CN102026102B - Access control method and system - Google Patents
Access control method and system Download PDFInfo
- Publication number
- CN102026102B CN102026102B CN200910176598.9A CN200910176598A CN102026102B CN 102026102 B CN102026102 B CN 102026102B CN 200910176598 A CN200910176598 A CN 200910176598A CN 102026102 B CN102026102 B CN 102026102B
- Authority
- CN
- China
- Prior art keywords
- source node
- authority
- access control
- access
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Abstract
The invention provides an access control method and system of closed subscriber group (CSG) cells. The access control method comprises the following steps: a source node obtains the access control right for controlling subscriber equipment to access the CSG cells; and the source node controls the subscriber equipment to access the CSG cells. The access control system comprises the source node and a mobility management entity (MME), wherein the source node comprises an enabling module, a right obtaining module and an access control module; and the MME comprises an auditing module and a right transfer module. The source node is used for determining whether the subscriber equipment has right to access the CSG cells by providing the source node with the access control right, thus alleviating the processing load of the MME.
Description
Technical field
The application relates to wireless communication field, relates in particular to a kind of by the method and system of source node control subscriber equipment access into closed subscriber group cell.
Background technology
3G technology progressively enter commercial in, industry has started the research and development work to 4G technology.From the second half year in 2004, third generation partner program (3rd GenerationPartnership Project is called for short 3GPP) started Long Term Evolution (Long Term Evolution is called for short LTE) project.LTE system is made up of core net and Access Network two parts.Core net comprises mobile management entity (Mobility Management Entity is called for short MME) and gateway (Serving Gateway is called for short S-GW).Access Network is made up of several nodes, and described node can comprise evolved Node B (Evolution Node B is called for short eNodeB) and the evolved Node B of family (the being called for short Home eNode B) composition that operator disposes.User is by subscriber equipment, the community that the such as access such as mobile phone, net book eNode B or Home eNode B cover and obtain the service that eNode B or Home eNode B provide.Some community allows user arbitrarily to access, and such community is known as common cell.And some community only allows some to have user's access of access authority, these users with access authority form a closed user group (Closed Subscriber Group, be called for short CSG), such community is known as closed user group cell (being called for short CSG community).Therefore, need to the user who attempt to access CSG community be judged and be limited.
At present, in prior art, control subscriber equipment access CSG community by the MME in core net.MME can obtain the user device list that allows access GaiCSG community from the eNode B under target CS G community or Home eNode B.There is the relation mapping table of authority access CSG community with it because MME is responsible for maintenance customer's device identification, thereby can know according to this mapping table certain subscriber equipment has authority to access which CSG community.MME compares the permission access user device list of GaiCSG community obtaining from target CS G community and the relation mapping table of the customer equipment identification YuCSG community of self maintained, can determine whether certain subscriber equipment has authority access GaiCSG community.
Along with the continuous increase of CSG number of users, the pressure that MME carries out the access control of CSG community also increases thereupon.Therefore the access control of, selecting node outside MME to realize CSG community in cordless communication network becomes problem demanding prompt solution.
Summary of the invention
Carry out the load of CSG community access control in order to alleviate MME, the application provides a kind of access control authority that makes source node obtain control subscriber equipment access CSG community on the one hand, by the connection control method of described source node control subscriber equipment access CSG community.
The application provides a kind of CSG access control system of community on the other hand.Described access control system comprises source node and mobile management entity.Described source node comprises: enable module, for making described source node there is the access control ability of control subscriber equipment access CSG community; Authority acquiring module, obtains by sending request to described mobile management entity the access control authority of controlling subscriber equipment access CSG community; Access control module, the access control control of authority subscriber equipment access CSG community based on obtaining from mobile management entity.Described mobile management entity comprises auditing module and authority shift module, the request of the authority acquiring module of described auditing module to described source node is examined, and auditing result is sent to authority shift module, the auditing result of described authority shift module based on described auditing module sends to the authority acquiring module of described source node ratify a motion message or refusal request message.
The application, by making source node obtain access control authority, determines by source node whether subscriber equipment has authority access CSG community, thereby can alleviate the processing load of MME.
Accompanying drawing explanation
Fig. 1 shows the connection control method flow chart in the application's the first embodiment;
Fig. 2 shows the connection control method flow chart in the application's the second embodiment;
Fig. 3 shows the connection control method flow chart in the application's the 3rd embodiment;
Fig. 4 shows the schematic block diagram of the application's access control system.
Embodiment
In this application, before subscriber equipment access target CS G community, be called source node for this subscriber equipment provides the node of service, this source node can be eNode B or Home eNodeB, and the community that this source node covers can be HuoCSG community, common cell.Describe the connection control method that passes through source node control subscriber equipment access CSG community according to the application in detail below with reference to Fig. 1-3.
Shown in Fig. 1 according in the connection control method of the first embodiment of the application, in step 101, source node obtains the authority (being called for short access control authority) of controlling subscriber equipment access CSG community; Then, by described source node control subscriber equipment access into closed subscriber group cell (step 102).
As shown in Figure 2, according in the second embodiment of the application, can make in the following manner described source node obtain described access control authority.First, described source node is configured to have the ability (being called for short access control ability, step 201) of controlling subscriber equipment access target CS G community.For example, start in source node for carrying out the required software and hardware configuration of access control by network management system.Described source node, after having possessed described access control ability, can ask MME that access control authority is transferred to self (step 202).Described MME examines it after the request that receives described source node, and audit by after by described access control authority by self transferring to described source node (step 203).Described source node is controlled subscriber equipment access CSG community (step 204) after having obtained described access control authority, and after this MME no longer carries out the access control of CSG community to subscriber equipment.If not by the audit of MME, MME self still keeps described access control authority in the request of source node described in step 203, and send refusal request message to described source node.
According to an embodiment, described MME examines and can comprise and judge whether described source node is operator's node trusty the request of described source node.As previously mentioned, in LTE system, can comprise eNode B and the Home eNode B that operator disposes.At this moment, described operator node trusty can be for example the eNode B that operator disposes.Because operator has to the eNode B of its deployment the ability of controlling completely, thereby can guarantee to carry out the fail safe of access control.Described MME can judge whether it is the eNode B that operator disposes according to the mark of described source node.If described source node is the eNode B that operator disposes, described access control authority is transferred to described source node by MME; Otherwise send refusal request message to described source node.
According to another embodiment, described MME examines and can comprise the request of described source node: first judge whether described source node is operator's node trusty, if so, further determine whether to be necessary described access control authority to transfer to source node from self.For example, MME can determine whether to be necessary to shift described access control authority according to self current load level.Conventionally, can in the time that the current load level of MME self is higher, carry out the transfer of access control authority; Certainly,, in the case of the current load level of MME is lower, MME also can examine the request by described source node, and described access control authority is transferred to source node from self.
As a kind of possibility of method shown in Fig. 2, Fig. 3 shows according to the connection control method of the application's the 3rd embodiment, wherein can make in the following manner source node obtain described access control authority.First, by network management system, described source node is configured to have the access control ability (step 301) of controlling described subscriber equipment access CSG community; Then, access control authority is given described source node (step 302) by network management system; Afterwards, source node has described access control authority (step 303) described in network management system notice MME, to avoid MME repetitive operation.
In the connection control method of describing referring to figs. 1 through Fig. 3 above, after described source node has obtained described access control authority, in the time that subscriber equipment attempts to access certain CSG community, described source node is carried out access control to this subscriber equipment.
According to predetermined measurement triggering condition, subscriber equipment can be initiated the measurement of the adjacent cell to current area, and measurement result is formed to measurement report sends to source node.In described measurement report, for example can comprise following information: the signal strength information of the mark of subscriber equipment, the mark of adjacent cell, adjacent cell etc.
Described source node can be according to the mark of each adjacent cell obtains the access module information of each adjacent cell the eNode B under it or Home eNode B.Conventionally, the access module of certain community can (allow unauthorized user access for closed mode (only allowing authorized user access), mixed mode, but spendable limited-service) or open mode (allow any user's access, and service being not limited).If the access module of certain adjacent cell is closed mode, can determine WeiCSG community, this community.
Be closed mode CSG community for access module, described source node further affiliated eNode B or the Home eNode B in Cong Gai CSG community obtains the user device list that allows access GaiCSG community.Meanwhile, described source node can obtain customer equipment identification from MME the relation mapping table of authority access CSG community with it.Afterwards, described source node, by above-mentioned two tables are compared, can determine whether subscriber equipment has authority access GaiCSG community.
If determine, this subscriber equipment has authority access GaiCSG community, starts the community that covers from the source node handoff procedure to target CS G community.Because this handoff procedure can carry out according to the mode of well known to a person skilled in the art, thereby omit the detailed description to this handoff procedure at this.
In this application, by making source node there is access control authority, determine by source node whether subscriber equipment has authority access CSG community, thereby can alleviate the processing load of MME.In addition, when user is switched to target CS G community in the community being covered by source node, can directly switches and without via core net by the interface between eNode B and eNode B or between eNode B and Home eNode B, thereby save handover delay.
The application also provides a kind of CSG access control system of community.As shown in Figure 4, access control system 400 comprises source node 401 and mobile management entity (MME) 402.
MME 402 comprises auditing module 4021 and authority shift module 4022.Auditing module 4021 is examined the request of authority acquiring module 4012, and auditing result is sent to authority shift module 4021.The auditing result of authority shift module 4021 based on auditing module 4021 sends to authority acquiring module 4012 ratify a motion message or refusal request message.If be appreciated that, the authority acquiring module 4012 of source node receives the message that ratifies a motion of the authority shift module 4021 of MME, represents the control authority of subscriber equipment access CSG community to transfer to source node from MME, and MME no longer carries out access control.If the authority acquiring module 4012 of source node is received the refusal request message of the authority shift module 4021 of MME, represent that MME self still keeps access control authority.
According to an embodiment, auditing module 4021 can comprise judge module, for judging whether source node 401 is operator's nodes trusty.Described judge module for example can judge whether source node 401 is operator's nodes trusty according to the mark of source node 401.Described auditing result for example can represent with 1 binary code.If it is operator's nodes trusty that described judge module is determined source node 401, auditing result is set to 1, and this result is sent to authority shift module 4022.Authority shift module 4022 sends to authority acquiring module 4012 message that ratifies a motion based on this auditing result.If described judge module is determined source node 401 Bu Shi operator nodes trusty, auditing result is set to 0, and this result is sent to authority shift module 4022.Authority shift module 4022 sends refusal request message based on this auditing result to authority acquiring module 4012.
Select as one, first described judge module also can judge according to the mark of source node 401 whether source node 401 is operator's nodes trusty, if so, further determine whether to be necessary described access control authority is transferred to source node 401 according to the current load level of MME.If described judge module is determined source node 401 and is operator's nodes trusty and is necessary described access control authority to transfer to source node 401, auditing result is set to 1, and this result is sent to authority shift module 4022.Authority shift module 4022 sends to authority acquiring module 4012 message that ratifies a motion based on this auditing result.If described judge module is determined source node 401 Bu Shi operator nodes trusty, auditing result is set to 0, and this result is sent to authority shift module 4022.Authority shift module 4022 sends refusal request message based on this auditing result to authority acquiring module 4012.
With reference to accompanying drawing, the application's exemplary embodiment is described above.The example that it should be appreciated by those skilled in the art that above-mentioned embodiment to be only used to the object of explanation and to lift, rather than be used for limiting.Any modification of doing under all instructions in the application and claim protection range, be equal to replacement etc., all should be included in the claimed scope of the application.
Claims (8)
1. a connection control method for closed user group cell, comprising:
Source node is configured to have the access control ability of controlling subscriber equipment access into closed subscriber group cell;
Described source node request mobile management entity is transferred to self by access control authority;
Described mobile management entity is examined the request of described source node, audit by after described access control authority is transferred to described source node;
Described source node obtains from eNode B or Home eNode B under contiguous closed user group cell the user device list that allows this vicinity closed user group cell of access, and obtains customer equipment identification and described subscriber equipment from mobile management entity and have the relation mapping table of the closed user group cell that authority accesses;
Described source node is by described user device list and described relation mapping table are compared, to determine whether subscriber equipment has authority to access this vicinity closed user group cell,
If so, described source node starts the community that covers from the described source node handoff procedure to this vicinity closed user group cell.
2. method according to claim 1, wherein, is configured to have access control ability by described source node and comprises: start in described source node for carrying out the required software and hardware configuration of access control by network management system.
3. method according to claim 1, wherein, described mobile management entity is examined and is comprised the request of described source node: judge whether described source node is operator's node trusty.
4. method according to claim 1, wherein, described mobile management entity is examined and is comprised the request of described source node:
Judge that whether described source node is operator's node trusty, if so, further determines whether to be necessary described access control authority is transferred to described source node according to the current load level of described mobile management entity.
5. according to the method described in claim 3 or 4, wherein, described mobile management entity judges according to the mark of described source node whether described source node is operator's node trusty.
6. an access control system for closed user group cell, comprises source node and mobile management entity, wherein:
Described source node comprises:
Enable module, for making described source node have the access control ability of controlling subscriber equipment access into closed subscriber group cell;
Authority acquiring module, obtains by sending request to described mobile management entity the access control authority of controlling subscriber equipment access into closed subscriber group cell;
Access control module, access control control of authority subscriber equipment access into closed subscriber group cell based on obtaining from mobile management entity, wherein, access control module obtains from eNode B or Home eNode B under contiguous closed user group cell the user device list that allows this vicinity closed user group cell of access, and obtain customer equipment identification and described subscriber equipment from mobile management entity and have the relation mapping table of the closed user group cell of authority access, by described user device list and described relation mapping table are compared, to determine whether subscriber equipment has authority to access this vicinity closed user group cell, if, start the community that covers from the described source node handoff procedure to this vicinity closed user group cell,
Described mobile management entity comprises:
Auditing module and authority shift module, the request of the authority acquiring module of described auditing module to described source node is examined, and auditing result is sent to authority shift module, the auditing result of described authority shift module based on described auditing module sends to the authority acquiring module of described source node ratify a motion message or refusal request message.
7. system as claimed in claim 6, wherein, described auditing module comprises judge module, for judging whether described source node is operator's node trusty.
8. system as claimed in claim 6, wherein, described auditing module comprises judge module, be used for judging whether described source node is operator's node trusty, if so, further determine whether to be necessary described access control authority is transferred to described source node according to the current load level of described mobile management entity.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN200910176598.9A CN102026102B (en) | 2009-09-23 | 2009-09-23 | Access control method and system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN200910176598.9A CN102026102B (en) | 2009-09-23 | 2009-09-23 | Access control method and system |
Publications (2)
Publication Number | Publication Date |
---|---|
CN102026102A CN102026102A (en) | 2011-04-20 |
CN102026102B true CN102026102B (en) | 2014-05-21 |
Family
ID=43866848
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN200910176598.9A Expired - Fee Related CN102026102B (en) | 2009-09-23 | 2009-09-23 | Access control method and system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN102026102B (en) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105407105A (en) * | 2015-12-24 | 2016-03-16 | Tcl集团股份有限公司 | Method and system for performing equipment authentication on samba service |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101136826A (en) * | 2007-09-30 | 2008-03-05 | 中兴通讯股份有限公司 | Method for controlling terminal access to family base station overlay area through core network |
CN101312592A (en) * | 2007-05-25 | 2008-11-26 | 中兴通讯股份有限公司 | Access control method of private base station |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9775096B2 (en) * | 2007-10-08 | 2017-09-26 | Qualcomm Incorporated | Access terminal configuration and access control |
-
2009
- 2009-09-23 CN CN200910176598.9A patent/CN102026102B/en not_active Expired - Fee Related
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101312592A (en) * | 2007-05-25 | 2008-11-26 | 中兴通讯股份有限公司 | Access control method of private base station |
CN101136826A (en) * | 2007-09-30 | 2008-03-05 | 中兴通讯股份有限公司 | Method for controlling terminal access to family base station overlay area through core network |
Non-Patent Citations (2)
Title |
---|
"Considerations about Access Control in CSG Inbound Mobility";CMCC;《3GPP TSG-RAN WG3 Meeting #65 R3-091700》;20090828;第2大节 * |
CMCC."Considerations about Access Control in CSG Inbound Mobility".《3GPP TSG-RAN WG3 Meeting #65 R3-091700》.2009, |
Also Published As
Publication number | Publication date |
---|---|
CN102026102A (en) | 2011-04-20 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
KR101399468B1 (en) | Mobile communication method | |
EP2113157B1 (en) | Handover from a macro cell back to a femto cell | |
EP2890166B1 (en) | METHOD, USER EQUIPMENT AND REMOTE MANAGEMENT PLATFORM FOR HANDOVER BETWEEN OPERATOR NETWORKs | |
KR101245427B1 (en) | Apparatuses and methods for measurement reporting in a wireless communications system | |
CN105142147B (en) | Method and apparatus in communication network | |
CN101998542B (en) | To the processing method during handoff failure of closed user group cell and system | |
US8538410B2 (en) | User-customized mobility method and system in a mobile communication system | |
KR101489882B1 (en) | Informing a user equipment of a cell and a radio base station serving the cell about access rights granted to the user equipment | |
EP3241383A1 (en) | Celular handover | |
JP5648762B2 (en) | Mobile communication system, base station, gateway device, core network device, communication method | |
KR101487119B1 (en) | Intra home nodeb-gateway ue relocation access control | |
EP2645754A1 (en) | Trust based system and method for performing a handover from a source base station to a target base station | |
EP2424299A1 (en) | Wireless communication system in which base station apparatus broadcasts identification information of relay apparatus | |
US8831605B2 (en) | Cell registration | |
JP2016116244A (en) | Communication system | |
KR101368531B1 (en) | Communication system | |
CN101883347B (en) | Switching control method and device of home network | |
CN101330738A (en) | Method and apparatus for switching to private district | |
CN102577507B (en) | Method and apparatus in telecommunication system | |
EP2997767A1 (en) | Mobility in mobile communications network | |
GB2481396A (en) | Closed subscriber group (CSG) management | |
US9510247B2 (en) | Mobile communication system, gateway device, base station, communication method, and program | |
CN104604290A (en) | Method and system for performing handover of mobile terminal, and mobile terminal intended to be used in wireless cellular communications network | |
CN102026102B (en) | Access control method and system | |
CN101998560B (en) | Uncontrolled switching method for supporting network deployment of Femto base station |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20140521 Termination date: 20210923 |
|
CF01 | Termination of patent right due to non-payment of annual fee |