CN1870822A - Identification log-on method and device for access non IMS mobile terminal into IMS field - Google Patents
Identification log-on method and device for access non IMS mobile terminal into IMS field Download PDFInfo
- Publication number
- CN1870822A CN1870822A CNA200510109211XA CN200510109211A CN1870822A CN 1870822 A CN1870822 A CN 1870822A CN A200510109211X A CNA200510109211X A CN A200510109211XA CN 200510109211 A CN200510109211 A CN 200510109211A CN 1870822 A CN1870822 A CN 1870822A
- Authority
- CN
- China
- Prior art keywords
- ims
- authentication
- terminal
- user agent
- cscf
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Abstract
The invention discloses a log-on authentication method for a non-IMS mobile terminal access IMS domain including: a non-IMS mobile terminal user accesses mobile agent initiates registration request and receives the authentication random number from IMS domain by the access mobile user agent, carries out calculation on authentication according to the random number and then transmits the result to the IMS domain by the mobile access user agent for authentication. The invention also discloses a mobile access user agent device including: a first signaling process module, a signaling conversion module and a second signaling process module to interact between the non-IMS terminal and the IMS domain to realize format conversion between information from the IMS domain and non-IMS terminal supported information.
Description
Technical field
The present invention relates to the communications field, refer to that especially (IP MultimediaSubsystem, IMS) portable terminal inserts the identification log-on method and the device in IMS territory to a kind of non-IP multi-medium subsystem.
Background technology
At present, the IP Multimedia System network defines in standard agreement and adopts the AKAv1-MD5 algorithm that the user is carried out authentication, therefore, the service of using the IMS network to provide is provided the user, just must have IMS User Recognition (IMS Subscriber Identity Model, ISIM) card of supporting this algorithm.And because subscriber identification module (User Identity Module, UIM) card or SIM card are only supported traditional authentication arithmetic, and do not support the AKAv1-MD5 algorithm, and existing IMS network is not supported the cellular network authentication and voice encryption algorithm (the Cellular Authentication and VoiceEncryption of conventional terminal, CAVE), therefore, those use the user of UIM card or SIM card can't pass through the authentication in IMS territory.
In order to make the GPRS user that can only use SIM card can insert the IMS network, the IMS standard agreement that 3GPP formulates has defined the process (specifically referring to 3GPP agreement TR33.878) of a kind of Early IMS by name.It passes through giving travelling carriage (Mobile Station, MS) international mobile subscriber identity of IP address of Fen Peiing and MS (International Mobile Subscriber Identity, IMSI) or travelling carriage International ISDN sign indicating number (MSISDN) bind and realized only supporting the GPRS user of SIM card to insert the IMS network, as shown in Figure 1, detailed process is as follows:
A, MS initiate to insert request to GPRS network, have IMSI or MSISDN in the request message, and (Gateway GPRS Support Node GGSN) gives MS distributing user IP address to Gateway GPRS Support Node.
(Home Subscriber Server HSS), is preserved by HSS b, the GGSN Gi interface by a redetermination with the IMSI of IP address and corresponding MS or the home subscriber server of MSISDN notice IMS network.
C, MS are to service-call session control function (the Serving Call Session ControlFunction of IMS network, S-CSCF) initiate register requirement, the access IP address that has IMS private user identity (IMPI, IM Private Identity) and MS in the login request message.
IMPI is the parameter that MS self has, and login request message has this parameter.
D, S-CSCF inquire about corresponding with it IMSI or MSISDN according to the IMPI that receives to HSS, and then find corresponding IP address.
When MS opened an account, HSS preserved user's IMSI or MSISDN and IMPI, and set up the corresponding relation of IMSI or MSISDN and IMPI.
Whether the respective user IP address that the HSS that finds in the access IP address that e, S-CSCF judge the MS that carries in the login request message and the steps d preserves is consistent, if the judgement authentication succeeds in registration by, MS; Otherwise, judge that authentication is not passed through, the MS registration failure.
This IP address that uses simply is a kind of very elementary safety measure to the method that the user carries out the legitimacy judgement, in fact do not carry out any authentication arithmetic, illegal terminal if use with HSS in the identical IP address initiation register requirement of IP address of preserving, and in request message, have the IMPI corresponding with this IP address, just can insert the IMS network at an easy rate, can cause economic loss to the user who is palmed off like this; In addition, the access IP address of IMS network requirement MS is necessary for public network IP address, if private network IP address, the IMS network can carry out address transition to it so, and the address after the conversion is different with the access IP address of MS, and HSS searches corresponding relation and will fail like this, thereby MS registration failure, so this method requires to insert the IP address and is necessary for public network IP address, under existing IP address resource condition of limited, its application can be restricted.
Chinese patent application number is the patent application document of 02800578.3 (publication number is CN 1459170A), discloses a kind of the traditional circuit domain terminal to be linked into the network model in IMS territory, as shown in Figure 2.Label among Fig. 2 is that gateways and provide voice call traffic for circuit-domain network terminal and other adjacent network equipment with the conversion of IS-41 interface signal or translate into the IP signal in the middle of 230.Number in the figure is that 232 functional entity is the circuit network supporter, can handle and wireless access network between circuit domain signaling, for traditional mobile terminal provides mobile management, location management function etc.
The present invention provides a kind of method and apparatus that access non IMS mobile terminal into IMS field is carried out identification log with reference to the function that the circuit network supporter 232 in the above-mentioned network model is had.
Summary of the invention
The invention provides a kind of identification log-on method and device of access non IMS mobile terminal into IMS field, have authentication safety, the limited problem of registration failure and IP address when solving the access non IMS mobile terminal into IMS field that exists in the prior art.
The inventive method comprises: non-IMS portable terminal is initiated register requirement and is obtained the authentication random number that the IMS territory issues to the IMS territory by moving the access user agent;
Non-IMS portable terminal carries out the authentication computing according to described authentication random number, and sends operation result to the IMS territory by described mobile access user agent and carry out authentication.
According to said method of the present invention, comprise the steps:
A, described mobile access user agent initiate register requirement to the IMS territory;
Described authentication random number is carried to the authentication Indication message of described mobile access user agent transmission based on IMS in B, IMS territory;
C, described mobile access user agent send to described non-IMS terminal with the authentication request message that described authentication Indication message is converted to based on circuit-domain network, carry the authentication random number that obtains from the IMS territory in this authentication request message;
D, described non-IMS terminal are carried out the authentication computing according to the authentication random number of receiving, and the authenticating result that the authentication computing obtains are returned to described mobile access user agent;
E, described mobile access user agent send the authenticating result that the computing of described non-IMS terminal draws to the IMS territory;
F, described IMS territory compare authentication to authenticating result, and return authentication success or failed message to moving the access user agent.
According to said method of the present invention, the interaction message between described IMS territory and the described mobile access user agent is the session initiation protocol sip message.
According to said method of the present invention, described step e comprises: move to insert the user agent and initiate the SIP register requirement again to the IMS territory, the authenticating result parameter carry packing in this login request message after.
According to said method of the present invention, call for when asking when move inserting position updating request that the user agent receives that described non-IMS terminal is initiated or beginning, replace this non-IMS terminal to IMS territory initiation register requirement.
According to said method of the present invention, when described non-IMS starting up of terminal or roaming, initiate position updating request to described mobile access user agent; In location update request message, carry user totem information and represent that the user is in the updating type information of start or roaming state.
In the described steps A, after mobile access user agent receives location update request message, with header field and the parameter of the parameter maps in the location update request message in the SIP registration message, structure SIP registration message sends to the service-call session control function entity S-CSCF in the IMS territory;
Among the described step B, described S-CSCF detects in the registration message and does not contain authentication parameter, then the application of the home signature user server HSS in IMS territory authentication process desired parameters; Described HSS uses the authentication arithmetic of described non-IMS terminal support to calculate authentication parameter and return to S-CSCF; Described S-CSCF sends to described mobile access user agent with the authentication random number in the authentication parameter by the authentication Indication message;
In the described step e, the authenticating result that mobile access user agent draws the computing of described non-IMS terminal sends the S-CSCF in the IMS territory to;
In the described step F, the authenticating result in the authentication parameter that authenticating result that the computing of the more described non-IMS terminal of S-CSCF draws and HSS calculate, if consistent, then authentication success, otherwise, failed authentication.
According to said method of the present invention, in the described steps A, after move inserting the user agent and receiving location update request message, with header field and the parameter of the parameter maps in the location update request message in the SIP registration message, structure SIP registration message sends to the S-CSCF in the IMS territory;
Among the described step B, described S-CSCF detects in the registration message and does not contain authentication parameter, then the application of the HSS in IMS territory authentication process desired parameters; Described HSS by and circuit domain attaching position register HLR between interface apply for authentication parameter to HLR, described HLR uses the authentication arithmetic of described non-IMS terminal support to calculate authentication parameter and returns to S-CSCF by described HSS; Described S-CSCF sends to described mobile access user agent with the authentication random number in the authentication parameter by the authentication Indication message;
In the described step e, the authenticating result that mobile access user agent draws the computing of described non-IMS terminal sends the S-CSCF in the IMS territory to;
In the described step F, the authenticating result in the authentication parameter that authenticating result that the computing of the more described non-IMS terminal of S-CSCF draws and HSS calculate, if consistent, then authentication success, otherwise, failed authentication.
Described SIP parameter maps comprises: the IMSI International Mobile Subscriber Identity IMSI that IMS private user identity parameter is extended this as the user; IMS public subscriber identification parameter is extended this as user's IMSI or described mobile access user agent corresponding identification information.
The cellular network location district information that also comprises described non-IMS portable terminal place in the described SIP registration message.
The authentication arithmetic of described non-IMS terminal support is the CAVE algorithm.
According to said method of the present invention,, also comprise the following steps: if authentication is passed through
Described S-CSCF is to described HSS report authentication success and ask the download user data; Described HSS returns the registration notification response message to S-CSCF, carries the thin number MDN of mobile number of described non-IMS portable terminal;
Described S-CSCF sends and carries the response message that succeeds in registration of described MDN parameter to described mobile access user agent;
Described mobile access user agent is kept at this locality with described MDN, and upgrades acceptance response to described non-IMS portable terminal home position.
Another kind of the moving of the present invention inserted user agent's device, comprising: first signaling processing module, signaling transfer module and second signaling processing module;
Described first signaling processing module receives the access request message that non-IMS terminal is initiated, and sends described signaling transfer module to; The authentication request message that receives described signaling Switching Module transmission sends described non-IMS terminal to;
Described signaling transfer module is carried out the messaging protocol format conversion, and the access request message of initiating according to non-IMS terminal replaces described terminal to send IMS territory registration message to second signaling processing module; The authentication Indication message that the IMS territory is sent is converted to the authentication request message that non-IMS terminal is supported;
Described second signaling processing module sends registration message to the IMS territory; The authentication Indication message that receives the transmission of IMS territory sends described signaling transfer module to.
According to said apparatus of the present invention, also comprise the billing interface module, provide charge information to the IMS territory.
According to said apparatus of the present invention, also include the media resource control function module, the land circuit resource and the interoffice bearing resource of media resource, control wireless access network is provided.
Beneficial effect of the present invention is as follows:
(1) the invention provides a MAUA network entity, realize protocol conversion, replace non-IMS terminal to initiate register requirement to the IMS territory, simple realization is linked into the authentication and the registration in IMS territory to non-IMS portable terminal.
(2) in the inventive method by making HSS in the IMS territory support the authentication arithmetic of traditional mobile terminal (non-IMS portable terminal), or obtain authentication parameter alternately by HSS in the IMS territory and the HLR in the circuit domain and be handed down to non-IMS terminal, carry out the authentication computing by non-IMS terminal according to the authentication parameter (authentication random number) that issues, and authenticating result reported the IMS territory, compare authentication again by the IMS territory, guaranteed authentication reliability and succeed in registration.
(3) the inventive method does not need to use the IP address, does not have the limited problem of IP address resource.
Description of drawings
Fig. 1 is for only to support the GPRS user of SIM card to insert IMS flow through a network figure;
Fig. 2 is in the prior art being linked into the traditional circuit domain terminal network model in IMS territory;
Fig. 3 is a MAUA network entity illustrative view of functional configuration provided by the invention;
Fig. 4 is the related network entity networking diagram of the inventive method;
When starting shooting for the user, Fig. 5 initiates the signaling process figure that position updating request adopts the inventive method;
When roaming for the user, Fig. 6 initiates the signaling process figure that position updating request adopts the inventive method;
Fig. 7 initiates to begin to call for the signaling process figure that adopts the inventive method when asking for the user.
Embodiment
The invention provides a kind of mobile access user agent (Mobile Access User Agent, MAUA) network entity has following function:
Circuit domain signaling between processing and the wireless access network provides mobile management, location management function to roaming in the underground traditional mobile terminal (non-IMS terminal) of MAUA management visit;
As sip user agent, the underground traditional mobile terminal of visit that replaces roaming in the MAUA management carries out functions such as SIP registration and initiation/reception SIP session in the IMS territory;
To and wireless access network between circuit domain signaling and SIP signaling carry out bi-directional conversion, thereby finish the function that traditional mobile terminal is inserted the IMS territory;
Have the function that charge information is provided to the IMS territory, billing interface can be provided;
Under the situation that has media gateway to exist, land circuit resource and the interoffice bearing resource that can be safeguarded by consultative management media gateway H.248 to wireless access network; Under the situation that no media gateway exists, want and to control media resource function entity (Media Resource Function by Session Initiation Protocol, MRF) entity provides various media resources to terminal and network, can by strengthen and wireless access network between the online interoffice bearing resource of circuit domain signaling control wireless access; In concrete networking, this MAUA entity might with Proxy-Call Session Control Function entity (Proxy-Call Session Control Function, P-CSCF) close and establish, directly connect IMS territory interrogation-call session control function entity (Interrogating-CallSession Control Function, I-CSCF).
Referring to Fig. 3, be MAUA network entity illustrative view of functional configuration provided by the invention.Comprise: first signaling processing module, signaling transfer module and second signaling processing module, billing interface module and media resource control function module;
Described first signaling processing module receives the request message that non-IP multi-medium subsystem (IMS) terminal is initiated by wireless access network, sends described signaling transfer module to; The authentication request message that receives described signaling Switching Module transmission sends described non-IMS terminal to;
Described signaling transfer module is carried out the messaging protocol format conversion, and the request message that non-IMS terminal is initiated is converted to IMS territory registration message; The authentication Indication message that the IMS territory is sent is converted to the authentication request message that non-IMS terminal is supported;
Described second signaling processing module sends registration message to the IMS territory; The authentication Indication message that receives the transmission of IMS territory sends described signaling transfer module to.
Described billing interface module provides charge information to the IMS territory;
Described media resource control function module provides the land circuit resource and the interoffice bearing resource of media resource, control wireless access network.
Adopt MAUA provided by the invention, the networking structure of realizing traditional non-IMS terminal access to IMS territory comprises as shown in Figure 4:
The MAUA entity: concrete function as mentioned above;
CSCF:, comprise P-CSCF, I-CSCF and S-CSCF for controlling kernel entity in the IMS territory;
HSS: be the functional entity of storage user service data in the IMS territory; In the present invention, this HSS also supports the authentication arithmetic function (as supporting the CAVE authentication arithmetic) that non-IMS portable terminal has except storage user's business datum; Perhaps increase an interface between this HSS and the circuit domain HLR, remove HLR application authentication process desired parameters by this HSS;
HLR: be the attaching position register in the circuit domain, be used to store user's business datum; In the present invention, can carry out information interaction by the HSS in interface and the IMS territory; If the function of HLR and HSS is logically merged, as a functional entity, then the interface between HLR and the HSS is an internal interface in network.
With concrete signaling process the inventive method is described in detail below.
Referring to Fig. 5, initiate position updating request when starting shooting and adopt the signaling process figure of the inventive method to comprise for the user:
1, position updating request is initiated in user's start; Have user identification parameters and updating type parameter in the request message; Wherein user ID be IMSI International Mobile Subscriber Identity (International Mobile SubscriberIdentity, IMSI), the updating type assignment is " user's start ";
2, base station system (BS) is sent to MAUA with position updating request;
3, MAUA is with header field and the parameter of the parameter maps in the location update request message in the SIP registration message, and structure SIP registration message sends to the P-CSCF in the IMS territory; SIP registration message parameter comprises: IMS private user identity parameter (IMPI) extends this as user's IMSI; IMS public subscriber identification parameter (IMPU) can also extend this as user's IMSI, also can extend this as the pairing identification information of MAUA, registers by this MAUA agency to show the user; Can also fill in the cellular network location district information at user place in the registration message, to show user's geographical position; Do not contain authentication parameter in this registration message;
Following table is an instantiation of parameter in the location update request message and SIP registration parameter corresponding relation:
| SIP registers parameter | The position undated parameter |
| Request-URI (request message-unified resource positioning mark) | MSID (mobile terminal identification sign indicating number) |
| P-Access-Network-Info (proxy access network network information) | CELL ID, i.e. Location Area Identification |
| From, To (from, to) | MSID (mobile terminal identification sign indicating number) |
| Digest usemame parameter among the Authorization (the summary user name in the authentication) | MSID (mobile terminal identification sign indicating number) |
4, P-CSCF receives after the register requirement, finds user's home domain according to user IMSI section, this registration message is issued the I-CSCF in user attaching IMS territory;
5, I-CSCF obtains user's related S-CSCF address to HSS;
6, I-CSCF is transmitted to corresponding S-CSCF with registration message;
7, S-CSCF detects in the registration message and does not contain authentication parameter, then to HSS application authentication process desired parameters; HSS can pick out the user according to user's access style parameter (promptly going up the P-Access-Network-Info parameter in the table) and insert from traditional circuit domain, therefore selecting to carry out CAVE algorithm (or other non-IMS terminal support authentication arithmetic) calculates authentication parameter (perhaps HSS removes to apply for authentication parameter by the interface with circuit domain HLR to HLR, and concrete grammar can be a associated description in 200510006629.8 patent application documents referring to application number) and returns to S-CSCF; Main authentication parameter has: authentication random number, authenticating result etc.;
8, S-CSCF selects required authentication parameter from the authorization data that HSS returns, as authentication random number;
9, S-CSCF returns 401 Unauthorized (non-authentication) response message and gives I-CSCF, comprises authentication random number (not comprising the CK/IK parameter in the common IMS authentication process, because the CAVE algorithm can't draw these parameters) in the message;
10, I-CSCF is transmitted to P-CSCF with 401 Unauthorized response messages;
11, P/I-CSCF is transmitted to MAUA with 401 Unauthorized response messages;
12, MAUA receives after the 401 Unauthorized response messages, and the structure authentication request message sends to the wireless access network under the user, carries the authentication random number that 401 Unauthorized response messages bring in this authentication request message; Described authentication request message is the authentication request message that non-IMS terminal can be discerned, and can be based on CDMA MAP (Mobile Application Part; MAP) the authentication Indication message of signaling (Authentication Directive) also can be based on CDMA IOS (Interoperability Specification; The interoperability standard) the unique challenge request message (UniqueChallenge) of signaling;
13, wireless access network is transmitted to non-IMS user terminal with the authentication request message that receives and requires to carry out authentication;
14, non-IMS user terminal is received after the authentication request message, utilizes the authentication random number of receiving to carry out the authentication computing, and the authenticating result that calculates is taken back to BS by authentication response message;
15, BS sends to MAUA with the authentication response message of receiving;
16, MAUA receives after the authentication response message, initiates the SIP registration to P-CSCF once more, has the authenticating result parameter in this registration message;
17, P-CSCF transmits the registration message that has authenticating result and gives I-CSCF;
18, I-CSCF obtains user's related S-CSCF address to HSS;
19, I-CSCF is transmitted to corresponding S-CSCF with registration message;
20, S-CSCF receives after the registration message that has authenticating result, and the authenticating result that authenticating result and HSS (or circuit domain HLR) are calculated compares, if conform to then authentication is passed through;
21, after authentication is passed through, S-CSCF will go HSS report authentication to pass through and the download user data; HSS need carry user's mobile number thin number (Mobile Directory Number, MDN) data in return messages;
22, S-CSCF sends the 200OK response to I-CSCF, has user's MDN parameter in the response;
23, I-CSCF transmits described 200OK response to P-CSCF;
24, P/I-CSCF passes to MAUA with the 200OK response;
25, MAUA receives after the 200OK response, upgrades acceptance response for non-IMS portable terminal home position, simultaneously the MDN data of receiving is kept at the user data that oneself keeps and concentrates;
26, non-IMS portable terminal is received that the position is upgraded and is accepted message, and the register and authentication process all finishes.
Initiate the signaling process figure that position updating request adopts the inventive method when Fig. 6 roams for the user, as shown in the figure, its concrete signaling and Fig. 5 are basic identical; Difference is: in the location update request message that non-IMS terminal is initiated, the updating type parameter assignment of carrying is " user's roaming "; Concrete signaling process no longer repeats.
Fig. 7 comprises following concrete steps for the user initiates to begin to call for the signaling process figure that adopts the inventive method when asking:
1, non-IMS terminal is initiated to begin to exhale in circuit domain, carries user totem information (as IMSI);
2, the affiliated BS of terminal calls for the beginning and asks forwards to give MAUA;
3-24, with Fig. 5 in step 3 identical to step 24, do not repeat;
25, MAUA initiates SIP INVITE request to the IMS territory, and call proceeding is carried out in request;
26, non-IMS terminal realizes call proceeding in the IMS territory.
In sum, the invention provides a MAUA network entity, realize protocol conversion, replace non-IMS terminal to initiate register requirement to the IMS territory, simple realization is linked into the authentication and the registration in IMS territory to non-IMS portable terminal.
In the inventive method by making HSS in the IMS territory support the authentication arithmetic of traditional mobile terminal, or obtain authentication parameter alternately by HSS in the IMS territory and the HLR in the circuit domain and be handed down to non-IMS terminal, carry out the authentication computing by non-IMS terminal according to the authentication parameter (authentication random number) that issues, and authenticating result reported the IMS territory, compare authentication again by the IMS territory, guaranteed authentication reliability and succeed in registration.
Those skilled in the art can carry out various changes and modification to the present invention and not break away from the spirit and scope of the present invention.Like this, if of the present invention these are revised and modification belongs within the scope of claim of the present invention and equivalent technologies thereof, then the present invention also is intended to comprise these changes and modification interior.
Claims (15)
1, a kind of identification log-on method of access non IMS mobile terminal into IMS field is characterized in that comprising:
Non-IMS portable terminal is initiated register requirement and is obtained the authentication random number that the IMS territory issues to the IMS territory by moving the access user agent;
Non-IMS portable terminal carries out the authentication computing according to described authentication random number, and sends operation result to the IMS territory by described mobile access user agent and carry out authentication.
2, the method for claim 1 is characterized in that comprising the steps:
A, described mobile access user agent initiate register requirement to the IMS territory;
Described authentication random number is carried to the authentication Indication message of described mobile access user agent transmission based on IMS in B, IMS territory;
C, described mobile access user agent send to described non-IMS terminal with the authentication request message that described authentication Indication message is converted to based on circuit-domain network, carry the authentication random number that obtains from the IMS territory in this authentication request message;
D, described non-IMS terminal are carried out the authentication computing according to the authentication random number of receiving, and the authenticating result that the authentication computing obtains are returned to described mobile access user agent;
E, described mobile access user agent send the authenticating result that the computing of described non-IMS terminal draws to the IMS territory;
F, described IMS territory compare authentication to authenticating result, and return authentication success or failed message to moving the access user agent.
3, method as claimed in claim 2 is characterized in that, the interaction message between described IMS territory and the described mobile access user agent is the session initiation protocol sip message.
4, method as claimed in claim 2 is characterized in that, described step e comprises: move to insert the user agent and initiate the SIP register requirement again to the IMS territory, the authenticating result parameter carry packing in this login request message after.
5, method as claimed in claim 2 is characterized in that, calls for when asking when move inserting position updating request that the user agent receives that described non-IMS terminal is initiated or beginning, replaces this non-IMS terminal to IMS territory initiation register requirement.
6, method as claimed in claim 5 is characterized in that, when described non-IMS starting up of terminal or roaming, initiates position updating request to described mobile access user agent; In location update request message, carry user totem information and represent that the user is in the updating type information of start or roaming state.
7, method as claimed in claim 6, it is characterized in that, in the described steps A, after mobile access user agent receives location update request message, with header field and the parameter of the parameter maps in the location update request message in the SIP registration message, structure SIP registration message sends to the service-call session control function entity S-CSCF in the IMS territory;
Among the described step B, described S-CSCF detects in the registration message and does not contain authentication parameter, then the application of the home signature user server HSS in IMS territory authentication process desired parameters; Described HSS uses the authentication arithmetic of described non-IMS terminal support to calculate authentication parameter and return to S-CSCF; Described S-CSCF sends to described mobile access user agent with the authentication random number in the authentication parameter by the authentication Indication message;
In the described step e, the authenticating result that mobile access user agent draws the computing of described non-IMS terminal sends the S-CSCF in the IMS territory to;
In the described step F, the authenticating result in the authentication parameter that authenticating result that the computing of the more described non-IMS terminal of S-CSCF draws and HSS calculate, if consistent, then authentication success, otherwise, failed authentication.
8, method as claimed in claim 6, it is characterized in that, in the described steps A, after mobile access user agent receives location update request message, with header field and the parameter of the parameter maps in the location update request message in the SIP registration message, structure SIP registration message sends to the S-CSCF in the IMS territory;
Among the described step B, described S-CSCF detects in the registration message and does not contain authentication parameter, then the application of the HSS in IMS territory authentication process desired parameters; Described HSS by and circuit domain attaching position register HLR between interface apply for authentication parameter to HLR, described HLR uses the authentication arithmetic of described non-IMS terminal support to calculate authentication parameter and returns to S-CSCF by described HSS; Described S-CSCF sends to described mobile access user agent with the authentication random number in the authentication parameter by the authentication Indication message;
In the described step e, the authenticating result that mobile access user agent draws the computing of described non-IMS terminal sends the S-CSCF in the IMS territory to;
In the described step F, the authenticating result in the authentication parameter that authenticating result that the computing of the more described non-IMS terminal of S-CSCF draws and HSS calculate, if consistent, then authentication success, otherwise, failed authentication.
As claim 7 or 8 described methods, it is characterized in that 9, described SIP parameter maps comprises: the IMSI International Mobile Subscriber Identity IMSI that IMS private user identity parameter is extended this as the user; IMS public subscriber identification parameter is extended this as user's IMSI or described mobile access user agent corresponding identification information.
10, method as claimed in claim 9 is characterized in that, also comprises the cellular network location district information at described non-IMS portable terminal place in the described SIP registration message.
As claim 7 or 8 described methods, it is characterized in that 11, the authentication arithmetic of described non-IMS terminal support is the CAVE algorithm.
12, as claim 7 or 8 described methods, it is characterized in that,, also comprise the following steps: if authentication is passed through
Described S-CSCF is to described HSS report authentication success and ask the download user data; Described HSS returns the registration notification response message to S-CSCF, carries the thin number MDN of mobile number of described non-IMS portable terminal;
Described S-CSCF sends and carries the response message that succeeds in registration of described MDN parameter to described mobile access user agent;
Described mobile access user agent is kept at this locality with described MDN, and upgrades acceptance response to described non-IMS portable terminal home position.
13, a kind of mobile access user agent device is characterized in that, comprising: first signaling processing module, signaling transfer module and second signaling processing module;
Described first signaling processing module receives the access request message that non-IMS terminal is initiated, and sends described signaling transfer module to; The authentication request message that receives described signaling Switching Module transmission sends described non-IMS terminal to;
Described signaling transfer module is carried out the messaging protocol format conversion, and the access request message of initiating according to non-IMS terminal replaces described terminal to send IMS territory registration message to second signaling processing module; The authentication Indication message that the IMS territory is sent is converted to the authentication request message that non-IMS terminal is supported;
Described second signaling processing module sends registration message to the IMS territory; The authentication Indication message that receives the transmission of IMS territory sends described signaling transfer module to.
14, device as claimed in claim 13 is characterized in that, also comprises the billing interface module, provides charge information to the IMS territory.
15, device as claimed in claim 14 is characterized in that, also includes the media resource control function module, and the land circuit resource and the interoffice bearing resource of media resource, control wireless access network is provided.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB200510109211XA CN100428718C (en) | 2005-10-19 | 2005-10-19 | Identification log-on method and device for access non IMS mobile terminal into IMS field |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB200510109211XA CN100428718C (en) | 2005-10-19 | 2005-10-19 | Identification log-on method and device for access non IMS mobile terminal into IMS field |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1870822A true CN1870822A (en) | 2006-11-29 |
| CN100428718C CN100428718C (en) | 2008-10-22 |
Family
ID=37444354
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB200510109211XA Expired - Fee Related CN100428718C (en) | 2005-10-19 | 2005-10-19 | Identification log-on method and device for access non IMS mobile terminal into IMS field |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100428718C (en) |
Cited By (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101217704B (en) * | 2008-01-15 | 2010-09-29 | 中兴通讯股份有限公司 | An updating method of user information of authentication authorized charging system |
| CN101267323B (en) * | 2007-03-16 | 2010-12-29 | 中兴通讯股份有限公司 | A REFER message extension implementation method for IMS terminal |
| CN102056288A (en) * | 2009-11-04 | 2011-05-11 | 中国移动通信集团公司 | IMS access method and equipment |
| CN102082769A (en) * | 2009-11-26 | 2011-06-01 | 中国移动通信集团公司 | System, devices and method for authenticating IMS (IP multimedia subsystem) terminal during obtaining non-IMS services |
| WO2011063612A1 (en) * | 2009-11-26 | 2011-06-03 | 中国移动通信集团公司 | Authentication system, method and device |
| CN102111379A (en) * | 2009-12-24 | 2011-06-29 | 中国移动通信集团公司 | Authentication system, method and device |
| CN101119530B (en) * | 2007-09-14 | 2012-05-16 | 中兴通讯股份有限公司 | Non-IMS centralized service user facility login and logout implementing method |
| CN105636034A (en) * | 2014-10-30 | 2016-06-01 | 南京悠信网络科技有限公司 | Authentication method and device for user equipment |
| CN106027514A (en) * | 2016-05-16 | 2016-10-12 | 中国联合网络通信集团有限公司 | Service realization method and device |
| CN106790055A (en) * | 2016-12-20 | 2017-05-31 | 国网天津市电力公司 | A kind of register method and device of IMS systems |
| WO2017206391A1 (en) * | 2016-06-03 | 2017-12-07 | 中兴通讯股份有限公司 | Method and device for mobile terminal to access ip multimedia subsystem |
| CN108012266A (en) * | 2016-10-31 | 2018-05-08 | 华为技术有限公司 | A kind of data transmission method and relevant device |
| CN109962878A (en) * | 2017-12-14 | 2019-07-02 | 大唐移动通信设备有限公司 | A kind of register method and device of IMS user |
| CN112953718A (en) * | 2019-11-26 | 2021-06-11 | 中国移动通信集团安徽有限公司 | Authentication method and device for IMS network user and call session control function entity |
Family Cites Families (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR100369803B1 (en) * | 2001-03-10 | 2003-02-05 | 삼성전자 주식회사 | Packet voice call service method in wireless telecommunication network and network architecture therefor |
| US6871070B2 (en) * | 2001-07-31 | 2005-03-22 | Lucent Technologies Inc. | Communication system for providing roaming between an internet protocol multimedia system and a circuit-switched domain |
| CN1260927C (en) * | 2002-11-26 | 2006-06-21 | 华为技术有限公司 | IP network system for realizing safety verification and method thereof |
| EP1658746B1 (en) * | 2003-08-26 | 2012-06-06 | TELEFONAKTIEBOLAGET LM ERICSSON (publ) | Apparatus and method for authenticating a user when accessing to multimedia services |
| US20070204050A1 (en) * | 2003-09-18 | 2007-08-30 | Sheng Liu | Method Of Radio Access Bearer For Ip Multimedia Session In Umts Network |
-
2005
- 2005-10-19 CN CNB200510109211XA patent/CN100428718C/en not_active Expired - Fee Related
Cited By (20)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101267323B (en) * | 2007-03-16 | 2010-12-29 | 中兴通讯股份有限公司 | A REFER message extension implementation method for IMS terminal |
| CN101119530B (en) * | 2007-09-14 | 2012-05-16 | 中兴通讯股份有限公司 | Non-IMS centralized service user facility login and logout implementing method |
| CN101217704B (en) * | 2008-01-15 | 2010-09-29 | 中兴通讯股份有限公司 | An updating method of user information of authentication authorized charging system |
| CN102056288A (en) * | 2009-11-04 | 2011-05-11 | 中国移动通信集团公司 | IMS access method and equipment |
| RU2541172C2 (en) * | 2009-11-26 | 2015-02-10 | Чайна Мобайл Коммуникейшенс Корпорейшн | Authentication system, method and device |
| CN102082769A (en) * | 2009-11-26 | 2011-06-01 | 中国移动通信集团公司 | System, devices and method for authenticating IMS (IP multimedia subsystem) terminal during obtaining non-IMS services |
| WO2011063612A1 (en) * | 2009-11-26 | 2011-06-03 | 中国移动通信集团公司 | Authentication system, method and device |
| US8959343B2 (en) | 2009-11-26 | 2015-02-17 | China Mobile Communications Corporation | Authentication system, method and device |
| CN102082769B (en) * | 2009-11-26 | 2013-10-23 | 中国移动通信集团公司 | System, devices and method for authenticating IMS (IP multimedia subsystem) terminal during obtaining non-IMS services |
| CN102111379A (en) * | 2009-12-24 | 2011-06-29 | 中国移动通信集团公司 | Authentication system, method and device |
| CN102111379B (en) * | 2009-12-24 | 2013-07-17 | 中国移动通信集团公司 | Authentication system, method and device |
| CN105636034A (en) * | 2014-10-30 | 2016-06-01 | 南京悠信网络科技有限公司 | Authentication method and device for user equipment |
| CN106027514A (en) * | 2016-05-16 | 2016-10-12 | 中国联合网络通信集团有限公司 | Service realization method and device |
| CN106027514B (en) * | 2016-05-16 | 2019-07-02 | 中国联合网络通信集团有限公司 | A kind of service implementation method and device |
| WO2017206391A1 (en) * | 2016-06-03 | 2017-12-07 | 中兴通讯股份有限公司 | Method and device for mobile terminal to access ip multimedia subsystem |
| CN108012266A (en) * | 2016-10-31 | 2018-05-08 | 华为技术有限公司 | A kind of data transmission method and relevant device |
| CN106790055A (en) * | 2016-12-20 | 2017-05-31 | 国网天津市电力公司 | A kind of register method and device of IMS systems |
| CN109962878A (en) * | 2017-12-14 | 2019-07-02 | 大唐移动通信设备有限公司 | A kind of register method and device of IMS user |
| US11381607B2 (en) | 2017-12-14 | 2022-07-05 | Datang Mobile Communications Equipment Co., Ltd. | IMS user registration method and device |
| CN112953718A (en) * | 2019-11-26 | 2021-06-11 | 中国移动通信集团安徽有限公司 | Authentication method and device for IMS network user and call session control function entity |
Also Published As
| Publication number | Publication date |
|---|---|
| CN100428718C (en) | 2008-10-22 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1870822A (en) | Identification log-on method and device for access non IMS mobile terminal into IMS field | |
| CN1842084A (en) | Method for realizing terminal ability interaction and route control when IMS and CS service concurrence | |
| CN1906957A (en) | User plane location based service using message tunneling to support roaming | |
| EP1909451B1 (en) | Method and apparatuses for managing Call Continuity in IMS network environment using SIP messaging | |
| CN101040556A (en) | Callback services in a communication system | |
| CN101401476B (en) | Access control in a communication network | |
| CN1852323A (en) | Treatment of correlative information of user access in a core network subsystem | |
| US20110211525A1 (en) | Session transfer between different access network types | |
| US20110032923A1 (en) | Mobile switching center platform having interfaces with functionalities defined by an architecture that provides packet-switched multimedia subscriber services | |
| CN1838610A (en) | Method for realizing user registration in internet protocol multimedia subsystem | |
| CN1794829A (en) | Method of establishing circuit exchange network to IMS network calling route | |
| CN1878343A (en) | Called service route selecting method | |
| CN1893391A (en) | Method for supplying network layer to safety pass through network address conversion | |
| CN1801706A (en) | Network authentication system and method for IP multimedia subsystem | |
| CN1655546A (en) | Method for abating interface loads of Home Subscriber Servers (HSS) | |
| CN101043526A (en) | Method, apparatus and system for processing message in IMS network | |
| CN1941739A (en) | Method and system for allocating and using user mark | |
| US8078180B2 (en) | Subscriber server system for a cellular communication system | |
| CN1874598A (en) | Device, system and method of authenticating when terminal to access second system network | |
| EP2520067B1 (en) | Method for providing ip services to a user of a public network | |
| US9060005B2 (en) | Method, apparatus, system and related computer program product for handover management | |
| CN1756428A (en) | Method for carrying out authentication for terminal user identification module in IP multimedia subsystem | |
| CN1838649A (en) | Building method for calling route from circuit switching network to IMS network | |
| CN101052054A (en) | Method for keeping PS domain and IMS domain IP address cancel consistency | |
| CN1870635A (en) | Service quality authorization method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C17 | Cessation of patent right | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20081022 Termination date: 20121019 |