CN101662415A

CN101662415A - Policy control method, communication system and related equipment

Info

Publication number: CN101662415A
Application number: CN200810135538A
Authority: CN
Inventors: 胡颖; 王珊珊
Original assignee: Huawei Technologies Co Ltd
Current assignee: Huawei Technologies Co Ltd
Priority date: 2008-08-29
Filing date: 2008-08-29
Publication date: 2010-03-03
Anticipated expiration: 2028-08-29
Also published as: CN101662415B

Abstract

The embodiment of the invention discloses a policy control method, a communication system and related equipment, which are used for performing policy control to reduce the consumption of a system resource and improve the flexibility of the policy control for a user. The method provided by the embodiment of the invention comprises the following steps: receiving a policy control session request by apolicy decision-making entity, wherein the policy control session request comprises user identification or session identifier; generating a user policy control rule corresponding to the user identification or the session identifier; and sending the user policy control rule. The embodiment of the invention also provides a communication system and related equipment. The method, the system and the related equipment can effectively perform the policy control to reduce the consumption of the system resource and improve the flexibility of the policy control for the user.

Description

A kind of policy control method and communication system and relevant device

Technical field

The present invention relates to communication field, relate in particular to a kind of policy control method and communication system and relevant device.

Background technology

Along with development of internet technology, the latest network framework has obtained the user and has more and more paid close attention to, and in the logical architecture of mobile communication network of future generation, user terminal inserts by local Radio Access Network.IAD is the convergent point of Access Network, is responsible for access technology relevant connection management and data forwarding.Data gateway is the gateway of visit packet data network, is responsible for the data connection management and the data forwarding of user capture packet data network, also is simultaneously the anchor point that the service of moving is provided for the mobile subscriber.Mobile communication network of future generation has strengthened policy control functions simultaneously, comprises service quality (QoS, the Quality of Service) control and the control of chargeing.

Policy decision entity is responsible for the service quality QoS of the data access connection of certain certain Packet Data Network of user capture and the control law of charging are done decision-making.And control law can offer gateway, and gateway inserts the data service that connects according to the rule of being obtained to data and carries out the service quality and the control of chargeing as Policy Enforcement Point.

The corresponding real network of above-mentioned logical architecture figure, can be evolved packet system (EPS, EvolvedPacket System) network, accordingly, for global terrestrial radio access network (UTRAN, UniversalTerrestrial Radio Access), or GSM EDGE Radio Access Network network (GERAN, GSM EDGERadio Access Network) or evolution UTRAN (E-UTRAN, Evolved UTRAN), IAD can be gateway (SGW, Serving Gateway) or GPRS (GPRS, General Packet Radio Service) supporting node (SGSN, Serving GPRS SupportNode), data gateway can be grouped data network gateway (PGW, Packet Data NetworkGateway) or Gateway GPRS Support Node (GGSN, Gateway GPRS Support Node).

Policing feature can be the strategy and the control (PCC that charges, Policy and Charging Control) function, accordingly, policy decision entity can be strategy and charging rule decision functional entity (PCRF, PolicyCharging Rule Function) or policy deciding functional entity (PDF, Policy DecisionFunction), the Policy Enforcement Point of IAD can be bearing binding and event reporting function entity (BBERF, Bearer Binding and Event Reporting Function) or strategy strengthen point (PEP, Policy Enforcement Point), the Policy Enforcement Point of data gateway can be strategy and charging enhancement function entity (PCEF, Policy and Charging Enforcement Function) or PEP.

The inventor finds in realizing process of the present invention: the granularity of policy control of the prior art is the Internet protocol Access Network (IP-CAN that user terminal is initiated, Internet Protocol ConnectivityAccess Network) connects, be that system all carries out policy control (comprising the QoS control and the control of chargeing) respectively at each IP-CAN connection, and because same user may establish a plurality of IP-CAN connections simultaneously, then different IP-the CAN to same user carries out policy control respectively in the prior art, causes having wasted system resource;

Secondly, available technology adopting connects the mode of carrying out policy control to IP-CAN, can not effectively carry out policy control at the user who has a plurality of IP-CAN connections, has reduced the flexibility of policy control.

Summary of the invention

The embodiment of the invention provides a kind of policy control method and communication system and relevant device, can carry out policy control at the user, reduces the consumption of system resource, and improves the flexibility of policy control.

The policy control method that the embodiment of the invention provides comprises: receive the policy control conversation request, comprise user ID or session identification in the described policy control conversation request; Generate the subscriber policy control law corresponding with described user ID or session identification; Send described subscriber policy control law.

The policy control method that the embodiment of the invention provides comprises: receive the subscriber policy control law that policy decision entity sends, described subscriber policy control law is used for indication the user is carried out policy control; When the user carries out transfer of data, inquire about the subscriber policy control law of described user's correspondence; According to described subscriber policy control law described user is carried out policy control.

The communication system that the embodiment of the invention provides, comprise: access network element, be used to receive the connection that user terminal sends sets up IP-CAN in order to request and set up request, send connection to data gateway and set up request, send the policy control session to policy decision entity and set up request or the request of policy control session updates, in described policy control session foundation request or the request of policy control session updates, carry user ID or session identification, the policy control session foundation of reception policy decision entity feedback is replied or the policy control session updates is replied, set up from described policy control session and to reply or the policy control session updates is obtained the subscriber policy control law replying, corresponding user is carried out policy control according to this subscriber policy control law; Data gateway is used to receive the connection foundation request that access network element sends, and sends the session of IP-CAN policy control according to described request to policy decision entity and sets up request, and the IP-CAN policy control session of reception policy decision entity feedback is set up and replied; Policy decision entity, be used to receive policy control session foundation request or the request of policy control session updates that described access network element sends, set up or upgrade corresponding policy control session, generate the subscriber policy control law, send described subscriber policy control law to access network element.

The communication system that the embodiment of the invention provides comprises: access network element, and be used to receive the connection that user terminal sends sets up IP-CAN in order to request and set up request, send to data gateway and connect the request of foundation; Data gateway, be used to receive the connection foundation request that access network element sends, send the policy control session according to the described connection request of setting up to policy decision entity and set up request or the request of policy control session updates, in described policy control session foundation request or the request of policy control session updates, carry user ID, the policy control session foundation of reception policy decision entity feedback is replied or the policy control session updates is replied, set up from described policy control session and to reply or the policy control session updates is obtained the subscriber policy control law replying, corresponding user is carried out policy control according to this subscriber policy control law; Policy decision entity, be used to receive the policy control session foundation request that data gateway sends, set up corresponding policy control session, or the policy control session updates request of reception data gateway transmission, upgrade corresponding policy control session, user ID or the session identification set up in request or the request of policy control session updates according to the policy control session generate the subscriber policy control law, send described subscriber policy control law to data gateway.

The policy decision entity that the embodiment of the invention provides comprises: ask receiving element, be used to receive the policy control conversation request of access network element or data gateway transmission, comprise user ID or session identification in the described policy control conversation request; The strategy generation unit is used to generate the subscriber policy control law based on user corresponding with described user ID or session identification; The strategy transmitting element is used for the subscriber policy control law that tactful generation unit generates is sent to access network element or data gateway.

The network element that is used for policy control that the embodiment of the invention provides comprises: connect and set up control unit, be used to receive the connection foundation request that user terminal sends, connect with user terminal; The policy control session management unit, be used for setting up control unit and receive connection that user terminal sends and send the policy control session to policy decision entity after setting up request and set up request or the request of policy control session updates in connection, described policy control session set up ask or the request of policy control session updates in carry user ID or session identification; The strategy acquiring unit is used to receive the subscriber policy control law based on the user that policy decision entity sends; The strategy execution unit, the subscriber policy control law that is used for getting access to according to tactful acquiring unit is controlled corresponding user's implementation strategy.

As can be seen from the above technical solutions, the embodiment of the invention has the following advantages:

In the embodiment of the invention, policing parameter that the policy decision entity basis presets and the user ID that receives generate the subscriber policy control law, and the subscriber policy control law that generates is sent to access network element or data gateway, the policy control of according to this subscriber policy control law the corresponding terminal user being carried out by access network element or data gateway, therefore the embodiment of the invention can be carried out policy control at the user effectively, carry out policy control and needn't connect to each IP-CAN of user, thereby reduced the consumption of system resource, and can improve the flexibility of policy control.

Description of drawings

Fig. 1 is the policy control method first embodiment flow chart in the embodiment of the invention;

Fig. 2 is the policy control method second embodiment flow chart in the embodiment of the invention;

Fig. 3 is policy control method the 3rd an embodiment flow chart in the embodiment of the invention;

Fig. 4 is policy control method the 4th an embodiment flow chart in the embodiment of the invention;

Fig. 5 is policy control method the 5th an embodiment flow chart in the embodiment of the invention;

Fig. 6 is policy control method the 6th an embodiment flow chart in the embodiment of the invention;

Fig. 7 is a communication system embodiment schematic diagram in the embodiment of the invention;

Fig. 8 is a policy decision entity embodiment schematic diagram in the embodiment of the invention;

Fig. 9 is for being used for the network element embodiment schematic diagram of policy control in the embodiment of the invention.

Embodiment

The embodiment of the invention provides a kind of policy control method and communication system and relevant device, is used for carrying out policy control at the user, reduces the consumption of system resource, and improves the flexibility of policy control.

Policy control method embodiment in the embodiment of the invention comprises:

1) policy decision entity receives the policy control conversation request, comprises user ID or session identification in the described policy control conversation request;

Access network element receives the request that user terminal sends, send the policy control conversation request to policy decision entity afterwards, perhaps access network element sends the policy control conversation request by data gateway to policy decision entity, includes the session label information of the user totem information that gets access to from the request that the user sends or the corresponding policy control session of having set up in this policy control conversation request.

In the present embodiment, this policy control conversation request can be set up request for the policy control session, or the request of policy control session updates.

2) generate the subscriber policy control law corresponding with described user ID or session identification;

Policy decision entity receives after the policy control conversation request that access network element or data gateway send, and generates subscriber policy control law based on the user according to the user totem information in this policy control conversation request or session label information.

Concrete subscriber policy control law can determine that for example for the multimedia service field, this subscriber policy control law can be the multimedia charging policy of variety classes etc. according to user's request or applied environment.

3) send described subscriber policy control law.

After the subscriber policy control law of generation based on the user, policy decision entity is sent to access network element or data gateway with this subscriber policy control law, according to this subscriber policy control law corresponding user is carried out policy control by this access network element or data gateway.

See also Fig. 1, policy control method first embodiment comprises in the embodiment of the invention:

101, policy decision entity receives the policy control conversation request;

In the present embodiment, when user terminal requests inserts certain network or carries out a certain business, can send the resource allocation request that connects the request of foundation or connected to access network element, this connection is set up in the request and is included the information such as user ID of initiating this requesting users, comprises connection identifier information in the resource allocation request.

Access network element receives after this request, send the policy control conversation request to policy decision entity, perhaps access network element sends the policy control conversation request by data gateway to policy decision entity, the session label information that includes the user totem information that from request of connect setting up or resource allocation request, gets access to or the corresponding policy control session of having set up in this policy control conversation request, can further include the current Access Network information of user (access network type for example, the Access Network position, the Access Network sign), or terminal capability (QoS ability etc.), or the QoS that connects of the IP-CAN of conversation type (expression session be based on IP-CAN or based on the user) and request or the like.

Access network element in the present embodiment can be IAD or access service node, and the policy control conversation request in the present embodiment is specifically as follows the policy control session and sets up request, or the request of policy control session updates.

102, generate the subscriber policy control law according to the user ID in policing parameter that presets and the request;

After (or access network element send) policy control conversation request that policy decision entity receives that access network element sends by data gateway, from this request, read user ID, and inquire about the policing parameter that this user contracts according to this user ID, for example signatory QoS information, contracted user's maximum bandwidth, the user guarantees bandwidth, the signatory maximum bandwidth information such as (APN-AMBR) that connects.

Policy decision entity gets access to after user ID and the policing parameter, according to these information or comprise that further the current Access Network information of user, terminal capability etc. generate the subscriber policy control laws, this control law is used for the user is carried out policy control, for example, policy decision entity is according to the maximum bandwidth information of current all connections of having set up of user, with contracted user's maximum bandwidth information, generate actual user's maximum bandwidth information, be included in the policy control rule, be used to detect the bandwidth that the active user takies and whether surpass its maximum bandwidth, etc.

103, send the subscriber policy control law to access network element or data gateway;

Policy decision entity generates after the subscriber policy control law, and this subscriber policy control law is sent to access network element or data gateway.

104, access network element or data gateway carry out policy control according to the subscriber policy control law to the user.

Access network element or data gateway receive after the subscriber policy control law of policy decision entity transmission, according to this rule corresponding user is carried out policy control, for example, the subscriber policy control law that policy decision entity sends comprises user's maximum bandwidth information, access network element or/and data gateway according to this user's data flow of maximum bandwidth limit information.

Be understandable that in actual applications, access network element or data gateway can not done qualification herein according to this subscriber policy control law to the policy control that the user carries out other types equally.

Need to prove, policy decision entity in the present embodiment can be PCRF or PDF, access network element can be SGW or SGSN, data gateway can be PGW or GGSN, be understandable that, according to the difference of application network, policy decision entity, access network element and data gateway can also be the entities of other types, do not do qualification herein.

In the embodiment of the invention, policing parameter that the policy decision entity basis presets and the user ID that receives generate the subscriber policy control law, and the subscriber policy control law that generates is sent to access network element or data gateway, according to this subscriber policy control law the terminal use is carried out corresponding policy control by access network element or data gateway, therefore the embodiment of the invention can be carried out policy control at the user effectively, carry out policy control and needn't connect to each IP-CAN of user, thereby reduced the consumption of system resource, and can improve the flexibility of policy control.

For ease of understanding, below the policy control method in the embodiment of the invention is described in detail, according to the difference of the mode of connecting, the policy control method in the embodiment of the invention can be divided three classes:

One, user terminal inserts IAD:

In the present embodiment, user terminal inserts IAD, and IAD is established to the tunnel of data gateway, between user terminal and the IAD, the data of all setting up the IP-CAN granularity between IAD and the data gateway are connected.

In the present embodiment,, can also further present embodiment be subdivided into following two kinds of situations according to the type of the gateway policy control session of setting up between IAD and the policy decision entity:

(1), set up gateway policy control session between IAD and the policy decision entity based on the user:

In the present embodiment, set up gateway policy control session between IAD and the policy decision entity based on the user, the business information that Access Network information that policy decision entity provides according to IAD BBERF and data gateway PCEF provide, generation is based on user's policy control rule, by gateway policy control session based on the user, send to IAD BBERF, carry out respective rule by IAD BBERF, as carrying out policy control, further send rule to base station or user terminal by rule.

See also Fig. 2, policy control method second embodiment comprises in the embodiment of the invention:

201, user terminal sends to connect to IAD and sets up request message;

In the present embodiment, user terminal sends to connect sets up request message to IAD BBERF, for example, Attach Request message attach request, or layer three adheres to and triggers message L3 attach trigger, or mobile IPv 4 (MIPv4) login request message, or PDN connects and sets up request message etc., the connection of a visit packet data network PDN is set up in request, and promptly an IP-CAN connects.

The user ID that includes this user in the request message is set up in the connection that user terminal sends, and perhaps can also be other user profile.

202, IAD sends the session of gateway policy control to policy decision entity and sets up request message or gateway policy control session updates request message;

In the present embodiment, IAD BBERF sends the session of gateway policy control and sets up request message to policy decision entity, a policy control session based on the user is set up in request, message is carried user ID, can also carry the current Access Network information of user (access network type, Access Network position, Access Network sign), or terminal capability (QoS ability etc.), or conversation type (expression session be based on IP-CAN or based on the user) or the like.Wherein, user ID can be network access Identifier (NAI, Network AccessIdentifier), or IMSI International Mobile Subscriber Identity (IMSI, International Mobile SubscriberIdentity), or user's name, or telephone number, or mobile radio station International ISDN number (MSISDN, Mobile Station International ISDN Number) number etc. can unique this user of expression sign.

Need to prove, if formerly having set up another IP-CAN, this user connected, then may set up policy control session based on the user, at this moment, IAD can send gateway policy control session updates request message, this session is upgraded in request, increases new IP-CAN link information.Can comprise user ID in the update inquiry information, also can not comprise.When not comprising, policy decision entity can be associated with the policy control session of having set up according to session identification, obtains the session information that comprises user ID.

203, policy decision entity sends the session of gateway policy control to IAD and sets up response message or gateway policy control session updates response message;

The gateway policy control session that policy decision entity sends according to IAD set up request message set up corresponding strategy control session or according to gateway policy control session updates request message to policy control session upgrade, respond response message afterwards and give IAD, expression user's policy control session is set up or is upgraded and finish.

Need to prove, in the present embodiment, user ID or session identification that policy decision entity also provides according to IAD simultaneously (perhaps also comprise Access Network information, or terminal capability, or information such as conversation type) and the policing parameter that the presets (maximum bandwidth when signatory, determined of user terminal for example, guarantee bandwidth or qos parameter etc.), generate subscriber policy control law based on the user, comprise the mode of carrying out policy control at the user in this subscriber policy control law.

For ease of understanding,, as shown in the table in the present embodiment with a concrete example explanation subscriber policy control law, be understandable that in actual applications, the subscriber policy control law can also be other types equally:

Table 1

Generate after the subscriber policy control law, policy decision entity can be carried at this rule and send to IAD in the response message, perhaps can this subscriber policy control law be sent to IAD with independent message, concrete message format is not done qualification herein yet.

In the present embodiment, the subscriber policy control law can comprise, this user's maximum bandwidth (MBR, Maximum Bit Rate), or this user converge maximum bandwidth (AMBR, Aggregate MaximumBit Rate), or this user's assurance bandwidth information (GBR, Guaranteed Bit Rate), or this user's charging regulation, or this user's firewall information etc.

204, IAD sends to connect and sets up request message to data gateway, and request is set up this IP-CAN and connected;

205, data gateway sends the session of IP-CAN policy control to policy decision entity and sets up request message;

Data gateway sends the session of IP-CAN policy control and sets up request message to policy decision entity, is used to ask to set up the policy control session of IP-CAN.

IP address of terminal, the packet data network identification information that carries user ID, IP-CAN in the request message set up in this IP-CAN policy control session, as packet data network identification (PDN ID) or APN (APN, Access Point Name) etc.

206, the response message of finishing is set up in the session of policy decision entity response IP-CAN policy control;

Policy decision entity can generate policy control rule based on IP-CAN and be carried at and be handed down to data gateway in the message.

207, the connection of data gateway response IAD is set up and is finished;

208, the connection of IAD response user terminal is set up and is finished;

209, policy decision entity sends the subscriber policy control law to IAD;

The information that policy decision entity can be provided in step 205 according to data gateway, further determine subscriber policy control law based on the user, if it is different to send to the subscriber policy control law of IAD in the subscriber policy control law after determining and the step 203, then issue new subscriber policy control law (i.e. the second subscriber policy control law) to IAD BBERF.

For example, policy decision entity is according to data gateway PCEF, CAMEL-Subscription-Information database (SPR, Subscription Profile Repository) or home subscriber server (HSS, Home SubscriberServer) the maximum bandwidth information of the newly-built IP-CAN that provides, adjust user's maximum bandwidth information, then policy decision entity can send user's the maximum bandwidth information of renewal in this step to IAD BBERF.

210, IAD BBERF response policy decision entity rule activation result.

IAD BBERF is according to the corresponding policy control rule of the requesting activation of policy decision entity, customer traffic is carried out QoS and/or the control of chargeing, if desired, IAD may further send policy control information to the base station or/and terminal, be used for the base station or/and terminal is carried out QoS control to data stream.

Concrete control can for: receive the data message that the user sends or/and send to this user's data message when exceeding this maximum bandwidth parameter value when access network element, then access network element abandons and exceeds the partial data message.

Need to prove that step 209 and step 210 needs are carried out and got final product in the present embodiment after step 205.

After above-mentioned data connection is set up and is finished, because current carry out professional different of user terminal, application server can send related service information in real time to policy decision entity PCRF, and policy decision entity is according to business information, and the policy control rule that generates based on business sends to data gateway PCEF; Generation sends to IAD BBERF based on user's policy control rule.

In the present embodiment, has the BBERF function with IAD, data gateway has the PCEF function, policy decision entity is that PCRF is that example describes, be understandable that, when IAD/data gateway has the PEP function, when perhaps policy decision entity is PDF, idiographic flow is identical with above-mentioned flow process, does not give unnecessary details herein.

In the present embodiment, IAD BBERF is after request is set up in the connection that receives the user terminal transmission, send the session of gateway policy control to policy decision entity PCRF and set up request message or gateway policy control session updates request message, set up in request message or the gateway policy control session updates request message in the session of gateway policy control and to carry user ID, perhaps also carry some other user related information, policy decision entity PCRF (comprises user's maximum bandwidth according to presetting policing parameter, or the user guarantees information such as bandwidth) generation subscriber policy control law, this subscriber policy control law is sent to IAD, according to this subscriber policy control law corresponding user is carried out policy control by IAD, therefore present embodiment can carry out policy control at the user effectively, carry out policy control and needn't connect to each IP-CAN of user, thereby reduced the consumption of system resource, and can improve the flexibility of policy control.

(2), set up gateway policy control session between IAD and the policy decision entity based on IP-CAN:

In the present embodiment, set up the gateway policy control session based on IP-CAN between IAD and the policy decision entity, IAD all uses identical policy decision entity for a plurality of IP-CAN connections that the user sets up.A plurality of IP-CAN information that policy decision entity inserts simultaneously according to the user, generation is based on user's subscriber policy control law, send to IAD BBERF, carry out respective rule by IAD BBERF, for example carry out policy control, or further send rule to base station or user terminal by rule.

See also Fig. 3, policy control method the 3rd embodiment comprises in the embodiment of the invention:

301, user terminal sends to connect to IAD and sets up request message;

In the present embodiment, user terminal sends to connect sets up request message to IAD BBERF, for example, Attach Request message attach request, or layer three adheres to and triggers message L3 attach trigger, or the MIPv4 login request message, or PDN connects and sets up request message etc., the connection of a visit packet data network PDN is set up in request, and promptly an IP-CAN connects.

302, IAD sends the session of gateway policy control to policy decision entity and sets up request message;

In the present embodiment, IAD BBERF sends the session of gateway policy control and sets up request message to policy decision entity, a policy control session based on IP-CAN is set up in request, message is carried user ID, can also carry the current Access Network information of user (access network type, Access Network position, Access Network sign), or terminal capability (QoS ability etc.), or conversation type (expression session be based on IP-CAN or based on the user) or the like.Wherein, user ID can be NAI, or IMSI, or user's name, or telephone number, or various unique these users' of expression such as Mobile Subscriber International ISDN Number sign.

Need set up the situation of a plurality of IP-CAN simultaneously for the user, each IP-CAN for same subscriber, set up the gateway policy control session of corresponding each IP-CAN between IAD and the policy decision entity, simultaneously the identical policy decision entity PCRF of these gateway policy control sessions uses.Specifically can be in the following way:

After IAD is set up the gateway policy control session of first IP-CAN for the user, setting up in the request message of the gateway policy control session of follow-up IP-CAN, the address information of carrying purpose policy decision entity PCRF is (as domain name, IP address etc.), make each IP-CAN of same subscriber use identical policy decision entity PCRF to do the decision-making of policy control rule; Perhaps selecting route agent (DRA, Diameter Routing Agent) by PCRF is the identical PCRF of policy control session selection of each IP-CAN of same subscriber.Specifically can indicate DRA to select identical PCRF for same subscriber by BBERF/PCEF, perhaps by the DRA configuration, DRA be that identical PCRF is selected in the policy control session of each IP-CAN of same subscriber.

303, policy decision entity sends the session of gateway policy control to IAD and sets up response message;

The gateway policy control session request of setting up that policy decision entity sends according to IAD set up corresponding strategy control session or to policy control session upgrade, respond response message afterwards and give IAD, the policy control session of expression IP-CAN is set up and is finished.

Need to prove, in the present embodiment, the user ID that policy decision entity also provides according to IAD simultaneously (perhaps also comprises Access Network information, or terminal capability, or information such as conversation type) and the policing parameter that the presets (maximum bandwidth when signatory, determined of user terminal for example, guarantee bandwidth or qos parameter etc.), generation is based on user's subscriber policy control law, comprise the mode of carrying out policy control at the user in this subscriber policy control law, the subscriber policy control law that generates in the present embodiment can be as shown in table 1, also can adjust according to actual conditions.

In the present embodiment, the subscriber policy control law can comprise, user's MBR, or AMBR, or user's GBR, or charging regulation, or firewall information etc.

In the present embodiment, policy decision entity generate based on user's subscriber policy control law can by and BBERF between the gateway policy control session of certain IP-CAN of having set up send to BBERF.This session can be any one in the gateway policy control session of a plurality of IP-CAN of having set up, also can be some (as the gateway policy control session of the IP-CAN of acquiescence APN correspondence) of appointment, this appointed information (as the corresponding acquiescence of which session of indication PCRF APN) can be provided by BBERF or PCEF.

304, IAD sends to connect and sets up request message to data gateway, and request is set up this IP-CAN and connected;

305, data gateway sends the session of IP-CAN policy control to policy decision entity and sets up request message;

IP address of terminal, the packet data network identification information that carries user ID, IP-CAN in the request message set up in this IP-CAN policy control session, as PDN ID or APN etc.

306, the response message of finishing is set up in the session of policy decision entity response IP-CAN policy control;

307, the connection of data gateway response IAD is set up and is finished;

308, the connection of IAD response user terminal is set up and is finished;

309, policy decision entity sends the subscriber policy control law to IAD;

The information that policy decision entity can be provided in step 305 according to data gateway, further determine subscriber policy control law based on the user, if it is different to send to the subscriber policy control law of IAD in the subscriber policy control law after determining and the step 303, then issue new subscriber policy control law (i.e. the second subscriber policy control law) to IAD BBERF.

For example, the maximum bandwidth information of the newly-built IP-CAN that policy decision entity provides according to data gateway PCEF, SPR or HSS, adjust user's maximum bandwidth information, then policy decision entity can send user's the maximum bandwidth information of renewal in this step to IAD BBERF.

310, IAD BBERF response policy decision entity rule activation result.

Need to prove that step 309 and step 310 needs are carried out and got final product in the present embodiment after step 305.

In the present embodiment, IAD BBERF is after request is set up in the connection that receives the user terminal transmission, send the session of gateway policy control to policy decision entity PCRF and set up request message or gateway policy control session updates request message, set up request message or gateway policy control session updates request message carries user ID in the session of gateway policy control, perhaps also carry some other user related information, policy decision entity PCRF (comprises user's maximum bandwidth according to presetting policing parameter, or the user guarantees information such as bandwidth) generation subscriber policy control law, this subscriber policy control law is sent to IAD, according to this subscriber policy control law corresponding user is carried out policy control by IAD, therefore present embodiment can carry out policy control at the user effectively, carry out policy control and needn't connect to each IP-CAN of user, thereby reduced the consumption of system resource, and can improve the flexibility of policy control.

Two, set up between user terminal and the IAD local the connection:

Introduced the situation of user terminal access IAD in the foregoing description, what set up between user terminal and the IAD is that wireless access is connected, in the present embodiment, set up local the connection between user terminal and IAD, set up IP-CAN between user terminal and data gateway and be connected.But user terminal is connected the respective user terminal and is connected with a plurality of IP-CAN between the data gateway with this locality between the IAD.

In the present embodiment, set up the gateway policy control session of user's granularity between IAD and the policy decision entity, the Business Stream information of the IP-CAN that the Access Network information that policy decision entity provides according to IAD BBERF, data gateway PCEF or application server AF provide or user contracting data etc., generation is based on user's policy control rule, send to IAD BBERF, carry out respective rule by IAD BBERF, for example data stream is carried out policy control, perhaps send rule to base station or user terminal by rule.

See also Fig. 4, policy control method the 4th embodiment comprises in the embodiment of the invention:

401, user terminal sends to IAD and local the connection sets up request message;

The local connection of user terminal transmission set up request message to IAD, and request is set up local IP and connected, and for example distributes local ip address, sets up terminal and arrives IPsec tunnel of IAD or the like.

402, IAD sends the session of gateway policy control to policy decision entity and sets up request message;

IAD BBERF sends the session of gateway policy control and sets up request message to policy decision entity, set up the policy control session of user's granularity, set up request message and carry user totem information, can also carry the current Access Network information (access network type of user, the Access Network position, the Access Network sign), terminal capability (QoS ability etc.) or the like.Policy decision entity is set up this user's policy control session according to request message.Wherein, user totem information can be NAI, IMSI, user's name, telephone number, various unique these users' of expression such as ISDN sign.

Need to prove, if user terminal has only local a connection, then can be with based on the policy control session of locally-attached policy control session as user's granularity.IAD BBERF sends local link information to policy decision entity, as subscriber's local IP address, user totem information, Access Network information etc.

403, policy decision entity is set up response message to the session of IAD feedback gateway policy control;

Policy decision entity PCRF sets up the session of gateway policy control according to the request message of IAD, and the session of response IAD is set up and finished response message.Policy decision entity can be according to the subscriber policy control law of generations such as the current Access Network information of user terminal, user contracting data based on the user, the generating mode of describing in concrete generating mode and the previous embodiment is similar, repeat no more herein, the subscriber policy control law that generates in the present embodiment can be as shown in table 1, also can adjust according to actual conditions.

Policy decision entity can be carried at the subscriber policy control law that generates and send to IAD in the response message, also can use independent message to send to IAD.Policy control rule based on the user can comprise, user's maximum bandwidth information (as UE-MBR, UE-AMBR etc.), user's assurance bandwidth information (UE-GBR), charging regulation, firewall information or the like.

404, the local connection of IAD response user terminal is set up and is finished;

In the present embodiment, IAD connects to this locality that user terminal sends sets up the local ip address that can also carry in the response message to user's distribution, can also send to terminal to the policing rule that needs user terminal to carry out.

405, user terminal sends to connect to data gateway and sets up request message;

User terminal sends to connect sets up request message to data gateway, the connection of certain packet data network PDN of visit is set up in request, connect and set up the binding update messages Binding Update that request message is specifically as follows two stack mobile IPv 6 protocol DSMIPv6 (or mobile IPv 6 protocol MIPv6), or two stacks move the login request message Registration Request of DSMIPv4 (or mobile IPv 4 agreement MIPv4), and perhaps the security alliance SA of secure tunnel protocol IP sec is set up request message etc.

After data gateway is accepted the request of user terminal, distribute the IP address of this connection use for user terminal.

406, data gateway sends the session of IP-CAN policy control to policy decision entity and sets up request message;

Data gateway sends the session of IP-CAN policy control as PCEF to policy decision entity PCRF and sets up request message, the information of IP-CAN is provided, comprises IP address of terminal, packet data network identification information (for example PDN ID/APN) of user ID, IP-CAN etc.

407, the response message of finishing is set up in the session of policy decision entity response IP-CAN policy control;

408, the connection of data gateway response user terminal is set up and is finished, and carries the IP address allocated into UE, can also carry the policy control rule that user terminal need be carried out;

409, policy decision entity sends the subscriber policy control law to IAD;

The information that policy decision entity can be provided in step 406 according to data gateway, further determine subscriber policy control law based on the user, if it is different to send to the subscriber policy control law of IAD in the subscriber policy control law after determining and the step 403, then issue new subscriber policy control law (i.e. the second subscriber policy control law) to IAD BBERF.

410, IAD BBERF response policy decision entity rule activation result.

Concrete control method is referring to embodiment two

Need to prove that step 409 and step 410 needs are carried out and got final product in the present embodiment after step 406.

Three, user terminal inserts the access service node:

Among aforementioned two embodiment, all be foundation and the renewal of carrying out the policy control session by IAD and policy decision entity, in the present embodiment, the access service node directly and policy decision entity carry out the foundation and the renewal of policy control session, and not implementation strategy control in the access service node, and carry out the foundation and the renewal of policy control session, and in data gateway, carry out policy control to the user by data gateway and policy decision entity.

In the present embodiment, user terminal inserts the access service node, and the access service node is established to the tunnel of data gateway, between user terminal and the access service node, the data of all setting up the IP-CAN granularity between access service node and the data gateway are connected.

In the present embodiment, set up the policy control session between data gateway PCEF and the policy decision entity, data gateway PCEF uses identical policy decision entity for a plurality of IP-CAN that the user sets up.A plurality of IP-CAN information that policy decision entity inserts simultaneously according to the user, generation is based on user's policy control rule, send to data gateway PCEF, carry out respective rule by data gateway PCEF, as carrying out policy control, further send rule to access service node, base station or user terminal by rule.

See also Fig. 5, policy control method the 5th embodiment comprises in the embodiment of the invention:

501, user terminal sends to connect to the access service node and sets up request message;

User terminal sends to connect sets up request message to access service node (for example BBERF), for example, Attach Request message attach request, layer three adheres to triggering message L3 attach trigger, as DHCP (DHCP, Dynamic Host Configuration Protocol) request message, or packet data protocol (PDP, Packet Data Protocol) context activation message, or default bearing is set up message, or PDN connects and to set up request message etc., and the connection of a visit packet data network PDN, i.e. an IP-CAN are set up in request.

502, the access service node sends to connect to data gateway and sets up request message;

The access service node sends to connect sets up request message (setting up message as PDP context activation message, GTP default bearing) to data gateway, and this IP-CAN is set up in request.

503, data gateway sends the policy control session to policy decision entity and sets up request message;

Data gateway sends the policy control session and sets up request message to policy decision entity, and the policy control session is set up in request.Message is carried IP address of terminal, packet data network identification information (as PDN ID/APN) of user ID, IP-CAN etc.

504, policy decision entity is set up response message to data gateway feedback strategy control session;

The response message of finishing is set up in policy decision entity response policy control session.The policy control rule that policy decision entity can generate based on the user sends to data gateway by response message or other single messages.

Wherein, can set up between data gateway PCEF and the policy decision entity based on IP-CAN or/and based on user's policy control session.

The user need set up the situation of a plurality of IP-CAN simultaneously:

1) the policy control session that can set up corresponding each IP-CAN between each IP-CAN of same subscriber, data gateway PCEF and policy decision entity, identical policy decision entity PCRF is used in these IP-CAN policy control sessions simultaneously.Concrete mode can for:

PCEF is for after the user sets up first IP-CAN policy control session, the setting up of follow-up IP-CAN policy control session carried purpose policy decision entity PCRF in the request message address information is (as domain name, IP address etc.), make each IP-CAN of same subscriber use identical policy decision entity PCRF; Perhaps selecting route agent (as DRA) by PCRF is the identical PCRF of each IP-CAN policy control session selection of same subscriber.Specifically can indicate DRA to select identical PCRF for same subscriber by PCEF, perhaps by the DRA configuration, DRA be that identical PCRF is selected in each IP-CAN policy control session of same subscriber.

2) each IP-CAN of same subscriber, can set up a policy control session between data gateway PCEF and the policy decision entity based on the user, belong to the situation of different pieces of information gateway for each IP-CAN, can set up policy control session by a certain data designated gateway (as the data gateway at the IP-CAN place of acquiescence APN correspondence) based on the user.

By above-mentioned method, after making that identical PCRF is used in each IP-CAN policy control session of same subscriber, this PCRF can be according to a plurality of IP-CAN information of this user, generation is based on user's policy control rule, send to data gateway PCEF, specifically can send to PCEF by the session of IP-CAN policy control or based on user's policy control session.For example, the maximum bandwidth information (as APN-AMBR) of each IP-CAN that policy decision entity provides according to PCEF, SPR or HSS generates user's maximum bandwidth information (UE-AMBR), and the maximum bandwidth information that sends the user is to PCEF.PCEF comprises that to the execution of this rule PCEF oneself controls corresponding data flow according to rule, and/or sends to other network elements (comprising access service node, base station, terminal) and control.

The subscriber policy control law that generates in the present embodiment can be as shown in table 1, also can adjust according to actual conditions.

Concrete PCEF to the user carry out policy control mode can for:

The bandwidth that this user data message of transmitting as PCEF takies is greater than this maximum bandwidth parameter, and then PCEF abandons the data message that exceeds portions of bandwidth.

505, the connection of data gateway response access service node is set up and is finished;

506, the connection of access service node response user terminal is set up and is finished.

In the present embodiment, the access service node can be the node of chain of command and the unification of user's face, as SGSN, also can be the network element form that chain of command user face separates, as mobile management entity (MME, MobilityManagement Entity) and SGW.

In the present embodiment, data gateway is after request is set up in the connection that receives the transmission of access service node, send the policy control session to policy decision entity and set up request, in this policy control session foundation request, carry user ID and user related information, policy decision entity receives this policy control session and sets up after the request, generate the subscriber policy control law according to this user ID and the policing parameter that presets, and this rule is sent to data gateway, then the PCEF on the data gateway can carry out policy control to corresponding user according to this rule, carry out policy control and needn't connect to each IP-CAN of user, thereby reduced the consumption of system resource, and can improve the flexibility of policy control.

The above-mentioned concrete mode of having introduced several policy control, introduce the policy control mode under a kind of roaming scence below:

In the present embodiment, visit ground IAD and the policy control session of visit ground policy decision entity foundation based on the user, visit ground policy decision entity and ground, local policy decision entity are set up the policy control session based on IP-CAN; Data gateway and ground, local policy decision entity are set up the policy control session based on IP-CAN.

Ground, local policy decision entity sends to data gateway and visit ground policy decision entity according to the policy control rule of the Business Stream information generation IP-CAN of IP-CAN; The policy control rule that the policy rule information of each IP-CAN that visit ground policy decision entity has been set up according to the user generates user's granularity sends to IAD.

See also Fig. 6, policy control method the 6th embodiment comprises in the embodiment of the invention:

601, user terminal sends to connect to IAD and sets up request message;

602, IAD sends the session of gateway policy control to visit ground policy decision entity and sets up request message;

IAD BBERF sends the session of gateway policy control and sets up request message to visit ground policy decision entity (vPCRF), a policy control session based on the user is set up in request, message is carried user totem information, can also carry the current Access Network information of user (access network type, Access Network position, Access Network sign), terminal capability (QoS ability etc.), conversation type (expression session be based on IP-CAN or based on the user), packet data network identification (as APN, PDN ID etc.).Visit ground policy decision entity is set up this user's policy control session according to request message.Wherein, user totem information can be NAI, IMSI, user's name, telephone number, various unique these users' of expression such as ISDN sign.

Need to prove, if formerly having set up another IP-CAN, this user connected, then may set up policy control session based on the user, at this moment, IAD can send gateway policy control session updates request message, this session is upgraded in request, increases new IP-CAN link information.

603, visit ground policy decision entity sends the session of gateway policy control to ground, local policy decision entity and sets up request message;

Visit ground policy decision entity sends the session of gateway policy control and sets up request message to ground, local policy decision entity, and a policy control session based on IP-CAN is set up in request.Message is carried IP-CAN information (as user totem information, packet data network identification, IP address), visit ground information (visit ground sign, the tactful preference in visit ground) or the like.

604, ground, local policy decision entity is set up response message to visit ground policy decision entity feedback gateway control session;

The policy decision entity response gateway policy control session of ground, local is set up response message and is given visit ground policy decision entity, and the expression session is set up and finished.Ground, message portability local policy decision entity is the policy control rule that IP-CAN generates according to the information of being obtained.

605, visit ground policy decision entity sends the session of gateway policy control to IAD and sets up response message or gateway policy control session updates response message;

The gateway policy control session that visit ground policy decision entity sends according to IAD set up request message set up corresponding strategy control session or according to gateway policy control session updates request message to policy control session upgrade, respond response message afterwards and give IAD, expression user's policy control session is set up or is upgraded and finish.

Need to prove, in the present embodiment, visit ground policy decision entity is simultaneously also according to the IP-CAN policy control rule of obtaining from ground, local policy decision entity, user ID and policing parameter, generation is based on user's subscriber policy control law, comprise the mode of carrying out policy control at the user in this subscriber policy control law, the subscriber policy control law that generates in the present embodiment can be as shown in table 1, also can adjust according to actual conditions.

Generate after the subscriber policy control law, visit ground policy decision entity can be carried at this rule and send to IAD in the response message, perhaps can this subscriber policy control law be sent to IAD with independent message, concrete message format is not done qualification herein yet.

606, IAD sends to connect and sets up request message to data gateway, and this IP-CAN is set up in request;

607, data gateway sends the session of IP-CAN policy control to ground, local policy decision entity and sets up request message;

Data gateway sends the session of IP-CAN policy control and sets up request message to ground, local policy decision entity, the policy control session that IP-CAN is set up in request.Message is carried IP address of terminal, packet data network identification information (as, PDN ID/APN) of user ID, IP-CAN etc.

608, ground, local policy decision entity is set up response message to the session of data gateway feedback IP-CAN policy control;

The response message of finishing is set up in the session of ground, local policy decision entity response IP-CAN policy control.Ground policy decision entity in local can generate policy control rule based on IP-CAN and be carried at and be handed down to data gateway in the message.

609, the connection of data gateway response IAD is set up and is finished;

610, the connection of IAD response user terminal is set up and is finished;

611, ground, local policy decision entity sends IP-CAN policy control rule to visit ground policy decision entity;

The information that ground, local policy decision entity provides in step 607 according to data gateway is further determined the policy control rule of IP-CAN, if policing rule upgrades (rule that promptly is different from step 603 and generated) at 604 o'clock, then issue new policy control rule and give visit ground policy decision entity.

612, visit ground policy decision entity sends subscriber policy control law request message to IAD;

Visit ground policy decision entity is according to the policy control information of the IP-CAN that upgrades, decision-making is based on user's policy control rule, if policy update (rule that issues when being different from step 605) then issues new subscriber policy control law (i.e. the second subscriber policy control law) and gives IAD BBERF.

For example, the maximum bandwidth information (as APN-AMBR) of the newly-built IP-CAN that ground policy decision entity in local provides according to data gateway, be handed down to visit ground policy decision entity, visit ground policy decision entity is adjusted user's maximum bandwidth information (UE-AMBR), and the maximum bandwidth information that sends the user who upgrades is to IAD BBERF.

613, IAD is to visit ground policy decision entity feedback strategy control law response message;

IAD BBERF response visit ground policy decision entity rule activation result.IAD BBERF is according to the corresponding policy control rule of the requesting activation of policy decision entity, customer traffic is carried out QoS and/or the control of chargeing, if desired, IAD may further send policy control information to the base station or/and terminal, be used for the base station or/and terminal is carried out QoS control to data stream.

614, ground, policy decision entity response local, visit ground policy decision entity rule activation result.

In the present embodiment, IAD BBERF is after request is set up in the connection that receives the user terminal transmission, send the session of gateway policy control to visit ground policy decision entity PCRF and set up request message or gateway policy control session updates request message, set up in request message or the gateway policy control session updates request message in the session of gateway policy control and to carry user ID, perhaps also carry some other user related information, visit ground policy decision entity PCRF generates the subscriber policy control law according to the IP-CAN policy control rule that ground, local policy decision entity provides, this subscriber policy control law is sent to IAD, according to this subscriber policy control law corresponding user is carried out policy control by IAD, therefore present embodiment can carry out policy control at the user effectively, carry out policy control and needn't connect to each IP-CAN of user, thereby reduced the consumption of system resource, and can improve the flexibility of policy control;

Secondly, describe the policy control method under the roaming condition in the present embodiment, enlarged the range of application of present embodiment method, further improved the technology flexibility.

Above-mentionedly introduced the policy control method in the embodiment of the invention, introduced the communication system embodiment in the embodiment of the invention below, seen also Fig. 7, the communication system embodiment in the embodiment of the invention comprises:

User terminal 701, access network element 702, data gateway 703 and policy decision entity 704;

Wherein, access network element 702 can be IAD, perhaps is the access service node to be introduced below respectively:

When access network element 702 is IAD:

User terminal 701 is used for sending connection to access network element 702 and sets up request, sets up IP-CAN in order to request and connects;

Access network element 702 is used to receive the connection foundation request that user terminal 701 sends, send connection to data gateway 703 and set up request, send the session of gateway policy control to policy decision entity 704 and set up request message or gateway policy control session updates request message, set up in request message or the gateway policy control session updates request message in the session of gateway policy control and to carry user ID or session identification, or further carry user related information (Access Network information for example, or terminal capability, or information such as conversation type), response message or gateway policy control session updates response message are set up in the gateway policy control session that receives policy decision entity 704 feedbacks, set up request message or the gateway policy control session updates request message from the session of gateway policy control and to obtain the subscriber policy control law, corresponding user is carried out policy control according to this subscriber policy control law;

Data gateway 703, be used to receive the connection foundation request that access network element 702 sends, send the session of IP-CAN policy control according to this request to policy decision entity 704 and set up request, the IP-CAN policy control session of reception policy decision entity 704 feedbacks is set up and is replied;

Policy decision entity 704, be used to receive the gateway policy control session that access network element 702 sends and set up request message or gateway policy control session updates request message, set up or upgrade the session of corresponding gateway policy control, the policing parameter generation subscriber policy control law that session is set up the user ID in request message or the gateway policy control session updates request message and preset according to the gateway policy control is set up response message or gateway policy control session updates response message or other similar message with the subscriber policy control law that generates by the session of gateway policy control and is sent to access network element 702.

In the present embodiment, access network element 702 performed policy control are specifically as follows:

Access network element 702 is judged the data message that receives user's transmission and/or sends to this user's data message whether exceed the maximum bandwidth parameter value, if then access network element 702 abandons and exceeds the partial data message.

When access network element 702 is the access service node:

Access network element 702 is used to receive the connection foundation request that user terminal 701 sends, and sends to connect to set up to data gateway 703 and asks;

Data gateway 703, be used to receive the connection foundation request that access network element 702 sends, send the session of gateway policy control according to this request to policy decision entity 704 and set up request, in this request, carry user ID, or further carry user related information (Access Network information for example, or terminal capability, or information such as conversation type), response message is set up in the gateway policy control session that receives policy decision entity 704 feedbacks, from this response message, obtain the subscriber policy control law, corresponding user is carried out policy control according to this subscriber policy control law;

Policy decision entity 704, be used to receive the gateway policy control session foundation request that data gateway 703 sends, set up or upgrade the session of corresponding gateway policy control, generate the subscriber policy control law according to user ID in the gateway policy control session request of setting up and the policing parameter that presets, the subscriber policy control law that generates is set up by the session of gateway policy control replied or other similar message are sent to data gateway 703.

In the present embodiment, data gateway 703 performed policy control are specifically as follows:

PCEF in the data network element 703 judges the data message that receives user's transmission and/or sends to this user's data message whether exceed the maximum bandwidth parameter value, if then the PCEF in the data network element 703 abandons and exceeds the partial data message.

For ease of understanding, with an instantiation above-mentioned communication system embodiment is elaborated below, be understandable that in other scenes, above-mentioned communication system can be used equally, concrete mode is not given unnecessary details:

User terminal 701 sends to connect to IAD 702 sets up request message;

In the present embodiment, user terminal 701 sends to connect sets up request message to IAD 702, and the connection of a visit packet data network PDN is set up in request, and promptly an IP-CAN connects.

IAD 702 sends the session of gateway policy control to policy decision entity 704 and sets up request message or gateway policy control session updates request message;

In the present embodiment, IAD 702 sends the session of gateway policy control and sets up request message to policy decision entity, and a policy control session based on the user is set up in request, and message is carried user ID.

Need to prove, if formerly having set up another IP-CAN, this user connected, then may set up policy control session based on the user, at this moment, IAD 702 can send gateway policy control session updates request message, this session is upgraded in request, increases new IP-CAN link information.

Request message is set up in the gateway policy control session that policy decision entity 704 sends according to IAD 702 or gateway policy control session updates request message is set up corresponding strategy control session or to policy control session upgrade, respond response message afterwards and give IAD 702, expression user's policy control session is set up and is finished.

Need to prove, in the present embodiment, the user ID that policy decision entity 704 also provides according to IAD 702 simultaneously (perhaps also comprises Access Network information, or terminal capability, or information such as conversation type) and the policing parameter that the presets (maximum bandwidth when signatory, determined of user terminal for example, guarantee bandwidth or qos parameter etc.), generate subscriber policy control law based on the user, comprise the mode of carrying out policy control at the user in this subscriber policy control law.

Generate after the subscriber policy control law, policy decision entity 704 can be carried at this rule and send to IAD 702 in the response message, perhaps can this subscriber policy control law be sent to IAD 702 with independent message, concrete message format is not done qualification herein yet.

IAD 702 sends to connect sets up request message to data gateway 703, and request is set up this IP-CAN and connected;

Data gateway 703 sends the sessions of IP-CAN policy control to policy decision entity 704 and sets up request message, can also generate policy control rule based on IP-CAN and be carried at and be handed down to data gateway 703 in the message.

Data gateway 703 response IADs 702 connect to set up to be finished;

IAD 702 response user terminals 701 connect to set up to be finished;

The information that policy decision entity 704 can be provided according to data gateway 703, further determine subscriber policy control law based on the user, if the subscriber policy control law after determining is different with the subscriber policy control law that sends to IAD 702 before, then issues new subscriber policy control law (i.e. the second subscriber policy control law) and give IAD 702.

IAD 702 carries out QoS and/or the control of chargeing according to the corresponding policy control rule of the requesting activation of policy decision entity 704 to customer traffic.

Concrete control can judge to receive the data message that the user sends and/or send to this user's data message whether exceed the maximum bandwidth parameter value for: access network element 702, if then access network element 702 abandons and exceeds the partial data message.

In the present embodiment, has the BBERF function with access network element 702, data gateway 703 has the PCEF function, policy decision entity 704 is that PCRF is that example describes, be understandable that, when access network element 702/ data gateway 703 has the PEP function, when perhaps policy decision entity 704 is PDF, idiographic flow is identical with above-mentioned flow process, does not give unnecessary details herein.

In the present embodiment, IAD 702 is after request is set up in the connection that receives user terminal 701 transmissions, send the session of gateway policy control to policy decision entity 704 and set up request message or gateway policy control session updates request message, set up in request message or the gateway policy control session updates request message in the session of gateway policy control and to carry user ID, perhaps also carry some other user related information, policy decision entity 704 (comprises user's maximum bandwidth according to presetting policing parameter, or the user guarantees information such as bandwidth) generation subscriber policy control law, this subscriber policy control law is sent to IAD 702, according to this subscriber policy control law corresponding user is carried out policy control by IAD 702, therefore present embodiment can carry out policy control at the user effectively, carry out policy control and needn't connect to each IP-CAN of user, the consumption of system resource can be reduced, and the flexibility of policy control can be improved.

Introduce the policy decision entity embodiment in the embodiment of the invention below, see also Fig. 8, the policy decision entity embodiment in the embodiment of the invention comprises:

Request receiving element 801, be used to receive the policy control conversation request of access network element or data gateway transmission, comprise user ID in this policy control conversation request, this policy control conversation request can be set up request or the request of policy control session updates for the policy control session;

Strategy generation unit 802, be used for according to the user ID of the policy control conversation request of asking receiving element 801 to receive and the policing parameter (maximum bandwidth that comprises the user that presets, guarantee bandwidth, or qos parameter etc.) generate subscriber policy control law based on the user;

Strategy transmitting element 803, be used for setting up response message or policy control session updates response message or other similar message the subscriber policy control law that tactful generation unit 802 generates is sent to access network element or data gateway, be used to indicate access network element or data gateway corresponding user to be carried out policy control according to this subscriber policy control law by the policy control session.

Policy decision entity in the present embodiment can further include:

IP-CAN asks receiving element 804, is used to receive the IP-CAN policy control session foundation request that data gateway sends;

Strategy generation unit 802 also is used for generating the second subscriber policy control law according to the described IP-CAN policy control session request of setting up;

Policy update unit 805 is used for sending the second subscriber policy control law to access network element.

Policy decision entity in the present embodiment can further include:

Roaming control unit 806, be used for sending the policy control session and set up request to ground, local policy decision entity, the policy control session foundation that receives the policy decision entity transmission of ground, local is replied, and carries the IP-CAN policy control rule that ground, local policy decision entity generates in described the replying.

For ease of understanding, with an instantiation above-mentioned policy decision entity embodiment is elaborated below, be understandable that in other scenes, above-mentioned policy decision entity can be used equally, concrete mode is not given unnecessary details:

Request receiving element 801 receives the gateway policy control session that IADs send and sets up request message or gateway policy control session updates request message, according to the gateway policy control session set up request message set up corresponding strategy control session or according to gateway policy control session updates request message to policy control session upgrade.

Strategy generation unit 802 (perhaps also comprises Access Network information according to the user ID that provides in the request of asking receiving element 801 to receive, or terminal capability, or information such as conversation type) and the policing parameter that the presets (maximum bandwidth when signatory, determined of user terminal for example, guarantee bandwidth or qos parameter etc.), generation comprises the mode of carrying out policy control at the user based on user's subscriber policy control law in this subscriber policy control law.

Strategy generation unit 802 generates after the subscriber policy control law, and tactful transmitting element 803 can be carried at this rule and send to IAD in the response message, perhaps also can this subscriber policy control law be sent to IAD with independent message.

In addition, policy decision entity can also receive the IP-CAN policy control session of data gateway transmission and set up request message, the response message of finishing is set up in the session of response IP-CAN policy control, can also generate policy control rule based on IP-CAN and be carried at and be handed down to data gateway in the message.

Need to prove that request receiving element 801 receives the IP-CAN policy control session of data gateway transmission and sets up request message notification strategy generation unit 802 afterwards;

Strategy generation unit 802 can be according to the information that data gateway provided, further determine subscriber policy control law based on the user, if the subscriber policy control law after determining is different with the subscriber policy control law that sends to IAD before, then notification strategy transmitting element 803 issues new subscriber policy control law (i.e. the second subscriber policy control law) and gives IAD.

In the present embodiment, request receiving element 801 receives the gateway policy control session of IAD transmission and sets up after request message or the gateway policy control session updates request message, generate subscriber policy control law by tactful generation unit 802 according to the user ID in this request and the policing parameter that presets based on the user, strategy transmitting element 803 is sent to IAD with the subscriber policy control law that tactful generation unit 802 generates, make IAD to carry out policy control to corresponding user according to this subscriber policy control law, carry out policy control and needn't connect to each IP-CAN of user, thereby reduced the consumption of system resource, and can improve the flexibility of policy control.

Introduce the network element embodiment that is used for policy control in the embodiment of the invention below, see also Fig. 9, the network element embodiment that is used for policy control in the embodiment of the invention comprises:

Connect and set up control unit 901, be used to receive the connection foundation request that user terminal sends, connect with user terminal;

Unit 902 is set up in the policy control session, being used for setting up control unit 901 in connection receives connection that user terminal sends and sets up request message or policy control session updates request message to the session of policy decision entity transmission policy control after setting up request, the session of gateway policy control is set up in request message or the gateway policy control session updates request message and is carried user ID, perhaps can also carry some and user-dependent information;

Strategy acquiring unit 903, be used for setting up unit 902 after request message or policy control session updates request message are set up in the session of policy decision entity transmission policy control when the policy control session, response message or policy control session updates response message are set up in the policy control session that receives the policy decision entity feedback, set up request message or the gateway policy control session updates request message from the session of gateway policy control and read the subscriber policy control law;

Strategy execution unit 904, the subscriber policy control law that is used for getting access to according to tactful acquiring unit 903 is controlled corresponding user's implementation strategy, concrete policy control mode can for:

Access network element is judged the data message that receives user's transmission and/or sends to this user's data message whether exceed the maximum bandwidth parameter value, if then access network element abandons and exceeds the partial data message.

Network element in the present embodiment gathers in practical application can be IAD or data gateway, for ease of understanding, is that IAD is that example describes below with the network element, is understandable that the handling process when this network element is data gateway is similar, repeats no more herein:

Connect the connection of setting up control unit 901 reception user terminals transmissions and for example set up request message, Attach Request message attach request, or layer three adheres to triggering message L3 attach trigger, or mobile IPv 4 (MIPv4) login request message, or request message etc. is set up in the PDN connection, the connection of a visit packet data network PDN is set up in request, and promptly an IP-CAN connects.

The policy control session is set up unit 902 and is set up request message or gateway policy control session updates request message to the session of policy decision entity transmission gateway policy control;

In the present embodiment, the policy control session is set up unit 902 transmission gateway policy control sessions and is set up request message to policy decision entity, and a policy control session based on the user is set up in request, and message is carried user ID.

Need to prove, if formerly having set up another IP-CAN, this user connected, then may set up policy control session based on the user, at this moment, unit 902 is set up in the policy control session can send gateway policy control session updates request message, this session is upgraded in request, increases new IP-CAN link information.

Strategy acquiring unit 903 receives the gateway policy control session of policy decision entity feedback and sets up response message or gateway policy control session updates response message, sets up request message or the gateway policy control session updates request message from the session of gateway policy control and reads the subscriber policy control law;

Strategy execution unit 904 is controlled corresponding user's implementation strategy according to the subscriber policy control law that tactful acquiring unit 903 gets access to.

In the present embodiment, because tactful acquiring unit 903 can obtain the session of gateway policy control from policy decision entity and set up response message or gateway policy control session updates response message, and set up request message or the gateway policy control session updates request message from the session of gateway policy control and to read the subscriber policy control law, according to this subscriber policy control law corresponding user is carried out policy control by strategy execution unit 904, carry out policy control and needn't connect to each IP-CAN of user, thereby reduced the consumption of system resource, and can improve the flexibility of policy control.

One of ordinary skill in the art will appreciate that all or part of step that realizes in the foregoing description method is to instruct relevant hardware to finish by program, described program can be stored in a kind of computer-readable recording medium, this program comprises the steps: when carrying out

Policy decision entity receives the policy control conversation request, comprises user ID or session identification in the described policy control conversation request; Generate the subscriber policy control law corresponding with described user ID or session identification; Send described subscriber policy control law.

The above-mentioned storage medium of mentioning can be a read-only memory, disk or CD etc.

More than a kind of policy control method provided by the present invention and communication system and relevant device are described in detail, for one of ordinary skill in the art, thought according to the embodiment of the invention, part in specific embodiments and applications all can change, in sum, this description should not be construed as limitation of the present invention.

Claims

1, a kind of policy control method is characterized in that, comprising:

Receive the policy control conversation request, comprise user ID or session identification in the described policy control conversation request;

Generate the subscriber policy control law corresponding with described user ID or session identification;

Send described subscriber policy control law.

2, method according to claim 1 is characterized in that, described policy control conversation request is set up request for the policy control session;

Described method also comprises:

Policy decision entity is set up request foundation connects access network IP-CAN based on user or internet protocol-based policy control session according to described policy control session.

3, method according to claim 1 is characterized in that, described policy control conversation request is the request of policy control session updates;

Described method also comprises:

The policy control session that policy decision entity has been set up according to described policy control session updates.

According to claim 2 or 3 described methods, it is characterized in that 4, described transmission subscriber policy control law is specially:

Sending the policy control session that comprises described subscriber policy control law to access network element or data gateway replys.

5, method according to claim 1 is characterized in that, also comprises after the described transmission subscriber policy control law:

Receive the IP-CAN policy control session foundation request that data gateway sends;

Generate the second subscriber policy control law according to the described IP-CAN policy control session request of setting up.

6, method according to claim 5 is characterized in that, described method also comprises:

Send the described second subscriber policy control law to access network element.

7, method according to claim 1 is characterized in that, described method also comprises:

Send the policy control session to ground, local policy decision entity and set up request;

The policy control session foundation that receives the policy decision entity transmission of ground, local is replied, and carries the IP-CAN policy control rule that ground, local policy decision entity generates in described the replying.

8, a kind of policy control method is characterized in that, comprising:

Receive the subscriber policy control law that policy decision entity sends, described subscriber policy control law is used for indication the user is carried out policy control;

When the user carries out transfer of data, inquire about the subscriber policy control law of described user's correspondence;

According to described subscriber policy control law described user is carried out policy control.

9, method according to claim 8 is characterized in that, also comprises before the subscriber policy control law that described reception policy decision entity sends:

Receive to connect to set up and ask or resource allocation request, send the policy control conversation request to policy decision entity, comprise user ID or session identification in the described policy control conversation request according to described connection foundation request or resource allocation request.

10, method according to claim 9 is characterized in that, the subscriber policy control law that described reception policy decision entity sends comprises:

The policy control session that comprises described subscriber policy control law that receives the policy decision entity transmission is replied.

11, according to Claim 8 or 9 described methods, it is characterized in that described subscriber policy control law comprises: based on user's maximum bandwidth parameter value;

Describedly according to described subscriber policy control law corresponding user is carried out policy control and comprises:

Access network element is judged the data message that receives user's transmission and/or sends to this user's data message whether exceed described maximum bandwidth parameter value based on the user, if then access network element abandons and exceeds the partial data message.

12, a kind of communication system is characterized in that, comprising:

Access network element, be used to receive the connection that user terminal sends sets up IP-CAN in order to request and set up request, send connection to data gateway and set up request, send the policy control session to policy decision entity and set up request or the request of policy control session updates, in described policy control session foundation request or the request of policy control session updates, carry user ID or session identification, the policy control session foundation of reception policy decision entity feedback is replied or the policy control session updates is replied, set up from described policy control session and to reply or the policy control session updates is obtained the subscriber policy control law replying, corresponding user is carried out policy control according to this subscriber policy control law;

Data gateway is used to receive the connection foundation request that access network element sends, and sends the session of IP-CAN policy control according to described request to policy decision entity and sets up request, and the IP-CAN policy control session of reception policy decision entity feedback is set up and replied;

Policy decision entity, be used to receive policy control session foundation request or the request of policy control session updates that described access network element sends, set up or upgrade corresponding policy control session, generate the subscriber policy control law, send described subscriber policy control law to access network element.

13, communication system according to claim 12 is characterized in that,

Request is set up in the IP-CAN policy control session that described policy decision entity also is used for sending according to described data gateway, generate the second subscriber policy control law, judge whether the described second subscriber policy control law is consistent with described subscriber policy control law, if inconsistent, then send the described second subscriber policy control law to described access network element.

14, a kind of communication system is characterized in that, comprising:

Access network element is used to receive the connection that user terminal sends sets up IP-CAN in order to request and sets up request, sends to data gateway to connect the request of foundation;

Data gateway, be used to receive the connection foundation request that access network element sends, send the policy control session according to the described connection request of setting up to policy decision entity and set up request or the request of policy control session updates, in described policy control session foundation request or the request of policy control session updates, carry user ID, the policy control session foundation of reception policy decision entity feedback is replied or the policy control session updates is replied, set up from described policy control session and to reply or the policy control session updates is obtained the subscriber policy control law replying, corresponding user is carried out policy control according to this subscriber policy control law;

Policy decision entity, be used to receive the policy control session foundation request that data gateway sends, set up corresponding policy control session, or the policy control session updates request of reception data gateway transmission, upgrade corresponding policy control session, user ID or the session identification set up in request or the request of policy control session updates according to the policy control session generate the subscriber policy control law, send described subscriber policy control law to data gateway.

15, a kind of policy decision entity is characterized in that, comprising:

Ask receiving element, be used to receive the policy control conversation request of access network element or data gateway transmission, comprise user ID or session identification in the described policy control conversation request;

The strategy generation unit is used to generate the subscriber policy control law based on user corresponding with described user ID or session identification;

The strategy transmitting element is used for the subscriber policy control law that tactful generation unit generates is sent to access network element or data gateway.

16, policy decision entity according to claim 15 is characterized in that, described policy decision entity also comprises:

IP-CAN asks receiving element, is used to receive the IP-CAN policy control session foundation request that data gateway sends;

Described tactful generation unit also is used for generating the second subscriber policy control law according to the described IP-CAN policy control session request of setting up.

17, policy decision entity according to claim 16 is characterized in that, described policy decision entity also comprises:

The policy update unit is used for sending the described second subscriber policy control law to access network element.

18, according to each described policy decision entity in the claim 15 to 18, it is characterized in that described policy decision entity also comprises:

The roaming control unit, be used for sending the policy control session and set up request to ground, local policy decision entity, the policy control session foundation that receives the policy decision entity transmission of ground, local is replied, and carries the IP-CAN policy control rule that ground, local policy decision entity generates in described the replying.

19, a kind of network element that is used for policy control is characterized in that, comprising:

Connect and set up control unit, be used to receive the connection foundation request that user terminal sends, connect with user terminal;

The policy control session management unit, be used for setting up control unit and receive connection that user terminal sends and send the policy control session to policy decision entity after setting up request and set up request or the request of policy control session updates in connection, described policy control session set up ask or the request of policy control session updates in carry user ID or session identification;

The strategy acquiring unit is used to receive the subscriber policy control law based on the user that policy decision entity sends;

The strategy execution unit, the subscriber policy control law that is used for getting access to according to tactful acquiring unit is controlled corresponding user's implementation strategy.