CN107770067A - Message method and device - Google Patents

Message method and device Download PDF

Info

Publication number
CN107770067A
CN107770067A CN201610708954.7A CN201610708954A CN107770067A CN 107770067 A CN107770067 A CN 107770067A CN 201610708954 A CN201610708954 A CN 201610708954A CN 107770067 A CN107770067 A CN 107770067A
Authority
CN
China
Prior art keywords
message
modules
dep
communication message
identification information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201610708954.7A
Other languages
Chinese (zh)
Other versions
CN107770067B (en
Inventor
范军
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN201610708954.7A priority Critical patent/CN107770067B/en
Priority to PCT/CN2017/098628 priority patent/WO2018036514A1/en
Publication of CN107770067A publication Critical patent/CN107770067A/en
Application granted granted Critical
Publication of CN107770067B publication Critical patent/CN107770067B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/302Route determination based on requested QoS
    • H04L45/304Route determination for signalling traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L51/00User-to-user messaging in packet-switching networks, transmitted according to store-and-forward or real-time protocols, e.g. e-mail

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention provides a kind of message method and device.Wherein, this method includes:When VNF is in elastic capacity reducing, if receiving the communication message of network element, the type of message of communication message is obtained;Type of message based on communication message determines the target DEP modules for handling communication message;Communication message is sent to target DEP modules.The present invention is solved in correlation technique due to the technical problem that message forwarding can not be correctly carried out caused by VNF elastic capacity reducing characteristic.

Description

Message method and device
Technical field
The present invention relates to the communications field, in particular to a kind of message method and device.
Background technology
According to RFC3588 (Request For Comments, referred to as RFC, be it is a series of to number the file that is ranked, The relevant Internet relevant information of file collection, and UNIX and the software document of the Internet community) description Diameter bases Plinth protocol function, and related application agreement is extended, Diameter systems are 3GPP (3rd Generation Partnership Project, 3GPP target are to realize seamlessly transitting by 2G networks to 3G network, ensure WeiLai Technology Backwards compatibility, the roaming between light networking and system and compatibility are supported, the version such as including R5, R6, R7, R8, R9) IMS (IP Multimedia Subsystem, IP multimedia subsystem) HSS (Home Subscriber Server, ownership signing in system Client server), SLF (Super Low Frequency, ultralow frequency), SPR (Subscription Profile Repository, user property memory), the related network elements such as EPC (Evolved Packet Core, 4G core network) provide Diameter message is received and dispatched, the function services such as relaying.
System (i.e. TCP/SCTP layers, Transmission Control Protocol, passes transport control protocol using transport layer View, Stream Control Transmission Protocol, SCTP) data transport service that provides is to right Deng Diameter entities send Diameter message, the Diameter message received is sent to operation layer, there is provided link pipe The mechanism such as reason and transaction layer re-transmission, ensure the reliability of Signaling Layer.
According to Diameter, main function of system includes connection management function, transaction management function, session management work( Energy.According to the functional requirement of system, system can be made to following functional hierarchy division:
(1) DAP modules (Diameter Access Point), the Access Control of abutment points in Diameter networks is completed, Bearer management function;
(2) DEP modules (Diameter Executive Point), defined in Diameter and business is completed Related logic perform function, including transaction management, session management, Relay/Redirect (relaying redirects) etc..
Connection management module of the DAP modules as Diameter stack, it is main to be responsible for completing Diameter abutment points Access Control and bearer management function.DAP modules receive the message from SCTP/TCP layers, if request message is then according to one Fixed distribution policy is sent to corresponding DEP modules, if response message is then sent directly to the DEP where its request message Module.
After planization introduces VNF (Virtual Network Feature, virtual network function) elastic telescopic characteristic, when During Diameter business execution module capacity reducings in VNF, because the state of DEP modules changes, cause DAP modules can not be just Really carry out the distribution of message.
For in correlation technique because the technology that message forwarding can not be correctly carried out caused by VNF elastic capacity reducing characteristic is asked Topic, not yet proposes effective solution at present.
The content of the invention
The embodiments of the invention provide a kind of message method and device, at least to solve in correlation technique due to VNF Elastic capacity reducing characteristic caused by can not correctly carry out the technical problem of message forwarding.
One side according to embodiments of the present invention, there is provided a kind of message method, this method include:At VNF When elastic capacity reducing, if receiving the communication message of network element, the type of message of communication message is obtained;Disappearing based on communication message Breath type determines the target DEP modules for handling communication message;Communication message is sent to target DEP modules.
Further, obtaining the type of message of communication message includes:Obtain the identification information carried in communication message;Pass through Identification information determines the type of message of communication message.
Further, obtaining the identification information carried in communication message includes:Payload fields in communication message are obtained to take The identification information of band.
Further, the type of message for determining communication message by identification information includes:Judge whether to believe with mark Session connection corresponding to breath, wherein, the session connection corresponding with identification information is the session connection belonging to communication message;If in the presence of The session connection corresponding with identification information, it is determined that the type of message of communication message is non-originating information;If it is not present and mark Session connection corresponding to information, it is determined that the type of message of communication message is originating information.
Further, the type of message based on communication message determines to include for handling the target DEP modules of communication message: In the case where the type of message of communication message is non-originating information, it is determined that the DEP modules for being associated with session connection are target DEP Module;In the case where the type of message of communication message is originating information, it is target DEP to choose one in multiple DEP modules Module, wherein, multiple DEP modules are that the DEP modules of capacity reducing are not allowed in preset time period.
Further, identification information is data message, and one chosen in multiple DEP modules includes for target DEP modules: Determine the number of modules of multiple DEP modules;Complementation is carried out to identification information using number of modules, obtains mark data;Obtain more The target DEP modules of order and identification data matches in individual DEP modules, and associated objects DEP modules and session connection.
Further, network element includes 3GPP AAA SERVER network elements.
Other side according to embodiments of the present invention, there is provided a kind of message dispensing device, the device include:Obtain single Member, for when VNF is in elastic capacity reducing, if receiving the communication message of network element, obtaining the type of message of communication message;Really Order member, the target DEP modules for handling communication message are determined for the type of message based on communication message;Transmitting element, For sending communication message to target DEP modules.
Further, acquiring unit includes:Acquisition module, for obtaining the identification information carried in communication message;First Determining module, for determining the type of message of communication message by identification information.
Further, acquisition module is additionally operable to obtain the identification information that Payload fields carry in communication message.
Further, the first determining module includes:Judging submodule, it is corresponding with identification information for judging whether Session connection, wherein, the session connection corresponding with identification information is the session connection belonging to communication message;First determines submodule Block, if in the presence of the session connection corresponding with identification information, it is determined that the type of message of communication message is non-originating information;The Two determination sub-modules, if in the absence of the session connection corresponding with identification information, it is determined that the type of message of communication message is Originating information.
Further, it is determined that unit includes:Second determining module, disappear for the type of message in communication message for non-originate In the case of breath, it is determined that the DEP modules for being associated with session connection are target DEP modules;Module is chosen, in communication message In the case that type of message is originating information, it is target DEP modules to choose one in multiple DEP modules, wherein, multiple DEP Module is that the DEP modules of capacity reducing are not allowed in preset time period.
Further, identification information is data message, and choosing module includes:3rd determination sub-module, it is multiple for determining The number of modules of DEP modules;Computing submodule, for carrying out complementation to identification information using number of modules, obtain mark data; Acquisition submodule, for obtaining the target DEP modules of order and identification data matches in multiple DEP modules, and associated objects DEP Module and session connection.
Further, network element includes 3GPP AAA SERVER network elements.
According to another embodiment of the invention, there is provided a kind of storage medium, storage medium can be configured to store For performing the program code of following steps:When VNF is in elastic capacity reducing, if receiving the communication message of network element, obtain The type of message of communication message;Type of message based on communication message determines the target DEP modules for handling communication message;Hair Communication message is sent to target DEP modules.
In embodiments of the present invention, when VNF is in elastic capacity reducing, if receiving the communication message of network element, obtain logical Interrogate the type of message of message;Type of message based on communication message determines the target DEP modules for handling communication message;Send Communication message is to target DEP modules, so as to solve in correlation technique due to can not be correct caused by VNF elastic capacity reducing characteristic The technical problem of message forwarding is carried out, realizes and the correct technique effect for carrying out message forwarding still is able in elastic capacity reducing.
Brief description of the drawings
Accompanying drawing described herein is used for providing a further understanding of the present invention, forms the part of the application, this hair Bright schematic description and description is used to explain the present invention, does not form inappropriate limitation of the present invention.In the accompanying drawings:
Fig. 1 is the schematic diagram of terminal according to embodiments of the present invention;
Fig. 2 is the flow chart of message forwarding according to embodiments of the present invention;
Fig. 3 is the flow chart of message method according to embodiments of the present invention;
Fig. 4 is the schematic diagram of Diameter logical architectures according to embodiments of the present invention;
Fig. 5 is the schematic diagram of message dispensing device according to embodiments of the present invention.
Embodiment
Describe the present invention in detail below with reference to accompanying drawing and in conjunction with the embodiments.It should be noted that do not conflicting In the case of, the feature in embodiment and embodiment in the application can be mutually combined.
It should be noted that term " first " in description and claims of this specification and above-mentioned accompanying drawing, " Two " etc. be for distinguishing similar object, without for describing specific order or precedence.
Embodiment 1
The embodiment of the method that the embodiment of the present application one is provided can be in mobile terminal, terminal or similar fortune Calculate and performed in device.Exemplified by running on computer terminals, as shown in figure 1, terminal can include one or more (processor 101 can include but is not limited to Micro-processor MCV or programmable logic device to (one is only shown in figure) processor 101 Part FPGA etc. processing unit), the memory 103 for data storage and the transmitting device 105 for communication function.This Field those of ordinary skill is appreciated that the structure shown in Fig. 1 is only to illustrate, and it is not caused to the structure of above-mentioned electronic installation Limit.
Memory 103 can be used for the software program and module of storage application software, such as the equipment in the embodiment of the present invention Control method corresponding to programmed instruction/module, processor 101 by operation be stored in software program in memory 103 with And module, so as to perform various function application and data processing, that is, realize above-mentioned method.Memory may include random at a high speed Memory, nonvolatile memory is may also include, such as one or more magnetic storage device, flash memory or other are non-volatile Property solid-state memory.In some instances, memory can further comprise relative to the remotely located memory of processor, these Remote memory can pass through network connection to terminal.The example of above-mentioned network includes but is not limited to internet, enterprise In-house network, LAN, mobile radio communication and combinations thereof.
For example, memory can store the program code of following steps:When VNF is in elastic capacity reducing, if receiving net The communication message of member, then obtain the type of message of communication message;Type of message based on communication message determines to be used to handle communication The target DEP modules of message;Communication message is sent to target DEP modules.
Transmitting device is used to data are received or sent via a network.Above-mentioned network instantiation may include to calculate The wireless network that the communication providerses of machine terminal provide.In an example, transmitting device includes a network adapter (Network Interface Controller, NIC), its can be connected by base station with other network equipments so as to interconnection Net is communicated.In an example, transmitting device can be radio frequency (Radio Frequency, RF) module, and it is used to pass through Wireless mode is communicated with internet.
Whether trusted is not network characteristic to Non-3GPP access networks, if dynamic decides whether trusted then in access authentication When handle.Instruction is handed down to access network, DER (Diameter-EAP-Request) flow chart such as Fig. 2 by AAA Server It is shown:
After step S201, UE associate with credit Non-3GPP access gatewaies (access) foundation, UE connects to Non-3GPP Function Access Gateway sends EAPoL-Start, initiates authentication request.
Step S202, Non-3GPP access gateway send EAP-Request/Identity message to UE.
Step S203, UE return to EAP-Response/Identity message, and its User Identity letter is sent to network Breath, identity can be pseudorandom NAI or permanent NAI (local without available pseudorandom NAI).
Step S204, Non-3GPP access gateway uses EAP messages the EAP-payload of DIAMETER DER message AVP is encapsulated and Identity is placed in the User-Name AVP of DIAMETER DER message, is sent to 3GPP AAA Server。
Step S205,3GPP AAA Server need to do following processing after receiving DEA message:
(1) conducted a compulsory examination under non-roaming situation the validity of ANID (adjacent net network identifier) (as defined in the range of 3GPP) And decide whether to allow the ANID to access according to being locally configured;Basis, which is locally configured, under roaming condition decides whether to check ANID, if necessary to check ANID, then basis, which is locally configured, decides whether to allow the ANID to access.
(2) trusted or untrusted is judged.
(3) selection of authentication arithmetic.EAP-AKA ' algorithms are used if DIAMETER DER carry ANID, are otherwise made With EAP-AKA algorithms.
Step S206,3GPP AAA Server send DIAMETER DER message request permanent subscribers ID to access network.
Step S207, access network forward DER message to UE.
Step S208, UE carry permanent NAI (Network Access Identifiers using EAP-Response/AKA-Identity message Symbol) responded.
Step S209, credit Non-3GPP access gateway forwarding EAP-Response/AKA-Identity message carry forever Long NAI to 3GPP AAA Server, EAP messages are encapsulated in the EAP-payload AVP of DER message.
Step S210,3GPP AAA Server check locally whether cache available authentication vector according to NAI, if do not had Have and then send MAR (Multimedia Auth Request) requests to HSS, (n can configure acquisition request n groups authentication vector, take It is worth scope 1~5).
Step S211, the information process between AAA and HSS is referring to the description of Related Art of SWx interfaces, herein only work done Energy property description, HSS response 3GPP AAA Server authentication requests, issue n groups authentication five-tuple.
Step S212,3GPP AAA Server check the local signing information that whether there is user.If it is not, AAA SAR requests (AAA_USER_DATA_REQUEST), which are initiated, to HSS obtains user signing contract information.
Step S213, the processing between AAA and HSS refer to SWx interfaces, only make functional descriptions herein, and HSS is to 3GPP AAA Server return to SAA responses.
Step S214, AAA server need to do following processing:
(1) judge whether that needs regenerate random assumed name;
(2) TEKs (master key MK, authentication password k_encr, encapsulation key k_aut, master session key are generated according to algorithm MSK, extended master session key EMSK) and MAC;
(3) the EAP playload parameters that 3GPP AAA Server are sent include ANID, RAND, AUTN (ANID, RAND, AUTN is the part in authentication four-tuple), a message authentication code (MAC) and 2 users identify and connect to credit Non-3GPP Function Access Gateway, EAP messages are encapsulated in DIAMETER DEA message.If necessary to dynamically determine that IP Move Modes or configuration are supported Notification message then carries AT_RESULT_IND attributes in EAP-Payload AVP, and step S205 is determined AT_TRUST_IND property values (TRUSTED) are handed down to UE.
Step S215, credit Non-3GPP access gateway send out EAP-Request/AKA-Challenge message to UE.
UMTS (Universal Mobile Telecommunications System) algorithm in step S216, UE operation USIM (Global Subscriber identification card).USIM Verify AUTN and accordingly certification network.If AUTN authentication errors, terminal then refuses authentication (not showing in this example).If Sequence number authentication failed, terminal initiate synchronizing process.
Step S217, credit Non-3GPP access gateway send EAP-Response/AKA-Challenge messages to 3GPP AAA Server, EAP messages are encapsulated in DIAMETER DER message.
(MAC, MAC are the keys according to secret to the message authentication code that step S218,3GPP AAA Server inspections receive With the data of transmission calculate to prevent message to be destroyed), compare XRES (Expected user Response, it is contemplated that User response) and receive RES (actual user's response).If all inspections are all successful, and the DER requests received are with result guarantor Finger shield shows that then 3GPP AAA Server must send EAP-Request/AKA- before EAP Success message is sent Notification message, if dynamic determines that IP Move Modes then need to issue down AT_IPMS_RES attributes.EAP Message is encapsulated in DIAMETER DEA message and protected with MAC.
Step S219, credit Non-3GPP access gateway forward EAP message to UE.
Step S220, UE send EAP-Response/AKA-Notification.
Step S221, credit Non-3GPP access gateway send EAP-Response/AKA-Notification message to 3GPP AAA Server, EAP messages are encapsulated in DIAMETER DER message.3GPP AAA Server must ignore the message Content.
Step S222, it is necessary to update the key changed in authentication process after authenticating successfully.AAA business modules store to AAA Module initiates LDAP (Lightweight Directory Access Protocol, Light Directory Access Protocol) write request, more New MSK, MSK-Timeout, discrimination weight ID and discrimination weight ID counters, random assumed name (if regenerating) and pseudo- mark ID meters Number device (if changing), will also update EMSK.
After step S223, AAA memory module updates the data, LDAP responses are returned to AAA business modules.
Step S224,3GPP AAA Server check whether user is allowed to use Non-3GPP accesses, whether allows to make With APN5591055910s, RAT-Type of signing whether in user contracts the RAT lists that allow, check whether user contracts The APN5591055910 of institute band in DER requests, check and connect by then transmission EAP Success message to credit Non-3GPP Function Access Gateway (may being described before EAP-Notification is sent referring to the 23rd step) is authorized.
Step S225, credit Non-3GPP access gatewaies are authenticated successfully by EAP Success message informings UE.So far, EAP-AKA ' interactions are successfully completed.
Step S226, AAA server carry NAI (IMSI) and service distribution type (REGISTRATION) is sent out to HSS Play registration request.
Step S227, it is REGISTERED that HSS, which sets User Status, then carries user related data to AAA server Initiate SAA underthrust data.
In above-mentioned steps, DER message (i.e. Diameter-EAP-Request Command) mainly includes following field, The implication of each field is as shown in table 1:
{Auth-Request-Type}
{EAP-Payload}
[User-Name]
*[AVP]
Table 1
It should be noted that for Diameter upstream messages, when DAP modules are to DEP module dispatch messages, according to DEP module status judges whether to give this DEP module dispatch messages.After planization introduces VNF elastic telescopic characteristics, when in VNF Diameter business execution module capacity reducings when, in order to not allow the business newly initiated of DEP resume modules opposite end for preparing capacity reducing to disappear Breath, can shift to an earlier date this DEP modular filtration to fall when DAP modules are to DEP module dispatch messages.
And it is according to the sess ion (reply connection) carried in message during DAP module dispatch messages and is currently running DEP modules select suitable DEP modules.The DER message (i.e. communication message) of 3GPP AAA SERVER network elements has one The scene of multiple interacting message under session, if according to the distribution plan of DAP modules above during DEP modules offline (i.e. capacity reducing) Slightly, can cause DAP modules will not again remaining DER message distributions under the session to the DEP modules for originally handling the message, Cause the call loss of DER message.
In order to overcome above mentioned problem, according to embodiments of the present invention, there is provided a kind of embodiment of the method for message method, It should be noted that can be in the department of computer science of such as one group computer executable instructions the flow of accompanying drawing illustrates the step of Performed in system, although also, show logical order in flow charts, in some cases, can be with different from herein Order perform shown or described step.
Fig. 3 is the flow chart of message method according to embodiments of the present invention, as shown in figure 3, this method is including as follows Step:
Step S301, when VNF is in elastic capacity reducing, if receiving the communication message of network element, obtain communication message Type of message.
Step S302, the type of message based on communication message determine the target DEP modules for handling communication message.
Step S303, communication message is sent to target DEP modules.
By above-described embodiment, when VNF is in elastic capacity reducing, if receiving the communication message of network element, communication is obtained The type of message of message;Type of message based on communication message determines the target DEP modules for handling communication message;Send logical Message is interrogated to target DEP modules, so as to solve in correlation technique due to can not correctly enter caused by VNF elastic capacity reducing characteristic The technical problem of row message forwarding, realize and the correct technique effect for carrying out message forwarding still is able in elastic capacity reducing.
The framework of the running environment of the application method mainly includes as shown in figure 4, in Diameter logical architecture figures DEP modules (session and transaction management module and its main backup module), DAP modules (connection management module and its main backup module), DIM Data transmission module (Diameter Data Transport Point, referred to as DIP modules), platform adaption module, public mould Block/PARSER modules, OAM service modules (Operation Administration and Maintenance, namely Diameter operation management maintainances module).
Above-mentioned DIP modules include LREG modules, and (Diameter Local Registry, namely Diameter are locally noted Volume node) and its preparation module, DTP modules, GREG modules (Diameter Global Registry, namely Diameter are complete Office's register node) and its main backup module.
Alternatively, the executive agent of above-mentioned steps can be to carry adaptation module DAP etc., but not limited to this.Above-mentioned net Member includes 3GPP AAA SERVER network elements;Above-mentioned communication message can be the DER message of 3GPP AAA SERVER network elements (Diameter-EAP-Request)。
In the above-described embodiments, in step S301, obtaining the type of message of communication message includes:Obtain in communication message The identification information of carrying;The type of message of communication message is determined by identification information.
Specifically, obtaining the identification information carried in communication message includes:Payload fields in communication message are obtained to carry Identification information;The type of message for determining communication message by identification information includes:Judge whether corresponding with identification information Session connection, wherein, the session connection corresponding with identification information be communication message belonging to session connection;If in the presence of with mark Session connection corresponding to information, it is determined that the type of message of communication message is that (i.e. the n-th message of session, N are big for non-originating information In 1);If in the absence of the session connection corresponding with identification information, it is determined that the type of message of communication message is originating information (session First time message).
Alternatively, in step s 302, the type of message based on communication message determines the target for handling communication message DEP modules include:In the case where the type of message of communication message is non-originating information, it is determined that being associated with the DEP of session connection Module is target DEP modules;In the case where the type of message of communication message is originating information, choose in multiple DEP modules One is target DEP modules, wherein, multiple DEP modules are that the DEP modules of capacity reducing are not allowed in preset time period.
It should be noted that identification information is data message, it is target DEP modules to choose one in multiple DEP modules Including:Determine the number of modules of multiple DEP modules;Complementation is carried out to identification information using number of modules, obtains mark data;Obtain Take the target DEP modules of order and identification data matches in multiple DEP modules, and associated objects DEP modules and session connection.
Specifically, when the present processes can be applicable to 3GPP AAA SERVER network element VNF elastic telescopics under virtualization, During Diameter business execution module capacity reducings, the unbroken message distribution strategy of DER message.Its flow is specific as follows:
DAP modules decode to DER message when handling DER message, determine the Eap-payload in DER message (Extensible Authentication Protocol, abbreviation Eap) either with or without band eap-identity (i.e. response), Its distribution policy is as follows:
1, DAP is considered to answer if the Eap-payload in DER message is without band eap-identity (response) With the DER message (message i.e. in already-existing session connection) handled, DAP (is included and prepared offline according to old DEP modules DEP modules) distribution dispatch messages.
2, if the Eap-payload in DER message, with eap-identity (response), DAP is considered eventually The new service message initiated is held, DAP (removes the DEP modules for preparing capacity reducing) dispatch messages according to new DEP module distributions.
In the above-described embodiments, DER message is decoded by DAP modules, according to the Eap- in DER message Payload is either with or without determining whether right DER message is with eap-identity (i.e. Payload fields carry identification information) The originating information at end.If with eap-identity (response), then it is assumed that be originating information, according to new DEP modules Dispatch messages are distributed, are distributed after the DEP modules for preparing capacity reducing are removed.If not band eap-identity (response), then it is assumed that be DER intermediary message, according to old DEP module distribution dispatch messages, retain and prepare capacity reducing DEP modules are distributed, and can make the complete DER residues message of DEP resume modules of preparation capacity reducing, and are not handled opposite end network element and newly initiated DER message, meet service message unbroken requirement during DEP module capacity reducings.Solve to carry in 3GPP AAA SERVER network elements Diameter layers in DEP module capacity reducings when, call loss during the DER message of DAP resume modules be present, cause UE attachment flows to be lost Lose, the problem of user can not access 3GPP networks.
Whether Eap-payload of the DAP modules of Diameter systems in DER message carries eap- in the application Identity (response) is as shown in Figure 2 to determine the message distribution strategic process of DAP modules;
In step S202, the Diameter subsystems of 3GPP AAA Server carryings receive DER message, Diameter DAP modules when handling DER message, DER message is decoded, determines the Eap-payload in DER message either with or without band Eap-identity (response), its distribution policy are as follows:
1, DAP is considered to answer if the Eap-payload in DER message is without band eap-identity (response) With the DER message (message i.e. in already-existing session connection) handled, DAP (is included and prepared offline according to old DEP modules DEP modules) distribution dispatch messages.
2, if the Eap-payload in DER message, with eap-identity (response), DAP is considered eventually The new service message initiated is held, DAP (removes the DEP modules for preparing capacity reducing) dispatch messages according to new DEP module distributions.
Through the above description of the embodiments, those skilled in the art can be understood that according to above-mentioned implementation The method of example can add the mode of required general hardware platform to realize by software, naturally it is also possible to by hardware, but a lot In the case of the former be more preferably embodiment.Based on such understanding, technical scheme is substantially in other words to existing The part that technology contributes can be embodied in the form of software product, and the computer software product is stored in a storage In medium (such as ROM/RAM, magnetic disc, CD), including some instructions to cause a station terminal equipment (can be mobile phone, calculate Machine, server, or network equipment etc.) perform method described in each embodiment of the present invention.
Embodiment 2
A kind of message dispensing device is additionally provided in the embodiment of the present invention.The device be used for realize above-described embodiment and preferably Embodiment, repeating no more for explanation was carried out.As used below, term " module " can realize predetermined function The combination of software and/or hardware.Although device described by following examples is preferably realized with software, hardware, or The realization of the combination of person's software and hardware is also what may and be contemplated.
Fig. 5 is the schematic diagram of message dispensing device according to embodiments of the present invention.As shown in figure 5, the device can include: Acquiring unit 51, determining unit 52 and transmitting element 53.
Acquiring unit 51, for when VNF is in elastic capacity reducing, if receiving the communication message of network element, obtaining communication The type of message of message.
Determining unit 52, the target DEP moulds for handling communication message are determined for the type of message based on communication message Block.
Transmitting element 53, for sending communication message to target DEP modules.
By above-described embodiment, acquiring unit is when VNF is in elastic capacity reducing, if receiving the communication message of network element, Obtain the type of message of communication message;Type of message of the determining unit based on communication message determines the mesh for handling communication message Mark DEP modules;Transmitting element sends communication message to target DEP modules., so as to solve in correlation technique due to VNF bullet The technical problem of message forwarding can not be correctly carried out caused by property capacity reducing characteristic, realizes and still is able to correctly enter in elastic capacity reducing The technique effect of row message forwarding.
Above-mentioned network element includes 3GPP AAA SERVER network elements;Above-mentioned communication message can be 3GPP AAA SERVER The DER message (Diameter-EAP-Request) of network element.
In the above-described embodiments, acquiring unit includes:Acquisition module, for obtaining the mark carried in communication message letter Breath;First determining module, for determining the type of message of communication message by identification information.
Specifically, acquisition module is additionally operable to obtain the identification information that Payload fields carry in communication message.First determines Module includes:Judging submodule, for judging whether the session connection corresponding with identification information, wherein, with identification information Corresponding session connection is the session connection belonging to communication message;First determination sub-module, if in the presence of with identification information pair The session connection answered, it is determined that the type of message of communication message is non-originating information;Second determination sub-module, if for being not present The session connection corresponding with identification information, it is determined that the type of message of communication message is originating information.
Optionally it is determined that unit includes:Second determining module, for being non-originating information in the type of message of communication message In the case of, it is determined that the DEP modules for being associated with session connection are target DEP modules;Module is chosen, for disappearing in communication message In the case of ceasing type for originating information, it is target DEP modules to choose one in multiple DEP modules, wherein, multiple DEP moulds Block is the DEP modules that capacity reducing is not allowed in preset time period.
It should be noted that identification information is data message, choosing module includes:3rd determination sub-module, for determining The number of modules of multiple DEP modules;Computing submodule, for carrying out complementation to identification information using number of modules, identified Data;Acquisition submodule, for obtaining the target DEP modules of order and identification data matches in multiple DEP modules, and associate mesh Mark DEP modules and session connection.
It should be noted that above-mentioned modules can be realized by software or hardware, for the latter, Ke Yitong Cross in the following manner realization, but not limited to this:Above-mentioned module is respectively positioned in same processor;Or above-mentioned modules are with any The form of combination is located in different processors respectively.
Embodiment 3
Embodiments of the invention additionally provide a kind of storage medium.Alternatively, in the present embodiment, above-mentioned storage medium can The program code for performing following steps to be arranged to storage to be used for:
S1, when VNF is in elastic capacity reducing, if receiving the communication message of network element, obtain the message class of communication message Type;
S2, the type of message based on communication message determine the target DEP modules for handling communication message;
S3, communication message is sent to target DEP modules.
Alternatively, in the present embodiment, above-mentioned storage medium can include but is not limited to:USB flash disk, read-only storage (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), mobile hard disk, magnetic disc or CD etc. is various can be with the medium of store program codes.
Alternatively, in the present embodiment, processor performs according to the program code stored in storage medium:At VNF When elastic capacity reducing, if receiving the communication message of network element, the type of message of communication message is obtained;Disappearing based on communication message Breath type determines the target DEP modules for handling communication message;Communication message is sent to target DEP modules.
Alternatively, the specific example in the present embodiment may be referred to described in above-described embodiment and optional embodiment Example, the present embodiment will not be repeated here.
Obviously, those skilled in the art should be understood that above-mentioned each module of the invention or each step can be with general Computing device realize that they can be concentrated on single computing device, or be distributed in multiple computing devices and formed Network on, alternatively, they can be realized with the program code that computing device can perform, it is thus possible to they are stored Performed in the storage device by computing device, and in some cases, can be with different from shown in order execution herein The step of going out or describing, they are either fabricated to each integrated circuit modules respectively or by multiple modules in them or Step is fabricated to single integrated circuit module to realize.So, the present invention is not restricted to any specific hardware and software combination.
The preferred embodiments of the present invention are the foregoing is only, are not intended to limit the invention, for the skill of this area For art personnel, the present invention can have various modifications and variations.Within the spirit and principles of the invention, that is made any repaiies Change, equivalent substitution, improvement etc., should be included in the scope of the protection.

Claims (14)

  1. A kind of 1. message method, it is characterised in that including:
    When VNF is in elastic capacity reducing, if receiving the communication message of network element, the type of message of the communication message is obtained;
    Type of message based on the communication message determines the target DEP modules for handling the communication message;
    The communication message is sent to the target DEP modules.
  2. 2. according to the method for claim 1, it is characterised in that obtaining the type of message of the communication message includes:
    Obtain the identification information carried in the communication message;
    The type of message of the communication message is determined by the identification information.
  3. 3. according to the method for claim 2, it is characterised in that obtain the identification information bag carried in the communication message Include:
    Obtain the identification information that Payload fields carry in the communication message.
  4. 4. according to the method for claim 2, it is characterised in that disappearing for the communication message is determined by the identification information Breath type includes:
    The session connection corresponding with the identification information is judged whether, wherein, the session corresponding with the identification information connects It is connected in the session connection belonging to the communication message;
    If in the presence of the session connection corresponding with the identification information, it is determined that the type of message of the communication message is that non-originate disappears Breath;
    If in the absence of the session connection corresponding with the identification information, it is determined that the type of message of the communication message disappears to originate Breath.
  5. 5. according to the method for claim 4, it is characterised in that the type of message based on the communication message determines to be used to locate Managing the target DEP modules of the communication message includes:
    In the case where the type of message of the communication message is non-originating information, it is determined that being associated with the DEP of the session connection Module is the target DEP modules;
    In the case where the type of message of the communication message is originating information, one chosen in multiple DEP modules is described Target DEP modules, wherein, the multiple DEP modules are that the DEP modules of capacity reducing are not allowed in preset time period.
  6. 6. according to the method for claim 5, it is characterised in that the identification information is data message, chooses multiple DEP moulds One in block includes for the target DEP modules:
    Determine the number of modules of the multiple DEP modules;
    Complementation is carried out to the identification information using the number of modules, obtains mark data;
    The target DEP modules of order and the identification data matches in the multiple DEP modules are obtained, and associate the mesh Mark DEP modules and the session connection.
  7. 7. according to the method for claim 1, it is characterised in that the network element includes 3GPP AAA SERVER network elements.
  8. A kind of 8. message dispensing device, it is characterised in that including:
    Acquiring unit, for when VNF is in elastic capacity reducing, if receiving the communication message of network element, obtaining the communication and disappearing The type of message of breath;
    Determining unit, the target DEP for handling the communication message is determined for the type of message based on the communication message Module;
    Transmitting element, for sending the communication message to the target DEP modules.
  9. 9. device according to claim 8, it is characterised in that the acquiring unit includes:
    Acquisition module, for obtaining the identification information carried in the communication message;
    First determining module, for determining the type of message of the communication message by the identification information.
  10. 10. device according to claim 9, it is characterised in that the acquisition module is additionally operable to obtain the communication message The identification information that middle Payload fields carry.
  11. 11. device according to claim 9, it is characterised in that first determining module includes:
    Judging submodule, for judging whether the session connection corresponding with the identification information, wherein, believe with the mark Session connection corresponding to breath is the session connection belonging to the communication message;
    First determination sub-module, if in the presence of the session connection corresponding with the identification information, it is determined that the communication message Type of message be non-originating information;
    Second determination sub-module, if in the absence of the session connection corresponding with the identification information, it is determined that the communication disappears The type of message of breath is originating information.
  12. 12. device according to claim 11, it is characterised in that the determining unit includes:
    Second determining module, in the case of being non-originating information in the type of message of the communication message, it is determined that being associated with The DEP modules of the session connection are the target DEP modules;
    Module is chosen, in the case of being originating information in the type of message of the communication message, is chosen in multiple DEP modules One be the target DEP modules, wherein, the multiple DEP modules are that the DEP of capacity reducing is not allowed in preset time period Module.
  13. 13. device according to claim 12, it is characterised in that the identification information is data message, the selection mould Block includes:
    3rd determination sub-module, for determining the number of modules of the multiple DEP modules;
    Computing submodule, for carrying out complementation to the identification information using the number of modules, obtain mark data;
    Acquisition submodule, for obtaining the target DEP moulds of order and the identification data matches in the multiple DEP modules Block, and associate the target DEP modules and the session connection.
  14. 14. device according to claim 8, it is characterised in that the network element includes 3GPP AAA SERVER network elements.
CN201610708954.7A 2016-08-23 2016-08-23 Message sending method and device Active CN107770067B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201610708954.7A CN107770067B (en) 2016-08-23 2016-08-23 Message sending method and device
PCT/CN2017/098628 WO2018036514A1 (en) 2016-08-23 2017-08-23 Method and device for sending message

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610708954.7A CN107770067B (en) 2016-08-23 2016-08-23 Message sending method and device

Publications (2)

Publication Number Publication Date
CN107770067A true CN107770067A (en) 2018-03-06
CN107770067B CN107770067B (en) 2021-05-11

Family

ID=61246438

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610708954.7A Active CN107770067B (en) 2016-08-23 2016-08-23 Message sending method and device

Country Status (2)

Country Link
CN (1) CN107770067B (en)
WO (1) WO2018036514A1 (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104980297A (en) * 2014-04-14 2015-10-14 中兴通讯股份有限公司 Virtual machine resource changing method and device, and virtualized network function device
CN105099789A (en) * 2015-09-02 2015-11-25 华为技术有限公司 Network element uploading method and equipment
CN105577414A (en) * 2014-10-17 2016-05-11 中兴通讯股份有限公司 Elastically telescopic processing method, device and system for VM (Virtual Machine) resources
CN105634782A (en) * 2014-11-06 2016-06-01 华为技术有限公司 Method of instancing virtual network function (VNF) and network element management device
WO2016082143A1 (en) * 2014-11-27 2016-06-02 华为技术有限公司 Virtual network policy configuration method and system, as well as virtual network element and network management system thereof
US20160173329A1 (en) * 2014-12-12 2016-06-16 Oracle International Corporation Methods, systems, and computer readable media for configuring a flow interface on a network routing element

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8245039B2 (en) * 2008-07-18 2012-08-14 Bridgewater Systems Corp. Extensible authentication protocol authentication and key agreement (EAP-AKA) optimization
CN105634780B (en) * 2014-11-04 2020-04-07 中兴通讯股份有限公司 Method and device for realizing VNF elastic expansion
CN105681060B (en) * 2014-11-17 2020-01-31 中兴通讯股份有限公司 virtualized network function management upgrading method, device and server
CN105634956B (en) * 2015-12-31 2018-11-16 华为技术有限公司 A kind of message forwarding method, device and system
CN105847330A (en) * 2016-03-16 2016-08-10 中国联合网络通信集团有限公司 Content distribution method and system

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104980297A (en) * 2014-04-14 2015-10-14 中兴通讯股份有限公司 Virtual machine resource changing method and device, and virtualized network function device
CN105577414A (en) * 2014-10-17 2016-05-11 中兴通讯股份有限公司 Elastically telescopic processing method, device and system for VM (Virtual Machine) resources
CN105634782A (en) * 2014-11-06 2016-06-01 华为技术有限公司 Method of instancing virtual network function (VNF) and network element management device
WO2016082143A1 (en) * 2014-11-27 2016-06-02 华为技术有限公司 Virtual network policy configuration method and system, as well as virtual network element and network management system thereof
US20160173329A1 (en) * 2014-12-12 2016-06-16 Oracle International Corporation Methods, systems, and computer readable media for configuring a flow interface on a network routing element
CN105099789A (en) * 2015-09-02 2015-11-25 华为技术有限公司 Network element uploading method and equipment

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
ERONEN,P.ED等: ""Diameter Extensible Authentication Protocol(EAP)Application,Network Working Group Request for Comments:4072"", 《3GPP》 *
H.HAVERINEN,ED: ""Extensible Authentication Protocol Method for Global system for Mobile communications Subscriber Identity Modules(EAP-SIM)"", 《3GPP》 *
刘露等: ""NFV弹性技术"", 《电信科学》 *

Also Published As

Publication number Publication date
WO2018036514A1 (en) 2018-03-01
CN107770067B (en) 2021-05-11

Similar Documents

Publication Publication Date Title
JP6371644B2 (en) Secure registration of a group of clients using a single registration procedure
US11115918B2 (en) Devices, systems and methods for accessing and providing network slices in a mobile communication network
FI110651B (en) A method for checking the amount of data transferred
RU2372734C2 (en) Method and device for reauthentication in cellular communication system
EP4264984A1 (en) Methods, systems, and computer readable media for message validation in fifth generation (5g) communications networks
JP2023547123A (en) Methods, systems, and computer-readable media for validating session management facility (SMF) registration requests
CN115699840A (en) Methods, systems, and computer readable media for mitigating 5G roaming security attacks using a Secure Edge Protection Proxy (SEPP)
EP3906652A1 (en) Protecting a telecommunications network using network components as blockchain nodes
US8914867B2 (en) Method and apparatus for redirecting data traffic
CN102396203A (en) Emergency call handling in accordance with authentication procedure in communication network
US20160381019A1 (en) Diameter Redirect Between Client and Server
Behrad et al. Securing authentication for mobile networks, a survey on 4G issues and 5G answers
Behrad et al. A survey on authentication and access control for mobile networks: from 4G to 5G
US20220279471A1 (en) Wireless communication method for registration procedure
US20070099597A1 (en) Authentication in a communication network
US20230292131A1 (en) Rogue network function re-authorization in a communication network
CN112136301A (en) Error handling framework for security management in a communication system
CN107770067A (en) Message method and device
CN116471590A (en) Terminal access method, device and authentication service function network element
Zhang et al. Mitigating Signaling Storms in 5G with Blockchain-assisted 5GAKA
WO2023187536A1 (en) System and method for facilitating machine to machine communication
EP4348926A1 (en) Network supported authentication
CN116491140A (en) Method, system and computer readable medium for ingress message rate limiting
CN116458121A (en) Methods, systems, and computer readable media for mitigating 5G roaming spoofing attacks
CN116889004A (en) Authentication indication for edge data network relocation

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant