CN103581112A - Authentication method and device for PBX having access to IMS - Google Patents
Authentication method and device for PBX having access to IMS Download PDFInfo
- Publication number
- CN103581112A CN103581112A CN201210252783.3A CN201210252783A CN103581112A CN 103581112 A CN103581112 A CN 103581112A CN 201210252783 A CN201210252783 A CN 201210252783A CN 103581112 A CN103581112 A CN 103581112A
- Authority
- CN
- China
- Prior art keywords
- information
- calling subscriber
- trunk
- mgcf
- virtual trunk
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Abstract
The invention discloses an authentication method and device for a PBX having access to an IMS. The method comprises the steps that an ICSCF receives a calling INVITE message which is generated by an MGCF and carries virtual relay information; the ICSCF initiates a search request of an SCSCF to an HSS, and a calling subscriber is attributed to the SCSCF; the ICSCF receives corresponding relation information between the calling subscriber and a relay of the calling subscriber, and the corresponding relation information is returned by the HSS; the ICSCF conducts continuation of the attribution SCSCF on the calling subscriber according to the consistency between the virtual relay information and the corresponding relation information between the calling subscriber and the relay of the calling subscriber. According to the authentication method and device for the PBX having access to the IMS, by means of the comparison between an MGCF-Trunk field and an HSS-Trunk field, authentication of the TDM-PBX having access to the MGCF is achieved, and the risk of number theft caused when the fake calling subscriber makes a call is avoided.
Description
Technical field
The present invention relates to the technical field of IMS network in the communications field, particularly, relate to method for authenticating and the device of subscriber exchange PBX access internet protocol multimedia subsystem IMS network.
Background technology
Time division multiplexing Private Branch Exchange PBX (Time Division Mulipex-Private Branch eXchange, be called for short TDM-PBX) access internet protocol multimedia subsystem (IP Multimedia Subsystem, abbreviation IMS) there is AGCF (Access Gateway Control Function, be called for short AGCF) and MGCF (Media Gateway Control Function is called for short MGCF) two schemes.
AGCF scheme is that TDM-PBX passes through No. seven or R2 signaling access AGCF, user is at home subscriber server (Home Subscriber Server, abbreviation HSS) type of opening an account in is registration class user, the trunk interface of AGCF user bound and Subscriber Number, by AGCF, initiated user's agency of trademark registration, user's calling and called flow process and Proxy Call Session Control Function (Proxy-Call Session Control Function, abbreviation PCSCF) session initiation protocol (the Session Initiation Protocol under, abbreviation SIP) user's flow process is identical, realize TDM-PBX access IMS network, as shown in Figure 1.
MGCF scheme is that TDM-PBX passes through No. seven or R2 signaling access MGCF, user's type of opening an account in HSS is non-registered class user, MGCF when user's caller on INVITE band calling identification (orig) send query call conversation control function (Interrogating Call Session Control Function, be called for short ICSCF), by ICSCF, be user assignment service call conversation control function (Serving Call Session Control Function, abbreviation SCSCF) complete calling procedure, called flow completes called route by the signing MGCF of user and lands, realize TDM-PBX access IMS network, as shown in Figure 2.
Due to 3G (Third Generation) Moblie partner program (3rd Generation Partnership Project, abbreviation 3GPP) the AGCF network element defining in standard does not possess number analysis ability, therefore in complex network, apply limited, in actual existing network, TDM-PBX access IMS network also needs to use MGCF scheme, part PBX(Private Branch eXchange, subscriber exchange) calling need be dredged by the direct route mobile gateway of MGCF office, as shown in Figure 3.
There is following shortcoming in existing MGCF access scheme:
MGCF is the standard network element of 3GPP definition, and inner no user module cannot realize user and access mating of relaying, therefore has user's free call on sb. else's expense through illegal means or forges calling number risk.On the PBXA of relaying A, there are user A1, A2, on the PBXB of relaying B, there are user B1, B2, if calling number has been used B1 in the originating call on PBXA, calling is delivered on SCSCF, can produce B1 user's caller ticket, B1 is carried out to charging, have free call on sb. else's expense through illegal means risk, and cannot interception before risk occurs.
Summary of the invention
The present invention exists by the defect of free call on sb. else's expense through illegal means in order to overcome PBX access IMS network in prior art, according to an aspect of the present invention, proposes a kind of method for authenticating of PBX access IMS network.
Method for authenticating according to the PBX access IMS network of the embodiment of the present invention, comprising:
The caller INVITE of the virtual trunk information that carries that query call conversation control function ICSCF receiving media gateway control function MGCF generates;
ICSCF initiates the inquiry request of the service call conversation control function SCSCF of calling subscriber's ownership to home subscriber server HSS;
The calling subscriber that ICSCF reception HSS returns and the correspondence relationship information of its relaying;
ICSCF, according to the consistency of the correspondence relationship information of virtual trunk information and calling subscriber and its relaying, belongs to continuing of SCSCF to calling subscriber.
The present invention exists by the defect of free call on sb. else's expense through illegal means in order to overcome PBX access IMS network in prior art, according to another aspect of the present invention, proposes a kind of query call conversation control function.
Query call conversation control function according to the embodiment of the present invention, comprising:
Message sink module, the caller INVITE of the virtual trunk information that carries generating for receiving media gateway control function MGCF;
Inquiry request module, for initiating the inquiry request of the service call conversation control function SCSCF of calling subscriber's ownership to home subscriber server HSS;
Information receiving module, for receiving calling subscriber that HSS returns and the correspondence relationship information of its relaying;
The control module that continues, for according to the consistency of the correspondence relationship information of virtual trunk information and calling subscriber and its relaying, belongs to continuing of SCSCF to calling subscriber.
The present invention exists by the defect of free call on sb. else's expense through illegal means in order to overcome PBX access IMS network in prior art, according to an aspect of the present invention, proposes a kind of method for authenticating of PBX access IMS network.
Method for authenticating according to the PBX access IMS network of the embodiment of the present invention, comprising:
MGCF, when calling subscriber initiates caller, receives the IAM message that time division multiplexing Private Branch Exchange PBX TDM-PBX sends;
MGCF carries the caller INVITE of virtual trunk information according to IAM message generation, to ICSCF, send.
The present invention exists by the defect of free call on sb. else's expense through illegal means in order to overcome PBX access IMS network in prior art, according to another aspect of the present invention, proposes MGCF.
MGCF according to the embodiment of the present invention, comprising:
Message sink module, for when calling subscriber initiates caller, receives the IAM message that time division multiplexing Private Branch Exchange PBX TDM-PBX sends;
Message generating module, for carry the caller INVITE of virtual trunk information according to IAM message generation, sends to ICSCF.
The present invention exists by the defect of free call on sb. else's expense through illegal means in order to overcome PBX access IMS network in prior art, according to an aspect of the present invention, proposes a kind of method for authenticating of PBX access IMS network.
Method for authenticating according to the PBX access IMS network of the embodiment of the present invention, comprising:
The inquiry request of the SCSCF of calling subscriber's ownership that HSS reception ICSCF initiates;
HSS, according to inquiry request, returns to the correspondence relationship information of calling subscriber and its relaying to described ICSCF.
The present invention exists by the defect of free call on sb. else's expense through illegal means in order to overcome PBX access IMS network in prior art, according to another aspect of the present invention, proposes home subscriber server.
Home subscriber server according to the embodiment of the present invention, comprising:
Request receiving module, for receiving the inquiry request of the SCSCF of calling subscriber's ownership that ICSCF initiates;
Information is returned to module, for according to inquiry request, returns to the correspondence relationship information of calling subscriber and its relaying to ICSCF.
Method for authenticating, query call conversation control function, MGCF, home subscriber server and the right discriminating system of PBX access IMS network of the present invention, for realizing the method for authenticating of PBX access IMS network, MGCF fills in the P-Charging-Vector field into caller INVITE by the corresponding virtual trunk of user TDM-PBX ownership physics E1.
Method for authenticating, query call conversation control function, MGCF, home subscriber server and the right discriminating system of PBX access IMS network of the present invention, for realizing the method for authenticating of PBX access IMS network, user data table on HSS has been expanded Trunk-Info field, fills in the corresponding virtual trunk information of user TDM-PBX ownership physics E1.
The method for authenticating of PBX access IMS network of the present invention, query call conversation control function, MGCF, home subscriber server and right discriminating system, for realizing the method for authenticating of PBX access IMS network, ICSCF has expanded authentication module, authentication module has been preserved three partial informations: the calling number in the INVITE that User field preservation MGCF sends here, P-Charging-Vector field information in the INVITE that MGCF-Trunk field preservation MGCF sends here, HSS-Trunk field is preserved HSS and is returned to the Trunk-Info field information in response message, authentication module is MGCF-Trunk field and HSS-Trunk field relatively, both identical authentication successes, not identical failed authentication.
Method for authenticating, query call conversation control function, MGCF, home subscriber server and the right discriminating system of PBX access IMS network of the present invention, for realizing the method for authenticating of PBX access IMS network, by the comparison of MGCF-Trunk field and HSS-Trunk field, realized the authentication to the TDM-PBX user of MGCF access, evaded and forged the calling subscriber dialing risk that causes number to usurp of making a phone call.
Other features and advantages of the present invention will be set forth in the following description, and, partly from specification, become apparent, or understand by implementing the present invention.Object of the present invention and other advantages can be realized and be obtained by specifically noted structure in the specification write, claims and accompanying drawing.
Below by drawings and Examples, technical scheme of the present invention is described in further detail.
Accompanying drawing explanation
Accompanying drawing is used to provide a further understanding of the present invention, and forms a part for specification, for explaining the present invention, is not construed as limiting the invention together with embodiments of the present invention.In the accompanying drawings:
Fig. 1 is the topological diagram of AGCF access network in prior art;
Fig. 2 is the topological diagram of MGCF access network in prior art;
Fig. 3 is the topological diagram of the MGCF access network of the actual use of existing network in prior art;
Fig. 4 is the flow chart of the access success embodiment of PBX access IMS network authentication method of the present invention;
Fig. 5 is the flow chart of the call failure embodiment of PBX access IMS network authentication method of the present invention;
Fig. 6 is the structural representation of query call conversation control function of the present invention;
Fig. 7 is the structural representation of MGCF of the present invention;
Fig. 8 is the structural representation of home subscriber server of the present invention;
Fig. 9 is the structural representation of the right discriminating system of subscriber exchange access internet protocol multimedia subsystem network of the present invention.
Embodiment
Below in conjunction with accompanying drawing, the specific embodiment of the present invention is described in detail, but is to be understood that protection scope of the present invention is not subject to the restriction of embodiment.
At MGCF, set up virtual trunk, naming rule is: ZJ-XX-TRUNK-xxxxxx, wherein XX is Netherlands, Hangzhou as corresponding in HZ, the corresponding Jinhua of JIH etc., xxxxxx is 6 bit digital, from 000000-999999, virtual trunk corresponding an e1 port that TDM-PBX is required, i.e. a MGW(media gateway) upper one or more E1 physical resources.User is when initiating caller, and TDM-PBX send MGCF by IAM message, MGCF structure caller INVITE, and wherein, the P-Charging-Vector field value in INVITE is set to ZJ-XX-TRUNK-xxxxxx.
At HSS, return and on response message, expand a Trunk-Info field, this field identification the corresponding relation of Subscriber Number and its relaying, as access user A under the TDM-PBX of MGCF relaying ZJ-HZ-TRUNK-000001, its Trunk-Info field value on HSS is also ZJ-HZ-TRUNK-000001.
Authentication module of the upper increase of ICSCF, this authentication module is extracted dialing number information and the P-Charging-Vector in the next INVITE of MGCF, and it is kept at respectively in User and MGCF-Trunk field; The expansion Trunk-Info field of extracting HSS, is kept in HSS-Trunk field, and relatively MGCF-Trunk and HSS-Trunk field, confirm that authentication is successful, confirms failed authentication if not identical if both are identical.
User is when initiating caller, TDM-PBX sends IAM message to MGCF, the caller INVITE that MGCF structure contains rear subscriber number, wherein P-Charging-Vector field value is set to ZJ-XX-TRUNK-xxxxxx, INVITE send ICSCF, ICSCF is kept at Subscriber Number and P-Charging-Vector in the authentication module of ICSCF, ICSCF is to HSS request calling subscriber's ownership SCSCF, ICSCF extracts the expansion Trunk-Info field of HSS, with the P-Charging-Vector field comparison (being authorizing procedure) in authentication module, if authentication success, this is called out to calling subscriber's ownership SCSCF and is sent, ownership SCSCF triggers corresponding AS(Application Server according to calling subscriber's CAMEL-Subscription-Information, application server), after triggering completes, calling enters called flow.As shown in Figure 4, the step of the access success embodiment of PBX access IMS network authentication method of the present invention comprises:
Step 402:PBX makes a call, and sends the IAM message of carrying calling subscriber A to MGCF;
Step 404:MGCF triggers the INVITE flow process of caller, and this INVITE carries calling identification (orig), and orig comprises P-Charging-Vector field: icid-value=ZJ-HZ-TRUNK-000001;
Step 406:ICSCF is to the ownership SCSCF information of HSS inquiry calling subscriber A, wherein, stores each calling number and corresponding relation its relaying in HSS, as shown in table 1;
Table 1
| Calling number | Trunk-Info |
| A | ZJ-HZ-TRNK-000001 |
| B | ZJ-HZ-TRNK-000001 |
| C | ZJ-HZ-TRNK-000002 |
Step 408:HSS returns to the ownership SCSCF information of calling subscriber A and the trunk information Trunk-Info:ZJ-HZ-TRNK-000001 of calling subscriber A to ICSCF;
Step 410:ICSCF checks that whether the P-Charging-Vector field value in step 404 is consistent with the Trunk-Info field value in step 408, if both are consistent, this are called out to calling subscriber's ownership SCSCF and is sent;
Step 412: trigger AS according to user signing contract information;
Step 414: calling procedure completes follow-up called flow, because this step and follow-up flow process are irrelevant, does not repeat them here.
In the authorizing procedure of comparing with P-Charging-Vector field in expansion Trunk-Info field, if failed authentication, ICSCF returns to 500Server Error to MGCF, and MGCF returns to REL message to TDM-PBX.As shown in Figure 5, the step of the call failure embodiment of PBX access IMS network authentication method of the present invention comprises:
Step 502:PBX makes a call, and sends the IAM message of carrying calling subscriber C to MGCF;
Step 504:MGCF triggers the INVITE flow process of caller, and this INVITE carries calling identification (orig), and orig comprises P-Charging-Vector field: icid-value=ZJ-HZ-TRUNK-000001;
Step 506:ICSCF is to the ownership SCSCF information of HSS inquiry calling subscriber C, wherein, stores each calling number and corresponding relation its relaying in HSS, as shown in table 1;
Step 508:HSS returns to the ownership SCSCF information of calling subscriber C and the trunk information Trunk-Info:ZJ-HZ-TRUNK-000002 of calling subscriber C to ICSCF;
Step 510:ICSCF checks that whether the P-Charging-Vector field value in step 504 is consistent with the Trunk-Info field value in step 508, if both are inconsistent, ICSCF returns to 500Server Error to MGCF;
Step 512:MGCF directly returns to REL message to TDM-PBX.
The method for authenticating of PBX access IMS network of the present invention, MGCF fills in the P-Charging-Vector field into caller INVITE by the corresponding virtual trunk of user TDM-PBX ownership physics E1.
The method for authenticating of PBX access IMS network of the present invention, the user data table on HSS has been expanded Trunk-Info field, fills in the corresponding virtual trunk information of user TDM-PBX ownership physics E1.
The method for authenticating of PBX access IMS network of the present invention, ICSCF has expanded authentication module, authentication module has been preserved three partial informations: the calling number in the INVITE that User field preservation MGCF sends here, P-Charging-Vector field information in the INVITE that MGCF-Trunk field preservation MGCF sends here, HSS-Trunk field is preserved HSS and is returned to the Trunk-Info field information in response message, authentication module is MGCF-Trunk field and HSS-Trunk field relatively, both identical authentication successes, not identical failed authentication.
The method for authenticating of PBX of the present invention access IMS network, by the comparison of MGCF-Trunk field and HSS-Trunk field, has realized the authentication to the TDM-PBX user of MGCF access, has evaded the forgery calling subscriber dialing risk that causes number to usurp of making a phone call.
According to the embodiment of the present invention, provide a kind of query call conversation control function.As shown in Figure 6, the query call conversation control function ICSCF600 of the present embodiment comprises:
Message sink module 610, the caller INVITE of the virtual trunk information that carries generating for receiving media gateway control function MGCF;
Inquiry request module 620, for initiating the inquiry request of the service call conversation control function SCSCF of calling subscriber's ownership to home subscriber server HSS;
Information receiving module 630, for receiving calling subscriber that HSS returns and the correspondence relationship information of its relaying;
The control module 640 that continues, for according to the consistency of the correspondence relationship information of virtual trunk information and calling subscriber and its relaying, belongs to continuing of SCSCF to calling subscriber.
The control module that continues 640 comprises:
Information judgement submodule 641, for judging that whether virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying;
Function connector module 642, for according to the judged result of information judgement submodule 641 to the calling processing that continues: if virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying, calling is continued to calling subscriber's ownership SCSCF;
If the correspondence relationship information of virtual trunk information and calling subscriber and its relaying is inconsistent, to MGCF, send miscue.
Virtual trunk information comprises virtual trunk name information and rear subscriber number information, and MGCF is kept at virtual trunk name information in P-Charging-Vector field, and message sink module 610 comprises:
Information extraction submodule 611, extracts virtual trunk name information for the P-Charging-Vector field from MGCF;
Information is preserved submodule 612, for virtual trunk name information is kept to MGCF-Trunk field, rear subscriber number information is kept to User field;
Information receiving module 630 comprises:
Information is preserved submodule 631, for the correspondence relationship information of calling subscriber and its relaying is kept to HSS-Trunk field;
Information judgement submodule 641, if it is identical with the content of HSS-Trunk field to be further used for the content of MGCF-Trunk field, determines that virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying.
According to the embodiment of the present invention, provide a kind of MGCF.As shown in Figure 7, the MGCF 700 of the present embodiment comprises:
Message sink module 720, for when calling subscriber initiates caller, receives the IAM message that time division multiplexing Private Branch Exchange PBX TDM-PBX sends;
Message generating module 730, for carry the caller INVITE of virtual trunk information according to IAM message generation, sends to ICSCF.
Virtual trunk information comprises virtual trunk name information and rear subscriber number information, and MGCF also comprises:
Relaying is set up module 710, for setting up in advance virtual trunk, virtual trunk name information is kept to P-Charging-Vector field;
The virtual trunk e1 port required with TDM-PBX is corresponding.
According to the embodiment of the present invention, provide a kind of home subscriber server.As shown in Figure 8, the home subscriber server HSS800 of the present embodiment comprises:
Request receiving module 820, for receiving the inquiry request of the SCSCF of calling subscriber's ownership that ICSCF initiates;
Information is returned to module 830, for according to inquiry request, returns to the correspondence relationship information of calling subscriber and its relaying to described ICSCF;
Information is preserved module 810, for the correspondence relationship information of calling subscriber and its relaying is kept to Trunk-Info field, the content of described Trunk-Info field is identical with the content of the P-Charging-Vector field of the preservation virtual trunk name information of MGCF.
According to the embodiment of the present invention, provide a kind of right discriminating system of subscriber exchange access internet protocol multimedia subsystem network.As shown in Figure 9, the right discriminating system of the subscriber exchange of the present embodiment access internet protocol multimedia subsystem network comprises:
MGCF910, for when calling subscriber initiates caller, receives the IAM message that TDM-PBX sends, and carries the caller INVITE of virtual trunk information according to IAM message generation, to ICSCF, sends;
ICSCF920, for initiate the inquiry request of the SCSCF of calling subscriber's ownership to HSS, the consistency according to the correspondence relationship information of virtual trunk information and calling subscriber and its relaying, belongs to continuing of SCSCF to calling subscriber;
HSS930, for according to inquiry request, returns to the correspondence relationship information of calling subscriber and its relaying to ICSCF.
Described MGCF910 comprises:
Message sink module, for when calling subscriber initiates caller, receives the IAM message that time division multiplexing Private Branch Exchange PBX TDM-PBX sends;
Message generating module, for carry the caller INVITE of virtual trunk information according to IAM message generation, sends to ICSCF.
Virtual trunk information comprises virtual trunk name information and rear subscriber number information, and described MGCF910 also comprises:
Relaying is set up module, for setting up in advance virtual trunk, virtual trunk name information is kept to P-Charging-Vector field;
The virtual trunk e1 port required with TDM-PBX is corresponding.
Described ICSCF920 comprises:
Message sink module, the caller INVITE of the virtual trunk information that carries generating for receiving media gateway control function MGCF;
Inquiry request module, for initiating the inquiry request of the service call conversation control function SCSCF of calling subscriber's ownership to home subscriber server HSS;
Information receiving module, for receiving calling subscriber that HSS returns and the correspondence relationship information of its relaying;
The control module that continues, for according to the consistency of the correspondence relationship information of virtual trunk information and calling subscriber and its relaying, belongs to continuing of SCSCF to calling subscriber.
The control module that continues comprises:
Information judgement submodule, for judging that whether virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying;
Function connector module, for according to the judged result of information judgement submodule to the calling processing that continues: if virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying, calling is continued to calling subscriber's ownership SCSCF;
If the correspondence relationship information of virtual trunk information and calling subscriber and its relaying is inconsistent, to MGCF, send miscue.
Virtual trunk information comprises virtual trunk name information and rear subscriber number information, and MGCF is kept at virtual trunk name information in P-Charging-Vector field, and message sink module comprises:
Information extraction submodule, extracts virtual trunk name information for the P-Charging-Vector field from MGCF;
Information is preserved submodule, for virtual trunk name information is kept to MGCF-Trunk field, rear subscriber number information is kept to User field;
Information receiving module comprises:
Information is preserved submodule, for the correspondence relationship information of calling subscriber and its relaying is kept to HSS-Trunk field;
Information judgement submodule, if it is identical with the content of HSS-Trunk field to be further used for the content of MGCF-Trunk field, determines that virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying.
Described HSS930 comprises:
Request receiving module, for receiving the inquiry request of the SCSCF of calling subscriber's ownership that ICSCF initiates;
Information is returned to module, for according to inquiry request, returns to the correspondence relationship information of calling subscriber and its relaying to ICSCF.
Described HSS930 also comprises:
Information is preserved module, and for the correspondence relationship information of calling subscriber and its relaying is kept to Trunk-Info field, the content of Trunk-Info field is identical with the content of the P-Charging-Vector field of the preservation virtual trunk name information of MGCF.
Query call conversation control function of the present invention, MGCF, home subscriber server and right discriminating system, for realizing the method for authenticating of PBX access IMS network, MGCF fills in the P-Charging-Vector field into caller INVITE by the corresponding virtual trunk of user TDM-PBX ownership physics E1.
Query call conversation control function of the present invention, MGCF, home subscriber server and right discriminating system, for realizing the method for authenticating of PBX access IMS network, user data table on HSS has been expanded Trunk-Info field, fills in the corresponding virtual trunk information of user TDM-PBX ownership physics E1.
Query call conversation control function of the present invention, MGCF, home subscriber server and right discriminating system, for realizing the method for authenticating of PBX access IMS network, ICSCF has expanded authentication module, authentication module has been preserved three partial informations: the calling number in the INVITE that User field preservation MGCF sends here, P-Charging-Vector field information in the INVITE that MGCF-Trunk field preservation MGCF sends here, HSS-Trunk field is preserved HSS and is returned to the Trunk-Info field information in response message, authentication module is MGCF-Trunk field and HSS-Trunk field relatively, both identical authentication successes, not identical failed authentication.
Query call conversation control function of the present invention, MGCF, home subscriber server and right discriminating system, for realizing the method for authenticating of PBX access IMS network, by the comparison of MGCF-Trunk field and HSS-Trunk field, realized the authentication to the TDM-PBX user of MGCF access, evaded and forged the calling subscriber dialing risk that causes number to usurp of making a phone call.
The present invention can have multiple multi-form embodiment; Fig. 4-Fig. 8 take above as example is by reference to the accompanying drawings to technical scheme of the present invention explanation for example; this does not also mean that the applied instantiation of the present invention can only be confined in specific flow process or example structure; those of ordinary skill in the art should understand; the specific embodiments that above provided is some examples in multiple its preferred usage, and the execution mode of any embodiment the claims in the present invention all should be within technical solution of the present invention scope required for protection.
Finally it should be noted that: the foregoing is only the preferred embodiments of the present invention, be not limited to the present invention, although the present invention is had been described in detail with reference to previous embodiment, for a person skilled in the art, its technical scheme that still can record aforementioned each embodiment is modified, or part technical characterictic is wherein equal to replacement.Within the spirit and principles in the present invention all, any modification of doing, be equal to replacement, improvement etc., within all should being included in protection scope of the present invention.
Claims (27)
1. a method for authenticating for subscriber exchange PBX access internet protocol multimedia subsystem IMS network, is characterized in that, comprising:
The caller INVITE of the virtual trunk information that carries that query call conversation control function ICSCF receiving media gateway control function MGCF generates;
ICSCF initiates the inquiry request of the service call conversation control function SCSCF of calling subscriber's ownership to home subscriber server HSS;
The calling subscriber that ICSCF reception HSS returns and the correspondence relationship information of its relaying;
ICSCF, according to the consistency of the correspondence relationship information of described virtual trunk information and calling subscriber and its relaying, belongs to continuing of SCSCF to described calling subscriber.
2. method according to claim 1, is characterized in that, described ICSCF is according to the consistency of the correspondence relationship information of virtual trunk information and calling subscriber and its relaying, and the step continuing that described calling subscriber is belonged to SCSCF further comprises:
If described virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying, ICSCF continues described calling to calling subscriber's ownership SCSCF;
If the correspondence relationship information of described virtual trunk information and calling subscriber and its relaying is inconsistent, ICSCF sends miscue to MGCF.
3. method according to claim 2, it is characterized in that, described virtual trunk information comprises virtual trunk name information and rear subscriber number information, described MGCF is kept at virtual trunk name information in P-Charging-Vector field, and the step of the caller INVITE of the virtual trunk information that carries that described ICSCF reception MGCF generates further comprises:
ICSCF extracts virtual trunk name information in the P-Charging-Vector of described MGCF field;
ICSCF is kept at MGCF-Trunk field by described virtual trunk name information, and described rear subscriber number information is kept to User field;
The step of the calling subscriber that described ICSCF reception HSS returns and the correspondence relationship information of its relaying further comprises:
ICSCF is kept at HSS-Trunk field by the correspondence relationship information of described calling subscriber and its relaying;
If the step that described virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying further comprises:
If the content of described MGCF-Trunk field is identical with the content of described HSS-Trunk field, ICSCF determines that described virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying.
4. a method for authenticating for subscriber exchange access internet protocol multimedia subsystem network, is characterized in that, comprising:
MGCF, when calling subscriber initiates caller, receives the IAM message that time division multiplexing Private Branch Exchange PBX TDM-PBX sends;
MGCF carries the caller INVITE of virtual trunk information according to described IAM message generation, to ICSCF, send.
5. method according to claim 4, is characterized in that, described virtual trunk information comprises virtual trunk name information and rear subscriber number information, and method also comprises:
MGCF sets up virtual trunk in advance, and described virtual trunk name information is kept to P-Charging-Vector field;
The described virtual trunk e1 port required with TDM-PBX is corresponding.
6. a method for authenticating for subscriber exchange access internet protocol multimedia subsystem network, is characterized in that, comprising:
The inquiry request of the SCSCF of calling subscriber's ownership that HSS reception ICSCF initiates;
HSS, according to described inquiry request, returns to the correspondence relationship information of calling subscriber and its relaying to described ICSCF.
7. method according to claim 6, is characterized in that, also comprises:
Described HSS is kept at the correspondence relationship information of described calling subscriber and its relaying in Trunk-Info field, and the content of described Trunk-Info field is identical with the content of the P-Charging-Vector field of the described virtual trunk name information of the preservation of described MGCF.
8. a method for authenticating for subscriber exchange access internet protocol multimedia subsystem network, is characterized in that, comprising:
MGCF, when calling subscriber initiates caller, receives the IAM message that TDM-PBX sends;
MGCF carries the caller INVITE of virtual trunk information according to described IAM message generation, to ICSCF, send;
ICSCF initiates the inquiry request of the SCSCF of calling subscriber's ownership to HSS; HSS, according to described inquiry request, returns to the correspondence relationship information of calling subscriber and its relaying to ICSCF;
ICSCF, according to the consistency of the correspondence relationship information of described virtual trunk information and calling subscriber and its relaying, belongs to continuing of SCSCF to described calling subscriber.
9. method according to claim 8, is characterized in that, described ICSCF is according to the consistency of the correspondence relationship information of virtual trunk information and calling subscriber and its relaying, and the step continuing that described calling subscriber is belonged to SCSCF further comprises:
If described virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying, ICSCF continues described calling to calling subscriber's ownership SCSCF;
If the correspondence relationship information of described virtual trunk information and calling subscriber and its relaying is inconsistent, ICSCF sends miscue to MGCF.
10. method according to claim 9, it is characterized in that, described virtual trunk information comprises virtual trunk name information and rear subscriber number information, described MGCF is kept at virtual trunk name information in P-Charging-Vector field, and the step of the caller INVITE of the virtual trunk information that carries that described ICSCF reception MGCF generates further comprises:
ICSCF extracts virtual trunk name information in the P-Charging-Vector of described MGCF field;
ICSCF is kept at MGCF-Trunk field by described virtual trunk name information, and described rear subscriber number information is kept to User field;
The step of the calling subscriber that described ICSCF reception HSS returns and the correspondence relationship information of its relaying further comprises:
ICSCF is kept at HSS-Trunk field by the correspondence relationship information of described calling subscriber and its relaying;
If the step that described virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying further comprises:
If the content of described MGCF-Trunk field is identical with the content of described HSS-Trunk field, ICSCF determines that described virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying.
11. methods according to claim 8, is characterized in that, described virtual trunk information comprises virtual trunk name information and rear subscriber number information, and method also comprises:
MGCF sets up virtual trunk in advance, and described virtual trunk name information is kept to P-Charging-Vector field;
The described virtual trunk e1 port required with TDM-PBX is corresponding.
Method in 12. according to Claim 8-11 described in any one, is characterized in that,
Described HSS is kept at the correspondence relationship information of described calling subscriber and its relaying in Trunk-Info field, and the content of described Trunk-Info field is identical with the content of the P-Charging-Vector field of the described virtual trunk name information of the preservation of described MGCF.
13. 1 kinds of query call conversation control function ICSCF, is characterized in that, comprising:
Message sink module, the caller INVITE of the virtual trunk information that carries generating for receiving media gateway control function MGCF;
Inquiry request module, for initiating the inquiry request of the service call conversation control function SCSCF of calling subscriber's ownership to home subscriber server HSS;
Information receiving module, for receiving calling subscriber that HSS returns and the correspondence relationship information of its relaying;
The control module that continues, for according to the consistency of the correspondence relationship information of described virtual trunk information and calling subscriber and its relaying, belongs to continuing of SCSCF to described calling subscriber.
14. ICSCF according to claim 13, is characterized in that, described in the control module that continues comprise:
Information judgement submodule, for judging that whether described virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying;
Function connector module, for according to the judged result of described information judgement submodule to the processing that continues of described calling: if described virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying, described calling is continued to calling subscriber's ownership SCSCF;
If the correspondence relationship information of described virtual trunk information and calling subscriber and its relaying is inconsistent, to MGCF, send miscue.
15. ICSCF according to claim 14, it is characterized in that, described virtual trunk information comprises virtual trunk name information and rear subscriber number information, and described MGCF is kept at virtual trunk name information in P-Charging-Vector field, and described message sink module comprises:
Information extraction submodule, extracts virtual trunk name information for the P-Charging-Vector field from described MGCF;
Information is preserved submodule, for described virtual trunk name information is kept to MGCF-Trunk field, described rear subscriber number information is kept to User field;
Described information receiving module comprises:
Information is preserved submodule, for the correspondence relationship information of described calling subscriber and its relaying is kept to HSS-Trunk field;
Described information judgement submodule, if it is identical with the content of described HSS-Trunk field to be further used for the content of described MGCF-Trunk field, determines that described virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying.
16. 1 kinds of MGCF MGCF, is characterized in that, comprising:
Message sink module, for when calling subscriber initiates caller, receives the IAM message that time division multiplexing Private Branch Exchange PBX TDM-PBX sends;
Message generating module, for carry the caller INVITE of virtual trunk information according to described IAM message generation, sends to ICSCF.
17. MGCF according to claim 16, is characterized in that, described virtual trunk information comprises virtual trunk name information and rear subscriber number information, and MGCF also comprises:
Relaying is set up module, for setting up in advance virtual trunk, described virtual trunk name information is kept to P-Charging-Vector field;
The described virtual trunk e1 port required with TDM-PBX is corresponding.
18. 1 kinds of home subscriber server HSS, is characterized in that, comprising:
Request receiving module, for receiving the inquiry request of the SCSCF of calling subscriber's ownership that ICSCF initiates;
Information is returned to module, for according to described inquiry request, returns to the correspondence relationship information of calling subscriber and its relaying to described ICSCF.
19. HSS according to claim 18, is characterized in that, also comprise:
Information is preserved module, for the correspondence relationship information of described calling subscriber and its relaying is kept to Trunk-Info field, the content of described Trunk-Info field is identical with the content of the P-Charging-Vector field of the described virtual trunk name information of the preservation of described MGCF.
The right discriminating system of 20. 1 kinds of subscriber exchange access internet protocol multimedia subsystem networks, is characterized in that, comprising:
MGCF, for when calling subscriber initiates caller, receives the IAM message that TDM-PBX sends, and carries the caller INVITE of virtual trunk information according to described IAM message generation, to ICSCF, sends;
ICSCF, for initiate the inquiry request of the SCSCF of calling subscriber's ownership to HSS, the consistency according to the correspondence relationship information of described virtual trunk information and calling subscriber and its relaying, belongs to continuing of SCSCF to described calling subscriber;
HSS, for according to described inquiry request, returns to the correspondence relationship information of calling subscriber and its relaying to ICSCF.
21. right discriminating systems according to claim 20, is characterized in that, described MGCF comprises:
Message sink module, for when calling subscriber initiates caller, receives the IAM message that time division multiplexing Private Branch Exchange PBX TDM-PBX sends;
Message generating module, for carry the caller INVITE of virtual trunk information according to described IAM message generation, sends to ICSCF.
22. right discriminating systems according to claim 21, is characterized in that, described virtual trunk information comprises virtual trunk name information and rear subscriber number information, and described MGCF also comprises:
Relaying is set up module, for setting up in advance virtual trunk, described virtual trunk name information is kept to P-Charging-Vector field;
The described virtual trunk e1 port required with TDM-PBX is corresponding.
23. right discriminating systems according to claim 20, is characterized in that, described ICSCF comprises:
Message sink module, the caller INVITE of the virtual trunk information that carries generating for receiving media gateway control function MGCF;
Inquiry request module, for initiating the inquiry request of the service call conversation control function SCSCF of calling subscriber's ownership to home subscriber server HSS;
Information receiving module, for receiving calling subscriber that HSS returns and the correspondence relationship information of its relaying;
The control module that continues, for according to the consistency of the correspondence relationship information of described virtual trunk information and calling subscriber and its relaying, belongs to continuing of SCSCF to described calling subscriber.
24. right discriminating systems according to claim 23, is characterized in that, described in the control module that continues comprise:
Information judgement submodule, for judging that whether described virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying;
Function connector module, for according to the judged result of described information judgement submodule to the processing that continues of described calling: if described virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying, described calling is continued to calling subscriber's ownership SCSCF;
If the correspondence relationship information of described virtual trunk information and calling subscriber and its relaying is inconsistent, to MGCF, send miscue.
25. right discriminating systems according to claim 24, it is characterized in that, described virtual trunk information comprises virtual trunk name information and rear subscriber number information, and described MGCF is kept at virtual trunk name information in P-Charging-Vector field, and described message sink module comprises:
Information extraction submodule, extracts virtual trunk name information for the P-Charging-Vector field from described MGCF;
Information is preserved submodule, for described virtual trunk name information is kept to MGCF-Trunk field, described rear subscriber number information is kept to User field;
Described information receiving module comprises:
Information is preserved submodule, for the correspondence relationship information of described calling subscriber and its relaying is kept to HSS-Trunk field;
Described information judgement submodule, if it is identical with the content of described HSS-Trunk field to be further used for the content of described MGCF-Trunk field, determines that described virtual trunk information is consistent with the correspondence relationship information of calling subscriber and its relaying.
26. right discriminating systems according to claim 20, is characterized in that, described HSS comprises:
Request receiving module, for receiving the inquiry request of the SCSCF of calling subscriber's ownership that ICSCF initiates;
Information is returned to module, for according to described inquiry request, returns to the correspondence relationship information of calling subscriber and its relaying to described ICSCF.
27. right discriminating systems according to claim 26, is characterized in that, described HSS also comprises:
Information is preserved module, for the correspondence relationship information of described calling subscriber and its relaying is kept to Trunk-Info field, the content of described Trunk-Info field is identical with the content of the P-Charging-Vector field of the described virtual trunk name information of the preservation of described MGCF.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210252783.3A CN103581112B (en) | 2012-07-20 | 2012-07-20 | Subscriber exchange accesses method for authenticating and the device of internet protocol multimedia subsystem network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210252783.3A CN103581112B (en) | 2012-07-20 | 2012-07-20 | Subscriber exchange accesses method for authenticating and the device of internet protocol multimedia subsystem network |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103581112A true CN103581112A (en) | 2014-02-12 |
| CN103581112B CN103581112B (en) | 2016-12-21 |
Family
ID=50052052
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210252783.3A Active CN103581112B (en) | 2012-07-20 | 2012-07-20 | Subscriber exchange accesses method for authenticating and the device of internet protocol multimedia subsystem network |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103581112B (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109104391A (en) * | 2017-06-20 | 2018-12-28 | 中兴通讯股份有限公司 | Triangle signalling analysis method, apparatus, system and computer readable storage medium |
| CN109951847A (en) * | 2017-12-21 | 2019-06-28 | 中国移动通信集团公司 | The automatic identifying method and device of a kind of pair of IMS business free call on sb. else's expense through illegal means international long-distance |
| CN114449107A (en) * | 2020-11-05 | 2022-05-06 | 中国联合网络通信集团有限公司 | Virtual number communication method and system |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1893722A (en) * | 2005-07-05 | 2007-01-10 | 华为技术有限公司 | Method for binding IP multi-media subsystem authentication and acess-in layer authentication |
| CN101132279A (en) * | 2006-08-24 | 2008-02-27 | 华为技术有限公司 | Authentication method and authentication system |
| KR20080051813A (en) * | 2006-12-07 | 2008-06-11 | 주식회사 케이티 | Method for application global number between heterogeneous ip multimedia subsystem |
| CN101325731A (en) * | 2007-06-14 | 2008-12-17 | 华为技术有限公司 | Method for distributing service call conversation control function, system and ascription user server |
| WO2010127223A1 (en) * | 2009-05-01 | 2010-11-04 | Telcordia Technologies, Inc. | Self organizing ip multimedia subsystem |
-
2012
- 2012-07-20 CN CN201210252783.3A patent/CN103581112B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1893722A (en) * | 2005-07-05 | 2007-01-10 | 华为技术有限公司 | Method for binding IP multi-media subsystem authentication and acess-in layer authentication |
| CN101132279A (en) * | 2006-08-24 | 2008-02-27 | 华为技术有限公司 | Authentication method and authentication system |
| KR20080051813A (en) * | 2006-12-07 | 2008-06-11 | 주식회사 케이티 | Method for application global number between heterogeneous ip multimedia subsystem |
| CN101325731A (en) * | 2007-06-14 | 2008-12-17 | 华为技术有限公司 | Method for distributing service call conversation control function, system and ascription user server |
| WO2010127223A1 (en) * | 2009-05-01 | 2010-11-04 | Telcordia Technologies, Inc. | Self organizing ip multimedia subsystem |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109104391A (en) * | 2017-06-20 | 2018-12-28 | 中兴通讯股份有限公司 | Triangle signalling analysis method, apparatus, system and computer readable storage medium |
| CN109104391B (en) * | 2017-06-20 | 2022-04-12 | 中兴通讯股份有限公司 | Triangular signaling analysis method, device and system and computer readable storage medium |
| CN109951847A (en) * | 2017-12-21 | 2019-06-28 | 中国移动通信集团公司 | The automatic identifying method and device of a kind of pair of IMS business free call on sb. else's expense through illegal means international long-distance |
| CN114449107A (en) * | 2020-11-05 | 2022-05-06 | 中国联合网络通信集团有限公司 | Virtual number communication method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103581112B (en) | 2016-12-21 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN100379316C (en) | Realization method and system for traditional terminal user accessing IMS domain | |
| CN101971592B (en) | Local session controller, ip multimedia subsystem and session registration method | |
| CN102035798B (en) | Service processing method, system and device for realizing disaster tolerance | |
| KR20070105886A (en) | Method and system of forwarding capability information of user equipment in internet protocol multimedia subsystem network | |
| CN100574474C (en) | Set up the method that communication traffic connects in a kind of communication system | |
| CN101227272A (en) | System and method for obtaining media stream protection cryptographic key | |
| CN100589603C (en) | IMS session processing method and system | |
| CN102223248B (en) | Calling service processing method and calling service processing system | |
| EP2569998B1 (en) | Enabling set up of a connection from a non-registered UE in IMS | |
| CN101800945A (en) | Method and device for distinguishing user equipment sharing identical public user identifier | |
| CN103581112A (en) | Authentication method and device for PBX having access to IMS | |
| US20100002682A1 (en) | Interworking method and interworking control unit, method and system for implementing simulation services | |
| US8929928B2 (en) | Establishment of multimedia service sessions in mobile terminals | |
| CN102075939B (en) | Method, equipment and system for preventing service embezzlement | |
| CN101848434B (en) | Configuration management method and system of equipment and business | |
| CN105308924A (en) | Methods and apparatus for implementing a communication barring service | |
| CN100442745C (en) | Universal registration method and system | |
| CN100527876C (en) | Method and device for updating user signing data | |
| CN101925149A (en) | Method, system and access network element for realizing user terminal routing in IMS (IP Multimedia Subsystem) | |
| CN100499469C (en) | Off-line charging method | |
| CN101459631A (en) | Virtual media gateway selection method, apparatus and system | |
| CN101325564A (en) | Method, apparatus and system for selecting virtual medium gateway | |
| CN101330638B (en) | Method for correlation of conversation control route and load-bearing control route | |
| CN101848427B (en) | Method and device for adding medium, and method and device for associating media | |
| CN103001935A (en) | Authentication method and authentication system for UE (user equipment) of ILS (identity location separation) network in IMS (IP (internet protocol) multimedia subsystem) network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |