CN109842903B - Method, device and system for determining link information - Google Patents

Abstract

The application provides a method, a device and a system for determining link information. The method comprises the following steps: the method comprises the steps that a mobility management network element receives NAS information and second link information from access gateway equipment, the NAS information comprises indicating information, the indicating information is used for indicating first link information, the first link information is used for indicating access information of a terminal, the second link information is link information used for indicating the access information of the terminal in the access gateway equipment, and the mobility management network element verifies the indicating information and the second link information. The mobility management network element can acquire the indication information and the second link information, check the indication information and the second link information, and if the check is correct, use the second link information as the used link information. Thereby, the correctness of the acquired link information can be improved.

Description

Method, device and system for determining link information

Technical Field

The present application relates to the field of mobile communications technologies, and in particular, to a method, an apparatus, and a system for determining link information.

Background

To address the challenges of wireless broadband technology, and to maintain the leading advantages of 3rd Generation partnership Project (3 GPP) networks, the 3GPP standards group has established a Next Generation mobile communication network architecture (Next Generation System), referred to as a 5th Generation, 5G, mobility convergence network architecture. The Network architecture not only supports Access to a Core Network (5G Core Network) through a wireless technology (such as Long Term Evolution (LTE), 5G Radio Access Network (RAN) and the like) defined by a 3GPP standard group, but also supports Access to the Core Network through a fixed Network.

Based on the network architecture, the core network control plane needs to use link information to the terminal when establishing a session. At present, the mode for the core network control plane to obtain the link information is as follows: the link information is sent by the access gateway device to the core network control plane.

The main problems of the above method are: since the N2 interface does not encrypt the transferred content, it may be modified during transmission, resulting in an error in the link information received by the core network control plane.

Disclosure of Invention

The application provides a method, a device and a system for determining link information, which are used for improving the correctness of the link information received by a core network control plane.

In a first aspect, the present application provides a method for determining link information. The method comprises the following steps: firstly, the mobility management network element receives an NAS message and second link information from the access gateway device, where the NAS message includes indication information, the indication information is used to indicate first link information, the first link information is used to indicate access information of a terminal, and the second link information is link information used to indicate access information of the terminal in the access gateway device. Next, the mobility management network element checks the indication information and the second link information.

The mobility management network element can acquire the indication information and the second link information, check the indication information and the second link information, and if the check is correct, use the second link information as the used link information. Thereby, the correctness of the acquired link information can be improved.

In a possible implementation manner, if the indication information is first link generation information, and the first link generation information is obtained by calculation according to the first link information and the challenge character string, the checking, by the mobility management network element, the indication information and the second link information includes: the mobility management network element firstly calculates to obtain second link generation information according to the second link information and the challenge character string; and then, according to the second link generation information and the first link information generation information, the indication information and the second link information are verified.

In a second aspect, the present application provides a method for determining link information. The method comprises the following steps: the method comprises the steps that a mobility management network element receives a non-access stratum (NAS) message from wireless access network equipment, wherein the NAS message comprises indication information, the indication information is used for indicating first link information, and the first link information is used for indicating access information of a terminal; then, the mobility management network element acquires second link information, wherein the second link information is link information used for indicating access information of the terminal in the access gateway equipment; and the mobility management network element checks the indication information and the second link information.

The mobility management network element can acquire the indication information and the second link information, check the indication information and the second link information, and if the check is correct, use the second link information as the used link information. Thereby, the correctness of the acquired link information can be improved.

In a possible implementation manner, the indication information is first link generation information, the first link generation information is obtained by calculation according to the first link information and the challenge character string, and the NAS message further includes information of the access gateway device; the mobility management network element obtains second link information, including: firstly, the mobility management network element determines access gateway equipment according to the information of the access gateway equipment; then, the mobility management network element sends a request message to the access gateway equipment, wherein the request message comprises a terminal temporary identifier, the terminal temporary identifier is used for identifying the terminal, and the terminal temporary identifier is associated with the second link information; then, the mobility management network element receives second link information from the access gateway equipment;

the step of verifying the indication information and the second link information by the mobility management network element comprises the following steps: firstly, the mobility management network element calculates to obtain second link generation information according to the second link information and the challenge character string; then, the mobility management network element verifies the indication information and the second link information according to the first link generation information and the second link generation information.

In yet another possible implementation manner, the indication information is first link information; the mobility management network element obtains second link information, including: firstly, a mobility management network element determines access gateway equipment according to first link information; then, the mobility management network element sends a request message to the access gateway device, wherein the request message comprises a terminal temporary identifier, the terminal temporary identifier is used for identifying the terminal, and the terminal temporary identifier is associated with the second link information; the mobility management network element then receives the second link information from the access gateway device. The step of verifying the indication information and the second link information by the mobility management network element comprises the following steps: and the mobile management network element verifies the indication information and the second link information according to the first link information and the second link information.

In yet another possible implementation manner, the indication information is first link generation information, the first link generation information is obtained by calculation according to the first link information and the challenge character string, and the NAS message further includes information of the access gateway device and the challenge character string;

the mobility management network element obtains second link information, including: firstly, the mobility management network element determines access gateway equipment according to the information of the access gateway equipment; then, the mobility management network element sends a request message to the access gateway equipment, wherein the request message comprises a challenge character string; the mobility management network element then receives second link information from the access gateway device, the second link information being associated with the challenge string.

The step of verifying the indication information and the second link information by the mobility management network element comprises the following steps: firstly, the mobility management network element calculates to obtain second link generation information according to the second link information and the challenge character string; then, the mobility management network element verifies the indication information and the second link information according to the first link generation information and the second link generation information.

In yet another possible implementation manner, the mobility management network element receives a request message from the access gateway device, where the request message includes the second link information and a terminal temporary identifier, where the terminal temporary identifier is used to identify the terminal, and then the mobility management network element establishes an association between the second link information and the terminal temporary identifier.

In yet another possible implementation manner, the indication information is first link information; the mobility management network element obtains second link information, including: and the mobility management network element acquires the second link information according to the terminal temporary identifier. The step of verifying the indication information and the second link information by the mobility management network element comprises the following steps: and the mobile management network element verifies the indication information and the second link information according to the first link information and the second link information.

In yet another possible implementation manner, the mobility management network element receives a request message from the access gateway device, where the request message includes second link information, a challenge character string, and a terminal temporary identifier, where the terminal temporary identifier is used to identify a terminal, and the terminal temporary identifier is associated with the second link information; the mobility management network element establishes an association between the second link information, the challenge string and the terminal temporary identifier.

In a possible implementation manner, the indication information is first link generation information, and the first link generation information is calculated according to the first link information and the challenge character string; the mobility management network element obtains second link information, including: and the mobility management network element acquires the second link information according to the terminal temporary identifier. The step of verifying the indication information and the second link information by the mobility management network element comprises the following steps: firstly, the mobility management network element calculates to obtain second link generation information according to the challenge character string and the second link information; then, the mobility management network element verifies the indication information and the second link information according to the first link generation information and the second link generation information.

The above provides various methods for checking the indication information and the second link information by the mobility management network element, and the corresponding methods can be selected and implemented according to actual applications.

In one possible implementation, the mobility management network element sends the fixed network side session information to the radio access network device.

In a third aspect, the present application provides a method for determining link information. The method comprises the following steps: firstly, a terminal sends a link information request message to an access point, wherein the link information request message is used for requesting to acquire link information, and the link information is used for indicating the access information of the terminal; then, the terminal receives indication information from the access point, wherein the indication information is used for indicating link information; then, the terminal sends a non-access stratum (NAS) message to the mobility management network element, wherein the NAS message comprises the indication information.

In one possible implementation, the indication information is link information; or the indication information is link generation information, and the link generation information is calculated according to the link information and the challenge character string.

In a possible implementation manner, the sending, by the terminal, the NAS message to the mobility management network element includes: the terminal sends NAS information to a mobility management network element through wireless access network equipment on a wireless side; or, the terminal sends the NAS message to the mobility management network element through the access gateway device on the fixed network side.

In a possible implementation manner, the link information request message further includes a terminal temporary identifier, and the terminal temporary identifier is used for identifying the terminal.

In a fourth aspect, the present application provides a method for determining link information. The method comprises the following steps: firstly, the access gateway equipment receives a request message from a mobility management network element, wherein the request message comprises indication information, the indication information is used for indicating first link information, and the first link information is used for indicating access information of a terminal; and if the access gateway equipment verifies that the indication information and the second link information are correct, sending the second link information to a mobility management network element, wherein the second link information is link information which is used for indicating the access information of the terminal in the access gateway equipment.

In the method, the access gateway equipment checks the indication information and the second link information, and if the check is correct, the second link information is sent to the mobility management network element, and the mobility management network element uses the second link information as the used link information. Thereby, the correctness of the acquired link information can be improved.

In a possible implementation manner, the indication information is first link generation information, the first link generation information is obtained by calculation according to the first link information and the challenge character string, the request message further includes a terminal temporary identifier, the terminal temporary identifier is used for identifying a terminal, and the terminal temporary identifier is associated with the second link information; if the access gateway device verifies that the indication information and the second link information are correct, the method includes: firstly, the access gateway equipment determines second link information and a challenge character string according to a terminal temporary identifier; then, the access gateway equipment generates second link generation information according to the second link information and the challenge character string; then, if the access gateway device determines that the first link generation information is the same as the second link generation information, the access gateway device verifies that the indication information and the second link information are correct.

In yet another possible implementation manner, the indication information is first link information, and the request message further includes a terminal temporary identifier, where the terminal temporary identifier is used to identify the terminal, and the terminal temporary identifier is associated with the second link information; if the access gateway device verifies that the indication information and the second link information are correct, the method includes: the access gateway equipment determines second link information according to the terminal temporary identifier; and if the access gateway equipment determines that the first link information is the same as the second link information, the check indication information and the second link information are correct.

In yet another possible implementation manner, the indication information is first link generation information, the first link generation information is obtained by calculation according to the first link information and the challenge character string, and the request message further includes the challenge character string; if the access gateway device verifies that the indication information and the second link information are correct, the method includes: firstly, the access gateway equipment calculates to obtain second link generation information according to the second link information and the challenge character string; then, if the access gateway device determines that the first link generation information is the same as the second link generation information, the access gateway device verifies that the indication information and the second link information are correct.

The above provides various methods for verifying the indication information and the second link information by the access gateway device, and the corresponding methods can be selected and implemented according to practical applications.

In a fifth aspect, the present application provides a method for determining link information. The method comprises the following steps: firstly, receiving an NAS message from a terminal by an access gateway device, wherein the NAS message comprises indication information, the indication information is used for first link information, and the first link information is used for indicating access information of the terminal; then, the access gateway device sends the NAS message and second link information to the mobility management network element, where the second link information is link information used for indicating access information of the terminal in the access gateway device, and the indication information and the second link information are used for verifying by the mobility management network element.

The access gateway equipment sends the indication information and the second link information to the mobility management network element, the mobility management network element verifies the indication information and the second link information, and if the verification is correct, the second link information is used as the used link information. Thereby, the correctness of the acquired link information can be improved.

In a possible implementation manner, the indicating information is first link information, and then the method further includes: the access gateway equipment receives a link information request message from an access point, wherein the link information request message comprises link identification information, and the link identification information is used for identifying first link information; the access gateway equipment determines first link information according to the link identification information; the access gateway device sends the first link information to the access point.

In a possible implementation manner, the indicating information is information generated for the first link, and then the method further includes: the access gateway equipment receives a link information request message from an access point, wherein the link information request message comprises link identification information, and the link identification information is used for identifying first link information; then, the access gateway equipment determines first link information according to the link identification information; the access gateway equipment calculates to obtain first link generation information according to the first link information and the challenge character string; the access gateway device then sends the first link generation information to the access point.

In a sixth aspect, the present application provides an apparatus, which may be a mobility management network element or a chip. The apparatus has the function of implementing the embodiments of the first aspect described above. The function can be realized by hardware, and can also be realized by executing corresponding software by hardware. The hardware or software includes one or more modules corresponding to the functions described above.

In a seventh aspect, the present application provides an apparatus, where the apparatus may be a mobility management network element or a chip. The apparatus has the function of implementing the embodiments of the second aspect described above. The function can be realized by hardware, and can also be realized by executing corresponding software by hardware. The hardware or software includes one or more modules corresponding to the functions described above.

In an eighth aspect, the present application provides an apparatus, which may be a terminal or a chip. The apparatus has a function of realizing the embodiments of the third aspect described above. The function can be realized by hardware, and can also be realized by executing corresponding software by hardware. The hardware or software includes one or more modules corresponding to the functions described above.

In a ninth aspect, the present application provides an apparatus, which may be an access gateway device or a chip. The apparatus has a function of realizing the embodiments of the fourth aspect described above. The function can be realized by hardware, and can also be realized by executing corresponding software by hardware. The hardware or software includes one or more modules corresponding to the functions described above.

In a tenth aspect, the present application provides an apparatus, which may be an access gateway device or a chip. The apparatus has the function of implementing the embodiments of the fifth aspect described above. The function can be realized by hardware, and can also be realized by executing corresponding software by hardware. The hardware or software includes one or more modules corresponding to the functions described above.

In an eleventh aspect, the present application provides a system comprising the apparatus of any one of the above sixth aspect or the sixth implementation manner, and the apparatus of any one of the above tenth aspect or the tenth implementation manner.

In a twelfth aspect, the present application provides a system, including an access gateway device, and the apparatus in the seventh aspect or any implementation manner of the seventh aspect, where the access gateway device is configured to send the second link information to the apparatus.

A thirteenth aspect, the present application provides a system, including a mobility management network element, and the apparatus in any implementation manner of the ninth aspect or the ninth aspect, where the mobility management network element is configured to send a request message to the apparatus, where the request message includes indication information, where the indication information is used to indicate first link information, and the first link information is used to indicate access information of a terminal; and receiving second link information from the device, wherein the second link information is link information used for indicating the access information of the terminal in the device.

In a fourteenth aspect, the present application also provides a computer-readable storage medium having stored therein instructions, which, when run on a computer, cause the computer to perform the method of the above-described aspects.

In a fifteenth aspect, the present application also provides a computer program product comprising instructions which, when run on a computer, cause the computer to perform the method of the above aspects.

In addition, for technical effects brought by any one of the design manners of the sixth aspect to the fifteenth aspect, reference may be made to technical effects brought by different implementation manners of the first aspect to the fifth aspect, and details are not described here.

These and other aspects of the present application will be more readily apparent from the following description of the embodiments.

Drawings

FIG. 1 is a schematic diagram of a possible network architecture to which the present application is applicable;

FIG. 2 is a schematic diagram of another possible network architecture to which the present application is applicable;

fig. 3 is a flowchart of a method for determining link information according to the present application;

fig. 4 is a flowchart of a method for acquiring first link information by a terminal according to the present application;

fig. 5 is a flowchart of a method for acquiring first link information by a terminal according to the present application;

fig. 6 is a flowchart of a method for acquiring first link information by a terminal according to the present application;

fig. 7 is a flowchart of another link information determining method provided in the present application;

fig. 8 is a flowchart of another link information determination method provided in the present application;

FIG. 9 is a schematic view of an apparatus provided herein;

FIG. 10 is a schematic view of yet another apparatus provided herein;

FIG. 11 is a schematic view of yet another apparatus provided herein;

fig. 12 is a schematic view of yet another apparatus provided herein.

Detailed Description

In order to make the objects, technical solutions and advantages of the present application more clear, the present application will be further described in detail with reference to the accompanying drawings. The particular methods of operation in the method embodiments may also be applied to apparatus embodiments or system embodiments. In the description of the present application, the term "plurality" means two or more unless otherwise specified.

In order to make the objects, technical solutions and advantages of the present application more clear, the present application will be further described in detail with reference to the accompanying drawings. The particular methods of operation in the method embodiments may also be applied to apparatus embodiments or system embodiments. In the description of the present application, the term "plurality" means two or more unless otherwise specified.

The network architecture and the service scenario described in the embodiment of the present application are for more clearly illustrating the technical solution of the embodiment of the present application, and do not form a limitation on the technical solution provided in the embodiment of the present application, and as a person of ordinary skill in the art knows that along with the evolution of the network architecture and the appearance of a new service scenario, the technical solution provided in the embodiment of the present application is also applicable to similar technical problems.

Fig. 1 is a schematic diagram of a possible network architecture to which the present application is applicable. The network architecture includes an access gateway device and a mobility management network element. Optionally, the network architecture further includes a terminal and AN Access Node (AN). Optionally, the network architecture further comprises a wireless access network device.

The access gateway equipment is an access point for the fixed network to access the core network. The access gateway device may communicate with a network element of the core network control plane, such as a mobility management network element, via an N2 interface. The access gateway device may also send a data packet (also referred to as a fixed network packet) of the fixed network user to a network element (e.g., a User Plane Function (UPF) network element) of a user plane of the core network through an N3 interface.

The core network comprises a user plane network element and a control plane network element. The user plane network element is mainly responsible for forwarding of packet data packets, Quality of Service (QoS) control, accounting information statistics, and the like. The control plane network element is mainly responsible for issuing a data packet forwarding strategy, a QoS control strategy and the like to the user plane network element. In the architecture shown in fig. 1, the mobility management network element is a control plane network element in a core network. The access gateway device and the mobility management network element may communicate via an N2 interface. In fig. 5G, the mobility management network element shown in fig. 1 may be an Access and mobility management Function (AMF) network element.

The terminal includes, for example, a Residential Gateway (RG), and the like, and the RG may specifically include a modem (modem), and the like. The terminal is a fixed gateway device supporting 5G access. The terminal can send a Non Access Stratum (NAS) message to the mobility management network element through an N1 interface in an air interface or fixed network manner, where an N1 interface is an interface between the terminal and the mobility management network element.

The terminal may also be connected to the remote device in a wired or wireless manner. Among other things, remote devices, for example, may include various handheld devices with wireless communication capabilities, in-vehicle devices, wearable devices, computing devices, or other processing devices connected to a wireless modem; a subscriber unit (subscriber unit), a cellular phone (cellular phone), a smart phone (smart phone), a wireless data card, a Personal Digital Assistant (PDA) computer, a tablet computer, a wireless modem (modem), a handheld device (hand), a laptop computer (laptop computer), a cordless phone (cordless phone) or a Wireless Local Loop (WLL) station, a Machine Type Communication (MTC) terminal, a user equipment (user equipment, UE), a mobile station (mobile station, MS), a vehicle or terminal device (terminal), etc. may also be included. For convenience of description, the above-mentioned devices are collectively referred to as a remote device in this application.

Access point AN, also called a Wired Access Node (WAN). The AN may provide access services to the terminal through different access modes.

It should be noted that the AN and the access gateway device may be collectively referred to as devices of the wired access network or collectively referred to as wired access devices.

As shown in fig. 1, in one implementation, a terminal may access a core network in a wired manner through a device of a wired access network. In another implementation manner, the terminal may also Access to the core Network in a wireless (or called air interface) manner through a Radio Access device, such as a base station, of a Radio Access Network (RAN). That is, the terminal may send an air interface message to the core network.

A radio access device is a device for accessing a terminal to a wireless network, and in 5G, the radio access device may also be referred to as a Radio Access Network (RAN) device. Wireless access devices include, but are not limited to: (G node B, gNB) in 5G, evolved node B (eNB), Radio Network Controller (RNC), node B (node B, NB), Base Station Controller (BSC), Base Transceiver Station (BTS), home base station (e.g., home evolved node B, or home node B, HNB), BaseBand Unit (BBU), transmission point (TRP), Transmission Point (TP), mobile switching center, etc., and may further include wireless fidelity (wifi) access point (access point, AP), etc.

The mobility management network element, for example in 5G, may be an AMF network element. The mobility management network element is responsible for access management and mobility management of an access device, and includes a mobility management function in a Mobility Management Entity (MME) in a network framework in LTE, and adds the access management function.

The access gateway device is configured to receive a NAS message from a terminal, where the NAS message includes indication information, where the indication information is used for first link information, and the first link information is used for indicating access information of the terminal; the access gateway device sends the NAS message and second link information to a mobility management network element, where the second link information is link information used for indicating access information of the terminal in the access gateway device, and the indication information and the second link information are used for verifying by the mobility management network element.

A mobility management network element, configured to receive a non-access stratum NAS message and second link information from an access gateway device, where the NAS message includes indication information, the indication information is used to indicate first link information, the first link information is used to indicate access information of a terminal, and the second link information is link information used to indicate access information of the terminal in the access gateway device; and the mobility management network element verifies the indication information and the second link information.

The access gateway equipment sends the indication information and the second link information to the mobility management network element, the mobility management network element verifies the indication information and the second link information, and if the verification is correct, the second link information is used as the used link information. Thereby, the correctness of the acquired link information can be improved.

Optionally, the indication information is first link generation information, and the first link generation information is calculated according to the first link information and the challenge character string; the mobility management network element is configured to verify the indication information and the second link information, and specifically includes: the mobility management network element calculates to obtain second link generation information according to the second link information and the challenge character string; and the mobility management network element verifies the indication information and the second link information according to the second link generation information and the first link information generation information.

Optionally, the indication information is the first link information, and the access gateway device is further configured to receive a link information request message from an access point, where the link information request message includes link identification information, and the link identification information is used to identify the first link information; the access gateway equipment determines the first link information according to the link identification information; and the access gateway equipment sends the first link information to the access point.

Optionally, the indication information is first link generation information, and the access gateway device is further configured to receive a link information request message from an access point, where the link information request message includes link identification information, and the link identification information is used to identify the first link information; the access gateway equipment determines the first link information according to the link identification information; the access gateway equipment calculates to obtain the first link generation information according to the first link information and the challenge character string; the access gateway device sends the first link generation information to the access point.

As an embodiment, the access gateway device is configured to send the second link information to a mobility management network element.

The mobile management network element is configured to receive a non-access stratum NAS message from a radio access network device, where the NAS message includes indication information, where the indication information is used to indicate first link information, and the first link information is used to indicate access information of a terminal; the mobility management network element acquires second link information, wherein the second link information is link information used for indicating access information of the terminal in the access gateway equipment; and the mobility management network element verifies the indication information and the second link information.

The mobility management network element can acquire the indication information and the second link information, check the indication information and the second link information, and if the check is correct, use the second link information as the used link information. Thereby, the correctness of the acquired link information can be improved.

Optionally, the indication information is first link generation information, the first link generation information is obtained by calculation according to the first link information and a challenge character string, and the NAS message further includes information of the access gateway device;

the mobility management network element is configured to acquire second link information, and specifically includes: the mobility management network element determines the access gateway equipment according to the information of the access gateway equipment; the mobility management network element sends a request message to the access gateway device, wherein the request message comprises a terminal temporary identifier, the terminal temporary identifier is used for identifying the terminal, and the terminal temporary identifier is associated with the second link information; the mobility management network element receives the second link information from the access gateway device;

the verifying, by the mobility management network element, the indication information and the second link information includes: the mobility management network element calculates to obtain second link generation information according to the second link information and the challenge character string; and the mobility management network element verifies the indication information and the second link information according to the first link generation information and the second link generation information.

As an embodiment, the mobility management network element is configured to send a request message to the access gateway device, where the request message includes indication information, where the indication information is used to indicate first link information, and the first link information is used to indicate access information of a terminal; and receiving second link information from the access gateway device, where the second link information is link information used for indicating access information of the terminal in the access gateway device.

The access gateway equipment is used for receiving a request message from a mobility management network element, wherein the request message comprises indication information, the indication information is used for indicating first link information, and the first link information is used for indicating access information of a terminal; and if the access gateway equipment verifies that the indication information and the second link information are correct, sending the second link information to a mobility management network element, wherein the second link information is link information which is used for indicating the access information of the terminal in the access gateway equipment.

In the method, the access gateway equipment checks the indication information and the second link information, and if the check is correct, the second link information is sent to the mobility management network element, and the mobility management network element uses the second link information as the used link information. Thereby, the correctness of the acquired link information can be improved.

Optionally, the indication information is first link generation information, the first link generation information is obtained by calculation according to the first link information and the challenge character string, the request message further includes a terminal temporary identifier, the terminal temporary identifier is used for identifying the terminal, and the terminal temporary identifier is associated with the second link information; the access gateway device is configured to check the indication information and the second link information, and includes: the access gateway equipment determines the second link information and the challenge character string according to the terminal temporary identifier; the access gateway equipment generates second link generation information according to the second link information and the challenge character string; and if the access gateway equipment determines that the first link generation information is the same as the second link generation information, the access gateway equipment verifies that the indication information and the second link information are correct.

Fig. 2 is a schematic diagram of a network architecture to which the present application is applied. The network elements in the network architecture include devices of a wired access network, wireless access devices and core network elements. The network architecture shown in fig. 2 is a specific application scenario of the network architecture shown in fig. 1.

The specific descriptions of the device of the wired access network, the wireless access device, the mobility management network element, and the terminal may be the description of the system architecture shown in fig. 1, and are not repeated here.

The Access Gateway device in the architecture shown in fig. 1 may be an Access Gateway Function (AGF) network element in a 5G fixed-mobile convergence network architecture. In fig. 2, an access gateway device is taken as an AGF network element as an example.

The core network element in fig. 2 includes a control plane network element and a user plane network element, where the control plane network element includes a mobility management network element (in fig. 5G, the mobility management network element may be an AMF network element, which is taken as an example in the figure), a Session Management Function (SMF) network element, a Policy Control Function (PCF) network element, an Authentication service Function (AUSF) network element, and the user plane network element includes an UPF network element.

For convenience of description, the AGF network element, the AMF network element, the SMF network element, the PCF network element, the AUSF network element, and the UPF network element are referred to as AGF, AMF, SMF, PCF, AUSF, and UPF, respectively, in the following.

In FIG. 2, AGF includes an AGF Control Plane (AGF-CP) and an AGF user Plane (AGF Userplane, AGF-UP). The AGF-CP is used for processing control plane signaling and managing the AGF-UP, such as issuing a control strategy to the AGF-UP. And the AGF-UP is used for processing the user plane data according to the control strategy issued by the AGF-CP. The AGF-CP and the AMF can communicate through N2, and the AGF-UP and the UPF interface through N3. The terminal and the AMF can communicate through an N1 interface. The UPF and SMF may communicate via an N4 interface. The SMF and PCF may communicate via an N7 interface. The AMF and the SMF can communicate through an N11 interface. The AMF and the AUSF can communicate through an N12 interface.

The functions of the network elements of the core network of fig. 2 are described separately below.

The SMF is responsible for session management, such as session establishment for the user.

The PCF is used for executing policy control, is mainly responsible for policy authorization, QoS and charging rule generation, and issues the corresponding rule to the UPF through the SMF to complete the installation of the corresponding policy and rule.

The AUSF has an authentication service Function, and is configured to terminate an authentication Function requested by a Security Anchor Function (SEAF) network element.

It should be noted that the interface names between the network elements in fig. 1 and fig. 2 are only an example, and the interface names may be referred to as other names in specific implementations, and this is not specifically limited in this embodiment of the present application.

It should be noted that the terminal, the access point, the access gateway device, the mobility management network element, and the like in fig. 1 and fig. 2 are only names, and the names do not limit the devices themselves. In the 5G network and other future networks, the terminal, the access point, the access gateway device, and the mobility management network element may also be other names, which is not specifically limited in this embodiment of the present application. For example, the terminal may be replaced by a terminal device or a user device, the access point may be replaced by a wired access point or a fixed network access point, and the access gateway device may be replaced by a gateway device or an access gateway function device, which are described in a unified manner and will not be described below.

Optionally, the access point, the access gateway device, and the mobility management network element in fig. 1 may be implemented by one entity device, may also be implemented by multiple entity devices together, and may also be a logic function module in one entity device, which is not specifically limited in this embodiment of the present application.

It should be noted that the method for determining link information according to the present application may be executed by a device. The device may be an access gateway device or a chip in the access gateway device, and may also be a mobility management network element or a chip in the mobility management network element.

For convenience of description, the method for determining link information is described in the present application by taking the device as an access gateway device or a mobility management network element as an example, and for the implementation method of the device as a chip in the access gateway device or a chip in the mobility management network element, reference may be made to a specific description of a method for sending a fixed network session where the device is the access gateway device or the mobility management network element, and no repeated description is given.

For convenience of description, the mobility management network element is taken as an AMF, and the access gateway device is taken as an AGF for example.

In the process of creating a session of a fixed network, such as a Protocol Data Unit (PDU) session, a core network needs to use link information, where the link information is used to indicate access information of a terminal.

Optionally, the link information includes information of the AN and port information accessed by the terminal on the AN. The information of the AN may be, for example, one or more of a name of the AN, AN identification of the AN, and AN Internet Protocol (IP) Protocol for interconnection between networks of the AN.

For example, suppose AGFs access AN1 and AN2, there are 2 access ports on AN1, access port 1 and access port 2, respectively, and 3 access ports on AN2, access port 1, access port 2 and access port 3, respectively. The above access ports managed on the AGF can be expressed as: AN1+ access port 1, AN1+ access port 2, AN2+ access port 1, AN2+ access port 2, and AN2+ access port 3.

Of course, in practice, the access ports of the AN may also be managed by other means. For example, in the above example, the 5 ports may be numbered together on the AGF, and the access ports managed on the AGF may be represented as access port 1 ' (representing AN1+ access port 1), access port 2 ' (representing AN1+ access port 2), access port 3 ' (representing AN2+ access port 1), access port 4 ' (representing AN2+ access port 2), and access port 5 ' (representing AN2+ access port 3).

In the prior art, a method for a core network to acquire link information includes: the AGF sends the link information to the AMF of the core network via the N2 interface. This method has a problem of insufficient safety as mentioned in the background art.

Further, the following problems also exist in the prior art: when the terminal sends the NAS message from the wireless side, the core network cannot acquire the link information of the terminal on the fixed network side from the interface between the mobility management network element and the wireless access equipment.

In order to solve the above problems, the present application provides various solutions, and the method provided by the present application is specifically described below with reference to fig. 1 to 2.

It should be noted that the link information may be generated at the AN, or may be stored in the AGF or other devices, such as a network management device.

As shown in fig. 3, a method for determining link information provided by the present application includes the following steps:

step 301, the terminal sends a non-access stratum NAS message to the AGF, and the AGF receives the NAS message from the terminal.

The NAS message is sent by the terminal to the AMF, and specifically, the terminal sends the NAS message to the AMF through the AGF on the fixed network side. That is, the terminal sends the NAS message to the AGF on the fixed network side, and the AGF does not acquire the content in the NAS message, but sends the NAS message to the AMF.

The NAS message includes indication information, where the indication information is used to indicate first link information, and the first link information is used to indicate access information of the terminal.

As one implementation, the indication information may be first link information, which may also be referred to as plaintext link information.

As another implementation manner, the indication information may also be information calculated according to the first link information, for example, the indication information is first link generation information, the first link generation information is calculated according to the first link information and the challenge character string, and the first link generation information may also be referred to as ciphertext link information. For example, the first link information and the challenge character string are used as input of a specific algorithm, and a character string is obtained through operation, and the character string is the first link generation information.

When the indication information is first link information, as one implementation, the first link information may be obtained by the terminal from the AN, and as another implementation, the first link information may also be obtained by the terminal from the AGF.

When the indication information is first link generation information, the first link generation information may be obtained by the terminal from the AGF. That is, the AGF generates the first link generation information and transmits the first link generation information to the terminal.

The following detailed description is provided for a specific implementation scheme for acquiring the indication information by the terminal.

Step 302, the AGF sends the NAS message and the second link information to the AMF, and the AMF receives the NAS message and the second link information from the AGF.

In a specific implementation, the AGF may send the NAS message and the second link information to the AMF through the N2 interface.

The NAS message is the NAS message acquired from the terminal in step 301.

The second link information is link information stored in the AGF, and the link information is link information indicating access information of the terminal.

Normally, the first link information is the same as the second link information.

In some abnormal situations, the first link information and the second link information may not be the same. For example, if the first link information acquired by the terminal is tampered by an attacker, the first link information may be different from the second link information. For another example, if the second link information is tampered by an attacker, the first link information and the second link information may not be the same.

In step 303, the AMF checks the indication information and the second link information.

And after receiving the NAS message, the AMF acquires the indication information from the NAS message and then checks the indication information and the second link information. This will be explained in detail below.

Implementation manner one, the indication information is first link information

In this implementation, if the indication information is the first link information, the AMF checks the indication information and the second link information, that is, checks the first link information and the second link information. The specific checking mode is as follows:

and if the first link information in the NAS message is the same as the second link information sent by the AGF, the AMF checks that the first link information and the second link information are correct.

And if the first link information in the NAS message is different from the second link information sent by the AGF, the AMF checks that the first link information and the second link information are wrong. Specifically, the specific reason for checking the error of the first link information and the second link information may be that the first link information is tampered by an attacker, the second link information is tampered by the attacker, or both of them are tampered.

Second implementation mode, the indication information generates information for the first link

In this implementation, the indication information is first link generation information, the first link generation is calculated according to the first link information and the challenge character string, and the AMF verifies the indication information and the second link information, that is, verifies the first link generation information and the second link information. The specific checking mode is as follows:

and the AMF calculates to obtain second link generation information according to the second link information and the challenge character string, then generates information according to the second link generation information and the first link information, and verifies the indication information and the second link information. The challenge character string used for obtaining the second link generation information through calculation is the same as the challenge character string used for obtaining the first link generation information through calculation. In a specific implementation, the NAS message sent in step 301 further includes a challenge character string, and the AMF may acquire the challenge character string from the NAS message. Alternatively, the AGF sends the challenge string to the AMF through step 302, and then the AMF may obtain the challenge string from the AGF.

And if the calculated second link generation information is the same as the first link generation information in the NAS message, the AMF verifies that the first link generation information and the second link information are correct.

And if the calculated second link generation information is different from the first link generation information in the NAS message, the AMF checks that the first link generation information and the second link generation information are wrong. Specifically, the specific reason for checking the error of the first link generation information and the second link generation information may be that the first link generation information is tampered by an attacker, the second link generation information is tampered by the attacker, or both the first link generation information and the second link generation information are tampered.

With the first implementation manner or the second implementation manner, if the AMF verifies that the indication information and the second link information are correct, the AMF determines the second link information as used link information, for example, as used link information when a session is created.

Through the above steps 301 to 303, the AMF may acquire the indication information and the second link information, and check the indication information and the second link information. And if the verification is correct, using the second link information as the used link information. Thereby, the correctness of the acquired link information can be improved.

As an implementation manner, the steps 301 to 303 may be performed in a process of registering the terminal to the core network.

For example, step 301 above may be replaced with: and the terminal sends a NAS registration request message to the AGF, wherein the NAS registration request message is a specific example of the NAS message in the step, and the NAS registration request message comprises indication information. The above step 302 may be replaced by: and the AGF sends a registration request message to the AMF, wherein the registration request message comprises the NAS registration request message and the second link information, and the registration request message is used for requesting the terminal to be registered to the core network. The above step 303 remains unchanged.

For another example, the steps 301 to 303 may be performed in an authentication process in a procedure of registering the terminal to the core network.

It should be noted that, in the present application, there is no limitation on how to use the link information after the AMF completes the check and obtains the correct link information. For example, as an example, the AMF may carry the determined link information in a session request message to the SMF during session creation, and the SMF may use the session creation message to create a session.

The specific implementation manner of acquiring the indication information by the terminal is described below according to the type of the indication information.

Case one, the indication information is first link information

Implementation mode one, the terminal acquires the first link information from the AN

Referring to fig. 4, a flowchart of a method for acquiring first link information for a terminal provided by the present application includes the following steps:

step 401, the terminal sends a link information request message to the AN, and the AN receives the link information request message from the terminal.

The link information request message is used for requesting to acquire link information.

Step 402, the AN sends the first link information to the terminal, and the terminal receives the first link information from the AN.

And if the AN locally stores the first link information, the AN sends the first link information to the terminal.

Through the above steps 401 to 402, the terminal can acquire link information from the AN.

It should be noted that, the steps 401 to 402 may be completed before the terminal registers to the core network, or may be completed after the terminal registers to the core network, which is not limited in this application.

Second implementation mode, the terminal acquires the first link information from the AGF

Referring to fig. 5, a flowchart of a method for acquiring first link information for a terminal provided in the present application includes the following steps:

step 501, the terminal sends a link information request message to the AN, and the AN receives the link information request message from the terminal.

This step 501 is the same as step 401 described above, and reference may be made to the previous description.

In step 502, the AN adds link identification information in the link information request message.

The link identification information is used to identify the link information, for example, the link identification information may be composed of information related to a packaged link, or may be AN identifier obtained by mapping according to a user or link information, such as a Virtual Local Area Network (VLAN) tag (different VLAN tags, which are used to identify access ports of different ANs under the AGF).

Step 503, the AN sends a link information request message with link identification information to the AGF.

After obtaining the link identification information, the AGF may obtain first link information corresponding to the link identification information according to the link identification information.

Step 504, the AGF sends the first link information to the AN, and the AN receives the first link information from the AGF.

Step 505, the AN sends the first link information to the terminal, and the terminal receives the first link information from the AN.

Through the above steps 501 to 505, the terminal may obtain the first link information from the AGF.

It should be noted that, the steps 501 to 505 may be completed before the terminal registers in the core network, or may be completed after the terminal registers in the core network, which is not limited in this application.

As an alternative implementation, the step 502 may be replaced by: the AN adds the first link information in the link information request message. The above step 503 is replaced by: the AN sends a link information request message with the first link information to the AGF. That is, the AN carries the first link information in the link information request message, and sends the first link information to the AGF, and then the AGF obtains the first link information from the link information request message, and sends the first link information to the AN through step 504.

Case two, the indication information generates information for the first link

When the indication information is first link generation information, the terminal may acquire the first link generation information from the AGF. Specifically, referring to fig. 6, a flowchart of a method for acquiring first link generation information for a terminal provided by the present application includes the following steps:

step 601 to step 603 are the same as step 501 to step 503, and reference can be made to the foregoing description.

Step 604, the AGF calculates to obtain first link generation information according to the first link information and the challenge character string.

Step 605, the AGF sends the first link generation information to the AN, and the AN receives the first link generation information from the AGF.

Step 606, the AN sends the first link generation information to the terminal, and the terminal receives the first link generation information from the AN.

Through the above steps 601 to 606, the terminal may acquire the first link generation information from the AGF.

It should be noted that, the steps 601 to 606 may be completed before the terminal registers to the core network, or may be completed after the terminal registers to the core network, which is not limited in this application.

As an alternative implementation, the step 602 may be replaced by: the AN adds the first link information in the link information request message and sends the link information request message with the first link information to the AGF. That is, the AN carries the first link information in the link information request message, and sends the link information request message to the AGF, and then the AGF acquires the first link information from the link information request message.

Optionally, the AGF may also send the challenge string to the terminal through the AN. For example, the challenge string is transmitted to the terminal through the above steps 605 and 606.

Optionally, if the terminal is registered to the core network before performing step 601, and the terminal may receive the terminal temporary identifier from the core network at this time, the link information request message may further include the terminal temporary identifier. Therefore, the AGF can acquire the terminal temporary identifier and establish association among the terminal temporary identifier, the challenge character string, the first link generation information, the first link information, and the second link information. The terminal temporary identifier is used for identifying the terminal.

In summary, the terminal may acquire the first link information or the first link generation information through the methods shown in fig. 4 to fig. 6.

It should be noted that the embodiment shown in fig. 3 may be combined with any one of the embodiments in fig. 4 to fig. 6 as a specific implementation manner. Also, any of the embodiments of fig. 4-6 are implemented before the embodiment shown in fig. 3.

As shown in fig. 7, a method for determining link information provided by the present application includes the following steps:

in step 701, the terminal sends an NAS message to the RAN device, and the RAN device receives the NAS message from the terminal.

The NAS message is sent by the terminal to the AMF, and specifically, the terminal sends the NAS message to the AMF through the RAN device on the wireless side. That is, the terminal sends the NAS message to the RAN device on the radio side, and the RAN device does not acquire the content in the NAS message, but sends the NAS message to the AMF.

The NAS message includes indication information, and the indication information may be the first link information or the first link generation information.

Optionally, if the indication information is first link generation information, the NAS message may further include a challenge character string.

In step 702, the RAN device sends a NAS message to the AMF, which receives the NAS message from the RAN device.

Through the above steps 701 to 702, the terminal may carry the indication information in the NAS message through the RAN device on the wireless side, and send the NAS message to the AMF.

In step 703, the AMF obtains second link information.

Through this step 703, the AMF may acquire the second link information.

In step 704, the AMF checks the indication information and the second link information.

In step 704, the specific implementation manner of the AMF check indication information and the second link information is the same as that of the AMF check indication information and the second link information in step 303, and reference may be made to the foregoing description, which is not repeated herein.

Through the above steps 701 to 704, the terminal may carry the indication information in the NAS message through the RAN device on the wireless side and send the NAS message to the AMF, and the AMF may obtain the second link information from the AGF or from the local. Thus, the AMF may check the acquired indication information and the second link information. According to the method, the wireless side and the fixed network side are combined to send the link information to the AMF, so that the flexibility of deployment, registration, session creation and the like is improved.

The main difference between the method for determining link information shown in fig. 7 and the method for determining link information shown in fig. 3 is that: in the method shown in fig. 7, the terminal sends the indication information carried in the NAS message to the AMF through the RAN device on the wireless side, and the terminal obtains the second link information from the AGF or from the local area by the AMF. In the method shown in fig. 3, the terminal sends the indication information to the AMF by carrying the indication information in the NAS message through the AGF on the fixed network side, and the AGF sends the second link information to the AMF.

It should be noted that, in the present application, there is no limitation on how to use the link information after the AMF completes the check and obtains the correct link information. For example, as an example, the AMF may carry the determined link information in a session request message to the SMF during session creation, and the SMF may use the session creation message to create a session.

It should be noted that the embodiment shown in fig. 7 may be combined with any one of the embodiments in fig. 4 to fig. 6 as a specific implementation manner. Also, any of the embodiments of fig. 4-6 are implemented before the embodiment shown in fig. 7.

Various implementations are possible in practice for the above-mentioned steps 703 to 704, which are described in detail below.

According to the first implementation method, the indication information is first link generation information, the first link generation information is obtained through calculation according to the first link information and the challenge character string, and the first link generation information is indexed through a terminal temporary identifier.

If the first implementation method is adopted, the embodiment shown in fig. 7 may be combined with the embodiment shown in fig. 6 as a specific implementation. In addition, the terminal carries the terminal temporary identifier in the link request message in step 601, and the AGF establishes association between the terminal temporary identifier, the challenge character string, the first link generation information, and the second link information.

The NAS message in step 701 specifically includes the first link generation information, and further includes information of the AGF.

Then, the step 703 can be specifically realized by the following steps:

step A1, AMF determines AGF according to the information of AGF in NAS message.

Step A2, the AMF sends a request message to the AGF, and the request message comprises the terminal temporary identifier.

Step A3, the AGF determines the second link information associated with the terminal temporary identifier according to the terminal temporary identifier.

Step a4, the AGF sends the second link information to the AMF.

Through the step a 1-step a4, the AMF sends a request message to the AGF, where the request message includes the terminal temporary identifier, the AGF obtains the second link information associated with the terminal temporary identifier from the AGF by using the terminal temporary identifier as an index, and sends the obtained second link information to the AMF, so that the AMF can obtain the second link information.

It should be noted that, if the interface between the AMF and the AGF is not created before the step 703 is executed, the request message may be an interface creation request message, where the interface creation request message is used to request to create the interface between the AMF and the AGF. That is, the AMF may obtain the second link information from the AGF in the process of creating the interface.

The step 704 may be specifically realized by the following steps:

and step B1, the AMF calculates to obtain second link generation information according to the second link information and the challenge character string.

The challenge string used by the AMF is the challenge string used for generating the first link generation information.

As one implementation, the challenge string used by the AMF may be sent to the AMF through step A3 and step a4 described above. Specifically, in step a3, the AGF may further determine, according to the terminal temporary identifier, a challenge character string associated with the terminal temporary identifier. Then, in step a4, the AGF sends the challenge string together with the second link information to the AMF.

As another implementation manner, the challenge string used by the AMF may also be carried in the NAS message in step 701, so that the AMF may obtain the challenge string.

Step B2, the AMF checks the indication information and the second link information according to the first link generation information and the second link generation information.

The method for implementing the step B1-the step B2 is the same as the second implementation manner described in the step 303, and reference may be made to the foregoing description.

And the second implementation method is that the indication information is first link information and is indexed through the terminal temporary identifier.

If the second implementation method is adopted, the embodiment shown in fig. 7 may be combined with any of the embodiments shown in fig. 4 to 6 as a specific implementation. In addition, the terminal carries the terminal temporary identifier in the link request message of steps 401, 501, and 601, and the AGF establishes an association between the terminal temporary identifier and the second link information.

Then, the step 703 can be specifically realized by the following steps:

and step C1, the AMF determines the AGF according to the first link information in the NAS message.

Step C2, the AMF sends a request message to the AGF, the request message includes the terminal temporary identifier.

And step C3, the AGF determines the second link information associated with the terminal temporary identifier according to the terminal temporary identifier.

Step C4, the AGF sends the second link information to the AMF.

Through the step C1-step C4, the AMF sends a request message to the AGF, where the request message includes the terminal temporary identifier, the AGF obtains the second link information associated with the terminal temporary identifier from the AGF by using the terminal temporary identifier as an index, and sends the obtained second link information to the AMF, so that the AMF can obtain the second link information.

It should be noted that, if the interface between the AMF and the AGF is not created before the step 703 is executed, the request message may be an interface creation request message, where the interface creation request message is used to request to create the interface between the AMF and the AGF. That is, the AMF may obtain the second link information from the AGF in the process of creating the interface.

The step 704 may be specifically realized by the following steps: and the AMF checks the indication information and the second link information according to the first link generation information and the second link generation information. And the AMF checks the indication information and the second link information according to the first link information and the second link information. The specific implementation method of this step is the same as the implementation method described in step 303, and reference may be made to the foregoing description.

And the third implementation method is that the indication information is first link generation information, and the first link generation information is obtained by calculation according to the first link information and the challenge character string and is indexed through the challenge character string.

If the third implementation method is adopted, the embodiment shown in fig. 7 may be combined with the embodiment shown in fig. 6 as a specific implementation. And, the terminal does not carry the terminal temporary identifier in the link request message of step 601.

The NAS message in step 701 specifically includes the first link generation information, and further includes information of the AGF.

Then, the step 703 can be specifically realized by the following steps:

and D1, the AMF determines the AGF according to the information of the AGF in the NAS message.

Step D2, the AMF sends a request message to the AGF, the request message including the challenge string.

And D3, the AGF determines second link information associated with the challenge character string according to the challenge character string.

Step D4, the AGF sends the second link information to the AMF.

Through the step D1-the step D4, the AMF sends a request message to the AGF, where the request message includes the challenge character string, the AGF obtains the second link information associated with the challenge character string from the AGF by using the challenge character string as an index, and sends the obtained second link information to the AMF, so that the AMF can obtain the second link information.

The challenge string included in the request message in step D2 is the challenge string used for generating the first link generation information.

As an implementation manner, the challenge string used by the AMF may be carried in the NAS message in step 701, so that the AMF may obtain the challenge string.

It should be noted that, if the interface between the AMF and the AGF is not created before the step 703 is executed, the request message may be an interface creation request message, where the interface creation request message is used to request to create the interface between the AMF and the AGF. That is, the AMF may obtain the second link information from the AGF in the process of creating the interface.

The step 704 may be specifically realized by the following steps:

and E1, calculating to obtain second link generation information by the AMF according to the second link information and the challenge character string.

Step E2, the AMF checks the indication information and the second link information according to the first link generation information and the second link generation information.

The method for implementing steps E1-E2 is the same as the second implementation manner described in step 303, and reference may be made to the foregoing description.

And the implementation method comprises the step of obtaining the indication information as first link generation information, obtaining the first link generation information by calculation according to the first link information and the challenge character string, and obtaining the second link information from the local by the AMF.

If the fourth implementation method is adopted, the embodiment shown in fig. 7 may be combined with the embodiment shown in fig. 6 as a specific implementation. In addition, the terminal carries the terminal temporary identifier in the link request message in step 601, and the AGF establishes association between the terminal temporary identifier, the challenge character string, the first link generation information, and the second link information.

Further, in the flow illustrated in fig. 6, after the step 603, the following steps are further included:

step 603A, AGF sends a request message to the AMF, which receives the request message from the AGF.

The request message includes the second link information, the terminal temporary identifier and the challenge character string.

Step 603B, AMF establishes an association between the second link information, the challenge string and the terminal temporary identity.

Through the steps 603A to 603B, the AGF is further enabled to send the second link information, the terminal temporary identifier and the challenge character string to the AMF in the process of acquiring the first link generation information by the terminal, so that the AMF establishes the association between the second link information, the challenge character string and the terminal temporary identifier.

Before the flow shown in fig. 7 is realized, the flow shown in fig. 6 and the above-described steps 603A to 603B are first executed.

It should be noted that, if the interface between the AMF and the AGF is not created before the step 603A is executed, the request message may be an interface creation request message, where the interface creation request message is used to request to create the interface between the AMF and the AGF. That is, the AMF may acquire the second link information, the terminal temporary identifier, and the challenge character string from the AGF in the process of creating the interface.

Then, the step 703 can be specifically realized by the following steps: and the AMF acquires the second link information according to the terminal temporary identifier.

That is, since the AMF has already established the association between the second link information, the challenge character string, and the terminal temporary identifier through the above steps 603A to 603B, the AMF can directly obtain the second link information from the local according to the terminal temporary identifier. Further, the AMF may directly obtain the challenge character string from local according to the terminal temporary identifier.

The step 704 may be specifically realized by the following steps:

step F1, the AMF calculates to obtain second link generation information according to the second link information and the challenge character string.

Step F2, the AMF checks the indication information and the second link information according to the first link generation information and the second link generation information.

The specific implementation method of the above step F1-step F2 is the same as the implementation method of the above step 303, and reference may be made to the foregoing description.

And the implementation method fifth is that the indication information is first link information, and the AMF acquires second link information from the local.

If the fifth implementation method is adopted, the embodiment shown in fig. 7 may be combined with the embodiment shown in fig. 6 as a specific implementation. And, the terminal carries the terminal temporary identifier in the link request message of step 601, and the AGF establishes association between the terminal temporary identifier, the first link generation information, the first link information, and the second link information.

Further, in the flow illustrated in fig. 6, after the step 603, the following steps are further included:

step 603A', the AGF sends a request message to the AMF, which receives the request message from the AGF.

Wherein, the request message includes the second link information and the terminal temporary identifier.

Step 603B', the AMF establishes an association between the second link information and the terminal temporary identity.

Through the above steps 603A 'to 603B', in the process that the terminal acquires the first link generation information, the AGF further sends the second link information and the terminal temporary identifier to the AMF, so that the AMF establishes the association between the second link information and the terminal temporary identifier.

Before the flow shown in fig. 7 is realized, the flow shown in fig. 6 and the above-described steps 603A '-603B' are first executed.

It should be noted that, if the interface between the AMF and the AGF is not created before the step 603A' is executed, the request message may be an interface creation request message, and the interface creation request message is used to request to create the interface between the AMF and the AGF. That is, the AMF may acquire the second link information and the terminal temporary identifier from the AGF in the process of creating the interface.

Then, the step 703 can be specifically realized by the following steps: and the AMF acquires the second link information according to the terminal temporary identifier.

That is, since the AMF has already established the association between the second link information and the terminal temporary identifier through the above steps 603A 'to 603B', the AMF can directly obtain the second link information from the local according to the terminal temporary identifier.

The step 704 may be specifically realized by the following steps: and the AMF checks the indication information and the second link information according to the first link information and the second link information. The specific implementation method of this step is the same as the implementation method described in step 303, and reference may be made to the foregoing description.

As shown in fig. 8, a further method for determining link information provided by the present application includes the following steps:

step 801 to step 802, which are the same as the above step 701 to step 702, can refer to the foregoing description.

Through the above steps 801 to 802, the terminal may carry the indication information in the NAS message through the RAN device on the wireless side, and send the NAS message to the AMF. Optionally, the challenge string is also sent to the AMF.

In step 803, the AMF sends a request message to the AGF, and the AGF receives the request message from the AMF.

The request message includes indication information, and the indication information is first link information or first link generation information.

As an implementation manner, when the indication information is the first link information, the request message further includes a terminal temporary identifier.

As another implementation manner, when the indication information is the first link generation information, the request message further includes the terminal temporary identifier.

As another implementation, when the indication information generates information for the first link, the request message further includes a challenge character string.

The three implementation modes will be described in detail later.

It should be noted that, if the interface between the AMF and the AGF is not created before the step 803 is executed, the request message may be an interface creation request message, where the interface creation request message is used to request to create the interface between the AMF and the AGF.

Step 804, the AGF checks the indication information and the second link information.

In step 804, the specific implementation manner of the AGF check indication information and the second link information is the same as that of the AMF check indication information and the second link information in step 303, and reference may be made to the foregoing description, which is not described herein again.

In step 805, if the check indication information and the second link information are correct, the AGF sends the second link information to the AMF.

Through the above steps 801 to 805, the terminal may carry the indication information in the NAS message through the RAN device on the wireless side and send the NAS message to the AMF, and the AGF sends the second link information to the AMF when checking that the indication information and the second link information are correct. According to the method, the wireless side and the fixed network side are combined to send the link information to the AMF, so that the flexibility of deployment, registration, session creation and the like is improved. .

The main difference between the method for determining link information shown in fig. 8 and the method for determining link information shown in fig. 3 is that: in the method shown in fig. 8, the terminal sends the indication information carried in the NAS message to the AMF through the RAN device on the wireless side, and the AMF acquires the second link information from the AGF. In the method shown in fig. 3, the terminal sends the indication information to the AMF by carrying the indication information in the NAS message through the AGF on the fixed network side, and the AGF sends the second link information to the AMF.

The main difference between the method for determining link information shown in fig. 8 and the method for determining link information shown in fig. 7 is that: the method shown in fig. 8 is implemented by checking the indication information and the second link information with the AGF. The method shown in fig. 7 is to check the indication information and the second link information by the AMF.

It should be noted that, in the present application, there is no limitation on how to use the link information after the AGF completes the check and the AMF obtains the correct link information. For example, as an example, the AMF may carry the determined link information in a session request message to the SMF during session creation, and the SMF may use the session creation message to create a session.

It should be noted that the embodiment shown in fig. 8 may be combined with any one of the embodiments in fig. 4 to fig. 6 as a specific implementation manner. Also, any of the embodiments of fig. 4-6 are implemented before the embodiment shown in fig. 8.

Various implementations are possible in specific practice for the above steps 803 to 804, which are described in detail below.

In the first implementation method, the indication information is first link generation information, the first link generation information is obtained by calculation according to the first link information and the challenge character string, and the request message in step 803 includes the first link generation information and the terminal temporary identifier.

If the first implementation method is adopted, the embodiment shown in fig. 8 may be combined with the embodiment shown in fig. 6 as a specific implementation. In addition, the terminal carries the terminal temporary identifier in the link request message in step 601, and the AGF establishes association between the terminal temporary identifier, the challenge character string, the first link generation information, and the second link information.

The NAS message of step 801 specifically includes the first link generation information, and further includes information of the AGF.

The step 803 can be specifically realized by the following steps: and the AMF determines the AGF according to the information of the AGF in the NAS message, and sends a request message to the AGF, wherein the request message comprises the first link generation information and the terminal temporary identifier.

The step 804 can be specifically realized by the following steps:

and step H1, the AGF determines the second link information and the challenge character string according to the terminal temporary identifier.

Step H2, the AGF generates second link generation information according to the second link information and the challenge character string.

Step H3, if the AGF determines that the first link generation information is the same as the second link generation information, the check indication information and the second link information are correct.

The specific implementation method of the above step H2-step H3 is the same as the AMF verification method in the second implementation manner of the above step 303, and reference may be made to the foregoing description.

In the second implementation method, the indication information is first link generation information, the first link generation information is obtained by calculation according to the first link information and the challenge character string, and the request message in step 803 includes the first link generation information and the challenge character string.

If the second implementation method is adopted, the embodiment shown in fig. 8 may be combined with the embodiment shown in fig. 6 as a specific implementation. In addition, the terminal does not carry the terminal temporary identifier in the link request message in step 601, and the AGF establishes an association between the challenge character string, the first link generation information, and the second link information.

The NAS message of step 801 specifically includes the first link generation information, and further includes information of the AGF.

The step 803 can be specifically realized by the following steps: and the AMF determines the AGF according to the information of the AGF in the NAS message, and sends a request message to the AGF, wherein the request message comprises the first link generation information and the challenge character string.

The step 804 can be specifically realized by the following steps:

and step I1, the AGF determines second link information according to the challenge character string.

And step I2, the AGF generates second link generation information according to the second link information and the challenge character string.

If the step I3 and the AGF determine that the first link generation information is the same as the second link generation information, the check indication information and the second link information are correct.

The specific implementation method of the step I2-step I3 is the same as the AMF verification method in the second implementation manner of the step 303, and reference may be made to the foregoing description.

The third implementation method is that the indication information is first link information, and the request message of step 803 includes the first link information and the terminal temporary identifier.

If the third implementation method is adopted, the embodiment shown in fig. 8 may be combined with the embodiments shown in fig. 4 to fig. 6 as a specific implementation. In addition, the terminal carries the terminal temporary identifier in the link request message in step 401, step 501 or step 601, and the AGF establishes association between the terminal temporary identifier and the second link information.

The step 803 can be specifically realized by the following steps: and the AMF determines the AGF according to the first link information in the NAS message, and sends a request message to the AGF, wherein the request message comprises the first link information and the terminal temporary identifier.

The step 804 can be specifically realized by the following steps:

and step J1, the AGF determines the second link information according to the terminal temporary identifier.

Step J2, if the AGF determines that the first link information is the same as the second link information, the check indication information and the second link information are correct.

The specific implementation method of step J2 is the same as the AMF verification method in the first implementation manner of step 303, and reference may be made to the foregoing description.

As a specific implementation manner, the flow shown in fig. 7 or fig. 8 may be completed in a process of creating a session between the terminal and the core network, for example, creating a PDU session. Specifically, a session on the fixed network side may be created by the RAN device on the wireless side.

As another implementation manner, before a session is created between the terminal and the core network, the AMF may perform the steps of fig. 6 and perform step 603A and step 603B, or perform the steps of fig. 6 and perform step 603A 'and step 603B', and then perform the flow shown in fig. 7 or fig. 8 in the process of creating the session.

Further, after the core network completes creation of the fixed network session, the AMF further sends a session creation completion message to the RAN device, and optionally, the AMF further sends fixed network side session information to the RAN device, that is, the fixed network side session information is sent to the RAN device on the wireless side.

The above-mentioned scheme provided by the present application is mainly introduced from the perspective of interaction between network elements. It is to be understood that the above-described implementation of each network element includes, in order to implement the above-described functions, a corresponding hardware structure and/or software module for performing each function. Those of skill in the art will readily appreciate that the present invention can be implemented in hardware or a combination of hardware and computer software, with the exemplary elements and algorithm steps described in connection with the embodiments disclosed herein. Whether a function is performed as hardware or computer software drives hardware depends upon the particular application and design constraints imposed on the solution. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present invention.

Based on the same inventive concept, as shown in fig. 9, a schematic diagram of an apparatus provided in the present application, where the apparatus may be a terminal, an access gateway device, a mobility management network element, or a chip, and may perform the method of any of the foregoing embodiments.

The apparatus 900 includes at least one processor 901, communication lines 902, memory 903, and at least one communication interface 904.

The processor 901 may be a general processing unit (CPU), a microprocessor, an application-specific integrated circuit (server IC), or one or more ICs for controlling the execution of programs in accordance with the present disclosure.

The communication link 902 may include a path to communicate information between the aforementioned components.

Communication interface 904 may be implemented using any device, such as a transceiver, for communicating with other devices or communication networks, such as an ethernet, a Radio Access Network (RAN), a Wireless Local Area Network (WLAN), etc.

The memory 903 may be a read-only memory (ROM) or other type of static storage device that can store static information and instructions, a Random Access Memory (RAM) or other type of dynamic storage device that can store information and instructions, an electrically erasable programmable read-only memory (EEPROM), a compact-disc-only memory (CD-ROM) or other optical disk storage, optical disk storage (including compact disk, laser disk, optical disk, digital versatile disk, blu-ray disk, etc.), magnetic disk storage media or other magnetic storage devices, or any other medium that can be used to carry or store desired program code in the form of instructions or data structures and that can be accessed by a computer, but is not limited to these. The memory may be separate and coupled to the processor via a communication line 902. The memory may also be integral to the processor.

The memory 903 is used for storing computer-executable instructions for executing the present invention, and is controlled by the processor 901 to execute. The processor 901 is configured to execute computer-executable instructions stored in the memory 903, so as to implement the determination method of link information provided in the following embodiments of the present application.

Optionally, the computer-executable instructions in the embodiments of the present application may also be referred to as application program codes, which are not specifically limited in the embodiments of the present application.

In particular implementations, processor 901 may include one or more CPUs such as CPU0 and CPU1 in fig. 9 as an example.

In particular implementations, apparatus 900 may include multiple processors, such as processor 901 and processor 908 in fig. 9, for one embodiment. Each of these processors may be a single-core (single-CPU) processor or a multi-core (multi-CPU) processor. A processor herein may refer to one or more devices, circuits, and/or processing cores for processing data (e.g., computer program instructions).

In particular implementations, apparatus 900 may also include an output device 905 and an input device 906, as one embodiment. An output device 905, which is in communication with the processor 901, may display information in a variety of ways. For example, the output device 905 may be a Liquid Crystal Display (LCD), a Light Emitting Diode (LED) display device, a Cathode Ray Tube (CRT) display device, a projector (projector), or the like. The input device 906, which is in communication with the processor 901, may receive input from a user in a variety of ways. For example, the input device 906 may be a mouse, keyboard, touch screen device, or sensing device, among others.

The apparatus 900 may be a general-purpose device or a special-purpose device. In a specific implementation, the apparatus 900 may be a desktop, a laptop, a web server, a Personal Digital Assistant (PDA), a mobile phone, a tablet, a wireless terminal device, an embedded device, or a device with a similar structure as in fig. 9. The embodiments of the present application do not limit the type of the apparatus 900.

When the apparatus shown in fig. 9 is a chip, which may be a chip of a terminal, a chip of an access gateway device, or a chip of a mobility management network element, for example, the chip includes a processor 901 (which may also include a processor 908), a communication line 902, a memory 903, and a communication interface 904. In particular, the communication interface 904 may be an input interface, a pin or a circuit, or the like. The memory 903 may be a register, cache, or the like. The processor 901 and the processor 908 may be a general-purpose CPU, a microprocessor, an ASIC, or one or more integrated circuits for controlling the execution of programs for the link information determination method of any of the above embodiments.

The present application may perform division of functional modules on the apparatus according to the above method example, for example, each functional module may be divided corresponding to each function, or two or more functions may be integrated into one processing module. The integrated module can be realized in a hardware mode, and can also be realized in a software functional module mode. It should be noted that, the division of the modules in the present application is schematic, and is only a logical function division, and there may be another division manner in actual implementation. For example, in the case of dividing each functional module by corresponding functions, fig. 10 shows a schematic diagram of an apparatus, the apparatus 1000 may be a mobility management network element according to the foregoing embodiment, and the apparatus 1000 includes a receiving unit 1001 and a processing unit 1003. Optionally, a sending unit 1002 is further included.

In one particular embodiment:

a receiving unit 1001, configured to receive a non-access stratum NAS message and second link information from an access gateway device, where the NAS message includes indication information, the indication information is used to indicate first link information, the first link information is used to indicate access information of a terminal, and the second link information is link information used to indicate access information of the terminal in the access gateway device;

a processing unit 1003, configured to verify the indication information and the second link information.

In a specific implementation, the indication information is first link generation information, and the first link generation information is calculated according to the first link information and the challenge character string;

the processing unit 1003 is specifically configured to:

calculating to obtain second link generation information according to the second link information and the challenge character string;

and checking the indication information and the second link information according to the second link generation information and the first link information generation information.

In another specific embodiment:

a receiving unit 1001, configured to receive a non-access stratum NAS message from a radio access network device, where the NAS message includes indication information, where the indication information is used to indicate first link information, and the first link information is used to indicate access information of a terminal;

a processing unit 1003, configured to acquire second link information, where the second link information is link information used for indicating access information of a terminal in an access gateway device; and the second link information is used for verifying the indication information and the second link information.

In a specific implementation, the indication information is first link generation information, the first link generation information is obtained by calculation according to the first link information and the challenge character string, and the NAS message further includes information of the access gateway device; the processing unit 1003 is configured to acquire the second link information, and specifically includes: determining access gateway equipment according to the information of the access gateway equipment; sending a request message to the access gateway device through the sending unit 1002, where the request message includes a terminal temporary identifier, the terminal temporary identifier is used to identify a terminal, and the terminal temporary identifier is associated with the second link information; receiving second link information from the access gateway device through the receiving unit 1001;

the processing unit 1003 is configured to verify the indication information and the second link information, and specifically includes: calculating to obtain second link generation information according to the second link information and the challenge character string; and checking the indication information and the second link information according to the first link generation information and the second link generation information.

In a specific implementation, the indication information is first link information; the processing unit 1003 is configured to acquire the second link information, and specifically includes: determining access gateway equipment according to the first link information; and, send the solicited message to the access gateway equipment through the sending unit 1002, the solicited message includes the terminal temporary identifier, the terminal temporary identifier is used for identifying the terminal, the terminal temporary identifier is associated with second periodic line information;

receiving second link information from the access gateway device through the receiving unit 1001;

the processing unit 1003 is configured to verify the indication information and the second link information, and specifically includes:

and checking the indication information and the second link information according to the first link information and the second link information.

In a specific implementation, the indication information is first link generation information, the first link generation information is obtained by calculation according to the first link information and the challenge character string, and the NAS message further includes information of the access gateway device and the challenge character string; the processing unit 1003 is configured to acquire the second link information, and specifically includes: determining access gateway equipment according to the information of the access gateway equipment; and is configured to send a request message to the access gateway device through the sending unit 1002, where the request message includes a challenge string;

receiving, by the receiving unit 1001, second link information from the access gateway device, the second link information being associated with the challenge string;

the processing unit 1003 is configured to verify the indication information and the second link information, and specifically includes:

calculating to obtain second link generation information according to the second link information and the challenge character string;

and checking the indication information and the second link information according to the first link generation information and the second link generation information.

In a specific implementation, the receiving unit 1001 is further configured to receive a request message from the access gateway device, where the request message includes the second link information and a terminal temporary identifier, the terminal temporary identifier is used to identify the terminal, and the terminal temporary identifier is associated with the second link information;

the processing unit 1003 is further configured to establish an association between the second link information and the terminal temporary identifier.

In a specific implementation, the indication information is first link information;

the processing unit 1003 is configured to acquire the second link information, and specifically includes:

acquiring second link information according to the terminal temporary identifier;

the processing unit 1003 is configured to verify the indication information and the second link information, and specifically includes:

and checking the indication information and the second link information according to the first link information and the second link information.

In a specific implementation, the receiving unit 1001 is further configured to receive a request message from the access gateway device, where the request message includes the second link information, the challenge character string, and a terminal temporary identifier, where the terminal temporary identifier is used to identify a terminal, and the terminal temporary identifier is associated with the second link information;

the processing unit 1003 is further configured to establish an association between the second link information, the challenge character string, and the terminal temporary identifier.

In a specific implementation, the indication information is first link generation information, and the first link generation information is calculated according to the first link information and the challenge character string;

the processing unit 1003 is configured to acquire the second link information, and specifically includes:

acquiring second link information according to the terminal temporary identifier;

the processing unit 1003 is configured to verify the indication information and the second link information, and specifically includes:

calculating to obtain second link generation information according to the challenge character string and the second link information;

and checking the indication information and the second link information according to the first link generation information and the second link generation information.

In a specific implementation, the sending unit 1002 is configured to send fixed network side session information to the radio access network device.

It should be understood that the apparatus may be used to implement the steps performed by the mobility management element in the method according to the embodiment of the present invention, and reference may be made to the above for related features, which are not described herein again.

Specifically, the functions/implementation procedures of the receiving unit 1001, the processing unit 1003, and the sending unit 1002 in fig. 10 may be implemented by the processor 901 in fig. 9 calling a computer executing instruction stored in the memory 903. Alternatively, the function/implementation procedure of the processing unit 1003 in fig. 10 may be implemented by the processor 901 in fig. 9 calling a computer executing instruction stored in the memory 903, and the function/implementation procedures of the receiving unit 1001 and the transmitting unit 1002 in fig. 10 may be implemented by the communication interface 904 in fig. 9.

Alternatively, when the apparatus 1000 is a chip, the functions/implementation processes of the receiving unit 1001 and the sending unit 1002 may also be implemented by pins or circuits. Alternatively, when the apparatus 1000 is a chip, the memory 903 may be a storage unit in the chip, such as a register, a cache, or the like. Of course, when the apparatus 1000 is a mobility management network element, the memory 903 may be a storage unit located outside a chip in the mobility management network element, which is not specifically limited in this embodiment of the present application.

The present application may perform division of functional modules on the apparatus according to the above method example, for example, each functional module may be divided corresponding to each function, or two or more functions may be integrated into one processing module. The integrated module can be realized in a hardware mode, and can also be realized in a software functional module mode. It should be noted that, the division of the modules in the present application is schematic, and is only a logical function division, and there may be another division manner in actual implementation. For example, in the case of dividing each functional module by corresponding functions, fig. 11 shows a schematic diagram of an apparatus, the apparatus 1100 may be a terminal according to the above embodiments, and the apparatus 1100 includes a receiving unit 1101 and a transmitting unit 1102. Optionally, a processing unit 1103 is also included.

A sending unit 1102, configured to send a link information request message to an access point, where the link information request message is used to request to acquire link information, and the link information is used to indicate access information of a terminal; and sending a non-access stratum (NAS) message to the mobility management network element, wherein the NAS message comprises indication information, and the indication information is used for indicating link information;

a receiving unit 1101, configured to receive indication information from an access point.

In a specific implementation, the indication information is link information; alternatively, the first and second electrodes may be,

the indication information is link generation information, and the link generation information is obtained by calculation according to the link information and the challenge character string.

In a specific implementation, the sending unit 1102 is specifically configured to:

sending NAS information to a mobility management network element through wireless access network equipment on a wireless side; alternatively, the first and second electrodes may be,

and sending the NAS information to the mobility management network element through the access gateway equipment at the fixed network side.

In a specific implementation, the link information request message further includes a terminal temporary identifier, and the terminal temporary identifier is used to identify the terminal.

It should be understood that the apparatus may be used to implement the steps executed by the terminal in the method according to the embodiment of the present invention, and the related features may refer to the foregoing description, which is not described herein again.

Specifically, the functions/implementation procedures of the receiving unit 1101, the sending unit 1102 and the processing unit 1103 in fig. 11 may be implemented by the processor 901 in fig. 9 calling a computer executing instruction stored in the memory 903. Alternatively, the functions/implementation procedures of the processing unit 1103 in fig. 11 may be implemented by the processor 901 in fig. 9 calling a computer executing instruction stored in the memory 903, and the functions/implementation procedures of the receiving unit 1101 and the sending unit 1102 in fig. 11 may be implemented by the communication interface 904 in fig. 9.

Alternatively, when the apparatus 1100 is a chip, the functions/implementation processes of the receiving unit 1101 and the sending unit 1102 may also be implemented by pins or circuits. Alternatively, when the apparatus 1100 is a chip, the memory 903 may be a storage unit in the chip, such as a register, a cache, or the like. Of course, when the apparatus 1100 is a terminal, the memory 903 may be a storage unit located outside a chip in the terminal, and this embodiment of the present application is not particularly limited thereto.

The present application may perform division of functional modules on the apparatus according to the above method example, for example, each functional module may be divided corresponding to each function, or two or more functions may be integrated into one processing module. The integrated module can be realized in a hardware mode, and can also be realized in a software functional module mode. It should be noted that, the division of the modules in the present application is schematic, and is only a logical function division, and there may be another division manner in actual implementation. For example, in the case of dividing each functional module by corresponding functions, fig. 12 shows a schematic diagram of an apparatus, where the apparatus 1200 may be an access gateway device according to the foregoing embodiments, and the apparatus 1200 includes a receiving unit 1201, a sending unit 1202, and a processing unit 1203.

In one particular embodiment:

a receiving unit 1201, configured to receive a request message from a mobility management network element, where the request message includes indication information, and the indication information is used to indicate first link information, and the first link information is used to indicate access information of a terminal;

a processing unit 1203, configured to check the indication information and second link information, where the second link information is link information used for indicating access information of a terminal in the access gateway device;

a sending unit 1202, configured to send the second link information to the mobility management network element if the check indication information and the second link information are correct.

In a specific implementation, the indication information is first link generation information, the first link generation information is obtained by calculation according to the first link information and the challenge character string, the request message further includes a terminal temporary identifier, the terminal temporary identifier is used for identifying a terminal, and the terminal temporary identifier is associated with the second link information;

the processing unit 1203 is specifically configured to:

determining second link information and a challenge character string according to the terminal temporary identifier;

generating second link generation information according to the second link information and the challenge character string;

and if the first link generation information is determined to be the same as the second link generation information, checking that the indication information and the second link information are correct.

In a specific implementation, the indication information is first link information, the request message further includes a terminal temporary identifier, the terminal temporary identifier is used for identifying the terminal, and the terminal temporary identifier is associated with the second link information;

the processing unit 1203 is specifically configured to:

determining second link information according to the terminal temporary identifier;

and if the first link information is determined to be the same as the second link information, checking that the indication information and the second link information are correct.

In a specific implementation, the indication information is first link generation information, the first link generation information is obtained by calculation according to the first link information and the challenge character string, and the request message further includes the challenge character string; the processing unit 1203 is specifically configured to:

calculating to obtain second link generation information according to the second link information and the challenge character string; and if the first link generation information is determined to be the same as the second link generation information, checking that the indication information and the second link information are correct.

In another specific embodiment:

a receiving unit 1201, configured to receive an NAS message from a terminal, where the NAS message includes indication information, and the indication information is used for first link information, and the first link information is used for indicating access information of the terminal;

a sending unit 1202, configured to send an NAS message and second link information to a mobility management network element, where the second link information is link information used for indicating access information of a terminal in an access gateway device, and the indication information and the second link information are used for verifying by the mobility management network element.

In a specific implementation, the indication information is first link information, and the receiving unit 1201 is further configured to receive a link information request message from an access point, where the link information request message includes link identification information, and the link identification information is used to identify the first link information;

a processing unit 1203, configured to determine first link information according to the link identification information;

the sending unit 1202 is further configured to send the first link information to the access point.

In a specific implementation, the indication information is first link generation information, and the receiving unit 1201 is further configured to receive a link information request message from an access point, where the link information request message includes link identification information, and the link identification information is used to identify the first link information;

a processing unit 1203, configured to determine first link information according to the link identification information; the first link generation information is obtained through calculation according to the first link information and the challenge character string;

the sending unit 1202 is further configured to send the first link generation information to the access point.

It should be understood that the apparatus may be used to implement the steps performed by the access gateway device in the method according to the embodiment of the present invention, and reference may be made to the above for related features, which are not described herein again.

Specifically, the functions/implementation procedures of the receiving unit 1201, the sending unit 1202 and the processing unit 1203 in fig. 12 may be implemented by the processor 901 in fig. 9 calling a computer executing instruction stored in the memory 903. Alternatively, the function/implementation procedure of the processing unit 1203 in fig. 12 may be implemented by the processor 901 in fig. 9 calling a computer executing instruction stored in the memory 903, and the function/implementation procedures of the receiving unit 1201 and the transmitting unit 1202 in fig. 12 may be implemented by the communication interface 904 in fig. 9.

Alternatively, when the apparatus 1200 is a chip, the functions/implementation processes of the receiving unit 1201 and the transmitting unit 1202 may also be implemented by pins, circuits, or the like. Alternatively, when the apparatus 1200 is a chip, the memory 903 may be a storage unit in the chip, such as a register, a cache, or the like. Of course, when the apparatus 1200 is an access gateway device, the memory 903 may be a storage unit located outside a chip in the access gateway device, which is not specifically limited in this embodiment of the present application.

In the above embodiments, the implementation may be wholly or partially realized by software, hardware, firmware, or any combination thereof. When implemented in software, may be implemented in whole or in part in the form of a computer program product. The computer program product includes one or more computer instructions. When loaded and executed on a computer, cause the processes or functions described in accordance with the embodiments of the invention to occur, in whole or in part. The computer may be a general purpose computer, a special purpose computer, a network of computers, or other programmable device. The computer instructions may be stored in a computer readable storage medium or transmitted from one computer readable storage medium to another, for example, from one website site, computer, server, or data center to another website site, computer, server, or data center via wired (e.g., coaxial cable, fiber optic, Digital Subscriber Line (DSL)) or wireless (e.g., infrared, wireless, microwave, etc.). The computer-readable storage medium can be any available medium that can be accessed by a computer or a data storage device, such as a server, a data center, etc., that incorporates one or more of the available media. The usable medium may be a magnetic medium (e.g., floppy Disk, hard Disk, magnetic tape), an optical medium (e.g., DVD), or a semiconductor medium (e.g., Solid State Disk (SSD)), among others.

The various illustrative logical units and circuits described in this application may be implemented or operated upon by design of a general purpose processor, a digital signal processor, an Application Specific Integrated Circuit (ASIC), a Field Programmable Gate Array (FPGA) or other programmable logic device, discrete gate or transistor logic, discrete hardware components, or any combination thereof. A general-purpose processor may be a microprocessor, but in the alternative, the processor may be any conventional processor, controller, microcontroller, or state machine. A processor may also be implemented as a combination of computing devices, e.g., a digital signal processor and a microprocessor, a plurality of microprocessors, one or more microprocessors in conjunction with a digital signal processor core, or any other similar configuration.

The steps of a method or algorithm described in the embodiments herein may be embodied directly in hardware, in a software element executed by a processor, or in a combination of the two. The software cells may be stored in RAM memory, flash memory, ROM memory, EPROM memory, EEPROM memory, registers, hard disk, a removable disk, a CD-ROM, or any other form of storage medium known in the art. For example, a storage medium may be coupled to the processor such the processor can read information from, and write information to, the storage medium. In the alternative, the storage medium may be integral to the processor. The processor and the storage medium may reside in an ASIC, which may be disposed in a terminal device. In the alternative, the processor and the storage medium may reside as discrete components in a terminal device.

These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.

While the invention has been described in conjunction with specific features and embodiments thereof, it will be evident that various modifications and combinations can be made thereto without departing from the spirit and scope of the invention. Accordingly, the specification and figures are merely exemplary of the invention as defined in the appended claims and are intended to cover any and all modifications, variations, combinations, or equivalents within the scope of the invention. It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, if such modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is also intended to include such modifications and variations.

Claims (31)

1. A method for determining link information, comprising:

a mobility management network element receives a non-access stratum (NAS) message and second link information from access gateway equipment, wherein the NAS message comprises indication information, the indication information is used for indicating first link information, the first link information is used for indicating access information of a terminal, and the second link information is link information which is used for indicating the access information of the terminal in the access gateway equipment;

and the mobility management network element verifies the indication information and the second link information.

2. The method according to claim 1, wherein the indication information is first link generation information calculated according to the first link information and a challenge character string;

the verifying, by the mobility management network element, the indication information and the second link information includes:

the mobility management network element calculates to obtain second link generation information according to the second link information and the challenge character string;

and the mobility management network element verifies the indication information and the second link information according to the second link generation information and the first link information generation information.

3. A method for determining link information, comprising:

a mobility management network element receives a non-access stratum (NAS) message from a wireless access network device, wherein the NAS message comprises indication information, the indication information is used for indicating first link information, and the first link information is used for indicating access information of a terminal;

the mobility management network element acquires second link information, wherein the second link information is link information used for indicating access information of the terminal in access gateway equipment;

and the mobility management network element verifies the indication information and the second link information.

4. The method of claim 3, wherein the indication information is first link generation information, the first link generation information is calculated according to the first link information and a challenge string, and the NAS message further includes information of the access gateway device;

the acquiring, by the mobility management network element, second link information includes:

the mobility management network element determines the access gateway equipment according to the information of the access gateway equipment;

the mobility management network element sends a request message to the access gateway device, wherein the request message comprises a terminal temporary identifier, and the terminal temporary identifier is associated with the second link information;

the mobility management network element receives the second link information from the access gateway device;

the verifying, by the mobility management network element, the indication information and the second link information includes:

the mobility management network element calculates to obtain second link generation information according to the second link information and the challenge character string;

and the mobility management network element verifies the indication information and the second link information according to the first link generation information and the second link generation information.

5. The method of claim 3, wherein the indication information is the first link information;

the acquiring, by the mobility management network element, second link information includes:

the mobility management network element determines the access gateway equipment according to the first link information;

the mobility management network element sends a request message to the access gateway device, wherein the request message comprises a terminal temporary identifier, and the terminal temporary identifier is associated with the second link information;

the mobility management network element receives the second link information from the access gateway device;

the verifying, by the mobility management network element, the indication information and the second link information includes:

and the mobility management network element verifies the indication information and the second link information according to the first link information and the second link information.

6. The method of claim 3, wherein the indication information is first link generation information, the first link generation information is calculated according to the first link information and a challenge character string, and the NAS message further includes information of the access gateway device and the challenge character string;

the acquiring, by the mobility management network element, second link information includes:

the mobility management network element determines the access gateway equipment according to the information of the access gateway equipment;

the mobility management network element sends a request message to the access gateway equipment, wherein the request message comprises the challenge character string;

the mobility management network element receives the second link information from the access gateway device, where the second link information is associated with the challenge string;

the verifying, by the mobility management network element, the indication information and the second link information includes:

the mobility management network element calculates to obtain second link generation information according to the second link information and the challenge character string;

and the mobility management network element verifies the indication information and the second link information according to the first link generation information and the second link generation information.

7. The method of claim 3, further comprising:

the mobility management network element receives a request message from the access gateway equipment, wherein the request message comprises the second link information and a terminal temporary identifier;

and the mobility management network element establishes association between the second link information and the terminal temporary identifier.

8. The method of claim 7, wherein the indication information is the first link information;

the acquiring, by the mobility management network element, second link information includes: the mobility management network element acquires the second link information according to the terminal temporary identifier;

the verifying, by the mobility management network element, the indication information and the second link information includes: and the mobility management network element verifies the indication information and the second link information according to the first link information and the second link information.

9. The method of claim 3, further comprising:

the mobility management network element receives a request message from the access gateway equipment, wherein the request message comprises the second link information, a challenge character string and a terminal temporary identifier;

and the mobility management network element establishes association among the second link information, the challenge character string and the terminal temporary identifier.

10. The method according to claim 9, wherein the indication information is the first link generation information, and the first link generation information is calculated according to the first link information and the challenge character string;

the acquiring, by the mobility management network element, second link information includes: the mobility management network element acquires the second link information according to the terminal temporary identifier;

the verifying, by the mobility management network element, the indication information and the second link information includes: the mobility management network element calculates to obtain second link generation information according to the challenge character string and the second link information;

and the mobility management network element verifies the indication information and the second link information according to the first link generation information and the second link generation information.

11. A method for determining link information, comprising:

a terminal sends a link information request message to an access point, wherein the link information request message is used for requesting to acquire link information, and the link information is used for indicating the access information of the terminal;

the terminal receives indication information from the access point, wherein the indication information is used for indicating the link information;

and the terminal sends a non-access stratum (NAS) message to a mobility management network element, wherein the NAS message comprises the indication information.

12. The method of claim 11, wherein the indication information is the link information; alternatively, the first and second electrodes may be,

the indication information is link generation information, and the link generation information is obtained by calculation according to the link information and the challenge character string.

13. The method according to claim 11 or 12, wherein the terminal sends the NAS message to the mobility management network element, and comprises:

the terminal sends the NAS message to the mobility management network element through wireless access network equipment on a wireless side; alternatively, the first and second electrodes may be,

and the terminal sends the NAS message to the mobility management network element through the access gateway equipment at the fixed network side.

14. A method for determining link information, comprising:

the method comprises the steps that access gateway equipment receives a request message from a mobility management network element, wherein the request message comprises indication information, the indication information is used for indicating first link information, and the first link information is used for indicating access information of a terminal;

and if the access gateway equipment verifies that the indication information and the second link information are correct, sending the second link information to a mobility management network element, wherein the second link information is link information which is used for indicating the access information of the terminal in the access gateway equipment.

15. The method of claim 14, wherein the indication information is first link generation information, the first link generation information is calculated according to the first link information and a challenge string, the request message further includes a terminal temporary identifier, and the terminal temporary identifier is associated with the second link information;

if the access gateway equipment verifies that the indication information and the second link information are correct, the method comprises the following steps:

the access gateway equipment determines the second link information and the challenge character string according to the terminal temporary identifier;

the access gateway equipment generates second link generation information according to the second link information and the challenge character string;

and if the access gateway equipment determines that the first link generation information is the same as the second link generation information, the access gateway equipment verifies that the indication information and the second link information are correct.

16. The method of claim 14, wherein the indication information is the first link information, and wherein the request message further includes a terminal temporary identifier, and wherein the terminal temporary identifier is associated with the second link information;

if the access gateway equipment verifies that the indication information and the second link information are correct, the method comprises the following steps:

the access gateway equipment determines the second link information according to the terminal temporary identifier;

and if the access gateway equipment determines that the first link information is the same as the second link information, the indication information and the second link information are verified to be correct.

17. The method according to claim 14, wherein the indication information is first link generation information, the first link generation information is calculated according to the first link information and a challenge character string, and the request message further includes the challenge character string;

if the access gateway equipment verifies that the indication information and the second link information are correct, the method comprises the following steps:

the access gateway equipment calculates to obtain second link generation information according to the second link information and the challenge character string;

and if the access gateway equipment determines that the first link generation information is the same as the second link generation information, the access gateway equipment verifies that the indication information and the second link information are correct.

18. A communication apparatus, comprising a receiving unit and a processing unit;

the receiving unit is configured to receive a non-access stratum NAS message and second link information from an access gateway device, where the NAS message includes indication information, the indication information is used to indicate first link information, the first link information is used to indicate access information of a terminal, and the second link information is link information used to indicate access information of the terminal in the access gateway device;

the processing unit is configured to verify the indication information and the second link information.

19. The apparatus according to claim 18, wherein the indication information is first link generation information, and the first link generation information is calculated according to the first link information and a challenge string;

the processing unit is specifically configured to:

calculating to obtain second link generation information according to the second link information and the challenge character string;

and checking the indication information and the second link information according to the second link generation information and the first link information generation information.

20. A communication apparatus, comprising a receiving unit and a processing unit;

the receiving unit is configured to receive a non-access stratum NAS message from a radio access network device, where the NAS message includes indication information, where the indication information is used to indicate first link information, and the first link information is used to indicate access information of a terminal;

the processing unit is configured to acquire second link information, where the second link information is link information used for indicating access information of the terminal in the access gateway device; and checking the indication information and the second link information.

21. The apparatus of claim 20, wherein the indication information is first link generation information, the first link generation information is calculated according to the first link information and a challenge string, and the NAS message further includes information of the access gateway device; the apparatus further comprises a transmitting unit;

the processing unit is configured to acquire second link information, and specifically includes:

determining the access gateway equipment according to the information of the access gateway equipment;

sending a request message to the access gateway device through the sending unit, wherein the request message comprises a terminal temporary identifier, and the terminal temporary identifier is associated with the second link information;

receiving, by the receiving unit, the second link information from the access gateway device;

the processing unit is configured to verify the indication information and the second link information, and specifically includes:

calculating to obtain second link generation information according to the second link information and the challenge character string;

and checking the indication information and the second link information according to the first link generation information and the second link generation information.

22. A communication apparatus, comprising a transmitting unit and a receiving unit;

the sending unit is configured to send a link information request message to an access point, where the link information request message is used to request to acquire link information, and the link information is used to indicate access information of a terminal; and sending a non-access stratum (NAS) message to a mobility management network element, wherein the NAS message comprises indication information, and the indication information is used for indicating the link information;

the receiving unit is configured to receive the indication information from the access point.

23. The apparatus of claim 22, wherein the indication information is the link information; alternatively, the first and second electrodes may be,

the indication information is link generation information, and the link generation information is obtained by calculation according to the link information and the challenge character string.

24. The apparatus according to claim 22 or 23, wherein the sending unit is specifically configured to:

sending the NAS message to the mobility management network element through wireless access network equipment on a wireless side; alternatively, the first and second electrodes may be,

and sending the NAS message to the mobility management network element through the access gateway equipment at the fixed network side.

25. A communication apparatus, comprising a receiving unit, a transmitting unit, and a processing unit;

the receiving unit is configured to receive a request message from a mobility management network element, where the request message includes indication information, where the indication information is used to indicate first link information, and the first link information is used to indicate access information of a terminal;

the processing unit is configured to check the indication information and second link information, where the second link information is link information used for indicating access information of the terminal in the access gateway device;

and the sending unit is configured to send the second link information to a mobility management network element if the indication information and the second link information are verified to be correct.

26. The apparatus according to claim 25, wherein the indication information is first link generation information, the first link generation information is calculated according to the first link information and a challenge string, the request message further includes a terminal temporary identifier, and the terminal temporary identifier is associated with the second link information;

the processing unit is specifically configured to:

determining the second link information and the challenge character string according to the terminal temporary identifier;

generating second link generation information according to the second link information and the challenge character string;

and if the first link generation information is determined to be the same as the second link generation information, verifying that the indication information and the second link information are correct.

27. A communication apparatus, comprising a receiving unit and a transmitting unit;

the receiving unit is configured to receive an NAS message from a terminal, where the NAS message includes indication information, where the indication information is used for first link information, and the first link information is used for indicating access information of the terminal;

the sending unit is configured to send the NAS message and second link information to a mobility management network element, where the second link information is link information used for indicating access information of the terminal in the access gateway device, and the indication information and the second link information are used for verifying by the mobility management network element.

28. The apparatus of claim 27, wherein the indication information is the first link information, the apparatus further comprising a processing unit;

the receiving unit is further configured to receive a link information request message from an access point, where the link information request message includes link identification information, and the link identification information is used to identify the first link information;

the processing unit is configured to determine the first link information according to the link identification information;

the sending unit is further configured to send the first link information to the access point.

29. The apparatus of claim 27, wherein the indication information is first link generation information, the apparatus further comprising a processing unit;

the receiving unit is further configured to receive a link information request message from an access point, where the link information request message includes link identification information, and the link identification information is used to identify the first link information;

the processing unit is configured to determine the first link information according to the link identification information; the first link generation information is obtained through calculation according to the first link information and the challenge character string;

the sending unit is further configured to send the first link generation information to the access point.

30. A communication system comprising an access gateway device and the apparatus of claim 20 or 21;

the access gateway device is configured to send second link information to the apparatus.

31. A communication system comprising a mobility management network element and the apparatus of claim 25 or 26;

the mobility management network element is configured to send a request message to the device, where the request message includes indication information, where the indication information is used to indicate first link information, and the first link information is used to indicate access information of a terminal; and receiving second link information from the device, wherein the second link information is link information used for indicating the access information of the terminal in the device.

Images