from home.Form can be as follows:
HNB?ID1:IMSI1,IMSI2,IMSI3…
HNB?ID2:IMSI1,IMSI2,IMSI3…
In above-mentioned steps, base-station gateway has obtained user's permanent identification, by checking the user list of this base station from home, sees whether this user's permanent identification is kept at the user list the inside, can judge whether the user is allowed to access.If the user can insert this base station, carry out 308 steps, otherwise carry out 309 steps, perhaps 310 steps.
308 steps: base-station gateway is forwarded to SGSN to the non-access layer information of 301 steps.Non-access layer information can be " routing region updating request ", perhaps " Attach request ", perhaps " service request " message.Carry out 310 steps then.
309 steps: the measurement report information that base-station gateway is reported according to the base station, check that UE has not in the coverage of macrocell, if the covering of macrocell is arranged, base-station gateway can send the message of 310 steps, suggestion HNB is reset to the user on the macrocell.Base-station gateway is checked the user list of the base station under its control, whether check the base station from home under the control of GW, the base station that does not have to allow this user's access is arranged, if interface is arranged between gateway, whether the gateway around can also checking has this user's HNB, if no, base-station gateway can send the message " routing region updating refusal " of 309 steps to UE.Send the message of 311 steps then, allow HNB discharge RRC and connect.If have, even perhaps there is not this user's HNB under the control of GW, base-station gateway also can carry out 308 steps, " the routing region updating request information is given SGSN; SGSN can send " Routing Area acceptance " message and give UE, carries out 311 step then, allows HNB discharge RRC and connects in forwarding.If there is not the covering of macrocell on every side, that can only allow the user reside in this above HNB, base-station gateway carries out 308 steps, " the routing region updating request information is given SGSN; SGSN can send " Routing Area acceptance " message and give UE; then can be by the message of 311 steps, and notice HNB can only allow this user carry out the calling of urgency traffic in forwarding.
310 steps: base-station gateway has been received " Routing Area acceptance " message that SGSN sends, and is transmitted to UE.
311 steps: gateway sends message to HNB, and this user of notice HNB can not be linked on this HNB.Suggestion HNB discharges RRC and connects, and perhaps the user is reset to macrocell.
Gateway sends message to HNB, and notice HNB discharges RRC and connects.
Gateway sends message to HNB, and identifying this user is special user, can only insert urgency traffic.Because if there is not the covering of macrocell on every side, that can only allow the user reside in this above HNB, in 310 steps, transmission be " routing region updating acceptance " message, that can initiate to set up the process that RRC connects again when the user has professional the time.If it is a special user that HNB in 311 step, knows this user, be that HNB judges that RRC connects the reason of setting up, and only allows this user to carry out the calling of urgency traffic because not having macrocell to cover on every side just resides in above the HNB.Not urgency traffic, just do not set up RRC and connect.
312 steps: the message that the base station sends according to base-station gateway, discharge RRC and connect, perhaps allow UE gravity treatment macrocell.
Fig. 4 is the action flow chart of base-station gateway.
401 steps, base-station gateway are received non-access layer information " routing update request information, perhaps " Attach request information.Home base-station gateway is resolved non-access layer information, the user ID that obtains comprising in the non-access layer information.If user ID is permanent user ID, IMSI carries out 405 steps.Otherwise, carry out 402 steps, whether the base-station gateway inspection has preserved the mobile management context of UE.The mobile management contextual information has comprised user's permanent identification.If idle pulley once resided on the base-station gateway, base-station gateway has just been preserved user's information, such as user's temporary mark, and signing messages and his permanent identification.If preserved, carry out 405 steps, otherwise, carry out 404 steps.
404 steps: base-station gateway is forged a message " identification request ", sends to UE.This message is arranged to require to obtain user's permanent identification IMSI.UE sends response message, and message comprises user's permanent identification IMSI.
405 steps: base-station gateway by checking this base station from home user list and user's IMSI, judge whether the user is allowed to access.If can allow this user to insert, carry out 406 steps.Otherwise, carry out 407 steps.
406 steps: base-station gateway upgrades user's mobile management context.In the present invention, the mobile context of this UE does not discharge after the user carries out idle pulley yet.Like this, when the user carried out periodically " routing region updating request ", base-station gateway did not need to carry out 405 steps.Have only when the user inserts this base station for the first time, need carry out 405 steps.If because UE enters into this Routing Area for the first time, send the routing region updating request message, base-station gateway is not preserved the contextual information of UE, and base-station gateway needs to send " identification request " message and gives UE, obtains the permanent identification of UE.
The non-access layer information that base-station gateway is received 401 steps is transmitted to SGSN.Step afterwards is the same with the process that realizes at present just.
407 steps: base-station gateway checks that according to the information of preserving or receive UE has not in the coverage of macrocell, if there is not the covering of macrocell, can only allow the user reside in this above HNB, and base-station gateway carries out 409 steps.If the covering of macrocell is arranged, base-station gateway carries out 408 steps.
408 steps: base-station gateway is checked the user list of the base station under its control, whether check the base station from home under the control of gateway, the base station that does not have to allow this user's access is arranged,, whether this user's HNB is arranged under the control of the gateway around can checking if interface is arranged between the gateway.If no, carry out 410 steps.
If under the control of gateway, user's HNB is arranged, perhaps even without, but for fear of the generation of Routing Area refuse information, gateway can carry out 409 steps.
409 steps: the forwards that base-station gateway is received 401 steps is given SGSN.
410 steps: base-station gateway is forged NAS message " routing region updating refusal " message, sends to UE.Carry out 411 steps then.
411 steps: base-station gateway sends message to the base station, and message can comprise following information:
User's sign, P-TMSI
These information will be kept at above the HNB, if indicate this user can not be linked into this HNB, but next time, when useful same P-TMSI carried out the RRC connection request, HNB only allowed to insert urgency traffic.If not urgency traffic, HNB sends " RRC connects refusal " message.The deletion of P-TMSI has changed P-TMSI when base-station gateway sends UE, has perhaps moved to other macrocell, perhaps below other the HNB, can allow base-station gateway send message, notice HNB.
412 steps: process finishes.
Embodiments of the invention two as shown in Figure 5.Be detailed description below to this figure.In the following description the technology that has nothing to do with the present invention has been ignored detailed technical descriptioon.
RRC between 501 steps: UE foundation and the 3G HNB connects.From the angle of UE, UE does not distinguish macro base station and base station from home.If UE is in idle pulley, find that as the user RAI at current area place is inconsistent with the RAI that UE preserves, the user will initiate the process of routing update.Perhaps when user's start, the user will initiate the Attach process; Perhaps the routing update clock has arrived updated time, and UE will initiate periodic routing update process.Under these scenes, UE will at first set up with the RRC between the base station from home and connect.When setting up the RRC connection, UE reports the measurement report to peripheral cell.502 steps, UE sends non-access layer information, and for example " the routing update request information, perhaps " Attach request information or " service request " message are given base station from home in transmission.
503 steps, base station from home is transmitted to home base-station gateway to non-access layer information.In this step, the measurement report that base station from home is received 501 steps also sends to gateway.Identify if the measurement result that HNB receives from UE is the physical layer ID with the sub-district, optionally, HNB can change into cell ID UTRAN under to physical layer identifications, and the cell identification list of measurement is sent to base-station gateway.
504 steps, if do not comprise the IMSI of UE from the non-access layer information that UE receives, HNB GW does not preserve the IMSI of corresponding this UE (P-TMSI) again, and HNB GW initiates the process of the IMSI of request UE, identical among this process and Fig. 3, ignore detailed technical descriptioon here.
505 steps: base-station gateway has been preserved the tabulation of the user ID that allows to be linked into this base station from home.Form can be as follows:
HNB?ID1:IMSI1,IIMSI2,IMSI3…
HNB?ID2:IMSI1,IMSI2,IMSI3…
Base-station gateway sees by checking the user list of this base station from home whether the permanent identification of this UE is kept in the user list, can judge whether the user is allowed to access.If the user can insert this base station, carry out 506 steps.By the user list of checking that base-station gateway is preserved, if the user does not belong to the user of mandate, the metrical information of the UE that reports according to the base station, this UE current location can not receive the signal of macrocell, and HNB GW allows this UE to insert corresponding HNB, carries out 506 steps.Otherwise carry out 509 steps.
506 steps: base-station gateway is forwarded to SGSN to the non-access layer information of 503 steps.Non-access layer information can be " routing region updating request ", perhaps " Attach request ", perhaps " service request " message.
507 steps, SGSN sends " routing region updating acceptance " message to HNB GW by " directly shifting " message of Iu interface.
508 steps, HNB GW transmits " routing region updating acceptance " message of receiving and gives UE.It is respectively that access layer information by Iuh interface and Uu interface send descending NAS message sends that routing region updating is accepted.
509 steps, HNB GW sends " directly shifting " message and gives HNB.Comprise the indication that information element is reset in the described message.The indication that information element is reset is optional.The metrical information of the UE that reports up according to HNB, HNB GW can filter out the sub-district that UE cannot insert, and obtains the sub-district that HNB can reset UE.Optionally, comprise cell list or the list of frequency that information element can be reset in the described message.Optionally, described message can be an independent message, also can be the message that is used to send descending NAS signaling.Corresponding the former, HNB GW also needs by the message that sends descending NAS signaling the routing region updating refusal to be sent to HNB, is transmitted to UE by HNB.The corresponding latter also comprises information element NAS Packet Data Unit (routing region updating refusal) in described " directly shifting " message.The reason of refusing in the described routing region updating refuse information should be arranged to that UE can not be put into this TA in the existing reason ' in the TA tabulation of forbidding '.Optionally, when HNB GW decision is reset to UE under the situation of macrocell (comprising the indication of replacement in the described direct Transfer Message), HNB GW also can send routing region updating and accept message to UE.
510 steps, HNB transmission RRC release or RRC refuse information optionally, comprise the information of replacement to UE in the described message.
Embodiments of the invention three as shown in Figure 6.Be detailed description below to this figure.In the following description the technology that has nothing to do with the present invention has been ignored detailed technical descriptioon.
RRC between 601 steps: UE foundation and the 3G HNB connects.From the angle of UE, UE does not distinguish macro base station and base station from home.If UE is in idle pulley, find that as the user RAI at current area place is inconsistent with the RAI that UE preserves, the user will initiate the process of routing update.Perhaps when user's start, the user will initiate the Attach process; Perhaps the routing update clock has arrived updated time, and UE will initiate periodic routing update process.Under these scenes, UE will at first set up with the RRC between the base station from home and connect.When setting up the RRC connection, UE reports the measurement report to peripheral cell.602 steps, UE sends non-access layer information, and for example " the routing update request information, perhaps " Attach request information or " service request " message are given base station from home in transmission.
603 steps, if do not comprise the IMSI of UE from the non-access layer information that UE receives, HNB does not preserve the IMSI of corresponding this UE (P-TMSI) again, HNB initiates the process of the IMSI of request UE, and is identical among this process and Fig. 3, ignores detailed technical descriptioon here.
604 steps, base station from home sends " UE registration " message and gives HNB GW.The IMSI that comprises UE in the described message.The metrical information that also comprises information element UE in the described message.The metrical information of UE can comprise: with cell list frequently, the cell list of alien frequencies.Identify if the measurement result that HNB receives from UE is the physical layer ID with the sub-district, optionally, HNB can change into cell ID UTRAN under to physical layer identifications, and the cell identification list of measurement is sent to base-station gateway.
605 steps: base-station gateway has been preserved the tabulation of the user ID that allows to be linked into this base station from home.Form can be as follows:
HNB?ID1:IMSI1,IIMSI2,IMSI3…
HNB?ID2:IMSI1,IMSI2,IMSI3…
Base-station gateway sees by checking the user list of this base station from home whether the permanent identification of this UE is kept at the user list the inside, can judge whether the user is allowed to access.By the user list of checking that base-station gateway is preserved, if the user does not belong to the user of mandate, the metrical information of the UE that reports according to the base station, HNB GW can filter cell list or the list of frequency that UE can insert.HNB GW obtains HNB can be the sub-district of UE replacement.
606 steps, HNB GW sends " UE registers response " message and gives HNB.Comprise the indication whether UE can insert in the described message.If UE can not insert, also comprise cell list or list of frequency that information element UE can insert in the described message.Cell list that described information element UE can insert or list of frequency are optional.
607 steps, if UE can insert, " the routing region updating request information is given HNBGW, sends to SGSN by HNB GW in the HNB transmission.The routing region updating request is that the access layer information that sends up NAS message by Iuh interface and Iu interface respectively sends.
608 steps, SGSN sends " Routing Area acceptance " message and gives HNB.609 steps, HNB sends routing region updating and accepts to UE.It is that the access layer information that sends descending NAS message by Iu interface, Iuh interface and Uu interface respectively sends that routing region updating is accepted.
If UE can not insert this HNB, HNB sends 609 routing region updating refuse information to UE.The reason of refusing in the described routing region updating refuse information should be arranged to that UE can not be put into this TA in the existing reason ' in the TA tabulation of forbidding '.Optionally, when HNB is reset to UE under the situation of macrocell in 610 steps decisions, HNB also can send routing region updating and accept message to UE.Routing region updating refusal (perhaps accepting) is to send by the access layer information that the Uu interface sends descending NAS message.If 610 UE can not insert HNB, HNB transmission RRC connection release or RRC connection refused message are to UE.According to the metrical information of UE and the filtering information of HNB GW, HNB can be reset to UE other sub-district or frequency.The information that comprises replacement in the described RRC message.
Although the present invention is described according to described embodiment, it is pointed out that these embodiment are used for explaining, rather than be used for the present invention is limited.Those of ordinary skill in the art can be easy to these embodiment are changed, increase, delete any step and do not break away from the spirit and scope of the present invention.
Claims (14)
1. method that the user is carried out access control comprises step:
Base station from home sends message to home base-station gateway, comprises the non access stratum NAS message that UE sends to core network node to the metrical information and the UE of peripheral cell in the described message;
Home base-station gateway is resolved non-access layer information, the user ID that obtains comprising in the non access stratum NAS message;
Whether home base-station gateway contrast user ID and user group list, decision can allow UE to insert;
Home base-station gateway sends the response of NAS message to base station from home, informs the access indication of base station from home to UE simultaneously.
2. method according to claim 1 is characterized in that described user ID comprises user's permanent identification and user's temporary mark.
3. method according to claim 2 is characterized in that then comprising if user ID is user's a temporary mark:
If home base-station gateway has been preserved the mobile management context message of UE, then obtain user's permanent identification from the mobile management context.
4. method according to claim 2 is characterized in that then comprising if user ID is user's a temporary mark:
If home base-station gateway is not preserved the mobile management context message of UE, then home base-station gateway is forged one " identification request " and is sent to UE;
UE sends response message to home base-station gateway, comprises the permanent identification IMSI of UE in the response message.
5. method according to claim 1 is characterized in that, if home base-station gateway does not allow UE to insert, then
Whether the home base-station gateway inspection has the macrocell under this UE, if having, home base-station gateway is checked the HNB whether HNB under the gateway control has the user to insert, if cannot, then send " routing region updating refusal " message and give UE.
6. method according to claim 5 is characterized in that also comprising:
If there is not the covering of macrocell, home base-station gateway sends message to described base station from home, and the sign that the suggestion base station from home is preserved UE only provides urgency traffic for this UE.
7. method according to claim 1 is characterized in that also comprising, home base-station gateway is given SGSN the NAS forwards, and the response of described NAS message is sent by SGSN.
8. according to claim 1, it is characterized in that non access stratum NAS message comprises " routing update message ", " Attach request information or " service request " message.
9. method according to claim 1 is characterized in that, it is the indication that HNB can be reset to UE other sub-district that the access of UE is indicated.
10. method according to claim 9 is characterized in that, the indication of described replacement comprises the cell ID or the cell identification list of replacement.
11. method according to claim 9 is characterized in that, the indication of described replacement comprises the frequency or the list of frequency of replacement.
12., it is characterized in that described base station from home comprises the base station from home under 3G base station from home, LTE base station from home or other connecting system according to the described method of one of claim 1-7.
13., it is characterized in that described core network node comprises SGSN or MME according to the described method of one of claim 1-7.
14. method according to claim 1 is characterized in that the access indication to UE is to discharge RRC to connect.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200810137898A CN101626623A (en) | 2008-07-07 | 2008-07-07 | User access control method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200810137898A CN101626623A (en) | 2008-07-07 | 2008-07-07 | User access control method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101626623A true CN101626623A (en) | 2010-01-13 |
Family
ID=41522236
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200810137898A Pending CN101626623A (en) | 2008-07-07 | 2008-07-07 | User access control method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101626623A (en) |
Cited By (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102111816A (en) * | 2011-03-22 | 2011-06-29 | 北京邮电大学 | Energy-saving femto-network system and energy-saving method |
| WO2011085579A1 (en) * | 2010-01-14 | 2011-07-21 | 中兴通讯股份有限公司 | Method and check node for locking location of user network device |
| WO2011088623A1 (en) * | 2010-01-22 | 2011-07-28 | 中兴通讯股份有限公司 | Home base station-based access mode processing method |
| CN102143579A (en) * | 2011-01-27 | 2011-08-03 | 上海大唐移动通信设备有限公司 | Location updating method and device |
| CN102196412A (en) * | 2010-03-05 | 2011-09-21 | 宏达国际电子股份有限公司 | Mobile communication device and method for closed subscriber group (CSG) membership synchronization |
| CN102238689A (en) * | 2010-04-23 | 2011-11-09 | 中兴通讯股份有限公司 | Method and system for controlling accesses of machine type communication (MTC) devices |
| CN102238629A (en) * | 2010-05-07 | 2011-11-09 | 华为技术有限公司 | Access control method for machine type communication, equipment and communication system |
| WO2011150711A1 (en) * | 2010-06-02 | 2011-12-08 | 中兴通讯股份有限公司 | Access control method and device |
| CN103326995A (en) * | 2012-03-22 | 2013-09-25 | 开曼晨星半导体公司 | Data processing method based on femtocell |
| WO2017113063A1 (en) * | 2015-12-28 | 2017-07-06 | 华为技术有限公司 | Nas message processing and cell list updating methods and devices |
| CN109997180A (en) * | 2017-11-03 | 2019-07-09 | 北京小米移动软件有限公司 | Unmanned plane authentication method and device |
| WO2019134182A1 (en) * | 2018-01-05 | 2019-07-11 | Hong Kong Applied Science and Technology Research Institute Company Limited | Acquiring permanent identifier of user equipment by gateway in mobile communication system |
| CN110072277A (en) * | 2011-04-01 | 2019-07-30 | 三菱电机株式会社 | Mobile terminal |
-
2008
- 2008-07-07 CN CN200810137898A patent/CN101626623A/en active Pending
Cited By (20)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8787905B2 (en) | 2010-01-14 | 2014-07-22 | Zte Corporation | Method and check node for locking location of user network device |
| WO2011085579A1 (en) * | 2010-01-14 | 2011-07-21 | 中兴通讯股份有限公司 | Method and check node for locking location of user network device |
| CN101778471B (en) * | 2010-01-14 | 2015-08-12 | 中兴通讯股份有限公司 | A kind of method of locking femtocell positions |
| WO2011088623A1 (en) * | 2010-01-22 | 2011-07-28 | 中兴通讯股份有限公司 | Home base station-based access mode processing method |
| CN102196412A (en) * | 2010-03-05 | 2011-09-21 | 宏达国际电子股份有限公司 | Mobile communication device and method for closed subscriber group (CSG) membership synchronization |
| CN102238689A (en) * | 2010-04-23 | 2011-11-09 | 中兴通讯股份有限公司 | Method and system for controlling accesses of machine type communication (MTC) devices |
| CN102238689B (en) * | 2010-04-23 | 2016-02-10 | 中兴通讯股份有限公司 | A kind of connection control method of mechanical type communication terminal and system |
| CN102238629A (en) * | 2010-05-07 | 2011-11-09 | 华为技术有限公司 | Access control method for machine type communication, equipment and communication system |
| WO2011150711A1 (en) * | 2010-06-02 | 2011-12-08 | 中兴通讯股份有限公司 | Access control method and device |
| CN102143579B (en) * | 2011-01-27 | 2014-06-04 | 上海大唐移动通信设备有限公司 | Location updating method and device |
| CN102143579A (en) * | 2011-01-27 | 2011-08-03 | 上海大唐移动通信设备有限公司 | Location updating method and device |
| CN102111816A (en) * | 2011-03-22 | 2011-06-29 | 北京邮电大学 | Energy-saving femto-network system and energy-saving method |
| CN110072277A (en) * | 2011-04-01 | 2019-07-30 | 三菱电机株式会社 | Mobile terminal |
| CN103326995A (en) * | 2012-03-22 | 2013-09-25 | 开曼晨星半导体公司 | Data processing method based on femtocell |
| CN103326995B (en) * | 2012-03-22 | 2016-04-13 | 开曼晨星半导体公司 | A kind of data processing method based on Home eNodeB |
| WO2017113063A1 (en) * | 2015-12-28 | 2017-07-06 | 华为技术有限公司 | Nas message processing and cell list updating methods and devices |
| CN108293259A (en) * | 2015-12-28 | 2018-07-17 | 华为技术有限公司 | A kind of processing of NAS message, cell list update method and equipment |
| CN109997180A (en) * | 2017-11-03 | 2019-07-09 | 北京小米移动软件有限公司 | Unmanned plane authentication method and device |
| US11146932B2 (en) | 2017-11-03 | 2021-10-12 | Beijing Xiaomi Mobile Software Co., Ltd. | Unmanned aerial vehicle authentication method and apparatus |
| WO2019134182A1 (en) * | 2018-01-05 | 2019-07-11 | Hong Kong Applied Science and Technology Research Institute Company Limited | Acquiring permanent identifier of user equipment by gateway in mobile communication system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101626623A (en) | User access control method | |
| US8811987B2 (en) | Method and arrangement for creation of association between user equipment and an access point | |
| KR101633331B1 (en) | METHOD FOR providing connection type information and METHOD FOR controlling radio resource of home (e)NodeB | |
| KR101472749B1 (en) | METHOD AND APPARATUS FOR UE ADMISSION CONTROL IN HOME eNB | |
| KR101091300B1 (en) | Server for control plane at mobile communication network and method for controlling Local IP Access Service | |
| EP2445264B1 (en) | Method and system for informing user access mode | |
| CN101883352B (en) | Method for supporting PDNGW selection | |
| KR101884348B1 (en) | server for control plane at mobile communication network and for providing local CSG and access control method | |
| CN101400071A (en) | Method for configuring MME | |
| US9241247B2 (en) | Mobile communication system, base station, gateway apparatus, core network apparatus, and communication method | |
| KR20100120259A (en) | Server for control plane at mobile communication network and method for controlling establishment of connection thereof | |
| CN101677455A (en) | Method for assisting network to find destination node | |
| CN102123394A (en) | Processing method and device for switching to cells of closed subscriber group | |
| CN101521870A (en) | Method for supporting movement of UE between macro cells and HNB cells | |
| KR20110102899A (en) | Move subscribers to surrounding radio network | |
| CN101686520A (en) | Method supporting home base station context management | |
| CN101527941A (en) | Method for supporting UE between macro base station and home node base station | |
| CN101998366A (en) | Method for indicating home base station relation | |
| US7949336B2 (en) | Access control in a cellular system | |
| CN101621777A (en) | Method supporting emergency call in mobile communication system | |
| CN101931926A (en) | Method, system, network side equipment and UE for managing CSG membership | |
| CN102833682A (en) | Method, device and system for acquiring information | |
| CN102036219B (en) | The sending method of local connection information and device | |
| CN101651974A (en) | Registration method and system of user equipment of closed user group in home node base system | |
| CN102761980A (en) | Method and system for realizing business process |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20100113 |