CN102938891A - Method and system for achieving offline triggering of machine type communication (MTC) device - Google Patents

Method and system for achieving offline triggering of machine type communication (MTC) device Download PDF

Info

Publication number
CN102938891A
CN102938891A CN2011102341134A CN201110234113A CN102938891A CN 102938891 A CN102938891 A CN 102938891A CN 2011102341134 A CN2011102341134 A CN 2011102341134A CN 201110234113 A CN201110234113 A CN 201110234113A CN 102938891 A CN102938891 A CN 102938891A
Authority
CN
China
Prior art keywords
mobile communications
communications network
mtc
mtc equipment
offline
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2011102341134A
Other languages
Chinese (zh)
Other versions
CN102938891B (en
Inventor
余万涛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN201110234113.4A priority Critical patent/CN102938891B/en
Priority to PCT/CN2011/082608 priority patent/WO2012151938A1/en
Publication of CN102938891A publication Critical patent/CN102938891A/en
Application granted granted Critical
Publication of CN102938891B publication Critical patent/CN102938891B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/70Services for machine-to-machine communication [M2M] or machine type communication [MTC]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/069Authentication using certificates or pre-shared keys

Abstract

The invention discloses a method and a system for achieving offline triggering of a machine type communication (MTC) device. The method includes: enabling an MTC server to trigger an offline MTC device through a mobile communication network, and enabling the MTC device to use the generated offline authentication key to authenticate the mobile communication network; and after the authentication, starting a connection building progress between the MTC device and the MTC server to build safe connection. By means of the method, when the MTC device is under the offline state, the MTC device firstly authenticates the network when receiving the trigger instructions, and then responses to the trigger instructions. The specific achieving technical scheme of authentication in offline trigger is provided when the MTC device is in the offline state.

Description

A kind of MTC equipment is realized the method and system that off-line triggers
Technical field
The present invention relates to machine to machine (M2M, Machine to Machine) technology, relate in particular to the method and system that a kind of machine type communication (MTC, Machine Type Communication) equipment realizes that off-line triggers.
Background technology
MTC refers to the employing wireless communication technology, realizes data communication and a series of technology that exchange and the general name of combination thereof between machine and machine, machine and the people.M2M has two layers of meaning: ground floor is machine itself, is called smart machine in built-in field; The second layer meaning is the connection between machine and the machine, by network machine is linked together.The range of application of MTC is very extensive, and such as intelligent measure, remote monitoring, tracking, medical treatment etc. makes the human lives more intelligent.Compare with traditional interpersonal communication, MTC equipment (M2M Device) enormous amount, application is extensive, has huge market prospects.
In MTC communication, main remote interconnection technique comprises global system for mobile communications (GSM, Global System for Mobile Communications)/general packet radio service technology (GPRS, General Packet Radio Service)/universal mobile telecommunications system (UMTS, Universal Mobile Telecommunications System), closely interconnection technique mainly contains 802.11b/g, bluetooth, Zigbee, radio-frequency (RF) identification (RFID, Radio Frequency Identification) etc.Because MTC has integrated radio communication and information technology, can be used for two-way communication, such as remote collection information, parameters and transmission instruction etc., therefore, MTC can realize different application schemes, such as safety monitoring, automatic vending, cargo tracking etc.The equipment that relates in nearly all daily life all might become potential service object.MTC provide the equipment real time data between the system, between the remote equipment or and the individual between set up the simple means of wireless connections.
Use for many M2M, because MTC user need to control and the communicating by letter of MTC equipment, therefore do not allow MTC equipment arbitrarily to access the MTC server.In this case, MTC equipment needn't be constantly attached to network or not need to have permanent packet data protocol/packet data network (PDP/PDN) and connect.When the MTC server need to be with the MTC devices communicating, trigger MTC equipment attach to network or set up a PDP/PDN by triggering command and connect.When MTC equipment was in off-line (offline) state, the assailant may send triggering command to MTC equipment by pretending to be network.Therefore, need to take safety measures, guarantee that the triggering command of MTC device responds is from legitimate network.
MTC equipment is under the offline state, when receiving triggering command, can avoid MTC equipment to be subject to attack from the triggering command of pretending to be network by network being carried out authentication.In this manner, MTC equipment only responds the triggering command by the network of authentication.That is to say that MTC equipment only responds the triggering command from legitimate network.In existing mobile communications network, the authentication of network is occurred in the process of portable terminal accessing mobile communication network, after authentication was passed through, the Ciphering Key that mobile communication network side is used for this authentication did not re-use deleted.Behind the conversation end of portable terminal and mobile communications network, if need to re-start authentication, then mobile communications network need to be finished with new Ciphering Key the card process of recognizing each other of portable terminal and mobile communications network.Be under the offline state at MTC equipment, when receiving triggering command, MTC equipment at first needs network is authenticated, and then triggering command is responded; Simultaneously, in the offline of MTC equipment trigger process, network side does not need MTC equipment is authenticated.Therefore, the AKA verification process that usually adopts in the mobile communications network is not suitable for the authentication to network under the offline state of MTC equipment.Therefore, be at MTC equipment in the situation of offline state, the technical scheme that network is authenticated is not provided in the prior art.
Summary of the invention
In view of this, main purpose of the present invention is to provide a kind of MTC equipment to realize the method and system that off-line triggers, and is at MTC equipment in the situation of off-line state, can realize the authentication in the off-line triggering.
For achieving the above object, technical scheme of the present invention is achieved in that
A kind of MTC equipment is realized the method that off-line triggers, comprises,
Machine type communication MTC server triggers the MTC equipment that is in off-line via mobile communications network;
The offline authentication key that the MTC equipment utilization generates authenticates mobile communications network; After authentication is passed through, start between MTC equipment and the MTC server and is connected the process of foundation, set up safely connection.
Described MTC server triggers the MTC equipment that is in off-line via mobile communications network and comprises:
Described MTC server sends to mobile communications network with trigger request or triggering command;
Described mobile communications network sends triggering command message to MTC equipment, carries the message authentication code of mobile communications network in triggering command message.
Described message authentication code is by offline authentication key and the additional parameter Information generation of described generation;
Described additional parameter information is a random number and mobile communications network identity information; It perhaps is a random number.
The offline authentication key that described MTC equipment utilization generates authenticates mobile communications network and comprises:
After described MTC equipment was received triggering command message, by the offline authentication key, and the additional parameter information in the triggering command message of receiving authenticated the message authentication code from mobile communications network.
Described message authentication code is generated by identifying algorithm by random number, mobile communications network identity information and offline authentication key;
Described message authentication code from mobile communications network is authenticated specifically comprises:
The offline authentication key of described MTC equipment by self generating and preserve in conjunction with the random number in the triggering command message of receiving and mobile communications network identity information, by the authentication generating algorithm identical with mobile communication network side, generates the local message authentication code;
Message authentication code in the local message authentication code that relatively generates and the triggering command message of receiving if the two is identical, is thought to authenticate and is passed through, otherwise, think to authenticate and do not pass through.
Described message authentication code is generated by identifying algorithm by random number and offline authentication key;
Described message authentication code from mobile communications network is authenticated specifically comprises:
The offline authentication key of described MTC equipment by self generating and preserve in conjunction with the random number in the triggering command message of receiving, generates the local message authentication code by the authentication generating algorithm identical with mobile communication network side;
Message authentication code in the local message authentication code that relatively generates and the triggering command message of receiving if the two is identical, is thought to authenticate and is passed through, otherwise, think to authenticate and do not pass through.
The method also comprises: if described authentication is not passed through, described MTC equipment does not respond trigger request or the triggering command of MTC server.
Described generation offline authentication key comprises: during described MTC equipment access mobile communications network, carry out access authentication procedure;
After authentication, MTC equipment and mobile communications network generate respectively CK, IK; Described mobile communications network and MTC equipment are respectively according to CK, and IK adopts identical key generation method to generate the offline authentication key that is used for MTC device authentication mobile communications network;
When being in off-line state behind the conversation end of described MTC equipment and MTC server, described MTC equipment and mobile communications network are preserved the offline authentication key that generates.
The method also comprises: be updated in the offline authentication key that described MTC equipment and mobile communication network side are preserved respectively.
The method of described renewal is:
After described MTC equipment off-line trigger process finishes, MTC equipment create with the MTC server between in the process that is connected, mobile communications network and MTC equipment are at the new offline authentication key of authentication phase generation of accessing mobile communication network;
The old offline authentication key that utilizes new offline authentication key to replace preserving.
The method of described renewal is:
After described MTC equipment and mobile communications network are set up the offline authentication key, in the situation that does not receive trigger request or triggering command, if described MTC equipment is owing to need to communicating by letter with mobile communications network or need to communicating with the MTC server, need again accessing mobile communication network, and start new access authentication procedure, in new access authentication procedure, described MTC equipment and mobile communications network generate new offline authentication key;
The old offline authentication key that utilizes new offline authentication key to replace preserving.
A kind of MTC equipment is realized the system that off-line triggers, and comprises at least MTC equipment, MTC server and mobile communications network, wherein,
MTC equipment is used for utilizing the offline authentication key that generates that mobile communications network is authenticated; After authentication is passed through, start between MTC equipment and the MTC server and is connected the process of foundation, set up safely connection;
The MTC server is used for triggering the MTC equipment that is in off-line via mobile communications network.
Described MTC equipment when also being used for accessing mobile communication network, is carried out access authentication procedure; After authentication, MTC equipment and mobile communications network generate respectively CK, IK; According to CK, IK adopts the key generation method identical with mobile communications network to generate the offline authentication key that is used for MTC device authentication mobile communications network; With the conversation end of MTC server after when being in off-line state, preserve the offline authentication key that generates;
Correspondingly, described mobile communications network also is used for according to CK, and IK adopts the key generation method identical with MTC equipment to generate the offline authentication key that is used for MTC device authentication mobile communications network.
Described MTC equipment also is used for upgrading the offline authentication key of preserving after the off-line trigger process finishes;
Correspondingly, described mobile communications network also is used for upgrading the offline authentication key of preserving.
Can find out that from the technical scheme that the invention described above provides the present invention includes the MTC server and trigger the MTC equipment that is in off-line via mobile communications network, the offline authentication key that the MTC equipment utilization generates authenticates mobile communications network; After authentication is passed through, start between MTC equipment and the MTC server and is connected the process of foundation, set up safely connection.By the inventive method, realized being under the offline state at MTC equipment, when receiving triggering command, MTC equipment at first authenticates network, and then the process that triggering command is responded.For being at MTC equipment in the situation of off-line state, the authentication during off-line triggers provides the specific implementation technical scheme.
Description of drawings
Fig. 1 is the flow chart that MTC equipment of the present invention is realized the method that off-line triggers;
Fig. 2 is that MTC equipment of the present invention is realized the flow chart that the offline authentication key in the off-line triggering generates;
Fig. 3 is that the present invention upgrades the schematic flow sheet that MTC equipment is realized the first embodiment of the offline authentication key in the off-line triggering;
Fig. 4 is that the present invention upgrades the schematic flow sheet that MTC equipment is realized the second embodiment of the offline authentication key in the off-line triggering.
Embodiment
Fig. 1 is the flow chart that MTC equipment of the present invention is realized the method that off-line triggers, and as shown in Figure 1, comprising:
Step 100:MTC server triggers the MTC equipment that is in off-line via mobile communications network.
When the MTC server need to be with the MTC devices communicating, the MTC server triggers MTC equipment by mobile communications network: the MTC server sends to mobile communications network with trigger request or triggering command, after mobile communications network is received trigger request or triggering command from the MTC server, send triggering command message to MTC equipment, carry the message authentication code of mobile communications network in triggering command message, this message authentication code is used for MTC equipment mobile communications network is authenticated.
Wherein, message authentication code can be by the offline authentication key K that generates OfflineWith the additional parameter Information generation.Such as: carry-on additional parameter information is a random number and mobile communications network identity information in triggering command message, and message authentication code is by random number, mobile communications network identity information and offline authentication key K Offline, generate by identifying algorithm.Perhaps, in triggering command message, also can only carry the i.e. random number of additional parameter information, and message authentication code is by random number and offline authentication key K Offline, generate by identifying algorithm.
Need to prove; when the MTC server is positioned at outside the mobile communications network; communicating by letter between mobile communications network and the MTC server need to have security mechanism protection, can guarantee the fail safe of communicating by letter between MTC server and the mobile communications network by recognizing each other card and encryption measures such as MTC server and mobile communications network.Concrete methods of realizing is those skilled in the art's conventional techniques means, and does not belong to protection scope of the present invention, also is not intended to limit the scope of the invention, and no longer describes in detail here.
The offline authentication key that step 101:MTC equipment utilization generates authenticates mobile communications network.
In this step, after MTC equipment is received triggering command message, by the offline authentication key, the message authentication code from mobile communications network is authenticated, comprise that specifically MTC equipment is by the offline authentication key K OfflineWith the additional parameter information in the triggering command message of receiving message authentication code is authenticated:
If message authentication code is by random number, mobile communications network identity information and offline authentication key K OfflineGenerate by identifying algorithm, so, the offline authentication key K of MTC equipment by self generating and preserve Offline, be random number and mobile communications network identity information in conjunction with the additional parameter information in the triggering command message of receiving, by the authentication generating algorithm identical with mobile communication network side, generate a local message authentication code; Then, the message authentication code in this locality the local message authentication code that generates and the triggering command message of receiving is compared, if the two is identical, thinks to authenticate and pass through, otherwise, think to authenticate and do not pass through;
If message authentication code is by random number and offline authentication key K OfflineGenerate by identifying algorithm, so, the offline authentication key K of MTC equipment by self generating and preserve Offline, be random number in conjunction with the additional parameter information in the triggering command message of receiving, generate a local message authentication code by the authentication generating algorithm identical with mobile communication network side; Then, the message authentication code in this locality the local message authentication code that generates and the triggering command message of receiving is compared, if the two is identical, thinks to authenticate and pass through, otherwise, think to authenticate and do not pass through.
Step 102: after authentication is passed through, start between MTC equipment and the MTC server and is connected the process of foundation, set up safely connection.
In this step, after authentication was passed through, trigger request or the triggering command of MTC device responds MTC server started the connection procedure of setting up between MTC equipment and the MTC server.
Further, if authentication is not passed through, MTC equipment does not respond trigger request or the triggering command of MTC server.
In flow process shown in Figure 1, the concrete grammar of mobile communications network and the generation of MTC equipment and preservation offline authentication key may further comprise the steps as shown in Figure 2:
During step 200:MTC equipment access mobile communications network, carry out access authentication procedure.The realization of this step belongs to prior art, no longer describes in detail here.
Step 201: after authentication, MTC equipment and mobile communications network generate respectively encryption key (CK), Integrity Key (IK).The realization of this step belongs to prior art, no longer describes in detail here.
Step 202: mobile communications network and MTC equipment are respectively according to CK, and IK adopts identical key generation method (KDF, Key Derive Function) to generate the offline authentication key K that is used for MTC device authentication mobile communications network Offline
In this step, key generation method can adopt existing method, and specific implementation belongs to those skilled in the art's conventional techniques means, is not intended to limit the scope of the invention.What this step was emphasized is, at MTC equipment access mobile communications network and by behind the access authentication, needs respectively according to CK, and IK generates the offline authentication key K that is used for MTC device authentication mobile communications network Offline
When being in off-line state when step 203:MTC equipment is in the attachment removal state or behind the conversation end of MTC equipment and MTC server, MTC equipment and mobile communications network are no longer preserved the safe context of join dependency, only preserve the offline authentication key K that generates in the step 202 Offline
What this step was emphasized is, when MTC equipment enters off-line state, and the offline authentication key K that before generates OfflineTo need to preserve, in order to obtain using in the process that follow-up MTC equipment realization off-line triggers.
By the inventive method, realized being under the offline state at MTC equipment, when receiving triggering command, MTC equipment at first authenticates network, and then the process that triggering command is responded.For being at MTC equipment in the situation of off-line state, the authentication during off-line triggers provides the specific implementation technical scheme.
The offline authentication key K OfflineCan only be used for a MTC equipment off-line trigger process.After a MTC equipment off-line trigger process finished, the inventive method also comprised: the offline authentication key in MTC equipment and mobile communication network side preservation need to upgrade.The mode of upgrading can have following two kinds of situations:
(1) after MTC equipment off-line trigger process finishes, MTC equipment create with the MTC server between in the process that is connected, according to the present invention's flow process shown in Figure 2, mobile communications network and MTC equipment can generate new offline authentication key K in the authentication phase of accessing mobile communication network Offline, among the present invention, need to utilize new offline authentication key K OfflineReplace old offline authentication key K Offline, namely the offline authentication key of MTC equipment and mobile communication network side preservation upgraded;
(2) MTC equipment and mobile communications network are set up the offline authentication key K OfflineAfter, in the situation that does not receive trigger request or triggering command, if MTC equipment needs again accessing mobile communication network, and starts new access authentication procedure owing to need to communicating by letter with mobile communications network or need to communicating with the MTC server.So, according to the present invention's flow process shown in Figure 2, in new access authentication procedure, MTC equipment and mobile communications network can generate new offline authentication key K Offline, among the present invention, need to utilize new offline authentication key K OfflineThe old offline authentication key K that replacement has been preserved Offline, namely the offline authentication key of MTC equipment and mobile communication network side preservation upgraded.
Fig. 3 is that the present invention upgrades the schematic flow sheet that MTC equipment is realized the first embodiment of the offline authentication key in the off-line triggering, among the first embodiment, after the MTC device responds triggering command, MTC equipment create with the MTC server between in the process that is connected, mobile communications network and MTC equipment will produce new offline authentication key K in the authentication phase of accessing mobile communication network New-offline, and replace the old offline authentication key K preserved Old-offline, as shown in Figure 3, detailed process may further comprise the steps:
Step 300:MTC device responds triggering command starts the connection procedure of setting up with the MTC server.
Step 301:MTC equipment access mobile communications network is carried out new access authentication procedure.
Step 302: after authentication, MTC equipment and mobile communications network generate respectively CK, IK.
Step 303: mobile communications network and MTC equipment are respectively according to CK, and IK adopts identical key generation method (KDF, Key Derive Function) to generate the new offline authentication key K that is used for MTC device authentication mobile communications network New-offlineSpecific implementation and step 202 are in full accord, repeat no more here.
Step 304: mobile communications network and MTC equipment are respectively with new offline authentication key K New-offlineReplace old offline authentication key K Old-offline
When being in off-line state behind the conversation end of step 305:MTC equipment and MTC server, MTC equipment and mobile communications network are no longer preserved the safe context of join dependency, only preserve the new offline authentication key K that generates recently New-offline
Fig. 4 is that the present invention upgrades the schematic flow sheet that MTC equipment is realized the second embodiment of the offline authentication key in the off-line triggering, among the second embodiment, after MTC equipment and mobile communications network are set up the offline authentication key, in the situation that does not receive triggering command, if MTC equipment is owing to need to communicate by letter with mobile communications network, or need to communicate with the MTC server, need again accessing mobile communication network, and start new access authentication procedure, so, in new access authentication procedure, MTC equipment and mobile communications network can generate according to the production process of offline authentication key new offline authentication key K New-offline, and replace old offline authentication key K Old-offlineAs shown in Figure 4, detailed process may further comprise the steps:
Step 400:MTC equipment access mobile communications network is carried out new access authentication process.
Step 401: after authentication, MTC equipment and mobile communications network generate respectively CK, IK.
Step 402: mobile communications network and MTC equipment are respectively according to CK, and IK adopts identical key generation method (KDF, Key Derive Function) to generate the new offline authentication key K that is used for MTC device authentication mobile communications network New-offlineSpecific implementation and step 202 are in full accord, repeat no more here.
Step 403: mobile communications network and MTC equipment are respectively with new offline authentication key K New-offlineReplace old offline authentication key K Old-offline
When being in off-line state when step 404:MTC equipment is in the attachment removal state or behind the conversation end of MTC equipment and MTC server, MTC equipment and mobile communications network are no longer preserved the safe context of join dependency, only preserve the new offline authentication key K that generates recently New-offline
For the inventive method, the system that also provides a kind of MTC of realization equipment off-line to trigger comprises MTC equipment, MTC server and mobile communications network at least, wherein,
MTC equipment is used for utilizing the offline authentication key that generates that mobile communications network is authenticated; After authentication is passed through, start between MTC equipment and the MTC server and is connected the process of foundation, set up safely connection.
The MTC server is used for triggering the MTC equipment that is in off-line via mobile communications network.
MTC equipment when also being used for accessing mobile communication network, is carried out access authentication procedure; After authentication, MTC equipment and mobile communications network generate respectively CK, IK; According to CK, IK adopts the key generation method identical with mobile communications network (KDF, Key Derive Function) to generate the offline authentication key K that is used for MTC device authentication mobile communications network OfflineWith the conversation end of MTC server after when being in off-line state, preserve the offline authentication key K that generates Offline
Correspondingly, mobile communications network also is used for according to CK, and IK adopts the key generation method identical with MTC equipment (KDF, Key Derive Function) to generate the offline authentication key K that is used for MTC device authentication mobile communications network Offline
MTC equipment also is used for upgrading the offline authentication key of preserving after the off-line trigger process finishes; Correspondingly, mobile communications network also is used for upgrading the offline authentication key of preserving.
The above is preferred embodiment of the present invention only, is not for limiting protection scope of the present invention, all any modifications of doing within the spirit and principles in the present invention, is equal to and replaces and improvement etc., all should be included within protection scope of the present invention.

Claims (14)

1. a MTC equipment is realized the method that off-line triggers, and it is characterized in that, comprise,
Machine type communication MTC server triggers the MTC equipment that is in off-line via mobile communications network;
The offline authentication key that the MTC equipment utilization generates authenticates mobile communications network; After authentication is passed through, start between MTC equipment and the MTC server and is connected the process of foundation, set up safely connection.
2. method according to claim 1 is characterized in that, described MTC server triggers the MTC equipment that is in off-line via mobile communications network and comprises:
Described MTC server sends to mobile communications network with trigger request or triggering command;
Described mobile communications network sends triggering command message to MTC equipment, carries the message authentication code of mobile communications network in triggering command message.
3. method according to claim 2 is characterized in that, described message authentication code is by offline authentication key and the additional parameter Information generation of described generation;
Described additional parameter information is a random number and mobile communications network identity information; It perhaps is a random number.
4. method according to claim 2 is characterized in that, the offline authentication key that described MTC equipment utilization generates authenticates mobile communications network and comprises:
After described MTC equipment was received triggering command message, by the offline authentication key, and the additional parameter information in the triggering command message of receiving authenticated the message authentication code from mobile communications network.
5. method according to claim 4 is characterized in that, described message authentication code is generated by identifying algorithm by random number, mobile communications network identity information and offline authentication key;
Described message authentication code from mobile communications network is authenticated specifically comprises:
The offline authentication key of described MTC equipment by self generating and preserve in conjunction with the random number in the triggering command message of receiving and mobile communications network identity information, by the authentication generating algorithm identical with mobile communication network side, generates the local message authentication code;
Message authentication code in the local message authentication code that relatively generates and the triggering command message of receiving if the two is identical, is thought to authenticate and is passed through, otherwise, think to authenticate and do not pass through.
6. method according to claim 4 is characterized in that, described message authentication code is generated by identifying algorithm by random number and offline authentication key;
Described message authentication code from mobile communications network is authenticated specifically comprises:
The offline authentication key of described MTC equipment by self generating and preserve in conjunction with the random number in the triggering command message of receiving, generates the local message authentication code by the authentication generating algorithm identical with mobile communication network side;
Message authentication code in the local message authentication code that relatively generates and the triggering command message of receiving if the two is identical, is thought to authenticate and is passed through, otherwise, think to authenticate and do not pass through.
7. each described method according to claim 1~6, it is characterized in that the method also comprises: if described authentication is not passed through, described MTC equipment does not respond trigger request or the triggering command of MTC server.
8. each described method is characterized in that according to claim 1~6, and described generation offline authentication key comprises: during described MTC equipment access mobile communications network, carry out access authentication procedure;
After authentication, MTC equipment and mobile communications network generate respectively CK, IK; Described mobile communications network and MTC equipment are respectively according to CK, and IK adopts identical key generation method to generate the offline authentication key that is used for MTC device authentication mobile communications network;
When being in off-line state behind the conversation end of described MTC equipment and MTC server, described MTC equipment and mobile communications network are preserved the offline authentication key that generates.
9. method according to claim 7 is characterized in that, the method also comprises: be updated in the offline authentication key that described MTC equipment and mobile communication network side are preserved respectively.
10. method according to claim 9 is characterized in that, the method for described renewal is:
After described MTC equipment off-line trigger process finishes, MTC equipment create with the MTC server between in the process that is connected, mobile communications network and MTC equipment are at the new offline authentication key of authentication phase generation of accessing mobile communication network;
The old offline authentication key that utilizes new offline authentication key to replace preserving.
11. method according to claim 9 is characterized in that, the method for described renewal is:
After described MTC equipment and mobile communications network are set up the offline authentication key, in the situation that does not receive trigger request or triggering command, if described MTC equipment is owing to need to communicating by letter with mobile communications network or need to communicating with the MTC server, need again accessing mobile communication network, and start new access authentication procedure, in new access authentication procedure, described MTC equipment and mobile communications network generate new offline authentication key;
The old offline authentication key that utilizes new offline authentication key to replace preserving.
12. a MTC equipment is realized the system that off-line triggers, and it is characterized in that, comprises at least MTC equipment, MTC server and mobile communications network, wherein,
MTC equipment is used for utilizing the offline authentication key that generates that mobile communications network is authenticated; After authentication is passed through, start between MTC equipment and the MTC server and is connected the process of foundation, set up safely connection;
The MTC server is used for triggering the MTC equipment that is in off-line via mobile communications network.
13. system according to claim 12 is characterized in that, described MTC equipment when also being used for accessing mobile communication network, is carried out access authentication procedure; After authentication, MTC equipment and mobile communications network generate respectively CK, IK; According to CK, IK adopts the key generation method identical with mobile communications network to generate the offline authentication key that is used for MTC device authentication mobile communications network; With the conversation end of MTC server after when being in off-line state, preserve the offline authentication key that generates;
Correspondingly, described mobile communications network also is used for according to CK, and IK adopts the key generation method identical with MTC equipment to generate the offline authentication key that is used for MTC device authentication mobile communications network.
14. according to claim 11 or 12 described systems, it is characterized in that described MTC equipment also is used for upgrading the offline authentication key of preserving after the off-line trigger process finishes;
Correspondingly, described mobile communications network also is used for upgrading the offline authentication key of preserving.
CN201110234113.4A 2011-08-16 2011-08-16 A kind of MTC device realizes the method and system triggered offline Expired - Fee Related CN102938891B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201110234113.4A CN102938891B (en) 2011-08-16 2011-08-16 A kind of MTC device realizes the method and system triggered offline
PCT/CN2011/082608 WO2012151938A1 (en) 2011-08-16 2011-11-22 Method and system for realizing offline triggering by mtc device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201110234113.4A CN102938891B (en) 2011-08-16 2011-08-16 A kind of MTC device realizes the method and system triggered offline

Publications (2)

Publication Number Publication Date
CN102938891A true CN102938891A (en) 2013-02-20
CN102938891B CN102938891B (en) 2018-05-11

Family

ID=47138717

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201110234113.4A Expired - Fee Related CN102938891B (en) 2011-08-16 2011-08-16 A kind of MTC device realizes the method and system triggered offline

Country Status (2)

Country Link
CN (1) CN102938891B (en)
WO (1) WO2012151938A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2016177059A1 (en) * 2015-10-20 2016-11-10 中兴通讯股份有限公司 Trigger message processing method, apparatus and system
CN112787972A (en) * 2019-11-04 2021-05-11 成都鼎桥通信技术有限公司 System, method and device for near-end maintenance authentication in Internet of things

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101022651A (en) * 2006-02-13 2007-08-22 华为技术有限公司 Combined right-discriminating construction and realizing method thereof
CN101272251A (en) * 2007-03-22 2008-09-24 华为技术有限公司 Authentication and cryptographic key negotiation method, authentication method, system and equipment
US20090191857A1 (en) * 2008-01-30 2009-07-30 Nokia Siemens Networks Oy Universal subscriber identity module provisioning for machine-to-machine communications
CN101651546A (en) * 2009-09-11 2010-02-17 福建天晴在线互动科技有限公司 Method for off-line generation of dynamic password and debarkation authentication and synchronization of server
CN102088668A (en) * 2011-03-10 2011-06-08 西安电子科技大学 Group-based authentication method of machine type communication (MTC) devices

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102083109B (en) * 2010-04-29 2013-06-05 电信科学技术研究院 Offline detection method, device and system

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101022651A (en) * 2006-02-13 2007-08-22 华为技术有限公司 Combined right-discriminating construction and realizing method thereof
CN101272251A (en) * 2007-03-22 2008-09-24 华为技术有限公司 Authentication and cryptographic key negotiation method, authentication method, system and equipment
US20090191857A1 (en) * 2008-01-30 2009-07-30 Nokia Siemens Networks Oy Universal subscriber identity module provisioning for machine-to-machine communications
CN101651546A (en) * 2009-09-11 2010-02-17 福建天晴在线互动科技有限公司 Method for off-line generation of dynamic password and debarkation authentication and synchronization of server
CN102088668A (en) * 2011-03-10 2011-06-08 西安电子科技大学 Group-based authentication method of machine type communication (MTC) devices

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
ZTE CORPORATION: "SIMTC - Discussion of secure MTC device triggering", 《3GPP TSG SA WG3 (SECURITY) MEETING #64 S3-110692》 *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2016177059A1 (en) * 2015-10-20 2016-11-10 中兴通讯股份有限公司 Trigger message processing method, apparatus and system
CN112787972A (en) * 2019-11-04 2021-05-11 成都鼎桥通信技术有限公司 System, method and device for near-end maintenance authentication in Internet of things

Also Published As

Publication number Publication date
CN102938891B (en) 2018-05-11
WO2012151938A1 (en) 2012-11-15

Similar Documents

Publication Publication Date Title
CN204143429U (en) A kind of tele-control system of electronic lock
EP2654332B1 (en) Key sharing method and system for machine type communication (mtc) server
CN104270758A (en) Method for safely establishing connection with server and conducting authorization through WIFI
CN104063932A (en) Non-networking access system based on mobile terminal and implementation method
CN103886661B (en) Access control management method and system
CN104167031A (en) Electronic lock, locking system, method of operating an electronic lock
CN103108311A (en) Method and device and system for binding magnetic tape command (MTC) device and universal integrated circuit card (UICC)
CN102076124B (en) System, method and equipment for changing signature data
CN102572818B (en) A kind of application key management method of MTC group device and system
CN102469455B (en) Based on equipment for machine type communication group management method and the system of universal guiding structure
CN205121680U (en) Bluetooth lock system based on intelligent terminal
CN104916022A (en) Intelligent lock control method, mobile terminal and intelligent lock system
CN103916848A (en) Data backup and recovery method and system for mobile terminal
CN205281615U (en) Portable electronic lock and electronic lock system
CN102026149A (en) Method and system for changing selected home operators of M2M equipment
CN104301523A (en) Intelligent lock device based on mobile phone terminal and unlocking method
CN102685730A (en) Method for transmitting context information of user equipment (UE) and mobility management entity (MME)
CN105050086A (en) Method for terminal to log in Wifi hotspot
CN104936306A (en) Method for establishing small data safe transmission connection of MTC equipment set, HSS and system
CN102209317A (en) Signing data provision method and system
CN102938891A (en) Method and system for achieving offline triggering of machine type communication (MTC) device
CN210038899U (en) Intelligent lock
CN102420852A (en) Server, mobile terminal and data synchronizing method
CN102869015B (en) A kind of method and system of MTC device triggering
CN103200566A (en) Implementation method and calibration method of partner mode between main device and partner device

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20180511

Termination date: 20200816

CF01 Termination of patent right due to non-payment of annual fee