WO2006133624A1 - A method for registering at the internet protocol multimedia subsystem - Google Patents

A method for registering at the internet protocol multimedia subsystem Download PDF

Info

Publication number
WO2006133624A1
WO2006133624A1 PCT/CN2006/001143 CN2006001143W WO2006133624A1 WO 2006133624 A1 WO2006133624 A1 WO 2006133624A1 CN 2006001143 W CN2006001143 W CN 2006001143W WO 2006133624 A1 WO2006133624 A1 WO 2006133624A1
Authority
WO
WIPO (PCT)
Prior art keywords
cscf
capability
authentication
type
supported
Prior art date
Application number
PCT/CN2006/001143
Other languages
French (fr)
Chinese (zh)
Inventor
Fenqin Zhu
Original Assignee
Huawei Technologies Co., Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co., Ltd. filed Critical Huawei Technologies Co., Ltd.
Publication of WO2006133624A1 publication Critical patent/WO2006133624A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • H04L63/205Network architectures or network communication protocols for network security for managing network security; network security policies in general involving negotiation or determination of the one or more network security mechanisms to be used, e.g. by negotiation between the client and the server or between peers or by selection according to the capabilities of the entities involved
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1073Registration or de-registration
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1083In-session procedures
    • H04L65/1095Inter-network session transfer or sharing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/10Architectures or entities
    • H04L65/1016IP multimedia subsystem [IMS]

Definitions

  • the invention relates to the field of mobile communication technologies, in particular to an IP multimedia subsystem
  • Mobile communications are not limited to traditional voice communications, through the combination of data services such as presence, messaging, web browsing, location information, push services (PUSH), and file sharing.
  • data services such as presence, messaging, web browsing, location information, push services (PUSH), and file sharing.
  • PUSH push services
  • Mobile communication enables a variety of media types such as audio, video, pictures and text to meet the diverse needs of users.
  • IP-based Multimedia Subsystem IMS
  • 3GPP 3rd Generation Mobile Communications Standardization Partnership Project
  • 3GPP2 3rd Generation Mobile Communications Standardization Partnership Project 2
  • IMS IP-based Multimedia Subsystem
  • the IMS architecture is superimposed on a packet domain network (PS-Domain) in which the authentication-related entities include a Call State Control Function (CSCF) entity and a Home Subscriber Server (HSS) functional entity.
  • PS-Domain packet domain network
  • the authentication-related entities include a Call State Control Function (CSCF) entity and a Home Subscriber Server (HSS) functional entity.
  • CSCF Call State Control Function
  • HSS Home Subscriber Server
  • the CSCF can be divided into three logical entities: service CSCF (S-CSCF), proxy CSCF (P-CSCF), and query CSCF (I-CSCF). These three logical entities may be different physical devices or the same physical device. Different functional modules in the device.
  • the S-CSCF is a service control center of the IMS, which is used to perform session control, maintain session state, manage user information, and generate charging information.
  • the P-CSCF is an access point for the terminal user to access the IMS, and is used to complete user registration. Quality of Service (QoS) control and security management; I-CSCF is responsible for interworking between IMS domains, managing the allocation of S-CSCFs, hiding network topology and configuration information, and Generate billing data, etc.
  • the HSS is a very important user database that is used to support the processing of calls and sessions by various network entities.
  • IMS was only considered for use in third-generation mobile communication networks when it was initially introduced (R5 version protocol). Due to the abundance of services on the IMS, there is a need for operators to use IMS on 2G networks. However, in 2G networks, security-related functions of IMS based on 3G networks cannot be supported, such as quintuple authentication/network authentication. In order to solve the problem of user authentication faced by 2G users using IMS networks, 3GPP proposes a transitional authentication. Early IMS, which provides certain security functions for IMS services on 2G. When the user supports the 3G authentication scheme, the complete 3G-based authentication scheme is used to authenticate the access user.
  • the entity supporting the 2G transition authentication mode is referred to as an entity supporting Early IMS authentication
  • the entity supporting the 3G authentication mode is referred to as an entity supporting Full 3GPP IMS authentication. Since there are entities in the network that support different authentication methods, the following situations are inevitable: For example, in the home network domain of the user, there are both S-CSCFs that support and do not support Early IMS. If only the Early IMS authentication mode is supported.
  • the P-CSCF sends the received SIP registration request from the UE that supports only the Early IMS authentication mode to the S-CSCF that supports only the Full 3GPP IMS authentication mode.
  • the S-CSCF must follow the Full 3GPP IMS authentication mode. Checking the receipt of the registration request. At this time, the S-CSCF finds that the related header field is missing from the received SIP message, and considers the message to be an illegal message, thus returning a failure response message to the user, but if it is selected at this time Another S-CSCF that supports Early IMS authentication, the user may register successfully.
  • the user authentication failure in the above situation is caused by the UE not supporting the authentication mode supported by the S-CSCF, not because the UE is not legal, and this is unfair to the legitimate user. Will inevitably reduce user satisfaction.
  • some operators of the 3GPP at the current stage stipulate that both the P-CSCF and the S-CSCF are placed in the home network, and support the same type of authentication mode, thereby avoiding the P-CSCF and the S-CSCF. Supporting different types of authentication methods, that is, avoiding the case where the UE and the S-CSCF support different types of authentication methods.
  • One method is to configure the authentication capability data supported by the S-CSCF in the network in the P-CSCF.
  • the configuration data process will inevitably be complicated and not feasible.
  • the P/S-CSCF is upgraded to support both ways to avoid the complication of the configuration data, there are also successive upgrades, which may cause the network to support different authentication capability types for a period of time.
  • Another method is to combine the P/S-CSCFs in the same network entity, so that as long as the UE is compatible with the authentication capability type of the P-CSCF, it can be guaranteed to be compatible with the S-CSCF authentication capability type.
  • the logical functions of the P/S-CSCF are bound to be distributed on different physical entities. In this case, this method cannot be used any more.
  • the main object of the present invention is to provide an IP multimedia subsystem.
  • the method of implementing registration in (IMS) avoids authentication failure caused by mismatch of authentication capability types.
  • the technical solution of the present invention is implemented by pre-setting and preserving the correspondence between the S-CSCF and the type of authentication capability supported by the S-CSCF, and the method includes the following steps:
  • the I-CSCF After receiving the registration request from the user equipment UE, the I-CSCF obtains S-CSCF capability set information that can provide services for the UE.
  • the I-CSCF determines the type of the authentication capability supported by the UE, and obtains the requirement of the UE according to the correspondence between the S-CSCF and the type of the authentication capability supported by the S-CSCF and the S-CSCF capability set information.
  • the I-CSCF sends a registration request to the obtained S-CSCF, and continues the subsequent registration processing.
  • step b of the foregoing method the step of determining, by the I-CSCF, the type of authentication capability supported by the UE includes:
  • the I-CSCF determines whether the acquired S-CSCF capability set information includes the authentication capability type data required by the user, and if yes, determines the authentication supported by the UE according to the authentication capability type data required by the user.
  • the capability type otherwise, the type of authentication capability supported by the UE is determined according to the registration request initiated by the UE.
  • the manner in which the I-CSCF determines the type of the authentication capability according to the registration request initiated by the UE includes:
  • the I-CSCF determines, according to the received registration request of the UE, whether to include an authorized Authorization header field or according to a preset feature that supports different types of authentication capabilities, determining an authentication capability type supported by the UE;
  • determining, according to whether the registration request includes an Authorization header field determining a UE branch
  • the step of the authentication capability type includes: if the registration request includes an Authorization header field, and the header field usage conforms to the current 3GPP requirements, determining that the UE supports the Full IMS authentication mode; if the registration request does not include the Authorization header field, It is determined that the UE supports the Early IMS authentication mode.
  • step b of the foregoing method the step of the I-CSCF acquiring an S-CSCF that satisfies the service capability required by the UE and supports the authentication capability type of the UE includes:
  • the I-CSCF determines whether the acquired S-CSCF capability set information includes the authentication capability type data required by the user, and if so, the I-CSCF and the supported authentication capability type of the S-CSCF
  • the corresponding relationship and the authentication capability type data in the acquired S-CSCF capability set information directly obtain an S-CSCF that satisfies the service capability required by the UE and supports the UE's authentication capability type; otherwise, the I-CSCF
  • the S-CSCF capability set that satisfies the service capability of the UE is obtained from the obtained S-CSCF capability set information, and then the authentication capability type supported by the UE is determined according to the registration request initiated by the UE, and then the content is satisfied according to the
  • the S-CSCF capability set of the UE's service capability, the determined authentication capability type, and the correspondence between the S-CSCF and the type of authentication capability supported by the UE obtain the service capability that satisfies the UE and supports the authentication of the UE.
  • the step b further includes: when the acquired S-CSCF capability set information includes the authentication capability type data required by the user set in advance, but the I-CSCF cannot directly obtain the data according to the authentication capability type data.
  • the I-CSCF obtains the S-CSCF capability that satisfies the service capability of the UE from the acquired S-CSCF capability set information.
  • the step of saving the correspondence between the S-CSCF and the type of authentication capability supported by the S-CSCF includes: saving, in the form of a data table, the S-CSCF identifier and the supported template in the I-CSCF. Type of power.
  • the method further includes: when the I-CSCF cannot obtain the UE that satisfies the registration request according to the correspondence between the S-CSCF and the type of the authentication capability supported by the S-CSCF and the S-CSCF capability set information.
  • the I-CSCF returns a response message of the registration failure to the UE through the P-CSCF, or the I-CSCF randomly selects an S-CSCF, and then The S-CSCF sends a registration request and performs subsequent registration processing according to a normal procedure.
  • the S-CSCF if the S-CSCF arbitrarily selected by the I-CSCF satisfies the service capability requirement of the UE and matches the authentication capability type supported by the UE, the S-CSCF sends the UE to the UE through the I-CSCF and the P-CSCF. Returning the response information of the registration success; if the S-CSCF arbitrarily selected by the I-CSCF satisfies the service capability requirement of the UE and/or does not match the authentication capability type supported by the UE that initiated the registration request, the S-CSCF passes the I- The CSCF and the P-CSCF return response information of the registration failure to the UE.
  • the response information of the registration failure further includes the sender information of the information and the reason for the failure, and the failure reason is that the S-CSCF whose matching capability type matches is not found.
  • step b of the foregoing method when the S-CSCF that satisfies the service capability required by the UE and supports the UE's authentication capability type is more than one, an S-CSCF is arbitrarily selected from the S-CSCF.
  • the technical solution of the present invention mainly includes: pre-setting and saving a correspondence between an S-CSCF and an authentication capability type supported by the S-CSCF; and after receiving the registration request of the UE, the I-CSCF acquires the S of the UE. -CSCF capability set information; then determine the support supported by the UE The capability type, and the S-CSCF that satisfies the service capability of the UE and supports the UE's authentication capability type according to the correspondence between the S-CSCF and the authentication capability type supported by the S-CSCF and the S-CSCF capability set information. Then, a registration request is sent to the acquired S-CSCF to continue the subsequent processing.
  • the method of the present invention further includes providing a reason for the failure in the response message of the registration failure, thereby assisting the UE to perform the related operation. Since the present invention is less modified to the prior art solution, the existing configuration data method changes brought by the network size adjustment are minimized, so that the existing network has good compatibility.
  • Figure 1 shows the flow chart for user registration using the Early IMS authentication method. Mode for carrying out the invention
  • the correspondence between the S-CSCF and the type of authentication capability supported by the S-CSCF needs to be set and saved in advance, and the corresponding relationship may be saved in the form of a data table in the I-CSCF.
  • the S-CSCF identifier is implemented by the type of authentication capability it supports.
  • the form of the data table can be as shown in Table 1 below: S-CSCF identifies the authentication capabilities supported by the S-CSCF
  • the above S-CSCF data table for indicating the type of authentication capability supported by the S-CSCF is usually set in the I-CSCF.
  • Figure 1 shows the flow chart for user registration using the Early IMS authentication method.
  • the UE matches the authentication mode of the P-CSCF, and the UE initiates the registration request by using the SIP message.
  • the process mainly includes the following steps:
  • Step 101 The UE initiates a new IMS registration request message. Because the P-CSCF that receives the user registration request message matches the authentication capability type supported by the UE that initiated the request, the P-CSCF can correctly forward the registration request of the UE. Message.
  • the registration request message includes the identifier of the UE.
  • Step 102 103 The identifier of the P-CSCF in the UE determines its home domain, and determines the IP address of the entry point I-CSCF of the home domain by querying data in the Address Resolution Server (DNS).
  • DNS Address Resolution Server
  • Step 104 The P-CSCF forwards the registration request to the I-CSCF.
  • Steps 105 - 106 the I-CSCF sends a query location message to the HSS, where the query location message includes the identifier of the UE. Since the user is initially registered, the HSS finds the user subscription data of the UE according to the UE identifier in the query message, and obtains the S-CSCF capability set information according to the capability required by the subscription data, and then sets the S-CSCF capability set.
  • the I-CSCF Information returned to The I-CSCF, at the same time, if the authentication capability type data indicating the type of authentication capability supported by the UE is pre-configured according to the user subscription data in the HSS, the type of authentication capability indicating the type of authentication capability supported by the UE The data will be returned to the I-CSCF as part of the SC SCF capability set information.
  • Step 107 The I-CSCF selects, from the received S-CSCF capability set information, an S-CSCF set that can satisfy the service capability required by the UE and supports the UE's authentication capability type.
  • the specific selection process is as follows:
  • the I-CSCF determines, according to the authentication capability type data, the authentication supported by the UE that initiated the request.
  • the capability type according to the correspondence between the S-CSCF identifier in the set data table and the type of authentication capability supported by the S-CSCF, and the acquired S-CSCF capability set information, directly select a service that can meet the requirements of the UE.
  • the S-CSCF set may have one or more S-CSCFs, and if the S-CSCF set includes multiple S-CSCFs, the I-CSCF may be from the middle Pick an S-CSCF.
  • the I-CSCF first selects from the S-CSCF capability set information returned by the HSS.
  • the S-CSCF capability set that satisfies the UE service capability, and then determines the authentication capability type supported by the UE according to the registration request initiated by the UE, and then according to the S-CSCF identifier in the set data table and the supported profile thereof Corresponding relationship of the capability type, and the selected S-CSCF capability set capable of satisfying the UE service capability, selecting an S-CSCF set capable of satisfying the service capability required by the UE and supporting the UE's authentication capability type There may be one or more S-CSCFs in the S-CSCF set. If the S-CSCF set contains multiple S-CSCFs, the I-CSCF may select one S-CSCF from it.
  • the foregoing I-CSCF determines, according to the received registration request, the UE supported by the requesting request.
  • the method of the authentication capability type is: determining, according to whether an authorization (Authorization) header field exists in the registration request, the type of authentication capability supported by the UE that initiated the request, that is, if the registration request includes an Authorization header field and the header field usage is consistent Currently, the 3GPP requires that the UE that initiates the request supports the Full IMS authentication capability type. If the registration request does not include the Authorization header field, the UE that initiated the request supports the Early IMS authentication mode.
  • an authorization Authorization
  • the type of authentication capability supported by the UE that initiates the registration request may be determined according to a feature set by the operator that supports different types of authentication capabilities.
  • the UE that initiates the registration request in this embodiment only supports the Early IMS authentication capability type. According to the data in Table 1, only the S-CSCF1 and/or S may be included in the S-CSCF set selected by the I-CSCF. -CSCF2, but not S-CSCF3.
  • Step 108 The I-CSCF sends a registration request message to the selected S-CSCF.
  • Steps 109 ⁇ 110 the S-CSCF requests the authentication parameter from the HSS, and obtains the required parameters from the response information of the HSS.
  • Steps 111 to 112 the S-CSCF performs authentication according to the authentication parameters obtained by the HSS, and returns an authentication result to the HSS. It is assumed here that the S-CSCF adopts Early IMS authentication, and the specific authentication process is the same as the prior art, and will not be described in detail herein.
  • Steps 113 ⁇ 115 the S-CSCF returns a registration response message to the user.
  • the registration is successful, and the S-CSCF returns a registration success message to the UE through the P-CSCF.
  • the above embodiment is described by the registration process of the user who authenticates with Early IMS.
  • the difference between the registration process and the existing registration process is that it is preset to represent S.
  • the S-CSCF data table of the authentication capability type supported by the CSCF, the data table containing the correspondence between the S-CSCF identifier and the type of authentication capability supported by it, and the S-CSCF capability received from the HSS at the I-CSCF After the information is collected, determining the type of authentication capability supported by the UE that initiated the request, and according to the correspondence between the identifier of the S-CSCF in the set data table and the type of authentication capability supported by the set, And obtaining the S-CSCF capability set information, selecting an S-CSCF set capable of satisfying the service capability required by the UE that initiates the registration request, and supporting the UE's authentication capability type, and then selecting an S-CSCF from the set, Follow the normal process to continue the subsequent registration process.
  • the I-CSCF can be processed as follows: The S-CSCF capability set information returned from the HSS is selected to meet the UE service capability. The S-CSCF capability set is determined according to the registration request initiated by the UE, and then the type of the authentication capability supported by the UE is determined, and then the correspondence between the S-CSCF identifier and the supported authentication capability type in the set data table is determined.
  • the selected S-CSCF capability set capable of satisfying the service capability of the user and selecting an S-CSCF set capable of supporting the authentication capability type supported by the UE that initiates the registration request. That is, when the authentication capability type data supported by the UE is pre-configured in the HSS, but the I-CSCF cannot find the matching S-CSCF according to the S-CSCF capability set information returned by the HSS, the I-CSCF can The method is determined by a method for determining the type of authentication capability of the UE according to the registration request of the UE. Alternatively, you can follow the failure method described below.
  • the I-CSCF does not configure the above S-CSCF data table; or the I-CSCF determines the user's authentication capability.
  • the type is matched with the pre-configured S-CSCF data table, and no related entries are found.
  • the abnormal situation is not limited to this, and the I-CSCF cannot select the service that satisfies the UE from the acquired S-CSCF capability set.
  • the I-CSCF has the following two methods: Method 1: The I-CSCF returns a response message of registration failure to the UE through the P-CSCF.
  • the initiator information and the reason for the failure may be included in the response message of the registration failure.
  • the initiator information indicates that the failure response message is initiated by the I-CSCF, instead of the authentication failure at the P-CSCF; the failure reason indicates that the S-CSCF whose matching capability type matches is not found, for example, using 400 messages.
  • Method 2 The I-CSCF randomly selects an S-CSCF, sends a registration request to the selected S-CSCF, and continues the subsequent processing according to a normal procedure. At this point, there will be two more cases:
  • the S-CSCF selected by the I-CSCF matches the type of authentication capability supported by the UE that initiated the request.
  • the S-CSCF returns to the authentication result after normal processing, that is, through the I-CSCF and the P-CSCF.
  • the UE returns a response message indicating that the registration is successful.
  • the reason for this may be that the data in the S-CSCF data table that is pre-configured to indicate the type of authentication capability supported by the S-CSCF is incorrect or imperfect.
  • the S-CSCF selected by the I-CSCF does not match the authentication capability type supported by the UE that initiated the request, and the S-CSCF returns the response information of the registration failure to the UE through the I-CSCF and the P-CSCF, and the registration fails.
  • the response information may further include initiator information and the reason for the failure.
  • the initiator information indicates that the failure response message is initiated by the S-CSCF, which can be distinguished from the failure response message initiated by the P-CSCF. In the failure reason, it is indicated that the S-CSCF whose matching capability type matches is not found, for example.
  • the 400 message, that is, the Bad Request indicates that the UE that initiated the request supports the Early IMS, and the S-CSCF only supports the Full 3GPP IMS.
  • the 420 message that is, the Bad Extension, indicates that the UE that initiated the request supports Full 3GPP IMS and the S-CSCF only Support for Early IMS. By giving the reason for the failure in the response message of the registration failure, the UE can be assisted to perform subsequent related operations.

Abstract

The present invention is a method for registering at the internet protocol(IP) multimedia subsystem(IMS). The method comprises: presetting and storing the corresponding relation between the S-CSCF and its supporting authentication capability. When it receives the registering request, it gets the S-CSCF’s capability set information of the UE, then determines the type of the authentication capability that the UE supported, and gets the S-CSCF that satisfying the service capability of the UE and supporting the authentication capability of the UE according to the corresponding relation between the S-CSCF and its supporting authentication capability and the S-CSCF’s capability set information , and then sends the register request to the abtained S-CSCF, and continuing the rear process. Therefore, it provide that the authentication capability the UE supported being match with the authentication capability the S_CSCF supported

Description

在 IP多媒体子系统中实现注册的方法 技术领域  Method for implementing registration in IP multimedia subsystem
本发明涉及移动通信技术领域, 特别是指一种在 IP 多媒体子系统 The invention relates to the field of mobile communication technologies, in particular to an IP multimedia subsystem
( IMS ) 中实现注册的方法。 发明背景 The method of implementing registration in (IMS). Background of the invention
随着宽带网络的发展, 移动通信不仅仅局限于传统的话音通信, 通 过与呈现业务(presence ), 消息、 网页 (WEB )浏览、 定位信息、 推送 业务(PUSH ) 以及文件共享等数据业务的结合, 移动通信能够实现音 频、视频、 图片和文本等多种媒体类型的业务, 以满足用户的多种需求。  With the development of broadband networks, mobile communications are not limited to traditional voice communications, through the combination of data services such as presence, messaging, web browsing, location information, push services (PUSH), and file sharing. Mobile communication enables a variety of media types such as audio, video, pictures and text to meet the diverse needs of users.
第三代移动通信标准化伙伴项目 (3GPP )以及第三代移动通信标准 化伙伴项目 2 ( 3GPP2 ) 等组织都先后推出了基于 IP 的多媒体子系统 ( IMS ) 架构, 其目的是在移动网络中使用一种标准化的开放结构来实 现多种多样的多媒体应用, 以给用户提供更多的选择和更丰富的感受。  Organizations such as the 3rd Generation Mobile Communications Standardization Partnership Project (3GPP) and the 3rd Generation Mobile Communications Standardization Partnership Project 2 (3GPP2) have introduced IP-based Multimedia Subsystem (IMS) architectures, which are designed to use one in mobile networks. A standardized open structure to implement a wide variety of multimedia applications to provide users with more choices and richer feelings.
IMS 架构叠加在分组域网络(PS-Domain )之上, 该架构中与鉴权 相关的实体包括呼叫状态控制功能( CSCF )实体和归属签约用户服务器 ( HSS ) 功能实体。  The IMS architecture is superimposed on a packet domain network (PS-Domain) in which the authentication-related entities include a Call State Control Function (CSCF) entity and a Home Subscriber Server (HSS) functional entity.
CSCF又可以分成服务 CSCF ( S-CSCF )、 代理 CSCF ( P-CSCF )和 查询 CSCF ( I-CSCF ) 三个逻辑实体, 这三个逻辑实体可能是不同的物 理设备, 也可能是同一个物理设备中不同的功能模块。 S-CSCF是 IMS 的业务控制中心, 用于执行会话控制, 维持会话状态, 管理用户信息, 产生计费信息等; P-CSCF是终端用户接入 IMS的接入点, 用于完成用 户注册, 服务质量( QoS )控制和安全管理等; I-CSCF负责 IMS域之间 的互通, 管理 S-CSCF的分配, 对外隐藏网络拓朴结构和配置信息, 并 产生计费数据等。 HSS是非常重要的用户数据库, 用于支持各个网络实 体对呼叫和会话的处理。 CSCF can be divided into three logical entities: service CSCF (S-CSCF), proxy CSCF (P-CSCF), and query CSCF (I-CSCF). These three logical entities may be different physical devices or the same physical device. Different functional modules in the device. The S-CSCF is a service control center of the IMS, which is used to perform session control, maintain session state, manage user information, and generate charging information. The P-CSCF is an access point for the terminal user to access the IMS, and is used to complete user registration. Quality of Service (QoS) control and security management; I-CSCF is responsible for interworking between IMS domains, managing the allocation of S-CSCFs, hiding network topology and configuration information, and Generate billing data, etc. The HSS is a very important user database that is used to support the processing of calls and sessions by various network entities.
IMS 在初始推出 (R5 版本协议) 时只考虑在第三代移动通信网络 中使用。 由于 IMS上的业务非常丰富, 所以出现了运营商在 2G的网络 上使用 IMS的需求。 但在 2G的网络中无法支持基于 3G网络的 IMS的 安全相关功能,例如五元组鉴权 /网络认证等,为了解决 2G用户使用 IMS 网络所面临的用户鉴权问题, 3GPP提出一种过渡鉴权方案( Early IMS ), 该方案为 2G上的 IMS业务提供一定的安全功能。 当用户支持 3G鉴权 方案时, 再采用完整的基于 3G的鉴权方案对接入用户进行鉴权。  IMS was only considered for use in third-generation mobile communication networks when it was initially introduced (R5 version protocol). Due to the abundance of services on the IMS, there is a need for operators to use IMS on 2G networks. However, in 2G networks, security-related functions of IMS based on 3G networks cannot be supported, such as quintuple authentication/network authentication. In order to solve the problem of user authentication faced by 2G users using IMS networks, 3GPP proposes a transitional authentication. Early IMS, which provides certain security functions for IMS services on 2G. When the user supports the 3G authentication scheme, the complete 3G-based authentication scheme is used to authenticate the access user.
由于引入两种鉴权方法, 特别是 Early IMS 为后续推出, 这样就存 在设备厂商不同时期开发的不同的网元实体可能支持不同鉴权能力类 型的情况。在此将支持 2G过渡鉴权方式的实体称为支持 Early IMS鉴权 的实体,将支持 3G鉴权方式的实体称为支持 Full 3GPP IMS鉴权的实体。 由于网络中存在支持不同鉴权方式的实体, 因此必然会存在下述情况: 例如, 在用户的归属网络域同时存在支持和不支持 Early IMS 的 S-CSCF, 若只支持 Early IMS 鉴权方式的 P-CSCF, 将接收到的来自只 支持 Early IMS 鉴权方式的 UE的 SIP 注册请求发送给只支持 Full 3GPP IMS鉴权方式的 S-CSCF, 则该 S-CSCF必然按照 Full 3GPP IMS鉴权方 式对接收到注册请求进行检查,此时,该 S-CSCF会发现该接收到的 SIP 消息中缺少相关头域, 并认为该消 为非法消息, 因而返回失败响应消 息给用户, 但是如果此时选择了另一个支持 Early IMS 鉴权的 S-CSCF, 则用户就可能注册成功。  Since two authentication methods are introduced, especially Early IMS is introduced later, there are cases where different network element entities developed by device manufacturers in different periods may support different authentication capability types. The entity supporting the 2G transition authentication mode is referred to as an entity supporting Early IMS authentication, and the entity supporting the 3G authentication mode is referred to as an entity supporting Full 3GPP IMS authentication. Since there are entities in the network that support different authentication methods, the following situations are inevitable: For example, in the home network domain of the user, there are both S-CSCFs that support and do not support Early IMS. If only the Early IMS authentication mode is supported. The P-CSCF sends the received SIP registration request from the UE that supports only the Early IMS authentication mode to the S-CSCF that supports only the Full 3GPP IMS authentication mode. The S-CSCF must follow the Full 3GPP IMS authentication mode. Checking the receipt of the registration request. At this time, the S-CSCF finds that the related header field is missing from the received SIP message, and considers the message to be an illegal message, thus returning a failure response message to the user, but if it is selected at this time Another S-CSCF that supports Early IMS authentication, the user may register successfully.
可见, 在上述情况下用户鉴权失败是由于 UE与 S-CSCF所支持的 鉴权方式不匹配而造成的, 并不是因为该 UE不合法, 而这对于合法的 用户来说是不公平的, 必然会降低用户的满意度。 为了避免上述情况的发生, 3GPP在目前阶段的一些运营商规定将 P-CSCF和 S-CSCF都放置在归属网络中, 并且支持相同类型的鉴权方 式, 从而回避 P-CSCF可能与 S-CSCF支持不同类型鉴权方式的情况, 即回避了 UE与 S-CSCF支持不同类型鉴权方式的情况。 但在实际网络 运营中, 随着业务的开展, 不可能总是将 P-CSCF放置在归属网络, 即 存在将 P-CSCF放置在拜访网络的情况。 在这种情况下, 由于 P-CSCF 和 S-CSCF ( P/S-CSCF )属于不同运营商, 由于运营商引入 IMS 阶段的 不同, 就有可能存在 P/S-CSCF支持不同鉴权能力类型的情况。 而且即 使将 P/S-CSCF 放置在同一网络, 也有可能由于引入的阶段不同, P/S-CSCF 支持的鉴权类型不同。 It can be seen that the user authentication failure in the above situation is caused by the UE not supporting the authentication mode supported by the S-CSCF, not because the UE is not legal, and this is unfair to the legitimate user. Will inevitably reduce user satisfaction. In order to avoid the above situation, some operators of the 3GPP at the current stage stipulate that both the P-CSCF and the S-CSCF are placed in the home network, and support the same type of authentication mode, thereby avoiding the P-CSCF and the S-CSCF. Supporting different types of authentication methods, that is, avoiding the case where the UE and the S-CSCF support different types of authentication methods. However, in actual network operations, as the service progresses, it is impossible to always place the P-CSCF on the home network, that is, there is a case where the P-CSCF is placed on the visited network. In this case, since the P-CSCF and the S-CSCF (P/S-CSCF) belong to different operators, there may be different types of authentication capabilities supported by the P/S-CSCF due to different IMS phases introduced by the operator. Case. Moreover, even if the P/S-CSCF is placed on the same network, it is possible that the P/S-CSCF supports different authentication types due to different stages of introduction.
再有, 为了保证 P-CSCF总是可以选择相兼容的 S-CSCF,还可以采 用以下两种方法:  Furthermore, in order to ensure that the P-CSCF can always select a compatible S-CSCF, the following two methods can be used:
一种方法是在 P-CSCF中配置网络中 S-CSCF所支持的鉴权能力数 据。 而随着运营商网络规模的扩大, 必然会导致该配置数据过程复杂化 且不可行。 此时, 即使通过将 P/S-CSCF 同时升级为都支持两种方式来 避免配置数据的复杂化, 也存在由于升级的先后, 而导致网络在一段时 间内将存在支持不同鉴权能力类型的 P/S-CSCF 的可能性。  One method is to configure the authentication capability data supported by the S-CSCF in the network in the P-CSCF. With the expansion of the carrier network, the configuration data process will inevitably be complicated and not feasible. At this time, even if the P/S-CSCF is upgraded to support both ways to avoid the complication of the configuration data, there are also successive upgrades, which may cause the network to support different authentication capability types for a period of time. The possibility of P/S-CSCF.
另一种方法是,将 P/S-CSCF合并在同一网络实体中,这样只要 UE 同 P-CSCF的鉴权能力类型相兼容, 就能保证同 S-CSCF鉴权能力类型 相兼容。 但同样随着运营商网絡规模的扩大, P/S-CSCF 逻辑功能必然 会分布在不同的物理实体上, 此时这种方法就不能继续使用。  Another method is to combine the P/S-CSCFs in the same network entity, so that as long as the UE is compatible with the authentication capability type of the P-CSCF, it can be guaranteed to be compatible with the S-CSCF authentication capability type. However, as the size of the carrier network expands, the logical functions of the P/S-CSCF are bound to be distributed on different physical entities. In this case, this method cannot be used any more.
以上问题都是 3GPP 目前未考虑但又不可回避的。 发明内容  The above problems are not considered by the 3GPP but are unavoidable. Summary of the invention
有鉴于此, 本发明的主要目的在于提供一种在 IP 多媒体子系统 ( IMS ) 中实现注册的方法, 避免因鉴权能力类型不匹配而导致的鉴权 失败。 In view of this, the main object of the present invention is to provide an IP multimedia subsystem. The method of implementing registration in (IMS) avoids authentication failure caused by mismatch of authentication capability types.
为达到上述目的,本发明的技术方案是这样实现的:预先设置并保存 S-CSCF 与其所支持的鉴权能力类型间的对应关系, 该方法包括以下步 骤:  To achieve the above objective, the technical solution of the present invention is implemented by pre-setting and preserving the correspondence between the S-CSCF and the type of authentication capability supported by the S-CSCF, and the method includes the following steps:
a、 当 I-CSCF接收到来自用户设备 UE的注册请求后, 获取能够为 该 UE提供业务的 S-CSCF能力集信息;  a. After receiving the registration request from the user equipment UE, the I-CSCF obtains S-CSCF capability set information that can provide services for the UE.
b、 I-CSCF确定该 UE支持的鉴权能力类型, 并根据所述 S-CSCF 与其所支持的鉴权能力类型间的对应关系以及所述 S-CSCF 能力集信 息, 获取满足该 UE所要求的业务能力且支持该 UE的鉴权能力类型的 S-CSCF;  The I-CSCF determines the type of the authentication capability supported by the UE, and obtains the requirement of the UE according to the correspondence between the S-CSCF and the type of the authentication capability supported by the S-CSCF and the S-CSCF capability set information. S-CSCF of the service capability type and supporting the UE's authentication capability type;
c、 I-CSCF向获取的 S-CSCF发送注册请求, 并继续后续的注册处 理。  c. The I-CSCF sends a registration request to the obtained S-CSCF, and continues the subsequent registration processing.
在上述方法的步骤 b中,所述 I-CSCF确定该 UE支持的鉴权能力类 型的步骤包括:  In step b of the foregoing method, the step of determining, by the I-CSCF, the type of authentication capability supported by the UE includes:
I-CSCF 判断所获取的 S-CSCF 能力集信息中是否包含预先设置的 用户所要求的鉴权能力类型数据, 如果是, 则根据该用户所要求的鉴权 能力类型数据确定该 UE支持的鉴权能力类型, 否则, 根据该 UE发起 的注册请求确定该 UE支持的鉴权能力类型。  The I-CSCF determines whether the acquired S-CSCF capability set information includes the authentication capability type data required by the user, and if yes, determines the authentication supported by the UE according to the authentication capability type data required by the user. The capability type, otherwise, the type of authentication capability supported by the UE is determined according to the registration request initiated by the UE.
在上述方法的步骤 b中,所述 I-CSCF根据 UE发起的注册请求确定 鉴权能力类型的方式包括:  In the step b of the foregoing method, the manner in which the I-CSCF determines the type of the authentication capability according to the registration request initiated by the UE includes:
I-CSCF 根据接收到的该 UE 的注册请求中是否包含授权 Authorization 头域或者根据预先设定的支持不同鉴权能力类型的特征 符, 确定该 UE支持的鉴权能力类型;  The I-CSCF determines, according to the received registration request of the UE, whether to include an authorized Authorization header field or according to a preset feature that supports different types of authentication capabilities, determining an authentication capability type supported by the UE;
其中, 所述根据注册请求中是否包含 Authorization头域确定 UE支 持的鉴权能力类型的步骤包括:如果注册请求中包含 Authorization头域, 且该头域用法符合目前 3GPP要求,则确定该 UE支持 Full IMS鉴权方 式;如果注册请求未包含 Authorization头域,则确定该 UE支持 Early IMS 鉴权方式。 Wherein, determining, according to whether the registration request includes an Authorization header field, determining a UE branch The step of the authentication capability type includes: if the registration request includes an Authorization header field, and the header field usage conforms to the current 3GPP requirements, determining that the UE supports the Full IMS authentication mode; if the registration request does not include the Authorization header field, It is determined that the UE supports the Early IMS authentication mode.
在上述方法的步骤 b中,所述 I-CSCF获取满足 UE所要求的业务能 力且支持该 UE的鉴权能力类型的 S-CSCF的步骤包括:  In step b of the foregoing method, the step of the I-CSCF acquiring an S-CSCF that satisfies the service capability required by the UE and supports the authentication capability type of the UE includes:
I-CSCF 判断所获取的 S-CSCF 能力集信息中是否包含预先设置的 用户所要求的鉴权能力类型数据, 如果是, 则 I-CSCF 居所述 S-CSCF 与其所支持的鉴权能力类型间的对应关系以及获取的 S-CSCF能力集信 息中的鉴权能力类型数据, 直接获得满足该 UE所要求的业务能力且支 持该 UE的鉴权能力类型的 S-CSCF;否则, I-CSCF首先从获取的 S-CSCF 能力集信息中获取满足该 UE的业务能力的 S-CSCF能力集, 再根据该 UE所发起的注册请求确定该 UE支持的鉴权能力类型,然后根据所述满 足该 UE的业务能力的 S-CSCF能力集、 确定的鉴权能力类型以及所述 S-CSCF与其所支持的鉴权能力类型间的对应关系,获得满足该 UE的业 务能力且支持该 UE的鉴权能力类型的 S-CSCF。  The I-CSCF determines whether the acquired S-CSCF capability set information includes the authentication capability type data required by the user, and if so, the I-CSCF and the supported authentication capability type of the S-CSCF The corresponding relationship and the authentication capability type data in the acquired S-CSCF capability set information directly obtain an S-CSCF that satisfies the service capability required by the UE and supports the UE's authentication capability type; otherwise, the I-CSCF First, the S-CSCF capability set that satisfies the service capability of the UE is obtained from the obtained S-CSCF capability set information, and then the authentication capability type supported by the UE is determined according to the registration request initiated by the UE, and then the content is satisfied according to the The S-CSCF capability set of the UE's service capability, the determined authentication capability type, and the correspondence between the S-CSCF and the type of authentication capability supported by the UE, obtain the service capability that satisfies the UE and supports the authentication of the UE. The capability type of S-CSCF.
在上述方法中, 所述步骤 b进一步包括: 当所获取的 S-CSCF 能力 集信息中包含预先设置的用户所要求的鉴权能力类型数据, 但 I-CSCF 无法根据该鉴权能力类型数据直接获得满足发起所述 UE要求的业务能 力且支持该 UE 的鉴权能力类型的 S-CSCF 时, I-CSCF 从所获取的 S-CSCF能力集信息中获取满足该 UE的业务能力的 S-CSCF能力集,再 根据该 UE发起的注册请求确定该 UE支持的鉴权能力类型, 然后才艮据 获取的满足该 UE业务能力的 S-CSCF能力集、 确定的该 UE支持的鉴 权能力类型以及所述 S-CSCF 与其所支持的鉴权能力类型间的对应关 系, 得到满足该 UE要求的业务能力且支持该 UE 的鉴权能力类型的 S-CSCF。 In the above method, the step b further includes: when the acquired S-CSCF capability set information includes the authentication capability type data required by the user set in advance, but the I-CSCF cannot directly obtain the data according to the authentication capability type data. When the S-CSCF that supports the service capability required by the UE and supports the UE's authentication capability type is satisfied, the I-CSCF obtains the S-CSCF capability that satisfies the service capability of the UE from the acquired S-CSCF capability set information. And determining, according to the registration request initiated by the UE, the type of the authentication capability supported by the UE, and then determining the type of the S-CSCF capability that meets the capability of the UE, the type of the authentication capability supported by the UE, and the determined Determining the correspondence between the S-CSCF and the type of authentication capability supported by the S-CSCF, and obtaining the service capability required by the UE and supporting the type of authentication capability of the UE S-CSCF.
在上述方法中, 所述保存 S-CSCF与其所支持的鉴权能力类型间的 对应关系的步骤包括: 在 I-CSCF 中以数据表的形式对应保存所述 S-CSCF标识与其所支持的鉴权能力类型。  In the above method, the step of saving the correspondence between the S-CSCF and the type of authentication capability supported by the S-CSCF includes: saving, in the form of a data table, the S-CSCF identifier and the supported template in the I-CSCF. Type of power.
在上述方法中, 所述方法进一步包括: 当 I-CSCF 不能根据所述 S-CSCF与其所支持的鉴权能力类型间的对应关系以及所述 S-CSCF 能 力集信息获取满足发起注册请求的 UE所要求的业务能力且支持该 UE 鉴权能力类型的 S-CSCF时, I-CSCF通过 P-CSCF向 UE返回注册失败 的响应信息, 或者, I-CSCF随机任选一个 S-CSCF, 然后向该 S-CSCF 发送注册请求, 并按常规流程进行后续注册处理。  In the above method, the method further includes: when the I-CSCF cannot obtain the UE that satisfies the registration request according to the correspondence between the S-CSCF and the type of the authentication capability supported by the S-CSCF and the S-CSCF capability set information. When the required service capability and the S-CSCF of the UE authentication capability type are supported, the I-CSCF returns a response message of the registration failure to the UE through the P-CSCF, or the I-CSCF randomly selects an S-CSCF, and then The S-CSCF sends a registration request and performs subsequent registration processing according to a normal procedure.
在上述方法中,如果 I-CSCF任意选取的 S-CSCF满足该 UE的业务 能力要求且与该 UE所支持的鉴权能力类型匹配,则 S-CSCF通过 I-CSCF 和 P-CSCF向该 UE返回注册成功的响应信息;如果 I-CSCF任意选取的 S-CSCF满足该 UE的业务能力要求和 /或与发起注册请求的 UE所支持 的鉴权能力类型不匹配, 则 S-CSCF通过 I-CSCF和 P-CSCF向该 UE返 回注册失败的响应信息。  In the above method, if the S-CSCF arbitrarily selected by the I-CSCF satisfies the service capability requirement of the UE and matches the authentication capability type supported by the UE, the S-CSCF sends the UE to the UE through the I-CSCF and the P-CSCF. Returning the response information of the registration success; if the S-CSCF arbitrarily selected by the I-CSCF satisfies the service capability requirement of the UE and/or does not match the authentication capability type supported by the UE that initiated the registration request, the S-CSCF passes the I- The CSCF and the P-CSCF return response information of the registration failure to the UE.
在上述方法中 所述注册失败的响应信息中进一步包含该信息的发 起方信息以及失败原因 , 且所述失败原因为未找到鉴权能力类型相匹配 的 S-CSCF。  In the above method, the response information of the registration failure further includes the sender information of the information and the reason for the failure, and the failure reason is that the S-CSCF whose matching capability type matches is not found.
在上述方法的步骤 b中, 当所述满足 UE所要求的业务能力且支持 该 UE的鉴权能力类型的 S-CSCF为一个以上时, 则从中任意选取一个 S-CSCF。  In step b of the foregoing method, when the S-CSCF that satisfies the service capability required by the UE and supports the UE's authentication capability type is more than one, an S-CSCF is arbitrarily selected from the S-CSCF.
综上所述, 本发明的技术方案主要包括: 预先设置并保存 S-CSCF 与其所支持的鉴权能力类型间的对应关系;当 I-CSCF接收到 UE的注册 请求后, 获取该 UE的 S-CSCF能力集信息; 然后确定该 UE支持的鉴 权能力类型, 并才 据 S-CSCF与其所支持的鉴权能力类型间的对应关系 以及 S-CSCF能力集信息, 获取满足该 UE的业务能力且支持该 UE的 鉴权能力类型的 S-CSCF; 然后向获取的 S-CSCF发送注册请求,继续后 续处理。 从而保证 UE与 S-CSCF间所支持的鉴权能力类型匹配, 避免 了因鉴权能力类型不匹配导致的鉴权失败问题。 另外, 本发明方法还包 括在注册失败的响应消息中可给出失败原因, 从而辅助 UE执行相关操 作。 由于本发明对现有技术方案改动较小, 因而将网络的规模调整所带 来的现有配置数据方法变化降低到最小, 从而与现有网絡具有艮好地兼 容性。 附图简要说明 In summary, the technical solution of the present invention mainly includes: pre-setting and saving a correspondence between an S-CSCF and an authentication capability type supported by the S-CSCF; and after receiving the registration request of the UE, the I-CSCF acquires the S of the UE. -CSCF capability set information; then determine the support supported by the UE The capability type, and the S-CSCF that satisfies the service capability of the UE and supports the UE's authentication capability type according to the correspondence between the S-CSCF and the authentication capability type supported by the S-CSCF and the S-CSCF capability set information. Then, a registration request is sent to the acquired S-CSCF to continue the subsequent processing. Therefore, the authentication capability types supported by the UE and the S-CSCF are matched, and the authentication failure problem caused by the mismatch of the authentication capability types is avoided. In addition, the method of the present invention further includes providing a reason for the failure in the response message of the registration failure, thereby assisting the UE to perform the related operation. Since the present invention is less modified to the prior art solution, the existing configuration data method changes brought by the network size adjustment are minimized, so that the existing network has good compatibility. BRIEF DESCRIPTION OF THE DRAWINGS
图 1所示为采用 Early IMS 鉴权方式的用户实现注册的流程图。 实施本发明的方式  Figure 1 shows the flow chart for user registration using the Early IMS authentication method. Mode for carrying out the invention
下面结合附图及具体实施例对本发明作进一步地详细说明。  The invention will be further described in detail below with reference to the drawings and specific embodiments.
在本申请文件中假定 UE与 P-CSCF支持的鉴权能力类型是相互匹 配的,对于上述两者不匹配的情况,目前 3GPP协议已经描述了 P-CSCF 的处理方法, 也就是说, 上述两者之间不匹配的情况不在本发明的考虑 范围之内。  It is assumed in the present application that the types of authentication capabilities supported by the UE and the P-CSCF are mutually matched. For the case where the above two do not match, the current 3GPP protocol has described the processing method of the P-CSCF, that is, the above two The case of mismatch between the parties is not within the scope of the present invention.
为了实现本发明的技术方案, 需要预先设置并保存 S-CSCF与其所 支持的鉴权能力类型间的对应关系, 且保存该对应关系具体可以通过在 I-CSCF中以数据表的形式对应保存所述 S-CSCF标识与其所支持的鉴权 能力类型来实现, 该数据表的形式可以如下表 1所示: S-CSCF标识 支持的鉴权能力 In order to implement the technical solution of the present invention, the correspondence between the S-CSCF and the type of authentication capability supported by the S-CSCF needs to be set and saved in advance, and the corresponding relationship may be saved in the form of a data table in the I-CSCF. The S-CSCF identifier is implemented by the type of authentication capability it supports. The form of the data table can be as shown in Table 1 below: S-CSCF identifies the authentication capabilities supported by the S-CSCF
S-CSCF1 Early IMS  S-CSCF1 Early IMS
Full 3GPP IMS  Full 3GPP IMS
S-CSCF2 . Early IMS  S-CSCF2 . Early IMS
S-CSCF3 Full 3 GPP IMS  S-CSCF3 Full 3 GPP IMS
。 。 ' 表 1  . . ' Table 1
上述用于表示 S-CSCF所支持鉴权能力类型的 S-CSCF数据表通常 设置在 I-CSCF中。  The above S-CSCF data table for indicating the type of authentication capability supported by the S-CSCF is usually set in the I-CSCF.
图 1所示为采用 Early IMS 鉴权方式的用户实现注册的流程图。在 本实施例中, UE 同 P-CSCF的鉴权方式相匹配且 UE使用 SIP消息发 起注册请求, 该过程主要包括如下步驟:  Figure 1 shows the flow chart for user registration using the Early IMS authentication method. In this embodiment, the UE matches the authentication mode of the P-CSCF, and the UE initiates the registration request by using the SIP message. The process mainly includes the following steps:
步骤 101, UE发起一个新的 IMS 注册请求消息, 由于接收用户注 册请求消息的 P-CSCF与发起请求的 UE所支持的鉴权能力类型相匹配, 因此 P-CSCF可以正确转发该 UE的注册请求消息。 上述注册请求消息 中包含 UE的标识。  Step 101: The UE initiates a new IMS registration request message. Because the P-CSCF that receives the user registration request message matches the authentication capability type supported by the UE that initiated the request, the P-CSCF can correctly forward the registration request of the UE. Message. The registration request message includes the identifier of the UE.
步骤 102 103 , P-CSCF 居 UE的标识确定其归属域, 通过查询 地址解析服务器( DNS ) 中的数据确定归属域的入口点 I-CSCF的 IP地 址。  Step 102 103: The identifier of the P-CSCF in the UE determines its home domain, and determines the IP address of the entry point I-CSCF of the home domain by querying data in the Address Resolution Server (DNS).
步骤 104, P-CSCF 将注册请求转发给 I-CSCF。  Step 104: The P-CSCF forwards the registration request to the I-CSCF.
步骤 105 - 106, I-CSCF向 HSS发送查询位置消息,'该查询位置消 息中包含 UE的标识。 由于用户为初始注册, 因此 HSS才艮据查询消息中 的 UE标识找到该 UE的用户签约数据, 并根据该签约数据所要求的能 力获取 S-CSCF 能力集信息, 然后将该 S-CSCF 能力集信息返回给 I-CSCF, 同时, 如果在 HSS 中, 根据用户签约数据预先配置了用于表 示 UE所支持鉴权能力类型的鉴权能力类型数据, 则该表示 UE所支持 鉴权能力类型的鉴权能力类型数据将作为 S-C SCF能力集信息的一部分 一同返回给 I-CSCF。 Steps 105 - 106, the I-CSCF sends a query location message to the HSS, where the query location message includes the identifier of the UE. Since the user is initially registered, the HSS finds the user subscription data of the UE according to the UE identifier in the query message, and obtains the S-CSCF capability set information according to the capability required by the subscription data, and then sets the S-CSCF capability set. Information returned to The I-CSCF, at the same time, if the authentication capability type data indicating the type of authentication capability supported by the UE is pre-configured according to the user subscription data in the HSS, the type of authentication capability indicating the type of authentication capability supported by the UE The data will be returned to the I-CSCF as part of the SC SCF capability set information.
步骤 107, I-CSCF从接收到的 S-CSCF能力集信息中选择能够满足 该 UE所要求的业务能力且支持该 UE的鉴权能力类型的 S-CSCF集合。 具体选择过程如下:  Step 107: The I-CSCF selects, from the received S-CSCF capability set information, an S-CSCF set that can satisfy the service capability required by the UE and supports the UE's authentication capability type. The specific selection process is as follows:
若 HSS返回给该 I-CSCF的信息中包含表示该 UE所支持的鉴权能 力类型的鉴权能力类型数据, 则 I-CSCF根据该鉴权能力类型数据确定 发起请求的 UE 所支持的鉴权能力类型, 再根据所设置的数据表中的 S-CSCF 标识与其所支持的鉴权能力类型的对应关系, 以及已获取的 S-CSCF能力集信息,直接选择出能够满足该 UE所要求的业务能力且支 持该 UE的鉴权能力类型的 S-CSCF集合, 该 S-CSCF集合中可以有一 或多个 S-CSCF, 如果 S-CSCF集合包含多个 S-CSCF, 则 I-CSCF可以 从中任选一个 S-CSCF。  If the information returned by the HSS to the I-CSCF includes the authentication capability type data indicating the type of the authentication capability supported by the UE, the I-CSCF determines, according to the authentication capability type data, the authentication supported by the UE that initiated the request. The capability type, according to the correspondence between the S-CSCF identifier in the set data table and the type of authentication capability supported by the S-CSCF, and the acquired S-CSCF capability set information, directly select a service that can meet the requirements of the UE. An S-CSCF set capable of supporting the UE's authentication capability type, the S-CSCF set may have one or more S-CSCFs, and if the S-CSCF set includes multiple S-CSCFs, the I-CSCF may be from the middle Pick an S-CSCF.
若 HSS 返回给该 I-CSCF的信息中未包含表示该 UE所支持的鉴权 能力类型的鉴权能力类型数据, 则 I-CSCF首先从 HSS返回的 S-CSCF 能力集信息中, 选择出能够满足该 UE业务能力的 S-CSCF能力集, 再 根据该 UE所发起的注册请求确定该 UE所支持的鉴权能力类型, 然后 再根据所设置的数据表中 S-CSCF标识与其所支持的鉴权能力类型的对 应关系, 以及已选择出的能够满足该 UE业务能力的 S-CSCF能力集, 选择出能够满足该 UE所要求的业务能力并且支持该 UE的鉴权能力类 型的 S-CSCF集合; 该 S-CSCF集合中可以有一或多个 S-CSCF, 如果 S-CSCF集合包含多个 S-CSCF, 则 I-CSCF可以从中任选一个 S-CSCF。  If the information returned by the HSS to the I-CSCF does not include the authentication capability type data indicating the type of authentication capability supported by the UE, the I-CSCF first selects from the S-CSCF capability set information returned by the HSS. The S-CSCF capability set that satisfies the UE service capability, and then determines the authentication capability type supported by the UE according to the registration request initiated by the UE, and then according to the S-CSCF identifier in the set data table and the supported profile thereof Corresponding relationship of the capability type, and the selected S-CSCF capability set capable of satisfying the UE service capability, selecting an S-CSCF set capable of satisfying the service capability required by the UE and supporting the UE's authentication capability type There may be one or more S-CSCFs in the S-CSCF set. If the S-CSCF set contains multiple S-CSCFs, the I-CSCF may select one S-CSCF from it.
上述 I-CSCF根据接收到的注册请求确定该发起请求的 UE所支持的 鉴权能力类型的方法为: 根据注册请求中是否存在授权(Authorization ) 头域来确定该发起请求的 UE所支持的鉴权能力类型, 即如果注册请求 中包含 Authorization头域且该头域用法符合目前 3GPP要求,则发起请 求的 UE支持 Full IMS鉴权能力类型,如果注册请求未包含 Authorization 头域, 则发起请求的 UE支持 Early IMS 鉴权方式。 The foregoing I-CSCF determines, according to the received registration request, the UE supported by the requesting request. The method of the authentication capability type is: determining, according to whether an authorization (Authorization) header field exists in the registration request, the type of authentication capability supported by the UE that initiated the request, that is, if the registration request includes an Authorization header field and the header field usage is consistent Currently, the 3GPP requires that the UE that initiates the request supports the Full IMS authentication capability type. If the registration request does not include the Authorization header field, the UE that initiated the request supports the Early IMS authentication mode.
或者, 可以根据运营商预先设定的支持不同鉴权能力类型的特征符 来确定该发起注册请求的 UE所支持的鉴权能力类型。  Alternatively, the type of authentication capability supported by the UE that initiates the registration request may be determined according to a feature set by the operator that supports different types of authentication capabilities.
假设在本实施例中发起注册请求的 UE只支持 Early IMS 鉴权能力 类型, 则根据表 1的数据, 此时 I-CSCF所选择的 S-CSCF集合中只可 能包括 S-CSCF1和 /或 S-CSCF2, 而不能包括 S-CSCF3。  It is assumed that the UE that initiates the registration request in this embodiment only supports the Early IMS authentication capability type. According to the data in Table 1, only the S-CSCF1 and/or S may be included in the S-CSCF set selected by the I-CSCF. -CSCF2, but not S-CSCF3.
步骤 108, I-CSCF向选定的 S-CSCF发送注册请求消息。  Step 108: The I-CSCF sends a registration request message to the selected S-CSCF.
步骤 109 ~ 110, S-CSCF 向 HSS 请求鉴权参数, 并从 HSS的响应 信息中获取所需参数。  Steps 109 ~ 110, the S-CSCF requests the authentication parameter from the HSS, and obtains the required parameters from the response information of the HSS.
步骤 111 ~ 112, S-CSCF根据 HSS 获取的鉴权参数, 进行鉴权, 并向 HSS 返回鉴权结果。此处假设 S-CSCF 采用 Early IMS 鉴权, 其 具体鉴权过程与现有技术相同, 在此不再详细描述。  Steps 111 to 112, the S-CSCF performs authentication according to the authentication parameters obtained by the HSS, and returns an authentication result to the HSS. It is assumed here that the S-CSCF adopts Early IMS authentication, and the specific authentication process is the same as the prior art, and will not be described in detail herein.
步骤 113 ~ 115 , S-CSCF 向用户返回注册响应消息。 在本实施例中 假设注册成功, S-CSCF通过 P-CSCF返回注册成功消息给 UE。  Steps 113 ~ 115, the S-CSCF returns a registration response message to the user. In this embodiment, it is assumed that the registration is successful, and the S-CSCF returns a registration success message to the UE through the P-CSCF.
以上实施例是通过采用 Early IMS 鉴权的用户的注册过程来说明 的, 对于采用 FULL 3GPP IMS 鉴权的 3G用户而言, 其注册过程与现 有注册过程的区别是, 预先设置用于表示 S-CSCF所支持鉴权能力类型 的 S-CSCF数据表, 该数据表中包含 S-CSCF标识与其所支持的鉴权能 力类型的对应关系, 在 I-CSCF接收到的来自 HSS的 S-CSCF能力集信 息后, 确定该发起请求的 UE所支持的鉴权能力类型, 并根据所设置的 数据表中 S-CSCF的标识与其所支持的鉴权能力类型之间的对应关系, 以及获取的 S-CSCF能力集信息, 选择能够满足发起注册请求的 UE所 要求的业务能力且支持该 UE的鉴权能力类型的 S-CSCF集合, 再从该 集合中任选一个 S-CSCF, 并按常规流程继续后续的注册处理。 具体选 择 S-CSCF集合的方法与上述步骤 107的处理方式完全相同。 The above embodiment is described by the registration process of the user who authenticates with Early IMS. For the 3G user who uses FULL 3GPP IMS authentication, the difference between the registration process and the existing registration process is that it is preset to represent S. - The S-CSCF data table of the authentication capability type supported by the CSCF, the data table containing the correspondence between the S-CSCF identifier and the type of authentication capability supported by it, and the S-CSCF capability received from the HSS at the I-CSCF After the information is collected, determining the type of authentication capability supported by the UE that initiated the request, and according to the correspondence between the identifier of the S-CSCF in the set data table and the type of authentication capability supported by the set, And obtaining the S-CSCF capability set information, selecting an S-CSCF set capable of satisfying the service capability required by the UE that initiates the registration request, and supporting the UE's authentication capability type, and then selecting an S-CSCF from the set, Follow the normal process to continue the subsequent registration process. The method of specifically selecting the S-CSCF set is exactly the same as the processing of the above step 107.
如果 UE 所支持的鉴权能力类型数据已预先配置在 HSS 内, 但 I-CSCF 无法根据 HSS 返回的 S-CSCF 能力集信息找到相匹配的 S-CSCF, 即无法找到能够满足该 UE所要求的业务能力且支持该 UE的 鉴权能力类型的 S-CSCF集合, 此时, I-CSCF可以按照如下方式进行处 理: 从 HSS返回的 S-CSCF能力集信息中, 选择出能够满足该 UE业务 能力的 S-CSCF能力集, 再根据该 UE发起的注册请求确定该 UE所支 持的鉴权能力类型, 然后再根据已设置的数据表中 S-CSCF标识与其所 支持的鉴权能力类型的对应关系, 以及已选择出的能够满足该用户业务 能力的 S-CSCF能力集, 选择出能够支持发起注册请求的 UE所支持的 鉴权能力类型的 S-CSCF集合。 也就是说, 当 UE所支持的鉴权能力类 型数据已预先配置在 HSS中, 但 I-CSCF无法根据 HSS返回的 S-CSCF 能力集信息找到相匹配的 S-CSCF时, I-CSCF可以再采用根据 UE 的 注册请求确定该 UE的鉴权能力类型的方法进行处理。 另外, 也可以直 接按照下述失败方式处理。  If the authentication capability type data supported by the UE is pre-configured in the HSS, but the I-CSCF cannot find the matching S-CSCF according to the S-CSCF capability set information returned by the HSS, that is, it cannot find the requirement that the UE can meet the requirements. The service capability and the S-CSCF set of the authentication capability type of the UE are supported. In this case, the I-CSCF can be processed as follows: The S-CSCF capability set information returned from the HSS is selected to meet the UE service capability. The S-CSCF capability set is determined according to the registration request initiated by the UE, and then the type of the authentication capability supported by the UE is determined, and then the correspondence between the S-CSCF identifier and the supported authentication capability type in the set data table is determined. And the selected S-CSCF capability set capable of satisfying the service capability of the user, and selecting an S-CSCF set capable of supporting the authentication capability type supported by the UE that initiates the registration request. That is, when the authentication capability type data supported by the UE is pre-configured in the HSS, but the I-CSCF cannot find the matching S-CSCF according to the S-CSCF capability set information returned by the HSS, the I-CSCF can The method is determined by a method for determining the type of authentication capability of the UE according to the registration request of the UE. Alternatively, you can follow the failure method described below.
无论对于釆用 Early IMS鉴权方式的 UE还是 Full 3GPP鉴权方式 的 UE, 如果发生了异常情况, 例如, I-CSCF未配置上述 S-CSCF数据 表;或 I-CSCF根据用户的鉴权能力类型和预先设置的 S-CSCF数据表进 行匹配, 未发现相关表项等, 当然异常情况并不限于此, 导致 I-CSCF 不能从已获取的 S-CSCF能力集中选择出'满足该 UE的业务能力要求和 / 或与发起注册请求的 UE所支持的鉴权能力类型相匹配的 S-CSCF集合 , 则 I-CSCF有以下两种处理方法: 方法一: I-CSCF通过 P-CSCF向该 UE返回注册失败的响应消息。 并可在该注册失败的响应消息中包含发起方信息以及失败原因。 其中, 发起方信息表明是由 I-CSCF发起的失败响应消息, 而不是在 P-CSCF 处鉴权失败; 通过失败原因表明未找到鉴权能力类型相匹配的 S-CSCF, 例如, 采用 400消息, 即 Bad Request, 表示发起请求的 UE支持 Early IMS,但网络侧不支持该鉴权方法,即网络侧只支持 FULL 3GPP IMS 鉴 权方法;采用 420消息,即 Bad Extension,表示发起请求的 UE支持 Full 3GPP IMS,但网络侧不支持该鉴权方法,即网络侧只支持 Early IMS 鉴 权方法。 Regardless of the UE that uses the Early IMS authentication mode or the UE of the Full 3GPP authentication mode, if an abnormal situation occurs, for example, the I-CSCF does not configure the above S-CSCF data table; or the I-CSCF determines the user's authentication capability. The type is matched with the pre-configured S-CSCF data table, and no related entries are found. Of course, the abnormal situation is not limited to this, and the I-CSCF cannot select the service that satisfies the UE from the acquired S-CSCF capability set. The capability requirements and/or the S-CSCF set that matches the type of authentication capability supported by the UE that initiated the registration request, the I-CSCF has the following two methods: Method 1: The I-CSCF returns a response message of registration failure to the UE through the P-CSCF. The initiator information and the reason for the failure may be included in the response message of the registration failure. The initiator information indicates that the failure response message is initiated by the I-CSCF, instead of the authentication failure at the P-CSCF; the failure reason indicates that the S-CSCF whose matching capability type matches is not found, for example, using 400 messages. , that is, Bad Request, indicates that the UE that initiated the request supports Early IMS, but the network side does not support the authentication method, that is, the network side only supports the FULL 3GPP IMS authentication method; and the 420 message, that is, the Bad Extension, indicates that the requesting UE is supported. Full 3GPP IMS, but the network side does not support the authentication method, that is, the network side only supports the Early IMS authentication method.
方法二: I-CSCF随机任选一个 S-CSCF, 向该选定的 S-CSCF发送 注册请求, 并按常规流程继续进行后续处理。此时, 又会存在两种情况: Method 2: The I-CSCF randomly selects an S-CSCF, sends a registration request to the selected S-CSCF, and continues the subsequent processing according to a normal procedure. At this point, there will be two more cases:
A、 I-CSCF所选择的 S-CSCF恰好与发起请求的 UE所支持的鉴权 能力类型相匹配, 此时 S-CSCF进行正常处理后返回鉴权结果, 即通过 I-CSCF和 P-CSCF给 UE返回注册成功的响应信息。 之所以出现这种情 况可能是预先配置的用于表示 S-CSCF所支持鉴权能力类型的 S-CSCF 数据表中的数据有错误或不完善。 A. The S-CSCF selected by the I-CSCF matches the type of authentication capability supported by the UE that initiated the request. At this time, the S-CSCF returns to the authentication result after normal processing, that is, through the I-CSCF and the P-CSCF. The UE returns a response message indicating that the registration is successful. The reason for this may be that the data in the S-CSCF data table that is pre-configured to indicate the type of authentication capability supported by the S-CSCF is incorrect or imperfect.
B、 I-CSCF所选择的 S-CSCF与发起请求的 UE所支持的鉴权能力 类型不匹配, S-CSCF通过 I-CSCF和 P-CSCF给 UE返回注册失败的响 应信息, 该注册失败的响应信息中可以进一步包含发起方信息以及失败 原因。 其中, 发起方信息表明是由 S-CSCF发起的失败响应消息, 这样 可以与 P-CSCF发起的失败响应消息相区别; 在失败原因中指明未找到 鉴权能力类型相匹配的 S-CSCF, 例如, 采用 400消息, 即 Bad Request, 表示发起请求的 UE支持 Early IMS,而 S-CSCF只支持 Full 3GPP IMS, 采用 420消息,即 Bad Extension,表示发起请求的 UE支持 Full 3GPP IMS 而 S-CSCF只支持 Early IMS。 通过在注册失败的响应消息中给出失败原因, 从而可以辅助 UE执 行后续相关操作。 B. The S-CSCF selected by the I-CSCF does not match the authentication capability type supported by the UE that initiated the request, and the S-CSCF returns the response information of the registration failure to the UE through the I-CSCF and the P-CSCF, and the registration fails. The response information may further include initiator information and the reason for the failure. The initiator information indicates that the failure response message is initiated by the S-CSCF, which can be distinguished from the failure response message initiated by the P-CSCF. In the failure reason, it is indicated that the S-CSCF whose matching capability type matches is not found, for example. The 400 message, that is, the Bad Request, indicates that the UE that initiated the request supports the Early IMS, and the S-CSCF only supports the Full 3GPP IMS. The 420 message, that is, the Bad Extension, indicates that the UE that initiated the request supports Full 3GPP IMS and the S-CSCF only Support for Early IMS. By giving the reason for the failure in the response message of the registration failure, the UE can be assisted to perform subsequent related operations.
以上所述仅为本发明的较佳实施例而已, 并不用以限制本发明, 凡 在本发明的精神和原则之内, 所做的任何修改、 等同替换和改进, 均应 包含在本发明的保护范围之内。  The above is only the preferred embodiment of the present invention, and is not intended to limit the present invention. Any modifications, equivalents, and improvements made within the spirit and scope of the present invention should be included in the present invention. Within the scope of protection.

Claims

权利要求书 Claim
1、 一种在网际协议 IP多媒体子系统中实现注册的方法, 其特征在 于,预先设置并保存 S-CSCF与其所支持的鉴权能力类型间的对应关系, 该方法包括以下步骤: A method for implementing registration in an Internet Protocol IP Multimedia Subsystem, characterized in that a correspondence between an S-CSCF and an authentication capability type supported by the S-CSCF is preset and saved, and the method includes the following steps:
a、 当 I-CSCF接收到来自用户设备 UE的注册请求后, 获取能够为 该 UE提供业务的 S-CSCF能力集信息;  a. After receiving the registration request from the user equipment UE, the I-CSCF obtains S-CSCF capability set information that can provide services for the UE.
b、 I-CSCF确定该 UE支持的鉴权能力类型, 并根据所述 S-CSCF 与其所支持的鉴权能力类型间的对应关系以及所述 S-CSCF 能力集信 息, 获取满足该 UE所要求的业务能力且支持该 UE的鉴权能力类型的 S-CSCF;  The I-CSCF determines the type of the authentication capability supported by the UE, and obtains the requirement of the UE according to the correspondence between the S-CSCF and the type of the authentication capability supported by the S-CSCF and the S-CSCF capability set information. S-CSCF of the service capability type and supporting the UE's authentication capability type;
c、 I-CSCF向获取的 S-CSCF发送注册请求, 并继续后续的注册处 理。  c. The I-CSCF sends a registration request to the obtained S-CSCF, and continues the subsequent registration processing.
2、根据权利要求 1所述的方法,其特征在于,步骤 b中,所述 I-CSCF 确定该 UE支持的鉴权能力类型的步驟包括:  The method according to claim 1, wherein in step b, the step of determining, by the I-CSCF, the type of authentication capability supported by the UE comprises:
I-CSCF 判断所获取的 S-CSCF 能力集信息中是否包含预先设置的 用户所要求的鉴权能力类型数据, 如果是, 则根据该用户所要求的鉴权 能力类型数据确定该 UE支持的鉴权能力类型, 否则, 根据该 UE发起 的注册请求确定该 UE支持的鉴权能力类型。  The I-CSCF determines whether the acquired S-CSCF capability set information includes the authentication capability type data required by the user, and if yes, determines the authentication supported by the UE according to the authentication capability type data required by the user. The capability type, otherwise, the type of authentication capability supported by the UE is determined according to the registration request initiated by the UE.
3、根据权利要求 2所述的方法,其特征在于,步骤 b中,所述 I-CSCF 根据 UE发起的注册请求确定鉴权能力类型的方式包括:  The method according to claim 2, wherein, in the step b, the manner in which the I-CSCF determines the type of the authentication capability according to the registration request initiated by the UE includes:
I-CSCF 根据接收到的该 UE 的注册请求中是否包含授权 Authorization 头域或者根据预先设定的支持不同鉴权能力类型的特征 符, 确定该 UE支持的鉴权能力类型;  The I-CSCF determines, according to the received registration request of the UE, whether to include an authorized Authorization header field or according to a preset feature that supports different types of authentication capabilities, determining an authentication capability type supported by the UE;
其中, 所述根据注册请求中是否包含 Authorization头域确定 UE支 持的鉴权能力类型的步骤包括:如果注册请求中包含 Authorization头域, 且该头域用法符合目前 3GPP要求,则确定该 UE支持 Full IMS鉴权方 式;如果注册请求未包含 Authorization头域,则确定该 UE支持 Early IMS 鉴权方式。 Wherein, determining, according to whether the registration request includes an Authorization header field, determining a UE branch The step of the authentication capability type includes: if the registration request includes an Authorization header field, and the header field usage conforms to the current 3GPP requirements, determining that the UE supports the Full IMS authentication mode; if the registration request does not include the Authorization header field, It is determined that the UE supports the Early IMS authentication mode.
4、根据权利要求 2所述的方法,其特征在于,步骤 b中,所述 I-CSCF 获取满足 UE所要求的业务能力且支持该 UE的鉴权能力类型的 S-CSCF 的步骤包括:  The method according to claim 2, wherein in step b, the step of the I-CSCF acquiring the S-CSCF that satisfies the service capability required by the UE and supports the authentication capability type of the UE includes:
I-CSCF 判断所获取的 S-CSCF 能力集信息中是否包含预先设置的 用户所要求的鉴权能力类型数据, 如果是, 则 I-CSCF根据所述 S-CSCF 与其所支持的鉴权能力类型间的对应关系以及获取的 S-CSCF能力集信 息中的鉴权能力类型数据, 直接获得满足该 UE所要求的业务能力且支 持该 UE的鉴权能力类型的 S-CSCF;否则, I-CSCF首先从获取的 S-CSCF 能力集信息中获取满足该 UE的业务能力的 S-CSCF能力集, 再根据该 UE所发起的注册请求确定该 UE支持的鉴权能力类型,然后根据所述满 足该 UE的业务能力的 S-CSCF能力集、 确定的鉴权能力类型以及所述 S-CSCF与其所支持的鉴权能力类型间的对应关系,获得满足该 UE的业 务能力且支持该 UE的鉴权能力类型的 S-CSCF。  The I-CSCF determines whether the acquired S-CSCF capability set information includes the authentication capability type data required by the user set in advance, and if yes, the I-CSCF according to the S-CSCF and the type of authentication capability supported by the I-CSCF The corresponding relationship and the authentication capability type data in the acquired S-CSCF capability set information directly obtain an S-CSCF that satisfies the service capability required by the UE and supports the UE's authentication capability type; otherwise, the I-CSCF First, the S-CSCF capability set that satisfies the service capability of the UE is obtained from the obtained S-CSCF capability set information, and then the authentication capability type supported by the UE is determined according to the registration request initiated by the UE, and then the content is satisfied according to the The S-CSCF capability set of the UE's service capability, the determined authentication capability type, and the correspondence between the S-CSCF and the type of authentication capability supported by the UE, obtain the service capability that satisfies the UE and supports the authentication of the UE. The capability type of S-CSCF.
5、根据权利要求 4所述的方法, 其特征在于, 所述步骤 b进一步包 括: 当所获取的 S-CSCF 能力集信息中包含预先设置的用户所要求的鉴 权能力类型数据, 但 I-CSCF无法根据该鉴权能力类型数据直接获得满 足发起所述 UE要求的业务能力且支持该 UE的鉴权能力类型的 S-CSCF 时, I-CSCF从所获取的 S-CSCF能力集信息中获取满足该 UE的业务能 力的 S-CSCF能力集, 再根据该 UE发起的注册请求确定该 UE支持的 鉴权能力类型, 然后根据获取的满足该 UE业务能力的 S-CSCF能力集、 确定的该 UE支持的鉴权能力类型以及所述 S-CSCF与其所支持的鉴权 能力类型间的对应关系, 得到满足该 UE要求的业务能力且支持该 UE 的鉴权能力类型的 S- CSCF。 The method according to claim 4, wherein the step b further comprises: when the acquired S-CSCF capability set information includes the authentication capability type data required by the user, but the I-CSCF When the S-CSCF that satisfies the service capability required to initiate the UE and supports the UE's authentication capability type is not directly obtained according to the authentication capability type data, the I-CSCF obtains the obtained S-CSCF capability set information from the acquired information. Determining the type of the authentication capability supported by the UE according to the registration request initiated by the UE, and then determining the UE according to the obtained S-CSCF capability set that satisfies the service capability of the UE. Types of supported authentication capabilities and the S-CSCF and the authentication it supports The correspondence between the capability types is obtained by the S-CSCF that satisfies the service capability required by the UE and supports the UE's authentication capability type.
6、 根据权利要求 1所述的方法, 其特征在于, 所述保存 S-CSCF与 其所支持的鉴权能力类型间的对应关系的步骤包括: 在 I-CSCF 中以数 据表的形式对应保存所述 S-CSCF标识与其所支持的鉴权能力类型。  The method according to claim 1, wherein the step of saving the correspondence between the S-CSCF and the type of authentication capability supported by the S-CSCF comprises: correspondingly storing the data table in the I-CSCF The S-CSCF identifier and the type of authentication capability it supports.
7、根据权利要求 1所述的方法,其特征在于,所述方法进一步包括: 当 I-CSCF不能根据所述 S-CSCF与其所支持的鉴权能力类型间的对应关 系以及所述 S-CSCF能力集信息获取满足发起注册请求的 UE所要求的 业务能力且支持该 UE鉴权能力类型的 S-CSCF时, I-CSCF通过 P-CSCF 向 UE返回注册失败的响应信息, 或者, I-CSCF随机任选一个 S-CSCF, 然后向该 S-CSCF发送注册请求, 并按常规流程进行后续注册处理。  The method according to claim 1, wherein the method further comprises: when the I-CSCF cannot according to the correspondence between the S-CSCF and the type of authentication capability supported by the I-CSCF and the S-CSCF When the capability set information acquires the S-CSCF that meets the service capability required by the UE that initiates the registration request and supports the UE authentication capability type, the I-CSCF returns the response information of the registration failure to the UE through the P-CSCF, or, the I-CSCF Optionally, an S-CSCF is selected, and then a registration request is sent to the S-CSCF, and subsequent registration processing is performed according to a normal procedure.
8、 根据权利要求 7所述的方法, 其特征在于, 如果 I-CSCF任意选 取的 S-CSCF满足该 UE的业务能力要求且与该 UE所支持的鉴权能力 类型匹配, 则 S-CSCF通过 I-CSCF和 P-CSCF向该 UE返回注册成功的 响应信息;如果 I-CSCF任意选取的 S-CSCF满足该 UE的业务能力要求 和 /或与发起注册请求的 UE所支持的鉴权能力类型不匹配, 则 S-CSCF 通过 I-CSCF和 P-CSCF向该 UE返回注册失败的响应信息。  The method according to claim 7, wherein if the S-CSCF arbitrarily selected by the I-CSCF satisfies the service capability requirement of the UE and matches the authentication capability type supported by the UE, the S-CSCF passes The I-CSCF and the P-CSCF return the response information of the registration success to the UE; if the S-CSCF arbitrarily selected by the I-CSCF satisfies the service capability requirement of the UE and/or the type of authentication capability supported by the UE that initiates the registration request If there is no match, the S-CSCF returns the response information of the registration failure to the UE through the I-CSCF and the P-CSCF.
9、根据权利要求 7或 8所述的方法, 其特征在于, 所述注册失败的 响应信息中进一步包含该信息的发起方信息以及失败原因, 且所述失败 原因为未找到鉴权能力类型相匹配的 S-CSCF。  The method according to claim 7 or 8, wherein the response information of the registration failure further includes initiator information of the information and a reason for the failure, and the reason for the failure is that the authentication capability type is not found. Matching S-CSCF.
10、 根据权利要求 1至 7中任一项所述的方法, 其特征在于, 步骤 b中,当所述满足 UE所要求的业务能力且支持该 UE的鉴权能力类型的 S-CSCF为一个以上时, 则从中任意选取一个 S-CSCF。  The method according to any one of claims 1 to 7, wherein, in step b, when the S-CSCF that satisfies the service capability required by the UE and supports the UE's authentication capability type is one In the above, an S-CSCF is arbitrarily selected from it.
PCT/CN2006/001143 2005-06-17 2006-05-29 A method for registering at the internet protocol multimedia subsystem WO2006133624A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CNB2005100776047A CN100433913C (en) 2005-06-17 2005-06-17 Method for realizing registering in IP multi-media subsystem
CN200510077604.7 2005-06-17

Publications (1)

Publication Number Publication Date
WO2006133624A1 true WO2006133624A1 (en) 2006-12-21

Family

ID=37134019

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2006/001143 WO2006133624A1 (en) 2005-06-17 2006-05-29 A method for registering at the internet protocol multimedia subsystem

Country Status (2)

Country Link
CN (1) CN100433913C (en)
WO (1) WO2006133624A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108076452A (en) * 2016-11-18 2018-05-25 大唐移动通信设备有限公司 A kind of methods, devices and systems for notifying professional ability

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102984164B (en) * 2012-12-06 2015-06-17 大唐移动通信设备有限公司 IMS registration method and device
CN103701780A (en) * 2013-12-13 2014-04-02 大唐移动通信设备有限公司 Authenticating method and system
CN110493773B (en) * 2019-08-23 2022-09-02 中国联合网络通信集团有限公司 Method and equipment for acquiring authentication capability of mobile equipment

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2004061543A2 (en) * 2003-01-03 2004-07-22 Nokia Corporation Method and apparatus for resolving protocol-agnostic schemes in an internet protocol multimedia subsystem
US20050071679A1 (en) * 2003-02-04 2005-03-31 Krisztian Kiss Method and system for authorizing access to user information in a network

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE10116547A1 (en) * 2001-04-03 2002-10-10 Nokia Corp Registration of a terminal in a data network
DE60206634T2 (en) * 2002-10-22 2006-06-01 Telefonaktiebolaget Lm Ericsson (Publ) Method and system for authenticating users in a telecommunication system
US20040187021A1 (en) * 2003-02-10 2004-09-23 Rasanen Juha A. Mobile network having IP multimedia subsystem (IMS) entities and solutions for providing simplification of operations and compatibility between different IMS entities

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2004061543A2 (en) * 2003-01-03 2004-07-22 Nokia Corporation Method and apparatus for resolving protocol-agnostic schemes in an internet protocol multimedia subsystem
US20050071679A1 (en) * 2003-02-04 2005-03-31 Krisztian Kiss Method and system for authorizing access to user information in a network

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
"IP multimedia subsystem and its service frame in the UMTS", CHINA DATA COMMUNICATION, February 2004 (2004-02-01), XP008073589 *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108076452A (en) * 2016-11-18 2018-05-25 大唐移动通信设备有限公司 A kind of methods, devices and systems for notifying professional ability

Also Published As

Publication number Publication date
CN1852556A (en) 2006-10-25
CN100433913C (en) 2008-11-12

Similar Documents

Publication Publication Date Title
US7822407B2 (en) Method for selecting the authentication manner at the network side
EP1816825A1 (en) A method and system for authenticating user terminal
EP2137931B1 (en) A method and arrangement for handling profiles in a multimedia service network
EP1864522B1 (en) Method for initiating ims based communications
JP5091569B2 (en) Communication control apparatus, system and method for each service
EP2084882B1 (en) Authentication in a communications network
US20070055874A1 (en) Bundled subscriber authentication in next generation communication networks
EP1994707B1 (en) Access control in a communication network
WO2006136097A1 (en) A method for processing the register abnormality during the user register procedure
US20120096162A1 (en) Methods and apparatuses for initiating provisioning of subscriber data in a hss of an ip multimedia subsystem network
US20110246624A1 (en) Service Node, Control Method Thereof, User Node, and Control Method Thereof
WO2006125359A1 (en) A method for implementing the access domain security of an ip multimedia subsystem
US20110173687A1 (en) Methods and Arrangements for an Internet Multimedia Subsystem (IMS)
WO2008025280A1 (en) A method and system of authentication
WO2006111078A1 (en) A method for obtaining the user access information in the next generation network
WO2006072209A1 (en) A method for agreeing upon the key in the ip multimedia sub-system
EP4059247A1 (en) A method for supporting authentication of a user equipment
WO2006133624A1 (en) A method for registering at the internet protocol multimedia subsystem
EP2449743B1 (en) Method and apparatus for use in an ip multimedia subsystem
WO2008089699A1 (en) A method and a system for authenticating a user terminal in ims network
CN101001145B (en) Authentication method for supporting terminal roaming of non-IP multimedia service subsystem
WO2011029342A1 (en) Method, device and system for identifying type of public user identity (pui)
WO2010108357A1 (en) Method and system for policy control
WO2007045181A1 (en) A method, system and device for obtaining access information
KR101016641B1 (en) Method and device for authentication control of terminal

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

WWW Wipo information: withdrawn in national office

Country of ref document: DE

122 Ep: pct application non-entry in european phase

Ref document number: 06742031

Country of ref document: EP

Kind code of ref document: A1