CN1960300A - Method and system of access registration in intercommunicated wireless local area network - Google Patents
Method and system of access registration in intercommunicated wireless local area network Download PDFInfo
- Publication number
- CN1960300A CN1960300A CN 200510117164 CN200510117164A CN1960300A CN 1960300 A CN1960300 A CN 1960300A CN 200510117164 CN200510117164 CN 200510117164 CN 200510117164 A CN200510117164 A CN 200510117164A CN 1960300 A CN1960300 A CN 1960300A
- Authority
- CN
- China
- Prior art keywords
- user
- certificate authority
- server
- aaa server
- wlan
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention provides authentication and authorization for users through 3GPP AAA server, and provides registration for user through users' database. The method comprises: a) user initiates a request of establishing tunnel connection to network side and establishes the tunnel connection; b) 3GPP AAA server decides if the registration process of said user is need to be triggered; if yes, entering into step C; otherwise, ending the process; c) 3GG AAA server initiates a registration request to user database, and makes registration for the user. In the invention, the user database can get the current state of user in time.
Description
Technical field
The present invention relates to the communications field, relate in particular to the method and system of access registration in a kind of intercommunicated wireless local area network.
Background technology
In wireless communication field, because the user is more and more higher to the requirement of wireless access rate, WLAN (wireless local area network) (WLAN, Wireless Local Area Network) is arisen at the historic moment, and it can provide wireless data access at a high speed in more among a small circle.WLAN (wireless local area network) comprises multiple different technologies, a widely used technical standard is IEEE 802.11b at present, it adopts the 2.4GHz frequency range, the maximum data transmission rate can reach 11Mbps, use the IEEE 802.11g and bluetooth (Bluetooth) technology in addition of this frequency range, wherein, 802.11g the maximum data transmission rate can reach 54Mbps.Other new technology such as IEEE 802.11a and ETSI BRANHiperlan2 use the 5GHz frequency range, and maximum transmission rate also can reach 54Mbps.
Although multiple different wireless access technology is arranged, most of WLAN is used for transmitting internet agreement (IP) packet data package.For a Wireless IP network, its concrete WLAN access technology that adopts generally is transparent for the IP on upper strata.Its basic structure all is to utilize access point (AP) to finish the wireless access of user terminal, connects to form the IP transmission network by network control and connection device.
Rise and development along with the WLAN technology, WLAN and various wireless mobile communication network, such as: the intercommunication of global system for mobile communications (GSM), code division multiple access (CDMA) system, Wideband Code Division Multiple Access (WCDMA) (WCDMA) system, time division duplex-S-CDMA (TD-SCDMA) system, CDMA2000 system is just becoming the emphasis of current research.In third generation partner program (3GPP) standardization body, user terminal can link to each other with internet (Internet), Intranet (Intranet) by the access network of WLAN, can also be connected with the home network of 3GPP system or the accesses network of 3GPP system via the WLAN access network, specifically be exactly, when the WLAN user terminal inserts in this locality, link to each other with the home network of 3GPP via the WLAN access network; When roaming, link to each other with the accesses network of 3GPP via the WLAN access network, part entity in the 3GPP accesses network respectively with the 3GPP home network in corresponding entity interconnection, such as 3GPP Certificate Authority and charging (AAA) server in the 3GPP Certificate Authority in the 3GPP accesses network and charging (AAA) agency and the 3GPP home network; WLAN (wireless local area network) IAD in the 3GPP accesses network (WLAN Access Gateway, WAG) with the 3GPP home network in packet data gateway (Packet Data Gateway, PDG) etc.Intercommunicating system structure chart such as Fig. 1 are shown in 2,3.Wherein, Fig. 1 is non-roaming condition intercommunicating system structure chart, and Fig. 2 is a roaming condition intercommunicating system structure chart, and Fig. 3 is another kind of roaming condition intercommunicating system structure chart.The principle of above-mentioned network configuration and concrete communication process are general technology, are not described in detail in this.
The intercommunicated wireless local area network structure of 3GPP definition provides WLAN 3GPP IP to insert.Relevant programme is referring to 3GPP TS 23.234: " 3GPP system to Wireless Local Area Network (WLAN) interworking; System description " (calling [1] in the following text).The user inserts the PDG of 3GPP core net by WLAN AN, inserts the business in outer net or 3GPP PS territory by PDG.But in this scheme, when the user after certain 3GPPAAA Server finishes authentication and authorization first, there is not registration scenarios corresponding to this user, can't be with user's sign, with the identification record of current 3GPP AAA Server for user service in home subscriber server HSS/ attaching position register HLR, cause HSS/HLR can't in time know the state that the user is current, and be the sign of the 3GPP AAA Server of user service.This will bring certain influence to wireless network management undoubtedly.
Summary of the invention
Purpose of the present invention just provides the method and system of access registration in a kind of intercommunicated wireless local area network, in order to what exist in the solution prior art, when the user after certain 3GPP AAA Server finishes authentication and authorization, there is not registration scenarios corresponding to this user, cause HSS/HLR can't in time know the state that the user is current, and be the problem of the sign of the 3GPP AAA Server of user service.
For this reason, the present invention adopts following technical scheme:
The inventive method comprises:
The method of access registration in a kind of intercommunicated wireless local area network, described WLAN (wireless local area network) provides authentication, authorizes for the user by Certificate Authority and accounting server AAA Server,, it is characterized in that for described user provides registration by customer data base, may further comprise the steps:
A, user initiate the tunnel request of connecting to network side, and set up the tunnel connection;
B, Certificate Authority and accounting server AAA Server judge whether to need to trigger described user's register flow path, if, enter step C, otherwise process ends;
C, Certificate Authority and accounting server AAA Server initiate register requirement to customer data base, and described user is registered.
Among the described step B, described trigger condition comprises one of following content or combination:
The user authenticates, authorizes by WLAN (wireless local area network) third generation partner program WLAN 3GPP IP access procedure at this Certificate Authority and accounting server for the first time;
The user passes through authentication, authorizes at this Certificate Authority and accounting server at every turn;
The user passes through authentication, authorizes at this Certificate Authority and accounting server every certain number of times;
The user periodically initiates the re-authentication process;
The WLAN (wireless local area network) Access Network WLANAN that the user inserts, or variation has taken place in Public Land Mobile Nerwork PLMN;
The condition that operator is provided with.
Among the described step C, described user being registered, is that described user profile and the Certificate Authority and the accounting server AAA Server information of serving described user are registered in described customer data base.
Among the described step C, described user profile comprises one of following content or combination:
User ID;
Customer location;
The WLAN (wireless local area network) Access Network WLANAN sign that the user inserts;
Public Land Mobile Nerwork PLMN sign;
WLAN (wireless local area network) IAD WAG sign;
Packet data gateway PDG sign.
Among the described step C, described Certificate Authority and accounting server AAAServer information of serving described user is the Certificate Authority and the accounting server AAA Server sign of serving described user.
Described customer data base is attaching position register or home subscriber server.
Described method also comprises step D, and customer data base sends registration reply message to Certificate Authority and accounting server AAAServer.
Described Certificate Authority and accounting server AAA Server are third generation partner program Certificate Authority and accounting server 3GPP AAA Server.
System of the present invention comprises:
The system of access registration in a kind of intercommunicated wireless local area network, described WLAN (wireless local area network) provides authentication, authorizes for the user by Certificate Authority and accounting server AAA Server, provide registration by customer data base for described user, it is characterized in that described Certificate Authority and accounting server AAA Server are provided with:
The register flow path trigger element stores registration trigger condition information, be used to judge that described user tunnel connects after, whether need to trigger register flow path;
The register requirement transmitting element is used to receive the triggering signal that described register flow path trigger element sends, and sends register requirement to customer data base.
Described customer data base is provided with registering unit, is used to described user to register.
Described customer data base also is provided with the registration reply unit, is used for sending registration reply message to described Certificate Authority and accounting server AAA Server.
Described customer data base is home subscriber server HSS or attaching position register HLR.
Described Certificate Authority and accounting server AAA Server are third generation partner program Certificate Authority and accounting server 3GPP AAA Server.
Among the present invention program, when the user after certain 3GPPAAA Server finishes authentication and authorization first, in time initiate registration scenarios corresponding to this user, information with the user, be registered in customer data base with the information of current 3GPPAAA Server for user service, make customer data base in time know the state that the user is current, and be the information of the 3GPP AAA Server of user service, for wireless network management has brought facility.
Description of drawings
Fig. 1 is the system configuration schematic diagram of non-roaming situation intercommunication in the prior art;
Fig. 2 is the system configuration schematic diagram of roaming condition intercommunication in the prior art;
Fig. 3 is the system configuration schematic diagram of another roaming condition intercommunication in the prior art;
Fig. 4 is a system configuration schematic diagram of the present invention;
Fig. 5 is a schematic flow sheet of the present invention;
Fig. 6 is another schematic flow sheet of the present invention.
Embodiment
Below in conjunction with Figure of description the specific embodiment of the present invention is described.
As shown in Figure 4, be system configuration schematic diagram of the present invention, as seen from the figure, this system comprises Certificate Authority and accounting server AAA Server, and customer data base.
Described WLAN (wireless local area network) for the user provides authentication, authorizes, provides registration by customer data base for described user by Certificate Authority and accounting server AAA Server.
Among the present invention program, be provided with at described AAA Server:
The register flow path trigger element stores registration trigger condition information, be used to judge that described user tunnel connects after, whether need to trigger register flow path;
The register requirement transmitting element is used to receive the triggering signal that described register flow path trigger element sends, and sends register requirement to customer data base.
In the such scheme, described customer data base is provided with registering unit, is used to described user to register.
In the such scheme, described customer data base also is provided with the registration reply unit, is used for sending registration reply message to described AAA Server.
In the such scheme, described customer data base is home subscriber server HSS or attaching position register HLR.
In the such scheme, described AAA Server can be set to 3GPP AAA Server.
As shown in Figure 5, be schematic flow sheet of the present invention, as seen from the figure, the present invention mainly may further comprise the steps:
S1, user initiate the tunnel request of setting up and finish tunnel establishment procedure.
Among the step S1, the user initiates the tunnel by terminal and sets up request, and this tunnel establishment procedure can be with reference to the scheme in [1], and this tunnel establishment procedure can comprise W-APN parsing, authentification of user, mandate etc.
S2, AAA Server judge whether to need to trigger described user's register flow path, if, enter step S3, otherwise process ends;
In step S2, described trigger condition comprises but does not limit one of following content or combination in any:
The user authenticates, authorizes (not carrying out WLAN Direct IP access authentication, mandate) at this AAA server AAA Server by WLAN 3GPP IP access procedure for the first time before;
The user authenticates, authorizes (carrying out WLAN Direct IP access authentication, mandate) at this AAA server AAA Server by WLAN 3GPP IP access procedure for the first time before;
The user passes through authentication, authorizes at this Certificate Authority and accounting server AAA Server at every turn;
The user passes through authentication, authorizes at this Certificate Authority and accounting server AAA Server every certain number of times;
The user periodically initiates the re-authentication process, so that trigger registration process, the registration of property performance period;
The WLAN (wireless local area network) Access Network WLANAN that the user inserts, or variation has taken place in Public Land Mobile Nerwork PLMN;
The condition that operator is provided with.
S3, AAA Server initiate register requirement to customer data base.
According to described judged result, AAA Server initiates register requirement to customer data base, and request is registered in customer data base with described user.
S4, customer data base are registered described user.
Among the step S4, described user being registered, is that described user profile and the AAA Server information of serving described user are registered in described customer data base.
In the such scheme, described user profile includes but not limited to one of following content or combination in any:
User ID;
Customer location;
The WLAN (wireless local area network) Access Network WLANAN sign that the user inserts;
Public Land Mobile Nerwork PLMN sign;
WLAN (wireless local area network) IAD WAG sign;
Packet data gateway PDG sign;
Serve described user's Certificate Authority and accounting server AAA Server sign.
Described AAA Server information of serving described user is for serving described user's AAAServer sign.
In the such scheme, described customer data base is home subscriber server or attaching position register.
S5, customer data base return registration reply message to AAA Server.
After customer data base was registered described user, the registering result of will being correlated with fed back to AAA Server.
In the such scheme, described AAA Server can be 3GPP AAA Server.
As shown in Figure 6, be the present invention program's concrete an application, in this scheme, this customer data base can be selected home subscriber server HSS or attaching position register HLR for use.As can be seen from Fig. 6, mainly may further comprise the steps:
S11, WLAN UE carry out the DNS inquiry to resolve W-APN, obtain available PDG tabulation;
Select one in the PDG tabulation that S12, WLAN UE obtain from step 1, set up tunnel end to end;
S13, set up in the process in end-to-end tunnel at WLAN UE and PDG, PDG obtains the authentication and authorization data from 3GPPAAAServer, and user to user carries out authentication and authorization;
S14, PDG and WAG are by 3GPP AAA Server/Proxy exchange data packets filtering policy;
S15,3GPP AAA Server judge whether the user needs to be registered to its HSS, trigger register flow path;
Among the step S15, possible condition comprises:
The user authenticates, authorizes at this 3GPP AAA Server for the first time;
The user carries out the authentication of WLAN 3GPP IP access procedure, authorizes at this 3GPP AAA Server for the first time;
The user is at every turn after this 3GPP AAA Server is by authentication, mandate;
The user every certain number of times this 3GPP AAA Server by authentication, authorize, for example, whenever in this 3GPP AAA Server authentication, just register once after authorizing successfully three times;
The user periodically initiates the re-authentication process, so that trigger registration process, the registration of property performance period;
The WLAN AN that the user inserts, or variation has taken place in PLMN;
Other condition that operator is provided with.
S16,3GPP AAA Server are registered to home subscriber server/home location register with described user.
Among the present invention program, when the user after certain 3GPP AAA Server finishes authentication and authorization first, in time initiate registration scenarios corresponding to this user, information with the user, be registered in customer data base with the information of current 3GPPAAA Server for user service, make customer data base in time know the state that the user is current, and be the information of the 3GPP AAA Server of user service, for wireless network management has brought facility.
Obviously, those skilled in the art can carry out various changes and modification to the present invention and not break away from the spirit and scope of the present invention.Like this, if of the present invention these are revised and modification belongs within the scope of claim of the present invention and equivalent technologies thereof, then the present invention also is intended to comprise these changes and modification interior.
Claims (13)
1, the method for access registration in a kind of intercommunicated wireless local area network, described WLAN (wireless local area network) provides authentication, authorizes for the user by Certificate Authority and accounting server AAA Server,, it is characterized in that for described user provides registration by customer data base, may further comprise the steps:
A, user initiate the tunnel request of connecting to network side, and set up the tunnel connection;
B, Certificate Authority and accounting server AAA Server judge whether to need to trigger described user's register flow path, if, enter step C, otherwise process ends;
C, Certificate Authority and accounting server AAA Server initiate register requirement to customer data base, and described user is registered.
2, the method for claim 1 is characterized in that, among the described step B, described trigger condition comprises one of following content or combination:
The user authenticates, authorizes by WLAN (wireless local area network) third generation partner program WLAN 3GPP IP access procedure at this Certificate Authority and accounting server for the first time;
The user passes through authentication, authorizes at this Certificate Authority and accounting server at every turn;
The user passes through authentication, authorizes at this Certificate Authority and accounting server every certain number of times;
The user periodically initiates the re-authentication process;
The WLAN (wireless local area network) Access Network WLAN AN that the user inserts, or variation has taken place in Public Land Mobile Nerwork PLMN;
The condition that operator is provided with.
3, the method for claim 1, it is characterized in that, among the described step C, described user being registered, is that described user profile and the Certificate Authority and the accounting server AAA Server information of serving described user are registered in described customer data base.
4, method as claimed in claim 3 is characterized in that, among the described step C, described user profile comprises one of following content or combination:
User ID;
Customer location;
The WLAN (wireless local area network) Access Network WLAN AN sign that the user inserts;
Public Land Mobile Nerwork PLMN sign;
WLAN (wireless local area network) IAD WAG sign;
Packet data gateway PDG sign.
5, method as claimed in claim 3, it is characterized in that, among the described step C, described Certificate Authority and accounting server AAA Server information of serving described user is the Certificate Authority and the accounting server AAA Server sign of serving described user.
6, the method for claim 1 is characterized in that, described customer data base is attaching position register or home subscriber server.
7, the method for claim 1 is characterized in that, also comprises step D, and customer data base sends registration reply message to Certificate Authority and accounting server AAA Server.
8, as claim 1---7 any described methods is characterized in that described Certificate Authority and accounting server AAA Server are third generation partner program Certificate Authority and accounting server 3GPP AAA Server.
9, the system of access registration in a kind of intercommunicated wireless local area network, described WLAN (wireless local area network) provides authentication, authorizes for the user by Certificate Authority and accounting server AAA Server, provide registration by customer data base for described user, it is characterized in that described Certificate Authority and accounting server AAA Server are provided with:
The register flow path trigger element stores registration trigger condition information, be used to judge that described user tunnel connects after, whether need to trigger register flow path;
The register requirement transmitting element is used to receive the triggering signal that described register flow path trigger element sends, and sends register requirement to customer data base.
10, system as claimed in claim 9 is characterized in that, described customer data base is provided with registering unit, is used to described user to register.
11, system as claimed in claim 10 is characterized in that, described customer data base also is provided with the registration reply unit, is used for sending registration reply message to described Certificate Authority and accounting server AAA Server.
As claim 9,10 or 11 described systems, it is characterized in that 12, described customer data base is home subscriber server HSS or attaching position register HLR.
As claim 9 or 11 described systems, it is characterized in that 13, described Certificate Authority and accounting server AAA Server are third generation partner program Certificate Authority and accounting server 3GPPAAA Server.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200510117164 CN1960300A (en) | 2005-11-01 | 2005-11-01 | Method and system of access registration in intercommunicated wireless local area network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200510117164 CN1960300A (en) | 2005-11-01 | 2005-11-01 | Method and system of access registration in intercommunicated wireless local area network |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN1960300A true CN1960300A (en) | 2007-05-09 |
Family
ID=38071801
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200510117164 Pending CN1960300A (en) | 2005-11-01 | 2005-11-01 | Method and system of access registration in intercommunicated wireless local area network |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1960300A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2009121279A1 (en) * | 2008-04-02 | 2009-10-08 | 华为技术有限公司 | Method, device and communication system for switching between systems |
| CN105578463A (en) * | 2015-07-22 | 2016-05-11 | 宇龙计算机通信科技(深圳)有限公司 | Double connection secure communication method and device |
-
2005
- 2005-11-01 CN CN 200510117164 patent/CN1960300A/en active Pending
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2009121279A1 (en) * | 2008-04-02 | 2009-10-08 | 华为技术有限公司 | Method, device and communication system for switching between systems |
| CN101553010B (en) * | 2008-04-02 | 2013-01-02 | 华为技术有限公司 | Intersystem transfer method, intersystem transfer device and communications systems |
| CN105578463A (en) * | 2015-07-22 | 2016-05-11 | 宇龙计算机通信科技(深圳)有限公司 | Double connection secure communication method and device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1293728C (en) | Rapid interactive method for selection of accessing mobile network by user terminal in WLAN | |
| CN1283072C (en) | Method for processing user terminal network selection information in WLAN | |
| CN1274181C (en) | Method for managing local terminal equipment accessing network | |
| CN1906957A (en) | User plane location based service using message tunneling to support roaming | |
| CN1645960A (en) | Interactive method for re-selecting operating network to wireless local network | |
| CN1689369A (en) | Method and system for establishing a connection via an access network | |
| CN1859776A (en) | Roaming user data route optimizing method in 3GPP evolution network | |
| CN1674497A (en) | Certification method for WLAN terminal switching in mobile network | |
| CN1852304A (en) | Method for selecting gateway general packet wireless service support node | |
| CN1889781A (en) | Identification method for multi-mode terminal roaming among heterogenous inserting technology networks | |
| CN1283062C (en) | Cut-in identification realizing method for wireless local network | |
| CN1859335A (en) | Radio local network connecting gateway strategy loading method in radio local network | |
| CN101064616A (en) | Network charging method, system and equipment | |
| CN1271822C (en) | Method of interactive processing of user terminal network selection information in WLAN | |
| CN101080098A (en) | A communication method and system | |
| CN1901486A (en) | Tunnel establishing method and system in radio local area net | |
| CN1567894A (en) | Method of route inquiry under condition of wireless local area network and mobile network intercommunication | |
| CN1277368C (en) | Interactive method for reselecting operation network for radio local net user terminal | |
| CN1968090A (en) | Method and system for obtaining user terminal authentication information by data service center | |
| CN1695132A (en) | Terminal authentication system, terminal authentication method, and terminal authentication server | |
| CN1848823A (en) | System and method for intercommunicating with mobile network short message based on IP switch-in network | |
| CN1960300A (en) | Method and system of access registration in intercommunicated wireless local area network | |
| CN1265584C (en) | Removing method for occupied network resource by user in wireless local network | |
| CN1921418A (en) | Method and device for checking independency of wireless local area network switch-in | |
| CN1859336A (en) | Radio local network connecting gateway strategy renewing new method in radio local network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |