CN101959281A - Network access control method, access control equipment and network access system - Google Patents
Network access control method, access control equipment and network access system Download PDFInfo
- Publication number
- CN101959281A CN101959281A CN2009101519895A CN200910151989A CN101959281A CN 101959281 A CN101959281 A CN 101959281A CN 2009101519895 A CN2009101519895 A CN 2009101519895A CN 200910151989 A CN200910151989 A CN 200910151989A CN 101959281 A CN101959281 A CN 101959281A
- Authority
- CN
- China
- Prior art keywords
- access control
- network
- access
- user terminal
- control parameter
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W48/00—Access restriction; Network selection; Access point selection
- H04W48/08—Access restriction or access information delivery, e.g. discovery data delivery
Abstract
The embodiment of the invention relates to a network access control method, access control equipment and a network access system. The network access control method comprises the following steps of: receiving a network access request transmitted by a user terminal, wherein the network access request comprises identifier information of the user terminal; acquiring a disperse access control parameter corresponding to the identifier information; and judging whether to permit the user terminal to access a network according to the disperse access control parameter, and transmitting access permission information to the user terminal if so. The network access control method, the access control equipment and the network access system have the advantages of controlling massive UE to dispersively access the network, lightening network side load and solving the problem of network congestion caused by centralized access of the UE to the network.
Description
Technical field
The embodiment of the invention relates to communication technical field, relates in particular to a kind of access control method, access control equipment and network access system.
Background technology
Along with the continuous development of the communication technology, user terminal (User Equipment, hereinafter to be referred as: UE) can be used to realize various functions.For example, UE can be used for these Machine Type communications such as monitoring of traffic control and management, factory or remote meter reading (Machine Type Communication, hereinafter to be referred as: MTC) use.MTC uses and is meant between one or more network element in the network communication that does not need to carry out under the artificial situation about participating in.
Fig. 1 is the network architecture schematic diagram of access user terminal in the prior art, and as shown in Figure 1, this network architecture comprises UE, access network elements, mobile management network element and the server that connects successively.Wherein, mobile management network element mainly be responsible for Non-Access Stratum (Non Access Stratum, hereinafter to be referred as: NAS) signaling and NAS signaling are encrypted, roaming, are followed the tracks of and distribute UE temporary identity sign and safety function etc.; This server can comprise home subscriber server (Home Subscriber Server, hereinafter to be referred as: HSS) and the application server safeguarded of operator or industry user, main storage and UE or the data or the information of closing on the server with faciation that a plurality of UE form, comprising with the subscription data of UE or faciation pass.In the prior art, UE can initiate to insert request to access network elements arbitrarily at random, thereby access network takies Internet resources.
The inventor is in realizing process of the present invention, there are the following problems at least to find prior art: because network equipment is limited in one's ability, therefore, a large amount of any access networks of UE, network equipment be can cause because UE concentrates access and overload, even the network equipment and network system paralysis caused.
Summary of the invention
The embodiment of the invention provides a kind of access control method, access control equipment and network access system, to realize the control to the UE access network.
The embodiment of the invention provides a kind of access control method, comprising:
Receive the network insertion request that user terminal sends, comprise the identification information of described user terminal in the described network insertion request;
Obtain the dispersion access control parameter corresponding with described identification information;
Judge whether to allow described accessing user terminal to network according to described dispersion access control parameter, and when allowing, send access grant message to described user terminal.
The embodiment of the invention provides a kind of user terminal, comprising:
First receiver module is used to receive the dispersion access control parameter that network side issues;
First acquisition module is used for the temporal information according to the dispersion access control parameter acquiring access network of described first receiver module reception;
First sending module, the described temporal information that is used for obtaining according to described first acquisition module sends the network insertion request that is used for access network to the access control network element.
The embodiment of the invention provides a kind of access control equipment, comprising:
Second receiver module is used to receive the network insertion request that user terminal sends, and comprises the identification information of described user terminal in the described network insertion request;
Second acquisition module is used to obtain the dispersion access control parameter corresponding with described identification information;
Second sending module is used for judging whether to allow described accessing user terminal to network according to described dispersion access control parameter, and sends access grant message to described user terminal when allowing.
The embodiment of the invention also provides a kind of network access system, comprising: access control equipment and server,
Described access control equipment is used to receive the network insertion request that user terminal sends, and comprises the identification information of described user terminal in the described network insertion request; Obtain the dispersion access control parameter corresponding with described identification information; Judge whether to allow described accessing user terminal to network according to described dispersion access control parameter, and when allowing, send access grant message to described user terminal;
Described server is used to store described dispersion access control parameter.
In the embodiment of the invention, UE can determine that network side allows the temporal information of its access network by disperseing the access control parameter, thereby according to this temporal information access network dispersedly; The access control network element disperses the access control parameter by obtaining, can determine whether the UE that sends the network insertion request is allowed to access network in the current time, thereby effectively control UE access network dispersedly according to this dispersion access control parameter, solved because a large amount of UE concentrates access network, make the OL problem of network side, the network congestion problem of having avoided a large amount of UE to concentrate access network to cause further reduces the possibility of the network side paralysis and the system failure.
Description of drawings
In order to be illustrated more clearly in the technical scheme of the embodiment of the invention, to do to introduce simply to the accompanying drawing of required use among the embodiment below, apparently, accompanying drawing in describing below only is some embodiments of the present invention, for those of ordinary skills, under the prerequisite of not paying creative work, can also obtain other accompanying drawing according to these accompanying drawings.
Fig. 1 is the network architecture schematic diagram of access user terminal in the prior art;
Fig. 2 is the flow chart of an embodiment of access control method of the present invention;
Fig. 3 is the signaling process figure of another embodiment of access control method of the present invention;
Fig. 4 is the signaling process figure of another embodiment of access control method of the present invention;
Fig. 5 is the signaling process figure of another embodiment of access control method of the present invention;
Fig. 6 is the structural representation of user terminal embodiment of the present invention;
Fig. 7 is the structural representation of access control equipment embodiment of the present invention;
Fig. 8 is the structural representation of network access system embodiment of the present invention.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the invention, the technical scheme in the embodiment of the invention is clearly and completely described, obviously, described embodiment only is the present invention's part embodiment, rather than whole embodiment.Based on the embodiment among the present invention, those of ordinary skills belong to the scope of protection of the invention not making the every other embodiment that is obtained under the creative work prerequisite.
Fig. 2 is the flow chart of an embodiment of access control method of the present invention, and as shown in Figure 2, the method for present embodiment can comprise:
For instance, because this access control network element both can be mobile management network element, also can be access network elements, therefore, mobile management network element or access network elements can receive the network insertion request that user terminal sends.This network insertion request can be for adhering to request, position updating request, Routing Area Update request, service request or tracing section updating request under different application.The identification information that comprises UE in this network insertion request.This identification information can make the access control network element get access to the dispersion access control parameter corresponding with this UE, and the identification information of described UE can refer to UE sign (as IMSI), group identification (as Group Identity or IMSI etc.) or type of service (Service Type) etc.
In the present embodiment, the dispersion access control parameter that the access control network element obtains also can comprise: the service operation cycle information of UE, perhaps service operation cycle information, UE number information in group and the UE sum in the group, perhaps traffic type information, the perhaps positional information of traffic type information and UE.
Mode for the dispersion access control parameter corresponding of obtaining local storage with described identification information, need static configuration to disperse the access control parameter on this access control network element, perhaps the access control network element has obtained group's dispersion access control parameter, controls the access of crowd interior UE by described group's dispersion access control parameter.
For from HSS, obtaining application server identifier or application server FQDN, and from described application server identifier or application server FQDN corresponding application server obtain mode with the corresponding dispersion access control parameter of described identification information, mobile management network element at first can obtain application server identifier or application server FQDN from HSS.Mobile management network element sends the subscription data request according to this application server identifier or application server FQDN to the application corresponding server, this request is the request that mobile management network element is used for disperseing to the application server acquisition request access control parameter, needs to comprise the identification information of UE in UE or the group in this request.Application server sends to mobile management network element with the dispersion access control parameter of UE in this UE or the group.
HSS sends for obtaining, described HSS is from that obtain with application server identifier or application server FQDN corresponding application server and the mode corresponding dispersion access control parameter of described identification information, the access control network element can send the subscription data request to HSS, this request is the request that mobile management network element is used for disperseing to the application server acquisition request access control parameter, HSS sends a request message to the application corresponding server according to the application server identifier or the application server FQDN of configuration on it, and described request message is HSS disperses message from the access control parameter to server requests.Application server sends to HSS with the dispersion access control parameter of UE in UE or the group, and the dispersion access control parameter that HSS will obtain again feeds back to mobile management network element.
The access control network element is according to the dispersion access control parameter of obtaining, whether the network insertion request that can judge UE is allowed to, if allow, then the access control network element is accepted the network insertion request of UE, send access grant message to UE, so that UE is access network after receiving this access grant message, carry out follow-up Business Processing.
Judge whether to allow described accessing user terminal to network to comprise according to described dispersion access control parameter in the step 203 of present embodiment: the temporal information of determining to allow described accessing user terminal to network according to described dispersion access control parameter, when sending described network insertion request in the scope of described user terminal in described temporal information, then allow described accessing user terminal to network.
For instance, for disperseing the access control parameter is the situation of service operation cycle information, because a lot of application and business all are to carry out regularly, so, receive the network insertion request of UE transmission when the access control network after, can judge that UE is that the access control network element promptly allows this UE access network when sending this network insertion request in the scope of temporal information according to the service operation cycle information.For example a lot of business are to take place once in one day, therefore, if UE can disperse under the access control parameter control in specific one day at random that access network takes place professional at this in UE or the group.
For disperseing the access control parameter is service operation cycle information, the UE number information in group and the situation of the UE sum in the group, compare a kind of service operation cycle information that only adopts as the situation of disperseing the access control parameter, can more accurately control the temporal information that UE disperses access network.Receive the network insertion request of UE transmission when the access control network element after, promptly can determine the temporal information of permission UE access network, thereby judge whether to allow this UE access network according to this temporal information according to the sum of UE in service operation cycle information, numbering in the group and the group.For example the access control network element is according to disperseing the access control parameter information can determine that the service operation cycle information of performed business is 1 month, UE is numbered 20 in the group, UE adds up to 30 in the group, then the access control network element can determine correspondingly that the temporal information of this UE access network of permission is No. 20 of every month, promptly this UE is allowed to No. 20 access networks in every month, thereby guaranteed that crowd interior 30 UE are dispersed in access network every day, avoid the concentrated access of crowd interior UE.
For disperseing the access control parameter is the situation of traffic type information, business with different traffic type information, its time of implementation point or time period difference, therefore, the access control network element is according to disperseing the traffic type information in the access control parameter can determine that UE is allowed to access the temporal information of network.For example the access control network element according to temporal information can allow UE that irrigation and water conservancy irrigates by day access network take place professional, but the UE of customary report data statistics can be allowed to free time at night the section access network take place professional.
For disperseing the access control parameter is the situation of traffic type information and UE positional information, and this positional information also can be used as the reference conditions that the access control network element is judged the temporal information of access network.This positional information refers to the information of UE present position in UE or the group, can refer to Location Area Identification, Location Area Identification tabulation, Routing Area Identifier, Routing Area Identifier tabulation, tracking area identification or tracking area identification list.For example in the Shanghai City electronic meter reading business, the all ammeters in the whole city promptly can be used as UE in the group, the access control network element can determine that according to the residing district of ammeter (for example Huangpu District, Pudong district, Changning District etc.) ammeter is allowed to access the temporal information of network, and for example the ammeter in Pudong district can be allowed to No. 15 to No. 20 access networks in every month.Because type of service difference, the positional information difference, the time period of control UE access network also can be different, therefore the access control network element can carry out different time control at the positional information of different types of service and UE, insert thereby avoid a large amount of UE to concentrate, cause the problem of network congestion even paralysis.
In the present embodiment, the access control network element can send access-reject message to UE when not allowing the UE access network, optionally comprise in this access-reject message to disperse the access control parameter, thereby make this UE when follow-up access network, can disperse the access control parameter with this is foundation.In addition, can also comprise indication information in this access-reject message, this indication information is used to indicate the network insertion request of UE not meet the dispersion Access Control Policy of access control network element, specifically can be presented as cause value.For example Non-access for scattered access rules or specific indication information, for example Non-access for scattered access rules indication.
In the present embodiment, the access control network element disperses the access control parameter by obtaining, can determine whether the UE that sends the network insertion request is allowed to access network in current slot, thereby effectively control UE access network dispersedly according to this dispersion access control parameter, solved because a large amount of UE concentrates access network, make the OL problem of network side, the network congestion problem of having avoided a large amount of UE to concentrate access network to cause further reduces the possibility of the network side paralysis and the system failure.
In another embodiment of access control method of the present invention, before the network insertion request that the reception user terminal described in the above-mentioned steps 201 sends, can also comprise: issue to described user terminal and disperse the access control parameter; The network insertion request that described reception user terminal sends can be specially: receive the temporal information of the dispersion access control parameter acquiring access network that described user terminal issues according to network side and the network insertion request that sends in the scope that described temporal information allows.
For instance, UE can receive the dispersion access control parameter that network side issues in UE or the group, and this dispersion access control parameter is the policy control parameter that network side is used to control UE access network in UE or the group.Network side in the present embodiment can be mobile management network element, access network elements, HSS or application server.Wherein, in the different network architectures, this mobile management network element can be different network entities with access network elements.For example, for mobile management network element, the mobile management network element in the E-UTRAN network can for Mobility Management Entity (Mobility Management Entity, hereinafter to be referred as: MME); In the UTRAN/GERAN network mobile management network element can for the GPRS serving GPRS support node (Serving General Packet Radio Service Support Node, hereinafter to be referred as: SGSN); The mobile management network element of non-3GPP network can be IAD (Access Gateway, hereinafter to be referred as: AGW), promptly the mobile management network element in wlan network can be packet data gateway (the evolved Packet Data Gateway of evolution, hereinafter to be referred as: the mobile management logical functional entity ePDG), at the Wimax network, mobile management network element can be Access Service Network Gateway (Access Service Network Gateway, hereinafter to be referred as: ASN GW), in the cdma network, mobile management network element can (High Rate Packet Data Access Network be hereinafter to be referred as the logical functional entity of mobile management HRPD AN) for high-speed grouped data access network.For access network elements, the access network elements in the E-UTRAN network can be eNodeB or HeNB; In the UTRAN/GERAN network access network elements can for radio network controller (Radio Network Controller, hereinafter to be referred as: RNC) or base station controller (Base Station Controller, hereinafter to be referred as: BSC); In the non-3GPP network, access network elements in wlan network can be the Access Network logical functional entity among the ePDG, at the Wimax network, access network elements can be ASN base station (ASN Base Station, hereinafter to be referred as: ASN BS), in the cdma network, access network elements can be the Access Network logical functional entity among the HRPD AN.The information or the data that comprise UE or group in HSS or the application server, wherein application server is that industry user or operator are used for the server that Access Control Policy or access control parameter issue.Therefore, disperse the access control parameter can static configuration in mobile management network element, access network elements, application server or HSS, and by mobile management network element, access network elements, application server or HSS UE transmission in UE or group.
In the specific implementation process, owing to disperse the access control parameter to send by any one UE in UE or group among mobile management network element, access network elements, application server or the HSS, therefore, the dispersion access control parameter that network side issues can comprise: (Open Mobile Alliance Device Management is hereinafter to be referred as the dispersion access control parameter that sends of message, broadcasting or multicast mode OMA DM) by the Open Mobile Alliance terminal management for HSS or application server; Perhaps (Radio Recourse Control is hereinafter to be referred as RRC) the dispersion access control parameter that sends of message by Radio Resource control for access network elements; Perhaps mobile management network element is by the dispersion access control parameter of NAS message transmission; Perhaps send by HSS or application server, the dispersion access control parameter of access network elements by the RRC forwards; Perhaps send by HSS or application server, the dispersion access control parameter of mobile management network element by the NAS forwards.
When UE with temporal information time corresponding point or time period scope in, when the access control network element sends the network insertion request, the access control network element can be accepted this UE access network, if UE with temporal information time corresponding point or time period scope outside, when the access control network element sends the network insertion request, the access control network element can be refused this UE access network, thereby the time to the UE access network is controlled, make in UE or the group UE disperse under the access control parameter control access network dispersedly, avoid the concentrated access network of UE in UE or the group, cause the problem of network congestion.
In the present embodiment, UE is by receiving the dispersion access control parameter that network side issues in UE or the group, can determine that network side allows the temporal information of its access network, thereby access network dispersedly in the scope that temporal information allows, efficiently solve because a large amount of UE concentrates access network, make the OL problem of network side, the network congestion problem of having avoided a large amount of UE to concentrate access network to cause further reduces the possibility of the network side paralysis and the system failure.
Adopt concrete example that access control method of the present invention is elaborated below.
Fig. 3 is the signaling process figure of another embodiment of access control method of the present invention, and as shown in Figure 3, the dispersion access control parameter configuration in the present embodiment is in HSS or application server.HSS or application server will disperse the access control parameter to send to UE by OMA DM, broadcasting or multicast mode.The access control network element is a mobile management network element.Particularly, the method for present embodiment comprises:
Step 301, HSS/ application server will disperse the access control parameter to send to UE by OMA DM message, broadcasting or multicast mode;
UE in the present embodiment both can be a UE, also can be UE in the group (UE in one or more group).Wherein, disperse the access control parameter to illustrate in the aforementioned embodiment, repeat no more.
Step 302, UE are according to disperseing the access control parameter to send the network insertion request to mobile management network element;
In the specific implementation process, the identification information that can comprise UE in this network insertion request, this network insertion request can send to access network elements earlier, access network elements can comprise the residing positional information of UE to mobile management network element then, and the positional information here can be represented the information of UE present position for Location Area Identification, Routing Area Identifier or the tracking area identification etc. of UE.This network insertion request can be to adhere to request, position updating request, Routing Area Update request, service request or tracing section updating request.
Step 303, mobile management network element can obtain from the HSS/ application server and disperse the access control parameter.
The dispersion access control parameter that mobile management network element obtains and how to obtain and disperse the access control parameter is described in detail in access control method of the present invention, repeats no more herein.
Step 304, mobile management network element determine to allow the temporal information of UE access network according to the dispersion access control parameter of obtaining;
Mobile management network element can judge whether to allow the UE access network according to this temporal information.
Step 305, mobile management network element send to UE and accept message or access-reject message.
Judge UE when mobile management network element and when in the scope of definite temporal information, sending the network insertion request, then allow described this UE access network, send to UE and accept message, otherwise send access-reject message to UE.
Under different application, it can be to adhere to accept message, position and upgrade and accept that message, Routing Area Update are accepted message, message is accepted in service or tracing section updating is accepted message that message is accepted in this access; Access-reject message can be to adhere to refuse information, position renewal refuse information, Routing Area Update Reject message, service-denial or tracing section updating refuse information.
Present embodiment adopts mobile management network element as the access control network element, UE is by receiving the dispersion access control parameter that the HSS/ application server issues in UE or the group, can determine that mobile management network element allows the temporal information of its access network, thereby according to this temporal information access network dispersedly; Mobile management network element disperses the access control parameter by obtaining, can determine whether the UE that sends the network insertion request is allowed to access network in the current time, thereby effectively control UE access network dispersedly according to this dispersion access control parameter, solved because a large amount of UE concentrates access network, make the OL problem of network side, the network congestion problem of having avoided a large amount of UE to concentrate access network to cause further reduces the possibility of the network side paralysis and the system failure.
Fig. 4 is the signaling process figure of another embodiment of access control method of the present invention, and as shown in Figure 4, the dispersion access control parameter configuration in the present embodiment is in HSS or application server.The access control network element is a mobile management network element.Mobile management network element obtains from HSS or application server and disperses the access control parameter, should disperse the access control parameter to send to UE by NAS message then.UE in the present embodiment both can be a UE, also can be UE in the group (UE in one or more group).Wherein, disperse the access control parameter to illustrate in the aforementioned embodiment, repeat no more.Particularly, the method for present embodiment comprises:
Step 401, mobile management network element obtain from the HSS/ application server and disperse the access control parameter;
Step 402, mobile management network element should disperse the access control parameter to send to UE by NAS message;
Step 403, UE are according to disperseing the access control parameter to send the network insertion request to mobile management network element;
Step 404, mobile management network element are according to disperseing the access control parameter to determine to allow the temporal information of UE access network;
Step 405, mobile management network element send to UE and accept message or access-reject message.
Present embodiment adopts mobile management network element as the access control network element, the dispersion access control parameter that UE obtains and issues from the HSS/ application server by the receiving mobility managed network element in UE or the group, can determine that mobile management network element allows the temporal information of its access network, thereby according to this temporal information access network dispersedly; Mobile management network element disperses the access control parameter by obtaining, can determine whether the UE that sends the network insertion request is allowed to access network in current slot, thereby effectively control UE access network dispersedly according to this dispersion access control parameter, solved because a large amount of UE concentrates access network, make the OL problem of network side, the network congestion problem of having avoided a large amount of UE to concentrate access network to cause further reduces the possibility of the network side paralysis and the system failure.
Fig. 5 is the signaling process figure of another embodiment of access control method of the present invention, and as shown in Figure 5, the dispersion access control parameter configuration in the present embodiment is in HSS or application server.The access control network element is an access network elements.Access network elements can obtain from HSS or application server and disperse the access control parameter, should disperse the access control parameter to send to UE by RRC message then.UE in the present embodiment both can be a UE, also can be UE in the group (UE in one or more group).Wherein, disperse the access control parameter to illustrate in the aforementioned embodiment, repeat no more.Particularly, the method for present embodiment comprises:
Step 501, access network elements obtain from the HSS/ application server and disperse the access control parameter;
Step 502, access network elements should disperse the access control parameter to send to UE by RRC message;
Step 503, UE are according to disperseing the access control parameter to send the network insertion request to access network elements;
Step 504, access network elements are according to the temporal information of disperseing the definite UE of permission of access control parameter access network, and judgement allows the UE access network;
Step 505, access network elements send the network insertion request to mobile management network element;
When not allowing the UE access network, then directly send access-reject message to UE.
Step 506, mobile management network element send to access network elements and accept message;
Step 507, access network elements send to UE and accept message.
Present embodiment adopts access network elements as the access control network element, UE is by receiving the dispersion access control parameter that access network elements obtains and issues from the HSS/ application server in UE or the group, can determine that access network elements allows the temporal information of its access network, thereby according to this temporal information access network dispersedly; Access network elements disperses the access control parameter by obtaining, can determine whether the UE that sends the network insertion request is allowed to access network in the current time, thereby effectively control UE access network dispersedly according to this dispersion access control parameter, solved because a large amount of UE concentrates access network, make the OL problem of network side, the network congestion problem of having avoided a large amount of UE to concentrate access network to cause further reduces the possibility of the network side paralysis and the system failure.
Fig. 6 is the structural representation of user terminal embodiment of the present invention, as shown in Figure 6, the user terminal of present embodiment comprises: first receiver module 11, first acquisition module 12 and first sending module 13, and wherein, first receiver module 11 is used to receive the dispersion access control parameter that network side issues; First acquisition module 12 is used for the temporal information according to the dispersion access control parameter acquiring access network of described first receiver module 11 receptions; The described temporal information that first sending module 13 is used for obtaining according to described first acquisition module 12 sends the network insertion request that is used for access network to the access control network element.
The operation principle of the user terminal of present embodiment is identical with the principle of access network processing method embodiment shown in Figure 2, repeats no more.
The UE of present embodiment is by receiving the dispersion access control parameter that network side issues, can determine that the access control network element allows the temporal information of its access network, thereby according to this temporal information access network dispersedly, efficiently solve because a large amount of UE concentrates access network, make the OL problem of network side, the network congestion problem of having avoided a large amount of UE to concentrate access network to cause further reduces the possibility of the network side paralysis and the system failure.
Fig. 7 is the structural representation of access control equipment embodiment of the present invention, as shown in Figure 7, the access control equipment of present embodiment can comprise: second receiver module 21, second acquisition module 22 and second sending module 23, wherein, second receiver module 21 is used to receive the network insertion request that user terminal sends, the identification information that comprises described user terminal in the described network insertion request, the identification information front embodiment of user terminal has specific descriptions; Second acquisition module 22 is used to obtain the dispersion access control parameter corresponding with described identification information; Second sending module 23 is used for judging whether to allow described accessing user terminal to network according to described dispersion access control parameter, and sends access grant message to described user terminal in the permission time, for described accessing user terminal to network.
In another embodiment of access control equipment of the present invention, second sending module 23 is also used with before the network requests that receives the user terminal transmission, issues to described user terminal and disperses the access control parameter.
In another embodiment of access control equipment of the present invention, second sending module 23 also is used for when not allowing described accessing user terminal to network, send access-reject message to described user terminal, comprise described dispersion access control parameter in the described access-reject message.
The operation principle of above-mentioned access control equipment embodiment is identical with the principle of access control method embodiment shown in Figure 2, repeats no more.
Among the above-mentioned access control equipment embodiment, access control equipment disperses the access control parameter by obtaining, can determine whether the UE that sends the network insertion request is allowed to access network in the current time, thereby effectively control UE access network dispersedly according to this dispersion access control parameter, solved because a large amount of UE concentrates access network, make the OL problem of network side, the network congestion problem of having avoided a large amount of UE to concentrate access network to cause further reduces the possibility of the network side paralysis and the system failure.
Fig. 8 is the structural representation of network access system embodiment of the present invention, as shown in Figure 8, the network access system of present embodiment can comprise: access control equipment 1 and server 2, wherein, access control equipment 1 is used to receive the network insertion request that user terminal sends, and comprises the identification information of described user terminal in the described network insertion request; Obtain the dispersion access control parameter corresponding with described identification information; Judge whether to allow described accessing user terminal to network according to described dispersion access control parameter, and in the permission time, send access grant message, for described accessing user terminal to network to described user terminal; Server 2 is used to store described dispersion access control parameter.
The operation principle of the network access system of present embodiment is identical with the principle of the access control method embodiment shown in Fig. 3~5, repeats no more.
In the network access system of present embodiment, UE can determine that the access control network element allows the temporal information of its access network by disperseing the access control parameter, thereby according to this temporal information access network dispersedly; Access control equipment disperses the access control parameter by obtaining, can determine whether the UE that sends the network insertion request is allowed to access network in the current time, thereby effectively control UE access network dispersedly according to this dispersion access control parameter, solved because a large amount of UE concentrates access network, make the OL problem of network side, the network congestion problem of having avoided a large amount of UE to concentrate access network to cause further reduces the possibility of the network side paralysis and the system failure.
It should be noted that at last: above embodiment is only in order to technical scheme of the present invention to be described but not limit it, although the present invention is had been described in detail with reference to preferred embodiment, those of ordinary skill in the art is to be understood that: it still can make amendment or be equal to replacement technical scheme of the present invention, and these modifications or be equal to replacement and also can not make amended technical scheme break away from the spirit and scope of technical solution of the present invention.
Claims (12)
1. an access control method is characterized in that, comprising:
Receive the network insertion request that user terminal sends, comprise the identification information of described user terminal in the described network insertion request;
Obtain the dispersion access control parameter corresponding with described identification information;
Judge whether to allow described accessing user terminal to network according to described dispersion access control parameter, and when allowing, send access grant message to described user terminal.
2. access control method according to claim 1 is characterized in that, describedly obtains the dispersion access control parameter corresponding with described identification information, comprising:
Obtain the dispersion access control parameter corresponding of local storage with described identification information; Perhaps
From home subscriber server, obtain application server identifier or application server full name domain name, and from described application server identifier or application server full name domain name corresponding application server obtain the dispersion access control parameter corresponding with described identification information; Perhaps
Obtain that home subscriber server sends, described home subscriber server the dispersion access control parameter corresponding with described identification information from obtaining with application server identifier or application server full name domain name corresponding application server.
3. access control method according to claim 1 is characterized in that, describedly judges whether to allow described accessing user terminal to network according to described dispersion access control parameter, comprising:
Determine to allow the temporal information of described accessing user terminal to network according to described dispersion access control parameter, when sending described network insertion request in the scope of described user terminal in described temporal information, then allow described accessing user terminal to network.
4. access control method according to claim 1 is characterized in that, when not allowing described accessing user terminal to network, sends access-reject message to described user terminal, comprises described dispersion access control parameter in the described access-reject message.
5. access control method according to claim 1 is characterized in that, before the network insertion request that described reception user terminal sends, also comprises:
Issue dispersion access control parameter to described user terminal;
The network insertion request that described reception user terminal sends is specially: receive described user terminal according to the temporal information of the dispersion access control parameter acquiring access network that issues and the network insertion request that sends in the scope that described temporal information allows.
6. access control method according to claim 5 is characterized in that, the dispersion access control parameter that issues comprises:
The dispersion access control parameter that home subscriber server or application server send by open mobile architecture terminal management message, broadcasting or multicast mode; Perhaps
The dispersion access control parameter that access network elements sends by radio resource control information; Perhaps
The dispersion access control parameter that mobile management network element sends by non-access layer information; Perhaps
By home subscriber server or application server dispersion access control parameter that send, that access network elements is transmitted by radio resource control information; Perhaps
By home subscriber server or application server dispersion access control parameter that send, that mobile management network element is transmitted by non-access layer information.
7. according to the described access control method of arbitrary claim in the claim 1~6, it is characterized in that described dispersion access control parameter comprises at least one in the following parameter:
Service operation cycle information, perhaps service operation cycle information, user terminal number information in group and the user terminal sum in the group, perhaps traffic type information, perhaps traffic type information and position information of user's terminal.
8. a user terminal is characterized in that, comprising:
First receiver module is used to receive the dispersion access control parameter that network side issues;
First acquisition module is used for the temporal information according to the dispersion access control parameter acquiring access network of described first receiver module reception;
First sending module, the described temporal information that is used for obtaining according to described first acquisition module sends the network insertion request that is used for access network to the access control network element.
9. an access control equipment is characterized in that, comprising:
Second receiver module is used to receive the network insertion request that user terminal sends, and comprises the identification information of described user terminal in the described network insertion request;
Second acquisition module is used to obtain the dispersion access control parameter corresponding with described identification information;
Second sending module is used for judging whether to allow described accessing user terminal to network according to described dispersion access control parameter, and sends access grant message to described user terminal when allowing.
10. access control equipment according to claim 9 is characterized in that, described second sending module is also used with before the network requests that receives the user terminal transmission, issues to described user terminal and disperses the access control parameter.
11. according to claim 9 or 10 described access control equipments, it is characterized in that, described second sending module also is used for when not allowing described accessing user terminal to network, sends access-reject message to described user terminal, comprises described dispersion access control parameter in the described access-reject message.
12. a network access system is characterized in that, comprising: access control equipment and server,
Described access control equipment is used to receive the network insertion request that user terminal sends, and comprises the identification information of described user terminal in the described network insertion request; Obtain the dispersion access control parameter corresponding with described identification information; Judge whether to allow described accessing user terminal to network according to described dispersion access control parameter, and when allowing, send access grant message to described user terminal;
Described server is used to store described dispersion access control parameter.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009101519895A CN101959281A (en) | 2009-07-15 | 2009-07-15 | Network access control method, access control equipment and network access system |
| PCT/CN2010/074044 WO2011006410A1 (en) | 2009-07-15 | 2010-06-18 | Network access control method, network access control device and network access system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2009101519895A CN101959281A (en) | 2009-07-15 | 2009-07-15 | Network access control method, access control equipment and network access system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101959281A true CN101959281A (en) | 2011-01-26 |
Family
ID=43448931
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2009101519895A Pending CN101959281A (en) | 2009-07-15 | 2009-07-15 | Network access control method, access control equipment and network access system |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN101959281A (en) |
| WO (1) | WO2011006410A1 (en) |
Cited By (17)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102572722A (en) * | 2012-01-19 | 2012-07-11 | 大唐移动通信设备有限公司 | Message transmission method and equipment based on cluster users |
| CN102625420A (en) * | 2011-01-31 | 2012-08-01 | 中兴通讯股份有限公司 | Network access method and system |
| WO2012136031A1 (en) * | 2011-04-08 | 2012-10-11 | 中兴通讯股份有限公司 | Method and system for controlling data transceiving of machine type communication terminal |
| CN102905344A (en) * | 2011-07-26 | 2013-01-30 | 中兴通讯股份有限公司 | Method and system for access barring, network element on network side and UE (user equipment) |
| CN102905388A (en) * | 2011-07-26 | 2013-01-30 | 中兴通讯股份有限公司 | Method and system for access control and network provider element |
| CN103096418A (en) * | 2011-11-04 | 2013-05-08 | 中兴通讯股份有限公司 | Access control implementation method and system |
| CN103702380A (en) * | 2012-09-27 | 2014-04-02 | 华为技术有限公司 | Mobile management network element and mobile management method |
| CN103746887A (en) * | 2013-12-30 | 2014-04-23 | 重庆金美通信有限责任公司 | Method for activating locomotive access network |
| CN105247900A (en) * | 2013-10-15 | 2016-01-13 | 华为技术有限公司 | Method for controlling group to access wireless network and related apparatus |
| WO2016201798A1 (en) * | 2015-06-18 | 2016-12-22 | 中兴通讯股份有限公司 | Terminal access control method and apparatus, communications system, and computer storage medium |
| WO2017049461A1 (en) * | 2015-09-22 | 2017-03-30 | 华为技术有限公司 | Access method, device and system for user equipment (ue) |
| CN102651853B (en) * | 2011-02-28 | 2017-05-10 | 北京三星通信技术研究有限公司 | Random access method for machine-to-machine (M2M) terminals |
| CN108260223A (en) * | 2016-12-28 | 2018-07-06 | 中国移动通信有限公司研究院 | A kind of random access control method and device |
| CN109417490A (en) * | 2016-07-30 | 2019-03-01 | 华为技术有限公司 | A kind of access control method and device |
| CN110248409A (en) * | 2019-06-27 | 2019-09-17 | 海能达通信股份有限公司 | Terminal registration method and system |
| WO2021233135A1 (en) * | 2020-05-20 | 2021-11-25 | 展讯通信(上海)有限公司 | Access control method and apparatus, and storage medium and terminal |
| WO2022166017A1 (en) * | 2021-02-03 | 2022-08-11 | 华为技术有限公司 | Method for controlling terminal device to access network, and communication apparatus and system |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101389137A (en) * | 2008-10-28 | 2009-03-18 | 华为技术有限公司 | Method and apparatus for access control in CDMA system |
| CN101449600A (en) * | 2006-05-19 | 2009-06-03 | 艾利森电话股份有限公司 | Access control in a mobile communication system |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20050141546A1 (en) * | 2003-12-31 | 2005-06-30 | Lg Electronics Inc. | Method of avoiding collisions between access terminals |
| CN101312410B (en) * | 2007-05-24 | 2011-12-28 | 上海贝尔阿尔卡特股份有限公司 | Control apparatus and method for controlling access of multiple kinds of service in same user side interface |
| CN101686461A (en) * | 2008-09-23 | 2010-03-31 | 华为技术有限公司 | Method, system and network element of access control |
| CN101742614B (en) * | 2008-11-27 | 2014-07-09 | 华为技术有限公司 | Method and network equipment for controlling users to access |
-
2009
- 2009-07-15 CN CN2009101519895A patent/CN101959281A/en active Pending
-
2010
- 2010-06-18 WO PCT/CN2010/074044 patent/WO2011006410A1/en active Application Filing
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101449600A (en) * | 2006-05-19 | 2009-06-03 | 艾利森电话股份有限公司 | Access control in a mobile communication system |
| CN101389137A (en) * | 2008-10-28 | 2009-03-18 | 华为技术有限公司 | Method and apparatus for access control in CDMA system |
Non-Patent Citations (3)
| Title |
|---|
| 3GPP: "《3GPP TS 22.368 V0.4.0,3rd Generation Partnership Project;Technical Specification Group Services and System Aspects;Service requirements for machine-type communications;Stage 1(Release 10)》", 25 May 2009 * |
| QUALCOMM EUROPE: "《3GPP TSG CT WG1 Meeting #55,C1-083428,Principles of Access Control for CSG Cells》", 22 August 2008 * |
| SAMSUNG: "《3GPP TSG SA WG2 Meeting #72,TD S2-092052,Access control mechanism》", 24 March 2009 * |
Cited By (29)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102625420B (en) * | 2011-01-31 | 2017-03-15 | 中兴通讯股份有限公司 | Method for network access and system |
| CN102625420A (en) * | 2011-01-31 | 2012-08-01 | 中兴通讯股份有限公司 | Network access method and system |
| CN102651853B (en) * | 2011-02-28 | 2017-05-10 | 北京三星通信技术研究有限公司 | Random access method for machine-to-machine (M2M) terminals |
| WO2012136031A1 (en) * | 2011-04-08 | 2012-10-11 | 中兴通讯股份有限公司 | Method and system for controlling data transceiving of machine type communication terminal |
| CN102905344A (en) * | 2011-07-26 | 2013-01-30 | 中兴通讯股份有限公司 | Method and system for access barring, network element on network side and UE (user equipment) |
| CN102905388A (en) * | 2011-07-26 | 2013-01-30 | 中兴通讯股份有限公司 | Method and system for access control and network provider element |
| WO2013013531A1 (en) * | 2011-07-26 | 2013-01-31 | 中兴通讯股份有限公司 | Method and system for access barring, and network side network element |
| CN103096418A (en) * | 2011-11-04 | 2013-05-08 | 中兴通讯股份有限公司 | Access control implementation method and system |
| CN103096418B (en) * | 2011-11-04 | 2018-11-27 | 中兴通讯股份有限公司 | A kind of realization method and system of access control |
| CN102572722A (en) * | 2012-01-19 | 2012-07-11 | 大唐移动通信设备有限公司 | Message transmission method and equipment based on cluster users |
| US9860922B2 (en) | 2012-01-19 | 2018-01-02 | Datang Mobile Communications Equipment Co., Ltd | Trunking user based message transmission method and device |
| CN102572722B (en) * | 2012-01-19 | 2015-07-15 | 大唐移动通信设备有限公司 | Message transmission method and equipment based on cluster users |
| CN103702380A (en) * | 2012-09-27 | 2014-04-02 | 华为技术有限公司 | Mobile management network element and mobile management method |
| WO2014048099A1 (en) * | 2012-09-27 | 2014-04-03 | 华为技术有限公司 | Mobility management network element and method |
| CN103702380B (en) * | 2012-09-27 | 2017-11-28 | 华为技术有限公司 | A kind of mobile management network element and method |
| CN105247900A (en) * | 2013-10-15 | 2016-01-13 | 华为技术有限公司 | Method for controlling group to access wireless network and related apparatus |
| CN103746887A (en) * | 2013-12-30 | 2014-04-23 | 重庆金美通信有限责任公司 | Method for activating locomotive access network |
| WO2016201798A1 (en) * | 2015-06-18 | 2016-12-22 | 中兴通讯股份有限公司 | Terminal access control method and apparatus, communications system, and computer storage medium |
| CN106332220A (en) * | 2015-06-18 | 2017-01-11 | 中兴通讯股份有限公司 | Terminal access control method and device and communication system |
| US11178584B2 (en) | 2015-09-22 | 2021-11-16 | Huawei Technologies Co., Ltd. | Access method, device and system for user equipment (UE) |
| WO2017049461A1 (en) * | 2015-09-22 | 2017-03-30 | 华为技术有限公司 | Access method, device and system for user equipment (ue) |
| CN109417490A (en) * | 2016-07-30 | 2019-03-01 | 华为技术有限公司 | A kind of access control method and device |
| US10827557B2 (en) | 2016-07-30 | 2020-11-03 | Huawei Technologies Co., Ltd. | Network access control method and apparatus |
| CN108260223A (en) * | 2016-12-28 | 2018-07-06 | 中国移动通信有限公司研究院 | A kind of random access control method and device |
| CN108260223B (en) * | 2016-12-28 | 2020-07-03 | 中国移动通信有限公司研究院 | Random access control method and device |
| CN110248409A (en) * | 2019-06-27 | 2019-09-17 | 海能达通信股份有限公司 | Terminal registration method and system |
| CN110248409B (en) * | 2019-06-27 | 2022-04-15 | 海能达通信股份有限公司 | Terminal registration method and system |
| WO2021233135A1 (en) * | 2020-05-20 | 2021-11-25 | 展讯通信(上海)有限公司 | Access control method and apparatus, and storage medium and terminal |
| WO2022166017A1 (en) * | 2021-02-03 | 2022-08-11 | 华为技术有限公司 | Method for controlling terminal device to access network, and communication apparatus and system |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2011006410A1 (en) | 2011-01-20 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101959281A (en) | Network access control method, access control equipment and network access system | |
| CN109151906B (en) | Communication method, network equipment, terminal equipment and system | |
| CA2787352C (en) | Method and system for controlling machine type communication equipment to access network | |
| CN101931859B (en) | Mobile communication paging method, system and device | |
| JP5690405B2 (en) | Radio resource control method and system | |
| CN110167190A (en) | Session establishing method and equipment | |
| CN101895858A (en) | Location update strategy acquisition, location update reject and paging methods and equipment | |
| CN106664730B (en) | Management method and related device of wireless communication system | |
| US11153809B2 (en) | Managing dedicated and common system information | |
| CN101534566B (en) | Method for paging users, wireless access equipment and terminal | |
| EP3219158B1 (en) | Centralized location control server | |
| CN102948203B (en) | Load control method and equipment and communication system | |
| DE102012100303A1 (en) | A stateful paging monitor and method for controlling a stateful paging monitor | |
| WO2013013531A1 (en) | Method and system for access barring, and network side network element | |
| CN101998575B (en) | Method, device and system for access control | |
| CN106572482B (en) | Parameter configuration method and device and core network self-configuration self-optimization platform | |
| CN102340842B (en) | Resource control method and device and base station | |
| CN102118830B (en) | Access control method, device and system. | |
| CN102625271A (en) | Signaling optimization method and system for MTC devices set together | |
| CN102118829B (en) | Access control method, device and system | |
| US9525980B2 (en) | Method and system for triggering terminal group | |
| CN101296171B (en) | Method and system for establishing bearing | |
| US8326280B2 (en) | Call admission control method and radio controller apparatus | |
| CN102056139A (en) | Method and device for reducing reported information quantity | |
| CN105246107B (en) | A kind of turn-on time dispatching method towards MTC application |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20110126 |