The content of the invention
For problem of the prior art, restoration methods are restarted the invention provides a kind of evolution block core.
To reach above-mentioned purpose, the technical proposal of the invention is realized in this way:
A kind of evolution block core restarts restoration methods, and a database is created first, and the database is used to store terminal
Context, the terminal contexts include but is not limited to EPS Mobility Management context and EPS session management contexts, evolution point
Group core possesses access limit to the database;When each evolution block core restarts initialization, the database is read related
List item is into the context of counterpart terminal, while in evolution block core, from the database relevant entries read it is all
GUTI be restart before it is legal use GUTI set, it is described restart before it is legal use GUTI set in GUTI be not assigned to
The terminal newly accessed below.
Moreover, after terminal is successfully attached to the evolution block core for the first time, will be whole in the evolution block core
End contextual information record is inserted into database table entry, it is ensured that evolution block core with database terminal contexts it is same
Step.
Moreover, when any renewal occur for terminal contexts, terminal contexts in evolution block core being updated and arrive data
In the list item of storehouse, it is ensured that the evolution block core with the database terminal contexts it is synchronous.
Moreover, when cancellation occurs for terminal, by the corresponding record of the terminal contexts of the terminal from corresponding database table entry
It is middle delete, it is ensured that evolution block core with database terminal contexts it is synchronous.
Moreover, after the evolution block core is restarted for some reason, when certain terminal initiates attach request and carries NAS integrality
When protecting security header, the identity carried by the terminal is searched whether in the terminal contexts of the evolution block core
There is the terminal, if can find and Non-Access Stratum integrity protection check success, just ensure the peace of the terminal
Full context and the evolution block core are consistent, and terminal need not do authentication security flow.
Moreover, after the evolution block core is restarted for some reason, when certain terminal initiates attach request and carries NAS integrality
When protecting security header, the identity carried by the terminal is searched whether in the terminal contexts of the evolution block core
There is the terminal, if can find and Non-Access Stratum integrity protection check success, just ensure the peace of the terminal
Full context and the evolution block core are consistent, and terminal need not do authentication security flow.
Moreover, after the evolution block core is restarted for some reason, when certain terminal launch position, which updates, asks, passing through the terminal
The identity of carrying searches whether there is the terminal in the terminal contexts of the evolution block core, if can find
And NAS integrity protection check is successful, the safe context and the evolution block core side for just ensuring the end side are
Consistent, the terminal need not do authentication security flow.
Moreover, after the evolution block core is restarted for some reason, when certain terminal initiates service request, being taken by the terminal
The identity service Temporary Mobile Subscriber Identity of band searches whether exist in the terminal contexts of the evolution block core
The terminal, if can find and Non-Access Stratum integrity protection check's success, above and below the safety for just ensuring the end side
Literary is consistent with the evolution block core side, and the terminal need not do authentication security flow.
Moreover, after the evolution block core is restarted for some reason, when certain terminal initiates attachment removal request, passing through the terminal
The identity of carrying searches whether there is the terminal in the terminal contexts of the evolution block core, if can find
And integrity protection check's success of Non-Access Stratum, just ensures the safe context and the evolution block core of the end side
Side is consistent, and the terminal is need not to do authentication security flow.
Based on above technical scheme, evolution block core of the present invention breaks down restart after, it is normal to having carried out before restarting
The terminal accessed reduces the access delay of terminal without doing IMSI inquiries, authentication and safe procedures again, reduces IMSI and lets out
Reveal possibility, be unaware to restarting for EPC for terminal, while GUTI duplicate allocation can be avoided, in the communications field
With important market value.
Embodiment
In order to make the purpose , technical scheme and advantage of the present invention be clearer, it is right below in conjunction with drawings and Examples
The present invention is further elaborated.It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, and
It is not used in the restriction present invention.
As shown in figure 1, the invention discloses a kind of method that evolution block core restarts recovery, this method includes:
A database (102 in such as figure) is created first, and the database is used to store UE contexts, the UE contexts bag
Include but be not limited to EPS Mobility Management (EPS Mobility Management, EMM) context and EPS session managements (EPS
Session Management, ESM) context, the database can access and with access limit by EPC (101 in such as figure), often
When the secondary EPC restarts initialization, the reading database relevant entries are all to be recorded in EPC in the context of corresponding UE,
Simultaneously in EPC, all GUTI read from the database relevant entries are the legal GUTI set used before restarting,
It is described restart before in the legal GUTI set used GUTI can't distribute to the UE that newly accesses below, so can be from basic
On avoid same GUTI distributing to multiple UE.
Then in EPC is normally run, after UE is successfully attached to the EPC for the first time, by described in the EPC on UE
Hereinafter (including but is not limited to EMM contexts and ESM contexts, as follows), information record is inserted into the database table entry
In;When the UE contexts update, by UE updating contexts described in the EPC into database table entry;When UE hairs
During raw cancellation, the corresponding record of the UE contexts of the UE is deleted from affiliated database table entry.
So after the EPC is restarted for some reason, when certain UE initiates attach request (Attach Request) and carries NAS's
During integrity protection security's head, the identity (IMSI or GUTI) carried by the UE is looked into the UE contexts of the EPC
Look for the presence or absence of the UE, if can find and Non-Access Stratum integrity protection check's success, then just can ensure that institute
The safe context and the EPC for stating UE are consistent, therefore the UE need not do authentication security flow, therefore can be greatly reduced
Access delay.
So after the EPC is restarted for some reason, when certain UE launch position updates request (Tracking Area Update
When Request), the identity GUTI or IMSI carried by the UE is searched whether in the UE contexts of the EPC
In the presence of the UE, if can find and NAS integrity protection check success, then above and below the safety that just can ensure that the UE sides
Literary is consistent with the EPC sides, therefore the UE need not do authentication security flow, therefore can greatly reduce access delay.
So after the EPC is restarted for some reason, when certain UE initiates service request (Service Request), by this
Identity service Temporary Mobile Subscriber Identity (the Serving-Temporary Mobile Subscriber that UE is carried
Identity, S-TMSI) search whether there is the UE in the UE contexts of the EPC, if can find and non-
Access Layer integrity protection check success, then the safe context and the EPC sides that just can ensure that the UE sides be it is consistent,
Therefore the UE need not do authentication security flow, therefore access delay can be greatly reduced.
So after the EPC is restarted for some reason, when certain UE initiates attachment removal request (Detach Request), and UE hairs
The situation for playing attach request (Attach Request) is similar, and the identity GUTI or IMSI carried by the UE is described
Searched whether in the EPC UE contexts exist the UE, if can find and Non-Access Stratum integrity protection check
Success, then the safe context and the EPC sides that just can ensure that the UE sides are consistent, therefore the UE is need not to do authentication security
Flow, therefore the access delay that the UE initiates attachment next time can be greatly reduced.
So after the EPC is restarted for some reason, the GUTI that the EPC had been distributed before restarting can't be reassigned to newly
The UE of access, so can fundamentally avoid same GUTI distributing to multiple UE.
So after the EPC is restarted for some reason, for the successful UE of integrity protection check of Non-Access Stratum, it is not required to initiate
IMSI inquiry, so as to reduce IMSI leakage possibilities.
Accessed for the first time after EPC is restarted to illustrate how the present invention reduces the terminal being successfully accessed before EPC is restarted
Time delay, the processing strategy of the embodiment of the present invention described in detail below.
The attach request initiated for UE, the process step of the embodiment of the present invention is as follows:
Step 201:UE initiates attach request, performs step 202.
Step 202:Can judge by the identity (GUTI or IMSI) that carries in UE attach requests NAS message
Corresponding UE contexts are found in EPC, the information such as configuration, the state of the terminal of EPC internal records are obtained, if can search
To step 204 is then performed, step 203 is otherwise performed.
Step 203:Attachment refuse information is sent to UE, then terminates handling process.
Step 204:Judge whether attach request NAS message carries the complete heads that ensure safety of NAS, if the execution step 205 without if,
If then judging whether by safety check, step 206 is then performed by safety check, step 205 is otherwise performed.
Step 205:To UE initiate authentication security flow, after the completion of perform step 206.
Step 206:UE contexts are set up, i.e., is that the terminal sets up context according to agreement flow base station, performs step
207。
Step 207:Judge whether UE context changes, be then to perform step 208, otherwise terminate handling process.
For example, the interior preservation UE contexts of EPC are respectively attribute 1, attribute 2 .. attribute n, then be that each attribute is set
One is changed mark:Attribute 1 changes mark, attribute 2 and changes mark, and .. attributes n changes mark.
In step 201 to step 206, if some attribute n has change, then corresponding attribute n changes mark and is set to
1, all it is 0 if all of attribute change mark, that is, is judged as NO and (UE contexts is preserved in EPC without change), if at least
One attribute, which is changed, is designated 1, that is, needing execution step 208, (the UE contexts of the UE are written to the database, then will be all
Attribute is changed mark and reset).
Step 208:The UE contexts of the UE are written in the database, then terminate handling process.
The service request initiated for UE, the process step of the embodiment of the present invention is as follows:
Step 301:UE initiates service request, performs step 302.
Step 302:Judge that can the identity (S-TMSI) that carried by UE service requests find accordingly in EPC
UE contexts, obtain the information such as configuration, the state of the terminal of EPC internal records, step performed if it can find
304, otherwise perform step 303.
Step 303:Service Reject message is sent to UE, then terminates handling process.
Step 304:Judge that service request NAS message, whether by safety check, if it is performs step 305, otherwise
Perform step 303.
Step 305:UE contexts are set up, step 306 is performed.
Step 306:Judge whether UE context changes, be then to perform step 307, otherwise terminate handling process.
For example, the interior preservation UE contexts of EPC are respectively attribute 1, attribute 2 .. attribute n, then be that each attribute is set
One is changed mark:Attribute 1 changes mark, attribute 2 and changes mark, and .. attributes n changes mark.
In step 301 to step 305, if some attribute n has change, then corresponding attribute n changes mark and is set to
1, all it is 0 if all of attribute change mark, that is, is judged as NO and (UE contexts is preserved in EPC without change), if at least
One attribute, which is changed, is designated 1, that is, needing execution step 307, (the UE contexts of the UE are written to the database, then will be all
Attribute is changed mark and reset).
Step 307:The UE contexts of the UE are written in the database, then terminate handling process.
The position updating request initiated for UE, the process step of the embodiment of the present invention is as follows:
Step 401:UE launch positions update request, perform step 402.
Step 402:Judge that can the identity (GUTI) that carried by UE service requests find accordingly in EPC
UE contexts, obtain the information such as configuration, the state of the terminal of EPC internal records, and step 404 is performed if it can find,
Otherwise step 403 is performed.
Step 403:Location updating refuse information is sent to UE, then terminates handling process.
Step 404:Judge that position updating request NAS message, whether by safety check, if it is performs step 405,
Otherwise step 403 is performed.
Step 405:Location updating is sent to UE to receive, and then performs step 406.
Step 406:Judge whether to need to set up in position updating request NAS message to carry, be then to perform step 408, it is no
Then perform step 407.When it is implemented, there is individual bit indicating bit Active flag to be used to indicate network side in TAU NAS messages
Whether the foundation of the carrying of recovery terminal is needed:Active flag are that 1 mark network side needs to recover to set up;Active flag
Need not for 0.
Step 407:The context of the UE is discharged, step 409 is then performed.
Step 408:UE contexts are set up, step 409 is performed.
Step 409:Judge whether UE context changes, be then to perform step 410, otherwise terminate handling process.
For example, the interior preservation UE contexts of EPC are respectively attribute 1, attribute 2 .. attribute n, then be that each attribute is set
One is changed mark:Attribute 1 changes mark, attribute 2 and changes mark, and .. attributes n changes mark.
In step 401 to step 408, if some attribute n has change, then corresponding attribute n changes mark and is set to
1, all it is 0 if all of attribute change mark, that is, is judged as NO and (UE contexts is preserved in EPC without change), if at least
One attribute, which is changed, is designated 1, that is, needing execution step 410, (the UE contexts of the UE are written to the database, then will be all
Attribute is changed mark and reset).
Step 410:The UE contexts of the UE are written in told database, then terminate handling process.