CN103906056B - Uniform authentication method and system under mixed networking - Google Patents
Uniform authentication method and system under mixed networking Download PDFInfo
- Publication number
- CN103906056B CN103906056B CN201210574721.4A CN201210574721A CN103906056B CN 103906056 B CN103906056 B CN 103906056B CN 201210574721 A CN201210574721 A CN 201210574721A CN 103906056 B CN103906056 B CN 103906056B
- Authority
- CN
- China
- Prior art keywords
- dual
- authentication
- mode terminal
- wlan
- base station
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The present invention relates to uniform authentication method and system under a kind of mixed networking, method includes:Support the dual-mode terminal of LTE and WLAN carrier aggregations by LTE base station to LTE network initiating business request during, MME sends authentication request message by LTE base station to dual-mode terminal;Dual-mode terminal authenticates according to authentication request message to network side;After authentication passes through, the authentication result of generation is returned to MME by dual-mode terminal by Authentication Response message;The authentication result of Authentication Response message and the authentication variable obtained from HSS are compared to be authenticated MME, if certification success, LTE authentication states are revised as verified status by notice dual-mode terminal, and continue to complete the WLAN certifications of dual-mode terminal.The verification process that the present invention passes through shared LTE, the unified certification process under LTE and WLAN mixed networking is realized, it is not only convenient for users, and also base station can be according to the quality of service requirement of business, the load of LTE network and wlan network is adjusted, improves resource utilization.
Description
Technical field
The present invention relates to uniform authentication method and system under wireless communication technology, more particularly to a kind of mixed networking.
Background technology
Long Term Evolution(Long Term Evolution, abbreviation LTE)It is 3G (Third Generation) Moblie partnership projects(Third
Generation Partnership Project, abbreviation 3GPP)The new generation of wireless communication system of release, it is 3G evolution skill
Art, commonly referred to as 3.9G or quasi- 4G.LTE shares R8, R9, R10 tri- versions at present, wherein R8 and R9 versions respectively at
The end of the year 2008 and the end of the year 2009 freeze, and the R10 versions for representing 4G technologies are also referred to as LTE-Advanced, its main technical specification
Completed at the beginning of 2011, R11 completes standardization effort in September, 2012.
LTE is by using OFDM(Orthogonal Frequency DivisionMultiplexing, letter
Claim OFDM)And multiple-input, multiple-output(Multiple Input MultipleOutput, abbreviation MIMO)As its wireless network evolution
Mainstream standard, LTE R8 can provide descending 100Mbit/s and up 50Mbit/s peak value speed under 20MHz spectral bandwidths
Rate, while improve cell capacity, reduce system delay, can preferably meet the needs of user is to data service.
WLAN(Wireless Local Area Network, abbreviation WLAN)Be it is a kind of by radio, it is infrared
Optical signal or other technologies send and receive data, do not require there is physical connection between each node and hub(For example, adopt
With wire or coaxial cable etc.)LAN.WLAN based on IEEE802.11 standards allows in LAN environment
2.4 or 5.8GHz radio-frequency ranges in the ISM band that middle use may not necessarily authorize carry out wireless connection.They are widely used
Movable termination is carried in user(For example, portable computer, mobile subscriber terminal etc.)The environment such as office, factory and the public
In.
At present, LTE and WLAN mixed networking is as the development trend of cellular carrier, and currently mixed networking environment
Under LTE network and the verification process of wlan network completed respectively by respective access network element.For a user, when
Using, it is necessary to be respectively completed the verification process of LTE network and wlan network, such as accessing WLAN nets during mobile phone access business of networking
Network also needs to input account and password, therefore cumbersome, influences Consumer's Experience.
The content of the invention
The purpose of the present invention is to propose to uniform authentication method and system under a kind of mixed networking, realizes LTE and WLAN mixing
Unified certification under networking, is user-friendly business of networking.
To achieve the above object, the invention provides uniform authentication method under a kind of mixed networking, including:
Supporting Long Term Evolution and the dual-mode terminal that WLAN carrier wave polymerize by long term evolution base station to drilling for a long time
During entering network initiating business request, mobile management entity is sent by the long term evolution base station to the dual-mode terminal
Authentication request message;
The dual-mode terminal authenticates according to the authentication request message to network side;
After authentication passes through, the authentication result of generation is returned to the shifting by the dual-mode terminal by Authentication Response message
Dynamic management entity;
What the mobile management entity obtained to the authentication result of the Authentication Response message and from home subscriber server
Authentication variable is compared to be authenticated, if certification success, notifies the dual-mode terminal by Long Term Evolution authentication state
Verified status is revised as, and continues to complete the wireless local area network (WLAN) verification of the dual-mode terminal.
Further, the mobile management entity from the home subscriber server obtain authentication variable operation specifically wrap
Include:
The mobile management entity sends authentication information request message, the authentication information to the home subscriber server
Request message includes the international mobile subscriber identity of the dual-mode terminal;
The home subscriber server checks that the world of the dual-mode terminal is mobile according to the authentication information request message
Whether CUSTOMER ID is contracted user, and authentication vector is returned into the mobile management reality by authentication information response message
Body.
Further, the operation of the wireless local area network (WLAN) verification for continuing to complete the dual-mode terminal is specially:
The mobile management entity notifies that wireless local area network (WLAN) verification status modifier is verified status by the dual-mode terminal,
And to wireless local network connecting point, access controller/Broadband Remote Access Server, aaa server and the home subscriber
Server sends and notifies message of the dual-mode terminal by wireless local area network (WLAN) verification.
Further, the operation of the wireless local area network (WLAN) verification for continuing to complete the dual-mode terminal is specially:
The dual-mode terminal sends institute by the long term evolution base station to access controller/Broadband Remote Access Server
State the international mobile subscriber identity and password of dual-mode terminal;
Access controller/the Broadband Remote Access Server is according to the international mobile subscriber identity of the dual-mode terminal
And password initiates authentication request packet to aaa server;
The aaa server accesses the home subscriber server, is known according to the international mobile subscriber of the dual-mode terminal
Other code and password are authenticated, and certification is responded by rear to the access controller/Broadband Remote Access Server return authentication
Message;
Access controller/the Broadband Remote Access Server notifies the dual-mode terminal by the long term evolution base station
It is verified status by wireless local area network (WLAN) verification status modifier.
Further, the function of the long term evolution base station and wireless local network connecting point by support Long Term Evolution with
The dual-mode base station of WLAN carrier wave polymerization is realized.
To achieve the above object, the invention provides Centralized Authentication System under a kind of mixed networking, including:
Long term evolution base station;
Dual-mode terminal, Long Term Evolution and WLAN carrier wave polymerizable functional are supported, for passing through the Long Term Evolution base
Stand to long-term evolving network initiating business request, and when receiving the authentication request message of mobile management entity transmission, according to
The authentication request message authenticates to network side, and after authentication passes through, the authentication result of generation passed through to authenticate rung
Message is answered to return to the mobile management entity;
Mobile management entity, for being initiated in the dual-mode terminal by the long term evolution base station to long-term evolving network
During service request, authentication request message is sent to the dual-mode terminal by the long term evolution base station, and it is described double receiving
During the Authentication Response message that mould terminal is sent, authentication result to the Authentication Response message and obtained from home subscriber server
Authentication variable be compared to be authenticated, if certification success, notify the dual-mode terminal by Long Term Evolution certification shape
State is revised as verified status, and continues to complete the wireless local area network (WLAN) verification of the dual-mode terminal.
Further, in addition to:
Home subscriber server, for sending authentication information to the home subscriber server in the mobile management entity
During request message, according to the authentication information request message check the dual-mode terminal international mobile subscriber identity whether be
Contracted user, and authentication vector is returned to by the mobile management entity, the authentication information by authentication information response message
Request message includes the international mobile subscriber identity of the dual-mode terminal.
Further, the mobile management entity is additionally operable to notify the dual-mode terminal by wireless local area network (WLAN) verification status maintenance
It is changed to verified status, and to wireless local network connecting point, access controller/Broadband Remote Access Server, aaa server
Sent with the home subscriber server and notify message of the dual-mode terminal by wireless local area network (WLAN) verification.
Further, in addition to:
Access controller/Broadband Remote Access Server, pass through the Long Term Evolution base for receiving the dual-mode terminal
Stand the international mobile subscriber identity and password of the dual-mode terminal sent, and used according to the world of the dual-mode terminal is mobile
Family identification code and password initiate authentication request packet to aaa server, and in the certification for receiving the aaa server return
During back message, notify the dual-mode terminal by wireless local area network (WLAN) verification status modifier to have recognized by the long term evolution base station
Card state;
Aaa server, for the certification request report sent in the reception access controller/Broadband Remote Access Server
Wen Shi, it is authenticated according to the international mobile subscriber identity of the dual-mode terminal and password, certification is by rear, to the access
Controller/Broadband Remote Access Server return authentication back message.
Further, the function of the long term evolution base station and wireless local network connecting point by support Long Term Evolution with
The dual-mode base station of WLAN carrier wave polymerization is realized.
It is complete in LTE certifications using the dual-mode terminal of support LTE and WLAN carrier aggregations based on above-mentioned technical proposal, the present invention
The WLAN certifications of the dual-mode terminal are continued to complete after, by sharing LTE verification process, realize LTE and WLAN mixing groups
Unified certification process off the net, without carrying out the certification respectively of LTE network and wlan network, so that user is in access LTE
After network, the access of wlan network is also just completed, it is not only convenient for users, and also base station can be according to the service of business
Quality requirement, the load of LTE network and wlan network is adjusted, improve resource utilization.
Brief description of the drawings
Accompanying drawing described herein is used for providing a further understanding of the present invention, forms the part of the application, this hair
Bright schematic description and description is used to explain the present invention, does not form inappropriate limitation of the present invention.In the accompanying drawings:
The network architecture signal for the mixed networking that Fig. 1 is applied by uniform authentication method embodiment under mixed networking of the present invention
Figure.
Fig. 2 is the schematic flow sheet of an embodiment of uniform authentication method under mixed networking of the present invention.
Fig. 3 is the signaling process schematic diagram of another embodiment of uniform authentication method under mixed networking of the present invention.
Fig. 4 is the signaling process schematic diagram of the another embodiment of uniform authentication method under mixed networking of the present invention.
Fig. 5 is the structural representation of an embodiment of Centralized Authentication System under mixed networking of the present invention.
Fig. 6 is the structural representation of another embodiment of Centralized Authentication System under mixed networking of the present invention.
Embodiment
Below by drawings and examples, technical scheme is described in further detail.
As shown in figure 1, the network for the mixed networking applied by uniform authentication method embodiment under mixed networking of the present invention
Configuration diagram.In the present embodiment, the use of the terminal of radio communication service is that support LTE and the bimodulus of WLAN carrier aggregations are whole
End, LTE base station(That is eNodeB or eNB)With WLAN AP LTE network can be realized respectively as independent base station for dual-mode terminal
With the data transfer of wlan network, can also using support the dual-mode base station of LTE and WLAN carrier aggregations realize LTE base station with
WLAN AP function.
Dual-mode base station passes through S1-MME interface and mobile management entity(MobileManagement Entity, abbreviation MME)
Communication interaction is carried out, passes through S1-U interface and Service Gateway(Serving Gateway, abbreviation SGW)Or Packet Data Network's network diagram
Close(PacketData Network Gateway, abbreviation PDN GW or PGW)Communication interaction is carried out, dual-mode base station is also controlled with access
Device processed(Access Controller, abbreviation AC)Or Broadband Remote Access Server(Broadband Remote Access
Server, abbreviation BRAS)Carry out communication interaction.
MME passes through S6a interfaces and home subscriber server(Home SubscriberServer, abbreviation HSS)Communicated
Interaction, HSS and AC/BRAS carry out communication interaction with aaa server.SGW/PGW passes through Gx interfaces and strategy and charging regulation
Function(Policy and Charging Rules Function, abbreviation PCRF)Carry out communication interaction.PCRF and SGW/PGW points
Do not pass through Rx interface and SGi interfaces and operator's IP operation(Operator ' s IP Services, such as IP multimedia subsystem
IMS, packet switch streaming media service PSS).
Based on the network structure of above-mentioned mixed networking, Fig. 2 is an implementation of uniform authentication method under mixed networking of the present invention
The schematic flow sheet of example.In the present embodiment, unified certification flow includes under mixed networking:
Step 101, LTE and the dual-mode terminal of WLAN carrier aggregations is being supported to initiate business to LTE network by LTE base station
During request, MME sends authentication request message by LTE base station to dual-mode terminal;’
Step 102, dual-mode terminal authenticate according to authentication request message to network side;
Step 103, after authentication passes through, dual-mode terminal returns to the authentication result of generation by Authentication Response message
MME;
The authentication result of Authentication Response message and the authentication variable obtained from HSS are compared to enter by step 104, MME
Row certification, if certification success, LTE authentication states are revised as verified status by notice dual-mode terminal;
Step 105, the WLAN certifications for continuing to complete dual-mode terminal.
In the present embodiment, LTE base station can be with WLAN base stations independently of each other or Fig. 1 in support LTE with
The dual-mode base station of WLAN carrier aggregations.In LTE verification process, MME first sends authentication information request message, the authentication to HSS
Information request message includes the international mobile subscriber identity of the dual-mode terminal(International
MobileSubscriberIdentification Number, abbreviation IMSI).HSS checks double according to authentication information request message
Whether the IMSI of mould terminal is contracted user, and authentication vector is returned into MME by authentication information response message.
MME sends authentication request message by dual-mode base station to dual-mode terminal, and dual-mode terminal is according to authentication request message pair
Network side is authenticated;After authentication passes through, dual-mode terminal eats dishes without rice or wine to pass through the authentication result of generation by the LTE of dual-mode base station
Authentication Response message returns to MME.If authentication is not by refusal LTE network access.
The WLAN certifications of dual-mode terminal continue to be automatically performed after the completion of LTE certifications in step 105, without with householder
It is dynamic to initiate.For a user, common use habit is that LTE network is online for a long time, and is not often to need to open WLAN
Switch, WLAN switches are just opened only when needing, and when opening WLAN switches, existing mode needs user to input
Account and password information, thus it is cumbersome, and continue to be automatically performed WLAN certifications after the completion of LTE certifications in the present invention, make
Wlan network can directly be used by obtaining when user opens WLAN switches, and without inputting account and password information, therefore user makes
Use more convenient, improve the usage experience of user.
As shown in figure 3, the signaling process schematic diagram for another embodiment of uniform authentication method under mixed networking of the present invention.
In the present embodiment, the attach request that LTE network is initiated with dual-mode terminal starts, and flow includes:
The eNB of step 201, dual-mode terminal into dual-mode base station initiates the attach request of LTE network;
Step 202, dual-mode terminal, dual-mode base station, MME and HSS complete LTE certifications jointly, and after the authentication has been successful, MME leads to
Know that LTE authentication states are revised as verified status by dual-mode terminal;
WLAN authentication states are revised as verified status by step 203, MME notice dual-mode terminals;
It is whole that WLAN AP, AC/BRAS, aaa server and the HSS of step 204, MME into dual-mode base station send notice bimodulus
End makes said network element know the WLAN authentication states of the dual-mode terminal by the message of WLAN certifications;
Step 205, MME and HSS carry out location updating;
ENB, MME, SGW and PGW in step 206, dual-mode base station establish default bearing;
Step 207, IP address, completion LTE network attaching process are distributed for dual-mode terminal.
In the present embodiment, dual-mode terminal is also considered as completing WLAN verification process in completion LTE verification process, therefore only
After LTE verification process is completed dual-mode terminal and above-mentioned each network element need to be notified respectively, so as to dual-mode terminal in follow-up process
Data are transmitted by wlan network.
As shown in figure 4, the signaling process schematic diagram for the another embodiment of uniform authentication method under mixed networking of the present invention.
In the present embodiment, the attach request that LTE network is initiated with dual-mode terminal starts, and flow includes:
The eNB of step 301, dual-mode terminal into dual-mode base station initiates the attach request of LTE network;
Step 302, dual-mode terminal, dual-mode base station, MME and HSS complete LTE certifications jointly, and after the authentication has been successful, MME leads to
Know that LTE authentication states are revised as verified status by dual-mode terminal;
Step 303, dual-mode terminal are by the eNB in dual-mode base station to AC(Or BRAS)Send dual-mode terminal IMSI and
Password, AC(Or BRAS)Authentication request packet, AAA services are initiated to aaa server according to the IMSI of dual-mode terminal and password
Device accesses HSS, is authenticated according to the IMSI of dual-mode terminal and password, certification is by rear, to AC(Or BRAS)Return authentication
Back message, AC(Or BRAS)Dual-mode terminal is notified to be revised as having recognized by WLAN authentication states by the eNB in dual-mode base station
Card state;
Step 304, MME and HSS carry out location updating;
ENB, MME, SGW and PGW in step 305, dual-mode base station establish default bearing;
Step 306, IP address, completion LTE network attaching process are distributed for dual-mode terminal.
In the present embodiment, dual-mode terminal complete LTE verification process, continue through LTE eat dishes without rice or wine carry out WLAN authenticated
Journey, WLAN certifications message use the authentication information used in LTE certifications by LTE empty port load-supportings.Wlan system it is encrypted
Journey uses the key passed through in LTE verification process., can after dual-mode terminal completes LTE and wlan network certification and security process
To establish service connection in LTE network, can also initiate to reconnect in wlan network(reassociation)Process, in WLAN
Transmitted data on network.Can certainly be simultaneously in LTE network and wlan network transmission data.And initiate to reconnect in wlan network
Process, just without reauthentication.
One of ordinary skill in the art will appreciate that:Realizing all or part of step of above method embodiment can pass through
Programmed instruction related hardware is completed, and foregoing program can be stored in a computer read/write memory medium, the program
Upon execution, the step of execution includes above method embodiment;And foregoing storage medium includes:ROM, RAM, magnetic disc or light
Disk etc. is various can be with the medium of store program codes.
As shown in figure 5, the structural representation for an embodiment of Centralized Authentication System under mixed networking of the present invention.In this reality
Apply in example, Centralized Authentication System includes under mixed networking:LTE base station 1, dual-mode terminal 2 and MME 3.
Dual-mode terminal 2 supports LTE and WLAN carrier aggregation functions, for initiating business to LTE network by LTE base station 1
Request, and when receiving the authentication request message of the transmissions of MME 3, network side is authenticated according to authentication request message, and
After authentication passes through, the authentication result of generation is returned into MME 3 by Authentication Response message.
When MME 3 is responsible in dual-mode terminal 2 by LTE base station 1 to LTE network initiating business request, pass through LTE base station 1
Authentication request message is sent to dual-mode terminal 2, and when receiving the Authentication Response message that dual-mode terminal 2 is sent, to Authentication Response
The authentication result of message and the authentication variable obtained from HSS 4 are compared to be authenticated, if certification success, notice are double
LTE authentication states are revised as verified status by mould terminal 2, and continue to complete the WLAN certifications of dual-mode terminal 2.
In another embodiment, in addition to HSS 4, when MME 3 sends authentication information request message to HSS 4, HSS
4 check whether the IMSI of dual-mode terminal 2 is contracted user according to authentication information request message, and pass through authentication information response message
Authentication vector is returned into MME 3, authentication information request message includes the IMSI of dual-mode terminal 2.
WLAN verification process after the completion of LTE certifications can have two kinds of implementations, and one kind is MME notice dual-mode terminals
WLAN authentication states are revised as verified status, and sends and leads to WLAN access points, AC/BRAS, aaa server and HSS
Know message of the dual-mode terminal by WLAN certifications.
Another kind is to eat dishes without rice or wine to complete WLAN certifications using LTE, i.e., as shown in fig. 6, uniformly to recognize under mixed networking of the present invention
The structural representation of another embodiment of card system.Compared with Fig. 5 embodiments, the present embodiment also includes AC/BRAS 5 and AAA and taken
Business device 6.
AC/BRAS 5 is responsible for receiving the IMSI and password for the dual-mode terminal 2 that dual-mode terminal is sent by LTE base station 1, and root
Authentication request packet is initiated to aaa server 6 according to the IMSI and password of dual-mode terminal 2, and is returned receiving aaa server 6
During the certification back message returned, notify dual-mode terminal 2 that WLAN authentication states are revised as into verified status by LTE base station 1.
Aaa server 6 is responsible for, when receiving the authentication request packet that AC/BRAS 5 is sent, HSS 4 being accessed, according to bimodulus
The IMSI and password of terminal 2 are authenticated, and certification is by rear, to the return authentication back messages of AC/BRAS 5.
In above-mentioned each system embodiment, the function of LTE base station and WLAN access points can be by supporting LTE and WLAN to carry
The dual-mode base station of ripple polymerization is realized.
Finally it should be noted that:The above embodiments are merely illustrative of the technical scheme of the present invention and are not intended to be limiting thereof;To the greatest extent
The present invention is described in detail with reference to preferred embodiments for pipe, those of ordinary skills in the art should understand that:Still
The embodiment of the present invention can be modified or equivalent substitution is carried out to some technical characteristics;Without departing from this hair
The spirit of bright technical scheme, it all should cover among the claimed technical scheme scope of the present invention.
Claims (8)
1. uniform authentication method under a kind of mixed networking, including:
Supporting Long Term Evolution and the dual-mode terminal that WLAN carrier wave polymerize by long term evolution base station to Long Term Evolution net
During network initiating business request, mobile management entity is sent to the dual-mode terminal by the long term evolution base station and authenticated
Request message;
The dual-mode terminal authenticates according to the authentication request message to network side;
After authentication passes through, the authentication result of generation is returned to the moving tube by the dual-mode terminal by Authentication Response message
Manage entity;
The mobile management entity is to the authentication result of the Authentication Response message and the authentication obtained from home subscriber server
Vector is compared to be authenticated, if certification success, notifies the dual-mode terminal to change Long Term Evolution authentication state
For verified status, and continue to complete the wireless local area network (WLAN) verification of the dual-mode terminal;
The operation of the wherein described wireless local area network (WLAN) verification for continuing to complete the dual-mode terminal is specially:
The dual-mode terminal is sent described double by the long term evolution base station to access controller/Broadband Remote Access Server
The international mobile subscriber identity and password of mould terminal;
Access controller/the Broadband Remote Access Server is according to the international mobile subscriber identity and mouth of the dual-mode terminal
Make to aaa server and initiate authentication request packet;
The aaa server accesses the home subscriber server, according to the international mobile subscriber identity of the dual-mode terminal
And password is authenticated, certification responds report by rear, to the access controller/Broadband Remote Access Server return authentication
Text;
Access controller/the Broadband Remote Access Server notifies the dual-mode terminal by nothing by the long term evolution base station
Line local area network (WLAN) verification status modifier is verified status.
2. uniform authentication method under mixed networking according to claim 1, wherein the mobile management entity is returned from described
The operation that category client server obtains authentication vector specifically includes:
The mobile management entity sends authentication information request message, the authentication information request to the home subscriber server
Message includes the international mobile subscriber identity of the dual-mode terminal;
The home subscriber server checks the international mobile subscriber of the dual-mode terminal according to the authentication information request message
Whether identification code is contracted user, and authentication vector is returned into the mobile management entity by authentication information response message.
3. uniform authentication method under mixed networking according to claim 1, wherein described continue to complete the dual-mode terminal
The operation of wireless local area network (WLAN) verification be specially:
The mobile management entity notifies that wireless local area network (WLAN) verification status modifier is verified status by the dual-mode terminal, and
To wireless local network connecting point, access controller/Broadband Remote Access Server, aaa server and the home subscriber service
Device sends and notifies message of the dual-mode terminal by wireless local area network (WLAN) verification.
4. uniform authentication method under the mixed networking according to claim 1 or 3, wherein the long term evolution base station with it is wireless
The function of LAP LAN Access Point is realized by the dual-mode base station for supporting Long Term Evolution to polymerize with WLAN carrier wave.
5. Centralized Authentication System under a kind of mixed networking, including:
Long term evolution base station;
Dual-mode terminal, support Long Term Evolution and WLAN carrier wave polymerizable functional, for by the long term evolution base station to
Long-term evolving network initiating business request, and when receiving the authentication request message of mobile management entity transmission, according to described
Authentication request message authenticates to network side, and after authentication passes through, the authentication result of generation is passed through into Authentication Response report
Text returns to the mobile management entity;
Mobile management entity, for initiating business to long-term evolving network by the long term evolution base station in the dual-mode terminal
During request, authentication request message is sent to the dual-mode terminal by the long term evolution base station, and it is whole receiving the bimodulus
When holding the Authentication Response message sent, authentication result to the Authentication Response message and the mirror obtained from home subscriber server
Weight vector is compared to be authenticated, if certification success, notifies the dual-mode terminal to repair Long Term Evolution authentication state
Verified status is changed to, and continues to complete the wireless local area network (WLAN) verification of the dual-mode terminal;
Wherein also include:
Access controller/Broadband Remote Access Server, sent out for receiving the dual-mode terminal by the long term evolution base station
The international mobile subscriber identity and password of the dual-mode terminal sent, and known according to the international mobile subscriber of the dual-mode terminal
Other code and password initiate authentication request packet to aaa server, and are responded in the certification for receiving the aaa server return
During message, notify that wireless local area network (WLAN) verification status modifier is certification shape by the dual-mode terminal by the long term evolution base station
State;
Aaa server, for the authentication request packet sent in the reception access controller/Broadband Remote Access Server
When, the home subscriber server is accessed, is authenticated according to the international mobile subscriber identity of the dual-mode terminal and password,
Certification is by rear, to the access controller/Broadband Remote Access Server return authentication back message.
6. Centralized Authentication System under mixed networking according to claim 5, wherein also including:
Home subscriber server, for sending authentication information request to the home subscriber server in the mobile management entity
During message, whether the international mobile subscriber identity that the dual-mode terminal is checked according to the authentication information request message is signing
User, and authentication vector is returned to by the mobile management entity, the authentication information request by authentication information response message
Message includes the international mobile subscriber identity of the dual-mode terminal.
7. Centralized Authentication System under mixed networking according to claim 5, wherein the mobile management entity is additionally operable to lead to
Know that wireless local area network (WLAN) verification status modifier is verified status by the dual-mode terminal, and to wireless local network connecting point, connect
Enter controller/Broadband Remote Access Server, aaa server and home subscriber server transmission and notify the dual-mode terminal
Pass through the message of wireless local area network (WLAN) verification.
8. Centralized Authentication System under the mixed networking according to claim 5 or 7, wherein the long term evolution base station with it is wireless
The function of LAP LAN Access Point is realized by the dual-mode base station for supporting Long Term Evolution to polymerize with WLAN carrier wave.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210574721.4A CN103906056B (en) | 2012-12-26 | 2012-12-26 | Uniform authentication method and system under mixed networking |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201210574721.4A CN103906056B (en) | 2012-12-26 | 2012-12-26 | Uniform authentication method and system under mixed networking |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103906056A CN103906056A (en) | 2014-07-02 |
CN103906056B true CN103906056B (en) | 2018-01-09 |
Family
ID=50997164
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201210574721.4A Active CN103906056B (en) | 2012-12-26 | 2012-12-26 | Uniform authentication method and system under mixed networking |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103906056B (en) |
Families Citing this family (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105451284A (en) * | 2014-07-10 | 2016-03-30 | 华为技术有限公司 | Network switching method and device |
KR102263688B1 (en) * | 2014-10-07 | 2021-06-10 | 삼성전자주식회사 | APPARATUS AND METHOD FOR PROVIDING MUlTIPLE CONNECTIONS USING DIFFERENT RADIO ACCESS TECHNOLOGY IN WIRELESS COMMUNICATION SYSTEM |
EP3228152B1 (en) * | 2014-12-04 | 2019-11-20 | Telefonaktiebolaget LM Ericsson (publ) | Method performed by a wlan node in an integrated wireless communications network, for applying security to received traffic data. |
TWI602446B (en) * | 2015-07-14 | 2017-10-11 | 宏達國際電子股份有限公司 | Device and method of handling authentication procedure |
CN105072612B (en) * | 2015-07-15 | 2019-06-11 | 宇龙计算机通信科技(深圳)有限公司 | A kind of method, base station and the terminal of certification access |
US10194379B2 (en) * | 2015-08-06 | 2019-01-29 | Arris Enterprises Llc | Discovery and security in LWA communication |
US10201031B2 (en) * | 2015-11-11 | 2019-02-05 | Apple Inc. | Radio resource aggregation with suspend/resume support |
CN105611594B (en) * | 2016-01-28 | 2020-12-29 | 努比亚技术有限公司 | Network switching device and method |
KR102531285B1 (en) * | 2016-03-25 | 2023-05-12 | 삼성전자주식회사 | A method for providing a communication function and an electronic device therefor |
CN107295512B (en) * | 2016-03-31 | 2021-01-08 | 展讯通信(上海)有限公司 | Communication equipment and method for authenticating in process of switching from LTE (Long term evolution) to WLAN (Wireless local area network) |
SG10201605752PA (en) | 2016-07-13 | 2018-02-27 | Huawei Int Pte Ltd | A unified authentication work for heterogeneous network |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101150594A (en) * | 2007-10-18 | 2008-03-26 | 中国联合通信有限公司 | An integrated access method and system for mobile cellular network and WLAN |
CN102215530A (en) * | 2011-05-27 | 2011-10-12 | 上海华为技术有限公司 | Data flow transmission method and related equipment and system |
CN102421097A (en) * | 2010-09-27 | 2012-04-18 | 中国移动通信集团公司 | User authorization method, device and system |
CN102769848A (en) * | 2010-12-21 | 2012-11-07 | 特克特朗尼克公司 | Evolved packet system non access stratum deciphering using real-time LTE monitoring |
-
2012
- 2012-12-26 CN CN201210574721.4A patent/CN103906056B/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101150594A (en) * | 2007-10-18 | 2008-03-26 | 中国联合通信有限公司 | An integrated access method and system for mobile cellular network and WLAN |
CN102421097A (en) * | 2010-09-27 | 2012-04-18 | 中国移动通信集团公司 | User authorization method, device and system |
CN102769848A (en) * | 2010-12-21 | 2012-11-07 | 特克特朗尼克公司 | Evolved packet system non access stratum deciphering using real-time LTE monitoring |
CN102215530A (en) * | 2011-05-27 | 2011-10-12 | 上海华为技术有限公司 | Data flow transmission method and related equipment and system |
Non-Patent Citations (1)
Title |
---|
3GPP system to Wireless Local Area Network (WLAN) interworking;;3rd Generation Partnership Project;《3GPP TS 23.234 V11.0.0》;20120918;全文 * |
Also Published As
Publication number | Publication date |
---|---|
CN103906056A (en) | 2014-07-02 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103906056B (en) | Uniform authentication method and system under mixed networking | |
US11051152B2 (en) | Method and device for selective communication service in communication system | |
CN104604299B (en) | The ANDSF strategy selected for WLAN and PLMN | |
CN104969612B (en) | OpenFlow enabled WiFi management entity framework | |
CN104170420B (en) | The method and its device of open wireless pipe ability | |
CN109644133A (en) | For requesting the method, the terminal for the method and network of the certification between terminal and third-party server to be sliced instance management equipment in a wireless communication system | |
CN110771188B (en) | Apparatus and method for providing operator-specific services | |
CN104540185B (en) | A kind of method, access gateway and access control equipment accessing network | |
CN103391532B (en) | Small amount of data uplink and downlink transmission method and corresponding terminal and mobility management unit | |
CN109964498A (en) | The method and apparatus that remote unit is attached to mobile core network via independent insincere non-3GPP access network | |
JP2012533920A (en) | Method and apparatus for registering with an external network in a wireless network environment | |
CN107666723A (en) | A kind of information transferring method, Convergence gateway and system | |
CN105491093B (en) | Method, server, wireless access point and the terminal that terminal authentication, network access | |
CN102209324A (en) | Mobile terminal and method for accessing mobile terminal into wireless local area network (WLAN) hotspot | |
CN110024326A (en) | Dynamic in 5G and long term evolution (LTE) subscribes to disposition | |
CN103428664A (en) | Network convergence method and device and communication system | |
WO2018196587A1 (en) | User authentication method and apparatus in converged network | |
CN109565857A (en) | For managing the technology for using the logic business of data aggregate to connect | |
CN103906061A (en) | Wireless access point | |
WO2009046670A1 (en) | A method, system, base station and management node for accessing a core network node | |
CN109818769A (en) | The method and apparatus for sending information | |
CN102932913A (en) | Method and system for acquiring access position of MAB (Multiple Access and Binding) terminal, server and gateway | |
CN109842920A (en) | A kind of transmission method, access network equipment and terminal device | |
EP3025534B1 (en) | Providing telephony services over wifi for non-cellular devices | |
CN105791066B (en) | Control method for sending information and device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |