WO2012071875A1 - Media content monitoring method and device in ip multimedia subsystem - Google Patents

Media content monitoring method and device in ip multimedia subsystem Download PDF

Info

Publication number
WO2012071875A1
WO2012071875A1 PCT/CN2011/075610 CN2011075610W WO2012071875A1 WO 2012071875 A1 WO2012071875 A1 WO 2012071875A1 CN 2011075610 W CN2011075610 W CN 2011075610W WO 2012071875 A1 WO2012071875 A1 WO 2012071875A1
Authority
WO
WIPO (PCT)
Prior art keywords
ims
df3
ibcf
access gateway
monitored object
Prior art date
Application number
PCT/CN2011/075610
Other languages
French (fr)
Chinese (zh)
Inventor
周蓝粢
高扬
梁文娟
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to CN201010571488.5A priority Critical patent/CN102487521B/en
Priority to CN201010571488.5 priority
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2012071875A1 publication Critical patent/WO2012071875A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements or protocols for real-time communications
    • H04L65/10Signalling, control or architecture
    • H04L65/1013Network architectures, gateways, control or user entities
    • H04L65/1016IMS
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/30Network architectures or network communication protocols for network security for supporting lawful interception, monitoring or retaining of communications or communication related information
    • H04L63/306Network architectures or network communication protocols for network security for supporting lawful interception, monitoring or retaining of communications or communication related information intercepting packet switched data communications, e.g. Web, Internet or IMS communications

Abstract

A media content monitoring method in an IP multimedia subsystem is provided. The IP multimedia subsystem IMS is connected with a bearing layer network via an IMS access gateway / interconnect border control function entity IBCF. Said method includes the following steps: after having received a request to monitor the monitored object, said IMS transmits monitored object information to the IMS access gateway / border control function entity IBCF; when affirms that current access user is the monitored object, said IMS access gateway / IBCF reports the session communication content CC of the monitored object to a data delivery function 3 DF3. A media content monitoring device in the IP multimedia subsystem is also provided. This invention can implement session monitoring without major modification to the existing IMS network, and is compatible with different kinds of bearing layer networks because of the setting of the IMS access gateway / IBCF.

Description

 Media content monitoring method and device in IP multimedia subsystem

 The present invention relates to a monitoring technology in an IP Multimedia Subsystem (IMS) network architecture, and more particularly to a media content monitoring method and apparatus in an IP multimedia subsystem. Background technique

 The Internet Protocol Multimedia Subsystem (IMS) is the future of multimedia communications and the most important component of next-generation networks. It is a subsystem supporting IP multimedia services proposed by the 3GPP (3GPP, Third Generation Partnership Project). Its distinctive feature is the use of the Session Initial Protocol (SIP) system. Communication is independent of access mode. , with a variety of multimedia service control functions and separation of bearer capabilities, separation of calls and sessions, separation of applications and services, separation of services and networks, and the integration of mobile networks and Internet services.

 It is precisely because communication technology is becoming more and more powerful, and it is becoming more and more serious in all aspects of society and life, and the use of communication technology to engage in illegal and criminal activities. Lawful interception technology has become a powerful weapon for national security agencies to fight crime. Lawful interception means that the security agency sets a specific interception target on the communication device for the purpose of law enforcement, and monitors the session event and communication content of the monitoring target. It is an indispensable function in the communication field. Standards organizations such as the European Telecommunications Standards Institute (ETSI) and 3 GPP have been developing standards for lawful interception. Legitimate monitoring in the field of IMS networks has also formed corresponding standards and can guide specific implementation.

FIG. 1 is a schematic diagram of a 3GPP packet switching lawful interception architecture. As shown in FIG. 1, 3GPP proposes a lawful interception standard in the field of IMS packet switched (PS, Packet Switch) networks. Among them, the monitoring is based on the following three interfaces:

 HI1 interface, used to implement fabric control management;

 The HI2 interface is used for the IRI (Intercept Related Information) for the communication of the monitored target;

 HI3 interface, used to output the communication content of the monitored target ( CC , Communication

Content );

 The HI1 interface is separately controlled by the HI1, and the HI2 interface message is output to the control layer device, such as the Call Session Control Function (CSCF), to output the HI3 communication content to the bearer layer network. In the figure, XI to X3 are interfaces that are connected to the IMS and the GSN, respectively, corresponding to the HI1 interface to the HI3 interface.

 The standard can be applied to include Law Enforcement Monitoring Facility (LEMF), Management Function Entity (ADMF), Data Transfer Function 2 (DF2, Delivery Fimction2), Data Transfer Function 3 (DF3, Delivery Function3). ) and the monitoring system of the Gigabyte System Network (GSN).

The LEMF notifies the monitoring request to the ADMF through the HI1, and the request message carries the information such as the identifier of the interception object; the ADMF sends the interception request message to the bearer layer network GSN through the X1_1, and carries the information such as the identifier of the interception object; in the IMS domain, the ADMF will listen. The request message is sent to a Proxy Call Session Control Function (P-CSCF)/Serving-Call Session Control Function (S-CSCF, Serving-Call Session Control Function); ADMF sends the interception request message to the X1_3 through Xl_3 DF3, carrying information such as the identifier of the interception object; during the start of the session to the end of the session, in the IMS domain, when the session request is routed to the P-CSCF/S-CSCF via the GSN, the P-CSCF/S-CSCF determines that the user is monitored. The P-CSCF/S-CSCF reports the IRI in the session to the DF2 through the X2; the GSN reports the CC in the session to the DF3 through the X3; DF2 root According to the monitoring request from the ADMF, the received IRI is processed by the MF and reported to the LEMF through the HI2. The DF3, according to the monitoring request from the ADMF, processes the received CC through the MF and reports it to the LEMF through the HI3.

 Nowadays, in practical applications, the IMS-based next-generation network has a rich variety of bearer layer networks, including WLAN (Wireless Local Area Networks) and Local Area Networks (LAN). Therefore, it becomes very difficult to legally monitor the IMS network domain to adapt to various different bearer layer networks. At the same time, many carrier layer devices are required to implement the monitoring function, which is difficult to implement in reality. Many devices may not provide monitoring on the live network, which may cause the monitoring function to be unavailable. Summary of the invention

 In view of the above, the main purpose of the present invention is to provide a media content monitoring method and apparatus in an IP multimedia subsystem, which can directly report the CC of the session of the monitored object to the DF3 by the IMS access gateway/IBCF.

 In order to achieve the above object, the technical solution of the present invention is achieved as follows:

 The media content monitoring method in the IP multimedia subsystem, the IP multimedia subsystem IMS is connected to the bearer layer network through the IMS access gateway/interconnect boundary control function entity IBCF; the method includes:

 After receiving the interception request for the monitored object, the IMS sends the monitored object information to the IMS access gateway/boundary control function entity IBCF;

 When the IMS access gateway/IBCF confirms that the current access user is the monitored object, the communication content CC of the session of the monitored object is reported to DF3.

 Preferably, after receiving the interception request for the monitored object, the IMS sends the monitored object information to the IMS access gateway/boundary control function entity IBCF, specifically:

After receiving the interception request sent by the ADMF, the IMS sends the identifier information of the monitored object to the IMS access gateway/IBCF through the call content control interface. Preferably, the reporting the communication content CC of the session of the monitored object to the DF3 is: the IMS access gateway/IBCF sends the CC to the fixed port through the fixed port of the DF3.

DF3;

 Or, when the DF3 is the media gateway MGW/media gateway control function entity MGCF, the IMS access gateway/IBCF sends the CC to the DF3 by using the CC receiving port of the DF3 obtained from the IMS.

 Preferably, the bearer layer network is at least one of the following networks: a gigabyte system network GSN, a wireless local area network WLAN, a local area network LAN.

 A media content monitoring device in an IP multimedia subsystem, is applied to a system in which an IMS is connected to a bearer layer network through an IMS access gateway/IBCF, and the device includes a receiving unit and a sending unit disposed in the IMS, and is configured to a confirmation unit and a reporting unit in the IMS access gateway/IBCF;

 a receiving unit, configured to receive a listening request for the monitored object;

 a sending unit, configured to send the monitored object information to the IMS access gateway/boundary control function entity IBCF;

 The acknowledgment unit is configured to trigger the upper unit when the current access user is the monitored object, and the reporting unit is configured to report the CC of the session of the monitored object to the DF3.

 Preferably, the sending unit sends the identification information of the monitored object to the IMS access gateway /IBCF through the call content control interface.

 Preferably, the reporting unit sends a CC to the fixed port through the fixed port of the DF3

DF3;

 Or, when the DF3 is the media gateway MGW/media gateway control function entity MGCF, the upper unit sends the CC to the DF3 by using the CC receiving port of the DF3 obtained from the IMS.

Preferably, the bearer layer network is at least one of the following networks: GSN, WLAN, LAN. In the present invention, after receiving the interception request sent by the ADMF, the IMS notifies the IMS access gateway/IBCF of the information about the identifier of the monitored object, so that the IMS access gateway/IBCF can implement the monitored user. The control is performed. When it is determined that the currently accessed user is the monitored user, the session CC of the monitored user is reported to the DF3, thereby implementing monitoring of the monitored user. The IMS access gateway/IBCF is notified to the IMS access gateway/IBCF through the IMS, so that the IMS access gateway/IBCF is equipped with the control capability. The invention can realize the monitoring of the session without major modifications to the existing IMS network, and is compatible with various bearer layer networks because the IMS access gateway/IBCF is set. DRAWINGS

 FIG. 1 is a schematic diagram of a 3GPP packet switching legal listening architecture;

 2 is a schematic diagram of a legal listening architecture of an IMS network according to the present invention;

 FIG. 3 is a schematic structural diagram of a composition of a media content monitoring apparatus in an IP multimedia subsystem according to the present invention. detailed description

 The basic idea of the present invention is that, when the IMS receives the interception request sent by the ADMF, it notifies the IMS access gateway/IBCF of the information about the identifier of the monitored object, so that the IMS access gateway/IBCF can implement the pair. The monitored user performs the control. When it is determined that the currently accessed user is the monitored user, the session CC of the monitored user is reported to the DF3, thereby implementing monitoring of the monitored user.

 2 is a schematic diagram of a lawful interception architecture of an IMS network according to the present invention. As shown in FIG. 2, compared with the 3GPP packet switched lawful interception architecture shown in FIG. 1, the bearer layer network (GSN, WLAN, The LAN or the like is connected to the IMS through the IMS access gateway/IBCF, and the application environment of the present invention is that the IMS access gateway/IBCF and the IMS do not support network deployment. The following describes in detail how each network element and its information exchange.

LEMF notifies the monitoring request to ADMF through HI1, and the message is carried in the clear request message. ID and other information; ADMF sends the interception request message to the bearer layer network GSN/.../WLAN/LAN through Xl_l, carrying the information such as the identifier of the interception object; ADMF sends the interception request message to the IMS through Xl_3, carrying the identity of the interceptor Identification and other information; ADMF sends the interception request message to DF2 through Xl_4, carrying the information such as the identifier of the interception object; ADMF sends the interception request message to DF3 through XI-5, carrying the information such as the identifier of the interception object; session establishment process, session request After GSN/-/WLAN/LAN, GSNA../WLAN/LAN judges that this user is monitored, listens to the monitored object according to the interception object identifier, and sends the interception object session related information to the IMS access gateway/IBCF; IMS access The gateway/IBCF adapts the session information sent by the bearer layer network GSN/.../WLAN/LAN to the IMS through an Adaptation Function Interface (AFI); the IMS determines this based on the interception request from the ADMF. The user is monitored, and the session information sent by the IMS access gateway/IBCF is processed, and the IRI event in the session establishment process is reported through X2. To the DF2; at the same time, the IMS judges that the user is monitored according to the monitoring request from the ADMF, and can also report the CC in the session establishment process to the DF3 through X3.

 In the present invention, after receiving the monitoring request of the ADMF, the IMS can determine the related information of the monitored user by monitoring the identification information of the monitored object in the request. At this time, the IMS will identify the identification information of the monitored object. The related information is sent to the IMS access gateway/IBCF through the call content control interface to implement network control of the IMS access gateway/IBCF. Here, the call content control interface may be a CCCI interface; those skilled in the art should understand that the CCCI interface only The naming manner of the interface does not mean the limitation of the interface. In the present invention, the CCCI interface is taken as an example for description. Of course, the IMS can also directly forward the interception request to the IMS access gateway/IBCF through the CCCI interface, and the IMS access gateway/IBCF extracts the identification information of the intercepted object from the interception request, and the like, thereby implementing the intercepted object. Network control.

In this way, after receiving the session information sent by the bearer layer network GSN VIII../WLAN/LAN, the IMS access gateway/IBCF confirms the relevant information according to the identifier information of the monitored object. Whether the user of the session is the monitored user, and if so, reports the CC of the current user's session to DF3.

 Specifically, the IMS access gateway/IBCF reports the CC of the session to the DF3, and is divided into two cases. When the DF3 is not the MGW/MGCF, the port for media negotiation between the IMS access gateway/IBCF and the DF3 is fixed. When the IMS access gateway/IBCF determines that the current user is the monitored object, the CC of the current session can directly report the CC of the session to the DF3 through the fixed port of the DF3. When the DF3 is a Media Gateway (MGW)/Media Gate Way Control Function (MGCF), the MGW/MGCF is dynamically assigned IP and port during the media negotiation process. Therefore, the IMS is connected. The incoming gateway/IBCF is not capable of negotiating with the MGW/MGCF media to obtain dynamically assigned IPs and ports, and cannot report CCs. At this time, if the CC reports the CC to DF3 through X3, there will be a media roundback problem, that is, the IMS access gateway/IBCF first needs to send the CC to the IMS, and the IMS sends the CC to the DF3. The media negotiation is end-to-end media negotiation, and does not pass through the IMS. Only the Session Description Protocol (SDP) passes through the IMS. If the IMS needs to report the CC, the media must be uploaded to the IMS, that is, the IMS access gateway. The /IBCF must also send the media communication content to the IMS, so that each user in the session must pass the IMS to perform media negotiation, that is, cause the media to bypass; the present invention can use the IMS and DF3 (MGW/MGCF) for media negotiation IP and port. After the media negotiates, the IMS notifies the IMS access gateway/IBCF of the media negotiated IP and port. In this way, the IMS access gateway /IBCF can directly report the CC to DF3.

 3 is a schematic structural diagram of a media content monitoring device in an IP multimedia subsystem according to the present invention. As shown in FIG. 3, a media content monitoring device in an IP multimedia subsystem of the present invention is applied to an IMS through an IMS access gateway/IBCF and a bearer layer network. In the connected system, the receiving unit 30 and the transmitting unit 31 are provided in the IMS, and the confirming unit 32 and the reporting unit 33 are provided in the IMS access gateway/IBCF;

The receiving unit 30 is configured to receive a listening request for the monitored object. The sending unit 31 is configured to send the monitored object information to the IMS access gateway/boundary control function entity IBCF;

 The confirmation unit 32 is configured to trigger the reporting unit when the current access user is the monitored object.

33;

 The reporting unit 33 is configured to report the CC of the session of the monitored object to the DF3.

 The sending unit 31 sends the identification information of the monitored object to the IMS access gateway /IBCF through the CCCI.

 The reporting unit 33 sends the CC to the DF3 through the fixed port of the DF3. Alternatively, when the DF3 is the MGW/MGCF, the reporting unit 33 sends the CC to the CC receiving port of the DF3 obtained from the IMS. The DF3.

 The foregoing bearer layer network is at least one of the following networks: GSN, WLAN, LAN.

 It should be understood by those skilled in the art that the media content monitoring device in the IP multimedia subsystem shown in FIG. 3 is designed to implement the foregoing media content monitoring method in the IP multimedia subsystem, and each processing unit/processing subunit/ The implementation function of the processing module can be understood by referring to the related description of the media content monitoring method in the foregoing IP multimedia subsystem. The functions of the various processing units in the figure can be implemented by a program running on a processor, or by a specific logic circuit.

 The above is only the preferred embodiment of the present invention and is not intended to limit the scope of the present invention.

Claims

Claim
 A media content monitoring method in an IP multimedia subsystem, the IP multimedia subsystem IMS is connected to the bearer layer network by the IMS access gateway/interconnect boundary control function entity IBCF; and the method includes:
 After receiving the interception request for the monitored object, the IMS sends the monitored object information to the IMS access gateway/boundary control function entity IBCF;
 When the IMS access gateway/IBCF confirms that the current access user is the monitored object, the communication content CC of the session of the monitored object is reported to the data transmission function 3 DF3.
 The method according to claim 1, wherein the IMS sends the monitored object information to the IMS access gateway/boundary control function entity IBCF after receiving the interception request for the monitored object:
 After receiving the interception request sent by the ADMF, the IMS sends the identifier information of the monitored object to the IMS access gateway/IBCF through the call content control interface.
 The method according to claim 1, wherein the communication content CC of the session to be monitored is given to the DF3 by:
 Sending, by the IMS access gateway /IBCF, the CC to the fixed port through the fixed port of the DF3
DF3;
 Or, when the DF3 is the media gateway MGW/media gateway control function entity MGCF, the IMS access gateway/IBCF sends the CC to the DF3 by using the CC receiving port of the DF3 obtained from the IMS.
 The method according to any one of claims 1 to 3, wherein the bearer layer network is at least one of the following networks: a gigabyte system network GSN, a wireless office network WLAN, and a station i Or network LAN.
5. A media content monitoring device in an IP multimedia subsystem, which is applied to a system in which an IMS is connected to a bearer layer network through an IMS access gateway/IBCF, wherein the device includes a receiving unit and a sending unit, which are located in the IMS, and a acknowledgment unit and a reporting unit, which are located in the IMS access gateway/IBCF;
 a receiving unit, configured to receive a listening request for the monitored object;
 a sending unit, configured to send the monitored object information to the IMS access gateway/boundary control function entity IBCF;
 The acknowledgment unit is configured to trigger the upper unit when the current access user is the monitored object, and the reporting unit is configured to report the CC of the session of the monitored object to the DF3.
 The device according to claim 5, wherein the sending unit sends the identification information of the monitored object to the IMS access gateway ZIBCF through the call content control interface.
 The device according to claim 5, wherein the reporting unit sends a CC to the DF3 through a fixed port of the DF3;
 Or, when the DF3 is the MGW/MGCF, the reporting unit sends the CC to the DF3 by using a CC receiving port of the DF3 obtained from the IMS.
 The device according to any one of claims 5 to 7, wherein the bearer layer network is at least one of the following networks: GSN, WLAN, LAN.
PCT/CN2011/075610 2010-12-03 2011-06-10 Media content monitoring method and device in ip multimedia subsystem WO2012071875A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201010571488.5A CN102487521B (en) 2010-12-03 2010-12-03 Media content monitor method and device in IP Multimedia System
CN201010571488.5 2010-12-03

Publications (1)

Publication Number Publication Date
WO2012071875A1 true WO2012071875A1 (en) 2012-06-07

Family

ID=46152965

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2011/075610 WO2012071875A1 (en) 2010-12-03 2011-06-10 Media content monitoring method and device in ip multimedia subsystem

Country Status (2)

Country Link
CN (1) CN102487521B (en)
WO (1) WO2012071875A1 (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101420432A (en) * 2008-12-01 2009-04-29 华为技术有限公司 Implementing method, system and apparatus for IMS listening
CN101562810A (en) * 2009-05-13 2009-10-21 中兴通讯股份有限公司 Method and system for legally monitoring IP multimedia subsystem network
CN101583129A (en) * 2009-06-12 2009-11-18 中兴通讯股份有限公司 Legal interception system and method in IP multi-media subsystem network

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100512161C (en) * 2006-07-18 2009-07-08 华为技术有限公司 Method for transmitting legal monitoring information

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101420432A (en) * 2008-12-01 2009-04-29 华为技术有限公司 Implementing method, system and apparatus for IMS listening
CN101562810A (en) * 2009-05-13 2009-10-21 中兴通讯股份有限公司 Method and system for legally monitoring IP multimedia subsystem network
CN101583129A (en) * 2009-06-12 2009-11-18 中兴通讯股份有限公司 Legal interception system and method in IP multi-media subsystem network

Also Published As

Publication number Publication date
CN102487521B (en) 2016-06-08
CN102487521A (en) 2012-06-06

Similar Documents

Publication Publication Date Title
ES2309899T3 (en) Adaptation of virtual and physical network interfaces.
EP1396113B1 (en) Method and system allowing lawful interception of connections such as voice-over-internet-protocol calls
US7958233B2 (en) Method for lawfully intercepting communication IP packets exchanged between terminals
US6754834B2 (en) Technique for generating correlation number for use in lawful interception of telecommunications traffic
DE602004003518T2 (en) Method and system for legally intercepting packet-switched network services
US20060072550A1 (en) Providing CALEA/LegaI Intercept information to law enforcement agencies for internet protocol multimedia subsystems (IMS)
US20100039946A1 (en) Interception Of Multimedia Services
US8499082B2 (en) Methods, systems, and computer readable media for providing services in a telecommunications network using interoperability specification/session initiation protocol (IOS/SIP) adapter
US8532614B2 (en) Non-access stratum architecture and protocol enhancements for long term evolution mobile units
EP2095224B1 (en) Systems, methods, media, and means for hiding network topology
US8041022B1 (en) Policy-based control of content intercept
KR101501399B1 (en) Policy routing-based lawful interception in communication system with end-to-end encryption
US7570743B2 (en) Method and apparatus for surveillance of voice over internet protocol communications
EP1835652B1 (en) A method for ensuring the safety of the media-flow in ip multimedia sub-system
CN100394728C (en) Informing a lawful interception system of the serving system serving an intercepted target
US8588109B2 (en) Integrated lawful intercept for internet protocol multimedia subsystem (IMS) over evolved packet core (EPC)
US20100154057A1 (en) Sip intrusion detection and response architecture for protecting sip-based services
US7969968B2 (en) Lawful interception in wireline broadband networks
US20040228362A1 (en) Multimedia component interception in a gateway GPRS support node (GGSN)
US8934609B2 (en) Method and apparatus for identifying and monitoring VoIP media plane security keys for service provider lawful intercept use
US8862718B2 (en) System, method and apparatus for troubleshooting an IP network
WO2006041080A1 (en) Firewall system and firewall control method
EP2255517A1 (en) Data retention and lawful intercept for ip services
US8327144B2 (en) Authentication method, system, and apparatus thereof for inter-domain information communication
US8406800B2 (en) Method and device for establishing an inter-radio frequency subsystem interface (ISSI) unit-to-unit call

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11845343

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase in:

Ref country code: DE

122 Ep: pct app. not ent. europ. phase

Ref document number: 11845343

Country of ref document: EP

Kind code of ref document: A1