WO2012037835A1 - Procédé et système de mise en oeuvre de gestion de politiques dynamique - Google Patents

Procédé et système de mise en oeuvre de gestion de politiques dynamique Download PDF

Info

Publication number
WO2012037835A1
WO2012037835A1 PCT/CN2011/076979 CN2011076979W WO2012037835A1 WO 2012037835 A1 WO2012037835 A1 WO 2012037835A1 CN 2011076979 W CN2011076979 W CN 2011076979W WO 2012037835 A1 WO2012037835 A1 WO 2012037835A1
Authority
WO
WIPO (PCT)
Prior art keywords
control
policy
user
authorization
service
Prior art date
Application number
PCT/CN2011/076979
Other languages
English (en)
Chinese (zh)
Inventor
金仁康
詹亚军
顾希
井惟栋
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2012037835A1 publication Critical patent/WO2012037835A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/24Accounting or billing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • H04M15/66Policy and charging system
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W36/00Hand-off or reselection arrangements
    • H04W36/0005Control or signalling for completing the hand-off
    • H04W36/0011Control or signalling for completing the hand-off for data sessions of end-to-end connection

Definitions

  • the present invention relates to the field of wireless communication technologies, and in particular, to a method and system for implementing dynamic policy control.
  • Mobile Internet “Mobile Internet”, “Cloud Computing” and “Internet of Things” are considered to be the three major technologies that will change the telecommunications industry. Among them, the “mobile Internet” is the fastest growing. It is predicted that by 2012, the number of mobile Internet users will exceed 2 billion. If operators can adjust their operating modes and network architecture to adapt to the rapid development of mobile Internet, they will definitely take the lead in the market.
  • a packet data serving node (PDSN)/external proxy (FA) and a home agent (HA) pass IP.
  • the network communicates with Authentication and Authorization Accounting (AAA), and the Packet Data Serving Node (PDSN) is also connected to the Radio Access Network (RAN).
  • AAA Authentication and Authorization Accounting
  • PDSN Packet Data Serving Node
  • RAN Radio Access Network
  • the architecture is a non-policy and charging control architecture. The architecture does not consider how to implement policy and charging control. Therefore, the policy and charging control functions cannot be implemented based on the existing architecture.
  • Third Generation Partnership Project (3GPP) TS 23.203 proposes a service control policy deployment scheme for mobile communication systems.
  • X.P0062 of 3GPP2 gives a scheme for complying with the service control strategy of 3GPP TS 23.203.
  • This solution is a relatively complete solution for the business control strategy solution.
  • the solution requires a large number of modifications to the existing network structure of CDMA2000, including the need to deploy a new Policy and Charging Rules Function (PCRF) network element, and the need to deploy between the PDSN and the PCRF.
  • PCRF Policy and Charging Rules Function
  • Gx interface and Gx interface between HA and PCRF This solution has high cost and long cycle for network transformation.
  • the present invention provides a method for implementing dynamic policy control, including: an authentication authorization charging entity determining a policy control level of a user, and assigning an authorization control policy corresponding to the policy control level, packet data support
  • the node network element performs service control on the user according to the service control policy corresponding to the authorization control policy.
  • the authentication and authorization charging entity determines a policy control level of the user according to one or more of the following parameters: subscription information of the user, service traffic used by the user, and current time.
  • the above methods also include:
  • the authorization and authorization charging entity allocates the authorization control policy corresponding to the policy control level
  • the identifier of the assigned authorization control policy is sent to the packet data support node network element.
  • An authorization control policy corresponds to one or more service control policies, and the one or more service control policies include: different control policies depending on the region where the user is located, and/or different control depending on the service application time period Policies, and/or control policies that vary with business priority attributes; controls in each business control policy include: licensing, speed limit, barring, and redirection.
  • the above methods also include:
  • the packet data support node network element monitors one or more of the following parameters related to the user in real time, and changes the service control policy according to the change of the parameter value: the user area, the time period in which the user uses the service, and the user uses the service Priority attribute.
  • the authentication authorization charging entity determines the policy control level of the user and assigns a policy control level to The step of the authorization control policy includes: the authentication authorization charging entity determines the policy control level of the user when the user accesses the network, allocates an authorization control policy corresponding to the policy control level, and sends the authorization control policy to the packet data support node network element. ;
  • the party further includes: the authentication authorization charging entity determines a new authorization control policy according to the charging situation of the user in the charging process for the user, and pushes the new authorization control policy to the packet data support node network element.
  • the present invention further provides a system for implementing dynamic policy control, including an authentication authorization charging entity and a packet data support node network element, where
  • the authentication authorization charging entity is configured to determine a policy control level of the user, and allocate an authorization control policy corresponding to the policy control level;
  • the packet data support node network element is configured to perform service control on the user according to a service control policy corresponding to the authorization control policy.
  • the authentication authorization charging entity is configured to determine a user's policy control level according to one or more of the following parameters: the user's subscription information, the user's used traffic, and the current time.
  • An authorization control policy corresponds to one or more service control policies, and the one or more service control policies include: different control policies depending on the region where the user is located, and/or different control depending on the service application time period Policies, and/or control policies that vary with business priority attributes; controls in each business control policy include: licensing, speed limit, barring, and redirection.
  • the packet data support node network element is further configured to: monitor one or more of the following parameters related to the user in real time, and change the service control policy according to the change of the parameter value: a user area, a time period in which the user uses the service, and The priority attribute of the business used by the user.
  • the invention can implement dynamic and effective policy and charging control functions on the existing CDMA2000 network architecture, and can save reconstruction cost.
  • 1 is a schematic structural diagram of a structure of a CDMA 2000 system under the 3GPP2 standard in the prior art
  • 2 is a schematic diagram of a method for implementing dynamic policy control in an embodiment
  • FIG. 3 is a schematic diagram of a method for implementing dynamic policy control in a specific embodiment 1;
  • FIG. 4 is a schematic diagram of a method for implementing dynamic policy control in a second embodiment. Preferred embodiment of the invention
  • the system implementing dynamic policy control includes an Authentication Authorization Charging Entity (AAA) and a Packet Data Support Node (PDSN).
  • AAA Authentication Authorization Charging Entity
  • PDSN Packet Data Support Node
  • AAA is set to: determine the user's policy control level and assign an authorization control policy corresponding to this policy control level.
  • the PDSN is configured to perform service control on the user according to the service control policy corresponding to the authorization control policy.
  • the moment when the AAA notifies the PDSN of the authorization control policy may be in the process of the user accessing the network or the charging of the user. Specifically, when the user accesses the network, the AAA allocates an authorization control policy and sends it to the PDSN; and, in the charging process for the user, the AAA determines a new authorization control policy according to the charging situation of the user and pushes the new authorization control policy to the PDSN.
  • the AAA is configured to determine a policy control level of the user according to one or more of the following parameters: subscription information of the user, service traffic used by the user, and current time; the AAA is further configured to be in the distribution and location After the authorization control policy corresponding to the policy control level is performed, the identifier of the assigned authorization control policy is sent to the PDSN.
  • An authorization control policy corresponds to one or more service control policies, and the service control policy includes: a control policy that is different according to a region where the user is located, a control policy that varies with a service application time period, and a service priority Control policies with different levels of attributes; Control methods in business control policies include: licensing, speed limit, prohibition, and redirection.
  • the PDSN can also be configured to monitor one or more of the following parameters related to the user in real time, and change the service control policy according to the change of the parameter value: the user's area, the time period in which the user uses the service, and the priority attribute of the user using the service. .
  • a method for implementing dynamic policy control includes: Step 201: An authentication authorization charging entity (AAA) determines a policy control level of the user.
  • AAA authentication authorization charging entity
  • the AAA may determine the user's policy control level according to one or more of the following parameters: the user's subscription information, the user's used traffic, and the current time.
  • Step 202 The authentication and authorization charging entity (AAA) allocates an authorization control policy corresponding to the policy control level.
  • AAA authentication and authorization charging entity
  • the AAA After the AAA determines the authorization control policy corresponding to the policy control level, the AAA sends the identifier of the authorization control policy to the PDSN.
  • the moment when the AAA notifies the PDSN of the authorization control policy may be in the process of the user accessing the network or the charging of the user. Specifically, when the user accesses the network, the AAA allocates an authorization control policy and sends it to the PDSN. In the charging process for the user, the AAA determines a new authorization control policy according to the charging situation of the user and pushes it to the PDSN.
  • Step 203 The packet data support node network element (PDSN) performs service control on the user according to the service control policy corresponding to the authorization control policy.
  • PDSN packet data support node network element
  • DPI Deep Packet Inspection
  • ACL Access Control List
  • Service control policies can also be deployed in the PDSN, or they can be deployed in the PDSN of the entire network.
  • An authorization control policy corresponds to one or more service control policies, and the service control policy includes: a control policy that is different according to the area where the user is located (to ensure the maximum utilization of resources in important areas), and varies with the service application time period. Different control strategies (implementing different strategies to ensure the most efficient network utilization during traffic peaks and valleys), and control strategies that vary with business priority attributes (to ensure the communication quality of the most important services). Control methods in business control policies include: licensing, speed limit, prohibition, and redirection.
  • a default service control policy can also be deployed in the PDSN. This default service control policy can satisfy the local control process of the network for service control.
  • the PDSN can also monitor one or more of the following parameters related to the user in real time, and change the service control policy according to the change of the parameter value: the user's area, the time period during which the user uses the service, The priority attribute of the business used by the user.
  • the PDSN configures a service control policy corresponding to different areas, for example, defining a part of the area as a busy area, and another part of the area as a free area, and the busy area and the idle area use different service control policies; Control strategy, such as defining a certain time period as busy, another time period as idle time, busy time and idle time using different service control strategies; also configuring different service priority time periods corresponding to different control strategies, such as P2P Business and 3G wireless services use different business control strategies.
  • the PDSN monitors the dimension information of the area, the current time period, and the service priority of the user in real time, and selects the corresponding service control policy according to the change of the dimension information; thereby improving the performance of the system in real time.
  • Embodiment 1 describes a method for implementing dynamic policy control when a user accesses a network, including the following steps:
  • Step 301 A user initiates an access request.
  • Step 302 The PDSN initiates an authentication request to the AAA.
  • Step 303 The AAA determines the policy control level of the user according to the subscription information of the current user, the used service traffic, the current time, and the like, and assigns an authorization control policy corresponding to the policy control level, and sends the authorization control policy to the PDSN.
  • the identity of the authorization control policy is sent to the packet data support node network element, and the AAA may also send a policy control indication to the PDSN indicating that policy control has been deployed to the user.
  • Step 304 The PDSN successfully accesses the user, and updates the quality of service (QoS) information corresponding to the authorization control policy to the RAN, and the RAN implements the QoS policy corresponding to the QoS parameter for the user according to the learned QoS information.
  • QoS quality of service
  • Step 305 The system provides services for the accessed users, and the PDSN determines a corresponding service control policy according to the authorization control policy, and performs corresponding service control on the user.
  • the service control policy determined by the PDSN includes a rate limit for the P2P service, a license for the HTTP browsing service, and a rate limit for the FTP service.
  • the service control determined by the PDSN includes: prohibiting access to the P2P service during the time period of 20: 00-22: 00 (busy time); allowing access to the P2P service during the time period of 0:00-5:00 (idle time).
  • the second embodiment describes a method for implementing dynamic policy control in a charging process for a user, including the following steps:
  • Step 401 The system provides a service for the online user.
  • the PDSN system reports the charging information to the AAA.
  • Step 402 The AAA receives the charging information, and determines, according to the current user subscription information, the used service traffic, the current time, and the like, whether to push a new authorization control policy.
  • Step 403 After the AAA determines that the new authorization control policy needs to be pushed, the new authorization control policy is determined according to the current user's subscription information, the used service traffic, the current time, and the like, and is pushed by the RADIUS message.
  • Step 404 The PDSN updates the latest QoS parameters, and updates to the radio side as needed.
  • the RAN and the PDSN implement a QoS policy corresponding to the QoS parameter for the user according to the latest QoS information learned.
  • Step 405 The PDSN determines a corresponding service control policy according to the new authorization control policy, and performs corresponding service control on the user.
  • AAA does not need to perform complicated policy control, and only a small amount of transformation is required.
  • the solution has the following advantages: Simple deployment, small network transformation, no modification to the deployment of the existing network architecture, and low cost.
  • the present invention can implement dynamic and effective policy and charging control functions on the existing CDMA2000 network architecture, and can save reconstruction overhead.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Cette invention concerne un procédé et un système de mise œuvre d'une gestion de politiques dynamique. Avec ce procédé : une entité de comptabilisation/autorisation/authentification (AAA) détermine le niveau de gestion de politique de l'utilisateur et attribue une politique de gestion d'autorisation correspondant à ce niveau de gestion de politique ; un élément de nœud de mise en œuvre de paquets de données exécute une commande de service pour l'utilisateur conformément à la politique de gestion d'autorisation. Le procédé et le système de l'invention permettent de mettre en œuvre une politique et une fonction de gestion de comptabilisation dynamiques et efficaces sur la base du réseau 2000 actuel d'accès multiple par répartition de code (CDMA) en évitant des coûts de réaménagement.
PCT/CN2011/076979 2010-09-25 2011-07-08 Procédé et système de mise en oeuvre de gestion de politiques dynamique WO2012037835A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201010293107.1A CN101945370B (zh) 2010-09-25 2010-09-25 一种实施动态策略控制的方法及系统
CN201010293107.1 2010-09-25

Publications (1)

Publication Number Publication Date
WO2012037835A1 true WO2012037835A1 (fr) 2012-03-29

Family

ID=43437068

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2011/076979 WO2012037835A1 (fr) 2010-09-25 2011-07-08 Procédé et système de mise en oeuvre de gestion de politiques dynamique

Country Status (2)

Country Link
CN (1) CN101945370B (fr)
WO (1) WO2012037835A1 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111698730A (zh) * 2019-03-15 2020-09-22 阿里巴巴集团控股有限公司 流量控制方法、操作系统、端设备及分布式系统

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101945370B (zh) * 2010-09-25 2015-03-25 中兴通讯股份有限公司 一种实施动态策略控制的方法及系统
EP2498540B1 (fr) 2011-03-11 2013-03-06 Alcatel Lucent Nuage informatique dans un système de télécommunications sans fil
CN103117951B (zh) * 2011-11-16 2016-02-24 中国电信股份有限公司 实现ip网络中端到端差异化服务的方法和系统
CN102547648B (zh) * 2012-01-13 2014-08-27 华中科技大学 基于用户行为的智能管道流量控制方法
CN102665187B (zh) * 2012-02-29 2014-11-12 华中科技大学 基于智能终端的智能管道控制方法
CN103684916A (zh) * 2013-12-13 2014-03-26 国家计算机网络与信息安全管理中心 一种云计算下智能监控分析方法及系统
US10075443B2 (en) * 2015-06-09 2018-09-11 Intel Corporation System, apparatus and method for stateful application of control data in a device
CN106937323B (zh) * 2015-12-30 2021-03-30 华为技术有限公司 一种用户终端数量的监控方法及相关设备

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101099332A (zh) * 2004-09-13 2008-01-02 Ut斯达康公司 用于无线接入网关的动态防火墙能力
WO2008099254A2 (fr) * 2007-02-12 2008-08-21 Nokia Corporation Autorisation d'accès ip non 3gpp dans une passerelle de réseau de données par paquets lors de l'établissement d'un tunnel
CN101345679A (zh) * 2008-08-21 2009-01-14 中兴通讯股份有限公司 动态业务的QoS保证方法、系统以及AAA和Anchor SFA
CN101945370A (zh) * 2010-09-25 2011-01-12 中兴通讯股份有限公司 一种实施动态策略控制的方法及系统

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1265607C (zh) * 2003-12-08 2006-07-19 华为技术有限公司 无线局域网中业务隧道建立的方法
CN101094067B (zh) * 2006-08-28 2010-05-12 中兴通讯股份有限公司 一种cdma系统中对用户终端进行鉴权的方法及其装置
CN101150853A (zh) * 2007-10-29 2008-03-26 华为技术有限公司 一种网络系统、策略管理控制服务器及策略管理控制方法

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101099332A (zh) * 2004-09-13 2008-01-02 Ut斯达康公司 用于无线接入网关的动态防火墙能力
WO2008099254A2 (fr) * 2007-02-12 2008-08-21 Nokia Corporation Autorisation d'accès ip non 3gpp dans une passerelle de réseau de données par paquets lors de l'établissement d'un tunnel
CN101345679A (zh) * 2008-08-21 2009-01-14 中兴通讯股份有限公司 动态业务的QoS保证方法、系统以及AAA和Anchor SFA
CN101945370A (zh) * 2010-09-25 2011-01-12 中兴通讯股份有限公司 一种实施动态策略控制的方法及系统

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111698730A (zh) * 2019-03-15 2020-09-22 阿里巴巴集团控股有限公司 流量控制方法、操作系统、端设备及分布式系统
CN111698730B (zh) * 2019-03-15 2023-11-21 斑马智行网络(香港)有限公司 流量控制方法、操作系统、端设备及分布式系统

Also Published As

Publication number Publication date
CN101945370A (zh) 2011-01-12
CN101945370B (zh) 2015-03-25

Similar Documents

Publication Publication Date Title
WO2012037835A1 (fr) Procédé et système de mise en oeuvre de gestion de politiques dynamique
Mehrabi et al. Edge computing assisted adaptive mobile video streaming
JP6632676B2 (ja) ポリシールールをモバイルエッジに配信するための方法、システム、およびコンピュータ読取可能媒体
CN108934007B (zh) 一种upf重选的策略控制方法、pcf及smf
JP5646684B2 (ja) 通信ネットワークに関連した確実なパケット・データ・サービス
EP2084853B1 (fr) Mécanisme de qualité de service
US9088973B1 (en) Systems and methods for subscriber-centric dynamic spectrum management
JP5684323B2 (ja) 電気通信ネットワークおよび時間に基づくネットワーク・アクセス方法
WO2016041344A1 (fr) Système et procédé de réalisation d'ouverture de capacité et plate-forme d'ouverture de capacité
CN101345679B (zh) 动态业务的QoS保证方法、系统以及AAA和Anchor SFA
US8750867B2 (en) Managing subscriber information
CA2660821A1 (fr) Provisionnement de qualites de services pour reseaux sans fil
WO2012089036A1 (fr) Procédé, dispositif et système de traitement permettant un contrôle de la bande passante
WO2010124485A1 (fr) Système et procédé permettant de réaliser la commande des ressources utilisateurs
US11606308B2 (en) Service aware admission control for IOT applications
WO2018233451A1 (fr) Procédé, appareil et système de communication
US20180007735A1 (en) System and method for data network reassignment
WO2014063554A1 (fr) Procédé, serveur, passerelle et système d'acquisition de position d'accès de terminal mab
WO2008011804A1 (fr) Procédé et dispositif de réseau pour attribution de bande de fréquence a une cellule
WO2011026391A1 (fr) Procédé de réattribution de charge pour passerelle de desserte, système et passerelle de desserte
CN114079999A (zh) 通信控制方法、网元及存储介质
US8274884B1 (en) Prevention of bandwidth abuse of a communications system
NZ556695A (en) Method optimising radio connections in mobile telecommunications network
KR102318746B1 (ko) 가상 id를 이용하여 복수의 pdu 세션들을 처리하는 방법 및 상기 방법을 수행하는 smf
WO2013097230A1 (fr) Procédé, dispositif et système de contrôle de politique

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11826362

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11826362

Country of ref document: EP

Kind code of ref document: A1