FR2989548A1 - METHOD OF PROCESSING A MESSAGE, ENTITY AND HEART OF NETWORK - Google Patents

Abstract

The method of processing according to the invention of a received message (M ') in relation with a message (M) transmitted by a first device (T1) registered with a first network core (CN1) IP multimedia destined to a second device (T2) associated with a second network core (CN2) IP multimedia, is implemented by an entity (6) of the second core network and comprises: - if the received message is a message of discovery of the capabilities and / or a state of the second device, analyzing at least one field of this message to detect whether a masking of an identifier of the first device is enabled for the second device; where appropriate, deactivating the masking in said at least one field of the message, before transmitting it to the second device so that an identifier of the first device is available in the message transmitted for the second device.

Description

BACKGROUND OF THE INVENTION The invention relates to the general field of telecommunications and multimedia Internet Protocol (IP) network architectures, such as network architectures using in particular the technology designated by "voice over IP" (or VoIP for Voice over IP). It relates more particularly to the processing, by a so-called processing entity, of a message received in connection with a message sent by a first device registered with a first core IP multimedia network, to a second device associated with a second multimedia IP core network, as part of a multimedia communication service based on a mechanism for self-discovery of the capabilities and / or the state of the remote (ie here, the second device). Such a self-discovery mechanism comprises, in a manner known per se, the sending of a specific message to a remote device inviting it to declare, in response to this message, its capabilities, that is to say the services it supports, and / or its state, the remote device being required to respond to this message.

Thus, within the meaning of the invention, a message of discovery of the capabilities and / or the state of the remote designates a message sent by a device to a remote device, inviting it to declare, in response to this message, its capabilities. , that is, the services it supports, and / or its state. Furthermore, a message received by a processing entity "in relation to a message sent by a first device" designates, within the meaning of the invention, a message identical or similar to the message sent by the first device to the additions and deletions of fields and / or headers made by the elements of the network or networks via which this message has passed between the first device and the processing entity of the second core network. The first core network and the second network core can be operated by the same operator or by separate operators.

The invention thus has a preferred but non-limiting application in the context of multimedia IP network cores implementing the Session Initiation Protocol (SIP) multimedia session initiation protocol, defined by the Internet Engineering Task Force (IETF) standard and described in particular in RFC 3261 entitled "SIP: Session Initiation Protocol", June 2002, published by the IETF. The invention applies in particular to the multimedia IP network core based on an IP Multimedia Subsystem (IMS) as proposed by the 3GPP standard (Third Generation Partnership Project). However, it can also be used in combination with other architectures of multimedia IP network cores, such as for example proprietary architectures, whether or not implementing the SIP protocol for establishing multimedia sessions (voice, text, video). , data, etc.). In a known manner, the SIP signaling protocol relies on a certain number of SIP methods or messages, such as, for example, the SIP REGISTER, INVITE, SUBSCRIBE, NOTIFY or OPTIONS methods. Among these methods, the SIP OPTIONS method allows a so-called sender device, such as for example a terminal, to know the capabilities (ie services supported, resources available, etc.) and / or the state (eg existing, non-existent , registered, free, busy, etc.) of another "remote" device said receiver, this receiving device can be for example a terminal or a SIP server (eg a proxy server). A SIP OPTIONS message is therefore a message of discovery of the capabilities and / or the state of the remote within the meaning of the invention. This type of message is advantageously used today in many multimedia communication services offered by telecommunications operators to improve their service offerings as well as the experience felt by the users of these services, for example in services. instant messaging (IM), or in so-called Rich Communication Services (enhanced-RCS) services as described in the document entitled "RCS-e Advanced Communications: Services and Client Specification", version 1.1, April 8, 2011. In accordance with the SIP standard, any device receiving a SIP OPTIONS message is required to respond to it.

It should be noted that receipt of a SIP OPTIONS message is unbeknownst to the user of the receiving device, ie, it is not signaled specifically to that user (no ringing of the receiving device or notification receiving the SIP OPTIONS message). The SIP standard now offers the possibility to any device issuing a SIP OPTIONS message to discreetly discover the state and / or the capabilities of a receiving device, without the user of this receiving device being informed of the implementation of this discovery mechanism. To guard against the abuses that may result from such a mode of operation, it is possible to envisage the implementation of protection mechanisms at the level of the receiving devices. Such a protection mechanism may for example consist in providing, at the level of the receiving device, the establishment and maintenance of a traceability file listing the various SIP OPTIONS messages received by the receiving device without the knowledge of its user. , and identifying the sending devices causing these SIP OPTIONS messages. This traceability file could be consulted, if necessary, by the user of the receiving device, and guarantee the user of the receiving device a certain transparency as to the messages received without his knowledge. It is therefore clear that the effectiveness of such a protection mechanism depends closely on the presence of an identifier of the transmitting device in the SIP OPTIONS message received by the receiving device. However, this identifier can, for various reasons, not be present in the SIP OPTIONS message received by the receiving device. For example, the sending device may have masked its identity by activating the Originating Identity Restriction (OIR) service provided for voice over IP network cores by the 3GPP standard (Third Generation Partnership Project), or the user the receiving device may not have subscribed or activated the service of presenting the identity of the transmitting device offered by the 3GPP standard, also known as Originating Identity Presentation (OIP) service. The operation of the OIP and OIR services is defined in detail in 3GPP TS24.607 entitled "Technical Specification Group Core Network and Terminals; Originating Identification Presentation (OIP) and Originating Identification Restriction (OIR) using IP Multimedia (IM) Core Network (CN) subsystem; Protocol Specification ", Release 10. This document notably provides that, once activated or deactivated, these OIR and OIP services for masking the identity of the sending device apply de facto to all the SIP messages transmitted by the sending device and / or received by the receiving device.

It should be noted that most of today's telecommunications networks rely on decoupling of telephone calls and multimedia communication services, which are managed via a circuit-switched network (CS) for telephone calls respectively. and via a packet-switched network (PS for Packet Switch) based on a multimedia IP core network architecture for data services. In such a context, the users who activate the identifier masking services for their telephone calls via the OIP and OIR services or equivalent services defined for the CS networks (eg CLIP services (Calling Line Identification Presentation) or CLIR services ( Calling Line Identification Restriction)), master the effects of this masking to the extent that it is limited to their phone calls.

However, when telecommunications networks will soon migrate to "all-IP" networks, the activation of such an identifier masking service will have an impact on all the services subscribed by the user, ie that is to say both on his telephone calls and on the multimedia data services to which he has subscribed, since in accordance with the recommendations of the document 3GPP TS 24.607, the masking of the identifier will apply equally to all SIP messages sent and / or received. Consequently, the implementation of these masking services of the identifier of the transmitting device on the multimedia IP network core may result in a degradation of certain services offered by the operators (such as, for example, the protection mechanism cited above). previously), and therefore a fortiori, by a degradation of the experience felt by the users of these services. OBJECT AND SUMMARY OF THE INVENTION The object of the invention is in particular to remedy the aforementioned drawbacks by proposing a method of processing a received message, in relation with a message sent by a first device registered with a first IP multimedia core network. to a second device associated with a second core of multimedia IP network, this processing method being implemented by an entity of the second multimedia IP core network and comprising: if the message received is a message of discovery of the capabilities and or a state of the second device, a step of analyzing at least one field of this received message in order to detect whether a masking of an identifier of the first device is activated for the second device; and if necessary, a step of deactivating the masking in said at least one field of the received message, before transmitting it to the second device so that an identifier of the first device is available in the message transmitted for the second device. Correlatively, the invention also relates to a processing entity adapted to process a message received in relation to a message sent by a first device registered with a first core IP multimedia network, to a second device associated with a second multimedia IP core network, this entity being an entity of the second multimedia IP core network comprising: verification means for verifying whether the received message is a capability discovery message and / or a state of the second device; analysis means, triggered if necessary, for analyzing at least one field of the received message in order to detect whether a masking of an identifier of the first device is activated for the second device; deactivation means, triggered if masking is detected, for disabling this masking in said at least one field of the received message before transmitting it to the second device, so that an identifier of the first device is available in the message transmitted for the second device; and means for transmitting the message in which the masking has been disabled to the second device. The invention thus proposes to detect, at the level of an entity of the network core of the receiver device, a message of discovery of the capabilities and / or the state of the remote (second device within the meaning of the invention), if a masking of the identifier of the device transmitting this message (first device within the meaning of the invention) is activated for the receiving device, and if necessary, to disable this masking so that an identifier of the transmitting device is available in the message of discovery of the capabilities and / or the state of the remote, received by the receiving device.

Thus, a degradation of the services using an identifier of the device issuing the discovery message is avoided, since according to the invention, an identifier of the transmitting device is always provided to the receiving device in the discovery message. The invention thus guarantees, when the receiver device implements a protection mechanism such as that described above, that an identifier of the sending devices at the origin of the discovery messages received by the receiving device, is always included in the traceability file. listing the discovery messages received by the receiving device. The invention therefore makes it possible to guarantee complete transparency to the user of the receiving device and perfect traceability of discovery messages received without his knowledge, such as the SIP OPTIONS messages for SIP multimedia IP network cores. Advantageously, the invention applies in a targeted manner to the messages of discovery of the capabilities and / or the state of the remote, and not to all the messages intended for the second device. The invention is not intended to completely disable the masking of the identifier of the first device desired by the user of this first device (for example by activating the service OIR) or by that of the second device (for example by not subscribing not to the OIP service). On the contrary, it makes it possible to ensure transparency for the user of the second device only with respect to messages received without the latter's knowledge and to which the second device is required to respond, due to constraints imposed by the standard. The provision of this identifier is therefore performed, in accordance with the invention, only exceptionally in the context of the transmission of a message of discovery of the capabilities and / or the state of the remote. Furthermore, the invention is implemented in the core network of the second device, receiver of the discovery message. This advantageously makes it possible to counter the different cases of masking of the identifier of the first device that can be set up in the first and / or second core IP multimedia network, namely: - a masking of the identifier by the first device, for example via the insertion of an anonymous or invalid identifier into a field of the discovery message; masking by an entity of the first core network, or else - masking by an entity of the second core network such as the call termination application server. For this purpose, the processing entity according to the invention may be integrated in the call termination application server (also known as the "terminating application server") of the second multimedia IP core network, or preferentially in a device located downstream of this call termination application server. The invention thus makes it possible to provide an identifier of the first device to the second device, including when the masking of the identifier is implemented by the call termination application server (for example, in the case of deactivation or non-activation). -subscription to the OIP service).

The integration of the processing entity into a device downstream of the call termination application server rather than the call termination application server furthermore makes it possible to optimize the performance of the second call center. network: it does not indeed require the triggering of the call termination application server on receipt of the discovery message, such a trigger can prove to be expensive in terms of resources (the performance of certain entities of the core network, for example, Serving Call State Control Function (S-CSCF) servers for an IMS core network architecture, in fact decrease in a known manner when multiple application servers are triggered).

For a second core of multimedia IP network implementing an IMS architecture implementing the SIP multimedia session initiation protocol, the processing entity can notably be integrated into any device of the second core IP multimedia network among: a server S -CSCF; a P-CSCF server (Proxy-Cali State Control Function); or Session Border Controler (SBC). In a variant, when the second multimedia IP core implements an architecture implementing the SIP protocol but different from an IMS architecture, the processing entity according to the invention is integrated in a SIP proxy server of the second IP core network. multimedia. Thus, the invention applies in a privileged but nonlimiting manner when: the first multimedia IP core network and the second multimedia IP core network implement the SIP protocol; the message discovering the capabilities and / or a state of the second device is a SIP OPTIONS message; and said at least one field analyzed during the analysis step is a FROM field or a SIP PRIVACY field of the SIP OPTIONS message. Correlatively, when the first multimedia IP core network and the second multimedia IP core network implement the SIP protocol: the verification means of the processing entity according to the invention are able to verify whether the message received is a message SIP OPTIONS; and the analysis means of the processing entity according to the invention are able to analyze a FROM field or a SIP PRIVACY field of the SIP OPTIONS message.

In a particular embodiment of the invention, the processing method further comprises a determination step, conditioning the implementation of the analysis and deactivation steps, during which it is determined whether the received message is in relation with a message sent by the first device in the context of an autonomous exchange between the first device and the second device.

In other words, in this embodiment, the masking of the identifier of the first device is deactivated only if the message of discovery of the capabilities and / or the state of the remote is sent as part of an autonomous transaction or transaction. "Standalone" between the first device and the second device, that is to say, that is not performed in the context of a dialogue established between the first device and the second device or that does not initiate such a device dialogue.

The invention has indeed an additional advantage in such a context, because the second device does not have other means to access an identifier of the first device and similarly, the first device does not have other means of access to the capabilities and / or the state of the second device that the sending of a discovery message (they can not refer to a dialogue already established between the two devices or consult other applications already having these information). Note however that when a dialogue is already established between the two devices, it means firstly that the second device has accepted a communication of the first device despite the masking of its identifier, and secondly that state of the second device is busy. As mentioned above, the masking of an identifier of the first device for the second device can be activated at different levels of the network, and can be translated into different fields of the message of discovery of the capabilities and / or the state of the remote received by the device. processing entity of the second core network. The invention provides different embodiments to consider these different scenarios. Thus, according to a first variant embodiment, during the analysis step, a field of the received message intended to contain an identifier of the first device provided by the first device is analyzed. The deactivation step may then include inserting, in the field intended to contain an identifier of the first device provided by the first device, an identifier of the first device certified by an element of the first multimedia IP core network and contained in the message received. In a manner known per se, such a certified identifier is systematically inserted by the core of the network of the first device (first core network within the meaning of the invention) in the messages managed by it, in particular for the purposes of procedures implemented. by the first core network which require the presence of such a certified identifier, or when these messages are transferred to the core of the network of the second device, to allow for example the billing of the service in which this message is exchanged. This certified identifier is usually deleted by the second core network before delivering the message to the second device. In contrast, according to the first embodiment of the invention, this certified identifier is used to provide the second device with an identifier of the first device in the discovery message, when the field of the discovery message intended to contain an identifier of the first device. device does not contain an identifier of the first device or equivalently contains an anonymous or invalid identifier. According to one aspect of this first embodiment, when the first multimedia IP core network and the second multimedia IP core network implement the SIP protocol and the capability discovery message and / or a state of the second device is a SIP OPTIONS message during the analysis step, it is detected that a masking is activated for the second device if the FROM field of the SIP OPTIONS message contains an anonymous identifier preserving the anonymity of the first device or a non-identifying identifier. valid first device; and during the disabling step of masking, replacing the anonymous identifier with an identifier contained in a SIP P-Asserted-Identity field of the SIP OPTIONS message. In a second variant embodiment of the invention, during the analysis step, a field containing a level of confidentiality required for the received message is analyzed.

Such a field is for example the SIP PRIVACY field of the SIP OPTIONS message as defined in the document RFC 3323 published by the IETF entitled "A privacy mechanism for the Session Initiation Protocol (SIP)", November 2002. This field may take different values, namely the values "none", "header" (the first device wishes to hide the identity present in the "FROM" field of the SIP OPTIONS message), or "id" (the first device wishes hide the identity certified by the network present in the SIP P-Asserted-Identity field of the SIP OPTIONS message). This value is set by the first network core or the second network core (eg via a web application or portal), depending on how the masking of the identifier of the first device is activated.

In the current state of the art, when this value is representative of a masking of the identifier of the first device for the second device, in other words when it is equal to a value different from the value "none", the identifier of the first device present in the discovery message is removed from this discovery message before it is transferred to the second device.

On the contrary, in the second embodiment of the invention, the step of deactivating the masking comprises the positioning in this field of a value reflecting a zero level of confidentiality, so that an identifier of the first device is available in the discovery message received by the second device. Thus, as an example for a SIP OPTIONS message - during the analysis step, it is detected that a masking is enabled for the second device if the SIP PRIVACY field of the SIP OPTIONS message contains a set confidentiality level. at a value different from the value "none"; and - during the step of deactivating the masking, the value of the confidentiality level of the SIP PRIVACY field is replaced by the value "none".

In a particular embodiment, the various steps of the processing method are determined by instructions of computer programs. Consequently, the invention also relates to a computer program on an information carrier, this program being capable of being implemented in a processing entity according to the invention or more generally in a computer, this program comprising instructions adapted to the implementation of the steps of a treatment method as described above.

This program can use any programming language, and be in the form of source code, object code, or intermediate code between source code and object code, such as in a partially compiled form, or in any other form desirable shape. The invention also relates to a computer-readable information medium, comprising instructions of a computer program as mentioned above. The information carrier may be any entity or device capable of storing the program. For example, the medium may comprise storage means, such as a ROM, for example a CD ROM or a microelectronic circuit ROM, or a magnetic recording medium, for example a diskette (floppy disc) or a disk hard.

On the other hand, the information medium may be a transmissible medium such as an electrical or optical signal, which may be conveyed via an electrical or optical cable, by radio or by other means. The program according to the invention can be downloaded in particular on an Internet type network. Alternatively, the information carrier may be an integrated circuit in which the program is incorporated, the circuit being adapted to execute or to be used in the execution of the method in question. The invention also relates to a multimedia IP core network comprising a processing entity according to the invention. It may also be envisaged, in other embodiments, that the processing method, the entity and the core network according to the invention present in combination all or part of the aforementioned characteristics. BRIEF DESCRIPTION OF THE DRAWINGS Other features and advantages of the present invention will emerge from the description given below, with reference to the accompanying drawings which illustrate an embodiment having no limiting character. In the figures: FIG. 1 represents, schematically, a telecommunications environment including a processing entity according to the invention, in a particular embodiment; Figure 2 schematically shows the hardware architecture of the processing entity shown in Figure 1; and FIG. 3 represents, in the form of a flow chart, the main steps of a processing method according to the invention, when they are implemented by the processing entity of FIG. 1, in a particular embodiment. .

DETAILED DESCRIPTION OF THE EMBODIMENT FIG. 1 represents a telecommunications environment including a processing entity according to the invention, in a particular embodiment.

In the example described here, the processing by this entity of a received message M 'in relation with a message M of the discovery of the capabilities and / or the state of the remote transmitted by a first device T1 destined for a second device T2, in the context of a multimedia communication service, such as for example the RCS-e service.

It is assumed that a protection mechanism as described above is set up at the level of the device T2, so that on reception of a message of discovery of the capabilities and / or the state of the remote, it remembers, in a traceability file, various information related to this message, such as in particular an identifier of the device T1 at the origin of the message M, the time (eg time and day) at which this message was received, etc.

However, it should be noted that no limitation is attached to the actual protection mechanism implemented by the device T2 from the identifier of the device T1 at the origin of the message M. The invention applies also, of course, when other protection mechanisms or even other types of mechanisms using an identifier of the device T1 at the origin of the message M are implemented at the device T2.

According to the invention, it is ensured that an identifier of the device T1 at the origin of the message M is always available in the message reaching the device T2, including when a masking of the identifier of the device T1 is activated. by the device T1 or by an element of the telecommunications network or networks participating in the routing of the message to the device T2.

The T1 and T2 devices are here terminals, managed by (or associated with) separate multimedia IP network cores, CN1 and CN2 respectively. The CN1 and CN2 network cores are here network cores using the "voice over IP" technology, and implement an IMS architecture, as defined in particular in the document 3GPP TS 22.228 "Service requirements for the IP Multimedia Core Network Subsystem (Internship 1) ", and implementing the SIP session initiation protocol. These hypotheses are however not limiting, and the invention also applies when the CN1 and CN2 network cores form only one multimedia IP core network, as well as to other types of devices (for example T2 may be a proxy server), other IP multimedia core network architectures, and other session initiation protocols, such as for example proprietary network core architectures using the SIP protocol or another proprietary session initiation protocol providing a message to discover the capabilities and / or the state of the remote. In a manner known per se, the IMS CN1 core network comprises several functional entities. Thus, in the embodiment described here, it comprises in particular: a CSCF entity (Cali Session Control Function), itself composed of several equipment or logical servers including: o a P-CSCF 1 server (Proxy Call Session Control Function) point of contact of the terminal T1 with the core network CN1; o an S-CSCF 2 server (Serving Call Session Control Function) in charge of the T1 terminal recording on the CN1 core network and the triggering of the application servers; and o an I-CSCF 3 server (Interrogating Call Session Control Function), in charge of the interrogation of a HSS database (Home Subscriber Server, not shown in FIG. 1) and the routing of messages for the initialization of connections to the CN1 core network; and one or more Application Servers that host and provide services, such as a Originating Application Server.

Similarly, the IMS CN2 core network comprises several functional entities, including in particular here: a CSCF entity composed of several equipment or logical servers including: o an I-CSCF 5 server; o an S-CSCF server 6; o a P-CSCF 7 server; and one or more Application Servers that host and provide services, such as a Terminating Application Server (8). In the embodiment envisaged here, the S-CSCF server 6 integrates the functionalities of a processing entity according to the invention (ie the S-CSCF server 6 is a processing entity according to the invention), and has the hardware architecture of a computer shown schematically in FIG. 2. The server S-CSCF 6 notably comprises a processor 6A, a random access memory 6B, a read-only memory 6C, and 6D communication means with, in particular, the CN1 and CN2 network core entities and the T2 terminal, these 6D communication means implementing the SIP protocol. The read-only memory 6C of the S-CSCF server 6 constitutes a recording medium in accordance with the invention, readable by the processor 6A and on which is recorded a computer program according to the invention, comprising instructions for execution. steps of a method of processing according to the invention described later with reference to FIG. 3. Thus, in accordance with the invention, the S-CSCF server 6 is able to process a message received in connection with a message of discovery of capabilities and / or the state of the remote issued by the terminal T1 to the terminal T2, to ensure that an identifier of the terminal T1 is provided to the terminal T2 in the discovery message reaching it. It is thus ensured that the terminal T2 can enter, in the traceability file, the identifier of the terminal T1 transmitting the capacity discovery message and / or the state of the terminal T2. Various causes may be at the origin of a masking of the identifier of the terminal T1 in the discovery message received by the server S-CSCF 6 and destined for the terminal T2. Thus, this masking can be because of the terminal T1 itself (via the insertion of an anonymous identifier in the message for example), or of an element of the network core CN1 (for example following the activation of a CLIR or OIR service by the user of the terminal T1), or of a CN2 core network element (for example following the non-subscription or deactivation of a CLIP or OIP service by the user of the terminal T2). It should be noted that in the embodiment described here in which the multimedia IP network cores CN1 and CN2 implement the SIP protocol, a masking of the identifier of the terminal T1 for the terminal T2 can be translated at the level of two. SIP OPTIONS discovery message fields, namely: at the level of the FROM field reflecting the origin of the message, and / or at the PRIVACY field reflecting the level of confidentiality required for the SIP OPTIONS message. Furthermore, it should also be noted that, in a manner known per se, in the current state of the art, to allow the message sent by the terminal T1 to be conveyed to the terminal T2, the message M 'received by the S-CSCF server 6 always contains a valid identifier of the terminal T1, whether a masking has been activated or not by the terminal T1 or by the core network CN1. This identifier can be provided by the terminal T1 and present in the FROM field of the SIP OPTIONS message, and / or provided by an entity of the CN1 core network in the form of a certified identifier present in the P-Asserted-Identity field of the SIP OPTIONS message. If a masking is activated at the core network CN1 or at the core network CN2, this identifier will then be removed from the message by a CN2 heart network before it is provided to the terminal T2. We will now describe with reference to FIG. 3, the main steps of a processing method according to the invention implemented by the S-CSCF server 6 for processing the received message M 'in relation with the message M transmitted by the terminal T1 to the terminal T2, in a particular embodiment. In the example envisaged here, it is assumed that the message M sent by the terminal T1 to the terminal T2 is a SIP message OPTIONS for discovering the capabilities and / or the state of the remote, namely here the terminal T2, issued as part of the RCS-e multimedia communications service. T1 and T2 are assumed here registered with their respective network cores CN1 and CN2. The message M passes, in a manner known per se, by the elements of the network core CN1, then by the elements of the core network CN2 to the server S-CSCF 6. It is received in the form of a received message M ' by the server S-CSCF 6 (step E10). The message M 'received by the server S-CSCF 6 is a message received in relation with the message M within the meaning of the invention, that is to say that it is identical or similar to the message M sent by the terminal T1 to the additions and deletions of fields and / or headers, carried out by the elements of the network or networks through which this message has passed between the terminal T1 and the S-CSCF server 6. Thus, for example, the core network CN1 may have modified the PRIVACY field of the message M sent by the terminal Ti so as to activate a masking of the identifier of the terminal T1 for the terminal T2. Similarly, a core network element CN1 may have inserted into the message M a certified identifier of the terminal Ti. The message M 'is therefore also a SIP OPTIONS message containing the same field FROM as the message M and whose PRIVACY field has possibly been modified by the core network CN1. The message M 'also contains a certified identifier of the terminal T1 inserted by an element of the core network CN1 in the P-Asserted-Identity field.

Upon receipt of the message M ', the server S-CSCF 6 determines at first whether it is a message of discovery capabilities and / or a state of the remote, ie a SIP OPTIONS message (test step E20). If the message M 'is not a SIP OPTIONS message (non-response to the test E20), the S-CSCF server 6 transmits it without additional processing other than the processing conventionally provided by an S-CSCF server to the terminal T2 (step E30). If the message M 'is a SIP OPTIONS message (answer yes to the test E20), the server S-CSCF 6 determines here in a second time whether this message M' is in relation with a message sent as part of an exchange or an autonomous transaction between terminals T1 and T2 (test step E40).

For this purpose, the S-CSCF server 6 identifies whether the message M 'contains an identifier of a SIP dialogue established between T1 and T2 formed, in a manner known per se, by the fields (FromTag, ToTag, CaIIID). In the embodiment described here, a differentiated treatment of the SIP OPTIONS messages exchanged as part of a stand-alone transaction and in the context of an established SIP dialogue is envisaged: only the SIP OPTIONS messages exchanged in the context of a transaction In this embodiment, according to the invention, the SCSCF server 6 processes the stand-alone mode. Thus, if the message M 'contains an established SIP dialogue identifier (non-test response E40), the S-CSCF server 6 transmits it without additional processing other than the treatments conventionally provided by an S-CSCF server to the terminal T2 (step E30). If the S-CSCF server 6 determines that the message M 'is in relation with a message M exchanged as part of a stand-alone transaction between T1 and T2, that is, if the message M' does not contain a dialogue identifier (yes answer to the test E40), the server S-CSCF 6 then analyzes at least one field of this message in order to detect if a mask of an identifier of the terminal T1 is activated for the terminal T2. In the embodiment described here, the S-CSCF server 6 analyzes the SIP fields FROM and PRIVACY of the SIP OPTIONS message to detect whether a mask of the identifier of the terminal T1 is activated for the terminal T2.

Specifically, the S-CSCF server 6 first analyzes the FROM field of the SIP OPTIONS message. This field FROM, in a manner known per se, is intended to contain an identifier of the terminal T1 supplied by it during the transmission of the message M. In order to detect if a masking is activated, the S-CSCF server 6 examines, during this analysis step, if the FROM field contains an anonymous identifier (test step E50). By anonymous identifier here means an identifier provided by the terminal T1 and intended to preserve the anonymity of the terminal T1. Examples of such an anonymous identifier are described in the document RFC 3323 cited above: these identifiers contain the string " anonymous ». For example: "sip: a0017@anonymous-sip.com" or "sip: anonymous@anonymous.invalid" are anonymous identifiers that can be inserted in the FROM field by the terminal Ti if it wants to hide its identifier at terminal T2. Thus, in the embodiment described here, to detect whether the FROM field contains an anonymous identifier, the S-CSCF server 6 searches, during the analysis step, whether the content of the FROM field comprises the string of characters. "Anonymous".

Alternatively, other character strings may be searched for different configurations of the terminal that can be used to preserve its anonymity. If the FROM field does not contain an anonymous identifier (answer not to the E50 test) but an identifier having a valid format with regard to the formats of identifiers conventionally used to identify a device according to the SIP protocol (eg sip: + 33296053859 @ operator.multimedia.fr), the S-CSCF server 6 leaves the field FROM unchanged and goes to the analysis step of the SIP PRIVACY field of the SIP OPTIONS message. If, on the other hand, the S-CSCF server 6 detects that the FROM field contains an anonymous identifier (answer yes to the test E50), it deactivates the masking of the identifier of the terminal T1 by inserting, instead of the anonymous identifier, an identifier of the terminal T1 certified by a CN1 core network entity (step E60). As previously mentioned, this certified identifier is included in the message M 'and contained in the SIP P-Asserted-Identity field of the SIP OPTIONS message. It has been inserted, by a CN1 core network entity during the transit of the message M via the network core CN1. In an alternative embodiment, during the analysis step, the S-CSCF server 6 also examines whether the FROM field contains an invalid identifier, that is to say, an identifier which by its form, looks like an identifier of the terminal T1 (typically this identifier does not contain the string "anonymous"), but which is not consistent with the real identity of the terminal T1. The S-CSCF server 6 can detect the presence of such an invalid identifier by comparing, for example, the certified identifier of the terminal T1 present in the SIP P-Asserted-Identity field of the SIP OPTIONS message and the identifier of the terminal T1 present. in the FROM field. Indeed, in a manner known per se, these identifiers are supposed to be identical at least on their first 5 or 6 digits. An identifier present in the FROM field that has its first 5 digits different from those of the certified identifier specified in the SIP P-Asserted-Identity field of the SIP OPTIONS message would then be considered invalid by the S-CSCF 6 server. the S-CSCF server 6 detects that the FROM field contains such an invalid identifier, it replaces this identifier with the certified identifier present in the SIP P-Asserted-Identity field of the SIP OPTIONS message. Thus, at the end of step E60, an identifier of the terminal T1 is present in the field FROM of the message processed by the server S-CSCF 6: it is either the (valid) identifier provided by the terminal T1, or a certified identifier provided by a core CN1 element. The S-CSCF server 6 then examines the SIP PRIVACY field of the SIP OPTIONS M 'message in order to detect whether a masking of the identifier of the terminal Ti is activated for the terminal T2 via this field (test step E70). Such masking is reflected in the SIP PRIVACY field by a value of the field distinct from the value "none" (the value "none" according to the SIP protocol reflects a zero level of confidentiality). If the SIP PRIVACY field is not set to the value "none" (yes answer to the E70 test), but for example to the value "header" or "id", the S-CSCF server 6 deactivates the masking of the T1 terminal identifier for the T2 terminal by inserting instead of this value, the value "none" in the PRIVACY field (step E80). If the SIP PRIVACY field is instead already set to "none" (response not to the E70 test), the S-CSCF server 6 leaves it unchanged.

M "denotes the message obtained at the end of step E80, which contains the fields FROM and PRIVACY possibly modified by the server S-CSCF 6 to disable the masking of the identifier of the terminal Ti. -CSCF 6 then transmits the message M "to the terminal T2 (step E90). The modifications of the fields FROM and / or PRIVACY according to the invention thus make it possible to disable the masking of the identifier of the terminal T1 for the terminal T2 so that an identifier of the terminal T1 is available for the second terminal T2 in the field FROM SIP message OPTIONS reaching it. This identifier is either the identifier provided by the terminal T1 itself, or an identifier certified by the core network CN1. On receipt of the message SIP OPTIONS M "(or of a message derived from the message M" as a function of the elements of the network core CN2 traversed by the message M "to the terminal T2), the terminal T2 has an identifier of the terminal Tl in the FROM field of the SIP OPTIONS message, it can then fill in the traceability file listing the various SIP OPTIONS messages received by the terminal T2 by including in this file the time at which the SIP OPTIONS message from the terminal T1 has been received. and the identifier of the terminal T1 included in the field FROM.In the embodiment described in detail here, the multimedia IP network cores CN1 and CN2 are distinct network cores.In a variant, the invention also applies when the terminals T1 and T2 are managed by the same core network, in which case the processing entity is integrated in the server S-CSCF managing the terminal T2 In the embodiment described here, the processing entity nt according to the invention is integrated in the server S-CSCF 6 CN2 heart of destination of the message M. The S-CSCF server 6 is placed in the network core CN2, in a manner known per se, downstream of the server call termination application. This advantageous position of the processing entity according to the invention in the S-CSCF server 6 thus makes it possible to deal with different scenarios that may arise: the SIP OPTION messages are exchanged between the terminals T 1 and T 2 by borrowing the cores IMS network CN1 and CN2 but do not pass through the application servers implementing the CLIR / OIR and CLIP / OIP services (ie by the application servers 4 and 8); the SIP OPTIONS messages are exchanged between the terminals T1 and T2 by borrowing the IMS network CN1 and CN2 cores and pass through the application servers 4 and 8 respectively implementing the CLIR / OIR and CLIP / OIP services; the SIP OPTIONS messages are exchanged between the terminals T1 and T2 by borrowing the IMS network CN1 and CN2 cores, pass through the application server 4 implementing the CLIR / OIR services but do not pass through the application server 8 implementing CLIP / OIP services (eg such a case may arise if CN1 and CN2 network cores are managed by different operators); or - the SIP OPTIONS messages are exchanged between the terminals Ti and T2 by borrowing the IMS network CN1 and CN2 cores, do not pass through the application server 4 implementing the CLIR / OIR services but pass through the server of application 8 implementing the CLIP / OIP services (eg such a case may arise if CN1 and CN2 network cores are managed by different operators).

This embodiment also has another advantage when a plurality of terminals T2 bear the same public identity or IP Multimedia Public Identity (IMPU), which is to require the application of the processing according to the invention only on a single message M '. The 3GPP standard provides for the possibility for a plurality of terminals to share the same public identity IMPU, in which case a replication function (or "forking" in English) messages for the public identity IMPU is implemented at S-CSCF level so that each terminal associated with the public identity IMPU receives a replica of these messages. The integration of the functionalities of the processing entity according to the invention at the level of the S-CSCF 6 makes it possible to apply the processing to disable the masking of the identifier of the terminal T1 before the forking function: the forking function is then applied to the message M "containing the identifier of the terminal T1, in order to optimize the resources In another embodiment, the message processing entity M 'according to the invention can be integrated into another device or another element of the network core CN2, preferably located downstream of the call termination application server, for example in the P-CSCF server 7 or in an SBC session controller of the core network CN2 (not shown in FIG. However, it should be noted that in this embodiment, if several terminals T2 share the same public identity IMPU, the forking function is implemented in the server S-CSCF 6 upstream of the process. nt according to the invention, it should be applied to each replica SIP OPTIONS message associated with each terminal T2. Each replica constitutes a message in relation to a discovery message sent by the terminal T1 within the meaning of the invention. In yet another embodiment, the message processing entity M 'according to the invention can be integrated in the application server 8 of call termination, by setting up a server triggering criterion. 8 on receiving an SIP OPTIONS discovery message (or a SIP OPTIONS message as part of a standalone transaction). In another embodiment, the core network CN2 implements a different architecture of an IMS architecture. The processing entity according to the invention is then integrated into an arbitrary SIP proxy server CN2 network core. In these various embodiments of the invention in which the processing entity is integrated either in the P-CSCF server 7 or in the application server 8, or in an SBC session control or in a SIP proxy server , the processing carried out on the message M 'according to the invention proceeds identically to that described with reference to FIG. 3 when the processing entity is integrated in the server S-CSCF 6.

Claims (16)

REVENDICATIONS1. Method for processing a received message (M '), in relation with a message (M) sent by a first device (T1) registered with a first multimedia network core (CN1) to a second device (T2) associated with a second network core (CN2) multimedia IP, said processing method being implemented by an entity (6) of the second core IP multimedia network and comprising: - if the received message is a discovery message capabilities and / or a state of the second device (E20), a step of analyzing (E50, E70) at least one field of this received message to detect whether a masking of an identifier of the first device is activated for the second device; and where appropriate, a step of deactivating (E60, E80) said masking in said at least one field of said received message, before transmitting it (E90) to the second device (T2) so that an identifier of the first device is available in the message transmitted for the second device. 2. Treatment method according to claim 1 further comprising a determination step (E40), conditioning the implementation of the analysis steps (E50, E70) and deactivation steps (E60, E80), during which one determines whether the received message is related to a message sent by the first device in the context of an autonomous exchange between the first device and the second device. 3. Processing method according to claim 1 wherein, during the analysis step (E50), a field of the received message is analyzed to contain an identifier of the first device provided by the first device. 4. Processing method according to claim 3 wherein the deactivation step (E60) comprises inserting, in a field intended to contain an identifier of the first device provided by the first device, an identifier of the first device certified by an entity of the first multimedia IP core network and contained in the received message. The processing method according to claim 1, wherein during the analyzing step (E70), a field containing a level of confidentiality required for the received message is analyzed. The method of processing of claim 5, wherein the step of disabling the masking (E80) includes inserting in this field a value reflecting a zero level of confidentiality. 7. Processing method according to claim 1 wherein: the first network core (CN1) multimedia IP and the second network core (CN2) multimedia IP implement the SIP protocol; the message (M ') for discovering the capabilities and / or a state of the second device is a SIP OPTIONS message; and said at least one field analyzed during the analysis step is a FROM field or a SIP PRIVACY field of the SIP OPTIONS message. 8. Processing method according to claim 7, wherein: during the analysis step (E50), it is detected that a masking is activated for the second device if the FROM field of the SIP OPTIONS message contains an identifier said anonymously preserving the anonymity of the first device; and during the masking deactivation step (E60), the anonymous identifier is replaced by an identifier contained in a SIP P-Asserted-Identity field of the SIP OPTIONS message. The processing method according to claim 7, wherein: during the analyzing step (E70), it is detected that a masking is activated for the second device if the SIP PRIVACY field of the SIP OPTIONS message contains a level confidentiality set to a value other than the value "none"; and during the step of disabling the masking (E80), replacing said value of the confidentiality level of the SIP PRIVACY field with the value "none". A computer program comprising instructions for performing the steps of the processing method according to claim 1, said program being executed by a computer. 11. Processing entity (6) able to process a message (M ') received in connection with a message (M) sent by a first device (T1) registered with a first network core (CN1) multimedia IP, to destination of a second device (T2) associated with a second network core (CN2) multimedia IP, this entity (6) being an entity of the second multimedia IP core network comprising: - verification means (6A) for checking whether the received message is a capacity discovery message and / or a state of the second device; analysis means (6A), triggered if necessary, for analyzing at least one field of the received message in order to detect whether a masking of an identifier of the first device is activated for the second device; deactivation means (6A), triggered if masking is detected, to disable this masking in said at least one field of the received message before transmitting it to the second device so that an identifier of the first device is available in the transmitted message for the second device; and transmission means (6D) of the message in which the masking has been disabled to the second device. 12. Processing entity according to claim 11 integrated in a call termination application (8) server of the second core network (CN2) or in a device (6) located downstream of an application server ( 8) call termination of the second core network. 13. Processing entity according to claim 12 integrated, when the second network core (CN2) multimedia IP implements an IMS architecture, in any device of the second multimedia IP core network among: an S-CSCF server (6); a P-CSCF server (7); or - an SBC session controller. 14. Processing entity according to claim 12 integrated, when the second multimedia IP core network implements an architecture implementing the SIP protocol, in a SIP proxy server. 15. Processing entity (6) according to claim 11 wherein, when the first multimedia IP core network and the second multimedia IP core network implement the SIP protocol: the verification means are able to verify if the received message is a SIP OPTIONS message; and the analysis means are able to analyze a FROM field or a SIP PRIVACY field of the SIP OPTIONS message. 16. Network core (CN2) multimedia IP comprising a processing entity (6) according to claim 11.