CN103442328B - A kind of method for controlling quality of service of internet-of-things terminal and system - Google Patents
A kind of method for controlling quality of service of internet-of-things terminal and system Download PDFInfo
- Publication number
- CN103442328B CN103442328B CN201310392805.0A CN201310392805A CN103442328B CN 103442328 B CN103442328 B CN 103442328B CN 201310392805 A CN201310392805 A CN 201310392805A CN 103442328 B CN103442328 B CN 103442328B
- Authority
- CN
- China
- Prior art keywords
- terminal
- network access
- fixed network
- service authorization
- management server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention provides service quality (QoS) control method and the system of a kind of Internet of Things (M2M) terminal, M2M terminal is provided with service authorization information in advance, is provided with the QoS information that described service authorization information is corresponding in aaa server in advance; Wherein method comprises: described service authorization information is sent to device management server via fixed network access device after getting the IP address into described M2M terminal distribution from fixed network access device by M2M terminal; QoS information corresponding for the described service authorization information got from aaa server is sent to described fixed network access device by described device management server, carries out QoS control for described fixed network access device according to the data retransmission of this QoS information to described M2M terminal.Can ensure to be controlled by the QoS of M2M terminal in short-distance wireless communication technology core network access situation by the present invention.
Description
[technical field]
The present invention relates to network communication technology field, particularly a kind of method for controlling quality of service of internet-of-things terminal and system.
[background technology]
Internet of Things (M2M, MachinetoMachine) be a kind of with machine terminal device intelligence alternately for application and the service of core, networking.It passes through various bearing mode by machine access network, for client provides comprehensive informatization resolve scheme, to meet the information system requirement of client to aspects such as monitoring, command scheduling, data acquisition and measurements.
Typical service bearer technology comprises: note, multimedia message, packet domain carrying, wired, short-distance wireless communication technology etc., wherein short-distance wireless communication technology such as zigbee, bluetooth, wifi etc.The network topology structure of a typical Internet of Things application and the Deta bearer of different deployed position are as shown in fig. 1, M2M terminal can adopt the technology such as such as GPRS, note, multimedia message to be directly linked into the core net such as 2G/3G/ cable network, realize the communication between M2M terminal and M2M platform, in this case, data channel manages by providing the operator of communication network, and this situation is as shown in the M2M terminal 1 in Fig. 1.Also have another situation, M2M terminal adopts short-distance wireless communication technology to be linked into M2M convergence point, then is communicated with M2M platform by core net such as 2G/3G/ cable networks, and this situation is as shown in the M2M terminal 1 in Fig. 1 and M2M terminal 2.
Often, different internet of things services has different demands to the network bandwidth, real-time, Information Security, connection duration etc., in the present service quality of synthesis (QoS), therefore needs for M2M terminal provides feasible QoS pledge system.
When the direct core network access of M2M terminal, the QoS of the data channel bearing technology that places one's entire reliance upon realizes, and namely depend on carrier network mechanism, in addition on the one hand, deployment way in this case requires high to M2M terminal supplying power, and cost is also corresponding higher.
What adopt at present extensively is carry out by M2M convergence point the deployment way that accesses, M2M terminal is connected with M2M convergence point by short-distance wireless communication technology, the deployment of M2M terminal and M2M convergence point has good specificity and the property planned, do not need to carry out service quality differential service, and for the data channel between M2M convergence point and core net, with other non-Internet of Things data service shared network resources, need to ensure the QoS of M2M convergence point to the data channel of M2M platform, or need the guarantee carrying out different QoS according to different M2M terminal type or the different user served, but still do not have technology to realize at present.
[summary of the invention]
In view of this, the invention provides a kind of QoS control method and system of M2M terminal, so that ensure to be controlled by the QoS of M2M terminal in short-distance wireless communication technology core network access situation.
Concrete technical scheme is as follows:
A service quality QoS control method for Internet of Things M2M terminal, M2M terminal is provided with service authorization information in advance, is provided with the QoS information that described service authorization information is corresponding in aaa server in advance; The method comprises:
Described service authorization information is sent to device management server via fixed network access device after getting the IP address into described M2M terminal distribution from fixed network access device by described M2M terminal;
QoS information corresponding for the described service authorization information got from aaa server is sent to described fixed network access device by described device management server, carries out QoS control for described fixed network access device according to the data retransmission of this QoS information to described M2M terminal.
According to one preferred embodiment of the present invention, described M2M terminal obtains from fixed network access device the IP address be assigned with and specifically comprises:
Described M2M terminal broadcast DHCPDiscover message;
After described fixed network access device receives described DHCPDiscover message, from local pool be described M2M terminal distribution IP address or request Dynamic Host Configuration Protocol server be described M2M terminal distribution IP address, the IP address for described M2M terminal distribution is carried in DHCPOffer message and sends to described M2M terminal.
According to one preferred embodiment of the present invention, when IP address for described M2M terminal distribution is supplied to described M2M terminal by described fixed network access device, be recorded as the IP address of described M2M terminal distribution and the MAC Address of described M2M terminal, create forwarding contexts, the forwarding strategy arranged for described M2M terminal be forward described M2M terminal message to device management server.
According to one preferred embodiment of the present invention, QoS information corresponding for the described service authorization information got from aaa server is sent to described fixed network access device and specifically comprises by described device management server:
Described device management server transmission carries the access request message Access-Request of described service authorization information to aaa server;
Described aaa server utilizes the pre-configured service authorization information of the service authorization information that receives and this locality to carry out certification, after authentication success, determine the QoS information that the service authorization information that receives is corresponding, this QoS information is carried at and allows to send to described device management server in access message Access-Accept;
This QoS information is carried in certification analysis request message CoA-Request and sends to fixed network access device by described device management server.
According to one preferred embodiment of the present invention, after described fixed network access device receives the QoS information of device management server transmission, forwarding strategy for described M2M terminal is revised as and allows described M2M terminal and M2M Platform communication, and record the QoS information of described M2M terminal.
According to one preferred embodiment of the present invention, the method also comprises:
After the forwarding strategy of described fixed network access device amendment for described M2M terminal, send certification to described device management server and analyze response message CoA-Ack;
Described device management server sends authentication success message to described M2M terminal, notifies that described M2M terminal can start and M2M Platform communication.
According to one preferred embodiment of the present invention, the method also comprises:
Described device management server stores the QoS information of described service authorization information and correspondence thereof after getting QoS information corresponding to described service authorization information from aaa server in this locality;
QoS information corresponding for the described service authorization information got from aaa server is sent to described fixed network access device and specifically comprises by described device management server:
Whether described device management server inquiry is local exists the service authorization information identical with the service authorization information from M2M terminal, if so, then determines authentication success and the QoS information of the correspondence of this locality storage is sent to fixed network access device; Otherwise obtain from QoS information corresponding to the service authorization information of M2M terminal from aaa server, the QoS information of acquisition is sent to fixed network access device.
According to one preferred embodiment of the present invention, described service authorization information comprises account and password;
QoS information corresponding for the described service authorization information got from aaa server is sent to described fixed network access device and specifically comprises by described device management server:
Whether described device management server inquiry is local exists the account identical with the account that M2M terminal sends, if account exists, but password is inconsistent, then send authentification failure message to described M2M terminal; If account exists and password is also consistent, then determine authentication success and the QoS information of the correspondence stored this locality sends to fixed network access device;
If account does not exist, then obtain from QoS information corresponding to the service authorization information of M2M terminal from aaa server, the QoS information of acquisition is sent to fixed network access device.
A kind of QoS control system of M2M terminal, this system comprises: M2M terminal, fixed network access device, device management server and aaa server, wherein said M2M terminal is provided with service authorization information in advance, is provided with QoS information corresponding to described service authorization information in described aaa server in advance;
Described M2M terminal, for get the IP address into described M2M terminal distribution from fixed network access device after, is sent to device management server by described service authorization information via fixed network access device;
Described device management server, for being sent to described fixed network access device by QoS information corresponding for the described service authorization information got from aaa server;
Described fixed network access device, for carrying out QoS control according to the data retransmission of described QoS information to described M2M terminal.
According to one preferred embodiment of the present invention, described M2M terminal, when obtaining IP address from fixed network access device, specifically performs: broadcast DHCPDiscover message;
Described fixed network access device, also for after receiving described DHCPDiscover message, from local pool be described M2M terminal distribution IP address or request Dynamic Host Configuration Protocol server be described M2M terminal distribution IP address, the IP address for described M2M terminal distribution is carried in DHCPOffer message and sends to described M2M terminal.
According to one preferred embodiment of the present invention, described fixed network access device, time also for the IP address for described M2M terminal distribution is supplied to described M2M terminal, be recorded as the IP address of described M2M terminal distribution and the MAC Address of described M2M terminal, create forwarding contexts, the forwarding strategy arranged for described M2M terminal be forward described M2M terminal message to device management server.
According to one preferred embodiment of the present invention, described device management server, carries the access request message Access-Request of described service authorization information to aaa server specifically for transmission; The QoS information received from aaa server is carried in certification analysis request message CoA-Request and sends to fixed network access device;
Described aaa server, certification is carried out for utilizing the pre-configured service authorization information of the service authorization information that receives and this locality, after authentication success, determine the QoS information that the service authorization information that receives is corresponding, this QoS information is carried at and allows to send to described device management server in access message Access-Accept.
According to one preferred embodiment of the present invention, described fixed network access device, also for after receiving QoS information that device management server sends, the forwarding strategy for described M2M terminal is revised as and allows described M2M terminal and M2M Platform communication, and record the QoS information of described M2M terminal.
According to one preferred embodiment of the present invention, described fixed network access device, also for after revising the forwarding strategy for described M2M terminal, sends certification to described device management server and analyzes response message CoA-Ack;
Described device management server, also for after receiving described CoA-Ack, sends authentication success message to described M2M terminal, notifies that described M2M terminal can start and M2M Platform communication.
According to one preferred embodiment of the present invention, described device management server, also for after get QoS information corresponding to described service authorization information from aaa server, stores the QoS information of described service authorization information and correspondence thereof in this locality;
Described device management server is when being sent to described fixed network access device by QoS information corresponding for the described service authorization information got from aaa server, concrete execution: whether query facility management server this locality exists the service authorization information identical with the service authorization information from M2M terminal, if so, then determine authentication success and the QoS information of the correspondence of this locality storage is sent to fixed network access device; Otherwise obtain from QoS information corresponding to the service authorization information of M2M terminal from aaa server, the QoS information of acquisition is sent to fixed network access device.
According to one preferred embodiment of the present invention, described service authorization information comprises account and password;
Described device management server is when being sent to described fixed network access device by QoS information corresponding for the described service authorization information got from aaa server, concrete execution: inquire about described device management server this locality and whether there is the account identical with the account that M2M terminal sends, if account exists, but password is inconsistent, then send authentification failure message to described M2M terminal; If account exists and password is also consistent, then determine authentication success and the QoS information of the correspondence stored this locality sends to fixed network access device; If account does not exist, then obtain from QoS information corresponding to the service authorization information of M2M terminal from aaa server, the QoS information of acquisition is sent to fixed network access device.
As can be seen from the above technical solutions, the present invention is by newly added equipment management server, after making M2M terminal get IP address, service authorization information is sent to device management server via fixed network access device, by device management server, QoS information corresponding for the service authorization information got from aaa server is sent to fixed network access device, thus makes fixed network access device can carry out QoS control according to the data retransmission of this QoS information to described M2M terminal.That is, the invention provides a kind of for the QoS security mechanism by M2M terminal in short-distance wireless communication technology core network access situation.
[accompanying drawing explanation]
Fig. 1 is the topological structure schematic diagram of a typical Internet of Things application;
The QoS control system structure chart that Fig. 2 provides for the embodiment of the present invention;
The QoS control method flow chart that Fig. 3 provides for the embodiment of the present invention.
[embodiment]
In order to make the object, technical solutions and advantages of the present invention clearly, describe the present invention below in conjunction with the drawings and specific embodiments.
QoS of the present invention control for be scene by short-distance wireless communication technology core network access, therefore the QoS control system of M2M terminal as shown in Figure 2, M2M terminal within the system, M2M convergence point, fixed network access device and AAA(Authentication, Authorization, Accounting, certification, authorize, charging) server is existing equipment in existing system, device management server has been newly increased in the present invention, be connected with aaa server with fixed network access device respectively, the distribution of QoS information is carried out at control plane, authorize and control.
Core concept of the present invention is, in advance at M2M terminal configuration services authentication information, and the QoS information that configuration service authentication information is corresponding in aaa server; M2M terminal access M2M convergence point and get the IP address be assigned with from fixed network access device after, service authorization information is sent to device management server via fixed network access device, QoS information corresponding for this service authorization information got from aaa server is sent to fixed network access device by device management server, carries out QoS control for fixed network access device according to this QoS information to the data retransmission of this M2M terminal.
M2M terminal shown in Fig. 1 can be the wireless terminal device in Internet of Things, it can be typically sensor node, this sensor node includes the wireless communication module (such as wifi module, bluetooth module or Zigbee module) of transducer, power supply, limited computational resource, internal memory and low-power consumption, usually the physical node of a small size is presented as in Internet of Things, after passing through certification, sensing data can be sent to M2M platform by sensor node.This M2M terminal can adopt the short-distance wireless communication technology core network access such as such as wifi, bluetooth or Zigbee, and its basis first connects with M2M convergence point.
M2M convergence point adopts corresponding equipment according to the type of the short-distance wireless communication technology adopted, such as when adopting wifi technology core network access, corresponding M2M convergence point is AP(access point), when adopting Bluetooth technology core network access, corresponding M2M convergence point is Bluetooth gateway, when adopting ZigBee technology core network access, corresponding M2M convergence point is things-internet gateway.After M2M convergence point is connected with M2M terminal, be responsible for the data between M2M terminal and fixed network access device and signalling.
Fixed network access device is responsible for AP core network access, by M2M convergence point and fixed network access device, realize M2M terminal by wireless communication technology Access Core Network, the core net related in the present invention mainly exists with fixed network form, and fixed network access device can be such as broad access network gate (BNG) etc.
Aaa server is mainly used in realizing the authentication of user, mandate and billing function, generally uses Radius or Diameter.
Device management server is nucleus equipment of the present invention, directly can communicate with M2M terminal, BNG and aaa server, realizes the function such as the certification to M2M terminal, QoS information warrant distributing.
M2M platform is the applied server platform of Internet of Things, realizes processing and service logic the data that M2M terminal is sent, and controls and realize irrelevant in the present invention with QoS.The M2M platform related in the embodiment of the present invention can be that operator provides, also can be that third party provides, that is, the present invention can be applied at least two kinds of scenes: the first scene is that whole system comprises M2M terminal, the network Dou Shi operator of M2M platform and centre provides; The second scene is M2M terminal and M2M platform is that third party provides, and operator only provides middle network and completes the equipment of qos feature.
On interface, the sr interface between M2M terminal and M2M convergence point is air interface, can carry out data communication and fail safe protection by agreements such as such as wifi, bluetooth, zigbee.Sm interface between M2M terminal and device management server is mainly used in the transmission of the network service authentication message between M2M terminal and device management server, can adopt the self-designed interface protocol of manufacturer.Sd interface between M2M terminal and M2M platform is used for the data communication between M2M terminal and M2M platform, can adopt the self-designed interface protocol of manufacturer, has nothing to do with QoS control flow.Gb interface between M2M convergence point and fixed network access device can adopt general Ethernet access technique, supported vlans.Ma interface between device management server and aaa server, can adopt Radius agreement.Mb interface between device management server and fixed network access device, for the transmission of signaling aspect, can based on Radius agreement.
Be described in detail the implementation based on said system provided by the invention below in conjunction with specific embodiment, first will carry out pre-configured to Verification System, this is pre-configured mainly comprises:
1) to the configuration of M2M terminal, following two aspects are mainly comprised:
First aspect, in advance at M2M terminal configuration services authentication information, this service authorization information is that M2M terminal uses the accounts information of Operator Specific Service, usually can be presented as account, password etc.Service authorization information can be associated with QoS information in embodiments of the present invention.First the provider of usual M2M scheme can determine according to Internet of Things scale, data model the bandwidth resources that need, then determines required QoS further, applies for corresponding QoS further to operator.When applying for operator, can by obtaining to operator's business hall certification, use note, obtain service authorization information from carrier network application etc. mode, and be configured in M2M terminal, the concrete strategy adopting the form of which type of obtain manner and service authorization information to depend on operator.Once apply for service authorization information, aaa server just possesses the legal service authorization information applied for.
It should be noted that at this, multiple M2M terminal can share identical service authorization information, and such as employing group account and password form the form of service authorization information.
Second aspect, in M2M terminal, configuration and M2M convergence point connect used information in advance, include but not limited to network identity, cryptographic algorithm etc., if M2M convergence point is the AP of wifi network, then network identity can be the SSID(ServiceSetIdentifier of wireless network, service set).This cryptographic algorithm is the cryptographic algorithm adopted when carrying out wireless network data transmission, and object is the Wireless Transport Security in order to ensure data.This part is that usual wireless network accesses the information had.
The above-mentioned configuration that M2M terminal is carried out can be undertaken by serial ports, but generally, the M2M terminal quantity of Internet of Things greatly and do not have the peripheral hardwares such as keyboard, therefore some special modes can be adopted to carry out information configuration, such as the configuration of SmartConfigure(intelligence) mode carries out automatically batch configuration.
2) to the configuration of aaa server, on the one hand aaa server is configured with the service authorization information applied for, control to realize QoS on the other hand, aaa server is configured with the QoS information that each service authorization information is corresponding, and this QoS information can be presented as QoS rank.
On the basis of above-mentioned configuration, the M2M terminal that the embodiment of the present invention provides, as one of them nucleus equipment, possesses following functions:
1) M2M convergent point is accessed.For M2M terminal and M2M convergence point for wifi wireless network, M2M data point is now that AP, M2M terminal scanning finds Wifi wireless network, and utilize pre-configured SSID and cryptographic algorithm to carry out network insertion, successful association is to AP.
2) the IP address distributing to this M2M terminal is obtained from fixed network access device.Particularly, M2M terminal obtains IP address by DHCP flow process, namely DHCPDiscover message is broadcasted, after fixed network access device receives DHCPDiscover message, be carried in DHCPOffer message the IP address distributing to M2M terminal and send to M2M terminal, M2M terminal just can get the IP address be assigned with from DHCPOffer message.
3), after obtaining IP address, pre-configured service authorization information is sent to device management server via fixed network access device.Particularly, the access authentication message of carrying service authorization information is sent to fixed network access device by M2M terminal, then is sent to device management server by fixed network access device.
4) after receiving authentification failure message RegistrationNAK, the result of authentification failure is notified user, user can select to reconfigure, and again initiates identifying procedure.
5), after receiving authentication success message, M2M terminal starts to communicate with M2M platform.If such as M2M terminal is sensor node, then start to send sensing data to M2M platform, start the business logic processing of sensing data.
The function of M2M convergence point is identical with prior art, is namely applicable to the existing function of M2M convergent point, that is: connect with M2M terminal, allows the access of M2M terminal.
Fixed network access device is one of nucleus equipment of the present invention, possesses following functions:
1) be M2M terminal distribution IP address, particularly, after fixed network access device receives the DHCPDiscover message of M2M terminal broadcast, from local pool be this M2M terminal distribution IP address or request Dynamic Host Configuration Protocol server be this M2M terminal distribution IP address, the IP address for this M2M terminal distribution is carried in DHCPOffer message and sends to this M2M terminal.
2) for behind M2M terminal distribution IP address, the IP address of record M2M terminal and MAC Address, create forwarding contexts, and the forwarding strategy arranged for this M2M terminal is that the message of this M2M terminal of forwarding is to device management server.Like this before the success of M2M terminal authentication, the message from M2M terminal all can be forwarded to device management server.
3) before authentication success, the service authorization information from M2M terminal is forwarded to device management server.Particularly, receive the access authentication message of carrying service authorization information that M2M terminal sends, access authentication message is forwarded to device management server.
4), after receiving the QoS information of device management server transmission, the forwarding strategy for this M2M terminal is revised as and allows this M2M terminal and M2M Platform communication, and record the QoS information of this M2M terminal.After this, the data from M2M terminal would not be forwarded to device management server again, but are forwarded to M2M platform.Further, fixed network access device just can carry out QoS control according to the QoS information of M2M terminal to the data retransmission of this M2M terminal.
5) after the above-mentioned forwarding strategy of amendment, send certification to device management server and analyze response message CoA-Ack.
Device management server is also one of nucleus equipment of the present invention, possesses following functions:
1), after receiving the service authorization information from M2M terminal, the QoS information that this service authorization information is corresponding is obtained.Wherein obtain QoS information and can there are following two kinds of modes:
Service authorization information is sent to aaa server by first kind of way, device management server, after carrying out certification and determining the QoS that service authorization information is corresponding, QoS is fed back to device management server by aaa server.Particularly, device management server can send carry service authorization information access request message Access-Request to aaa server; By aaa server, certification is carried out to service authorization information, if certification is passed through, just QoS information corresponding for service authorization information be carried at and allow to send to device management server in access message Access-Accept, device management server just can get QoS information from Access-Accept.
The second way, for after QoS information corresponding to the service authorization information got from aaa server, in device management server this locality, the QoS information of service authorization information and correspondence thereof to be stored.Like this, after device management server receives the service authorization information from M2M terminal, first can inquire about this locality and whether there is the service authorization information identical with the service authorization information from this M2M terminal, if so, directly determine authentication success and the QoS information of the correspondence of this locality storage is sent to fixed network access device; Otherwise obtain QoS information according to first kind of way from aaa server again.
For the second way, if service authorization information comprises account and password, so particularly, first device management server can be inquired about this locality and whether there is the account identical with the account that M2M terminal sends, if account exists, but password is inconsistent, then send authentification failure message to M2M terminal; If account exists and password is also consistent, then determine authentication success and the QoS information of the correspondence stored this locality sends to fixed network access device; If account does not exist, then obtain QoS information according to first kind of way from aaa server.
2) QoS information of acquisition is sent to fixed network access device.Particularly, QoS information can be carried in certification analysis request message CoA-Request and send to fixed network access device.
3), after receiving the CoA-Ack of fixed network access device, send authentication success message to this M2M terminal, notify that this M2M terminal can start and M2M Platform communication.
4) if authentification failure, then send authentification failure message RegistrationNAK to M2M terminal, the failure of notice M2M terminal authentication, the result of authentification failure is notified user by M2M terminal, and user can select to reconfigure, and again initiates identifying procedure.
The function of the aaa server that the embodiment of the present invention provides compared with existing function, many processing capacities relevant to QoS information, particularly, aaa server possesses following functions:
1) authentication function, the service authorization information of the M2M terminal namely utilizing device management server to send carries out certification.Particularly, user is applied for the account that the account that is configured in aaa server and password and device management server are sent and password by aaa server, if identical, and aaa server determination authentication success.
2) authentication result is sent to device management server.Particularly, if authentication success, aaa server can send Access-Accept to device management server, if authentification failure, then aaa server sends Access-Reject to device management server.
3) when authentication success, QoS information corresponding for service authorization information is sent to device management server.Particularly, service authorization information can be carried at Access-Accept to device management server.
Below by Fig. 3, the QoS control method that the embodiment of the present invention provides is described in detail, the QoS control method flow chart that Fig. 3 provides for the embodiment of the present invention, can comprises the following steps:
Step 301:M2M terminal access M2M convergence point.
For M2M terminal and M2M convergence point for wifi wireless network, M2M data point is now that AP, M2M terminal scanning finds Wifi wireless network, and utilize pre-configured SSID and cryptographic algorithm to carry out network insertion, successful association is to AP.For the access procedure that M2M convergence point is Bluetooth gateway or things-internet gateway, in view of being that prior art does not repeat them here.
Step 302:M2M terminal is retrieved as the IP address of this M2M terminal distribution from fixed network access device.
In this step, M2M terminal can obtain IP address by dhcp process from BNG, particularly, M2M terminal broadcast DHCPDiscover message, after fixed network access device receives DHCPDiscover message, can be this M2M terminal distribution IP address from the address pool of this locality configuration, Dynamic Host Configuration Protocol server also can be asked to be this M2M terminal distribution IP address; Then the IP address for this M2M terminal distribution is carried in DHCPOffer message and sends to M2M terminal by fixed network access device.
M2M terminal sends the response of DHCPRequest message as DHCPOffer message afterwards, and notice fixed network access device will use the IP address of distribution, and fixed network access device sends DHCPACK message and does to confirm to M2M terminal.So far, M2M terminal completes IP address acquisition flow process.
Step 303: fixed network access device is recorded as the IP address of M2M terminal distribution and the MAC Address of M2M terminal, creates forwarding contexts, and arranging forwarding strategy is that the message of this M2M terminal of forwarding is to device management server.
Step 304: fixed network access device sends Radius access request message Access-Request to device management server, and this Access-Request carries IP address and the MAC Address of M2M terminal.
Step 305: after device management server receives Access-Request, MAC and the IP address of record M2M terminal, creates forwarding contexts.Reply Radius allows access message Access-Accept to fixed network access device simultaneously.
MAC and the IP address of the M2M terminal of device management server record is also that certification below and service quality control information distribution authorization use.Step 304 and step 305 are not that the present invention is necessary
Step 306:M2M terminal sends access authentication message to device management server, and this access authentication message carries pre-configured service authorization information.
The access authentication message that M2M terminal sends is sent to fixed network access device via M2M convergence point, that now gives tacit consent to due to fixed network access device is configured to forwarding messages to device management server, therefore, this access authentication message is forwarded to device management server further.
Step 307: device management server sends Radius access request message Access-Request to aaa server, carries service authorization information in this Access-Request.
Step 308:AAA server by utilizing service authorization information carries out certification to M2M terminal, after authentication success, determines the QoS information that this service authorization information is corresponding this QoS information to be sent to device management server by Access-Accept.
User is applied for the account that the account that is configured in aaa server and password and device management server are sent and password by aaa server, if identical, aaa server determination authentication success, due to the QoS that service authorization information pre-configured in aaa server is corresponding, therefore the QoS information of correspondence can be carried in Access-Accept and send to device management server.
If comparative result is not identical, then authentification failure, aaa server sends Radius refusal access message Access-Reject to device management server, notice authentification failure.
Can carry service quality rating (QI) information in Access-Accept message to device management server, QI can be carried in Value value by RadiusVendor-Specific attribute-bit.
Step 309: device management server sends Radius certification analysis request message CoA-Request to fixed network access device, and this CoA-Request carries QoS information.
If authentication success, then device management server sends CoA-Request to notify the data retransmission strategy corresponding to fixed network access device amendment M2M terminal to fixed network access device, QoS information is supplied to fixed network access device simultaneously.
If authentification failure, then device management server sends authentification failure message RegistrationNAK to M2M terminal, the failure of notice M2M terminal authentication, and the result of authentification failure is notified user by M2M terminal, user can select to reconfigure, and again initiates identifying procedure.
Step 310: after fixed network access device receives CoA-Request, amendment forwarding strategy is the QoS information allowing this M2M terminal and M2M Platform communication and record this M2M terminal, and sends certification analysis response message CoA-Ack to device management server responsively.
After the QoS information of this M2M terminal of fixed network access device record, the follow-up data for M2M terminal forward according to the strategy that this QoS information is corresponding, thus realize fixed network access device and control the QoS of M2M terminal.Particularly, fixed network access device can record the IP address of M2M terminal and the corresponding relation of QoS information, QoS control is carried out in IP address afterwards for this M2M terminal, such as priority scheduling queue, current limliting, traffic shaping etc., thus ensures the QoS of M2M terminal data.
Step 311: after device management server receives CoA-Ack, sends authentication success message to M2M terminal, to notify that M2M terminal also will ensure its QoS by certification, can start to communicate with M2M platform.
Step 312:M2M terminal starts to communicate with M2M platform.If such as M2M terminal is sensor node, then start to send sensing data to M2M platform, start the business logic processing of sensing data.
In addition, in above-mentioned steps 308, when QoS information corresponding for service authorization information is sent to device management server by aaa server, authentication success is described, device management server can in the QoS information of local stores service authentication information and correspondence thereof.Follow-up like this when performing above-mentioned steps 307, except device management server directly sends the Access-Request carrying service authorization information to except aaa server, preferably, first device management server can be inquired about this locality and whether there is the service authorization information identical with the service authorization information from M2M terminal, if, then determine authentication success and the QoS information of correspondence is directly sent to fixed network access device by CoA-Request, and need not again to aaa server request authentication and QoS information; Otherwise again according to the mode of step 307 to aaa server request authentication and QoS information.
More specifically, if service authorization information comprises account and password, then first device management server can inquire about whether there is the account identical with the account that M2M terminal sends, if account exists, but password is inconsistent, then device management server sends RegistrationNAK to M2M terminal.If password is also consistent, then certification is passed through, and forwards step 309 to.
If account does not exist, then device management server performs according to the mode of step 307.
QoS involved in the present invention, different fixed network access device controls there is different realization to the QoS of data retransmission, include but not limited to the functions such as maximum rate control, integrated flux control, bandwidth reserved control, on realization mechanism, include but not limited to priority scheduling queue, traffic shaping, current limliting etc.
Described in the embodiment of the present invention, QoS information is transmitted between aaa server and device management server and between device management server and fixed network access device, Radius agreement is adopted to communicate between them, in order to reduce the Function Extension of Radius agreement itself, improve protocol efficiency simultaneously, in embodiments of the present invention, QoS information can adopt levels of quality of service (QI), by transmitting the mode of QI, different QI is mapped to different QoS control operations by fixed network access device.
A kind of Mapping Examples of QI and QoS quality has been shown in table 1.
Table 1
Described as can be seen from above, method and system provided by the invention possesses following advantage:
1) the invention provides a kind of for the QoS security mechanism by M2M terminal in short-distance wireless communication technology core network access situation.
2) the present invention farthest make use of existing network infrastructure and functional entity, strong adaptability, saves improvement cost.
3) framework that realizes of the present invention is flexible, has very strong autgmentability to the management scene of M2M terminal.
In several embodiment provided by the present invention, should be understood that, disclosed system and method, can realize by another way.Such as, system embodiment described above is only schematic, and such as, the division of each equipment, is only a kind of logic function and divides, and actual can have other dividing mode when realizing.The described equipment illustrated as separating component or can may not be and physically separates, and namely can be positioned at a place, or also can be distributed in multiple network element.The some or all of object realizing the present embodiment scheme wherein can be selected according to the actual needs.
Each function in the said equipment both can adopt the form of hardware to realize, and the form that hardware also can be adopted to add SFU software functional unit realizes.The above-mentioned integrated unit realized with the form of SFU software functional unit, can be stored in a computer read/write memory medium.Above-mentioned SFU software functional unit is stored in a storage medium, comprising some instructions in order to make a computer equipment (can be personal computer, server, or the network equipment etc.) or processor (processor) perform the part steps of method described in each embodiment of the present invention.And aforesaid storage medium comprises: USB flash disk, portable hard drive, read-only memory (Read-OnlyMemory, ROM), random access memory (RandomAccessMemory, RAM), magnetic disc or CD etc. various can be program code stored medium.
The foregoing is only preferred embodiment of the present invention, not in order to limit the present invention, within the spirit and principles in the present invention all, any amendment made, equivalent replacement, improvement etc., all should be included within the scope of protection of the invention.
Claims (12)
1. a service quality QoS control method for Internet of Things M2M terminal, is characterized in that, M2M terminal is provided with service authorization information in advance, is provided with the QoS information that described service authorization information is corresponding in aaa server in advance; The method comprises:
Described service authorization information is sent to device management server via fixed network access device after getting the IP address into described M2M terminal distribution from fixed network access device by described M2M terminal;
QoS information corresponding for the described service authorization information got from aaa server is sent to described fixed network access device by described device management server, carries out QoS control for described fixed network access device according to the data retransmission of this QoS information to described M2M terminal;
Described M2M terminal obtains from fixed network access device the IP address be assigned with and specifically comprises:
Described M2M terminal broadcast DHCPDiscover message;
After described fixed network access device receives described DHCPDiscover message, from local pool be described M2M terminal distribution IP address or request Dynamic Host Configuration Protocol server be described M2M terminal distribution IP address, the IP address for described M2M terminal distribution is carried in DHCPOffer message and sends to described M2M terminal;
When IP address for described M2M terminal distribution is supplied to described M2M terminal by described fixed network access device, be recorded as the IP address of described M2M terminal distribution and the MAC Address of described M2M terminal, create forwarding contexts, the forwarding strategy arranged for described M2M terminal be forward described M2M terminal message to device management server.
2. method according to claim 1, is characterized in that, QoS information corresponding for the described service authorization information got from aaa server is sent to described fixed network access device and specifically comprises by described device management server:
Described device management server transmission carries the access request message Access-Request of described service authorization information to aaa server;
Described aaa server utilizes the pre-configured service authorization information of the service authorization information that receives and this locality to carry out certification, after authentication success, determine the QoS information that the service authorization information that receives is corresponding, this QoS information is carried at and allows to send to described device management server in access message Access-Accept;
This QoS information is carried in certification analysis request message CoA-Request and sends to fixed network access device by described device management server.
3. method according to claim 1 and 2, it is characterized in that, after described fixed network access device receives the QoS information of device management server transmission, forwarding strategy for described M2M terminal is revised as and allows described M2M terminal and M2M Platform communication, and record the QoS information of described M2M terminal.
4. method according to claim 3, is characterized in that, the method also comprises:
After the forwarding strategy of described fixed network access device amendment for described M2M terminal, send certification to described device management server and analyze response message CoA-Ack;
Described device management server sends authentication success message to described M2M terminal, notifies that described M2M terminal can start and M2M Platform communication.
5. method according to claim 1, is characterized in that, the method also comprises:
Described device management server stores the QoS information of described service authorization information and correspondence thereof after getting QoS information corresponding to described service authorization information from aaa server in this locality;
QoS information corresponding for the described service authorization information got from aaa server is sent to described fixed network access device and specifically comprises by described device management server:
Whether described device management server inquiry is local exists the service authorization information identical with the service authorization information from M2M terminal, if so, then determines authentication success and the QoS information of the correspondence of this locality storage is sent to fixed network access device; Otherwise obtain from QoS information corresponding to the service authorization information of M2M terminal from aaa server, the QoS information of acquisition is sent to fixed network access device.
6. method according to claim 5, is characterized in that, described service authorization information comprises account and password;
QoS information corresponding for the described service authorization information got from aaa server is sent to described fixed network access device and specifically comprises by described device management server:
Whether described device management server inquiry is local exists the account identical with the account that M2M terminal sends, if account exists, but password is inconsistent, then send authentification failure message to described M2M terminal; If account exists and password is also consistent, then determine authentication success and the QoS information of the correspondence stored this locality sends to fixed network access device;
If account does not exist, then obtain from QoS information corresponding to the service authorization information of M2M terminal from aaa server, the QoS information of acquisition is sent to fixed network access device.
7. the QoS control system of a M2M terminal, it is characterized in that, this system comprises: M2M terminal, fixed network access device, device management server and aaa server, wherein said M2M terminal is provided with service authorization information in advance, is provided with QoS information corresponding to described service authorization information in described aaa server in advance;
Described M2M terminal, for get the IP address into described M2M terminal distribution from fixed network access device after, is sent to device management server by described service authorization information via fixed network access device;
Described device management server, for being sent to described fixed network access device by QoS information corresponding for the described service authorization information got from aaa server;
Described fixed network access device, for carrying out QoS control according to the data retransmission of described QoS information to described M2M terminal;
Described M2M terminal, when obtaining IP address from fixed network access device, specifically performs: broadcast DHCPDiscover message;
Described fixed network access device, also for after receiving described DHCPDiscover message, from local pool be described M2M terminal distribution IP address or request Dynamic Host Configuration Protocol server be described M2M terminal distribution IP address, the IP address for described M2M terminal distribution is carried in DHCPOffer message and sends to described M2M terminal;
Described fixed network access device, time also for the IP address for described M2M terminal distribution is supplied to described M2M terminal, be recorded as the IP address of described M2M terminal distribution and the MAC Address of described M2M terminal, create forwarding contexts, the forwarding strategy arranged for described M2M terminal be forward described M2M terminal message to device management server.
8. system according to claim 7, is characterized in that, described device management server, carries the access request message Access-Request of described service authorization information to aaa server specifically for transmission; The QoS information received from aaa server is carried in certification analysis request message CoA-Request and sends to fixed network access device;
Described aaa server, certification is carried out for utilizing the pre-configured service authorization information of the service authorization information that receives and this locality, after authentication success, determine the QoS information that the service authorization information that receives is corresponding, this QoS information is carried at and allows to send to described device management server in access message Access-Accept.
9. the system according to claim 7 or 8, it is characterized in that, described fixed network access device, also for receive device management server send QoS information after, forwarding strategy for described M2M terminal is revised as and allows described M2M terminal and M2M Platform communication, and record the QoS information of described M2M terminal.
10. system according to claim 9, is characterized in that, described fixed network access device, also for after revising the forwarding strategy for described M2M terminal, sends certification analyze response message CoA-Ack to described device management server;
Described device management server, also for after receiving described CoA-Ack, sends authentication success message to described M2M terminal, notifies that described M2M terminal can start and M2M Platform communication.
11. systems according to claim 7, is characterized in that, described device management server, also for after get QoS information corresponding to described service authorization information from aaa server, store the QoS information of described service authorization information and correspondence thereof in this locality;
Described device management server is when being sent to described fixed network access device by QoS information corresponding for the described service authorization information got from aaa server, concrete execution: whether query facility management server this locality exists the service authorization information identical with the service authorization information from M2M terminal, if so, then determine authentication success and the QoS information of the correspondence of this locality storage is sent to fixed network access device; Otherwise obtain from QoS information corresponding to the service authorization information of M2M terminal from aaa server, the QoS information of acquisition is sent to fixed network access device.
12. systems according to claim 11, is characterized in that, described service authorization information comprises account and password;
Described device management server is when being sent to described fixed network access device by QoS information corresponding for the described service authorization information got from aaa server, concrete execution: inquire about described device management server this locality and whether there is the account identical with the account that M2M terminal sends, if account exists, but password is inconsistent, then send authentification failure message to described M2M terminal; If account exists and password is also consistent, then determine authentication success and the QoS information of the correspondence stored this locality sends to fixed network access device; If account does not exist, then obtain from QoS information corresponding to the service authorization information of M2M terminal from aaa server, the QoS information of acquisition is sent to fixed network access device.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310392805.0A CN103442328B (en) | 2013-09-02 | 2013-09-02 | A kind of method for controlling quality of service of internet-of-things terminal and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310392805.0A CN103442328B (en) | 2013-09-02 | 2013-09-02 | A kind of method for controlling quality of service of internet-of-things terminal and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103442328A CN103442328A (en) | 2013-12-11 |
| CN103442328B true CN103442328B (en) | 2016-03-09 |
Family
ID=49695983
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310392805.0A Expired - Fee Related CN103442328B (en) | 2013-09-02 | 2013-09-02 | A kind of method for controlling quality of service of internet-of-things terminal and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103442328B (en) |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9554392B2 (en) | 2014-10-15 | 2017-01-24 | At&T Intellectual Property I, L.P. | Machine to machine traffic management methods and systems |
| US9860906B2 (en) | 2015-12-15 | 2018-01-02 | At&T Intellectual Property I, L.P. | Method, computer-readable storage device and apparatus for processing machine-to-machine communications |
| CN105978879B (en) * | 2016-05-11 | 2019-04-26 | 北京交通大学 | Network channel safety management system |
| US10805287B2 (en) * | 2017-01-20 | 2020-10-13 | Samsung Electronics Co., Ltd | Apparatus and method for providing and managing security information in communication system |
| US11038814B2 (en) | 2018-10-27 | 2021-06-15 | Cisco Technology, Inc. | Establishing quality of service for internet of things devices |
| CN112929188B (en) * | 2019-12-05 | 2022-06-14 | 中国电信股份有限公司 | Device connection method, system, apparatus and computer readable storage medium |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20100084911A (en) * | 2009-01-19 | 2010-07-28 | 주식회사 케이티 | Service control method and system of m2m application for user traffic data |
| CN101860807A (en) * | 2010-05-05 | 2010-10-13 | 工业和信息化部电信传输研究所 | Managing and communication establishing method of M2M terminal device group and device |
| CN101917483A (en) * | 2010-08-18 | 2010-12-15 | 中国电信股份有限公司 | Method, system and equipment for realizing management and control of terminal communication of internet of things |
-
2013
- 2013-09-02 CN CN201310392805.0A patent/CN103442328B/en not_active Expired - Fee Related
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20100084911A (en) * | 2009-01-19 | 2010-07-28 | 주식회사 케이티 | Service control method and system of m2m application for user traffic data |
| CN101860807A (en) * | 2010-05-05 | 2010-10-13 | 工业和信息化部电信传输研究所 | Managing and communication establishing method of M2M terminal device group and device |
| CN101917483A (en) * | 2010-08-18 | 2010-12-15 | 中国电信股份有限公司 | Method, system and equipment for realizing management and control of terminal communication of internet of things |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103442328A (en) | 2013-12-11 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103442328B (en) | A kind of method for controlling quality of service of internet-of-things terminal and system | |
| CN110417633B (en) | Communication method and device | |
| US9967738B2 (en) | Methods and arrangements for enabling data transmission between a mobile device and a static destination address | |
| US20200059976A1 (en) | IoT DEVICE CONNECTIVITY, DISCOVERY, AND NETWORKING | |
| JP6816152B2 (en) | Methods and equipment for configuring M2M devices | |
| CN102752413B (en) | Dynamic Host Configuration Protocol server system of selection and the network equipment | |
| WO2017166936A1 (en) | Method and device for implementing address management, and aaa server and sdn controller | |
| US20120257565A1 (en) | Mobile network traffic management | |
| WO2019157968A1 (en) | Communication method, apparatus and system | |
| WO2015196755A1 (en) | Address allocation method in subscriber identifier and locator separation network, and access service router | |
| US20120176970A1 (en) | Methods and systems for implementing inter-network roam, querying and attaching network | |
| WO2023125151A1 (en) | Data migration system, method and apparatus for internet-of-things device, and storage medium | |
| WO2019009263A1 (en) | Apparatus and method for remotely managing devices, and program therefor | |
| US20140181279A1 (en) | Virtual Console-Port Management | |
| US20240098583A1 (en) | PDU session continuity for a UE moving between a telecommunications network and a gateway device | |
| JP2022501879A (en) | Access authentication | |
| CN104378799A (en) | User access method, device and system | |
| US20120300776A1 (en) | Method for creating virtual link, communication network element, and ethernet network system | |
| WO2018054272A1 (en) | Data transmission method and device, and computer storage medium | |
| CN111163463B (en) | Method, device, equipment and storage medium for wireless equipment to access router | |
| CN104168564A (en) | Authentication method and device based on GPRS network and integrated identification network | |
| Balan et al. | LISP Optimisation of Mobile Data Streaming in Connected Societies | |
| US20150109957A1 (en) | Transmission path control system | |
| CN102209012A (en) | Method and system for implementing connection establishment of terminals | |
| WO2017091949A1 (en) | Communication method, small cell base station, small cell base station controller, terminal and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20160309 Termination date: 20190902 |