CN103442328A - Method and system for controlling quality of service of terminal of Internet of Things - Google Patents
Method and system for controlling quality of service of terminal of Internet of Things Download PDFInfo
- Publication number
- CN103442328A CN103442328A CN2013103928050A CN201310392805A CN103442328A CN 103442328 A CN103442328 A CN 103442328A CN 2013103928050 A CN2013103928050 A CN 2013103928050A CN 201310392805 A CN201310392805 A CN 201310392805A CN 103442328 A CN103442328 A CN 103442328A
- Authority
- CN
- China
- Prior art keywords
- terminal
- network access
- fixed network
- management server
- service authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention provides a method and system for controlling quality of service (QoS) of a terminal of the Internet of Things (M2M). The terminal of the M2M is configured with service certification information ahead of time, and an AAA server is configured with QoS information corresponding to the service certification information ahead of time. The method comprises the steps that after the terminal of the M2M obtains an IP address allocated for the terminal of the M2M from fixed network access equipment, the service certification information is sent to a device management server through the fixed network access equipment, the device management server obtains the QoS information corresponding to the service certification information from the AAA server and sends the QoS information to the fixed network access equipment, and the fixed network access equipment forwards the data of the terminal of the M2M according to the QoS information to carry out QoS control. The method and system for controlling QoS of terminal of the M2M can guarantee the QoS control over the terminal of the M2M under the condition that the terminal accesses a core network through a short-range wireless communication technology.
Description
[technical field]
The present invention relates to network communications technology field, particularly a kind of method for controlling quality of service of internet-of-things terminal and system.
[background technology]
Internet of Things (M2M, Machine to Machine) is that a kind of to take the machine terminal device intelligence be core, application networking and service alternately.It passes through various bearing modes by the machine access network, for the client provides comprehensive informatization resolve scheme, to meet the information system requirement of client to aspects such as monitoring, command scheduling, data acquisition and measurements.
Typical service bearer technology comprises: note, multimedia message, packet domain carrying, wired, short-distance wireless communication technology etc., wherein short-distance wireless communication technology such as zigbee, bluetooth, wifi etc.The network topology structure of a typical Internet of Things application and the Deta bearer of different deployed position are as shown in fig. 1, the M2M terminal can adopt technology such as GPRS, note, multimedia message directly to be linked into the core net such as 2G/3G/ cable network, realize communicating by letter between M2M terminal and M2M platform, in this case, data channel is by operator's management that communication network is provided, and this situation is as shown in the M2M terminal 1 in Fig. 1.Also have another situation, the M2M terminal adopts short-distance wireless communication technology to be linked into M2M convergence point, then communicates by the core net such as 2G/3G/ cable network and M2M platform, and this situation is as shown in M2M terminal 1 and M2M terminal 2 in Fig. 1.
Often, different internet of things services has different demands to the network bandwidth, real-time, Information Security, connection duration etc., and the present service quality of synthesis (QoS) is upper, therefore need to guarantee mechanism for the M2M terminal provides feasible QoS.
In the situation that the direct core network access of M2M terminal, the QoS of the data channel bearing technology that places one's entire reliance upon realizes, depend on carrier network mechanism, on the one hand, deployment way in this case is high to M2M terminal power requirement in addition, and cost is also corresponding higher.
What extensively adopt at present is the deployment way accessed by M2M convergence point, the M2M terminal is connected with M2M convergence point by short-distance wireless communication technology, the deployment of M2M terminal and M2M convergence point has good specificity and planning property, do not need to carry out the service quality differential service, and for the data channel between M2M convergence point and core net, with other non-Internet of Things data service shared network resources, need assurance M2M convergence to put the QoS of the data channel of M2M platform, perhaps need to carry out the assurance of different QoS according to the user of different M2M terminal types or different services, but still do not have at present technology to realize.
[summary of the invention]
In view of this, the invention provides a kind of QoS control method and system of M2M terminal, so that guarantee to control by the QoS of M2M terminal in short-distance wireless communication technology core network access situation.
Concrete technical scheme is as follows:
A kind of service quality QoS control method of Internet of Things M2M terminal, the M2M terminal is provided with service authentication information in advance, is provided with QoS information corresponding to described service authentication information in aaa server in advance; The method comprises:
Described M2M terminal, from the fixed network access device gets the IP address into described M2M terminal distribution, is sent to device management server by described service authentication information via the fixed network access device;
QoS information corresponding to described service authentication information that described device management server will get from aaa server is sent to described fixed network access device, for described fixed network access device, according to this QoS information, the data retransmission of described M2M terminal is carried out to QoS control.
According to one preferred embodiment of the present invention, described M2M terminal is obtained from the fixed network access device IP address be assigned with and is specifically comprised:
Described M2M terminal broadcast DHCP Discover message;
After described fixed network access device receives described DHCP Discover message, be that described M2M terminal distribution IP address or request Dynamic Host Configuration Protocol server are described M2M terminal distribution IP address from local pool, will be carried at for the IP address of described M2M terminal distribution in DHCP Offer message and send to described M2M terminal.
According to one preferred embodiment of the present invention, when described fixed network access device will offer described M2M terminal for the IP address of described M2M terminal distribution, be recorded as the IP address of described M2M terminal distribution and the MAC Address of described M2M terminal, create forwarding contexts, the forwarding strategy arranged for described M2M terminal is to forward the message of described M2M terminal to device management server.
According to one preferred embodiment of the present invention, QoS information corresponding to described service authentication information that described device management server will get from aaa server is sent to described fixed network access device and specifically comprises:
Described device management server sends and carries the access request message Access-Request of described service authentication information to aaa server;
The service authentication information that described aaa server utilization receives and local pre-configured service authentication information are authenticated, after authentication success, determine QoS information corresponding to service authentication information received, this QoS information is carried at and allows to send to described device management server in access message Access-Accept;
Described device management server is carried at this QoS information in authentication analysis request message CoA-Request and sends to the fixed network access device.
According to one preferred embodiment of the present invention, after described fixed network access device receives the QoS information of device management server transmission, to be revised as for the forwarding strategy of described M2M terminal and allow described M2M terminal to communicate by letter with the M2M platform, and record the QoS information of described M2M terminal.
According to one preferred embodiment of the present invention, the method also comprises:
After described fixed network access device is revised the forwarding strategy for described M2M terminal, send authentication to described device management server and analyze response message CoA-Ack;
Described device management server sends authentication success message to described M2M terminal, notifies described M2M terminal can start to communicate by letter with the M2M platform.
According to one preferred embodiment of the present invention, the method also comprises:
Described device management server, from aaa server gets QoS information corresponding to described service authentication information, is stored described service authentication information and corresponding QoS information thereof in this locality;
QoS information corresponding to described service authentication information that described device management server will get from aaa server is sent to described fixed network access device and specifically comprises:
Whether the inquiry of described device management server is local exists the service authentication information identical with service authentication information from the M2M terminal, if so, determines authentication success and the QoS information of the correspondence of this locality storage is sent to the fixed network access device; Otherwise obtain the QoS information corresponding from the service authentication information of M2M terminal from aaa server, the QoS information of obtaining is sent to the fixed network access device.
According to one preferred embodiment of the present invention, described service authentication information comprises account and password;
QoS information corresponding to described service authentication information that described device management server will get from aaa server is sent to described fixed network access device and specifically comprises:
The local identical account of account sent with the M2M terminal that whether exists of described device management server inquiry, if account exists, but password is inconsistent, sends authentification failure message to described M2M terminal; If account exists and password is also consistent, determine authentication success and the QoS information of the correspondence of this locality storage is sent to the fixed network access device;
If account does not exist, from aaa server, obtain the QoS information corresponding from the service authentication information of M2M terminal, the QoS information of obtaining is sent to the fixed network access device.
A kind of QoS control system of M2M terminal, this system comprises: M2M terminal, fixed network access device, device management server and aaa server, wherein said M2M terminal is provided with service authentication information in advance, is provided with QoS information corresponding to described service authentication information in described aaa server in advance;
Described M2M terminal, for from the fixed network access device, getting the IP address into described M2M terminal distribution, be sent to device management server by described service authentication information via the fixed network access device;
Described device management server, be sent to described fixed network access device for the QoS information corresponding to described service authentication information that will get from aaa server;
Described fixed network access device, for carrying out QoS control according to described QoS information to the data retransmission of described M2M terminal.
According to one preferred embodiment of the present invention, described M2M terminal, when from the fixed network access device, obtaining the IP address, is specifically carried out: broadcast DHCP Discover message;
Described fixed network access device, also for after receiving described DHCP Discover message, be that described M2M terminal distribution IP address or request Dynamic Host Configuration Protocol server are described M2M terminal distribution IP address from local pool, will be carried at for the IP address of described M2M terminal distribution in DHCP Offer message and send to described M2M terminal.
According to one preferred embodiment of the present invention, described fixed network access device, also for will offer described M2M terminal for the IP address of described M2M terminal distribution the time, be recorded as the IP address of described M2M terminal distribution and the MAC Address of described M2M terminal, create forwarding contexts, the forwarding strategy arranged for described M2M terminal is to forward the message of described M2M terminal to device management server.
According to one preferred embodiment of the present invention, described device management server, carry the access request message Access-Request of described service authentication information to aaa server specifically for transmission; The QoS information that will receive from aaa server is carried at authentication analysis request message CoA-Request and sends to the fixed network access device;
Described aaa server, for utilizing the service authentication information and the local pre-configured service authentication information that receive to be authenticated, after authentication success, determine QoS information corresponding to service authentication information received, this QoS information is carried at and allows to send to described device management server in access message Access-Accept.
According to one preferred embodiment of the present invention, described fixed network access device, also, for after the QoS information that receives the device management server transmission, will be revised as for the forwarding strategy of described M2M terminal and allow described M2M terminal to communicate by letter with the M2M platform, and record the QoS information of described M2M terminal.
According to one preferred embodiment of the present invention, described fixed network access device, also, for after revising the forwarding strategy for described M2M terminal, send authentication to described device management server and analyze response message CoA-Ack;
Described device management server, also for after receiving described CoA-Ack, send authentication success message to described M2M terminal, notifies described M2M terminal can start to communicate by letter with the M2M platform.
According to one preferred embodiment of the present invention, described device management server, also for get QoS information corresponding to described service authentication information from aaa server, store described service authentication information and corresponding QoS information thereof in this locality;
When described device management server is sent to described fixed network access device in the QoS information corresponding to described service authentication information that will get from aaa server, the concrete execution: whether query facility management server this locality exists the service authentication information identical with service authentication information from the M2M terminal, if so, determine authentication success and the QoS information of the correspondence of this locality storage is sent to the fixed network access device; Otherwise obtain the QoS information corresponding from the service authentication information of M2M terminal from aaa server, the QoS information of obtaining is sent to the fixed network access device.
According to one preferred embodiment of the present invention, described service authentication information comprises account and password;
When described device management server is sent to described fixed network access device in the QoS information corresponding to described service authentication information that will get from aaa server, the concrete execution: inquire about described device management server this locality and whether have the identical account of account sent with the M2M terminal, if account exists, but password is inconsistent, send authentification failure message to described M2M terminal; If account exists and password is also consistent, determine authentication success and the QoS information of the correspondence of this locality storage is sent to the fixed network access device; If account does not exist, from aaa server, obtain the QoS information corresponding from the service authentication information of M2M terminal, the QoS information of obtaining is sent to the fixed network access device.
As can be seen from the above technical solutions, the present invention is by the newly added equipment management server, after making the M2M terminal get the IP address, service authentication information is sent to device management server via the fixed network access device, QoS information corresponding to the service authentication information that will be got from aaa server by device management server is sent to the fixed network access device, thereby makes the fixed network access device to carry out QoS control to the data retransmission of described M2M terminal according to this QoS information.That is to say, the invention provides a kind of for the QoS security mechanism by M2M terminal in short-distance wireless communication technology core network access situation.
[accompanying drawing explanation]
The topological structure schematic diagram that Fig. 1 is a typical Internet of Things application;
The QoS control system structure chart that Fig. 2 provides for the embodiment of the present invention;
The QoS control method flow chart that Fig. 3 provides for the embodiment of the present invention.
[embodiment]
In order to make the purpose, technical solutions and advantages of the present invention clearer, below in conjunction with the drawings and specific embodiments, describe the present invention.
QoS of the present invention control for be by the scene of short-distance wireless communication technology core network access, therefore the QoS control system of M2M terminal as shown in Figure 2, M2M terminal in this system, M2M convergence point, fixed network access device and AAA(Authentication, Authorization, Accounting, authentication, authorize, charging) server is existing equipment in existing system, newly increased device management server in the present invention, with the fixed network access device, with aaa server, be connected respectively, carry out the distribution of QoS information at control plane, authorize and control.
Core concept of the present invention is, in advance in M2M terminal configuration service authentication information, the QoS information that the configuration service authentication information is corresponding in aaa server; M2M terminal access M2M convergence point and from the fixed network access device gets the IP address be assigned with, service authentication information is sent to device management server via the fixed network access device, QoS information corresponding to this service authentication information that device management server will get from aaa server is sent to the fixed network access device, for the fixed network access device, according to this QoS information, the data retransmission of this M2M terminal is carried out to QoS control.
M2M terminal shown in Fig. 1 can be the wireless terminal device in Internet of Things, it can be typically sensor node, this sensor node includes the wireless communication module (for example wifi module, bluetooth module or Zigbee module) of transducer, power supply, limited computational resource, internal memory and low-power consumption, usually be presented as the physical node of a small size in Internet of Things, after by authentication, sensor node can be sent to sensing data the M2M platform.This M2M terminal can adopt short-distance wireless communication technology core network access such as wifi, bluetooth or Zigbee, and its basis is at first with M2M convergence point, to connect.
M2M convergence point adopts corresponding equipment according to the type of the short-distance wireless communication technology adopted, for example, when adopting wifi technology core network access, corresponding M2M convergence point is the AP(access point), when adopting the Bluetooth technology core network access, corresponding M2M convergence point is Bluetooth gateway, when adopting the ZigBee technology core network access, corresponding M2M convergence point is things-internet gateway.M2M convergence point, with after the M2M terminal is connected, is responsible for data and signalling between M2M terminal and fixed network access device.
The fixed network access device is responsible for the core network access by AP, by M2M convergence point and fixed network access device, realize that the M2M terminal is by the wireless communication technology Access Core Network, the core net related in the present invention mainly exists with the fixed network form, and the fixed network access device can be such as broad access network gate (BNG) etc.
Aaa server is mainly used in realizing user's authentication, mandate and billing function, generally uses Radius or Diameter.
Device management server is nucleus equipment of the present invention, can directly communicate by letter with M2M terminal, BNG and aaa server, realizes the functions such as authentication to the M2M terminal, QoS information mandate distribution.
The M2M platform is the applied server platform of Internet of Things, realizes that the data that the M2M terminal is sent are processed and service logic, controls with QoS in the present invention and realizes irrelevant.The M2M platform related in the embodiment of the present invention can be that operator provides, can be also that the third party provides, that is to say, the present invention can be applied at least two kinds of scenes: the first scene is that whole system comprises that M2M terminal, M2M platform and middle network are all that operator provides; The second scene is that M2M terminal and M2M platform are that the third party provides, the network in the middle of operator only provides and the equipment that completes qos feature.
On interface, the sr interface between M2M terminal and M2M convergence point is air interface, can carry out data communication and fail safe protection by agreements such as wifi, bluetooth, zigbee.Sm interface between M2M terminal and device management server is mainly used in the transmission of the network service authentication message between M2M terminal and device management server, can adopt the self-designed interface protocol of manufacturer.Sd interface between M2M terminal and M2M platform, for the data communication between M2M terminal and M2M platform, can adopt the self-designed interface protocol of manufacturer, irrelevant with the QoS control flow.Gb interface between M2M convergence point and fixed network access device can adopt general Ethernet access technique, supported vlans.Ma interface between device management server and aaa server, can adopt the Radius agreement.Mb interface between device management server and fixed network access device, for the transmission of signaling aspect, can be based on the Radius agreement.
Below in conjunction with specific embodiment, the implementation based on said system provided by the invention is described in detail, at first will carries out Verification System pre-configuredly, this is pre-configured mainly comprises:
1), to the configuration of M2M terminal, mainly comprise following two aspects:
First aspect, in advance in M2M terminal configuration service authentication information, this service authentication information is the accounts information that the M2M terminal is used Operator Specific Service, usually can be presented as account, password etc.Service authentication information can be associated with QoS information in embodiments of the present invention.Usually at first the provider of M2M scheme can determine according to Internet of Things scale, data model the bandwidth resources that need, and then further determines and further to operator, applies for corresponding QoS by needed QoS.When applying for to operator, can be by operator's business hall authentication, use note, obtaining, from carrier network application etc. mode, obtain service authentication information, and be disposed on the M2M terminal, specifically adopt which type of obtain manner and the form of service authentication information to depend on the strategy of operator.Once apply for service authentication information, just possessed the legal service authentication information of having applied on aaa server.
At this, it should be noted that, a plurality of M2M terminals can share identical service authentication information, and for example employing group account and password form the form of service authentication information.
Second aspect, configuration and M2M convergence point the used information that connects on the M2M terminal in advance, include but not limited to network identity, cryptographic algorithm etc., if the AP that M2M convergence point is the wifi network, network identity can be the SSID(Service Set Identifier of wireless network, service set).This cryptographic algorithm is the cryptographic algorithm adopted when carrying out the wireless network data transmission, and purpose is in order to guarantee the wireless transmission fail safe of data.This part is the information that common wireless network access has.
The above-mentioned configuration of carrying out on the M2M terminal can be undertaken by serial ports, but generally, the M2M terminal quantity of Internet of Things has greatly and not the peripheral hardwares such as keyboard, therefore can adopt some special modes to carry out information configuration, for example the configuration of Smart Configure(intelligence) mode carries out automatically batch configuration.
2) to the configuration of aaa server, dispose the service authentication information of having applied on aaa server on the one hand, in order to realize that QoS controls, dispose QoS information corresponding to each service authentication information on aaa server on the other hand, this QoS information can be presented as the QoS rank.
On the basis of above-mentioned configuration, the M2M terminal that the embodiment of the present invention provides, as one of them nucleus equipment, possesses following functions:
1) access M2M convergent point.Take M2M terminal and M2M convergence point as the wifi wireless network be example, M2M data point now is AP, the M2M terminal scanning is found the Wifi wireless network, utilizes pre-configured SSID and cryptographic algorithm to carry out network insertion, successfully is associated with AP.
2) obtain from the fixed network access device IP address of distributing to this M2M terminal.Particularly, the M2M terminal is obtained the IP address by the DHCP flow process, broadcast DHCP Discover message, after the fixed network access device receives DHCP Discover message, the IP address of distributing to the M2M terminal is carried in DHCP Offer message and sends to the M2M terminal, and the M2M terminal just can get the IP address be assigned with from DHCP Offer message.
3), after obtaining the IP address, pre-configured service authentication information is sent to device management server via the fixed network access device.Particularly, the access authentication message that the M2M terminal will be carried service authentication information is sent to the fixed network access device, then is sent to device management server by the fixed network access device.
4) after receiving authentification failure message Registration NAK, by the result of authentification failure, notify the user, the user can select to reconfigure, and again initiates identifying procedure.
5), after receiving authentication success message, the M2M terminal starts to communicate with the M2M platform.If for example the M2M terminal is sensor node, start to send sensing data to the M2M platform, start the business logic processing of sensing data.
The function of M2M convergence point, with identical in prior art, is applicable to the existing function of M2M convergent point, that is: with the M2M terminal, connect, and allows the access of M2M terminal.
The fixed network access device is one of nucleus equipment of the present invention, possesses following functions:
1) be M2M terminal distribution IP address, particularly, after the fixed network access device receives the DHCP Discover message of M2M terminal broadcast, be that this M2M terminal distribution IP address or request Dynamic Host Configuration Protocol server are this M2M terminal distribution IP address from local pool, will be carried at for the IP address of this M2M terminal distribution in DHCP Offer message and send to this M2M terminal.
2) after being M2M terminal distribution IP address, record IP address and the MAC Address of M2M terminal, create forwarding contexts, the forwarding strategy arranged for this M2M terminal is to forward the message of this M2M terminal to device management server.Like this before M2M terminal authentication success, from the message of M2M terminal, all can be forwarded to device management server.
3), before authentication success, will be forwarded to device management server from the service authentication information of M2M terminal.Particularly, receive the access authentication message of the service authentication information of carrying of M2M terminal transmission, access authentication message is forwarded to device management server.
4), after receiving the QoS information of device management server transmission, will be revised as for the forwarding strategy of this M2M terminal and allow this M2M terminal to communicate by letter with the M2M platform, and record the QoS information of this M2M terminal.After this, just can not be forwarded to again device management server from the data of M2M terminal, but be forwarded to the M2M platform.And the fixed network access device just can carry out QoS control to the data retransmission of this M2M terminal according to the QoS information of M2M terminal.
5), after revising above-mentioned forwarding strategy, send authentication to device management server and analyze response message CoA-Ack.
Device management server is also one of nucleus equipment of the present invention, possesses following functions:
1), after receiving the service authentication information from the M2M terminal, obtain QoS information corresponding to this service authentication information.Wherein obtain QoS information and can have following two kinds of modes:
First kind of way, device management server send to aaa server by service authentication information, after the QoS that aaa server is authenticated and definite service authentication information is corresponding, QoS are fed back to device management server.Particularly, device management server can send carry service authentication information access request message Access-Request to aaa server; By aaa server, service authentication information is authenticated, if authentication is passed through, just by service authentication information, corresponding QoS information is carried in permission access message Access-Accept and sends to device management server, and device management server just can get QoS information from Access-Accept.
The second way, for the service authentication information got from aaa server, corresponding QoS information, in device management server this locality, service authentication information and corresponding QoS information thereof are stored.Like this, after device management server receives the service authentication information from the M2M terminal, can at first inquire about the local service authentication information identical with service authentication information from this M2M terminal that whether exists, if so, directly determine authentication success and the QoS information of the correspondence of this locality storage is sent to the fixed network access device; Otherwise obtain QoS information according to first kind of way from aaa server again.
For the second way, if service authentication information comprises account and password, so particularly, at first device management server can inquire about the local identical account of account sent with the M2M terminal that whether exists, if account exists, but password is inconsistent, send authentification failure message to the M2M terminal; If account exists and password is also consistent, determine authentication success and the QoS information of the correspondence of this locality storage is sent to the fixed network access device; If account does not exist, according to first kind of way, from aaa server, obtain QoS information.
2) the QoS information of obtaining is sent to the fixed network access device.Particularly, QoS information can be carried in authentication analysis request message CoA-Request and send to the fixed network access device.
3) after receiving the CoA-Ack of fixed network access device, to this M2M terminal, send authentication success message, notify this M2M terminal can start to communicate by letter with the M2M platform.
4) if authentification failure sends authentification failure message Registration NAK to the M2M terminal, the failure of notice M2M terminal authentication, the M2M terminal is notified the user by the result of authentification failure, and the user can select to reconfigure, and again initiates identifying procedure.
The function of the aaa server that the embodiment of the present invention provides is compared with existing function, many processing capacities relevant to QoS information, and particularly, aaa server possesses following functions:
1) authentication function, the service authentication information of the M2M terminal of utilizing device management server to send is authenticated.Particularly, aaa server is configured in by user application account and the password that account in aaa server and password and device management server are sent, if identical, aaa server is determined authentication success.
2) authentication result is sent to device management server.Particularly, if authentication success, aaa server can send Access-Accept to device management server, if authentification failure, aaa server sends Access-Reject to device management server.
3), when authentication success, the QoS information that service authentication information is corresponding sends to device management server.Particularly, service authentication information can be carried at Access-Accept to device management server.
The QoS control method embodiment of the present invention provided below by Fig. 3 is described in detail, and Fig. 3 is the QoS control method flow chart that the embodiment of the present invention provides, and can comprise the following steps:
Step 301:M2M terminal access M2M convergence point.
Take M2M terminal and M2M convergence point as the wifi wireless network be example, M2M data point now is AP, the M2M terminal scanning is found the Wifi wireless network, utilizes pre-configured SSID and cryptographic algorithm to carry out network insertion, successfully is associated with AP.The access procedure that is Bluetooth gateway or things-internet gateway for M2M convergence point, in view of being that prior art does not repeat them here.
Step 302:M2M terminal is retrieved as the IP address of this M2M terminal distribution from the fixed network access device.
In this step, the M2M terminal can be obtained the IP address from BNG by dhcp process, particularly, M2M terminal broadcast DHCP Discover message, after the fixed network access device receives DHCPDiscover message, can be this M2M terminal distribution IP address from the address pool of this locality configuration, also can ask Dynamic Host Configuration Protocol server be this M2M terminal distribution IP address; Then the fixed network access device will be carried at for the IP address of this M2M terminal distribution in DHCP Offer message and send to the M2M terminal.
The M2M terminal sends the response of DHCP Request message as DHCP Offer message afterwards, the IP address that notice fixed network access device will be used distribution, and the fixed network access device sends DHCP ACK message and confirms to the M2M terminal.So far, the M2M terminal completes IP address acquisition flow process.
Step 303: the fixed network access device is recorded as the IP address of M2M terminal distribution and the MAC Address of M2M terminal, creates forwarding contexts, and it is to forward the message of this M2M terminal to device management server that forwarding strategy is set.
Step 304: the fixed network access device sends Radius access request message Access-Request to device management server, and this Access-Request carries IP address and the MAC Address of M2M terminal.
Step 305: after device management server is received Access-Request, record MAC and the IP address of M2M terminal, create forwarding contexts.Reply Radius allows access message Access-Accept to the fixed network access device simultaneously.
The MAC of the M2M terminal of device management server record and the authentication of Ye Wei back, IP address and service quality control information distribution authorization are used.Step 304 and step 305 are not that the present invention is necessary
Step 306:M2M terminal sends access authentication message to device management server, and this access authentication message is carried pre-configured service authentication information.
The access authentication message that the M2M terminal sends is sent to the fixed network access device via M2M convergence point, be configured to forwarding messages to device management server due to what the fixed network access device was now given tacit consent to, therefore, this access authentication message further is forwarded to device management server.
Step 307: device management server sends Radius access request message Access-Request to aaa server, carries service authentication information in this Access-Request.
Step 308:AAA server by utilizing service authentication information is authenticated the M2M terminal, after authentication success, determines the QoS information that this service authentication information is corresponding, this QoS information exchange is crossed to Access-Accept and send to device management server.
Aaa server is configured in by user application account and the password that account in aaa server and password and device management server are sent, if identical, aaa server is determined authentication success, due to pre-configured QoS corresponding to service authentication information in aaa server, therefore corresponding QoS information can be carried in Access-Accept and send to device management server.
If comparative result is not identical, authentification failure, aaa server sends Radius refusal access message Access-Reject to device management server, the notification authentication failure.
Can carry service quality rating (QI) information in Access-Accept message to device management server, QI can carry by Radius Vendor-Specific attribute-bit and in the Value value.
Step 309: device management server sends Radius authentication analysis request message CoA-Request to the fixed network access device, and this CoA-Request carries QoS information.
If authentication success, device management server sends CoA-Request to the fixed network access device and revises the corresponding data retransmission strategy of M2M terminal with notice fixed network access device, QoS information is offered to the fixed network access device simultaneously.
If authentification failure, device management server sends authentification failure message Registration NAK to the M2M terminal, the failure of notice M2M terminal authentication, and the M2M terminal is notified the user by the result of authentification failure, the user can select to reconfigure, and again initiates identifying procedure.
Step 310: after the fixed network access device receives CoA-Request, revise forwarding strategy for allowing this M2M terminal to communicate by letter with the M2M platform and recording the QoS information of this M2M terminal, and send authentication analysis response message CoA-Ack to device management server as response.
After the fixed network access device records the QoS information of this M2M terminal, according to this QoS information, corresponding strategy is forwarded the follow-up data for the M2M terminal, thereby realizes the QoS control of fixed network access device to the M2M terminal.Particularly, the fixed network access device can record the IP address of M2M terminal and the corresponding relation of QoS information, carry out QoS control for the IP address of this M2M terminal afterwards, such as priority scheduling queue, current limliting, traffic shaping etc., thereby the QoS of assurance M2M terminal data.
Step 311: after device management server receives CoA-Ack, to the M2M terminal, send authentication success message,, can start to communicate with the M2M platform by authenticating and guaranteeing its QoS with notice M2M terminal.
Step 312:M2M terminal starts to communicate with the M2M platform.If for example the M2M terminal is sensor node, start to send sensing data to the M2M platform, start the business logic processing of sensing data.
In addition, in above-mentioned steps 308, when the QoS information that aaa server is corresponding by service authentication information sends to device management server, authentication success is described, device management server can be in local stores service authentication information and corresponding QoS information thereof.Follow-up like this when carrying out above-mentioned steps 307, except device management server directly sends and carries the Access-Request of service authentication information to aaa server, preferably, at first device management server can inquire about the local service authentication information identical with service authentication information from the M2M terminal that whether exists, if, determine authentication success and corresponding QoS information is directly sent to the fixed network access device by CoA-Request, and needn't be again to aaa server request authentication and QoS information; Otherwise again according to the mode of step 307 to aaa server request authentication and QoS information.
More specifically, if service authentication information comprises account and password, at first device management server can be inquired about and whether have the identical account of account sent with the M2M terminal, if account exists, but password is inconsistent, device management server sends Registration NAK to the M2M terminal.If password is also consistent, authentication is passed through, and forwards step 309 to.
If account does not exist, device management server is carried out according to the mode of step 307.
Related QoS in the present invention, the QoS that different fixed network access devices forward data controls and may have different the realization, include but not limited to the functions such as maximum rate control, integrated flux control, bandwidth reserved control, on realization mechanism, include but not limited to priority scheduling queue, traffic shaping, current limliting etc.
According to described in the embodiment of the present invention, QoS information is being transmitted between aaa server and device management server and between device management server and fixed network access device, between them, adopt the Radius agreement to communicate, in order to reduce the Function Extension of Radius agreement itself, improve protocol efficiency simultaneously, in embodiments of the present invention, QoS information can adopt levels of quality of service (QI), by transmitting the mode of QI, different QI is mapped to different QoS control operations on the fixed network access device.
The Mapping Examples of a kind of QI and QoS quality has been shown in table 1.
Table 1
By above description, can be found out, method and system provided by the invention possesses following advantage:
1) the invention provides a kind of QoS security mechanism for passing through M2M terminal in short-distance wireless communication technology core network access situation.
2) the present invention has farthest utilized existing network infrastructure and functional entity, and strong adaptability is saved improvement cost.
3) of the present inventionly realize that framework is flexible, the management scene of M2M terminal is had to very strong autgmentability.
In several embodiment provided by the present invention, should be understood that disclosed system and method can be realized by another way.For example, system embodiment described above is only schematically, and for example, the division of each equipment, be only that a kind of logic function is divided, and during actual the realization, other dividing mode can be arranged.The described equipment as the separating component explanation can or can not be also physically to separate, and can be positioned at a place, or also can be distributed on a plurality of network element.Can select according to the actual needs the some or all of purpose that realizes the present embodiment scheme wherein.
Each function in the said equipment both can adopt the form of hardware to realize, the form that also can adopt hardware to add SFU software functional unit realizes.The integrated unit that the above-mentioned form with SFU software functional unit realizes, can be stored in a computer read/write memory medium.Above-mentioned SFU software functional unit is stored in a storage medium, comprise that some instructions are with so that a computer equipment (can be personal computer, server, or the network equipment etc.) or processor (processor) carry out the part steps of the described method of each embodiment of the present invention.And aforesaid storage medium comprises: various media that can be program code stored such as USB flash disk, portable hard drive, read-only memory (Read-Only Memory, ROM), random access memory (Random Access Memory, RAM), magnetic disc or CDs.
The foregoing is only preferred embodiment of the present invention, in order to limit the present invention, within the spirit and principles in the present invention not all, any modification of making, be equal to replacement, improvement etc., within all should being included in the scope of protection of the invention.
Claims (16)
1. the service quality QoS control method of an Internet of Things M2M terminal, is characterized in that, the M2M terminal is provided with service authentication information in advance, is provided with QoS information corresponding to described service authentication information in aaa server in advance; The method comprises:
Described M2M terminal, from the fixed network access device gets the IP address into described M2M terminal distribution, is sent to device management server by described service authentication information via the fixed network access device;
QoS information corresponding to described service authentication information that described device management server will get from aaa server is sent to described fixed network access device, for described fixed network access device, according to this QoS information, the data retransmission of described M2M terminal is carried out to QoS control.
2. method according to claim 1, is characterized in that, described M2M terminal is obtained from the fixed network access device IP address be assigned with and specifically comprised:
Described M2M terminal broadcast DHCP Discover message;
After described fixed network access device receives described DHCP Discover message, be that described M2M terminal distribution IP address or request Dynamic Host Configuration Protocol server are described M2M terminal distribution IP address from local pool, will be carried at for the IP address of described M2M terminal distribution in DHCP Offer message and send to described M2M terminal.
3. method according to claim 1 and 2, it is characterized in that, when described fixed network access device will offer described M2M terminal for the IP address of described M2M terminal distribution, be recorded as the IP address of described M2M terminal distribution and the MAC Address of described M2M terminal, create forwarding contexts, the forwarding strategy arranged for described M2M terminal is to forward the message of described M2M terminal to device management server.
4. method according to claim 1, is characterized in that, QoS information corresponding to described service authentication information that described device management server will get from aaa server is sent to described fixed network access device and specifically comprises:
Described device management server sends and carries the access request message Access-Request of described service authentication information to aaa server;
The service authentication information that described aaa server utilization receives and local pre-configured service authentication information are authenticated, after authentication success, determine QoS information corresponding to service authentication information received, this QoS information is carried at and allows to send to described device management server in access message Access-Accept;
Described device management server is carried at this QoS information in authentication analysis request message CoA-Request and sends to the fixed network access device.
5. according to the described method of claim 1 or 4, it is characterized in that, after described fixed network access device receives the QoS information of device management server transmission, to be revised as for the forwarding strategy of described M2M terminal and allow described M2M terminal to communicate by letter with the M2M platform, and record the QoS information of described M2M terminal.
6. method according to claim 5, is characterized in that, the method also comprises:
After described fixed network access device is revised the forwarding strategy for described M2M terminal, send authentication to described device management server and analyze response message CoA-Ack;
Described device management server sends authentication success message to described M2M terminal, notifies described M2M terminal can start to communicate by letter with the M2M platform.
7. method according to claim 1, is characterized in that, the method also comprises:
Described device management server, from aaa server gets QoS information corresponding to described service authentication information, is stored described service authentication information and corresponding QoS information thereof in this locality;
QoS information corresponding to described service authentication information that described device management server will get from aaa server is sent to described fixed network access device and specifically comprises:
Whether the inquiry of described device management server is local exists the service authentication information identical with service authentication information from the M2M terminal, if so, determines authentication success and the QoS information of the correspondence of this locality storage is sent to the fixed network access device; Otherwise obtain the QoS information corresponding from the service authentication information of M2M terminal from aaa server, the QoS information of obtaining is sent to the fixed network access device.
8. method according to claim 7, is characterized in that, described service authentication information comprises account and password;
QoS information corresponding to described service authentication information that described device management server will get from aaa server is sent to described fixed network access device and specifically comprises:
The local identical account of account sent with the M2M terminal that whether exists of described device management server inquiry, if account exists, but password is inconsistent, sends authentification failure message to described M2M terminal; If account exists and password is also consistent, determine authentication success and the QoS information of the correspondence of this locality storage is sent to the fixed network access device;
If account does not exist, from aaa server, obtain the QoS information corresponding from the service authentication information of M2M terminal, the QoS information of obtaining is sent to the fixed network access device.
9. the QoS control system of a M2M terminal, it is characterized in that, this system comprises: M2M terminal, fixed network access device, device management server and aaa server, wherein said M2M terminal is provided with service authentication information in advance, is provided with QoS information corresponding to described service authentication information in described aaa server in advance;
Described M2M terminal, for from the fixed network access device, getting the IP address into described M2M terminal distribution, be sent to device management server by described service authentication information via the fixed network access device;
Described device management server, be sent to described fixed network access device for the QoS information corresponding to described service authentication information that will get from aaa server;
Described fixed network access device, for carrying out QoS control according to described QoS information to the data retransmission of described M2M terminal.
10. system according to claim 9, is characterized in that, described M2M terminal, when from the fixed network access device, obtaining the IP address, is specifically carried out: broadcast DHCP Discover message;
Described fixed network access device, also for after receiving described DHCP Discover message, be that described M2M terminal distribution IP address or request Dynamic Host Configuration Protocol server are described M2M terminal distribution IP address from local pool, will be carried at for the IP address of described M2M terminal distribution in DHCP Offer message and send to described M2M terminal.
11. according to the described system of claim 9 or 10, it is characterized in that, described fixed network access device, also for will offer described M2M terminal for the IP address of described M2M terminal distribution the time, be recorded as the IP address of described M2M terminal distribution and the MAC Address of described M2M terminal, create forwarding contexts, the forwarding strategy arranged for described M2M terminal is to forward the message of described M2M terminal to device management server.
12. system according to claim 9, is characterized in that, described device management server carries the access request message Access-Request of described service authentication information to aaa server specifically for transmission; The QoS information that will receive from aaa server is carried at authentication analysis request message CoA-Request and sends to the fixed network access device;
Described aaa server, for utilizing the service authentication information and the local pre-configured service authentication information that receive to be authenticated, after authentication success, determine QoS information corresponding to service authentication information received, this QoS information is carried at and allows to send to described device management server in access message Access-Accept.
13. according to the described system of claim 9 or 12, it is characterized in that, described fixed network access device, also for after the QoS information that receives the device management server transmission, to be revised as for the forwarding strategy of described M2M terminal and allow described M2M terminal to communicate by letter with the M2M platform, and record the QoS information of described M2M terminal.
14. system according to claim 13, is characterized in that, described fixed network access device also, for after revising the forwarding strategy for described M2M terminal, sends authentication to described device management server and analyzes response message CoA-Ack;
Described device management server, also for after receiving described CoA-Ack, send authentication success message to described M2M terminal, notifies described M2M terminal can start to communicate by letter with the M2M platform.
15. system according to claim 9, is characterized in that, described device management server, also for get QoS information corresponding to described service authentication information from aaa server, is stored described service authentication information and corresponding QoS information thereof in this locality;
When described device management server is sent to described fixed network access device in the QoS information corresponding to described service authentication information that will get from aaa server, the concrete execution: whether query facility management server this locality exists the service authentication information identical with service authentication information from the M2M terminal, if so, determine authentication success and the QoS information of the correspondence of this locality storage is sent to the fixed network access device; Otherwise obtain the QoS information corresponding from the service authentication information of M2M terminal from aaa server, the QoS information of obtaining is sent to the fixed network access device.
16. system according to claim 15, is characterized in that, described service authentication information comprises account and password;
When described device management server is sent to described fixed network access device in the QoS information corresponding to described service authentication information that will get from aaa server, the concrete execution: inquire about described device management server this locality and whether have the identical account of account sent with the M2M terminal, if account exists, but password is inconsistent, send authentification failure message to described M2M terminal; If account exists and password is also consistent, determine authentication success and the QoS information of the correspondence of this locality storage is sent to the fixed network access device; If account does not exist, from aaa server, obtain the QoS information corresponding from the service authentication information of M2M terminal, the QoS information of obtaining is sent to the fixed network access device.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310392805.0A CN103442328B (en) | 2013-09-02 | 2013-09-02 | A kind of method for controlling quality of service of internet-of-things terminal and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310392805.0A CN103442328B (en) | 2013-09-02 | 2013-09-02 | A kind of method for controlling quality of service of internet-of-things terminal and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103442328A true CN103442328A (en) | 2013-12-11 |
| CN103442328B CN103442328B (en) | 2016-03-09 |
Family
ID=49695983
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310392805.0A Expired - Fee Related CN103442328B (en) | 2013-09-02 | 2013-09-02 | A kind of method for controlling quality of service of internet-of-things terminal and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103442328B (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105978879A (en) * | 2016-05-11 | 2016-09-28 | 北京交通大学 | Safety management system of network channels |
| US9554392B2 (en) | 2014-10-15 | 2017-01-24 | At&T Intellectual Property I, L.P. | Machine to machine traffic management methods and systems |
| US9860906B2 (en) | 2015-12-15 | 2018-01-02 | At&T Intellectual Property I, L.P. | Method, computer-readable storage device and apparatus for processing machine-to-machine communications |
| CN110235424A (en) * | 2017-01-20 | 2019-09-13 | 三星电子株式会社 | For providing the device and method with managing security information in a communications system |
| CN112929188A (en) * | 2019-12-05 | 2021-06-08 | 中国电信股份有限公司 | Device connection method, system, apparatus and computer readable storage medium |
| US11038814B2 (en) | 2018-10-27 | 2021-06-15 | Cisco Technology, Inc. | Establishing quality of service for internet of things devices |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20100084911A (en) * | 2009-01-19 | 2010-07-28 | 주식회사 케이티 | Service control method and system of m2m application for user traffic data |
| CN101860807A (en) * | 2010-05-05 | 2010-10-13 | 工业和信息化部电信传输研究所 | Managing and communication establishing method of M2M terminal device group and device |
| CN101917483A (en) * | 2010-08-18 | 2010-12-15 | 中国电信股份有限公司 | Method, system and equipment for realizing management and control of terminal communication of internet of things |
-
2013
- 2013-09-02 CN CN201310392805.0A patent/CN103442328B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20100084911A (en) * | 2009-01-19 | 2010-07-28 | 주식회사 케이티 | Service control method and system of m2m application for user traffic data |
| CN101860807A (en) * | 2010-05-05 | 2010-10-13 | 工业和信息化部电信传输研究所 | Managing and communication establishing method of M2M terminal device group and device |
| CN101917483A (en) * | 2010-08-18 | 2010-12-15 | 中国电信股份有限公司 | Method, system and equipment for realizing management and control of terminal communication of internet of things |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9554392B2 (en) | 2014-10-15 | 2017-01-24 | At&T Intellectual Property I, L.P. | Machine to machine traffic management methods and systems |
| US9860906B2 (en) | 2015-12-15 | 2018-01-02 | At&T Intellectual Property I, L.P. | Method, computer-readable storage device and apparatus for processing machine-to-machine communications |
| CN105978879A (en) * | 2016-05-11 | 2016-09-28 | 北京交通大学 | Safety management system of network channels |
| CN105978879B (en) * | 2016-05-11 | 2019-04-26 | 北京交通大学 | Network channel safety management system |
| CN110235424A (en) * | 2017-01-20 | 2019-09-13 | 三星电子株式会社 | For providing the device and method with managing security information in a communications system |
| CN110235424B (en) * | 2017-01-20 | 2022-03-08 | 三星电子株式会社 | Apparatus and method for providing and managing security information in a communication system |
| US11038814B2 (en) | 2018-10-27 | 2021-06-15 | Cisco Technology, Inc. | Establishing quality of service for internet of things devices |
| CN112929188A (en) * | 2019-12-05 | 2021-06-08 | 中国电信股份有限公司 | Device connection method, system, apparatus and computer readable storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103442328B (en) | 2016-03-09 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10616120B2 (en) | Service layer southbound interface and quality of service | |
| CN103442328B (en) | A kind of method for controlling quality of service of internet-of-things terminal and system | |
| US9967738B2 (en) | Methods and arrangements for enabling data transmission between a mobile device and a static destination address | |
| CN110650076B (en) | VXLAN implementation method, network equipment and communication system | |
| JP5982690B2 (en) | Network convergence method, device, and communication system | |
| CN105306612A (en) | Method for acquiring identifier of terminal in network and management network element | |
| US11302451B2 (en) | Internet of things connectivity device and method | |
| WO2015196755A1 (en) | Address allocation method in subscriber identifier and locator separation network, and access service router | |
| WO2011116713A2 (en) | Method, device and system for machine type communication (mtc) terminal communicating with network through gateway | |
| KR101988477B1 (en) | Method of registration of devices for M2M network using M2M gateway and M2M gateway for it | |
| CN106797539A (en) | Set up and configuration dynamic is subscribed to | |
| CN103442359A (en) | Sensor node authentication method and system based on short distance wireless access mode | |
| WO2013067884A1 (en) | Authorization information transfer method, relay device and server | |
| CN110086839B (en) | Dynamic access method and device for remote equipment | |
| WO2019009263A1 (en) | Apparatus and method for remotely managing devices, and program therefor | |
| WO2017107739A1 (en) | Data service processing method and device | |
| CN103428697A (en) | Network access method, device and system based on CAPWAP protocol | |
| CN104378799A (en) | User access method, device and system | |
| JP2022501879A (en) | Access authentication | |
| WO2009039746A1 (en) | Realization method and system for binding access point and operator | |
| JP2014146950A (en) | Network communication system | |
| CN104168564A (en) | Authentication method and device based on GPRS network and integrated identification network | |
| JP7208080B2 (en) | Automatic activation and onboarding of connected equipment | |
| CN104854930A (en) | Method, control node, gateway and computer program for enabling communication with a newly detected device | |
| CN111030914A (en) | Data transmission method and data transmission system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20160309 Termination date: 20190902 |