JP6931535B2 - Communication control device - Google Patents

Description

The present invention relates to a communication control device.

When the user uses the mobile communication terminal, the mobile communication terminal sends a location registration request to the network side, and the network side performs the location registration process after performing the authentication process related to the mobile communication terminal. On the other hand, since an illegal location registration request may be transmitted from a communication terminal different from the legitimate mobile communication terminal, various methods for detecting the illegal location registration request are being studied on the network side. (For example, Patent Document 1).

Japanese Unexamined Patent Publication No. 2010-263426

However, in recent years, an illegal location registration request may be transmitted by using a method that cannot be detected by the methods studied so far, and a further method for detecting an illegal location registration request is required.

The present invention has been made in view of the above, and an object of the present invention is to provide a communication control device capable of preventing communication based on an unauthorized location registration request from a mobile device.

In order to achieve the above object, the communication control device according to one embodiment of the present invention provides information for identifying the mobile device and information for specifying the exchange that controls the area where the mobile device has registered the location for each mobile device. A location registration information storage unit that is stored in association with each other, a location registration request receiving unit that includes information for identifying a mobile device and receives a location registration request signal related to the mobile device from an exchange, and a location registration request signal are transmitted. A location registration process is performed on the exchange based on the authentication instruction unit for instructing the authentication related to the mobile device and the location registration request signal, and the information stored in the location registration information storage unit is updated. Refer to the location registration processing unit, the authentication result receiving unit that receives a signal from the exchange indicating that the authentication related to the mobile device has failed in response to the instruction by the authentication instruction unit, and the location registration information storage unit. , The location registration is used as information for identifying the exchange that controls the location registration area associated with the information for identifying the mobile device corresponding to the signal indicating that the authentication received by the authentication result receiving unit has failed. Includes a location registration information erasing unit that erases information related to location registration related to the mobile device when information identifying the exchange that has transmitted the request signal is stored.

According to the above-mentioned communication control device, when the signal indicating that the authentication related to the mobile device has failed is received, the area corresponding to the exchange that has transmitted the signal indicating that the mobile device has failed the authentication is located in the area. If the mobile device is in the area, the location registration information related to the mobile device is deleted. By providing the above configuration in the communication control device, it indicates that the authentication related to the mobile device has failed even if the location registration process of the mobile device is advanced based on the invalid location registration request. Since the information related to the location registration can be deleted when the signal is received, it is possible to prevent the communication connection of the mobile device from being continued due to the illegal location registration process.

Further, the communication control device according to one embodiment of the present invention stores information for identifying the mobile device and information for specifying the exchange that controls the area where the mobile device has registered the location in association with each mobile device. The location registration information storage unit, the location registration request receiving unit that includes information for identifying the mobile device and receives the location registration request signal related to the mobile device from the exchange, and the location registration process based on the location registration request signal. Corresponds to the information that identifies the mobile device included in the location registration request signal by referring to the location registration processing unit that executes and updates the information stored in the location registration information storage unit and the location registration information storage unit. When information for identifying an exchange different from the exchange that transmitted the location registration request signal is stored as information for identifying the exchange that has jurisdiction over the attached location registration area, the location registration information storage unit From the paging processing unit that instructs the switching machine specified based on the information stored in Includes a location registration processing canceling unit that cancels the location registration processing related to the mobile device based on the location registration request signal in the location registration processing unit when a signal indicating that there is a response from is received. ..

According to the above communication control device, when a location registration request signal is received from an exchange different from the exchange stored in association with the mobile device in the location registration information storage unit, the location registration information storage unit stores the location registration request signal. Instruct the exchange to paging the mobile unit. Then, when there is a response from the mobile device to the paging, the location registration process is stopped. By providing such a configuration in the communication control device, for example, when an illegal location registration request signal regarding the mobile device is transmitted and paging to the mobile device is possible, the illegal location registration is performed. Request-based processing can be rejected. Therefore, it is possible to prevent the location registration from being performed based on the invalid location registration request and the communication connection from being established.

According to the present invention, there is provided a communication control device capable of preventing communication based on an unauthorized location registration request from a mobile device.

It is a system block diagram of the communication system including HSS / HLR which is a communication control device which concerns on this embodiment. It is a functional block diagram for executing the first method for HSS / HLR. It is a figure which shows the example of the information which is stored in the position registration information storage part of HSS / HLR. It is a sequence diagram explaining the flow of processing which concerns on the 1st method by a communication system. It is a flowchart related to the determination of the territory erasure by HSS / HLR. It is a functional block diagram for executing the second method for HSS / HLR. It is a figure which shows the example of the information held in the paging processing part of HSS / HLR. It is a sequence diagram explaining the flow of processing which concerns on the 2nd method by a communication system. It is a flowchart related to the determination of continuation of the position registration process by HSS / HLR. It is a figure which shows an example of the hardware configuration of HSS / HLR which concerns on this embodiment.

Hereinafter, embodiments for carrying out the present invention will be described in detail with reference to the accompanying drawings. In the description of the drawings, the same elements are designated by the same reference numerals, and duplicate description will be omitted.

FIG. 1 is a diagram showing a system configuration of a communication system including a communication control device according to an embodiment of the present invention. The communication system 1 shown in FIG. 1 is a system for the mobile device 40, which is a mobile communication terminal, to perform communication. In the present embodiment, when the mobile device 40 is a mobile device capable of communicating with a home network (NW) in the first area A1, the mobile device 50 is a mobile communication terminal (illegal terminal) that performs illegal processing. Shows a state in which is trying to make a communication connection using the home network in the second area A2 under the guise of a mobile device 40. In the communication system 1 according to the present embodiment, a case where the HSS / HLR 10 which is a communication control device provided in the home NW prevents a communication connection using the home NW by the mobile device 50 which is an unauthorized terminal will be described.

As shown in FIG. 1, the communication system 1 includes an HSS / HLR (Home Subscriber Server / Home Location Server) 10, a first exchange 20, a second exchange 30, and mobile units 40 and 50.

The HSS / HLR10 is a subscriber information management server (subscriber information management database) that manages contract information, authentication information, and service area information of mobile devices in the home NW. Further, in the present embodiment, the HSS / HLR 10 has a function of determining whether or not the mobile device that has transmitted the location registration request is an unauthorized terminal, and performing processing related to the location registration request based on the result. .. That is, the HSS / HLR 10 functions as a communication control device in this embodiment. Details of the processing performed by the HSS / HLR 10 will be described later.

The first exchange 20 and the second exchange 30 are devices that function as exchanges when the mobile unit communicates. In the present embodiment, the first exchange 20 is an exchange when mobile devices in the first area communicate with each other. Further, the second exchange 30 is an exchange when mobile devices in the second area communicate with each other. The first exchange 20 and the second exchange 30 transmit a location registration request when the mobile unit communicates to the HSS / HLR 10, and information necessary for the authentication process and the location registration process related to the mobile unit. It has a function to send and receive.

The first area and the second area may be an area formed by the home NW or an area formed by another communication network. For example, the first area may be an area formed by the home NW, and the second area may be an area formed by another communication network. In this case, the mobile device in the second area of the other communication network is the mobile device roaming out to the other communication network by roaming. That is, the mobile device at the position corresponding to the second area requests the location registration to the HSS / HLR 10 of the home NW via the second exchange 30 provided in the second area formed in another communication network. Will be sent.

The mobile devices 40 and 50 are terminal devices that have communication functions such as smartphones and tablet terminals and are used by users. In the present embodiment, it is assumed that the mobile device 40 is a legitimate terminal and the mobile device 50 is an unauthorized terminal. An unauthorized terminal is a communication terminal that attempts to make a communication connection to a home NW under the guise of another terminal. In the following embodiment, a case where the mobile device 50 attempts to make a communication connection to the home NW under the guise of a mobile device 40 which is a regular terminal will be described.

Here, with reference to FIG. 1, how to detect an unauthorized terminal in the communication system 1 and prevent communication connection by the unauthorized terminal will be described. When the mobile device 40, which is a legitimate terminal, is located in the first area, the mobile device 50, which is an unauthorized terminal, tries to make a communication connection from the second area to the home NW under the guise of the mobile device 40. do. When the mobile device 40, which is a regular terminal, makes a communication connection to the home NW, a location registration request is transmitted to the HSS / HLR 10 via the first exchange 20. When registering the location of the mobile device 40 in the home NW, first, an authentication process for confirming whether or not the mobile device 40 is a legitimate terminal is performed. Since the mobile device 40, which is a legitimate terminal, holds information necessary for authentication, the information is transmitted and received. The result of the authentication is transmitted to the HSS / HLR 10 from the exchange that communicates with the mobile device. When the authentication related to the mobile device 40 is successful, the HSS / HLR 10 on the home NW side determines that the position registration process related to the terminal may be performed, and performs the position registration process related to the mobile device 40. As a result, the mobile device 40 is registered in the HSS / HLR 10 via the first exchange 20, and is in a state where communication using the home NW is possible.

On the other hand, when the mobile device 50, which is an unauthorized terminal, pretends to be the mobile device 40 and makes a communication connection to the home NW, a location registration request is made to the HSS / HLR 10 via the second exchange 30. Next, an authentication process is performed to confirm whether or not the mobile device 50 is a legitimate terminal. Here, when the mobile device 50 is an unauthorized terminal, the mobile device 50 does not hold the information necessary for the authentication as the mobile device 40, and the authentication fails. The result of the authentication is transmitted to the HSS / HLR 10 from the exchange that communicates with the mobile device. When the authentication related to the mobile device 50 fails, the HSS / HLR10 on the home NW side determines that the terminal is an unauthorized terminal, rejects the location registration, and cancels the process. As a result, the mobile device 50 is in a state in which communication using the home NW disguised as the mobile device 40 is not possible.

In this way, conventionally, on the home NW side, when an unauthorized terminal pretends to be a legitimate terminal and makes a location registration request, it is determined whether or not the mobile device is a legitimate terminal based on the success or failure of authentication. have.

However, it is conceivable that unauthorized terminals cannot be sufficiently excluded by the conventional determination of whether or not location registration is possible based on the above authentication result. For example, the result of the authentication process related to the mobile device is transmitted from the exchange to the HSS / HLR, but if the exchange does not notify the HSS / HLR, the HSS / HLR fails to authenticate the mobile device. I can't figure it out. That is, it is not possible to determine whether or not the terminal performing authentication is an unauthorized terminal. In the conventional system configuration, the HSS / HLR does not determine that the target mobile device is an unauthorized terminal unless the authentication failure is notified as a result of the authentication related to the mobile device. Therefore, if the switch does not notify the failure of authentication, there is a possibility that the subsequent location registration process will be continued in HSS / HLR. In addition, depending on the exchange, the timing of notifying the HSS / HLR of the authentication result may be delayed, so that the location registration process may be performed without the HSS / HLR knowing that the authentication has failed. Be done.

In addition, regardless of the result of the authentication process related to the mobile device, it is possible that the exchange will uniformly notify that the authentication has been successful. In this case, HSS / HLR may continue the location registration process based on the notification that the authentication is successful. Based on the original function of the exchange, the exchange is required to appropriately notify the result of the certification related to the mobile device. However, in the case of communication via an exchange that cannot be sufficiently managed on the home NW side, for example, an exchange provided by the roaming out destination communication network, an exchange with specifications different from those assumed on the home NW side is used. There is a possibility that it will be done.

Therefore, in the communication system 1 according to the present embodiment, even if the authentication result cannot be properly received by the HSS / HLR10 on the home NW side, communication based on an illegal location registration request from the mobile device is prevented. The configuration that can be done is realized. In the following embodiment, two methods will be described as a configuration for preventing communication based on an unauthorized location registration request from the mobile device. In the first method, when the location registration process is performed without the HSS / HLR10 knowing that the authentication has failed, the location registration information is deleted when the notification indicating that the authentication has failed is received. It is characterized by that. In the second method, even if the authentication is successful, if the location registration request from the mobile device is sent from an area different from that at the time of the previous location registration, the second method is at the time of the previous location registration. It is characterized by paging the area. Each will be described below.

(First method)
In the first method, when the location registration process is performed without the HSS / HLR10 knowing that the authentication has failed, the location registration information is deleted when the notification indicating that the authentication has failed is received. .. That is, even if the location registration process for the mobile device is completed, the HSS / HLR10 deletes the location registration information when it receives a notification from the exchange indicating that the authentication for the mobile device has failed. , Refuse the mobile aircraft to stay in the service area.

Therefore, the HSS / HLR10 that executes the first method has a function as shown in the functional block diagram of FIG. That is, the HSS / HLR 10 includes a communication unit 11 (location registration request receiving unit, authentication result receiving unit), a location registration processing unit 12 (authentication instruction unit, location registration processing unit), a location registration information storage unit 13, and a sphere determination unit. 14 (location registration information erasing unit) and area erasing processing unit 15 (location registration information erasing unit) are included.

The communication unit 11 has a function of receiving a signal of a position registration request relating to a mobile device transmitted from an exchange such as the first exchange 20 and the second exchange 30. In addition, the communication unit 11 has a function of transmitting and receiving signals necessary for location registration. The signal received by the communication unit 11 also includes a signal indicating the result of authentication related to the mobile device transmitted from the exchange.

The position registration processing unit 12 performs processing related to the position registration of the mobile device based on the position registration request of the mobile device transmitted from the exchange received by the communication unit 11. The position registration process itself is an existing process, and the position registration processing unit 12 performs the position registration related to the mobile device by performing the existing process. In addition, the position registration processing unit 12 also has a function of instructing the exchange to authenticate the mobile device as a process related to the position registration of the mobile device.

The location registration information storage unit 13 has a function of storing information related to the location registration of the mobile device performed by the location registration processing unit 12. FIG. 3 shows a part of the information stored in the location registration information storage unit 13. As shown in FIG. 3, in the location registration information storage unit 13, information for identifying a mobile device (for example, IMSI: International Mobile Subscriber Identity, telephone number, etc.) and an area in which the mobile device is located (location registration) (In FIG. 3, information for identifying the exchange that has been passed through during location registration) is stored. In the location registration information storage unit 13, not only the above information but also contract information and the like may be stored in association with the information specifying the mobile device, but the description is omitted in the present embodiment.

When the communication unit 11 receives the authentication failure signal related to the mobile device from the exchange, the service area determination unit 14 determines whether the mobile device has already registered the position (whether the mobile device has already been in the service area). Has. The service area determination unit 14 determines whether or not the location registration of the target mobile device that has received the signal indicating the failure of authentication has been completed based on the information stored in the location registration information storage unit 13. If the location determination unit 14 determines that the location registration for the mobile device has not been performed (not in the service area), the processing for the location registration for the mobile device is stopped as usual. .. On the other hand, when the area determination unit 14 determines that the location registration related to the mobile device has been completed (the area has already been registered), the service area elimination processing unit 15 performs the process related to the mobile device.

The territorial erasure processing unit 15 erases the territory, that is, the position of the mobile device that is determined by the territorial determination unit 14 that the location registration for the mobile device has been completed (already in the sphere). It has a function to delete the registered information. Specifically, the information stored in the location registration information storage unit 13 is updated, and the mobile device is notified that the location registration information has been deleted. Since the location registration information is deleted, the mobile device that receives this notification cannot communicate via the home NW unless the location registration is performed again.

A series of processes by the communication system 1 including the above HSS / HLR 10 will be described with reference to FIGS. 4 and 5. FIG. 4 is a sequence diagram illustrating a processing flow by the communication system 1. Further, FIG. 5 is a flowchart relating to the determination of erasure of the area by HSS / HLR10.

First, as a premise, it is assumed that the mobile device 40, which is a legitimate terminal, and the mobile device 50, which is an unauthorized terminal, are staying in the area shown in FIG. Then, a case where the mobile device 40 attempts to register the position under the guise of the mobile device 40 after the mobile device 40 registers the position with respect to the HSS / HLR 10 will be described.

First, the mobile device 40, which is a regular terminal, transmits a signal (Location Update) requesting location registration to the first exchange 20 (S01). The signal requesting the location registration includes information for identifying the own machine (mobile machine 40). The first exchange 20 transmits a position registration request signal (MAP_SAI) of the mobile device 40 to the HSS / HLR 10 based on the request from the mobile device 40 (S02). The location registration request signal includes information for identifying the mobile device 40 and information for specifying the first exchange 20. When the communication unit 11 receives the signal from the first exchange 20, the HSS / HLR 10 starts the process related to the authentication of the mobile device 40 as the process related to the position registration in the position registration processing unit 12 (S03). Then, an instruction signal (MAP_SAI.ack) for authenticating the mobile device 40 is transmitted from the communication unit 11 of the HSS / HLR 10 to the first exchange 20 (S04). Based on the instruction from the HSS / HLR 10, the first exchange 20 communicates with the mobile unit 40 to perform authentication (S05). As a result of this communication, when the authentication related to the mobile device 40 is successful in the first exchange 20 (S06), a signal (MAP_UL) indicating this result is transmitted from the first exchange 20 to the HSS / HLR 10 (S07). This signal is a signal requesting the continuation of the location registration process. Therefore, in the HSS / HLR 10, after performing the position registration process related to the mobile device 40 in the position registration processing unit 12, the first exchange 20 is notified (MAP_UL.ack) that the position registration process is completed (S08). ). The first exchange 20 notifies the mobile unit 40 that the location registration process has been completed (Location Update.ack) (S09). Through the above processing, information indicating that the mobile device 40 is in the first area under the jurisdiction of the first exchange 20 is registered in the location registration information storage unit 13 of the HSS / HLR 10.

Next, it is assumed that the mobile device 50, which is an unauthorized terminal, makes a position registration request from the second area under the guise of the mobile device 40. The mobile device 50 disguises itself as a mobile device 40, which is a regular terminal, and transmits a signal (Location Update) requesting the location registration by the mobile device 40 to the second exchange 30. Since the mobile device 50 pretends to be the mobile device 40, it transmits a signal including information that identifies the mobile device 40 to the second exchange 30 instead of information that identifies the own device (mobile device 50) (the mobile device 50). S11). The second exchange 30 transmits a position registration request signal (MAP_SAI) related to the mobile device 40 to the HSS / HLR 10 based on the request transmitted from the mobile device 50 (S12). The location registration request signal includes information for identifying the mobile device 40 and information for specifying the second exchange 30. When the communication unit 11 of the HSS / HLR 10 receives the signal from the second exchange 30, the location registration processing unit 12 starts the processing related to the authentication of the mobile device 40 as the processing related to the position registration in the location registration processing unit 12. (S13). Then, an instruction signal (MAP_SAI.ack) for performing authentication is transmitted from the communication unit 11 of the HSS / HLR 10 to the second exchange 30 (S14). The second exchange 30 communicates with the mobile unit 50 and authenticates based on the instruction from the HSS / HLR 10 (S15). However, since the mobile device 50 transmits the location registration request under the guise of the mobile device 40, the communication related to the authentication of the mobile device 40 is performed here. Therefore, in the communication with the mobile device 50, the authentication related to the mobile device 40 naturally fails (S16).

However, it is assumed that the second exchange 30 transmits a signal (MAP_UL) requesting the continuation of the location registration process before notifying the HSS / HLR 10 that this authentication has failed (S17). In this case, the HSS / HLR 10 determines that there is no problem in the authentication of the mobile device 40 (the mobile device 50 disguised as the mobile device 40), and the position registration processing unit 12 performs the position registration process related to the mobile device 40. After that, the second exchange 30 is notified (MAP_UL.ack) that the location registration process is completed (S18). The second exchange 30 notifies the mobile device 50 disguised as the mobile device 40 that the location registration process has been completed (Location Update.ack) (S19). Through the above processing, information indicating that the mobile device 40 is in the second area under the jurisdiction of the second exchange 30 is registered in the location registration information storage unit 13 of the HSS / HLR 10, and disguised as the mobile device 40. The mobile device 50 will be in a situation where it can communicate via the home NW.

On the other hand, after the position registration process relating to the mobile device 40 (disguised mobile device 50) is performed, the second exchange 30 authenticates the HSS / HLR 10 regarding the mobile device 40 (disguised mobile device 50). It is assumed that the information (MAP_AFR) indicating the failure is notified (S20). In the conventional HSS / HLR, no special processing is performed even when the notification of the authentication failure regarding the mobile device for which the location registration processing has been completed is received. On the other hand, in the HSS / HLR 10 according to the present embodiment, it is determined whether or not to delete the position registration information related to the position-registered mobile device 40 (the mobile device 50 disguised as the position-registered mobile device 50) (determination of erasure in the area). It is characterized by performing (S21).

Specifically, the in-zone erasure determination (S21) in the HSS / HLR 10 is performed according to the flowchart shown in FIG. First, when a signal indicating that the authentication has failed is transmitted from the exchange (second exchange 30 in this embodiment) and received by the communication unit 11 of the HSS / HLR 10 (S31), the area determination unit of the HSS / HLR 10 In 14, it is determined whether the target mobile device 40 for which the authentication has failed has already been in the area of the exchange that transmitted the signal for which the authentication has failed (S32). In the present embodiment, since the position registration related to the mobile device 40 is performed based on the signal from the second exchange 30, information indicating that the mobile device 40 is in the second area of the second exchange 30. Is stored in the location registration information storage unit 13, and the above determination is made. As a result, when the mobile device 40 has already been in the second area (S32-YES), it means that the mobile device 40 is in the service area even though the authentication has failed. show. Therefore, based on the determination result of the area determination unit 14, the area deletion processing unit 15 deletes the area information related to the mobile device 40, that is, the information stored in the location registration information storage unit 13. Do (S33). As a result, the location registration information storage unit 13 of the HSS / HLR 10 is disguised as the mobile device 40 because the information indicating that the mobile device 40 is in the second area under the jurisdiction of the second exchange 30 is deleted. It is prevented that the mobile device 50 communicates via the home NW.

If, as a result of the determination by the area determination unit 14, the mobile device 40 is not in the second area (S32-NO), the movement is performed by performing processing based on the authentication result as usual. It is possible to prevent the machine 50 from pretending to be the mobile machine 40 and performing communication via the home NW. Therefore, the HSS / HLR 10 performs the existing process (S34).

In the case of the example shown in FIG. 4, it corresponds to the case where the mobile device 40 has already been in the second area (S32-YES). Therefore, the information stored in the location registration information storage unit 13 is deleted. Then, a signal (MAP_CL) indicating that the service area information has been deleted is transmitted to the second exchange 30 (S22). Based on this signal, the second exchange 30 is prevented from continuing the communication connection by the mobile device 50 disguised as the mobile device 40.

As a result of the above series of processes, the location registration information of the mobile device 40 is deleted from the location registration information storage unit 13 of the HSS / HLR 10. Therefore, the information that the mobile device 40, which is a regular terminal, is in the first area corresponding to the first exchange 20 is also deleted. Therefore, the position registration information of the mobile device 40 is not registered in the HSS / HLR10, but the mobile device 40 is at some timing after that (for example, the timing when the mobile device 40 needs a communication connection). Communication connection can be restarted by registering the location again by regular processing.

In this way, when the HSS / HLR 10 receives the signal indicating that the authentication related to the mobile device has failed, the service area determination unit 14 transmits the signal indicating that the mobile device has failed the authentication to the exchange. It is configured to determine whether or not the mobile device is in the corresponding area, and if the mobile device is in the area, the location registration information related to the mobile device is deleted by the area deletion processing unit 15. There is. By providing the HSS / HLR 10 with such a configuration, even if the location of the unauthorized terminal is registered, the area information is deleted when the signal indicating that the authentication related to the mobile device has failed is received. Therefore, it is possible to prevent the communication connection of the unauthorized terminal from being continued.

In the above description, the mobile device 50, which is an unauthorized terminal, transmits a location registration request via a second exchange 30, which is different from the first exchange 20 to which the mobile device 40, which is a regular terminal, is connected. This can be applied even when the mobile device 40, which is a legitimate terminal, and the mobile device 50, which is an unauthorized terminal, are under the control of the same exchange. That is, when the mobile device 50 pretends to be the mobile device 40 and transmits a location registration request, the authentication related to the mobile device 50 fails, so that a signal indicating the failure is transmitted from the exchange to the HSS / HLR 10. Therefore, the HSS / HLR 10 deletes the information related to the position registration related to the mobile device 40 when the authentication related to the mobile device 50 disguised as the mobile device 40 fails, so that the mobile device 50 continues the communication. Becomes impossible. However, since the communication connection of the mobile device 40, which is a regular terminal, is also impossible, the mobile device 40 needs to make a location registration request again.

(Second method)
In the second method, even if the authentication is successful, if the location registration request from the mobile device is sent from an area different from the area at the time of the previous location registration, the area at the time of the previous location registration is displayed. On the other hand, paging is performed, and it is determined whether or not to continue the location registration process based on the paging result. That is, the HSS / HLR10 states that the new location registration request received by the HSS / HLR10 is an invalid request when the mobile device (regular terminal) is still in the area at the time of the previous location registration. Judging, the location registration process is stopped.

Therefore, the HSS / HLR10 that executes the second method has a function as shown in the functional block diagram of FIG. That is, the HSS / HLR 10 includes a communication unit 11 (location registration request receiving unit), a location registration processing unit 12, a location registration information storage unit 13, a service area determination unit 14 (location registration processing stop unit), and a paging processing unit 16. Consists of including. Of these, the communication unit 11, the location registration processing unit 12, and the location registration information storage unit 13 are functional blocks that perform the same processing as the HSS / HLR 10 capable of performing the first method shown in FIG. Therefore, the description is omitted.

The service area determination unit 14 is a functional unit included in the HSS / HLR 10 that can perform the first method, but the process for determining the service area of the mobile device is different. In the second method, the area determination unit 14 has a function of confirming whether the mobile device that has transmitted the location registration request is in the area at the time of the previous location registration. If it is determined that the mobile device that sent the location registration request is also in the area at the time of the previous location registration, it can be determined that the mobile device that newly sent the location registration request is an unauthorized terminal. can. When the area determination unit 14 determines that the new location registration request is an illegal location registration request from an unauthorized terminal, the area determination unit 14 processes based on the location registration request by the location registration processing unit 12. To stop. Therefore, the position registration process by the position registration processing unit 12 is interrupted, and the position registration is not performed.

Based on the instruction from the area determination unit 14, the paging processing unit 16 paging the area in which the mobile device that transmitted the location registration request was in the service area when the previous location registration was performed, and the mobile device concerned. It has a function to check if you are in the area. When the mobile device is located in the area, the mobile device responds to the paging from the paging processing unit 16 of the HSS / HLR 10. On the other hand, if the mobile device is not already in the area, the mobile device does not respond to the paging from the paging processing unit 16 of the HSS / HLR 10. The paging processing unit 16 has a function of confirming whether there is a response from the mobile device within a predetermined time and notifying the result to the service area determination unit 14. In order to perform the above control, the paging processing unit 16 may individually hold a table (information) for managing the mobile device during paging as shown in FIG. 7.

Next, a series of processes using the second method will be described with reference to FIGS. 8 and 9. FIG. 8 is a sequence diagram illustrating a processing flow by the communication system 1. Further, FIG. 9 is a flowchart relating to the determination of continuation of the position registration process by the HSS / HLR10.

The premise is the same as the first method. That is, it is assumed that the mobile device 40, which is a legitimate terminal, and the mobile device 50, which is an unauthorized terminal, are staying in the area shown in FIG. Then, a case where the mobile device 40 attempts to register the position under the guise of the mobile device 40 after the mobile device 40 registers the position with respect to the HSS / HLR 10 will be described.

Since the process of position registration by the mobile device 40, which is a regular terminal, is the same as that of the first method, a brief description will be given. The mobile device 40, which is a regular terminal, transmits a signal (Location Update) requesting location registration to the first exchange 20 (S01). The first exchange 20 transmits a position registration request signal (MAP_SAI) of the mobile device 40 to the HSS / HLR 10 based on the request from the mobile device 40 (S02). When the communication unit 11 receives the signal from the first exchange 20, the HSS / HLR 10 starts the process related to the authentication of the mobile device 40 (S03). An instruction signal (MAP_SAI.ack) for performing authentication is transmitted from the communication unit 11 of the HSS / HLR 10 to the first exchange 20 (S04). Based on the instruction from the HSS / HLR 10, the first exchange 20 communicates with the mobile unit 40 to perform authentication (S05). As a result of this communication, when the authentication related to the mobile device 40 is successful in the first exchange 20 (S06), a signal (MAP_UL) indicating this result is transmitted from the first exchange 20 to the HSS / HLR 10 (S07). In the HSS / HLR 10, after performing the position registration process related to the mobile device 40 in the position registration processing unit 12, the first exchange 20 is notified (MAP_UL.ack) that the position registration process is completed (S08). The first exchange 20 notifies the mobile unit 40 that the location registration process has been completed (Location Update.ack) (S09). Through the above processing, information indicating that the mobile device 40 is in the first area under the jurisdiction of the first exchange 20 is registered in the location registration information storage unit 13 of the HSS / HLR 10.

Next, it is assumed that the mobile device 50, which is an unauthorized terminal, makes a position registration request from the second area under the guise of the mobile device 40. The mobile device 50 disguises itself as a mobile device 40, which is a regular terminal, and transmits a signal (Location Update) requesting the location registration by the mobile device 40 to the second exchange 30. Since the mobile device 50 pretends to be the mobile device 40, it transmits a signal including information that identifies the mobile device 40 to the second exchange 30 instead of information that identifies the own device (mobile device 50) (the mobile device 50). S41). The second exchange 30 transmits a position registration request signal (MAP_SAI) related to the mobile device 40 to the HSS / HLR 10 based on the request transmitted from the mobile device 50 (S42). The location registration request signal includes information for identifying the mobile device 40 and information for specifying the second exchange 30. When the communication unit 11 of the HSS / HLR 10 receives the signal from the second exchange 30, the location registration processing unit 12 starts the processing related to the authentication of the mobile device 40 as the processing related to the position registration in the location registration processing unit 12. (S43). Then, an instruction signal (MAP_SAI.ack) for performing authentication is transmitted from the communication unit 11 of the HSS / HLR 10 to the second exchange 30 (S44). The second exchange 30 communicates with the mobile unit 50 and authenticates based on the instruction from the HSS / HLR 10 (S45). However, since the mobile device 50 transmits the location registration request under the guise of the mobile device 40, the communication related to the authentication of the mobile device 40 is performed here. Therefore, in the communication with the mobile device 50, the authentication related to the mobile device 40 naturally fails (S46).

However, it is assumed that the second exchange 30 transmits a signal (MAP_UL) requesting the continuation of the location registration process without notifying the HSS / HLR 10 that this authentication has failed (S47). In the second method, when the communication unit 11 of the HSS / HLR 10 receives the signal (MAP_UL) requesting the continuation of the location registration process, the service area determination unit 14 determines whether or not to perform paging on the mobile device 40. (S48), and the subsequent processing is changed based on the determination result. The processing at this point will be described with reference to FIG.

In the service area determination unit 14 of the HSS / HLR 10, when the signal requesting the continuation of the position registration process related to the mobile device 40 is received (S61), the mobile device 40 moves across the area since the previous position registration. Determine if it is. Specifically, in the area determination unit 14, the exchange that has transmitted the location registration request signal and the signal requesting the continuation of the location registration process controls the area that was in the area when the location registration request was transmitted last time. It is determined whether or not the exchange is different from the above (S62). The area in which the mobile device 40 was located when the location was registered last time (that is, which exchange was in the area under the jurisdiction) is determined by the information stored in the location registration information storage unit 13 of the HSS / HLR 10. You can see it by referring to it. Therefore, the above judgment is made based on this information. In the case of the present embodiment, the first exchange 20 performs the process related to the previous position registration of the mobile device 40, and the location registration information storage unit 13 also has the information for identifying the first area and the first exchange 20 in the mobile device 40. Is stored in association with the information that identifies. On the other hand, since the exchange that transmitted the location registration request signal and the signal requesting the continuation of the location registration process this time is the second exchange 30, an exchange different from the first exchange 20 requests the location registration related to the mobile unit 40. This means that the signal and the signal requesting the continuation of the location registration process have been transmitted.

If the exchange that transmitted the location registration request signal and the signal requesting the continuation of the location registration process is the same as the exchange that has jurisdiction over the area that was in the area when the location registration request was transmitted last time (S62-NO), it is present. The service area determination unit 14 considers that the mobile device 40 has not moved, and makes a normal response (S63), and the position registration processing unit 12 continues the position registration process related to the mobile device 40.

On the other hand, when the exchange that transmitted the location registration request signal and the signal requesting the continuation of the location registration process is different from the exchange that has jurisdiction over the area in which the location registration request was transmitted last time (S62-YES). The service area determination unit 14 instructs the paging processing unit 16 to perform paging that specifies the mobile device 40 to the exchange that controls the area where the location registration processing was performed last time, that is, the first exchange 20 (the first exchange 20). S64). Then, the paging processing unit 16 waits for a response from the mobile device 40 for a predetermined time (for example, several seconds), and confirms whether or not the mobile device 40 responds to the paging from the first exchange 20 (S65). If there is a response from the mobile unit 40 as a result of paging of the first exchange 20 based on the instruction of the paging processing unit 16 (S65-YES), the mobile unit 40 is in the area under the jurisdiction of the first exchange 20. Is confirmed. Therefore, based on this result, the position registration processing unit 12 cancels the process and rejects the position registration process related to the mobile device 40 (the mobile device 50 disguised as the mobile device 50) to the second exchange 30 (S66). On the other hand, if there is no response from the mobile unit 40 as a result of paging of the first exchange 20 based on the instruction of the paging processing unit 16 (S65-NO), the mobile unit 40 moves from the area under the jurisdiction of the first exchange 20. It is confirmed that it is. Therefore, it is determined that the new location registration request is transmitted from the mobile device 40, which is a regular terminal, a normal response is made (S63), and the location registration processing unit 12 performs the location registration process related to the mobile device 40. continue.

In the case of the example shown in FIG. 8, what is the exchange that controls the area where the exchange that transmitted the location registration request signal and the signal requesting the continuation of the location registration process was in the area when the location registration request was transmitted last time? This corresponds to a different case (S62-YES). Therefore, based on the information stored in the location registration information storage unit 13, a signal (MAP_PRN) instructing the first exchange 20 to paging the mobile device 40 is transmitted (S49). The first exchange 20 performs paging on the mobile device 40 based on this signal. In the case of the present embodiment, since the mobile device 40 is under the control of the first exchange 20, it responds to the paging (S50). The first exchange 20 transmits a signal (MAP_PRN.ack) indicating that the mobile device 40 has responded to the paging to the HSS / HLR 10 (S51). In the HSS / HLR10, the location registration request from the mobile unit 40 (disguised mobile unit 50) transmitted from the second exchange 30 is invalid based on the response from the mobile unit 40 to the paging. (S52), a signal (MAP_UL.neg.res) is transmitted to notify the second exchange 30 that the location registration is rejected while canceling the processing in the location registration processing unit 12. The second exchange 30 transmits a signal (Attach Reject) notifying the mobile device 50 disguised as the mobile device 40 that the position registration has been rejected (S53). As a result, in the HSS / HLR 10, it is possible to prevent the mobile device 50 disguised as the mobile device 40 from making a communication connection via the second exchange 30.

As described above, when the HSS / HLR 10 does not receive the signal indicating that the authentication related to the mobile device has failed, the HSS / HLR 10 is a different exchange (first exchange 20) from the exchange (first exchange 20) that was passed through when the position was registered last time. 2 When the location registration request signal is received from the exchange 30), the exchange that passed through the previous location registration is instructed to paging the mobile unit. Then, it is provided with a configuration for determining whether to continue the location registration process based on the presence or absence of a response from the mobile device to the paging. By providing the HSS / HLR 10 with such a configuration, even if a location registration request signal is transmitted from an unauthorized terminal, if the legitimate terminal responds to paging, the location registration from the unauthorized terminal is performed. Request-based processing can be rejected. Therefore, it is possible to prevent the communication connection related to the unauthorized terminal from being established based on the location registration request of the unauthorized terminal via an exchange different from the exchange in which the legitimate terminal has registered the location.

The block diagrams shown in FIGS. 2 and 6 used in the description of the above-described embodiment show blocks for functional units. These functional blocks (components) are realized by any combination of hardware and / or software. Further, the means for realizing each functional block is not particularly limited. That is, each functional block may be realized by one physically and / or logically coupled device, or directly and / or indirectly by two or more physically and / or logically separated devices. (For example, wired and / or wireless) may be connected and realized by these a plurality of devices.

For example, the HSS / HLR 10 in one embodiment of the present invention may function as a computer that executes processing as a communication control device. FIG. 10 is a diagram showing an example of the hardware configuration of the HSS / HLR 10 corresponding to the communication control device according to the present embodiment. The above-mentioned HSS / HLR 10 may be physically configured as a computer device including a processor 1001, a memory 1002, a storage 1003, a communication device 1004, an input device 1005, an output device 1006, a bus 1007, and the like.

In the following description, the word "device" can be read as a circuit, a device, a unit, or the like. The hardware configuration of the HSS / HLR 10 may be configured to include one or more of the devices shown in the figure, or may be configured not to include some of the devices.

For each function in the HSS / HLR10, by loading predetermined software (program) on hardware such as the processor 1001 and the memory 1002, the processor 1001 performs an operation, and communication by the communication device 1004, memory 1002, and storage 1003 It is realized by controlling the reading and / or writing of the data in.

Processor 1001 operates, for example, an operating system to control the entire computer. The processor 1001 may be composed of a central processing unit (CPU) including an interface with a peripheral device, a control device, an arithmetic unit, a register, and the like. For example, the location registration processing unit 12 and the like may be realized by the processor 1001.

Further, the processor 1001 reads a program (program code), a software module, and data from the storage 1003 and / or the communication device 1004 into the memory 1002, and executes various processes according to these. As the program, a program that causes a computer to execute at least a part of the operations described in the above-described embodiment is used. For example, the HSS / HLR 10 may be realized by a control program stored in the memory 1002 and operated by the processor 1001, and may be realized for other functional blocks as well. Although it has been described that the various processes described above are executed by one processor 1001, they may be executed simultaneously or sequentially by two or more processors 1001. Processor 1001 may be mounted on one or more chips. The program may be transmitted from the network via a telecommunication line.

The memory 1002 is a computer-readable recording medium, and is composed of at least one such as a ROM (Read Only Memory), an EPROM (Erasable Programmable ROM), an EEPROM (ElectricallyErasable Programmable ROM), and a RAM (Random Access Memory). You may. The memory 1002 may be referred to as a register, a cache, a main memory (main storage device), or the like. The memory 1002 can store a program (program code), a software module, or the like that can be executed to carry out the wireless communication method according to the embodiment of the present invention.

The storage 1003 is a computer-readable recording medium, for example, an optical disk such as a CD-ROM (Compact Disc ROM), a hard disk drive, a flexible disk, an optical magnetic disk (for example, a compact disk, a digital versatile disk, a Blu-ray). It may consist of at least one (registered trademark) disk), smart card, flash memory (eg, card, stick, key drive), floppy (registered trademark) disk, magnetic strip, and the like. The storage 1003 may be referred to as an auxiliary storage device. The storage medium described above may be, for example, a database, server or other suitable medium containing memory 1002 and / or storage 1003.

The communication device 1004 is hardware (transmission / reception device) for performing communication between computers via a wired and / or wireless network, and is also referred to as, for example, a network device, a network controller, a network card, a communication module, or the like. For example, the above-mentioned communication unit 11 and the like may be realized by the communication device 1004.

The input device 1005 is an input device (for example, a keyboard, a mouse, a microphone, a switch, a button, a sensor, etc.) that receives an input from the outside. The output device 1006 is an output device (for example, a display, a speaker, an LED lamp, etc.) that outputs to the outside. The input device 1005 and the output device 1006 may have an integrated configuration (for example, a touch panel).

Further, each device such as the processor 1001 and the memory 1002 is connected by a bus 1007 for communicating information. Bus 1007 may be composed of a single bus, or may be composed of different buses between devices.

Further, the HSS / HLR 10 includes hardware such as a microprocessor, a digital signal processor (DSP: Digital Signal Processor), an ASIC (Application Specific Integrated Circuit), a PLD (Programmable Logic Device), and an FPGA (Field Programmable Gate Array). It may be configured, and the hardware may realize a part or all of each functional block. For example, processor 1001 may be implemented on at least one of these hardware.

As described above, according to the communication control device according to the present embodiment, when the first method is executed, the mobile device receives a signal indicating that the authentication related to the mobile device has failed. It is determined whether or not the user is in the area corresponding to the exchange that transmitted the signal indicating that the authentication has failed, and if the mobile device is in the area, the location registration information related to the mobile device is displayed. It is configured to be erased. By providing the above configuration in the communication control device, it indicates that the authentication related to the mobile device has failed even if the location registration process of the mobile device is advanced based on the invalid location registration request. Since the information related to the location registration can be deleted when the signal is received, it is possible to prevent the communication connection of the mobile device from being continued due to the illegal location registration process.

Further, when the communication control device of the present embodiment executes the second method, the location registration information storage unit receives a location registration request signal from an exchange different from the exchange stored in association with the mobile device. If so, the exchange stored in the location registration information storage unit is instructed to paging the mobile device. Then, when there is a response from the mobile device to the paging, the location registration process is stopped. By providing such a configuration in the communication control device, for example, when an illegal location registration request signal regarding the mobile device is transmitted and paging to the mobile device is possible, the illegal location registration is performed. Request-based processing can be rejected. Therefore, it is possible to prevent the location registration from being performed based on the invalid location registration request and the communication connection from being established.

In the above embodiment, the first method and the second method have been described separately, but even if one communication control device can execute both the first method and the second method. good. That is, when the communication control device receives a new location registration request from an exchange different from the exchange on which the previous location registration was performed, as in the second method, the previous location registration was performed. By instructing the exchange to paging the mobile unit, it is confirmed whether or not the location registration request is based on the movement across the area of the mobile unit, and the result of the authentication failure is displayed as in the first method. When it is received later, the location registration information may be deleted even if the location registration process is completed. In this case, the communication control device can more effectively prevent communication based on an illegal location registration request.

Although the present embodiment has been described in detail above, it is clear to those skilled in the art that the present embodiment is not limited to the embodiment described in the present specification. This embodiment can be implemented as a modified or modified mode without departing from the spirit and scope of the present invention determined by the description of the claims. Therefore, the description herein is for purposes of illustration only and has no limiting implications for this embodiment.

The notification of information is not limited to the embodiments / embodiments described herein, and may be performed by other methods. For example, information notification includes physical layer signaling (for example, DCI (Downlink Control Information), UCI (Uplink Control Information)), upper layer signaling (for example, RRC (Radio Resource Control) signaling, MAC (Medium Access Control) signaling, etc. It may be carried out by notification information (MIB (Master Information Block), SIB (System Information Block)), other signals, or a combination thereof. Further, the RRC signaling may be referred to as an RRC message, and may be, for example, an RRC Connection Setup message, an RRC Connection Reconfiguration message, or the like.

Each aspect / embodiment described herein includes LTE (Long Term Evolution), LTE-A (LTE-Advanced), SUPER 3G, IMT-Advanced, 4G, 5G, FRA (Future Radio Access), W-CDMA. (Registered Trademarks), GSM (Registered Trademarks), CDMA2000, UMB (Ultra Mobile Broadband), IEEE 802.11 (Wi-Fi), IEEE 802.16 (WiMAX), IEEE 802.20, UWB (Ultra-WideBand), It may be applied to Bluetooth®, other systems that utilize suitable systems and / or next-generation systems that are extended based on them.

The order of the processing procedures, sequences, flowcharts, etc. of each aspect / embodiment described in the present specification may be changed as long as there is no contradiction. For example, the methods described herein present elements of various steps in an exemplary order, and are not limited to the particular order presented.

The notification of information is not limited to the embodiments / embodiments described herein, and may be performed by other methods. For example, information notification includes physical layer signaling (for example, DCI (Downlink Control Information), UCI (Uplink Control Information)), upper layer signaling (for example, RRC (Radio Resource Control) signaling, MAC (Medium Access Control) signaling, etc. It may be carried out by notification information (MIB (Master Information Block), SIB (System Information Block)), other signals, or a combination thereof. Further, the RRC signaling may be referred to as an RRC message, and may be, for example, an RRC Connection Setup message, an RRC Connection Reconfiguration message, or the like.

Each aspect / embodiment described herein includes LTE (Long Term Evolution), LTE-A (LTE-Advanced), SUPER 3G, IMT-Advanced, 4G, 5G, FRA (Future Radio Access), W-CDMA. (Registered Trademarks), GSM (Registered Trademarks), CDMA2000, UMB (Ultra Mobile Broadband), IEEE 802.11 (Wi-Fi), IEEE 802.16 (WiMAX), IEEE 802.20, UWB (Ultra-WideBand), It may be applied to Bluetooth®, other systems that utilize suitable systems and / or next-generation systems that are extended based on them.

The order of the processing procedures, sequences, flowcharts, etc. of each aspect / embodiment described in the present specification may be changed as long as there is no contradiction. For example, the methods described herein present elements of various steps in an exemplary order, and are not limited to the particular order presented.

In some cases, the specific operation performed by the specific device in the present specification may be performed by its upper node. For example, when a specific device is an HSS / HLR, various operations performed for communication with a terminal in a network consisting of one or a plurality of network nodes having the HSS / HLR. It is clear that can be done by HSS / HLR and / or other network nodes other than HSS / HLR. Although the case where there is one network node other than HSS / HLR is illustrated above, it may be a combination of a plurality of other network nodes.

Information and the like can be output from the upper layer (or lower layer) to the lower layer (or upper layer). Input / output may be performed via a plurality of network nodes.

The input / output information and the like may be stored in a specific location (for example, memory) or may be managed by a management table. Input / output information and the like can be overwritten, updated, or added. The output information and the like may be deleted. The input information or the like may be transmitted to another device.

The determination may be made by a value represented by 1 bit (0 or 1), by a boolean value (Boolean: true or false), or by comparing numerical values (for example, a predetermined value). It may be done by comparison with the value).

Each aspect / embodiment described in the present specification may be used alone, in combination, or switched with execution. Further, the notification of predetermined information (for example, the notification of "being X") is not limited to the explicit notification, but is performed implicitly (for example, the notification of the predetermined information is not performed). May be good.

Software, whether referred to as software, firmware, middleware, microcode, hardware description language, or by any other name, is an instruction, instruction set, code, code segment, program code, program, subprogram, software module. , Applications, software applications, software packages, routines, subroutines, objects, executable files, execution threads, procedures, features, etc. should be broadly interpreted.

Further, software, instructions, and the like may be transmitted and received via a transmission medium. For example, the software uses wired technology such as coaxial cable, fiber optic cable, twisted pair and digital subscriber line (DSL) and / or wireless technology such as infrared, wireless and microwave to websites, servers, or other When transmitted from a remote source, these wired and / or wireless technologies are included within the definition of transmission medium.

The information, signals, etc. described herein may be represented using any of a variety of different techniques. For example, data, instructions, commands, information, signals, bits, symbols, chips, etc. that may be referred to throughout the above description are voltages, currents, electromagnetic waves, magnetic fields or magnetic particles, light fields or photons, or any of these. It may be represented by a combination of.

The terms described herein and / or the terms necessary for understanding the present specification may be replaced with terms having the same or similar meanings.

The terms "system" and "network" as used herein are used interchangeably.

Further, the information, parameters, etc. described in the present specification may be represented by an absolute value, a relative value from a predetermined value, or another corresponding information. .. For example, the radio resource may be indexed.

The names used for the above parameters are not limited in any way. Further, mathematical formulas and the like using these parameters may differ from those expressly disclosed herein. Since the various channels (eg, PUCCH, PDCCH, etc.) and information elements (eg, TPC, etc.) can be identified by any suitable name, the various names assigned to these various channels and information elements are in any respect. However, it is not limited.

Mobile devices (mobile communication terminals) are subscriber stations, mobile units, subscriber units, wireless units, remote units, mobile devices, wireless devices, wireless communication devices, remote devices, mobile subscriber stations, access terminals, depending on the trader. , Mobile terminal, wireless terminal, remote terminal, handset, user agent, mobile client, client, or some other suitable term.

The terms "determining" and "determining" as used herein may include a wide variety of actions. "Judgment", "decision" is, for example, calculating, computing, processing, deriving, investigating, looking up (eg, table, database or another). It can include searching in the data structure), and assuming that the confirmation (ascertaining) is regarded as "judgment" or "decision". Also, "judgment" and "decision" are receiving (for example, receiving information), transmitting (for example, transmitting information), input (input), output (output), and access. (Accessing) (for example, accessing data in memory) may be regarded as "judgment" or "decision". In addition, "judgment" and "decision" mean that the things such as solving, selecting, choosing, establishing, and comparing are regarded as "judgment" and "decision". Can include. That is, "judgment" and "decision" may include considering some action as "judgment" and "decision".

The terms "connected", "coupled", or any variation thereof, mean any direct or indirect connection or connection between two or more elements, and each other. It can include the presence of one or more intermediate elements between two "connected" or "combined" elements. The connections or connections between the elements may be physical, logical, or a combination thereof. As used herein, the two elements are by using one or more wires, cables and / or printed electrical connections, and, as some non-limiting and non-comprehensive examples, radio frequencies. By using electromagnetic energies such as electromagnetic energies with wavelengths in the region, microwave region and light (both visible and invisible) regions, they can be considered to be "connected" or "coupled" to each other.

The phrase "based on" as used herein does not mean "based on" unless otherwise stated. In other words, the statement "based on" means both "based only" and "at least based on".

When the terms "first", "second", etc. are used herein, any reference to the elements does not generally limit the quantity or order of those elements. These designations can be used herein as a convenient way to distinguish between two or more elements. Thus, references to the first and second elements do not mean that only two elements can be adopted there, or that the first element must somehow precede the second element.

The "part" in the configuration of each of the above devices may be replaced with a "circuit", a "device", or the like.

As long as "include", "including", and variations thereof are used within the scope of this specification or claims, these terms are similar to the term "comprising". Is intended to be inclusive. Furthermore, the term "or" as used herein or in the claims is intended not to be an exclusive OR.

In the present specification, a plurality of devices shall be included unless the device is clearly present in only one context or technically.

In the whole of the present disclosure, if the context clearly does not indicate the singular, it shall include the plural.

1 ... Communication system, 10 ... HSS / HLR, 11 ... Communication unit, 12 ... Location registration processing unit, 13 ... Location registration information storage unit, 14 ... Area determination unit, 15 ... Area erasing processing unit, 16 ... Paging processing Department, 20 ... 1st exchange, 30 ... 2nd exchange, 40, 50 ... Mobile.

Claims (2)

A location registration information storage unit that stores information that identifies a mobile device and information that identifies an exchange that controls the area where the mobile device has registered its location in association with each mobile device.
A location registration request receiver that contains information that identifies the mobile device and receives a location registration request signal related to the mobile device from the exchange.
To the switching apparatus which has transmitted the location registration request signal, the authentication instruction unit for instructing the authentication according to the mobile station,
For the indicated by the previous SL authentication instruction unit, an authentication result receiving unit that receives a signal indicating that authentication according to the mobile station has failed from the exchange,
Prior to receiving the signal in the authentication result receiving unit, the position registration processing is performed based on the position registration request signal triggered by the reception of the position registration request signal in the position registration request receiving unit, and the position registration information is obtained. A location registration processing unit that updates the information stored in the storage unit,
With the reception of the signal in the authentication result receiving unit as an opportunity, the location registration information storage unit is referred to, and the information for identifying the mobile device corresponding to the signal indicating that the authentication received by the authentication result receiving unit has failed is used. When the information for identifying the exchange that transmitted the location registration request signal is stored as the information for identifying the exchange that controls the associated location-registered area, the location registration for the mobile device is related. Location registration information erasing unit for erasing information and
Communication control device including. Refer to the previous SL location registration information storing section, as information for identifying the switch having jurisdiction over the area where the location registration is associated with the information identifying the mobile terminal contained in the location registration request signal, the location registration request When information that identifies an exchange different from the exchange that transmitted the signal is stored, paging to the mobile unit for the exchange that is specified based on the information stored in the location registration information storage unit. With the paging processing unit that instructs
When a signal indicating that there was a response from the mobile device to the paging was received from the exchange that instructed the paging to the mobile device, it was based on the position registration request signal in the position registration processing unit. The location registration processing canceling unit that cancels the location registration processing related to the mobile device, and the location registration processing canceling unit.
The communication control device according to claim 1, further comprising.

Images