WO2009030152A1 - Method, system and appratus for implementing mobile handover - Google Patents

Method, system and appratus for implementing mobile handover Download PDF

Info

Publication number
WO2009030152A1
WO2009030152A1 PCT/CN2008/072158 CN2008072158W WO2009030152A1 WO 2009030152 A1 WO2009030152 A1 WO 2009030152A1 CN 2008072158 W CN2008072158 W CN 2008072158W WO 2009030152 A1 WO2009030152 A1 WO 2009030152A1
Authority
WO
WIPO (PCT)
Prior art keywords
access
domain
nacf
information
function entity
Prior art date
Application number
PCT/CN2008/072158
Other languages
French (fr)
Chinese (zh)
Inventor
Xiaoyu Gong
Xianzhen Yang
Original Assignee
Huawei Technologies Co., Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co., Ltd. filed Critical Huawei Technologies Co., Ltd.
Publication of WO2009030152A1 publication Critical patent/WO2009030152A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W36/00Hand-off or reselection arrangements
    • H04W36/0005Control or signalling for completing the hand-off
    • H04W36/0011Control or signalling for completing the hand-off for data sessions of end-to-end connection
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W36/00Hand-off or reselection arrangements
    • H04W36/0005Control or signalling for completing the hand-off
    • H04W36/0011Control or signalling for completing the hand-off for data sessions of end-to-end connection
    • H04W36/0016Hand-off preparation specially adapted for end-to-end data sessions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W36/00Hand-off or reselection arrangements
    • H04W36/0005Control or signalling for completing the hand-off
    • H04W36/0011Control or signalling for completing the hand-off for data sessions of end-to-end connection
    • H04W36/0019Control or signalling for completing the hand-off for data sessions of end-to-end connection adapted for mobile IP [MIP]

Definitions

  • the present invention relates to a mobile handover (Handover) technology, and more particularly to a method, system and apparatus for implementing mobile handover in a next generation network.
  • Background technique
  • NGN Next Generation Network
  • ITU-T International Telecommunication Union Telecommunication Standardization Sector
  • SCF Service Control Layer
  • TCS Transmission Control Layer
  • Transport Layer Transport Layer
  • Figure 1 is a schematic diagram of the composition of an SCF in an existing NGN architecture.
  • the SCF is mainly composed of a Proxy Call Session Control Function Entity (P-CSCF), a Serving Call Session Control Function Entity (S-CSCF), and a Home Subscriber Server (HSS).
  • P-CSCF Proxy Call Session Control Function Entity
  • S-CSCF Serving Call Session Control Function Entity
  • HSS Home Subscriber Server
  • Figure 2 is a schematic diagram of the composition of the transport control layer in the existing NGN architecture.
  • the transport control layer mainly includes a network attach control function entity (NACF) and a resource admission control function entity (RACF).
  • NACF network attach control function entity
  • RACF resource admission control function entity
  • NACF Access Management Function Entity
  • TAA-FE Transport Layer Authentication Authorization Function Entity
  • TUP-FE Transport Layer User Configuration Library Functional Entity
  • NAC-FE Network Address Configuration Function Entity
  • TLM-FE Transport Layer Location Management Functional Entity
  • the functional entity mainly included in the RACF is the Policy Decision Function Entity (PD-FE).
  • PD-FE Policy Decision Function Entity
  • MN mobile node
  • this method needs to interrupt the original business session during the mobile process, and then re-establish the session after moving to a new place.
  • this mobile mode causes inconvenience to the normal development of the service. Therefore, it is desirable to realize the mobile switching in the NGN by means of the existing mobile switching mode applied in other environments, and achieve the purpose of not interrupting the original service or even seamlessly switching.
  • MIP Mobile Internet Protocol
  • FMIP Fast MIP
  • HMIP Hierarchical MIP
  • SMIP Joint MIP
  • PMIP Agent MIP
  • Embodiments of the present invention provide a method for implementing mobile handover, which can implement seamless handover within an access network domain in an NGN architecture.
  • Embodiments of the present invention provide a system for implementing mobile handover, which can implement seamless handover within an access network domain in an NGN architecture.
  • the embodiment of the invention provides an L-NACF, and the L-NACF can implement seamless handover in the access domain in the NGN architecture.
  • the embodiment of the invention provides an H-NACF, and the H-NACF can implement seamless handover in the access domain in the NGN architecture.
  • the embodiment of the invention provides an AM-FE, and the AM-FE can implement seamless handover in the access domain in the NGN architecture.
  • connection pre-establishment on the selected N-AR Performing connection pre-establishment on the selected N-AR, and modifying the initial attachment information during the connection pre-establishment process;
  • a system for implementing mobile switching comprising: a mobile node MN and an NGN a network; the NGN network includes a transport layer control management system located in the core network domain and the access network domain;
  • the transport layer control management system is configured to access the access network to complete the initial attach; when the MN needs to switch from the current access router P-AR to the target in the access domain
  • the target access router N-AR is selected in the access domain
  • the connection pre-establishment is performed on the selected N-AR
  • the initial attachment information is modified in the connection pre-establishment process
  • the handover is performed to release the resources of the current access router P-AR.
  • a local network attachment control function entity L-NACF includes a local mobility management function entity L-MMF of the access domain; the L-MMF further includes: local handover management of the access domain Functional entity L-HMF and local location management function entity L-LMF of the access domain;
  • the L-HMF is configured to query the candidate AR information in the home network attachment control function entity H-NACF and the neighboring access point L2 detection information reported by the mobile node MN, and select the target access according to the configured selection policy.
  • a router N-AR which sends the address information of the N-AR to the MN; and instructs the access point mobility management function entity AM-FE to establish a media stream tunnel during the tunnel pre-establishment and execution handover;
  • the L-LMF is configured to perform location binding update under the indication of the AM-FE.
  • a home network attachment control function entity H-NACF where the H-NACF includes a mobility management function entity H-MMF of the core domain; the H-MMF further includes: a mobile switching management entity H- of the core domain HMF and core domain home location management function entity H-LMF;
  • the H-HMF is configured to query, according to the current attachment point physical point information of the current attachment point obtained from the local network attachment control function entity L-NACF, candidate AR information applicable to the mobile handover around the current attachment point;
  • the H-LMF is configured to save and bind the attachment information provided by the L-NACF.
  • An access management function entity AM-FE the AM-FE further comprising an access mobility management function entity A-MMF; the A-MMF specifically includes an access attachment point location management function entity A-LMF, and Ingress point control function entity A-ACF and access Attachment point media stream data forwarding function entity A-DTF;
  • the A-LMF configured to send, according to the location and identity information of the mobile node MN, the mobile node MN to send a location binding or location update binding message to the local location management function entity L-LMF of the access domain;
  • the A-ACF is configured to send the Layer 2 L2 link state parameter and the trigger message of the MN to the local handover management function entity L-HMF of the access domain; and receive the L-HMF control instruction. , control L2 switching;
  • the A-DTF is configured to receive the L-HMF command, and establish a media flow tunnel between the current access router P-AR, the target access router N-AR, and the local anchor router A-AR.
  • the MN initially accesses the network, and completes an initial attach process in the access domain; when the mobile switch in the access domain needs to be performed, first performs N-AR discovery and selection. Then, the connection pre-establishment is performed on the selected N-AR; finally, the handover is performed, and the original attachment point resource is released.
  • the solution of the embodiment of the present invention utilizes the characteristics of layering, fast, and packet loss of the existing handover protocol, and organically integrates with the hierarchical architecture of the NGN to implement seamless handover in the access domain in the NGN architecture.
  • FIG. 1 is a schematic diagram of the composition of an SCF in a service control layer in an existing NGN architecture
  • FIG. 2 is a schematic diagram of a composition of a transport control layer in an existing NGN architecture
  • FIG. 3 is a schematic diagram of a scenario of a mobile switching mode according to an embodiment of the present invention.
  • FIG. 4 is a schematic diagram of an extended NGN architecture in an embodiment of the present invention.
  • FIG. 5 is a schematic structural diagram of an extended AM-FE according to an embodiment of the present invention.
  • FIG. 6 is a schematic structural diagram of an H-MMF according to an embodiment of the present invention.
  • FIG. 7 is a flow chart of an embodiment of a method of the present invention.
  • FIG. 8 is a flowchart of initial attaching by a MN according to an embodiment of the present invention.
  • FIG. 9 is a flowchart of a MN performing full authentication of an initial attachment and establishing an SA according to an embodiment of the present invention.
  • FIG. 10 is a system on which an MN establishes an application layer service session according to an embodiment of the present invention.
  • FIG. 11 is a flowchart of discovering and selecting an N-AR according to an embodiment of the present invention.
  • FIG. 12 is a flowchart of establishing an N-AR pre-connection in an embodiment of a method according to the present invention
  • FIG. 13 is a schematic diagram of direct pre-authentication in an embodiment of the present invention
  • 16 is a flowchart of implementing location binding update and resource reservation in an embodiment of the present invention.
  • FIG. 17 is a schematic diagram of a RACF in a hierarchical structure according to an embodiment of the present invention
  • FIG. 18 is a flowchart of implementing pre-establishment of a tunnel in an embodiment of the present invention
  • FIG. 19 is a flowchart of performing handover and releasing original attachment point resources in an embodiment of a method according to the present invention.
  • 21 is a schematic structural diagram of a structure of an L-NACF according to an embodiment of the present invention.
  • FIG. 22 is a schematic structural diagram of a structure of an H-NACF according to an embodiment of the present invention. detailed description
  • a domain is a concept of management scope. Each administrative domain has a unique domain name, which is used to identify the administrative domain to which a user belongs. You can use the "user ID + management domain ID, format, ⁇ port" user@home. Com".
  • a management domain further includes a core domain (Core Domain) and an access domain, and one core domain may correspond to multiple access domains; and each access domain may include multiple homogeneous or heterogeneous accesses.
  • the access subnet of the technology may include multiple access attachment points in one access network domain, and each access attachment point may correspond to one access subnet.
  • An access network domain is controlled by a local attachment control subsystem, and the MN is in the access network AN domain. When switching between access points, the media stream is switched by the anchor AR (A-AR) in the access domain, and the application layer session is not perceived.
  • A-AR anchor AR
  • the access domain and the core domain can belong to the same carrier or to different operators.
  • P-AR refers to the router (AR) where the MN is currently located at the access point, sometimes referred to as O-AR (Old-AR) or Serving (AR).
  • the router selected or designated by the MN to be moved to switch also referred to as the target AR (Target AR )
  • the A-AR has a local Home Agent function relative to the MN:
  • the data media stream sent to the MN in the access domain needs to pass through the A-AR to reach the MN.
  • the data media stream sent by the MN needs to be sent through the A-AR.
  • the difference from the HA is that the A-AR is only the media stream forwarding point of the transport layer in the entire AN domain, and does not have the mobility management in the entire access domain.
  • L-HoA Local home address
  • the L-HoA in the access domain is a HoA with local characteristics.
  • the L-HoA is unchanged. Only after the MN moves out of the access domain, the L-HoA will Replaced; L-HoA will be used as the MN's SIP session address when establishing a service session at the application layer.
  • the address of each AR is selected as the L-CoA, and the IP-in-IP can be established between the A-AR and the attachment point AR by using this address. tunnel.
  • the SA only refers to the established security association relationship between the functional entities, such as the mutual trust relationship established between the MN and the DHCP server, AR or AAA Proxy entity; usually, the initial key is generated by both parties; Can effectively confirm the letter Whether the order or data comes from the other entity that has been securely authenticated, thus preventing the occurrence of such phenomena as theft or attack.
  • FIG. 3 it is a schematic diagram of a scenario of a mobile switching mode according to an embodiment of the present invention, where the MM1 mobile switching mode refers to mobile across the core network and across carriers; and the MM2 mobile switching mode refers to the same core network, but
  • the mobility between the AN domains of different access networks is also referred to as the handover mode of the Inter-AN; the MM3 mobile handover mode refers to the mobility within the same access domain, also referred to as the Intra-AN handover mode.
  • CN is the core domain
  • AN1-1, and AN1-2 are two different access domains. Within each access domain, multiple access subnets of the same or different access technologies may be included.
  • the MN that has completed the initial attachment in the access network domain needs to be handed over from the current access router P-AR to the target access router N-AR within the access domain: First, access The N-AR is selected in the domain, and the selected N-AR is pre-established and the initial attachment information is modified. After the connection pre-establishment is completed, the handover is performed, and the resources of the current access router P-AR are released.
  • H-NACF Home Network Attachment Control Function Entity
  • L-NACF Local Network Attachment Control Function Entity
  • FIG. 4 is a schematic diagram of an extended NGN architecture in an embodiment of the present invention.
  • two levels of NGN attach control function entities Home NACF and Local NACF, are referred to as H-NACF and L-NACF, respectively, in the core domain and the access domain.
  • the H-NACF is located in the core network and is a service subscription point.
  • the original authentication data and the transport layer user configuration of the user network transport layer access are saved (User Profile M message; the user initially accesses the access network)
  • the user is fully authenticated (Full Authentication)
  • the subsequently generated SA and User Profile are sent to the L-NACF, so that the L-NACF performs fast pre-authentication on the Handover in the access domain (Fast
  • the H-NACF can also query and deliver information about candidate ARs that can be used for the Handover around the current attachment point according to the physical identification information of the neighboring access point of the current attachment point reported by the L-NACF.
  • the L-NACF is used to manage the access attachment process of an access domain, implement mobility management control of the MN in the same access domain, configure an L-HoA address for the attached MN in the access domain, and access the L-HoA address in the access domain.
  • the attached MN performs fast pre-authentication and temporarily suspends the user's transport layer User Profile in the local cache (Cache).
  • H-NACF and L-NACF each have a hierarchical structure, and the current binding location information of the MN is saved.
  • the L-NACF stores and binds the current location information of the MN in the access domain, including L3 logical location information (L3-CoA), L2 physical location information (L2 Physical Access ID), and L2 logical location information (L2 Logic). Access ID), optionally including geographic location information of the MN.
  • L3-CoA L3 logical location information
  • L2 Physical Access ID L2 physical location information
  • L2 logical location information L2 Logic
  • Access ID optionally including geographic location information of the MN.
  • the H-NACF saves and binds the address of the access domain where the MN is currently located, that is, the L-NACF location index.
  • the SCF when the SCF needs to query the location information of the MN, it only needs to send a query request to the H-NACF, and the H-NACF further queries the corresponding L-NACF and obtains the MN in the access network according to the L-NACF location index of the MN. Detailed location information within the domain.
  • a hierarchical media data stream forwarding point is introduced: an A-AR located in the access network domain and a C-BGF located in the core network domain.
  • the A-AR has a localized local proxy function.
  • the outgoing and received media streams need to pass through the A-AR, and are transmitted through the bidirectional tunnel established by the A-AR and the AR of the attachment point.
  • the A-AR can be statically configured or dynamically generated for different MNs. If it is statically configured, an A-AR is fixed for an access domain, and the address of the A-AR is used. Configure the AR and MN for the attachment point; if the dynamic configuration mode is used, then the MN attaches for the first time in the access domain. At the time, the AR of the first attachment point is dynamically selected by the access domain as the A-AR.
  • the MN After the initial attachment is completed, the MN establishes a service session through the SIP message, which is selected by the SCF.
  • a C-BGF acts as the L3 input and output point for the media data stream between the access domain and the core domain.
  • the forwarding path of the media data stream is:
  • AM-FE Access Management Function Entity
  • L-MMF Local Mobile Management Function Entity
  • H-MMF Mobile Management Function Entity
  • the AM-FE is usually physically located on a physical device with the AR.
  • the AM-FE is mainly used to implement DHCP Relay and PAA functions in the existing NGN architecture.
  • the PAA function refers to the AAA Client function, that is, shielding specific access authentication to remotely authenticate dial-up user services (Radius) or extend Radius (The protocol is forwarded to the AAA Server/Proxy in the L-NACF to implement the attach authentication process.
  • the function of the embodiment is extended in the embodiment of the present invention, including: in the attach authentication, the SA required by the MN and the related entity is generated; Through the AM-FE interface with the neighboring AR, the pre-connection establishment information of the MN mobile handover is established, and the indirect pre-authentication and the address pre-allocation are implemented by the P-AR to the N-AR.
  • FIG. 5 is an extended embodiment of the present invention. Schematic diagram of the composition of AM-FE.
  • the A-MMF further includes an access point location management function entity (A-LMF), an access point control function entity (A-ACF), and an access point point media data stream forwarding function entity (A-DTF).
  • A-LMF access point location management function entity
  • A-ACF access point control function entity
  • A-DTF access point media data stream forwarding function entity
  • the A-LMF is configured to send a location binding, an update binding, and a debinding message to a local location management function entity (L-LMF) of the access domain according to the location and identity information of the MN; LMF generates and maintains a list of binding information for each MN, as shown in Table 1: A-LMF binding information list
  • the A-ACF is located between the L2 and the L3 of the access point; the L2 link state parameter and the trigger message of the MN are reported through the interface of the local handover management function entity (L-HMF) of the access domain, and the The L-HMF interface receives the L-HMF control command and controls the L2 switch.
  • L-HMF local handover management function entity
  • Link parameters low received signal strength, signal-to-noise ration, high frame error rate ...
  • the A-ACF can partially implement the MIH function specified in IEEE 802.12. For example, the MN and the access router know from the Link going down that the MN is about to be removed from the current attachment point range; similarly, according to the link information, the MN can automatically attach to the new The attachment point.
  • the A-DTF receives the command from the L-HMF, establishes or tears down the media stream IP tunnel between the P-AR, the N-AR, and the A-AR; the A-DTF is also responsible for mapping the L3 address of the media stream. Hit the L2 address of the client.
  • the L-MMF in the access domain is a functional entity extended to support the intra-domain Handover, including the L-HMF and the transport layer location management function entity (TLM-FE) in the original NGN NACF with extended performance, now called L -LMF.
  • LLMF transport layer location management function entity
  • the L-HMF is the Handver management and decision point of the MN in the access domain; the Handover decision is made according to the L2 link information of the MN reported by the A-ACF; the L-HMF is also responsible for managing the current connection status of all the MNs in the access domain and In the mobile mode; in addition, the L-HMF is also the issuer of the Handover command, the Link layer event triggering policy is issued, the L2 control command is issued, the L3 media stream tunnel is established and removed, and the L3 switch is performed;
  • the surrounding AR-availability information of the current attachment point that is queried by the core network domain or obtained from the local access domain and the L2 link scan detection information reported by the MN are combined with the local mobility management policy to determine the MN's new attachment. Point N-AR, and trigger the pre-authentication process and the context of the key (Context) transmission; subsequently, the L-HMF can also perform QoS resource query, reservation, etc. of the new attachment point through the interface with the RACF
  • An interface with the A-LMF is added to the L-LMF.
  • the A-LMF agent MN and the L-LMF exchange information related to the location binding update information LBU/LBA.
  • the L-LMF is hierarchical with the home location management function entity (H-LMF) of the core domain.
  • H-LMF home location management function entity
  • MN- Location Information about the current location of the mobile node, where:
  • L2 Logic Access ID is every mobile node in
  • L2 Physical Access access information for example: L2 layer link connection ID of the attachment point, port number, VLAN number, etc., mainly used for resources
  • L-CoA admission control performs resource query on the bandwidth topology library.
  • L2 Physica Access ID is the L2 physical address of each mobile node in the AN domain of the access network, for example: S S ID, B S ID, etc. of the physical device of the attachment point.
  • L-CoA is the L3 address information of each mobile node in the access domain. It is the Care-of-address in the access domain, which is the address of the AR of the attachment point.
  • Access-Network-Type The access network type of the current attachment point.
  • the access network type it includes access technologies for current access, such as Wi-Fi, Wimax, etc.
  • FIG. 6 is a schematic diagram of the composition of the H-MMF in the embodiment of the present invention.
  • the H-HMF is the decision maker of the Handover transaction in the core network, the policy and the command issuer; and the query function of the AR information around the current attachment point:
  • the interface with the L-HMF is used to obtain the current P-AR identifier.
  • the neighboring ARs are known, and then the information server is accessed. (Information Server) Query the information about these surrounding ARs and send them to L-HMF. If the network Topologic Location Database, Geography Location
  • Database and Information Server are configured in L-NACF, then the above process can also be done in L-HMF.
  • H-LMF provides the attachment information shown in Table 3 by L-LMF to bind:
  • L-LMF Addr can be used as an index to query further detailed location.
  • the Identifier goes to the H-LMF lookup; the H-LMF queries the corresponding L-LMF according to the information of the binding, and obtains the detailed L2 physical/logical position information of the MN, and/or the L3 logical position information.
  • the initial attach process is first performed in the access network domain; after the initial attach is completed, at a certain time, when the MN needs to perform mobile handover, N-AR discovery and selection, and connection pre-establishment, binding update, resource admission control, and tunnel pre-establishment for the selected N-AR; finally performing handover to release the original attachment point resource.
  • Figure 7 is a flow chart of an embodiment of the method of the present invention. 4
  • the AM-FE and the AR in this embodiment are located on the same physical device. As shown in Figure 7, it includes:
  • Step s701 The MN initially accesses the network, performs an initial attach process in the access network domain, and establishes a SIP-based service session.
  • FIG. 8 is a flowchart of initial attaching by a MN according to an embodiment of the present invention, including: Step s801: The MN performs a full authentication process of initial attach, and establishes S A.
  • FIG. 9 is a schematic diagram of the MN performing initial authentication and establishing an SA in the embodiment of the present invention. Flow chart. As shown in Figure 9, it includes:
  • Step s901 The MN sends an Authentication Request message to the PAA in the AM-FE.
  • Steps s902 ⁇ s903 The PAA sends an AAA request message to the H-NACF through the L-NACF.
  • Step s904 The H-NACF performs authentication, and sends an AAA response message to the L-NACF.
  • the H-NACF After receiving the AAA request sent by the L-NACF, the H-NACF has its own AAA.
  • the server authenticates the MN according to the AAA-Key (MK) of the pre-stored MN, and sends an AAA response message to the L-NACF after the authentication is completed, which carries the primary session key (MSK) generated during the authentication process. ), generate the MSK random number Nonce and the MN's User Profile file.
  • MK AAA-Key
  • MSK primary session key
  • Step s905 The L-NACF saves the User Profile file and the MSK carried in the AAA response message in the cache, and sends an AAA response message to the PAA in the AM-FE, where the MSK and the Nonce are carried, and the PAA obtains the MSK.
  • Step s906 The PAA sends an authentication response message to the MN, where the Nonce is carried.
  • the MN generates the MSK based on the acquired Nonce and the pre-saved MK.
  • Step s907 An MSK-based authentication relationship is established between the PAA and the MN.
  • the MSK can be used to build a Bootstrapping SA for subsequent Handovers.
  • Step s802 The L-NACF configures the initially attached L-HoA address for the MN.
  • the L-NACF configures the MN to support the address configuration mode supported by the current access domain, such as IPv4, IPv6 stateless, or IPv6 stateful.
  • the MN completes the address configuration through the DHCP v4 configuration process, and can insert the configuration option (Option) by the access physical device with the L2 DPCH Relay to carry the L2 Logic/Physical Access ID and other information.
  • the MN obtains the address configuration from the DHCP v6 of the L-NACF by using the DHCP v6 protocol.
  • the specific implementations of the foregoing two configurations are: The MN sends an address request to the L-NACF; and the L-NACF provides the address configuration provided by the MN.
  • the MN can generate L-HoA according to the Home-Nextwork-Prefix of the AR and the Media Access Control (MAC) address of the MN.
  • MAC Media Access Control
  • Step s803 Select A-AR for the MN.
  • the A-AR in this step can be statically specified or dynamically specified for different MNs.
  • a specified A-AR is fixed for different MNs.
  • the MN can be fully authenticated or pre-connected.
  • the address of the designated A-AR is obtained in the authentication process; if dynamically specified, the first attachment point AR of the MN in the access domain will be dynamically designated as the A-AR of the MN in the current access domain.
  • Step s804 Initial position binding is performed in the L-LMF and the H-LMF.
  • the A-LMF sends a location binding registration message (LBR/LBU) to the L-LMF. If it is the first registration, it sends an LBR message. If it is a subsequent registration, it sends an LBU message.
  • the information carried in the LBR/LBU includes the following table.
  • the L-LMF further sends an LBR/LBU message to the H-LMF, where the information carried includes the content shown in Table 3.
  • the LBU message may further include a bound Lifetime value, when the value is reached. At the specified time, if the binding has not been updated, the corresponding binding entries in L-LMF and H-LMF will be deleted. Accordingly, the H-LMF and L-LMF loopback binding registration response messages (LBAs).
  • Step s805 The MN establishes an application layer service session by using a SIP message.
  • the implementation of this step is based on the system shown in FIG. 10:
  • the MN carries the MN-Identifier and the L-HoA in a SIP Register message, registers with the SCF, and can complete the service layer session authentication of the MN; after that, the MN sends the SCF to the SCF.
  • a SIP Invite message is sent to initiate a session.
  • the P-CSCF in the SCF initiates an address translation binding to the C-BGF through the RACF.
  • the C-BGF acts as a media stream forwarding proxy.
  • the C-BGF represents the CN
  • the C-BGF represents the MN
  • the media stream path that the C-BGF sends to the MN is: CN ⁇ > C-BGF ⁇ > A-AR ⁇ > P-AR - -> ⁇ .
  • the SIP session uses L-HoA as the session address.
  • the SIP session address does not change.
  • the SCF can query the C-LMF and L-LMF to detect the change of the MN location.
  • the C-BGF is a media stream RTP/RTCP Proxy, which performs IP address conversion of the media stream;
  • the P-CSCF modifies the SDP address information of the SIP according to the address translation binding information provided by the C-BGF, so that the address location information of the MN is shielded from the CN, which satisfies the privacy requirement, and also avoids the L-HoA change of the MN.
  • the changed L-HoA needs to be notified to the CN.
  • Step s702 Discover and select the N-AR.
  • FIG. 11 is a flowchart of discovering and selecting an N-AR according to an embodiment of the present invention. As shown in Figure 11, it includes:
  • Step si 101 The MN performs L2 scanning, and sends L2 detection 4 Protext to the neighboring AR.
  • Step sll02 Each AR sends an L2 link Beacon message to the MN, which carries the physical identification information of the access point, such as the SSID and the BSID.
  • Step sll03 The MN reports the information about the current attachment point of the MN to the L-HMF by using the RtSolPr message through the A-ACF in the A-MMF of the current P-AR, and the RtSolPr message carries the peripheral connection acquired from the Beacon information.
  • the physical ID of the entry point such as SSID and BSID.
  • Step s 1104 The L-HMF queries the H-MMF or locally obtains the surrounding available AR of the current attachment point and its related information as an alternative AR.
  • Step sll05 The L-HMF makes a decision according to the information reported by the A-ACF of the current attachment point of the MN, the candidate AR information, and the configured policy, and selects the N-AR.
  • Step si 106 The L-HMF sends the information about the IP address and the MAC address of the N-AR to the MN through the A-ACF of the current attachment point of the MN by using the PrRtAdv message.
  • the MN is equal to the PAA address of the N-AR, and the PAA of the P-AR also obtains the PAA address of the N-AR.
  • FIG. 12 is a flowchart of establishing an N-AR pre-connection in an embodiment of a method according to the present invention. As shown in Figure 12, it includes:
  • Step S1201 Perform an attach pre-authentication process.
  • the pre-authentication in this step may be direct pre-authentication or indirect pre-authentication.
  • FIG. 13 is a schematic diagram of direct pre-authentication in the embodiment of the present invention. As shown in FIG. 13, in the authentication mode, the MN directly passes the attachment of the N-AR. A pre-authentication request is initiated by the point.
  • FIG. 14 is a schematic diagram of the indirect pre-authentication in the embodiment of the present invention. As shown in FIG. 14, in the authentication mode, the MN forwards the authentication request to the N-AR through the attachment point where the P-AR is located.
  • the MN initiates an L2/L3 layer authentication request to the N-AR through the new access link; the N-AR PAA obtains the saved MSK key from the L-NACF, or passes the P - Secure channel established between AR to obtain MSK.
  • the MN initiates an L2/L3 authentication request through the access link of the current P-AR; the PAA in the P-AR forwards the L3 authentication request to the PAA of the N-AR according to the address of the N-AR.
  • the N-AR's PAA obtains the saved MSK key from the L-NACF in a Context Transfer manner, or obtains the MSK through a secure channel established with the P-AR.
  • the N-AR also obtains configuration options from the L-NACF or P-AR, such as the IP address configuration mode of the access domain where the N-AR is located. If it is the IPv6 Stateless configuration mode, the N-AR The obtained is Home-Network-Prefix.
  • FIG. 15 is a flowchart of implementing pre-authentication in an embodiment of the present invention. As shown in FIG. 15, the method includes the following steps: Step sl501: The MN sends an L2/L3 pre-authentication request to the P-AR, where the identifier of the N-AR is carried.
  • Steps si 502 ⁇ si 503 The P-AR queries the L-NACF whether the MSK can be sent to the N-AR; the L-NACF sends a response message to the P-AR.
  • Steps sl504 ⁇ sl505 If the query result shows that the N-AR is a legal AR, the P-AR transmits the MSK to the PAA of the N-AR through a secure channel established with the N-AR, and the protocol used for the transmission may be 802.1. f; Send a pre-authentication success message to the MN at the same time.
  • Step si 506 A security association is established between the MN and the N-AR through the MSK.
  • Step S1202 Perform address pre-configuration.
  • the pre-configured addresses include L-CoA and L-HoA.
  • the L-CoA address is the address of the N-AR, and the N-AR is equivalent to the foreign agent in the MIPV4.
  • the L-HoA configuration when the MN moves within an access domain, the L-HoA is unchanged; the L-HoA changes only when moving across the access domain.
  • L-HoA address configuration is performed every time the attachment point is switched, whether it is in the access domain or between the access domains.
  • the L-HoA configured before and after the handover The addresses are all the same.
  • the DHCP server in the L-NACF configures the same address for each address request from the same MN or MAC address; if it is the IPv6 Stateless configuration mode, N-AR
  • the Home-Network-Prefix sent to the MN is the same as the P-AR, and the MN generates the L-HoA in the same way.
  • Step sl203 Perform location binding update and resource reservation.
  • FIG. 16 is a flowchart of implementing location binding update and resource reservation in an embodiment of the present invention.
  • the A-LMF proxy MN in the N-AR initiates a location binding update request LBU to the L-LMF; or, the MN initiates a location binding update request LBU directly to the L-LMF via the A-LMF relay.
  • the L-LMF receives an LBU message, it first queries whether the binding entry with the same name already exists according to the MN-Identifier. If it exists, the L-LMF does not modify the binding entry first, but establishes a temporary binding entry.
  • the existing binding entry corresponds to the attachment location of the P-AR
  • the temporary binding entry corresponds to the pre-attached location of the N-AR
  • the resource configuration parameter of the user or service in the transport layer User-Profile item in the temporary binding entry will be selected or adjusted according to the access technology corresponding to the N-AR.
  • the RACF reserves the resource for the temporary entry and locks it, and reports the result to the L-HMF.
  • the RACF performs one-way or two-way resource admission reservation and locks between A-AR -> N-AR -> MN according to the information pushed by the L-LMF; after the resource reservation is locked, to the L-NACF
  • the L-HMF in the middle sends a resource admission reservation success message.
  • the L-LMF receives the P-AR pair of the original binding entry.
  • the value of the Lifetime option of the LBU is set to 0, delete the original P-AR binding entry, and replace the original entry with the temporary binding entry to become the official location binding entry; when L-LMF binds the original
  • the RACF is notified to release the resource corresponding to the original binding.
  • the L-LMF introduced above pushes the user information to the RACF to point to the L-RACF push user information located in the access domain.
  • Step S1204 Perform tunnel pre-establishment.
  • FIG. 18 is a flowchart of implementing pre-establishment of a tunnel in an embodiment of the present invention.
  • the tunnel pre-establishment process in this embodiment is divided into two steps, namely, a tunnel establishment process of P-AR and N-AR, and a tunnel establishment process of A-AR and N-AR. As shown in Figure 18, it includes:
  • Steps sl801 ⁇ sl805 The L-HMF sends an instruction to the A-ADT in the P-AR and the A-ADT in the N-AR to establish a media stream transmission tunnel between the two; after the tunnel is established, the P-AR is simultaneously The media stream is forwarded to the MN and the N-AR.
  • Step si 806 ⁇ si 810 L-HMF to A-ADT and N-AR in A-AR respectively
  • the A-ADT issues an instruction to establish a media streaming tunnel between the two.
  • the N-AR receives the media stream from both the P-AR tunnel and the A-AR tunnel, avoiding packet loss during tunnel switching.
  • Steps sl811 ⁇ sl815 After a preset period of time, the L-HMF deletes the P-AR and N-AR tunnels.
  • Step s704 Perform a handover to release the original attachment point resource.
  • Figure 19 is a flow diagram of performing a handover and releasing an original attachment point resource in an embodiment of the method of the present invention. As shown in Figure 19, it includes:
  • Steps sl901 ⁇ sl903 The MN modifies the default route to the address of the N-AR, and starts to send and receive media streams from the N-AR; according to the L2 link state indication, for example, Link going down, the link connection with the P-AR is cut off.
  • L2 link state indication for example, Link going down
  • Step s 1904 ⁇ s 1907 The P-AR detects that the L2 link is disconnected, and sends a disconnection report to the L-HMF in the L-MMF. After the L-HMF is briefly timed, the A-AR and the P-AR are The tunnel between the two is deleted. The media stream path at this time is: C-BGF -> A-AR -> N-AR -> ⁇ , and A-AR -> N-AR is an IP tunnel.
  • Steps sl908 ⁇ sl909 The A-LMF in the P-AR sends an LBU (De-registration) message to the L-LMF in the L-MMF; the L-LMF deletes the location binding entry of the original P-AR, and uses the N-AR The location binding entry is replaced.
  • LBU De-registration
  • Step s 1910 ⁇ s 1911 The L-LMF in the L-MMF sends a message to the L-RACF, instructing the RACF to release the relevant resources of the original P-AR; the RACF according to the indication of the L-LMF, to the MN at the N-AR attachment point
  • the resource performs reservation execution and delivery control policies, and releases related resources of the original P-AR attachment point.
  • session establishment process used in the foregoing embodiment is based on SIP.
  • IMS IP Multimedia Subsystem
  • FIG. 20 is a schematic structural diagram of a system embodiment of the present invention.
  • the system includes: an MN21 and an NGN network 22; wherein the NGN network 22 further includes a core network domain 221 and an access network domain. 222 transport layer control management system;
  • the MN21 is configured to access the NGN network 22, and perform mobility switching in the access domain 222 in the NGN network 22; a transport layer control management system, configured to connect the MN21 to the NGN network 22, complete the initial attach process, and When the MN 21 needs to perform the mobile handover in the access domain 222, the N-AR is discovered and selected in the current access domain 222, the connection pre-establishment is performed on the selected N-AR, and the initial attachment information is modified, and Perform a switch to release the original attachment point resource.
  • the transport layer control management system located in the core network domain 221 further includes a home network attach control function entity H-NACF 2211 and a home resource admission control function entity H-RACF 2212.
  • the transport layer control management system located in the access domain 222 further includes a local Network Attachment Control Function Entity L-NACF 2221, Local Resource Admission Control Function Entity L-RACF 2222;
  • H-NACF2211 configured to perform full authentication of the MN21 when the MN21 initially accesses the NGN network, and deliver the generated SA and user configuration information to the L-NACF 2221; And querying, according to the physical identification information of the neighboring access point of the current attachment point obtained from the L-NACF 2221, candidate AR information applicable to the mobile handover around the current attachment point;
  • the L-NACF 2221 is configured to implement management control on the mobile switching of the MN 21 in the access domain 222, and query the information of the candidate AR information in the H-NACF 2211 and the neighboring access point L2 reported by the MN 21 according to the configured information.
  • Select a policy select N-AR; perform fast pre-authentication based on the SA and user configuration information received from H-NACF2211, configure L-HoA address for MN21, perform location binding update, and during tunnel pre-establishment and execution handover Instructing the AM-FE 2224 to establish or tear down a media stream tunnel;
  • the L-RACF2222 is configured to receive related user information that is sent after the location binding update is performed by the L-NACF2221, perform resource reservation and locking on the user information, and release the original attachment point resource according to the indication of the L-NACF2221 during the handover process. .
  • H-RACF2212 used to receive the address binding request sent by the SCF2214, forwarded to the C-BGF2213; the H-RACF2212 can also be used to forward the resource request from the SCF2214 to the L-RACF2222.
  • the H-NACF2211 saves and binds the address of the access domain where the MN21 is currently located, where
  • the current access domain address of the MN21 includes the L-NACF2221 location index information; the L-NACF2221 stores and binds the current location information of the MN21 in the access domain;
  • the NGN network 22 further includes a service layer control management system, and the service layer control management system further includes an SCF 2214 located in the core network domain, configured to query the H-NACF 2211 for location information of the MN 21, and receive the query result returned by the H-NACF 2211;
  • the H-NACF 2211 queries the corresponding L-NACF for the current location information of the access domain where the MN 21 is located according to the saved L-NACF2221 location index information, and sends the query result to the SCF 2214.
  • the SCF 2214 is further configured to: request resources from the H-RACF 2212 in the initial attach process, and initiate address translation binding to the C-BGF 2213 through the H-RACF 2212, so as to implement the conversion of the MN 21 in the access domain 222 address and the core domain 221 address. .
  • the transport layer of the NGN network 22 access network domain 222 further includes an A-AR 2223 for forwarding the anchor point of the media stream in the current access domain of the MN 21; the A-AR 2223 is a pre-designated fixed AR, or the MN 21 is accessing When the domain is first attached The attachment point AR.
  • the transport layer of the core network domain 221 of the NGN network 22 further includes a C-BGF 2213, which is an L3 input/output point between the core domain and the access domain of the MN21 media data stream.
  • the access network 222 further includes an AM-FE 2224, and its specific components and functions of the components are as shown in FIG. 5, and details are not described herein again.
  • FIG. 21 is a schematic structural diagram of a structure of an L-NACF according to an embodiment of the present invention.
  • the L-NACF 2221 includes a local mobility management function entity L-MMF2101, an AAA server, and a network address configuration function of the access domain.
  • the L-HMF 21011 is configured to query the candidate AR information in the H-NACF 2211 and the neighboring access point L2 detection information reported by the MN 21, select an N-AR according to the configured selection policy, and select the selected N-AR address.
  • the information is sent to the MN 21; and the AM-FE 2224 is instructed to establish or remove the media stream tunnel during the tunnel pre-establishment and execution handover;
  • L-LMF 21012 is used to perform location binding update under the indication of the AM-FE 2224; AAA Server 2102, It is used to perform fast pre-authentication based on the SA and user configuration information received from the H-NACF2211.
  • the NAC-FE2103 can be used as a DHCP server to configure the L-HoA address and access network configuration parameters for the MN21.
  • FIG. 22 is a schematic structural diagram of a structure of an H-NACF according to an embodiment of the present invention.
  • the H-NACF 2211 specifically includes a mobility management function entity H-MMF2201 and an AAA server Serve2202 of the core domain;
  • the H-MMF 2201 further includes: a mobile switching management entity H-HMF22011 and a core of the core domain.
  • AAA Server2202 configured to perform full authentication on the MN21 when the MN21 initially accesses the network, and send the generated SA and user configuration information to the L-NACF2221; H-HMF22011, according to the current obtained from the L-NACF2221
  • the identification information of the attachment point P-AR is used to query candidate AR information that can be used for mobile handover around the current attachment point.
  • H-LMF22012 is used to save and bind the attachment information provided by the L-NACF2221.
  • FIG. 20 21 and 22 are only examples of the present invention. In practical applications, FIG. Other application entities may also be included in 21 and 22. For details, please refer to FIG. 4, and details are not described herein again.
  • the advantages of fast, packet loss, layering, and small changes to the MN in the existing FMIP, HMIP, SMIP, and PMIP protocols are applied to the extended NGN architecture, and NGN.
  • the hierarchical architecture is organically integrated, thereby achieving seamless switching within the access domain, that is, the Intra-AN mode in the NGN architecture.

Abstract

The invention discloses a method for implementing mobile handover. Therein when the MN, which has finished the initial attachment in the access network domain, needs to carry out a mobile handover in current access domain, the method includes: selecting a target access router (N-AR) in current access network domain; pre-establishing a connection with the selected N-AR, and modifying the initial attachment information in the process of pre-establishing the connection; completing the process of pre-establishing a connection and performing handover as well as releasing the resources of the previous point of attachment. The embodiment of the invention discloses a system and apparatus for implementing mobile handover at the same time. Seamless handover can be achieved in NGN architecture by adoption of the method, system and apparatus disclosed by the embodiment of the invention.

Description

一种实现移动切换的方法、 系统及设备 技术领域  Method, system and device for realizing mobile switching
本发明涉及移动切换(Handover )技术, 特别涉及一种在下一代 网络中实现移动切换的方法、 系统及设备。 背景技术  The present invention relates to a mobile handover (Handover) technology, and more particularly to a method, system and apparatus for implementing mobile handover in a next generation network. Background technique
国际电信联盟电信标准化部门 (ITU-T ) 中规定了下一代网络 ( NGN )的组成架构, 将其具体划分为业务控制层(SCF ) 、 传送控 制层和传送层三层。 图 1为现有 NGN架构中 SCF的组成示意图, SCF 主要由代理呼叫会话控制功能实体(P-CSCF ) 、 服务呼叫会话控制 功能实体( S-CSCF )和归属用户服务器(HSS )组成。 图 2为现有 NGN 架构中传送控制层的组成示意图,传送控制层中主要包括网络附着控 制功能实体(NACF )和资源接纳控制功能实体(RACF ) 。 NACF包 括的主要功能实体如下: 接入管理功能实体( AM-FE ) , 传送层认证 授权功能实体( TAA-FE ) , 传送层用户配置库功能实体( TUP-FE ) , 网络地址配置功能实体 (NAC-FE ) 和传送层位置管理功能实体 ( TLM-FE ) 。 RACF中主要包括的功能实体为策略决策功能实体 ( PD-FE )。 在实际应用中, 经常会涉及到网络中节点的移动问题, 现有 NGN架构虽然能够支持一种移动场景, 即游牧(Nomadism ), 将 移动节点 (MN )从原来的位置移动到一个新的位置, 但这种方式需 要在移动过程中中断原有业务的会话,在移动到新的地方后再重新建 立会话,很明显,这种移动方式对业务的正常开展造成了不便。所以, 希望借助于现有应用于其它环境中的移动切换方式,来实现 NGN中的 移动切换, 并达到无需中断原有业务, 甚至是无缝切换的目的。  The structure of the Next Generation Network (NGN) is defined in the International Telecommunication Union Telecommunication Standardization Sector (ITU-T), which is divided into three layers: the Service Control Layer (SCF), the Transmission Control Layer, and the Transport Layer. Figure 1 is a schematic diagram of the composition of an SCF in an existing NGN architecture. The SCF is mainly composed of a Proxy Call Session Control Function Entity (P-CSCF), a Serving Call Session Control Function Entity (S-CSCF), and a Home Subscriber Server (HSS). Figure 2 is a schematic diagram of the composition of the transport control layer in the existing NGN architecture. The transport control layer mainly includes a network attach control function entity (NACF) and a resource admission control function entity (RACF). The main functional entities included in NACF are as follows: Access Management Function Entity (AM-FE), Transport Layer Authentication Authorization Function Entity (TAA-FE), Transport Layer User Configuration Library Functional Entity (TUP-FE), Network Address Configuration Function Entity ( NAC-FE) and Transport Layer Location Management Functional Entity (TLM-FE). The functional entity mainly included in the RACF is the Policy Decision Function Entity (PD-FE). In practical applications, the problem of moving nodes in the network is often involved. The existing NGN architecture can support a mobile scene, Nomadism, to move the mobile node (MN) from its original location to a new location. However, this method needs to interrupt the original business session during the mobile process, and then re-establish the session after moving to a new place. Obviously, this mobile mode causes inconvenience to the normal development of the service. Therefore, it is desirable to realize the mobile switching in the NGN by means of the existing mobile switching mode applied in other environments, and achieve the purpose of not interrupting the original service or even seamlessly switching.
目前常用的移动切换协议主要有两种,一种是基于 SIP的切换协 议, 一种是基于移动互联网协议(MIP ) 的切换协议。 为减小移动切 换的时延、 丟包等问题, 互联网工程任务组(IETF )制定了多个移动 标准, 如快速 MIP ( FMIP )、 分级 MIP ( HMIP )、 联合 MIP ( SMIP )、 代理 MIP ( PMIP )等。 Currently, there are two main types of mobile handover protocols, one is a SIP-based handover protocol, and the other is a handover protocol based on the Mobile Internet Protocol (MIP). In order to reduce the delay and packet loss of mobile switching, the Internet Engineering Task Force (IETF) has developed a number of mobile standards, such as Fast MIP (FMIP), Hierarchical MIP (HMIP), and Joint MIP (SMIP). Agent MIP (PMIP) and so on.
发明人在实现本发明的过程中, 发现现有方法至少存在以下缺 点:  In the process of implementing the present invention, the inventors have found that existing methods have at least the following disadvantages:
上述各种切换协议虽然在一定程度上能够实现会话不中断的移 动切换, 甚至是无缝切换, 但这些切换协议只是适用于 Internet模式 下的技术, 并没有考虑到在 NGN的传送层、 传送控制层、 业务控制 层分离的架构中如何实现切换, 所以, 现有切换协议并不能被简单地 应用到 NGN架构中。 发明内容  Although the above various handover protocols can achieve uninterrupted mobile handover or even seamless handover to some extent, these handover protocols are only applicable to the Internet mode technology, and do not consider the transport layer and transmission control in the NGN. How to implement handover in the architecture separated by the layer and the service control layer, therefore, the existing handover protocol cannot be simply applied to the NGN architecture. Summary of the invention
本发明实施例提供一种实现移动切换的方法, 能够在 NGN架构 中实现接入网域内的无缝切换。  Embodiments of the present invention provide a method for implementing mobile handover, which can implement seamless handover within an access network domain in an NGN architecture.
本发明实施例提供一种实现移动切换的系统, 能够在 NGN架构 中实现接入网域内的无缝切换。  Embodiments of the present invention provide a system for implementing mobile handover, which can implement seamless handover within an access network domain in an NGN architecture.
本发明实施例提供一种 L-NACF, 应用该 L-NACF能够在 NGN 架构中实现接入网域内的无缝切换。  The embodiment of the invention provides an L-NACF, and the L-NACF can implement seamless handover in the access domain in the NGN architecture.
本发明实施例提供一种 H-NACF, 应用该 H-NACF能够在 NGN 架构中实现接入网域内的无缝切换。  The embodiment of the invention provides an H-NACF, and the H-NACF can implement seamless handover in the access domain in the NGN architecture.
本发明实施例提供一种 AM-FE, 应用该 AM-FE能够在 NGN架 构中实现接入网域内的无缝切换。  The embodiment of the invention provides an AM-FE, and the AM-FE can implement seamless handover in the access domain in the NGN architecture.
本发明实施例的技术方案是这样实现的:  The technical solution of the embodiment of the present invention is implemented as follows:
一种实现移动切换的方法, 当已经在接入网域中完成初始附着的 移动节点 MN, 需要在接入网域内从当前接入路由器 P-AR移动切换 到目标接入路由器 N-AR时, 该方法包括:  A method for implementing mobile handover, when an initial attached mobile node MN has been completed in an access network domain, and needs to be handed over from the current access router P-AR to the target access router N-AR within the access domain, The method includes:
在接入网域内选择目标接入路由器 N-AR;  Select the target access router N-AR in the access domain;
对选定的 N-AR进行连接预建立,在所述连接预建立过程中修改 初始附着信息;  Performing connection pre-establishment on the selected N-AR, and modifying the initial attachment information during the connection pre-establishment process;
连接预建立完成,执行切换,释放当前接入路由器 P-AR的资源。 一种实现移动切换的系统,该系统包括:移动节点 MN以及 NGN 网络; 所述 NGN网络中包括位于核心网域以及接入网域的传送层控 制管理系统; After the connection pre-establishment is completed, the handover is performed, and the resources of the current access router P-AR are released. A system for implementing mobile switching, the system comprising: a mobile node MN and an NGN a network; the NGN network includes a transport layer control management system located in the core network domain and the access network domain;
所述传送层控制管理系统, 用于将所述 MN接入所述接入网域, 完成初始附着; 当所述 MN 需要在接入网域内从当前接入路由器 P-AR移动切换到目标接入路由器 N-AR时, 在所述接入网域内选择 目标接入路由器 N-AR, 对选定的 N-AR进行连接预建立, 在所述连 接预建立过程中修改初始附着信息, 并在连接预建立完成后, 执行切 换, 释放当前接入路由器 P-AR的资源。  The transport layer control management system is configured to access the access network to complete the initial attach; when the MN needs to switch from the current access router P-AR to the target in the access domain When the router is in the N-AR, the target access router N-AR is selected in the access domain, the connection pre-establishment is performed on the selected N-AR, and the initial attachment information is modified in the connection pre-establishment process, and After the connection pre-establishment is completed, the handover is performed to release the resources of the current access router P-AR.
一种本地网络附着控制功能实体 L-NACF,所述 L-NACF中包括 接入网域的本地移动管理功能实体 L-MMF; 所述 L-MMF中进一步 包括: 接入网域的本地切换管理功能实体 L-HMF和接入网域的本地 位置管理功能实体 L-LMF;  A local network attachment control function entity L-NACF, the L-NACF includes a local mobility management function entity L-MMF of the access domain; the L-MMF further includes: local handover management of the access domain Functional entity L-HMF and local location management function entity L-LMF of the access domain;
所述 L-HMF ,用于通过查询归属网络附着控制功能实体 H-NACF 中的候选 AR信息以及移动节点 MN上报的周边接入点 L2侦测信息, 根据已配置的选择策略, 选择目标接入路由器 N-AR, 向所述 MN下 发所述 N-AR的地址信息;在隧道预建立和执行切换过程中指令接入 附着点移动管理功能实体 AM-FE建立媒体流隧道;  The L-HMF is configured to query the candidate AR information in the home network attachment control function entity H-NACF and the neighboring access point L2 detection information reported by the mobile node MN, and select the target access according to the configured selection policy. a router N-AR, which sends the address information of the N-AR to the MN; and instructs the access point mobility management function entity AM-FE to establish a media stream tunnel during the tunnel pre-establishment and execution handover;
所述 L-LMF,用于在所述 AM-FE的指示下,进行位置绑定更新。 一种归属网络附着控制功能实体 H-NACF , 所述 H-NACF 中包 括核心网域的移动管理功能实体 H-MMF; 所述 H-MMF中进一步包 括: 核心网域的移动切换管理实体 H-HMF和核心网域的归属位置管 理功能实体 H-LMF;  The L-LMF is configured to perform location binding update under the indication of the AM-FE. A home network attachment control function entity H-NACF, where the H-NACF includes a mobility management function entity H-MMF of the core domain; the H-MMF further includes: a mobile switching management entity H- of the core domain HMF and core domain home location management function entity H-LMF;
所述 H-HMF , 用于根据从本地网络附着控制功能实体 L-NACF 获取到的当前附着点周边接入点物理标识信息,查询所述当前附着点 周边的可用于移动切换的候选 AR信息;  The H-HMF is configured to query, according to the current attachment point physical point information of the current attachment point obtained from the local network attachment control function entity L-NACF, candidate AR information applicable to the mobile handover around the current attachment point;
所述 H-LMF, 用于保存并绑定所述 L-NACF提供的附着信息。 一种接入管理功能实体 AM-FE,所述 AM-FE中进一步包括接入 移动管理功能实体 A-MMF; 所述 A-MMF中具体包括接入附着点位 置管理功能实体 A-LMF、接入附着点控制功能实体 A-ACF以及接入 附着点媒体流数据转发功能实体 A-DTF; The H-LMF is configured to save and bind the attachment information provided by the L-NACF. An access management function entity AM-FE, the AM-FE further comprising an access mobility management function entity A-MMF; the A-MMF specifically includes an access attachment point location management function entity A-LMF, and Ingress point control function entity A-ACF and access Attachment point media stream data forwarding function entity A-DTF;
所述 A-LMF, 用于根据移动节点 MN的位置和身份标识信息, 代理所述移动节点 MN向接入网域的本地位置管理功能实体 L-LMF 发送位置绑定或位置更新绑定消息;  The A-LMF, configured to send, according to the location and identity information of the mobile node MN, the mobile node MN to send a location binding or location update binding message to the local location management function entity L-LMF of the access domain;
所述 A-ACF,用于将所述 MN的二层 L2链路状态参数和触发消 息上 4艮给接入网域的本地切换管理功能实体 L-HMF ; 接收所述 L-HMF的控制指令, 控制 L2切换;  The A-ACF is configured to send the Layer 2 L2 link state parameter and the trigger message of the MN to the local handover management function entity L-HMF of the access domain; and receive the L-HMF control instruction. , control L2 switching;
所述 A-DTF , 用于接收所述 L-HMF的指令, 在当前接入路由器 P-AR、目标接入路由器 N-AR以及本地锚点路由器 A-AR之间建立媒 体流隧道。  The A-DTF is configured to receive the L-HMF command, and establish a media flow tunnel between the current access router P-AR, the target access router N-AR, and the local anchor router A-AR.
可见, 釆用本发明实施例的技术方案, MN初始接入网络, 在接 入网域中完成初始附着过程; 当需要进行接入网域内的移动切换时, 首先进行 N-AR的发现与选择;之后对选定的 N-AR进行连接预建立; 最后执行切换, 释放原附着点资源。 本发明实施例所述方案借鉴现有 切换协议的层次化、 快速以及丟包少等特点, 将其与 NGN的层次化 架构进行有机融合, 实现了 NGN架构中接入网域内的无缝切换。 附图说明  It can be seen that, by using the technical solution of the embodiment of the present invention, the MN initially accesses the network, and completes an initial attach process in the access domain; when the mobile switch in the access domain needs to be performed, first performs N-AR discovery and selection. Then, the connection pre-establishment is performed on the selected N-AR; finally, the handover is performed, and the original attachment point resource is released. The solution of the embodiment of the present invention utilizes the characteristics of layering, fast, and packet loss of the existing handover protocol, and organically integrates with the hierarchical architecture of the NGN to implement seamless handover in the access domain in the NGN architecture. DRAWINGS
图 1为现有 NGN架构中业务控制层中 SCF的组成示意图; 图 2为现有 NGN架构中传送控制层的组成示意图;  1 is a schematic diagram of the composition of an SCF in a service control layer in an existing NGN architecture; FIG. 2 is a schematic diagram of a composition of a transport control layer in an existing NGN architecture;
图 3为本发明实施例的移动切换模式的场景示意图;  3 is a schematic diagram of a scenario of a mobile switching mode according to an embodiment of the present invention;
图 4为本发明实施例中扩展后的 NGN架构示意图;  4 is a schematic diagram of an extended NGN architecture in an embodiment of the present invention;
图 5为本发明实施例中扩展后的 AM-FE组成示意图;  FIG. 5 is a schematic structural diagram of an extended AM-FE according to an embodiment of the present invention; FIG.
图 6为本发明实施例中 H-MMF的组成示意图;  6 is a schematic structural diagram of an H-MMF according to an embodiment of the present invention;
图 7为本发明方法实施例的流程图;  7 is a flow chart of an embodiment of a method of the present invention;
图 8为本发明实施例中 MN进行初始附着的流程图;  FIG. 8 is a flowchart of initial attaching by a MN according to an embodiment of the present invention; FIG.
图 9为本发明实施例中 MN进行初始附着的全认证并建立 SA的 流程图;  FIG. 9 is a flowchart of a MN performing full authentication of an initial attachment and establishing an SA according to an embodiment of the present invention;
图 10为本发明实施例中 MN建立应用层业务会话所基于的系统 示意图; FIG. 10 is a system on which an MN establishes an application layer service session according to an embodiment of the present invention; Schematic diagram
图 11为本发明实施例中发现和选择 N-AR的流程图;  FIG. 11 is a flowchart of discovering and selecting an N-AR according to an embodiment of the present invention;
图 12为本发明方法实施例中建立 N-AR预连接的流程图; 图 13为本发明实施例中直接预认证示意图;  12 is a flowchart of establishing an N-AR pre-connection in an embodiment of a method according to the present invention; FIG. 13 is a schematic diagram of direct pre-authentication in an embodiment of the present invention;
图 14为本发明实施例中间接预认证示意图;  14 is a schematic diagram of indirect pre-authentication in an embodiment of the present invention;
图 15为本发明实施例中实现预认证的流程图;  15 is a flowchart of implementing pre-authentication in an embodiment of the present invention;
图 16为本发明实施例中实现位置绑定更新以及资源预留的流程 图;  16 is a flowchart of implementing location binding update and resource reservation in an embodiment of the present invention;
图 17为本发明实施例中呈层次化结构的 RACF示意图; 图 18为本发明实施例中实现隧道预建立的流程图;  FIG. 17 is a schematic diagram of a RACF in a hierarchical structure according to an embodiment of the present invention; FIG. 18 is a flowchart of implementing pre-establishment of a tunnel in an embodiment of the present invention;
图 19为本发明方法实施例中执行切换并释放原附着点资源的流 程图;  FIG. 19 is a flowchart of performing handover and releasing original attachment point resources in an embodiment of a method according to the present invention; FIG.
图 20为本发明系统实施例的组成结构示意图;  20 is a schematic structural diagram of a system embodiment of the present invention;
图 21为本发明实施例中 L-NACF的组成结构示意图;  21 is a schematic structural diagram of a structure of an L-NACF according to an embodiment of the present invention;
图 22为本发明实施例中 H-NACF的组成结构示意图。 具体实施方式  FIG. 22 is a schematic structural diagram of a structure of an H-NACF according to an embodiment of the present invention. detailed description
为使本发明的目的、技术方案及优点更加清楚明白, 以下参照附 图并举实施例, 对本发明作进一步地详细说明。  The present invention will be further described in detail below with reference to the accompanying drawings.
首先介绍一些在本发明实施例中将会用到的术语:  First, some terms that will be used in the embodiment of the present invention are introduced:
( 1 ) 域 ( Domain )和接入网域 ( Access Domain )  (1) Domain and Access Domain
域是一个管理范围的概念, 每个管理域都有一个唯一的域名, 用 于标识一个用户所属的管理域,可使用 "用户标识 +管理域标识,,的格 式, ^口" user@home.com"。  A domain is a concept of management scope. Each administrative domain has a unique domain name, which is used to identify the administrative domain to which a user belongs. You can use the "user ID + management domain ID, format, ^ port" user@home. Com".
一个管理域中进一步包括核心网域( Core Domain )和接入网域, 一个核心网域可对应多个接入网域; 在每个接入网域内, 可以包括多 个同种或异种接入技术的接入子网,而在一个接入网域内又可包括多 个接入附着点, 每个接入附着点可对应一个接入子网。 一个接入网域 由一个局部的附着控制子系统进行控制, MN在接入网 AN域内的多个 接入附着点之间切换时, 由接入网域内锚点路由器 ( Anchor AR , A-AR )进行媒体流切换, 应用层会话并不会感知到。 A management domain further includes a core domain (Core Domain) and an access domain, and one core domain may correspond to multiple access domains; and each access domain may include multiple homogeneous or heterogeneous accesses. The access subnet of the technology may include multiple access attachment points in one access network domain, and each access attachment point may correspond to one access subnet. An access network domain is controlled by a local attachment control subsystem, and the MN is in the access network AN domain. When switching between access points, the media stream is switched by the anchor AR (A-AR) in the access domain, and the application layer session is not perceived.
接入网域和核心网域可以属于同一个运营商,也可以属于不同运 营商。  The access domain and the core domain can belong to the same carrier or to different operators.
( 2 ) 当前接入路由器 (P-AR )  (2) Current Access Router (P-AR)
P-AR是指 MN当前所在接入附着点的路由器 (AR ), 有时也称 为 O-AR ( Old-AR )或服务(Serving ) AR。  P-AR refers to the router (AR) where the MN is currently located at the access point, sometimes referred to as O-AR (Old-AR) or Serving (AR).
( 3 ) 目标接入路由器(N-AR )  (3) Target Access Router (N-AR)
MN选定或被指定将要移动切换到的路由器, 也可称为目标 AR ( Target AR )„  The router selected or designated by the MN to be moved to switch, also referred to as the target AR (Target AR )
( 4 ) 接入网域内锚点路由器 A-AR  (4) Access network domain anchor router A-AR
在一个接入网域范围内,相对于 MN, A-AR具备局部性的本地代 理(Home Agent )功能: 发送给接入网域内 MN的数据媒体流都需要 经过 A-AR才能到达 MN, 而 MN发出的数据媒体流都需要经过 A-AR 才能发送出去; 与 HA的不同之处在于, A-AR只是整个 AN域内传送 层的媒体流转发点, 并不具备整个接入网域内的移动管理功能。  Within the scope of an access network, the A-AR has a local Home Agent function relative to the MN: The data media stream sent to the MN in the access domain needs to pass through the A-AR to reach the MN. The data media stream sent by the MN needs to be sent through the A-AR. The difference from the HA is that the A-AR is only the media stream forwarding point of the transport layer in the entire AN domain, and does not have the mobility management in the entire access domain. Features.
( 5 )接入网域内的本地归属地址( L-HoA )  (5) Local home address (L-HoA) in the access domain
接入网域内的 L-HoA是具备局部特性的 HoA, 当 MN在一个接入 网域内移动时, L-HoA是不变的, 只有当 MN移出该接入网域后, L-HoA才会被更换; 在应用层建立业务会话时, L-HoA将被用作 MN 的 SIP会话地址。  The L-HoA in the access domain is a HoA with local characteristics. When the MN moves within an access domain, the L-HoA is unchanged. Only after the MN moves out of the access domain, the L-HoA will Replaced; L-HoA will be used as the MN's SIP session address when establishing a service session at the application layer.
( 6 )接入网域内的本地转交地址(L-CoA )  (6) Local care-of address (L-CoA) in the access domain
MN在一个接入网域内的不同附着点的 AR之间进行切换时, 选 用各 AR的地址作为 L-CoA, 利用此地址, A-AR与附着点 AR之间 可建立起 IP-in-IP隧道。  When the MN switches between ARs of different attachment points in an access domain, the address of each AR is selected as the L-CoA, and the IP-in-IP can be established between the A-AR and the attachment point AR by using this address. tunnel.
( 7 )安全联盟(SA )  (7) Security Alliance (SA)
SA 只指功能实体间建立起的安全联盟关系, 如 MN 与 DHCP Server, AR或 AAA Proxy实体间建立的相互可信任的关系; 通常情 况下通过双方的初始密钥生成; 有了 SA, 实体双方就可有效确认信 令或数据是否来自于已被安全认证过的对方实体,从而防止盗用或攻 击等现象的发生。 The SA only refers to the established security association relationship between the functional entities, such as the mutual trust relationship established between the MN and the DHCP server, AR or AAA Proxy entity; usually, the initial key is generated by both parties; Can effectively confirm the letter Whether the order or data comes from the other entity that has been securely authenticated, thus preventing the occurrence of such phenomena as theft or attack.
如图 3所示, 为本发明实施例的移动切换模式的场景示意图, 其 中的 MM1移动切换模式是指跨核心网、 跨运营商的移动; MM2移 动切换模式是指在同一核心网中, 但不同接入网 AN域之间的移动, 也称为 Inter-AN的切换模式; MM3移动切换模式是指同一接入网域 内的移动, 也称为 Intra- AN切换模式。 对于 MM2和 MM3两种切换 模式, 均要求能支持在实现切换的同时, 无需中断当前正在进行的业 务,并在切换过程中,减少移动切换的延时,并保持最少的数据丟失, 即无缝切换。 在图 3中, CN是核心域, AN1-1 , AN1-2 是两个不 同的接入网域。 在每个接入网域内, 可以包括多个同种或异种接入技 术的接入子网。  As shown in FIG. 3, it is a schematic diagram of a scenario of a mobile switching mode according to an embodiment of the present invention, where the MM1 mobile switching mode refers to mobile across the core network and across carriers; and the MM2 mobile switching mode refers to the same core network, but The mobility between the AN domains of different access networks is also referred to as the handover mode of the Inter-AN; the MM3 mobile handover mode refers to the mobility within the same access domain, also referred to as the Intra-AN handover mode. For both MM2 and MM3 switching modes, it is required to support the implementation of the handover without interrupting the ongoing service, and reduce the delay of the mobile handover during the handover process, and maintain minimal data loss, that is, seamless Switch. In Figure 3, CN is the core domain, AN1-1, and AN1-2 are two different access domains. Within each access domain, multiple access subnets of the same or different access technologies may be included.
本发明的实施方式中, 当已经在接入网域中完成初始附着的 MN 需要在接入网域内从当前接入路由器 P-AR移动切换到目标接入路由 器 N-AR时: 首先在接入网域内选择 N-AR, 对选定的 N-AR进行连 接预建立, 修改初始附着信息; 并在连接预建立完成后, 执行切换, 释放当前接入路由器 P-AR的资源。  In an embodiment of the present invention, when the MN that has completed the initial attachment in the access network domain needs to be handed over from the current access router P-AR to the target access router N-AR within the access domain: First, access The N-AR is selected in the domain, and the selected N-AR is pre-established and the initial attachment information is modified. After the connection pre-establishment is completed, the handover is performed, and the resources of the current access router P-AR are released.
为实现上述方案, 需要首先在现有 NGN架构中新增或扩展一些 功能实体, 具体如下:  To implement the above solution, you need to first add or extend some functional entities in the existing NGN architecture, as follows:
( 1 ) 归属网络附着控制功能实体(H-NACF ) 和本地网络附着 控制功能实体(L-NACF ):  (1) Home Network Attachment Control Function Entity (H-NACF) and Local Network Attachment Control Function Entity (L-NACF):
图 4为本发明实施例中扩展后的 NGN架构示意图。如图 4所示, 分别在核心网域和接入网域引入两级 NGN附着控制功能实体 Home NACF 和 Local NACF, 简称为 H-NACF和 L-NACF。  FIG. 4 is a schematic diagram of an extended NGN architecture in an embodiment of the present invention. As shown in Figure 4, two levels of NGN attach control function entities, Home NACF and Local NACF, are referred to as H-NACF and L-NACF, respectively, in the core domain and the access domain.
其中, H-NACF位于核心网中, 是业务订购 ( Subscription )点, 保存有用户网络传送层接入的原始认证数据和传送层用户配置( User Profile M言息;在用户初始接入接入网域时,对用户进行完全认证( Full Authentication ),并将随后生成的 SA和 User Profile下发给 L-NACF, 以便 L-NACF 对接入网域内的 Handover 进行快速预认证 (Fast Pre-authentication ); 此外, H-NACF还能根据 L-NACF上报的当前附 着点的周边接入点物理标识信息,查询并下发当前附着点周边可用于 Handover的候选 AR的相关信息。 The H-NACF is located in the core network and is a service subscription point. The original authentication data and the transport layer user configuration of the user network transport layer access are saved (User Profile M message; the user initially accesses the access network) In the domain, the user is fully authenticated (Full Authentication), and the subsequently generated SA and User Profile are sent to the L-NACF, so that the L-NACF performs fast pre-authentication on the Handover in the access domain (Fast In addition, the H-NACF can also query and deliver information about candidate ARs that can be used for the Handover around the current attachment point according to the physical identification information of the neighboring access point of the current attachment point reported by the L-NACF.
L-NACF用于管理一个接入网域的接入附着过程,实现 MN在同 一接入网域内的移动管理控制;为接入网域内的附着 MN配置 L-HoA 地址, 以及对接入网域内的附着 MN进行快速预认证, 并将用户的传 送层 User Profile暂存在本地的高速緩冲存储器( Cache ) 中。  The L-NACF is used to manage the access attachment process of an access domain, implement mobility management control of the MN in the same access domain, configure an L-HoA address for the attached MN in the access domain, and access the L-HoA address in the access domain. The attached MN performs fast pre-authentication and temporarily suspends the user's transport layer User Profile in the local cache (Cache).
除上述功能以外, H-NACF和 L-NACF 中还各自以层次化的结 构, 保存有 MN 的当前绑定位置信息。 其中, L-NACF保存并绑定 MN 在接入网域的当前位置信息, 具体包括 L3 逻辑位置信息 ( L3-CoA ), L2物理位置信息( L2 Physical Access ID ) 以及 L2逻辑 位置信息( L2 Logic Access ID ),还可选地包括 MN的地理位置信息。 H-NACF 中保存并绑定 MN 当前所处接入网域的地址, 即 L-NACF 位置索引。 当 MN以 Intra- AN模式切换时, 只有 L-NACF的位置绑 定信息需要更新, 而 H-NACF中的绑定位置信息不需要更新; 当 MN 以 Inter- AN模式切换时, H-NACF中绑定的位置信息才需要更新。  In addition to the above functions, H-NACF and L-NACF each have a hierarchical structure, and the current binding location information of the MN is saved. The L-NACF stores and binds the current location information of the MN in the access domain, including L3 logical location information (L3-CoA), L2 physical location information (L2 Physical Access ID), and L2 logical location information (L2 Logic). Access ID), optionally including geographic location information of the MN. The H-NACF saves and binds the address of the access domain where the MN is currently located, that is, the L-NACF location index. When the MN switches in the Intra-AN mode, only the location binding information of the L-NACF needs to be updated, and the binding location information in the H-NACF does not need to be updated; when the MN switches in the Inter-AN mode, the H-NACF The bound location information needs to be updated.
这样, 当 SCF需要查询 MN的位置信息时, 只需向 H-NACF发 送查询请求, H-NACF会根据 MN的 L-NACF位置索引, 进一步向 相应的 L-NACF查询并获取 MN在接入网域内的详细位置信息。  In this way, when the SCF needs to query the location information of the MN, it only needs to send a query request to the H-NACF, and the H-NACF further queries the corresponding L-NACF and obtains the MN in the access network according to the L-NACF location index of the MN. Detailed location information within the domain.
( 2 ) 层次化的媒体流转发点 A-AR 和核心网边界网关 (2) Hierarchical media stream forwarding point A-AR and core network border gateway
( C-BGF ): (C-BGF):
本发明实施例中引入了层次化的媒体数据流转发点:位于接入网 域中的 A-AR以及位于核心网域的 C-BGF。  In the embodiment of the present invention, a hierarchical media data stream forwarding point is introduced: an A-AR located in the access network domain and a C-BGF located in the core network domain.
A-AR具备局部性的本地代理功能,当 MN在接入网域内移动时, 发出和接收的媒体流都需要经过 A-AR, 通过 A-AR和附着点的 AR 建立的双向隧道传送。 在一个接入网域内, A-AR可以静态配置, 也 可以针对不同的 MN动态生成: 如果是静态配置, 那么对于一个接入 网域, 固定使用一个 A-AR, 将该 A-AR的地址配置给附着点的 AR 和 MN; 如果釆用动态配置方式, 那么当 MN在接入网域内首次附着 时, 由接入网域动态选定首次附着点的 AR作为 A-AR。 The A-AR has a localized local proxy function. When the MN moves within the access domain, the outgoing and received media streams need to pass through the A-AR, and are transmitted through the bidirectional tunnel established by the A-AR and the AR of the attachment point. In an access domain, the A-AR can be statically configured or dynamically generated for different MNs. If it is statically configured, an A-AR is fixed for an access domain, and the address of the A-AR is used. Configure the AR and MN for the attachment point; if the dynamic configuration mode is used, then the MN attaches for the first time in the access domain. At the time, the AR of the first attachment point is dynamically selected by the access domain as the A-AR.
当完成初次附着后, MN会通过 SIP消息建立一个业务会话, 由 SCF选择  After the initial attachment is completed, the MN establishes a service session through the SIP message, which is selected by the SCF.
一个 C-BGF作为接入网域和核心网域间的媒体数据流的 L3输入 和输出点。 对应的, 媒体数据流的转发路径为:  A C-BGF acts as the L3 input and output point for the media data stream between the access domain and the core domain. Correspondingly, the forwarding path of the media data stream is:
CN ~> C-BGF ~> A-AR ~> P-AR ~> MN ;  CN ~> C-BGF ~> A-AR ~> P-AR ~> MN ;
当发生 Intra- AN切换时, C-BGF 和 A-AR 都不会改变, 只有 P -AR会发生改变; 当发生 Inter- AN切换时, A-AR才会改变。  When intra-AN handover occurs, neither C-BGF nor A-AR will change, only P-AR will change; A-AR will change when Inter-AN handover occurs.
( 3 )接入管理功能实体(AM-FE ) 、 接入网域的本地移动管理 功能实体 ( L-MMF )和核心网域的移动管理功能实体 ( H-MMF ) : A、 AM-FE:  (3) Access Management Function Entity (AM-FE), Local Mobile Management Function Entity (L-MMF) of the access domain, and Mobile Management Function Entity (H-MMF) of the core domain: A, AM-FE:
AM-FE在物理实现上通常与 AR位于一个物理设备上。  The AM-FE is usually physically located on a physical device with the AR.
AM-FE在现有 NGN架构中主要用于实现 DHCP Relay以及 PAA 功能,其中, PAA功能是指 AAA Client功能, 即屏蔽具体的接入认证, 以远程鉴别拨号用户服务( Radius ) 或扩展 Radius ( Diameter )协议 向 L-NACF中的 AAA Server/Proxy转发认证请求 , 实现附着认证过程; 本发明实施例中对其功能进行扩展, 包括: 在附着认证中, 生成 MN 和相关实体所需的 SA; 通过与周边 AR的 AM-FE接口, 将 MN移动切 换的预连接建立相关信息, 经 P-AR转 N-AR, 实现间接预认证和地址 预分配。  AM-FE is mainly used to implement DHCP Relay and PAA functions in the existing NGN architecture. The PAA function refers to the AAA Client function, that is, shielding specific access authentication to remotely authenticate dial-up user services (Radius) or extend Radius ( The protocol is forwarded to the AAA Server/Proxy in the L-NACF to implement the attach authentication process. The function of the embodiment is extended in the embodiment of the present invention, including: in the attach authentication, the SA required by the MN and the related entity is generated; Through the AM-FE interface with the neighboring AR, the pre-connection establishment information of the MN mobile handover is established, and the indirect pre-authentication and the address pre-allocation are implemented by the P-AR to the N-AR.
为支持移动管理, 还需要在现有 AM-FE中引入一个子功能实体, 即接入移动管理功能实体(A-MMF ) , 如图 5所示, 图 5为本发明实 施例中扩展后的 AM-FE组成示意图。 该 A-MMF中进一步包括接入附 着点位置管理功能实体( A-LMF )、接入附着点控制功能实体( A-ACF ) 以及接入附着点媒体数据流转发功能实体(A-DTF ) 。  In order to support the mobility management, a sub-function entity, that is, an access mobility management function entity (A-MMF), is also introduced in the existing AM-FE. As shown in FIG. 5, FIG. 5 is an extended embodiment of the present invention. Schematic diagram of the composition of AM-FE. The A-MMF further includes an access point location management function entity (A-LMF), an access point control function entity (A-ACF), and an access point point media data stream forwarding function entity (A-DTF).
其中, A-LMF用于根据 MN的位置和身份标识信息, 代理 MN向 接入网域的本地位置管理功能实体(L-LMF )发送位置绑定、 更新绑 定以及去绑定消息; A-LMF为每个 MN生成并维护一个绑定信息列 表, 如表一所示: A-LMF绑定信息列表 The A-LMF is configured to send a location binding, an update binding, and a debinding message to a local location management function entity (L-LMF) of the access domain according to the location and identity information of the MN; LMF generates and maintains a list of binding information for each MN, as shown in Table 1: A-LMF binding information list
Figure imgf000012_0001
Figure imgf000012_0001
A-ACF位于接入附着点的 L2和 L3之间; 通过与接入网域的本 地切换管理功能实体(L-HMF )的接口, 上报 MN的 L2链路状态参 数和触发消息, 并通过与 L-HMF的接口, 接收 L-HMF的控制指令, 控制 L2切换, 其相关链路参数等信息如下: The A-ACF is located between the L2 and the L3 of the access point; the L2 link state parameter and the trigger message of the MN are reported through the interface of the local handover management function entity (L-HMF) of the access domain, and the The L-HMF interface receives the L-HMF control command and controls the L2 switch. The related link parameters and other information are as follows:
链路参数: low received signal strength, signal-to-noise ration, high frame error rate ...  Link parameters: low received signal strength, signal-to-noise ration, high frame error rate ...
事件: Link going down , handover completion...  Event: Link going down , handover completion...
命令: L2 Scan Handover Initiation , Committing...  Command: L2 Scan Handover Initiation , Committing...
A-ACF可部分实现 IEEE 802.12中规定的 MIH功能, 例如, MN 和接入路由器根据 Link going down知道, MN即将从当前附着点范 围移出; 相似地, 根据链路信息, MN能自动附着到新的附着点。  The A-ACF can partially implement the MIH function specified in IEEE 802.12. For example, the MN and the access router know from the Link going down that the MN is about to be removed from the current attachment point range; similarly, according to the link information, the MN can automatically attach to the new The attachment point.
A-DTF接收来自 L-HMF的指令, 在 P-AR、 N-AR以及 A-AR之 间建立或拆除媒体流 IP隧道; A-DTF还负责将媒体流的 L3地址映 射到用户端的 L2 地址。 The A-DTF receives the command from the L-HMF, establishes or tears down the media stream IP tunnel between the P-AR, the N-AR, and the A-AR; the A-DTF is also responsible for mapping the L3 address of the media stream. Hit the L2 address of the client.
B、 L-MMF:  B, L-MMF:
接入网域中的 L-MMF是为支持域内 Handover而扩展的功能实 体, 包括 L-HMF以及性能扩展了的原 NGN NACF中的传送层位置 管理功能实体(TLM-FE ), 现称为 L-LMF。  The L-MMF in the access domain is a functional entity extended to support the intra-domain Handover, including the L-HMF and the transport layer location management function entity (TLM-FE) in the original NGN NACF with extended performance, now called L -LMF.
L-HMF是接入网域内 MN的 Handver管理和决策点; 根据 A-ACF 上报的 MN的 L2链路信息, 作出 Handover决策; L-HMF还负责管理接 入网域内所有 MN的当前连接状态以及移动模式; 此外, L-HMF还是 Handover命令的下发者, 下发 Link层事件触发策略、 下发 L2控制 命令、 建立和拆除 L3媒体流隧道, 进行 L3切换; 再有, L-HMF根据 从核心网域查询到的或从本地接入网域获取到的当前附着点的周边 可用 AR信息和 MN上报的 L2链路扫描侦测信息,结合本地移动管理策 略进行判断, 最终确定 MN的新附着点 N-AR, 并触发预认证过程和密 钥的上下文(Context )传送; 后续, L-HMF还可通过与 RACF的接口 进行新附着点的 QoS 资源查询、 预留等。  The L-HMF is the Handver management and decision point of the MN in the access domain; the Handover decision is made according to the L2 link information of the MN reported by the A-ACF; the L-HMF is also responsible for managing the current connection status of all the MNs in the access domain and In the mobile mode; in addition, the L-HMF is also the issuer of the Handover command, the Link layer event triggering policy is issued, the L2 control command is issued, the L3 media stream tunnel is established and removed, and the L3 switch is performed; The surrounding AR-availability information of the current attachment point that is queried by the core network domain or obtained from the local access domain and the L2 link scan detection information reported by the MN are combined with the local mobility management policy to determine the MN's new attachment. Point N-AR, and trigger the pre-authentication process and the context of the key (Context) transmission; subsequently, the L-HMF can also perform QoS resource query, reservation, etc. of the new attachment point through the interface with the RACF.
L-LMF中新增与 A-LMF的接口 , 由 A-LMF代理 MN与 L-LMF 进行与位置绑定更新信息 LBU/LBA相关的信息交互。 L-LMF与核心 网域的归属位置管理功能实体(H-LMF )之间为层次化关系。  An interface with the A-LMF is added to the L-LMF. The A-LMF agent MN and the L-LMF exchange information related to the location binding update information LBU/LBA. The L-LMF is hierarchical with the home location management function entity (H-LMF) of the core domain.
L-LMF绑定的用户相关信息如表二所示:  The user-related information of the L-LMF binding is shown in Table 2:
表二 L-LMF绑定信息列表  Table 2 L-LMF binding information list
Figure imgf000013_0001
在整个接入网域不变;
Figure imgf000013_0001
The same is true throughout the access domain;
对 IPv6 , 这 里 绑 定 的 是 Home-Network-Prefix  For IPv6, this is tied to Home-Network-Prefix.
MN- Location: 移动节点当前位置相关信息, 其中: MN- Location: Information about the current location of the mobile node, where:
( L2 Logic Access L2 logic Access ID : 是每个移动节点在(L2 Logic Access L2 Logic Access ID: is every mobile node in
ID, 接入网 AN域内的 L2 逻辑地址, L2 逻辑 ID, access network L2 logical address in the AN domain, L2 logic
L2 Physical Access 接入信息, 例如: 附着点的 L2层链路接 ID 入端口号、 VLAN号等, 主要用于资源 L2 Physical Access access information, for example: L2 layer link connection ID of the attachment point, port number, VLAN number, etc., mainly used for resources
L-CoA ) 接纳控制对带宽拓朴库进行资源查询。 L-CoA) admission control performs resource query on the bandwidth topology library.
L2 Physica Access ID : 是每个移动节点 在接入网 AN域内的 L2物理地址, 例如: 附着点物理设备的 S S ID , B S ID等。 L2 Physica Access ID: is the L2 physical address of each mobile node in the AN domain of the access network, for example: S S ID, B S ID, etc. of the physical device of the attachment point.
L-CoA: 是每个移动节点在接入网域内 的 L3 地址信息, 是接入网域内的 Care-of-address , 实质是附着点的 AR的 地址。 L-CoA: is the L3 address information of each mobile node in the access domain. It is the Care-of-address in the access domain, which is the address of the AR of the attachment point.
Access-Network-Type 当前附着点的接入网类型。 接入网类型 中, 包含当前接入釆用的接入技术, 比 如 Wi-Fi, Wimax等。 Access-Network-Type The access network type of the current attachment point. In the access network type, it includes access technologies for current access, such as Wi-Fi, Wimax, etc.
C、 H-MMF:  C, H-MMF:
H-MMF 中包括原有的 H-LMF和新增加的 Handover管理实体 H-HMF,如图 6所示,图 6为本发明实施例中 H-MMF的组成示意图。  The original H-LMF and the newly added Handover management entity H-HMF are included in the H-MMF. As shown in FIG. 6, FIG. 6 is a schematic diagram of the composition of the H-MMF in the embodiment of the present invention.
其中, H-HMF为核心网域中 Handover事务的决策者,策略和命令 下发者; 并具备当前附着点周边 AR信息的查询功能: 通过与 L-HMF 的接口, 获得当前 P-AR标识, 并通过查询网络拓朴位置数据库 ( Topologic Location Database ) 和地理位置数据库 ( Geography Location Database ) , 获知周边相邻的 AR , 进而向信息服务器 ( Information Server )查询这些周边 AR的相关信息, 下发给 L-HMF。 如果网络 Topologic Location Database、 Geography LocationAmong them, the H-HMF is the decision maker of the Handover transaction in the core network, the policy and the command issuer; and the query function of the AR information around the current attachment point: The interface with the L-HMF is used to obtain the current P-AR identifier. And by querying the Topologic Location Database and the Geography Location Database, the neighboring ARs are known, and then the information server is accessed. (Information Server) Query the information about these surrounding ARs and send them to L-HMF. If the network Topologic Location Database, Geography Location
Database以及 Information Server配置在 L-NACF中, 那么上述过程 也可以在 L-HMF中完成。 Database and Information Server are configured in L-NACF, then the above process can also be done in L-HMF.
H-LMF作为层次化的用户位置管理功能,由 L-LMF提供表三所示 附着信息, 进行绑定:  As a hierarchical user location management function, H-LMF provides the attachment information shown in Table 3 by L-LMF to bind:
H-LMF绑定信息列表
Figure imgf000015_0001
其中, L-LMF Addr可作为查询进一步详细位置的索引。 H-LMF binding information list
Figure imgf000015_0001
Among them, L-LMF Addr can be used as an index to query further detailed location.
当 SCF需要查询 MN的当前位置时, 使用 L-HoA 地址或 MN When the SCF needs to query the current location of the MN, use the L-HoA address or MN
Identifier去 H-LMF查找; H-LMF根据绑定的信息, 到相应的 L-LMF 查询, 并获得 MN详细的 L2物理 /逻辑位置信息, 和 /或 L3逻辑位置信 息。 The Identifier goes to the H-LMF lookup; the H-LMF queries the corresponding L-LMF according to the information of the binding, and obtains the detailed L2 physical/logical position information of the MN, and/or the L3 logical position information.
基于上述介绍,在本发明的实施方式中,当 MN初始接入网络时, 首先在接入网域中进行初始附着过程; 初始附着完成后, 某一时刻, 当 MN需要进行移动切换时, 进行 N-AR的发现与选择, 并对选定的 N-AR进行连接预建立、 绑定更新、 资源接纳控制以及隧道预建立; 最后执行切换, 释放原附着点资源。  Based on the foregoing description, in the embodiment of the present invention, when the MN initially accesses the network, the initial attach process is first performed in the access network domain; after the initial attach is completed, at a certain time, when the MN needs to perform mobile handover, N-AR discovery and selection, and connection pre-establishment, binding update, resource admission control, and tunnel pre-establishment for the selected N-AR; finally performing handover to release the original attachment point resource.
下面通过实施例对本发明所述方案作进一步地详细说明: 图 7为本发明方法实施例的流程图。 4叚设本实施例中的 AM-FE 和 AR位于同一物理设备上。 如图 7所示, 包括:  The solution of the present invention will be further described in detail below by way of embodiments: Figure 7 is a flow chart of an embodiment of the method of the present invention. 4 The AM-FE and the AR in this embodiment are located on the same physical device. As shown in Figure 7, it includes:
步骤 s701 : MN初始接入网络,在接入网域中进行初始附着过程, 并建立基于 SIP的业务会话。  Step s701: The MN initially accesses the network, performs an initial attach process in the access network domain, and establishes a SIP-based service session.
图 8为本发明实施例中 MN进行初始附着的流程图, 包括: 步骤 s801: MN进行初始附着的全认证过程, 建立 S A。  FIG. 8 is a flowchart of initial attaching by a MN according to an embodiment of the present invention, including: Step s801: The MN performs a full authentication process of initial attach, and establishes S A.
图 9为本发明实施例中 MN进行初始附着的全认证并建立 SA的 流程图。 如图 9所示, 包括: FIG. 9 is a schematic diagram of the MN performing initial authentication and establishing an SA in the embodiment of the present invention; Flow chart. As shown in Figure 9, it includes:
步骤 s901: MN向 AM-FE中的 PAA发送认证请求( Authentication Request ) 消息。  Step s901: The MN sends an Authentication Request message to the PAA in the AM-FE.
步骤 s902 ~ s903: PAA通过 L-NACF向 H-NACF发送 AAA请 求消息。  Steps s902 ~ s903: The PAA sends an AAA request message to the H-NACF through the L-NACF.
步骤 s904: H-NACF进行认证, 并向 L-NACF发送 AAA响应消 息。  Step s904: The H-NACF performs authentication, and sends an AAA response message to the L-NACF.
H-NACF接收到 L-NACF发送来的 AAA请求后,由自身的 AAA After receiving the AAA request sent by the L-NACF, the H-NACF has its own AAA.
Server根据预先保存的 MN的 AAA-Key (密钥 ( MK ) )对 MN进行 认证, 并在认证完成后向 L-NACF发送 AAA响应消息, 其中携带有 认证过程中生成的主会话密钥 ( MSK )、 生成 MSK的随机数 Nonce 以及 MN的 User Profile文件。 The server authenticates the MN according to the AAA-Key (MK) of the pre-stored MN, and sends an AAA response message to the L-NACF after the authentication is completed, which carries the primary session key (MSK) generated during the authentication process. ), generate the MSK random number Nonce and the MN's User Profile file.
步骤 s905: L-NACF将 AAA响应消息中携带的 User Profile文件 和 MSK保存在 cache中,并向 AM-FE中的 PAA发送 AAA响应消息, 其中携带有 MSK和 Nonce , PAA得到 MSK。  Step s905: The L-NACF saves the User Profile file and the MSK carried in the AAA response message in the cache, and sends an AAA response message to the PAA in the AM-FE, where the MSK and the Nonce are carried, and the PAA obtains the MSK.
步骤 s906: PAA向 MN发送认证响应消息, 其中携带有 Nonce。 MN才艮据获取到的 Nonce以及预先保存的 MK, 生成 MSK。 步骤 s907: PAA与 MN之间建立基于 MSK的认证关系。  Step s906: The PAA sends an authentication response message to the MN, where the Nonce is carried. The MN generates the MSK based on the acquired Nonce and the pre-saved MK. Step s907: An MSK-based authentication relationship is established between the PAA and the MN.
MSK可被用于为随后的 Handover建立自举 ( Bootstrapping ) 的 SA。  The MSK can be used to build a Bootstrapping SA for subsequent Handovers.
步骤 s802: L-NACF为 MN配置初始附着的 L-HoA地址。  Step s802: The L-NACF configures the initially attached L-HoA address for the MN.
认证通过后, L-NACF为 MN配置当前接入网域支持的地址配置 方式, 如 IPv4、 IPv6 无状态 (Stateless )或 IPv6 有状态 ( Statefull ) 等。  After the authentication is passed, the L-NACF configures the MN to support the address configuration mode supported by the current access domain, such as IPv4, IPv6 stateless, or IPv6 stateful.
如果釆用 IPv4配置方式, 则 MN通过 DHCP v4配置过程, 完成 地址配置,并可由具备 L2 DPCH Relay的接入物理设备插入配置选项 ( Option ) 的方式, 携带 L2 Logic/Physical Access ID等信息。  If the IPv4 configuration mode is adopted, the MN completes the address configuration through the DHCP v4 configuration process, and can insert the configuration option (Option) by the access physical device with the L2 DPCH Relay to carry the L2 Logic/Physical Access ID and other information.
如果釆用 IPv6 Statefull配置方式, 则 MN通过使用 DHCP v6协 议从 L-NACF的 DHCP v6中获得地址配置。 上述两种配置方式的具体实现均为: MN向 L-NACF发送一个地 址请求; L-NACF为 MN回送提供的地址配置。 If the IPv6 Statefull configuration mode is used, the MN obtains the address configuration from the DHCP v6 of the L-NACF by using the DHCP v6 protocol. The specific implementations of the foregoing two configurations are: The MN sends an address request to the L-NACF; and the L-NACF provides the address configuration provided by the MN.
如果釆用 IPv6 Stateless配置方式,则 MN可根据 AR发布的接入 网域归属网络索引( Home-Nextwork-Prefix ),结合 MN的媒体接入控 制 ( MAC )地址生成 L-HoA。  If the IPv6 Stateless configuration mode is used, the MN can generate L-HoA according to the Home-Nextwork-Prefix of the AR and the Media Access Control (MAC) address of the MN.
步骤 s803: 为 MN选定 A-AR。  Step s803: Select A-AR for the MN.
本步骤中的 A-AR既可静态指定, 也可针对不同的 MN动态指定: 对于静态指定的情况, 针对不同的 MN固定使用一个指定的 A-AR, MN可以在完全接入认证或预接入认证过程中获得该指定 A-AR的地 址; 如果动态指定, 那么 MN在接入网域内的首个附着点 AR, 将被动 态地指定为该 MN在当前接入网域内的 A-AR。  The A-AR in this step can be statically specified or dynamically specified for different MNs. For statically specified cases, a specified A-AR is fixed for different MNs. The MN can be fully authenticated or pre-connected. The address of the designated A-AR is obtained in the authentication process; if dynamically specified, the first attachment point AR of the MN in the access domain will be dynamically designated as the A-AR of the MN in the current access domain.
步骤 s804: 在 L-LMF和 H-LMF中进行初始位置绑定。 Step s804 : Initial position binding is performed in the L-LMF and the H-LMF.
釆用层次化的位置绑定注册,分别在 L-LMF和 H-LMF中进行位置 绑定; 绑定注册由初始附着点 AR的 A-LMF代理发起。  层次 Hierarchical location binding registration, location binding in L-LMF and H-LMF respectively; binding registration is initiated by the A-LMF proxy of the initial attachment point AR.
A-LMF向 L-LMF发送位置绑定注册消息 ( LBR/LBU ) , 如果是 初次注册, 则发送 LBR消息, 如果是之后的注册, 则发送 LBU消息, LBR/LBU中携带的信息包括如表一所示的内容; L-LMF进而向 H-LMF发送 LBR/LBU消息, 其中携带的信息包括如表三所示的内容; LBU消息中还可进一步包括绑定的 Lifetime值, 当达到该值规定的时 间时,如果绑定还没有被更新, 则 L-LMF和 H-LMF中相应的绑定条目 将会被删除。相应地, H-LMF和 L-LMF回送绑定注册响应消息( LBA )。  The A-LMF sends a location binding registration message (LBR/LBU) to the L-LMF. If it is the first registration, it sends an LBR message. If it is a subsequent registration, it sends an LBU message. The information carried in the LBR/LBU includes the following table. The L-LMF further sends an LBR/LBU message to the H-LMF, where the information carried includes the content shown in Table 3. The LBU message may further include a bound Lifetime value, when the value is reached. At the specified time, if the binding has not been updated, the corresponding binding entries in L-LMF and H-LMF will be deleted. Accordingly, the H-LMF and L-LMF loopback binding registration response messages (LBAs).
步骤 s805: MN通过 SIP消息建立一个应用层业务会话。  Step s805: The MN establishes an application layer service session by using a SIP message.
本步骤的实现基于图 10所示系统: MN将 MN-Identifier和 L-HoA 携带在 SIP注册(Register ) 消息中, 向 SCF进行注册, 其间可完成 MN的业务层会话认证; 之后, MN向 SCF发送 SIP邀请 ( Invite ) 消息, 发起一个会话; SCF中的 P-CSCF接收到该 SIP Invite消息后, 通过 RACF向 C-BGF发起一个地址转换绑定。 C-BGF作为媒体流转 发代理, 对于 MN来说, C-BGF代表 CN, 而对于 CN侧, C-BGF代 表 MN; C-BGF发向 MN的媒体流路径为: CN ~> C-BGF ~> A- AR ~> P-AR - -〉匪。 The implementation of this step is based on the system shown in FIG. 10: The MN carries the MN-Identifier and the L-HoA in a SIP Register message, registers with the SCF, and can complete the service layer session authentication of the MN; after that, the MN sends the SCF to the SCF. A SIP Invite message is sent to initiate a session. After receiving the SIP Invite message, the P-CSCF in the SCF initiates an address translation binding to the C-BGF through the RACF. The C-BGF acts as a media stream forwarding proxy. For the MN, the C-BGF represents the CN, and for the CN side, the C-BGF represents the MN; the media stream path that the C-BGF sends to the MN is: CN ~> C-BGF ~> A-AR ~> P-AR - ->匪.
SIP会话使用 L-HoA作为会话地址, 当 MN在同一接入网域内作 移动切换时, SIP会话地址不会改变, SCF可通过查询 C-LMF和 L-LMF 来感知 MN位置的变化。  The SIP session uses L-HoA as the session address. When the MN moves in the same access domain, the SIP session address does not change. The SCF can query the C-LMF and L-LMF to detect the change of the MN location.
C-BGF是媒体流 RTP/RTCP Proxy, 完成媒体流的 IP地址转换; The C-BGF is a media stream RTP/RTCP Proxy, which performs IP address conversion of the media stream;
P-CSCF根据 C-BGF提供的地址转换绑定信息, 修改 SIP的 SDP地址信 息, 这样就向 CN屏蔽了 MN的地址位置信息, 满足了隐私要求, 同时 也避免了当 MN的 L-HoA变化时, 变化的 L-HoA需通知到 CN的情况。 The P-CSCF modifies the SDP address information of the SIP according to the address translation binding information provided by the C-BGF, so that the address location information of the MN is shielded from the CN, which satisfies the privacy requirement, and also avoids the L-HoA change of the MN. When the changed L-HoA needs to be notified to the CN.
步骤 s702: 发现和选择 N-AR。  Step s702: Discover and select the N-AR.
图 11为本发明实施例中发现和选择 N-AR的流程图。如图 11所 示, 包括:  FIG. 11 is a flowchart of discovering and selecting an N-AR according to an embodiment of the present invention. As shown in Figure 11, it includes:
步骤 si 101 : MN进行 L2扫描, 向周边 AR发送 L2侦测 4艮文 ( Proble )。  Step si 101: The MN performs L2 scanning, and sends L2 detection 4 Protext to the neighboring AR.
步骤 sll02: 各 AR向 MN回送 L2链路 Beacon消息, 其中携带 SSID、 BSID等接入附着点的物理标识信息。  Step sll02: Each AR sends an L2 link Beacon message to the MN, which carries the physical identification information of the access point, such as the SSID and the BSID.
步骤 sll03: MN通过当前 P-AR的 A-MMF中的 A-ACF, 利用 RtSolPr消息,向 L-HMF上报 MN当前附着点的相关信息,该 RtSolPr 消息中携带有从 Beacon信息获取到的周边接入点的物理标识 SSID、 BSID等信息。  Step sll03: The MN reports the information about the current attachment point of the MN to the L-HMF by using the RtSolPr message through the A-ACF in the A-MMF of the current P-AR, and the RtSolPr message carries the peripheral connection acquired from the Beacon information. The physical ID of the entry point, such as SSID and BSID.
步骤 s 1104: L-HMF从 H-MMF中查询或从本地获取当前附着点 的周边可用 AR及其相关信息, 作为备选 AR。  Step s 1104: The L-HMF queries the H-MMF or locally obtains the surrounding available AR of the current attachment point and its related information as an alternative AR.
步骤 sll05: L-HMF根据 MN当前附着点的 A-ACF上报的信息、 备选 AR信息以及配置的策略, 作出决策, 选定 N-AR。  Step sll05: The L-HMF makes a decision according to the information reported by the A-ACF of the current attachment point of the MN, the candidate AR information, and the configured policy, and selects the N-AR.
步骤 si 106: L-HMF将 N-AR的 IP地址、 MAC地址等相关信息 利用 PrRtAdv消息通过 MN当前附着点的 A-ACF下发给 MN。  Step si 106: The L-HMF sends the information about the IP address and the MAC address of the N-AR to the MN through the A-ACF of the current attachment point of the MN by using the PrRtAdv message.
由于通常 AM-FE与 AR共存于一个设备, 所以 MN等于是获得 了 N-AR的 PAA地址, 同时 P-AR的 PAA也获得了 N-AR的 PAA地 址。  Since the AM-FE and the AR coexist in one device, the MN is equal to the PAA address of the N-AR, and the PAA of the P-AR also obtains the PAA address of the N-AR.
步骤 s703: 建立 N-AR的预连接。 图 12为本发明方法实施例中建立 N-AR预连接的流程图。 如图 12所示, 包括: Step s703: Establish a pre-connection of the N-AR. FIG. 12 is a flowchart of establishing an N-AR pre-connection in an embodiment of a method according to the present invention. As shown in Figure 12, it includes:
步骤 S1201 : 进行附着预认证过程。  Step S1201: Perform an attach pre-authentication process.
本步骤中的预认证可以为直接预认证或间接预认证: 图 13为本 发明实施例中直接预认证示意图, 如图 13所示, 该认证方式中, 由 MN直接通过 N-AR所在的附着点发起预认证请求; 图 14为本发明 实施例中间接预认证示意图, 如图 14所示, 该认证方式中, MN通 过 P-AR所在的附着点向 N-AR转发认证请求。  The pre-authentication in this step may be direct pre-authentication or indirect pre-authentication. FIG. 13 is a schematic diagram of direct pre-authentication in the embodiment of the present invention. As shown in FIG. 13, in the authentication mode, the MN directly passes the attachment of the N-AR. A pre-authentication request is initiated by the point. FIG. 14 is a schematic diagram of the indirect pre-authentication in the embodiment of the present invention. As shown in FIG. 14, in the authentication mode, the MN forwards the authentication request to the N-AR through the attachment point where the P-AR is located.
当釆用直接预认证方式时, MN通过新接入链路, 向 N-AR发起 L2/L3层的认证请求; N-AR的 PAA从 L-NACF获得保存的 MSK密钥, 或者通过与 P-AR之间建立的安全通道获取 MSK。  When the direct pre-authentication mode is adopted, the MN initiates an L2/L3 layer authentication request to the N-AR through the new access link; the N-AR PAA obtains the saved MSK key from the L-NACF, or passes the P - Secure channel established between AR to obtain MSK.
当釆用间接预认证方式时, MN通过当前 P-AR的接入链路发起 L2/L3认证请求; P-AR中的 PAA根据 N-AR的地址, 向 N-AR的 PAA转 发 L3 认证请求; N-AR的 PAA以上下文传送( Context Transfer )方式 从 L-NACF获得保存的 MSK密钥,或者通过与 P-AR之间建立的安全通 道获取 MSK。  When the indirect pre-authentication mode is used, the MN initiates an L2/L3 authentication request through the access link of the current P-AR; the PAA in the P-AR forwards the L3 authentication request to the PAA of the N-AR according to the address of the N-AR. The N-AR's PAA obtains the saved MSK key from the L-NACF in a Context Transfer manner, or obtains the MSK through a secure channel established with the P-AR.
在预认证过程中, N-AR还会从 L-NACF或 P-AR获得配置选项, 如 N-AR所在接入网域的 IP地址配置模式; 如果是 IPv6 Stateless 的配 置模式, 则 N- AR获取到的为 Home-Network-Prefix。  During the pre-authentication process, the N-AR also obtains configuration options from the L-NACF or P-AR, such as the IP address configuration mode of the access domain where the N-AR is located. If it is the IPv6 Stateless configuration mode, the N-AR The obtained is Home-Network-Prefix.
图 15为本发明实施例中实现预认证的流程图。如图 15所示,包括: 步骤 sl501 : MN向 P-AR发送 L2/L3 预认证请求, 其中携带有 N-AR的标识。  FIG. 15 is a flowchart of implementing pre-authentication in an embodiment of the present invention. As shown in FIG. 15, the method includes the following steps: Step sl501: The MN sends an L2/L3 pre-authentication request to the P-AR, where the identifier of the N-AR is carried.
步骤 si 502 ~ si 503 : P-AR向 L-NACF查询是否可以将 MSK发往 N-AR; L-NACF向 P-AR回送响应消息。  Steps si 502 ~ si 503: The P-AR queries the L-NACF whether the MSK can be sent to the N-AR; the L-NACF sends a response message to the P-AR.
步骤 sl504 ~ sl505: 若查询结果显示 N-AR为合法 AR, 则 P-AR通 过与 N-AR之间建立的安全信道,将 MSK传送到 N-AR的 PAA,传送釆 用的协议可以是 802.1 f; 同时向 MN发送预认证成功消息。  Steps sl504 ~ sl505: If the query result shows that the N-AR is a legal AR, the P-AR transmits the MSK to the PAA of the N-AR through a secure channel established with the N-AR, and the protocol used for the transmission may be 802.1. f; Send a pre-authentication success message to the MN at the same time.
步骤 si 506: MN与 N-AR之间通过 MSK建立安全关联。  Step si 506: A security association is established between the MN and the N-AR through the MSK.
步骤 S1202 : 进行地址预配置。 本步骤中, 预配置的地址包括 L-CoA和 L-HoA。 其中 L-CoA地址 就是 N-AR的地址 , N-AR相当于 MIPV4中的外部代理 ( Foreign Agent ) 。 Step S1202: Perform address pre-configuration. In this step, the pre-configured addresses include L-CoA and L-HoA. The L-CoA address is the address of the N-AR, and the N-AR is equivalent to the foreign agent in the MIPV4.
至于 L-HoA 的配置, 当 MN在一个接入网域内移动时, L-HoA是 不变的; 只有当跨接入网域移动时, L-HoA 才会改变。 在每次附着 点切换时, 不管是在接入网域内还是在接入网域间切换, 都进行 L-HoA地址的配置; 当 MN在接入网域内移动时, 切换前后配置的 L-HoA地址都是相同的。 具体来说, 如果是 IPv4或 IPv6 Statefull 配置 模式, L-NACF 中的 DHCP Server对每次来自同一个 MN或 MAC地址 的地址请求, 都配置相同的地址; 如果是 IPv6 Stateless 配置模式, N-AR发送给 MN的 Home-Network-Prefix 与 P-AR发送的是相同的, MN使用相同的方式生成 L-HoA。  As for the L-HoA configuration, when the MN moves within an access domain, the L-HoA is unchanged; the L-HoA changes only when moving across the access domain. L-HoA address configuration is performed every time the attachment point is switched, whether it is in the access domain or between the access domains. When the MN moves within the access domain, the L-HoA configured before and after the handover The addresses are all the same. Specifically, in the IPv4 or IPv6 Statefull configuration mode, the DHCP server in the L-NACF configures the same address for each address request from the same MN or MAC address; if it is the IPv6 Stateless configuration mode, N-AR The Home-Network-Prefix sent to the MN is the same as the P-AR, and the MN generates the L-HoA in the same way.
步骤 sl203: 进行位置绑定更新以及资源预留。  Step sl203: Perform location binding update and resource reservation.
图 16为本发明实施例中实现位置绑定更新以及资源预留的流程 图。 如图 16所示 , N-AR中的 A-LMF代理 MN向 L-LMF发起位置 绑定更新请求 LBU; 或者, MN经 A-LMF中继, 直接向 L-LMF发 起位置绑定更新请求 LBU; 当 L-LMF收到一个 LBU消息时, 首先 根据 MN-Identifier查询是否已经存在同名的绑定条目,如果存在,则 L-LMF 先不修改这个绑定条目, 而是建立一个临时绑定条目; 已存 在的绑定条目对应 P-AR的附着位置, 临时绑定条目对应着 N-AR的 预附着位置; 临时绑定条目中的传送层 User-Profile项中的用户或业 务的资源配置参数, 会根据 N-AR对应的接入技术被选择或调整。  FIG. 16 is a flowchart of implementing location binding update and resource reservation in an embodiment of the present invention. As shown in FIG. 16, the A-LMF proxy MN in the N-AR initiates a location binding update request LBU to the L-LMF; or, the MN initiates a location binding update request LBU directly to the L-LMF via the A-LMF relay. When the L-LMF receives an LBU message, it first queries whether the binding entry with the same name already exists according to the MN-Identifier. If it exists, the L-LMF does not modify the binding entry first, but establishes a temporary binding entry. The existing binding entry corresponds to the attachment location of the P-AR, the temporary binding entry corresponds to the pre-attached location of the N-AR; the resource configuration parameter of the user or service in the transport layer User-Profile item in the temporary binding entry , will be selected or adjusted according to the access technology corresponding to the N-AR.
当 L-LMF 建立临时绑定条目时, 会把临时绑定条目的用户相关 信息推送到 RACF; RACF针对该临时条目进行资源预留并锁定, 并 把结果报告给 L-HMF。 具体来说, RACF根据 L-LMF推送的信息, 在 A-AR -> N-AR -> MN之间进行单向或双向的资源接纳预留并锁定; 资源预留锁定后, 向 L-NACF中的 L-HMF发送资源接纳预留成功消 息。  When the L-LMF establishes a temporary binding entry, the user-related information of the temporary binding entry is pushed to the RACF; the RACF reserves the resource for the temporary entry and locks it, and reports the result to the L-HMF. Specifically, the RACF performs one-way or two-way resource admission reservation and locks between A-AR -> N-AR -> MN according to the information pushed by the L-LMF; after the resource reservation is locked, to the L-NACF The L-HMF in the middle sends a resource admission reservation success message.
后续当移动切换完成后, L-LMF接收到 P-AR对原来绑定条目的 去绑定消息, 如设置 LBU的 Lifetime选项值为 0时, 就删去 P-AR原绑 定条目, 用临时绑定条目替代原条目成为正式的位置绑定条目; 当 L-LMF 把原绑定条目删除时, 会通知 RACF把原绑定对应的资源释 放。 Subsequent to the completion of the mobile handover, the L-LMF receives the P-AR pair of the original binding entry. To bind the message, if the value of the Lifetime option of the LBU is set to 0, delete the original P-AR binding entry, and replace the original entry with the temporary binding entry to become the official location binding entry; when L-LMF binds the original When the entry is deleted, the RACF is notified to release the resource corresponding to the original binding.
如果 RACF呈现如图 17所示的层次化结构, 即分成接入网域 If the RACF presents a hierarchical structure as shown in Figure 17, it is divided into access domains.
L-RACF和核心网域 H-RACF , 那么上面所介绍的 L-LMF向 RACF推送 用户信息是指向位于接入网域的 L-RACF推送用户信息。 L-RACF and core domain H-RACF, then the L-LMF introduced above pushes the user information to the RACF to point to the L-RACF push user information located in the access domain.
步骤 S1204: 进行隧道预建立。  Step S1204: Perform tunnel pre-establishment.
图 18为本发明实施例中实现隧道预建立的流程图。本实施例中的 隧道预建立过程分为两步,即 P-AR与 N-AR的隧道建立过程以及 A-AR 与 N-AR的隧道建立过程。 如图 18所示, 包括:  FIG. 18 is a flowchart of implementing pre-establishment of a tunnel in an embodiment of the present invention. The tunnel pre-establishment process in this embodiment is divided into two steps, namely, a tunnel establishment process of P-AR and N-AR, and a tunnel establishment process of A-AR and N-AR. As shown in Figure 18, it includes:
步骤 sl801 ~ sl805: L-HMF 分别向 P-AR中的 A-ADT 和 N-AR 中的 A-ADT下发指令, 在两者间建立媒体流传送隧道; 隧道建好后, P-AR同时向 MN和 N-AR转发媒体流。  Steps sl801 ~ sl805: The L-HMF sends an instruction to the A-ADT in the P-AR and the A-ADT in the N-AR to establish a media stream transmission tunnel between the two; after the tunnel is established, the P-AR is simultaneously The media stream is forwarded to the MN and the N-AR.
步骤 si 806 ~ si 810: L-HMF分别向 A-AR中的 A-ADT和 N-AR中的 Step si 806 ~ si 810: L-HMF to A-ADT and N-AR in A-AR respectively
A-ADT下发指令, 在两者间建立媒体流传送隧道。 The A-ADT issues an instruction to establish a media streaming tunnel between the two.
隧道建好后, N-AR同时从与 P-AR的隧道和与 A-AR的隧道接收媒 体流, 避免了在隧道切换时的丟包现象。  After the tunnel is established, the N-AR receives the media stream from both the P-AR tunnel and the A-AR tunnel, avoiding packet loss during tunnel switching.
步骤 sl811 ~ sl815: 经过预先设定的时长后, L-HMF将 P-AR与 N-AR的隧道删除。  Steps sl811 ~ sl815: After a preset period of time, the L-HMF deletes the P-AR and N-AR tunnels.
步骤 s704: 执行切换, 释放原附着点资源。  Step s704: Perform a handover to release the original attachment point resource.
图 19为本发明方法实施例中执行切换并释放原附着点资源的流 程图。 如图 19所示, 包括:  Figure 19 is a flow diagram of performing a handover and releasing an original attachment point resource in an embodiment of the method of the present invention. As shown in Figure 19, it includes:
步骤 sl901 ~ sl903: MN将默认路由修改为 N-AR的地址, 并开始 从 N-AR收发媒体流; 根据 L2链路状态指示, 例如 Link going down, 切断与 P-AR的链路连接。  Steps sl901 ~ sl903: The MN modifies the default route to the address of the N-AR, and starts to send and receive media streams from the N-AR; according to the L2 link state indication, for example, Link going down, the link connection with the P-AR is cut off.
步骤 s 1904 ~ s 1907: P- AR检测到 L2链路断开, 向 L-MMF中的 L-HMF发送断开报告, L-HMF经过短暂的定时后, 将 A-AR与 P-AR之 间的隧道删除。 此时的媒体流路径是: C-BGF -> A-AR -> N-AR ->ΜΝ , 其间的 A-AR -> N-AR为 IP隧道。 Step s 1904 ~ s 1907: The P-AR detects that the L2 link is disconnected, and sends a disconnection report to the L-HMF in the L-MMF. After the L-HMF is briefly timed, the A-AR and the P-AR are The tunnel between the two is deleted. The media stream path at this time is: C-BGF -> A-AR -> N-AR -> ΜΝ , and A-AR -> N-AR is an IP tunnel.
步骤 sl908 ~ sl909: P-AR中的 A-LMF向 L-MMF中的 L-LMF发送 LBU ( De-registration ) 消息; L-LMF删除原 P-AR的位置绑定条目, 并用 N-AR的位置绑定条目进行替代。  Steps sl908 ~ sl909: The A-LMF in the P-AR sends an LBU (De-registration) message to the L-LMF in the L-MMF; the L-LMF deletes the location binding entry of the original P-AR, and uses the N-AR The location binding entry is replaced.
步骤 s 1910 ~ s 1911: L-MMF中的 L-LMF向 L-RACF发送消息 , 指 示 RACF释放原 P-AR的相关资源; RACF根据 L-LMF的指示, 对 MN 在 N-AR附着点的资源进行预留执行和下发控制策略, 并释放原 P-AR 附着点的相关资源。  Step s 1910 ~ s 1911: The L-LMF in the L-MMF sends a message to the L-RACF, instructing the RACF to release the relevant resources of the original P-AR; the RACF according to the indication of the L-LMF, to the MN at the N-AR attachment point The resource performs reservation execution and delivery control policies, and releases related resources of the original P-AR attachment point.
需要说明的是, 上述实施例中所用的会话建立过程是基于 SIP的 It should be noted that the session establishment process used in the foregoing embodiment is based on SIP.
IP多媒体子系统(IMS )架构的, 对于非 IMS和非 SIP会话的情况, 只 是具体的会话建立过程不同, 其它各步骤与上述实施例相同。 In the case of the IP Multimedia Subsystem (IMS) architecture, for the case of non-IMS and non-SIP sessions, only the specific session establishment process is different, and the other steps are the same as the above embodiments.
基于上述方法, 图 20为本发明系统实施例的组成结构示意图, 如图 20所示, 该系统包括: MN21以及 NGN网络 22; 其中 NGN网 络 22中进一步包括位于核心网域 221以及接入网域 222的传送层控 制管理系统;  Based on the foregoing method, FIG. 20 is a schematic structural diagram of a system embodiment of the present invention. As shown in FIG. 20, the system includes: an MN21 and an NGN network 22; wherein the NGN network 22 further includes a core network domain 221 and an access network domain. 222 transport layer control management system;
MN21 , 用于接入 NGN网络 22 , 并在 NGN 网络 22中进行接入 网域 222 内的移动切换; 传送层控制管理系统, 用于将 MN21接入 NGN网络 22, 完成初始附着过程, 并在当 MN21需要进行接入网域 222内的移动切换时, 在当前接入网域 222内进行 N-AR的发现与选 择, 对选定的 N-AR进行连接预建立, 修改初始附着信息, 并执行切 换, 释放原附着点资源。  The MN21 is configured to access the NGN network 22, and perform mobility switching in the access domain 222 in the NGN network 22; a transport layer control management system, configured to connect the MN21 to the NGN network 22, complete the initial attach process, and When the MN 21 needs to perform the mobile handover in the access domain 222, the N-AR is discovered and selected in the current access domain 222, the connection pre-establishment is performed on the selected N-AR, and the initial attachment information is modified, and Perform a switch to release the original attachment point resource.
其中,位于核心网域 221的传送层控制管理系统进一步包括归属 网络附着控制功能实体 H-NACF2211、 归属资源接纳控制功能实体 H-RACF2212; 位于接入网域 222的传送层控制管理系统进一步包括 本地网络附着控制功能实体 L-NACF2221、本地资源接纳控制功能实 体 L-RACF2222;  The transport layer control management system located in the core network domain 221 further includes a home network attach control function entity H-NACF 2211 and a home resource admission control function entity H-RACF 2212. The transport layer control management system located in the access domain 222 further includes a local Network Attachment Control Function Entity L-NACF 2221, Local Resource Admission Control Function Entity L-RACF 2222;
H-NACF2211 , 用于在 MN21初始接入 NGN网络时, 对 MN21 进行完全认证,并将生成的 SA和用户配置信息下发给 L-NACF2221; 并根据从 L-NACF2221 获取到的当前附着点的周边接入点的物理标 识信息, 查询当前附着点周边的可用于移动切换的候选 AR信息;H-NACF2211, configured to perform full authentication of the MN21 when the MN21 initially accesses the NGN network, and deliver the generated SA and user configuration information to the L-NACF 2221; And querying, according to the physical identification information of the neighboring access point of the current attachment point obtained from the L-NACF 2221, candidate AR information applicable to the mobile handover around the current attachment point;
L-NACF2221 , 用于实现对 MN21在接入网域 222内的移动切换 进行管理控制,通过查询 H-NACF2211中的候选 AR信息以及 MN21 上报的周边接入点 L2侦测信息,根据已配置的选择策略,选择 N-AR; 根据接收自 H-NACF2211的 SA和用户配置信息进行快速预认证,并 为 MN21配置 L-HoA地址、 进行位置绑定更新, 以及在隧道预建立 和执行切换过程中指令 AM-FE2224建立或拆除媒体流隧道; The L-NACF 2221 is configured to implement management control on the mobile switching of the MN 21 in the access domain 222, and query the information of the candidate AR information in the H-NACF 2211 and the neighboring access point L2 reported by the MN 21 according to the configured information. Select a policy, select N-AR; perform fast pre-authentication based on the SA and user configuration information received from H-NACF2211, configure L-HoA address for MN21, perform location binding update, and during tunnel pre-establishment and execution handover Instructing the AM-FE 2224 to establish or tear down a media stream tunnel;
L-RACF2222 , 用于接收 L-NACF2221进行位置绑定更新后推送 来的相关用户信息, 对该用户信息进行资源预留和锁定, 并在切换过 程中根据 L-NACF2221的指示释放原附着点资源。  The L-RACF2222 is configured to receive related user information that is sent after the location binding update is performed by the L-NACF2221, perform resource reservation and locking on the user information, and release the original attachment point resource according to the indication of the L-NACF2221 during the handover process. .
H-RACF2212, 用于接收 SCF2214发出的地址绑定请求, 转发给 C-BGF2213; H-RACF2212 还可用于将来自 SCF2214的资源请求转 发 L-RACF2222。  H-RACF2212, used to receive the address binding request sent by the SCF2214, forwarded to the C-BGF2213; the H-RACF2212 can also be used to forward the resource request from the SCF2214 to the L-RACF2222.
H-NACF2211中保存并绑定 MN21当前所处接入网域地址,其中, The H-NACF2211 saves and binds the address of the access domain where the MN21 is currently located, where
MN21 当前所处接入网域地址包括 L-NACF2221 位置索引信息; L-NACF2221中保存并绑定 MN21在接入网域的当前位置信息; The current access domain address of the MN21 includes the L-NACF2221 location index information; the L-NACF2221 stores and binds the current location information of the MN21 in the access domain;
NGN网络 22中还包括业务层控制管理系统,该业务层控制管理 系统中进一步包括 SCF2214, 位于核心网域, 用于向 H-NACF2211 查询 MN21 的位置信息, 并接收 H-NACF2211 返回的查询结果; H-NACF2211 根据保存的 L-NACF2221 位置索引信息, 向相应的 L-NACF查询 MN21所在接入网域的当前位置信息,并将查询结果上 才艮给所述 SCF2214。 SCF2214 进一步用于, 在初始附着过程中, 向 H-RACF2212请求资源, 并通过 H-RACF2212向 C-BGF2213发起地 址转换绑定,实现 MN21在接入网域 222地址和核心网域 221地址的 转换。  The NGN network 22 further includes a service layer control management system, and the service layer control management system further includes an SCF 2214 located in the core network domain, configured to query the H-NACF 2211 for location information of the MN 21, and receive the query result returned by the H-NACF 2211; The H-NACF 2211 queries the corresponding L-NACF for the current location information of the access domain where the MN 21 is located according to the saved L-NACF2221 location index information, and sends the query result to the SCF 2214. The SCF 2214 is further configured to: request resources from the H-RACF 2212 in the initial attach process, and initiate address translation binding to the C-BGF 2213 through the H-RACF 2212, so as to implement the conversion of the MN 21 in the access domain 222 address and the core domain 221 address. .
上述 NGN 网络 22 接入网域 222 的传送层中进一步包括 A-AR2223 , 为 MN21在当前接入域内的媒体流转发锚点; A-AR2223 是一个预先指定的固定 AR, 或者是 MN21在接入网域内首次附着时 的附着点 AR。 上述 NGN网络 22核心网域 221的传送层中进一步包 括 C-BGF2213 ,为 MN21媒体数据流在核心域和接入域间的 L3输入 输出点。 此外, 接入网域 222中还进一步包括 AM-FE2224, 其具体 组成以及各组成部分的功能如图 5所示, 此处不再赘述。 The transport layer of the NGN network 22 access network domain 222 further includes an A-AR 2223 for forwarding the anchor point of the media stream in the current access domain of the MN 21; the A-AR 2223 is a pre-designated fixed AR, or the MN 21 is accessing When the domain is first attached The attachment point AR. The transport layer of the core network domain 221 of the NGN network 22 further includes a C-BGF 2213, which is an L3 input/output point between the core domain and the access domain of the MN21 media data stream. In addition, the access network 222 further includes an AM-FE 2224, and its specific components and functions of the components are as shown in FIG. 5, and details are not described herein again.
图 21 为本发明实施例中 L-NACF的组成结构示意图, 如图 21 所示, L-NACF2221 中具体包括接入网域的本地移动管理功能实体 L-MMF2101 , AAA服务器 Server2102 以及网络地址配置功能实体 NAC-FE2103 ; 其中 L-MMF2101 中进一步包括: 接入网域的本地切 换管理功能实体 L-HMF21011 和接入网域的本地位置管理功能实体 L-LMF21012;  FIG. 21 is a schematic structural diagram of a structure of an L-NACF according to an embodiment of the present invention. As shown in FIG. 21, the L-NACF 2221 includes a local mobility management function entity L-MMF2101, an AAA server, and a network address configuration function of the access domain. Entity NAC-FE2103; wherein L-MMF2101 further comprises: a local handover management function entity L-HMF21011 of the access domain and a local location management function entity L-LMF21012 of the access domain;
L-HMF21011 , 用于通过查询 H-NACF2211中的候选 AR信息以 及 MN21上报的周边接入点 L2侦测信息, 根据已配置的选择策略, 选择 N-AR, 并将选定的 N-AR地址信息下发给 MN21 ; 并在隧道预 建立和执行切换过程中指令 AM-FE2224 建立或拆除媒体流隧道; L-LMF21012 , 用于在 AM-FE2224 的指示下, 进行位置绑定更新; AAA Server2102,用于根据接收自 H-NACF2211的 SA和用户配置信 息进行快速预认证; NAC-FE2103 ,可作为 DHCP Server,用于为 MN21 配置 L-HoA地址及接入网络配置参数。  The L-HMF 21011 is configured to query the candidate AR information in the H-NACF 2211 and the neighboring access point L2 detection information reported by the MN 21, select an N-AR according to the configured selection policy, and select the selected N-AR address. The information is sent to the MN 21; and the AM-FE 2224 is instructed to establish or remove the media stream tunnel during the tunnel pre-establishment and execution handover; L-LMF 21012 is used to perform location binding update under the indication of the AM-FE 2224; AAA Server 2102, It is used to perform fast pre-authentication based on the SA and user configuration information received from the H-NACF2211. The NAC-FE2103 can be used as a DHCP server to configure the L-HoA address and access network configuration parameters for the MN21.
图 22为本发明实施例中 H-NACF的组成结构示意图。 如图 22 所示, H-NACF2211 中具体包括核心网域的移动管理功能实体 H-MMF2201和 AAA服务器 Serve2202;所述 H-MMF2201中进一步 包括:核心网域的移动切换管理实体 H-HMF22011和核心网域的归属 位置管理功能实体 H-LMF22012;  FIG. 22 is a schematic structural diagram of a structure of an H-NACF according to an embodiment of the present invention. As shown in FIG. 22, the H-NACF 2211 specifically includes a mobility management function entity H-MMF2201 and an AAA server Serve2202 of the core domain; the H-MMF 2201 further includes: a mobile switching management entity H-HMF22011 and a core of the core domain. The home location management function entity of the domain H-LMF22012;
AAA Server2202, 用于在 MN21初始接入网络时, 对 MN21进 行完全认证, 并将生成的 SA和用户配置信息下发给 L-NACF2221 ; H-HMF22011 , 用于根据从 L-NACF2221获取到的当前附着点 P-AR 的标识信息,查询当前附着点周边的可用于移动切换的候选 AR信息; H-LMF22012 , 用于保存并绑定 L-NACF2221提供的附着信息。  AAA Server2202, configured to perform full authentication on the MN21 when the MN21 initially accesses the network, and send the generated SA and user configuration information to the L-NACF2221; H-HMF22011, according to the current obtained from the L-NACF2221 The identification information of the attachment point P-AR is used to query candidate AR information that can be used for mobile handover around the current attachment point. H-LMF22012 is used to save and bind the attachment information provided by the L-NACF2221.
图 20、 21和 22所示仅为本发明实施例, 在实际应用中, 图 20、 21和 22中还可能会包括其它应用实体, 具体请参照图 4, 此处不再 赘述。 20, 21 and 22 are only examples of the present invention. In practical applications, FIG. Other application entities may also be included in 21 and 22. For details, please refer to FIG. 4, and details are not described herein again.
需要说明的是,本发明实施例所述方案不仅适用于本发明实施例 所述的网络架构, 在其它具备类似结构的网络架构中将同样适用, 只 是在本领域技术人员能够预知的范围内,具体的实现细节上可能略有 区别。  It should be noted that the solution in the embodiment of the present invention is not only applicable to the network architecture described in the embodiment of the present invention, but also applicable to other network architectures having similar structures, but only within a range that can be predicted by those skilled in the art. The specific implementation details may differ slightly.
可见, 本发明实施例的技术方案中,将现有 FMIP、 HMIP、 SMIP 和 PMIP协议中快速、丟包少、 层次化以及对 MN的改动小等优点应 用到扩展后的 NGN架构中, 与 NGN的层次化架构进行有机融合, 从而实现了在 NGN架构中接入域内, 即 Intra-AN模式的无缝切换。  It can be seen that, in the technical solution of the embodiment of the present invention, the advantages of fast, packet loss, layering, and small changes to the MN in the existing FMIP, HMIP, SMIP, and PMIP protocols are applied to the extended NGN architecture, and NGN. The hierarchical architecture is organically integrated, thereby achieving seamless switching within the access domain, that is, the Intra-AN mode in the NGN architecture.
综上所述, 以上仅为本发明的较佳实施例而已, 并非用于限定本 发明的保护范围。 凡在本发明的精神和原则之内, 所作的任何修改、 等同替换、 改进等, 均应包含在本发明的保护范围之内。  In conclusion, the above is only a preferred embodiment of the present invention and is not intended to limit the scope of the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.

Claims

权利要求 Rights request
1、 一种实现移动切换的方法, 其特征在于, 当已经在接入网域 中完成初始附着的移动节点 MN, 需要在接入网域内从当前接入路由 器 P-AR移动切换到目标接入路由器 N-AR时, 该方法包括: A method for implementing mobile handover, characterized in that, when an initial attached mobile node MN has been completed in an access network domain, it is required to switch from the current access router P-AR to the target access within the access network domain. When the router is N-AR, the method includes:
在接入网域内选择目标接入路由器 N-AR;  Select the target access router N-AR in the access domain;
对选定的 N-AR进行连接预建立,在所述连接预建立过程中修改 初始附着信息;  Performing connection pre-establishment on the selected N-AR, and modifying the initial attachment information during the connection pre-establishment process;
连接预建立完成,执行切换,释放当前接入路由器 P-AR的资源。  After the connection pre-establishment is completed, the handover is performed, and the resources of the current access router P-AR are released.
2、 如权利要求 1所述的方法, 其特征在于, 所述初始附着具体 包括: 2. The method according to claim 1, wherein the initial attachment specifically comprises:
所述 MN进行初始附着的全认证, 建立安全联盟 SA;  The MN performs full authentication of the initial attachment, and establishes a security association SA;
为所述 MN配置初始附着的接入网域内的本地归属地址 L-HoA; 为所述 MN选定本地锚点路由器 A-AR;  Configuring a local home address L-HoA in the initially attached access domain for the MN; selecting a local anchor router A-AR for the MN;
在接入网域的本地位置管理功能实体 L-LMF 以及核心网域的归 属位置管理功能实体 H-LMF中进行初始位置绑定。  The initial location binding is performed in the local location management function entity L-LMF of the access domain and the home location management function entity H-LMF of the core domain.
3、 如权利要求 2所述的方法, 其特征在于, 所述选择 N-AR, 具体包括:  The method of claim 2, wherein the selecting the N-AR comprises:
所述 MN向周边接入路由器 AR发送 L2侦测报文, 接收所述周 边 AR回送的响应 ^艮文, 并将所述响应 ^艮文中的周边 AR物理标识信 息携带在 P-AR相关信息中, 上^艮给接入网域的本地切换管理功能实 体 L-HMF;  The MN sends an L2 detection message to the neighboring access router AR, receives the response message sent by the neighboring AR, and carries the neighboring AR physical identification information in the response message in the P-AR related information. , the local switching management function entity L-HMF to the access domain;
所述 L-HMF从核心网域的移动管理功能实体 H-MMF中查询或 从本地获取 P-AR的周边 AR , 作为备选 AR;  The L-HMF queries from the mobility management function entity H-MMF of the core domain or obtains the neighboring AR of the P-AR locally as an alternative AR;
所述 L-HMF根据所述 MN上报的 P-AR相关信息、 备选 AR信 息以及预先配置的策略,选择所述备选 AR中的一个作为所述 N-AR; 所述 L-HMF 将包含有所述 N-AR相关信息的消息下发给所述 匪。  The L-HMF selects one of the candidate ARs as the N-AR according to the P-AR related information, the candidate AR information, and the pre-configured policy reported by the MN; the L-HMF will include A message having the N-AR related information is sent to the UI.
4、如权利要求 3所述的方法, 其特征在于, 所述对选定的 N-AR 进行连接预建立, 在所述连接预建立过程中修改初始附着信息, 具体 包括: 4. The method of claim 3, wherein said pair of selected N-ARs The connection pre-establishment is performed, and the initial attachment information is modified during the connection pre-establishment process, which specifically includes:
对所述 N-AR分别进行附着预认证、 地址预配置、位置绑定更新 和资源预留, 以及隧道预建立。  Attachment pre-authentication, address pre-configuration, location binding update and resource reservation, and tunnel pre-establishment are performed on the N-AR.
5、 如权利要求 4所述的方法, 其特征在于, 所述附着预认证为 直接附着预认证或间接附着预认证; 其中, 所述直接附着预认证为所 述 MN直接通过所述 N-AR所在的附着点发起认证请求;所述间接附 着预认证为所述 MN通过当前接入路由器 P-AR所在的附着点向所述 N-AR转发认证请求。  The method according to claim 4, wherein the attach pre-authentication is a direct attach pre-authentication or an indirect attach pre-authentication; wherein the direct attach pre-authentication is that the MN directly passes the N-AR The attaching point is located to initiate an authentication request; the indirect attach pre-authentication is that the MN forwards the authentication request to the N-AR through an attachment point where the current access router P-AR is located.
6、 如权利要求 5所述的方法, 其特征在于, 所述地址预配置中 预配置的地址包括接入网域内的本地归属地址 L-HoA以及接入网域 内的本地转交地址 L-CoA; 其中, 所述 L-CoA为所述 N-AR的地址。  The method according to claim 5, wherein the pre-configured address in the address pre-configuration includes a local home address L-HoA in the access domain and a local care-of address L-CoA in the access domain; The L-CoA is an address of the N-AR.
7、 如权利要求 6所述的方法, 其特征在于, 所述位置绑定更新 和资源预留, 具体包括:  The method of claim 6, wherein the location binding update and the resource reservation comprise:
所述 N-AR对应的接入附着点位置管理功能实体 A-LMF, 代理 所述 MN向接入网域的本地位置管理功能实体 L-LMF发起位置绑定 更新请求; 或者, 所述 MN经所述 A-LMF中继 , 直接向所述 L-LMF 发起位置绑定更新请求;  The N-AR corresponding access point location management function entity A-LMF, the MN is initiating a location binding update request to the local location management function entity L-LMF of the access domain; or, the MN The A-LMF relay directly initiates a location binding update request to the L-LMF;
所述 L-LMF查询是否已经存在同名的绑定条目, 如果存在, 所 述 L-LMF建立临时绑定条目, 所述临时绑定条目对应所述 N-AR的 预附着位置;  The L-LMF queries whether a binding entry with the same name already exists, and if so, the L-LMF establishes a temporary binding entry, where the temporary binding entry corresponds to the pre-attached location of the N-AR;
所述 L-LMF将所述临时绑定条目的用户信息推送到 RACF; 所 述 RACF根据推送的信息进行资源预留并锁定。  The L-LMF pushes the user information of the temporary binding entry to the RACF; the RACF performs resource reservation and lock according to the pushed information.
8、 如权利要求 7所述的方法, 其特征在于, 所述隧道预建立, 具体包括:  The method of claim 7, wherein the pre-establishing the tunnel comprises:
所述 L-HMF分别向 P-AR和所述 N-AR下发指令, 在所述 P-AR 和所述 N-AR之间建立媒体流传送隧道;  The L-HMF sends an instruction to the P-AR and the N-AR, respectively, to establish a media stream transmission tunnel between the P-AR and the N-AR;
所述 L-HMF分别向 A-AR和所述 N-AR下发指令,在所述 A-AR 和所述 N-AR之间建立媒体流传送隧道; 所述 N-AR同时从与所述 P-AR之间的隧道以及与所述 A-AR之 间的隧道接收媒体流。 The L-HMF sends an instruction to the A-AR and the N-AR, respectively, to establish a media stream transmission tunnel between the A-AR and the N-AR; The N-AR simultaneously receives a media stream from a tunnel between the P-AR and a tunnel with the A-AR.
9、 如权利要求 8所述的方法, 其特征在于, 所述执行切换, 释 放原附着点资源, 具体包括:  The method according to claim 8, wherein the performing the switching to release the original attachment point resource comprises:
所述 MN将默认路由修改为所述 N-AR的地址, 从所述 N-AR收发 媒体流, 切断与所述 P-AR的二层 L2链路连接;  The MN modifies the default route to the address of the N-AR, and disconnects the Layer 2 L2 link with the P-AR from the N-AR transceiver media stream;
所述 P-AR检测到 L2链路断开, 向所述 L-HMF发送断开报告, 所 述 L-HMF删除所述 A-AR与所述 P-AR之间的隧道;  The P-AR detects that the L2 link is disconnected, and sends a disconnection report to the L-HMF, where the L-HMF deletes the tunnel between the A-AR and the P-AR;
所述 P-AR通知所述 L-LMF删除原 P-AR的位置绑定条目, 用所述 N-AR的位置绑定条目进行替代;  The P-AR notifies the L-LMF to delete the location binding entry of the original P-AR, and replaces the location binding entry of the N-AR;
所述 RACF根据所述 L-LMF的指示, 对 MN在所述 N-AR附着点的 资源进行预留执行和下发控制策略, 并释放所述 MN在原 P-AR附着点 的相关资源。  And the RACF performs a reservation execution and a delivery control policy on the resource of the MN at the N-AR attachment point according to the indication of the L-LMF, and releases the related resource of the MN at the original P-AR attachment point.
10、 一种实现移动切换的系统, 其特征在于, 该系统包括: 移动 节点 MN以及下一代网络 NGN; 所述 NGN网络中包括位于核心网 域以及接入网域的传送层控制管理系统;  A system for implementing mobile handover, the system comprising: a mobile node MN and a next generation network NGN; the NGN network includes a transport layer control management system located in a core network domain and an access network domain;
所述传送层控制管理系统, 用于将所述 MN接入所述接入网域, 完成初始附着; 当所述 MN 需要在接入网域内从当前接入路由器 P-AR移动切换到目标接入路由器 N-AR时, 在所述接入网域内选择 目标接入路由器 N-AR, 对选定的 N-AR进行连接预建立, 在所述连 接预建立过程中修改初始附着信息, 并在连接预建立完成后, 执行切 换, 释放当前接入路由器 P-AR的资源。  The transport layer control management system is configured to access the access network to complete the initial attach; when the MN needs to switch from the current access router P-AR to the target in the access domain When the router is in the N-AR, the target access router N-AR is selected in the access domain, the connection pre-establishment is performed on the selected N-AR, and the initial attachment information is modified in the connection pre-establishment process, and After the connection pre-establishment is completed, the handover is performed to release the resources of the current access router P-AR.
11、 如权利要求 10所述的系统, 其特征在于, 所述位于核心网 域的传送层控制管理系统包括归属网络附着控制功能实体 H-NACF; 所述位于接入网域的传送层控制管理系统包括本地网络附着控制功 能实体 L-NACF和本地资源接纳控制功能实体 L-RACF;  The system according to claim 10, wherein the transport layer control management system located in the core domain includes a home network attach control function entity H-NACF; and the transport layer control management located in the access domain The system includes a local network attach control function entity L-NACF and a local resource admission control function entity L-RACF;
所述 H-NACF, 用于在所述 MN接入所述接入网域时, 对所述 MN进行完全认证, 并将生成的安全联盟 SA和用户配置信息下发给 所述 L-NACF;根据从所述 L-NACF获取到的当前附着点周边接入点 的物理标识信息,查询所述当前附着点周边的可用于移动切换的候选The H-NACF, configured to perform the full authentication on the MN when the MN accesses the access domain, and send the generated SA and user configuration information to the L-NACF; According to the current attachment point peripheral access point obtained from the L-NACF Physical identification information, querying candidates for the mobile handover around the current attachment point
AR信息; 所述 L-NACF, 用于通过查询所述 H-NACF中的候选 AR 信息以及 MN上报的周边接入点二层 L2侦测信息, 根据已配置的选 择策略, 选择所述 N-AR; 根据接收自所述 H-NACF的 SA和用户配 置信息进行快速预认证,为所述 MN配置接入网域内的本地归属地址 L-HoA、 进行位置绑定更新, 以及在隧道预建立和执行切换过程中指 令接入管理功能实体 AM-FE建立媒体流隧道;; The L-NACF is configured to query the candidate AR information in the H-NACF and the L2 detection information of the neighboring access point reported by the MN, and select the N- according to the configured selection policy. The AR performs fast pre-authentication according to the SA and the user configuration information received from the H-NACF, configures the local home address L-HoA in the access domain for the MN, performs location binding update, and pre-establishes the tunnel in the tunnel. The instruction access management function entity AM-FE establishes a media stream tunnel during the handover process;
所述 L-RACF,用于接收所述 L-NACF2221进行位置绑定更新后 推送来的相关用户信息, 对该用户信息进行资源预留和锁定, 并在切 换过程中根据所述 L-NACF 的指示释放当前接入路由器 P-AR的资 源。  The L-RACF is configured to receive related user information that is sent after the location binding update is performed by the L-NACF 2221, perform resource reservation and locking on the user information, and according to the L-NACF in the handover process. Indicates to release the resources of the current access router P-AR.
12、 如权利要求 11所述的系统, 其特征在于, 所述 H-NACF还 用于保存并绑定所述 MN 当前所处接入网域地址, 其中, 所述 MN 当前所处接入网域地址包括所述 L-NACF 位置索引信息; 所述 L-NACF还用于保存并绑定所述 MN在接入网域的当前位置信息; 所述 NGN网络中进一步包括业务层控制管理系统, 所述业务层 控制管理系统中包括业务控制层 SCF, 所述 SCF位于核心网域, 用 于向所述 H-NACF查询所述 MN的位置信息, 并接收所述 H-NACF 返回的查询结果;  The system of claim 11, wherein the H-NACF is further configured to save and bind an access network address where the MN is currently located, where the MN is currently located in the access network. The domain address includes the L-NACF location index information; the L-NACF is further configured to save and bind current location information of the MN in the access domain; the NGN network further includes a service layer control management system, The service layer control management system includes a service control layer SCF, where the SCF is located in a core network domain, and is configured to query the H-NACF for location information of the MN, and receive a query result returned by the H-NACF;
所述 H-NACF 根据保存的 L-NACF 位置索引信息, 向相应的 The H-NACF according to the saved L-NACF location index information, corresponding to
L-NACF查询所述 MN所在接入网域的当前位置信息,并将查询结果 上报给所述 SCF。 The L-NACF queries the current location information of the access domain where the MN is located, and reports the query result to the SCF.
13、 如权利要求 12所述的系统, 其特征在于, 所述位于核心网 域的传送层控制管理系统还包括归属资源接纳控制功能实体 H-RACF; 所述 NGN 网络还包括位于核心网域以及接入网域的传送 层, 所述位于核心网域的传送层进一步包括核心网边界网关 C-BGF; 所述 SCF还用于在初始附着过程中,向所述 H-RACF请求资源, 并通过所述 H-RACF 向所述 C-BGF 发起地址转换绑定, 实现所述 MN在接入网域地址和核心网域地址的转换。 The system according to claim 12, wherein the transport layer control management system located in the core domain further includes a home resource admission control function entity H-RACF; the NGN network further includes a core network domain and Accessing the transport layer of the network domain, the transport layer located in the core network domain further includes a core network border gateway C-BGF; the SCF is further configured to request resources from the H-RACF during the initial attach process, and pass the The H-RACF initiates address translation binding to the C-BGF, and implements conversion of the MN in the access domain address and the core domain address.
14、 如权利要求 13所述的系统, 其特征在于, 所述位于接入网 域的传送层进一步包括本地锚点路由器 A-AR, 所述 A-AR 为所述 MN在当前接入网域内的媒体流转发锚点; The system according to claim 13, wherein the transport layer located in the access domain further comprises a local anchor router A-AR, and the A-AR is the MN in the current access domain Media stream forwarding anchor point;
所述 A-AR是预先指定的 AR, 或者是所述 MN在接入网域内首 次附着时所在附着点的 AR。  The A-AR is a pre-designated AR, or an AR of an attachment point where the MN is attached for the first time in the access domain.
15、 一种本地网络附着控制功能实体 L-NACF, 其特征在于, 所 述 L-NACF中包括接入网域的本地移动管理功能实体 L-MMF; 所述 L-MMF 中进一步包括: 接入网域的本地切换管理功能实体 L-HMF 和接入网域的本地位置管理功能实体 L-LMF;  A local network attachment control function entity L-NACF, wherein the L-NACF includes a local mobility management function entity L-MMF of the access domain; the L-MMF further includes: The local handover management function entity L-HMF of the domain and the local location management function entity L-LMF of the access domain;
所述 L-HMF ,用于通过查询归属网络附着控制功能实体 H-NACF 中的候选 AR信息以及移动节点 MN上报的周边接入点 L2侦测信息, 根据已配置的选择策略, 选择目标接入路由器 N-AR, 向所述 MN下 发所述 N-AR的地址信息;在隧道预建立和执行切换过程中指令接入 附着点移动管理功能实体 AM-FE建立媒体流隧道;  The L-HMF is configured to query the candidate AR information in the home network attachment control function entity H-NACF and the neighboring access point L2 detection information reported by the mobile node MN, and select the target access according to the configured selection policy. a router N-AR, which sends the address information of the N-AR to the MN; and instructs the access point mobility management function entity AM-FE to establish a media stream tunnel during the tunnel pre-establishment and execution handover;
所述 L-LMF,用于在所述 AM-FE的指示下,进行位置绑定更新。 The L-LMF is configured to perform location binding update under the indication of the AM-FE.
16、如权利要求 15所述的 L-NACF, 其特征在于, 所述 L-NACF 还包括 AAA服务器 Server以及网络地址配置功能实体 NAC-FE;。 The L-NACF according to claim 15, wherein the L-NACF further includes an AAA server Server and a network address configuration function entity NAC-FE;
所述 AAA Server,用于根据接收自所述 H-NACF的安全联盟 SA 和用户配置信息进行快速预认证;  The AAA server is configured to perform fast pre-authentication according to the SA and the user configuration information received from the H-NACF;
所述 NAC-FE,用于为所述 MN配置接入网域内的本地归属地址 The NAC-FE is configured to configure, for the MN, a local home address in an access domain.
L-HoA地址及接入网络配置参数。 L-HoA address and access network configuration parameters.
17、 一种归属网络附着控制功能实体 H-NACF, 其特征在于, 所 述 H-NACF 中包括核心网域的移动管理功能实体 H-MMF; 所述 H-MMF中进一步包括: 核心网域的移动切换管理实体 H-HMF和核 心网域的归属位置管理功能实体 H-LMF;  A home network attachment control function entity H-NACF, wherein the H-NACF includes a mobility management function entity H-MMF of the core network domain; the H-MMF further includes: a core network domain a mobile handover management entity H-HMF and a home location management function entity H-LMF of the core domain;
所述 H-HMF , 用于根据从本地网络附着控制功能实体 L-NACF 获取到的当前附着点周边接入点物理标识信息,查询所述当前附着点 周边的可用于移动切换的候选 AR信息;  The H-HMF is configured to query, according to the current attachment point physical point information of the current attachment point obtained from the local network attachment control function entity L-NACF, candidate AR information applicable to the mobile handover around the current attachment point;
所述 H-LMF, 用于保存并绑定所述 L-NACF提供的附着信息。 The H-LMF is configured to save and bind the attachment information provided by the L-NACF.
18、如权利要求 17所述的 H-NACF,其特征在于,所述 H-NACF 还包括 AAA服务器 Server; The H-NACF according to claim 17, wherein the H-NACF further includes an AAA server Server;
所述 AAA Server,用于在所述 MN初始接入网络时 ,对所述 MN 进行完全认证, 并将生成的安全联盟 SA和用户配置信息下发给本地 网络附着控制功能实体 L-NACF。  The AAA server is configured to perform complete authentication on the MN when the MN initially accesses the network, and send the generated SA and user configuration information to the local network attach control function entity L-NACF.
19、 一种接入管理功能实体 AM-FE, 其特征在于, 所述 AM-FE 中进一步包括接入移动管理功能实体 A-MMF; 所述 A-MMF中具体 包括接入附着点位置管理功能实体 A-LMF、 接入附着点控制功能实 体 A-ACF以及接入附着点媒体流数据转发功能实体 A-DTF;  An access management function entity AM-FE, wherein the AM-FE further includes an access mobility management function entity A-MMF; the A-MMF specifically includes an access attachment point location management function. Entity A-LMF, access point control function entity A-ACF, and access point media stream data forwarding function entity A-DTF;
所述 A-LMF, 用于根据移动节点 MN的位置和身份标识信息, 代理所述移动节点 MN向接入网域的本地位置管理功能实体 L-LMF 发送位置绑定或位置更新绑定消息;  The A-LMF, configured to send, according to the location and identity information of the mobile node MN, the mobile node MN to send a location binding or location update binding message to the local location management function entity L-LMF of the access domain;
所述 A-ACF,用于将所述 MN的二层 L2链路状态参数和触发消 息上 4艮给接入网域的本地切换管理功能实体 L-HMF ; 接收所述 L-HMF的控制指令, 控制 L2切换;  The A-ACF is configured to send the Layer 2 L2 link state parameter and the trigger message of the MN to the local handover management function entity L-HMF of the access domain; and receive the L-HMF control instruction. , control L2 switching;
所述 A-DTF , 用于接收所述 L-HMF的指令, 在当前接入路由器 P-AR、目标接入路由器 N-AR以及本地锚点路由器 A-AR之间建立媒 体流隧道。  The A-DTF is configured to receive the L-HMF command, and establish a media flow tunnel between the current access router P-AR, the target access router N-AR, and the local anchor router A-AR.
PCT/CN2008/072158 2007-08-28 2008-08-27 Method, system and appratus for implementing mobile handover WO2009030152A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN200710148417.2 2007-08-28
CN2007101484172A CN101378588B (en) 2007-08-28 2007-08-28 Method, system and equipment for implementing mobile switch

Publications (1)

Publication Number Publication Date
WO2009030152A1 true WO2009030152A1 (en) 2009-03-12

Family

ID=40421869

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2008/072158 WO2009030152A1 (en) 2007-08-28 2008-08-27 Method, system and appratus for implementing mobile handover

Country Status (2)

Country Link
CN (1) CN101378588B (en)
WO (1) WO2009030152A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103686624A (en) * 2012-09-12 2014-03-26 中国移动通信集团公司 Message pushing method and device and service platform
CN114422937A (en) * 2017-11-30 2022-04-29 华为技术有限公司 Configuration and management system and method for positioning reference signals on demand

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9769646B2 (en) * 2015-02-26 2017-09-19 T-Mobile Usa, Inc. Realm translation in an IMS network
CN111479220B (en) * 2019-01-24 2022-02-11 中国移动通信有限公司研究院 Positioning method and system
CN115065719B (en) * 2022-06-09 2023-07-14 深圳创维数字技术有限公司 Equipment interactive access method and device, electronic equipment and readable storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20010046223A1 (en) * 2000-03-08 2001-11-29 Malki Karim El Hierarchical mobility management for wireless networks
EP1694082A1 (en) * 2003-12-11 2006-08-23 Matsushita Electric Industrial Co., Ltd. Communication handover method, communication system, communication message processing method, and communication message processing program
CN1878389A (en) * 2005-06-10 2006-12-13 华为技术有限公司 Next generation network service switching method and its device
CN101005444A (en) * 2006-06-24 2007-07-25 华为技术有限公司 Method and device for quick switching

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20010046223A1 (en) * 2000-03-08 2001-11-29 Malki Karim El Hierarchical mobility management for wireless networks
EP1694082A1 (en) * 2003-12-11 2006-08-23 Matsushita Electric Industrial Co., Ltd. Communication handover method, communication system, communication message processing method, and communication message processing program
CN1878389A (en) * 2005-06-10 2006-12-13 华为技术有限公司 Next generation network service switching method and its device
CN101005444A (en) * 2006-06-24 2007-07-25 华为技术有限公司 Method and device for quick switching

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
"Telecommunications and Internet converged Services and Protocols for Advanced Networking (TISPAN); Network Attachment: Roaming in TISPAN NGN Network Accesses;", INTERFACE PROTOCOL DEFINITION; ETSI TS 183 020 V1.1.1., March 2006 (2006-03-01), pages 1 - 17 *
R. KOODLI, ED.RFC4068 FAST HANDOVERS FOR MOBILE IPV, 6 July 2005 (2005-07-06), pages 2 - 13 *

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103686624A (en) * 2012-09-12 2014-03-26 中国移动通信集团公司 Message pushing method and device and service platform
CN103686624B (en) * 2012-09-12 2017-05-03 中国移动通信集团公司 Message pushing method and device and service platform
CN114422937A (en) * 2017-11-30 2022-04-29 华为技术有限公司 Configuration and management system and method for positioning reference signals on demand
CN114422937B (en) * 2017-11-30 2024-01-02 华为技术有限公司 Configuration and management system and method for positioning reference signals according to requirements

Also Published As

Publication number Publication date
CN101378588B (en) 2012-06-20
CN101378588A (en) 2009-03-04

Similar Documents

Publication Publication Date Title
US7920523B2 (en) Method of supporting quality-of-service application session continuity during inter-technology handover using a common packet data function
KR101136339B1 (en) Method of call conferencing to support session continuity for multi-mode clients
US8701164B2 (en) Key cashing, QoS and multicast extensions to media-independent pre-authentication
US8036176B2 (en) MIH pre-authentication
JP4639257B2 (en) Seamless handoff between heterogeneous access networks using a service control point handoff controller
CA2597002C (en) Framework of media-independent pre-authentication
JP5114574B2 (en) Best effort handoff method for maintaining radio bearer and MIP session continuity for multi-mode mobile units
US20120051321A1 (en) Method for seamless ip session continuity for multi-mode mobile stations
WO2009030162A1 (en) Method, device and system for implementing mobile handover
KR20070058614A (en) Fast context establishment for interworking in heterogeneous network
WO2009152669A1 (en) Method for realizing network switching and system and mobile node
WO2012025007A1 (en) Method and system for obtaining user equipment ability by user equipment, home subscriber data server and core network element
Mussabbir et al. Optimized FMIPv6 handover using IEEE802. 21 MIH services
WO2011140888A1 (en) Communication system and method for enhanced single radio voice call continuity
WO2009030152A1 (en) Method, system and appratus for implementing mobile handover
Dutta et al. MPA assisted optimized proactive handoff scheme
EP2299748B1 (en) Method and system for supporting mobility security in the next generation network
Thanh et al. mSCTP-based proxy in support of multimedia session continutity and QoS for IMS-based networks
JP2008146632A (en) Key caching, qos and multicast extensions to media-independent pre-authentication
Thanh et al. Multimedia session continuity with context-aware capability in IMS-based network
Kumar et al. Mobility management in heterogeneous wireless networks based on IEEE 802.21 framework
Corici et al. Multimedia mobility service solution

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 08784147

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 08784147

Country of ref document: EP

Kind code of ref document: A1