WO2010130126A1 - Procédé et système de contrôle d'accès et dispositif du côté accès - Google Patents

Procédé et système de contrôle d'accès et dispositif du côté accès Download PDF

Info

Publication number
WO2010130126A1
WO2010130126A1 PCT/CN2009/075261 CN2009075261W WO2010130126A1 WO 2010130126 A1 WO2010130126 A1 WO 2010130126A1 CN 2009075261 W CN2009075261 W CN 2009075261W WO 2010130126 A1 WO2010130126 A1 WO 2010130126A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
csg
service type
access
management device
Prior art date
Application number
PCT/CN2009/075261
Other languages
English (en)
Chinese (zh)
Inventor
陆伟
吴问付
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2010130126A1 publication Critical patent/WO2010130126A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/02Access restriction performed under specific conditions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/06Selective distribution of broadcast services, e.g. multimedia broadcast multicast service [MBMS]; Services to user groups; One-way selective calling services
    • H04W4/08User group management

Definitions

  • the present invention relates to the field of communications technologies, and in particular, to an access control method and system. Background technique
  • the fixed network and the mobile network are more and more integrated.
  • the UE User Equipment
  • the home wireless access device such as HNB, Home NodeB home base station; HeNB, Home evolved NodeB).
  • Home base station such as HNB, Home NodeB home base station; HeNB, Home evolved NodeB).
  • Home base station such as HNB, Home NodeB home base station; HeNB, Home evolved NodeB.
  • Home base station such as HNB, Home NodeB home base station; HeNB, Home evolved NodeB.
  • Home base station such as HNB, Home NodeB home base station; HeNB, Home evolved NodeB.
  • Home base station such as HNB, Home NodeB home base station; HeNB, Home evolved NodeB
  • Home base station such as HNB, Home NodeB home base station; HeNB, Home evolved NodeB
  • Home base station such as HNB, Home NodeB home base station; HeNB, Home evolved NodeB.
  • Home base station such as HNB, Home NodeB home base station
  • each CSG includes one cell or several cells of the operator, and each CSG is identified by a CSG ID (identity), and the UE (or user user) may belong to one or more CSGs, that is, one or more CSGs.
  • the CSG ID of one or more CSGs is stored on the UE, and the CSG ID constitutes an Allowed CSG List (also referred to as a CSG ID list).
  • the mode of CSG access can be Closed Access Mode or Hybrid. Access Mode (mixed mode).
  • the CSG ID included in the Allowed CSG List of the UE is consistent with the CSG ID of the pre-accessed CSG, that is, the UE is a CSG member, allowing the CSG to access the CSG, but not the non-CSG member.
  • the UE accesses the CSG, and the non-CSG member refers to the UE that does not include the CSG ID of the pre-accessed CSG in the Allowed CSG List;
  • each UE may choose to access the CSG regardless of whether the UE is a CSG member. However, in order to ensure the normal service of the UE as a CSG member, other non-CSG members may be used in the case of limited resources.
  • the UE is detached or switched to another macro network.
  • the inventors have found that at least the following problems exist in the prior art: When the Closed Access Mode is used, only the UEs of the CSG members are allowed to access the CSG, and the UEs that are allowed to access the CSG are usually used first. Preemption of resources on a first-come-first-served basis is not conducive to the use of network resources;
  • Embodiments of the present invention provide an access control method and system, which implement access control for different users and effectively utilize resources.
  • An embodiment of the present invention provides an access control method, including:
  • An embodiment of the present invention further provides an access management device, including:
  • a service type obtaining unit configured to obtain a permitted service type of the user in the CSG
  • the access control unit determines whether the user allows access to the CSG according to the allowed service type of the CSG.
  • Embodiments of the present invention provide an access control system, including a service type subscription database and a policy and charging rule function device PCRF:
  • the service type subscription database is configured to store an allowed service type of the CSG pre-configured for the user equipment according to whether the user is a CSG member, and/or a CSG ID accessed by the user, and/or a type of the user equipment;
  • the PCRF is configured to obtain an allowed service type of the user in the CSG, and determine, according to the allowed service type of the CSG, whether the user is allowed to access the CSG.
  • the technical solution provided by the foregoing embodiment of the present invention can be used to determine whether the user is allowed to access the CSG according to the allowed service type of the CSG by obtaining the service type of the user in the closed user group CSG.
  • Providing differentiated services for different users for different service types can not only effectively utilize network resources, but also create conditions for users to set resource usage methods according to needs, and improve utilization of network resources.
  • FIG. 1 is a schematic structural diagram of a home access mode in the prior art
  • FIG. 2 is a flowchart of an access control method according to an embodiment of the present invention.
  • FIG. 3 is a block diagram showing the structure of an access management device according to an embodiment of the present invention.
  • FIG. 4 is a block diagram showing the structure of an access control system according to an embodiment of the present invention.
  • FIG. 5 is a schematic diagram 1 of an application scenario of an access control system according to an embodiment of the present invention.
  • FIG. 6 is a second schematic diagram of an application scenario of an access control system according to an embodiment of the present invention.
  • FIG. 7 is a schematic diagram 3 of an application scenario of an access control system according to an embodiment of the present invention.
  • FIG. 8 is a schematic diagram 4 of an application scenario of an access control system according to an embodiment of the present invention.
  • FIG. 9 is a schematic diagram 5 of an application scenario of an access control system according to an embodiment of the present invention. detailed description
  • the CSG access mode restricts users from accessing specific CSGs, and there are defects in that they cannot effectively utilize limited resources to meet the service needs of different users.
  • An embodiment of the present invention provides an access control method and system, by obtaining a service type of a user in a closed subscriber group CSG, and accessing the CSG to provide different users with different service types for different users.
  • Service can effectively utilize network resources.
  • the owner of the home wireless access device usually wants the home wireless access device to provide services only to family members and a number of specific visitors, that is, home wireless access.
  • the owner of the incoming device also wants to restrict users' access to specific CSGs, control network resources, and ensure their own needs while meeting the needs of other different users.
  • the access control method and system provided by the embodiments of the present invention may also set a resource usage method and control network resource creation conditions according to requirements, and improve utilization of network resources.
  • FIG. 1 a schematic diagram of a structure of a home access mode in the prior art, including a home wireless access device, and a licensed language, connects the user to the operator's mobile network through the Generic IP Access Network.
  • the home wireless access device includes: an HNB, which operates in a UTRAN (UMTS Terrestrial Radio Access Network UMTS, terrestrial radio access network) spectrum;
  • UTRAN UMTS Terrestrial Radio Access Network UMTS, terrestrial radio access network
  • HeNB operating in an E-UTRAN (Evolved UMTS Terrestrial Radio Access Network) spectrum
  • the Home non-3GPP WAP running on non-3GPP networks (such as CDMA/Wimax/WLAN/HRPD). (Code Division Multiple Access, WiMAX (Worldwide Interoperability for Microwave Access) / WLAN (High Local Area Network) / HRPD (High Rate Packet Data) Data))
  • the spectrum used by the radio access network The GW (Gateway) of the home radio access device, such as HNB GW, HeNB GW, Home non-3GPP WAP GW, performs home wireless access device management and access Control, collect home wireless access equipment, route and forward data between the home wireless access equipment and signaling between network elements in the mobile network.
  • MME Mobility Management Entity
  • responsible for control plane mobility management in E-UTRAN networks including user context and mobility state management, assigning user temporary Identity, etc.
  • SGSN Serving GPRS Supporting Node
  • SGSN Serving GPRS Supporting Node
  • non-3GPP GW implements mobility management, session management and other functions in non-3GPP networks (for WLAN networks, non-3GPP GW is Evolved Packet Data Gateway (EPDG); for Wimax networks)
  • the non-3GPP GW is an Access Service Network Gateway (ASN GW); for a CDMA network, the non-3GPP GW is an Access Gateway (AGW); for the HRPD network, the non-3GPP GW is a high speed Packet Data Service Gateway (HSGW, HRPD Serving Gateway))
  • the HSS Home Subscriber Server
  • the HSS Home Subscriber Server
  • the AAA Server (Authentication, Authorization and Accounting Server) is used to perform access authentication, authorization, and accounting functions for users.
  • HMS Home Management Server
  • the HMS can be a separate network element or integrated into the HSS.
  • the HMS can also be directly connected to the home wireless access point. This architecture is not limited.
  • an embodiment of the present invention provides an access control method, including:
  • Step 1 1 Obtain the allowed service type of the user in the closed user group CSG;
  • Step 12 Determine, according to the allowed service type of the CSG in the CSG, whether the user is allowed to access the CSG.
  • the service type may be pre-defined by the owner and the operator of the home wireless access device, and is pre-stored in the service type subscription database.
  • the service type is for a CSG ID, according to whether the user is a CSG member. And/or the type of user, pre-set for the user.
  • a CSG ID when the user is a CSG member, the user corresponds to a certain service type, or when the user is not a CSG member, the user corresponds to a certain service type.
  • the user type of the specific visitor is temporary
  • the user type of the owner of the home wireless access device is normal, and the like, and different types of users are assigned different types of services.
  • the user when the user is a CSG member, the user corresponds to a certain service type, or when the user is not a CSG member, the user corresponds to a certain service type, and according to the type of the user, the user may be a CSG member.
  • the service type is more finely divided.
  • the user type of the specific visitor is temporary
  • the user type of the owner of the home wireless access device is normal
  • the temporary and normal types of the user type correspond to the service type when the user is a CSG member.
  • Different subdivisions similarly, according to the type of the user, the corresponding service type can be more finely divided when the user is not a CSG member.
  • the user type such as classifying the user into high-level, ordinary, etc., will not be described.
  • the classification method of the user type is not limited to the above.
  • the service type subscription database can be CSS (CSG Subscriber Server, CSG subscription data) Library), SPR (Subscription Profile Repository), or a database for storing business information data such as HSS.
  • CSS CSG Subscriber Server, CSG subscription data
  • SPR Subscribescription Profile Repository
  • a database for storing business information data such as HSS.
  • the QCI Class Identification (QOS Class Identification) of the service type can be used to identify the service permission setting type, for example, the user can only be allowed to perform the service.
  • the service authority obtained by the user is the service whose QCI value cannot exceed 5, and the service permission can be set in the manner of a cell, for example, setting with two bytes. , one byte sets the service permission setting method, such as QCI, and another byte sets its upper limit 5;
  • GBR fixed bearer rate
  • users can not perform GBR-bearing services and can only perform non-GBR bearer services.
  • service permission settings such as some users setting available network bandwidth, bandwidth resource settings using the highest bandwidth, and so on.
  • the execution body of the step 1 1 of obtaining the allowed service type of the user in the CSG may be a Policy and Charging Rules Function (PCRF), and the PCRF is a Policy and Charging Control (Policy and Charging Control) , PCC) policy and charging rules feature devices.
  • PCRF Policy and Charging Rules Function
  • PCC Policy and Charging Control
  • the step 1 1 of obtaining the allowed service type of the user in the CSG includes: The PCRF obtains the CSG information of the user access and/or the type of the user from the mobility management device;
  • the PCRF obtains the allowed service type of the user in the CSG from the service type subscription database according to the CSG information accessed by the user and/or the type of the user. For details, please refer to the following.
  • the CSG information accessed by the user includes whether the user is a CSG member and/or a CSG accessed by the user.
  • the step 1 1 of obtaining the allowed service type of the user in the CSG may be, before the PCRF obtains the allowed service type of the CSG from the mobility management device, and the home wireless access device accesses according to the user.
  • the CSG information, and/or the type of the user configures the allowed service type of the user in the CSG, and sends the service type to the service type subscription database; the mobility management device obtains the user's permission in the CSG from the service type subscription database. business type.
  • the home wireless access device configures the allowed service type of the user in the CSG according to whether the user is the CSG member, and/or the type of the user, and sends the service type to the service type subscription database, for example, for a certain CSG. ID, not only can the user be set as a CSG member, but also the type of the user (temporary or normal, etc.), in particular, the allowed service type of the CSG is preset for the user.
  • the owner of the home wireless access device can restrict the user from accessing a specific CSG, control the network resources, and ensure the needs of other users while satisfying the needs of other users. For details, refer to the following description.
  • step 12 of determining, according to the allowed service type of the CSG, whether the user is allowed to access the CSG includes:
  • the PCRF sends the allowed service type of the user in the CSG to the mobility management device, and the home wireless At least one of an access device or a user device;
  • the mobility management device, the home wireless access device, or the user equipment receives the service request of the user; the mobility management device, the home wireless access device, or the user equipment determines whether the service request conforms to the allowed service type of the CSG, and the access conforms Business request, or reject a non-compliant business request.
  • step 12 of determining, according to the allowed service type of the CSG, whether the user is allowed to access the CSG includes:
  • the PCRF receives the service request of the user
  • the PCRF accesses a service request of a user who conforms to the allowed service type of the CSG, or rejects a service request of a user who does not comply with the permitted service type of the CSG.
  • the access control method may further include:
  • the mobility management device or the home wireless access device receives the user's tracking area update request or handover request;
  • the mobility management device or the home wireless access device transmits the allowed service type of the user in the CSG to the updated or switched mobility management device or home wireless access device of the tracking area update request or the handover request.
  • the source mobility management device may send the user permission control class of the CSG to the target mobility management device for access control, and the target network is implemented.
  • the method of access control is the same as the foregoing description, and details are not described herein again.
  • an embodiment of the present invention provides an access management device, including:
  • a service type obtaining unit 101 configured to obtain a permitted service type of the user in the CSG
  • the access control unit 102 determines, according to the allowed service type of the user in the CSG, whether the user is Allow access to the CSG.
  • the service type obtaining unit 101 is configured to obtain, from the mobility management device, an allowed service type of the user in the CSG; or a CSG for obtaining user access from the mobility management device.
  • Information and/or type of the user obtaining, according to the CSG information accessed by the user and/or the type of the user, the allowed service type of the user in the CSG from the service type subscription database, where the user picks up
  • the incoming CSG information includes whether the user is a CSG ID for the CSG member and/or user access.
  • the service type obtaining unit 101 is configured to obtain, by using the policy and charging rule function device, the allowed service type of the user in the CSG.
  • the access control unit 102 is configured to receive a service request of the user, and determine whether the service request of the user meets the foregoing.
  • the CSG allows the service type, accesses the qualified service request, or rejects the non-compliant service request.
  • the access control unit 102 is configured to determine, according to the allowed service type of the CSG, whether to initiate a matching service request, or not to initiate a non-compliant service request.
  • the access management device when the access management device is a PCRF, the access management device further includes:
  • a first service type sending unit configured to send the allowed service type of the user in the CSG to at least one of a mobility management device, a home wireless access device, or a user equipment.
  • the access management device when the access management device is a mobility management device or a home wireless access device, the access management device further includes: a second service type sending unit, configured to send the allowed service type of the CSG to the tracking area update request or the switching request update or switch after receiving the tracking area update request or the handover request of the user Access management device.
  • a second service type sending unit configured to send the allowed service type of the CSG to the tracking area update request or the switching request update or switch after receiving the tracking area update request or the handover request of the user Access management device.
  • the access management device when the access management device is a home wireless access device, the access management device further includes: a service type configuration unit, configured to configure a user's allowed service in the CSG according to whether the user is a CSG member, and/or a user type Type, and store the allowed service type of the user in the CSG in the service type subscription database.
  • a service type configuration unit configured to configure a user's allowed service in the CSG according to whether the user is a CSG member, and/or a user type Type, and store the allowed service type of the user in the CSG in the service type subscription database.
  • the home wireless access device may be a home base station HNB, or an evolved home base station HeNB, or a home non-3GPP wireless access point Home non-3GGP WAP.
  • an access control system includes a service type subscription database 200 and a policy and charging rule function device (PCRF) 100:
  • PCRF policy and charging rule function device
  • the service type subscription database 200 is configured to store, according to whether the user is a CSG member, and/or a CSG ID accessed by the user, and/or a type of the user equipment, pre-configuring the allowed service type of the CSG for the user equipment;
  • the policy and charging rule function device 100 is configured to obtain an allowed service type of the user in the CSG, and determine, according to the allowed service type of the CSG, whether the user is allowed to access the CSG.
  • system may further include:
  • the mobility management device 300 is configured to obtain, by using the policy and charging rule function device 100, the allowed service type of the user in the CSG, and determine, according to the allowed service type of the CSG, whether the user is allowed to access the CSG.
  • the home wireless access device 400 is configured to obtain, by the policy and charging rule function device 100 and the mobility management device 300, the allowed service type of the user in the CSG, according to the user's permission in the CSG.
  • the service type determines whether the user is allowed to access the CSG.
  • the user equipment 500 is configured to obtain, by the policy and charging rule function device 100, the mobility management device 300, and the home wireless access device 400, the allowed service type of the user in the CSG, and determine the type according to the allowed service type of the user in the CSG. Whether the user is allowed to access the CSG.
  • the PCRF, the mobility management device, the home wireless access device, and the user equipment can store the allowed service type of the user in the CSG, so as to facilitate monitoring of the user service.
  • the system may further include: a Serving GW (S-GW) and/or a Packet Data Network Gateway (P-GW, PDN GW, Packet Data Network), and the PCRF may pass the service network management and/or the packet data network.
  • S-GW Serving GW
  • P-GW Packet Data Network Gateway
  • P-GW Packet Data Network Gateway
  • the gateway obtains, from the mobility management device, whether the user is the type of the CSG member, and/or the user equipment, or obtains the allowed service of the user equipment in the CSG from the mobility management device by using the service network management and/or the network network management. Types of.
  • the PCRF may send the allowed service type of the user equipment in the CSG to at least one of the mobility management device, the home wireless access device, or the user equipment by using the service network management system and/or the network network management system.
  • the service network management and the packet data network gateway are not described here. For details, refer to the following.
  • the technical solution provided by the foregoing embodiment of the present invention can be used to determine whether the user is allowed to access the CSG according to the allowed service type of the CSG by obtaining the service type of the user in the closed user group CSG.
  • Providing differentiated services for different users for different service types can not only effectively utilize network resources, but also create conditions for users to set resource usage methods according to needs, and improve utilization of network resources.
  • an access control method of an embodiment of the present invention is described in conjunction with an execution body, which is obtained
  • the allowed service type of the user in the CSG determines whether the user is allowed to access the CSG according to the allowed service type of the CSG, and provides differentiated services for different users for different service types: 1 1 1.
  • User equipment passes the family
  • the wireless access device initiates an access request message to the mobility management device.
  • the user equipment receives the CSG ID of the CSG broadcast, obtains the CSG ID accessed by the user, and sends the CSG ID accessed by the user to the home wireless access device.
  • the home wireless access device can obtain the user's Allowed CSG List information from the HMS, CSS, or the operator's backend system.
  • the home wireless access device can determine whether the user is a CSG member according to the user's Allowed CSG List (also referred to as the CSG list) and the CSG ID accessed by the user: If the CSG ID accessed by the user is in the user's In the Allowed CSG List, the user is a CSG member; if the CSG ID accessed by the user is not in the Allowed CSG List of the user, the user is a non-CSG member;
  • the home wireless access device can obtain the type of the user according to the type identification of the user.
  • the home wireless access device notifies the mobility management device of the CSG information and/or the type of the user accessed by the user, and the CSG information accessed by the user includes whether the user is a CSG member and/or a CSG ID accessed by the user.
  • the access request message may be an attach request, a tracking area update request, a handover request, or the like, or may be a request for a user to request a service, such as a PDN (Packet Data Network) connection establishment request, a resource modification request, and a resource allocation.
  • the request is either a proprietary bearer setup request, a bearer modification request, and the like.
  • the home wireless access device sends an access request message to the mobility through the access side gateway.
  • the mobility management device acquires the CSG information and/or the type of the user accessed by the user.
  • the CSG information accessed by the user such as whether the user is a CSG member and/or a CSG ID accessed by the user.
  • the mobility management device may obtain the CSG information and/or the type of the user access by the user in another manner: if the mobility management device according to the CSG ID of the user access reported by the home wireless access device, the mobility management device The Allowed CSG list of the user obtained in the HMS, CSS or the operator's back-end system, and then the mobility management device compares the CSG ID accessed by the user with the Allowed CSG list of the user, and knows whether the user is a CSG member, and/or knows Information such as the type of user.
  • the mobility management device sends a message notification message to the S-GW (Serving GW).
  • the mobility management device can create a default backup request (Update Default Bearer Request), update a bearer request (Update Bearer Request), create a PDP (Packet Data Protocol) context request (Create PDP Context Request), or update a PDP context.
  • the message such as the request informs the S-GW whether the obtained user is a CSG member, and/or a CSG ID accessed by the user, and/or a type of the user.
  • the S-GW sends an information notification message to the P-GW (PDN GW, Packet Data Network, Packet Data Network Gateway).
  • PDN GW Packet Data Network, Packet Data Network Gateway
  • the S-GW notifies the P-GW whether the user is a CSG member, and/or a CSG ID accessed by the user, and/or a type of the user.
  • the S-GW may create a default bearer request by including, but not limited to, these listed messages.
  • Update Bearer Request Create PDP Context Request, or Update Whether the user obtained by the message such as the PDP context request (Update PDP Context Request) is notified to the P-GW by the CSG member, and/or the CSG ID accessed by the user, and/or the type of the user;
  • the S-GW obtain the user through the proxy binding update (PBU, Proxy Binding Update)? Notifying the P-GW to the CSG member, and/or the CSG ID accessed by the user, and/or the type of the user;
  • PBU Proxy Binding Update
  • the P-GW sends an information notification message to the PCRF.
  • the P-GW sends an information notification message to the PCRF to notify the PCRF whether the user is a CSG member, and/or the CSG ID accessed by the user, and/or the type of the user.
  • the S-GW can control the Gateway Control Session Establishment, the Gateway Control and the QoS Rules Request, etc. through the Gateway Control Session Establishment, Gateway Control and QoS Rules Request, etc.
  • the message will be notified to the PCRF whether the user is a CSG member, and/or the CSG ID accessed by the user, and/or the type of the user.
  • the PCRF sends an information notification message to the service type subscription database.
  • the PCRF notifies the service type subscription database whether the user is a CSG member, and/or a CSG ID accessed by the user, and/or a type of the user.
  • This information notification message may be a user subscription data request message, etc., and will not be described again.
  • the service type subscription database finds the service type of the CSG where the user is located, and sends a notification message to the PCRF.
  • the service type subscription database may be in the following manners including, but not limited to, finding the service type of the CSG where the user is located:
  • the CSG ID of the user sets different allowed service types for users of different PLMNs.
  • Chinese mobile users can only use one type of service type, such as audio service
  • China Unicom users can use various services. , including audio and video services.
  • the service type of the non-CSG user can be found under the category of the China Unicom user under the CSG ID found.
  • the non-CSG user cannot use the video service.
  • the user can only use other non-video services.
  • the information notification response message may include the allowed service type of the user, and may also include at least one of a CSG ID accessed by the user, a CSG member, and a type of the user.
  • the information notification message may be a user subscription data request message or the like
  • the information notification response message may be a subscription data response message or the like.
  • the PCRF sends a message notification response message to the P-GW.
  • the information notification response message may include the type of the allowed service of the user, and may also include at least one of the CSG ID of the user access, whether the user is a CSG member, and the type of the user.
  • the PCRF may also directly send the user's allowed service type to the S-GW, or may include the user.
  • the CSG ID of the access whether the user is a CSG member, and At least one of the types of households.
  • the PCRF sends a message notification response message to the P-GW.
  • the information notification response message may include the type of the allowed service of the user, and may also include at least one of the CSG ID of the user access, whether the user is a CSG member, and the type of the user.
  • the S-GW sends a message notification response message to the mobility management device.
  • the information notification response message includes the type of the allowed service of the user, and may also include at least one of the CSG ID accessed by the user, whether the user is a CSG member, and the type of the user.
  • the type of allowed service of the user that the S-GW can obtain by creating a default bearer response message, updating a bearer response, creating a PDP context response, or updating a PDP context response, a CSG ID of the user access, whether the user is a CSG member, and At least one of the types of users is notified to the mobility management device.
  • the mobility management device sends an access response message to the user through the home wireless access device.
  • the access response message may contain the allowed service type of the user.
  • the mobility management device can notify the user by attaching an accept message (Attach accept), a tracking area update accept message (TAU accept) message, and the like.
  • the home wireless access device can also be notified by the Initial UE context request message.
  • the access request is a PDN (Packet Data Network) connection establishment request, a resource modification request, a resource allocation request, or a dedicated bearer setup request, a bearer modification request, and the like.
  • the RRC connection reconfiguration message may be used to notify the UE or the Bearer setup request message to notify the home access device of the allowed service type of the user, or the requested access request has no permission to be denied, and the message may be carried in the Deactive bearer request message.
  • the element notifies the user of the allowed service type to the home access device, or through the Radio bearer release request
  • the message carries the cell to notify the user of the type of allowed service of the user.
  • the user When the user is not allowed to access, the user may also be notified of the allowed service type by rejecting the message, including including the mobile service type that is not limited to the PDN CONNECTIVITY REJECT message. It is noted that, in the access control method of the embodiment of the present invention, after the user equipment, the home wireless access device, the mobility management device, or the P-GW, or the PCRF receives the service type of the user, the user equipment, the home wireless The access device, the mobility management device or the P-GW, or the PCRF can monitor the service, such as:
  • the user equipment After receiving the allowed service type of the user in the CSG, the user equipment saves the allowed service type to control that it no longer initiates a service request without permission.
  • the user will not initiate a service with a QCI value of 5. If the user is not allowed to use the GBR service, the user will not initiate the GBR bearer service.
  • the home wireless access device saves the allowed service type after receiving the allowed service type in the CSG.
  • the user requests the service, it determines whether the requested service of the user meets the allowed service type, accesses the qualified service request, or refuses to Compliance with business requests.
  • the home wireless access device can directly initiate the rejection without accepting the request.
  • the home wireless access device finds that its service is to use G B R bearer, then the service request can be directly rejected.
  • the source home can be connected by switching the message.
  • the service type saved on the device is notified to the target home wireless access device.
  • the Forward relocation request message can be used.
  • the specific message is not restricted.
  • the target home wireless access device can select whether to access or reject the service request according to the service type of the user.
  • the mobility management device After receiving the allowed service type of the CSG, the mobility management device saves the allowed service type. When the user requests the service, it determines whether the requested service of the user meets the allowed service type, accesses the qualified service request, or refuses to Compliance with business requests.
  • the mobility management device can directly initiate the rejection without accepting the request.
  • the mobility management device finds that its service is to use GBR bearer, then the service request can be directly rejected.
  • the source mobility management device sends the allowed service type of the user in the CSG to the target mobility management device, for example, in the UE CONTEXT Request/Response
  • the (UE Context Request/Response message) message includes the allowed service type of the user in the CSG to facilitate the target mobility management device to perform service control.
  • the P-GW determines whether the requested service of the user meets the allowed service type, accesses the qualified service request, or rejects the non-compliant service request.
  • the specific processing includes not limited to the following situations:
  • the P-GW can directly initiate the rejection without accepting the request. For example, if the user can only use the non-GBR service, if the P-GW finds that its service is to use the GBR bearer, then the service request can be directly rejected.
  • the PCRF determines whether the requested service of the user meets the allowed service type, accesses the qualified service request, or rejects the non-compliant service request.
  • the PCRF and PCEF Policy and Charging Enforcement Function are the main policy control entities in the PCC, and the PCEF can be a device that is integrated with the PGW. It can be known that when a user initiates a service request, the PCEF can also reject the non-compliant service request.
  • Embodiment 2 Policy and Charging Enforcement Function
  • FIG. 6-8 a schematic diagram of an application scenario of an access control system according to an embodiment of the present invention illustrates an embodiment of the present invention.
  • an owner of a home wireless access device joins a user as a CSG member
  • the user is added to the CSG.
  • the ID list, and the type of the user in particular, when setting the allowed service type of the CSG at the same time, how to access the CSG to obtain different types of services by obtaining the allowed service type of the user in the CSG
  • a number of specific guest visits the owner of the home wireless access device, can access the user as a CSG member, and/or set the type of the visiting user (temporary or normal, etc.), in particular, The allowed service type in the CSG is preset for the user.
  • the user management system involved in this step may be an HMS, but is not limited to the HMS, and is not limited to a specific network element.
  • the user management system includes all the networks involved in the list of CSG IDs added to the user access. yuan. 222.
  • the user management system sends a request message for adding a user to the CSG ID list to the service type subscription database.
  • the business type contract database may be a database such as HSS, SPR, and CSS (CSG contract server).
  • the message may include the type of allowed service of the user in the CSG, and the like.
  • the service type subscription database sends an increase user to the CSG ID list confirmation message to the user management system.
  • This message may include the type of allowed service of the user in the CSG, and the like.
  • the service type subscription database sends a message to the user that allows the user to modify the list request message.
  • This message may also include the type of allowed service of the user in the CSG, and the like.
  • the user sends a permission to the user to modify the list confirmation message to the service type subscription database.
  • Step 225 an example process for joining a user to a CSG member. This process is only an example and should not be considered as the only restriction on joining a user as a CSG member.
  • the user downloads the allowed service type from the CSG to the mobility management device.
  • This process can be performed in the attach and location update process (tracking zone update or routing zone update), and the service type subscription database downloads the allowed service type of the specific user in the CSG to the mobility management device.
  • the service type subscription database sends an insertion subscription data message to the mobility management device.
  • the message can contain the type of service allowed by the user in the CSG.
  • the mobility management device sends an insertion contract data confirmation message to the service type subscription database.
  • the mobility management device obtains the type of allowed service of the user in the CSG.
  • the owner of the home wireless access device adds the user to the CSG ID column of the user access.
  • the user's allowed service type in the CSG is also set.
  • the mobility management device can obtain the service type subscription database.
  • the allowed service type of the user in the CSG, and the PCRF can obtain the allowed service type of the user in the CSG from the mobility management device, and the PCRF performs the decision of the bearer rule, and the bearer rule determines the service rule according to the allowed service type. For example, the QOS carried by the business.
  • the PCRF obtains the allowed service type of the user in the CSG from the service type subscription database, and then makes a decision on the business rule.
  • the access network management network element For the user equipment, the access network management network element, the mobility management device, the PCRF, or the P-GW to monitor the service, refer to the method described in the first embodiment, and no further details are provided.
  • Embodiment 3 For the user equipment, the access network management network element, the mobility management device, the PCRF, or the P-GW to monitor the service, refer to the method described in the first embodiment, and no further details are provided.
  • the difference between this embodiment and the first embodiment is that the UE (user equipment) sends an access request message to the non-3GPP GW (non-3GPP gateway) through the home access device, and the user is sent by the non-3GPP GW.
  • the CSG ID of the access, whether the user is a CSG member, and at least one of the types of users are given to the PCRF.
  • the PCRF obtains the allowed service type of the user in the CSG from the service type subscription database, and then makes a decision on the business rule.
  • control of the service for the UE, the home radio access device, the non-3GPP GW, and the PCRF may be performed in the manner described in Embodiment 1, and details are not described herein.
  • the present invention can be implemented by means of software plus a necessary general hardware platform, and of course, can also be implemented by hardware, or a combination of the two. Based on such understanding, the technical solution of the present invention is essentially or The portion of the technology contribution can be embodied in the form of a software product, which can be stored in a storage medium, including instructions for causing a computer device (which can be a personal computer, server, or network) Apparatus, etc.) performs the methods described in various embodiments of the present invention.
  • the storage medium may be random access memory (RAM), memory, read only memory (ROM), electrically programmable R ⁇ M, electrically erasable programmable R ⁇ M, registers, hard disk, removable disk, CD-R ⁇ M, Or any other form of storage medium known in the art.
  • RAM random access memory
  • ROM read only memory
  • electrically programmable R ⁇ M electrically erasable programmable R ⁇ M
  • registers hard disk, removable disk, CD-R ⁇ M, Or any other form of storage medium known in the art.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Un procédé et un système de contrôle d'accès sont fournis par les modes de réalisation de la présente invention, le procédé de contrôle d'accès comprenant les étapes consistant à : obtenir un type de service autorisé d'abonné dans le groupe d'abonnés fermé CSG (11); déterminer si l'abonné est autorisé à accéder au CSG selon le type de service autorisé d'abonné dans le CSG (12). L'abonné accède au CSG en obtenant le type de service d'abonné dans le groupe d'abonnés fermé CSG de façon à réaliser la fourniture de services différents pour différents abonnés selon différents types de service. L'invention permet d'utiliser non seulement de manière efficace les ressources du réseau, mais elle crée également les conditions pour que les abonnés utilisent les ressources selon les besoins et elle permet d'améliorer la disponibilité des ressources du réseau.
PCT/CN2009/075261 2009-05-15 2009-12-02 Procédé et système de contrôle d'accès et dispositif du côté accès WO2010130126A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN200910084243.7 2009-05-15
CN2009100842437A CN101888596A (zh) 2009-05-15 2009-05-15 一种接入控制方法及系统

Publications (1)

Publication Number Publication Date
WO2010130126A1 true WO2010130126A1 (fr) 2010-11-18

Family

ID=43074269

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2009/075261 WO2010130126A1 (fr) 2009-05-15 2009-12-02 Procédé et système de contrôle d'accès et dispositif du côté accès

Country Status (2)

Country Link
CN (1) CN101888596A (fr)
WO (1) WO2010130126A1 (fr)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102695222B (zh) * 2011-03-24 2017-03-15 中兴通讯股份有限公司 一种本地访问业务的切换方法及系统
CN102186157B (zh) * 2011-05-17 2015-06-17 电信科学技术研究院 一种csg信息的传输方法和设备
CN102811467A (zh) * 2011-05-30 2012-12-05 中兴通讯股份有限公司 一种切换方法及系统
EP2751980B1 (fr) * 2011-09-09 2016-03-23 Telefonaktiebolaget LM Ericsson (publ) Gestion différentiée d'un trafic de données avec une adaptation dépendante de la classe d'utilisateur d'une consultation d'adresses de réseau
CN103812788B (zh) * 2012-11-05 2017-06-16 华为技术有限公司 控制用户接入的方法、装置及系统
KR102445680B1 (ko) 2013-08-30 2022-09-20 인터디지탈 패튼 홀딩스, 인크 애플리케이션 특정 액세스 제어 방법
CN106470460B (zh) 2015-08-18 2021-09-07 北京三星通信技术研究有限公司 Ue接入的方法和设备
CN110166984B (zh) * 2018-02-13 2021-09-24 维沃移动通信有限公司 业务处理方法、信息发送方法和相关设备

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101312410A (zh) * 2007-05-24 2008-11-26 上海贝尔阿尔卡特股份有限公司 一种控制同一用户侧接口多项服务接入的控制装置及方法
CN101400107A (zh) * 2007-09-27 2009-04-01 华为技术有限公司 一种完成用户添加的方法及设备
US20090094351A1 (en) * 2007-10-08 2009-04-09 Qualcomm Incorporated Access terminal configuration and access control

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101312410A (zh) * 2007-05-24 2008-11-26 上海贝尔阿尔卡特股份有限公司 一种控制同一用户侧接口多项服务接入的控制装置及方法
CN101400107A (zh) * 2007-09-27 2009-04-01 华为技术有限公司 一种完成用户添加的方法及设备
US20090094351A1 (en) * 2007-10-08 2009-04-09 Qualcomm Incorporated Access terminal configuration and access control

Also Published As

Publication number Publication date
CN101888596A (zh) 2010-11-17

Similar Documents

Publication Publication Date Title
JP7366356B2 (ja) ワイヤレスネットワークによるワイヤレスデバイスのページング
JP7455138B2 (ja) コアページング処理
KR101973462B1 (ko) 접속 해제를 수행하는 방법 및 그 단말
US9756561B2 (en) Method for providing connection type information and method for controlling radio resource of home (e)NodeB
US9532202B2 (en) Access control method, access control apparatus and communication system
RU2428817C2 (ru) Способ, система и устройство для отсоединения пользователя при передаче обслуживания мобильного терминала в гетерогенной сети
WO2017141993A1 (fr) Dispositif terminal, entité de gestion de la mobilité (mme) et procédé de commande de communication
WO2010130126A1 (fr) Procédé et système de contrôle d'accès et dispositif du côté accès
WO2012051890A1 (fr) Procédé et système de limite d'accès de terminal terminal access limit method and system
CN108605270B (zh) 用户设备、核心网装置以及通信方法
WO2011050737A1 (fr) Procédé d'obtention d'accès local et système correspondant
WO2013089452A1 (fr) Procédé et dispositif pour fournir un service de proximité dans un système de communication sans fil
JP7291245B2 (ja) Ranページング処理
WO2010017783A1 (fr) Procédé de commande d'accès et de suppression de l'équipement utilisateur, système et équipement s'y rapportant
WO2014166089A1 (fr) Procédé et dispositif de régulation de l'encombrement
US9629179B2 (en) Method and device for processing local access connection
WO2012142889A1 (fr) Procédé de sélection de passerelle, et dispositif et système pour sa mise en œuvre
JP7216762B2 (ja) Ue、ueにより行われる通信制御方法、コアネットワーク装置及びコアネットワーク装置により行われる通信制御方法
US8874079B2 (en) Control method for home base station access and home base station gateway
WO2012126319A1 (fr) Procédé et système pour le transfert intercellulaire d'un service d'accès local
WO2014071790A1 (fr) Procédé, dispositif et système destinés à un contrôle de politique d'une convergence fixe-mobile
WO2011000305A1 (fr) Procédé, système et dispositif de contrôle d'accès
WO2013152651A1 (fr) Procédé et système de gestion de ressources, et élément de réseau de gestion de ressources
WO2011131064A1 (fr) Procédé et système de contrôle d'accès à un nœud b domestique (hnb)
WO2014071798A1 (fr) Procédé de gestion de connexion de déchargement, élément de réseau côté radio et entité de gestion de mobilité

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 09844537

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 09844537

Country of ref document: EP

Kind code of ref document: A1