CN108377496A

CN108377496A - Terminal authentication, SOT state of termination switching, downlink data delivering method and device

Info

Publication number: CN108377496A
Application number: CN201611026255.0A
Authority: CN
Inventors: 李志军; 黄梅青
Original assignee: ZTE Corp
Current assignee: ZTE Corp
Priority date: 2016-11-14
Filing date: 2016-11-14
Publication date: 2018-08-07
Anticipated expiration: 2036-11-14
Also published as: CN108377496B; WO2018086452A1

Abstract

The invention discloses terminal authentication, SOT state of termination switching, downlink data delivering method and devices, and in the terminal authentication method, remote terminal sends Non-Access Stratum NAS authentication requests by the forwarding of link terminal to core network control surface function CN CP；The NAS Authentication Responses that CN CP described in the remote terminal reception are returned by the link terminal.Pass through this method, remote terminal can pass through the relaying of link terminal, realize the interaction with core network control surface, complete authentication process, to which network side realizes remote terminal comprehensive control, in remote terminal when being linked into network by link terminal, achieve the purpose that network can perceive and control remote terminal.

Description

Terminal authentication, SOT state of termination switching, downlink data delivering method and device

Technical field

The present invention relates to the communications fields, in particular to terminal authentication, SOT state of termination switching, downlink data delivery side Method and device.

Background technology

With long term evolution (the Long Term of the development of wireless communication networks, especially high-speed high bandwidth Evolution, referred to as LTE)/evolution grouping domain system (Evolved Packet System, referred to as EPS) system It builds, have stimulated the development of various multimedia services.Many business, such as social networks, short distance data sharing, local advertising Using proposing increasingly stronger demand to Near Field Communication.In Near Field Communication, equipment and equipment room are especially emphasized Communication, i.e. device-to-device (Device-to-Device, referred to as D2D) communicate.

For the demand of D2D communications, third generation partner program (the 3^rd Generation Partnership Project is referred to as 3GPP) set up particular study project --- Near Field Communication service (Proximity Service, letter Referred to as ProSe), to support D2D to communicate.In D2D communications, there is a kind of typical business demand, realizes remote terminal (Remote UE network) is linked by link terminal (Relay UE) in the case of no network coverage.

Fig. 1 is that the relevant technologies remote terminal (Remote UE) is linked into LTE/EPS by link terminal (Relay UE) The configuration diagram of system.

Framework shown in Fig. 1, main includes following several parts：(1) parts wireless subsystem LTE, the i.e. general land of evolution Ground Radio Access Network (Evolved Universal Terrestrial Radio Access Network, referred to as E- UTRAN)；(2) EPS core network subsystems part, packet-based core networks (Evolved Packet Core, the abbreviation of also referred to as evolution For EPC)；(3) Near Field Communication service, i.e. ProSe form and functions.

In E-UTRAN wireless access networks, include the NodeB nodes (Evolved NodeB, referred to as eNodeB) of enhancing, That is the base station portion of LTE.

EPC packet-based core networks, including home subscriber data server (Home Subscriber Server, referred to as HSS), mobility management unit (Mobility Management Entity, referred to as MME), gateway (Serving Gateway, referred to as S-GW), grouped data network gateway (PDN Gateway, referred to as P-GW), Serving GPRS Support Node (Serving GPRS Support Node, referred to as SGSN) and strategy and charging regulation function entity (Policy and Charging Enforcement Function, referred to as PCRF), wherein：

HSS(Home Subscriber Server)：Home subscriber data server is that the permanent of user contracting data is deposited Place is put, the home network of user's signing is located at；

MME(Mobility Management Entity)：Mobility management unit is user contracting data in current net The storage place of network is responsible for NAS layers (Non-Access Stratum, Non-Access Stratum) signaling management, the user of terminal to network Tracking and paging management function under idle mode and bearer management；

S-GW(Serving Gateway)：Gateway is gateway of the core net to wireless system, is responsible for terminal to core The user plane bearer of heart net, the data buffer storage under terminal idle mode, the function of network side initiating business request, lawful interception and Packet routing and forwarding capability；

P-GW(PDN Gateway)：Grouped data network gateway is outside the grouping domain system (EPS) and the system of evolution The gateway of portion's network is responsible for the IP address distribution of terminal, billing function, is grouped the functions such as packet filtering, strategy application.

PCRF(Policy and Charging Enforcement Function)：Strategy is real with charging rule functions Body is responsible for providing policy control and charging regulation to PCEF.

ProSe form and functions, including Near Field Communication service function (ProSe Function, referred to as PF), short distance Communication application server (ProSe Application Server, referred to as PAS), link terminal (Relay UE), long-range end It holds (Remote UE).

PF(ProSe Function)：The Near Field Communication of terminal is authorized, terminal room discovery auxiliary is provided, etc. Deng.

PAS(ProSe Application Server)：Specific Near Field Communication business support is provided.

Relay UE：Relaying access is provided for remote terminal (Remote UE) to support.

Remote UE：It is linked into network by link terminal (Relay UE), obtains IP services.

Fig. 2 is to be based on framework shown in FIG. 1, and remote terminal is linked into network by link terminal and obtains the flow that IP is serviced Schematic diagram, the flow include the following steps：

S201, Relay UE are attached to network, establish PDN connections；

S202, Remote UE have found Relay UE；

In this step, during finding Relay UE, APN that Relay UE are supported will be important as one Reference information；

S203, on PC5 interfaces, Remote UE establish one-to-one (One-2-One) communication to Relay UE requests；

In this step, Remote UE carry user information (User Info) in the request, including specific APN.

The specific APN that S204, Relay UE are carried in the request using Remote UE in S203 is established to network request Corresponding PDN connections, for providing relay communication for Remote UE

S205, Relay UE distribute IP address, the address or an address private ip v4 for Remote UE, or It is an IPv6 prefix；

S206, Relay UE send remote terminal access report to MME, carry the mark Remote UE of remote terminal The IP address of ID, remote terminal；

S207, MME send remote terminal access report, the information of carrying Remote UE, including remote terminal to PGW Identify the IP address of Remote UE ID, remote terminal；

PGW is in the information that Remote UE are locally stored, and using this information, PGW can be to the line number up and down of Remote UE According to being gated, i.e., whether allow the transmission of uplink and downlink data.

S208, Remote UE send upstream IP data, or receive downstream IP data, which passes through in Relay UE After, and the IP Deta bearers are in the PDN connections for relaying that Relay UE are established by Remote UE.

The flow, remote terminal (Remote UE) can pass through relaying when no network information covers according to fig. 2 Terminal (Relay UE) is linked into network to obtain IP services.However, using this access way, network is to remote terminal (Remote UE) is substantially without control, for example, the access of remote terminal is unable to control the state of remote terminal without control, it is right The data transfer of remote terminal is unable to control etc..Due to these defects so that certain business for relying on terminal perception are difficult to reality It is existing.

Invention content

An embodiment of the present invention provides terminal authentication, SOT state of termination switching, downlink data delivering method and devices, at least Solve the problems, such as that network is substantially uncontrolled to remote terminal (Remote UE) in the related technology.

According to one embodiment of present invention, a kind of terminal authentication method is provided, including：

Remote terminal sends Non-Access Stratum NAS authentications by the forwarding of link terminal to core network control surface function CN-CP Request；

The NAS Authentication Responses that CN-CP described in the remote terminal reception is returned by the link terminal.

Optionally, the remote terminal sends the NAS authentications by the forwarding of the link terminal to the CN-CP Request includes：

The remote terminal sends the NAS authentications to the link terminal using PC5 signaling messages or PC5 data packets and asks It asks；

CN-CP described in the remote terminal reception includes by the NAS Authentication Responses that the link terminal returns：

Link terminal described in the remote terminal reception uses PC5 signaling messages or PC5 data packets to the link terminal The NAS Authentication Responses sent.

Optionally, the NAS authentication requests of the remote terminal transmission include：

The network identity of the remote terminal identifies and authentication parameter.

Neighbour's communications identification of the remote terminal.

Optionally, the NAS Authentication Responses include following information：

Authenticating result and the temporary identifier that the CN-CP is remote terminal distribution.

Optionally, the NAS mirror are sent to the CN-CP by the forwarding of the link terminal in the remote terminal After power request, further include：

CN-CP described in the remote terminal reception is chosen by the authentication that the link terminal is sent to the remote terminal War；

The remote terminal, which calculates, generates authentication challenge responses, and by the forwarding of the link terminal, to the CN-CP Send the authentication challenge responses.

According to another embodiment of the invention, a kind of terminal authentication method is provided, including：

Link terminal receives the Non-Access Stratum NAS authentication requests from remote terminal；

The link terminal forwards the NAS authentication requests to core network control surface function CN-CP；

The link terminal receives the NAS Authentication Responses from the CN-CP；

The link terminal forwards the NAS Authentication Responses to the remote terminal.

Optionally, the NAS authentication request of the link terminal reception from the remote terminal includes：

The link terminal is received the remote terminal and is reflected using the NAS that PC5 signaling messages or PC5 data packets are sent Power request；

The link terminal forwards the NAS Authentication Responses to include to the remote terminal：

The link terminal sends the NAS authentications to the remote terminal using PC5 signaling messages or PC5 data packets and rings It answers.

Optionally, the link terminal includes to the CN-CP forwardings NAS authentication requests：

The link terminal sends the general NAS of uplink to the CN-CP and transmits message, wherein the general NAS of uplink is passed Defeated message carries the NAS authentication requests, and the general NAS of uplink is transmitted in message, indicates that type of service is relaying NAS authentications Business；Alternatively,

The link terminal sends relaying NAS authentication request messages to the CN-CP, wherein the relaying NAS authentications are asked Message is asked to carry the NAS authentication requests.

Optionally, the method further includes：

The link terminal sends relaying access information to the CN-CP, wherein the relaying access information includes as follows One of information or combination：The mark Relay UE ID of relaying access instruction Relay Indicator, the link terminal.

Optionally, the NAS Authentication Response of the link terminal reception from the CN-CP includes：

The link terminal receives the general NAS of downlink from the CN-CP and transmits message, wherein the downlink is general NAS transmits message and carries the NAS Authentication Responses, and the general NAS of downlink is transmitted in message, indicates that type of service is relaying NAS authentication services；

The link terminal receives the relaying NAS authentication response messages from the CN-CP, wherein the relaying NAS mirror It weighs response message and carries the NAS Authentication Responses.

Optionally, the NAS Authentication Responses include following information：

Optionally, the method further includes：

The link terminal receives the mark Remote UE ID of the remote terminal from the CN-CP, wherein institute The mark Remote UE ID for stating remote terminal include at least one following information：The network identity mark of the remote terminal, Neighbour's communications identification of the remote terminal.

Optionally, the link terminal includes to the remote terminal forwarding NAS Authentication Responses：

The link terminal is according to the mark Remote UE ID of the remote terminal to described in remote terminal forwarding NAS Authentication Responses.

Optionally, after the link terminal forwards the NAS authentication requests to core network control surface function CN-CP, Further include：

The link terminal receives the authentication challenge that the CN-CP is sent；

The link terminal forwards the authentication challenge to the remote terminal；

The link terminal receives the authentication challenge responses that the remote terminal is sent in response to the authentication challenge；

The link terminal forwards the authentication challenge responses to the CN-CP.

According to still a further embodiment, a kind of terminal authentication method is provided, including：

Core network control surface function CN-CP receives the Non-Access Stratum NAS authentications that remote terminal is sent by link terminal and asks It asks；

The CN-CP authenticates the remote terminal, generates NAS Authentication Responses；

The CN-CP returns to the NAS Authentication Responses by the forwarding of the link terminal to the remote terminal.

Optionally, the CN-CP receives the NAS authentication requests that the remote terminal is sent by the link terminal Including：

The CN-CP receives the general NAS transmission message of uplink that the link terminal is sent, wherein the uplink is general NAS transmits message and carries the NAS authentication requests, and the general NAS of uplink is transmitted in message, indicates that type of service is relaying NAS authentication services；Alternatively,

The CN-CP receives the relaying NAS authentication request messages that the link terminal is sent, wherein the relaying NAS mirror It weighs request message and carries the NAS authentication requests.

Optionally, the NAS authentication requests of the CN-CP receptions include：

Neighbour's communications identification of the remote terminal.

Optionally, the method further includes：

The CN-CP receives the relaying access information that the link terminal is sent, wherein the relaying access information includes One of following information or combination：The mark Relay UE ID of relaying access instruction Relay Indicator, the link terminal.

Optionally, after the CN-CP authenticates the remote terminal, further include：

The CN-CP stores the user context information of the remote terminal, wherein above and below the user of the remote terminal Literary information includes：

Remote terminal information, wherein the remote terminal information includes one of following information or combination：The remote terminal Mark Remote UE ID, the remote terminal IP address；

Relay access information, wherein the relaying access information includes one of following information or combination：Relaying access instruction The mark Relay UE ID of Relay Indicator, the link terminal.

The CN-CP stores the user context information of the link terminal, wherein above and below the user of the link terminal Literary information includes：

Pass through the information for the remote terminal that the link terminal accesses, wherein accessed by the link terminal long-range The information of terminal includes one of following information or combination：Pass through the mark Remote for the remote terminal that the link terminal accesses The IP address of UE ID, the remote terminal accessed by the link terminal.

Optionally, the CN-CP returns to the NAS authentications by the forwarding of the link terminal to the remote terminal Response includes：

The CN-CP sends the general NAS of downlink to the link terminal and transmits message, wherein the general NAS of downlink is passed Defeated message carries the NAS Authentication Responses, and the general NAS of downlink is transmitted in message, indicates that type of service is relaying NAS authentications Business；

The CN-CP sends relaying NAS authentication response messages to the link terminal, wherein the relaying NAS authentications are rung Message is answered to carry the NAS Authentication Responses.

Optionally, the NAS Authentication Responses include following information：

Optionally, the method further includes：

The CN-CP sends the mark Remote UE ID of the remote terminal to the link terminal, wherein described remote The mark Remote UE ID of journey terminal include at least one following information：The network identity of the remote terminal identifies, is described Neighbour's communications identification of remote terminal.

Optionally, core network control surface function CN-CP receives the Non-Access Stratum NAS that remote terminal is sent by link terminal After authentication request, further include：

The CN-CP sends authentication challenge by the link terminal to the remote terminal；

The CN-CP receives the authentication challenge responses that the remote terminal is returned by the link terminal.

The CN-CP sends remote terminal information to core network user face function CN-UP, wherein the remote terminal letter Breath includes one of following information or combination：Mark Remote UE ID of the remote terminal, the IP address of the remote terminal, The remote terminal information whether the authentication is passed.

According to still another embodiment of the invention, a kind of SOT state of termination switching method is provided, including：

Core network control surface function CN-CP receives the connection release request from radio node RAN, wherein the connection Connection of the release request for asking release link terminal；

The CN-CP discharges the connection of the link terminal, the link terminal is placed in Idle state, and will be by described The remote terminal of link terminal access is placed in Idle state.

Optionally, the remote terminal accessed by the link terminal merging Idle state is included by the CN-CP：

The CN-CP believes according to the user context information of the link terminal or the user's context of the remote terminal Breath determines the remote terminal accessed by the link terminal；

The determining remote terminal is placed in Idle state by the CN-CP.

Optionally, the user context information of the link terminal includes：The long-range end accessed by the link terminal The information at end；The CN-CP is accessed according to the determination of the user context information of the link terminal by the link terminal The remote terminal includes：The CN-CP is searched in the user context information of the link terminal through the relaying eventually Terminate into the remote terminal；

And/or

The user context information of the remote terminal includes：Remote terminal information and relaying access information；The CN-CP It is determined through the remote terminal that the link terminal accesses according to the user context information of the remote terminal and includes：Institute CN-CP is stated according to the relaying access information in the user context information of the remote terminal, determines the remote terminal Whether accessed via the link terminal.

According to still another embodiment of the invention, a kind of downlink data delivering method is provided, including：

Core network control surface function CN-CP receives the downlink data for being sent to remote terminal；

The CN-CP sends the downlink data by link terminal to the remote terminal.

Optionally, the CN-CP is received before being sent to the downlink data of the remote terminal, further includes：

The CN-CP stores the contextual information of the remote terminal, wherein the contextual information packet of the remote terminal It includes：

Optionally, in the case where the remote terminal is in Idle state, the CN-CP by the link terminal to Before the remote terminal sends the downlink data, further include：

The CN-CP initiates paging request, wherein the mark Relay of the link terminal is carried in the paging request The mark Remote UE ID of UE ID and the remote terminal, wherein the mark Remote UE ID of the remote terminal include At least one following information：Network identity mark, the neighbour's communications identification of the remote terminal of the remote terminal.

Optionally, the CN-CP includes to the remote terminal transmission downlink data by link terminal：

The CN-CP is sent to described remote according to the relaying access information of the remote terminal to the link terminal The downlink data of journey terminal.

The CN-CP sends the general NAS of downlink to the link terminal and transmits message, wherein the general NAS of downlink is passed Defeated message carries the downlink data, and the general NAS of downlink is transmitted in message, indicates that type of service is relaying data delivery； Alternatively,

The CN-CP sends relaying data delivery message to the corresponding link terminal of the remote terminal, wherein in described The downlink data is carried after data delivery message.

Optionally, the general NAS transmission message of the downlink or the relaying data delivery message carry the remote terminal Mark Remote UE ID, wherein the mark Remote UE ID of the remote terminal include at least one following information：Institute State network identity mark, the neighbour's communications identification of the remote terminal of remote terminal.

Optionally, the CN-CP determines that the downlink data is destined for the long-range end at least one in the following way The downlink data at end：

In the case where the downlink data is short message service SMS information, the CN-CP disappears according to SMS delivery requests Breath determines that the SMS information is destined for the remote terminal；

In the case where the downlink data is downstream IP data, the CN-CP is according to from core network user face function The downlink data notification request message of CN-UP determines that the downstream IP data is destined for the remote terminal.

What link terminal received that core network control surface function CN-CP sends be sent to accessed by the link terminal it is long-range The downlink data of terminal；

The link terminal sends the downlink data to the remote terminal.

Optionally, it is sent to the institute accessed by the link terminal what the link terminal received that the CN-CP sends Before the downlink data for stating remote terminal, further include：

The link terminal receives the paging request that the CN-CP is sent, wherein is carried in the paging request described remote The mark Remote UE ID of journey terminal, wherein the mark Remote UE ID of the remote terminal include following information at least One of：Network identity mark, the neighbour's communications identification of the remote terminal of the remote terminal；

The link terminal confirm the remote terminal can and in the case of, initiate service request mistake to the CN-CP Journey.

Optionally, the link terminal includes to the remote terminal transmission downlink data：

The link terminal sends the downlink by the PC5 interfaces between the remote terminal to the remote terminal Data.

According to still another embodiment of the invention, a kind of terminal authentication device is provided, remote terminal is applied to, including：

First sending module is sent non-access for the forwarding by link terminal to core network control surface function CN-CP Layer NAS authentication requests；

First receiving module, the NAS Authentication Responses returned by the link terminal for receiving the CN-CP.

Optionally, the NAS authentication requests of the first sending module transmission include：

Neighbour's communications identification of the remote terminal.

Optionally, the NAS Authentication Responses include following information：

According to still another embodiment of the invention, a kind of terminal authentication device is provided, link terminal is applied to, including：

Second receiving module, for receiving the Non-Access Stratum NAS authentication requests from remote terminal；

First forwarding module, for forwarding the NAS authentication requests to core network control surface function CN-CP；

Third receiving module, for receiving the NAS Authentication Responses from the CN-CP；

Second forwarding module, for forwarding the NAS Authentication Responses to the remote terminal.

Optionally, first forwarding module is additionally operable to send relaying access information to the CN-CP, wherein in described After access information include one of following information or combination：The mark of relaying access instruction Relay Indicator, the link terminal Know Relay UE ID.

Optionally, the NAS Authentication Responses include following information：

Optionally, the third receiving module is additionally operable to：

Receive the mark Remote UE ID of the remote terminal from the CN-CP, wherein the remote terminal It includes at least one following information to identify Remote UE ID：The network identity mark of the remote terminal, the remote terminal Neighbour's communications identification.

Optionally, second forwarding module is used for according to the mark Remote UE ID of the remote terminal to described remote Journey terminal forwards the NAS Authentication Responses.

According to still another embodiment of the invention, a kind of terminal authentication device is provided, core network control surface work(is applied to Energy CN-CP, including：

4th receiving module, the Non-Access Stratum NAS authentication requests sent by link terminal for receiving remote terminal；

Authentication module generates NAS Authentication Responses for being authenticated to the remote terminal；

Second sending module returns to the NAS authentications for the forwarding by the link terminal to the remote terminal Response.

Optionally, the NAS authentication requests of the 4th receiving module reception include：

Neighbour's communications identification of the remote terminal.

Optionally, the 4th receiving module is additionally operable to receive the relaying access information that the link terminal is sent, wherein The relaying access information includes one of following information or combination：Relaying access instruction Relay Indicator, the relaying are eventually The mark Relay UE ID at end.

Optionally, described device further includes the first memory module, for the authentication module to the remote terminal into After row authentication, the user context information of the remote terminal is stored, wherein the user context information packet of the remote terminal It includes：

Optionally, first memory module is additionally operable to after the remote terminal is authenticated, and stores the relaying eventually The user context information at end, wherein the user context information of the link terminal includes：

Optionally, the NAS Authentication Responses include following information：

Authenticating result and the temporary identifier distributed for the remote terminal.

Optionally, second sending module is additionally operable to send the mark of the remote terminal to the link terminal Remote UE ID, wherein the mark Remote UE ID of the remote terminal include at least one following information：It is described long-range Network identity mark, the neighbour's communications identification of the remote terminal of terminal.

According to still another embodiment of the invention, a kind of SOT state of termination switching device is provided, is applied to core net and controls Face function CN-CP, including：

5th receiving module, for receiving the connection release request from radio node RAN, wherein the Connection Release Connection of the request for asking release link terminal；

Connection Release module, the connection for discharging the link terminal；

State setting module for the link terminal to be placed in Idle state, and will be accessed by the link terminal Remote terminal is placed in Idle state.

Optionally, the state setting module includes：

Determination unit, above and below according to the user context information of the link terminal or the user of the remote terminal Literary information determines the remote terminal accessed by the link terminal；

State set unit, for the remote terminal determined to be placed in Idle state.

Optionally, the user context information of the link terminal includes：The long-range end accessed by the link terminal The information at end；The determination unit, which is used to search in the user context information of the link terminal, passes through the link terminal The remote terminal of access；

And/or

The user context information of the remote terminal includes：Remote terminal information and relaying access information；The determination Unit is used to, according to the relaying access information in the user context information of the remote terminal, determine the remote terminal Whether accessed via the link terminal.

According to still another embodiment of the invention, a kind of downlink data delivery apparatus is provided, is applied to core net and controls Face function CN-CP, including：

6th receiving module, for receiving the downlink data for being sent to remote terminal；

Third sending module, for sending the downlink data to the remote terminal by link terminal.

Optionally, described device further includes the second memory module, the contextual information for storing the remote terminal, In, the contextual information of the remote terminal includes：

Optionally, described device further includes paging module, is used in the case where the remote terminal is in Idle state, Before the third sending module sends the downlink data by the link terminal to the remote terminal, initiates paging and ask It asks, wherein the mark of mark the Relay UE ID and the remote terminal of the link terminal are carried in the paging request Remote UE ID, wherein the mark Remote UE ID of the remote terminal include at least one following information：It is described long-range Network identity mark, the neighbour's communications identification of the remote terminal of terminal.

Optionally, the third sending module is used for the relaying access information according to the remote terminal, to the relaying Terminal is sent to the downlink data of the remote terminal.

Optionally, the third sending module is used for：

The general NAS of downlink is sent to the link terminal and transmits message, wherein the general NAS transmission message of downlink is taken With the downlink data, in the general NAS transmission message of downlink, indicate that type of service is relaying data delivery；Alternatively,

Relaying data delivery message is sent to the corresponding link terminal of the remote terminal, wherein the relaying data are thrown It passs message and carries the downlink data.

According to still another embodiment of the invention, a kind of downlink data delivery apparatus is provided, link terminal, packet are applied to It includes：

7th receiving module is sent to for receive that core network control surface function CN-CP sends through the link terminal The downlink data of the remote terminal of access；

4th sending module, for sending the downlink data to the remote terminal.

Optionally, described device further includes：

8th receiving module, the paging request sent for receiving the CN-CP, wherein carried in the paging request The mark Remote UE ID of the remote terminal, wherein the mark Remote UE ID of the remote terminal include following letter At least one breath：Network identity mark, the neighbour's communications identification of the remote terminal of the remote terminal；

Service request module, for confirm the remote terminal can and in the case of, initiate service to the CN-CP and ask Seek process.

According to still another embodiment of the invention, a kind of storage medium is additionally provided.The storage medium is set as storage and uses The program code of any of each method method more than executing.

Scheme through the embodiment of the present invention, remote terminal can be realized and core network control by the relaying of link terminal The interaction in face processed, completes authentication process, and core network control surface is realized the interaction with remote terminal by link terminal, may be implemented To the authentication of remote terminal, it can also realize that initiating downlink data to remote terminal delivers, meanwhile, core network control surface can be with It completes, to the switching of the state of remote terminal, remote terminal to be placed in Idle state in real time.By above scheme, network side is to long-range Terminal realizes comprehensive control, in remote terminal when being linked into network by link terminal, reach network can perceive and Control the purpose of remote terminal.

Description of the drawings

Attached drawing described herein is used to provide further understanding of the present invention, and is constituted part of this application, this hair Bright illustrative embodiments and their description are not constituted improper limitations of the present invention for explaining the present invention.In the accompanying drawings：

Fig. 1 is the configuration diagram that the relevant technologies remote terminal is linked into LTE/EPS by link terminal；

Fig. 2 is to be based on framework shown in FIG. 1, and remote terminal is linked into network by link terminal and obtains the flow that IP is serviced Schematic diagram；

Fig. 3 is the flow chart of according to embodiments of the present invention one terminal authentication method applied to remote terminal side；

Fig. 4 is the flow chart of according to embodiments of the present invention one terminal authentication method applied to link terminal side；

Fig. 5 is the flow of according to embodiments of the present invention one terminal authentication method applied to core network control surface functioning side Figure；

Fig. 6 is according to embodiments of the present invention two SOT state of termination switching method applied to core network control surface functioning side Flow chart；

Fig. 7 is the according to embodiments of the present invention three downlink data delivering method applied to core network control surface functioning side Flow chart；

Fig. 8 is the flow chart of the according to embodiments of the present invention three downlink data delivering method applied to link terminal side；

Fig. 9 is the structure diagram of the according to embodiments of the present invention four terminal authentication device applied to remote terminal；

Figure 10 is the structure diagram of the according to embodiments of the present invention four terminal authentication device applied to link terminal；

Figure 11 is the structure of the according to embodiments of the present invention four terminal authentication device applied to core network control surface function Block diagram；

Figure 12 is according to embodiments of the present invention five SOT state of termination switching device applied to core network control surface function Structure diagram；

Figure 13 is the according to embodiments of the present invention six downlink data delivery apparatus applied to core network control surface function Structure diagram；

Figure 14 is the structure diagram of the according to embodiments of the present invention six downlink data delivery apparatus applied to link terminal；

Figure 15 is the configuration diagram of the embodiment of the present invention seven；

Figure 16 A are the chain of command agreement stack schematic diagrames one of the embodiment of the present invention seven；

Figure 16 B are the chain of command agreement stack schematic diagrames two of the embodiment of the present invention seven；

Figure 16 C are the user face protocol stack schematic diagrames of the embodiment of the present invention seven；

Figure 17 is that the remote terminal of the embodiment of the present invention eight is linked into the flow diagram of network by link terminal；

Figure 18 is that the remote terminal of the embodiment of the present invention nine is linked into the flow diagram of network by link terminal；

Figure 19 be according to embodiments of the present invention ten link terminal enter Idle state after, core network control surface function will be long-range Terminal is placed in the flow diagram after Idle state；

Figure 20 is that according to embodiments of the present invention 11 application server sends the flow of downlink SMS messaging to remote terminal Schematic diagram；

Figure 21 is according to embodiments of the present invention 12 after link terminal, remote terminal enter Idle state, to long-range end End sends the flow diagram of downstream IP data.

Specific implementation mode

Come that the present invention will be described in detail below with reference to attached drawing and in conjunction with the embodiments.It should be noted that not conflicting In the case of, the features in the embodiments and the embodiments of the present application can be combined with each other.

It should be noted that term " first " in description and claims of this specification and above-mentioned attached drawing, " Two " etc. be for distinguishing similar object, without being used to describe specific sequence or precedence.

Embodiment one

According to an embodiment of the invention one, a kind of terminal authentication method is provided, remote terminal side is applied to.Fig. 3 is root According to the flow chart of the terminal authentication method applied to remote terminal side of the embodiment of the present invention one, as shown in figure 3, the flow includes Following steps：

Step S302, remote terminal is by the forwarding of link terminal, to core network control surface function (Core Network- Control Plane, referred to as CN-CP) send NAS authentication requests；

The NAS Authentication Responses that step S302, remote terminal reception CN-CP are returned by link terminal.

In this way, remote terminal can realize the interaction with core network control surface by the relaying of link terminal, it is complete At authentication process, to which core network control surface can realize the interaction with remote terminal by link terminal, to realize to remote The authentication of journey terminal.By above scheme, in remote terminal when being linked into network by link terminal, reaching network can perceive With the purpose of control remote terminal.

Optionally, the information exchange between remote terminal and link terminal can be realized by PC5 interfaces, for example, in step In rapid S302, remote terminal can use PC5 signaling messages or PC5 data packets to send NAS authentication requests to link terminal；In step In rapid S304, remote terminal can receive what link terminal was sent using PC5 signaling messages or PC5 data packets to link terminal NAS Authentication Responses.

It is realized to the authentication of remote terminal for the ease of CN-CP, it, can be in the NAS authentication requests that remote terminal is sent Network identity mark including remote terminal and authentication parameter.

Optionally, the NAS authentication requests that remote terminal is sent may include neighbour's communications identification of remote terminal.By Neighbour's communications identification of remote terminal is carried in NAS authentication requests so that CN-CP can be when returning to NAS Authentication Responses simultaneously The neighbour's communications identification for marking remote terminal, in order to which NAS Authentication Responses are forwarded to correct remote terminal by link terminal.

NAS Authentication Responses may include following information：Authenticating result and the temporary identifier that CN-CP is remote terminal distribution. By the information above carried in NAS Authentication Responses, authenticating result of the core net to itself can be confirmed in remote terminal, and obtains CN-CP is the temporary identifier of remote terminal distribution.

In realizing authentication process, in order to improve accuracy and the safety of authentication process, pass through relaying in remote terminal The forwarding of terminal can also include the following steps after sending NAS authentication requests to CN-CP：Remote terminal reception CN-CP is logical Cross the authentication challenge that link terminal is sent to remote terminal；Remote terminal, which calculates, generates authentication challenge responses, and by relaying eventually The forwarding at end sends authentication challenge responses to CN-CP.

According to an embodiment of the invention one, a kind of terminal authentication method is additionally provided, link terminal side is applied to.Fig. 4 is The flow chart of according to embodiments of the present invention one terminal authentication method applied to link terminal side, as shown in figure 4, the flow packet Include following steps：

Step S402, link terminal receive the NAS authentication requests from remote terminal；

Step S404, link terminal forward NAS authentication requests to CN-CP；

Step S406, link terminal receive the NAS Authentication Responses from CN-CP；

Step S408, link terminal forward NAS Authentication Responses to remote terminal.

In this way, the forward pass of interacting message between core network control surface and remote terminal may be implemented in link terminal, To coordinate the realization of authentication process.Reached in remote terminal when being linked into network by link terminal by above scheme Network can perceive and control the purpose of remote terminal.

Optionally, the information exchange between remote terminal and link terminal can be realized by PC5 interfaces, for example, In S402, link terminal can receive the NAS authentication requests that remote terminal is sent using PC5 signaling messages or PC5 data packets； In S408, link terminal can use PC5 signaling messages or PC5 data packets to send NAS Authentication Responses to remote terminal.

For the ease of CN-CP get remote terminal that current request is authenticated when accessing network by relaying it is whole The information at end, in addition to forwarding NAS authentication requests to CN-CP, link terminal can also send relaying to CN-CP and connect link terminal Enter information, wherein relaying access information includes one of following information or combination：Relaying access instruction Relay Indicator, institute State the mark Relay UE ID of link terminal.It, can be with it should be noted that link terminal is when sending the relaying access information It is sent in several ways, for example, relaying access information can be sent while sending NAS authentication requests, specifically Access information can be relayed in the outer package of NAS authentication requests.

In actual application, link terminal may be used various ways and forward NAS authentication requests to CN-CP, such as：

Link terminal can send the general NAS of uplink to CN-CP and transmit message, wherein the general NAS transmission message of uplink is taken Band NAS authentication requests, the general NAS of uplink are transmitted in message, indicate that type of service is relaying NAS authentication services；Alternatively,

Link terminal can send relaying NAS authentication request messages to CN-CP, wherein relaying NAS authentication request messages are taken Band NAS authentication requests.

Similarly, link terminal can also receive the NAS Authentication Responses that CN-CP is sent in several ways, such as：

Link terminal can receive the general NAS transmission message of the downlink from CN-CP, wherein the general NAS transmission of downlink disappears Breath carries NAS Authentication Responses, and the general NAS of downlink is transmitted in message, indicates that type of service is relaying NAS authentication services；

Link terminal can receive the relaying NAS authentication response messages from CN-CP, wherein relaying NAS Authentication Responses disappear Breath carries NAS Authentication Responses.

NAS Authentication Responses may include following information：Authenticating result and the temporary identifier that CN-CP is remote terminal distribution.

NAS Authentication Responses are forwarded to correct remote terminal for the ease of link terminal, CN-CP can return to NAS The mark Remote UE ID of remote terminal are marked when Authentication Response simultaneously.Therefore, link terminal is in addition to receiving from CN-CP's Except NAS Authentication Responses, link terminal may also receive from the mark Remote UE ID of the remote terminal of CN-CP, wherein The mark Remote UE ID of remote terminal include at least one following information：The network identity of remote terminal identifies, is long-range whole Neighbour's communications identification at end.It should be noted that link terminal can receive the mark of remote terminal when receiving NAS Authentication Responses Know Remote UE ID, for example, receive remote terminal mark Remote UE ID can be encapsulated in NAS Authentication Responses it Outside.

Link terminal forwards NAS Authentication Responses according to the mark Remote UE ID of remote terminal to remote terminal.Pass through The NAS Authentication Responses received can be forwarded to correct remote terminal by which, link terminal.

Optionally, in realizing authentication process, in order to improve accuracy and the safety of authentication process, link terminal to After core network control surface function CN-CP forwarding NAS authentication requests, link terminal can receive the authentication challenge of CN-CP transmissions, And forward authentication challenge to remote terminal；Link terminal receives the authentication challenge that remote terminal is sent in response to authentication challenge and rings It answers, and authentication challenge responses is forwarded to CN-CP.

According to an embodiment of the invention one, a kind of terminal authentication method is additionally provided, CN-CP is applied to.Fig. 5 is according to this The flow chart of the terminal authentication method applied to core network control surface functioning side of inventive embodiments one, as shown in figure 5, the flow Include the following steps：

Step S502, CN-CP receive the NAS authentication requests that remote terminal is sent by link terminal；

Step S504, CN-CP authenticate remote terminal, generate NAS Authentication Responses；

Step S506, CN-CP return to NAS Authentication Responses by the forwarding of link terminal to remote terminal.

In this way, core network control surface can realize the interaction with remote terminal by link terminal, to realize To the authentication of remote terminal.By above scheme, in remote terminal when being linked into network by link terminal, reach network energy The purpose of perception and control remote terminal.

In actual application, CN-CP can receive the NAS authentication requests that link terminal uses various ways to send, Such as：

CN-CP receives the general NAS of uplink that link terminal is sent and transmits message, wherein the general NAS transmission message of uplink is taken Band NAS authentication requests, the general NAS of uplink are transmitted in message, indicate that type of service is relaying NAS authentication services；Alternatively,

CN-CP receives the relaying NAS authentication request messages that link terminal is sent, wherein relaying NAS authentication request messages are taken Band NAS authentication requests.

For the ease of the smooth realization of authentication, the NAS authentication requests that CN-CP is received include：The network identity of remote terminal Mark and authentication parameter.

The NAS authentication requests that CN-CP is received may include neighbour's communications identification of remote terminal.By being asked in NAS authentications Ask neighbour's communications identification of the remote terminal of middle carrying, CN-CP that can mark remote terminal simultaneously when returning to NAS Authentication Responses Neighbour's communications identification, in order to which NAS Authentication Responses are forwarded to correct remote terminal by link terminal.

CN-CP can also receive the relaying access information of link terminal transmission, wherein relaying access information includes following letter One of breath or combination：The mark Relay UE ID of relaying access instruction Relay Indicator, the link terminal.By this Information, CN-CP can get remote terminal that current request is authenticated when accessing network by link terminal letter Breath.

For the ease of to remote terminal control and realize subsequent information exchange or data interaction, CN-CP is to long-range After terminal is authenticated, CN-CP can store the user context information of remote terminal, wherein above and below the user of remote terminal Literary information includes：

Remote terminal information, wherein remote terminal information includes one of following information or combination：The mark of remote terminal The IP address of Remote UE ID, remote terminal；

Relay access information, wherein relaying access information includes one of following information or combination：Relaying access instruction The mark Relay UE ID of Relay Indicator, link terminal.

For the ease of to remote terminal control and realize subsequent information exchange or data interaction, CN-CP is to long-range After terminal is authenticated, CN-CP can store the user context information of link terminal, wherein above and below the user of link terminal Literary information includes：

Pass through the information for the remote terminal that link terminal accesses, wherein pass through the letter for the remote terminal that link terminal accesses Breath includes one of following information or combination：Mark Remote UE ID of the remote terminal accessed by link terminal, pass through After the IP address of the remote terminal of terminal access.

In actual application, CN-CP may be used various ways and send NAS Authentication Responses to link terminal, such as：

CN-CP can send the general NAS of downlink to link terminal and transmit message, wherein the general NAS transmission message of downlink is taken Band NAS Authentication Responses, the general NAS of downlink are transmitted in message, indicate that type of service is relaying NAS authentication services；

CN-CP can send relaying NAS authentication response messages to link terminal, wherein relaying NAS authentication response messages are taken Band NAS Authentication Responses.

Which remote terminal NAS Authentication Responses should be sent to for the ease of link terminal identification, CN-CP can be to relaying Terminal sends the mark Remote UE ID of remote terminal, wherein the mark Remote UE ID of remote terminal include following letter At least one breath：Network identity mark, the neighbour's communications identification of remote terminal of remote terminal.It should be noted that CN-CP exists It when sending the mark Remote UE ID of remote terminal, can be sent in several ways, for example, can NAS sent The mark Remote UE ID that remote terminal is sent while Authentication Response, specifically can be in the outer package of NAS Authentication Responses The mark Remote UE ID of remote terminal.

Optionally, in realizing authentication process, in order to improve accuracy and the safety of authentication process, CN-CP receives remote After the Non-Access Stratum NAS authentication requests that journey terminal is sent by link terminal, CN-CP can be by link terminal to long-range end End sends authentication challenge, and receives the authentication challenge responses that remote terminal is returned by link terminal.

In order to enable core network user face obtains the information of remote terminal, after CN-CP authenticates remote terminal, CN-CP can send remote terminal to core network user face function (Core Network-User Plane, referred to as CN-UP) Information, wherein remote terminal information includes one of following information or combination：It is mark Remote UE ID of remote terminal, long-range IP address, the remote terminal information whether the authentication is passed of terminal.

Embodiment two

According to an embodiment of the invention two, a kind of SOT state of termination switching method is provided, the sides CN-CP are applied to.Fig. 6 is root According to the flow chart of the SOT state of termination switching method applied to core network control surface functioning side of the embodiment of the present invention two, such as Fig. 6 institutes Show, which includes the following steps：

Step S602, CN-CP receive the connection release request from radio node RAN, wherein connection release request is used for The connection of request release link terminal；

Step S604, CN-CP discharge the connection of link terminal, link terminal are placed in Idle state, and will be by relaying eventually Terminate into remote terminal be placed in Idle state.

In this way, core network control surface can be done in real time the switching to the state of remote terminal, by remote terminal It is placed in Idle state.By above scheme, network side realizes remote terminal comprehensive control, in remote terminal in In the case that terminal is linked into network, achieve the purpose that network can perceive and control remote terminal.

In practical applications, CN-CP can be according on the user context information of link terminal or the user of remote terminal Context information determines the remote terminal accessed by link terminal, and determining remote terminal is placed in Idle state.

The user context information of link terminal may include：Pass through the information for the remote terminal that link terminal accesses；CN- CP can determine the remote terminal accessed by link terminal according to the user context information of link terminal in the following manner： CN-CP searches the remote terminal accessed by link terminal in the user context information of link terminal；

And/or

The user context information of remote terminal may include：Remote terminal information and relaying access information；CN-CP can be with The remote terminal accessed by link terminal is determined according to the user context information of remote terminal in the following manner：CN-CP According to the relaying access information in the user context information of remote terminal, determine whether remote terminal connects via link terminal Enter.

Embodiment three

According to an embodiment of the invention three, a kind of downlink data delivering method is provided, the sides CN-CP are applied to.Fig. 7 is root According to the flow chart of the downlink data delivering method applied to core network control surface functioning side of the embodiment of the present invention three, such as Fig. 7 institutes Show, which includes the following steps：

Step S702, CN-CP receive the downlink data for being sent to remote terminal；

Step S704, CN-CP send downlink data by link terminal to remote terminal.

In this way, core network control surface realizes the interaction with remote terminal by link terminal, may be implemented to remote Journey terminal is initiated downlink data and is delivered.By above scheme, network side realizes remote terminal comprehensive control, long-range Terminal achievees the purpose that network can perceive and control remote terminal in the case where being linked into network by link terminal.

Optionally, before CN-CP is received and is sent to the downlink data of remote terminal, CN-CP can store remote terminal Contextual information, wherein the contextual information of remote terminal includes：

Optionally, it in the case where remote terminal is in Idle state, is sent to remote terminal by link terminal in CN-CP Before downlink data, further include：

CN-CP initiates paging request, wherein the mark Relay UE ID of link terminal and long-range are carried in paging request The mark Remote UE ID of terminal, wherein the mark Remote UE ID of remote terminal include at least one following information：Far Network identity mark, the neighbour's communications identification of remote terminal of journey terminal.

In practical applications, CN-CP can be sent to far according to the relaying access information of remote terminal to link terminal The downlink data of journey terminal.

Optionally, CN-CP can send downlink data by link terminal to remote terminal in several ways, such as：

CN-CP can send the general NAS of downlink to link terminal and transmit message, wherein the general NAS transmission message of downlink is taken Band downlink data, the general NAS of downlink are transmitted in message, indicate that type of service is relaying data delivery；Alternatively,

CN-CP can send relaying data delivery message to the corresponding link terminal of remote terminal, wherein relaying data are thrown It passs message and carries downlink data.

Optionally, the general NAS transmission message of downlink or relaying data delivery message can carry the mark of remote terminal Remote UE ID, wherein the mark Remote UE ID of remote terminal include at least one following information：The net of remote terminal Network identity, remote terminal neighbour's communications identification.

Optionally, CN-CP can determine that downlink data is destined for the downlink of remote terminal at least one in the following way Data：

In the case where downlink data is short message service SMS information, CN-CP determines SMS according to SMS delivery request message Information is destined for remote terminal；

In the case where downlink data is downstream IP data, CN-CP is according under the function CN-UP of core network user face Row data notification request message determines that downstream IP data is destined for remote terminal.

According to an embodiment of the invention three, a kind of downlink data delivering method is additionally provided, link terminal, Fig. 8 are applied to It is the flow chart of the according to embodiments of the present invention three downlink data delivering method applied to link terminal side, as shown in figure 8, should Flow includes the following steps：

Step S802, link terminal receive the downlink for being sent to the remote terminal accessed by link terminal that CN-CP is sent Data；

Step S804, link terminal send downlink data to remote terminal.

In this way, the interaction of core network control surface and remote terminal may be implemented in link terminal, so as to core network control Face processed can initiate downlink data to remote terminal and deliver.By above scheme, network side realizes remote terminal comprehensive Control, in remote terminal in the case where being linked into network by link terminal, long-range end can be perceived and control by reaching network The purpose at end.

Optionally, the downlink for being sent to the remote terminal accessed by link terminal that CN-CP is sent is received in link terminal Before data, can also include：

Link terminal receives the paging request that CN-CP is sent, wherein the mark of remote terminal is carried in paging request Remote UE ID, wherein the mark Remote UE ID of remote terminal include at least one following information：The net of remote terminal Network identity, remote terminal neighbour's communications identification；

Link terminal confirm remote terminal can and in the case of, to CN-CP initiate service request procedure.

Optionally, link terminal can send downlink data by the PC5 interfaces between remote terminal to remote terminal.

Example IV

According to an embodiment of the invention four, a kind of terminal authentication device is provided, is applied to remote terminal, Fig. 9 is basis The structure diagram of the terminal authentication device applied to remote terminal of the embodiment of the present invention four, as shown in figure 9, the device includes：

First sending module 92 sends non-connect for the forwarding by link terminal to core network control surface function CN-CP Enter a layer NAS authentication requests；

First receiving module 94 is coupled to the first sending module 92, is returned by link terminal for receiving CN-CP NAS Authentication Responses.

By the device, remote terminal can realize the interaction with core network control surface by the relaying of link terminal, complete At authentication process, to which core network control surface can realize the interaction with remote terminal by link terminal, to realize to remote The authentication of journey terminal.By above scheme, in remote terminal when being linked into network by link terminal, reaching network can perceive With the purpose of control remote terminal.

Optionally, the NAS authentication requests of the first sending module 92 transmission may include：

The network identity of remote terminal identifies and authentication parameter.

Optionally, the NAS authentication requests of the first sending module 92 transmission include：

Neighbour's communications identification of remote terminal.

Optionally, NAS Authentication Responses may include following information：

Authenticating result and the temporary identifier that CN-CP is remote terminal distribution.

According to an embodiment of the invention four, a kind of terminal authentication device is additionally provided, is applied to link terminal, Figure 10 is root According to the structure diagram of the terminal authentication device applied to link terminal of the embodiment of the present invention four, as shown in Figure 10, the device packet It includes：

Second receiving module 1002, for receiving the Non-Access Stratum NAS authentication requests from remote terminal；

First forwarding module 1004 is coupled to the second receiving module 1002, for turning to core network control surface function CN-CP Send out NAS authentication requests；

Third receiving module 1006 is coupled to the first forwarding module 1004, is rung for receiving the NAS authentications from CN-CP It answers；

Second forwarding module 1008, is coupled to third receiving module 1006, for being rung to remote terminal forwarding NAS authentications It answers.

By the device, the forward pass of interacting message between core network control surface and remote terminal may be implemented in link terminal, To coordinate the realization of authentication process.Reached in remote terminal when being linked into network by link terminal by above scheme Network can perceive and control the purpose of remote terminal.

Optionally, the first forwarding module 1004 is additionally operable to send relaying access information to CN-CP, wherein relaying access letter Breath includes one of following information or combination：The mark Relay of relaying access instruction Relay Indicator, the link terminal UE ID。

Optionally, NAS Authentication Responses may include following information：Authenticating result and CN-CP are facing for remote terminal distribution When identify.

Optionally, third receiving module 1006 can be also used for：

Receive the mark Remote UE ID of the remote terminal from CN-CP, wherein the mark Remote of remote terminal UE ID include at least one following information：Network identity mark, the neighbour's communications identification of remote terminal of remote terminal.

Optionally, the second forwarding module 1008 is used to be turned to remote terminal according to the mark Remote UE ID of remote terminal Send out NAS Authentication Responses.

According to an embodiment of the invention four, a kind of terminal authentication device is provided, core network control surface function CN- is applied to CP, Figure 11 are the structure diagrams of the according to embodiments of the present invention four terminal authentication device applied to core network control surface function, As shown in figure 11, which includes：

4th receiving module 1102 is asked for receiving the Non-Access Stratum NAS authentications that remote terminal is sent by link terminal It asks；

Authentication module 1104 is coupled to the 4th receiving module 1102, for being authenticated to remote terminal, generates NAS mirror Power response；

Second sending module 1106, is coupled to authentication module 1104, for the forwarding by link terminal, to remote terminal Return to NAS Authentication Responses.

By the device, core network control surface can realize the interaction with remote terminal by link terminal, to realize To the authentication of remote terminal.By above scheme, in remote terminal when being linked into network by link terminal, reach network energy The purpose of perception and control remote terminal.

Optionally, the NAS authentication requests of the 4th receiving module 1102 reception may include：

Optionally, the NAS authentication requests that the 4th receiving module 1102 receives may include one of following information or combination：

Neighbour's communications identification of remote terminal；

Relay access information, wherein relaying access information includes one of following information or combination：Relaying access instruction The mark Relay UE ID of Relay Indicator, the link terminal.

Optionally, which can also include the first memory module, for being authenticated to remote terminal in authentication module Afterwards, the user context information of remote terminal is stored, wherein the user context information of remote terminal includes：

Optionally, the first memory module is additionally operable to after remote terminal is authenticated, and stores the user of link terminal or more Literary information, wherein the user context information of link terminal includes：

Optionally, NAS Authentication Responses include following information：

Authenticating result and the temporary identifier distributed for remote terminal.

Optionally, the second sending module 1106 is additionally operable to send the mark Remote UE of remote terminal to link terminal ID, wherein the mark Remote UE ID of remote terminal include at least one following information：The network identity mark of remote terminal Know, neighbour's communications identification of remote terminal.

Embodiment five

According to an embodiment of the invention five, a kind of SOT state of termination switching device is provided, core network control surface work(is applied to Energy CN-CP, Figure 12 is according to embodiments of the present invention five SOT state of termination switching device applied to core network control surface function Structure diagram, as shown in figure 12, which includes：

5th receiving module 1202, for receiving the connection release request from radio node RAN, wherein Connection Release Connection of the request for asking release link terminal；

Connection Release module 1204 is coupled to the 5th receiving module 1202, the connection for discharging link terminal；

State setting module 1206 is coupled to Connection Release module 1204, for link terminal to be placed in Idle state, and will It is placed in Idle state by the remote terminal that link terminal accesses.

By the device, core network control surface can be done in real time the switching to the state of remote terminal, by remote terminal It is placed in Idle state.By above scheme, network side realizes remote terminal comprehensive control, in remote terminal in In the case that terminal is linked into network, achieve the purpose that network can perceive and control remote terminal.

Optionally, state setting module 1206 includes：

Determination unit, for true according to the user context information of link terminal or the user context information of remote terminal The fixed remote terminal accessed by link terminal；

State set unit, for the remote terminal determined to be placed in Idle state.

Optionally, the user context information of link terminal may include：The remote terminal accessed by link terminal Information；Determination unit in the user context information of link terminal for searching the remote terminal accessed by link terminal；

And/or

The user context information of remote terminal may include：Remote terminal information and relaying access information；Determination unit For the relaying access information in the user context information according to remote terminal, determine remote terminal whether via link terminal Access.

Embodiment six

According to an embodiment of the invention six, a kind of downlink data delivery apparatus is provided, core network control surface work(is applied to Energy CN-CP, Figure 13 is the according to embodiments of the present invention six downlink data delivery apparatus applied to core network control surface function Structure diagram, as shown in figure 13, which includes：

6th receiving module 1302, for receiving the downlink data for being sent to remote terminal；

Third sending module 1304 is coupled to the 6th receiving module 1302, for being sent out to remote terminal by link terminal Send downlink data.

By the device, core network control surface is realized the interaction with remote terminal by link terminal, may be implemented to remote Journey terminal is initiated downlink data and is delivered.By above scheme, network side realizes remote terminal comprehensive control, long-range Terminal achievees the purpose that network can perceive and control remote terminal in the case where being linked into network by link terminal.

Optionally, the device can also include the second memory module, the contextual information for storing remote terminal, In, the contextual information of remote terminal includes：

Optionally, which can also include paging module, in the case where remote terminal is in Idle state, the Before three sending modules 1304 send downlink data by link terminal to remote terminal, paging request is initiated, wherein paging is asked Seek the mark Remote UE ID of middle mark the Relay UE ID and remote terminal for carrying link terminal, wherein remote terminal It includes at least one following information to identify Remote UE ID：The network identity mark of remote terminal, the neighbour of remote terminal are logical News mark.

Optionally, third sending module 1304 can be used for the relaying access information according to remote terminal, to link terminal It is sent to the downlink data of remote terminal.

Optionally, third sending module 1304 is used for：

The general NAS of downlink is sent to link terminal and transmits message, wherein the general NAS transmission message of downlink carries lower line number According to the general NAS of downlink is transmitted in message, indicates that type of service is relaying data delivery；Alternatively,

Relaying data delivery message is sent to the corresponding link terminal of remote terminal, wherein relaying data delivery message is taken Band downlink data.

Optionally, the general NAS transmission message of downlink or relaying data delivery message carry the mark Remote of remote terminal UE ID, wherein the mark Remote UE ID of remote terminal include at least one following information：The network identity of remote terminal Mark, neighbour's communications identification of remote terminal.

According to an embodiment of the invention six, a kind of downlink data delivery apparatus is additionally provided, link terminal, Figure 14 are applied to It is the structure diagram of the according to embodiments of the present invention six downlink data delivery apparatus applied to link terminal, as shown in figure 14, The device includes：

7th receiving module 1402 passes through link terminal for receiving being sent to for core network control surface function CN-CP transmissions The downlink data of the remote terminal of access；

4th sending module 1404 is coupled to the 7th receiving module 1402, for sending downlink data to remote terminal.

By the device, the interaction of core network control surface and remote terminal may be implemented in link terminal, so as to core network control Face processed can initiate downlink data to remote terminal and deliver.By above scheme, network side realizes remote terminal comprehensive Control, in remote terminal in the case where being linked into network by link terminal, long-range end can be perceived and control by reaching network The purpose at end.

Optionally, which further includes：

8th receiving module, the paging request for receiving CN-CP transmissions, wherein remote terminal is carried in paging request Mark Remote UE ID, wherein the mark Remote UE ID of remote terminal include at least one following information：It is long-range whole Network identity mark, neighbour's communications identification of remote terminal at end；

Service request module, for confirm remote terminal can and in the case of, to CN-CP initiate service request procedure.

Embodiment seven

Figure 15 is the configuration diagram of the embodiment of the present invention seven, including：

-Remote UE：Remote terminal can only pass through Relay UE access in the case of no network coverage；

-Relay UE：Link terminal provides relaying access for Remote UE；

-RAN：Radio node provides wireless access function for Relay UE；

-CN-CP：Core network control surface function provides authentication for Relay UE, Remote UE, bearing resource management, moves The Row controls function such as mobility management；

-CN-UP：Core network user face function provides IP address distribution, the routing of IP data for Relay UE, Remote UE Etc. functions；

-CN-SD：Core net subscribed database provides subscription data access facility for Relay UE, Remote UE；

- NG-Uu interfaces：Interface between Relay UE and RAN, to transmit AS (Access Stratum, access layer) letters It enables；

- NG1 interfaces：Interface between Relay UE and CN-CP, to transmit NAS (Non-Access Stratum, it is non-to connect Enter layer) signaling；

- NG2 interfaces：Interface between RAN and CN-CP, transmission control plane signaling；

- NG3 interfaces：Interface between RAN and CN-UP transmits user face data；

- NG4 interfaces：Interface between CN-CP and CN-UP transmits bearer control signalling；

In framework shown in figure 15, Relay UE are that Remote UE serve as NAS relayings, that is, receive Remote UE and exist The NAS message sent on PC5 interfaces is transmitted to CN-CP on NG1 interfaces.Or it receives CN-CP and is sent on NG1 interfaces The NAS message of Remote UE is transmitted to Remote UE on PC5 interfaces.That is, without physically between Remote UE and CN-CP NG1 interfaces, the NAS message between Remote UE and CN-CP, the NG1 interface messages being packaged between Relay UE and CN-CP In.

When framework applications shown in figure 15 are in LTE/EPS, there is following correspondence：

-RAN：That is eNodeB；

-CN-CP：That is MME；

-CN-UP：That is SGW, PGW；

-CN-SD：That is HSS；

-NG-Uu：That is LTE-Uu interfaces；

-NG2：That is S1-AP interfaces；

-NG3：That is S1-U interface；

-NG4：That is S11 interfaces；

Figure 16 A, 16B are the chain of command agreement stack schematic diagrames of the embodiment of the present invention seven, wherein：

On Relay UE, there are a NAS Relay protocol layer, which receives Remote from PC5 interfaces The NAS signaling that UE is sent, to the NAS signaling of CN-CP forwarding Remote UE on NG1 interfaces.Conversely, being received on NG1 interfaces CN-CP is sent to the NAS signaling of Remote UE, and Remote UE are transmitted on PC5 interfaces.

On PC5 interfaces, two ways transmitting-receiving NAS signaling can be used in Remote UE：

- 1) NAS signaling is sent, from Relay to Relay UE by PC5 signaling planes (PC5-C) such as Figure 16 A, Remote UE UE receives NAS signaling.For this purpose, in PC5 signaling planes, need to increase corresponding PC5 message, as NAS signaling relay request, NAS believe Relaying response is enabled, etc..

- 2) NAS signaling is sent, from Relay to Relay UE by PC5 user planes (PC5-U) such as Figure 16 B, Remote UE UE receives NAS signaling.In order to distinguish the transmitting-receiving of the conventional IP data on PC5-U, following mode may be used and realize：Specified one A special port, the port are only used for the transmission of NAS signaling；

Protocol stack architecture as shown in Figure 16 it is found that the framework only has an impact Remote UE, Relay UE, CN-CP, On RAN without influence.

Figure 16 C are the user face protocol stack schematic diagrames of the embodiment of the present invention seven, wherein：

- Relay UE provide the mapping of the IP data transmissions from PC5 interface data transmissions to Relay UE for Remote UE And conversion.Upstream datas of the Remote UE on PC5 interfaces is mapped to the carrying of the PDN connections for relaying by Relay UE On, it is sent to core net.Conversely, core net is sent to the downlink data of Remote UE, by Relay UE from the PDN for relaying It is taken out in the carrying of connection, Remote UE is sent to by PC5 interfaces.

Embodiment eight

Figure 17 is that the remote terminal of the embodiment of the present invention eight is linked into the flow diagram of network by link terminal.This reality It applies in example, Remote UE and Relay UE send and receive NAS signaling in PC5 signaling planes.

Figure 17 has following steps：

S1701, Relay UE are attached to network, establish PDN connections；

S1702, Remote UE have found Relay UE；

In this step, the ability that Relay UE are broadcasted according to Remote UE, to select suitable Relay.In we In case, Relay UE broadcast following ability：The APN that is supported, NAS whether is supported to relay (NAS Relay) function.

S1703, on PC5 interfaces, Remote UE establish one-to-one (One-2-One) communication to Relay UE requests；

In this step, Remote UE carry user information (User Info) in the request, including specific APN, According to the APN, Relay UE need to establish corresponding PDN connections to network request, logical for providing relaying for Remote UE News.

S1704, Relay UE use specific APN, and the PDN connections for relaying are established to network request；

S1705, Relay UE distribute IP address, the address or an address private ip v4 for Remote UE, or It is an IPv6 prefix；

S1706, Relay UE send remote terminal access report to core network control surface function CN-CP, carry Remote The information of UE, such as the IP address for identifying Remote UE ID, remote terminal of remote terminal；

S1707, core network control surface function CN-CP send remote terminal access report to core network user face function CN-UP It accuses, carries the information of Remote UE；

In the present solution, being default to, after core network user face function CN-UP obtains the information of Remote UE, to Remote The uplink and downlink data of UE execute gate and forbid, i.e., Remote UE is not allowed initially to initiate uplink and downlink data.

S1708, on PC5 interfaces, using PC5 signaling messages, Remote UE send NAS authentication requests to Relay UE；

In this step, PC5 signaling messages can be：NAS relay requests.

In this step, the NAS authentication requests that Remote UE are sent to core net can be an independent NAS authentication (NAS Authentication Request) message is asked, can also be the attach request (Attach for not establishing PDN connections Request) message.

In this step, Remote UE can carry NAS authentication informations in NAS authentication requests, can also further take Band neighbour's communications identification.

Wherein, NAS authentication informations include following information：

The network identity of-Remote UE identifies, such as IMSI, IMEI；

Authentication parameter, such as authentication arithmetic, etc.；

Wherein, neighbour's communications identification (ProSe UE ID) is the mark of Remote UE used on PC5 interfaces, example Such as, the layer 2 of Remote UE identifies (Layer 2ID), etc.；

NAS authentication requests of S1709, the Relay UE to core network control surface function CN-CP forward Remote UE；

In this step, Relay UE are in the following way to the NAS authentication requests of CN-CP forward Remote UE：

The general NAS of uplink transmits (Uplink Generic NAS Transport) message, wherein carrying Remote UE's NAS authentication requests.Also, the type of service of the general NAS transmission message of uplink is arranged to：Relay NAS authentication services.Or,

NAS authentication request messages are relayed, relative to the relevant technologies, this introduces message to be new.

In this step, further, Relay UE can also send relaying access information to CN-CP, wherein relaying connects It is one of following information or combination to enter information：

Relaying access instruction (Relay instructions), it indicates that Remote UE currently pass through link terminal (Relay UE it) accesses；

The mark (Relay UE ID) of link terminal；

S1710, CN-CP obtain the subscription data of terminal from core net subscribed database CN-SD；

S1711~S1712, CN-CP send authentication challenge to Remote UE, and the authentication challenge is by Relay UE forwardings Give Remote UE；

S1713~S1714, Remote UE calculate authentication challenge responses, and authentication challenge responses, the authentication are sent to CN-CP Challenge responses are transmitted to CN-CP by Relay UE；

S1715, core network control surface function CN-CP return to relaying NAS Authentication Responses to Relay UE；

In this step, core network control surface function CN-CP sends NAS authentications to Relay UE in the following way and rings It answers：

The general NAS of downlink transmits (Downlink Generic NAS Transport) message, and the message is arranged Type is：Relay NAS authentication messages.Or,

NAS authentication response messages are relayed, relative to the relevant technologies, this introduces message to be new.

In this step, NAS Authentication Responses, including following information：Authenticating result, CN-CP are facing for Remote UE distribution When identify.

In this step, further, when core network control surface function CN-CP sends NAS Authentication Responses to Relay UE, Can also further following information be sent to Relay UE：

The mark Remote UE ID of remote terminal, may include at least one following information：The network of remote terminal Identity (such as IMSI), remote terminal neighbour's communications identification.According to the mark Remote UE ID of the remote terminal, NAS Authentication Responses are sent to correct Remote UE by Relay UE.

After S1716, Relay node receive the relaying NAS Authentication Responses of CN-CP, on PC5 interfaces, disappeared by PC5 signalings Breath returns to NAS Authentication Responses to Remote UE；

S1717, after authenticating successfully, CN-CP stores the user's context of Remote UE；

In this step, CN-CP stores the user's context of Remote UE, includes the combination of following information：

The information of Remote UE, as Remote UE network identity mark (IMSI, IMEI), Remote UE IP Location, etc.；

Authentication information, such as authentication vector, authenticating result, etc.；

Neighbour's communications identification of remote terminal, for example, the layer 2 of Remote UE identifies (2 ID of Layer), etc.；

Relay access information, such as relaying access instruction (Relay instructions), link terminal mark (Relay UE ID, such as IMSI), the IP address of Relay UE, etc.；

If without Relay UE ID, CN-CP in carrying according to Relay UE in the NAS authentication requests of Remote UE Context voluntarily obtain Relay UE ID.

Further, CN-CP can store following information in the context of Relay UE：

By the information of all Remote UE of the Relay UE access, such as the mark Remote UE of remote terminal The IP address of ID, remote terminal, etc..

S1718, CN-CP send a notification message to CN-UP, carry the information of Remote UE；

In this step, the information of entrained Remote UE, including：The ID of Remote UE, the IP of Remote UE, Whether the authentication is passed.

After CN-UP receives the information of Remote UE, according to Remote UE, whether the authentication is passed, control Remote UE's The gate of context data transmission.For example, only when the authentication is passed by Remote UE, just allow the uplink and downlink data of Remote UE Transmission, otherwise forbids the uplink and downlink data transmission of Remote UE.

Thereafter, Remote UE send upstream IP data, or receive downstream IP data, which passes through in Relay UE After, and the IP Deta bearers are in the PDN connections for relaying that Relay UE are established by Remote UE.

It should be pointed out that in the flow shown in Figure 17, step S1708~S1717 can be happened at step S1703 Before~S1707, at this point, due to performing step S1706~S1707, then step S1717 is not needed.

Embodiment nine

Figure 18 is that the remote terminal of the embodiment of the present invention nine is linked into the flow diagram of network by link terminal.This reality It applies in example, Remote UE and Relay UE send and receive NAS signaling in PC5 user planes.

It compares with flow shown in Figure 17, flow shown in Figure 18 has following difference：

On PC5 interfaces, such as step S1808, S1812, S1813, S1816, between Remote UE and Relay UE Using PC5 user planes (i.e. PC5 data packets), to transmit the NAS signaling of Remote UE；

Step S1803~S1807 has to carry out before step S1808~S1818；

Step S1806~S1807 is not essential, if executing S1818 steps, S1806, S1807 can be omitted.

Embodiment ten

Figure 19 has following steps：

S1901, Relay UE are attached in network；

S1902, flow as shown in figure 18, Remote UE have found Relay UE, and pass through Relay UE access to network；

S1903, Relay UE enter Idle state；

S1904, radio node RAN send connection release request to core network control surface function CN-CP；

S1905, CN-CP send access bearer release request to CN-UP；

After CN-UP receives access bearer release request, the access bearer between RAN and CN-UP is discharged.

S1906, CN-UP return to access bearer release response to CP-CN；

Relay UE are placed in Idle state by S1907, CN-CP, while will be via the Remote UE mergings of Relay UE access Idle state；

In this step, CN-CP searches the Remote UE Jing Guo Relay UE access in the following way：

In the context of Relay UE, Remote UE information is searched；Or,

In the context of Remote UE, searches Relay UE information and Remote is judged according to Relay UE information Whether UE is via the Relay UE access.

S1908, CN-CP return to connection release response to RAN.

Embodiment 11

Figure 20 is that according to embodiments of the present invention 11 application server sends the flow of downlink SMS messaging to remote terminal Schematic diagram.

Figure 20 has following steps：

S2001, application server AS wish to send SMS messaging to Remote UE.AS initiates SMS to sms center SM-SC Delivery request；

S2002, SM-SC obtain the CN-CP that Remote UE currently adhere to, and SMS delivery requests are initiated to CN-CP；

S2003, if Remote UE are currently in Idle state, CN-CP initiates paging flow；

In this step, CN-CP is determined according to SMS delivery request message and is needed to initiate paging to Remote UE, according to The context of Remote UE judges that Remote UE are by link terminal Relay UE access, then CN-CP initiations paging is asked It asks, carries mark, the mark of Remote UE of Relay UE.Wherein, the mark of Remote UE can be one of following or it Combination：The network identity mark (IMSI) of Remote UE, (such as Remote UE connect neighbour's communications identification of Remote UE in PC5 Layer 2 on mouth identifies Layer 2ID).

S2004, CN-CP send paging request to RAN, carry the mark of Relay UE；

Further, in this step, according to the decision of CN-CP in S2003, Remote UE are also carried in paging request Mark.

S2005, RAN send paging request to Relay UE, carry mark, the mark of Remote UE of Relay UE；

After S2006, Relay UE receive paging request, on PC5 interfaces, detection Remote UE whether can and；

In this step, if Relay UE judge only to carry the mark of Relay UE, Relay UE in the paging request Itself respond the paging.If Relay UE judge to carry the mark of Remote UE in the paging request, according to Remote UE Mark detected on PC5 interfaces Remote UE whether can and.It has been released if Relay UE judgements are connected with the PC5 of Remote UE It puts, i.e. Remote UE are unreachable, then Relay UE can be not responding to the paging request.

S2007, Relay UE response pagings, service request procedure is initiated to CN-CP, restores radio bearer, access net is held Load, core are net loaded；

S2008, since Remote UE are via Relay UE access to network, CN-CP judgements should be initiated to Relay UE SMS is delivered；

S2009, CN-CP send downlink NAS requests to Relay UE, carry the SMS data that be sent to Remote UE；

In this step, CN-CP can send SMS data to Relay UE in the following way：

The general NAS of downlink transmits (Downlink Generic NAS Transport) message, and the message is arranged Type is：SMS is relayed to deliver.Or,

It relays SMS and delivers message, relative to the relevant technologies, this introduces message to be new.

In the general NAS transmission message of downlink or relaying SMS deliver message, CN-CP carries the mark of Remote UE Which (Remote UE ID) can determine whether be delivered to SMS data correctly according to Remote UE ID, the Relay UE Remote UE.Wherein, the mark of Remote UE can be one or a combination set of following：The network identity mark of Remote UE Know (IMSI), neighbour's communications identification of Remote UE (layers 2 of such as Remote UE on PC5 interfaces identifies Layer 2ID).

S2010, on PC5 interfaces, Relay UE forward SMS delivery requests to Remote UE, carry SMS data；

S2011, on PC5 interfaces, Remote UE return to SMS to Relay UE and deliver response；

S2012, Relay UE send downlink NAS responses to CN-CP, carry SMS and deliver response；

S2013, CN-CP return to SMS to SM-SC and deliver response；

S2014, SM-SC return to SMS to AS and deliver response.

Embodiment 12

Figure 21 has following steps：

S2101, Relay UE are attached in network；

S2102, flow as shown in figure 17, Remote UE have found Relay UE, and pass through Relay UE access to network；

S2103, flow as shown in figure 19, Relay UE, Remote UE enter Idle state；

S2104, application service send downlink data to Remote UE, i.e., send downstream IP to the IP address of Remote UE Data；

S2105, CN-UP send downlink data notification request to CN-CP；

After CN-UP receives downstream IP data, judge that the access bearer between CN-UP and RAN has been released, is then sent out to CN-CP Downlink data notification is sent to ask.

S2106, CN-CP return to downlink data notification response to CN-UP；

S2107, CN-CP judge that paging should be initiated to Relay UE；

In this step, the information during CN-CP is asked according to downlink data notification judges the terminal that should be paged, is only to seek Exhale Relay UE, or paging Relay UE and Remote UE：

If the information in being asked according to downlink data notification, judge only to page Relay UE, then CN-CP is in paging request Only carry the mark of Relay UE；Or,

If the information in being asked according to downlink data notification, judge that Remote UE need to be paged, then CN-CP is in paging request Middle mark, the mark of Remote UE for carrying Relay UE.Wherein, the mark of Remote UE can be one of following or it Combination：The network identity mark (IMSI) of Remote UE, (such as Remote UE connect neighbour's communications identification of Remote UE in PC5 Layer 2 on mouth identifies Layer 2ID).

CN-CP can be asked by downlink data notification in information, such as load identification judges the terminal that should page.Pass through Load identification can obtain corresponding carrying, and obtain the IP address corresponding to the carrying, judge that the IP address is by Relay UE It uses, or is used by Remote UE, CN-CP can determine whether the terminal that should be paged, corresponding to be carried in paging request Terminal iidentification.

S2108, CN-CP send paging request to RAN, carry the mark of Relay UE；

Further, in this step, according to the decision of CN-CP in S2107, Remote UE are also carried in paging request Mark.

S2109, RAN send paging request to Relay UE, carry mark, the mark of Remote UE of Relay UE；

After S2110, Relay UE receive paging request, on PC5 interfaces, detection Remote UE whether can and；

In this step, if Relay UE judge only to carry the mark of Relay UE, Relay UE in the paging request Itself respond the paging.If Relay UE judge to carry the mark of Remote UE in the paging request, detected on PC5 interfaces Remote UE whether can and.It having been discharged if Relay UE judgements are connected with the PC5 of Remote UE, i.e. Remote UE are unreachable, Then Relay UE can be not responding to the paging request.

S2111, Relay UE initiate service request procedure to CN-CP, restore radio bearer, access net loaded, core net Carrying；

S2112~S2113, carrying restore after, UP-GW send downstream IP data, Relay UE on PC5 interfaces will under Row IP data forwardings give Remote UE.

Obviously, those skilled in the art should be understood that each module of the above invention or each step can be with general Computing device realize that they can be concentrated on a single computing device, or be distributed in multiple computing devices and formed Network on, optionally, they can be realized with the program code that computing device can perform, it is thus possible to which they are stored It is performed by computing device in the storage device, and in some cases, it can be with different from shown in sequence execution herein The step of going out or describing, either they are fabricated to each integrated circuit modules or by them multiple modules or Step is fabricated to single integrated circuit module to realize.In this way, the present invention is not limited to any specific hardware and softwares to combine.

The foregoing is only a preferred embodiment of the present invention, is not intended to restrict the invention, for the skill of this field For art personnel, the invention may be variously modified and varied.All within the spirits and principles of the present invention, any made by repair Change, equivalent replacement, improvement etc., should all be included in the protection scope of the present invention.

Claims

1. a kind of terminal authentication method, which is characterized in that including：

Remote terminal is sent Non-Access Stratum NAS authentications to core network control surface function CN-CP and is asked by the forwarding of link terminal It asks；

2. according to the method described in claim 1, it is characterized in that,

By the forwarding of the link terminal, send the NAS authentication requests to the CN-CP includes the remote terminal：

The remote terminal sends the NAS authentication requests using PC5 signaling messages or PC5 data packets to the link terminal；

Link terminal described in the remote terminal reception is sent using PC5 signaling messages or PC5 data packets to the link terminal The NAS Authentication Responses.

3. method according to claim 1 or 2, which is characterized in that the NAS authentication requests that the remote terminal is sent Including：

4. method according to claim 1 or 3, which is characterized in that the NAS authentication requests that the remote terminal is sent Including：

Neighbour's communications identification of the remote terminal.

5. method according to claim 1 or 2, which is characterized in that the NAS Authentication Responses include：

6. method according to any one of claims 1 to 5, which is characterized in that pass through the relaying in the remote terminal The forwarding of terminal further includes after sending the NAS authentication requests to the CN-CP：

CN-CP described in the remote terminal reception is asked by the authentication challenge that the link terminal is sent to the remote terminal It asks；

The remote terminal, which calculates, generates authentication challenge responses, and by the forwarding of the link terminal, is sent to the CN-CP The authentication challenge responses.

7. a kind of terminal authentication method, which is characterized in that including：

The link terminal receives the NAS Authentication Responses from the CN-CP；

8. the method according to the description of claim 7 is characterized in that

The link terminal receives the NAS authentication requests from the remote terminal：

The link terminal receives the NAS authentications that the remote terminal is sent using PC5 signaling messages or PC5 data packets and asks It asks；

The link terminal sends the NAS Authentication Responses using PC5 signaling messages or PC5 data packets to the remote terminal.

9. the method according to the description of claim 7 is characterized in that the link terminal forwards the NAS mirror to the CN-CP Power is asked：

The link terminal sends the general NAS of uplink to the CN-CP and transmits message, wherein the general NAS transmission of uplink disappears Breath carries the NAS authentication requests, and the general NAS of uplink is transmitted in message, indicates that type of service is that relaying NAS authenticates industry Business；Alternatively,

The link terminal sends relaying NAS authentication request messages to the CN-CP, wherein the relaying NAS authentication requests disappear Breath carries the NAS authentication requests.

10. method according to any one of claims 7 to 9, which is characterized in that further include：

The link terminal sends relaying access information to the CN-CP, wherein the relaying access information includes following information One of or combination：The mark Relay UE ID of relaying access instruction Relay Indicator, the link terminal.

11. the method according to the description of claim 7 is characterized in that the link terminal is received from described in the CN-CP NAS Authentication Responses include：

The link terminal receives the general NAS of downlink from the CN-CP and transmits message, wherein the general NAS of downlink is passed Defeated message carries the NAS Authentication Responses, and the general NAS of downlink is transmitted in message, indicates that type of service is relaying NAS authentications Business；

The link terminal receives the relaying NAS authentication response messages from the CN-CP, wherein the relaying NAS authentications are rung Message is answered to carry the NAS Authentication Responses.

12. the method according to claim 7 or 11, which is characterized in that the NAS Authentication Responses include：

13. according to the method described in claim 7 or 11 or 12, which is characterized in that further include：

The link terminal receives the mark Remote UE ID of the remote terminal from the CN-CP, wherein described remote The mark Remote UE ID of journey terminal include at least one following information：The network identity of the remote terminal identifies, is described Neighbour's communications identification of remote terminal.

14. the method according to claim 7 or 13, which is characterized in that the link terminal is forwarded to the remote terminal The NAS Authentication Responses include：

The link terminal forwards the NAS to reflect according to the mark Remote UE ID of the remote terminal to the remote terminal Power response.

15. according to claim 7 to 14 any one of them method, which is characterized in that in the link terminal to core network control After function CN-CP in face processed forwards the NAS authentication requests, further include：

The link terminal forwards the authentication challenge responses to the CN-CP.

16. a kind of terminal authentication method, which is characterized in that including：

Core network control surface function CN-CP receives the Non-Access Stratum NAS authentication requests that remote terminal is sent by link terminal；

17. according to the method for claim 16, which is characterized in that the CN-CP receives the remote terminal described in Link terminal send the NAS authentication requests include：

The CN-CP receives the general NAS transmission message of uplink that the link terminal is sent, wherein the general NAS of uplink is passed Defeated message carries the NAS authentication requests, and the general NAS of uplink is transmitted in message, indicates that type of service is relaying NAS authentications Business；Alternatively,

The CN-CP receives the relaying NAS authentication request messages that the link terminal is sent, wherein the relaying NAS authentications are asked Message is asked to carry the NAS authentication requests.

18. method according to claim 16 or 17, which is characterized in that the NAS authentication requests that the CN-CP is received Including：

19. the method according to claim 16 or 18, which is characterized in that the NAS authentication requests that the CN-CP is received Including：

Neighbour's communications identification of the remote terminal.

20. according to the method described in claim 16 or 18 or 19, which is characterized in that further include：

The CN-CP receives the relaying access information that the link terminal is sent, wherein the relaying access information includes as follows One of information or combination：The mark Relay UE ID of relaying access instruction Relay Indicator, the link terminal.

21. according to claim 16 to 20 any one of them method, which is characterized in that the CN-CP is to the remote terminal After being authenticated, further include：

The CN-CP stores the user context information of the remote terminal, wherein the user's context of the remote terminal is believed Breath includes：

Remote terminal information, wherein the remote terminal information includes one of following information or combination：The mark of the remote terminal Know the IP address of Remote UE ID, the remote terminal；

22. according to the method for claim 21, which is characterized in that after the CN-CP authenticates the remote terminal, Further include：

The CN-CP stores the user context information of the link terminal, wherein the user's context of the link terminal is believed Breath includes：

Pass through the information for the remote terminal that the link terminal accesses, wherein the remote terminal accessed by the link terminal Information include one of following information or combination：Pass through the mark Remote UE for the remote terminal that the link terminal accesses The IP address of ID, the remote terminal accessed by the link terminal.

23. according to the method for claim 16, which is characterized in that the CN-CP by the forwarding of the link terminal, to The remote terminal returns to the NAS Authentication Responses：

The CN-CP sends the general NAS of downlink to the link terminal and transmits message, wherein the general NAS transmission of downlink disappears Breath carries the NAS Authentication Responses, and the general NAS of downlink is transmitted in message, indicates that type of service is that relaying NAS authenticates industry Business；

The CN-CP sends relaying NAS authentication response messages to the link terminal, wherein the relaying NAS Authentication Responses disappear Breath carries the NAS Authentication Responses.

24. the method according to claim 16 or 23, which is characterized in that the NAS Authentication Responses include：

25. according to the method described in claim 16,23 or 24, which is characterized in that further include：

The CN-CP sends the mark Remote UE ID of the remote terminal to the link terminal, wherein the long-range end The mark Remote UE ID at end include at least one following information：The network identity of the remote terminal identifies, is described long-range Neighbour's communications identification of terminal.

26. according to claim 16 to 25 any one of them method, which is characterized in that core network control surface function CN-CP connects After receiving the Non-Access Stratum NAS authentication requests that remote terminal is sent by link terminal, further include：

27. according to claim 16 to 26 any one of them method, which is characterized in that the CN-CP is to the remote terminal After being authenticated, further include：

The CN-CP sends remote terminal information to core network user face function CN-UP, wherein the remote terminal information packet Include one of following information or combination：It is mark Remote UE ID of the remote terminal, the IP address of the remote terminal, described The remote terminal information whether the authentication is passed.

28. a kind of SOT state of termination switching method, which is characterized in that including：

Core network control surface function CN-CP receives the connection release request from radio node RAN, wherein the Connection Release Connection of the request for asking release link terminal；

The CN-CP discharges the connection of the link terminal, the link terminal is placed in Idle state, and will pass through the relaying The remote terminal of terminal access is placed in Idle state.

29. according to the method for claim 28, which is characterized in that the CN-CP will be accessed by the link terminal Remote terminal is placed in Idle state：

The CN-CP is true according to the user context information of the link terminal or the user context information of the remote terminal Surely the remote terminal accessed by the link terminal；

The determining remote terminal is placed in Idle state by the CN-CP.

30. according to the method for claim 29, which is characterized in that

The user context information of the link terminal includes：Pass through the information for the remote terminal that the link terminal accesses；Institute It states CN-CP and determines the remote terminal accessed by the link terminal according to the user context information of the link terminal Including：Described in the CN-CP is searched in the user context information of the link terminal and is accessed by the link terminal Remote terminal；

And/or

The user context information of the remote terminal includes：Remote terminal information and relaying access information；The CN-CP according to The user context information of the remote terminal is determined through the remote terminal that the link terminal accesses：It is described CN-CP determines that the remote terminal is according to the relaying access information in the user context information of the remote terminal It is no to be accessed via the link terminal.

31. a kind of downlink data delivering method, which is characterized in that including：

The CN-CP sends the downlink data by link terminal to the remote terminal.

32. according to the method for claim 31, which is characterized in that the CN-CP receives the institute for being sent to the remote terminal Before stating downlink data, further include：

The CN-CP stores the contextual information of the remote terminal, wherein the contextual information of the remote terminal includes：

33. according to the method for claim 31, which is characterized in that in the case where the remote terminal is in Idle state, Before the CN-CP sends the downlink data by the link terminal to the remote terminal, further include：

The CN-CP initiates paging request, wherein the mark Relay UE of the link terminal are carried in the paging request The mark Remote UE ID of ID and the remote terminal, wherein the mark Remote UE ID of the remote terminal include such as At least one lower information：Network identity mark, the neighbour's communications identification of the remote terminal of the remote terminal.

34. according to the method for claim 31, which is characterized in that the CN-CP is by link terminal to the long-range end End sends the downlink data：

The CN-CP is sent to the long-range end according to the relaying access information of the remote terminal to the link terminal The downlink data at end.

35. according to the method for claim 31, which is characterized in that the CN-CP is by link terminal to the long-range end End sends the downlink data：

The CN-CP sends the general NAS of downlink to the link terminal and transmits message, wherein the general NAS transmission of downlink disappears Breath carries the downlink data, and the general NAS of downlink is transmitted in message, indicates that type of service is relaying data delivery；Alternatively,

The CN-CP sends relaying data delivery message to the corresponding link terminal of the remote terminal, wherein the relaying number The downlink data is carried according to message is delivered.

36. according to the method for claim 35, which is characterized in that the general NAS transmission message of downlink or the relaying Data delivery message carries the mark Remote UE ID of the remote terminal, wherein the mark Remote of the remote terminal UE ID include at least one following information：The network identity mark of the remote terminal, the neighbour of the remote terminal communicate mark Know.

37. according to claim 31 to 36 any one of them method, which is characterized in that the CN-CP is in the following way extremely One of few downlink data for determining the downlink data and being destined for the remote terminal：

In the case where the downlink data is short message service SMS information, the CN-CP is true according to SMS delivery request message The fixed SMS information is destined for the remote terminal；

In the case where the downlink data is downstream IP data, the CN-CP is according to from core network user face function CN-UP Downlink data notification request message determine that the downstream IP data is destined for the remote terminal.

38. a kind of downlink data delivering method, which is characterized in that including：

What link terminal reception core network control surface function CN-CP was sent is sent to the remote terminal accessed by the link terminal Downlink data；

The link terminal sends the downlink data to the remote terminal.

39. according to the method for claim 38, which is characterized in that receive what the CN-CP was sent in the link terminal It is sent to before the downlink data of the remote terminal accessed by the link terminal, further includes：

The link terminal receives the paging request that the CN-CP is sent, wherein the long-range end is carried in the paging request The mark Remote UE ID at end, wherein the mark Remote UE ID of the remote terminal include at least one following information： Network identity mark, the neighbour's communications identification of the remote terminal of the remote terminal；

The link terminal confirm the remote terminal can and in the case of, initiate service request procedure to the CN-CP.

40. the method according to claim 38 or 39, which is characterized in that the link terminal is sent to the remote terminal The downlink data includes：

The link terminal sends the lower line number by the PC5 interfaces between the remote terminal to the remote terminal According to.

41. a kind of terminal authentication device is applied to remote terminal, which is characterized in that including：

First sending module sends Non-Access Stratum for the forwarding by link terminal to core network control surface function CN-CP NAS authentication requests；

42. device according to claim 41, which is characterized in that the NAS authentications that first sending module is sent Request includes：

43. the device according to claim 41 or 42, which is characterized in that the NAS that first sending module is sent Authentication request includes：

Neighbour's communications identification of the remote terminal.

44. according to claim 41 to 43 any one of them device, which is characterized in that the NAS Authentication Responses include：

45. a kind of terminal authentication device is applied to link terminal, which is characterized in that including：

46. device according to claim 45, which is characterized in that first forwarding module is additionally operable to the CN-CP Send relaying access information, wherein the relaying access information includes one of following information or combination：Relaying access instruction The mark Relay UE ID of Relay Indicator, the link terminal.

47. device according to claim 45, which is characterized in that the NAS Authentication Responses include：

48. the device according to claim 45 or 47, which is characterized in that the third receiving module is additionally operable to：

Receive the mark Remote UE ID of the remote terminal from the CN-CP, wherein the mark of the remote terminal Remote UE ID include at least one following information：The remote terminal network identity mark, the remote terminal it is close Adjacent communications identification.

49. device according to claim 48, which is characterized in that second forwarding module was used for according to the long-range end The mark Remote UE ID at end forward the NAS Authentication Responses to the remote terminal.

50. a kind of terminal authentication device is applied to core network control surface function CN-CP, which is characterized in that including：

Second sending module returns to the NAS authentications to the remote terminal and rings for the forwarding by the link terminal It answers.

51. device according to claim 50, which is characterized in that the NAS authentications that the 4th receiving module receives Request includes：

52. the device according to claim 50 or 51, which is characterized in that the NAS that the 4th receiving module receives Authentication request includes：

Neighbour's communications identification of the remote terminal.

53. according to the device described in claim 50 or 51 or 52, which is characterized in that the 4th receiving module is additionally operable to receive The relaying access information that the link terminal is sent, wherein the relaying access information includes one of following information or combination：In After access instruction Relay Indicator, the mark Relay UE ID of the link terminal.

54. according to claim 50 to 53 any one of them device, which is characterized in that further include the first memory module, be used for After the authentication module authenticates the remote terminal, the user context information of the remote terminal is stored, wherein The user context information of the remote terminal includes：

55. device according to claim 54, which is characterized in that first memory module was additionally operable at the long-range end After end is authenticated, the user context information of the link terminal is stored, wherein the user's context of the link terminal is believed Breath includes：

56. device according to claim 50, which is characterized in that the NAS Authentication Responses include：

57. the device according to claim 50 or 56, which is characterized in that second sending module is additionally operable in described The mark Remote UE ID of the remote terminal are sent after terminal, wherein the mark Remote UE ID of the remote terminal Including at least one following information：Network identity mark, the neighbour's communications identification of the remote terminal of the remote terminal.

58. a kind of SOT state of termination switching device is applied to core network control surface function CN-CP, which is characterized in that including：

5th receiving module, for receiving the connection release request from radio node RAN, wherein the connection release request Connection for asking release link terminal；

Connection Release module, the connection for discharging the link terminal；

State setting module, for the link terminal to be placed in Idle state, and it is long-range by being accessed by the link terminal Terminal is placed in Idle state.

59. device according to claim 58, which is characterized in that the state setting module includes：

Determination unit, for being believed according to the user context information of the link terminal or the user's context of the remote terminal Breath determines the remote terminal accessed by the link terminal；

State set unit, for the remote terminal determined to be placed in Idle state.

60. device according to claim 59, which is characterized in that

The user context information of the link terminal includes：Pass through the information for the remote terminal that the link terminal accesses；Institute Determination unit is stated for described in searching in the user context information of the link terminal and accessing by the link terminal Remote terminal；

And/or

The user context information of the remote terminal includes：Remote terminal information and relaying access information；The determination unit For the relaying access information in the user context information according to the remote terminal, whether the remote terminal is determined It is accessed via the link terminal.

61. a kind of downlink data delivery apparatus is applied to core network control surface function CN-CP, which is characterized in that including：

62. device according to claim 61, which is characterized in that further include the second memory module, it is described remote for storing The contextual information of journey terminal, wherein the contextual information of the remote terminal includes：

63. device according to claim 61, which is characterized in that further include paging module, in the remote terminal In the case of Idle state, the third sending module by the link terminal to the remote terminal send it is described under Before row data, paging request is initiated, wherein the mark Relay UE ID of the link terminal are carried in the paging request With the mark Remote UE ID of the remote terminal, wherein the mark Remote UE ID of the remote terminal include as follows At least one information：Network identity mark, the neighbour's communications identification of the remote terminal of the remote terminal.

64. device according to claim 61, which is characterized in that the third sending module was used for according to the long-range end The relaying access information at end is sent to the downlink data of the remote terminal to the link terminal.

65. device according to claim 61, which is characterized in that the third sending module is used for：

The general NAS of downlink is sent to the link terminal and transmits message, wherein the general NAS transmission message of downlink carries institute Downlink data is stated, the general NAS of downlink is transmitted in message, indicates that type of service is relaying data delivery；Alternatively,

Relaying data delivery message is sent to the corresponding link terminal of the remote terminal, wherein the relaying data delivery disappears Breath carries the downlink data.

66. device according to claim 65, which is characterized in that the general NAS transmission message of downlink or the relaying Data delivery message carries the mark Remote UE ID of the remote terminal, wherein the mark Remote of the remote terminal UE ID include at least one following information：The network identity mark of the remote terminal, the neighbour of the remote terminal communicate mark Know.

67. a kind of downlink data delivery apparatus is applied to link terminal, which is characterized in that including：

7th receiving module is accessed for receiving being sent to for core network control surface function CN-CP transmissions by the link terminal Remote terminal downlink data；

4th sending module, for sending the downlink data to the remote terminal.

68. device according to claim 67, which is characterized in that further include：

8th receiving module, the paging request sent for receiving the CN-CP, wherein described in being carried in the paging request The mark Remote UE ID of remote terminal, wherein the mark Remote UE ID of the remote terminal include following information extremely It is one of few：Network identity mark, the neighbour's communications identification of the remote terminal of the remote terminal；

Service request module, for confirm the remote terminal can and in the case of, initiate service request mistake to the CN-CP Journey.