WO2013110224A1 - Method, device, and system for triggering mtc device - Google Patents

Method, device, and system for triggering mtc device Download PDF

Info

Publication number
WO2013110224A1
WO2013110224A1 PCT/CN2012/074125 CN2012074125W WO2013110224A1 WO 2013110224 A1 WO2013110224 A1 WO 2013110224A1 CN 2012074125 W CN2012074125 W CN 2012074125W WO 2013110224 A1 WO2013110224 A1 WO 2013110224A1
Authority
WO
WIPO (PCT)
Prior art keywords
mtc
server
mtc device
trigger
mtc server
Prior art date
Application number
PCT/CN2012/074125
Other languages
French (fr)
Chinese (zh)
Inventor
余万涛
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2013110224A1 publication Critical patent/WO2013110224A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • H04W12/084Access security using delegated authorisation, e.g. open authorisation [OAuth] protocol
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/60Context-dependent security
    • H04W12/69Identity-dependent
    • H04W12/71Hardware identity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/60Context-dependent security
    • H04W12/69Identity-dependent
    • H04W12/72Subscriber identity

Definitions

  • the present invention relates to the field of communications, and in particular to a method, device and system for triggering an MTC device.
  • BACKGROUND OF THE INVENTION Machine Type Communication (referred to as MTC) refers to a series of technologies and combinations thereof that implement wireless communication technology to realize data communication and communication between machines and machines, machines and people.
  • MTC includes two meanings: The first layer is the machine itself, which is called smart device in the embedded field; the second layer is the connection between the machine and the machine, connecting the machines together through the network.
  • Machine-based communication is used in a wide range of applications, such as intelligent measurement, remote monitoring, tracking, medical, etc., to make human life more intelligent.
  • MTC devices Compared with traditional human-to-human communication, MTC devices have a large number of applications and a wide range of applications, which has great market prospects.
  • the MTC device communicates with the MTC server through a 3GPP network and an MTC Interworking Function (MTC-IWF).
  • MTC-IWF MTC Interworking Function
  • MTC-SGW MTC-Security GateWay
  • 4 is a schematic diagram of a connection system of an external interface of a machine type communication system that introduces an MTC security gateway according to the related art. As shown in FIG.
  • the MTC security gateway is introduced as an MTC external interface. After (MTC-IWF), the security of the external interface is guaranteed.
  • M2M Machine to Machine
  • the MTC device is not allowed to access the MTC server at will.
  • a user's MTC server is only allowed to trigger the user's MTC device.
  • the attacker may send a trigger command to the MTC device by impersonating the mobile communication network or the MTC server to trigger the MTC device to establish a connection with the MTC server. Therefore, security measures are required to ensure that the MTC device can only respond to trigger commands from a secure MTC server.
  • a method for triggering an MTC device including: a trigger request message sent by a receiver-type communication MTC server; determining the trigger request message according to a preset relationship between an MTC server and an MTC device.
  • the MTC device requesting the trigger is an MTC device associated with the MTC server; triggering the MTC device to establish a secure connection with the MTC server.
  • the method further comprises: rejecting the trigger request message if the triggering request message requesting the triggered MTC device is not the MTC device associated with the MTC server.
  • rejecting the trigger request message comprises: sending a reject message to the MTC server indicating that the triggering of the MTC device is refused.
  • the triggering the MTC device to establish a secure connection with the MTC server comprises: sending a triggering instruction message to the MTC device; or forwarding the trigger request message to a predetermined network entity in the mobile communication network, The predetermined network entity sends a trigger instruction message to the MTC device according to the trigger request message.
  • the method further includes: the MTC device receiving the triggering instruction message, and establishing the MTC device and the MTC server in response to the triggering instruction message Communication between the connections.
  • the association relationship includes: a correspondence between the MTC server and the MTC device; determining that the MTC device triggered by the trigger request message request is an MTC device associated with the MTC server includes: determining that the MTC server requests triggering Whether the MTC device is an MTC device corresponding to the MTC server, and if so, determining that the MTC device is an MTC device associated with the MTC server.
  • the information carried in the trigger request message includes: identity information of the MTC server and/or identity information of the MTC device and/or identity information of the MTC user; the corresponding relationship includes: Corresponding relationship between the identity information of the MTC server and the identity information of the MTC device; determining whether the MTC device requested by the MTC server is an MTC device corresponding to the MTC server includes: determining identity information of the MTC device Whether the identity information of the MTC server has the corresponding relationship; or the corresponding relationship includes: a correspondence between the identity information of the MTC server and the identity information of the MTC user; determining the MTC triggered by the MTC server request Whether the device is the MTC device corresponding to the MTC server includes: determining whether the identity information of the MTC user and the identity information of the MTC server have the corresponding relationship.
  • the association relationship includes: an association relationship between the MTC user, the MTC server, and the MTC device; determining that the MTC device triggered by the trigger request message request is an MTC associated with the MTC server
  • the device includes: determining whether the MTC server and the MTC device are associated with the same MTC user, and if yes, determining that the MTC device is an MTC device associated with the MTC server.
  • the information carried in the trigger request message includes: identity information of the MTC server and/or identity information of the MTC device and/or identity information of an MTC user; determining the MTC server and the MTC device Whether it is associated with the same MTC user, the method includes: determining whether the identity information of the MTC device and the identity information of the MTC server are associated with the identity information of the same MTC user.
  • the identity information of the MTC device includes: an international mobile equipment identifier IMEI; the identity information of the MTC user includes: an international subscriber identity IMSI; and the identity information of the MTC server includes: the identity of the MTC server Logo.
  • a triggering apparatus for an MTC device including: a receiving module, configured to be a trigger request message sent by a receiver-type communication (MTC) server; and a determining module configured to be according to a preset MTC server
  • the MTC device that is triggered by the trigger request message request is an MTC device that is associated with the MTC server; and the triggering module is configured to trigger the MTC device to establish a secure connection with the MTC server.
  • the triggering module is configured to send a triggering instruction message to the MTC device, or forward the triggering request message to a predetermined network entity in the mobile communication network, and send, by the predetermined network entity, a triggering instruction to the MTC device. Message.
  • the association relationship includes: a correspondence between the MTC server and the MTC device; the determining module is configured to determine whether the MTC device requested by the MTC server is an MTC device corresponding to the MTC server, and if yes, Determining that the MTC device is an MTC device associated with the MTC server.
  • the association relationship includes: an association relationship between the MTC user, the MTC server, and the MTC device; the determining module is configured to determine the MTC server according to an association relationship between the MTC user, the MTC server, and the MTC device. Whether the MTC device is associated with the same MTC user, and if so, determining that the MTC device is an MTC device associated with the MTC server.
  • a triggering system for an MTC device including: an MTC server, configured to send a trigger request message to an MTC external interface function entity MTC-IWF; the MTC external interface function entity, including the foregoing
  • the triggering device of the MTC device is configured to be a trigger request message sent by the MTC server of the receiver, and determined according to a preset relationship between the MTC server and the MTC device.
  • the MTC device is an MTC device associated with the MTC server, and triggers the MTC device to establish a secure connection with the MTC server.
  • the MTC external interface function entity is further configured to: reject the trigger request message if the triggering request message requesting that the triggered MTC device is not the MTC device associated with the MTC server.
  • the MTC external interface function entity sends a trigger instruction message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network, when determining that the MTC device to be triggered by the request is an MTC device associated with the MTC server.
  • FIG. 1 is a schematic diagram of a machine type communication system architecture according to the related art
  • FIG. 2 is a schematic diagram of a machine type communication system architecture for a scenario of a home network route when an MTC device roams according to the related art
  • FIG. 4 is a schematic diagram of a connection system of an external interface of a machine type communication system that introduces an MTC security gateway according to the related art
  • FIG. 5 is a schematic diagram of a connection system of an external interface of a machine type communication system that introduces an MTC security gateway according to the related art
  • FIG. FIG. 6 is a schematic diagram of a triggering system of an MTC device according to a first preferred embodiment of the present invention
  • FIG. 7 is a triggering system of an MTC device according to a preferred mode 2 of the embodiment of the present invention
  • Figure 8 is a block diagram showing the structure of a triggering device of an MTC device according to an embodiment of the present invention
  • 9 is a flowchart of a method for triggering an MTC device according to an embodiment of the present invention
  • FIG. 10 is a flowchart of a method for triggering an MTC device according to Embodiment 1 of the present invention
  • FIG. 11 is a trigger of an MTC device according to Embodiment 2 of the present invention
  • Figure 12 is a flow chart of a method of triggering an MTC device in accordance with an implementation of the present invention.
  • the embodiment of the present invention provides a triggering method, device, and system for the MTC device, and implements the security of the MTC device.
  • the triggering, the MTC device can only be triggered by the MTC server associated with the MTC device.
  • the MTC server associated with the MTC device can be an MTC server belonging to the same MTC user as the MTC device, thereby implementing an MTC server of the MTC user only
  • the MTC device that triggers the MTC user can improve the security of the MTC service.
  • the MTC device refers to a device for machine-to-machine communication in a mobile communication network, and a mobile communication user identification card (UICC) is installed on the MTC device, and the user identification module (such as a customer identification module (Subscriber Identity) Module, referred to as SIM), USIM, ISIM, etc.) is located on the UICC.
  • a triggering system for an MTC device is provided.
  • the MTC external interface function entity determines whether the MTC device requested to be triggered is an MTC device associated with the MTC server, and if yes, sends the MTC device to the MTC device.
  • the instruction message is triggered, or the trigger request is forwarded to other network entities in the mobile communication network, and the triggering information is sent by the network entity to the MTC device.
  • the MTC device After receiving the trigger command message, the MTC device establishes a secure connection with the MTC server; if not, the MTC external interface function entity rejects the trigger request message, and implements an MTC server that can only trigger the MTC device associated with the MTC server, thereby improving the MTC. Business security. FIG.
  • the system may include: an MTC server 10 and an MTC external interface function entity 20.
  • the MTC server 10 is configured to send a trigger request message to the MTC external interface function entity 20, and the MTC external interface function entity 20 is configured to send a trigger request message sent by the receiver MTC server 10 according to the preset MTC server and the MTC device.
  • Correlation relationship determining that the MTC device is an MTC device associated with the MTC server 10, and The trigger instruction message is sent to the MTC device, or the trigger request is forwarded to other network entities in the mobile communication network, and the trigger information is sent by the network entity to the MTC device.
  • the other network entities in the foregoing mobile communication network include, but are not limited to, a short message center (SMS-SC/IP-SM-GW), an SGSN (GPRS Service Support Node), and an MME (Mobility Management Entity).
  • SMS-SC/IP-SM-GW short message center
  • SGSN GPRS Service Support Node
  • MME Mobility Management Entity
  • the association relationship between the MTC server and the MTC device may be established according to a predetermined rule. For example, the MTC device belonging to the same MTC user may be associated with the MTC server, or even the MTC device that is not the same MTC user. And the MTC server, as long as the MTC server is allowed to establish a connection with the MTC device, the association relationship between the MTC server and the MTC device can be established.
  • the MTC external interface function entity determines that the MTC device that is requested to be triggered is an MTC device associated with the MTC server, and sends a trigger instruction message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network.
  • the triggering information is sent by the network entity to the MTC device, and the MTC device is triggered to establish a connection with the MTC server, so that the MTC server only triggers the MTC device associated with the MTC server, thereby improving the security of communication between the MTC device and the MTC server.
  • the association relationship may be an association relationship between the MTC device, the MTC server, and the MTC user, and the MTC external interface function entity 20 receives the trigger request sent by the MTC server 10.
  • the MTC external interface function entity 20 receives the trigger request sent by the MTC server 10.
  • it may be determined whether the MTC device triggered by the request and the MTC server are associated with the same MTC user, and if yes, sending a trigger instruction message to the MTC device, or forwarding the trigger request to other network entities in the mobile communication network, and These network entities send trigger instruction information to the MTC device.
  • the MTC device After receiving the trigger instruction message, the MTC device establishes a secure connection with the MTC server; if not, the MTC external interface function entity rejects the trigger request.
  • the MTC device, the MTC device belonging to the MTC user, and the MTC server may be associated with each other in the association relationship between the MTC device, the MTC server, and the MTC user, so that an MTC user can be implemented.
  • the MTC server can only trigger the MTC device of the MTC user, which further improves the security of the MTC service.
  • the MTC external interface function entity determines that the MTC device requesting the trigger belongs to the same MTC user as the MTC server, and sends a trigger instruction message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network.
  • the network entity sends the triggering instruction information to the MTC device, triggering the MTC device to establish a connection with the MTC server, and realizing that the MTC server only triggers the MTC device belonging to the same MTC user, thereby improving the security of communication between the MTC device and the MTC server.
  • the MTC external interface function entity 20 is further configured to reject the trigger request if the MTC device triggered by the trigger request message request is not the MTC device associated with the MTC server 10.
  • the MTC external interface function entity 20 may send a reject message to the MTC server indicating that the triggering of the MTC device is refused.
  • the MTC device that is not associated with the MTC server is rejected, so that the MTC server only triggers the MTC device associated with the MTC server, which improves the security of the MTC system.
  • the MTC external interface function entity 20 is further configured to reject the trigger request if the MTC device triggered by the trigger request message request and the MTC server 10 do not belong to the same MTC user.
  • the MTC external interface function entity 20 may send a reject message indicating that the refusal to trigger the MTC device is sent to the MTC server.
  • the MTC device that does not belong to the same MTC user as the MTC server is rejected, so that the MTC server only triggers the MTC device belonging to the same MTC user, which improves the security of the MTC system.
  • the foregoing relationship may be recorded by using the identity information of the MTC device, the identity information of the MTC server, and the identity information of the MTC user (in the case of including the MTC user) to record the MTC device and the MTC server. And the association of MTC users (in the case of MTC users).
  • the identity information of the MTC device includes but is not limited to: an International Mobile Equipment Identity (IMEI) or other identity information used to identify the MTC device.
  • IMEI International Mobile Equipment Identity
  • the identity information of the MTC user includes but is not limited to: an International Subscriber Identity (IMSI) of the MTC user or other identity information used to identify the MTC user.
  • Identity information of the MTC server include but are not limited to: the identity (MTC_Serv er _ID) the MTC server or other server identification information for identifying the MTC.
  • the MTC external interface function entity 20 may be an independent MTC security gateway, or may include an MTC security gateway and an MTC external interface function entity including an MTC security gateway function.
  • the MTC external interface function entity that includes the MTC security gateway function is also an MTC security gateway in terms of functions and implementation. The above preferred embodiments are described below separately.
  • the MTC external interface function entity 20 is a separate MTC security gateway, and the MTC security gateway is located between the mobile network and the MTC server.
  • 6 is a schematic diagram of a trigger system of an MTC device according to a first preferred embodiment of the present invention, showing an external connection system architecture that triggers an MTC device. As shown in FIG.
  • the system may include: an MTC external interface function entity, an MTC server, a gateway GPRS support node (GGSN) / a packet data gateway (PGW), a local location register (HLR) / a local subscription data server (HSS), And a short message center (SMS-SC/IP-SM-GW) and a P SGSN (GPRS Service Support Node) / MME (Mobility Management Entity, Mobile Management Entity).
  • the MTC external interface function entity, the MTC external interface function entity is an independent MTC security gateway, implements an external interface function, authenticates and authorizes the MTC server, ensures the security of the external interface communication, and can be used to shield the mobile communication system. Network topology, relay or processing signaling protocols.
  • the MTC external interface is implemented by an independent MTC security gateway, and the MTC security gateway communicates with the short message center (SMS-SC/IP-SM-GW) through the T4 and MTCsms interfaces, that is, MTC security.
  • the gateway supports both T4 and MTCsms communication protocols.
  • the MTC security gateway supports the triggering of the MTC device, that is, the MTC server only triggers the MTC device associated with it, or the MTC server only triggers the MTC device that belongs to the same MTC user.
  • FIG. 7 is a schematic diagram of a trigger system of an MTC device according to a preferred mode 2 of the embodiment of the present invention, showing an external connection system architecture that triggers the MTC device.
  • the system includes: an MTC external interface function entity, an MTC server, a GGSN/PGW, an SGSN/MME, and an SMS-SC/IP-SM-GW.
  • the MTC external interface function entity is composed of an MTC security gateway entity and an external interface entity including an MTC security gateway function, implements an external interface function, performs authentication and authorization on the MTC server, ensures security of external interface communication, and is used for shielding.
  • the network topology of the mobile communication system relaying or processing signaling protocols.
  • MTC server used to provide MTC related services or services.
  • the MTC external interface is implemented by the MTC security gateway and an external interface entity that includes the MTC security gateway function.
  • the MTC security gateway communicates with the short message center through the MTCsms interface.
  • the support for the T4 and MTCsms interfaces can be set according to actual conditions.
  • the MTC security gateway or the external interface entity that includes the MTC security gateway function supports the triggering of the MTC device, that is, the MTC server only triggers the MTC device associated with it, or the MTC server only triggers the MTC device that belongs to the same MTC user.
  • Embodiment 1 According to the embodiment of the present invention, a triggering system for an MTC device is provided for the MTC device and the mobile communication network to be triggered by the MTC device.
  • the system includes:
  • the MTC device is a device used by the user for machine type communication, and the UICC card is installed in the MTC device.
  • the mobile communication network is configured to send a trigger instruction to the MTC device, and the mobile communication network may include a 3GPP network and a 3GPP2 network.
  • the mobile communication network may include: GGSN/PGW (Gateway GPRS Support Node/Packet Data Gateway), HLR/HSS (Local Location Register/Local Subscription Data Server), SGSN/MME (GPRS Service Support Node/Mobile Management Entity) And the short message center (the SMS-SC/IP-SM-GW MTC external interface function entity, the MTC external interface function entity can be an independent MTC security gateway, implement the external interface function, authenticate and authorize the MTC server, guarantee the external The security of the interface communication can be used to shield the network topology of the mobile communication system, relay or process the signaling protocol.
  • GGSN/PGW Gateway GPRS Support Node/Packet Data Gateway
  • HLR/HSS Land Location Register/Local Subscription Data Server
  • SGSN/MME GPRS Service Support Node/Mobile Management Entity
  • the short message center the SMS-SC/IP-SM-GW MTC external interface function entity
  • the MTC external interface function entity can be an independent MTC security gateway
  • the MTC external interface function entity can also be composed of the MTC security gateway entity and an external interface entity (MTC) that includes the MTC security gateway function.
  • MTC MTC Security Gateway
  • -IWF MTC Security Gateway
  • the MTC server initiates a trigger request or instruction and provides an M2M service for the MTC user.
  • the MTC device and the MTC server may belong to the same MTC user.
  • the MTC device when the MTC server of the MTC user communicates with an MTC device of the MTC user, the MTC device may be activated to establish a secure connection with the MTC server by triggering a request or an instruction.
  • the MTC server of the MTC user needs to receive information from an MTC device of the MTC user, the MTC server sends a trigger request or a trigger command to the MTC external interface function entity, and the MTC external interface function entity triggers according to the trigger request or the trigger instruction of the MTC server.
  • a secure connection is established between the MTC device and the MTC server.
  • the MTC external interface function entity of the local network can save and manage the association information of the MTC user with the MTC device and the MTC server in the local network.
  • the association relationship between the MTC user identity information and the MTC device identity information and the MTC server identity information may be saved and maintained in the MTC external interface function entity, for example, the MTC user identity information IMSI and the MTC device identity information IMEI and the MTC server. form of identity MTC_Serv er _ID relationship list associated with preservation, management and maintenance.
  • the MTC device and the MTC server may also have some association relationship.
  • an MTC server when communicating with an MTC device, an MTC server may activate a corresponding MTC device to establish a secure connection with the MTC server by sending a trigger request or an instruction.
  • the MTC server needs to receive information from an MTC device, the MTC server sends a trigger request or a trigger command to the MTC external interface function entity, and the MTC external interface function entity triggers the trigger between the MTC device and the MTC server according to the trigger request or the trigger instruction of the MTC server. Establish a secure connection.
  • the identity information related to the MTC device includes: identity information of the MTC device and identity information of the MTC device subscription user (ie, the MTC user).
  • the MTC device signing user identity information is the MTC user identity information IMSI or other identity information used to identify the MTC user.
  • the association relationship between the MTC device and the MTC server may be an association relationship between the identity information related to the MTC device and the MTC server identity information.
  • MTC_Serv er _ID can also be associated with the relationship between the MTC device identity IMEI and the MTC server identity information MTC_Serv er _ID can also be MTC device other information related to the identity relationship with the MTC server identity information MTC_Serv er _ID of.
  • MTC external interface function entity of the local network can save and manage the association relationship between the MTC device and the MTC server in the local network.
  • the MTC-IWF entity save manage and maintain relationships MTC device-related identity information with the MTC server identity information, such as related to subscriber identity MTC device IMSI information of the MTC server identity information MTC_Serv er _ID of in the form of a list of relationship save, manage and maintain, or device identity information to MTC MTC server and IMEI identity information MTC_Serv er in the form of a list of associated relations _ID preservation, management and maintenance.
  • MTC device-related identity information with the MTC server identity information, such as related to subscriber identity MTC device IMSI information of the MTC server identity information MTC_Serv er _ID of in the form of a list of relationship save, manage and maintain, or device identity information to MTC MTC server and IMEI identity information MTC_Serv er in the form of a list of associated relations _ID preservation, management and maintenance.
  • the directed MTC device and associated relationships MTC server may be an MTC user identity information international subscriber identity another 1 J code (International Mobile Subscriber Identification Number, abbreviated as IMSI) with the MTC device identity information of the International Mobile Equipment Identity (International The association relationship of the Mobile Equipment Identity (IMEI) is that the MTC device corresponding to the IMEI is a legal MTC device corresponding to the MTC user identity information IMSI.
  • the association relationship may also be an association relationship between the MTC user identity information IMSI and the MTC server identity information MTC_Server_ID, and the MTC server corresponding to the MTC_Server_ID is a legal MTC server corresponding to the MTC user identity information IMSI.
  • the association relationship may be an association between the MTC user identity information IMSI and the MTC server identity information MTC_Server_ID and the MTC device identity information IMEI, and the MTC server corresponding to the MTC_Server_ID and the MTC device corresponding to the IMEI belong to the MTC user whose identity information is the IMSI.
  • the MTC server needs to trigger the MTC device to communicate, the MTC server sends a trigger request or trigger command to the MTC external interface function entity of the local network.
  • Related identity information and request instructions MTC_Serv er _ID triggering request message or trigger comprises a trigger MTC MTC server equipment identity information, such as the IMEI and IMSI.
  • the MTC external interface function entity of the local network determines whether the trigger process needs to be performed. Specifically, the MTC external interface function entity of the local network determines, according to the association relationship between the stored MTC device and the MTC server, identity information related to the MTC device to be triggered, such as IMEI and MTC server identity information MTC_Server_ID, or IMSI and MTC server identity. Information MTC_Server_ID, whether there is an association relationship. If the MTC server is associated with the MTC device, the MTC external interface function entity of the local network sends the triggering command to the MTC device via the mobile communication network, or forwards the trigger request to other network entities in the mobile communication network, such as a short message center.
  • the MTC device After receiving the trigger command, the MTC device starts and establishes a secure connection with the MTC server. If the MTC server does not have an association relationship with the MTC device, the MTC external interface function entity of the local network rejects the trigger request or the trigger instruction of the MTC server. Preferably, a reject message indicating that the refusal to trigger the MTC device may be sent to the MTC server. After receiving the trigger request or the trigger instruction message, the MTC external interface function entity of the local network determines whether the trigger process needs to be performed.
  • the MTC external interface function entity of the local network determines, according to the association relationship between the stored MTC user and the MTC device and the MTC server, whether the MTC device identity information IMEI and the MTC server identity information MTC_Server_ID to be triggered belong to the same MTC user. . If the MTC server and the MTC device belong to the same MTC user, the MTC external interface function entity of the local network sends a trigger command to the MTC device via the mobile communication network, or forwards the trigger request to other network entities in the mobile communication network, such as a short message.
  • SMS-SC/IP-SM-GW or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity)
  • MTC device After receiving the trigger command, the MTC device starts and establishes a secure connection with the MTC server. If the MTC server and the MTC device do not belong to the same MTC user, the MTC external interface function entity of the local network rejects the trigger request or trigger instruction of the MTC server. Preferably, a reject message indicating that the refusal to trigger the MTC device may be sent to the MTC server.
  • FIG. 8 is a structural block diagram of a triggering apparatus of an MTC device according to an embodiment of the present invention.
  • the device may include: a receiving module 202, a determining module 204, and a sending module 206.
  • the receiving module 202 is configured to be a trigger request message sent by a receiver-type communication (MTC) server.
  • the determining module 204 is coupled to the receiving module 202, and is configured to determine a trigger according to a preset relationship between the MTC server and the MTC device.
  • MTC receiver-type communication
  • the MTC device triggered by the request message request is an MTC device associated with the MTC server that sends the trigger request message; the trigger module 206 is coupled to the determining module 204, and is configured to trigger the MTC device to establish a secure connection with the MTC server.
  • the triggering module 206 may send a triggering instruction message to the MTC device, or forward the triggering request to other network entities in the mobile communication network, such as a short message center (SMS-SC/IP-SM-GW) or an SGSN ( GPRS service support node) / MME (Mobility Management Entity), and these network entities send trigger instruction information to the MTC device.
  • SMS-SC/IP-SM-GW short message center
  • SGSN GPRS service support node
  • MME Mobility Management Entity
  • the MTC external interface function entity determines that the MTC device that is requested to be triggered is an MTC device that is associated with the MTC server, and sends a trigger request message to the MTC device, triggering the MTC device to establish a connection with the MTC server, and the MTC server only triggers.
  • the MTC device associated with the MTC server improves the security of communication between the MTC device and the MTC server.
  • the sending module 206 rejects the trigger request message if the determining module 204 determines that the MTC device triggered by the trigger request message request is not the MTC device associated with the MTC server 10.
  • a reject message indicating that the refusal to trigger the MTC device may be sent to the MTC server.
  • the MTC device that is not associated with the MTC server is rejected, so that the MTC server only triggers the MTC device associated with the MTC server, which improves the security of the external interface of the MTC system.
  • the association relationship includes: a correspondence between the MTC server and the MTC device; the determining module 204 is configured to determine whether the MTC device requested by the MTC server is an MTC device corresponding to the MTC server, if Yes, it is determined that the MTC device is an MTC device associated with the MTC server.
  • the foregoing relationship includes: an association relationship between the MTC user, the MTC server, and the MTC device.
  • the determining module 204 is further configured to determine, according to the association relationship between the MTC user, the MTC server, and the MTC device, whether the MTC server and the MTC device are associated with the same MTC user, and if yes, determine the MTC device and the MTC that sends the trigger request message.
  • the MTC device associated with the server Preferably, the foregoing relationship may record an association relationship between the MTC user and the MTC server and the MTC device belonging to the MTC user.
  • the MTC server and the MTC device belong to the same MTC user, and the trigger module 206 sends a trigger instruction message to the MTC device, or forwards the trigger request to the mobile communication.
  • SMS-SC/IP-SM-GW Short Message Center
  • SGSN GPRS Service Support Node
  • MME Mobility Management Entity
  • a reject message indicating that the refusal to trigger the MTC device may be sent to the MTC server.
  • the MTC device that does not belong to the same MTC user as the MTC server is rejected, so that the MTC server only triggers the MTC device that belongs to the same MTC user, which improves the security of the external interface of the MTC system.
  • a triggering method for an MTC device is provided corresponding to the foregoing system and apparatus provided by the embodiments of the present invention.
  • FIG. 9 is a flowchart of a method for triggering an MTC device according to an embodiment of the present invention. As shown in FIG.
  • the method may include the following steps (step S902 to step S906): Step S902, MTC external interface function entity receiver class communication (MTC) The trigger request message sent by the server.
  • Step S904 Determine, according to the association relationship between the preset MTC server and the MTC device, that the MTC device triggered by the trigger request message request is an MTC device associated with the MTC server that sends the trigger request message.
  • MTC MTC external interface function entity receiver class communication
  • Step S906 triggering the MTC device to establish a secure connection with the MTC server, for example, sending a trigger instruction message to the MTC device triggered by the trigger request message request, or forwarding the trigger request to other network entities in the mobile communication network, such as a short message center ( SMS-SC/IP-SM-GW) or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities send trigger instruction information to the MTC device.
  • the MTC external interface function entity determines that the MTC device that is requested to be triggered is an MTC device associated with the MTC server, and sends a trigger instruction message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network.
  • the device establishes a connection with the MTC server.
  • the MTC server only triggers the MTC device associated with the MTC server, which improves the security of communication between the MTC device and the MTC server.
  • the trigger request message is rejected if the MTC device triggered by the trigger request message request is not the MTC device associated with the MTC server that sends the trigger request message, the trigger request message is rejected.
  • a reject message indicating that the refusal to trigger the MTC device may be sent to the MTC server.
  • the MTC device that is not associated with the MTC server can be rejected, so that the MTC server only triggers the MTC device associated with the MTC server, which improves the security of the external interface of the MTC system.
  • the association relationship may record a correspondence between an MTC device to which an MTC server can establish a connection, or may associate an MTC server and an MTC device with an MTC user, that is, The association relationship between the MTC user, the MTC server, and the MTC device is established, and the association relationship is preset in the MTC external interface entity.
  • the MTC server that sends the trigger request message belongs to the same MTC user, and sends a trigger instruction message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network, such as a short message center (SMS-SC/IP-SM-GW) Or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities send trigger instruction information to the MTC device, triggering the MTC device to establish a connection with the MTC server.
  • SMS-SC/IP-SM-GW Short message center
  • SGSN GPRS Service Support Node
  • MME Mobility Management Entity
  • the MTC user, the MTC device, and the MTC server are associated, and the MTC server of the MTC user only triggers the MTC device of the MTC user, thereby improving the security of the external interface of the MTC system.
  • the trigger request message is rejected.
  • a reject message indicating that the refusal to trigger the MTC device may be sent to the MTC server.
  • the MTC device that does not belong to the same MTC user as the MTC server can be refused, so that the MTC server only triggers the MTC device belonging to the MTC user, which improves the security of the external interface of the MTC system.
  • the MTC server and the MTC server can be determined by determining whether the MTC device and the MTC server are associated with the same MTC user. Whether the MTC device belongs to the same MTC user.
  • the identity information of the MTC device may be an IMEI of the MTC device, and the identity information of the MTC user may be an IMSI.
  • the MTC device after the MTC device receives the trigger instruction message, the MTC device responds to the trigger instruction message, and establishes a communication connection between the MTC device and the MTC server.
  • the second embodiment corresponds to the system shown in FIG. 6.
  • a triggering method for the MTC device is provided, and in the system shown in FIG. 6, the trigger for limiting the MTC device can be implemented.
  • 10 is a flowchart of a method for triggering an MTC device according to Embodiment 2 of the present invention. As shown in FIG. 10, the method may include the following steps (Step S1002 - Step S1008): Step S1002, the MTC server needs to trigger an MTC device.
  • Step S1004 After receiving the trigger request or the trigger instruction message, the MTC external interface function entity in the local network determines whether the trigger process needs to be performed. Specifically, the MTC external interface function entity in the local network determines whether the MTC device and the MTC server to be triggered belong to the same MTC user according to the association relationship between the saved MTC user and the MTC device and the MTC server.
  • Step S1006 If the MTC server and the MTC device belong to the same MTC user, the MTC external interface function entity in the local network sends a trigger command to the MTC device through the mobile communication network, or forwards the trigger request to other network entities in the mobile communication network. , such as a short message center (SMS-SC/IP-SM-GW) or an SGSN (GPRS Service Support Node) / MME (Mobility Management Entity, mobile management entity), and the triggering information is sent to the MTC device by these network entities, Go to step S1008. If the MTC server and the MTC device do not belong to the same MTC user, the MTC external interface function entity rejects the trigger request and ends the triggering process.
  • SMS-SC/IP-SM-GW short message center
  • SGSN GPRS Service Support Node
  • MME Mobility Management Entity, mobile management entity
  • Step S1008 After receiving the triggering instruction, the MTC device starts and establishes a secure connection with the MTC server.
  • the third embodiment corresponds to the system shown in FIG. 7.
  • a triggering method for the MTC device is provided.
  • the trigger for limiting the MTC device can be implemented.
  • 11 is a flowchart of a method for triggering an MTC device according to Embodiment 3 of the present invention. As shown in FIG.
  • Step S1102 The MTC server needs to trigger an MTC device to perform communication, MTC server triggers a request or trigger transmission instruction information to the MTC security gateway local network, triggering request or trigger identity information (MTC_Ser Ver _ID) instruction message comprising MTC server and MTC related identity information apparatus (e.g., IMSI and IMEI).
  • Step S1104 After receiving the trigger request or the trigger instruction message, the MTC security gateway in the local network determines whether the trigger process needs to be performed.
  • the MTC security gateway in the local network determines whether the MTC device and the MTC server to be triggered belong to the same MTC user according to the association relationship between the saved MTC user and the MTC device and the MTC server.
  • Step S1106 If the MTC server and the MTC device belong to the same MTC user, the MTC security gateway in the local network sends a trigger command to the MTC device through the mobile communication network, or forwards the trigger request to other network entities in the mobile communication network, such as Short message center (SMS-SC/IP-SM-GW) or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities send trigger command information to the MTC device.
  • SMS-SC/IP-SM-GW Short message center
  • SGSN GPRS Service Support Node
  • MME Mobility Management Entity
  • Step S1108 After receiving the triggering instruction, the MTC device starts and establishes a secure connection with the MTC server.
  • the fourth embodiment corresponds to the system shown in FIG. 7.
  • a triggering method for the MTC device is provided.
  • the trigger for limiting the roaming MTC device can be implemented.
  • 12 is a flowchart of a method for triggering an MTC device according to Embodiment 4 of the present invention. As shown in FIG.
  • the method may include the following steps (Step S1202 - Step S1208): Step S1202, the MTC server needs to trigger an MTC device to perform communication, MTC server will trigger request, or triggering instruction information to the external interface entity comprises MTC security gateway function of the local network, triggering request or trigger identity MTC_Serv er _ID instruction message includes MTC server and the MTC device associated identity Information such as IMSI and IMEI. Step S1204: After receiving the trigger request or the trigger instruction message, the external interface entity that includes the MTC security gateway function in the local network determines whether the trigger process needs to be performed. Specifically, the MTC is included in the local network.
  • the external interface entity of the security gateway function determines whether the MTC device and the MTC server to be triggered belong to the same MTC user according to the association relationship between the saved MTC user and the MTC device and the MTC server. Step S1206: If the MTC server and the MTC device belong to the same MTC user, the external interface entity in the local network that includes the MTC security gateway function sends a trigger command to the MTC device through the mobile communication network, or forwards the trigger request to the mobile communication network.
  • Other network entities such as Short Message Center (SMS-SC/IP-SM-GW) or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities will trigger the triggering of command information.
  • SMS-SC/IP-SM-GW Short Message Center
  • SGSN GPRS Service Support Node
  • MME Mobility Management Entity
  • Step S1208 After receiving the triggering instruction, the MTC device starts and establishes a secure connection with the MTC server.
  • the MTC external interface function entity determines that the MTC device that is requested to be triggered is an MTC device associated with the MTC server, and sends a trigger instruction message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network, such as a short message center (SMS) -SC/IP-SM-GW) or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities send trigger instruction information to the MTC device, triggering the MTC device to establish a connection with the MTC server.
  • SMS short message center
  • SGSN GPRS Service Support Node
  • MME Mobility Management Entity
  • the MTC external interface function entity determines whether the MTC server and the MTC device are associated with the same MTC user. If yes, it is determined that the MTC device and the MTC server belong to the same MTC.
  • the user sends a trigger command message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network, such as a short message center (SMS-SC/IP-SM-GW) or SGSN (GPRS service support node) /
  • the MME Mobility Management Entity
  • the MTC server of the MTC user can only trigger the MTC device of the MTC user.
  • modules or steps of the present invention can be implemented by a general-purpose computing device, which can be concentrated on a single computing device or distributed over a network composed of multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device, such that they may be stored in the storage device by the computing device and, in some cases, may be different from the order herein. Perform the steps shown or described, or separate them into individual integrated circuit modules, or Multiple of these modules or steps are fabricated as a single integrated circuit module. Thus, the invention is not limited to any specific combination of hardware and software.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

A method, device, and system for triggering a machine type communication (MTC) device. The method comprises: receiving a trigger request message transmitted by an MTC server; determining, on the basis of a preconfigured association relation between the MTC server and the MTC device, that the MTC device for which triggering is requested by the trigger request message is an MTC device associated with the MTC server; and triggering the MTC device to establish a secure connection to the MTC server. The present invention allows the MTC server to trigger only the MTC device that is associated with the MTC server, thus improving the security of communication between the MTC device and the MTC server.

Description

MTC设备的触发方法、 装置及系统 技术领域 本发明涉及通信领域, 具体而言, 涉及一种 MTC设备的触发方法、 装置及系统。 背景技术 机器类通信 (Machine Type Communication, 简称为 MTC)是指应用无线通信技术, 实现机器与机器、 机器与人之间的数据通信和交流的一系列技术及其组合的总称。 MTC包括两层含义: 第一层是机器本身, 在嵌入式领域称为智能设备; 第二层意思是 机器和机器之间的连接, 通过网络把机器连接在一起。 机器类通信的应用范围非常广 泛, 例如智能测量、 远程监控、 跟踪、 医疗等, 使人类生活更加智能化。 与传统的人 与人之间的通信相比, MTC设备 (MTC Device) 数量巨大, 应用领域广泛, 具有巨 大的市场前景。 在如图 1至图 3所示的 MTC通信系统中, MTC设备通过 3GPP网络和外部接口 功能实体(MTC InterWorking Function, MTC-IWF)与 MTC服务器进行通信。基于安 全考虑, 当 MTC Server位于 3GPP网络外时,可以引入 MTC安全网关(MTC-Security GateWay, 简称为 MTC-SGW), 用于对 MTC Server进行认证和授权, 从而保证外部 接口的安全性。 图 4是根据相关技术的引入 MTC安全网关的机器类通信系统的外部 接口的连接系统的示意图, 如图 4所示, 当 MTC服务器处于 3GPP网络之外时, 在引 入 MTC安全网关作为 MTC外部接口 (MTC-IWF) 后, 保证了外部接口的安全性。 对于许多机器对机器(Machine to Machine, 简称为 M2M)应用, 由于 MTC用户 需要控制与 MTC设备的通信, 因此不允许 MTC设备随意接入 MTC服务器。 同时, 由于安全的需要, 一个用户的 MTC服务器只允许触发该用户的 MTC设备。但攻击者 可能通过冒充移动通信网络或 MTC服务器向 MTC设备发送触发指令, 以触发 MTC 设备与 MTC服务器建立连接。 因此, 需要采取安全措施, 保证 MTC设备只能响应来 自安全的 MTC服务器的触发指令。 发明内容 针对如何实现 MTC服务器安全触发 MTC设备的问题, 本发明提供了一种 MTC 设备的触发方法、 装置及系统, 以至少解决上述问题。 根据本发明的一方面, 提供了一种 MTC设备的触发方法, 包括: 接收机器类通 信 MTC服务器发送的触发请求消息; 根据预先设置的 MTC服务器与 MTC设备的关 联关系,确定所述触发请求消息请求触发的 MTC设备为与所述 MTC服务器相关联的 MTC设备; 触发所述 MTC设备与所述 MTC服务器建立安全连接。 优选地,如果所述触发请求消息请求触发的 MTC设备不是与所述 MTC服务器相 关联的 MTC设备, 所述方法还包括: 拒绝所述触发请求消息。 优选地, 拒绝所述触发请求消息包括: 向所述 MTC服务器发送指示拒绝触发所 述 MTC设备的拒绝消息。 优选地, 触发所述 MTC设备与所述 MTC服务器建立安全连接, 包括: 向所述 MTC设备发送触发指令消息; 或者, 向移动通信网络中的预定网络实体转发所述触发 请求消息, 由所述预定网络实体根据所述触发请求消息, 向所述 MTC设备发送触发 指令消息。 优选地, 向所述 MTC设备发送所述触发指令消息之后, 所述方法还包括: 所述 MTC设备接收所述触发指令消息, 响应所述触发指令消息, 建立所述 MTC设备与所 述 MTC服务器之间的通信连接。 优选地, 所述关联关系包括: MTC服务器与 MTC设备的对应关系; 确定所述触 发请求消息请求触发的 MTC设备为与所述 MTC服务器相关联的 MTC设备包括: 判 断所述 MTC服务器请求触发的 MTC设备是否为与所述 MTC服务器对应的 MTC设 备, 如果是, 则确定所述 MTC设备为与所述 MTC服务器相关联的 MTC设备。 优选地, 所述触发请求消息携带的信息, 包括: 所述 MTC服务器的身份信息和 / 或所述 MTC设备的身份信息和 /或所述 MTC用户的身份信息; 所述对应关系包括: 所述 MTC服务器的身份信息和所述 MTC设备的身份信息的对应关系;判断所述 MTC 服务器请求触发的 MTC设备是否为与所述 MTC服务器对应的 MTC设备, 包括: 判 断所述 MTC设备的身份信息与所述 MTC服务器的身份信息是否存在所述对应关系; 或者, 所述对应关系包括: 所述 MTC服务器的身份信息和所述 MTC用户的身份信息 的对应关系; 判断所述 MTC服务器请求触发的 MTC设备是否为与所述 MTC服务器 对应的 MTC设备, 包括: 判断所述 MTC用户的身份信息与所述 MTC服务器的身份 信息是否存在所述对应关系。 优选地, 所述关联关系包括: MTC用户、 MTC服务器及 MTC设备三者的关联关 系;确定所述触发请求消息请求触发的 MTC设备为与所述 MTC服务器相关联的 MTC 设备, 包括: 判断所述 MTC服务器与所述 MTC设备是否与同一 MTC用户关联, 如 果是, 则确定所述 MTC设备为与所述 MTC服务器相关联的 MTC设备。 优选地, 所述触发请求消息携带的信息, 包括: 所述 MTC服务器的身份信息和 / 或所述 MTC设备的身份信息和 /或 MTC用户的身份信息; 判断所述 MTC服务器与所 述 MTC设备是否与同一 MTC用户相关联, 包括: 判断所述 MTC设备的身份信息和 所述 MTC服务器的身份信息是否与同一 MTC用户的身份信息存在关联关系。 优选地, 所述 MTC 设备的身份信息, 包括: 国际移动装备识别码 IMEI; 所述 MTC用户的身份信息包括:国际用户识别码 IMSI;所述 MTC服务器的身份信息包括: 所述 MTC服务器的身份标识。 根据本发明的另一个方面, 提供了一种 MTC设备的触发装置, 包括: 接收模块, 设置为接收机器类通信 (MTC) 服务器发送的触发请求消息; 确定模块, 设置为根据 预先设置的 MTC服务器与 MTC设备的关联关系,确定所述触发请求消息请求触发的 MTC设备为与所述 MTC服务器相关联的 MTC设备;触发模块,设置为触发所述 MTC 设备与所述 MTC服务器建立安全连接。 优选地, 所述触发模块设置为向所述 MTC设备发送触发指令消息, 或者向移动 通信网络中的预定网络实体转发所述触发请求消息,由所述预定网络实体向所述 MTC 设备发送触发指令消息。 优选地, 所述关联关系包括: MTC服务器与 MTC设备的对应关系; 所述确定模 块设置为判断所述 MTC服务器请求触发的 MTC设备是否为与所述 MTC服务器对应 的 MTC设备, 如果是, 则确定所述 MTC设备为与所述 MTC服务器相关联的 MTC 设备。 优选地, 所述关联关系包括: MTC用户、 MTC服务器及 MTC设备三者的关联关 系; 所述确定模块, 设置为根据 MTC用户、 MTC服务器及 MTC设备三者的关联关 系, 判断所述 MTC服务器与所述 MTC设备是否与同一 MTC用户关联, 如果是, 则 确定所述 MTC设备为与所述 MTC服务器相关联的 MTC设备。 根据本发明的再一个方面, 提供了一种 MTC设备的触发系统, 包括: MTC服务 器, 设置为向 MTC外部接口功能实体 MTC-IWF发送触发请求消息; 所述 MTC外部 接口功能实体, 包括上述的 MTC设备的触发装置, 设置为接收机所述 MTC服务器发 送的触发请求消息, 根据预先设置的 MTC服务器与 MTC设备的关联关系, 确定所述 MTC设备为与所述 MTC服务器相关联的 MTC设备, 并触发所述 MTC设备与所述 MTC服务器建立安全连接。 优选地, 所述 MTC外部接口功能实体, 还设置为: 在所述触发请求消息请求触 发的 MTC设备不是与所述 MTC服务器相关联的 MTC设备的情况下, 拒绝所述触发 请求消息。 通过本发明, MTC外部接口功能实体在确定请求触发的 MTC设备为与 MTC服 务器关联的 MTC设备的情况下, 向 MTC设备发送触发指令消息, 或将触发请求转发 到移动通信网络中的其他网络实体, 并由这些网络实体向 MTC设备发送触发指令信 息, 触发 MTC设备与 MTC服务器建立连接, 实现了只有与 MTC设备建立了关联的 MTC服务器才能触发该 MTC设备与该 MTC服务器建立连接, 提高了 MTC设备与 MTC服务器通信的安全性。 附图说明 此处所说明的附图用来提供对本发明的进一步理解, 构成本申请的一部分, 本发 明的示意性实施例及其说明用于解释本发明, 并不构成对本发明的不当限定。 在附图 中: 图 1是根据相关技术的机器类通信系统架构的示意图; 图 2是根据相关技术的 MTC设备漫游时对于归属网络路由的场景的机器类通信 系统架构的示意图; 图 3是根据相关技术的 MTC设备漫游时对于本地疏导的场景的机器类通信系统 架构的示意图; 图 4是根据相关技术的引入 MTC安全网关的机器类通信系统的外部接口的连接 系统的示意图; 图 5是根据本发明实施例的 MTC设备的触发系统的示意图; 图 6是根据本发明实施例优选方式一的 MTC设备的触发系统的示意图; 图 7是根据本发明实施例优选方式二的 MTC设备的触发系统的示意图; 图 8是根据本发明实施例的 MTC设备的触发装置的结构框图; 图 9是根据本发明实施例的 MTC设备的触发方法的流程图; 图 10是根据本发明实施例一的 MTC设备的触发方法的流程图; 图 11是根据本发明实施二的 MTC设备的触发方法的流程图; 图 12是根据本发明实施三的 MTC设备的触发方法的流程图。 具体实施方式 下文中将参考附图并结合实施例来详细说明本发明。 需要说明的是, 在不冲突的 情况下, 本申请中的实施例及实施例中的特征可以相互组合。 针对相关技术中, 如何安全触发 MTC设备, 以建立 MTC设备与 MTC服务器之 间的安全连接的问题, 本发明实施例提供了一种 MTC设备的触发方法、 装置及系统, 实现了 MTC设备的安全触发, MTC设备只能被与之建立关联的 MTC服务器触发, 优选地, 与 MTC设备存在关联的 MTC服务器可以为与 MTC设备属于同一 MTC用 户的 MTC服务器, 从而实现了一个 MTC用户的 MTC服务器只能触发该 MTC用户 的 MTC设备, 提高了 MTC业务的安全性。 本发明实施例中, MTC设备是指移动通信网络中用于机器到机器通信的设备, 移 动通信用户身份识别卡 (UICC) 安装在 MTC设备上, 用户身份识别模块 (如客户识 别模块 (Subscriber Identity Module, 简称为 SIM)、 USIM及 ISIM等)位于 UICC上。 根据本发明实施例, 提供了一种 MTC设备的触发系统, 在该系统中, 由 MTC外 部接口功能实体判断请求触发的 MTC设备是否为与 MTC服务器关联的 MTC设备, 如果是, 向 MTC设备发送触发指令消息, 或将触发请求转发到移动通信网络中的其 他网络实体, 并由这些网络实体向 MTC设备发送触发指令信息。 MTC设备接收到触 发指令消息后, 建立与 MTC服务器的安全连接; 如果否, MTC外部接口功能实体拒 绝触发请求消息, 实现了一个 MTC服务器只能触发与该 MTC服务器关联的 MTC设 备, 提高了 MTC业务的安全性。 图 5是根据本发明实施例的 MTC设备的触发系统的示意图, 如图 5所示, 该系 统可以包括: MTC服务器 10和 MTC外部接口功能实体 20。 其中, MTC服务器 10, 设置为向 MTC外部接口功能实体 20发送触发请求消息; MTC外部接口功能实体 20, 设置为接收机 MTC服务器 10发送的触发请求消息, 根据预先设置的 MTC服务器与 MTC设备的关联关系, 确定 MTC设备为与 MTC服务器 10相关联的 MTC设备, 并 向 MTC设备发送触发指令消息, 或将触发请求转发到移动通信网络中的其他网络实 体, 并由这些网络实体向 MTC设备发送触发指令信息。 其中, 上述移动通信网络中的其他网络实体包括但不限于: 短消息中心 ( SMS-SC/IP-SM-GW)、 SGSN (GPRS服务支持节点) /MME (Mobility Management Entity, 移动管理实体)。 在本实施例中, MTC服务器与 MTC设备的关联关系可以按照预定的规则建立, 例如, 可以将属于同一 MTC用户的 MTC设备与 MTC服务器建立关联关系, 或者, 即使不是属于同一 MTC用户的 MTC设备与 MTC服务器, 只要允许该 MTC服务器 与该 MTC设备之间建立连接, 则可以建立该 MTC服务器与该 MTC设备之间的关联 关系。 通过本发明实施例, MTC外部接口功能实体确定请求触发的 MTC设备为与 MTC 服务器关联的 MTC设备, 并向 MTC设备发送触发指令消息, 或将触发请求转发到移 动通信网络中的其他网络实体, 并由这些网络实体向 MTC设备发送触发指令信息, 触发 MTC设备与 MTC服务器建立连接, 实现了 MTC服务器仅触发与 MTC服务器 相关联的 MTC设备, 提高了 MTC设备与 MTC服务器通信的安全性。 在根据本发明实施例的一个优选实施方式中, 上述关联关系可以为 MTC设备、 MTC服务器与 MTC用户三者之间的关联关系, MTC外部接口功能实体 20在接收到 MTC服务器 10发送的触发请求消息时, 可以判断请求触发的 MTC设备与该 MTC服 务器是否与同一个 MTC用户关联, 如果是, 向 MTC设备发送触发指令消息, 或将触 发请求转发到移动通信网络中的其他网络实体, 并由这些网络实体向 MTC设备发送 触发指令信息。 MTC设备接收到触发指令消息后, 建立与 MTC服务器的安全连接; 如果否, MTC外部接口功能实体拒绝触发请求。 在上述优选实施方式中, MTC设备、 MTC服务器与 MTC用户三者之间的关联关 系中可以将 MTC用户、 属于该 MTC用户的 MTC设备与 MTC服务器三者相关联, 从而可以实现了一个 MTC用户的 MTC服务器只能触发该 MTC用户的 MTC设备, 进一步提高了 MTC业务的安全性。 通过本发明上述优选实施例, MTC外部接口功能实体确定请求触发的 MTC设备 与 MTC服务器属于同一 MTC用户, 并向 MTC设备发送触发指令消息, 或将触发请 求转发到移动通信网络中的其他网络实体, 并由这些网络实体向 MTC设备发送触发 指令信息, 触发 MTC设备与 MTC服务器建立连接, 实现了 MTC服务器仅触发与属 于同一 MTC用户的 MTC设备, 提高了 MTC设备与 MTC服务器通信的安全性。 在本发明实施例的一个优选实施方式中, MTC外部接口功能实体 20, 还设置为 在触发请求消息请求触发的 MTC设备不是与 MTC服务器 10相关联的 MTC设备的情 况下, 拒绝触发请求。优选地, MTC外部接口功能实体 20可以向 MTC服务器发送指 示拒绝触发该 MTC设备的拒绝消息。通过本优选实施方式,实现了拒绝触发未与 MTC 服务器相关联的 MTC设备, 使得 MTC服务器只触发与 MTC服务器相关联的 MTC 设备, 提高了 MTC系统的安全性。 在本发明实施例的一个优选实施方式中, MTC外部接口功能实体 20, 还设置为 在触发请求消息请求触发的 MTC设备与 MTC服务器 10不属于同一 MTC用户的情况 下, 拒绝触发请求。优选地, MTC外部接口功能实体 20可以向 MTC服务器发送指示 拒绝触发 MTC设备的拒绝消息。通过本优选实施方式, 实现了拒绝触发与 MTC服务 器不属于同一 MTC用户的 MTC设备, 使得 MTC服务器只触发属于同一 MTC用户 的 MTC设备, 提高了 MTC系统的安全性。 在本发明实施例的一个优选实施方式中, 上述关联关系可以通过 MTC设备的身 份信息、 MTC服务器的身份信息及 MTC用户的身份信息 (在包括 MTC用户的情况 下)来记录 MTC设备、 MTC服务器及 MTC用户 (在包括 MTC用户的情况下) 的关 联关系。 其中, MTC设备的身份信息包括但不限于: 国际移动装备识别码(IMEI)或 其他用于标识 MTC设备的身份信息。 MTC用户的身份信息包括但不限于: 所述 MTC 用户的国际用户识别码 (IMSI) 或其他用于标识 MTC用户的身份信息。 MTC服务器 的身份信息包括但不限于: 所述 MTC服务器的身份标识(MTC_Server_ID)或其他用 于标识 MTC服务器的身份信息。 在实际应用中, MTC外部接口功能实体 20, 可以是一个独立的 MTC安全网关, 也可以包括一个 MTC安全网关和一个包含 MTC安全网关功能的 MTC外部接口功能 实体。包含 MTC安全网关功能的 MTC外部接口功能实体, 在功能和实现上也是一个 MTC安全网关。 下面分别对上述优选实施方式进行描述。 方式一 在方式一中, MTC外部接口功能实体 20是一个独立的 MTC安全网关, MTC安 全网关位于移动网络和 MTC服务器之间。 图 6是根据本发明实施例优选方式一的 MTC设备的触发系统的示意图, 示出了 触发 MTC设备的外部连接系统架构。 如图 6所示,该系统可以包括: MTC外部接口功能实体、 MTC服务器、网关 GPRS 支持节点 (GGSN) /分组数据网关 (PGW)、 本地位置寄存器 (HLR) /本地签约数据 服务器(HSS), 以及短消息中心 (SMS-SC/IP-SM-GW)禾 P SGSN (GPRS服务支持节 点) /MME (Mobility Management Entity, 移动管理实体)。 其中, MTC外部接口功能 实体, MTC外部接口功能实体是一个独立的 MTC安全网关, 实现外部接口功能, 对 MTC服务器进行认证和授权, 保证外部接口通信的安全性, 同时可以用于屏蔽移动通 信系统的网络拓扑, 中继或处理信令协议。 MTC服务器, 用于提供 MTC相关服务或 业务。 在如图 6所示的系统中, MTC外部接口由独立的 MTC安全网关实现, MTC安全 网关通过 T4和 MTCsms接口与短消息中心( SMS-SC/IP-SM-GW)进行通信, 即 MTC 安全网关同时支持 T4和 MTCsms两种通信协议。 同时, MTC安全网关支持对 MTC 设备的限制触发, 即 MTC服务器仅触发与其关联的 MTC设备, 或者 MTC服务器仅 触发与其同属于同一 MTC用户的 MTC设备。 方式二 图 7是根据本发明实施例优选方式二的 MTC设备的触发系统的示意图, 示出了 触发 MTC设备的外部连接系统架构。 如图 7所示, 该系统包括: MTC外部接口功能实体、 MTC服务器、 GGSN/PGW、 SGSN/MME和 SMS-SC/IP-SM-GW。 其中, MTC外部接口功能实体, 由 MTC安全网 关实体和包含 MTC安全网关功能的外部接口实体组成, 实现外部接口功能, 对 MTC 服务器进行认证和授权, 保证外部接口通信的安全性, 同时用于屏蔽移动通信系统的 网络拓扑, 中继或处理信令协议。 MTC服务器, 用于提供 MTC相关服务或业务。 在图 7所示系统架构中, MTC外部接口由 MTC安全网关和包含 MTC安全网关 功能的外部接口实体实现。 MTC安全网关通过 MTCsms接口与短消息中心进行通信, 包含 MTC安全网关功能的外部接口实体通过 T4接口与短消息中心进行通信, 对于 T4和 MTCsms接口的支持可以根据实际情况进行设置。 同时, MTC安全网关或包含 MTC安全网关功能的外部接口实体支持对 MTC设备的限制触发, 即 MTC服务器仅 触发与其关联的 MTC设备, 或者 MTC服务器仅触发与其同属于同一 MTC用户的 MTC设备。 下面通过具体实施例进行描述。 实施例一 根据本发明实施例,为完成 MTC服务器和移动通信网络安全触发合法 MTC设备, 提供了一种 MTC设备的触发系统, 该系统包括: The present invention relates to the field of communications, and in particular to a method, device and system for triggering an MTC device. BACKGROUND OF THE INVENTION Machine Type Communication (referred to as MTC) refers to a series of technologies and combinations thereof that implement wireless communication technology to realize data communication and communication between machines and machines, machines and people. MTC includes two meanings: The first layer is the machine itself, which is called smart device in the embedded field; the second layer is the connection between the machine and the machine, connecting the machines together through the network. Machine-based communication is used in a wide range of applications, such as intelligent measurement, remote monitoring, tracking, medical, etc., to make human life more intelligent. Compared with traditional human-to-human communication, MTC devices have a large number of applications and a wide range of applications, which has great market prospects. In the MTC communication system as shown in FIGS. 1 to 3, the MTC device communicates with the MTC server through a 3GPP network and an MTC Interworking Function (MTC-IWF). For security reasons, when the MTC Server is located outside the 3GPP network, an MTC-Security GateWay (MTC-SGW) can be introduced to authenticate and authorize the MTC Server to ensure the security of the external interface. 4 is a schematic diagram of a connection system of an external interface of a machine type communication system that introduces an MTC security gateway according to the related art. As shown in FIG. 4, when the MTC server is outside the 3GPP network, the MTC security gateway is introduced as an MTC external interface. After (MTC-IWF), the security of the external interface is guaranteed. For many Machine to Machine (M2M) applications, since the MTC user needs to control communication with the MTC device, the MTC device is not allowed to access the MTC server at will. At the same time, due to security needs, a user's MTC server is only allowed to trigger the user's MTC device. However, the attacker may send a trigger command to the MTC device by impersonating the mobile communication network or the MTC server to trigger the MTC device to establish a connection with the MTC server. Therefore, security measures are required to ensure that the MTC device can only respond to trigger commands from a secure MTC server. SUMMARY OF THE INVENTION The present invention provides a method, apparatus, and system for triggering an MTC device to solve the above problems. According to an aspect of the present invention, a method for triggering an MTC device is provided, including: a trigger request message sent by a receiver-type communication MTC server; determining the trigger request message according to a preset relationship between an MTC server and an MTC device. The MTC device requesting the trigger is an MTC device associated with the MTC server; triggering the MTC device to establish a secure connection with the MTC server. Preferably, if the triggering request message requesting the triggered MTC device is not the MTC device associated with the MTC server, the method further comprises: rejecting the trigger request message. Preferably, rejecting the trigger request message comprises: sending a reject message to the MTC server indicating that the triggering of the MTC device is refused. Preferably, the triggering the MTC device to establish a secure connection with the MTC server comprises: sending a triggering instruction message to the MTC device; or forwarding the trigger request message to a predetermined network entity in the mobile communication network, The predetermined network entity sends a trigger instruction message to the MTC device according to the trigger request message. Preferably, after the triggering instruction message is sent to the MTC device, the method further includes: the MTC device receiving the triggering instruction message, and establishing the MTC device and the MTC server in response to the triggering instruction message Communication between the connections. Preferably, the association relationship includes: a correspondence between the MTC server and the MTC device; determining that the MTC device triggered by the trigger request message request is an MTC device associated with the MTC server includes: determining that the MTC server requests triggering Whether the MTC device is an MTC device corresponding to the MTC server, and if so, determining that the MTC device is an MTC device associated with the MTC server. Preferably, the information carried in the trigger request message includes: identity information of the MTC server and/or identity information of the MTC device and/or identity information of the MTC user; the corresponding relationship includes: Corresponding relationship between the identity information of the MTC server and the identity information of the MTC device; determining whether the MTC device requested by the MTC server is an MTC device corresponding to the MTC server includes: determining identity information of the MTC device Whether the identity information of the MTC server has the corresponding relationship; or the corresponding relationship includes: a correspondence between the identity information of the MTC server and the identity information of the MTC user; determining the MTC triggered by the MTC server request Whether the device is the MTC device corresponding to the MTC server includes: determining whether the identity information of the MTC user and the identity information of the MTC server have the corresponding relationship. Preferably, the association relationship includes: an association relationship between the MTC user, the MTC server, and the MTC device; determining that the MTC device triggered by the trigger request message request is an MTC associated with the MTC server The device includes: determining whether the MTC server and the MTC device are associated with the same MTC user, and if yes, determining that the MTC device is an MTC device associated with the MTC server. Preferably, the information carried in the trigger request message includes: identity information of the MTC server and/or identity information of the MTC device and/or identity information of an MTC user; determining the MTC server and the MTC device Whether it is associated with the same MTC user, the method includes: determining whether the identity information of the MTC device and the identity information of the MTC server are associated with the identity information of the same MTC user. Preferably, the identity information of the MTC device includes: an international mobile equipment identifier IMEI; the identity information of the MTC user includes: an international subscriber identity IMSI; and the identity information of the MTC server includes: the identity of the MTC server Logo. According to another aspect of the present invention, a triggering apparatus for an MTC device is provided, including: a receiving module, configured to be a trigger request message sent by a receiver-type communication (MTC) server; and a determining module configured to be according to a preset MTC server The MTC device that is triggered by the trigger request message request is an MTC device that is associated with the MTC server; and the triggering module is configured to trigger the MTC device to establish a secure connection with the MTC server. Preferably, the triggering module is configured to send a triggering instruction message to the MTC device, or forward the triggering request message to a predetermined network entity in the mobile communication network, and send, by the predetermined network entity, a triggering instruction to the MTC device. Message. Preferably, the association relationship includes: a correspondence between the MTC server and the MTC device; the determining module is configured to determine whether the MTC device requested by the MTC server is an MTC device corresponding to the MTC server, and if yes, Determining that the MTC device is an MTC device associated with the MTC server. Preferably, the association relationship includes: an association relationship between the MTC user, the MTC server, and the MTC device; the determining module is configured to determine the MTC server according to an association relationship between the MTC user, the MTC server, and the MTC device. Whether the MTC device is associated with the same MTC user, and if so, determining that the MTC device is an MTC device associated with the MTC server. According to still another aspect of the present invention, a triggering system for an MTC device is provided, including: an MTC server, configured to send a trigger request message to an MTC external interface function entity MTC-IWF; the MTC external interface function entity, including the foregoing The triggering device of the MTC device is configured to be a trigger request message sent by the MTC server of the receiver, and determined according to a preset relationship between the MTC server and the MTC device. The MTC device is an MTC device associated with the MTC server, and triggers the MTC device to establish a secure connection with the MTC server. Preferably, the MTC external interface function entity is further configured to: reject the trigger request message if the triggering request message requesting that the triggered MTC device is not the MTC device associated with the MTC server. With the present invention, the MTC external interface function entity sends a trigger instruction message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network, when determining that the MTC device to be triggered by the request is an MTC device associated with the MTC server. And sending, by the network entity, the triggering instruction information to the MTC device, triggering the MTC device to establish a connection with the MTC server, and realizing that only the MTC server associated with the MTC device can trigger the MTC device to establish a connection with the MTC server, thereby improving the MTC. The security of the device communicating with the MTC server. BRIEF DESCRIPTION OF THE DRAWINGS The accompanying drawings, which are set to illustrate,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, In the drawings: FIG. 1 is a schematic diagram of a machine type communication system architecture according to the related art; FIG. 2 is a schematic diagram of a machine type communication system architecture for a scenario of a home network route when an MTC device roams according to the related art; FIG. 4 is a schematic diagram of a connection system of an external interface of a machine type communication system that introduces an MTC security gateway according to the related art; FIG. 5 is a schematic diagram of a connection system of an external interface of a machine type communication system that introduces an MTC security gateway according to the related art; FIG. FIG. 6 is a schematic diagram of a triggering system of an MTC device according to a first preferred embodiment of the present invention; FIG. 7 is a triggering system of an MTC device according to a preferred mode 2 of the embodiment of the present invention; Figure 8 is a block diagram showing the structure of a triggering device of an MTC device according to an embodiment of the present invention; 9 is a flowchart of a method for triggering an MTC device according to an embodiment of the present invention; FIG. 10 is a flowchart of a method for triggering an MTC device according to Embodiment 1 of the present invention; FIG. 11 is a trigger of an MTC device according to Embodiment 2 of the present invention; Flowchart of the method; Figure 12 is a flow chart of a method of triggering an MTC device in accordance with an implementation of the present invention. BEST MODE FOR CARRYING OUT THE INVENTION Hereinafter, the present invention will be described in detail with reference to the accompanying drawings. It should be noted that the embodiments in the present application and the features in the embodiments may be combined with each other without conflict. For the related art, how to securely trigger the MTC device to establish a secure connection between the MTC device and the MTC server, the embodiment of the present invention provides a triggering method, device, and system for the MTC device, and implements the security of the MTC device. The triggering, the MTC device can only be triggered by the MTC server associated with the MTC device. Preferably, the MTC server associated with the MTC device can be an MTC server belonging to the same MTC user as the MTC device, thereby implementing an MTC server of the MTC user only The MTC device that triggers the MTC user can improve the security of the MTC service. In the embodiment of the present invention, the MTC device refers to a device for machine-to-machine communication in a mobile communication network, and a mobile communication user identification card (UICC) is installed on the MTC device, and the user identification module (such as a customer identification module (Subscriber Identity) Module, referred to as SIM), USIM, ISIM, etc.) is located on the UICC. According to an embodiment of the present invention, a triggering system for an MTC device is provided. In the system, the MTC external interface function entity determines whether the MTC device requested to be triggered is an MTC device associated with the MTC server, and if yes, sends the MTC device to the MTC device. The instruction message is triggered, or the trigger request is forwarded to other network entities in the mobile communication network, and the triggering information is sent by the network entity to the MTC device. After receiving the trigger command message, the MTC device establishes a secure connection with the MTC server; if not, the MTC external interface function entity rejects the trigger request message, and implements an MTC server that can only trigger the MTC device associated with the MTC server, thereby improving the MTC. Business security. FIG. 5 is a schematic diagram of a triggering system of an MTC device according to an embodiment of the present invention. As shown in FIG. 5, the system may include: an MTC server 10 and an MTC external interface function entity 20. The MTC server 10 is configured to send a trigger request message to the MTC external interface function entity 20, and the MTC external interface function entity 20 is configured to send a trigger request message sent by the receiver MTC server 10 according to the preset MTC server and the MTC device. Correlation relationship, determining that the MTC device is an MTC device associated with the MTC server 10, and The trigger instruction message is sent to the MTC device, or the trigger request is forwarded to other network entities in the mobile communication network, and the trigger information is sent by the network entity to the MTC device. The other network entities in the foregoing mobile communication network include, but are not limited to, a short message center (SMS-SC/IP-SM-GW), an SGSN (GPRS Service Support Node), and an MME (Mobility Management Entity). In this embodiment, the association relationship between the MTC server and the MTC device may be established according to a predetermined rule. For example, the MTC device belonging to the same MTC user may be associated with the MTC server, or even the MTC device that is not the same MTC user. And the MTC server, as long as the MTC server is allowed to establish a connection with the MTC device, the association relationship between the MTC server and the MTC device can be established. According to the embodiment of the present invention, the MTC external interface function entity determines that the MTC device that is requested to be triggered is an MTC device associated with the MTC server, and sends a trigger instruction message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network. The triggering information is sent by the network entity to the MTC device, and the MTC device is triggered to establish a connection with the MTC server, so that the MTC server only triggers the MTC device associated with the MTC server, thereby improving the security of communication between the MTC device and the MTC server. In a preferred embodiment of the present invention, the association relationship may be an association relationship between the MTC device, the MTC server, and the MTC user, and the MTC external interface function entity 20 receives the trigger request sent by the MTC server 10. When the message is received, it may be determined whether the MTC device triggered by the request and the MTC server are associated with the same MTC user, and if yes, sending a trigger instruction message to the MTC device, or forwarding the trigger request to other network entities in the mobile communication network, and These network entities send trigger instruction information to the MTC device. After receiving the trigger instruction message, the MTC device establishes a secure connection with the MTC server; if not, the MTC external interface function entity rejects the trigger request. In the foregoing preferred embodiment, the MTC device, the MTC device belonging to the MTC user, and the MTC server may be associated with each other in the association relationship between the MTC device, the MTC server, and the MTC user, so that an MTC user can be implemented. The MTC server can only trigger the MTC device of the MTC user, which further improves the security of the MTC service. With the above preferred embodiment of the present invention, the MTC external interface function entity determines that the MTC device requesting the trigger belongs to the same MTC user as the MTC server, and sends a trigger instruction message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network. And the network entity sends the triggering instruction information to the MTC device, triggering the MTC device to establish a connection with the MTC server, and realizing that the MTC server only triggers the MTC device belonging to the same MTC user, thereby improving the security of communication between the MTC device and the MTC server. In a preferred embodiment of the embodiment of the present invention, the MTC external interface function entity 20 is further configured to reject the trigger request if the MTC device triggered by the trigger request message request is not the MTC device associated with the MTC server 10. Preferably, the MTC external interface function entity 20 may send a reject message to the MTC server indicating that the triggering of the MTC device is refused. With the preferred embodiment, the MTC device that is not associated with the MTC server is rejected, so that the MTC server only triggers the MTC device associated with the MTC server, which improves the security of the MTC system. In a preferred embodiment of the present invention, the MTC external interface function entity 20 is further configured to reject the trigger request if the MTC device triggered by the trigger request message request and the MTC server 10 do not belong to the same MTC user. Preferably, the MTC external interface function entity 20 may send a reject message indicating that the refusal to trigger the MTC device is sent to the MTC server. With the preferred embodiment, the MTC device that does not belong to the same MTC user as the MTC server is rejected, so that the MTC server only triggers the MTC device belonging to the same MTC user, which improves the security of the MTC system. In a preferred embodiment of the present invention, the foregoing relationship may be recorded by using the identity information of the MTC device, the identity information of the MTC server, and the identity information of the MTC user (in the case of including the MTC user) to record the MTC device and the MTC server. And the association of MTC users (in the case of MTC users). The identity information of the MTC device includes but is not limited to: an International Mobile Equipment Identity (IMEI) or other identity information used to identify the MTC device. The identity information of the MTC user includes but is not limited to: an International Subscriber Identity (IMSI) of the MTC user or other identity information used to identify the MTC user. Identity information of the MTC server include but are not limited to: the identity (MTC_Serv er _ID) the MTC server or other server identification information for identifying the MTC. In an actual application, the MTC external interface function entity 20 may be an independent MTC security gateway, or may include an MTC security gateway and an MTC external interface function entity including an MTC security gateway function. The MTC external interface function entity that includes the MTC security gateway function is also an MTC security gateway in terms of functions and implementation. The above preferred embodiments are described below separately. In the first mode, the MTC external interface function entity 20 is a separate MTC security gateway, and the MTC security gateway is located between the mobile network and the MTC server. 6 is a schematic diagram of a trigger system of an MTC device according to a first preferred embodiment of the present invention, showing an external connection system architecture that triggers an MTC device. As shown in FIG. 6, the system may include: an MTC external interface function entity, an MTC server, a gateway GPRS support node (GGSN) / a packet data gateway (PGW), a local location register (HLR) / a local subscription data server (HSS), And a short message center (SMS-SC/IP-SM-GW) and a P SGSN (GPRS Service Support Node) / MME (Mobility Management Entity, Mobile Management Entity). The MTC external interface function entity, the MTC external interface function entity is an independent MTC security gateway, implements an external interface function, authenticates and authorizes the MTC server, ensures the security of the external interface communication, and can be used to shield the mobile communication system. Network topology, relay or processing signaling protocols. MTC server, used to provide MTC related services or services. In the system shown in FIG. 6, the MTC external interface is implemented by an independent MTC security gateway, and the MTC security gateway communicates with the short message center (SMS-SC/IP-SM-GW) through the T4 and MTCsms interfaces, that is, MTC security. The gateway supports both T4 and MTCsms communication protocols. At the same time, the MTC security gateway supports the triggering of the MTC device, that is, the MTC server only triggers the MTC device associated with it, or the MTC server only triggers the MTC device that belongs to the same MTC user. Mode 2 FIG. 7 is a schematic diagram of a trigger system of an MTC device according to a preferred mode 2 of the embodiment of the present invention, showing an external connection system architecture that triggers the MTC device. As shown in FIG. 7, the system includes: an MTC external interface function entity, an MTC server, a GGSN/PGW, an SGSN/MME, and an SMS-SC/IP-SM-GW. The MTC external interface function entity is composed of an MTC security gateway entity and an external interface entity including an MTC security gateway function, implements an external interface function, performs authentication and authorization on the MTC server, ensures security of external interface communication, and is used for shielding. The network topology of the mobile communication system, relaying or processing signaling protocols. MTC server, used to provide MTC related services or services. In the system architecture shown in Figure 7, the MTC external interface is implemented by the MTC security gateway and an external interface entity that includes the MTC security gateway function. The MTC security gateway communicates with the short message center through the MTCsms interface. The external interface entity including the MTC security gateway functions to communicate with the short message center through the T4 interface. The support for the T4 and MTCsms interfaces can be set according to actual conditions. At the same time, the MTC security gateway or the external interface entity that includes the MTC security gateway function supports the triggering of the MTC device, that is, the MTC server only triggers the MTC device associated with it, or the MTC server only triggers the MTC device that belongs to the same MTC user. The following description is made by way of specific embodiments. Embodiment 1 According to the embodiment of the present invention, a triggering system for an MTC device is provided for the MTC device and the mobile communication network to be triggered by the MTC device. The system includes:
MTC设备, 是用户用于机器类通信的设备, UICC卡安装在 MTC设备中。 移动通信网络, 用于向 MTC 设备发送触发指令, 移动通信网络可以包括 3GPP 网络和 3GPP2 网络。 具体的, 移动通信网络中可以包括: GGSN/PGW (网关 GPRS 支持节点 /分组数据网关)、 HLR/HSS (本地位置寄存器 /本地签约数据服务器)、 SGSN/MME ( GPRS 服务支持节点 /移动管理实体) 和短消息 中 心 ( SMS-SC/IP-SM-GW MTC外部接口功能实体, MTC外部接口功能实体可以是一个独立的 MTC安全网 关, 实现外部接口功能, 对 MTC服务器进行认证和授权, 保证外部接口通信的安全 性, 同时可以用于屏蔽移动通信系统的网络拓扑, 中继或处理信令协议。 MTC外部接 口功能实体也可以由 MTC安全网关实体和包含 MTC安全网关功能的外部接口实体 (MTC-IWF (MTC Security Gateway)) 组成, 实现外部接口功能, 对 MTC服务器进 行认证和授权, 保证外部接口通信的安全性, 同时可以用于屏蔽移动通信系统的网络 拓扑, 中继或处理信令协议。 The MTC device is a device used by the user for machine type communication, and the UICC card is installed in the MTC device. The mobile communication network is configured to send a trigger instruction to the MTC device, and the mobile communication network may include a 3GPP network and a 3GPP2 network. Specifically, the mobile communication network may include: GGSN/PGW (Gateway GPRS Support Node/Packet Data Gateway), HLR/HSS (Local Location Register/Local Subscription Data Server), SGSN/MME (GPRS Service Support Node/Mobile Management Entity) And the short message center (the SMS-SC/IP-SM-GW MTC external interface function entity, the MTC external interface function entity can be an independent MTC security gateway, implement the external interface function, authenticate and authorize the MTC server, guarantee the external The security of the interface communication can be used to shield the network topology of the mobile communication system, relay or process the signaling protocol. The MTC external interface function entity can also be composed of the MTC security gateway entity and an external interface entity (MTC) that includes the MTC security gateway function. -IWF (MTC Security Gateway)), implements external interface functions, authenticates and authorizes the MTC server, ensures the security of external interface communication, and can be used to shield the network topology of the mobile communication system, relay or process signaling protocols. .
MTC服务器, MTC服务器发起触发请求或指令并为 MTC用户提供 M2M业务。 在本发明实施例中, MTC设备与 MTC服务器可以属于同一 MTC用户。 在本发明实施例中, MTC用户的 MTC服务器与该 MTC用户的一个 MTC设备进 行通信时, 可以通过触发请求或指令, 激活 MTC设备建立与 MTC服务器之间的安全 连接。 当 MTC用户的 MTC服务器需要从该 MTC用户的一个 MTC设备接收信息时, MTC服务器将触发请求或触发指令发送给 MTC外部接口功能实体, MTC外部接口功 能实体根据 MTC服务器的触发请求或触发指令触发 MTC设备与 MTC服务器之间建 立安全连接。 为了实现一个用户的 MTC服务器仅触发该用户的 MTC设备, 本地网络 的 MTC外部接口功能实体, 可以保存管理并维护本地网络中针对 MTC用户与 MTC 设备及 MTC服务器的关联信息。 具体的, 可以在 MTC外部接口功能实体中保存管理 并维护 MTC用户身份信息与 MTC设备身份信息及 MTC服务器身份信息的关联关系, 例如, 以 MTC用户身份信息 IMSI与 MTC设备身份信息 IMEI及 MTC服务器身份信 息 MTC_Server_ID的关联关系列表的形式保存、 管理并维护。 在本发明实施例中, MTC设备与 MTC服务器之间也可以是具有某种关联关系。 在这种情况下, 在本发明实施例中, 一个 MTC服务器在与一个 MTC设备进行通 信时, 可以通过发磅触发请求或指令, 激活相应的 MTC设备建立与 MTC服务器之间 的安全连接。 当 MTC服务器需要从一个 MTC设备接收信息时, MTC服务器将触发 请求或触发指令发送给 MTC外部接口功能实体, MTC外部接口功能实体根据 MTC 服务器的触发请求或触发指令触发 MTC设备与 MTC服务器之间建立安全连接。 在本发明实施例中, MTC设备相关的身份信息包括: MTC设备的身份信息和 MTC 设备签约用户 (即 MTC用户) 的身份信息。 其中, MTC设备签约用户身份信息的是 MTC用户身份信息 IMSI或其他用于标识 MTC用户的身份信息。 在本发明实施例中, MTC设备与 MTC服务器之间的关联关系可以是 MTC设备 相关的身份信息与 MTC服务器身份信息之间的关联关系。 具体的, 可以是 MTC设备 的签约用户身份信息 IMSI与 MTC服务器身份信息 MTC_Server_ID的关联关系, 也 可以是 MTC设备身份信息 IMEI与 MTC服务器身份信息 MTC_Server_ID的关联关系, 还可以是 MTC设备相关其他身份信息与 MTC服务器身份信息 MTC_Server_ID的关 联关系。 为了实现一个 MTC服务器仅触发与该 MTC服务器关联的 MTC设备, 本地网络 的 MTC外部接口功能实体, 可以保存管理并维护本地网络中针对 MTC设备及 MTC 服务器的关联关系。 具体的, 在 MTC外部接口功能实体中, 保存管理并维护 MTC设 备相关身份信息与 MTC服务器身份信息的关联关系, 例如, 以 MTC设备的签约用户 身份信息 IMSI与 MTC服务器身份信息 MTC_Server_ID的关联关系列表的形式保存、 管理并维护,或者以 MTC设备身份信息 IMEI与 MTC服务器身份信息 MTC_Server_ID 的关联关系列表的形式保存、 管理并维护。 优选地, 上述涉及 MTC设备及 MTC服务器相关的关联关系可以是 MTC用户身 份信息国际用户识另1 J码 (International Mobile Subscriber Identification Number, 简称为 IMSI) 与 MTC 设备身份信息国际移动设备识别码 (International Mobile Equipment Identity, 简称为 IMEI)的关联关系, 表示 IMEI对应的 MTC设备是 MTC用户身份信 息 IMSI对应的合法 MTC设备。 关联关系也可以是 MTC用户身份信息 IMSI与 MTC 服务器身份信息 MTC_Server_ID的关联关系,表示 MTC_Server_ID对应的 MTC服务 器是 MTC用户身份信息 IMSI对应的合法 MTC服务器。 进一步的, 关联关系还可以 是 MTC用户身份信息 IMSI与 MTC服务器身份信息 MTC_Server_ID及 MTC设备身 份信息 IMEI的关联关系, 表示 MTC_Server_ID对应的 MTC服务器和 IMEI对应的 MTC设备同属于身份信息为 IMSI的 MTC用户。 MTC服务器需要触发 MTC设备进行通信时, MTC服务器将触发请求或触发指令 发送给本地网络的 MTC外部接口功能实体。触发请求或触发指令消息中包含 MTC服 务器的身份信息 MTC_Server_ID和请求触发的 MTC设备相关的身份信息, 如 IMEI 和 IMSI。 本地网络的 MTC外部接口功能实体收到触发请求或触发指令消息后, 判断是否 需要执行触发过程。 具体的可以是, 本地网络的 MTC外部接口功能实体根据存储的 MTC设备与 MTC服务器的关联关系,判断要触发的 MTC设备相关的身份信息如 IMEI 和 MTC 服务器身份信息 MTC_Server_ID, 或 IMSI 和 MTC 服务器身份信息 MTC_Server_ID, 是否存在关联关系。 如果 MTC服务器与 MTC设备存在关联关系, 则本地网络的 MTC外部接口功能实体将触发指令经由移动通信网络发送给 MTC设 备, 或将触发请求转发到移动通信网络中的其他网络实体, 如短消息中心 ( SMS-SC/IP-SM-GW)或 SGSN (GPRS服务支持节点) /MME (Mobility Management Entity, 移动管理实体), 并由这些网络实体向 MTC设备发送触发指令信息。 MTC设 备收到触发指令后, 启动并建立与 MTC服务器之间的安全连接。 如果 MTC服务器与 MTC设备不存在关联关系, 则本地网络的 MTC外部接口功能实体拒绝 MTC服务器 的触发请求或触发指令。优选地, 可以向 MTC服务器发送指示拒绝触发 MTC设备的 拒绝消息。 本地网络的 MTC外部接口功能实体收到触发请求或触发指令消息后, 判断是否 需要执行触发过程。 具体的还可以是, 本地网络的 MTC外部接口功能实体根据存储 的 MTC用户与 MTC设备及 MTC服务器的关联关系, 判断要触发的 MTC设备身份 信息 IMEI和 MTC服务器身份信息 MTC_Server_ID, 是否属于同一 MTC用户。 如果 MTC服务器与 MTC设备属于同一 MTC用户,则本地网络的 MTC外部接口功能实体 将触发指令经由移动通信网络发送给 MTC设备, 或将触发请求转发到移动通信网络 中的其他网络实体, 如短消息中心 (SMS-SC/IP-SM-GW) 或 SGSN (GPRS服务支持 节点) /MME ( Mobility Management Entity,移动管理实体),并由这些网络实体向 MTC 设备发送触发指令信息。 MTC设备收到触发指令后, 启动并建立与 MTC服务器之间 的安全连接。 如果 MTC服务器与 MTC设备不属于同一 MTC用户, 则本地网络的 MTC 外部接口功能实体拒绝 MTC 服务器的触发请求或触发指令。 优选地, 可以向 MTC服务器发送指示拒绝触发 MTC设备的拒绝消息。 根据本发明实施例, 对应于上述系统, 提供了一种 MTC设备的触发装置, 位于 本发明实施例提供的 MTC外部接口功能实体 20, 可以实现本发明实施例描述的上述 功能。 图 8是根据本发明实施例的 MTC设备的触发装置的结构框图, 如图 8所示, 该 装置可以包括: 接收模块 202、 确定模块 204和发送模块 206。 其中, 接收模块 202, 设置为接收机器类通信 (MTC) 服务器发送的触发请求消息; 确定模块 204, 与接收 模块 202相耦合, 设置为根据预先设置的 MTC服务器与 MTC设备的关联关系, 确定 触发请求消息请求触发的 MTC设备为与发送触发请求消息的 MTC服务器相关联的 MTC设备; 触发模块 206, 与确定模块 204相耦合, 设置为触发 MTC设备与 MTC服 务器建立安全连接。 其中, 优选地, 触发模块 206可以向 MTC设备发送触发指令消 息, 或将触发请求转发到移动通信网络中的其他网络实体, 如短消息中心 ( SMS-SC/IP-SM-GW)或 SGSN (GPRS服务支持节点) /MME (Mobility Management Entity, 移动管理实体), 并由这些网络实体向 MTC设备发送触发指令信息。 通过本发明实施例, MTC外部接口功能实体确定请求触发的 MTC设备为与 MTC 服务器关联的 MTC设备, 并向 MTC设备发送触发请求消息, 触发 MTC设备与 MTC 服务器建立连接, 实现了 MTC服务器仅触发与 MTC服务器相关联的 MTC设备, 提 高了 MTC设备与 MTC服务器通信的安全性。 在本发明实施例的一个优选实施方式中, 如果确定模块 204, 确定触发请求消息 请求触发的 MTC设备不是与 MTC服务器 10相关联的 MTC设备,发送模块 206拒绝 触发请求消息。优选地,可以向 MTC服务器发送指示拒绝触发 MTC设备的拒绝消息。 通过本优选实施例,实现了拒绝触发未与 MTC服务器相关联的 MTC设备,使得 MTC 服务器只触发与 MTC服务器相关联的 MTC设备, 提高了 MTC系统外部接口的安全 性。 在本发明实施例的一个优选实施方式中,上述关联关系包括: MTC服务器与 MTC 设备的对应关系;确定模块 204设置为判断 MTC服务器请求触发的 MTC设备是否为 与 MTC服务器对应的 MTC设备, 如果是, 则确定述 MTC设备为与 MTC服务器相 关联的 MTC设备。 在本发明实施例的另一个优选实施方式中, 上述关联关系包括: MTC用户、 MTC 服务器及 MTC设备三者的关联关系。 确定模块 204, 还设置为根据 MTC用户、 MTC 服务器及 MTC设备三者的关联关系,判断 MTC服务器与 MTC设备是否与同一 MTC 用户相关联, 如果是, 则确定 MTC设备与发送触发请求消息的 MTC服务器相关联的 MTC设备。 优选地, 上述关联关系可以记录 MTC用户、 与属于该 MTC用户的 MTC 服务器和 MTC设备之间的关联关系, 通过本优选实施方式, 根据 MTC用户、 MTC 服务器及 MTC设备三者的关联关系, 如果 MTC服务器与 MTC设备属于同一 MTC 用户, 触发模块 206向 MTC设备发送触发指令消息, 或将触发请求转发到移动通信 网络中的其他网络实体, 如短消息中心 (SMS-SC/IP-SM-GW) 或 SGSN (GPRS服务 支持节点) /MME (Mobility Management Entity, 移动管理实体), 并由这些网络实体 向 MTC设备发送触发指令信息, 实现了属于同一 MTC用户的 MTC服务器仅触发该 MTC用户的 MTC设备,避免了 MTC服务器触发其他 MTC用户的 MTC设备的问题, 增强了 MTC系统的安全性。 在本发明实施例的上述优选实施方式中, 如果确定模块 204, 确定触发请求消息 请求触发的 MTC设备与 MTC服务器 10不属于同一 MTC用户,触发模块 206拒绝触 发请求消息。 优选地, 可以向 MTC服务器发送指示拒绝触发 MTC设备的拒绝消息。 通过本优选实施例, 实现了拒绝触发与 MTC服务器不属于同一 MTC用户的 MTC设 备, 使得 MTC服务器只触发与其同属于同一 MTC用户的 MTC设备, 提高了 MTC 系统外部接口的安全性。 根据本发明实施例, 对应于本发明实施例提供的上述系统及装置, 还提供了一种 MTC设备的触发方法。 图 9是根据本发明实施例的 MTC设备的触发方法的流程图, 如图 9所示, 该方 法可以包括以下步骤 (步骤 S902-步骤 S906): 步骤 S902, MTC外部接口功能实体接收机器类通信 (MTC) 服务器发送的触发 请求消息。 步骤 S904, 根据预先设置的 MTC服务器与 MTC设备的关联关系, 确定触发请 求消息请求触发的 MTC设备为与发送触发请求消息的 MTC服务器相关联的 MTC设 备。 步骤 S906, 触发 MTC设备与 MTC服务器建立安全连接, 例如, 可以向触发请 求消息请求触发的 MTC设备发送触发指令消息, 或将触发请求转发到移动通信网络 中的其他网络实体, 如短消息中心 (SMS-SC/IP-SM-GW) 或 SGSN (GPRS服务支持 节点) /MME ( Mobility Management Entity,移动管理实体),并由这些网络实体向 MTC 设备发送触发指令信息。 通过本发明实施例, MTC外部接口功能实体确定请求触发的 MTC设备为与 MTC 服务器关联的 MTC设备, 并向 MTC设备发送触发指令消息, 或将触发请求转发到移 动通信网络中的其他网络实体, 如短消息中心(SMS-SC/IP-SM-GW)或 SGSN (GPRS 服务支持节点) /MME (Mobility Management Entity, 移动管理实体), 并由这些网络 实体向 MTC设备发送触发指令信息, 触发 MTC设备与 MTC服务器建立连接, 实现 了 MTC服务器仅触发与 MTC服务器相关联的 MTC设备, 提高了 MTC设备与 MTC 服务器通信的安全性。 在本发明实施例的一个优选实施方式中, 如果触发请求消息请求触发的 MTC设 备不是与发送触发请求消息的 MTC服务器相关联的 MTC设备,则拒绝触发请求消息。 优选地, 可以向 MTC服务器发送指示拒绝触发 MTC设备的拒绝消息。通过本优选实 施方式, 能拒绝触发未与 MTC服务器相关联的 MTC设备, 使得 MTC服务器只触发 与 MTC服务器相关联的 MTC设备, 提高了 MTC系统外部接口的安全性。 在本发明实施例的另一个优选实施方式中, 上述关联关系可以记录 MTC服务器 与之可以建立连接的 MTC设备之间的对应关系, 或者, 可以将 MTC服务器、 MTC 设备与 MTC用户相关联, 即建立 MTC用户、 MTC服务器和 MTC设备三者的关联关 系,该关联关系预置在 MTC外部接口实体中。为了确定触发请求消息请求触发的 MTC 设备与发送触发请求消息的 MTC服务器是否属于同一 MTC用户, 可以判断 MTC服 务器、 MTC设备与 MTC用户之间是否存在关联关系, 如果是, 则确定 MTC设备为 与发送触发请求消息的 MTC服务器属于同一 MTC用户, 则向 MTC设备发送触发指 令消息, 或将触发请求转发到移动通信网络中的其他网络实体, 如短消息中心 ( SMS-SC/IP-SM-GW)或 SGSN (GPRS服务支持节点) /MME (Mobility Management Entity,移动管理实体),并由这些网络实体向 MTC设备发送触发指令信息,触发 MTC 设备与 MTC服务器建立连接。通过本优选实施方式,将 MTC用户、 MTC设备和 MTC 服务器三者相关联, 实现了 MTC用户的 MTC服务器仅触发该 MTC用户的 MTC设 备, 提高了 MTC系统外部接口的安全性。 在本发明实施例的上述优选实施方式中, 如果触发请求消息请求触发的 MTC设 备与发送触发请求消息的 MTC服务器不属于同一 MTC用户, 则拒绝触发请求消息。 优选地, 可以向 MTC服务器发送指示拒绝触发 MTC设备的拒绝消息。通过本优选实 施方式, 能拒绝触发与 MTC服务器不属于同一 MTC用户的 MTC设备, 使得 MTC 服务器只触发属于用以 MTC用户的 MTC设备,提高了 MTC系统外部接口的安全性。 鉴于上述优选实施方式, 在触发请求消息携带的信息携带有 MTC服务器的身份 信息和 MTC设备的身份信息的情况下, 可以通过判断 MTC设备和 MTC服务器是否 与同一 MTC用户关联, 来判断 MTC服务器与 MTC设备是否属于同一 MTC用户。 优选地, MTC设备的身份信息可以是 MTC设备的 IMEI, MTC用户的身份信息可以 是 IMSI。 在本发明实施例中, 在 MTC设备收到触发指令消息之后, MTC设备响应触发指 令消息, 并建立 MTC设备与 MTC服务器之间的通信连接。 下面通过具体实施例进行描述。 实施例二 对应与如图 6所示的系统, 根据本发明实施例, 提供了一种 MTC设备的触发方 法, 可以在如图 6所示的系统中, 实现限制 MTC设备的触发。 图 10是根据本发明实施例二的 MTC设备的触发方法的流程图, 如图 10所示, 该方法可以包括以下几个步骤 (步骤 S1002-步骤 S1008): 步骤 S1002, MTC服务器需要触发 MTC设备进行通信时, MTC服务器将触发请 求或触发指令信息发送给本地网络中的 MTC外部接口功能实体, 触发请求或触发指 令消息中包含 MTC服务器的身份信息 (MTC_Server_ID)和 MTC设备相关的身份信 息 (如 IMSI和 IMEI)。 步骤 S1004,本地网络中的 MTC外部接口功能实体接收到触发请求或触发指令消 息后, 判断是否需要执行触发过程。 具体的, 本地网络中的 MTC外部接口功能实体 根据保存的 MTC用户与 MTC设备及 MTC服务器的关联关系, 判断要触发的 MTC 设备和 MTC服务器, 是否属于同一 MTC用户。 步骤 S1006, 如果 MTC服务器与 MTC设备属于同一 MTC用户, 则本地网络中 的 MTC外部接口功能实体将触发指令通过移动通信网络发送给 MTC设备,或将触发 请求转发到移动通信网络中的其他网络实体, 如短消息中心(SMS-SC/IP-SM-GW)或 SGSN (GPRS服务支持节点) /MME (Mobility Management Entity, 移动管理实体), 并由这些网络实体将触发指令信息发送给 MTC设备, 进入步骤 S1008。 如果 MTC服 务器与 MTC设备不属于同一 MTC用户, 则 MTC外部接口功能实体拒绝触发请求, 结束触发流程。 步骤 S1008, MTC设备接收到触发指令后, 启动并建立与 MTC服务器之间的安 全连接。 实施例三 对应与如图 7所示的系统, 根据本发明实施例, 提供了一种 MTC设备的触发方 法, 可以在如图 7所示的系统中, 实现限制 MTC设备的触发。 图 11是根据本发明实施三的 MTC设备的触发方法的流程图, 如图 11所示, 该 方法可以包括以下几个步骤 (步骤 S1102-步骤 S1108): 步骤 S1102, MTC服务器需要触发 MTC设备进行通信时, MTC服务器将触发请 求或触发指令信息发送给本地网络中的 MTC安全网关, 触发请求或触发指令消息中 包含 MTC服务器的身份信息(MTC_SerVer_ID)和 MTC设备相关的身份信息(例如, IMSI和 IMEI)。 步骤 S1104, 本地网络中的 MTC安全网关收到触发请求或触发指令消息后, 判断 是否需要执行触发过程。 具体的, 本地网络中的 MTC安全网关根据保存的 MTC用户 与 MTC设备及 MTC服务器的关联关系, 判断要触发的 MTC设备和 MTC服务器, 是否属于同一 MTC用户。 步骤 S1106, 如果 MTC服务器与 MTC设备属于同一 MTC用户, 则本地网络中 的 MTC安全网关将触发指令通过移动通信网络发送给 MTC设备,或将触发请求转发 到移动通信网络中的其他网络实体, 如短消息中心 (SMS-SC/IP-SM-GW) 或 SGSN (GPRS服务支持节点) /MME (Mobility Management Entity, 移动管理实体), 并由这 些网络实体将触发指令信息发送给 MTC设备, 进入步骤 S1208。 如果 MTC服务器与 MTC设备不属于同一 MTC用户, 则 MTC安全网关拒绝触发请求, 结束触发流程。 步骤 S1108, MTC设备接收到触发指令后, 启动并建立与 MTC服务器之间的安 全连接。 实施例四 对应与如图 7所示的系统, 根据本发明实施例, 提供了一种 MTC设备的触发方 法, 可以在如图 7所示的系统中, 实现限制漫游 MTC设备的触发。 图 12是根据本发明实施四的 MTC设备的触发方法的流程图, 如图 12所示, 该 方法可以包括以下几个步骤 (步骤 S1202-步骤 S1208): 步骤 S1202, MTC服务器需要触发 MTC设备进行通信时, MTC服务器将触发请 求或触发指令信息发送给本地网络中的包含 MTC安全网关功能的外部接口实体, 触 发请求或触发指令消息中包含 MTC服务器的身份信息 MTC_Server_ID和 MTC设备 相关的身份信息, 如 IMSI和 IMEI。 步骤 S1204,本地网络中的包含 MTC安全网关功能的外部接口实体收到触发请求 或触发指令消息后, 判断是否需要执行触发过程。 具体的, 本地网络中的包含 MTC 安全网关功能的外部接口实体根据保存的 MTC用户与 MTC设备及 MTC服务器的关 联关系, 判断要触发的 MTC设备和 MTC服务器, 是否属于同一 MTC用户。 步骤 S1206, 如果 MTC服务器与 MTC设备属于同一 MTC用户, 则本地网络中 的包含 MTC安全网关功能的外部接口实体将触发指令通过移动通信网络发送给 MTC 设备, 或将触发请求转发到移动通信网络中的其他网络实体, 如短消息中心 ( SMS-SC/IP-SM-GW)或 SGSN (GPRS服务支持节点) /MME (Mobility Management Entity, 移动管理实体), 并由这些网络实体将触发指令信息发送给 MTC 设备, 进入 步骤 S1208; 如果 MTC服务器与 MTC设备不属于同一 MTC用户, 则包含 MTC安全 网关功能的外部接口实体拒绝触发请求, 结束触发流程。 步骤 S1208, MTC设备接收到触发指令后, 启动并建立与 MTC服务器之间的安 全连接。 从以上的描述中, 可以看出, 本发明实现了如下技术效果: The MTC server, the MTC server initiates a trigger request or instruction and provides an M2M service for the MTC user. In the embodiment of the present invention, the MTC device and the MTC server may belong to the same MTC user. In the embodiment of the present invention, when the MTC server of the MTC user communicates with an MTC device of the MTC user, the MTC device may be activated to establish a secure connection with the MTC server by triggering a request or an instruction. When the MTC server of the MTC user needs to receive information from an MTC device of the MTC user, the MTC server sends a trigger request or a trigger command to the MTC external interface function entity, and the MTC external interface function entity triggers according to the trigger request or the trigger instruction of the MTC server. A secure connection is established between the MTC device and the MTC server. To implement the MTC server of a user, only the MTC device of the user is triggered, and the MTC external interface function entity of the local network can save and manage the association information of the MTC user with the MTC device and the MTC server in the local network. Specifically, the association relationship between the MTC user identity information and the MTC device identity information and the MTC server identity information may be saved and maintained in the MTC external interface function entity, for example, the MTC user identity information IMSI and the MTC device identity information IMEI and the MTC server. form of identity MTC_Serv er _ID relationship list associated with preservation, management and maintenance. In the embodiment of the present invention, the MTC device and the MTC server may also have some association relationship. In this case, in the embodiment of the present invention, when communicating with an MTC device, an MTC server may activate a corresponding MTC device to establish a secure connection with the MTC server by sending a trigger request or an instruction. When the MTC server needs to receive information from an MTC device, the MTC server sends a trigger request or a trigger command to the MTC external interface function entity, and the MTC external interface function entity triggers the trigger between the MTC device and the MTC server according to the trigger request or the trigger instruction of the MTC server. Establish a secure connection. In the embodiment of the present invention, the identity information related to the MTC device includes: identity information of the MTC device and identity information of the MTC device subscription user (ie, the MTC user). The MTC device signing user identity information is the MTC user identity information IMSI or other identity information used to identify the MTC user. In the embodiment of the present invention, the association relationship between the MTC device and the MTC server may be an association relationship between the identity information related to the MTC device and the MTC server identity information. Specifically, it can be a relationship subscriber identity MTC device IMSI information of the MTC server identity information MTC_Serv er _ID can also be associated with the relationship between the MTC device identity IMEI and the MTC server identity information MTC_Serv er _ID can also be MTC device other information related to the identity relationship with the MTC server identity information MTC_Serv er _ID of. To implement an MTC server that only triggers the MTC device associated with the MTC server, the MTC external interface function entity of the local network can save and manage the association relationship between the MTC device and the MTC server in the local network. Specifically, the MTC-IWF entity, save manage and maintain relationships MTC device-related identity information with the MTC server identity information, such as related to subscriber identity MTC device IMSI information of the MTC server identity information MTC_Serv er _ID of in the form of a list of relationship save, manage and maintain, or device identity information to MTC MTC server and IMEI identity information MTC_Serv er in the form of a list of associated relations _ID preservation, management and maintenance. Preferably, the directed MTC device and associated relationships MTC server may be an MTC user identity information international subscriber identity another 1 J code (International Mobile Subscriber Identification Number, abbreviated as IMSI) with the MTC device identity information of the International Mobile Equipment Identity (International The association relationship of the Mobile Equipment Identity (IMEI) is that the MTC device corresponding to the IMEI is a legal MTC device corresponding to the MTC user identity information IMSI. The association relationship may also be an association relationship between the MTC user identity information IMSI and the MTC server identity information MTC_Server_ID, and the MTC server corresponding to the MTC_Server_ID is a legal MTC server corresponding to the MTC user identity information IMSI. Further, the association relationship may be an association between the MTC user identity information IMSI and the MTC server identity information MTC_Server_ID and the MTC device identity information IMEI, and the MTC server corresponding to the MTC_Server_ID and the MTC device corresponding to the IMEI belong to the MTC user whose identity information is the IMSI. . When the MTC server needs to trigger the MTC device to communicate, the MTC server sends a trigger request or trigger command to the MTC external interface function entity of the local network. Related identity information and request instructions MTC_Serv er _ID triggering request message or trigger comprises a trigger MTC MTC server equipment identity information, such as the IMEI and IMSI. After receiving the trigger request or the trigger instruction message, the MTC external interface function entity of the local network determines whether the trigger process needs to be performed. Specifically, the MTC external interface function entity of the local network determines, according to the association relationship between the stored MTC device and the MTC server, identity information related to the MTC device to be triggered, such as IMEI and MTC server identity information MTC_Server_ID, or IMSI and MTC server identity. Information MTC_Server_ID, whether there is an association relationship. If the MTC server is associated with the MTC device, the MTC external interface function entity of the local network sends the triggering command to the MTC device via the mobile communication network, or forwards the trigger request to other network entities in the mobile communication network, such as a short message center. (SMS-SC/IP-SM-GW) or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities send trigger instruction information to the MTC device. After receiving the trigger command, the MTC device starts and establishes a secure connection with the MTC server. If the MTC server does not have an association relationship with the MTC device, the MTC external interface function entity of the local network rejects the trigger request or the trigger instruction of the MTC server. Preferably, a reject message indicating that the refusal to trigger the MTC device may be sent to the MTC server. After receiving the trigger request or the trigger instruction message, the MTC external interface function entity of the local network determines whether the trigger process needs to be performed. Specifically, the MTC external interface function entity of the local network determines, according to the association relationship between the stored MTC user and the MTC device and the MTC server, whether the MTC device identity information IMEI and the MTC server identity information MTC_Server_ID to be triggered belong to the same MTC user. . If the MTC server and the MTC device belong to the same MTC user, the MTC external interface function entity of the local network sends a trigger command to the MTC device via the mobile communication network, or forwards the trigger request to other network entities in the mobile communication network, such as a short message. Center (SMS-SC/IP-SM-GW) or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities send trigger instruction information to the MTC device. After receiving the trigger command, the MTC device starts and establishes a secure connection with the MTC server. If the MTC server and the MTC device do not belong to the same MTC user, the MTC external interface function entity of the local network rejects the trigger request or trigger instruction of the MTC server. Preferably, a reject message indicating that the refusal to trigger the MTC device may be sent to the MTC server. According to the embodiment of the present invention, a triggering device for the MTC device is provided, and the MTC external interface function entity 20 provided in the embodiment of the present invention can implement the foregoing functions described in the embodiments of the present invention. FIG. 8 is a structural block diagram of a triggering apparatus of an MTC device according to an embodiment of the present invention. As shown in FIG. 8, the device may include: a receiving module 202, a determining module 204, and a sending module 206. The receiving module 202 is configured to be a trigger request message sent by a receiver-type communication (MTC) server. The determining module 204 is coupled to the receiving module 202, and is configured to determine a trigger according to a preset relationship between the MTC server and the MTC device. The MTC device triggered by the request message request is an MTC device associated with the MTC server that sends the trigger request message; the trigger module 206 is coupled to the determining module 204, and is configured to trigger the MTC device to establish a secure connection with the MTC server. Preferably, the triggering module 206 may send a triggering instruction message to the MTC device, or forward the triggering request to other network entities in the mobile communication network, such as a short message center (SMS-SC/IP-SM-GW) or an SGSN ( GPRS service support node) / MME (Mobility Management Entity), and these network entities send trigger instruction information to the MTC device. According to the embodiment of the present invention, the MTC external interface function entity determines that the MTC device that is requested to be triggered is an MTC device that is associated with the MTC server, and sends a trigger request message to the MTC device, triggering the MTC device to establish a connection with the MTC server, and the MTC server only triggers. The MTC device associated with the MTC server improves the security of communication between the MTC device and the MTC server. In a preferred embodiment of the embodiment of the present invention, if the determining module 204 determines that the MTC device triggered by the trigger request message request is not the MTC device associated with the MTC server 10, the sending module 206 rejects the trigger request message. Preferably, a reject message indicating that the refusal to trigger the MTC device may be sent to the MTC server. With the preferred embodiment, the MTC device that is not associated with the MTC server is rejected, so that the MTC server only triggers the MTC device associated with the MTC server, which improves the security of the external interface of the MTC system. In a preferred embodiment of the present invention, the association relationship includes: a correspondence between the MTC server and the MTC device; the determining module 204 is configured to determine whether the MTC device requested by the MTC server is an MTC device corresponding to the MTC server, if Yes, it is determined that the MTC device is an MTC device associated with the MTC server. In another preferred embodiment of the present invention, the foregoing relationship includes: an association relationship between the MTC user, the MTC server, and the MTC device. The determining module 204 is further configured to determine, according to the association relationship between the MTC user, the MTC server, and the MTC device, whether the MTC server and the MTC device are associated with the same MTC user, and if yes, determine the MTC device and the MTC that sends the trigger request message. The MTC device associated with the server. Preferably, the foregoing relationship may record an association relationship between the MTC user and the MTC server and the MTC device belonging to the MTC user. According to the preferred embodiment, according to the association relationship between the MTC user, the MTC server, and the MTC device, The MTC server and the MTC device belong to the same MTC user, and the trigger module 206 sends a trigger instruction message to the MTC device, or forwards the trigger request to the mobile communication. Other network entities in the network, such as Short Message Center (SMS-SC/IP-SM-GW) or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities to the MTC devices The triggering instruction information is sent, and the MTC server that belongs to the same MTC user only triggers the MTC device of the MTC user, which avoids the problem that the MTC server triggers the MTC device of other MTC users, and enhances the security of the MTC system. In the above preferred embodiment of the embodiment of the present invention, if the determining module 204 determines that the MTC device triggered by the trigger request message request and the MTC server 10 do not belong to the same MTC user, the trigger module 206 rejects the trigger request message. Preferably, a reject message indicating that the refusal to trigger the MTC device may be sent to the MTC server. With the preferred embodiment, the MTC device that does not belong to the same MTC user as the MTC server is rejected, so that the MTC server only triggers the MTC device that belongs to the same MTC user, which improves the security of the external interface of the MTC system. According to an embodiment of the present invention, a triggering method for an MTC device is provided corresponding to the foregoing system and apparatus provided by the embodiments of the present invention. FIG. 9 is a flowchart of a method for triggering an MTC device according to an embodiment of the present invention. As shown in FIG. 9, the method may include the following steps (step S902 to step S906): Step S902, MTC external interface function entity receiver class communication (MTC) The trigger request message sent by the server. Step S904: Determine, according to the association relationship between the preset MTC server and the MTC device, that the MTC device triggered by the trigger request message request is an MTC device associated with the MTC server that sends the trigger request message. Step S906, triggering the MTC device to establish a secure connection with the MTC server, for example, sending a trigger instruction message to the MTC device triggered by the trigger request message request, or forwarding the trigger request to other network entities in the mobile communication network, such as a short message center ( SMS-SC/IP-SM-GW) or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities send trigger instruction information to the MTC device. According to the embodiment of the present invention, the MTC external interface function entity determines that the MTC device that is requested to be triggered is an MTC device associated with the MTC server, and sends a trigger instruction message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network. Such as a short message center (SMS-SC/IP-SM-GW) or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities send trigger instruction information to the MTC device, triggering MTC The device establishes a connection with the MTC server. The MTC server only triggers the MTC device associated with the MTC server, which improves the security of communication between the MTC device and the MTC server. In a preferred embodiment of the embodiment of the present invention, if the MTC device triggered by the trigger request message request is not the MTC device associated with the MTC server that sends the trigger request message, the trigger request message is rejected. Preferably, a reject message indicating that the refusal to trigger the MTC device may be sent to the MTC server. With the preferred embodiment, the MTC device that is not associated with the MTC server can be rejected, so that the MTC server only triggers the MTC device associated with the MTC server, which improves the security of the external interface of the MTC system. In another preferred embodiment of the present invention, the association relationship may record a correspondence between an MTC device to which an MTC server can establish a connection, or may associate an MTC server and an MTC device with an MTC user, that is, The association relationship between the MTC user, the MTC server, and the MTC device is established, and the association relationship is preset in the MTC external interface entity. In order to determine whether the MTC device triggered by the trigger request message request and the MTC server that sends the trigger request message belong to the same MTC user, it may be determined whether there is an association relationship between the MTC server, the MTC device, and the MTC user, and if yes, determine that the MTC device is The MTC server that sends the trigger request message belongs to the same MTC user, and sends a trigger instruction message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network, such as a short message center (SMS-SC/IP-SM-GW) Or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities send trigger instruction information to the MTC device, triggering the MTC device to establish a connection with the MTC server. With the preferred embodiment, the MTC user, the MTC device, and the MTC server are associated, and the MTC server of the MTC user only triggers the MTC device of the MTC user, thereby improving the security of the external interface of the MTC system. In the above preferred embodiment of the embodiment of the present invention, if the MTC device triggered by the trigger request message request and the MTC server that sends the trigger request message do not belong to the same MTC user, the trigger request message is rejected. Preferably, a reject message indicating that the refusal to trigger the MTC device may be sent to the MTC server. With the preferred embodiment, the MTC device that does not belong to the same MTC user as the MTC server can be refused, so that the MTC server only triggers the MTC device belonging to the MTC user, which improves the security of the external interface of the MTC system. In the above preferred embodiment, when the information carried in the trigger request message carries the identity information of the MTC server and the identity information of the MTC device, the MTC server and the MTC server can be determined by determining whether the MTC device and the MTC server are associated with the same MTC user. Whether the MTC device belongs to the same MTC user. Preferably, the identity information of the MTC device may be an IMEI of the MTC device, and the identity information of the MTC user may be an IMSI. In the embodiment of the present invention, after the MTC device receives the trigger instruction message, the MTC device responds to the trigger instruction message, and establishes a communication connection between the MTC device and the MTC server. The following description is made by way of specific embodiments. The second embodiment corresponds to the system shown in FIG. 6. According to the embodiment of the present invention, a triggering method for the MTC device is provided, and in the system shown in FIG. 6, the trigger for limiting the MTC device can be implemented. 10 is a flowchart of a method for triggering an MTC device according to Embodiment 2 of the present invention. As shown in FIG. 10, the method may include the following steps (Step S1002 - Step S1008): Step S1002, the MTC server needs to trigger an MTC device. when communicating, the MTC server will trigger request, or triggering instruction information to the MTC-IWF entity in the local network, triggering request or trigger identity information instruction message includes MTC server (MTC_Serv er _ID) and MTC device associated identity information (such as IMSI and IMEI). Step S1004: After receiving the trigger request or the trigger instruction message, the MTC external interface function entity in the local network determines whether the trigger process needs to be performed. Specifically, the MTC external interface function entity in the local network determines whether the MTC device and the MTC server to be triggered belong to the same MTC user according to the association relationship between the saved MTC user and the MTC device and the MTC server. Step S1006: If the MTC server and the MTC device belong to the same MTC user, the MTC external interface function entity in the local network sends a trigger command to the MTC device through the mobile communication network, or forwards the trigger request to other network entities in the mobile communication network. , such as a short message center (SMS-SC/IP-SM-GW) or an SGSN (GPRS Service Support Node) / MME (Mobility Management Entity, mobile management entity), and the triggering information is sent to the MTC device by these network entities, Go to step S1008. If the MTC server and the MTC device do not belong to the same MTC user, the MTC external interface function entity rejects the trigger request and ends the triggering process. Step S1008: After receiving the triggering instruction, the MTC device starts and establishes a secure connection with the MTC server. The third embodiment corresponds to the system shown in FIG. 7. According to the embodiment of the present invention, a triggering method for the MTC device is provided. In the system shown in FIG. 7, the trigger for limiting the MTC device can be implemented. 11 is a flowchart of a method for triggering an MTC device according to Embodiment 3 of the present invention. As shown in FIG. 11, the method may include the following steps (Step S1102 - Step S1108): Step S1102: The MTC server needs to trigger an MTC device to perform communication, MTC server triggers a request or trigger transmission instruction information to the MTC security gateway local network, triggering request or trigger identity information (MTC_Ser Ver _ID) instruction message comprising MTC server and MTC related identity information apparatus (e.g., IMSI and IMEI). Step S1104: After receiving the trigger request or the trigger instruction message, the MTC security gateway in the local network determines whether the trigger process needs to be performed. Specifically, the MTC security gateway in the local network determines whether the MTC device and the MTC server to be triggered belong to the same MTC user according to the association relationship between the saved MTC user and the MTC device and the MTC server. Step S1106: If the MTC server and the MTC device belong to the same MTC user, the MTC security gateway in the local network sends a trigger command to the MTC device through the mobile communication network, or forwards the trigger request to other network entities in the mobile communication network, such as Short message center (SMS-SC/IP-SM-GW) or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities send trigger command information to the MTC device. S1208. If the MTC server and the MTC device do not belong to the same MTC user, the MTC security gateway rejects the trigger request and ends the triggering process. Step S1108: After receiving the triggering instruction, the MTC device starts and establishes a secure connection with the MTC server. The fourth embodiment corresponds to the system shown in FIG. 7. According to the embodiment of the present invention, a triggering method for the MTC device is provided. In the system shown in FIG. 7, the trigger for limiting the roaming MTC device can be implemented. 12 is a flowchart of a method for triggering an MTC device according to Embodiment 4 of the present invention. As shown in FIG. 12, the method may include the following steps (Step S1202 - Step S1208): Step S1202, the MTC server needs to trigger an MTC device to perform communication, MTC server will trigger request, or triggering instruction information to the external interface entity comprises MTC security gateway function of the local network, triggering request or trigger identity MTC_Serv er _ID instruction message includes MTC server and the MTC device associated identity Information such as IMSI and IMEI. Step S1204: After receiving the trigger request or the trigger instruction message, the external interface entity that includes the MTC security gateway function in the local network determines whether the trigger process needs to be performed. Specifically, the MTC is included in the local network. The external interface entity of the security gateway function determines whether the MTC device and the MTC server to be triggered belong to the same MTC user according to the association relationship between the saved MTC user and the MTC device and the MTC server. Step S1206: If the MTC server and the MTC device belong to the same MTC user, the external interface entity in the local network that includes the MTC security gateway function sends a trigger command to the MTC device through the mobile communication network, or forwards the trigger request to the mobile communication network. Other network entities, such as Short Message Center (SMS-SC/IP-SM-GW) or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities will trigger the triggering of command information. To the MTC device, proceed to step S1208; if the MTC server and the MTC device do not belong to the same MTC user, the external interface entity including the MTC security gateway function rejects the trigger request and ends the triggering process. Step S1208: After receiving the triggering instruction, the MTC device starts and establishes a secure connection with the MTC server. From the above description, it can be seen that the present invention achieves the following technical effects:
MTC外部接口功能实体确定请求触发的 MTC设备为与 MTC服务器关联的 MTC 设备, 并向 MTC设备发送触发指令消息, 或将触发请求转发到移动通信网络中的其 他网络实体, 如短消息中心 (SMS-SC/IP-SM-GW) 或 SGSN (GPRS服务支持节点) /MME (Mobility Management Entity, 移动管理实体), 并由这些网络实体向 MTC设备 发送触发指令信息, 触发 MTC设备与 MTC服务器建立连接, 实现了 MTC服务器仅 触发与 MTC服务器相关联的 MTC设备。进一步的, 可以建立 MTC用户、 MTC服务 器及 MTC设备三者的关联关系, MTC外部接口功能实体判断 MTC服务器与 MTC设 备是否与同一 MTC用户关联, 如果是, 则确定 MTC设备与 MTC服务器属于同一 MTC用户, 并向 MTC设备发送触发指令消息, 或将触发请求转发到移动通信网络中 的其他网络实体, 如短消息中心 (SMS-SC/IP-SM-GW) 或 SGSN (GPRS服务支持节 点) /MME (Mobility Management Entity, 移动管理实体), 并由这些网络实体向 MTC 设备发送触发指令信息, 触发 MTC设备与 MTC服务器建立连接, 实现了一个 MTC 用户的 MTC服务器只能触发该 MTC用户的 MTC设备,提高了 MTC设备与 MTC服 务器通信的安全性。 显然, 本领域的技术人员应该明白, 上述的本发明的各模块或各步骤可以用通用 的计算装置来实现, 它们可以集中在单个的计算装置上, 或者分布在多个计算装置所 组成的网络上, 可选地, 它们可以用计算装置可执行的程序代码来实现, 从而, 可以 将它们存储在存储装置中由计算装置来执行, 并且在某些情况下, 可以以不同于此处 的顺序执行所示出或描述的步骤, 或者将它们分别制作成各个集成电路模块, 或者将 它们中的多个模块或步骤制作成单个集成电路模块来实现。 这样, 本发明不限制于任 何特定的硬件和软件结合。 以上所述仅为本发明的优选实施例而已, 并不用于限制本发明, 对于本领域的技 术人员来说, 本发明可以有各种更改和变化。 凡在本发明的精神和原则之内, 所作的 任何修改、 等同替换、 改进等, 均应包含在本发明的保护范围之内。 The MTC external interface function entity determines that the MTC device that is requested to be triggered is an MTC device associated with the MTC server, and sends a trigger instruction message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network, such as a short message center (SMS) -SC/IP-SM-GW) or SGSN (GPRS Service Support Node) / MME (Mobility Management Entity), and these network entities send trigger instruction information to the MTC device, triggering the MTC device to establish a connection with the MTC server. Implementing the MTC server only triggers the MTC device associated with the MTC server. Further, the MTC user, the MTC server, and the MTC device may be associated with each other. The MTC external interface function entity determines whether the MTC server and the MTC device are associated with the same MTC user. If yes, it is determined that the MTC device and the MTC server belong to the same MTC. The user sends a trigger command message to the MTC device, or forwards the trigger request to other network entities in the mobile communication network, such as a short message center (SMS-SC/IP-SM-GW) or SGSN (GPRS service support node) / The MME (Mobility Management Entity) sends the triggering instruction information to the MTC device, and triggers the MTC device to establish a connection with the MTC server. The MTC server of the MTC user can only trigger the MTC device of the MTC user. Improves the security of communication between the MTC device and the MTC server. Obviously, those skilled in the art should understand that the above modules or steps of the present invention can be implemented by a general-purpose computing device, which can be concentrated on a single computing device or distributed over a network composed of multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device, such that they may be stored in the storage device by the computing device and, in some cases, may be different from the order herein. Perform the steps shown or described, or separate them into individual integrated circuit modules, or Multiple of these modules or steps are fabricated as a single integrated circuit module. Thus, the invention is not limited to any specific combination of hardware and software. The above is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.

Claims

权 利 要 求 书 Claim
1. 一种 MTC设备的触发方法, 包括: 1. A method for triggering an MTC device, comprising:
接收机器类通信 MTC服务器发送的触发请求消息;  Receiver class communication trigger request message sent by the MTC server;
根据预先设置的 MTC服务器与 MTC设备的关联关系,确定所述触发请求 消息请求触发的 MTC设备为与所述 MTC服务器相关联的 MTC设备;  Determining, according to a preset relationship between the MTC server and the MTC device, the MTC device triggered by the trigger request message request is an MTC device associated with the MTC server;
触发所述 MTC设备与所述 MTC服务器建立安全连接。  Triggering the MTC device to establish a secure connection with the MTC server.
2. 根据权利要求 1所述方法, 其中, 如果所述触发请求消息请求触发的 MTC设 备不是与所述 MTC服务器相关联的 MTC设备, 所述方法还包括: 2. The method according to claim 1, wherein, if the trigger request message requests the triggered MTC device to be not the MTC device associated with the MTC server, the method further includes:
拒绝所述触发请求消息。  The trigger request message is rejected.
3. 根据权利要求 2所述的方法, 其中, 拒绝所述触发请求消息包括: 向所述 MTC 服务器发送指示拒绝触发所述 MTC设备的拒绝消息。 The method according to claim 2, wherein the rejecting the trigger request message comprises: sending a reject message to the MTC server indicating that the triggering of the MTC device is refused.
4. 根据权利要求 1所述的方法, 其中, 触发所述 MTC设备与所述 MTC服务器建 立安全连接, 包括: 4. The method according to claim 1, wherein the triggering the MTC device to establish a secure connection with the MTC server comprises:
向所述 MTC设备发送触发指令消息; 或者,  Sending a trigger instruction message to the MTC device; or
向移动通信网络中的预定网络实体转发所述触发请求消息, 由所述预定网 络实体根据所述触发请求消息, 向所述 MTC设备发送触发指令消息。  The trigger request message is forwarded to a predetermined network entity in the mobile communication network, and the predetermined network entity sends a trigger instruction message to the MTC device according to the trigger request message.
5. 根据权利要求 4所述的方法, 其中, 向所述 MTC设备发送所述触发指令消息 之后, 所述方法还包括: The method according to claim 4, wherein, after the sending the trigger instruction message to the MTC device, the method further includes:
所述 MTC设备接收所述触发指令消息, 响应所述触发指令消息, 建立所 述 MTC设备与所述 MTC服务器之间的通信连接。  The MTC device receives the trigger instruction message, and in response to the trigger instruction message, establishes a communication connection between the MTC device and the MTC server.
6. 根据权利要求 1至 5中任一项所述的方法, 其中, The method according to any one of claims 1 to 5, wherein
所述关联关系包括: MTC服务器与 MTC设备的对应关系;  The association relationship includes: a correspondence between an MTC server and an MTC device;
确定所述触发请求消息请求触发的 MTC设备为与所述 MTC服务器相关联 的 MTC设备包括: 判断所述 MTC服务器请求触发的 MTC设备是否为与所述 MTC服务器对应的 MTC设备, 如果是, 则确定所述 MTC设备为与所述 MTC 服务器相关联的 MTC设备。 Determining that the MTC device that is triggered by the trigger request message request is an MTC device that is associated with the MTC server, including: determining whether the MTC device requested by the MTC server is an MTC device corresponding to the MTC server, and if yes, Determining that the MTC device is an MTC device associated with the MTC server.
7. 根据权利要求 6所述的方法, 其中, 7. The method according to claim 6, wherein
所述触发请求消息携带的信息, 包括: 所述 MTC服务器的身份信息和 /或 所述 MTC设备的身份信息和 /或所述 MTC用户的身份信息;  The information carried in the trigger request message includes: identity information of the MTC server and/or identity information of the MTC device and/or identity information of the MTC user;
所述对应关系包括:所述 MTC服务器的身份信息和所述 MTC设备的身份 信息的对应关系; 判断所述 MTC服务器请求触发的 MTC设备是否为与所述 MTC服务器对应的 MTC设备, 包括: 判断所述 MTC设备的身份信息与所述 MTC服务器的身份信息是否存在所述对应关系; 或者  The corresponding relationship includes: a correspondence between the identity information of the MTC server and the identity information of the MTC device; determining whether the MTC device requested by the MTC server is an MTC device corresponding to the MTC server, includes: determining Whether the identity information of the MTC device and the identity information of the MTC server have the corresponding relationship; or
所述对应关系包括:所述 MTC服务器的身份信息和所述 MTC用户的身份 信息的对应关系; 判断所述 MTC服务器请求触发的 MTC设备是否为与所述 MTC服务器对应的 MTC设备, 包括: 判断所述 MTC用户的身份信息与所述 MTC服务器的身份信息是否存在所述对应关系。  The corresponding relationship includes: a correspondence between the identity information of the MTC server and the identity information of the MTC user; determining whether the MTC device requested by the MTC server is an MTC device corresponding to the MTC server, includes: determining Whether the identity information of the MTC user and the identity information of the MTC server have the corresponding relationship.
8. 根据权利要求 1至 5中任一项所述的方法, 其中, The method according to any one of claims 1 to 5, wherein
所述关联关系包括: MTC用户、MTC服务器及 MTC设备三者的关联关系; 确定所述触发请求消息请求触发的 MTC设备为与所述 MTC服务器相关联 的 MTC设备,包括: 判断所述 MTC服务器与所述 MTC设备是否与同一 MTC 用户关联,如果是,则确定所述 MTC设备为与所述 MTC服务器相关联的 MTC 设备。  The association relationship includes: an association relationship between the MTC user, the MTC server, and the MTC device; determining that the MTC device triggered by the trigger request message request is an MTC device associated with the MTC server, includes: determining the MTC server Whether the MTC device is associated with the same MTC user, and if so, determining that the MTC device is an MTC device associated with the MTC server.
9. 根据权利要求 8所述的方法, 其中, 9. The method according to claim 8, wherein
所述触发请求消息携带的信息, 包括: 所述 MTC服务器的身份信息和 /或 所述 MTC设备的身份信息和 /或所述 MTC用户的身份信息;  The information carried in the trigger request message includes: identity information of the MTC server and/or identity information of the MTC device and/or identity information of the MTC user;
判断所述 MTC服务器与所述 MTC设备是否与同一 MTC用户相关联, 包 括:判断所述 MTC设备的身份信息和所述 MTC服务器的身份信息是否与同一 MTC用户的身份信息存在关联关系。  And determining whether the MTC server and the MTC device are associated with the same MTC user, and determining whether the identity information of the MTC device and the identity information of the MTC server are associated with the identity information of the same MTC user.
10. 根据权利要求 9所述的方法, 其中, 所述 MTC设备的身份信息, 包括: 国际 移动装备识别码 IMEI;所述 MTC用户的身份信息包括:国际用户识别码 IMSI; 所述 MTC服务器的身份信息包括: 所述 MTC服务器的身份标识。 10. The method according to claim 9, wherein the identity information of the MTC device comprises: an international mobile equipment identification code IMEI; the identity information of the MTC user comprises: an international user identification code IMSI; The identity information includes: an identity of the MTC server.
11. 一种 MTC设备的触发装置, 包括: 11. A trigger device for an MTC device, comprising:
接收模块, 设置为接收机器类通信 MTC服务器发送的触发请求消息; 确定模块, 设置为根据预先设置的 MTC服务器与 MTC设备的关联关系, 确定所述触发请求消息请求触发的 MTC设备为与所述 MTC服务器相关联的 MTC设备; a receiving module, configured to be a trigger request message sent by the receiver class communication MTC server; a determining module, configured to determine, according to a preset association relationship between the MTC server and the MTC device, that the MTC device triggered by the trigger request message request is an MTC device associated with the MTC server;
触发模块, 设置为触发所述 MTC设备与所述 MTC服务器建立安全连接。  The triggering module is configured to trigger the MTC device to establish a secure connection with the MTC server.
12. 根据权利要求 11所述的装置, 其中, 所述触发模块设置为向所述 MTC设备发 送触发指令消息, 或者向移动通信网络中的预定网络实体转发所述触发请求消 息, 由所述预定网络实体向所述 MTC设备发送触发指令消息。 12. The apparatus according to claim 11, wherein the triggering module is configured to send a triggering instruction message to the MTC device, or forward the triggering request message to a predetermined network entity in a mobile communication network, by the predetermined The network entity sends a trigger instruction message to the MTC device.
13. 根据权利要求 11或 12所述的装置, 其中, 所述关联关系包括: MTC服务器与 MTC设备的对应关系; 所述确定模块设置为判断所述 MTC服务器请求触发的 MTC设备是否为与所述 MTC服务器对应的 MTC设备, 如果是, 则确定所述 MTC设备为与所述 MTC服务器相关联的 MTC设备。 The device according to claim 11 or 12, wherein the association relationship comprises: a correspondence between an MTC server and an MTC device; the determining module is configured to determine whether the MTC device requested by the MTC server is a device The MTC device corresponding to the MTC server, if yes, determining that the MTC device is an MTC device associated with the MTC server.
14. 根据权利要求 11或 12所述的装置, 其中, 所述关联关系包括: MTC用户、 MTC服务器及 MTC设备三者的关联关系; 所述确定模块, 设置为根据 MTC 用户、 MTC服务器及 MTC设备三者的关联关系, 判断所述 MTC服务器与所 述 MTC设备是否与同一 MTC用户关联, 如果是, 则确定所述 MTC设备为与 所述 MTC服务器相关联的 MTC设备。 The device according to claim 11 or 12, wherein the association relationship includes: an association relationship between an MTC user, an MTC server, and an MTC device; the determining module is configured to be based on an MTC user, an MTC server, and an MTC. The association relationship between the three devices determines whether the MTC server and the MTC device are associated with the same MTC user, and if yes, determines that the MTC device is an MTC device associated with the MTC server.
15. 一种 MTC设备的触发系统, 包括: 15. A trigger system for an MTC device, comprising:
机器类通信 MTC服务器, 设置为向 MTC外部接口功能实体 MTC-IWF发 送触发请求消息;  The machine type communication MTC server is configured to send a trigger request message to the MTC external interface function entity MTC-IWF;
所述 MTC外部接口功能实体, 包括权利要求 10至 13中任一项所述的装 置,设置为接收机所述 MTC服务器发送的触发请求消息,根据预先设置的 MTC 服务器与 MTC设备的关联关系, 确定所述 MTC设备为与所述 MTC服务器相 关联的 MTC设备, 并触发所述 MTC设备与所述 MTC服务器建立安全连接。  The MTC external interface function entity, comprising the device according to any one of claims 10 to 13, configured to receive a trigger request message sent by the MTC server of the receiver, according to a preset relationship between the MTC server and the MTC device. Determining that the MTC device is an MTC device associated with the MTC server, and triggering the MTC device to establish a secure connection with the MTC server.
16. 根据权利要求 15所述系统, 其中, 所述 MTC外部接口功能实体, 还设置为: 在所述触发请求消息请求触发的 MTC设备不是与所述 MTC服务器相关联 的 MTC设备的情况下, 拒绝所述触发请求消息。 The system according to claim 15, wherein the MTC external interface function entity is further configured to: if the trigger request message requesting the triggered MTC device is not the MTC device associated with the MTC server, The trigger request message is rejected.
PCT/CN2012/074125 2012-01-29 2012-04-16 Method, device, and system for triggering mtc device WO2013110224A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201210020389.7 2012-01-29
CN2012100203897A CN103227991A (en) 2012-01-29 2012-01-29 Trigger method, device and system for MTC (Machine Type Communication) equipment

Publications (1)

Publication Number Publication Date
WO2013110224A1 true WO2013110224A1 (en) 2013-08-01

Family

ID=48838208

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2012/074125 WO2013110224A1 (en) 2012-01-29 2012-04-16 Method, device, and system for triggering mtc device

Country Status (2)

Country Link
CN (1) CN103227991A (en)
WO (1) WO2013110224A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2015139370A1 (en) * 2014-03-17 2015-09-24 中兴通讯股份有限公司 Method of establishing small data secure transmission connection for mtc device group, and hss and system

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104703199B (en) * 2013-12-05 2018-05-11 华为终端(东莞)有限公司 Management method, relevant device and the system of universal embedded integrated circuit card
CN106714076A (en) * 2015-11-12 2017-05-24 中兴通讯股份有限公司 MTC equipment triggering method and device
CN107018536A (en) * 2016-01-27 2017-08-04 中兴通讯股份有限公司 MTC device information acquisition method and its equipment and system

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102149190A (en) * 2010-02-09 2011-08-10 华为技术有限公司 Registration method and system of machine type communications (MTC) equipment
CN102238477A (en) * 2010-04-30 2011-11-09 华为终端有限公司 Method for triggering group of MTC (Machine Type Communication) devices to communicate with MTC server and MTC device
CN102307348A (en) * 2011-08-09 2012-01-04 中国联合网络通信集团有限公司 MTC (machine type communication) equipment triggering method and system as well as mobile communication network equipment

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102263793A (en) * 2011-08-12 2011-11-30 电信科学技术研究院 Method, system and device for verifying and controlling permission of MTC (machine type communication) server

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102149190A (en) * 2010-02-09 2011-08-10 华为技术有限公司 Registration method and system of machine type communications (MTC) equipment
CN102238477A (en) * 2010-04-30 2011-11-09 华为终端有限公司 Method for triggering group of MTC (Machine Type Communication) devices to communicate with MTC server and MTC device
CN102307348A (en) * 2011-08-09 2012-01-04 中国联合网络通信集团有限公司 MTC (machine type communication) equipment triggering method and system as well as mobile communication network equipment

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2015139370A1 (en) * 2014-03-17 2015-09-24 中兴通讯股份有限公司 Method of establishing small data secure transmission connection for mtc device group, and hss and system

Also Published As

Publication number Publication date
CN103227991A (en) 2013-07-31

Similar Documents

Publication Publication Date Title
US20200236538A1 (en) A method for transmitting an existing subscription profile from a mobile network operator to a secure element, corresponding servers and secure element
EP2399405B1 (en) Non-validated emergency calls for all-ip 3gpp ims networks
EP2893723B1 (en) Methods and apparatuses for automatic provisioning of external identifiers used for machine type devices in a 3gpp network
JP5661207B2 (en) Method, system, and computer-readable medium for diameter-based guidance of mobile device network access
CN103391532B (en) Small amount of data uplink and downlink transmission method and corresponding terminal and mobility management unit
WO2011000315A1 (en) Method, network device and network system for group management
JP7484970B2 (en) Core network device, communication terminal, method for core network device, program, and method for communication terminal
WO2016161832A1 (en) System and corresponding method for realizing mobile communication via sim card management
CN110199532B (en) Short message transmission method, equipment and system
WO2011116713A2 (en) Method, device and system for machine type communication (mtc) terminal communicating with network through gateway
WO2018113536A1 (en) Method and system for achieving multi-device connected communication
WO2007101389A1 (en) A method, system and device for locating mobile terminal
WO2013110224A1 (en) Method, device, and system for triggering mtc device
US9380478B2 (en) Updating method for trigger message counter, machine type communication server and terminal
CN109428870B (en) Network attack processing method, device and system based on Internet of things
CN106937410B (en) Network side device and communication control method thereof, Internet of things device and communication method thereof
WO2012151819A1 (en) Method and system for triggering mtc device
CN110226319A (en) Method and apparatus for the parameter exchange during promptly accessing
WO2009129729A1 (en) Method, system and csn for realizing location service
EP2667666A1 (en) Method and system for triggering terminal group
KR101780401B1 (en) Method and apparatus for setting of authorazation and security in radio communication system
US9801050B2 (en) Formatting an endpoint as a private entity
WO2014166257A1 (en) Trigger message processing method, apparatus and communication system
EP4203392A1 (en) Authentication support for an electronic device to connect to a telecommunications network
US20240089710A1 (en) Method and System for SMS Communication in 3GPP Networks

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12866850

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 12866850

Country of ref document: EP

Kind code of ref document: A1