CN105991515A - Implementation method for service isolation of communication system, terminal and base station - Google Patents
Implementation method for service isolation of communication system, terminal and base station Download PDFInfo
- Publication number
- CN105991515A CN105991515A CN201510043880.5A CN201510043880A CN105991515A CN 105991515 A CN105991515 A CN 105991515A CN 201510043880 A CN201510043880 A CN 201510043880A CN 105991515 A CN105991515 A CN 105991515A
- Authority
- CN
- China
- Prior art keywords
- mme
- permission
- terminal
- mark
- utran
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses an implementation method for the service isolation of a communication system, a terminal and a base station. The method comprises the steps of sending a first attach request message to an evolved radio access network E-UTRAN from a terminal, wherein the first attach request message comprises an allowable MME identifier and the allowable MME identifier is an MME identifier corresponding to the default service type of the terminal; after receiving an attach accept message from the E-UTRAN by the terminal, interacting with an MME corresponding to the allowable MME identifier through the E-UTRAN, wherein the attach accept message is sent from the MME corresponding to the allowable MME identifier to the terminal after the E-UTRAN sends a second attach request message to the MME corresponding to the allowable MME identifier, and the second attach request message contains the information of the terminal. According to the technical scheme of the invention, when the terminal is to be accessed to the E-UTRAN, the terminal carries the service type information thereof by itself. The E-UTRAN searches an MME responsible for the transmission of the above service type and then is accessed to the MME. Therefore, the services of different service types are isolated.
Description
Technical field
The present invention relates to communication technical field, be specifically related to the isolation of a kind of communication system traffic
Implementation method, terminal and base station.
Background technology
Flourish along with technology of Internet of things, communication network is as a kind of base support technology
It is widely applied in the dedicated network of every profession and trade.And timesharing Long Term Evolution (Time Division
Long Term Evolution, TD-LTE) technology is as forth generation wireless broadband communication technology
It is also applied in Internet of Things industry.Along with communication network is in the application of every profession and trade, safety
Become an important issue of dedicated network.
Fig. 1 is 3GPP LTE ALPURCOM framework, may be directly applied to private network
In network.Wherein UE (User Equipment) i.e. user terminal is dedicated network business demand
Executor;The wireless access network of E-UTRAN (Evolved UTRAN) i.e. evolution, by
NodeB (Evolved NodeB, the eNodeB) composition of evolution, carries for accessing for UE
For Radio Resource;The core net of EPC (Evolved Packet Core) i.e. evolution, including moving
Mobility management entity (Mobility Management Entity, MME) is responsible for the control of UE
Face processed context management, and responsible UE Access Control when E-UTRAN accesses and shifting
The work such as mobility management;Gateway (Serving Gateway, S-GW) and grouped data
Net gateway (Packet Data Network Gateway, P-GW), is responsible for user plane bearer pipe
The functions such as reason, routing user data, accessing group data net.Business in common communications network
Kind based on individual characteristics, convenient management, it is possible to use EPC centralized management.
Having the business of different service types in dedicated network, type of service is to have particular application as
Main, the business of different service types cannot be managed collectively, and the business of each type of service may
Need independent process, and for security consideration, the business of each type of service mutually it
Between can not disturb.According to EPC function in 3GPP LTE communication network, if directly
Use an EPC to carry out operational control and obviously can not meet dedicated network to different service types
Business between isolation and safety.
Summary of the invention
The technical problem to be solved is to have different service types in dedicated network
Business, type of service is main to have particular application as, and the business of different service types cannot unify pipe
Reason, the business of each type of service may need independent process, and for security consideration,
The business of each type of service can not be disturbed each other.Lead at 3GPP LTE according to EPC
Function in communication network, obviously can not expire if directly using an EPC to carry out operational control
Foot dedicated network is to the isolation between the business of different service types and the problem of safety.
For this purpose it is proposed, first aspect, the present invention proposes the reality of a kind of communication system traffic isolation
Existing method, described method includes:
Terminal UE sends the first attachment request letter to the wireless access network E-UTRAN of evolution
Breath, described first attachment solicited message includes the Mobility Management Entity MME mark allowed,
The MME of described permission is designated corresponding with described terminal UE pre-set business type
The mark of MME;
Terminal UE receive described E-UTRAN send attachment accept information after, with
The MME that the MME mark of described permission is corresponding is interacted by described E-UTRAN,
Wherein, described attachment accepts information is that described E-UTRAN marks to the MME of described permission
After knowing corresponding MME transmission the second attachment solicited message, the described permission received
The attachment of the MME transmission that MME mark is corresponding accepts information, described second attachment request letter
Breath includes the information of described terminal UE.
Optionally, the obtaining step of the MME mark of described permission is as follows:
Terminal UE sends the first acquisition MME identification information to described E-UTRAN;
Terminal UE check whether to receive permission access information that described E-UTRAN sends or
Refusal access information, if receiving permission access information, then from described permission access information
Middle extraction MME identifies, and saves as the MME mark of permission;
If receiving refusal access information, then from described refusal access information, extract MME
Mark, and save as the MME mark forbidden, terminal UE sends to described E-UTRAN
Second obtains MME identification information, and described second obtains MME identification information includes described
Forbid that MME identifies, until terminal UE receives permission access information, then from described permission
Access information extracts MME mark, and saves as the MME mark of permission.
Second aspect, the present invention also proposes the implementation method of a kind of communication system traffic isolation,
Described method includes:
The wireless access network E-UTRAN of evolution receives the first attachment request that terminal UE sends
Information, wherein, described first attachment solicited message includes the Mobility Management Entity allowed
MME identifies, and the MME of described permission is designated and described terminal UE pre-set business type
The mark of corresponding MME;
Described E-UTRAN extracts described permission from described first attachment solicited message
MME identifies, and identifies corresponding MME transmission the second attachment to the MME of described permission
Solicited message, described second attachment solicited message includes the information of described terminal UE;
Described E-UTRAN identifies corresponding MME at the MME receiving described permission and sends out
After the attachment sent accepts information, described attachment is accepted information and is sent to described terminal UE,
So that described terminal UE is corresponding by described E-UTRAN and the MME of described permission mark
MME interact.
Optionally, the obtaining step of the MME mark of described permission is as follows:
Described E-UTRAN is receiving the first acquisition MME mark letter that terminal UE sends
After breath, from the MME of predetermined number, choose a MME at random, and to choosing
MME sends the second attachment request, wherein, each in the MME of described predetermined number
The corresponding a kind of default type of service of MME, described second attachment solicited message includes described end
The information of end UE;
Described E-UTRAN check whether to receive described in the permission that sends of the MME that chooses
Access information or refusal access information, if described E-UTRAN receives permission and accesses letter
Breath, then be sent to described terminal UE by described permission access information, so that described terminal UE
The MME mark of permission is obtained from described permission access information;
If described E-UTRAN receives refusal access information, then described refusal is accessed
Information is sent to described terminal UE, and receives the second acquisition MME that described terminal UE sends
Identification information;
Described E-UTRAN obtains what the extraction of MME identification information was forbidden from described second
After MME mark, from remaining MME, choose a MME at random, and to choosing
MME send second attachment request, until described remaining MME is empty or described
E-UTRAN receives permission access information, and the most described E-UTRAN is according to described remaining
MME is empty or described permission access information, performs corresponding action, so that described terminal
UE obtains the MME mark of permission, wherein, described residue from described permission access information
MME be from the MME of described predetermined number get rid of described in forbid MME mark right
The MME remaining for MME answered.
Optionally, described E-UTRAN is empty according to described remaining MME, and it is right to perform
The action answered, so that described terminal UE obtains permission from described permission access information
MME identifies, including:
Described E-UTRAN sends connection release message to described terminal UE, and described connection is released
Put message and include without being suitable for MME information so that described terminal UE receive described
After connection release message, empty storage the MME forbidden mark, and turn back on into
The obtaining step of the MME mark of the described permission of row.
Optionally, described E-UTRAN is according to described permission access information, and it is right to perform
The action answered, so that described terminal UE obtains permission from described permission access information
MME identifies, including:
Described permission access information is sent to described terminal UE by described E-UTRAN, so that
Described terminal UE obtains the MME mark of permission from described permission access information.
The third aspect, the present invention also proposes a kind of terminal, and described terminal includes:
Transmitting element, for sending the first attachment to the wireless access network E-UTRAN of evolution
Solicited message, described first attachment solicited message includes the Mobility Management Entity MME allowed
Mark, the MME of described permission is designated corresponding with described terminal UE pre-set business type
The mark of MME;
Interactive unit, for accepting information in the attachment receiving described E-UTRAN transmission
Afterwards, corresponding with the MME of described permission mark MME is entered by described E-UTRAN
Row is mutual, and wherein, it is that described E-UTRAN is to described permission that described attachment accepts information
After MME transmission the second attachment solicited message that MME mark is corresponding, receive is described
The attachment that MME corresponding to the MME mark that allows sends accepts information, described second attached
Solicited message and include the information of described terminal UE.
Optionally, described transmitting element is additionally operable to send the first acquisition to described E-UTRAN
MME identification information and second obtains MME identification information;
Correspondingly, described terminal UE also includes:
Processing unit, obtains for sending first at described transmitting element to described E-UTRAN
After taking MME identification information, check whether to receive permitting of described E-UTRAN transmission
Permitted access information or refusal access information, if receiving permission access information, then from described
Allow access information extracts MME mark, and save as the MME mark of permission;
If receiving refusal access information, then from described refusal access information, extract MME
Mark, and save as the MME mark forbidden, and by described transmitting element to described
E-UTRAN sends the second acquisition MME identification information, and described second obtains MME mark
Information forbids that MME identifies described in including, until described processing unit receives permission and accesses
Information, then extract MME mark from described permission access information, and save as permission
MME identifies.
Fourth aspect, the present invention also proposes a kind of base station, and described base station includes:
Receive unit, for receiving the first attachment solicited message that terminal UE sends, wherein,
Described first attachment solicited message includes the Mobility Management Entity MME mark allowed, institute
The MME stating permission is designated the MME corresponding with described terminal UE pre-set business type
Mark;
First processing unit, for extracting described permission from described first attachment solicited message
MME mark, and identifying corresponding MME to the MME of described permission, to send second attached
Solicited message, described second attachment solicited message includes the information of described terminal UE;
Second processing unit, for identifying correspondence at the MME receiving described permission
After the attachment that MME sends accepts information, described attachment is accepted information and is sent to described end
End UE, so that described terminal UE is right with the MME of described permission mark by described base station
The MME answered interacts.
Optionally, described reception unit is additionally operable to obtain receive terminal UE transmission first
After taking MME identification information, from the MME of predetermined number, choose a MME at random,
And send the second attachment request, wherein, the MME of described predetermined number to the MME chosen
In the corresponding a kind of default type of service of each MME, described second attachment solicited message
Information including described terminal UE;
Correspondingly, described base station also includes:
3rd processing unit, the MME chosen described in check whether to receive sends
Allow access information or refusal access information, if receiving permission access information, then by institute
State permission access information and be sent to described terminal UE, so that described terminal UE is from described permission
Access information obtains the MME mark of permission;
If receiving refusal access information, then described refusal access information is sent to described
Terminal UE, and receive the second acquisition MME identification information that described terminal UE sends;
Described 3rd processing unit obtains what the extraction of MME identification information was forbidden from described second
After MME mark, from remaining MME, choose a MME at random, and to choosing
MME send the second attachment request, until described remaining MME is empty or described the
Three processing units receive permission access information, and the most described 3rd processing unit is according to described surplus
Remaining MME is empty or described permission access information, performs corresponding action, so that described
Terminal UE obtains the MME mark of permission from described permission access information, wherein, described
Remaining MME is the MME mark forbidden described in eliminating from the MME of described predetermined number
Know corresponding MME remaining for MME.
Compared to prior art, the implementation method of communication system traffic isolation of the present invention, end
End and base station are divided into many according to the business characteristic (i.e. the number of type of service) of dedicated network
Individual service area (a corresponding type of service of service area), each service area is equivalent to one
It does not interfere with each other between independent network, and each service area, thus ensure that business datum is complete
Isolation.And the physical frequencies resource limited in order to make full use of dedicated network, each business
District shares an E-UTRAN.Each terminal in network is specified concrete process by operator
Which kind of type of service.The type of service of terminal is identified by MME mark.Terminal connects
When entering E-UTRAN, terminal carries oneself affiliated traffic type information, E-UTRAN
The MME that the service area information searching that carries according to access terminal is corresponding is linked into responsible transmission
The MME of affiliated business, it is achieved the isolation between the business of different service types.
Accompanying drawing explanation
Fig. 1 shows 3GPP LTE ALPURCOM Organization Chart;
Fig. 2 shows the implementation method flow chart that a kind of communication system traffic is isolated;
Fig. 3 shows the implementation method flow chart that a kind of communication system traffic is isolated;
Fig. 4 shows a kind of terminal structure figure;
Fig. 5 shows a kind of architecture of base station figure;
Fig. 6 shows a kind of dedicated network networking mode;
Fig. 7 shows the schematic flow sheet of terminal UE access network for the first time.
Detailed description of the invention
For making the purpose of the embodiment of the present invention, technical scheme and advantage clearer, below will
In conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clearly
Chu ground describe, it is clear that described embodiment be a part of embodiment of the present invention rather than
Whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art are not having
Have and make the every other embodiment obtained under creative work premise, broadly fall into the present invention
The scope of protection.
As in figure 2 it is shown, the present embodiment discloses the implementation method of a kind of communication system traffic isolation,
Described method can comprise the following steps that
101, terminal UE please to wireless access network E-UTRAN transmission first attachment of evolution
Information, described first attachment solicited message is asked to include the Mobility Management Entity MME allowed
Mark, the MME of described permission is designated corresponding with described terminal UE pre-set business type
The mark of MME;
102, terminal UE receive described E-UTRAN send attachment accept information it
After, the MME corresponding with the MME of described permission mark is carried out by described E-UTRAN
Alternately, wherein, described attachment accepts information is the described E-UTRAN MME to described permission
After MME transmission the second attachment solicited message that mark is corresponding, the described permission received
The attachment that sends of MME corresponding to MME mark accept information, described second attachment please
Information is asked to include the information of described terminal UE.
In the present embodiment, the obtaining step of the MME mark of described permission is as follows:
Terminal UE sends the first acquisition MME identification information to described E-UTRAN;
Terminal UE check whether to receive permission access information that described E-UTRAN sends or
Refusal access information, if receiving permission access information, then from described permission access information
Middle extraction MME identifies, and saves as the MME mark of permission;
If receiving refusal access information, then from described refusal access information, extract MME
Mark, and save as the MME mark forbidden, terminal UE sends to described E-UTRAN
Second obtains MME identification information, and described second obtains MME identification information includes described
Forbid that MME identifies, until terminal UE receives permission access information, then from described permission
Access information extracts MME mark, and saves as the MME mark of permission.
As it is shown on figure 3, the present embodiment is also disclosed the realization side of a kind of communication system traffic isolation
Method, described method includes:
201, the first of the wireless access network E-UTRAN reception terminal UE transmission of evolution is attached
Solicited message, wherein, described first attachment solicited message includes the mobile management allowed
Entity MME identifies, and the MME of described permission is designated and described terminal UE pre-set business
The mark of the MME that type is corresponding;
202, described E-UTRAN extracts described permission from described first attachment solicited message
MME mark, and identifying corresponding MME to the MME of described permission, to send second attached
Solicited message, described second attachment solicited message includes the information of described terminal UE;
203, described E-UTRAN identifies correspondence at the MME receiving described permission
After the attachment that MME sends accepts information, described attachment is accepted information and is sent to described end
End UE, so that described terminal UE is by the MME of described E-UTRAN Yu described permission
The MME of mark correspondence interacts.
In the present embodiment, the obtaining step of the MME mark of described permission is as follows:
Described E-UTRAN is receiving the first acquisition MME mark letter that terminal UE sends
After breath, from the MME of predetermined number, choose a MME at random, and to choosing
MME sends the second attachment request, wherein, each in the MME of described predetermined number
The corresponding a kind of default type of service of MME, described second attachment solicited message includes described end
The information of end UE;
Described E-UTRAN check whether to receive described in the permission that sends of the MME that chooses
Access information or refusal access information, if described E-UTRAN receives permission and accesses letter
Breath, then be sent to described terminal UE by described permission access information, so that described terminal UE
The MME mark of permission is obtained from described permission access information;
If described E-UTRAN receives refusal access information, then described refusal is accessed
Information is sent to described terminal UE, and receives the second acquisition MME that described terminal UE sends
Identification information;
Described E-UTRAN obtains what the extraction of MME identification information was forbidden from described second
After MME mark, from remaining MME, choose a MME at random, and to choosing
MME send second attachment request, until described remaining MME is empty or described
E-UTRAN receives permission access information, and the most described E-UTRAN is according to described remaining
MME is empty or described permission access information, performs corresponding action, so that described terminal
UE obtains the MME mark of permission, wherein, described residue from described permission access information
MME be from the MME of described predetermined number get rid of described in forbid MME mark right
The MME remaining for MME answered.
In the present embodiment, described E-UTRAN is empty according to described remaining MME, holds
The action that row is corresponding, so that described terminal UE obtains permission from described permission access information
MME mark, including:
Described E-UTRAN sends connection release message to described terminal UE, and described connection is released
Put message and include without being suitable for MME information so that described terminal UE receive described
After connection release message, empty storage the MME forbidden mark, and turn back on into
The obtaining step of the MME mark of the described permission of row.
In the present embodiment, described E-UTRAN, according to described permission access information, holds
The action that row is corresponding, so that described terminal UE obtains permission from described permission access information
MME mark, including:
Described permission access information is sent to described terminal UE by described E-UTRAN, so that
Described terminal UE obtains the MME mark of permission from described permission access information.
As shown in Figure 4, the present embodiment is also disclosed a kind of terminal, and described terminal includes:
Transmitting element, for sending the first attachment to the wireless access network E-UTRAN of evolution
Solicited message, described first attachment solicited message includes the Mobility Management Entity MME allowed
Mark, the MME of described permission is designated corresponding with described terminal UE pre-set business type
The mark of MME;
Interactive unit, for accepting information in the attachment receiving described E-UTRAN transmission
Afterwards, corresponding with the MME of described permission mark MME is entered by described E-UTRAN
Row is mutual, and wherein, it is that described E-UTRAN is to described permission that described attachment accepts information
After MME transmission the second attachment solicited message that MME mark is corresponding, receive is described
The attachment that MME corresponding to the MME mark that allows sends accepts information, described second attached
Solicited message and include the information of described terminal UE.
In the present embodiment, described transmitting element is additionally operable to send first to described E-UTRAN
Obtain MME identification information and second and obtain MME identification information;
Correspondingly, described terminal UE also includes:
Processing unit, obtains for sending first at described transmitting element to described E-UTRAN
After taking MME identification information, check whether to receive permitting of described E-UTRAN transmission
Permitted access information or refusal access information, if receiving permission access information, then from described
Allow access information extracts MME mark, and save as the MME mark of permission;
If receiving refusal access information, then from described refusal access information, extract MME
Mark, and save as the MME mark forbidden, and by described transmitting element to described
E-UTRAN sends the second acquisition MME identification information, and described second obtains MME mark
Information forbids that MME identifies described in including, until described processing unit receives permission and accesses
Information, then extract MME mark from described permission access information, and save as permission
MME identifies.
As it is shown in figure 5, the present embodiment is also disclosed a kind of base station, described base station includes:
Receive unit, for receiving the first attachment solicited message that terminal UE sends, wherein,
Described first attachment solicited message includes the Mobility Management Entity MME mark allowed, institute
The MME stating permission is designated the MME corresponding with described terminal UE pre-set business type
Mark;
First processing unit, for extracting described permission from described first attachment solicited message
MME mark, and identifying corresponding MME to the MME of described permission, to send second attached
Solicited message, described second attachment solicited message includes the information of described terminal UE;
Second processing unit, for identifying correspondence at the MME receiving described permission
After the attachment that MME sends accepts information, described attachment is accepted information and is sent to described end
End UE, so that described terminal UE is right with the MME of described permission mark by described base station
The MME answered interacts.
In the present embodiment, described reception unit is additionally operable to receive that terminal UE sends the
After one obtains MME identification information, from the MME of predetermined number, choose one at random
MME, and send the second attachment request, wherein, described predetermined number to the MME chosen
MME in the corresponding a kind of default type of service of each MME, described second attachment
Solicited message includes the information of described terminal UE;
Correspondingly, described base station also includes:
3rd processing unit, the MME chosen described in check whether to receive sends
Allow access information or refusal access information, if receiving permission access information, then by institute
State permission access information and be sent to described terminal UE, so that described terminal UE is from described permission
Access information obtains the MME mark of permission;
If receiving refusal access information, then described refusal access information is sent to described
Terminal UE, and receive the second acquisition MME identification information that described terminal UE sends;
Described 3rd processing unit obtains what the extraction of MME identification information was forbidden from described second
After MME mark, from remaining MME, choose a MME at random, and to choosing
MME send the second attachment request, until described remaining MME is empty or described the
Three processing units receive permission access information, and the most described 3rd processing unit is according to described surplus
Remaining MME is empty or described permission access information, performs corresponding action, so that described
Terminal UE obtains the MME mark of permission from described permission access information, wherein, described
Remaining MME is the MME mark forbidden described in eliminating from the MME of described predetermined number
Know corresponding MME remaining for MME.
As shown in Figure 6, the open a kind of dedicated network networking mode of the present embodiment, this private network
Network realizes two kinds of business, service area 1 and service area 2 and to realize completely isolated.UE1 realizes
Business 1, UE2 realizes business 2, and two service areas share an E-UTRAN.Fig. 7 shows
The schematic flow sheet having gone out terminal UE 1 access network for the first time (accesses for the first time for UE2
The flow process of network is identical with UE1), the acquisition of the MME mark i.e. allowed in above-described embodiment
Schematic flow sheet, step is as follows:
1, UE1 sends the first acquisition MME identification information to E-UTRAN;
2, E-UTRAN receive UE1 send first acquisition MME identification information it
After, from the MME of predetermined number, choose a MME at random (the present embodiment is chosen
MME1), and sending the second attachment request to MME1, the second attachment solicited message includes
The information of UE1;Wherein, E-UTRAN can select a MME by load sharing,
UE is selected to access the MME that quantity is most;
3, MME1 checks whether UE1 belongs to this service area, is not belonging to this business determining
After district, send refusal access information to E-UTRAN, this information includes MME1
Mark;
4, refusal access information is sent to UE1 by E-UTRAN, so that UE1 connects from refusal
Enter information is extracted MME1 mark, and save as the MME mark forbidden;
5, UE1 sends the second acquisition MME identification information to E-UTRAN, in this information
Comprise the MME mark forbidden, i.e. MME1 identifies;
6, E-UTRAN receive UE1 send second acquisition MME identification information it
After, sending the second attachment request to MME2, the second attachment solicited message includes the letter of UE1
Breath;
7, MME2 checks whether UE1 belongs to this service area, belongs to this service area determining
Afterwards, send to E-UTRAN and allow access information, this information includes MME2 mark
Know;
8, permission access information is sent to UE1 by E-UTRAN, so that UE1 connects from allowing
Enter information is extracted MME2 mark, and save as the MME mark of permission.
9, UE1 is mutual by E-UTRAN with MME2.
This embodiment only has two MME, during for multiple MME, can repeat on
State step, until UE1 finds the MME of correspondence.
In a particular application, the type of service that operator fixes to UE configuration, and to business
Type carries out subregion, and different EPC is responsible for different types of service, each type of service
UE and EPC shares an E-UTRAN network.UE when accessing for the first time, E-UTRAN
Algorithm according to load sharing is that UE randomly chooses a service area, without being linked into
Correct EPC, then this EPC carries MME mark in the refusal returned accesses message,
UE thinks after receiving this message that this MME is the MME forbidden, and is identified by MME
Being saved in non-volatile storage device, and again initiate access process, E-UTRAN is from removing
Other MME in the MME list forbidden select again a MME access, weight
Multiple above step, preserves in permission access information until being linked into correct EPC, UE
MME identifies, it is believed that be registration MME.After UE is successfully accessed, lead for some reason
Causing again to access, UE directly carries the MME letter of this registration in the first attachment solicited message
Breath, then E-UTRAN directly selects this MME and accesses.If operator is to UE's
Service area information configuration mistake or UE does not carries out business subregion, then E-UTRAN is to joining
The all MME put carry out accessing still failed after, discharge this UE, and report to operator
The warning information of UE access failure, simultaneously UE by the registration MME preserved with forbid
MME list is all removed, and re-starts access.
Implementation method, terminal and the base station root of the communication system traffic isolation in above-described embodiment
It is divided into multiple service area (according to the business characteristic (i.e. the number of type of service) of dedicated network
The corresponding type of service of individual service area), each service area is equivalent to an independent network,
And do not interfere with each other between each service area, thus ensure that business datum is completely isolated.And be
Making full use of the physical frequencies resource that dedicated network is limited, each service area shares one
E-UTRAN.Each terminal in network is specified concrete which kind of service class of process by operator
Type.The type of service of terminal is identified by MME mark.Terminal accesses E-UTRAN
Time, terminal carries oneself affiliated traffic type information, and E-UTRAN is according to access terminal
The MME that the service area information searching that carries is corresponding is linked into and is responsible for business belonging to transmission
MME, it is achieved the isolation between the business of different service types.
It should be noted that in this article, described " first ", " second " and " the 3rd "
It is used merely to make a distinction rather than imply that these are stated by a statement and another statement
Between relation or order.
It will be understood by those skilled in the art that and the module in the equipment in embodiment can be entered
Row adaptively changes and they is provided in different one or more of this embodiment
In equipment.Block combiner in embodiment can be become a module, and in addition can be
They are divided into multiple submodule or subelement or sub-component.Except such feature and/or process
Or at least some in unit is mutually exclusive part, any combination can be used this theory
All features disclosed in bright book and so disclosed any method or all mistakes of equipment
Journey or unit are combined.Unless expressly stated otherwise, each spy disclosed in this specification
Levy and can be replaced by the alternative features providing identical, equivalent or similar purpose.
Although additionally, it will be appreciated by those of skill in the art that enforcements more described herein
Example includes some feature included in other embodiments rather than further feature, but different
The combination of the feature of embodiment means to be within the scope of the present invention and formed different
Embodiment.
The all parts embodiment of the present invention can realize with hardware, or with at one or
The software module run on multiple processors realizes, or realizes with combinations thereof.Ability
Territory it will be appreciated by the skilled person that microprocessor or digital signal can be used in practice
Processor (DSP) realizes the equipment of a kind of browser terminal according to embodiments of the present invention
In the some or all functions of some or all parts.The present invention is also implemented as
For performing part or all equipment or the device program of method as described herein
(such as, computer program and computer program).Such program realizing the present invention
Can store on a computer-readable medium, or can have one or more signal
Form.Such signal can be downloaded from internet website and obtain, or at carrier signal
Upper offer, or provide with any other form.
Although be described in conjunction with the accompanying embodiments of the present invention, but those skilled in the art
Various modifications and variations can be made without departing from the spirit and scope of the present invention,
Within the scope of such amendment and modification each fall within and are defined by the appended claims.
Claims (10)
1. the implementation method of a communication system traffic isolation, it is characterised in that described method
Including:
Terminal UE sends the first attachment request letter to the wireless access network E-UTRAN of evolution
Breath, described first attachment solicited message includes the Mobility Management Entity MME mark allowed,
The MME of described permission is designated corresponding with described terminal UE pre-set business type
The mark of MME;
Terminal UE receive described E-UTRAN send attachment accept information after, with
The MME that the MME mark of described permission is corresponding is interacted by described E-UTRAN,
Wherein, described attachment accepts information is that described E-UTRAN marks to the MME of described permission
After knowing corresponding MME transmission the second attachment solicited message, the described permission received
The attachment of the MME transmission that MME mark is corresponding accepts information, described second attachment request letter
Breath includes the information of described terminal UE.
2. the method described in a claim 1, it is characterised in that the MME of described permission
The obtaining step of mark is as follows:
Terminal UE sends the first acquisition MME identification information to described E-UTRAN;
Terminal UE check whether to receive permission access information that described E-UTRAN sends or
Refusal access information, if receiving permission access information, then from described permission access information
Middle extraction MME identifies, and saves as the MME mark of permission;
If receiving refusal access information, then from described refusal access information, extract MME
Mark, and save as the MME mark forbidden, terminal UE sends to described E-UTRAN
Second obtains MME identification information, and described second obtains MME identification information includes described
Forbid that MME identifies, until terminal UE receives permission access information, then from described permission
Access information extracts MME mark, and saves as the MME mark of permission.
3. the implementation method of a communication system traffic isolation, it is characterised in that described method
Including:
The wireless access network E-UTRAN of evolution receives the first attachment request that terminal UE sends
Information, wherein, described first attachment solicited message includes the Mobility Management Entity allowed
MME identifies, and the MME of described permission is designated and described terminal UE pre-set business type
The mark of corresponding MME;
Described E-UTRAN extracts described permission from described first attachment solicited message
MME identifies, and identifies corresponding MME transmission the second attachment to the MME of described permission
Solicited message, described second attachment solicited message includes the information of described terminal UE;
Described E-UTRAN identifies corresponding MME at the MME receiving described permission and sends out
After the attachment sent accepts information, described attachment is accepted information and is sent to described terminal UE,
So that described terminal UE is corresponding by described E-UTRAN and the MME of described permission mark
MME interact.
4. the method described in a claim 3, it is characterised in that the MME of described permission
The obtaining step of mark is as follows:
Described E-UTRAN is receiving the first acquisition MME mark letter that terminal UE sends
After breath, from the MME of predetermined number, choose a MME at random, and to choosing
MME sends the second attachment request, wherein, each in the MME of described predetermined number
The corresponding a kind of default type of service of MME, described second attachment solicited message includes described end
The information of end UE;
Described E-UTRAN check whether to receive described in the permission that sends of the MME that chooses
Access information or refusal access information, if described E-UTRAN receives permission and accesses letter
Breath, then be sent to described terminal UE by described permission access information, so that described terminal UE
The MME mark of permission is obtained from described permission access information;
If described E-UTRAN receives refusal access information, then described refusal is accessed
Information is sent to described terminal UE, and receives the second acquisition MME that described terminal UE sends
Identification information;
Described E-UTRAN obtains what the extraction of MME identification information was forbidden from described second
After MME mark, from remaining MME, choose a MME at random, and to choosing
MME send second attachment request, until described remaining MME is empty or described
E-UTRAN receives permission access information, and the most described E-UTRAN is according to described remaining
MME is empty or described permission access information, performs corresponding action, so that described terminal
UE obtains the MME mark of permission, wherein, described residue from described permission access information
MME be from the MME of described predetermined number get rid of described in forbid MME mark right
The MME remaining for MME answered.
Method the most according to claim 4, it is characterised in that described E-UTRAN
It is empty according to described remaining MME, performs corresponding action, so that described terminal UE
The MME mark of permission is obtained from described permission access information, including:
Described E-UTRAN sends connection release message to described terminal UE, and described connection is released
Put message and include without being suitable for MME information so that described terminal UE receive described
After connection release message, empty storage the MME forbidden mark, and turn back on into
The obtaining step of the MME mark of the described permission of row.
Method the most according to claim 4, it is characterised in that described
E-UTRAN, according to described permission access information, performs corresponding action, so that described terminal
UE obtains the MME mark of permission from described permission access information, including:
Described permission access information is sent to described terminal UE by described E-UTRAN, so that
Described terminal UE obtains the MME mark of permission from described permission access information.
7. a terminal, it is characterised in that described terminal includes:
Transmitting element, for sending the first attachment to the wireless access network E-UTRAN of evolution
Solicited message, described first attachment solicited message includes the Mobility Management Entity MME allowed
Mark, the MME of described permission is designated corresponding with described terminal UE pre-set business type
The mark of MME;
Interactive unit, for accepting information in the attachment receiving described E-UTRAN transmission
Afterwards, corresponding with the MME of described permission mark MME is entered by described E-UTRAN
Row is mutual, and wherein, it is that described E-UTRAN is to described permission that described attachment accepts information
After MME transmission the second attachment solicited message that MME mark is corresponding, receive is described
The attachment that MME corresponding to the MME mark that allows sends accepts information, described second attached
Solicited message and include the information of described terminal UE.
8. the terminal described in a claim 7, is further characterized in that, described transmitting element is also
Obtain for sending the first acquisition MME identification information and second to described E-UTRAN
MME identification information;
Correspondingly, described terminal UE also includes:
Processing unit, obtains for sending first at described transmitting element to described E-UTRAN
After taking MME identification information, check whether to receive permitting of described E-UTRAN transmission
Permitted access information or refusal access information, if receiving permission access information, then from described
Allow access information extracts MME mark, and save as the MME mark of permission;
If receiving refusal access information, then from described refusal access information, extract MME
Mark, and save as the MME mark forbidden, and by described transmitting element to described
E-UTRAN sends the second acquisition MME identification information, and described second obtains MME mark
Information forbids that MME identifies described in including, until described processing unit receives permission and accesses
Information, then extract MME mark from described permission access information, and save as permission
MME identifies.
9. a base station, it is characterised in that described base station includes:
Receive unit, for receiving the first attachment solicited message that terminal UE sends, wherein,
Described first attachment solicited message includes the Mobility Management Entity MME mark allowed, institute
The MME stating permission is designated the MME corresponding with described terminal UE pre-set business type
Mark;
First processing unit, for extracting described permission from described first attachment solicited message
MME mark, and identifying corresponding MME to the MME of described permission, to send second attached
Solicited message, described second attachment solicited message includes the information of described terminal UE;
Second processing unit, for identifying correspondence at the MME receiving described permission
After the attachment that MME sends accepts information, described attachment is accepted information and is sent to described end
End UE, so that described terminal UE is right with the MME of described permission mark by described base station
The MME answered interacts.
10. the base station described in a claim 9, it is characterised in that described reception unit is also
For receive terminal UE send first acquisition MME identification information after, at random from
The MME of predetermined number chooses a MME, and it is attached to send second to the MME chosen
Request, wherein, each MME correspondence in the MME of described predetermined number is a kind of pre-
If type of service, described second attachment solicited message includes the information of described terminal UE;
Correspondingly, described base station also includes:
3rd processing unit, the MME chosen described in check whether to receive sends
Allow access information or refusal access information, if receiving permission access information, then by institute
State permission access information and be sent to described terminal UE, so that described terminal UE is from described permission
Access information obtains the MME mark of permission;
If receiving refusal access information, then described refusal access information is sent to described
Terminal UE, and receive the second acquisition MME identification information that described terminal UE sends;
Described 3rd processing unit obtains what the extraction of MME identification information was forbidden from described second
After MME mark, from remaining MME, choose a MME at random, and to choosing
MME send the second attachment request, until described remaining MME is empty or described the
Three processing units receive permission access information, and the most described 3rd processing unit is according to described surplus
Remaining MME is empty or described permission access information, performs corresponding action, so that described
Terminal UE obtains the MME mark of permission from described permission access information, wherein, described
Remaining MME is the MME mark forbidden described in eliminating from the MME of described predetermined number
Know corresponding MME remaining for MME.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510043880.5A CN105991515B (en) | 2015-01-28 | 2015-01-28 | A kind of implementation method, terminal and the base station of communication system traffic isolation |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510043880.5A CN105991515B (en) | 2015-01-28 | 2015-01-28 | A kind of implementation method, terminal and the base station of communication system traffic isolation |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105991515A true CN105991515A (en) | 2016-10-05 |
| CN105991515B CN105991515B (en) | 2019-04-19 |
Family
ID=57034237
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510043880.5A Expired - Fee Related CN105991515B (en) | 2015-01-28 | 2015-01-28 | A kind of implementation method, terminal and the base station of communication system traffic isolation |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105991515B (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108206748A (en) * | 2016-12-19 | 2018-06-26 | 普天信息技术有限公司 | A kind of core net backup method applied to TD-LTE internet of things service isolation environments |
| CN108616956A (en) * | 2017-01-16 | 2018-10-02 | 普天信息技术有限公司 | A kind of method that business is isolated in electric power wireless private network |
| WO2020151696A1 (en) * | 2019-01-21 | 2020-07-30 | 华为技术有限公司 | Method, device, and system for increasing cross-network access security |
| CN114269004A (en) * | 2020-09-16 | 2022-04-01 | 中国电信股份有限公司 | Attachment method and communication method of terminal of Internet of things and corresponding system |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1561042A (en) * | 2004-02-17 | 2005-01-05 | 中兴通讯股份有限公司 | Method of managing mobile terminal by radio local network insertion point equipment |
| CN101778388A (en) * | 2009-01-13 | 2010-07-14 | 华为技术有限公司 | Communication system, access control entity and method for controlling access of user equipment |
| CN103548376A (en) * | 2011-05-23 | 2014-01-29 | 瑞典爱立信有限公司 | Implementing EPC in a cloud computer with OPENFLOW data plane |
| CN103686649A (en) * | 2013-12-26 | 2014-03-26 | 上海粱江通信系统股份有限公司 | Region communication management and control system and method based on wireless network and core network interface signaling |
| CN104105086A (en) * | 2013-04-11 | 2014-10-15 | 中兴通讯股份有限公司 | Selection method and device of Prose Server, and user registration method and device |
| WO2014169950A1 (en) * | 2013-04-16 | 2014-10-23 | Nokia Solutions And Networks Oy | Mobility management entity (mme) triggered detach and re-attach to a specific target mme |
-
2015
- 2015-01-28 CN CN201510043880.5A patent/CN105991515B/en not_active Expired - Fee Related
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1561042A (en) * | 2004-02-17 | 2005-01-05 | 中兴通讯股份有限公司 | Method of managing mobile terminal by radio local network insertion point equipment |
| CN101778388A (en) * | 2009-01-13 | 2010-07-14 | 华为技术有限公司 | Communication system, access control entity and method for controlling access of user equipment |
| CN103548376A (en) * | 2011-05-23 | 2014-01-29 | 瑞典爱立信有限公司 | Implementing EPC in a cloud computer with OPENFLOW data plane |
| CN104105086A (en) * | 2013-04-11 | 2014-10-15 | 中兴通讯股份有限公司 | Selection method and device of Prose Server, and user registration method and device |
| WO2014169950A1 (en) * | 2013-04-16 | 2014-10-23 | Nokia Solutions And Networks Oy | Mobility management entity (mme) triggered detach and re-attach to a specific target mme |
| CN103686649A (en) * | 2013-12-26 | 2014-03-26 | 上海粱江通信系统股份有限公司 | Region communication management and control system and method based on wireless network and core network interface signaling |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108206748A (en) * | 2016-12-19 | 2018-06-26 | 普天信息技术有限公司 | A kind of core net backup method applied to TD-LTE internet of things service isolation environments |
| CN108206748B (en) * | 2016-12-19 | 2021-01-15 | 普天信息技术有限公司 | Core network backup method applied to TD-LTE (time division-Long term evolution) Internet of things service isolation environment |
| CN108616956A (en) * | 2017-01-16 | 2018-10-02 | 普天信息技术有限公司 | A kind of method that business is isolated in electric power wireless private network |
| CN108616956B (en) * | 2017-01-16 | 2020-10-20 | 普天信息技术有限公司 | Method for service isolation in electric power wireless private network |
| WO2020151696A1 (en) * | 2019-01-21 | 2020-07-30 | 华为技术有限公司 | Method, device, and system for increasing cross-network access security |
| CN114269004A (en) * | 2020-09-16 | 2022-04-01 | 中国电信股份有限公司 | Attachment method and communication method of terminal of Internet of things and corresponding system |
| CN114269004B (en) * | 2020-09-16 | 2024-01-30 | 中国电信股份有限公司 | Attachment method and communication method of terminal of Internet of things and corresponding system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105991515B (en) | 2019-04-19 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11224084B2 (en) | Method for registering terminal in wireless communication system and apparatus therefor | |
| WO2018166306A1 (en) | Core network control plane device selection method and apparatus | |
| CN110365727B (en) | Communication method and related device | |
| EP3668134A1 (en) | Wireless communication method, network device, and terminal device | |
| CN104067664B (en) | Connection control method, base station, user equipment and mobile management entity | |
| US9408231B2 (en) | Extended access barring mechanisms for machine type communications | |
| CN109041136A (en) | A kind of method and AMF entity for being inserted into SMF | |
| CN104272806B (en) | Special block and escape order | |
| CN108307695A (en) | Network node, wireless device and method therein for manipulating the radio access network in cordless communication network (RAN) contextual information | |
| WO2016107886A1 (en) | Celular handover | |
| CN110913439A (en) | Network element selection method and device | |
| CN110431860A (en) | Cellular telecommunication network | |
| CN104244376B (en) | Multi-core network access selection method in a kind of TD LTE systems | |
| CN106488538B (en) | Special network selection method, terminal, access network node and core network node | |
| CN105991515A (en) | Implementation method for service isolation of communication system, terminal and base station | |
| CN104641681A (en) | Communication system and communication control method | |
| WO2016177106A1 (en) | Dedicated core network selection method and device | |
| EP3648512B1 (en) | Method for processing session in wireless communication, and terminal device | |
| CN111147422B (en) | Method and device for controlling connection between terminal and network | |
| CN109792599B (en) | Session management method and network element | |
| CN105847035A (en) | Virtualization EPC (Evolved Packet Core) system and service instantiation method | |
| CN107079047A (en) | The apparatus and method that domain for network assistance is selected | |
| CN106063321B (en) | A kind of user equipment migration method, equipment of the core network, access network equipment and system | |
| CN109392082A (en) | Message method and device, terminal, access and mobility management entity | |
| CN107182045B (en) | Method and device for mobility management of communication network system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20190419 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |