CN113596836A - Single-card multi-point access and authentication method, device and system based on IMS (IP multimedia subsystem) environment - Google Patents

Abstract

The embodiment of the invention discloses an authentication method based on an IMS environment, which comprises the following steps: after receiving a first authentication request of a terminal to be accessed without an SIM card, authenticating and authenticating the terminal to be accessed to a message data gateway; and after the authentication of the message data gateway accessed by the terminal to be accessed is completed, if a second authentication request of the terminal to be accessed is received, the authentication of the signaling sent by the terminal to be accessed is carried out. The invention provides a single-card multipoint access and authentication method, a device and a system based on an IMS environment, which realize the single-card multipoint access based on an ePDG access mode by providing authentication for access equipment and enabling the access equipment to finish authentication operation, thereby enabling a user to access a plurality of authentication servers through one SIM card number.

Description

Single-card multi-point access and authentication method, device and system based on IMS (IP multimedia subsystem) environment

Technical Field

The invention relates to the technical field of communication, in particular to a single-card multipoint access and authentication method, a single-card multipoint access and authentication device and a single-card multipoint access and authentication system based on an IMS environment.

Background

IMS, IP Multimedia Subsystem, is a communication framework. Based on the IP packet, the SIP session control protocol is adopted, which can realize the convergence of mobile and fixed networks, and is considered as the core technology of the next generation operator network.

The IMS core network comprises the following network elements: one or more SIP servers, and one or more application servers AS. SIP servers are also called call/session control servers, CSCFs, which handle signaling signals in IMS networks and can be divided into three types according to their functions: proxy CSCF (P-CSCF), interrogating CSCF (I-CSCF) and serving CSCF (S-CSCF); the P-CSCF is the first point of attachment for the UE and the IMS network on the signaling plane, and all requests go through the P-CSCF. During the registration process, the system will assign a P-CSCF to a UE, and the whole registration process will not change. The main functions are as follows: user authentication, establishing IPsec security connections, compressing/decompressing SIP messages to reduce consumption of wireless transmissions.

Referring to fig. 1, there are two ways for a terminal to access an operator IMS network: the first is called base station access, i.e. eNodeB access, and conventional LTE terminals (mobile phones) are accessed in this way; another is ePDG access, which is implemented by connecting to an operator ePDG through the Internet, and is often used in an area where the operator base station signal cannot cover, and what VoWiFi uses is this type of access. No matter the base station access or the ePDG access, the access authentication can be completed only by relying on the SIM authentication provided by the operator, but at present, there is no solution that can implement single-card multi-point access.

Disclosure of Invention

Aiming at the technical problem, the invention provides a single-card multi-point access and authentication method, a device and a system based on an IMS environment, which realize the single-card multi-point access based on an ePDG access mode by providing authentication for access equipment and enabling the access equipment to finish authentication operation, thereby enabling a user to access a plurality of authentication servers through one SIM card number. The technical scheme is as follows:

in a first aspect, an embodiment of the present invention provides an authentication method based on an IMS environment, including:

after receiving a first authentication request of a terminal to be accessed without an SIM card, authenticating and authenticating the terminal to be accessed to a message data gateway;

and after the authentication of the message data gateway accessed by the terminal to be accessed is completed, if a second authentication request of the terminal to be accessed is received, the authentication of the signaling sent by the terminal to be accessed is carried out.

In a first possible implementation manner of the first aspect of the present invention, the specific manner of performing authentication and verification on the message data gateway accessed by the terminal to be accessed is as follows:

acquiring the mobile phone number carried by the first authentication request;

finding a corresponding SIM card and a terminal for configuring the SIM card according to the mobile phone number;

obtaining an authentication identification from the terminal configured with the SIM card;

and sending the authentication identification to the terminal to be accessed.

In a second possible implementation manner of the first aspect of the present invention, the terminal to be accessed may further query registration information, and the specific steps are as follows:

receiving an information request carrying a mobile phone number sent by the terminal to be accessed;

inquiring and calling the registration information corresponding to the mobile phone number;

and sending the registration information to the terminal to be accessed, wherein the registration information is information of an SIM card corresponding to the mobile phone number and comprises an IMS server address, a P-CSCF address and IMPI.

In a second aspect, an embodiment of the present invention provides an IMS environment-based authentication apparatus, including a processor, a memory, and a computer program stored in the memory and configured to be executed by the processor, where the processor implements the IMS environment-based authentication method as described above when executing the computer program.

In a third aspect, an embodiment of the present invention provides a single-card multi-point access method based on an IMS environment, including:

when an original terminal configured with an SIM card is accessed through a message data gateway, authentication is completed according to the SIM card, and the original terminal is allowed to be accessed;

when an extra terminal without an SIM card is accessed through a message data gateway, establishing a signaling channel after authentication is completed according to an authentication identification obtained by an authentication server performing authentication on the extra terminal accessed to the message data gateway; and allowing the additional terminal to access after the authentication is completed according to an authentication identification obtained by the authentication identification of the additional terminal through the signaling sent by the signaling channel by the authentication server.

In a first possible implementation manner of the third aspect of the present invention, the performing authentication according to an authentication identifier obtained by an authentication server performing authentication on the message data gateway accessed by the additional terminal specifically includes:

when an additional terminal which is not configured with an SIM card accesses through a message data gateway, sending a first authentication request to the additional terminal, and forwarding the first authentication request to the authentication server by the additional terminal;

the first authentication request is forwarded to the original terminal through the authentication server, and an authentication certification identifier is obtained through the original terminal after the authentication according to the SIM card;

the authentication identification is sent to the authentication server from the original terminal and forwarded to the additional terminal by the authentication server;

and receiving the authentication identification sent by the additional terminal to finish authentication.

In a second possible implementation manner of the third aspect of the present invention, when the original terminal accesses through the packet data gateway, the method further includes:

and receiving and storing equipment information sent by the original terminal to complete registration, wherein the equipment information comprises but is not limited to a mobile phone number, an IMS server address, a P-CSCF address and an IMPI.

In a third possible implementation manner of the third aspect of the present invention, the completing authentication according to an authentication identifier obtained by the authentication server performing authentication on the signaling sent by the additional terminal through the signaling channel specifically includes:

when receiving the registration message sent by the additional terminal, returning a second authentication request to the additional terminal, and forwarding the second authentication request to the authentication server by the additional terminal;

the second authentication request is forwarded to the original terminal through the authentication server, and an authentication certification identifier is obtained through the original terminal after the authentication according to the SIM card;

the authentication identification is sent to the authentication server from the original terminal and forwarded to the additional terminal by the authentication server;

and completing registration according to the registration message which is sent by the additional terminal and carries the authentication identification.

In a fourth aspect, an embodiment of the present invention provides a single-card multi-point access system based on an IMS environment, including an IMS network device group, an authentication apparatus, an original terminal configured with an SIM card, and a plurality of additional terminals not configured with an SIM card;

when the original terminal is connected with the IMS network equipment group, finishing authentication according to the SIM card and allowing the original terminal to access;

when an additional terminal not equipped with a SIM card is accessed through the message data gateway,

the authentication device is used for authenticating and feeding back an authentication and authorization identifier for the terminal to be accessed to the message data gateway;

the IMS network equipment group is used for authenticating according to an authentication identification obtained by authenticating the extra terminal accessed to the message data gateway, and establishing a signaling channel after the authentication is finished;

the authentication device is used for authenticating and authenticating the signaling sent by the terminal to be accessed;

and the IMS network equipment group is used for allowing the additional terminal to access after authenticating the authentication identification obtained by authenticating and authenticating the signaling sent by the additional terminal through the signaling channel.

In a first possible implementation manner of the fourth aspect of the present invention, the single-card multi-point access system based on the IMS environment further includes an information server;

the information server is used for receiving and storing the equipment information sent by the original terminal to complete registration, wherein the equipment information includes but is not limited to a mobile phone number, an IMS server address, a P-CSCF address and an IMPI.

Compared with the prior art, the embodiment of the invention has the following beneficial effects:

the invention provides a single-card multipoint access and authentication method, a device and a system based on an IMS environment, which are characterized in that the authentication device based on the IMS environment is used for carrying out authentication and authentication when a terminal to be accessed is accessed to a message data gateway and carrying out authentication and authentication on a signaling sent by the terminal to be accessed, so that the terminal to be accessed is verified in advance before being accessed to an IMS network, the legality of the terminal to be accessed is ensured, and the safety of the IMS network is improved. And after the terminal to be accessed passes the authentication, an authentication identification can be obtained. If the terminal to be accessed is the original terminal configured with the SIM card, when the terminal is accessed through a message data gateway, authentication is completed according to the SIM card, and the original terminal is allowed to be accessed; if the terminal to be accessed is an extra terminal which is not configured with an SIM card, when the terminal is accessed through a message data gateway, the authentication identification mark is used for completing the access authentication of accessing the message data gateway and the SIP signaling authentication of sending signaling to the extra terminal; and after the access authentication and the SIP signaling authentication are simultaneously completed, allowing the additional terminal to access. Therefore, the scheme can simultaneously enable the terminals configured with the SIM card and not configured with the SIM card to access the IMS network, realizes single-card multipoint access based on the ePDG access mode, enables a user to access a plurality of authentication servers through one SIM card number, and can also ensure the safety by authenticating the accessed terminals.

Drawings

Fig. 1 is a schematic diagram of a prior art terminal accessing an operator IMS network;

fig. 2 is a flowchart illustrating steps of an authentication method based on an IMS environment according to an embodiment of the present invention;

fig. 3 is a flowchart illustrating steps of a single-card multi-point access method based on an IMS environment according to an embodiment of the present invention;

fig. 4 is a schematic diagram of a single-card multipoint access system based on an IMS environment in an embodiment of the present invention.

Detailed Description

The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.

Referring to fig. 2, the present solution provides an exemplary embodiment of an authentication method based on an IMS environment, including the steps of:

s101, after receiving a first authentication request of a terminal to be accessed without an SIM card, authenticating and authenticating the terminal to be accessed to a message data gateway;

s102, after the authentication of the message data gateway accessed by the terminal to be accessed is completed, if a second authentication request of the terminal to be accessed is received, the authentication of the signaling sent by the terminal to be accessed is carried out.

In the authentication method based on the IMS environment, the specific way of authenticating the access of the terminal to be accessed to the packet data gateway is as follows:

acquiring the mobile phone number carried by the first authentication request;

finding a corresponding SIM card and a terminal for configuring the SIM card according to the mobile phone number;

obtaining an authentication identification from the terminal configured with the SIM card;

and sending the authentication identification to the terminal to be accessed.

In the authentication method based on the IMS environment, the specific way of authenticating the message data gateway to which the terminal to be accessed is as follows:

obtaining the SIM card number carried by the first authentication request;

finding out a corresponding SIM card and a terminal for configuring the SIM card according to the SIM card number;

obtaining an authentication identification from the terminal configured with the SIM card;

and sending the authentication identification to the terminal to be accessed.

On the basis of the above embodiment, in the authentication method based on the IMS environment, if the second authentication request of the terminal to be accessed is received, the authenticating and authenticating the signaling sent by the terminal to be accessed specifically includes:

obtaining an authentication identification from the terminal configured with the SIM card;

and sending the authentication identification to the terminal to be accessed.

In the authentication method based on the IMS environment, the terminal to be accessed may further query registration information, and the specific steps are as follows:

receiving an information request carrying a mobile phone number/SIM card number sent by the terminal to be accessed;

inquiring and calling the registration information corresponding to the mobile phone number/SIM card number;

and sending the registration information to the terminal to be accessed, wherein the registration information is information of an SIM card corresponding to the mobile phone number/SIM card number, and comprises an IMS server address, a P-CSCF address and an IMPI.

The present solution provides an exemplary embodiment, an IMS environment-based authentication apparatus, including a processor, a memory, and a computer program stored in the memory and configured to be executed by the processor, where the processor implements the IMS environment-based authentication method as described above when executing the computer program.

Referring to fig. 3, the present solution provides an exemplary embodiment, a single-card multi-point access method based on an IMS environment, including the steps of:

s201, when an original terminal configured with an SIM card is accessed through a message data gateway, authentication is completed according to the SIM card, and the original terminal is allowed to be accessed;

s2021, when an extra terminal without an SIM card is accessed through a message data gateway, establishing a signaling channel after authentication is completed according to an authentication identification obtained by an authentication server performing authentication and certification on the extra terminal accessed to the message data gateway; and the number of the first and second groups,

s2022, after the authentication is completed according to the authentication identification obtained by the authentication of the signaling sent by the additional terminal through the signaling channel by the authentication server, allowing the additional terminal to access.

It is understood that the original terminal configured with the SIM card is unique, and the number of additional terminals not configured with the SIM card is not limited.

In the single-card multi-point access method based on the IMS environment, the authentication is completed according to an authentication identifier obtained by an authentication server authenticating the additional terminal to the packet data gateway, specifically:

when an additional terminal which is not configured with an SIM card accesses through a message data gateway, sending a first authentication request to the additional terminal, and forwarding the first authentication request to the authentication server by the additional terminal;

the first authentication request is forwarded to the original terminal through the authentication server, and an authentication certification identifier is obtained through the original terminal after the authentication according to the SIM card;

the authentication identification is sent to the authentication server from the original terminal and forwarded to the additional terminal by the authentication server;

and receiving the authentication identification sent by the additional terminal to finish authentication.

Wherein the authentication server performs the steps of:

acquiring the mobile phone number carried by the first authentication request;

finding a corresponding SIM card and a terminal for configuring the SIM card according to the mobile phone number;

obtaining an authentication identification from the terminal configured with the SIM card;

and sending the authentication identification to the terminal to be accessed.

Or

Obtaining the SIM card number carried by the first authentication request;

finding out a corresponding SIM card and a terminal for configuring the SIM card according to the SIM card number;

obtaining an authentication identification from the terminal configured with the SIM card;

and sending the authentication identification to the terminal to be accessed.

On the basis of the foregoing embodiment, in the single-card multi-point access method based on the IMS environment, the specific manner in which the authentication server performs authentication on the signaling sent by the additional terminal through the signaling channel is as follows:

obtaining an authentication identification from the terminal configured with the SIM card;

and sending the authentication identification to the terminal to be accessed.

In addition, the authentication server may further perform the steps of:

receiving an information request carrying a mobile phone number/SIM card number sent by the terminal to be accessed;

inquiring and calling the registration information corresponding to the mobile phone number/SIM card number;

and sending the registration information to the terminal to be accessed, wherein the registration information is information of an SIM card corresponding to the mobile phone number/SIM card number, and comprises an IMS server address, a P-CSCF address and an IMPI.

In the single-card multi-point access method based on the IMS environment, when the original terminal accesses through a packet data gateway, the method further includes:

and receiving and storing equipment information sent by the original terminal to complete registration, wherein the equipment information comprises but is not limited to a mobile phone number, an IMS server address, a P-CSCF address and an IMPI.

In the single-card multi-point access method based on the IMS environment, the present disclosure provides a preferred embodiment, where the authentication is completed according to an authentication identifier obtained by performing authentication on a signaling sent by the additional terminal through the signaling channel by the authentication server, and specifically:

when receiving the registration message sent by the additional terminal, returning a second authentication request to the additional terminal, and forwarding the second authentication request to the authentication server by the additional terminal;

the second authentication request is forwarded to the original terminal through the authentication server, and an authentication certification identifier is obtained through the original terminal after the authentication according to the SIM card;

the authentication identification is sent to the authentication server from the original terminal and forwarded to the additional terminal by the authentication server;

and completing registration according to the registration message which is sent by the additional terminal and carries the authentication identification.

It can be understood that the additional terminal can normally use services such as IMS call, short message, etc. after completing registration.

Referring to fig. 4, the present disclosure provides an exemplary embodiment, a single-card multi-point access system based on an IMS environment, including an IMS network device group, an authentication apparatus, an original terminal configured with an SIM card, and a plurality of additional terminals not configured with an SIM card;

when the original terminal is connected with the IMS network equipment group, finishing authentication according to the SIM card and allowing the original terminal to access;

when an additional terminal not equipped with a SIM card is accessed through the message data gateway,

the authentication device is used for authenticating and feeding back an authentication and authorization identifier for the terminal to be accessed to the message data gateway;

the IMS network equipment group is used for authenticating according to an authentication identification obtained by authenticating the extra terminal accessed to the message data gateway, and establishing a signaling channel after the authentication is finished;

the authentication device is used for authenticating and authenticating the signaling sent by the terminal to be accessed;

and the IMS network equipment group is used for allowing the additional terminal to access after authenticating the authentication identification obtained by authenticating and authenticating the signaling sent by the additional terminal through the signaling channel.

It can be understood that the IMS network device group includes a mobility management node of an all-IP packet core network EPC, a PDN gateway, a proxy server of an IP multimedia system, an application server, and a message data gateway as an untrusted network access point of an IMS network.

In the single-card multi-point access system based on the IMS environment, the IMS network equipment group comprises a message data gateway;

the message data gateway is used for sending a first authentication request to an additional terminal when the additional terminal which is not configured with an SIM card accesses through the message data gateway, and forwarding the first authentication request to the authentication server by the additional terminal;

the authentication server is used for forwarding the first authentication request to the original terminal;

the authentication server is used for receiving an authentication certification identifier obtained by the original terminal after authentication according to the SIM card and forwarding the authentication certification identifier to the additional terminal;

and the message data gateway is used for receiving the authentication identification sent by the additional terminal to complete authentication.

Wherein the authentication server performs the steps of:

acquiring the mobile phone number carried by the first authentication request;

finding a corresponding SIM card and a terminal for configuring the SIM card according to the mobile phone number;

obtaining an authentication identification from the terminal configured with the SIM card;

and sending the authentication identification to the terminal to be accessed.

Or

Obtaining the SIM card number carried by the first authentication request;

finding out a corresponding SIM card and a terminal for configuring the SIM card according to the SIM card number;

obtaining an authentication identification from the terminal configured with the SIM card;

and sending the authentication identification to the terminal to be accessed.

On the basis of the above embodiment, the specific way for the authentication server to authenticate the signaling sent by the additional terminal through the signaling channel is as follows:

obtaining an authentication identification from the terminal configured with the SIM card;

and sending the authentication identification to the terminal to be accessed.

In addition, the authentication server may further perform the steps of:

receiving an information request carrying a mobile phone number/SIM card number sent by the terminal to be accessed;

inquiring and calling the registration information corresponding to the mobile phone number/SIM card number;

and sending the registration information to the terminal to be accessed, wherein the registration information is information of an SIM card corresponding to the mobile phone number/SIM card number, and comprises an IMS server address, a P-CSCF address and an IMPI.

The scheme provides a preferred embodiment, the single-card multi-point access system based on the IMS environment further comprises an information server;

the information server is used for receiving and storing the equipment information sent by the original terminal to complete registration, wherein the equipment information includes but is not limited to a mobile phone number, an IMS server address, a P-CSCF address and an IMPI.

In the single-card multipoint access system based on the IMS environment, the IMS network equipment group comprises a proxy server;

the proxy server is used for returning a second authentication request to the additional terminal when receiving the registration message sent by the additional terminal, and the additional terminal forwards the second authentication request to the authentication server;

the authentication server is used for forwarding the second authentication request to the original terminal;

the authentication server is used for receiving an authentication certification identifier obtained by the original terminal after authentication according to the SIM card and forwarding the authentication certification identifier to the additional terminal;

and the proxy server is used for finishing registration according to the registration message which is sent by the additional terminal and carries the authentication identification.

It can be understood that the additional terminal can normally use services such as IMS call, short message, etc. after completing registration.

The scheme also provides an embodiment, and when the scheme is realized, the following specific steps are operated:

the UE1 is inserted into a SIM card and is connected to an ePDG access point through WiFi or a wired network to realize the authenticated access. Since the SIM card is integrated on the UE1, authentication can be done directly on the SIM.

The UE2 and the ePDG establish connection, when the ePDG requests authentication, the UE2/UE3 forwards the authentication request to the authentication server, and the authentication server forwards the authentication request to the UE 1.

The UE1 completes authentication on the authentication request depending on the SIM, and returns authentication response to the authentication server; the authentication server returns this response to the UE 2.

The UE2 completes authentication by using the authentication information, and implements ePDG access.

The UE2 sends a registration message to the P-CSCF via the ePDG, which returns 401 the authentication.

The UE2 forwards the authentication request to the authentication server, which forwards it to the UE 1.

The UE1 completes authentication depending on the SIM card, and returns authentication response to the authentication server; the authentication server returns this response to the UE 2.

The UE2 sends a registration message with authentication response to the P-CSCF to complete the registration.

After the UE2 completes registration, the UE can use services such as IMS call and sms.

It should be noted that, in the following description,

ims (ip Multimedia subsystem): the IP multimedia system is a communication framework. Based on IP packet message, SIP session control protocol is adopted, which can realize the integration of mobile and fixed networks, is considered as the core technology of the next generation operator network,

ue (user equipment): a user equipment. Generally, a terminal device accessing to an IMS network, such as a mobile Phone or a Smart Phone, is referred to.

enodeb (evolved Node b): and (3) an evolved node B. In an IMS network, it is often referred to as an operator base station.

ePDG (evolved Packet Data gateway): an evolved message data gateway. Typically as an untrusted network access point to the IMS network (e.g., from WiFi, Internet, etc. access to the IMS).

VoWiFi (Voice Over WiFi) a technique for accessing an operator network through WiFi. After the terminal is accessed, all services provided by the operator can be normally used.

Impi (private User id) private identity, typically built into the SIM card, is used for IMS access authentication.

EPC (evolved Packet core): all IP packet core networks.

MME: (Mobility Management Entity), a Mobility Management node;

pgw (pdn gateway): PDN gateway, which is boundary gateway of EPC network and connects various PDN networks;

P-CSCF (Proxy-Call Session Control Funtion): the proxy call session control function, like the proxy server, will be reached by the IMS signalling messages first.

AS (application Server) an application server.

While the foregoing is directed to the preferred embodiment of the present invention, it will be understood by those skilled in the art that various changes and modifications may be made without departing from the spirit and scope of the invention.

It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by a computer program, which can be stored in a computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. The storage medium may be a magnetic disk, an optical disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), or the like.

Claims (10)

1. An authentication method based on IMS environment is characterized in that the steps comprise:

after receiving a first authentication request of a terminal to be accessed without an SIM card, authenticating and authenticating the terminal to be accessed to a message data gateway;

and after the authentication of the message data gateway accessed by the terminal to be accessed is completed, if a second authentication request of the terminal to be accessed is received, the authentication of the signaling sent by the terminal to be accessed is carried out.

2. The IMS environment-based authentication method according to claim 1, wherein the specific way of authenticating the message data gateway to which the terminal to be accessed is:

acquiring the mobile phone number carried by the first authentication request;

finding a corresponding SIM card and a terminal for configuring the SIM card according to the mobile phone number;

obtaining an authentication identification from the terminal configured with the SIM card;

and sending the authentication identification to the terminal to be accessed.

3. The IMS environment based authentication method according to claim 1, wherein the terminal to be accessed can also query registration information, and the specific steps are as follows:

receiving an information request carrying a mobile phone number sent by the terminal to be accessed;

inquiring and calling the registration information corresponding to the mobile phone number;

and sending the registration information to the terminal to be accessed, wherein the registration information is information of an SIM card corresponding to the mobile phone number and comprises an IMS server address, a P-CSCF address and IMPI.

4. An IMS environment based authentication apparatus, comprising a processor, a memory, and a computer program stored in the memory and configured to be executed by the processor, the processor implementing the IMS environment based authentication method according to any one of claims 1 to 3 when executing the computer program.

5. A single-card multipoint access method based on IMS environment is characterized by comprising the following steps:

when an original terminal configured with an SIM card is accessed through a message data gateway, authentication is completed according to the SIM card, and the original terminal is allowed to be accessed;

when an extra terminal without an SIM card is accessed through a message data gateway, establishing a signaling channel after authentication is completed according to an authentication identification obtained by an authentication server performing authentication on the extra terminal accessed to the message data gateway; and allowing the additional terminal to access after the authentication is completed according to an authentication identification obtained by the authentication identification of the additional terminal through the signaling sent by the signaling channel by the authentication server.

6. The single-card multi-point access method based on the IMS environment of claim 5, wherein the authentication is completed according to an authentication identifier obtained by an authentication server authenticating the additional terminal to access the packet data gateway, specifically:

when an additional terminal which is not configured with an SIM card accesses through a message data gateway, sending a first authentication request to the additional terminal, and forwarding the first authentication request to the authentication server by the additional terminal;

the first authentication request is forwarded to the original terminal through the authentication server, and an authentication certification identifier is obtained through the original terminal after the authentication according to the SIM card;

the authentication identification is sent to the authentication server from the original terminal and forwarded to the additional terminal by the authentication server;

and receiving the authentication identification sent by the additional terminal to finish authentication.

7. The single-card multi-point access method based on the IMS environment of claim 5, wherein when the original terminal accesses through a message data gateway, further comprising the steps of:

and receiving and storing equipment information sent by the original terminal to complete registration, wherein the equipment information comprises but is not limited to a mobile phone number, an IMS server address, a P-CSCF address and an IMPI.

8. The single-card multi-point access method based on the IMS environment of claim 5, wherein the authentication is completed according to an authentication identifier obtained by the authentication server authenticating the signaling sent by the additional terminal through the signaling channel, specifically:

when receiving the registration message sent by the additional terminal, returning a second authentication request to the additional terminal, and forwarding the second authentication request to the authentication server by the additional terminal;

the second authentication request is forwarded to the original terminal through the authentication server, and an authentication certification identifier is obtained through the original terminal after the authentication according to the SIM card;

the authentication identification is sent to the authentication server from the original terminal and forwarded to the additional terminal by the authentication server;

and completing registration according to the registration message which is sent by the additional terminal and carries the authentication identification.

9. A single-card multipoint access system based on IMS environment is characterized by comprising an IMS network equipment group, an authentication device, an original terminal configured with an SIM card, and a plurality of additional terminals not configured with the SIM card;

when the original terminal is connected with the IMS network equipment group, finishing authentication according to the SIM card and allowing the original terminal to access;

when an additional terminal not equipped with a SIM card is accessed through the message data gateway,

the authentication device is used for authenticating and feeding back an authentication and authorization identifier for the terminal to be accessed to the message data gateway;

the IMS network equipment group is used for authenticating according to an authentication identification obtained by authenticating the extra terminal accessed to the message data gateway, and establishing a signaling channel after the authentication is finished;

the authentication device is used for authenticating and authenticating the signaling sent by the terminal to be accessed;

and the IMS network equipment group is used for allowing the additional terminal to access after authenticating the authentication identification obtained by authenticating and authenticating the signaling sent by the additional terminal through the signaling channel.

10. The IMS environment based single card multi-point access system of claim 9, further comprising an information server;

the information server is used for receiving and storing the equipment information sent by the original terminal to complete registration, wherein the equipment information includes but is not limited to a mobile phone number, an IMS server address, a P-CSCF address and an IMPI.

Images