CN1617522A - Method for sending a ata of user mark after renewing - Google Patents
Method for sending a ata of user mark after renewing Download PDFInfo
- Publication number
- CN1617522A CN1617522A CN 200310113270 CN200310113270A CN1617522A CN 1617522 A CN1617522 A CN 1617522A CN 200310113270 CN200310113270 CN 200310113270 CN 200310113270 A CN200310113270 A CN 200310113270A CN 1617522 A CN1617522 A CN 1617522A
- Authority
- CN
- China
- Prior art keywords
- user equipment
- sign
- wireless
- casual
- tunnel gateway
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Abstract
This invention discloses a method for delivering data utilizing refreshed temporary user identification including: A certified authorization counting server refreshes a temporary user identification for a wireless user device and sends it to said user device via the tunnel transferring data, when the tunnel gate receives data identified by the refreshed temporary user identification, it judges if the identification is with its own identification of said wireless user device, if so, it forwards said data, otherwise, said data is discarded.
Description
Technical field
The present invention relates to WLAN (wireless local area network) and third generation partner program (WLAN-3GPP) network interworking technology, use the casual user after upgrading to identify the method that sends data under particularly a kind of WLAN-3GPP network interworking situation.
Background technology
Rise and development along with the WLAN technology, WLAN and wireless mobile communication network comprise that the fusion of networks such as global system for mobile communications (GSM), code division multiple access (CDMA), Wideband Code Division Multiple Access (WCDMA) (WCDMA), TD SDMA (TD-SCDMA) and CDMA 2000 is just becoming the emphasis of current research.Wherein, GSM, CDMA, WCDMA, TD-SCDMA have brought 3GPP into, and CDMA 2000 belongs to 3GPP2.
Although multiple different wireless access technology is arranged, most of WLAN is used for transmitting internet agreement (IP) packet data package.Its basic structure all is to utilize access point (AP) to finish the wireless access of user terminal, connects to form the IP transmission network by network control and connection device.
3GPP TS23.234 is defined as for WLAN-3GPP intercommunication scene 3: after subscriber equipment (UE) passes through the service authorization of 3GPP home network, carry out tunnel establishment procedure between UE and the PDG, store CAMEL-Subscription-Information, tunnel information and other relevant information of UE this moment in packet data gateway (PDG), this process is Mobile Origination (MO) process.
Referring to shown in Figure 1, the simplification schematic network structure under the non-roaming situation of WLAN and 3GPP network interworking scene 3.WLAN Access Network (WLAN Access Network) 102 directly is connected with external the Internet (Internet) or Intranet (Intranet) 104, and, UE 101 by WLAN Access Network 102 respectively with the 3GPP authentication and authorization charging server (AS of 3GPP home network (3GPP Home Network), 3GPP AAA Server) 103 are connected with WLAN (wireless local area network) IAD (WAG) 106, WAG 106 again with packet data gateway (PDG, Packet DataGateway) 105 by interface Wp connection, AS 103 links to each other with PDG 105 by the Wm interface, PDG 105 is connected to the packet data network (PDN, Packet Data Network) that belongs to the external network part by the Wi interface.Generally, when UE 101 hope directly insert Internet/Intranet 104 by WLAN Access Network 102, can be by the business of WAG 106 to 3GPP home network application intercommunication scene 2.If UE 101 also wishes to insert 3GPP packet switching (PS) territory business, by the WLAN-3GPP network insertion to PDN, can be further to the business of 3GPP home network application intercommunication scene 3.It is UE 101 initiates service authorization process request from intercommunication scene 3 to the AS 103 of 3GPP home network, 103 pairs of service request of the AS of 3GPP home network are carried out service authentication and mandate, if success, then AS 103 sends access grant message to the user, AS 103 distributes corresponding PDG 105 for UE 101, sets up the tunnel between the PDG 105 of UE 101 and distribution.And, the 107a/ of charging gateway (CGw) 107a/ charging information collecting system (CCF) Online Charging System (OCS) 107b is according to the network operating position recording gauge charge information of UE 101, the position of home signature user server (HSS) 108a/ attaching position register (HLR) 108b mark UE 101.The tunnel of setting up for non-roaming situation is UE-WLAN-PDG.At this moment, UE 101 just can insert 3GPP PS territory business, UE 101 can by and the tunnel of PDG 105 and belonging between the PDN of external network exchange visits, PDN comprises all packet data network beyond the mobile networks such as Internet, Intranet.
The WLAN Access Network is similar to non-roaming situation to the roaming condition in the 3GPP intercommunication scene 3, and it simplifies network configuration referring to shown in Figure 2.Under roaming condition, WLAN Access Network 102 links to each other with 3GPP home network (3GPP HomeNetwork) by 3GPP accesses network (3GPP Visited Network).WLAN Access Network 102 links to each other with wireless access gateway (WAG) 202 with UE 101,3GPP aaa server agency (AS Proxy) 201, Internet/Intranet 104.UE 101 can also by interface Wu directly and PDG 105 join.UE 101 can arrive Internet/Intranet 104 to 3GPP home network application intercommunication scene 2 service accesses by the WAG 202 of 3GPP accesses network.If UE 101 also wishes application intercommunication scene 3 business, be linked into 3GPPPS territory business, UE 101 needs to initiate the service authorization process by the 3GPP accesses network to the 3GPP home network, this process is carried out between the AS 103 of UE 101 and 3GPP home network equally, after authorizing successfully, AS 103 distributes corresponding ownership PDG 105 for UE 101, sets up the tunnel between the PDG 105 of UE 101 by WAG in the 3GPP accesses network 202 and distribution or directly and between the PDG that distributes sets up the tunnel.For roaming condition, the tunnel of being set up is UE-WLAN-WAG-PDG.At this moment, the 3GPP PS territory business that UE 101 can access belonging network.
International mobile subscriber identification (IMSI) sign and casual user's sign (ID) are set when WLAN UE is linked into 3GPP PS territory business, need for this WLAN UE, wherein, IMSI is set in advance and is guaranteed the uniqueness of IMSI sign WLAN UE by the operator of 3GPP network.Interim ID distributes generation by 3GPP AAA, and promptly 3GPP AAA derives interim ID according to certain algorithm from IMSI, and is guaranteed the uniqueness of interim ID by certain algorithm.3GPP AAA can adopt interim ID sign the user in verification process, 3GPP AAA determines according to corresponding algorithm whether this interim ID is legal, and verifies the uniqueness of interim ID.
When WLAN UE inserts 3GPP PS territory business by wlan network, WLAN UE and the pairing PDG of WLAN UE requested service set up the tunnel, and, disposed the legal interim ID of this WLAN UE correspondence of 3GPPAAA distribution among this PDG, WLAN UE sends data with interim ID identification data and by this tunnel to PDG, and whether PDG is that this WLAN UE sends out according to the interim ID identification check data that WLAN UE sends then.
Because interim ID is produced and is kept among the 3GPP AAA by 3GPP AAA, when because security reason and privacy concerns cause 3GPP AAA again WLAN UE to be authenticated and when upgrading interim ID, 3GPP AAA sends to this WLAN UE with new interim ID by authentication success (EAP) message.WLAN UE receives after the EAP message, WLAN UE will use new interim ID identification data, and the PDG that has set up the tunnel with UE still keeps the interim ID that this WLAN UE does not upgrade, cause the interim ID after PDG can't upgrade with this WLAN UE to discern the data that this WLAN UE transmits, thus the loss of data that causes this WLAN UE to transmit.
Summary of the invention
In view of this, main purpose of the present invention is to provide a kind of and uses the casual user after the renewal to identify the method that sends data, and this method can solve at WLAN UE to be upgraded interim ID and cause transmitting the problem of the tunnel obliterated data of data.
According to above-mentioned purpose, technical scheme of the present invention is achieved in that
A kind ofly use the casual user after the renewal to identify the method that sends data, this method comprises:
A, authentication and authorization charging server upgrade casual user's sign and this casual user's sign are sent to this wireless user equipment by the tunnel that transmits data to wireless user equipment;
B, when the tunnel gateway in this tunnel is received the data that the casual user's sign after upgrading with this wireless user equipment identified, this tunnel gateway judges that the casual user that this casual user identifies after this wireless user equipment that whether obtains with self upgrades identifies identical, if identical, this tunnel gateway is transmitted this data; Otherwise, abandon this data.
Described authentication and authorization charging server is the authentication and authorization charging server of third generation partner plannet.
The process that the described tunnel gateway of step B is obtained the casual user's sign after this wireless user equipment upgrades comprises:
B1, tunnel gateway are stored these data and are obtained casual user's sign of this data carry, and send the authentication request message that carries this casual user's sign to authentication and authorization charging service centre;
After this message is received by B2, authentication and authorization charging service centre, judge whether casual user's sign that this message is carried is the temporary mark after this wireless user equipment renewal, if, then send carry the temporary mark after this wireless user equipment upgrades authentication success message to this tunnel gateway, change step B3 over to; Otherwise, send authentification failure message to this tunnel gateway;
Casual user after B3, this tunnel gateway are upgraded according to the entrained wireless user equipment of this message identifies replacement in the original casual user's sign of self this set wireless user equipment.
The process that the described tunnel gateway of step B is obtained the casual user's sign after this wireless user equipment upgrades comprises:
Authentication and authorization charging server directly upgrades the process that the casual user of this wireless user equipment of tunnel gateway identifies upgrade casual user's sign to wireless user equipment after.
The process of casual user's sign of this wireless user equipment of described renewal tunnel gateway is:
Authentication and authorization charging service centre sends the update notification message of the casual user's sign carry after this wireless user equipment upgrades and the original casual user's sign of this wireless user equipment to the corresponding tunnel gateway;
After this tunnel gateway is received this message, according to the original casual user of this wireless user equipment who carries in this message identify determine the original casual user's sign of self this set wireless user equipment, the original casual user of this wireless user equipment that self is set identify casual user after upgrading with this wireless user equipment that carries in this message identify replace and storage update after the casual user identify.
Set in advance the correspondence table of original casual user's sign of wireless user equipment and tunnel gateway address in the described Certificate Authority service centre, this Certificate Authority service centre determines the corresponding tunnel gateway according to this correspondence table.
This method further comprises:
This tunnel gateway sends acknowledge message to Certificate Authority service centre after upgrading casual user's sign of this wireless user equipment.
Described tunnel gateway is the WLAN (wireless local area network) IAD in WLAN (wireless local area network) and third generation partner program intercommunication scene 2.
Described tunnel gateway is the packet data gateway in WLAN (wireless local area network) and third generation partner program intercommunication scene 3.
By such scheme as can be seen, method provided by the invention makes the interim ID after the tunnel gateway that transmits data can get access to corresponding WLAN UE renewal, make this tunnel gateway can discern the data that this WLAN UE transmits, thereby can make this tunnel gateway tunnel transmit the data of this WLAN UE transmitting-receiving according to the casual user ID after upgrading.Wherein, this tunnel gateway can be obtained the interim ID after corresponding WLAN UE upgrades on one's own initiative, promptly send authentication request message to 3GPP AAA, behind this 3GPPAAA return authentication success message, the original interim ID of this set WLAN UE of this tunnel gateway renewal self; Perhaps this tunnel gateway can be obtained the interim ID after corresponding WLAN UE upgrades passively, promptly send update notification message to this tunnel gateway by 3GPP AAA, this tunnel gateway is according to the original interim ID of this set WLAN UE of this update notification message renewal self.Therefore, method provided by the invention has solved and has upgraded interim ID at WLAN UE and cause transmitting the problem of the tunnel obliterated data of data.
Description of drawings
Fig. 1 is the simplification schematic network structure under the non-roaming situation of WLAN and 3GPP network interworking scene 3.
Fig. 2 is the simplification schematic network structure under the roaming condition of WLAN and 3GPP network interworking scene 3.
Fig. 3 identifies an embodiment flow chart that sends packet for the present invention uses the casual user after the renewal.
Fig. 4 identifies another embodiment flow chart that sends packet for the present invention uses the casual user after the renewal.
Embodiment
In order to make the purpose, technical solutions and advantages of the present invention clearer, by the following examples and with reference to accompanying drawing, the present invention is further described in detail.
The prerequisite of method provided by the invention is: WLAN UE and the pairing tunnel gateway of this WLAN UE requested service have been set up the tunnel, for example: WLAN UE and the pairing PDG of this WLAN UE requested service have set up the tunnel, and, in this tunnel gateway, disposed the interim ID of this WLAN UE correspondence that 3GPP AAA distributes.
Below be that the embodiment of PDG illustrates the present invention with the tunnel gateway.
As shown in Figure 3, Fig. 3 identifies an embodiment flow chart that sends packet for the present invention uses the casual user after the renewal, and its concrete steps are:
Similarly, when PDN sends data to WLAN UE by the PDG tunnel, still can use said method to solve the problem of PDG tunnel obliterated data, the direction that only sends data is sent to change into by PDN to corresponding PDN by WLAN UE and sends to corresponding WLAN UE.
As shown in Figure 4, Fig. 4 identifies another embodiment flow chart that sends packet for the present invention uses the casual user after the renewal, and its concrete steps are:
Step 400, after WLAN UE upgrades interim ID success, interim ID after preserving the original interim ID of WLAN UE, WLAN UE among the 3GPP AAA and upgrading and the correspondence table of PDG, corresponding relation 3GPP AAA according to original interim ID of the WLAN UE of this correspondence table and PDG sends the notification message that this WLAN UE upgrades interim ID to corresponding PDG, and this notification message comprises the interim ID after original interim ID of this WLAN UE and the renewal;
Step 401, after corresponding PDG receives this notification message, find interim ID according to the original interim ID of this WLAN UE in the notification message at this set WLAN UE of this PDG, interim ID after utilizing this WLAN UE in the notification message to upgrade replaces the interim ID of this WLAN UE that this PDG stores, and preserves the interim ID after this WLAN UE upgrades;
Step 402, when this WLAN UE carries the data of the interim ID after this WLAN UE upgrades by PDG tunnel transmitting-receiving, the interim ID of PDG tunnel after according to the renewal of this WLAN UE that is preserved verifies that these data are legal and transmits this data.
The described method of Fig. 4 can further include affirmation mechanism, interim ID after to be PDG with WLAN UE upgrade replaces the interim ID of this WLAN UE that this PDG stores, and after preserving interim ID after this WLAN UE upgrades, send this WLAN UE to 3GPP AAA and upgrade interim ID acknowledge message.
Tunnel gateway of the present invention not only can be the PDG of WLAN-3GPP intercommunication scene 3 regulations, can also be the WAG of WLAN-3GPP intercommunication scene 2 regulations, interim ID after promptly being upgraded according to WLAN UE by WAG verifies that this WLAN UE sends the legitimacy of Intranet/Internet data to: the interim ID after this WLAN UE of this data carry upgrades is identical with interim ID after this WLAN UE renewal of being stored in WAG, then these data are legal, transmit this data; Otherwise, do not transmit these data.
The above only is preferred embodiment of the present invention, not in order to restriction the present invention, all any modifications of being made within the spirit and principles in the present invention, is equal to and replaces and improvement etc., all should be included within protection scope of the present invention.
Claims (9)
1, a kind ofly use the casual user after the renewal to identify the method that sends data, it is characterized in that this method comprises:
A, authentication and authorization charging server upgrade casual user's sign and this casual user's sign are sent to this wireless user equipment by the tunnel that transmits data to wireless user equipment;
B, when the tunnel gateway in this tunnel is received the data that the casual user's sign after upgrading with this wireless user equipment identified, this tunnel gateway judges that the casual user that this casual user identifies after this wireless user equipment that whether obtains with self upgrades identifies identical, if identical, this tunnel gateway is transmitted this data; Otherwise, abandon this data.
2, the method for claim 1 is characterized in that, described authentication and authorization charging server is the authentication and authorization charging server of third generation partner plannet.
3, the method for claim 1 is characterized in that, the process that the described tunnel gateway of step B is obtained the casual user's sign after this wireless user equipment upgrades comprises:
B1, tunnel gateway are stored these data and are obtained casual user's sign of this data carry, and send the authentication request message that carries this casual user's sign to authentication and authorization charging service centre;
After this message is received by B2, authentication and authorization charging service centre, judge whether casual user's sign that this message is carried is the temporary mark after this wireless user equipment renewal, if, then send carry the temporary mark after this wireless user equipment upgrades authentication success message to this tunnel gateway, change step B3 over to; Otherwise, send authentification failure message to this tunnel gateway;
Casual user after B3, this tunnel gateway are upgraded according to the entrained wireless user equipment of this message identifies replacement in the original casual user's sign of self this set wireless user equipment.
4, the method for claim 1 is characterized in that, the process that the described tunnel gateway of step B is obtained the casual user's sign after this wireless user equipment upgrades comprises:
Authentication and authorization charging server directly upgrades the process that the casual user of this wireless user equipment of tunnel gateway identifies upgrade casual user's sign to wireless user equipment after.
5, method as claimed in claim 4 is characterized in that, the process of casual user's sign of this wireless user equipment of described renewal tunnel gateway is:
Authentication and authorization charging service centre sends the update notification message of the casual user's sign carry after this wireless user equipment upgrades and the original casual user's sign of this wireless user equipment to the corresponding tunnel gateway;
After this tunnel gateway is received this message, according to the original casual user of this wireless user equipment who carries in this message identify determine the original casual user's sign of self this set wireless user equipment, the original casual user of this wireless user equipment that self is set identify casual user after upgrading with this wireless user equipment that carries in this message identify replace and storage update after the casual user identify.
6, method as claimed in claim 5, it is characterized in that, set in advance the correspondence table of original casual user's sign of wireless user equipment and tunnel gateway address in the described Certificate Authority service centre, this Certificate Authority service centre determines the corresponding tunnel gateway according to this correspondence table.
7, method as claimed in claim 5 is characterized in that, this method further comprises:
This tunnel gateway sends acknowledge message to Certificate Authority service centre after upgrading casual user's sign of this wireless user equipment.
8, the method for claim 1 is characterized in that, described tunnel gateway is the WLAN (wireless local area network) IAD in WLAN (wireless local area network) and third generation partner program intercommunication scene 2.
9, the method for claim 1 is characterized in that, described tunnel gateway is the packet data gateway in WLAN (wireless local area network) and third generation partner program intercommunication scene 3.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2003101132705A CN100355251C (en) | 2003-11-10 | 2003-11-10 | Method for sending a ata of user mark after renewing |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2003101132705A CN100355251C (en) | 2003-11-10 | 2003-11-10 | Method for sending a ata of user mark after renewing |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1617522A true CN1617522A (en) | 2005-05-18 |
| CN100355251C CN100355251C (en) | 2007-12-12 |
Family
ID=34759871
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2003101132705A Expired - Fee Related CN100355251C (en) | 2003-11-10 | 2003-11-10 | Method for sending a ata of user mark after renewing |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100355251C (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN100414889C (en) * | 2005-12-29 | 2008-08-27 | 中山大学 | Intermediate system used for distinguishing and tracing user |
| CN101399853B (en) * | 2007-09-24 | 2010-12-08 | 中国移动通信集团公司 | Customer identification server, data service processing system and method |
| CN101459904B (en) * | 2008-06-17 | 2010-12-29 | 中兴通讯股份有限公司 | AAA server, P-GW, PCRF, obtaining method and system for customer equipment identification |
| CN101132262B (en) * | 2006-08-21 | 2011-04-20 | 大唐移动通信设备有限公司 | Method for implementing synchronous HARQ in TDD system and data transmission |
| CN101656963B (en) * | 2008-08-21 | 2012-07-11 | 财团法人工业技术研究院 | Method and system for managing network identities |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5920814A (en) * | 1997-04-30 | 1999-07-06 | Telefonaktiebolaget | System and method of managing temporary mobile station identity (TMSI) parameters in a radio telecommunications network |
| EP1317159A1 (en) * | 2001-11-30 | 2003-06-04 | Motorola, Inc. | Authentication, authorisation and accounting for a roaming user terminal |
-
2003
- 2003-11-10 CN CNB2003101132705A patent/CN100355251C/en not_active Expired - Fee Related
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN100414889C (en) * | 2005-12-29 | 2008-08-27 | 中山大学 | Intermediate system used for distinguishing and tracing user |
| CN101132262B (en) * | 2006-08-21 | 2011-04-20 | 大唐移动通信设备有限公司 | Method for implementing synchronous HARQ in TDD system and data transmission |
| CN101399853B (en) * | 2007-09-24 | 2010-12-08 | 中国移动通信集团公司 | Customer identification server, data service processing system and method |
| CN101459904B (en) * | 2008-06-17 | 2010-12-29 | 中兴通讯股份有限公司 | AAA server, P-GW, PCRF, obtaining method and system for customer equipment identification |
| CN101656963B (en) * | 2008-08-21 | 2012-07-11 | 财团法人工业技术研究院 | Method and system for managing network identities |
Also Published As
| Publication number | Publication date |
|---|---|
| CN100355251C (en) | 2007-12-12 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| JP4034729B2 (en) | Mobile internet communication apparatus and method | |
| US6769000B1 (en) | Unified directory services architecture for an IP mobility architecture framework | |
| JP4723158B2 (en) | Authentication methods in packet data networks | |
| CN1266891C (en) | Method for user cut-in authorization in wireless local net | |
| US7079499B1 (en) | Internet protocol mobility architecture framework | |
| KR101398908B1 (en) | Method and system for managing mobility in mobile telecommunication system using mobile ip | |
| CN1534921A (en) | Method of public authentication and authorization between independent netowrks | |
| CN1392703A (en) | Outer agent selection system and method for managing mobile internet protocol network | |
| CN1706167A (en) | Configuration of enterprise gateways | |
| EP1416673A1 (en) | Roaming service covering a plurality of telecommunication carriers in mobile data communication | |
| CN101401463A (en) | System and method for exchanging policy information in a roaming communications environment | |
| CN1649435A (en) | Method for realizing roaming user to visit network inner service | |
| CN101151849A (en) | Method for mobile node's connection to virtual private network using mobile IP | |
| CN1315302C (en) | Method of route inquiry under condition of wireless local area network and mobile network intercommunication | |
| US8521161B2 (en) | System and method for communications device and network component operation | |
| CN1795656A (en) | Secure traffic redirection in a mobile communication system | |
| CN1319344C (en) | Method for receiving external network data by target user equipment | |
| CN100346615C (en) | Method for receiving external network data by target user equipment | |
| CN100407815C (en) | Method for insertion point obtaining insertion gateway address in mobile communication network | |
| CN1617522A (en) | Method for sending a ata of user mark after renewing | |
| CN1642076A (en) | Method for obtaiing user identification by packet data gate for wireless LAN | |
| CN101031133B (en) | Method and apparatus for determining mobile-node home agent | |
| CN1845637A (en) | Mobile communication access system and method | |
| CN1604555A (en) | Method for implementing intercommunication between WLAN and GSM/GPRS system | |
| CN1780474A (en) | Method for pushing business parameters data according to roamer status |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20071212 Termination date: 20151110 |
|
| EXPY | Termination of patent right or utility model |