CN102308622A - Method, device and system for interworking between WiFi network and WiMAX network - Google Patents
Method, device and system for interworking between WiFi network and WiMAX network Download PDFInfo
- Publication number
- CN102308622A CN102308622A CN2010800016086A CN201080001608A CN102308622A CN 102308622 A CN102308622 A CN 102308622A CN 2010800016086 A CN2010800016086 A CN 2010800016086A CN 201080001608 A CN201080001608 A CN 201080001608A CN 102308622 A CN102308622 A CN 102308622A
- Authority
- CN
- China
- Prior art keywords
- user terminal
- wifi
- wimax
- user
- aaa
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 61
- 238000004891 communication Methods 0.000 claims abstract description 5
- 238000013475 authorization Methods 0.000 claims description 44
- 230000004044 response Effects 0.000 claims description 26
- 238000001514 detection method Methods 0.000 claims description 20
- 230000005540 biological transmission Effects 0.000 claims description 12
- 238000003860 storage Methods 0.000 claims description 7
- 238000012360 testing method Methods 0.000 claims description 2
- 238000007689 inspection Methods 0.000 claims 1
- 230000014759 maintenance of location Effects 0.000 claims 1
- 230000008569 process Effects 0.000 abstract description 11
- 230000006870 function Effects 0.000 description 16
- 238000010586 diagram Methods 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 3
- 230000003993 interaction Effects 0.000 description 3
- 230000007246 mechanism Effects 0.000 description 2
- 101100384355 Mus musculus Ctnnbip1 gene Proteins 0.000 description 1
- 240000007594 Oryza sativa Species 0.000 description 1
- 235000007164 Oryza sativa Nutrition 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 230000008878 coupling Effects 0.000 description 1
- 238000010168 coupling process Methods 0.000 description 1
- 238000005859 coupling reaction Methods 0.000 description 1
- 235000021186 dishes Nutrition 0.000 description 1
- 238000011835 investigation Methods 0.000 description 1
- 238000010295 mobile communication Methods 0.000 description 1
- 235000009566 rice Nutrition 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W36/00—Hand-off or reselection arrangements
- H04W36/0005—Control or signalling for completing the hand-off
- H04W36/0011—Control or signalling for completing the hand-off for data sessions of end-to-end connection
- H04W36/0033—Control or signalling for completing the hand-off for data sessions of end-to-end connection with transfer of context information
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W36/00—Hand-off or reselection arrangements
- H04W36/14—Reselecting a network or an air interface
- H04W36/144—Reselecting a network or an air interface over a different radio air interface technology
- H04W36/1446—Reselecting a network or an air interface over a different radio air interface technology wherein at least one of the networks is unlicensed
Abstract
The present invention discloses a method, a device and a system for interworking between a WiFi network and a WiMAX network, and relates to the field of communications. By the present invention, a user terminal can keep session continuity when the user terminal hands off between a WiFi network which does not support an Extensible Authentication Protocol (EAP) and a WiMAX network which supports an EAP. The method includes: after a user terminal passes the WiFi authentication, a request message for allocating home address to the user terminal is transmitted; after the user terminal is checked for passing the WiFi authentication, WiMAX obtains a WiMAX side user ID of the user terminal, and allocates the home agent to the user terminal according to the user ID, then the home agent allocates the home address to the user terminal. The present invention is used in the process that a user terminal accesses the WiMAX core network though an EAP non-supported WiFi access network.
Description
WiFi network and method, the apparatus and system technical field of WiMAX network intercommunication
The present invention relates to the communications field, more particularly to a kind of WiFi network and the method for WiMAX network intercommunication, apparatus and system.
Background technology
Based on IEEE 802.11 (Institute of Electrical and Electronic Engineers, IEEE)Wireless access technology WiFi (Wireless Fidelity, Wireless Fidelity)Network, is disposed due to its high rate data transmission and easily, current Yi hotels, community, campus and enterprise's extensive use.But because the access point of WiFi network has the reasons such as small, the deployment many, complex management of quantity of coverage, WiFi network is relatively poor to the mobility support of terminal.Equally, WiMAX (the Worldwide Interoperability for Microwave Access, micro-wave access global inter communication of the wireless access technology based on IEEE 802.16)Network, as the extension of Wireless Broadband MAN, with advantages such as high bandwidth, wide coverings, can provide the user the data transmission capabilities of high speed, of great interest, disposed in many countries, area.Mobile WiMAX network adds the support to terminal mobility so that mobile terminal can keep business continuance when switching and roam between different radio access point, so as to meet the demand of commercial mobile communication business.
The WiFi Radio Access Networks disposed at present, except eat dishes without rice or wine coupling part ieee standard define in addition to, network side due to implementation is various and standard progress etc. reason, the network overwhelming majority disposed is not unified in the implementation of network side, especially implementation is varied in terms of security, count according to investigations, in the WiFi network disposed at present, there are the 95% non-EAP of Web vector graphic (Extensible Authentication Protocol, Extensible Authentication Protocol)Authentication mode, the mode of such as username and password, and only about 5% WiFi network support EAP authentication mode.But IETF (Internet Engineering Task Force, Internet engineering task force have been used in current WiMAX network)The EAP authentication authentication mode of definition, thus user terminal can not realize support EAP WiMAX networks and do not support EAP WiFi access networks between switch when, keep user conversation continuity.If risen
The WiFi access networks that level has been disposed make it support WiMAX EAP authentication modes, of a high price for operator.
The content of the invention
Embodiments of the invention provide method, the apparatus and system of a kind of WiFi network and WiMAX network intercommunication, make user terminal when not supporting to switch between the WiF i networks of EAP authentication modes and the WiMAX network for supporting EAP authentication modes, the continuity of session can be kept.
To reach above-mentioned purpose, embodiments of the invention are adopted the following technical scheme that:
A kind of WiFi network and the method for WiMAX network intercommunication, including:
Micro-wave access global inter communication authentication, authorization and accounting server WiMAX AAA receive the home agent request message for the acquisition user terminal hometown-agent-address that interworking function entity WIF is sent, and the home agent request message includes user terminal and identified in user's mark of Wireless Fidelity WiFi sides or the user in WiMAX sides;
After Certificate Authority successes of the Wireless Fidelity authentication, authorization and accounting server WiFi AAA to the user terminal, the WiMAX AAA are identified according to the user terminal in user's mark of WiFi sides or the user in WiMAX sides, are the user terminal distribution home agent;
The address of the home agent of the distribution is carried and is sent to the WIF in the proxy response message of local by the WiMAX AAA, to cause the WIF just home address of the blunt address according to the home agent from the home agent acquisition user terminal.
A kind of WiFi network and the method for WiMAX network intercommunication, including:
After user terminal performs authentication using WiFi signing certificates to WiFi AAA, the home address request message for the acquisition home address that the user terminal is sent is received, the home address request message includes user of the user terminal in WiFi sides and identified;
Judge the user terminal whether by the authentication of the WiFi AAA, if, the home agent request message for obtaining user terminal hometown-agent-address is then sent to the WIF, the home agent request message includes user terminal and identified in user's mark of WiFi sides or the user in WiMAX sides, to cause the WIF to forward the home agent request message to the WiMAX AAA..
A kind of WiMAX AAA, including:
Home agent request message receiving unit, for the home agent request message for the acquisition user terminal hometown-agent-address for receiving interworking function entity WIF transmissions, the home agent request message includes user terminal and identified in user's mark of WiFi sides or the user in WiMAX sides;
Hometown-agent-address allocation unit, for after WiFi AAA are successful to the Certificate Authority of the user terminal, the user terminal received according to the home agent request message receiving unit is identified in user's mark of WiFi sides or the user in WiMAX sides, is the user terminal distribution home agent;
Home agent response message transmitting element, the WIF is sent to for the address that the hometown-agent-address allocation unit is the home agent that the user terminal is distributed to be carried in the proxy response message of local.
A kind of WiFi receives net, including:
Home address request message reception units, for after user terminal performs authentication using WiFi signing certificates to WiFi AAA and authorizes, the home address request message for the acquisition home address that the user terminal is sent is received, the home address request message includes the user of WiMAX network identities and the user terminal in WiFi sides and identified;
Judging unit, for judging the user terminal whether by the authentication of the WiFi AAA;
Home agent request message transmitting element, for when the judging unit judges the user terminal by the authentication of the WiFi AAA, the home agent request message for obtaining user terminal hometown-agent-address is sent to the WIF, the home agent request message includes user terminal and identified in user's mark of WiFi sides or the user in WiMAX sides.
A kind of network and the system of WiMAX network intercommunication, including:
Interworking function entity WIF, for the home agent request message for the acquisition user terminal hometown-agent-address for receiving the transmission of WiFi access networks, and the home agent request message is sent in WiMAX AAA, the home agent request message comprising user mark of the user terminal in WiFi sides or user's mark in WiMAX sides;
WiMAX AAA, the home agent request message for receiving WIF transmissions, and in WiFi AAA
After being authorized successfully to the certification 4 of the user terminal, shelter states user terminal and is designated the user terminal distribution home agent in user's mark of WiFi sides or the user in WiMAX sides;The address of the home agent of the distribution is carried the W I F are sent in the proxy response message of local;
The WIF is additionally operable to, and receives the home agent response message that the WiMAX AAA are sent, and the home address of the user terminal is obtained according to the address of the home agent from the home agent.
After the technical scheme of the embodiment of the present invention, when user terminal is not by supporting that the WiFi network of EAP authentication modes is accessed, after user obtains WiFi AAA success identity mandates by WiFi signing certificates, the user terminal sends the request message of request distribution home address by interworking function entity to WiMAX AAA, users of the WiMAX AAA according to the user terminal in WiMAX sides identifies, the address of a home agent is distributed for the user terminal, and is that the user distributes a home address by the home agent;During due to user terminal by supporting that the WiMAX network of EAP authentication modes is accessed, users of the WiMAX AAA also according to the user terminal in WiMAX sides identifies, same home address is distributed for the user terminal, it is achieved that not supporting the WiFi network of EAP authentication modes and supporting the intercommunication of the WiMAX network of EAP authentication modes, make user terminal when not supporting to switch between the WiFi network of EAP authentication modes and the WiMAX network for supporting EAP authentication modes, the continuity of session can be kept.
Brief description of the drawings is in order to illustrate more clearly about the embodiment of the present invention or technical scheme of the prior art, the required accompanying drawing used in embodiment or description of the prior art will be briefly described below, apparently, drawings in the following description are only some embodiments of the present invention, for those of ordinary skill in the art, on the premise of not paying creative work, other accompanying drawings can also be obtained according to these accompanying drawings.
Fig. 1 is the flow chart of the WiFi network and the method for WiMAX network intercommunication of WiMAX AAA sides in the embodiment of the present invention 1;
Fig. 2 is the flow chart of the WiFi network and the method for WiMAX network intercommunication of interworking function entity side in the embodiment of the present invention 1;
Fig. 3 is WiFi network and the WiMAX network intercommunication of WiFi access net sides in the embodiment of the present invention 1
Method flow chart;
Fig. 4 is WiFi network and WiMAX network interoperability methods interaction diagrams in the embodiment of the present invention 2;Fig. 5 is WiFi network and WiMAX network interoperability methods interaction diagrams in the embodiment of the present invention 3;Fig. 6 is WiFi network and WiMAX network interoperability methods interaction diagrams in the embodiment of the present invention 4;Fig. 7 is a kind of WiMAX AAA composition frame chart in the embodiment of the present invention 5;
The composition frame chart that Fig. 8 is another WiMAX AAA in the embodiment of the present invention 5;
Fig. 9 is the composition frame chart of interworking function entity in the embodiment of the present invention 5;
Figure 10 is a kind of composition frame chart of WiFi access networks in the embodiment of the present invention 5;
Figure 11 is the composition frame chart of another WiFi access networks in the embodiment of the present invention 5;
Figure 12 is WiFi network and the composition frame chart of WiMAX network intercommunicating system in the embodiment of the present invention 5.Embodiment is below in conjunction with the accompanying drawing in the embodiment of the present invention, technical scheme in the embodiment of the present invention is clearly and completely described, obviously, described embodiment is only a part of embodiment of the invention, rather than whole embodiments.Based on the embodiment in the present invention, the every other embodiment that those of ordinary skill in the art are obtained under the premise of creative work is not made belongs to the scope of protection of the invention.
Embodiment 1
The embodiment of the present invention provides a kind of WiFi networks and the method for WiMAX network interworkings, and this method is WiMAX AAA (Authent icat ion Author izat ion Account ing, authentication, authorization and accounting server)The method of side, as shown in figure 1, this method includes:
101st, WiMAX AAA receive interworking function entity(WIF, WiMAX Interworking Funct ion) what is sent obtains the home agent request message of user terminal hometown-agent-address, and the home agent request message includes user terminal and identified in user's mark of WiFi sides or the user in WiMAX sides.
102nd, after WiFi AAA are successful to the Certificate Authority of the user terminal, the WiMAX AAA are identified according to the user terminal in user's mark of WiF i sides or the user in WiMAX sides, are the user terminal distribution home agent.
Wherein, the WiMAX AAA are designated the user terminal and distribute home agent according to the user terminal in user's mark of WiFi sides or the user in WiMAX sides, can include:If the home agent please
Ask message to include user of the user terminal in WiMAX sides to identify, then the user directly according to the user terminal in WiMAX sides is designated the user terminal distribution home agent;If the home agent request message includes the user terminal, the user in WiFi sides identifies, then according to the user terminal WiFi network and WiMAX network signing incidence relation, terminal user identification of the user terminal in WiMAX sides is obtained, and just user of the blunt user terminal according to the acquisition in WiMAX sides is designated the user terminal distribution home agent.
103rd, the address of the home agent of the distribution is carried and is sent to the WIF in the proxy response message of local by the WiMAX AAA, to cause the WIF to obtain the home address of the user terminal from the home agent according to the address of the home agent.
A kind of method that the embodiment of the present invention also provides WiFi network and WiMAX network intercommunication, this method is the method for WIF sides, as shown in Fig. 2 this method includes:
20 WIF receive the home agent request message for the acquisition user terminal hometown-agent-address that WiFi access networks are sent, and the home agent request message is sent in WiMAX AAA, the home agent request message comprising user mark of the user terminal in WiFi sides or user's mark in WiMAX sides.
202nd, the user that the WIF is received in the home agent response message that the WiMAX AAA are sent, the home agent response message comprising the WiMAX AAA according to the user terminal in user's mark of WiFi sides or the user terminal in WiMAX sides is designated the address for the home agent that the terminal user distributes.
203rd, the WIF blunt addresses according to the home agent of ability obtain the home address of the user terminal from the home agent.
Wherein, the WIF obtains the home address of the user terminal according to the address of the home agent from the home agent, can include:The blunt address according to the home agent of WIF, the MIP registration request message for mobile IP registration is sent to the home agent, and the MIP registration reply messages that the home agent is sent are received, it is the home address that the user terminal is distributed that the MIP registration reply messages, which include the home agent,.
A kind of method that the embodiment of the present invention also provides WiFi network and WiMAX network intercommunication, this method is
WiFi AN (Acces s Network, access network)The method of side, as shown in figure 3, this method includes:
301st, after user terminal performs authentication using WiFi signing certificates to WiFi AAA, the home address request message for the acquisition home address that the user terminal is sent is received, the home address request message includes user of the user terminal in WiFi sides and identified.
302nd, judge the user terminal whether by the authentication of the WiFi AAA, if, the home agent request message for obtaining user terminal hometown-agent-address is then sent to the WIF, the home agent request message includes user terminal and identified in user's mark of WiFi sides or the user in WiMAX sides, to cause the WIF to forward the home agent request message to the WiMAX AAA.In the embodiment of the present invention, when user terminal is not by supporting that the WiFi network of EAP authentication modes is accessed, after user obtains WiFi AAA execution certification success identity mandates by WiFi signing certificates, the user terminal sends the request message of request distribution home address by interworking function entity to WiMAX AAA, users of the WiMAX AAA according to the user terminal in WiMAX sides identifies, the address of a home agent is distributed for the user terminal, and is that the user distributes a home address by the home agent;During due to user terminal by supporting that the WiMAX network of EAP authentication modes is accessed, users of the WiMAX AAA also according to the user terminal in WiMAX sides identifies, same home address is distributed for the user terminal, it is achieved that not supporting the W i F i networks of E AP authentication modes and supporting the intercommunication of the WiMAX network of E AP authentication modes, make user terminal when not supporting to switch between the WiFi network of EAP authentication modes and the WiMAX network for supporting EAP authentication modes, the continuity of session can be kept.
Embodiment 2
The embodiment of the present invention provides a kind of WiFi network and the method for WiMAX network intercommunication, as shown in figure 4, this method includes:
401st, user terminal and WiFi access networks(WiFi Acces s Network, WiFi AN) set up contact.When user terminal is networked by WiFi network, it is necessary first to which user terminal is set up with WiFi AN and contacted.
402nd, after the user terminal and WiFi AN are set up and contacted, the user terminal is sent in authentication request message, the authentication request message comprising the use by the WiFi AN to WiFi AAA
The WiFi signing certificates of family terminal, so that the WiFi AAA realize the authentication to the user terminal according to WiFi signing certificates.WiFi AAA just it is blunt contract certificate to user end certification success according to the WiFi after, be that the user terminal distributes an authorization token, and the authorization token is sent to the user terminal.
Wherein, the user terminal can be sent to by authentication request response by the authorization token being sent into the user terminal;The authorization token can also be sent to by the user terminal by newly-built a piece of news, as shown in step le in Fig. 4;The authorization token can also be sent to by the user terminal by other information, the embodiment of the present invention is not limited to this.Described authorization token is that WiF i AAA distribute to the user terminal, whether WiFi AAA just blunt can judge the user terminal by the authentication of WiFi network according to user's mark of WiFi sides and the token, it can be a key encrypted or a random number.
Alternatively as shown in lc, Id of dotted line in Fig. 4, after subscriber terminal authority certification success, user terminal can be notified to give WiMAX AAA by WiFi AAA in the authenticating result of WiFi network by notification message, the notification message includes user of the user terminal in WiFi sides and identified, the WiMAX AAA are received after the notification message, are returned to response and are given WiFi kkk.
Further, if thering is in signing incidence relation, notification message the signing incidence relation information and WiFi AAA that can include the user terminal distribute to the authorization token information of terminal in WiFi network;If without signing incidence relation in WiFi network, the authorization token information that user identity information and WiFi AAA of the terminal in WiFi sides distribute to terminal can be included in notification message.
403rd, after user terminal is authorized by WiFi certifications 4, the home address request message for obtaining the user terminal home address is sent to the WiFi AN, the home address request message includes access mark and WiFi AAA distribute to the authorization token of terminal.The home address request message can be but not office it is blunt in DHCP (Dynamic Host Configuration Protocol, DynamicHost west oneself put agreement)Request message.
Wherein, the access mark includes user identity information and the network identification information to be accessed WiMAX network of the user terminal in WiFi sides, and it can be a parameter or two independent parameters for the combination of two kinds of information.
404th, WiFi AN are received after the home address request message, and according to the WiMAX network identification information in the access mark, the home address request message is transmitted into WIF.
Wherein, the WiMAX network identification information, it is that home address request message can be forwarded to correct WIF identification information by WiFi AN according to the identification information, it can be the domain name of WiMAX network or the identifier of a WiMAX network.
405th, WIF is received after the home address request message, the home agent request message for the hometown-agent-address for obtaining user terminal is sent to WiMAX AAA, ask to distribute to the 4 of terminal for the user's mark and WiF i AAA that the user terminal distributes carrying WiFi sides in home agent, the address acquisition messages and be authorized token.
406th, the WiMAX AAA receive the home agent request message that the WIF is sent, and detect the user terminal whether by WiF i AAA authentication, if the user terminal is by WiFi AAA authentication, user's mark according to the user terminal in WiFi sides obtains user of the user terminal in WiMAX sides and identified;And the user according to the user terminal of the acquisition in WiMAX sides is designated the user terminal and distributes home agent.Wherein, during the WiMAX AAA are user terminal distribution home agent, if the user terminal is the user terminal newly accessed, then give its one home agent of new distribution, if the switching of user terminal, then a home agent for distributing to the user terminal originally will be distributed for the user terminal.
Wherein, whether the detection user terminal can use following method by WiFi AAA authentication, specifically include:If detect the user terminal whether by WiFi AAA authentication before, WiMAX AAA obtain the user terminal by the authorization token of authentication from WiFi AAA, then inquire about whether the user terminal passes through WiFi AAA authentication according to the authorization token from WiFi AAA acquisitions;If detect the user terminal whether by WiF i AAA authentication before, WiMAX AAA do not obtain the user terminal from WiFi AAA and pass through the authorization token of authentication, then authentication challenge request message is sent to the WiFi AAA, the authentication challenge request message includes user mark and authorization token of the user terminal in WiFi sides, to inquire about whether the user terminal passes through WiFi AAA authentication from the WiFi AAA authorization token obtained according to described by the WiFi AAA, the WiMAX AAA obtain the testing result of the WiFi AAA.
Wherein, inquire about whether the user terminal passes through WiFi AAA authentication from the WiFi AAA authorization token obtained described in the basis, it is specifically as follows, by the authorization token included in the home agent request message with being compared from the WiFi AAA authorization token obtained, if both are consistent, show the user terminal by W i F i AAA authentication.
Wherein, user's mark according to user terminal in WiFi sides obtains user mark of the user terminal in WiMAX sides and included:According to the user terminal in the signing incidence relation of WiFi network and WiMAX network, and user of the user terminal in WiFi sides identify, and obtains the user of the user terminal in WiMAX sides and identifies.Because the signing incidence relation can be stored in WiMAX AAA, it can also be stored in
WiFi AAA, therefore according to the user terminal WiFi network and WiMAX network signing incidence relation, and user of the user terminal in WiFi sides identifies, the user terminal is obtained before user's mark of WiMAX sides, it is necessary to first obtain the signing incidence relation;The signing incidence relation is obtained to specifically include:
If being stored with signing incidence relation in the WiMAX AAA, the signing incidence relation is directly then extracted from the WiMAX AAA itself, the signing incidence relation stored in wherein described WiMAX AAA, can directly it store, it can also be obtained from the WiFi AAA, the embodiment of the present invention is not limited to this;If without storage signing incidence relation in the WiMAX AAA, the WiMAX AAA send authentication challenge request to the WiFi AAA and require to obtain the signing incidence relation.
407th, the address of the home agent distributed for the user terminal is carried and is sent to the WIF in the proxy response message of local by the WiMAX AAA.
408th, WIF initiates to register for the MIP of mobile IP registration to the home agent, and obtains the home address of the user terminal.That is WIF is obtained after the hometown-agent-address of the user terminal, just the blunt address according to the home agent sends the MIP login request messages for moving IP registrations to the home agent, it is the user terminal distribution home address that the home agent, which is received after MIP login request messages, and the home address carrying distributed for the user terminal is sent into the WIF in the MIP registration reply messages.
Wherein, if process rather than first access of the process of user terminal access for switching, described
Home agent just the blunt user according to the user terminal in WiMAX sides can be identified, and be that the user terminal distributes the home address used when a user terminal is accessed for the first time.
409th, after the home address of the user terminal is obtained, i.e. after the completion of MIP registrations, the home address for distributing to terminal is sent to mobile terminal by WIF by dhcp message.
In the embodiment of the present invention, when user terminal is not by supporting that the WiFi network of EAP authentication modes is accessed, after user obtains WiFi AAA successful execution Certificate Authorities by WiFi signing certificates, the user terminal sends the request message of request distribution home address by interworking function entity to WiMAX AAA, users of the WiMAX AAA according to the user terminal in WiMAX sides identifies, the address of a home agent is distributed for the user terminal, and is that the user distributes a home address by the home agent;During due to user terminal by supporting that the WiMAX network of EAP authentication modes is accessed, users of the WiMAX AAA also according to the user terminal in WiMAX sides identifies, same home address is distributed for the user terminal, it is achieved that not supporting the W i F i networks of E AP authentication modes and supporting the intercommunication of the WiMAX network of E AP authentication modes, make user terminal when not supporting to switch between the WiFi network of EAP authentication modes and the WiMAX network for supporting EAP authentication modes, the continuity of session can be kept.
Embodiment 3
The embodiment of the present invention provides a kind of WiFi network and the method for WiMAX network intercommunication, as shown in figure 5, this method includes:
501st, user terminal and WiFi access networks(WiFi Acces s Network, WiFi AN) set up contact.When user terminal is networked by WiFi network, it is necessary first to which user terminal is set up with WiFi AN and contacted.
502nd, after the user terminal and WiFi AN are set up and contacted, the user terminal sends authentication request message by the WiFi AN to WiFi AAA, WiFi signing certificates comprising the user terminal in the authentication request message, so that the WiFi AAA realize the authentication to the user terminal according to WiFi signing certificates.WiFi AAA just it is blunt according to the WiFi contract certificate to the user end certification success after, by the user terminal WiFi sides user mark is sent to the user terminal.
Optionally, after subscriber terminal authority certification success, if there is signing incidence relation in WiFi network, WiFi AAA notify the result of the user end certification, and the signing incidence relation
WiMAX AAA are given, as shown in step lc, Id in Fig. 5.
503rd, after the user terminal is authorized by WiFi aaa authentications 4, the home address request message for obtaining the user terminal home address is sent to the WiFi AN, the home address request message includes access mark.The home address request message can be but be not limited to DHCP (Dynamic Hos t Conf igura t ion Protocol, DHCP)Request message.The access mark includes user identity information and the network identification information to be accessed WiMAX network of the user terminal in WiFi sides, and it can be a parameter or two independent parameters for the combination of two kinds of information.
504th, the WiFi AN are received after the home address request message, check the user terminal whether by WiFi AAA authentication, if detecting the user terminal by WiFi AAA authentication, step 505 is performed.
Wherein, the WiFi AN check whether the user terminal passes through WiFi AAA authentication, can be by detecting that the user included in the home address request message identifies in WiFi sides, with after authentication of the user terminal by WiFi AAA, the user sent from the WiFi AAA to the WiFi AN identifies whether consistent realization in WiFi sides, if the user included in the home address request message identifies in WiFi sides, it is consistent in W i F i sides mark with the user from the WiFi AAA to the WiFi AN that sent from, then show the user terminal by W i F i AAA authentication.
505th, WiMAX network identification informations of the WiFi AN in the access mark carried in home address request message, the home address request message is sent to user's mark that WiFi sides are carried in WIF, the home address request message.
506th, the WIF is received after the home address request message, user's mark that user terminal is carried in the home agent request message for obtaining user terminal hometown-agent-address, the home agent request message in WiFi sides is sent to the WiMAX AAA.
507th, the WiMAX AAA are received after the home agent request message, and user's mark according to the user terminal in WiFi sides obtains user of the user terminal in WiMAX sides and identified;It is the user terminal distribution home agent and the user according to the user terminal of acquisition in WiMAX sides identifies.
Wherein, during the WiMAX AAA are user terminal distribution home agent, if the use
Family terminal is the user terminal newly accessed, then gives its one home agent of new distribution, if the switching of user terminal, and side will distribute a home agent for distributing to the user terminal originally for the user terminal.
Wherein, user's mark according to user terminal in WiFi sides obtains user mark of the user terminal in WiMAX sides and included:According to the user terminal in the signing incidence relation of WiFi network and WiMAX network, and user of the user terminal in WiF i sides identify, and obtains the user of the user terminal in WiMAX sides and identifies.Because the signing incidence relation can be stored in WiMAX AAA, WiFi AAA can also be stored in, therefore according to the user terminal WiFi network and WiMAX network signing incidence relation, and user of the user terminal in WiFi sides identifies, the user terminal is obtained before user's mark of WiMAX sides, it is necessary to first obtain the signing incidence relation;The signing incidence relation is obtained to specifically include:
If being stored with signing incidence relation in the WiMAX AAA, the signing incidence relation is directly then extracted from the WiMAX AAA, the signing incidence relation stored in wherein described WiMAX AAA, can directly it store, it can also be obtained from the WiFi AAA, the embodiment of the present invention is not limited to this;If without storage signing incidence relation in the WiMAX AAA, the WiMAX AAA send authentication challenge request to the WiFi AAA and require to obtain the signing incidence relation.
508th, the address of the home agent distributed for the user terminal is carried and is sent to the WIF in the proxy response message of local by the WiMAX AAA.
509th, WIF initiates that the home address of the user terminal is registered and obtained for the MIP of mobile IP registration to the home agent.That is WIF is obtained after the hometown-agent-address of the user terminal, the address that shelter states home agent sends MIP registration request message for mobile IP registration to the home agent, it is the user terminal distribution home address that the home agent, which is received after MIP login request messages, and the home address carrying distributed for the user terminal is sent into the WIF in MIP registers respective response message.
Wherein, if process rather than first access of the process of the user terminal access for switching, then the home agent just the blunt user according to the user terminal in WiMAX sides can be identified, and be that the user terminal distributes the home address used when a user terminal is accessed for the first time.
510th, after the home address of the user terminal is obtained, i.e. after the completion of MIP registrations, the home address for distributing to terminal is sent to mobile terminal by WIF by dhcp message.
In the embodiment of the present invention, when user terminal is not by supporting that the WiFi network of EAP authentication modes is accessed, after user obtains WiFi AAA success identity mandates by WiFi signing certificates;After the authentication has been successful, the user terminal sends the request message of request distribution home address by interworking function entity to WiMAX AAA, users of the WiMAX AAA according to the user terminal in WiMAX sides identifies, a hometown-agent-address is distributed for the user terminal, and is that the user distributes a home address by the home agent;During due to user terminal by supporting that the WiMAX network of EAP authentication modes is accessed, users of the WiMAX AAA also according to the user terminal in WiMAX sides identifies, same home address is distributed for the user terminal, it is achieved that not supporting the WiFi network of EAP authentication modes and supporting the intercommunication of the WiMAX network of EAP authentication modes, make user terminal when not supporting to switch between the WiFi network of EAP authentication modes and the WiMAX network for supporting EAP authentication modes, the continuity of session can be kept.
And, in the embodiment of the present invention, before WiFi AN send home address request message to WIF, whether the user terminal that WiFi AN detections send home address request message passes through W i F i AAA authentication, in user terminal by WiFi AAA authentication after, home address request message is sent to the WIF, WiFi AAA and WiMAX AAA prevent user terminal to palm off without the use of token mechanism, so that the process that WiMAX network is user terminal distribution home address is simplified.
Embodiment 4
The embodiment of the present invention provides a kind of WiFi network and the method for WiMAX network intercommunication, as shown in fig. 6, this method includes:
601st, user terminal and WiFi access networks(WiFi Acces s Network, WiFi AN) set up contact.When user terminal is networked by WiFi network, it is necessary first to which user terminal is set up with WiFi AN and contacted.
602nd, after the user terminal and WiFi AN are set up and contacted, the user terminal is sent in authentication request message, the authentication request message comprising the use by the WiFi AN to WiFi AAA
The WiFi signing certificates of family terminal, so that the WiFi AAA realize the authentication to the user terminal according to WiFi signing certificates.WiFi AAA just it is blunt according to the WiFi contract certificate to the user end certification success after, the user terminal is sent to the user terminal by the result of WiFi AAA authentications.
And, after the user terminal is by WiFi AAA authentications, WiFi AAA obtain signing incidence relation, and the signing incidence relation is sent to WiFi AN, as shown in the step le in Fig. 6, identified so that WiFi AN obtain user of the user terminal in WiMAX sides according to the signing incidence relation.Due to it is described signing incidence relation can be stored in WiMAX AAA, WiFi AAA can also be stored in, if therefore the signing incidence relation that is stored with the WiFi AAA, the signing incidence relation is directly extracted from the WiFi AAA;If without storage signing incidence relation in the WiFi AAA, the WiFi AAA send authentication challenge request to the WiMAX AAA and require to obtain the signing incidence relation, specifically as shown in step lc, Id in Fig. 6.
603rd, after the user terminal is authorized by WiFi aaa authentications 4, the home address request message for obtaining the user terminal home address is sent to the WiFi AN, the home address request message carries WiMAX network identification information, alternatively carries the user identity information of WiMAX sides.
604th, WiFi AN are received after home address request message breath, whether check the user by WiFi AAA certification, if detecting the user terminal by WiFi AAA authentication, perform step 605.Wherein, the WiFi AN check whether the user terminal passes through WiFi AAA authentication, can be by detecting that the user included in the home address request message identifies in WiFi sides, with after authentication of the user terminal by WiFi AAA, the user sent from the WiFi AAA to the WiFi AN identifies whether consistent realization in WiFi sides, if the user included in the home address request message identifies in WiFi sides, it is consistent in W i F i sides mark with the user from the WiFi AAA to the WiFi AN that sent from, then show the user terminal by W i F i AAA authentication.
605th, the WiFi AN are according to being obtained the signing incidence relation received in step 602
User of the user terminal in WiMAX sides identifies.
606th, the WiFi AN send the home address request message for obtaining user terminal home address to the WIF, and the home address request message includes user of the user terminal in WiMAX sides and identified.
607th, the WIF is received after the home address request message, user's mark that user terminal is carried in the home agent request message of acquisition request user terminal hometown-agent-address, the home agent request message in WiMAX sides is sent to the WiMAX AAA.
608th, the WiMAX AAA are received after the home agent request message, and the user according to the user terminal of the address acquisition in WiMAX sides identifies, and are the user terminal distribution home agent.Wherein, during the WiMAX AAA are user terminal distribution home agent, if the user terminal is the user terminal newly accessed, then give its one home agent of new distribution, if the switching of user terminal, side will distribute a home agent for distributing to the user terminal originally for the user terminal.
609th, the address of the home agent distributed for the user terminal is carried and is sent to the WIF in the proxy response message of local by the WiMAX AAA.
610th, WIF initiates that the home address of the user terminal is registered and obtained for the MIP of mobile IP registration to the home agent.That is WIF is obtained after the hometown-agent-address of the user terminal, the address that shelter states home agent sends MIP registration request message for mobile IP registration to the home agent, it is the user terminal distribution home address that the home agent, which is received after MIP login request messages, and the home address carrying distributed for the user terminal is sent into the WIF in MIP registration reply messages.
Wherein, if process rather than first access of the process of the user terminal access for switching, then the home agent just the blunt user according to the user terminal in WiMAX sides can be identified, and be that the user terminal distributes the home address used when a user terminal is accessed for the first time.
611st, after the home address of the user terminal is obtained, i.e. after the completion of MIP registrations, the home address for distributing to terminal is sent to user terminal by WIF by dhcp message.
In the embodiment of the present invention, when user terminal is not by supporting that the WiFi network of EAP authentication modes is accessed, after user obtains WiFi AAA success identity mandates by WiFi signing certificates, the user terminal sends the request message of request distribution home address by interworking function entity to WiMAX AAA, users of the WiMAX AAA according to the user terminal in WiMAX sides identifies, and is the user terminal distribution one
The address of individual home agent, and be that the user distributes a home address by the home agent;During due to user terminal by supporting that the WiMAX network of EAP authentication modes is accessed, users of the WiMAX AAA also according to the user terminal in WiMAX sides identifies, same home address is distributed for the user terminal, it is achieved that not supporting the W i F i networks of E AP authentication modes and supporting the intercommunication of the WiMAX network of E AP authentication modes, make user terminal when not supporting to switch between the WiFi network of EAP authentication modes and the WiMAX network for supporting EAP authentication modes, the continuity of session can be kept.
And, in the embodiment of the present invention, before the home address request message of the acquisition user terminal home address received is sent to WIF by WiFi AN, whether the user terminal that detection sends home address request message passes through WiFi AAA authentication, after the authentication by WiFi AAA is detected, according to the signing incidence relation of acquisition, user of the user terminal in WiMAX sides is obtained to identify and be sent to WiMAX AAA, make the WiMAX AAA receive obtain user terminal hometown-agent-address request when, user terminal is directly designated according to the user of the WiMAX sides and distributes corresponding home agent, avoiding the WiMAX AAA needs the authentication of the user terminal to distributing home agent to be identified with the user for obtaining WiMAX sides, WiMAX AAA are made further to simplify for the process that user terminal distributes home address.
Embodiment 5
The embodiment of the present invention provides a kind of WiMAX AAA, as shown in fig. 7, the WiMAX AAA include:Home agent request message receiving unit 71, hometown-agent-address allocation unit 71 and home agent response message transmitting element 73.
Home agent request message receiving unit 71, for the home agent request message for the acquisition user terminal hometown-agent-address for receiving interworking function entity WIF transmissions, the home agent request message includes user terminal and identified in user's mark of WiFi sides or the user in WiMAX sides.
Hometown-agent-address allocation unit 72, the user terminal for being received according to the home agent request message receiving unit 71 is identified in user's mark of Wi F i sides or the user in WiMAX sides, home agent is distributed for the user terminal, to cause the WIF just home address of the blunt address according to the home agent from the home agent acquisition user terminal.Home agent response message transmitting element 73, it is described for the address carrying that the hometown-agent-address allocation unit 72 is the home agent that the user terminal is distributed to be sent in the proxy response message of local
WIF。
As shown in figure 8, the hometown-agent-address allocation unit 72 includes:Hometown-agent-address distribute module 721 and identifier acquisition module 722.
Hometown-agent-address distribute module 721, home agent request message for being received in the home agent request message receiving unit 71 includes the user terminal in user's mark of WiMAX sides, and just the blunt user according to the user terminal in WiMAX sides is designated the user terminal distribution home agent;Identifier acquisition module 722, the home agent request message for being received in the home agent request message receiving unit 71 includes the user terminal in user's mark of WiFi sides, according to the user terminal in the signing incidence relation of WiFi network and WiMAX network, terminal user identification of the user terminal in WiMAX sides is obtained;The hometown-agent-address distribute module 721 is additionally operable to, and user of the user terminal obtained according to the identifier acquisition module 722 in WiMAX sides is designated the user terminal and distributes home agent.
As shown in figure 8, the WiMAX AAA also include:Signing incidence relation acquiring unit 74 and authentication detection unit 75
Signing incidence relation acquiring unit 74, for in the identifier acquisition module 722 according to user terminal in WiF i networks and the signing incidence relation of WiMAX network, the user terminal is obtained before user's mark of WiMAX sides, user terminal is obtained in WiF i networks and the signing incidence relation of WiMAX network.Wherein, because the signing incidence relation can be stored in WiMAX AAA, WiFi AAA can also be stored in, therefore the signing incidence relation acquiring unit 74 can include when obtaining the signing incidence relation:As the signing incidence relation storage WiMAX AAA, then the signing incidence relation acquiring unit 74 is for obtaining the signing incidence relation that the WiMAX AAA itself are stored;When the about incidence relation is stored in WiFi AAA, after WiFi AAA are to subscriber terminal authority certification success, the signing incidence relation acquiring unit 74 is used to receive the result and the signing incidence relation to the subscriber terminal authority certification that the WiFi AAA are sent;The signing incidence relation acquiring unit 74 is additionally operable to send authentication challenge request to the WiFi AAA, and receives the signing incidence relation that the WiFi AAA ask to return according to the authentication challenge.
Authentication detection unit 75, the home agent request message for being received in the home agent request message receiving unit 71 includes user terminal in user's mark and the authorization token of user terminal of WiFi sides, and whether the authentication detection unit 75 is authorized token in user's mark of WiFi sides and the 4 of the user terminal according to the user terminal and detects the user terminal by WiFi AAA authentication;Wherein, the authentication detection unit 75 detect the user terminal whether by WiFi AAA authentication when, if detect the user terminal whether by WiFi AAA authentication before, WiMAX AAA obtain the user terminal by the authorization token of authentication from WiFi AAA, then the detection unit 75 from the WiFi AAA authorization token obtained inquires about whether the user terminal passes through WiFi AAA authentication according to described;If detect the user terminal whether by WiFi AAA authentication before, WiMAX AAA do not obtain the user terminal from WiFi AAA and pass through the authorization token of authentication, then the detection unit 75 sends authentication challenge request message to the WiFi AAA, the authentication challenge request message includes user mark and authorization token of the user terminal in WiFi sides, to inquire about whether the user terminal passes through WiFi AAA authentication from the WiFi AAA authorization token obtained according to described by the WiFi AAA.Wherein, inquire about whether the user terminal passes through WiFi AAA authentication from the WiFi AAA authorization token obtained described in the basis, it is specifically as follows, by the authorization token included in the home agent request message with being compared from the WiFi AAA authorization token obtained, if both are consistent, show the user terminal by W i F i AAA authentication.The embodiment of the present invention also provides a kind of WIF, as shown in figure 9, the WIF includes:First receiving unit
81st, the first transmitting element 82, the second receiving unit 83 and acquiring unit 84.
First receiving unit 81, for the home agent request message for the acquisition user terminal hometown-agent-address for receiving the transmission of WiFi access networks, identified in the home agent request message comprising user terminal in user's mark of WiFi sides or the user in WiMAX sides.
First transmitting element 82, for the home agent request message to be sent into WiMAX AAA.Second receiving unit 83, for receiving in the home agent response message that the WiMAX AAA are sent, the home agent response message comprising the WiMAX AAA according to the user terminal in WiMAX sides
User be designated terminal user distribution home agent address.
Acquiring unit 84, the address of the home agent for being received according to second receiving unit 83 obtains the home address of the user terminal from the home agent.Wherein, the address for the home agent that the acquiring unit 84 is received according to second receiving unit 83 can be from the home address of the home agent acquisition user terminal:MIP registration request message for mobile IP registration is sent to the home agent according to the address of the home agent, and MIP registration reply messages described in receiving the MIP registration reply messages that the home agent is sent include home address of the home agent for user terminal distribution.
Further, after the home address of the user terminal is obtained, the home address is sent to the user terminal.The embodiment of the present invention also provides a kind of WiFi access networks, as shown in Figure 10, and the WiFi access networks include:Home address request message reception units 91, judging unit 92 and home agent request message transmitting element 93.
Home address request message reception units 91, for after user terminal performs authentication using WiFi signing certificates to WiFi AAA and authorizes, the home address request message for the acquisition home address that the user terminal is sent is received, the home address request message includes the user of WiMAX network identities and the user terminal in WiFi sides and identified.Judging unit 92, for judging the user terminal whether by the authentication of the WiFi AAA;Wherein, whether judging unit 92 judges the user terminal by WiFi AAA authentication, can be by detecting that the user included in the home address request message identifies in WiFi sides, with after authentication of the user terminal by WiFi AAA, the user sent from the WiFi AAA to the WiFi AN identifies whether consistent realization in WiFi sides, if checking the user included in the home address request message to identify in WiFi sides, it is consistent in WiFi sides mark with the user from the WiFi AAA to the WiFi AN that sent from, then show the user terminal by WiFi AAA authentication.
Home agent request message transmitting element 93, for judging that the user is whole in the judging unit 92
When holding by the authentication of the WiF i AAA, the home agent request message for obtaining user terminal hometown-agent-address is sent to the WIF, to cause the WIF to forward the home agent request message to the WiMAX AAA, the home agent request message includes user terminal and identified in user's mark of WiF i sides or the user in WiMAX sides.Further, the home agent request message transmitting element 93 is additionally operable to, the home address request message that address request receiving unit 91 is received in local includes the user terminal in user's mark and the authorization token of the user terminal of WiF i sides, the user terminal is carried in user's mark of WiF i sides and the authorization token of the user terminal and is sent to the WIF in the home agent request message, to cause the WIF to forward the home agent request message to the WiMAX AAA.
Further, as shown in figure 11, the WiF i access networks also include signing incidence relation detection unit 94 and mark acquiring unit 95.
Signing incidence relation detection unit 94, after judging the user terminal by the authentication of the WiF i AAA in the judging unit 92, detect whether the WiF i access networks itself are stored with the user terminal in WiF i networks and the signing incidence relation of WiMAX network.
Mark acquiring unit 95, during for there is the signing incidence relation in detecting the WiF i access networks in the signing incidence relation detection unit 94, identified according to the user of the WiF i sides, and the user terminal is in WiF i networks and the signing incidence relation of WiMAX networks, obtains the user terminal and exist
User's mark of WiMAX sides.The home agent request message transmitting element 93 is used to the user's mark of the user terminal that obtains the mark acquiring unit 95 in WiMAX sides and carried be sent to WIF in the home agent request message for obtaining user terminal hometown-agent-address, to cause the WIF to the WiMAX
AAA forwards the home agent request message.The home agent request message transmitting element 93 is additionally operable to, when the signing incidence relation is not present into the WiF i access networks for the signing incidence relation detection unit detection 94, user's mark by the user terminal in WiF i sides is carried is sent to WIF in the home agent request message for obtaining the user terminal hometown-agent-address, to cause the WIF to forward the home agent request message to the WiMAX AAA.
The system that the embodiment of the present invention also provides a kind of WiF i networks and WiMAX network intercommunication, as shown in Figure 12, the system includes:Interworking function entity 1001 and WiMAX AAA1002o
Interworking function entity WIF1001, the home agent request message of the acquisition user terminal hometown-agent-address for receiving the transmission of WiFi access networks, and the home agent request message is sent to WiMAX
In AAA1002, the home agent request message comprising user terminal WiFi sides user mark or
User's mark of WiMAX sides.
WiMAX AAA1002, the home agent request message for receiving WIF1001 transmissions, and after WiFi AAA are authorized successfully to the certification 4 of the user terminal, it is just blunt to be designated the user terminal in user's mark of WiFi sides or the user in WiMAX sides according to the user terminal and distribute home agent;The address of the home agent of the distribution is carried and is sent to the WIF1001 in the proxy response message of local.
The WIF1001 is additionally operable to, and receives the home agent response message that the WiMAX AAA1002 are sent, and shelter states the address of home agent from the home address of the home agent acquisition user terminal.In the embodiment of the present invention, when user terminal is not by supporting that the WiFi network of EAP authentication modes is accessed, after user obtains WiFi AAA success identity mandates by WiFi signing certificates, the user terminal sends the request message of request distribution home address by interworking function entity to WiMAX AAA, users of the WiMAX AAA according to the user terminal in WiMAX sides identifies, the address of a home agent is distributed for the user terminal, and is that the user distributes a home address by the home agent;During due to user terminal by supporting that the WiMAX network of EAP authentication modes is accessed, users of the WiMAX AAA also according to the user terminal in WiMAX sides identifies, same home address is distributed for the user terminal, it is achieved that not supporting the W i F i networks of E AP authentication modes and supporting the intercommunication of the WiMAX network of E AP authentication modes, make user terminal when not supporting to switch between the WiFi network of EAP authentication modes and the WiMAX network for supporting EAP authentication modes, the continuity of session can be kept;And the intercommunication of above two network is realized by distributing a home address for user terminal, does not increase operator's additional cost.
Also, in the embodiment of the present invention, before WiFi AN send home address request message to WIF,
Whether the user terminal that WiFi AN detections send home address request message passes through W i F i AAA authentication, in user terminal by WiFi AAA authentication after, home address request message is sent to the WIF, WiFi AAA and WiMAX AAA prevent user terminal to palm off without the use of token mechanism, so that the process that WiMAX networks are user terminal distribution home address is simplified.
Further, in the embodiment of the present invention, WiF i AN detect user terminal by WiF i AAA authentication after, according to the signing incidence relation of acquisition, user of the user terminal in WiMAX sides is obtained to identify and be sent to WiMAX AAA, make the WiMAX AAA receive obtain user terminal hometown-agent-address request when, user terminal is directly designated according to the user of the WiMAX sides and distributes corresponding home agent, avoiding the WiMAX AAA needs to identify the user that the user terminal for distributing home agent obtains WiMAX sides, WiMAX AAA are made further to simplify for the process that user terminal distributes home address.
Through the above description of the embodiments, it is apparent to those skilled in the art that the present invention can add the mode of required common hardware to realize by software, can certainly the former be more preferably embodiment by hardware, but in many cases.Understood based on such, the part that technical scheme substantially contributes to prior art in other words can be embodied in the form of software product, the computer software product is stored in the storage medium that can be read, such as the floppy disk of computer, hard disk or CD etc., including some instructions are to cause a computer equipment(Can be personal computer, server, or network equipment etc.)Perform the method described in each embodiment of the invention.
It is described above; only embodiment of the invention, but protection scope of the present invention is not limited thereto, any one skilled in the art the invention discloses technical scope in; change or replacement can be readily occurred in, should be all included within the scope of the present invention.Therefore, protection scope of the present invention should be based on the protection scope of the described claims.
Claims (1)
- Claims1st, a kind of method of WiFi network and WiMAX network intercommunication, it is characterised in that including:Micro-wave access global inter communication authentication, authorization and accounting server WiMAX AAA receive the home agent request message for the acquisition user terminal hometown-agent-address that interworking function entity WIF is sent, and the home agent request message includes user terminal and identified in user's mark of Wireless Fidelity WiFi sides or the user in WiMAX sides;After Certificate Authority successes of the Wireless Fidelity authentication, authorization and accounting server WiFi AAA to the user terminal, the WiMAX AAA are identified according to the user terminal in user's mark of WiFi sides or the user in WiMAX sides, are the user terminal distribution home agent;The address of the home agent of the distribution is carried and is sent to the WIF in the proxy response message of local by the WiMAX AAA, to cause the WIF just home address of the blunt address according to the home agent from the home agent acquisition user terminal.2nd, according to the method described in claim 1, it is characterised in that the user according to the user terminal in WiFi sides identifies or the user in WiMAX sides is designated the user terminal distribution home agent and included:If the home agent request message includes the user terminal, the user in WiMAX sides identifies, and directly the user according to the user terminal in WiMAX sides is designated the user terminal distribution home agent;If the home agent request message includes the user terminal, the user in WiFi sides identifies, then according to the user terminal WiFi network and WiMAX network signing incidence relation, user of the user terminal in WiMAX sides is obtained to identify, and the user according to the user terminal of the acquisition in WiMAX sides is designated the user terminal and distributes home agent.3rd, method according to claim 2, it is characterised in that the user terminal is being obtained before user's mark of WiMAX sides in the signing incidence relation of WiFi networks and WiMAX network according to user terminal, this method also includes:Obtain signing incidence relation of the user terminal in WiFi network and WiMAX network.4th, the method according to claim 3, it is characterised in that the acquisition user terminal includes in the signing incidence relation of WiFi networks and WiMAX network:Obtain the signing incidence relation of WiMAX AAA itself storages;Or After WiFi AAA are to subscriber terminal authority certification success, the WiMAX AAA receive the result and the signing incidence relation to the subscriber terminal authority certification that the WiFi AAA are sent;OrThe WiMAX AAA send authentication challenge request to the WiFi AAA, and receive the signing incidence relation that the WiFi AAA ask to return according to the authentication challenge.5th, according to the method described in claim 1, it is characterised in that the home address that the WIF obtains the user terminal according to the address of the home agent from the home agent includes:The WIF receives the address for the home agent that the WiMAX AAA are sent, and according to the address of the home agent, the MIP registration request message for mobile IP registration is sent to the home agent;The WIF receives the MIP registration reply messages that the home agent is sent, and it is the home address that the user terminal is distributed that the MIP registration reply messages, which include the home agent,.6th, method according to claim 1 or 5, it is characterised in that after the home address that the WIF obtains the user terminal according to the address of the home agent from the home agent, this method also includes:The home address is sent to the user terminal by the WIF.7th, according to any described methods of claim 1-5, it is characterised in that before the home agent request message that WiMAX AAA receive the acquisition user terminal hometown-agent-address that interworking function entity WIF is sent, this method also includes:After Certificate Authority successes of the WiFi AAA to the user terminal, WiFi access network WiFi AN receive the home address request message that the user terminal is sent;Whether WiFi AN judge the user terminal by the authentication of the WiFi AAA, if, then home agent request message is sent to the WIF, the home agent request message includes user terminal and identified in user's mark of WiFi sides or the user in WiMAX sides, to cause the WIF to forward the home agent request message to the WiMAX AAA.8th, method according to claim 7, it is characterised in that whether the WiFi AN judge the user terminal by the authentication of the WiFi AAA, if so, then sending home agent request message to the WIF includes: Whether the W i F i AN judge the user terminal by the authentication of the WiF i AAA, if so, then detecting its own described user terminal that whether is stored with WiF i networks and the signing incidence relation of WiMAX network;If detecting the signing incidence relation that is stored with the WiF i AN, then identified according to the user of the WiF i sides, and user terminal is in WiF i networks and the signing incidence relation of WiMAX network, user of the user terminal in WiMAX sides is obtained to identify, and user's mark by the user terminal in WiMAX sides carries and is sent to interworking function entity WIF in the home agent request message, so as to which the home agent request message is transmitted into WiMAX AAA by the WIF;If detecting in the WiF i AN without the storage signing incidence relation, user's mark by the user terminal in WiF i sides is carried is sent to WIF in the home agent request message, so as to which the home agent request message is transmitted into WiMAX AAA by the WIF.9th, according to any described methods of claim 1-5, it is characterized in that, when the home agent request message includes user mark and the authorization token of user terminal of the user terminal in WiF i sides, after the home agent request message that the WiMAX AAA receive the acquisition user terminal hometown-agent-address that interworking function entity WIF is sent, this method also includes:The WiMAX AAA detect whether the user terminal passes through WiF i AAA authentication according to the user terminal in user's mark of WiF i sides and the authorization token of the user terminal.10th, method according to claim 9, characterized in that, the WiMAX AAA detect whether the user terminal is included by W i F i AAA authentication according to the user terminal in user's mark of WiF i sides and the authorization token of the user terminal:If the WiF i AAA to the user end certification 4 when being authorized successfully, it is authorized the user's mark of token and the user terminal in WiF i sides by the 4 of the user terminal and is sent to the WiMAX AAA, then users of the WiMAX AAA by the authorization token and the user terminal of the user terminal in the home agent request message in WiF i sides identifies, user's mark with the authorization token and the user terminal from the WiF i AAA user terminals obtained in WiF i sides is compared, detect the user terminal whether by WiF i AAA authentication; If the WiF i AAA are when to user end certification mandate success, user's mark by the authorization token of the user terminal and the user terminal in WiFi sides is not sent to the WiMAX AAA, then the WiMAX AAA send authentication challenge request message to the WiFi AAA, the authentication challenge request message includes the user of the authorization token and the user terminal of the user terminal in the home agent request message in WiFi sides and identified, so as to the user terminals of the WiFi AAA in the home agent request message authorization token and the user terminal WiFi sides user identify, detect the user terminal whether by WiFi AAA authentication, the WiMAX AAA obtain the testing result of the WiFi AAA.11st, a kind of method of WiFi network and WiMAX network intercommunication, it is characterised in that including:After user terminal performs authentication using WiFi signing certificates to WiFi AAA, the home address request message for the acquisition home address that the user terminal is sent is received, the home address request message includes user of the user terminal in WiFi sides and identified;Judge the user terminal whether by the authentication of the WiFi AAA, if, the home agent request message for obtaining user terminal hometown-agent-address is then sent to the WIF, the home agent request message includes user terminal and identified in user's mark of WiFi sides or the user in WiMAX sides, to cause the WIF to forward the home agent request message to the WiMAX AAA.12nd, a kind of WiMAX AAA, it is characterised in that including:Home agent request message receiving unit, for the home agent request message for the acquisition user terminal hometown-agent-address for receiving interworking function entity WIF transmissions, the home agent request message includes user terminal and identified in user's mark of WiFi sides or the user in WiMAX sides;Hometown-agent-address allocation unit, for after WiFi AAA are successful to the Certificate Authority of the user terminal, the user terminal received according to the home agent request message receiving unit is identified in user's mark of WiFi sides or the user in W iMAX sides, is the user terminal distribution home agent;Home agent response message transmitting element, the WIF is sent in the proxy response message of local for the address that the hometown-agent-address allocation unit is the home agent that the user terminal is distributed to be carried, to cause the WIF blunt addresses according to the home agent of ability to obtain the local of the user terminal from the home agent Address.13rd, WiMAX AAA according to claim 12, it is characterised in that the hometown-agent-address allocation unit includes:Hometown-agent-address distribute module, home agent request message for being received in the home agent request message receiving unit includes the user terminal in user's mark of WiMAX sides, and directly the user according to the user terminal in WiMAX sides is designated the user terminal distribution home agent;Identifier acquisition module, the home agent request message for being received in the home agent request message receiving unit includes the user terminal in user's mark of WiFi sides, and obtaining user of the user terminal in WiMAX sides in the signing incidence relation of WiF i networks and WiMAX network according to the user terminal identifies;The hometown-agent-address distribute module is additionally operable to, and user of the user terminal obtained according to the identifier acquisition module in WiMAX sides is designated the user terminal and distributes home agent.14th, WiMAX AAA according to claim 12, it is characterised in that the WiMAX AAA also include:Signing incidence relation acquiring unit, for obtaining the user terminal before user's mark of WiMAX sides in the signing incidence relation of WiFi network and WiMAX network according to user terminal in the identifier acquisition module, signing incidence relation of the user terminal in WiFi network and WiMAX network is obtained.15th, WiMAX AAA according to claim 14, it is characterised in thatThe signing incidence relation acquiring unit is specifically for obtaining the signing incidence relation that the WiMAX AAA itself are stored;OrThe signing incidence relation acquiring unit is specifically for after WiFi AAA are successful to the subscriber terminal authority certification, receiving the result and the signing incidence relation to the subscriber terminal authority certification that the WiFi AAA are sent;OrThe signing incidence relation acquiring unit receives the signing incidence relation that the WiF i AAA ask to return according to the authentication challenge specifically for sending authentication challenge request to the WiF i AAA.16th, WiMAX AAA according to claim 12, it is characterised in that the WiMAX AAA are also wrapped Include:Authentication detection unit, for when the home agent request message that the home agent request message receiving unit is received includes user mark and the authorization token of user terminal of the user terminal in WiFi sides, shelter to state user terminal and whether is authorized the token detection user terminal by WiFi AAA authentication in user's mark of WiF i sides and the 4 of the user terminal.17th, a kind of WiFi access networks, it is characterised in that including:Home address request message reception units, for after user terminal performs authentication using WiFi signing certificates to WiFi AAA and authorizes, the home address request message for the acquisition home address that the user terminal is sent is received, the home address request message includes user of the user terminal in WiFi sides and identified;Judging unit, for judging the user terminal whether by the authentication of the WiFi AAA;Home agent request message transmitting element, for when the judging unit judges the user terminal by the authentication of the WiFi AAA, the home agent request message for obtaining user terminal hometown-agent-address is sent to the WIF, the home agent request message includes user terminal and identified in user's mark of WiFi sides or the user in WiMAX sides.18th, the WiFi access networks according to claim 17, it is characterised in that also include:Signing incidence relation detection unit, after judging the user terminal by the authentication of the WiFi AAA in the judging unit, detect whether the WiFi access networks itself are stored with signing incidence relation of the user terminal in WiFi network and WiMAX network;Mark acquiring unit, during for there is the signing incidence relation in detecting the WiFi access networks in the signing incidence relation detection unit, identified according to the user of the WiFi sides, and the user terminal is in the signing incidence relation of WiFi network and WiMAX network, obtains user of the user terminal in WiMAX sides and identify;User mark of the terminal in WiMAX sides is carried is sent to WIF in the home agent request message for obtaining user terminal hometown-agent-address;The home agent request message transmitting element is additionally operable to, in the signing incidence relation detection unit inspection When measuring in the WiFi access networks in the absence of the signing incidence relation, user's mark by the user terminal in WiFi sides is carried is sent to WIF in the home agent request message for obtaining the user terminal hometown-agent-address.19th, WiFi access networks according to claim 17, it is characterised in thatThe home agent request message transmitting element is additionally operable to, the home address request message include the user terminal WiFi sides user mark and the user terminal 4 be authorized token when, the user terminal is carried in user's mark of WiFi sides and the authorization token of the user terminal and is sent to the WIF in the home agent request message, to cause the WIF to forward the home agent request message to the WiMAX AAA.20th, a kind of network and the system of WiMAX network intercommunication, it is characterised in that including:Interworking function entity WIF, for the home agent request message for the acquisition user terminal hometown-agent-address for receiving the transmission of WiFi access networks, and the home agent request message is sent in WiMAX AAA, the home agent request message comprising user mark of the user terminal in WiF i sides or user's mark in WiMAX sides;WiMAX AAA, the home agent request message for receiving WIF transmissions, and after WiFi AAA are authorized successfully to the certification 4 of the user terminal, shelter states user terminal and is designated the user terminal distribution home agent in user's mark of WiFi sides or the user in WiMAX sides;The address of the home agent of the distribution is carried and is sent to the WIF in the proxy response message of local;The WIF is additionally operable to, and receives the home agent response message that the WiMAX AAA are sent, and the home address of the user terminal is obtained according to the address of the home agent from the home agent.
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| PCT/CN2010/072180 WO2011134134A1 (en) | 2010-04-26 | 2010-04-26 | METHOD, DEVICE AND SYSTEM FOR INTERWORKING BETWEEN WiFi NETWORK AND WiMAX NETWORK |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102308622A true CN102308622A (en) | 2012-01-04 |
| CN102308622B CN102308622B (en) | 2013-10-02 |
Family
ID=44860748
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201080001608.6A Active CN102308622B (en) | 2010-04-26 | 2010-04-26 | Method, device and system for interworking between WiFi network and WiMAX network |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN102308622B (en) |
| WO (1) | WO2011134134A1 (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104679975A (en) * | 2012-12-26 | 2015-06-03 | 迪士尼企业公司 | Unlocking content and/or effectuating modifications in virtual space instances presented via multiple computing platforms |
| US9705883B2 (en) | 2012-11-15 | 2017-07-11 | Zte Corporation | Communications terminal and system and rights management method |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8909920B2 (en) | 2012-12-26 | 2014-12-09 | Disney Enterprises, Inc. | Linking token detection at a single computing platform with a user identification to effectuate modifications in virtual space instances presented via multiple computing platforms |
| CN105100056A (en) * | 2015-06-05 | 2015-11-25 | 北京奇虎科技有限公司 | Application data processing method and system |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101447978A (en) * | 2008-02-20 | 2009-06-03 | 中兴通讯股份有限公司 | Method for acquiring correct HA-RK Context by accessing AAA server in WiMAX network |
| CN101516092A (en) * | 2009-03-31 | 2009-08-26 | 华为技术有限公司 | Authentication method and authentication device for WiMAX network |
| CN101662757A (en) * | 2009-06-30 | 2010-03-03 | 华为技术有限公司 | Method, femto gateway and system for controlling subscriber access |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101075870B (en) * | 2006-05-16 | 2010-08-25 | 华为技术有限公司 | Method for generating and distributing movable IP Key |
-
2010
- 2010-04-26 WO PCT/CN2010/072180 patent/WO2011134134A1/en active Application Filing
- 2010-04-26 CN CN201080001608.6A patent/CN102308622B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101447978A (en) * | 2008-02-20 | 2009-06-03 | 中兴通讯股份有限公司 | Method for acquiring correct HA-RK Context by accessing AAA server in WiMAX network |
| CN101516092A (en) * | 2009-03-31 | 2009-08-26 | 华为技术有限公司 | Authentication method and authentication device for WiMAX network |
| CN101662757A (en) * | 2009-06-30 | 2010-03-03 | 华为技术有限公司 | Method, femto gateway and system for controlling subscriber access |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9705883B2 (en) | 2012-11-15 | 2017-07-11 | Zte Corporation | Communications terminal and system and rights management method |
| CN104679975A (en) * | 2012-12-26 | 2015-06-03 | 迪士尼企业公司 | Unlocking content and/or effectuating modifications in virtual space instances presented via multiple computing platforms |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2011134134A1 (en) | 2011-11-03 |
| CN102308622B (en) | 2013-10-02 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP6541851B2 (en) | Machine to machine bootstrapping | |
| CN104247505B (en) | For the system and method using ANQP server-capabilities enhancing ANDSF | |
| CN102006646B (en) | Switching method and equipment | |
| US20080294891A1 (en) | Method for Authenticating a Mobile Node in a Communication Network | |
| CN101848513B (en) | Method for switching WiFi access network to WiMAX access network and related equipment | |
| KR101720043B1 (en) | System and method for authentication in wireless lan | |
| CN102172062B (en) | Communication system, connection control device, mobile terminal, base station control method, service request method and program | |
| US10097540B2 (en) | Convenient WiFi network access using unique identifier value | |
| JP2012080418A (en) | Management of terminal connection state in network authentication | |
| CN104170424A (en) | Method and apparatus for subscription sharing | |
| CN102917356A (en) | System, equipment and method for enabling user equipment to access to evolved packet core network | |
| US8023484B1 (en) | Method for obtaining a mobile internet protocol address | |
| CN107071867A (en) | Wireless network access method, Wifi access points and terminal | |
| US20070274274A1 (en) | Open wireless access point detection and identification | |
| CN102215486B (en) | Network access method, system, network authentication method, equipment and terminal | |
| CN102308622A (en) | Method, device and system for interworking between WiFi network and WiMAX network | |
| CN108112015B (en) | Voice service switching method and device and mobile terminal | |
| CN101697550A (en) | Method and system for controlling access authority of double-protocol-stack network | |
| US8036222B1 (en) | Method for obtaining a mobile internet protocol address | |
| CN101447976B (en) | Method for accessing dynamic IP session, system and device thereof | |
| JP2023519997A (en) | Method and communication apparatus for securing terminal parameter updates | |
| WO2015100874A1 (en) | Home gateway access management method and system | |
| CN106341374B (en) | Method and device for limiting access of unlicensed user equipment to home gateway | |
| KR20050122935A (en) | Method and system for providing wireless lan service using wireless communication network | |
| KR20120099103A (en) | Wifi and wimax internetworking |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |