JP4977665B2 - Communication system and gateway device - Google Patents

Description

The present invention relates to a communication system and a gateway device, and more particularly to a communication system and a gateway device that speed up handover between different types of access networks. The present invention is, for ^example, relate to 3GPP2 (3 rd Generation Partnership Project 2 ) of the 3.9-generation mobile communication system UMB (Ultra Mobile Broadband) and WiMAX (Worldwide Interoperability for Microwave Access) to speed up the handover between technologies However, the present invention is not limited to this and can be applied to various access networks.

In recent years, services that seamlessly link mobile communication networks having different coverage areas, throughputs, and communication costs have been studied. For example, a system in which a WiMAX area with a low facility cost is provided in a UMB area covering a wide area and data communication is provided to users in the WiMAX area at a low cost has been considered.
The cooperation method between the UMB access network and the WiMAX access network is the XGP of 3GPP2. P0046 (Non-Patent Document 1), WiMAX Forum's "WiMAX Forum Network Architecture Stage 2: 3GPP2-WiMAX Interworking" (Non-patent Document 2), "WiMAX Forum Network Non-Patent 3: 3 Etc. In these standards, a method is adopted in which each access network gradually cooperates via HA (Home Agent) of Mobile IP (Non-Patent Documents 4 to 5). Such a cooperation method is called Loosely Coupled Interworking.
A handover procedure between WiMAX and UMB by Loosely Coupled Interworking will be described with reference to FIGS.

1. System Configuration FIG. 15 is a diagram illustrating a configuration example of a network configured by a conventional technique. An MN (Mobile Node) 3040 is a terminal having access means in both the WiMAX access network 3020 and the UMB access network 3030. A CN (Correspondent Node) 3050 is a terminal or server that communicates with the MN 3040.
The core network 3010 is a communication network that accommodates both the WiMAX access network 3020 and the UMB access network 3030, and an AAA (Authentication Authorization Accounting) 3011 and an HA (Home Agent) 3012 are connected to each other. The AAA 3011 is a server that manages the association between a terminal identifier and authentication information and authenticates the terminal. HA 3012 is a node defined by Mobile IP (Non-Patent Documents 4 to 5), and MN 3040's HoA (Home Address: IP address that does not change even if the position of MN changes) and CoA (Care of Address: destination network) The association of the IP address assigned to the MN is managed. The HA 3012 converts the IP packet addressed to the HoA of the MN 3040 received from the CN 3050 into an IPinIP packet addressed to the CoA of the MN 3040 (Non-patent Document 6) so that the communication by the HoA can be continued even when the MN 3040 moves on the network. Forward to MN3040. Conversely, the IPinIP packet received from the MN 3040 is decapsulated and transferred to the CN 3050.
A BS (Base Station) 3022 (ac) and an ASN-GW (Access Service Network-Gateway) 3021 are connected to the WiMAX access network 3020. The BS 3022 (ac) is a node that mutually converts a WiMAX radio signal from the MN 3040 into a wired signal and transfers it, and transmits and receives control signals and user data to and from the MN 3040 and ASN-GW 3021.

FIG. 16A shows a user data protocol stack in the WiMAX access network 3020. As shown in FIG. 16A, the BS 3022 (ac) extracts an IP packet from the WiMAX radio signal received from the MN 3040, performs GRE (Generic Routing Encapsulation) encapsulation (Non-patent Document 7), and performs ASN-GW3021. Forward to. Also, a GRE packet is received from the ASN-GW 3021, converted into a WiMAX radio signal, and transferred to the MN 3040.
The ASN-GW 3021 is an access router that accommodates the MN 3040, and a Mobile IP in which a node called Proxy MIP (Non-patent Document 8: Association of HoA and CoA and PMA (Proxy Mobile Agent) is registered with the HA on behalf of the terminal. Protocol) PMA function. That is, the ASN-GW 3021 registers its own IP address in the HA 3012 as a CoA on behalf of the MN 3040. ASN-GW 3021 transmits / receives control signals and user data to / from HA 3012 and BS 3022 (ac).
As shown in FIG. 16A, the ASN-GW 3021 receives the GRE-encapsulated user packet from the BS 3022 (ac), converts it into an IPinIP packet, and transfers it to the HA 3012. Also, the IPinIP packet is received from the HA 3012, converted into a GRE packet, and transferred to the BS 3022 (ac).

An eBS (Evolved Basic Station) 3033 (ac), an AGW (Access Gateway) 3031, and an SRNC (Session Reference Network Controller) 3032 are connected to the UMB access network 3030. The eBS 3033 (a to c) is a node that converts a UMB wireless signal into a wired signal and transfers it. The eBS 3033 (ac) transmits and receives control signals to and from the MN 3040, AGW 3031, SRNC 3032, and other eBSs 3033 (ac). In addition, user data is transmitted / received to / from the MN 3040, the AGW 3031, and the other eBSs 3033 (ac).
FIG. 16B shows a protocol stack diagram of user data in the UMB access network 3030. As shown in FIG. 16B, the eBS 3033 (a to c) extracts an IP packet from the UMB radio signal received from the MN 3040, performs GRE encapsulation, and transfers the packet to the AGW 3031. Also, a GRE packet is received from the AGW 3031, converted into a UMB radio signal, and transferred to the MN 3040.
The AGW 3031 is an access router that accommodates the MN 3040, and has a Proxy MIP PMA function. That is, the IP address of the MN 3040 is registered in the HA 3012 as CoA. The AGW 3031 transmits and receives control signals to and from the HA 3012, SRNC 3032, and eBS 3033 (ac). In addition, user data is transmitted to and received from the HA 3012 and the eBS 3033 (ac).
As shown in FIG. 16B, the AGW 3031 receives the GRE-encapsulated user packet from the eBS 3033 (ac), converts it into an IPinIP packet, and transfers it to the HA 3012. Also, the IPinIP packet is received from the HA 3012, converted into a GRE packet, and transferred to the eBS 3033 (ac).
The SRNC 3032 is a node that manages communication session information in the UMB access network 3030 (that is, the ID of the eBS to which the terminal is connected, the ID of the AGW, the state of the wireless connection, etc.). The SRNC 3032 transmits and receives control signals to and from the eBS 3033 (ac) and the AGW 3031.

2. Handover Processing FIG. 17 shows a procedure in which the MN 3040 performs handover from the WiMAX access network 3020 to the UMB access network 3030 by the prior art Loosely Coupled Interworking.
First, the MN 3040 is connected only to the WiMAX access network 3020, and performs data communication with the CN 3050 via the BS 3022c, the ASN-GW 3021, and the HA 3012 (3101). At this point, the MN 3040 holds the WiMAX communication context in its own memory. The WiMAX communication context includes at least the ID of the connected BS (BS 3022c), QoS information for each IP flow (filter TFT (Traffic Flow Template) for identifying an IP flow, QoS class of each IP flow, etc.), MN 3040 -The encryption key etc. which protect the radio | wireless communication between BS3022c are included. The BS ID being connected is acquired from an advertisement message periodically broadcast by the BS. The QoS information for each IP flow is set when connecting to the WiMAX access network 3020 or when starting data communication with the CN 3050, but the description of the setting procedure is omitted. The encryption key for protecting the wireless communication between the MN 3040 and the BS 3022c is generated in a user authentication process performed when connecting to the WiMAX access network 3020 and an MN-BS key exchange process performed when connecting to the BS 3022c (these (This process is not shown in FIG. 17 since it was performed before step 3101.)
FIG. 18 shows a WiMAX encryption key generation method based on the prior art. Hereinafter, a procedure in which the MN 3040 and the BS 3022c generate a wireless zone encryption key will be described with reference to FIG.
First, when the MN 3040 connects to the WiMAX access network 3020, user authentication by EAP (Extensible Authentication Protocol) is performed, and the AAA 3011 and the MN 3040 share the MSK (Master Session Key). The MSK is notified from the AAA 3011 to the ASN-GW 3021 in the EAP authentication process. The ASN-GW 3021 generates a PMK (Pairwise Master Key) from the MSK and stores it in the memory. Thereafter, when the MN 3040 connects to the BS 3022c, the ASN-GW 3021 generates an AK (Authorization Key) _BS from the PMK and the ID of the BS 3022c and notifies the BS 3022c. Since AK_BS is a function of BS ID, it has a different value for each BS. On the other hand, the MN 3040 generates an AK_BS for the BS 3022c using the same preset algorithm as the ASN-GW 3021. At this point, the MN 3040 and the BS 3022c share the same AK_BS. Then, the MN 3040 and the BS 3022c perform a key exchange process using the AK_BS, and exchange an encryption key TEK (Transport Encryption Key) _BS in the wireless section. The generation of the encryption key (TEK_BS) for the wireless section is thus completed.

Returning to FIG. 17, the description of the conventional handover procedure will be continued. After step 3101, the MN 3040 determines a handover to the UMB access network 3030 because the WiMAX radio wave condition is deteriorated (3102). And the connection procedure (3103-3111) to the UMB access network 3030 is started. Hereinafter, a connection procedure (3103 to 3111) to the UMB access network 3030 defined in Non-Patent Document 9 will be described.
First, the MN 3040 measures the radio wave condition of the UMB access network 3030, and requests connection to an eBS (for example, eBS 3033a) having the best radio wave condition (3103). The connection request transmitted from the MN 3040 to the eBS 3033a includes at least a terminal ID (RATI: Random Access Terminal Identifier) randomly generated by the MN 3040 and an identifier (Route Counter: route counter) assigned by the MN 3040 to the route in the UMB access network 3030. Is included. The eBS 3033a receives the connection request from the MN 3040 and returns a success response. Also, the MN 3040 is notified of the ID of the SRNC (SRNC 3032) to which the MN 3040 should be connected.
Next, the MN 3040 requests connection to the SRNC (SRNC 3032) notified in Step 3103 (3104). The connection request transmitted from the MN 3040 to the SRNC 3032 includes at least a RATI generated by the MN 3040 and a RouteCounter that identifies a route to the SRNC 3032. The SRNC 3032 returns a success response to the MN 3040 and assigns a unicast ID (UATI: Unicast Access Terminal Identifier) to the MN 3040.

Subsequently, EAP-AKA (Extensible Authentication Protocol Method for 3 rd Generation Authentication and Key Agreement) authentication (Non-Patent Document 10 to 11) is performed (3105). As a result of the EAP-AKA authentication, the MN 3040 and the SRNC 3032 share the MSK, and the MN-SRNC key exchange is performed between the MN 3040 and the SRNC 3032 (3106). Parameters related to the MN-SRNC key exchange will be described later with reference to FIG. As a result of the key exchange, an encryption key (TSK_SRNC (see FIG. 19, described later)) that protects communication between the MN 3040 and the SRNC 3032 is generated. Thereafter, a wireless data link setting between the MN 3040 and the SRNC 3032 is performed in the message protected by the encryption key (TSK_SRNC) (3107).

Subsequently, the SRNC 3032 notifies the eBS 3033a of UMB connection information (ID of AGW 3031) and UMB authentication information (parameter MSK_eBS generated from the MSK (see FIG. 19, described later)) (3108). The eBS 3033a performs key exchange with the MN 3040 using UMB authentication information (MSK_eBS), and generates an encryption key (TSK_eBS (see FIG. 19, described later)) that protects communication between the MN 3040 and the eBS 3033a (3109).
FIG. 19 shows a UMB encryption key generation method based on the prior art. Hereinafter, parameters handled in the key exchange process (steps 3106 and 3109 in FIG. 17) between MN 3040 and SRNC 3032 and between MN 3040 and eBS 3033a will be described with reference to FIG. (Details of the key exchange processing described below are defined in Non-Patent Documents 12 to 13.) First, in the EAP-AKA authentication of Step 3105 in FIG. 17, AAA 3011 and MN 3040 are MSK (Master Session Key) _SRNC. Share MSK_SRNC is notified from AAA 3011 to SRNC 3032 in the EAP-AKA authentication process. The MN 3040 and the SRNC 3032 generate a PMK (Pairwise Master Key) _SRNC using the same algorithm set in advance from the MSK_SRNC, and perform MN-SRNC key exchange processing (step 3106 in FIG. 17) using the PMK_SRNC. As a result of the MN-SRNC key exchange process, an encryption key TSK (Transient Session Key) _SRNC that protects communication between the SRNC 3032 and the MN 3040 is generated.

Thereafter, in step 3108 of FIG. 17, the SRNC 3032 notifies the eBS 3033a of the RouteCounter for identifying the route to the eBS3033a and the parameter MSK_eBS generated from the MSK_SRNC. MSK_eBS is a function of a Route Counter that identifies a route in the UMB access network, and therefore has a different value for each eBS. The eBS 3033a generates a PMK_eBS from the MSK_eBS using the previously set algorithm that is shared in the same manner as the SRNC 3032, and performs a key exchange process (step 3109 in FIG. 17) with the eBS 3033a using the PMK_eBS. As a result, an encryption key (TSK_eBS) that protects communication between the MN 3040 and the eBS 3033a is generated.
Returning to FIG. 17, the description of the handover procedure based on the prior art will be continued. After the key exchange between the MN 3040 and the eBS 3033a (step 3109), the MN 3040 and the eBS 3033 set a wireless data link in the message protected by the encryption key (TSK_eBS) (3110). Finally, the GRE tunnel setting between the eBS 3033a and the AGW 3031, the IPinIP tunnel setting between the AGW 3031 and the HA 3012, and the IP address issuance from the AGW 3031 to the MN 3040 are performed (3111), and the connection to the UMB access network 3030 is completed. Thereafter, the MN 3040 performs data communication with the CN 3050 via the eBS 3033a, AGW 3031, and HA 3012 (3112). This completes the handover procedure based on the prior art.

As an example of another system that performs cooperation between heterogeneous access networks by Loosely Coupled Interworking, W-CDMA (Wideband Code Multiple Access) and WLAN (Wireless Local Area) network systems defined in Non-Patent Documents 14 to 16 There is. In the handover between W-CDMA and WLAN, the data path is switched after the connection processing to the destination access network is completed, as in the handover between WiMAX and UMB described above.
Patent Document 1 is disclosed as an invention for speeding up handover between W-CDMA and WLAN. In Patent Document 1, a W-CDMA packet control device (SGSN: Serving GPRS Support Node) and a mobile network packet relay device (GGSN: Gateway GPRS Support Node) are used, and a WLAN relay device (WAG: WLAN Access) is also used as a WLAN. Accommodating speeds up IP address setting, data path change, and re-authentication processing.

JP 2006-203641 A 3GPP2 X. P0046-0 v0.4, TEF: Technology Evolution Framework, Sec. 7, Sec. 9 WiMAX Forum Network Architecture-Stage2-3GPP2-WiMAX Interworking-Release 1.1.0, Sec. 7, Sec. 9 WiMAX Forum Network Architecture-Stage 3-Annex: 3GPP2-WiMAX Interworking-Release 1.1.0 IETF RFC3344, IP Mobility Support for IPv4 IETF RFC3775, Mobility Support in IPv6 IETF RFC2003, IP Encapsulation with IP IETF RFC 2784, Generic Routing Encapsulation (GRE) IETF draft-ietf-netlmm-proxymip-01, Proxy Mobile Ipv6, http: // www. ietf. org / internet-drafts / draft-ietf-netlmm-proxymip6-01. txt 3GPP2 A.1. S0020-0 v0.4, Interoperability Specification (IOS) for Ultra Mobile Broadband (UMB) Radio Access Network Interfaces, Sec. 3.1.1 IETF RFC3748, Extensible Authentication Protocol (EAP) IETF RFC4187, Extensible Authentication Protocol Method for 3rd Generation Authentication and Key Agreement (EAP-AKA) 3GPP C.I. S0084-005-0 v1.6, Security Functions for Ultra Mobile Broadband (UMB) Air Interface Specification Sec. 4 3GPP2 S40-20070618-007R7 UMB Access Authentication Architecture 3GPP TS 22.234, Requirements on 3GPP system to Wireless Local Area Network (WLAN) interworking 3GPP TS 23.234, 3GPP system to Wireless Local Area Network (WLAN) interworking; System description 3GPP TS33.234, 3G security; Wireless Local Area Network (WLAN) interworking security

When performing handover between different types of access networks by the Loosely Coupled Interworking described above, the data path cannot be switched until the connection processing to the destination access network is completed. Therefore, there is a possibility that interruptions occur in applications such as IP phone calls, video conferences, and moving image distribution. In particular, in the EAP authentication process (or EAP-AKA authentication process) performed during the connection process to the destination access network, since communication is performed with the AAA of the core network, it may take time in seconds depending on conditions. is there.
In addition, when the first access network apparatus directly accommodates the second access network apparatus as in Patent Document 1, the access gateway that performs processing such as charging is shared, so that different communication is performed. There is a problem that it becomes difficult to apply between access networks of business operators.
The present invention has been made in view of the above background, and an object of the present invention is to speed up switching of data paths during handover between different access networks while ensuring independence of each access network.

In order to solve the above-described problem, in the present invention, an HO-GW (Hand Over-Gateway) is provided between different types of access networks, and an Inter-AGW handover procedure in the first access network (handover procedure with change of AGW) Is converted into an Inter-AGW handover procedure in the second access network and relayed. Compared with Loosely Coupled Interworking, the UMB and WiMAX Inter-AGW handover procedures perform time-consuming processes such as EAP authentication (or EAP-AKA authentication) after switching the data path to the destination base station. The data path can be switched at high speed.
The relay processing performed by the HO-GW includes control signal relay processing and communication data relay processing. In the relay process of the control signal, the communication context of the second access network is generated from the communication context of the first access network (that is, the QoS information and the authentication parameter used for generating the encryption key), and the second access network Set to. In the relay processing of communication data, user data received from the first access network is converted into a second access network format and transferred.

The communication system of the present invention includes a terminal having connection means in at least two different mobile communication networks, a first mobile communication network that accommodates the terminal, a second mobile communication network that accommodates the terminal, A gateway device connected to the first mobile communication network and the second mobile communication network;
The gateway device receives a movement control signal received from the first mobile communication network when the terminal moves from the first mobile communication network to the second mobile communication network. And the communication data received from the first mobile communication network is transferred to the second mobile communication network.
The gateway device generates a communication context in the second mobile communication network based on a communication context included in the mobility control signal received from the first mobile communication network, and the second mobile communication Can be transferred to the network.
The communication context relayed by the gateway device can include, for example, at least one of transfer filter information, QoS information, and an encryption key.
The mobility control signal can include, for example, a control signal for transferring a communication context in the first or second mobile communication network and a control signal for setting a transfer path for the communication data.

According to the first solving means of the present embodiment,
A first access network having a plurality of first base stations that mutually convert and transfer a first wireless signal from a wireless terminal into a wired signal, and a first access router that accommodates the first base station When,
A plurality of second base stations that mutually convert a second wireless signal having a communication format different from that of the first wireless signal from a wireless terminal into a wired signal and transfer it, and a second base station that accommodates the second base station A second access network having a communication format different from that of the first access network;
A wireless terminal capable of accessing both the first access network and the second access network, which are heterogeneous access networks;
Accommodating both a first access router of the first access network and a second access router of the second access network, at least one first base station and at least one second base station; When the wireless terminal moves between the first access network and the second access network, a handover procedure in the first access network and a handover procedure in the second access network A gateway device that mutually converts and relays,
A communication system comprising:
When the wireless terminal is connected only to the first access network and communicates with a communication destination device via the first base station, the first access router, and the core network, a user Through authentication, the core network and the wireless terminal share an encryption key MSK, and the wireless terminal holds first communication context information and the ID of the gateway device,
When the wireless terminal moves to the second access network side and decides a handover to the second access network, a handover connection request including an ID of the wireless terminal is transmitted,
The first access router and the gateway device using an encryption key AK_GW that protects communication between the core network and the first access router, generated based on the MSK received from the core network by the first access router And the data path is set,
The gateway device uses the encryption key MSK_eBS or K_eNB * + that protects communication between the gateway device and the second base station, which is generated based on AK_GW sent from the first access router. And the data path between the second base station is set,
An encryption key TSK_eBS or a radio protection encryption key for protecting communication between the radio terminal and the second base station, generated based on MSK_eBS or K_eNB * + received from the gateway device by the second base station, The wireless terminal and the second base station are wirelessly transmitted on the protected communication path by the TSK_eBS or the wireless protection encryption key generated based on the authentication information exchanged by the wireless terminal with the MSK or the second base station. Set the data link settings,
The wireless terminal communicates with the communication destination device via the core network, the first access router, the gateway device, and the second base station,
Then, the wireless terminal performs user authentication with the second access network, and provides the communication system for executing a handover to the second access network.

According to the second solving means of the present embodiment,
A first access network having a plurality of first base stations that mutually convert and transfer a first wireless signal from a wireless terminal into a wired signal, and a first access router that accommodates the first base station When,
A plurality of second base stations that mutually convert a second wireless signal having a communication format different from that of the first wireless signal from a wireless terminal into a wired signal and transfer it, and a second base station that accommodates the second base station A second access network having a communication format different from that of the first access network;
A wireless terminal capable of accessing both the first access network and the second access network, which are heterogeneous access networks;
Accommodating both a first access router of the first access network and a second access router of the second access network, at least one first base station and at least one second base station; When the wireless terminal moves between the first access network and the second access network, a handover procedure in the first access network and a handover procedure in the second access network A gateway device that mutually converts and relays,
A communication system comprising:
When the wireless terminal is connected to the second access network and performs data communication with a communication destination device via the second base station, the second access network, or the core network, user authentication is performed. Thus, when the wireless terminal and the core network share the encryption key MSK_SRNC or K_ASME, the wireless terminal moves to the first access network side, and determines the handover to the first access network. The terminal transmits a handover connection request including the ID of the wireless terminal,
The second access router uses the encryption key MSK_GW or K_eNB * that protects communication between the second access router and the gateway device, which is generated based on the MSK_SRNC or K_ASME received from the core network by the second access router. A data path between the router and the gateway device is set,
The gateway device and the first key are generated by the encryption key AK_BS for protecting communication between the gateway device and the first base station, which is generated based on the MSK_GW or K_eNB * received from the second access router by the gateway device. The data path with the base station is set up,
An encryption key TEK_BS that protects communication between the wireless terminal and the first base station, which is generated based on AK_BS received by the first base station from the dateway device, and the wireless terminal is MSK_SRNC or K_ASME, By the TEK_BS generated based on the authentication information exchanged with the first base station, the wireless terminal and the first base station perform wireless data link setting on the protected communication path,
The wireless terminal communicates with the communication destination device via the first base station, the gateway device, the second access router, and the core network,
Thereafter, the wireless terminal performs user authentication with the first access network and provides the communication system for executing a handover to the first access network.

According to the third solving means of the present embodiment,
A first access network having a plurality of first base stations that mutually convert and transfer a first wireless signal from a wireless terminal into a wired signal, and a first access router that accommodates the first base station Connected to
A plurality of second base stations that mutually convert a second wireless signal having a communication format different from that of the first wireless signal from a wireless terminal into a wired signal and transfer it, and a second base station that accommodates the second base station Two access routers, connected to a second access network having a communication format different from that of the first access network,
Accommodating both a first access router of the first access network and a second access router of the second access network, at least one first base station and at least one second base station; Contain
When the wireless terminal that can access both the first access network and the second access network, which are heterogeneous access networks, moves between the first access network and the second access network, Relaying by interconverting a handover procedure in the first access network and a handover procedure in the second access network;
A gateway device,
When the wireless terminal moves from the first access network to the second access network and decides a handover to the second access network,
The gateway device generates the core network-the first access router generated based on an encryption key MSK received by the first access router from the core network and shared by the core network and the wireless terminal by user authentication. Receiving an encryption key AK_GW that protects communication between them, and by AK_GW, setting a data path between the first access router and the gateway device,
The gateway device generates an encryption key MSK_eBS or K_eNB ** that protects communication between the gateway device and the second base station, which is generated based on AK_GW sent from the first access router. Pass to the base station, set the data path between the gateway device and the second base station by MSK_eBS or K_eNB * +,
An encryption key TSK_eBS or a radio protection encryption key for protecting communication between the radio terminal and the second base station, generated based on MSK_eBS or K_eNB * + received from the gateway device by the second base station, The wireless terminal and the second base station are wirelessly transmitted on the protected communication path by the TSK_eBS or the wireless protection encryption key generated based on the authentication information exchanged by the wireless terminal with the MSK or the second base station. Set the data link settings,
The wireless terminal communicates with the communication destination device via the core network, the first access router, the gateway device, and the second base station,
Then, the gateway apparatus is provided in which the wireless terminal performs user authentication with the second access network and performs a handover to the second access network.

According to the fourth solving means of the present embodiment,
A first access network having a plurality of first base stations that mutually convert and transfer a first wireless signal from a wireless terminal into a wired signal, and a first access router that accommodates the first base station Connected to
A plurality of second base stations that mutually convert a second wireless signal having a communication format different from that of the first wireless signal from a wireless terminal into a wired signal and transfer it, and a second base station that accommodates the second base station Two access routers, connected to a second access network having a communication format different from that of the first access network,
Accommodating both a first access router of the first access network and a second access router of the second access network, at least one first base station and at least one second base station; Contain
When the wireless terminal that can access both the first access network and the second access network, which are heterogeneous access networks, moves between the first access network and the second access network, Relaying by interconverting a handover procedure in the first access network and a handover procedure in the second access network;
A gateway device,
When the wireless terminal moves to the first access network side and decides a handover to the first access network,
The gateway device receives the second access router received from the core network based on the encryption key MSK_SRNC or K_ASME shared by the wireless terminal and the core network by user authentication, and the gateway Receiving an encryption key MSK_GW or K_eNB * that protects communication between the devices, and setting a data path between the second access router and the gateway device by MSK_GW or K_eNB *,
Passed to the first base station an encryption key AK_BS that is generated based on MSK_GW or K_eNB * received by the gateway device from the second access router and protects communication between the gateway device and the first base station, By AK_BS, a data path between the gateway device and the first base station is set,
An encryption key TEK_BS that protects communication between the wireless terminal and the first base station, which is generated based on AK_BS received by the first base station from the dateway device, and the wireless terminal is MSK_SRNC or K_ASME, By the TEK_BS generated based on the authentication information exchanged with the first base station, the wireless terminal and the first base station perform wireless data link setting on the protected communication path,
The wireless terminal communicates with the communication destination device via the first base station, the gateway device, the second access router, and the core network,
Thereafter, the gateway apparatus is provided in which the wireless terminal performs user authentication with the first access network and executes a handover to the first access network.

  According to the present invention, it is possible to increase the speed of data path switching during handover between different access networks while ensuring the independence of each access network.

Hereinafter, embodiments of the present invention will be described with reference to the drawings.

I. Embodiment 1

1. System Configuration FIG. 1 is a diagram showing a configuration example of a communication network in the present embodiment.
The wireless terminal MN5 is a terminal having access means in both the WiMAX access network 2 and the UMB access network 3. The communication destination device CN6 is a terminal or server that communicates with the MN5.
The core network 1 is a communication network that accommodates both the WiMAX access network 2 and the UMB access network 3, and is connected to the server AAA11 and the node HA12. The AAA 11 is a server that manages the association between the identifier of the terminal and the authentication information and authenticates the terminal. HA 12 is a node defined by Mobile IP, and manages the association between HoA and CoA of MN 5. The HA 12 converts the IP packet addressed to the HoA of the MN 5 received from the CN 6 into an IPinIP packet addressed to the CoA of the MN 5 and forwards it to the MN 5 so that the communication by the HoA can be continued even when the MN 5 moves on the network. Conversely, the IPinIP packet received from MN5 is decapsulated and forwarded to CN6.
A node (base station) BS 22 (ac) and an access router ASN-GW 21 are connected to the WiMAX access network 2. The BS 22 (ac) is a node that converts the WiMAX radio signal from the MN 5 into a wired signal and transfers it. BS22 (ac) transmits / receives a control signal and user data with MN5 and ASN-GW21.

FIG. 16A shows a protocol stack diagram of user data in the WiMAX access network 2. As shown in FIG. 16A, the BS 22 (ac) extracts an IP packet from the WiMAX radio signal received from the MN 5, performs GRE encapsulation, and transfers the IP packet to the ASN-GW 21. Also, a GRE packet is received from the ASN-GW 21, converted into a WiMAX radio signal, and transferred to the MN 5.
The ASN-GW 21 is an access router that accommodates the MN 5 and has a Proxy MIP PMA function. That is, the ASN-GW 21 registers its own IP address with the HA 12 as a CoA on behalf of the MN 5. The ASN-GW 21 transmits and receives control signals and user data to and from the HA 12 and BS 22 (ac).
As shown in FIG. 16A, the ASN-GW 21 receives the GRE-encapsulated user packet from the BS 22 (ac), converts it into an IPinIP packet, and transfers it to the HA 12. Also, the IPinIP packet is received from the HA 12, converted into a GRE packet, and transferred to the BS 22 (ac).
A node (base station) eBS 33 (ac), an access router AGW 31, and a node SRNC 32 are connected to the UMB access network 3. The eBSs 33 (a to c) are nodes that convert UMB wireless signals into wire signals and transfer them. The eBS 33 (ac) transmits and receives control signals to and from the MN 5, AGW 31, SRNC 32, and other eBSs 33 (ac). Moreover, user data is transmitted / received with MN5, AGW31, and other eBS33 (ac).
FIG. 16B shows a protocol stack diagram of user data in the UMB access network 3. As shown in FIG. 16B, the eBS 33 (a to c) decodes the UMB radio signal received from the MN 5 to extract an IP packet, performs GRE encapsulation, and transfers the packet to the AGW 31. Also, a GRE packet is received from the AGW 31, converted into a UMB radio signal, and transferred to the MN 5.

The AGW 31 is an access router that accommodates the eBSs 33 (a to c), and has a Proxy MIP PMA function. In other words, its own IP address is registered in the HA 12 as a CoA on behalf of the MN 5. The AGW 31 transmits and receives control signals to and from the HA 12, SRNC 32, and eBS 33 (ac). In addition, user data is transmitted to and received from the HA 12 and the eBS 33 (ac).
As shown in the protocol stack diagram of FIG. 16B, the AGW 31 receives the GRE-encapsulated user packet from the eBS 33 (ac), converts it into an IPinIP packet, and transfers it to the HA 12. Also, the IPinIP packet is received from the HA 12, converted into a GRE packet, and transferred to the eBS 33 (ac).
The SRNC 32 is a node that manages communication session information in the UMB access network 3 (that is, the ID of the eBS to which the terminal is connected, the ID of the AGW, the state of the wireless connection, etc.). The SRNC 32 transmits and receives control signals to and from the eBS 33 (ac) and the AGW 31.

(HO-GW4)
The HO-GW 4 is a gateway device connected to both the WiMAX access network 2 and the UMB access network 3. When the MN 5 moves between the WiMAX access network 2 and the UMB access network 3, the HO-GW 4 performs an Inter-AGW handover procedure in the WiMAX access network 2 and an Inter-AGW handover procedure in the UMB access network 3. Convert and relay.
The HO-GW 4 behaves as a virtual ASN-GW and WiMAX BS for the WiMAX access network 2. That is, the HO-GW 4 is connected to the ASN-GW 21 via an ASN-GW interface (WiMAX R4 interface), and transmits and receives control signals and user data. Further, the HO-GW 4 behaves as a virtual SRNC and eBS for the UMB access network 3. That is, the HO-GW 4 is connected to the SRNC 32 via an interface between SRNCs (UM4 U4 interface), and transmits and receives control signals. In addition, the AGW 31 is connected via an AGW-eBS interface (UM1 U1 interface) to transmit and receive control signals and user data. The eBS 33 (a to c) is connected via an inter-eBS interface (UMB U3 interface) to transmit and receive control signals and user data. Here, HO-GW4 is good also as a structure connected with all the eBS in a predetermined UMB area, for example. Alternatively, for example, the HO-GW 4 may not be connected to all eBSs, but may be connected only to one or a plurality of eBSs (eBS 33a in the example of FIG. 1) located at the boundary with the WiMAX access network 2. . With such a configuration, it is possible to simplify the setting of the HO-GW 4 and to save resources used by the HO-GW 4 for connection to the eBS.
FIG. 2 shows a device configuration example of the HO-GW 4.
The HO-GW 4 includes a hard disk 81, a CPU 82, a memory 83, and IFs (84 a and 84 b), which are connected via a bus 85. A program for realizing the function of the HO-GW 4 is stored in the Memory 83, and the CPU 82 sequentially reads and executes it.

(Context table)
FIG. 3A shows a configuration example of the WiMAX context table 100 managed by the HO-GW 4 using the Memory 83 or the Hard Disk 81. The WiMAX context table 100 includes an MN ID 101, connection destination information 102, QoS information 103, authentication information 104, data path information 105, and a pointer 106 to a UMB Context.
In the MN ID 101, an MN ID in the WiMAX access network 2 (that is, an address such as an MN MAC (Media Access Control) address) is set. In the connection information 102, the ID of the BS accommodating the MN and the ID of the ASN-GW are set. In the QoS information 103, filter information (TFT: Traffic Flow Template) for identifying an IP flow, a QoS class of each IP flow, and the like are set. In the authentication information 104, a parameter AK_GW notified from the ASN-GW 21 (see FIG. 14, description will be described later), a parameter AK_BS notified from the HO-GW 4 to the WiMAX BS (refer to FIG. 20, description will be described later), and the like are set. The The data path information 105 includes tunnel information for transmitting / receiving user data between the WiMAX access network 2 and the HO-GW 4 (that is, the tunnel end point (ASN-GW) IP address, tunnel header information (GRE Key), etc.). Is set. In the pointer 106 to the UMB context, a pointer to a related entry in the UMB context table 120 (described later) is set.

FIG. 3B shows a configuration example of the UMB context table 120 managed by the HO-GW 4 using the Memory 83 or the Hard Disk 81. The UMB context table 120 includes a MN ID 121, connection destination information 122, QoS information 123, authentication information 124, data path information 125, and a pointer 126 to WiMAX Context.
In the MN ID 121, the unicast ID (UATI) of the MN in the UMB access network 3 is set. In the connection destination information 122, the ID of the eBS that accommodates the MN, the ID of the SRNC, the ID of the AGW, and the like are set. In the QoS information 123, filter information (TFT) for identifying an IP flow, a QoS class of each IP flow, and the like are set. In the authentication information 124, a parameter MSK_GW notified from the SRNC 32 (see FIG. 20, description will be described later), a parameter MSK_eBS notified from the HO-GW 4 to the UMB eBS (see FIG. 14, description described later), and the like are set. The data path information 125 protects the tunnel information for transmitting / receiving user data between the UMB access network 3 and the HO-GW 4 (that is, the IP address of the tunnel endpoint (AGW or eBS), and the communication between the HO-GW 4 and the MN). The encryption key TSK_GW (see FIG. 14, description will be described later) is set, etc. In the pointer 126 to the WiMAX context, a pointer to an associated entry in the WiMAX context table 100 is set.

2. Handover processing (WiMAX → UMB)
FIG. 4 shows a procedure in which the MN 5 performs handover from the WiMAX access network 2 to the UMB access network 3 in the system of the present embodiment. FIG. 1 is an explanatory diagram of such a handover.
First, the MN 5 is connected only to the WiMAX access network 2 and performs data communication with the CN 6 via the BS 22c, the ASN-GW 21 and the HA 12 (201). At this point, the HO-GW 4 does not hold any information regarding the MN 5. On the other hand, the MN 5 holds WiMAX communication context information and H0-GW4 information. Here, the WiMAX communication context held by the MN 5 includes the ID of the connected BS (BS 22c), QoS information for each IP flow, an encryption key that protects wireless communication between the MN 5 and the BS 22c (acquisition of each information) The method is similar to the method described in the prior art). The HO-GW4 information includes the virtual ASN-GW ID of the HO-GW4, the virtual BS ID, the virtual SRNC ID, the virtual eBS ID, and other parameters and algorithm information necessary for communication with the HO-GW4. including. The information of the HO-GW 4 may be dynamically acquired from the AAA 11 or the like when the MN 5 is connected to the WiMAX access network, or may be statically set on the MN 5 hardware. Or you may acquire from the message etc. which are advertised from neighboring WiMAX BS.
Similarly to the conventional technique (see FIG. 18, WiMAX encryption key generation method based on the conventional technique), the MN 5 and the BS 22c generate a wireless zone encryption key. That is, first, when the MN 5 connects to the WiMAX access network 2, user authentication by EAP (Extensible Authentication Protocol) is performed, and the AAA 11 and the MN 5 share the MSK (Master Session Key). The MSK is notified from the AAA 11 to the ASN-GW 21 in the EAP authentication process. The ASN-GW 3021 generates a PMK (Pairwise Master Key) from the MSK and stores it in the memory. Thereafter, when the MN 5 connects to the BS 22c, the ASN-GW 21 generates an AK (Authorization Key) _BS from the PMK and the ID of the BS 22c, and notifies the BS 22c. Since AK_BS is a function of BS ID, it has a different value for each BS. On the other hand, the MN 5 generates an AK_BS for the BS 22c using the same preset algorithm as the ASN-GW 21. At this point, the MN 5 and the BS 22c share the same AK_BS. Then, the MN 5 and the BS 22c perform a key exchange process using the AK_BS, and exchange an encryption key TEK (Transport Encryption Key) _BS in the wireless section. The generation of the encryption key (TEK_BS) for the wireless section is thus completed.

After that, the MN 5 decides to hand over to the UMB access network 3 because the WiMAX radio wave condition deteriorates (202). Then, the MN 5 measures the radio wave condition of the UMB access network 3, and requests connection to, for example, an eBS (eg, eBS 33a) having the best radio wave condition (203). The connection request of the MN 5 can include, for example, the MN ID, the virtual BS ID or virtual SRNC ID of the HO-GW 4, the Route Counter, and the like.
In step 203, the following general processing is executed.
The ASN-GW 21 generates an encryption key AK_GW that protects communication between the core network 1-ASN-GW 21 based on the MSK received from the core network 1 using an algorithm set in advance, and stores it in the HO-GW 4 hand over. With this encryption key, a data path between ASN-GW 21 and HO-GW 4 is set (see FIG. 5, steps 266 and 267 described later). Further, the communication between the encryption key TSK_GW and the HO-GW4-eBS 33a that protects the communication between the HO-GW4-MN5 based on the AK_GW received from the ASN-GW21 by using the algorithm set in advance by the HO-GW4. An encryption key MSK_eBS to be protected is generated and set in the UMB context table 120. At this time, the HO-GW 4 acquires the WiMAX communication context of the MN 5 from the BS 22c and the ASN-GW 21, converts it into the UMB communication context, and notifies the eBS 33a. With this encryption key MSK_eBS, a data path between the HO-GW 4 and the eBS 33a is set (see FIG. 5, steps 269 and 270 described later).
Details of step 203 will be described later with reference to FIGS.
Next, the eBS 33a creates an encryption key PMK_eBS using a preset algorithm based on the authentication information (including MSK_eBS) included in the UMB communication context notified from the HO-GW 4 in step 203. The eBS 33a performs key exchange with the MN 5 using parameters such as PMK_eBS (204). Parameters used for key exchange between the MN 5 and the eBS 33a will be described later with reference to FIG. As a result of the MN-eBS key exchange, the MN 5 and the eBS 33a generate an encryption key (TSK_eBS) that protects the communication between the MN 5 and the eBS 33a based on the PMK_eBS using a shared preset algorithm. Thereafter, messages between the MN 5 and the eBS 33a are protected by encryption.

Next, the MN 5 and the eBS 33a perform wireless data link setting on the protected communication path (205). When the setting of the wireless data link is completed, user data from the CN 6 reaches the MN 5 via the HA 12, the ASN-GW 21, the HO-GW 4, and the eBS 33a (206).
FIG. 8A and FIG. 8B show examples of protocol stacks in step 206. In the example of FIG. 8A, the HO-GW 4 extracts the IP packet from the GRE packet received from the ASN-GW 21 and encapsulates it with the UMB L2 (Layer 2) header and the L2TPv3 (Layer 2 Tunneling Protocol version 3) header. Transfer to eBS 33. The UMB L2 header is terminated at MN5, while L2TPv3 is terminated at eBS 33a. The eBS 33a extracts the UMB L2 packet from the L2TPv3 packet, adds an IRTP (Inter Route Tunneling Protocol) header and a UMB L2 header, and transfers them to the MN 5.
On the other hand, in the example of FIG. 8B, the HO-GW 4 extracts the IP packet in the GRE packet received from the ASN-GW 21, encapsulates it with the L2TPv3 header, and transfers it to the eBS 33a. The eBS 33a extracts an IP packet from the L2TPv3 packet, adds a UMB L2 header, and transfers the packet to the MN5.

Returning to FIG. 4, the description of the handover procedure will be continued. After step 205, the eBS 33a notifies the MN 5 of the ID of the SRNC 32 (207) (the eBS 33a knows the ID of the SRNC 32 in advance). The MN 5 requests connection to the notified SRNC 32 (208). In the connection request transmitted from the MN 5 to the SRNC 32 in step 208, the MN 5 unicast ID (UATI: equal to the WiMAX MN ID in this embodiment as shown in FIGS. 5 and 6 later) The SRNC ID (here, the virtual SRNC ID of the HO-GW 4) is included. The SRNC 32 acquires a UMB context from the HO-GW 4 using the notified unicast ID (UATI) and SRNC ID, and then returns a connection permission response to the MN 5. The connection permission response includes a unicast ID (UATI) newly assigned to the MN 5 by the SRNC 32.
Subsequently, EAP-AKA authentication is performed on the UMB access network (209). When the EAP-AKA authentication is successful, the MSK_SRNC (see FIG. 19) is shared between the MN 5 and the AAA 11. MSK_SRNC is notified from AAA 11 to SRNC 32.
Next, the encryption key TSK_SRNC (see FIG. 19) for protecting communication between the MN 5 and the SRNC 32 is exchanged using the MSK_SRNC (210). The method for generating the encryption key TSK_SRNC from the MSK_SRNC is as described with reference to FIG. After the MN-SRNC key exchange process, the communication between the MN 5 and the SRNC 32 is protected using TSK_SRNC.
Next, the MN 5 and the SRNC 32 set the wireless data link layer on the protected communication path (211). Finally, data path setting (GRE tunnel setting between eBS 33a and AGW 31 and IPinIP tunnel setting between AGW 31 and HA 12) and IP address issuance from AGW 31 to MN 5 are performed (212) to UMB access network 3 of MN 5 Connection is complete. Thereafter, the MN 5 performs data communication with the CN 6 via the eBS 33a, AGW 31, and HA 12 (213). This completes the procedure for the MN 5 to perform handover from the WiMAX access network 2 to the UMB access network 3.

(Details of step 203)
In the following, details of step 203 in FIG. 4 will be described in detail with reference to FIGS.
FIG. 5 shows an example of a call flow for performing a control handover in the WiMAX access network 2. Control handover is divided into a preparation phase in which the source access network prepares for handover (Preparation Phase) and an execution phase in which the terminal connects to the destination access network (Action Phase). Steps 251 to 260 in FIG. 5 correspond to the preparation phase, and steps after step 261 correspond to the execution phase.
First, the MN 5 transmits MOB_MSHO_REQ (251) to the BS 22c and requests preparation for handover. The MOB_MSHO_REQ (251) includes the ID of the MN 5 in the WiMAX access network 2 and the ID of the destination BS (here, the virtual BS ID of the HO-GW 4). Upon receiving MOB_MSHO_REQ (251), BS 22c transmits HO_REQ (252) including similar information to ASN-GW 21. The ASN-GW 21 transfers the HO_REQ (252) to the HO-GW 4.
The HO-GW 4 extracts the ID of the MN 5, the ID of the BS 22c, and the ID of the ASN-GW 21 from the HO_REQ (252), and sets them in the MN ID (101) and the connection destination information (102) of the WiMAX context table 100 (FIG. 3a). To do. Then, the MN5 ID is included in Context_Req (253) and transmitted to the ASN-GW 21 and BS 22c to request a WiMAX communication context. The BS 22c and the ASN-GW 21 return Context_Rpt (254) in response to this, and return WiMAX QoS information (TFT, QoS class) and authentication information (AK_GW: see FIG. 14, described later). The HO-GW 4 sets the QoS information and the authentication information included in the Context_Rpt (254) in the QoS information (103) and the authentication information (104) of the WiMAX context table 100 (FIG. 3a).
Next, the HO-GW 4 transmits Path_Prereg_Req (255) to the ASN-GW 21 and reserves the setting of the data path. The ASN-GW 21 responds with Path_Prereg_Rsp (256). The HO-GW 4 returns a confirmation response Path_Prereg_Ack (257).
Next, the HO-GW 4 transmits HO_RSP (258) to the ASN-GW 21 to notify the completion of handover preparation. The ASN-GW 21 transfers HO_RSP (258) to the BS 22c. BS 22c transmits MON_BSHO_RSP (259) to MN 5 and returns HO_Cnf (260) to ASN-GW 21. The ASN-GW 21 transfers HO_Cnf (260) to the HO-GW 4. Thus, the handover preparation phase is completed.

Next, the MN 5 transmits MOB_HO_IND (261) to the BS 22c, and starts a handover execution phase. When the BS 22c receives MOB_HO_IND (261), the BS 22c transmits HO_Cnf (262) to the HO-GW 4. The HO_Cnf (262) reaches the HO-GW 4 via the ASN-GW 21. The HO-GW 4 returns a HO_Ack (263) for the HO_Cnf (262). HO_Ack (263) reaches BS 22c via ASN-GW 21.
Next, the MN 5 transmits a RouteOpen Request (264) to the eBS 33a of the UMB, and requests connection to the eBS 33a. In RouteOpenRequest (264), the ID of the SRNC currently accommodating the MN (here, the virtual SRNC ID of HO-GW4), the route counter (RouteCounter) for identifying the route to MN5 by eNB33a, and the MN ID of WiMAX include. In a preferred example, the WiMAX MN ID may be set in the UATI field of the RouteOpenRequest. By setting the MN ID in the UATI field, there is an effect that the present embodiment can be implemented without changing the existing UMB standard.
Next, the eBS 33a transmits an IAS-Session Information Request (265) to the SRNC (here, the virtual SRNC of the HO-GW 4) included in the RouteOpen Request (264), and requests a UMB communication context. The IAS-Session Information Request (265) includes the same information as the RouteOpen Request (264).
The HO-GW 4 extracts the UATI (equal to the WiMAX MN ID in this embodiment) and the ID of the eBS 33a from the IAS-Session Information Request (265), and the MN ID (121) of the UMB context table 120 (FIG. 3b). To the connection destination information (122). In addition, using the WiMAX MN ID as a key, a related entry in the WiMAX context table 100 is searched to create a mutual link between the WiMAX context and the UMB context. That is, the pointer 106 to the UMB context in FIG. 3a and the pointer 126 to the WiMAX context in FIG. 3b are mutually set.
Then, the HO-GW 4 transmits Path_Req_Req (266) to the ASN-GW 21 to formally set a data path between the ASN-GW 21 and the HO-GW 4. The Path_Req_Req (266) includes tunnel information proposed by the HO-GW 4 (tunnel end IP address of the HO-GW 4, GRE Key, etc.). In response to this, the ASN-GW 21 responds with Path_Reg_Rsp (267). Path_Req_Rsp (267) includes tunnel information proposed by the ASN-GW 21 (tunnel end IP address of the ASN-GW 21, GRE Key, etc.). The HO-GW 4 sets the data path information negotiated in the Path_Req_Req (266) and the Path_Reg_Rsp (267) in the data path information (105) of the WiMAX context table 100 (FIG. 3a).
Next, the HO-GW 4 generates a UMB communication context (FIG. 3b) based on the WiMAX communication context (FIG. 3a) (268).
Hereinafter, UMB context generation processing in the HO-GW 4 will be described with reference to FIGS. 7 and 14.

FIG. 7 shows a UMB context generation routine 350 (step 268 in FIG. 5, step 308 in FIG. 6) in the HO-GW 4.
First, the HO-GW 4 copies the QoS information (103) of the WiMAX context table 100 (FIG. 3a) to the QoS information (123) of the UMB context table 120 (FIG. 3b) (351). Next, the authentication information MSK_eBS (124) of the UMB context table 120 (FIG. 3B) and the encryption key (TSK_GW) of the data path information (125) are generated from the authentication information (104) of the WiMAX context table 100 (FIG. 3A). (352). Details of step 352 will be described later with reference to FIG. This completes the UMB context generation routine 350.
FIG. 14 shows a method for generating a UMB encryption key from WiMAX authentication information.
Next, a method for generating UMB authentication information (step 352 in FIG. 7) will be described with reference to FIG. First, when the MN 5 connects to the WiMAX access network 2, user authentication by EAP is performed, and the MN 5 and the AAA 11 share the MSK. The MSK is notified from the AAA 11 to the ASN-GW 21 in the EAP authentication process. The ASN-GW 21 generates a PMK from the MSK using a preset algorithm and stores it in the memory.
Thereafter, when the ASN-GW 21 receives Context_Req (step 253 in FIG. 5) from the HO-GW 4, it generates AK_GW from the PMK and the virtual BS ID of the HO-GW 4 using a preset algorithm, and Context_Rpt. (Step 254 in FIG. 5) and notify the HO-GW 4. The HO-GW 4 sets AK_GW in the authentication information (104) of the WiMAX context table 100 (FIG. 3a). Then, the HO-GW 4 generates an encryption key (TSK_GW) that protects communication between the HO-GW 4 and the MN 5 using the algorithm (g1) set in advance and the AK_GW, and the UMB context table 120 (FIG. 3a). Data path information (125).
Further, when the HO-GW 4 receives the IAS-Session Information (step 265 in FIG. 5) from the eBS 33a, the HO-GW 4 receives the algorithm (g2) set in advance, the eBS ID included in the IAS-Session Information, and the AK_GW. MSK_eBS is generated and stored in the authentication information (124) of the UMB context table 120 (FIG. 3a). This MSK_eBS is notified to the eBS 33a in an IAS-Session Information Response (step 271 in FIG. 5, which will be described later). The eBS 33a generates an encryption key PMK_eBS based on the MSK_eBS using a preset algorithm (f2). For example, this PMK_eBS is used for key exchange between the MN5 and the eBS 33a (step 204 in FIG. 4). As a result of the key exchange, the eBS 33a generates TSK_eBS using the algorithm (f3) set in advance based on PMK_eBS.
Similar to ASN-GW21, HO-GW4, and eBS33a, MN5 generates TSK_GW by using a preset algorithm shared based on MSK and the like, and as a result of key exchange with eBS33a, PMK_eBS Based on (or based on MSK), TSK_eBS is generated using a preset algorithm.
As described above, the HO-GW 4 generates the authentication information (TSK_GW, MSK_eBS) of the UMB access network using the authentication information (AK_GW) notified from the WiMAX access network, thereby performing EAP-AKA authentication in UMB. Therefore, it is possible to protect data communication via UMB.

Returning to FIG. 5, the description of the call flow will be continued. After generating the UMB context in step 268, the HO-GW 4 generates QoS information (TFT and QoS class), authentication information (MSK_eBS generated by the method of FIG. 14), data path information (IAS-Session Information Response (269)). HO-GW4 tunnel termination IP address) and notify the eBS 33a. The eBS 33a stores the notified information on its own memory. Then, a RouteOpenAccept (270) is transmitted to the MN 5 to permit the connection.
After transmitting the IAS-Session Information Response (269), the HO-GW 4 transmits a HO_Complete (271) to the ASN-GW 21 to notify the completion of the handover. HO_Complete (271) reaches the BS 22c via the ASN-GW 21.
After transmitting HO_Complete (271), the ASN-GW 21 transmits Path_Dereg_Req (272) to the BS 22c, and deletes the data path between the ASN-GW 21 and the BS 22c. In response to this, the BS 22c returns Path_Dereg_Rsp (273). The ASN-GW 21 transmits an acknowledgment response Path_Dereg_Ack (274) to the BS 22c. This data path can be configured not to be deleted.
Thus, the call flow for performing the control handover in the WiMAX access network 3 is completed.

FIG. 6 shows an example of a call flow for performing an uncontrolled handover in the WiMAX access network 2. In non-controlled handover, the terminal makes a direct connection request to the destination base station without performing the handover preparation phase.
First, the MN 5 transmits a RouteOpen Request (301) to the eBS 33a. In RouteOpenRequest (301), the ID of the SRNC currently accommodating the MN (here, the virtual SRNC ID of HO-GW4), the route counter (RouteCounter) that MN5 assigns to the route to eBS 33a, and the MN ID of WiMAX Include the WiMAX BS ID. In a preferred example, the WiMAX MN ID may be set in the UATI field of the RouteOpenRequest.
Next, the eBS 33a transmits an IAS-Session Information Request (302) to the SRNC included in the RouteOpenRequest (301) (here, the virtual SRNC ID of the HO-GW 4), and requests a UMB communication context. The IAS-Session Information Request (302) includes the same information as the RouteOpenRequest (301).
The HO-GW 4 extracts the UATI (equal to the WiMAX MN ID in this embodiment) and the ID of the eBS ID 33a from the IAS-Session-Information Request (302), and the MN ID (in FIG. 3b) of the MN ID ( 121) and the connection destination information (122). Further, the related entry in the WiMAX context table 100 is searched using the WiMAX MN ID as a search key. In the sequence of FIG. 6, since there is no related WiMAX context, the HO-GW 4 determines that it is necessary to acquire the WiMAX context from the WiMAX access network 3.

Next, the HO-GW 4 transmits a Context_Req (303) to the WiMAX BS (BS22c) included in the IAS-Session-Information Request (302), and requests a WiMAX context. The Context_Req (303) reaches the BS 22c via the ASN-GW 21.
Upon receiving Context_Req (303), the BS 22c and the ASN-GW 21 return Context_Rpt (304), and return WiMAX QoS information (TFT, QoS class) and authentication information (AK_GW: see FIG. 14). Upon receiving Context_Rpt (304), the HO-GW 4 sets the WiMAX MN ID, ASN-GW ID, and BS ID in the MN ID (101) and the connection destination information (102) of the WiMAX context table 100 (FIG. 3a). . Also, the QoS information and authentication information included in Context_Rpt (304) are set in the QoS information (103) and authentication information (104) of the WiMAX context table 100 (FIG. 3a). It then creates a mutual link with the associated UMB context. That is, 106 in FIG. 3a and 126 in FIG. 3b are set to each other.
Next, the HO-GW 4 transmits Path_Reg_Req (305) to the ASN-GW 21 to set a data path between the HO-GW 4 and the ASN-GW 21. The Path_Reg_Req (305) includes tunnel information proposed by the HO-GW 4 (tunnel end IP address of the HO-GW 4, GRE Key, etc.). The ASN-GW 21 responds with Path_Reg_Rsp (306). The Path_Reg_Rsp (306) includes tunnel information proposed by the ASN-GW 21 (tunnel end IP address of HO-GW4, GRE Key, etc.). The HO-GW 4 returns a confirmation response Path_Reg_Ack (307), and sets the data path information negotiated in the Path_Req_Req (305) and the Path_Reg_Rsp (306) in the data path information (105) of the WiMAX context table 100 (FIG. 3a).
Next, the HO-GW 4 generates a UMB context from the WiMAX context (308). The method for generating the UMB context follows the procedure described in FIG.
Next, the HO-GW 4 transmits an IAS-Session Information Response (309) to the eBS 33a, and the QoS information (TFT and QoS class), authentication information (MSK_eBS), data path information (HO-) generated in Step 308 GW4 tunnel termination IP address). The eBS 33a stores the notified information on its own memory. Then, a RouteOpenAccept (310) is transmitted to the MN 5 to permit connection.
After receiving Path_Reg_Ack (307), the ASN-GW 21 transmits Path_Dereg_Req (311) to the BS 22c, and deletes the data path between the ASN-GW 21 and the BS 22c. In response to this, the BS 22c returns Path_Dereg_Rsp (312). The ASN-GW 21 transmits the confirmation response Path_Dereg_Ack (313) to the BS 22c. This data path can be configured not to be deleted.
This completes the call flow for performing uncontrolled handover in the WiMAX access network 3.

3. Handover processing (UMB → WiMAX)
FIG. 9 shows a procedure in which the MN 5 performs handover from the UMB access network 3 to the WiMAX access network 2 in the system of the present embodiment. FIG. 21 shows an explanatory diagram of such a handover.
First, the MN 5 is connected to the UMB access network 3 and performs data communication with the CN 6 via the eBS 33a, AGW 31, and HA 12 (401). At this point, the HO-GW 4 does not hold any information regarding the MN 5. On the other hand, the MN 5 holds UMB communication context information and H0-GW4 information. The communication context of the UMB held by the MN 5 is the ID of the connected BS (eBS 33a), the QoS information for each IP flow, the encryption key for protecting the wireless communication between the MN 5 and the eBS 33a, and the communication between the MN 5 and the SRNC 32. It includes an encryption key and the like (the method for acquiring each information is the same as the method described in the prior art). The HO-GW4 information includes the virtual ASN-GW ID of the HO-GW4, the virtual BS ID, the virtual SRNC ID, the virtual eBS ID, and other parameters and algorithms necessary for communication with the HO-GW4. Including. The information of the HO-GW 4 may be dynamically acquired from the AAA 11 or the like when the MN 5 is connected to the UMB access network, or may be statically set on the MN 5 hardware. Or you may acquire from the message etc. which are advertised from neighboring UMB eBS.

Thereafter, the MN 5 determines a handover to the WiMAX access network 2 because the signal strength of the WiMAX BS 22c becomes strong (402). Then, the MN 5 transmits a handover request to the BS 22c (403). This request can include, for example, the virtual BS ID of the HO-GW 4, the ID of the MN, the SUNC ID, and the like. At this time, for the authentication information, the HO-GW 4 uses the algorithm set in advance to authenticate the authentication information (including AK_BS) between the MN 5 and the BS 22c in order to protect the communication between the MN 5 and the BS 22c. Is generated. A data path between the HO-GW 4 and the BS 22 is set (FIG. 10, steps 460 and 461), and a data path between the HO-GW 4 and the AGW 31C is set (FIG. 10, steps 457 and 458). The HO-GW 4 acquires a UMB communication context from the SRNC 32, converts it into a WiMAX communication context, and sets it in the ASN-GW 21 and BS 22c. Details of step 403 will be described later in detail with reference to FIGS.
Next, the BS 22c performs key exchange with the MN 5 using the authentication information (including AK_BS) of the WiMAX communication context notified from the HO-GW 4 in step 403 (404). Parameters used for key exchange between the MN 5 and the BS 22c will be described later with reference to FIG. As a result of the MN-BS key exchange, an encryption key (TEK_BS) that protects communication between the MN5 and BS22c is generated. Thereafter, user data from the CN 6 is transmitted / received via the HA 12, AGW 31, HO-GW 4, ASN-GW 21, and BS 22c (405).
FIG. 12 shows an example of the protocol stack in step 405. In the example of FIG. 12, the HO-GW 4 extracts the IP packet in the GRE packet received from the AGW 31, encapsulates it again with the GRE header, and transfers it to the ASN-GW 21. The ASN-GW 21 extracts the IP packet in the GRE packet, encapsulates it again with the GRE header, and transfers it to the BS 22c. The BS 22c extracts the IP packet in the GRE packet, converts it into a WiMAX radio signal, and transfers it to the MN 5.
Returning to FIG. 9, the description of the call flow will be continued. After the data path is switched in step 405, user authentication by EAP is performed in the WiMAX access network 2 (406). As a result of the EAP authentication, the MSK is shared between the MN 5 and the AAA 11. The MSK is notified from AAA 11 to ASN-GW 21.
Next, data path registration (IPinIP tunnel setting between ASN-GW 21 and HA 12) and IP address delivery from ASN-GW 21 to MN 5 are performed (407), and connection to WiMAX access network 2 is completed (408). . Thereafter, the MN 5 performs data communication with the CN 6 via the BS 22c, the ASN-GW 21, and the HA 12. This completes the procedure for the MN 5 to handover from the UMB access network 3 to the WiMAX access network 2.

(Details of step 403)
In the following, the process of step 403 in FIG. 9 will be described in detail with reference to FIGS.
FIG. 10 shows an example of a detailed call flow in step 403 of FIG. First, the MN 5 transmits RNG_REQ (451) to the BS 22c, and requests connection to WiMAX. RNG_REQ (451) includes WiMAX MN ID, BS ID accommodating MN5 (here, virtual BS ID of HO-GW4), MN ID of UMB, and SRNC ID (here, ID of SRNC32). The ASN-GW 21 transmits Context_Req (452) to the BS ID extracted from the RNG_REQ (451) (the virtual BS ID of the HO-GW 4), and requests a WiMAX communication context. Context_Req (452) includes the same information as RNG_REQ (451). Context_Req (452) reaches HO-GW4 via ASN-GW21.
When receiving the Context_Req (452), the HO-GW 4 extracts the WiMAX MN ID, the WiMAX BS ID (the ID of the BS 22c), and the ASN-GW ID (the ID of the ASN-GW 21), and the WiMAX context table 100 (FIG. 3a). MN ID (101) and connection destination information (102). Also, the UMB MN ID and SRNC ID are extracted and set in the MN ID (121) and connection destination information (122) of the UMB context table 120 (FIG. 3b). Then, a mutual link between the WiMAX context and the UMB context is created. That is, 106 in FIG. 3a and 126 in FIG. 3b are set to each other.

Next, the HO-GW 4 transmits an IAS-Session Information Request (453) to the SRNC 32 to request a UMB communication context. The IAS-Session Information Request (453) includes a UMB MN ID and a route counter (RouteCounter) assigned by the MN 5 to the virtual eBS of the HO-GW 4. The value of this RouteCounter is shared with the MN 5 in advance as a part of the HO-GW4 information in order to be used later for generating WiMAX access network authentication information. The SRNC 32 returns the IAS-Session-Information Response (454) including QoS information (TFT and QoS class), UMB authentication information (MSK_GW: see FIG. 20, description will be described later), and the IP address of the AGW 32. The HO-GW 4 sets the notified information in the QoS information (123), authentication information (124), and data path information (125) of the UMB context table 120 (FIG. 3b). Then, a WiMAX context is generated based on the UMB context (455).
Details of step 455 in FIG. 10 will be described below with reference to FIGS. 11 and 20.
FIG. 11 shows a WiMAX context generation routine 500 in the HO-GW 4 (step 455 in FIG. 10). First, the HO-GW 4 copies the QoS information (123) of the UMB context table 120 (FIG. 3b) to the QoS information (103) of the WiMAX context table 100 (FIG. 3a) (501). Next, the authentication information AK_BS (104) of the WiMAX context table 100 (FIG. 3b) is generated from the authentication information MSK_GW (124) of the UMB context table 120 (FIG. 3b) (502). Details of step 502 will be described later with reference to FIG. Thus, the WiMAX context generation routine 500 ends.

Next, a method for generating WiMAX authentication information (step 502 in FIG. 11) will be described with reference to FIG. First, when the MN 5 connects to the UMB access network 3, user authentication is performed by EAP-AKA, and the MN 5 and the AAA 11 share the MSK_SRNC. MSK_SRNC is notified from AAA 11 to SRNC 32 in the EAP-AKA authentication process. The SRNC 32 stores MSK_SRNC on the memory.
Thereafter, when the SRNC 32 receives the IAS-Session Information Request (step 453 in FIG. 10) from the HO-GW 4, the Route Counter included in the IAS-Session Information Request using the algorithm set in advance and the MSK_SRNC Is generated. Then, it is included in the IAS-Session Information Response (step 454 in FIG. 10) and notified to the HO-GW 4. The HO-GW 4 sets MSK_GW in the authentication information (124) of the UMB context table 120 (FIG. 3b). And HO-GW4 produces | generates parameter AK_BS using the algorithm (G1) and MSK_GW previously shared with MN5. AK_BS is set in the authentication information (104) of the WiMAX context table 100 (FIG. 3a). The AK_BS is notified to the BS 22c by Context_Rpt (step 456 in FIG. 10, which will be described later) and used for key exchange (step 404 in FIG. 9) between the MN 5 and the BS 22c.

Similar to the SRNC 32, the HO-GW 4, and the BS 22c, the MN 5 generates MSK_GW and TEK_BS using a predetermined shared algorithm.
As described above, the HO-GW 4 generates the authentication information (AK_BS) of the UMB access network using the authentication information (MSK_GW) notified from the UMB access network, so that the EAP authentication can be performed via WiMAX without performing EAP authentication with WiMAX. Data communication can be protected.
Returning to FIG. 10, the description of the call flow will be continued. After generating the WiMAX context in step 455, the HO-GW 4 returns Context_Rpt (456) to the ASN-GW 21 and BS 22c, and notifies QoS information (TFT, QoS class) and WiMAX authentication information (AK_BS). The ASN-GW 21 and the BS 22c store the notified information on the memory.
Next, the BS 22c transmits Path_Reg_Req (457) to the HO-GW 4 and requests data path setting between the HO-GW 4 and the ASN-GW 21, and between the ASN-GW 21 and the BS 22c. Path_Reg_Req (457) reaches the HO-GW 4 via the ASN-GW 21. Path_Reg_Req (457) includes tunnel information (BS22c, tunnel termination IP address of ASN-GW 21, GRE Key, etc.) proposed by BS 22c and ASN-GW 21. The HO-GW 4 responds with Path_Reg_Rsp (458). Path_Reg_Rsp (458) reaches the BS 22c via the ASN-GW 21. The Path_Reg_Rsp (458) includes tunnel information proposed by the HO-GW 4 (tunnel end IP address of the HO-GW 4, GRE Key, etc.). The BS 22c and the ASN-GW 21 return a confirmation response Path_Reg_Ack (459) to the HO-GW 4. After receiving Path_Reg_Ack (459), the HO-GW 4 sets the data path information negotiated by Path_Reg_Req (457) and Path_Reg_Rsp (458) in the data path information (105) of the WiMAX context table 100 (FIG. 3a).

Next, the HO-GW 4 transmits a PMIP Registration Request (460) to the AGW 31 and requests data path setting between the AGW 31 and the HO-GW 4. The PMIP Registration Request (460) includes the tunnel termination IP address of the HO-GW 4 and the GRE Key. In response to this, the AGW 31 returns a PMIP Registration Response (461), and notifies the data path setting acceptance. The HO-GW 4 transmits the data path information set by the PMIP Registration Request (460) and the PMIP Registration Response (461) to the UMB.
It is set in the data path information (125) of the context table 120 (FIG. 3b).
Next, the HO-GW 4 transmits an IPT-Notification (462) to the eBS 33a to notify that the data path between the AGW 31 and the HO-GW 4 has been set. The eBS 33a responds with an IPT-Notification Ack (463). Further, the HO-GW 4 transmits IPT-Notification (464) also to the SRNC 32 to notify the completion of data path setting between the AGW 31 and the HO-GW 4. SRNC 32 responds with IPT-Notification Ack (465).
Also, the WiMAX BS 22c transmits RNG_RSP (466) to the MN 5 after transmission of the Path_Reg_Ack (459), and permits the connection to the MN 5. Thus, the process of step 403 in FIG. 9 is completed.
In the above embodiment, handover between WiMAX and UMB has been described as an example of handover between different types of access networks. However, for other access networks, HO-GW 4 uses Inter- The contents of the present embodiment for relaying the AGW handover procedure can be applied.

4). Codec Conversion This embodiment shows an example of performing codec conversion of user data in the HO-GW 4 described above.
FIG. 13 shows an example of a call flow. First, the MN 5 is connected only to the WiMAX access network 2 and establishes an application session between the CN 6 and the CODEC A (551, 552). Here, it is assumed that the UMB access network 3 establishes an application session between CN6 and CODEC B. At this time, information on CODEC A and CODEC B is set in the HO-GW 4 in association with the access network type.
Thereafter, the MN 5 determines a handover to the UMB access network 3 due to the deterioration of the radio wave condition of the WiMAX access network 3, and performs the processing of steps 202 to 205 in FIG. 4 (553). After step 553, the user data reaches the MN 5 from the ASN-GW 21 via the HO-GW 4 and the eBS 33a (554).
In the present embodiment, in step 554, the HO-GW 4 converts the codec type of user data from CODEC A to CODEC B. Thereby, even when the codecs used in the WiMAX access network 2 and the UMB access network 3 are different, there is an effect that the handover can be performed smoothly.
Next, the MN 5 performs the processing of steps 207 to 212 in FIG. 4 to complete the connection to the UMB access network 2 (555). Then, the MN 5 transmits / receives an application control signal to / from the CN 6 via the UMB access network 2, and changes the codec type to CODEC B (556). Thereafter, communication between the MN 5 and the CN 6 is completely switched to the UMB access network 3, and communication is performed using the codec B.

II. Embodiment 2

In the second embodiment, as an example of application to different access networks, an example of HO-GW to speed handover between WiMAX and ^{3GPP (3 rd Generation Partnership Project)} LTE (Long Term Evolution).
1. System Configuration FIG. 22 is a diagram illustrating a configuration example of a communication network according to the second embodiment.
The wireless terminal MN 1050 is a terminal having access means in both the WiMAX access network 1020 and the LTE access network 1030. The communication destination device CN 1060 is a terminal or server that communicates with the MN 1050.
The core network 1010 is a communication network that accommodates both the WiMAX access network 1020 and the LTE access network 1030, to which a server AAA 1011 and a node HA 1012 are connected. The AAA 1011 is a server that manages the association between the identifier of the terminal and the authentication information and authenticates the terminal. The AAA 1011 also has an LTE HSS (Home Subscriber Server) function, and manages subscriber information and terminal location information. The HA 1012 is a node defined by Mobile IP, and manages the association between the HoA and CoA of the MN 1050.
A node (base station) BS 1022 (ac) and an access router ASN-GW 1021 are connected to the WiMAX access network 1020. BSs 1022 (a to c) are nodes that mutually convert WiMAX wireless signals from the MN 1050 into wired signals and transfer them. BSs 1022 (a to c) transmit / receive control signals and user data to / from MN 1050 and ASN-GW 1021.
The ASN-GW 1021 is an access router that accommodates the MN 1050 and has a Proxy MIP PMA function. That is, the ASN-GW 1021 registers its own IP address with the HA 1012 as a CoA on behalf of the MN 1050. The ASN-GW 1021 transmits / receives control signals and user data to / from the HA 1012 and the BS 1022 (ac).
The protocol stack diagram of user data in the WiMAX access network 1020 is the same as that described with reference to FIG. 16A in the first embodiment.
A node (base station) eNB (evolved NodeB) 1033 (ac), an access router SGW (Serving Gateway) 1031, and a node MME (Mobility Management Entity) 1032 are connected to the LTE access network 1030. The eNB 1033 (ac) is a node that mutually converts an LTE radio signal into a wired signal and transfers it. The eNB 1033 (a to c) transmits and receives control signals to and from the MN 1050, the MME 1032, and the other eNB 1033 (ac). Moreover, user data is transmitted / received with MN1050, SGW1031, and other eNB1033 (ac).
The SGW 1031 is an access router that accommodates the eNB 1033 (a to c), and has a Proxy MIP PMA function. That is, the IP address of the MN 1050 is registered as a CoA in the HA 1012 (referred to as PDN-GW (Packet Data Network-Gateway) in the 3GPP standard). The SGW 1031 transmits and receives control signals to and from the HA 1012, the MME 1032 and the eNB 1033 (ac). In addition, user data is transmitted / received to / from the HA 1012 and the eNB 1033 (ac).

The MME 1032 is a node that manages communication session information (that is, an ID of an eNB to which a terminal is connected, an ID of an SGW, data path information, and the like) in the LTE access network 1030. The MME 1032 transmits and receives control signals to and from the eNB 1033 (ac) and the SGW 1031.
FIG. 23 shows a protocol stack diagram of user data in the LTE access network 3. As shown in FIG. 23, a user IP packet is transferred between the eNB 1033 (ac) and the SGW 1031 by GTP (GPRS Tunneling Protocol) tunneling, and between the SGW 1031-HA 1012 by GRE tunneling.
FIG. 24 shows the dependency relationship of encryption keys in the LTE access network 1030 based on the prior art (3GPP TS 33.401 v8.0.0). AAA 1011 and MN 1050 use a pre-shared secret key (K_S) during EPS-AKA (Evolved Packet System-Authentication and Key Agreement) authentication between the terminal and the network, which is performed when MN 1050 connects to LTE access network 1030. A seed key (K_ASME) is generated. K_ASME is notified from AAA 1011 to MME 1032 in the EPS-AKA authentication process. The MME 1032 and the MN 1050 perform the MN-MME key exchange process using the K_ASME after the EPS-AKA authentication is performed, and the encryption keys K_NASinc (for encryption) and K_NASint (for message authentication) for protecting the control signal between the MN and MME. ) Is generated. Also, the MME 1032 generates an eNB encryption key K_eNB from the K_ASME and notifies the eNB 1033a that accommodates the MN 1050. The eNB 1033a and the MN 1050 perform the MN-eNB key exchange process using the K_eNB, and the encryption key K_RRCenc (for control signal encryption) and K_RRCint (control signal message) for protecting the control signal and user data between the MN and eNB For authentication) and K_UPenc (for user data encryption).

(HO-GW1040)
The HO-GW 1040 is a gateway device connected to both the WiMAX access network 1020 and the LTE access network 1030. When the MN 1050 moves between the WiMAX access network 1020 and the LTE access network 1030, the HO-GW 1040 performs an Inter-ASN-GW handover procedure in the WiMAX access network 1020 and an Inter-MME / SGW handover in the LTE access network 1030. Relay the procedure with mutual conversion.
The HO-GW 1040 behaves as a virtual ASN-GW and WiMAX BS for the WiMAX access network 1020. That is, the HO-GW 1040 is connected to the ASN-GW 1021 via an ASN-GW interface (WiMAX R4 interface), and transmits and receives control signals and user data. The HO-GW 1040 behaves as a virtual MME and eNB for the LTE access network 1030. That is, the HO-GW 1040 is connected to the MME 1032 via an interface between MMEs (LTE S10 interface), and transmits and receives control signals. Moreover, it connects with eNB1031 by the interface between eNBs (L2 X2 interface), and transmits / receives user data. Here, the HO-GW 1040 may be configured to connect to all eNBs in a predetermined LTE area, for example, or one or more eNBs (eNB 1033a in the example of FIG. 1) located at the boundary with the WiMAX access network 1020. It is good also as a structure connected only to. When the latter configuration is adopted, there is an advantage that resources used by the HO-GW 1040 for connection to the eNB can be saved.
The apparatus configuration of the HO-GW 1040 is the same as that described in Embodiment 1 with reference to FIG.

(Context table)
The HO-GW 1040 includes a WiMAX context table 1100 in FIG. 25A and an LTE context table 1120 in FIG.
The WiMAX context table 1100 in FIG. 25A is a table for the HO-GW 1040 to manage the communication context of the WiMAX access network 1020. The MN ID 1101, connection destination information 1102, flow information 1103, authentication information 1104, data transfer Information 1105 and a pointer 1106 to the LTE context.
In the MN ID 1101, an MN ID (MAC address or the like) in the WiMAX access network 1020 is set. In the connection information 1102, IDs of BSs, ASN-GWs, and HAs that accommodate MNs are set. In the flow information 1103, filter information for identifying a flow and QoS for each flow are set. In the authentication information 1104, a parameter AK_GW notified from the ASN-GW 1021 to the HO-GW 1040 (see FIG. 30, described later), a parameter AK_BS notified from the HO-GW 1040 to the WiMAX BS 1022c (refer to FIG. 36, described later), and the like are set. The The data transfer information 1105 includes tunnel information for transmitting / receiving user data between the ASN-GW 1021 and the HO-GW 1040 during a handover (that is, an IP address of a tunnel endpoint (ASN-GW, HO-GW), GRE Key). Is set. In the pointer 1106 to the LTE context, a pointer to a related entry in the LTE context table 1120 (described later) is set.
FIG. 25B is a table for the HO-GW 1040 to manage the communication context of the LTE access network 1030. The MN ID 1121, the connection destination information 1122, the flow information 1123, the authentication information 1124, the data transfer information 1125, and the WiMAX context A pointer to 1126 is included.
In the MN ID 1121, an MN ID (such as IMSI) in the LTE access network 1030 is set. In the connection destination information 1122, IDs of eNBs, MMEs, SGWs, and HAs that accommodate the MN are set. In the flow information 1123, filter information for identifying an IP flow and QoS for each IP flow are set. In the authentication information 1124, a parameter K_eNB + * (see FIG. 36, described later) notified from the MME 1032 to the HO-GW 1040, a parameter K_eNB * (refer to FIG. 30, described later) notified from the HO-GW 1040 to the LTE eNB 1033a, and the like are set. The The data transfer information 1125 includes tunnel information for transmitting / receiving user data between the eNB 1033a and the HO-GW 1040 during handover (that is, an IP address of a tunnel endpoint (eNB, HO-W), GTP TEID (Tunnel Endpoint Identifier)). )) Etc. are set. In the pointer 1126 to the WiMAX context, a pointer to an associated entry in the WiMAX context table 1100 is set.

2. Handover processing (WiMAX → LTE)
FIG. 26 illustrates a procedure in which the MN 1050 performs handover from the WiMAX access network 1020 to the LTE access network 1030 in the system according to the second embodiment. FIG. 22 is an explanatory diagram of such a handover.
First, the MN 1050 is connected only to the WiMAX access network 1020, and performs data communication with the CN 1060 via the BS 1022c, the ASN-GW 1021, and the HA 1012 (1201). At this time, the HO-GW 1040 does not hold information regarding the MN 1050. On the other hand, the MN 1050, the ASN-GW 1021, the BS 1022c, and the HA 1012 hold communication context information of the MN 1050 in the WiMAX access network 1020. Here, the WiMAX communication context information includes the connection destination information (BS, ASN-GW, HA ID), flow information (flow filter and QoS), and user data between the HA-ASN-GW-BS-MN. It includes tunnel information (IP address, tunnel header information) for transfer, encryption key for protecting wireless communication between MN and BS, and the like. In the second embodiment, unlike the first embodiment, the HO-GW 1040 information (virtual ASN-GW ID, virtual BS ID) is held by the ASN-GW 1021 instead of the MN 1050. Similarly, in the LTE access network 1030, the MME and eNB hold the HO-GW 1040 information (the virtual MME ID and the virtual eNB ID).
Thereafter, the MN 1050 determines a handover to the LTE access network 1030 due to reasons such as deterioration of the WiMAX radio wave condition (1202). Then, the MN 1050 measures the radio wave condition of the LTE access network 1030 and determines, for example, an eNB with the best radio wave condition (eNB 1033a in the example of FIG. 22). Next, in step 1203, (1) MN 1050 requests BS 1022c to perform handover to eNB 1033a. Also, (2) the WiMAX communication context is notified from the BS 1022c and the ASN-GW 1021 to the HO-GW 1040, and the HO-GW 1040 converts the WiMAX context into the LTE context and sets the MME 1032, the SGW 1031, and the eNB 1033a. In the processing of (1) and (2) of step 1203, the data path setting between the ASN-GW 1021 and the HO-GW 1040, the data path setting between the HO-GW 1040 and the eNB 1033a, and the encryption key (K_eNB **) for the eNB 1033a Notification (see FIG. 30) is performed. Details of step 1203 will be described later in detail with reference to FIGS.
After step 1203, the MN 1050 starts synchronization with the handover destination eNB 1033a (1204), and transmits a handover notification (1205) to the eNB 1033a. Next, the eNB 1033a performs MN-eNB key exchange and wireless data link setting for user data (1206) with step 1205 as an opportunity. In the MN-eNB key exchange in step 1206, the encryption key (K_RRCenc, K_RRCint, K_UPenc) (see FIG. 30, described later) is generated using the encryption key (K_eNB * +) notified to the eNB 1033a in step 1203. Is done.
At step 1207, the user data is transmitted on the route [CN1060-HA1012-ASN-GW1021-HO-GW1040-eNB1033a-MN1050]. An example of the protocol stack at this time is shown in FIG. In this example, the ASN-GW 1021 and the HO-GW 1040 are connected by an ASN-GW interface (WiMAX R4 interface, GRE tunneling), and the HO-GW 1040 and the eNB 1033a are inter-eNB interfaces (LTE X2 interface, GTP tunneling). Connect with. These data paths are set in step 1203.
Returning to FIG. 26, the description of the handover procedure will be continued. After step 1207, the eNB 1033a transmits a handover notification (1208) to the MME 1032. The MME 1032 transfers a handover completion notification (1209) to the virtual MME in the HO-GW 1040, and performs data path setting (1210) between the SGW 1031 and the HA 1012 and between the eNB 1033a and the SGW 1031. Further, the HO-GW 1040 releases resources in the WiMAX access network 1020 in response to 1209 (1211). Thus, the handover procedure is completed, and user data is transmitted on the route [CN 1060-HA 1012-SGW 1031-eNB 1033a-MN 1050] (1212).

(Details of step 1203)
The details of step 1203 in FIG. 26 will be described below with reference to FIGS.
FIG. 28 shows an example of a detailed call flow in step 1203. First, the MN 1050 transmits MOB_MSHO_REQ (1251) to the BS 1022c and requests preparation for handover. MOB_MSHO_REQ (1251) includes destination information (ID of eNB 1033a) and MN ID used in LTE. Upon receiving the MOB_MSHO_REQ (1251), the BS 1022c transmits a HO_REQ (1252) including similar information to the ASN-GW 1021. Since the LTE eNB is designated in the movement destination information (eNB 1033a), the ASN-GW 1021 determines the transfer destination of the HO_REQ (1252) as the HO-GW 1040. Then, WiMAX context information is added to HO_REQ (1253) and transferred to HO-GW 1040. Here, the WiMAX context information notified to the HO-GW 1040 includes WiMAX connection destination information (IDs of BS1022c, ASN-1021, and HA1012), flow information (flow filter information and QoS) held by the MN 1050, encryption key information ( AK_GW) (see FIG. 30, see below), data transfer information (IP address, GRE Key) on the ASN-GW 1021 side used for user data transfer between the ASN-GW 1021-HO-GW 1040, and the like. The HO-GW 1040 stores these WiMAX context information in the WiMAX context table 1100 of FIG. 25a.
Next, the HO-GW 1040 generates LTE context information based on the WiMAX context notified in Step 1253 (1254). Hereinafter, the LTE context generation processing in step 1254 will be described in detail with reference to FIG.
FIG. 29 shows an LTE context generation routine 1350 in the HO-GW 1040. First, the HO-GW 1040 extracts the LTE MN ID from the HO_Req (1253) in FIG. 28 and sets it to the LTE MN ID 1121 in FIG. 25b (1351). Next, as LTE connection destination information (1122 in FIG. 25b), the destination eNB ID extracted from HO_Req (1253) in FIG. 28, the MME ID determined from the eNB ID, and the HA included in the WiMAX connection destination information 1102 in FIG. 25a An ID is set (1352). Here, the HO-GW 1040 may manage an internal table for determining the MME ID from the destination eNB ID. Next, the contents of the WiMAX flow information 1103 in FIG. 25a are set as they are as the LTE flow information (1123 in FIG. 25b) (1353). However, when the QoS settings of the WiMAX access network 1020 and the LTE access network 1030 are different, the QoS values may be converted and set. Next, K_eNB * is generated from the WiMAX authentication information AK_GW (1104 in FIG. 25a) and set as LTE authentication information (1124 in FIG. 25b) (1354). A method of generating K_eNB * from AK_GW will be described later with reference to FIG. Next, the IP address and GRE Key determined locally by the HO-GW 1040 are set as tunnel information in the inbound direction of the LTE data transfer information (1125 in FIG. 25b) (1125). Tunnel information in the outbound direction of the LTE data transfer information (1125 in FIG. 25b) is notified from the MME 1032 in the Forward Relocation Response (1260) in FIG. Thus, the LTE context generation routine 1350 is completed.

Returning to FIG. 28, the description of the call flow is continued. After generating LTE context information in Step 1254, the HO-GW 1040 transmits a Forward Relocation Request (1255) to the MME 1032 determined from the movement destination information (eNB 1033a). Forward Relocation Request (1255) includes destination information (eNB 1033a), LTE MN ID, LTE context generated in Step 1254 (for example, connection destination information (HA ID), flow information (flow filter, QoS), authentication information. (K_eNB *) and data transfer information (IP address, GTP TEID) on the HO-GW 1040 side used for user data transfer between the eNB 1033a and the HO-GW 1040.
Next, the MME 1032 transmits Create Bearer Request (1256) to the SGW 1031 associated with itself. The Create Bearer Request (1256) includes, for example, connection destination information (HA ID) of the MN 1050 and flow information (flow filter, QoS). Next, the SGW 1031 transmits a Create Bearer Response (1257) to the MME 1032. The Create Bearer Response (1257) includes, for example, tunnel information (IP address, GTP TEID) on the SGW 1031 side used for user data transfer between the SGW 1031 and the eNB 1033a.
Next, the MME 1032 transmits a Handover Request (1258) to the eNB 1033a. Handover Request (1258) includes, for example, flow information (flow filter, QoS) of MN 1050, tunnel information (IP address, GTP TEID) of SGW 1030 notified in step 1257, and user data transfer between eNB 1033a-HO-GW 1040. Data transfer information (IP address, GTP TEID) on the HO-GW 1040 side to be used, and parameters (K_eNB * +) generated by the MME 1032 from the authentication information (K_eNB *) are included. The eNB 1033a stores these pieces of information and returns a Handover Request Acknowledge (1259) to the MME 1032. In the Handover Request Acknowledge (1259), for example, data transfer information (IP address, GTP TEID) on the eNB 1033a side used for user data transfer between the eNB 1033a and HO-GW 1040, eNB 1033a used for user data transfer between the eNB 1033a and SGW 1031 Side tunnel information (IP address, TEID) is included.

Next, the MME 1032 transmits a Forward Relocation Response (1260) to the HO-GW 1040. The Forward Relocation Response (1260) includes, for example, data transfer information (IP address, GTP TEID) on the eNB 1033a side used for user data transfer between the eNB 1033a and the HO-GW 1040. The eNB 1033a-HO— combines the data transfer information of the HO-GW 1040 included in step 1255 (IP address of the HO-GW 1040, GTP TEID) and the data transfer information of the eNB 1033a included in step 1260 (IP address, GTP TEID). A user data transfer path between the GWs 1040 is established.
Next, the HO-GW 1040 transmits HO_RSP (1261) to the ASN-GW 1021 and the BS 1022c to notify the completion of the handover preparation phase. The HO_RSP (1261) includes HO-GW 1040 side data transfer information (IP address and GRE Key) used for user data transfer between the ASN-GW 1021-HO-GW 1040 and the like. The data transfer information (IP address and GRE Key) of the ASN-GW 1021 included in Step 1253 and the data transfer information (IP address and GRE Key) of the HO-GW 1040 included in Step 1261 are combined and ASN-GW1021-HO- A user data transfer path between the GWs 1040 is established.
Next, the BS 1022c transmits MOB_BSHO_RSP (1262) to the MN 1050 to notify the completion of the handover preparation phase. Also, the BS 1022c transmits HO_Ack (1263) to the ASN-GW 1021 and the HO-GW 1040, and the call flow in FIG. 28 is completed.

(Dependency of encryption key in WiMAX → LTE handover process)
Next, a method of generating an encryption key in WiMAX → LTE handover will be described with reference to FIG. First, when the MN 1050 connects to the WiMAX access network 1020, EAP authentication is performed, and the MN 1050 and the AAA 1011 share the MSK. The MSK is notified from the AAA 1011 to the ASN-GW 1021 in the EAP authentication process. The ASN-GW 1021 generates a PMK from the MSK using a preset algorithm (F1) and stores it in the memory.
Thereafter, at the time of handover from the WiMAX access network 1020 to the LTE access network 1030, the ASN-GW 1021 generates AK_GW from the PMK and the virtual BS ID of the HO-GW 1040 using a preset algorithm (F2). The AK_GW is notified from the ASN-GW 1021 to the HO-GW 1040 by Ho_Req (1253 in FIG. 28). The HO-GW 1040 generates K_eNB * from the AK_GW using a preset algorithm (i1). K_eNB * is notified from the HO-GW 1040 to the MME 1032 in the Forward Relocation Request (1255 in FIG. 28). The MME 1032 generates K_eNB * + from K_eNB * using a preset algorithm (h4). K_eNB ** is notified from the MME 1032 to the eNB 1033a by HandoverRequest (1258 in FIG. 28). The eNB 1033a performs an MN-1050 and MN-eNB key exchange process (step 1206 in FIG. 26) using K_eNB **, and an encryption key K_RRCenc (control signal encryption) for protecting the control signal and user data between the MN and eNB. ), K_RRCint (for control signal message authentication), and K_UPenc (for user data encryption).
In this way, the HO-GW 1040 generates the authentication information (K_eNB *) of the LTE access network 1030 using the authentication information (AK_GW) notified from the WiMAX access network 1020, thereby performing the authentication process in the LTE access network 1030. The user data communication via the LTE access network 1030 can be protected without performing it.
Note that the content of the key exchange process varies depending on the radio access type, and in the case of LTE, for example, includes a process of generating K_RRCenc / K_RRCint / K_UPenc from K_eNB * + in FIG. More specifically, it is executed as follows.

(1) The eNB 1033a generates the encryption key (K_RRCenc / K_RRCint / K_UPenc) that is actually used from the encryption algorithm type to be used and the shared key (K_eNB **) between the eNB 1033a and the UE.
(2) The eNB 1033a transmits a message called “Security Mode Command” to the MN 1050. The Security Mode Command includes the encryption algorithm type to be used. Further, the Security Mode Command includes a MAC (Message Authentication Code) calculated using the encryption key (K_RRCint) of (1).
(3) The MN 1050 acquires the encryption algorithm from the message of (2), and generates an encryption key (K_RRCenc / K_RRCint / K_UPenc) that is actually used by the same method as the eNB 1033a.
(4) The MN 1050 verifies the MAC included in the Security Mode Command using the encryption key (K_RRCint) of (3), and confirms whether a correct key has been generated.

In the case of LTE, since the encryption key itself is not necessarily transmitted / received between nodes, such processing is sometimes referred to as “Security Mode Command Procedure”. This is called “exchange processing”.

3. Handover processing (LTE → WiMAX)
FIG. 32 shows a procedure in which the MN 1050 performs handover from the LTE access network 1030 to the WiMAX access network 1020 in the system of the second embodiment. FIG. 31 shows a user data transfer path at that time.
First, the MN 1050 is connected only to the LTE access network 1030 and performs data communication with the CN 1060 via the eNB 1033a, the SGW 1031 and the HA 1012 (1401). At this time, the HO-GW 1040 does not hold information regarding the MN 1050. On the other hand, the MN 1050, the eNB 1033 a, the MME 1032, the SGW 1031, and the HA 1012 hold communication context information of the MN 1050 in the LTE access network 1030. Here, the LTE communication context information refers to MN 1050 connection destination information (eNB, MME, SGW, HA ID), flow information (flow filter and QoS), and HA-SGW-eNB-MN user data. Tunnel information (IP address, tunnel header information), encryption key for protecting wireless communication between MN-eNB, encryption key for protecting control signal between MN-MME, and the like.
After that, the MN 1050 determines a handover to the WiMAX access network 1020 because the signal strength of the WiMAX BS 1022c becomes strong (1402). In step 1403, (1) the MN 1050 requests the eNB 1033a to perform handover to the BS 1022c. Also, (2) the LTE communication context is notified from the MME 1032 to the HO-GW 1040, and the HO-GW 1040 converts the LTE context into a WiMAX context and sets it in the ASN-GW 1021 and the BS 1022c. In the processing of (1) and (2) of step 1403, data path setting between the eNB 1033a and the HO-GW 1040, data path setting between the HO-GW 1040 and the ASN-GW 1021, data path setting between the ASN-GW 1021 and the BS 1022c, And an encryption key (AK_BS) (see FIG. 36, which will be described later) are notified to BS 1022c. Details of step 1403 will be described later in detail with reference to FIGS.

After step 1403, the MN 1050 starts synchronization with the handover destination BS 1022c, and performs MN-BS key exchange and radio data link setting for user data (1404). In the MN-eNB key exchange in step 1404, an encryption key (TSK_BS) (see FIG. 36, which will be described later) for radio protection is generated using the encryption key (AK_BS) notified to the BS 1022c in step 1403.
At the time of step 1405, the user data is transmitted through the route [CN1060-HA1012-SGW1031-eNB1033a-HO-GW1040-ASN-GW1021-BS1022c-MN1050]. An example of the protocol stack at this time is shown in FIG. In this example, the eNB 1033a and the HO-GW 1040 are connected by an inter-eNB interface (LTE X2 interface, GTP tunneling), and the HO-GW 1040 and the ASN-GW 1021 are connected by an ASN-GW interface (WiMAX R4 interface, GRE tunneling). Connect with. These data paths are set in step 1403.
Returning to FIG. 32, the description of the handover procedure will be continued. After step 1405, EAP authentication is performed in the WiMAX access network 1020 (1406). Also, data path registration between the ASN-GW 1021 and the HA 1012 is performed (1407), and user data is transmitted via the route [CN1060-HA1012-ASN-GW1021-BS1022c-MN1050] (1408). Thereafter, when a handover completion notification (1409) is transmitted from the HO-GW 1040 to the MME 1032, resources in the LTE access network 1030 are released (1409), and the handover process is completed.

(Details of step 1403)
Next, details of step 1403 in FIG. 32 will be described with reference to FIGS.
FIG. 34 shows an example of a detailed call flow in step 1403. First, the MN 1050 transmits a Handover Preparation Request (1451) to the eNB 1033a and requests preparation for handover. Handover Preparation Request (1451) includes destination information (ID of BS 1022c) and MN ID used in WiMAX. When the eNB 1033a receives the Handover Preparation Request (1451), the eNB 1033a transmits the Handover Required (1452) to the MME 1032. Handover Required (1452) includes destination information (ID of BS 1022c), WiMAX MN ID, and data transfer information (IP address, GTP TEID) on the eNB 1033a side used for user data transfer between eNB 1033a-HO-GW 1040.
Since the WiMAX BS is specified in the movement destination information (BS1022c), the MME 1032 transmits a Forward Relocation Request (1453) to the HO-GW 1040. The Forward Relocation Request (1453) includes a WiMAX MN ID, destination information (BS1022c), and an LTE context. The LTE context is, for example, LTE connection destination information (eNB 1033a, MME 1032, SGW 1031, HA 1012 ID), flow information (flow filter and QoS) held by the MN 1050, encryption key information (K_eNB *) (see FIG. 36, which will be described later). , Data transfer information (IP address, GTP TEID) and the like on the eNB 1033a side used for user data transfer between the eNB 1033a and the HO-GW 1040. The HO-GW 1040 stores the LTE context information in the LTE context table 1120 in FIG. 25b.
Next, the HO-GW 1040 generates WiMAX context information based on the LTE context notified in Step 1453 (1454). Hereinafter, the WiMAX context generation processing in step 1454 will be described in detail with reference to FIG.

FIG. 35 shows a WiMAX context generation routine 1500 in the HO-GW 1040. First, the HO-GW 1040 extracts the WiMAX MN ID from the Forward Relocation Request (1453) in FIG. 34 and sets it to the WiMAX MN ID 1101 in FIG. 25a (1501). Next, as the WiMAX connection destination information (1102 in FIG. 25a), the destination BS ID extracted from the Forward Relocation Request (1453) in FIG. 34, the ASN-GW ID determined from the BS ID, and the LTE connection destination information 1122 in FIG. 25b The HA ID included in is set (1502). Here, the HO-GW 1040 may manage an internal table for determining the ASN-GW ID from the destination BS ID. Next, the contents of the LTE flow information 1123 in FIG. 25b are set as they are as WiMAX flow information (1103 in FIG. 25a) (1503). However, when the QoS settings of the LTE access network 1030 and the WiMAX access network 1020 are different, the QoS values may be converted and set. Next, AK_BS is generated from LTE authentication information K_eNB * (1124 in FIG. 25b) and set as WiMAX authentication information (1104 in FIG. 25a) (1504). A method of generating AK_BS from K_eNB * will be described later with reference to FIG. Next, the IP address and GRE Key determined locally by the HO-GW 1040 are set as tunnel information in the Inbound direction of the WiMAX data transfer information (1105 in FIG. 25a) (1505). Tunnel information in the outbound direction of the WiMAX data transfer information (1125 in FIG. 25b) is notified from the ASN-GW 1021 in HO_Rsp (1456) in FIG. Thus, the WiMAX context generation routine 1500 is completed.
Returning to FIG. 34, the description of the call flow is continued. After generating WiMAX context information in step 1454, the HO-GW 1040 transmits HO_Req (1455) to the ASN-GW 1021 determined from the movement destination information (BS1022c). In HO_Req (1455), for example, destination information (BS1022c), WiMAX MN ID, WiMAX context (connection destination information (HA ID)) generated in step 1454, flow information (flow filter, QoS), authentication information (AK_BS) ), Data transfer information (IP address, GRE Key) on the HO-GW 1040 side used for user data transfer between the HO-GW 1040 and the ASN-GW 1021. Next, ASN-GW1021 transfers HO_Req (1456) to BS1022c of a movement destination. In HO_Req (1456), for example, WiMAX MN ID, flow information (flow filter, QoS), authentication information (AK_BS), tunnel information (IP in ASN-GW1021 side used for user data transfer between ASN-GW1021 and BS1022c) Address, GRE Key).

Next, the BS 1022c transmits HO_Rsp (1457) to the ASN-GW 1021. The HO_Rsp (1457) includes, for example, tunnel information (IP address, GRE Key) on the BS 1022c side used for user data transfer between the ASN-GW 1021 and the BS 1022c. User data transfer between ASN-GW1021 and BS1022c by combining the tunnel information (IP address, GRE Key) of ASN-GW1021 included in Step 1456 and the tunnel information (IP address, GRE Key) of BS1022c included in Step 1457 A path is established.
Next, the ASN-GW 1021 transmits HO_Rsp (1458) to the HO-GW 1040. The HO_Rsp (1458) includes, for example, data transfer information (IP address, GRE Key) on the ASN-GW 1021 side used for user data transfer between the HO-GW 1040 and the ASN-GW 1021. The HO-GW 1040-ASN-GW1021 tunnel information (IP address, GRE Key) included in Step 1455 and the ASN-GW1021 tunnel information (IP address, GRE Key) included in Step 1458 are combined. The user data transfer path is established.
Next, the HO-GW 1040 transmits a Forward Relocation Response (1459) to the MME 1032 to notify the completion of the handover preparation phase. Forward Relocation Response (1459) includes, for example, data transfer information (IP address, GTP TEID) of HO-GW 1040 used for user data transfer between eNB 1033a and HO-GW 1040.
Next, the MME 1032 transmits HandoverCommand (1460) to the eNB 1033a to notify the completion of the handover preparation phase. The Handover Command (1460) includes data transfer information (IP address, GTP TEID) on the HO-GW 1040 side used for user data transfer between the eNB 1033a and the HO-GW 1040. The data transfer information (IP address, GTP TEID) of the eNB 1033a included in Step 1452 and Step 1453 is combined with the data transfer information (IP address, GTP TEID) of the HO-GW 1040 included in Step 1459 and Step 1460, and the eNB 1033a- A user data transfer path between the HO-GW 1040 is established.
Finally, HandoverCommand (1461) is transmitted from eNB 1033a to MN 1050, and the call flow in FIG. 34 is completed.

(Dependency relationship of encryption key in handover processing between LTE and WiMAX)
Next, a method for generating an encryption key in LTE-to-WiMAX handover will be described using FIG. First, when the MN 1050 connects to the LTE access network 1030, EPS-AKA authentication is performed. At this time, the MN 1050 and the AAA 1011 generate a seed key (K_ASME) from the pre-shared secret key (K_S). K_ASME is notified from AAA 1011 to MME 1032 in the EPS-AKA authentication process.
After that, at the time of handover from the LTE access network 1030 to the WiMAX access network 1020, the MME 1032 generates K_eNB * from K_ASME using a preset algorithm (h5). K_eNB * is notified from the MME 1032 to the HO-GW 1040 in the Forward Relocation Request (1453 in FIG. 34). The HO-GW 1040 generates an AK_BS from the K_eNB * using a preset algorithm (I1). The AK_BS is notified from the HO-GW 1040 to the BS 1022c by HO_Req (1455 and 1456 in FIG. 34). The BS 1022c performs MN-1050 and MN-BS key exchange processing (step 1404 in FIG. 32) using the AK_BS, and generates an encryption key TEK_BS for protecting wireless communication between the MN and BS.
In this way, the HO-GW 1040 generates the authentication information (AK_BS) of the WiMAX access network 1020 using the authentication information (K_eNB *) notified from the LTE access network 1030, thereby performing the authentication process in the WiMAX access network 1020. The user data communication via the WiMAX access network 1020 can be protected without performing it.
Note that the content of the key exchange process varies depending on the type of wireless access, and in the case of WiMAX, for example, on the right side of FIG. 36, includes a process of generating TEK_BS from AK_BS. More specifically, it is executed as follows.

(1) The BS 1022C generates a key (KEK: Key Encryption Key) for encrypting the encryption key from the shared key (AK_BS) between the BS 1022C and the MN 1050.
(2) The BS 1022C generates an encryption key TEK_BS that is actually used.
(3) The BS 1022C encrypts the TEK_BS generated in (2) with the KEK generated in (1) and transmits it to the MN 1050.
(4) The MN 1050 generates a KEK by the same method as the BS 1022C, decodes the information acquired in (3), and extracts the KEK.

III. Embodiment 3
FIG. 37 shows a configuration example of a communication network in which HO-GW is applied to an FMC (Fixed Mobile Convergence) environment.
The wireless terminal MN 2050 is a terminal having access means in both a WLAN (Wireless Local Access Network) access network 2020 and an LTE access network 2030. The communication destination device CN 2060 is a terminal or server that communicates with the MN 2050.
The core network 2010 is a communication network that accommodates both the WLAN access network 2020 and the LTE access network 2030, to which a server AAA2011 and a node HA2012 are connected. The AAA 2011 is a server that manages the association between the identifier of the terminal and the authentication information and authenticates the terminal. AAA 2011 also has an LTE HSS function, and manages subscriber information and terminal location information. HA 2012 is a node defined by Mobile IP, and manages the association between HoA and CoA of MN 2050.
To the WLAN access network 2020, a node (base station) BS 2022 and an access router ePDG (evolved Packet Data Gateway) 2021 are connected. The BS 2022 converts the WiMAX radio signal from the MN 1050 into a wired signal and connects to the ePDG 2021 via a fixed access network such as FTTH (Fiber To The Home).
The ePDG 2021 is an access router that accommodates the MN 2050, and is connected to the MN 2050 through an IPsec tunnel. The ePDG 2021 has a Proxy MIP PMA function, and registers its own IP address in the HA 2012 as a CoA on behalf of the MN 2050.
Nodes (base stations) eNB 2033 (ac), access router SGW 2031, and node MME 2032 are connected to the LTE access network 2030. The eNB 2033 (ac) is a node that converts an LTE radio signal into a wired signal and transfers it. The SGW 2031 is an access router that accommodates the eNB 2033 (a to c), and includes a Proxy MIP PMA function. That is, the IP address of the MN 2050 is registered as a CoA in the HA 2012 (referred to as PDN-GW in the 3GPP standard). The MME 2032 is a node that manages communication session information in the LTE access network 2030 (that is, ID of eNB or SGW to which the terminal is connected, data path information, and the like).
In Embodiment 3, the HO-GW 2040 is connected to both the WLAN access network 2020 and the LTE access network 2030. When the MN 2050 performs a handover between access networks, the communication context of the WLAN access network 2020 and the LTE access network 2030 Convert communication contexts to each other and transfer them. As shown in the first and second embodiments, the communication context includes, for example, connection information (HA ID), data transfer information (a tunnel for transferring user data between the WLAN access network 2020 and the LTE access network 2030). Information). By transferring such context information between access networks, it is possible to speed up handover between access networks.
Details of the handover operation are the same as those described in the second embodiment.

  In the above, the WiMAX access network, the UMB access network, the LTE access network, and the WLAN access network have been described as an example. However, the present invention is not limited to this, and can be applied to handover between various heterogeneous access networks. .

The figure which shows the structural example of the communication network in this Embodiment, and the hand-over from WiMAX to UMB. The figure which shows the apparatus structural example of HO-GW4. (A) The structural example of the WiMAX context table 100 with which HO-GW4 is provided. (B) The figure which shows the structural example of the UMB context table 120 with which HO-GW4 is provided. Handover call flow from WiMAX to UMB. Context transfer call flow example 1 from WiMAX to UMB. Context transfer call flow example 2 from WiMAX to UMB. UMB context generation routine in HO-GW4. (A) WiMAX to UMB data transfer protocol stack example 1 (B) Data transfer protocol stack example 2 from WiMAX to UMB. Handover call flow from UMB to WiMAX. Context transfer call flow from UMB to WiMAX. WiMAX context generation routine in HO-GW4. Data transfer protocol stack from UMB to WiMAX. A call flow in which the HO-GW 4 performs codec conversion. Explanatory drawing about the method of producing | generating the encryption key of UMB from the authentication information of WiMAX. 1 is a configuration example of a communication network based on conventional technology. (A) A WiMAX access network data transfer protocol stack based on the prior art. (B) A data transfer protocol stack of a UMB access network based on the prior art. Handover call flow from WiMAX to UMB based on prior art. Explanatory drawing about the generation method of the WiMAX encryption key based on a prior art. Explanatory drawing about the production | generation method of the UMB encryption key based on a prior art. Explanatory drawing about the method of producing | generating the WiMAX encryption key from the authentication information of UMB. Explanatory drawing of the handover from UMB to WiMAX. The figure which shows the structural example of the communication network in Embodiment 2, and the hand-over from WiMAX to LTE. Data transfer protocol stack of LTE access network based on the prior art. Explanatory drawing about the generation method of the LTE encryption key based on a prior art. The structural example of the LTE context table with which HO-GW1040 is provided. Handover call flow from WiMAX to LTE. Data transfer protocol stack from WiMAX to LTE. Context transfer call flow from WiMAX to LTE. LTE context generation routine based on WiMAX context. Explanatory drawing about the method of producing | generating the encryption key of LTE from the authentication information of WiMAX. Explanatory drawing of the handover from LTE to WiMAX. Handover call flow from LTE to WiMAX. Data transfer protocol stack from LTE to WiMAX. Context transfer call flow from LTE to WiMAX. WiMAX context generation routine based on LTE context. Explanatory drawing about the method of producing | generating the WiMAX encryption key from the authentication information of LTE. 2 shows a configuration example of a communication network that applies HO-GW to an FMC environment.

Explanation of symbols

1 Core network, 2 WiMAX access network, 3 UMB access network, 4 HO-GW, 5 MN, 6 CN, 11 AAA, 12 HA, 13 AF, 21 ASN-GW, 22 (a, b, c) WiMAX BS, 31 AGW, 32 SRNC, 33 (a, b, c) UMB eBS, 100 WiMAX context table (HO-GW4), 120 UMB context table (HO-GW4), 350 UMB context generation routine (HO-GW4), 500 WiMAX Context generation routine (HO-GW4), 1010 core network, 1020 WiMAX access network, 1021 ASN-GW, 1022 (a, b, c) WiMAX BS, 1030 LTE access network, 1031 SGW, 1032 MME, 1033 (a, b) c) LTE eNB, 1050 MN, 1060 CN, 1100 WiMAX context table (HO-GW4), 1120 LTE context table (HO-GW4), 1350 LTE context generation routine (HO-GW4), 1500 WiMAX context generation routine (HO-) GW4), 2010 core network, 2020 WLAN access network, 2021 ePDN, 2022 WLAN BS, 2030 LTE access network, 2031 SGW, 2032 MME, 2033 (a, b, c) LTE eNB, 2050 MN, 2060 CN, 3010 core network , 3011 AAA, 3012 HA, 3020 WiMAX access network, 3021 ASN-GW, 3022 (a, b, c) WiMAX BS, 3030 MB access network, 3031 AGW, 3032 SRNC, 3033 (a, b, c) UMB eBS, 3040 MN, 3050 CN.

Claims (19)

A first access network having a plurality of first base stations that mutually convert and transfer a first wireless signal from a wireless terminal into a wired signal, and a first access router that accommodates the first base station When,
A plurality of second base stations that mutually convert a second wireless signal having a communication format different from that of the first wireless signal from a wireless terminal into a wired signal and transfer it, and a second base station that accommodates the second base station A second access network having a communication format different from that of the first access network;
A wireless terminal capable of accessing both the first access network and the second access network, which are heterogeneous access networks;
Accommodating both a first access router of the first access network and a second access router of the second access network, at least one first base station and at least one second base station; When the wireless terminal moves between the first access network and the second access network, a handover procedure in the first access network and a handover procedure in the second access network A gateway device that mutually converts and relays,
A communication system comprising:
When the wireless terminal is connected only to the first access network and communicates with a communication destination device via the first base station, the first access router, and the core network, a user Through authentication, the core network and the wireless terminal share an encryption key MSK, and the wireless terminal holds first communication context information and the ID of the gateway device,
When the wireless terminal moves to the second access network side and decides a handover to the second access network, a handover connection request including an ID of the wireless terminal is transmitted,
The first access router and the gateway device using an encryption key AK_GW that protects communication between the core network and the first access router, generated based on the MSK received from the core network by the first access router And the data path is set,
The gateway device uses the encryption key MSK_eBS or K_eNB * + that protects communication between the gateway device and the second base station, which is generated based on AK_GW sent from the first access router. And the data path between the second base station is set,
An encryption key TSK_eBS or a radio protection encryption key for protecting communication between the radio terminal and the second base station, generated based on MSK_eBS or K_eNB * + received from the gateway device by the second base station, The wireless terminal and the second base station are wirelessly transmitted on the protected communication path by the TSK_eBS or the wireless protection encryption key generated based on the authentication information exchanged by the wireless terminal with the MSK or the second base station. Set the data link settings,
The wireless terminal communicates with the communication destination device via the core network, the first access router, the gateway device, and the second base station,
Thereafter, the wireless terminal performs user authentication with the second access network and executes a handover to the second access network. When the wireless terminal connects to the first access network, user authentication is performed, and the core network and the wireless terminal share an encryption key MSK,
When the wireless terminal is connected only to the first access network and communicates with a communication destination device via the first base station, the first access router, and the core network, The wireless terminal holds the first communication context information and the ID of the gateway device,
When the wireless terminal moves to the second access network side and decides to hand over to the second access network, the wireless terminal ID, any of the second base stations, Send a handover connection request including the gateway device ID,
The first access router receives an MSK from the core network, and uses a first algorithm set in advance to encrypt communication between the core network and the first access router based on the MSK. AK_GW is generated and sent to the gateway device, and the data path between the first access router and the gateway device is set,
The gateway device uses the second and third algorithms set in advance, and based on AK_GW, the encryption key TSK_GW that protects communication between the gateway device and the wireless terminal and the gateway device-the second Each generates an encryption key MSK_eBS that protects communication between base stations,
The gateway apparatus acquires first communication context information of the wireless terminal via the first base station and the first access router, converts the first communication context information into second communication context information, and includes TSK_GW and MSK_eBS Second communication context information is notified to the second base station, and a data path between the gateway device and the second base station is set,
The second base station uses a fourth algorithm set in advance, and based on the MSK_eBS included in the second communication context information, an encryption for protecting communication between the wireless terminal and the second base station Generate key TSK_eBS,
The wireless terminal protects communication between the gateway device and the wireless terminal based on MSK using the first and second algorithms set in advance the same as the first access router and the gateway device. Generate TSK_GW to
The wireless terminal generates TSK_eBS based on authentication information exchanged with MSK or the second base station using the first, third, and fourth algorithms set in advance, and the wireless terminal And the second base station sets up a wireless data link on the protected communication path,
The wireless terminal communicates with the communication destination device via the core network, the first access router, the gateway device, and the second base station,
2. The communication system according to claim 1, wherein the wireless terminal performs user authentication with the second access network and executes a handover to the second access network. 3. The second base station notifies the wireless terminal of the ID of the second access router;
The wireless terminal requests connection to the notified second access router,
User authentication is performed for the second access network, and an encryption key MSK_SRNC is shared between the wireless terminal and the wireless core network,
The core network notifies MSK_SRNC to the second access router;
The second access router generates an encryption key TSK_SRNC for protecting communication between the wireless terminal and the second access router based on MSK_SRNC,
The wireless terminal generates TSK_SRN based on MSK_SRNC, using the same algorithm as the second access router,
The wireless terminal and the second access router perform setting of a wireless data link layer on a protected communication path,
The wireless terminal performs a handover to a second access network by communicating with the communication destination device through the second base station, the second access router, and the core network. Or the communication system described in 2. A first access network having a plurality of first base stations that mutually convert and transfer a first wireless signal from a wireless terminal into a wired signal, and a first access router that accommodates the first base station When,
A plurality of second base stations that mutually convert a second wireless signal having a communication format different from that of the first wireless signal from a wireless terminal into a wired signal and transfer it, and a second base station that accommodates the second base station A second access network having a communication format different from that of the first access network;
A wireless terminal capable of accessing both the first access network and the second access network, which are heterogeneous access networks;
Accommodating both a first access router of the first access network and a second access router of the second access network, at least one first base station and at least one second base station; When the wireless terminal moves between the first access network and the second access network, a handover procedure in the first access network and a handover procedure in the second access network A gateway device that mutually converts and relays,
A communication system comprising:
When the wireless terminal is connected to the second access network and performs data communication with a communication destination device via the second base station, the second access network, or the core network, user authentication is performed. Thus, when the wireless terminal and the core network share the encryption key MSK_SRNC or K_ASME, the wireless terminal moves to the first access network side, and determines the handover to the first access network. The terminal transmits a handover connection request including the ID of the wireless terminal,
The second access router uses the encryption key MSK_GW or K_eNB * that protects communication between the second access router and the gateway device, which is generated based on the MSK_SRNC or K_ASME received from the core network by the second access router. A data path between the router and the gateway device is set,
The gateway device and the first key are generated by the encryption key AK_BS for protecting communication between the gateway device and the first base station, which is generated based on the MSK_GW or K_eNB * received from the second access router by the gateway device. The data path with the base station is set up,
An encryption key TEK_BS that protects communication between the wireless terminal and the first base station, which is generated based on AK_BS received by the first base station from the dateway device, and the wireless terminal is MSK_SRNC or K_ASME, By the TEK_BS generated based on the authentication information exchanged with the first base station, the wireless terminal and the first base station perform wireless data link setting on the protected communication path,
The wireless terminal communicates with the communication destination device via the first base station, the gateway device, the second access router, and the core network,
Thereafter, the wireless terminal performs user authentication with the first access network and executes a handover to the first access network. When the wireless terminal connects to the second access network, user authentication is performed, and the wireless terminal and the core network share the encryption key MSK_SRNC,
When the wireless terminal is connected to the second access network and performs data communication with a communication destination device via the second base station, the second access network, and the core network, the wireless terminal When the terminal determines a handover to the first access network, the wireless terminal transmits a handover connection request including the ID of the gateway device and the ID of the wireless terminal to the first base station,
The second access router generates a cryptographic key MSK_GW that protects communication between the second access router and the gateway device based on MSK_SRNC, using a preset fifth algorithm, and stores the encryption key MSK_GW in the gateway device The data path between the second access router and the gateway device is set,
The gateway device generates an encryption key AK_BS that protects communication between the gateway device and the first base station based on MSK_GW, using a sixth algorithm shared in advance with the wireless terminal. 1 base station, the data path between the gateway device and the first base station is set,
The first base station generates an encryption key TEK_BS that protects communication between the wireless terminal and the first base station based on AK_BS using a preset seventh algorithm,
The wireless terminal uses the same fifth, sixth, and seventh algorithms set in advance as the second access router, the gateway device, and the first base station, and uses the MSK_SRNC or the first Based on the authentication information exchanged with the base station of the base station, a TEK_BS is generated, and the wireless terminal and the first base station perform wireless data link setting on the protected communication path,
The wireless terminal communicates with the communication destination device via the first base station, the gateway device, the second access router, and the core network,
5. The communication system according to claim 4, wherein the wireless terminal performs user authentication with the first access network and performs a handover to the first access network. The wireless terminal performs user authentication in the first access network, and as a result of user authentication, the MSK is shared between the wireless terminal and the core network,
The core network notifies the first access router of the MSK;
The wireless terminal performs a handover to the first access network by performing data communication with the communication destination device via the first base station, the first access router, and the core network. The communication system according to claim 4 or 5. A first access network having a plurality of first base stations that mutually convert and transfer a first wireless signal from a wireless terminal into a wired signal, and a first access router that accommodates the first base station Connected to
A plurality of second base stations that mutually convert a second wireless signal having a communication format different from that of the first wireless signal from a wireless terminal into a wired signal and transfer it, and a second base station that accommodates the second base station Two access routers, connected to a second access network having a communication format different from that of the first access network,
Accommodating both a first access router of the first access network and a second access router of the second access network, at least one first base station and at least one second base station; Contain
When the wireless terminal that can access both the first access network and the second access network, which are heterogeneous access networks, moves between the first access network and the second access network, Relaying by interconverting a handover procedure in the first access network and a handover procedure in the second access network;
A gateway device,
When the wireless terminal moves from the first access network to the second access network and decides a handover to the second access network,
The gateway device generates the core network-the first access router generated based on an encryption key MSK received by the first access router from the core network and shared by the core network and the wireless terminal by user authentication. Receiving an encryption key AK_GW that protects communication between them, and by AK_GW, setting a data path between the first access router and the gateway device,
The gateway device generates an encryption key MSK_eBS or K_eNB ** that protects communication between the gateway device and the second base station, which is generated based on AK_GW sent from the first access router. Pass to the base station, set the data path between the gateway device and the second base station by MSK_eBS or K_eNB * +,
An encryption key TSK_eBS or a radio protection encryption key for protecting communication between the radio terminal and the second base station, generated based on MSK_eBS or K_eNB * + received from the gateway device by the second base station, The wireless terminal and the second base station are wirelessly transmitted on the protected communication path by the TSK_eBS or the wireless protection encryption key generated based on the authentication information exchanged by the wireless terminal with the MSK or the second base station. Set the data link settings,
The wireless terminal communicates with the communication destination device via the core network, the first access router, the gateway device, and the second base station,
Thereafter, the wireless terminal performs user authentication with the second access network, and executes a handover to the second access network. A first access network having a plurality of first base stations that mutually convert and transfer a first wireless signal from a wireless terminal into a wired signal, and a first access router that accommodates the first base station Connected to
A plurality of second base stations that mutually convert a second wireless signal having a communication format different from that of the first wireless signal from a wireless terminal into a wired signal and transfer it, and a second base station that accommodates the second base station Two access routers, connected to a second access network having a communication format different from that of the first access network,
Accommodating both a first access router of the first access network and a second access router of the second access network, at least one first base station and at least one second base station; Contain
When the wireless terminal that can access both the first access network and the second access network, which are heterogeneous access networks, moves between the first access network and the second access network, Relaying by interconverting a handover procedure in the first access network and a handover procedure in the second access network;
A gateway device,
When the wireless terminal moves to the first access network side and decides a handover to the first access network,
The gateway device receives the second access router received from the core network based on the encryption key MSK_SRNC or K_ASME shared by the wireless terminal and the core network by user authentication, and the gateway Receiving an encryption key MSK_GW or K_eNB * that protects communication between the devices, and setting a data path between the second access router and the gateway device by MSK_GW or K_eNB *,
Passed to the first base station an encryption key AK_BS that is generated based on MSK_GW or K_eNB * received by the gateway device from the second access router and protects communication between the gateway device and the first base station, By AK_BS, a data path between the gateway device and the first base station is set,
An encryption key TEK_BS that protects communication between the wireless terminal and the first base station, which is generated based on AK_BS received by the first base station from the dateway device, and the wireless terminal is MSK_SRNC or K_ASME, By the TEK_BS generated based on the authentication information exchanged with the first base station, the wireless terminal and the first base station perform wireless data link setting on the protected communication path,
The wireless terminal communicates with the communication destination device via the first base station, the gateway device, the second access router, and the core network,
Then, the wireless terminal performs user authentication with the first access network and executes a handover to the first access network. The gateway device is
A first context table for storing the first context information, including a wireless terminal ID, connection destination information, QoS information, encryption key, data path information, and a pointer to second context information;
A second context table including a wireless terminal ID, connection destination information, QoS information, encryption key, data path information, and a pointer to the first context information for storing the second context information;
The communication system according to any one of claims 1 to 6, wherein the first context information and the second context information are converted by reading the first and second context tables, or The gateway device according to claim 7 or 8. The first access network establishes an application session of a first codec between the wireless terminal and the communication destination device,
The second access network establishes an application session of a second codec different from the first codec between the wireless terminal and the communication destination device,
The communication system according to any one of claims 1 to 6, wherein the gateway device sets the information of the first codec and the second codec in association with an access network type, Or the gateway apparatus described in Claim 7 or 8. A communication system according to claim 1;
A communication system comprising the communication system according to claim 4. A gateway device according to claim 7;
A gateway device comprising the gateway device according to claim 8. When the wireless terminal connects to the first access network, user authentication is performed, and the core network and the wireless terminal share an encryption key MSK,
When the wireless terminal is connected only to the first access network and communicates with a communication destination device via the first base station, the first access router, and the core network, When the wireless terminal moves to the second access network side and decides to hand over to the second access network, the destination information and the wireless terminal ID are included for the first base station. Send a handover connection request,
The first access router receives an MSK from the core network, and uses a first algorithm set in advance to encrypt communication between the core network and the first access router based on the MSK. AK_GW is generated and sent to the gateway device, and the data path between the first access router and the gateway device is set,
The gateway device generates a cryptographic key K_eNB * that protects communication between the gateway device and the second access router based on AK_GW, using a second algorithm that is set in advance.
The gateway apparatus acquires first communication context information of the wireless terminal via the first base station and the first access router, converts the first communication context information into second communication context information, and includes K_eNB *. 2 communication context information is notified to the second access router, and a data path between the gateway device and the second access router is set,
The second access router generates an encryption key K_eNB ** that protects between the gateway and the second access router based on K_eNB * using a third algorithm set in advance, and To two base stations,
The second base station generates a wireless protection encryption key for protecting communication between the wireless terminal and the second base station based on K_eNB ** using a fourth algorithm set in advance. ,
The wireless terminal generates a wireless protection encryption key based on authentication information exchanged with the MSK or the second base station using the first to fourth algorithms set in advance, and the wireless terminal The terminal and the second base station perform wireless data link setting on the protected communication path,
The wireless terminal communicates with the communication destination device via the core network, the first access router, the gateway device, and the second base station,
2. The communication system according to claim 1, wherein the wireless terminal performs user authentication with the second access network and executes a handover to the second access network. 3. When the wireless terminal connects to the second access network, user authentication is performed, and the wireless terminal and the core network share an encryption key K_ASME,
When the wireless terminal is connected to the second access network and performs data communication with a communication destination device via the second base station, the second access network, and the core network, the wireless terminal When the terminal determines a handover to the first access network, the wireless terminal transmits a handover connection request including destination information and an ID of the wireless terminal to the second base station,
The second access router generates an encryption key K_eNB * that protects communication between the second access router and the gateway device based on K_ASME, using a preset fifth algorithm, and the gateway device And the data path between the second access router and the gateway device is set,
The gateway device generates an encryption key AK_BS that protects communication between the gateway device and the first base station based on K_eNB * using a sixth algorithm shared in advance with the wireless terminal, Notifying the first base station, the data path between the gateway device and the first base station is set,
The first base station generates an encryption key TEK_BS that protects communication between the wireless terminal and the first base station based on AK_BS using a preset seventh algorithm,
The wireless terminal uses the same fifth, sixth, and seventh algorithms set in advance as the second access router, the gateway device, and the first base station, and uses the K_ASME or the first Based on the authentication information exchanged with the base station of the base station, a TEK_BS is generated, and the wireless terminal and the first base station perform wireless data link setting on the protected communication path,
The wireless terminal communicates with the communication destination device via the first base station, the gateway device, the second access router, and the core network,
5. The communication system according to claim 4, wherein the wireless terminal performs user authentication with the first access network and performs a handover to the first access network. The first access network is a WiMAX access network;
The second access network is a UMB access network;
The communication system according to claim 1, wherein MSK, AK_GW, MSK_eBS, and TSK_eBS are used as encryption keys. The first access network is a WiMAX access network;
The second access network is an LTE access network;
The communication system according to claim 1, wherein MSK, AK_GW, K_eBS * +, and a wireless protection encryption key are used as encryption keys. The first access network is a WiMAX access network;
The second access network is a UMB access network;
5. The communication system according to claim 4, wherein MSK_SRNC, MSK_GW, AK_BS, and TEK_BS are used as encryption keys. The first access network is a WiMAX access network;
The second access network is an LTE access network;
The communication system according to claim 4, wherein K_ASME, K_eNB *, AK_BS, and TEK_BS are used as encryption keys. The first access network is a WLAN access network;
The communication system according to claim 1 or 4, wherein the second access network is an LTE access network.

Images