CN114302450A - Communication method and communication system - Google Patents

Communication method and communication system Download PDF

Info

Publication number
CN114302450A
CN114302450A CN202111658881.2A CN202111658881A CN114302450A CN 114302450 A CN114302450 A CN 114302450A CN 202111658881 A CN202111658881 A CN 202111658881A CN 114302450 A CN114302450 A CN 114302450A
Authority
CN
China
Prior art keywords
network node
transaction
network
blockchain
data link
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202111658881.2A
Other languages
Chinese (zh)
Other versions
CN114302450B (en
Inventor
张伦泳
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China United Network Communications Group Co Ltd
Original Assignee
China United Network Communications Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China United Network Communications Group Co Ltd filed Critical China United Network Communications Group Co Ltd
Priority to CN202111658881.2A priority Critical patent/CN114302450B/en
Publication of CN114302450A publication Critical patent/CN114302450A/en
Application granted granted Critical
Publication of CN114302450B publication Critical patent/CN114302450B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

本发明提供一种通信方法,涉及通信领域,基于区块链实现,该区块链包括多个网络节点;当终端通过至少一个第二网络节点以非3GPP方式接入第一网络节点时,该方法包括:第一网络节点向区块链广播第一交易,第一交易包括:目标数据链路对应的目标服务质量参数;各第二网络节点响应于第一交易,分别生成第二交易,第二交易包括:目标数据链路对应的目标服务质量参数,其中,第二网络节点对应的网络为承载目标数据链路的网络;各第二网络节点将经自身签名后的第二交易广播至区块链;各第二网络节点基于经第一网络节点签名的第二交易,以目标服务质量参数传递目标数据链路上的数据包。本发明还提供一种通信系统。

Figure 202111658881

The present invention provides a communication method, which relates to the field of communication and is implemented based on a blockchain, the blockchain includes a plurality of network nodes; when a terminal accesses a first network node through at least one second network node in a non-3GPP manner, the The method includes: a first network node broadcasts a first transaction to the block chain, where the first transaction includes: a target quality of service parameter corresponding to a target data link; each second network node responds to the first transaction, respectively generating a second transaction, and the first transaction comprises: The second transaction includes: the target QoS parameter corresponding to the target data link, wherein the network corresponding to the second network node is the network carrying the target data link; each second network node broadcasts the second transaction signed by itself to the district block chain; each second network node transmits the data packet on the target data link with the target quality of service parameter based on the second transaction signed by the first network node. The present invention also provides a communication system.

Figure 202111658881

Description

通信方法和通信系统Communication method and communication system

技术领域technical field

本发明涉及通信技术领域,具体涉及一种通信方法和通信系统。The present invention relates to the field of communication technologies, and in particular, to a communication method and a communication system.

背景技术Background technique

在5G网络下,允许终端通过非3GPP方式,即不通过3GPP定义的无线接入网接入到5G核心网中(5G Core Network,简称5GC)。为此3GPP定义了一个专用于此种接入方式的功能实体N3IWF(Non-3GPP Inter-Working Function,非3GPP互操作功能实体),用户终端首先通过任意网络建立与N3IWF的隧道连接,然后将与5GC交互的协议数据封装在该隧道中,并发送给N3IWF,N3IWF对隧道进行解封装,将来自终端的协议数据转发给5GC,从而完成终端与5GC的交互,使终端得以接入5GC。同时,在5G网络下,5GC提供对终端用户的服务质量(Quality of Service,简称QoS)保证功能,即用户终端在接入5GC后,可以向5GC请求所需的QoS参数。但由于用户终端到N3IWF之间的隧道连接是在5GC之外完成的,因而这段连接的QoS无法得到保证。这导致用户终端在从5GC获得了QoS参数后,在数据包离开5GC之前,数据传输的链路可以得到服务质量保证,而当数据在终端与N3IWF之间的隧道中进行传输时,5GC所提供的QoS质量保证无法继续延续。这显然会降低用户的业务体验。Under the 5G network, the terminal is allowed to access the 5G core network (5G Core Network, 5GC for short) through a non-3GPP method, that is, not through a radio access network defined by 3GPP. To this end, 3GPP defines a functional entity N3IWF (Non-3GPP Inter-Working Function, non-3GPP interworking function entity) dedicated to this access mode. The user terminal first establishes a tunnel connection with the N3IWF through any network, and then connects with the N3IWF. The protocol data exchanged by the 5GC is encapsulated in the tunnel and sent to the N3IWF. The N3IWF decapsulates the tunnel and forwards the protocol data from the terminal to the 5GC, thereby completing the interaction between the terminal and the 5GC and enabling the terminal to access the 5GC. At the same time, under the 5G network, 5GC provides a quality of service (Quality of Service, QoS) guarantee function for end users, that is, the user terminal can request the required QoS parameters from the 5GC after accessing the 5GC. However, since the tunnel connection between the user terminal and the N3IWF is completed outside the 5GC, the QoS of this connection cannot be guaranteed. This results in that after the user terminal obtains the QoS parameters from the 5GC, before the data packet leaves the 5GC, the data transmission link can obtain the quality of service guarantee, and when the data is transmitted in the tunnel between the terminal and the N3IWF, the 5GC provides QoS quality assurance cannot continue. This obviously degrades the user's business experience.

相关技术中,为保证QoS的延续,在5GC中预先存储终端建立与N3IWF的隧道连接所使用的接入网络的接口地址,5GC通过所存储的接口地址向接入网络传输QoS参数,以保证在5GC之外的终端与N3IWF之间的隧道的通信质量。然而,在现有技术中的这种QoS保证方法中,由于终端可基于任务网络建立与N3IWF之间的连接,从而导致5GC中无法预先存储终端可能使用的所有接入网络的接口地址,进而无法保证终端一定能够成功获取5GC提供的QoS参数;另外,终端接入N3IWF可能经历多段网络,且这多段网络可能是跨运营商的,例如,终端先经过联通网络再经过电信网络接入电信的5GC中,现有技术中的这种QoS保证方法无法实现跨运营商的QoS参数传递。现有技术无法确保终端在5GC外的数据传输得到与5GC相同的QoS保证,从而使用户体验较低。In the related art, in order to ensure the continuation of QoS, the interface address of the access network used by the terminal to establish a tunnel connection with the N3IWF is pre-stored in the 5GC, and the 5GC transmits the QoS parameters to the access network through the stored interface address to ensure that the Communication quality of tunnels between terminals outside 5GC and N3IWF. However, in this QoS guarantee method in the prior art, since the terminal can establish a connection with the N3IWF based on the task network, the interface addresses of all the access networks that the terminal may use cannot be pre-stored in the 5GC, and thus cannot be used. Ensure that the terminal can successfully obtain the QoS parameters provided by 5GC; in addition, the terminal access to the N3IWF may go through multiple segments of the network, and these multiple segments of the network may be cross-operator. , the QoS guarantee method in the prior art cannot realize the transmission of QoS parameters across operators. The existing technology cannot ensure that the data transmission of the terminal outside the 5GC is guaranteed by the same QoS as that of the 5GC, so that the user experience is lower.

发明内容SUMMARY OF THE INVENTION

本发明旨在至少解决现有技术中存在的技术问题之一,提出了一种通信方法和通信系统,用以解决现有技术中存在的当终端以非3GPP方式接入5GC中时,在5GC之外的数据传输的QoS无法得到保证的技术问题。The present invention aims to solve at least one of the technical problems existing in the prior art, and proposes a communication method and communication system to solve the problem in the prior art that when a terminal accesses the 5GC in a non-3GPP manner, in the 5GC In addition to the technical problem that the QoS of data transmission cannot be guaranteed.

第一方面,本发明提供一种通信方法,基于区块链实现,所述区块链包括多个网络节点;当终端通过至少一个第二网络节点以非3GPP方式接入第一网络节点时,所述通信方法包括:In a first aspect, the present invention provides a communication method, which is implemented based on a blockchain, and the blockchain includes multiple network nodes; when a terminal accesses the first network node through at least one second network node in a non-3GPP manner, The communication method includes:

第一网络节点向所述区块链广播第一交易,所述第一交易包括:目标数据链路对应的目标服务质量参数;The first network node broadcasts a first transaction to the blockchain, where the first transaction includes: a target quality of service parameter corresponding to the target data link;

各所述第二网络节点响应于所述第一交易,分别生成第二交易,所述第二交易包括:所述目标数据链路对应的目标服务质量参数,其中,所述第二网络节点对应的网络为承载所述目标数据链路的网络;Each of the second network nodes respectively generates a second transaction in response to the first transaction, and the second transaction includes: a target quality of service parameter corresponding to the target data link, wherein the second network node corresponds to The network is the network carrying the target data link;

各所述第二网络节点将经自身签名后的第二交易广播至所述区块链;Each of the second network nodes broadcasts the second transaction signed by itself to the blockchain;

各所述第二网络节点基于经第一网络节点签名的第二交易,以所述目标服务质量参数传递所述目标数据链路上的数据包。Each of the second network nodes transmits the data packets on the target data link with the target quality of service parameter based on the second transaction signed by the first network node.

在一些实施例中,在所述各所述第二网络节点将经自身签名后的第二交易广播至所述区块链之后,且在所述各所述第二网络节点基于经第一网络节点签名的第二交易,以所述目标服务质量参数传递所述目标数据链路上的数据包之前,还包括:In some embodiments, after each of the second network nodes broadcasts the self-signed second transaction to the blockchain, and after each of the second network nodes is based on the first network The second transaction signed by the node, before transmitting the data packet on the target data link with the target QoS parameter, further includes:

所述第一网络节点对各经第二网络节点签名后的第二交易进行签名验证;The first network node performs signature verification on each of the second transactions signed by the second network node;

若签名验证通过,所述第一网络节点对当前的第二交易增添自身签名,并广播至所述区块链中;If the signature verification is passed, the first network node adds its own signature to the current second transaction and broadcasts it to the blockchain;

所述各所述第二网络节点基于经第一网络节点签名的第二交易,以所述目标服务质量参数传递所述目标数据链路上的数据包,包括:Each of the second network nodes transmits the data packets on the target data link with the target quality of service parameter based on the second transaction signed by the first network node, including:

各所述第二网络节点对所述第一网络节点的签名进行验证;Each of the second network nodes verifies the signature of the first network node;

若签名验证通过,以所述目标服务质量参数传递所述目标数据链路上的数据包。If the signature verification is passed, the data packet on the target data link is transmitted with the target QoS parameter.

在一些实施例中,所述第一交易还包括:所述第一网络节点的可交换资源量;所述第二交易还包括:所述第二网络节点的请求资源量;In some embodiments, the first transaction further includes: the amount of exchangeable resources of the first network node; the second transaction further includes: the amount of requested resources of the second network node;

在所述第一网络节点对当前的第二交易增添自身签名,并广播至所述区块链中之前,还包括:Before the first network node adds its own signature to the current second transaction and broadcasts it to the blockchain, the method further includes:

所述第一网络节点计算所有所述第二交易中所包含的所述第二网络节点的请求资源量的和,以得到待支付资源量;The first network node calculates the sum of the requested resources of the second network node included in all the second transactions to obtain the amount of resources to be paid;

所述第一网络节点对当前的第二交易增添自身签名,并广播至所述区块链中,包括:The first network node adds its own signature to the current second transaction and broadcasts it to the blockchain, including:

当所述第一网络节点判断出所述可交换资源量大于等于所述待支付资源量时,所述第一网络节点对当前的第二交易增添自身签名,并广播至所述区块链中。When the first network node determines that the amount of exchangeable resources is greater than or equal to the amount of resources to be paid, the first network node adds its own signature to the current second transaction and broadcasts it to the blockchain .

在一些实施例中,所述第一交易还包括:所述目标数据链路的标识;In some embodiments, the first transaction further includes: an identification of the target data link;

在所述各所述第二网络节点响应于所述第一交易,分别生成第二交易之前,还包括:Before each of the second network nodes respectively generates a second transaction in response to the first transaction, the method further includes:

所述区块链中的除所述第一网络节点以外的所有网络节点根据所述目标数据链路的标识确定出自身对应的网络中是否传输有与所述目标数据链路对应的数据包。All network nodes in the blockchain except the first network node determine, according to the identifier of the target data link, whether a data packet corresponding to the target data link is transmitted in its corresponding network.

在一些实施例中,所述目标数据链路的标识包括:安全参数索引值、安全协议类型、网络地址中的一个或多个。In some embodiments, the identification of the target data link includes one or more of a security parameter index value, a security protocol type, and a network address.

在一些实施例中,所述安全协议类型包括:仅使用认证头标协议、仅使用封装安全载荷协议或者同时使用认证头标协议和封装安全载荷协议。In some embodiments, the security protocol type includes: using only the authentication header protocol, only using the encapsulating security payload protocol, or using both the authentication header protocol and the encapsulating security payload protocol.

在一些实施例中,所述目标服务质量参数包括带宽、时延、抖动、丢包率和突发容限中的一个或多个。In some embodiments, the target quality of service parameters include one or more of bandwidth, delay, jitter, packet loss rate, and burst tolerance.

第二方面,本发明提供一种通信系统,所述通信系统基于区块链实现,所述区块链包括多个网络节点,多个所述网络节点包括:第一网络节点和第二网络节点,其中,终端通过至少一个第二网络节点以非3GPP方式接入第一网络节点;In a second aspect, the present invention provides a communication system, which is implemented based on a blockchain, where the blockchain includes multiple network nodes, and the multiple network nodes include: a first network node and a second network node , wherein the terminal accesses the first network node in a non-3GPP manner through at least one second network node;

所述第一网络节点用于向所述区块链广播第一交易,所述第一交易包括:目标数据链路对应的目标服务质量参数;The first network node is configured to broadcast a first transaction to the blockchain, where the first transaction includes: a target quality of service parameter corresponding to the target data link;

各所述第二网络节点用于响应于所述第一交易,分别生成第二交易,所述第二交易包括:所述目标数据链路对应的目标服务质量参数,其中,所述第二网络节点对应的网络为承载所述目标数据链路的网络;以及Each of the second network nodes is configured to respectively generate a second transaction in response to the first transaction, where the second transaction includes: a target quality of service parameter corresponding to the target data link, wherein the second network The network corresponding to the node is the network carrying the target data link; and

各所述第二网络节点还用于将经自身签名后的第二交易广播至所述区块链,以及基于经第一网络节点签名的第二交易,以所述目标服务质量参数传递所述目标数据链路上的数据包。Each second network node is further configured to broadcast the second transaction signed by itself to the blockchain, and transmit the target quality of service parameter based on the second transaction signed by the first network node. The packet on the destination data link.

在一些实施例中,所述第一网络节点还用于在所述各所述第二网络节点将经自身签名后的第二交易广播至所述区块链之后,且在所述各所述第二网络节点基于经第一网络节点签名的第二交易,以所述目标服务质量参数传递所述目标数据链路上的数据包之前,对各经第二网络节点签名后的第二交易进行签名验证,并在签名验证通过后,对当前的第二交易增添自身签名,并广播至所述区块链中;In some embodiments, the first network node is further configured to broadcast the second transaction signed by each of the second network nodes to the blockchain, and after each of the second network nodes broadcast the self-signed second transaction to the blockchain Based on the second transaction signed by the first network node, the second network node performs the processing on each of the second transactions signed by the second network node before transmitting the data packet on the target data link with the target quality of service parameter. Signature verification, and after the signature verification is passed, add its own signature to the current second transaction and broadcast it to the blockchain;

各所述第二网络节点还用于对所述第一网络节点的签名进行验证,并在签名验证通过后,以所述目标服务质量参数传递所述目标数据链路上的数据包。Each of the second network nodes is further configured to verify the signature of the first network node, and after the signature verification is passed, transmit the data packets on the target data link with the target quality of service parameter.

在一些实施例中,所述第一交易还包括:所述第一网络节点的可交换资源量;所述第二交易还包括:所述第二网络节点的请求资源量;In some embodiments, the first transaction further includes: the amount of exchangeable resources of the first network node; the second transaction further includes: the amount of requested resources of the second network node;

所述第一网络节点还用于在所述第一网络节点对当前的第二交易增添自身签名,并广播至所述区块链中之前,计算所有所述第二交易中所包含的所述第二网络节点的请求资源量的和,以得到待支付资源量;以及还用于The first network node is further configured to calculate the current second transaction included in all the second transactions before the first network node adds its own signature to the current second transaction and broadcasts it to the blockchain. The sum of the amount of resources requested by the second network node to obtain the amount of resources to be paid; and also used for

当判断出所述可交换资源量大于等于所述待支付资源量时,对当前的第二交易增添自身签名,并广播至所述区块链中。When it is determined that the amount of exchangeable resources is greater than or equal to the amount of resources to be paid, a self-signature is added to the current second transaction and broadcast to the blockchain.

本发明的有益技术效果:Beneficial technical effects of the present invention:

本发明提供的通信方法和通信系统,各运营商对应的网络节点之间基于区块链来进行服务质量参数的协商确认,从而使得终端在基于至少一个第二网络节点接入第一网络节点时,能够在第一网络节点以外获得与第一网络节点以内的对于数据传输的相同的服务质量保证,进而提高了用户的通信体验。In the communication method and communication system provided by the present invention, the network nodes corresponding to each operator conduct negotiation and confirmation of service quality parameters based on the block chain, so that when the terminal accesses the first network node based on at least one second network node , it is possible to obtain the same quality of service guarantee for data transmission outside the first network node as within the first network node, thereby improving the user's communication experience.

附图说明Description of drawings

图1为本发明实施例提供的一种通信系统的结构示意图;1 is a schematic structural diagram of a communication system according to an embodiment of the present invention;

图2为本发明实施例提供的一种通信方法的流程图;2 is a flowchart of a communication method provided by an embodiment of the present invention;

图3为本发明实施例提供的另一种通信方法的流程图;3 is a flowchart of another communication method provided by an embodiment of the present invention;

图4为本发明实施例提供的又一种通信方法的流程图;4 is a flowchart of another communication method provided by an embodiment of the present invention;

图5为本发明实施例提供的再一种通信方法的流程图。FIG. 5 is a flowchart of still another communication method provided by an embodiment of the present invention.

具体实施方式Detailed ways

为使本领域的技术人员更好地理解本发明的技术方案,下面结合附图来对本发明提供的通信方法和通信系统进行详细描述。In order to make those skilled in the art better understand the technical solutions of the present invention, the communication method and communication system provided by the present invention are described in detail below with reference to the accompanying drawings.

本发明提供的通信方法基于一种通信系统实现,如图1所示(图1为本发明实施例提供的一种通信系统的结构示意图),该通信系统基于区块链构建,该区块链包括多个网络节点,多个网络节点中包括至少一个第二网络节点22和一个第一网络节点11,其中,每个网络节点代表不同运营商的网络功能实体。优选的,本发明实施例中,第一网络节点对应于运营商的5G网络的功能实体,例如N3IWF。The communication method provided by the present invention is implemented based on a communication system, as shown in FIG. 1 (FIG. 1 is a schematic structural diagram of a communication system provided by an embodiment of the present invention), the communication system is constructed based on a blockchain, and the blockchain It includes a plurality of network nodes, and the plurality of network nodes includes at least one second network node 22 and one first network node 11 , wherein each network node represents a network function entity of a different operator. Preferably, in this embodiment of the present invention, the first network node corresponds to a functional entity of an operator's 5G network, such as N3IWF.

本发明提供的通信方法用于在终端通过至少一个第二网络节点以非3GPP方式接入第一网络节点时,保证终端在第一网络节点和各第二网络节点中的数据传输得到相同的服务质量保证。The communication method provided by the present invention is used to ensure that the data transmission of the terminal in the first network node and each second network node obtains the same service when the terminal accesses the first network node through at least one second network node in a non-3GPP manner quality assurance.

需要说明的是,本发明实施例中,当终端通过多个第二网络节点以非3GPP方式接入第一网络节点时,多个第二网络节点为串接关系,即,终端依次通过每个第二网络节点接入第一网络节点,例如,终端连接到一个酒店的WIFI,这个酒店的WIFI接入的是中国电信IP骨干网,进而终端通过中国电信IP骨干网接入到了中国联通5G网络的N3IWF,此时,“酒店WIFI”对应的功能实体和“中国电信IP骨干网”对应的功能实体,都属于“第二网络节点”,二者属于串接关系;然而,在一些实施例中,当终端在接入5G网络时不满意于从一条第二网络节点构成的传输链路中获得的带宽时,还可同时基于多条传输链路接入5G网络,其中,每条传输链路包括至少一个第二网络节点,且终端基于不同的传输链路接入的是5G网络的不同的N3IWF,终端基于每条传输链路确定服务质量保证的过程独立进行,不相互干扰。It should be noted that, in this embodiment of the present invention, when the terminal accesses the first network node through multiple second network nodes in a non-3GPP manner, the multiple second network nodes are in a tandem relationship, that is, the terminal sequentially passes through each The second network node is connected to the first network node. For example, the terminal is connected to the WIFI of a hotel, and the hotel's WIFI is connected to the China Telecom IP backbone network, and then the terminal is connected to China Unicom's 5G network through the China Telecom IP backbone network At this time, the functional entity corresponding to "Hotel WIFI" and the functional entity corresponding to "China Telecom IP Backbone Network" belong to the "second network node", and the two belong to a tandem relationship; however, in some embodiments , when the terminal is not satisfied with the bandwidth obtained from the transmission link formed by a second network node when accessing the 5G network, it can also access the 5G network based on multiple transmission links at the same time, wherein each transmission link At least one second network node is included, and the terminal accesses different N3IWFs of the 5G network based on different transmission links, and the terminal determines the quality of service process based on each transmission link independently, and does not interfere with each other.

图2为本发明实施例提供的一种通信方法的流程图。FIG. 2 is a flowchart of a communication method provided by an embodiment of the present invention.

参照图2,本发明提供的通信方法包括:2, the communication method provided by the present invention includes:

步骤S101、第一网络节点向区块链广播第一交易,第一交易包括:目标数据链路对应的目标服务质量参数。Step S101, the first network node broadcasts a first transaction to the blockchain, where the first transaction includes: target quality of service parameters corresponding to the target data link.

在终端通过至少一个第二网络节点接入第一网络节点的过程中,终端首先通过第二网络节点与第一网络节点对应的N3IWF建立起通信隧道,进而,终端将数据包通过该通信隧道发送至该N3IWF,然后再由该N3IWF将数据包发送至第一网络节点。When the terminal accesses the first network node through at least one second network node, the terminal first establishes a communication tunnel through the second network node and the N3IWF corresponding to the first network node, and then the terminal sends the data packet through the communication tunnel to the N3IWF, and then the N3IWF sends the data packet to the first network node.

本发明中的目标数据链路是指终端与第一网络节点对应的N3IWF之间的数据传输过程对应的数据链路。第二网络节点对应的网络为承载目标数据链路的网络,即,目标数据链路所传送的数据基于第二网络节点对应的网络进行传输。The target data link in the present invention refers to the data link corresponding to the data transmission process between the terminal and the N3IWF corresponding to the first network node. The network corresponding to the second network node is a network bearing the target data link, that is, the data transmitted by the target data link is transmitted based on the network corresponding to the second network node.

在步骤S101中,第一网络节点在确定出终端已接入自身后,发起与区块链中的各第二网络节点的交易,以使各第二网络节点基于该交易,协议确定出该目标数据链路的服务质量保证参数。具体的,第一网络节点向区块链广播第一交易,该第一交易包括:目标数据链路对应的目标服务质量参数,该目标服务质量参数的物理含义为第一网络节点将以目标服务质量参数,为与目标数据链路相关的数据包在第一网络节点对应的网络中的传输提供服务质量保障。In step S101, after determining that the terminal has accessed itself, the first network node initiates a transaction with each second network node in the blockchain, so that each second network node determines the target based on the transaction. Quality of service assurance parameters for the data link. Specifically, the first network node broadcasts a first transaction to the blockchain, where the first transaction includes: a target quality of service parameter corresponding to the target data link, and the physical meaning of the target quality of service parameter is that the first network node will serve the target service The quality parameter provides service quality assurance for the transmission of data packets related to the target data link in the network corresponding to the first network node.

本发明实施例中,目标服务质量参数包括带宽、时延、抖动、丢包率和突发容限中的一个或多个。In this embodiment of the present invention, the target quality of service parameter includes one or more of bandwidth, delay, jitter, packet loss rate, and burst tolerance.

步骤S102、各第二网络节点响应于第一交易,分别生成第二交易,第二交易包括:目标数据链路对应的目标服务质量参数,。Step S102, each second network node generates a second transaction in response to the first transaction, and the second transaction includes: a target quality of service parameter corresponding to the target data link.

各第二网络节点接收到第一交易后,基于各自的网络资源确定出自身是否能够以第一交易中所包含的目标服务质量参数为目标数据链路提供服务质量保证,若能,则生成第二交易,该第二交易包括目标数据链路对应的目标服务质量参数;若不能,第二网络节点可向第一网络节点反馈拒绝交易的信息。After each second network node receives the first transaction, it determines whether it can use the target service quality parameter included in the first transaction as the target data link to provide service quality assurance based on its own network resources, and if so, generates a second network node. Second transaction, the second transaction includes the target quality of service parameter corresponding to the target data link; if not, the second network node can feed back information of rejecting the transaction to the first network node.

步骤S103、各第二网络节点将经自身签名后的第二交易广播至区块链。Step S103, each second network node broadcasts the second transaction signed by itself to the blockchain.

各第二网络节点在分别生成第二交易后,各自对自身对应的第二交易添加自身签名,并广播至区块链中。第二网络节点对第二交易添加签名表示该第二网络节点同意进行本次交易。After generating the second transaction, each second network node adds its own signature to the corresponding second transaction, and broadcasts it to the blockchain. Adding a signature to the second transaction by the second network node indicates that the second network node agrees to perform this transaction.

本发明实施例不对第二网络节点对第二交易进行签名的方式进行限定,例如,第二网络节点可以用自身私钥对第二交易添加签名,或者,第二网络节点还可以基于预设算法生成密钥(例如利用哈希算法生成哈希值),利用生成的密钥对第二交易添加签名。This embodiment of the present invention does not limit the manner in which the second network node signs the second transaction. For example, the second network node may use its own private key to add a signature to the second transaction, or the second network node may also use a preset algorithm based on A key is generated (eg, a hash value is generated using a hash algorithm), and the second transaction is signed using the generated key.

步骤S104、各第二网络节点基于经第一网络节点签名的第二交易,以目标服务质量参数传递目标数据链路上的数据包。Step S104, each second network node transmits the data packet on the target data link with the target service quality parameter based on the second transaction signed by the first network node.

第一网络节点在接收到各第二网络节点发送的第二交易后,对各第二交易添加自身签名,并将签名后的各第二交易广播至区块链中。第一网络节点对第二交易进行签名表示第一网络节点同意本次交易。After receiving the second transaction sent by each second network node, the first network node adds its own signature to each second transaction, and broadcasts each signed second transaction to the blockchain. Signing the second transaction by the first network node indicates that the first network node agrees to this transaction.

各第二网络节点接收到经第一网络节点签名后的第二交易,检测出第一网络节点已签名同意本次交易,即可确定出本次交易已达成,即,确定出将以目标服务质量参数传递目标数据链路上的数据包。Each second network node receives the second transaction signed by the first network node, and detects that the first network node has signed and agreed to this transaction, and then it can be determined that this transaction has been reached, that is, it is determined that the target service will be provided. The quality parameter conveys the packets on the destination data link.

本发明实施例提供的通信方法,各运营商对应的网络节点之间基于区块链来进行服务质量参数的协商确认,从而使得终端在基于至少一个第二网络节点接入第一网络节点时,能够在第一网络节点以外获得与第一网络节点以内的对于数据传输的相同的服务质量保证,进而提高了用户的通信体验。In the communication method provided by the embodiment of the present invention, the network nodes corresponding to each operator conduct negotiation and confirmation of quality of service parameters based on the blockchain, so that when the terminal accesses the first network node based on at least one second network node, It is possible to obtain the same quality of service guarantee for data transmission outside the first network node as inside the first network node, thereby improving the communication experience of the user.

图3为本发明实施例提供的另一种通信方法的流程图。FIG. 3 is a flowchart of another communication method provided by an embodiment of the present invention.

参照图3,本实施例包含了图2所示实施例的步骤S101~S104,在该基础上,本实施例在步骤S103和S104之间,还包括:Referring to FIG. 3 , this embodiment includes steps S101 to S104 of the embodiment shown in FIG. 2 . On this basis, between steps S103 and S104 , this embodiment further includes:

步骤S105、第一网络节点对各经第二网络节点签名后的第二交易进行签名验证。Step S105, the first network node performs signature verification on each of the second transactions signed by the second network node.

为预防非法第三方假冒第二网络节点参与该通信过程,第一网络节点对第二网络节点的签名进行验证,例如,利用预先存储的第二网络节点的公钥对第二网络节点的签名进行验证,或者,利用预先约定的加密算法生成密钥,通过对比新生成的密钥与第二网络节点的签名对应的密钥是否相同以确定第二网络节点的签名是否真实有效。In order to prevent an illegal third party from impersonating the second network node to participate in the communication process, the first network node verifies the signature of the second network node, for example, using the pre-stored public key of the second network node to verify the signature of the second network node. Verify, or generate a key using a pre-agreed encryption algorithm, and determine whether the signature of the second network node is genuine and valid by comparing whether the newly generated key is the same as the key corresponding to the signature of the second network node.

在步骤S105中,若第一网络节点对第二网络节点的签名验证通过,则说明第一网络节点确定出第二网络节点同意本次交易,且第二交易是来自于真实的第二网络节点,此时,执行步骤S106,以进一步在第二交易上添加自身签名,以推进本次交易;若第一网络节点对第二网络节点的签名验证不通过,则说明第二网络节点可能为假冒节点,结束本次交易过程。In step S105, if the signature verification of the first network node to the second network node is passed, it means that the first network node has determined that the second network node agrees with this transaction, and the second transaction is from the real second network node , at this time, step S106 is executed to further add its own signature to the second transaction to advance this transaction; if the signature verification of the second network node by the first network node fails, it means that the second network node may be counterfeit node to end the transaction process.

步骤S106、第一网络节点对当前的第二交易增添自身签名,并广播至区块链中。Step S106, the first network node adds its own signature to the current second transaction, and broadcasts it to the blockchain.

当前的第二交易是指添加了第二网络节点的签名后的第二交易,第一网络节点在当前的第二交易上增添自身签名,以表示自身同意本次交易,并将添加自身签名后的第二交易广播至区块链中。The current second transaction refers to the second transaction after adding the signature of the second network node. The first network node adds its own signature to the current second transaction to indicate that it agrees with this transaction, and will add its own signature to the second transaction. 's second transaction is broadcast to the blockchain.

本实施例中,步骤S104具体包括:In this embodiment, step S104 specifically includes:

步骤S1041、各第二网络节点对第一网络节点的签名进行验证。Step S1041: Each second network node verifies the signature of the first network node.

第二网络节点接收第一网络节点广播的带有第一网络节点的签名的第二交易后,对第一网络节点的签名进行验证,以确定所接收到的第一网络节点的身份的真实性。After receiving the second transaction with the signature of the first network node broadcasted by the first network node, the second network node verifies the signature of the first network node to determine the authenticity of the received identity of the first network node .

具体的,若第二网络节点对第一网络节点的签名验证通过,则说明第一网络节点的身份是真实的,且第一网络节点已确认本次交易,此时对应执行下述步骤S1042,即,第二网络节点确定自身以目标服务质量参数传递目标数据链路上的数据包;若第二网络节点对第一网络节点的签名验证不通过,则说明第一网络节点可能为假冒节点,此时,结束本方法流程。Specifically, if the signature verification of the first network node by the second network node is passed, it means that the identity of the first network node is real, and the first network node has confirmed the transaction, and the following step S1042 is executed accordingly: That is, the second network node determines that it transmits the data packet on the target data link with the target quality of service parameter; if the signature verification of the first network node by the second network node fails, it means that the first network node may be a fake node, At this point, the method flow ends.

步骤S1042、以目标服务质量参数传递目标数据链路上的数据包。Step S1042, transmit the data packets on the target data link with the target QoS parameter.

第二网络节点可基于第二交易中所包含的目标数据链路对应的目标服务质量参数,对目标数据链的相关参数进行设置,以使后续对目标数据链路包含的数据包进行传输时,采用目标服务质量参数对数据包的传输性能进行保障。The second network node may set the relevant parameters of the target data link based on the target quality of service parameters corresponding to the target data link included in the second transaction, so that when subsequently transmitting the data packets included in the target data link, The target quality of service parameters are used to ensure the transmission performance of the data packets.

在实际应用中,第一网络节点和各第二网络节点之间在统一协商确定目标服务质量参数的过程中,会以支付资源的形式达成最终交易,即,第一网络节点向各第二网络节点支付一定的资源,以使第二网络节点按照第一网络节点所设定的目标服务质量参数来对目标数据链路中的数据包进行传送。In practical applications, in the process of uniformly negotiating and determining target quality of service parameters between the first network node and each second network node, a final transaction will be reached in the form of payment resources, that is, the first network node will send each second network node to each second network node. The node pays certain resources, so that the second network node transmits the data packets in the target data link according to the target quality of service parameter set by the first network node.

在上述实施例中,第一网络节点和各第二网络节点在协商确定出目标服务质量参数后,默认通过线下或按照预先制定的协议进行资源支付。In the above-mentioned embodiment, after the first network node and each second network node negotiate and determine the target service quality parameter, the resource payment is performed offline or according to a pre-established protocol by default.

然而,在一些实施例中,第一网络节点和各第二网络节点还可在目标服务质量参数的确定过程中,协商确定出支付资源的量。However, in some embodiments, the first network node and each of the second network nodes may also negotiate and determine the amount of payment resources in the process of determining the target quality of service parameter.

在该实施例中,第一网络节点广播的第一交易中还包括:第一网络节点的可交换资源量,第二网络节点生成的第二交易中还包括:第二网络节点的请求资源量;其中,第一网络节点的可交换资源量是指第一网络节点可支付给各第二网络节点的资源量;第二网络节点的请求资源量是指第二网络节点期望从第一网络节点获取的资源量。具体的,第二网络节点在接收到第一网络节点广播的第一交易后,根据自身的网络资源情况以及第一交易中所包含的第一网络节点的可交换资源量,确定出期望从第一网络节点处获得的资源量,即请求资源量,并将请求资源量写入第二交易中。在一些实施例中,优选的,第一网络节点的可交换资源量可以设置为0,即,表示第一网络节点期望各第二网络节点无偿按照目标服务质量参数为其提供服务质量保障,在此情况下,若第二节点不同意无偿按照目标服务质量参数为第一节点提供服务质量保障,则第一节点可重新生成第一交易,该第一交易中包含重新设置的可交换资源量,以再次与各第二网络节点进行交易协商。In this embodiment, the first transaction broadcast by the first network node further includes: the amount of exchangeable resources of the first network node, and the second transaction generated by the second network node further includes: the amount of resources requested by the second network node ; wherein, the amount of exchangeable resources of the first network node refers to the amount of resources that the first network node can pay to each second network node; the amount of resources requested by the second network node refers to the amount of resources that the second network node expects from the first network node The amount of resources acquired. Specifically, after receiving the first transaction broadcasted by the first network node, the second network node determines, according to its own network resources and the amount of exchangeable resources of the first network node included in the first transaction, that it is expected to start from the first transaction. The amount of resources obtained at a network node, that is, the amount of requested resources, and the amount of requested resources is written into the second transaction. In some embodiments, preferably, the amount of exchangeable resources of the first network node can be set to 0, that is, it means that the first network node expects that each second network node provides service quality assurance for each second network node according to the target service quality parameter for free, and in In this case, if the second node does not agree to provide service quality assurance for the first node according to the target service quality parameters for free, the first node may regenerate the first transaction, and the first transaction includes the reset amount of exchangeable resources, to conduct transaction negotiation with each second network node again.

具体的,参照图4(图4为本发明实施例提供的又一种通信方法的流程图),在该实施例中,在第一网络节点对当前的第二交易增添自身签名并广播至区块链中(步骤S106)之前,还包括:Specifically, referring to FIG. 4 (FIG. 4 is a flowchart of another communication method provided by an embodiment of the present invention), in this embodiment, the first network node adds its own signature to the current second transaction and broadcasts it to the zone Before the block chain (step S106), it also includes:

步骤S1、第一网络节点计算所有第二交易中所包含的第二网络节点的请求资源量的和,以得到待支付资源量。Step S1, the first network node calculates the sum of the requested resources of the second network node included in all the second transactions to obtain the resource to be paid.

步骤S2、第一网络节点判断出可交换资源量是否大于等于待支付资源量。Step S2: The first network node determines whether the amount of exchangeable resources is greater than or equal to the amount of resources to be paid.

当第一网络节点判断出可交换资源量大于等于待支付资源量时,说明第一网络节点当前所持有的可交换资源足够支付给各第二网络节点,此时,第一网络节点可确定该交易成立,对应的,执行后续步骤S106;而当第一网络节点判断出可交换资源量小于待支付资源量时,说明第一网络节点当前所持有的可交换资源不够支付给各第二网络节点,交易无法成立,此时结束本方法流程。When the first network node determines that the amount of exchangeable resources is greater than or equal to the amount of resources to be paid, it means that the exchangeable resources currently held by the first network node are sufficient to pay each second network node. At this time, the first network node can determine If the transaction is established, correspondingly, the subsequent step S106 is executed; and when the first network node determines that the amount of exchangeable resources is less than the amount of resources to be paid, it means that the exchangeable resources currently held by the first network node are not enough to pay to each second network node. The network node, the transaction cannot be established, and the process of this method ends at this time.

图5为本发明实施例提供的再一种通信方法的流程图。FIG. 5 is a flowchart of still another communication method provided by an embodiment of the present invention.

参照图5,该实施例中,该通信方法不仅包含图2所示实施例的步骤S101~S104,还包括步骤S102’,下面仅对步骤S102’进行描述。Referring to Fig. 5, in this embodiment, the communication method not only includes steps S101 to S104 of the embodiment shown in Fig. 2, but also includes step S102', and only step S102' will be described below.

本实施例中,第一交易还包括:目标数据链路的标识。具体的,在步骤S102之前,还包括:In this embodiment, the first transaction further includes: an identifier of the target data link. Specifically, before step S102, it also includes:

步骤S102’、区块链中的除第一网络节点以外的所有网络节点根据目标数据链路的标识确定出自身对应的网络中是否传输有与目标数据链路对应的数据包。Step S102', all network nodes in the blockchain except the first network node determine whether there is a data packet corresponding to the target data link transmitted in the network corresponding to itself according to the identifier of the target data link.

本发明实施例中,区块链中包含众多节点,该众多节点包括第一网络节点、第二网络节点和其他节点,第一网络节点在广播第一交易后,区块链中的除第一网络节点以外的其他所有网络节点根据第一交易中所包含的目标数据链路的标识确定自身对应的网络中是否传输有与目标数据链路对应的数据包,若存在,即可确定出自身为第二网络节点,此时对应执行后续步骤S102,以进行第二交易的生成,若不存在,则该网络节点不执行任何操作。In the embodiment of the present invention, the blockchain includes numerous nodes, and the numerous nodes include a first network node, a second network node, and other nodes. After the first network node broadcasts the first transaction, all nodes in the blockchain except the first network node. All other network nodes other than the network node determine whether there is a data packet corresponding to the target data link transmitted in their corresponding network according to the identifier of the target data link included in the first transaction. The second network node, at this time, correspondingly executes the subsequent step S102 to generate the second transaction, and if it does not exist, the network node does not perform any operation.

本发明实施例中,目标数据链路的标识以IPsec隧道标识进行表示,优选的,目标数据链路的标识以IPsec隧道标识三元组进行表示,该IPsec隧道标识三元组包括:安全参数索引值(Security Parameter Index,简称SPI)、安全协议类型和网络地址;其中,安全协议类型包括:仅使用认证头标协议(Authentication Header,简称AH)、仅使用封装安全载荷协议(Encapsulating Security Payload,简称ESP)或者同时使用AH协议和ESP协议;SPI是AH和ESP都包含的字段,从网络上传送的数据包中可以识别到数据包对应的SPI;网络地址包括隧道的源地址和目的地址之一,当目标数据链路表示的是从N3IWF到终端的数据流时,网络地址为源地址,而当目标数据链路表示的是从终端到N3IWF的数据流时,网络地址为目的地址,本发明实施例中,第一网络节点可通过不同的交易来为不同数据流向的数据链路分别取得服务质量参数。In the embodiment of the present invention, the identifier of the target data link is represented by an IPsec tunnel identifier. Preferably, the identifier of the target data link is represented by an IPsec tunnel identifier triplet, and the IPsec tunnel identifier triplet includes: a security parameter index value (Security Parameter Index, referred to as SPI), security protocol type and network address; where, the security protocol type includes: only use the authentication header protocol (Authentication Header, referred to as AH), only use the encapsulating security payload protocol (Encapsulating Security Payload, referred to as the protocol) ESP) or use AH protocol and ESP protocol at the same time; SPI is a field included in both AH and ESP, and the SPI corresponding to the data packet can be identified from the data packet transmitted on the network; the network address includes one of the source address and destination address of the tunnel , when the target data link represents the data flow from the N3IWF to the terminal, the network address is the source address, and when the target data link represents the data flow from the terminal to the N3IWF, the network address is the destination address. In an embodiment, the first network node may obtain service quality parameters for data links with different data flow directions respectively through different transactions.

在一些实施例中,第一交易的形式为T{[Iop1,IOP],[C→OP,q→UE(SPI)]},其中,[Iop1,IOP]表示第一交易的输入,Iop1表示第一网络节点的资源,IOP表示待交易的网络节点的网络资源,[C→OP,q→UE(spi)]表示第一交易的输出,其中,C表示第一网络节点能够支付给各第二网络节点的可交换资源的量,C→OP表示第一网络节点将可交换资源C支付给待交易的网络节点(第二网络节点);q表示目标服务质量参数,UE(SPI)是IPsec隧道标识三元组,用以唯一标识目标数据链路,q→UE(SPI)表示第一网络节点将以目标服务质量参数q来为UE(SPI)标识的目标数据链路的相关数据包提供服务质量保证。In some embodiments, the first transaction is in the form of T{[I op1 , I OP ], [C→OP, q→UE(SPI)]}, where [I op1 , I OP ] represents the value of the first transaction Input, I op1 represents the resources of the first network node, I OP represents the network resources of the network node to be traded, [C→OP, q→UE(spi)] represents the output of the first transaction, where C represents the first network The amount of exchangeable resources that the node can pay to each second network node, C→OP indicates that the first network node pays the exchangeable resource C to the network node (second network node) to be traded; q indicates the target service quality parameter, UE(SPI) is an IPsec tunnel identification triplet, which is used to uniquely identify the target data link. q→UE(SPI) indicates that the first network node will use the target quality of service parameter q as the target data link identified by the UE(SPI). The relevant data packets of the road provide quality of service assurance.

对应的,第二交易的形式为T2a{[Iop1,Iop2a],[c2a→op2a,q→UE(SPI)]}、T2b{[Iop1,Iop2b],[c2b→op2b,q→UE(SPI)]}……;需要说明的是,第二交易实质上为第一交易的实例化,即,第二交易是各第二网络节点基于第一交易的形式生成的。其中,[Iop1,Iop2a]表示第二交易的输入,与上述类似的,Iop1表示第一网络节点的资源,Iop2a表示待交易的第二网络节点a的网络资源;[c2a→op2a,q→UE(SPI)]表示第二交易的输出,其中,c2a表示第二网络节点a的报价,也即请求资源,c2a→op2a表示第二网络节点a对于第一网络节点所要获取的网络资源的报价为c2a;q表示目标服务质量参数,UE(SPI)是IPsec隧道标识三元组,用以唯一标识目标数据链路,q→UE(SPI)表示第二网络节点a将以目标服务质量参数q来为UE(SPI)标识的目标数据链路的数据包提供服务质量保证。同理,本发明实施例中,其他各第二网络节点b、c……n对应的第二交易的形式与第二网络节点a的第二交易的形式对应相同,仅仅是第二交易中与第二网络节点身份相关的信息存在不同,例如,第二交易中,第二网络节点a的报价为c2a,第二网络节点b的报价为c2b,等等。Correspondingly, the form of the second transaction is T 2a {[I op1 ,I op2a ],[c 2a →op2a, q→UE(SPI)]}, T 2b {[I op1 ,I op2b ],[c 2b → op2b, q→UE(SPI)]}...; It should be noted that the second transaction is essentially the instantiation of the first transaction, that is, the second transaction is generated by each second network node based on the form of the first transaction . Wherein, [I op1 , I op2a ] represents the input of the second transaction. Similar to the above, I op1 represents the resources of the first network node, and I op2a represents the network resources of the second network node a to be traded; [c 2a → op2a, q→UE(SPI)] represents the output of the second transaction, where c 2a represents the offer of the second network node a, that is, the request resource, and c 2a →op2a represents the second network node a for the first network node. The quotation of the acquired network resource is c 2a ; q represents the target quality of service parameter, and UE (SPI) is an IPsec tunnel identification triplet to uniquely identify the target data link, and q→UE (SPI) represents the second network node a The data packets of the target data link identified by the UE (SPI) will be guaranteed by the target quality of service parameter q. Similarly, in the embodiment of the present invention, the form of the second transaction corresponding to the other second network nodes b, c...n is the same as the form of the second transaction of the second network node a. The information related to the identity of the second network node is different. For example, in the second transaction, the quotation of the second network node a is c 2a , the quotation of the second network node b is c 2b , and so on.

在本发明中,上述各实施例之间可以相互组合以得到新技术方案,这些通过组合得到的新技术方案也应属于本发明的保护范围。In the present invention, the above-mentioned embodiments can be combined with each other to obtain new technical solutions, and these new technical solutions obtained by combining should also belong to the protection scope of the present invention.

本发明实施例还提供一种通信系统,如图1所示,该通信系统基于区块链实现,该区块链包括多个网络节点,多个网络节点包括:第一网络节点11和第二网络节点22,其中,终端通过至少一个第二网络节点22以非3GPP方式接入第一网络节点11。An embodiment of the present invention further provides a communication system. As shown in FIG. 1 , the communication system is implemented based on a blockchain. The blockchain includes multiple network nodes, and the multiple network nodes include: a first network node 11 and a second network node 11 . A network node 22, wherein the terminal accesses the first network node 11 in a non-3GPP manner through at least one second network node 22.

具体的,第一网络节点11用于向区块链广播第一交易,第一交易包括:目标数据链路对应的目标服务质量参数;各第二网络节点22用于响应于第一交易,分别生成第二交易,第二交易包括:目标数据链路对应的目标服务质量参数。Specifically, the first network node 11 is used to broadcast the first transaction to the blockchain, and the first transaction includes: target quality of service parameters corresponding to the target data link; each second network node 22 is used to respond to the first transaction, respectively A second transaction is generated, where the second transaction includes: target quality of service parameters corresponding to the target data link.

其中,第二网络节点对应的网络为承载目标数据链路的网络。The network corresponding to the second network node is a network bearing the target data link.

各第二网络节点22还用于将经自身签名后的第二交易广播至区块链,以及基于经第一网络节点签名的第二交易,以目标服务质量参数传递目标数据链路上的数据包。Each second network node 22 is also used to broadcast the second transaction signed by itself to the blockchain, and based on the second transaction signed by the first network node, transmit the data on the target data link with the target quality of service parameter Bag.

在一些实施例中,第一网络节点11还用于在各第二网络节点22将经自身签名后的第二交易广播至区块链之后,且在各第二网络节点基于经第一网络节点签名的第二交易,以目标服务质量参数传递目标数据链路上的数据包之前,对各经第二网络节点签名后的第二交易进行签名验证,并在签名验证通过后,对当前的第二交易增添自身签名,并广播至区块链中。In some embodiments, the first network node 11 is further configured to broadcast the second transaction signed by itself to the blockchain after each second network node 22, and after each second network node is based on the first network node The signed second transaction, before transmitting the data packet on the target data link with the target service quality parameter, perform signature verification on the second transaction signed by the second network node, and after the signature verification passes, verify the current first transaction. The second transaction adds its own signature and broadcasts it to the blockchain.

各第二网络节点22还用于对第一网络节点的签名进行验证,并在签名验证通过后,以目标服务质量参数传递目标数据链路上的数据包。Each second network node 22 is further configured to verify the signature of the first network node, and after the signature verification passes, transmit the data packet on the target data link with the target quality of service parameter.

在一些实施例中,第一交易还包括:第一网络节点的可交换资源量;第二交易还包括:第二网络节点的请求资源量。In some embodiments, the first transaction further includes: the amount of exchangeable resources of the first network node; the second transaction further includes: the amount of requested resources of the second network node.

第一网络节点11还用于在第一网络节点对当前的第二交易增添自身签名,并广播至区块链之前,计算所有第二交易中所包含的第二网络节点的请求资源量的和,以得到待支付资源量;以及还用于当判断出可交换资源量大于等于待支付资源量时,对当前的第二交易增添自身签名,并广播至区块链中。The first network node 11 is also used to calculate the sum of the requested resources of the second network node included in all the second transactions before the first network node adds its own signature to the current second transaction and broadcasts it to the blockchain. , to obtain the amount of resources to be paid; and is also used to add a self-signature to the current second transaction when it is determined that the amount of exchangeable resources is greater than or equal to the amount of resources to be paid, and broadcast it to the blockchain.

本发明实施例提供的通信系统用于实现本发明实施例所提供的通信方法,具体本发明实施例所提供的通信系统中各网络节点所具有的功能以及各网络节点之间的交互,请参见上述实施例中对应的方法步骤的描述,此处不再赘述。The communication system provided by the embodiment of the present invention is used to implement the communication method provided by the embodiment of the present invention. For details on the functions of each network node in the communication system provided by the embodiment of the present invention and the interaction between the network nodes, please refer to The descriptions of the corresponding method steps in the foregoing embodiments are not repeated here.

可以理解的是,以上实施方式仅仅是为了说明本发明的原理而采用的示例性实施方式,然而本发明并不局限于此。对于本领域内的普通技术人员而言,在不脱离本发明的精神和实质的情况下,可以做出各种变型和改进,这些变型和改进也视为本发明的保护范围。It can be understood that the above embodiments are only exemplary embodiments adopted to illustrate the principle of the present invention, but the present invention is not limited thereto. For those skilled in the art, without departing from the spirit and essence of the present invention, various modifications and improvements can be made, and these modifications and improvements are also regarded as the protection scope of the present invention.

Claims (10)

1.一种通信方法,其特征在于,基于区块链实现,所述区块链包括多个网络节点;当终端通过至少一个第二网络节点以非3GPP方式接入第一网络节点时,所述通信方法包括:1. A communication method, characterized in that it is implemented based on a blockchain, and the blockchain includes multiple network nodes; when a terminal accesses a first network node in a non-3GPP manner through at least one second network node, all The communication method includes: 第一网络节点向所述区块链广播第一交易,所述第一交易包括:目标数据链路对应的目标服务质量参数;The first network node broadcasts a first transaction to the blockchain, where the first transaction includes: a target quality of service parameter corresponding to the target data link; 各所述第二网络节点响应于所述第一交易,分别生成第二交易,所述第二交易包括:所述目标数据链路对应的目标服务质量参数,其中,所述第二网络节点对应的网络为承载所述目标数据链路的网络;Each of the second network nodes respectively generates a second transaction in response to the first transaction, and the second transaction includes: a target quality of service parameter corresponding to the target data link, wherein the second network node corresponds to The network is the network carrying the target data link; 各所述第二网络节点将经自身签名后的第二交易广播至所述区块链;Each of the second network nodes broadcasts the second transaction signed by itself to the blockchain; 各所述第二网络节点基于经第一网络节点签名的第二交易,以所述目标服务质量参数传递所述目标数据链路上的数据包。Each of the second network nodes transmits the data packets on the target data link with the target quality of service parameter based on the second transaction signed by the first network node. 2.根据权利要求1所述的方法,其特征在于,在所述各所述第二网络节点将经自身签名后的第二交易广播至所述区块链之后,且在所述各所述第二网络节点基于经第一网络节点签名的第二交易,以所述目标服务质量参数传递所述目标数据链路上的数据包之前,还包括:2. The method according to claim 1, wherein after each of the second network nodes broadcasts the self-signed second transaction to the blockchain, and after each of the second network nodes broadcasts the self-signed second transaction to the blockchain Before the second network node transmits the data packet on the target data link with the target quality of service parameter based on the second transaction signed by the first network node, the method further includes: 所述第一网络节点对各经第二网络节点签名后的第二交易进行签名验证;The first network node performs signature verification on each of the second transactions signed by the second network node; 若签名验证通过,所述第一网络节点对当前的第二交易增添自身签名,并广播至所述区块链中;If the signature verification is passed, the first network node adds its own signature to the current second transaction and broadcasts it to the blockchain; 所述各所述第二网络节点基于经第一网络节点签名的第二交易,以所述目标服务质量参数传递所述目标数据链路上的数据包,包括:Each of the second network nodes transmits the data packets on the target data link with the target quality of service parameter based on the second transaction signed by the first network node, including: 各所述第二网络节点对所述第一网络节点的签名进行验证;Each of the second network nodes verifies the signature of the first network node; 若签名验证通过,以所述目标服务质量参数传递所述目标数据链路上的数据包。If the signature verification is passed, the data packet on the target data link is transmitted with the target QoS parameter. 3.根据权利要求2所述的方法,其特征在于,所述第一交易还包括:所述第一网络节点的可交换资源量;所述第二交易还包括:所述第二网络节点的请求资源量;3. The method according to claim 2, wherein the first transaction further comprises: the amount of exchangeable resources of the first network node; the second transaction further comprises: the amount of the second network node's exchangeable resources amount of resources requested; 在所述第一网络节点对当前的第二交易增添自身签名,并广播至所述区块链中之前,还包括:Before the first network node adds its own signature to the current second transaction and broadcasts it to the blockchain, the method further includes: 所述第一网络节点计算所有所述第二交易中所包含的所述第二网络节点的请求资源量的和,以得到待支付资源量;The first network node calculates the sum of the requested resource amounts of the second network nodes included in all the second transactions to obtain the resource amount to be paid; 所述第一网络节点对当前的第二交易增添自身签名,并广播至所述区块链中,包括:The first network node adds its own signature to the current second transaction and broadcasts it to the blockchain, including: 当所述第一网络节点判断出所述可交换资源量大于等于所述待支付资源量时,所述第一网络节点对当前的第二交易增添自身签名,并广播至所述区块链中。When the first network node determines that the amount of exchangeable resources is greater than or equal to the amount of resources to be paid, the first network node adds its own signature to the current second transaction and broadcasts it to the blockchain . 4.根据权利要求1所述的方法,其特征在于,所述第一交易还包括:所述目标数据链路的标识;4. The method according to claim 1, wherein the first transaction further comprises: an identifier of the target data link; 在所述各所述第二网络节点响应于所述第一交易,分别生成第二交易之前,还包括:Before each of the second network nodes respectively generates a second transaction in response to the first transaction, the method further includes: 所述区块链中的除所述第一网络节点以外的所有网络节点根据所述目标数据链路的标识确定出自身对应的网络中是否传输有与所述目标数据链路对应的数据包。All network nodes in the blockchain except the first network node determine whether a data packet corresponding to the target data link is transmitted in the network corresponding to itself according to the identifier of the target data link. 5.根据权利要求4所述的方法,其特征在于,所述目标数据链路的标识包括:安全参数索引值、安全协议类型、网络地址中的一个或多个。5 . The method according to claim 4 , wherein the identifier of the target data link comprises: one or more of a security parameter index value, a security protocol type, and a network address. 6 . 6.根据权利要求5所述的方法,其特征在于,所述安全协议类型包括:仅使用认证头标协议、仅使用封装安全载荷协议或者同时使用认证头标协议和封装安全载荷协议。6 . The method according to claim 5 , wherein the security protocol type comprises: using only the authentication header protocol, only using the encapsulating security payload protocol, or using both the authentication header protocol and the encapsulating security payload protocol. 7 . 7.根据权利要求1所述的方法,其特征在于,所述目标服务质量参数包括带宽、时延、抖动、丢包率和突发容限中的一个或多个。7. The method according to claim 1, wherein the target quality of service parameter comprises one or more of bandwidth, delay, jitter, packet loss rate and burst tolerance. 8.一种通信系统,其特征在于,所述通信系统基于区块链实现,所述区块链包括多个网络节点,多个所述网络节点包括:第一网络节点和第二网络节点,其中,终端通过至少一个第二网络节点以非3GPP方式接入第一网络节点;8. A communication system, characterized in that, the communication system is implemented based on a blockchain, the blockchain comprises a plurality of network nodes, and the plurality of the network nodes comprises: a first network node and a second network node, The terminal accesses the first network node in a non-3GPP manner through at least one second network node; 所述第一网络节点用于向所述区块链广播第一交易,所述第一交易包括:目标数据链路对应的目标服务质量参数;The first network node is configured to broadcast a first transaction to the blockchain, where the first transaction includes: a target quality of service parameter corresponding to the target data link; 各所述第二网络节点用于响应于所述第一交易,分别生成第二交易,所述第二交易包括:所述目标数据链路对应的目标服务质量参数,其中,所述第二网络节点对应的网络为承载所述目标数据链路的网络;以及Each of the second network nodes is configured to respectively generate a second transaction in response to the first transaction, where the second transaction includes: a target quality of service parameter corresponding to the target data link, wherein the second network The network corresponding to the node is the network carrying the target data link; and 各所述第二网络节点还用于将经自身签名后的第二交易广播至所述区块链,以及基于经第一网络节点签名的第二交易,以所述目标服务质量参数传递所述目标数据链路上的数据包。Each second network node is further configured to broadcast the second transaction signed by itself to the blockchain, and transmit the target service quality parameter based on the second transaction signed by the first network node. The packet on the destination data link. 9.根据权利要求8所述的系统,其特征在于,9. The system of claim 8, wherein: 所述第一网络节点还用于在所述各所述第二网络节点将经自身签名后的第二交易广播至所述区块链之后,且在所述各所述第二网络节点基于经第一网络节点签名的第二交易,以所述目标服务质量参数传递所述目标数据链路上的数据包之前,对各经第二网络节点签名后的第二交易进行签名验证,并在签名验证通过后,对当前的第二交易增添自身签名,并广播至所述区块链中;The first network node is further configured to broadcast the second transaction signed by each of the second network nodes to the blockchain, and after each of the second network nodes is based on the signed transaction. For the second transaction signed by the first network node, before transmitting the data packet on the target data link with the target service quality parameter, perform signature verification on each second transaction signed by the second network node, and sign After the verification is passed, add its own signature to the current second transaction and broadcast it to the blockchain; 各所述第二网络节点还用于对所述第一网络节点的签名进行验证,并在签名验证通过后,以所述目标服务质量参数传递所述目标数据链路上的数据包。Each of the second network nodes is further configured to verify the signature of the first network node, and after the signature verification is passed, transmit the data packets on the target data link with the target quality of service parameter. 10.根据权利要求8所述的系统,其特征在于,所述第一交易还包括:所述第一网络节点的可交换资源量;所述第二交易还包括:10. The system according to claim 8, wherein the first transaction further comprises: the amount of exchangeable resources of the first network node; the second transaction further comprises: 所述第二网络节点的请求资源量;the amount of requested resources of the second network node; 所述第一网络节点还用于在所述第一网络节点对当前的第二交易增添自身签名,并广播至所述区块链中之前,计算所有所述第二交易中所包含的所述第二网络节点的请求资源量的和,以得到待支付资源量;以及还用于The first network node is further configured to calculate the current second transaction included in all the second transactions before the first network node adds its own signature to the current second transaction and broadcasts it to the blockchain. The sum of the amount of resources requested by the second network node to obtain the amount of resources to be paid; and also used for 当判断出所述可交换资源量大于等于所述待支付资源量时,对当前的第二交易增添自身签名,并广播至所述区块链中。When it is determined that the amount of exchangeable resources is greater than or equal to the amount of resources to be paid, a self-signature is added to the current second transaction and broadcast to the blockchain.
CN202111658881.2A 2021-12-30 2021-12-30 Communication method and communication system Active CN114302450B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111658881.2A CN114302450B (en) 2021-12-30 2021-12-30 Communication method and communication system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111658881.2A CN114302450B (en) 2021-12-30 2021-12-30 Communication method and communication system

Publications (2)

Publication Number Publication Date
CN114302450A true CN114302450A (en) 2022-04-08
CN114302450B CN114302450B (en) 2024-04-09

Family

ID=80973109

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111658881.2A Active CN114302450B (en) 2021-12-30 2021-12-30 Communication method and communication system

Country Status (1)

Country Link
CN (1) CN114302450B (en)

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108566653A (en) * 2018-07-02 2018-09-21 中国联合网络通信集团有限公司 A kind of operation management method and base station equipment of base station equipment
US20190327102A1 (en) * 2018-04-19 2019-10-24 Huawei Technologies Co., Ltd. System and method for use of digital currency in a communication network
US10491376B1 (en) * 2018-06-08 2019-11-26 Cisco Technology, Inc. Systems, devices, and techniques for managing data sessions in a wireless network using a native blockchain platform
US20190387000A1 (en) * 2018-06-19 2019-12-19 At&T Intellectual Property I, L.P. Data and context based role membership system
US20200177671A1 (en) * 2018-12-03 2020-06-04 At&T Intellectual Property I, L.P. Global internet of things (iot) quality of service (qos) realization through collaborative edge gateways
CN111626717A (en) * 2020-04-10 2020-09-04 中山大学 Data commodity transaction method based on block chain and dynamic network service quality
CN111970350A (en) * 2020-08-10 2020-11-20 中国联合网络通信集团有限公司 Wireless resource transaction method, terminal and system based on block chain network
US20210216306A1 (en) * 2020-01-09 2021-07-15 Myomega Systems Gmbh Secure deployment of software on industrial control systems

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20190327102A1 (en) * 2018-04-19 2019-10-24 Huawei Technologies Co., Ltd. System and method for use of digital currency in a communication network
US10491376B1 (en) * 2018-06-08 2019-11-26 Cisco Technology, Inc. Systems, devices, and techniques for managing data sessions in a wireless network using a native blockchain platform
US20190387000A1 (en) * 2018-06-19 2019-12-19 At&T Intellectual Property I, L.P. Data and context based role membership system
CN108566653A (en) * 2018-07-02 2018-09-21 中国联合网络通信集团有限公司 A kind of operation management method and base station equipment of base station equipment
US20200177671A1 (en) * 2018-12-03 2020-06-04 At&T Intellectual Property I, L.P. Global internet of things (iot) quality of service (qos) realization through collaborative edge gateways
US20210216306A1 (en) * 2020-01-09 2021-07-15 Myomega Systems Gmbh Secure deployment of software on industrial control systems
CN111626717A (en) * 2020-04-10 2020-09-04 中山大学 Data commodity transaction method based on block chain and dynamic network service quality
CN111970350A (en) * 2020-08-10 2020-11-20 中国联合网络通信集团有限公司 Wireless resource transaction method, terminal and system based on block chain network

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
""tdoc_list_meeting_sa#93-e"", 3GPP TSG_SA\\TSG_SA, 22 September 2021 (2021-09-22) *
SA MENG: "Reliability Service Assurance in Public Clouds based on Blockchain", 2020 IEEE 20TH INTERNATIONAL CONFERENCE ON SOFTWARE QUALITY,RELIABILITY AND SECURITY COMPANION, 21 November 2020 (2020-11-21) *
朱雪田: "3GPP R16的5G演进技术研究", 《电子技术应用》2020年第46卷第10期, 6 October 2020 (2020-10-06) *

Also Published As

Publication number Publication date
CN114302450B (en) 2024-04-09

Similar Documents

Publication Publication Date Title
CN110995414B (en) Method for establishing channel in TLS1_3 protocol based on cryptographic algorithm
US10911414B2 (en) Method and apparatus for data connectivity sharing
TWI820696B (en) Communication method,apparatus and computer readable storage medium
US20070006296A1 (en) System and method for establishing a shared key between network peers
US20040010713A1 (en) EAP telecommunication protocol extension
KR20080081951A (en) Digital Object Title Certification
CN111416714B (en) Method and system for realizing label exchange in SM9 algorithm based on SSL protocol
CN101527907A (en) Wireless local area network access authentication method and wireless local area network system
CN114760093B (en) Communication method and device
US20050268328A1 (en) Trust establishment for multi-party communications
CN110602112A (en) MQTT (multiple quantum dots technique) secure data transmission method
CN101790162B (en) Security association acquisition method and device
CN113972995B (en) Network configuration method and device
CN114302450B (en) Communication method and communication system
CN109995723A (en) A kind of method, apparatus and system of the interaction of domain name analysis system DNS information
KR20040028329A (en) Method for supplying discriminative services in VPN
Pagani Quic bitcoin: Fast and secure peer-to-peer payments and payment channels
CN110120907B (en) Proposed group-based IPSec VPN tunnel communication method and device
CN116347445A (en) Security protocol channel establishment method, transmission method and system based on non-3 GPP network element
CN114466363B (en) Session method and session functional entity
EP2066072B1 (en) Method and apparatus for facilitating the remuneration for sharing connection resources in multihop networks
CN111614688A (en) Generic protocol for blockchains
CN119011287B (en) Communication data transmission method, device, equipment and storage medium
CN100435526C (en) Network security dynamic detection system and method
CN114885331B (en) Network access control method, system and storage medium based on communication module

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant