WO2013113185A1 - Method and device for processing service subscription information - Google Patents

Method and device for processing service subscription information Download PDF

Info

Publication number
WO2013113185A1
WO2013113185A1 PCT/CN2012/073068 CN2012073068W WO2013113185A1 WO 2013113185 A1 WO2013113185 A1 WO 2013113185A1 CN 2012073068 W CN2012073068 W CN 2012073068W WO 2013113185 A1 WO2013113185 A1 WO 2013113185A1
Authority
WO
WIPO (PCT)
Prior art keywords
mtc
mtc device
network side
information
server
Prior art date
Application number
PCT/CN2012/073068
Other languages
French (fr)
Chinese (zh)
Inventor
曹岚健
余万涛
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2013113185A1 publication Critical patent/WO2013113185A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/70Services for machine-to-machine communication [M2M] or machine type communication [MTC]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/18Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data
    • H04W8/20Transfer of user or subscriber data
    • H04W8/205Transfer to or from user equipment or user record carrier

Definitions

  • the present invention relates to the field of communications, and in particular to a method and apparatus for processing service subscription information.
  • MTC Machine Type Communication
  • H2H Human to Human
  • the existing wireless communication network does not need to be wired, and has a wide coverage, so that the most effective and promising information for MTC communication is carried in the transmission technology.
  • MTC equipment will be used in various industries. How to deal with the huge data interaction generated by a large number of MTC devices has become an urgent problem to be solved.
  • the MTC device can only maintain the signaling connection with the control plane on the network side when the data interaction with the network is not required, and the MTC device is required.
  • the network side performs data interaction, the data connection of the user plane is established.
  • the MTC device when the MTC server needs to report data to the MTC device, the MTC device is triggered first, and the MTC device is woken up, so that the data connection of the user plane is established between the MTC device and the network side.
  • the MTC server In the process of triggering the MTC device by the MTC server, the MTC server generates a request for triggering the MTC device, and sends the request to the 3rd Generation Partnership Project (3GPP) network.
  • the 3GPP network needs to verify whether the server of the MTC is an authorized legal MTC server, and the 3GPP network only sends the trigger information from the legal MTC server to the MTC device.
  • the legal MTC server here has two meanings: First, the MTC server is authorized by the 3GPP network, and is an MTC server that is trusted by the 3GPP network. Second, the MTC server has a contract relationship with the MTC device, which may be The MTC device provides services and can trigger the server of the MTC device. Therefore, the 3GPP network needs to provide a mechanism for the MTC user to inform the 3GPP network, and report the MTC server list that the MTC device subscribes to trigger the MTC device.
  • the authorized MTC server refers to an MTC server that is contracted with a designated MTC terminal and can trigger the MTC terminal.
  • the above MTC server list refers to a set of service provider identifiers (Identifiy, abbreviated as ID) that can be triggered by the designated MTC terminal to trigger the MTC terminal.
  • the service provider ID is included in the International Service Provider Identifier (ISSI) of the MTC device.
  • ISSI International Service Provider Identifier
  • HSS Home Subscriber Server
  • HLR Home Location Register
  • the MTC device may initially provide a set of MTC servers that can trigger the MTC device for the 3GPP network, but the MTC device may need a new MTC server to provide services for the MTC device, and may need to be new.
  • the MTC server triggers, but there is no solution to the above situation in the prior art.
  • an effective solution has not been proposed yet.
  • the present invention provides a method and an apparatus for processing service subscription information to solve at least the above problems.
  • the present invention provides a service subscription information processing method and apparatus for the problem that the MTC device cannot report the subscription information of the new service to the network side.
  • a service subscription information processing method is provided.
  • the method includes: after the MTC device authenticates by the network side, establishing a connection with the network side; the MTC device sends service subscription information to the network side, where The service subscription information includes the parameter information of the MTC server.
  • the method may further include: the MTC device sends the request information to the network side, where the request information includes the temporary identifier TMSI of the MTC device; and the network side performs the MTC according to the TMSI.
  • the device is certified.
  • the method may further include: the MTC device receiving the international service provider subscription identifier ISSI and the parameter information sent by the MTC server, where the ISSI is used to identify the foregoing MTC device.
  • the network side may include at least one of the following network elements: a general packet radio service GPRS service support node SGSN/mobility management entity MME, a home subscriber server HSS/home location register HLR, a machine type communication-interoperability function entity MTC- IWF.
  • the sending, by the MTC device, the request information to the network side may include: sending, by the MTC device, the request information to the SGSN/MME; after the SGSN/MME receives the TMSI, according to the divination
  • the TMSI queries the IMSI of the MTC device corresponding thereto, and the SGSN/MME sends an authentication request to the HSS/HLR, where the authentication request carries the IMSI queried by the SGSN/MME.
  • the foregoing network side performing the authentication on the foregoing MTC device according to the foregoing TMSI may include: the HSS/HLR generating an authentication data vector according to the received IMSI, where the HSS/HLR sends the authentication data vector to the SGSN/MME; the SGSN/MME receives After the above authentication data vector, the above MTC device is authenticated.
  • the sending, by the MTC device, the service subscription information to the network side may include: sending, by the MTC device, the service subscription information to the SGSN/MME, where the SGSN/MME forwards the service subscription information to the HSS/HLR.
  • the method further includes:
  • a service subscription information processing method includes: receiving, by a network side, service subscription information sent by an MTC device, where the service subscription information includes parameter information of an MTC server; The side finds the MTC server corresponding to the parameter information according to the parameter information in the service subscription information, and performs authentication on the MTC server.
  • the method further includes: the network side receiving the request information sent by the MTC device, where the request information includes a TMSI of the MTC device; TMSI authenticates the above MTC devices.
  • the method further includes: establishing, by the foregoing MTC device, the foregoing MTC server.
  • a service subscription information processing apparatus is provided.
  • the service subscription information processing apparatus is located on an MTC device, and the apparatus includes: a connection establishment module, configured to be authenticated by the network side, and the network side
  • the service contract information sending module is configured to send the service subscription information to the network side, where the service subscription information includes parameter information of the MTC server.
  • the device may further include: a request information sending module, configured to send the request information to the network side when the connection is not established with the network side, where the request information includes the TMSI of the MTC device.
  • the foregoing apparatus may further include: a receiving module, configured to receive an ISSI sent by the MTC server and parameter information of the foregoing MTC server, where the ISSI is used to identify the foregoing MTC device.
  • a service subscription information processing apparatus located on a network side, and the apparatus includes: a service subscription information receiving module, configured to receive service subscription information sent by the MTC device, The service subscription information includes parameter information of the MTC server.
  • the first authentication module is configured to authenticate the MTC server according to the parameter information in the service subscription information.
  • the device may further include: a request information receiving module, configured to receive the request information sent by the MTC device, where the request information includes the TMSI of the MTC device; and the second authentication module is configured to receive according to the request information receiving module The above TMSI authenticates the above MTC device.
  • the foregoing apparatus may further include: an association module, configured to associate the foregoing MTC device with the foregoing MTC server.
  • an association module configured to associate the foregoing MTC device with the foregoing MTC server.
  • FIG. 1 is a flowchart of a method for processing service subscription information on an MTC device side according to an embodiment of the present invention
  • FIG. 2 is a flowchart of a method for processing service subscription information on a network side according to an embodiment of the present invention
  • FIG. 4 is a flowchart of a method for an MTC device in an unattached state to report a newly subscribed MTC server to a 3GPP network according to an embodiment of the present invention
  • FIG. 5 is a flowchart of a method for an MTC device in an attached state to report a newly subscribed MTC server to a 3GPP network according to an embodiment of the present invention
  • FIG. 6 is a structural block diagram of a service subscription information processing apparatus on an MTC device side according to an embodiment of the present invention
  • FIG. 7 is a structural block diagram of a service subscription information processing apparatus on a network side according to an embodiment of the present invention.
  • the MTC user or the MTC device cannot report the service subscription information of the new service to the 3GPP network (that is, the subscription information of the subscription relationship between the MTC device and the MTC server), so the 3GPP network cannot decide whether to change the authorization related to the MTC device.
  • MTC server list the service subscription information of the new service to the 3GPP network (that is, the subscription information of the subscription relationship between the MTC device and the MTC server), so the 3GPP network cannot decide whether to change the authorization related to the MTC device.
  • FIG. 1 is a flowchart of a service subscription information processing method on the MTC device side. As shown in FIG.
  • the method includes the following steps ( Step S102: Step S104): Step S102, the MTC device establishes a connection with the network side after being authenticated by the network side; Step S104, the MTC device sends the service subscription information to the network side, where the service subscription information includes the MTC server. Parameter information.
  • the MTC device There is a contract relationship between the MTC device and the 3GPP network.
  • the MTC device also has a contract relationship with the MTC server. Therefore, there are two subscription information related to the two contract relationships.
  • the above-mentioned subscription information reported by the MTC device to the network side refers to the subscription information corresponding to the subscription relationship between the MTC device and the MTC server.
  • the MTC device After the MTC device establishes a connection with the network side, the MTC device sends the service subscription information to the network side for the subsequent network side authentication to the MTC server, and solves the problem that the MTC device cannot report its new service to the network side in the related art.
  • the problem of the service subscription information so that the network side can change the list of authorized MTC servers related to the MTC device, so that the network side can know which MTC devices can be triggered by the MTC server, and improve the performance of the MTC communication.
  • the signing process of the new service may be signed through the 3GPP network, or may be signed through other non-3GPP networks.
  • MTC The server assigns an external identifier (ie, ISSI) to the MTC device, and the ISSI is used to identify the MTC device on the interface between the MTC server and the MTC-Interoperable Function Entity (MTC-Interworking Function, MTC-IWF).
  • MTC-Interworking Function MTC-Interworking Function
  • the MTC server notifies the above ISSI and MTC server parameters to the MTC device in the new service signing process. Therefore, the present embodiment provides a preferred implementation manner, that is, before the MTC device establishes a connection with the network side, the MTC device receives the ISSI sent by the MTC server and the parameter information of the MTC server, where the ISSI is used to identify the foregoing MTC. device.
  • the ISSI includes a service provider ID, so that the network side can easily determine whether the above MTC server is an MTC server capable of establishing a new service with the MTC device. In this way, when the MTC server is associated with the MTC device, it is convenient to find the corresponding MTC device according to the identifier.
  • the above ISSI and MTC server parameters can be saved on the MTC device or on a Universal Integrated Circuit Card (UICC).
  • UICC Universal Integrated Circuit Card
  • the MTC server After the MTC server notifies the above ISSI and MTC server parameters to the MTC device, the MTC device is still in an unattached state, that is, the MTC device has not established a connection with the network side, and the MTC device should go to the General Packet Radio Service (General Packet Radio Service, A service support node (Serving GPRS support node, hereinafter referred to as SGSN)/Mobility Management Entity (MME) initiates a request for reporting a new service subscription, and the request can be attached to the core network. Establish a secure connection to securely report new business sign-up reports.
  • SGSN Service support node
  • MME Mobility Management Entity
  • the request for reporting the new service contract should include the Temporary Mobile Subscriber Identity (TMSI) of the MTC device, which can be attached to the standard attachment process.
  • TMSI Temporary Mobile Subscriber Identity
  • the embodiment provides a preferred embodiment, that is, the MTC device sends the request information to the network side (that is, the request for reporting the new service subscription situation), where the request information includes the TMSI of the foregoing MTC device, and then, The network side authenticates the foregoing MTC device according to the TMSI.
  • the TMSI carried in the request information establishes a basic condition for the subsequent network side to authenticate the MTC device, so that after the authentication of the MTC device is passed, the MTC device can establish a connection with the network side.
  • the network element on the network side includes at least one of the following: SGSN/MME, HSS/HLR MTC-IWF, and the foregoing MTC device sending the request information to the network side includes the following process: After receiving the TMSI sent by the MTC device, the SGSN/MME And querying the IMSI of the MTC device by using the TMSI, and using the IMSI to initiate request information (ie, the request information) of the authentication data to the HSS/HLR, requesting an authentication vector. After receiving the authentication data request, the HSS/HLR generates an authentication data vector according to the IMSI therein and transmits it to the SGSN/MME.
  • the SGSN/MME After receiving the authentication vector, the SGSN/MME performs the authentication and key agreement (AKA) process of the standard third-generation mobile communication network with the MTC device.
  • AKA authentication and key agreement
  • the embodiment provides a preferred implementation manner, that is, the MTC device sends the request information to the SGSN/MME, and after receiving the TMSI carried in the request information, the SGSN/MME queries the corresponding MTC device according to the TMSI. IMSI, then the SGSN/MME sends an authentication request to the HSS/HLR, which recognizes The IMSI is queried by the SGSN/MME.
  • the HSS/HLR generates an authentication data vector according to the received IMSI, and the HSS/HLR sends the authentication data vector to the SGSN/MME. After receiving the authentication data vector, the SGSN/MME performs authentication with the MTC device. Through the above manner, the authentication process of the MTC device on the network side is completed, and the process is simple, effective, and easy to implement. After the above AKA process, if mutual authentication between the MTC device and the SGSN/MME is successful, the
  • a secure connection will be established between the MTC device and the SGSN/MME, and the signaling interaction between the MTC device and the SGSN/MME will be protected by the current security context. If the mutual authentication between the MTC device and the SGSN/MME fails, the SGSN/MME will reject the service subscription information of the new service reported by the MTC device. If the mutual authentication between the MTC device and the SGSN/MME is successful, the SGSN/MME will agree to the MTC. The device reports its new business subscription information.
  • the MTC device initiates a new service subscription report to the SGSN/MME, including the external identifier ISSI and the MTC server parameters allocated by the MTC server.
  • the SGSN/MME forwards the new service subscription report to the HSS/HLR.
  • the HSS/HLR transmits the MTC server parameters to the MTC-IWF, asking the MTC-IWF to authenticate the MTC server.
  • the MTC-IWF initiates an authentication process to the MTC server, and the authentication process may be a one-way authentication of the MTC server by the MTC-IWF, or a mutual authentication of the MTC-IWF and the MTC server. If the authentication between the MTC-IWF and the MTC server is successful, the MTC-IWF sends an authentication report to the HSS/HLR to inform the HSS/HLR that the above MTC server is legitimate. After receiving the legal authentication report of the MTC server, the HSS/HLR associates the ISSI of the MTC server with the IMSI of the MTC device.
  • the embodiment provides a preferred implementation manner, that is, the MTC device sends the service subscription information to the network side, where the MTC device sends the service subscription information to the SGSN/MME, and the SGSN/MME forwards the service subscription information to the HSS/
  • the HSS/HLR receives the parameter information carried in the service subscription information, and then sends the parameter information to the MTC-IWF, and the MTC-IWF and the MTC corresponding to the parameter information.
  • the server is authenticated. In this way, the authentication process of the MTC server on the network side is completed, and the process is simple, effective, and easy to implement.
  • FIG. 2 is a flowchart of the network side service subscription information processing method, such as As shown in FIG. 2, the method includes the following steps (step S202 - step S204): Step S202: The network side receives the service subscription information sent by the MTC device, where the service subscription information includes parameter information of the MTC server; Step S204: The network side searches for the MTC server corresponding to the parameter information according to the parameter information in the service subscription information, and performs authentication on the MTC server.
  • the network side After the network side receives the service subscription information sent by the MTC device, the network side authenticates the MTC server, and solves the problem that the MTC device cannot report the service subscription information of the new service to the network side in the related technology, so that the network side can The list of authorized MTC servers related to the MTC device is changed, so that the network side can know which MTC servers can be triggered by the MTC device, improving the performance of the MTC communication.
  • the network side receives the request information sent by the MTC device, where the request information includes the TMSI of the MTC device, and the network side authenticates the MTC device according to the TMSI.
  • Embodiment 1 provides a method for reporting, by a MTC device, a newly subscribed MTC server to a 3GPP network. As shown in FIG. 3, the method includes the following steps (step S302-step S308): Step S302, the MTC device requests to 3GPP. The network reported its new business signing. The new business signing situation refers to the signing of the MTC device and the new MTC server.
  • a contracting process should have taken place between the MTC device and the new MTC server.
  • the MTC server assigns an external identifier (ie ISSI) to the MTC device and informs the MTC device of some MTC server parameters.
  • the external identifier ISSI is used to identify the MTC device on an external interface between the MTC server and the 3GPP network.
  • the external identifier ISSI should be globally unique.
  • the MTC device sends the foregoing MTC server parameters to the 3GPP network, so that the 3GPP network can find the MTC server that establishes a service with the MTC device, thereby authenticating the MTC server.
  • Step S304 performing mutual authentication between the 3GPP network and the MTC device.
  • the 3GPP network needs to authenticate the MTC device to determine that the MTC device requesting the new service subscription is a legitimate MTC device.
  • the MTC device needs to authenticate the 3GPP network to prevent the attacker from impersonating the legitimate 3GPP network to attack the MTC device. If the two-way authentication between the 3GPP network and the MTC device is successful, the 3GPP network allows the MTC server to report information about its new service subscription. After the two-way authentication between the 3GPP network and the MTC device, a secure connection is established between the 3GPP network and the MTC device, so that the signaling and data transmission between the 3GPP network and the MTC device are protected by encryption and integrity.
  • Step S306 After the MTC device reports the new service subscription status to the 3GPP network, the 3GPP network searches for the MTC server according to the information reported by the MTC device, and authenticates the MTC server to determine that the MTC server is legal. Step S308, if the 3GPP network determines that the MTC server is legal, the 3GPP network may associate the subscription information of the MTC server with the MTC device in the HSS/HLR.
  • the above MTC device subscription information refers to 3GPP subscription information of the MTC device, such as IMSI.
  • the 3GPP network associates the MTC server with the MTC device subscription information by associating the external identifier ISSI of the MTC server identifier MTC device with the 3GPP subscription information of the MTC device.
  • the above ISSI includes a service provider ID, which can identify that the above MTC server is legitimate.
  • the MTC server is the MTC server of the above service provider.
  • Embodiment 2 This embodiment provides a method for reporting, by the MTC device in the unattached state (that is, the MTC device is not connected to the network side), to report the newly subscribed MTC server to the 3GPP network. As shown in FIG. 4, the method includes the following steps. Step S402-Step S422): Step S402, the MTC device and the MTC server sign a new service.
  • Step S404 The MTC device initiates a request for reporting a new service subscription to the SGSN/MME, requests to attach to the 3GPP network, and establishes a secure connection, so as to securely report the new service subscription report.
  • the request for reporting the new service contract shall include the TMSI or IMSI of the MTC device, and the request for reporting the new service contract may be attached to the standard attach process.
  • Step S406 After receiving the TMSI of the MTC device, the SGSN/MME queries the IMSI of the MTC device through the TMSI, and uses the IMSI to initiate an authentication data request to the HSS/HLR to request an authentication vector.
  • Step S410 After receiving the authentication vector, the SGSN/MME performs a standard AKA process with the MTC device.
  • the SGSN/MME will reject the MTC device to report its new service subscription information and disconnect the MTC device, if the MTC device and the SGSN/MME If the mutual authentication is successful, the SGSN/MME will agree to report the new service subscription information to the MTC device.
  • a secure connection will be established between the MTC device and the SGSN/MME, and the signaling and data transmitted between the MTC device and the SGSN/MME will be protected by the current security context.
  • Step S412 If the secure connection between the MTC device and the SGSN/MME is successfully established, the MTC device initiates a new service subscription report to the SGSN/MME, where the external identifier ISSI and MTC server parameters allocated by the MTC server are included. Step S414, the SGSN/MME forwards the new service subscription report to the HSS/HLR after decrypting and integrity verification of the new service subscription report. Step S416, the HSS/HLR transmits the MTC server parameters to the MTC-IWF, and requests the MTC-IWF to authenticate the MTC server.
  • Step S418, the MTC-IWF initiates an authentication process to the MTC server, and the authentication process may be one-way authentication of the MTC-IWF to the MTC server, or may be mutual authentication of the MTC-IWF and the MTC server.
  • Step S420 if the authentication between the MTC-IWF and the MTC server is successful, the MTC-IWF sends an authentication report to the HSS/HLR, informing the HSS/HLR that the MTC server is legal, if the authentication between the MTC-IWF and the MTC server fails. , then the MTC-IWF disconnects from the MTC server.
  • Step S422 the MTC-IWF sends an authentication report to the HSS/HLR, indicating that the authentication to the MTC server is successful or failed. If the HSS/HLR receives a valid authentication report from the MTC server, the HSS/HLR associates the ISSI with the IMSI. If the HSS/HLR receives an authentication report that the MTC server is not legal, the HSS/HLR does nothing.
  • Embodiment 3 This embodiment provides a method for reporting, by the MTC device in the attached state (that is, the connection between the MTC device and the network side), the MTC device to report the newly subscribed MTC server to the 3GPP network. As shown in FIG. 5, the method includes the following steps (step S502).
  • Step S502 the MTC device and the MTC server sign a new service.
  • the MTC server allocates an external identifier ISSI to the MTC device for identifying the MTC device on the interface between the MTC server and the MTC-IWF.
  • the MTC server will ISSI and the new business signing process
  • the MTC server parameters are notified to the MTC device.
  • the above ISSI and MTC server parameters are signed on the MTC device or on the UICC card.
  • Step S504 the MTC device initiates a new service subscription report to the SGSN/MME.
  • the foregoing MTC device is an MTC device in an attached state, that is, a mutual authentication has been performed between the 3GPP network and the MTC device, and a secure connection has been established between the SGSN/MME and the MTC device, and the SGSN/MME and the MTC device are transmitted.
  • the signaling and data are protected by encryption and integrity, so the 3GPP network can confirm that the new service subscription report received is from a legitimate MTC device.
  • the MTC device shall report its TMSI in the new service contract report, and report the relevant parameters of its external identifier ISSI and MTC server.
  • Step S506 The SGSN/MME forwards a new service subscription report to the HSS/HLR, and reports the IMSI, the external identifier ISSI, and the MTC server related parameters of the MTC device.
  • Step S508 the HSS/HLR transmits the MTC server parameter to the MTC-IWF, and requests the MTC-IWF to authenticate the MTC server.
  • Step S512 if the authentication between the MTC-IWF and the MTC server is successful, the MTC-IWF sends an authentication report to the HSS/HLR, informing the HSS/HLR that the MTC server is legal; if the authentication between the MTC-IWF and the MTC server fails , then the MTC-IWF disconnects from the MTC server.
  • Step S514 the MTC-IWF sends an authentication report to the HSS/HLR, indicating that the authentication to the MTC server is successful or failed. If the HSS/HLR receives a valid authentication report from the MTC server, the HSS/HLR associates the ISSI with the IMSI.
  • the HSS/HLR receives an authentication report that the MTC server is not legal, and the HSS/HLR does not perform any action.
  • the embodiment further provides a service subscription information processing device, the device is located on the MTC device, and FIG. 6 is the service subscription information on the MTC device side according to the embodiment of the present invention.
  • the structural block diagram of the processing device, as shown in FIG. 6, includes a connection establishing module 60 and a service contract information transmitting module 62. The structure will be described in detail below.
  • the connection establishing module 60 is configured to establish a connection with the network side after being authenticated by the network side.
  • the service subscription information sending module 62 is configured to send the service subscription information to the network side, where the service subscription information includes parameters of the MTC server. information.
  • the service subscription information sending module 62 sends the service subscription information to the network side for the subsequent network side authentication to the MTC server, and solves the problem that the MTC device cannot be connected to the network in the related art.
  • the problem of the subscription information of the new service is reported on the side, so that the network side can change the list of authorized MTC servers related to the MTC device, so that the network side can know which MTC servers can be triggered by the MTC server, and improve the performance of the MTC communication.
  • the foregoing apparatus may further include: a receiving module, configured to receive the ISSI sent by the MTC server and the parameter information of the MTC server, where the ISSI is used to identify the MTC device.
  • the ISSI includes a service provider ID, so that the network side can easily determine whether the MTC server is an MTC server capable of establishing a new service with the MTC device.
  • the MTC device After the MTC server notifies the above-mentioned ISSI and MTC server parameters to the MTC device, the MTC device is still in an unattached state, that is, the MTC device has not established a connection with the network side, and the device may further include: a request information sending module, configured to be When the connection is not established with the network side, the request information is sent to the network side, where the request information includes the TMSI of the foregoing MTC device.
  • the embodiment Corresponding to the service contract information processing method on the network side, the embodiment further provides a service subscription information processing device, which is located on the network side, and FIG. 7 is a structural block diagram of the service side information processing device on the network side according to the present invention. As shown in FIG.
  • the device includes a service subscription information receiving module 70 and a first authentication module 72.
  • the service subscription information receiving module 70 is configured to receive the service subscription information sent by the MTC device, where the service subscription information includes parameter information of the MTC server, and the first authentication module 72 is configured to receive according to the service subscription information receiving module 70.
  • the parameter information authenticates the MTC server.
  • the first authentication module 72 authenticates the MTC server, and solves the contract information that the MTC device cannot report its new service to the network side in the related art.
  • the device may further include: a request information receiving module, configured to receive request information sent by the MTC device, where the request The information includes the TMSI of the above MTC device; the second authentication module, And determining to authenticate the MTC device according to the TMSI received by the request information receiving module.
  • a request information receiving module configured to receive request information sent by the MTC device, where the request The information includes the TMSI of the above MTC device; the second authentication module, And determining to authenticate the MTC device according to the TMSI received by the request information receiving module.
  • the foregoing apparatus further includes: an association module, configured to associate the MTC device with the MTC server.
  • an association module configured to associate the MTC device with the MTC server.
  • the network can associate the new MTC server with the 3GPP subscription information of the MTC device, so that the newly contracted MTC server can trigger the MTC device, thereby enabling the 3GPP network to decide whether to change the list of authorized MTC servers related to the MTC device, Improve the performance of MTC communication.
  • the above modules or steps of the present invention can be implemented by a general-purpose computing device, which can be concentrated on a single computing device or distributed over a network composed of multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device, such that they may be stored in the storage device by the computing device and, in some cases, may be different from the order herein.

Abstract

The present invention provides a method and device for processing service subscription information. The method comprises: after being authenticated by a network side, a Machine Type Communication (MTC) device sets up a connection to the network side; the MTC device transmits the service subscription information to the network side, wherein the service subscription information comprises parameter information of an MTC server; the network side seeks out the MTC server according to the parameter information of the MTC server and authenticates the server. After succeeding in the authentication, the network side correlates the MTC device with the MTC server. With the invention, solved is the problem in related technologies that the MTC device is unable to report to the network side the service subscription information of a new service of the MTC device, therefore the network side is enabled to change the authenticated MTC server list correlated with the MTC device and to learn by which MTC servers the MTC device can be triggered, thus performance of the MTC communication is improved.

Description

业务签约信息处理方法及装置 技术领域 本发明涉及通信领域, 具体而言, 涉及一种业务签约信息处理方法及装置。 背景技术 机器类通信 (Machine Type Communication, 简称为 MTC) 是指一种不需要人干 涉的两实体之间的数据交互。 换而言之, MTC就是一种机器类的通信, 是机器与机器 之间的对话。 在 MTC系统中, MTC设备的数量将会大大超过现有的人对人(Human to Human, 简称为 H2H) 通信中的终端数量。 同时, 这些数量庞大的 MTC设备之间相互通信将 产生大量的数据。 这大量的数据都需要经过通信网络的传输, 所以这种机器与机器之 间的通信也需要有网络侧的管理。 现有的无线通信网络由于无须布线, 并且覆盖范围 广泛, 因此成为 MTC通信的最有效、 最有前景的信息承载于传输技术。 在未来的产业中, MTC设备将用于各个行业, 如何处理数量庞大的 MTC设备产 生的庞大的数据交互, 成为急需解决的问题。 为了能够优化网络侧和 MTC设备之间 的信令 /数据传输, 可以使 MTC设备在不需要和网络进行数据交互的时候, 仅仅保持 与网络侧的控制面的信令连接, 在需要 MTC设备和网络侧进行数据交互的时候再建 立起用户面的数据连接。 这样, MTC服务器有时候需要 MTC设备上报数据的时候, 就要先触发 MTC设备, 将该 MTC设备唤醒, 让 MTC设备和网络侧之间建立起用户 面的数据连接。 在 MTC服务器触发 MTC设备的过程中, MTC服务器产生触发 MTC设备的请求, 并将该请求发送给第三代合作伙伴计划 (The 3rd Generation Partnership Project, 简称 为 3GPP)网络。 3GPP网络要验证 MTC的服务器是否是授权的合法 MTC服务器,3GPP 网络只会将来自于合法的 MTC服务器的触发信息发送给 MTC设备。这里的合法 MTC 服务器有两层意思: 第一, 该 MTC服务器是被 3GPP网络授权的, 是值得 3GPP网络 信赖的 MTC服务器; 第二, 该 MTC服务器是和 MTC设备具有签约关系的, 可以为 该 MTC设备提供业务并可以触发该 MTC设备的服务器。 所以, 3GPP网络要提供一 种机制, 使得 MTC用户能够告知 3GPP 网络, 上报和 MTC设备签约的可以触发该 MTC设备的 MTC服务器列表。 上述授权的 MTC服务器是指和指定 MTC终端签约的、 可以触发该 MTC终端的 MTC服务器。 上述 MTC服务器列表是指和指定 MTC终端签约的、 可以触发该 MTC 终端的一组服务提供商标识(Identifiy, 简称为 ID)。 该服务提供商 ID包含在 MTC设 备的国际业务提供商签约标识(International Service provider Subscription Identifier, 简 称为 ISSI )内, ISSI和 MTC终端的签约信息一同处于归属用户服务器 ( Home Subscriber Server, 简称为 HSS) /归属位置寄存器 (Home Location Register, 简称为 HLR) 中。 相关技术中, MTC设备在和 3GPP网络签约时可以初始化地为 3GPP网络提供一 组可以触发该 MTC设备的 MTC服务器名单, 但是 MTC设备可能会需要新的 MTC 服务器为其提供业务, 需要可以被新的 MTC服务器触发, 但是现有技术中并没有针 对上述情况的解决方案。 针对相关技术中 MTC设备无法向网络侧上报其新业务的签约信息的问题, 目前 尚未提出有效的解决方案。 发明内容 针对相关技术中 MTC设备无法向网络侧上报其新业务的签约信息的问题, 本发 明实施例提供了一种业务签约信息处理方法及装置, 以至少解决上述问题。 根据本发明的一个实施例,提供了一种业务签约信息处理方法,该方法包括: MTC 设备通过网络侧认证后, 与上述网络侧建立连接; 上述 MTC设备向上述网络侧发送 业务签约信息, 其中, 上述业务签约信息中包括 MTC服务器的参数信息。 上述 MTC设备通过上述网络侧认证之前, 该方法还可以包括: MTC设备向网络 侧发送请求信息, 其中, 该请求信息中包括上述 MTC设备的临时识别码 TMSI; 上述 网络侧根据该 TMSI对上述 MTC设备进行认证。 上述 MTC设备未与上述网络侧建立连接之前, 该方法还可以包括: MTC设备接 收 MTC服务器发送的国际业务提供商签约标识 ISSI以及上述参数信息,其中,该 ISSI 用于标识上述 MTC设备。 上述网络侧可以包括下列至少之一的网元: 通用分组无线业务 GPRS的服务支持 节点 SGSN/移动性管理实体 MME、 归属用户服务器 HSS/归属位置寄存器 HLR、机器 类通信-互操作功能实体 MTC-IWF。 上述 MTC设备向上述网络侧发送上述请求信息可以包括:上述 MTC设备向上述 SGSN/MME发送上述请求信息; 上述 SGSN/MME接收到上述 TMSI之后, 根据卜沭 TMSI查询与其对应的上述 MTC设备的 IMSI; 上述 SGSN/MME向上述 HSS/HLR发 送认证请求, 上述认证请求中携带上述 SGSN/MME查询到的上述 IMSI。 上述网络侧根据上述 TMSI对上述 MTC设备进行认证可以包括: 上述 HSS/HLR 根据接收到的 IMSI产生认证数据向量, 上述 HSS/HLR将该认证数据向量发送给上述 SGSN/MME; 该 SGSN/MME接收到上述认证数据向量之后, 与上述 MTC设备进行 认证。 上述 MTC设备向上述网络侧发送上述业务签约信息可以包括:上述 MTC设备向 上述 SGSN/MME发送上述业务签约信息,该 SGSN/MME将上述业务签约信息转发给 上述 HSS/HLR。 上述 MTC 设备向上述网络侧发送业务签约信息之后, 该方法还包括: 上述The present invention relates to the field of communications, and in particular to a method and apparatus for processing service subscription information. BACKGROUND OF THE INVENTION Machine Type Communication (MTC) refers to a data interaction between two entities that does not require human intervention. In other words, MTC is a kind of machine-like communication, a dialogue between machines and machines. In the MTC system, the number of MTC devices will greatly exceed the number of terminals in the existing Human to Human (H2H) communication. At the same time, the communication between these large numbers of MTC devices will generate a large amount of data. This large amount of data needs to be transmitted through the communication network, so the communication between the machine and the machine also needs to be managed on the network side. The existing wireless communication network does not need to be wired, and has a wide coverage, so that the most effective and promising information for MTC communication is carried in the transmission technology. In the future industry, MTC equipment will be used in various industries. How to deal with the huge data interaction generated by a large number of MTC devices has become an urgent problem to be solved. In order to optimize the signaling/data transmission between the network side and the MTC device, the MTC device can only maintain the signaling connection with the control plane on the network side when the data interaction with the network is not required, and the MTC device is required. When the network side performs data interaction, the data connection of the user plane is established. In this way, when the MTC server needs to report data to the MTC device, the MTC device is triggered first, and the MTC device is woken up, so that the data connection of the user plane is established between the MTC device and the network side. In the process of triggering the MTC device by the MTC server, the MTC server generates a request for triggering the MTC device, and sends the request to the 3rd Generation Partnership Project (3GPP) network. The 3GPP network needs to verify whether the server of the MTC is an authorized legal MTC server, and the 3GPP network only sends the trigger information from the legal MTC server to the MTC device. The legal MTC server here has two meanings: First, the MTC server is authorized by the 3GPP network, and is an MTC server that is trusted by the 3GPP network. Second, the MTC server has a contract relationship with the MTC device, which may be The MTC device provides services and can trigger the server of the MTC device. Therefore, the 3GPP network needs to provide a mechanism for the MTC user to inform the 3GPP network, and report the MTC server list that the MTC device subscribes to trigger the MTC device. The authorized MTC server refers to an MTC server that is contracted with a designated MTC terminal and can trigger the MTC terminal. The above MTC server list refers to a set of service provider identifiers (Identifiy, abbreviated as ID) that can be triggered by the designated MTC terminal to trigger the MTC terminal. The service provider ID is included in the International Service Provider Identifier (ISSI) of the MTC device. The subscription information of the ISSI and the MTC terminal is together with the Home Subscriber Server (HSS). / Home Location Register (HLR). In the related art, when signing with the 3GPP network, the MTC device may initially provide a set of MTC servers that can trigger the MTC device for the 3GPP network, but the MTC device may need a new MTC server to provide services for the MTC device, and may need to be new. The MTC server triggers, but there is no solution to the above situation in the prior art. In view of the problem that the MTC device cannot report the subscription information of its new service to the network side in the related art, an effective solution has not been proposed yet. SUMMARY OF THE INVENTION The present invention provides a method and an apparatus for processing service subscription information to solve at least the above problems. The present invention provides a service subscription information processing method and apparatus for the problem that the MTC device cannot report the subscription information of the new service to the network side. According to an embodiment of the present invention, a service subscription information processing method is provided. The method includes: after the MTC device authenticates by the network side, establishing a connection with the network side; the MTC device sends service subscription information to the network side, where The service subscription information includes the parameter information of the MTC server. Before the foregoing MTC device is authenticated by the network side, the method may further include: the MTC device sends the request information to the network side, where the request information includes the temporary identifier TMSI of the MTC device; and the network side performs the MTC according to the TMSI. The device is certified. Before the foregoing MTC device is not connected to the network side, the method may further include: the MTC device receiving the international service provider subscription identifier ISSI and the parameter information sent by the MTC server, where the ISSI is used to identify the foregoing MTC device. The network side may include at least one of the following network elements: a general packet radio service GPRS service support node SGSN/mobility management entity MME, a home subscriber server HSS/home location register HLR, a machine type communication-interoperability function entity MTC- IWF. The sending, by the MTC device, the request information to the network side may include: sending, by the MTC device, the request information to the SGSN/MME; after the SGSN/MME receives the TMSI, according to the divination The TMSI queries the IMSI of the MTC device corresponding thereto, and the SGSN/MME sends an authentication request to the HSS/HLR, where the authentication request carries the IMSI queried by the SGSN/MME. The foregoing network side performing the authentication on the foregoing MTC device according to the foregoing TMSI may include: the HSS/HLR generating an authentication data vector according to the received IMSI, where the HSS/HLR sends the authentication data vector to the SGSN/MME; the SGSN/MME receives After the above authentication data vector, the above MTC device is authenticated. The sending, by the MTC device, the service subscription information to the network side may include: sending, by the MTC device, the service subscription information to the SGSN/MME, where the SGSN/MME forwards the service subscription information to the HSS/HLR. After the foregoing MTC device sends the service subscription information to the network side, the method further includes:
HSS/HLR接收到上述业务签约信息中携带的上述参数信息后,将上述参数信息发送给 上述 MTC-IWF; 该 MTC-IWF与上述参数信息对应的上述 MTC服务器进行认证。 根据本发明的另一个实施例, 提供了一种业务签约信息处理方法, 该方法包括: 网络侧接收 MTC设备发送的业务签约信息, 其中, 上述业务签约信息中包括 MTC服 务器的参数信息; 上述网络侧根据上述业务签约信息中的参数信息查找到与该参数信 息对应的 MTC服务器, 并对上述 MTC服务器进行认证。 上述网络侧接收上述 MTC设备发送的上述业务签约信息之前, 该方法还包括: 上述网络侧接收上述 MTC设备发送的请求信息, 其中, 该请求信息中包括上述 MTC 设备的 TMSI; 上述网络侧根据该 TMSI对上述 MTC设备进行认证。 在上述网络侧根据上述参数信息对上述 MTC服务器认证成功之后, 该方法还包 括: 上述 MTC设备与上述 MTC服务器建立关联。 根据本发明的再一个实施例, 提供了一种业务签约信息处理装置, 该业务签约信 息处理装置位于 MTC设备上, 该装置包括: 连接建立模块, 设置为通过网络侧认证 后, 与上述网络侧建立连接; 业务签约信息发送模块, 设置为向上述网络侧发送业务 签约信息, 其中, 上述业务签约信息中包括 MTC服务器的参数信息。 上述装置还可以包括: 请求信息发送模块, 设置为在未与网络侧建立连接时, 向 上述网络侧发送请求信息, 其中, 该请求信息中包括上述 MTC设备的 TMSI。 上述装置还可以包括: 接收模块, 设置为接收 MTC服务器发送的 ISSI以及上述 MTC服务器的参数信息, 其中, 上述 ISSI用于标识上述 MTC设备。 根据本发明的又一实施例, 提供了一种业务签约信息处理装置, 该业务签约信息 处理装置位于网络侧, 该装置包括: 业务签约信息接收模块, 设置为接收 MTC设备 发送的业务签约信息, 其中, 上述业务签约信息中包括 MTC服务器的参数信息; 第 一认证模块, 设置为根据上述业务签约信息中的参数信息对上述 MTC服务器进行认 证。 上述装置还可以包括: 请求信息接收模块, 设置为接收上述 MTC设备发送的请 求信息, 其中, 该请求信息中包括上述 MTC设备的 TMSI; 第二认证模块, 设置为根 据上述请求信息接收模块接收到的上述 TMSI对上述 MTC设备进行认证。 上述装置还可以包括: 关联模块, 设置为将上述 MTC设备与上述 MTC服务器建 立关联。 通过本发明, MTC设备通过网络侧认证后, 与该网络侧建立连接, 该 MTC设备 向上述网络侧发送业务签约信息, 其中, 该业务签约信息中包括 MTC服务器的参数 信息, 解决了相关技术中 MTC设备无法向网络侧上报其新业务的业务签约信息的问 题, 从而使网络侧可以更改和 MTC设备相关的授权 MTC服务器列表, 使得网络侧能 够知道 MTC设备能够被哪些 MTC服务器触发, 提高了 MTC通信的性能。 附图说明 此处所说明的附图用来提供对本发明的进一步理解, 构成本申请的一部分, 本发 明的示意性实施例及其说明用于解释本发明, 并不构成对本发明的不当限定。 在附图 中: 图 1是根据本发明实施例的 MTC设备侧的业务签约信息处理方法的流程图; 图 2是根据本发明实施例的网络侧的业务签约信息处理方法的流程图; 图 3是根据本发明实施例的 MTC设备向 3GPP网络上报其新签约 MTC服务器的 方法流程图; 图 4是根据本发明实施例的未附着状态下的 MTC设备向 3GPP网络上报新签约 MTC服务器的方法流程图; 图 5是根据本发明实施例的附着状态下的 MTC设备向 3GPP网络上报新签约 MTC 服务器的方法流程图; 图 6是根据本发明实施例的 MTC设备侧的业务签约信息处理装置的结构框图; 图 7是根据本发明实施例的网络侧的业务签约信息处理装置的结构框图。 具体实施方式 下文中将参考附图并结合实施例来详细说明本发明。 需要说明的是, 在不冲突的 情况下, 本申请中的实施例及实施例中的特征可以相互组合。 在相关技术中, MTC用户或 MTC设备无法向 3GPP网络上报其新业务的业务签 约信息 (即 MTC设备和 MTC服务器签约关系的签约信息), 因此 3GPP网络无法决 定是否更改和该 MTC设备相关的授权 MTC服务器列表。 为了使 3GPP网络能够认证 MTC设备发过来的触发信息, 使得合法的 MTC服务器的触发信息只能够发给与其签 约的 MTC设备, 而不能发给任意 MTC设备, 需要提供一种机制, 使得 MTC用户或 MTC设备能够上报一组授权的 MTC服务器名单。 基于此, 本发明实施例提供了一种 业务签约信息处理方法及装置, 下面通过实施例进行说明。 本实施例提供了一种业务签约信息处理方法, 该方法可以在 MTC设备侧实现, 图 1是 MTC设备侧的业务签约信息处理方法的流程图, 如图 1所示, 该方法包括以 下步骤 (步骤 S102-步骤 S104): 步骤 S102, MTC设备通过网络侧认证后, 与该网络侧建立连接; 步骤 S104, 上述 MTC设备向上述网络侧发送业务签约信息, 其中, 该业务签约 信息中包括 MTC服务器的参数信息。 After receiving the parameter information carried in the service subscription information, the HSS/HLR sends the parameter information to the MTC-IWF; the MTC-IWF authenticates with the MTC server corresponding to the parameter information. According to another embodiment of the present invention, a service subscription information processing method is provided, the method includes: receiving, by a network side, service subscription information sent by an MTC device, where the service subscription information includes parameter information of an MTC server; The side finds the MTC server corresponding to the parameter information according to the parameter information in the service subscription information, and performs authentication on the MTC server. Before the network side receives the service subscription information sent by the MTC device, the method further includes: the network side receiving the request information sent by the MTC device, where the request information includes a TMSI of the MTC device; TMSI authenticates the above MTC devices. After the foregoing network side successfully authenticates the foregoing MTC server according to the parameter information, the method further includes: establishing, by the foregoing MTC device, the foregoing MTC server. According to still another embodiment of the present invention, a service subscription information processing apparatus is provided. The service subscription information processing apparatus is located on an MTC device, and the apparatus includes: a connection establishment module, configured to be authenticated by the network side, and the network side The service contract information sending module is configured to send the service subscription information to the network side, where the service subscription information includes parameter information of the MTC server. The device may further include: a request information sending module, configured to send the request information to the network side when the connection is not established with the network side, where the request information includes the TMSI of the MTC device. The foregoing apparatus may further include: a receiving module, configured to receive an ISSI sent by the MTC server and parameter information of the foregoing MTC server, where the ISSI is used to identify the foregoing MTC device. According to still another embodiment of the present invention, a service subscription information processing apparatus is provided. The service subscription information processing apparatus is located on a network side, and the apparatus includes: a service subscription information receiving module, configured to receive service subscription information sent by the MTC device, The service subscription information includes parameter information of the MTC server. The first authentication module is configured to authenticate the MTC server according to the parameter information in the service subscription information. The device may further include: a request information receiving module, configured to receive the request information sent by the MTC device, where the request information includes the TMSI of the MTC device; and the second authentication module is configured to receive according to the request information receiving module The above TMSI authenticates the above MTC device. The foregoing apparatus may further include: an association module, configured to associate the foregoing MTC device with the foregoing MTC server. After the MTC device is authenticated by the network side, the MTC device establishes a connection with the network side, and the MTC device sends the service subscription information to the network side, where the service subscription information includes the parameter information of the MTC server, and the related technology is solved. The MTC device cannot report the service subscription information of the new service to the network side, so that the network side can change the list of authorized MTC servers related to the MTC device, so that the network side can know which MTC devices can be triggered by the MTC server, and improve the MTC. Communication performance. BRIEF DESCRIPTION OF THE DRAWINGS The accompanying drawings, which are set to illustrate,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, 1 is a flowchart of a method for processing service subscription information on an MTC device side according to an embodiment of the present invention; FIG. 2 is a flowchart of a method for processing service subscription information on a network side according to an embodiment of the present invention; A flow chart of a method for an MTC device to report a newly subscribed MTC server to a 3GPP network according to an embodiment of the present invention; FIG. 4 is a flowchart of a method for an MTC device in an unattached state to report a newly subscribed MTC server to a 3GPP network according to an embodiment of the present invention; FIG. 5 is a flowchart of a method for an MTC device in an attached state to report a newly subscribed MTC server to a 3GPP network according to an embodiment of the present invention; FIG. FIG. 6 is a structural block diagram of a service subscription information processing apparatus on an MTC device side according to an embodiment of the present invention; FIG. 7 is a structural block diagram of a service subscription information processing apparatus on a network side according to an embodiment of the present invention. BEST MODE FOR CARRYING OUT THE INVENTION Hereinafter, the present invention will be described in detail with reference to the accompanying drawings. It should be noted that the embodiments in the present application and the features in the embodiments may be combined with each other without conflict. In the related art, the MTC user or the MTC device cannot report the service subscription information of the new service to the 3GPP network (that is, the subscription information of the subscription relationship between the MTC device and the MTC server), so the 3GPP network cannot decide whether to change the authorization related to the MTC device. MTC server list. In order to enable the 3GPP network to authenticate the trigger information sent by the MTC device, the trigger information of the legal MTC server can only be sent to the MTC device with which it is subscribed, and cannot be sent to any MTC device. Therefore, a mechanism is needed to enable the MTC user or The MTC device can report a list of authorized MTC servers. Based on this, an embodiment of the present invention provides a method and an apparatus for processing service subscription information, which are described below by using an embodiment. The present embodiment provides a service contract information processing method, which can be implemented on the MTC device side. FIG. 1 is a flowchart of a service subscription information processing method on the MTC device side. As shown in FIG. 1 , the method includes the following steps ( Step S102: Step S104): Step S102, the MTC device establishes a connection with the network side after being authenticated by the network side; Step S104, the MTC device sends the service subscription information to the network side, where the service subscription information includes the MTC server. Parameter information.
MTC设备和 3GPP网络存在签约关系, MTC设备也和 MTC服务器存在签约关系, 所以存在两个签约关系所相关的两个签约信息。 而这里 MTC设备向网络侧上报的上 述签约信息是指 MTC设备和 MTC服务器之间的签约关系对应的签约信息。 通过上述方法, MTC设备与网络侧建立连接之后, MTC设备向网络侧发送业务 签约信息, 用于后续网络侧对 MTC服务器的认证, 解决了相关技术中 MTC设备无法 向网络侧上报其新业务的业务签约信息的问题, 从而使网络侧可以更改和 MTC设备 相关的授权 MTC服务器列表, 使得网络侧能够知道 MTC设备能够被哪些 MTC服务 器触发, 提高了 MTC通信的性能。 如果 MTC设备和 MTC服务器签约新的业务,该新业务的签约过程可以通过 3GPP 网络签约,也可以通过其他非 3GPP网络签约。 MTC设备和 MTC服务器签约后, MTC 服务器会为 MTC设备分配一个外部标识 (即 ISSI), 该 ISSI用于在 MTC服务器和 MTC-互操作功能实体(MTC Interworking Function, 简称为 MTC-IWF)之间的接口上 标识 MTC设备。上述 MTC服务器在新业务签约过程中将上述 ISSI和 MTC服务器参 数通知给上述 MTC设备。 因此, 本实施例提供了一种优选实施方式, 即在 MTC设备 未与网络侧建立连接之前, MTC设备接收 MTC服务器发送的 ISSI以及该 MTC服务 器的参数信息, 其中, 上述 ISSI用于标识上述 MTC设备。 ISSI中包含有服务提供商 ID,从而使网络侧能够轻易地判断上述 MTC服务器是否是能够与 MTC设备建立新业 务的 MTC服务器。 这样, 在后续将 MTC服务器与 MTC设备建立关联时, 方便根据 标识查找到对应的 MTC设备。上述 ISSI和 MTC服务器参数可以保存在 MTC设备上 或通用集成电路卡 (Universal Integrated Circuit Card, 简称为 UICC) 上。 在 MTC服务器将上述 ISSI和 MTC服务器参数通知给上述 MTC设备之后, MTC 设备还是处于未附着状态, 即 MTC设备还未与网络侧建立连接, MTC设备应该向通 用分组无线业务(General Packet Radio Service,简称为 GPRS)的服务支持节点(Serving GPRS support node, 简称为 SGSN) /移动性管理实体 (Mobility Management Entity, 简称为 MME) 发起上报新业务签约情况的请求, 该请求能够附着到核心网中并建立 起安全连接, 以便安全地上报新业务签约报告。 上报新业务签约情况的请求中应包含 MTC设备的临时识别码 (Temporary Mobile Subscriber Identity, 简称为 TMSI), 该请 求可以附加在标准的附着过程中。 基于此, 本实施例提供了一种优选实施方式, 即 MTC设备向网络侧发送请求信息 (即上述上报新业务签约情况的请求), 其中, 该请 求信息中包括上述 MTC设备的 TMSI, 然后, 网络侧根据该 TMSI对上述 MTC设备 进行认证。上述请求信息中携带的 TMSI为后续网络侧对 MTC设备的认证建立了基础 条件, 这样在 MTC设备的认证通过之后, MTC设备即可与网络侧建立连接。 上述网络侧的网元包括下列至少之一: SGSN/MME、 HSS/HLR MTC-IWF, 上 述 MTC设备向上述网络侧发送上述请求信息包括以下过程: SGSN/MME在收到 MTC 设备发送的 TMSI后, 通过 TMSI查询到 MTC设备的 IMSI, 并且使用该 IMSI 向 HSS/HLR发起认证数据的请求信息 (即上述请求信息), 请求认证向量。 HSS/HLR在 接收到认证数据请求后,根据其中的 IMSI产生认证数据向量,并传输给 SGSN/MME。 SGSN/MME在接收到认证向量后, 和 MTC设备进行标准的第三代移动通讯网络的认 证与密钥协商协议 (Authentication and Key Agreement, 简称为 AKA) 过程。 针对上述过程, 本实施例提供了一种优选实施方式, 即 MTC设备向 SGSN/MME 发送请求信息, SGSN/MME接收到该请求信息中携带的 TMSI之后, 根据该 TMSI查 询与其对应的 MTC设备的 IMSI, 然后 SGSN/MME向 HSS/HLR发送认证请求, 该认 证请求中携带 SGSN/MME查询到的 IMSI。上述 HSS/HLR根据接收到的 IMSI产生认 证数据向量, HSS/HLR将该认证数据向量发送给 SGSN/MME, SGSN/MME接收到该 认证数据向量之后,与上述 MTC设备进行认证。通过上述方式,完成了网络侧对 MTC 设备的认证过程, 该过程简单有效且易于实现。 在上述 AKA过程后, 如果 MTC设备和 SGSN/MME之间的相互认证成功, 该There is a contract relationship between the MTC device and the 3GPP network. The MTC device also has a contract relationship with the MTC server. Therefore, there are two subscription information related to the two contract relationships. The above-mentioned subscription information reported by the MTC device to the network side refers to the subscription information corresponding to the subscription relationship between the MTC device and the MTC server. After the MTC device establishes a connection with the network side, the MTC device sends the service subscription information to the network side for the subsequent network side authentication to the MTC server, and solves the problem that the MTC device cannot report its new service to the network side in the related art. The problem of the service subscription information, so that the network side can change the list of authorized MTC servers related to the MTC device, so that the network side can know which MTC devices can be triggered by the MTC server, and improve the performance of the MTC communication. If the MTC device and the MTC server sign a new service, the signing process of the new service may be signed through the 3GPP network, or may be signed through other non-3GPP networks. After signing the MTC device and the MTC server, MTC The server assigns an external identifier (ie, ISSI) to the MTC device, and the ISSI is used to identify the MTC device on the interface between the MTC server and the MTC-Interoperable Function Entity (MTC-Interworking Function, MTC-IWF). The MTC server notifies the above ISSI and MTC server parameters to the MTC device in the new service signing process. Therefore, the present embodiment provides a preferred implementation manner, that is, before the MTC device establishes a connection with the network side, the MTC device receives the ISSI sent by the MTC server and the parameter information of the MTC server, where the ISSI is used to identify the foregoing MTC. device. The ISSI includes a service provider ID, so that the network side can easily determine whether the above MTC server is an MTC server capable of establishing a new service with the MTC device. In this way, when the MTC server is associated with the MTC device, it is convenient to find the corresponding MTC device according to the identifier. The above ISSI and MTC server parameters can be saved on the MTC device or on a Universal Integrated Circuit Card (UICC). After the MTC server notifies the above ISSI and MTC server parameters to the MTC device, the MTC device is still in an unattached state, that is, the MTC device has not established a connection with the network side, and the MTC device should go to the General Packet Radio Service (General Packet Radio Service, A service support node (Serving GPRS support node, hereinafter referred to as SGSN)/Mobility Management Entity (MME) initiates a request for reporting a new service subscription, and the request can be attached to the core network. Establish a secure connection to securely report new business sign-up reports. The request for reporting the new service contract should include the Temporary Mobile Subscriber Identity (TMSI) of the MTC device, which can be attached to the standard attachment process. Based on this, the embodiment provides a preferred embodiment, that is, the MTC device sends the request information to the network side (that is, the request for reporting the new service subscription situation), where the request information includes the TMSI of the foregoing MTC device, and then, The network side authenticates the foregoing MTC device according to the TMSI. The TMSI carried in the request information establishes a basic condition for the subsequent network side to authenticate the MTC device, so that after the authentication of the MTC device is passed, the MTC device can establish a connection with the network side. The network element on the network side includes at least one of the following: SGSN/MME, HSS/HLR MTC-IWF, and the foregoing MTC device sending the request information to the network side includes the following process: After receiving the TMSI sent by the MTC device, the SGSN/MME And querying the IMSI of the MTC device by using the TMSI, and using the IMSI to initiate request information (ie, the request information) of the authentication data to the HSS/HLR, requesting an authentication vector. After receiving the authentication data request, the HSS/HLR generates an authentication data vector according to the IMSI therein and transmits it to the SGSN/MME. After receiving the authentication vector, the SGSN/MME performs the authentication and key agreement (AKA) process of the standard third-generation mobile communication network with the MTC device. For the foregoing process, the embodiment provides a preferred implementation manner, that is, the MTC device sends the request information to the SGSN/MME, and after receiving the TMSI carried in the request information, the SGSN/MME queries the corresponding MTC device according to the TMSI. IMSI, then the SGSN/MME sends an authentication request to the HSS/HLR, which recognizes The IMSI is queried by the SGSN/MME. The HSS/HLR generates an authentication data vector according to the received IMSI, and the HSS/HLR sends the authentication data vector to the SGSN/MME. After receiving the authentication data vector, the SGSN/MME performs authentication with the MTC device. Through the above manner, the authentication process of the MTC device on the network side is completed, and the process is simple, effective, and easy to implement. After the above AKA process, if mutual authentication between the MTC device and the SGSN/MME is successful, the
MTC设备和 SGSN/MME之间将建立起安全连接,该 MTC设备和 SGSN/MME之间的 信令交互将被当前安全上下文所保护。如果 MTC设备和 SGSN/MME之间的相互认证 失败, SGSN/MME将拒绝 MTC设备上报其新业务的业务签约信息; 如果 MTC设备 和 SGSN/MME之间的相互认证成功, SGSN/MME将同意 MTC设备上报其新业务签 约信息。 如果 MTC设备和 SGSN/MME之间的安全连接成功建立, MTC设备向 SGSN/MME 发起新业务签约报告,其中包括 MTC服务器分配的外部标识 ISSI、 MTC服务器参数。 SGSN/MME对新业务签约报告解密和完整性验证后, 向 HSS/HLR转发新业务签约报 告。然后, HSS/HLR将 MTC服务器参数传输给 MTC-IWF,要求 MTC-IWF认证 MTC 服务器是否合法。 A secure connection will be established between the MTC device and the SGSN/MME, and the signaling interaction between the MTC device and the SGSN/MME will be protected by the current security context. If the mutual authentication between the MTC device and the SGSN/MME fails, the SGSN/MME will reject the service subscription information of the new service reported by the MTC device. If the mutual authentication between the MTC device and the SGSN/MME is successful, the SGSN/MME will agree to the MTC. The device reports its new business subscription information. If the secure connection between the MTC device and the SGSN/MME is successfully established, the MTC device initiates a new service subscription report to the SGSN/MME, including the external identifier ISSI and the MTC server parameters allocated by the MTC server. After decrypting and integrity verification of the new service subscription report, the SGSN/MME forwards the new service subscription report to the HSS/HLR. Then, the HSS/HLR transmits the MTC server parameters to the MTC-IWF, asking the MTC-IWF to authenticate the MTC server.
MTC-IWF向 MTC服务器发起认证过程, 该认证过程可以是 MTC-IWF对 MTC 服务器的单向认证, 也可以是 MTC-IWF和 MTC服务器的相互认证。 如果 MTC-IWF 和 MTC 服务器之间认证成功, MTC-IWF 向 HSS/HLR 发送一个认证报告, 告知 HSS/HLR上述 MTC服务器是合法的。 HSS/HLR在收到 MTC服务器是合法的认证报 告后, 将 MTC服务器的 ISSI和 MTC设备的 IMSI相关联。 针对上述过程, 本实施例提供了一种优选实施方式, 即 MTC设备向网络侧发送 业务签约信息包括: MTC设备向 SGSN/MME发送业务签约信息, SGSN/MME将该 业务签约信息转发给 HSS/HLR; 在 MTC 设备向网络侧发送业务签约信息之后, HSS/HLR接收到上述业务签约信息中携带的参数信息, 然后将该参数信息发送给 MTC-IWF, MTC-IWF与上述参数信息对应的 MTC服务器进行认证。通过该方式, 完 成了网络侧对 MTC服务器的认证过程, 该过程简单有效且易于实现。 对应于上述 MTC设备侧的业务签约信息处理方法, 本实施例提供了一种业务签 约信息处理方法, 该方法可以在网络侧实现, 图 2是网络侧的业务签约信息处理方法 的流程图, 如图 2所示, 该方法包括以下步骤 (步骤 S202-步骤 S204): 步骤 S202, 网络侧接收 MTC设备发送的业务签约信息, 其中, 该业务签约信息 中包括 MTC服务器的参数信息; 步骤 S204,上述网络侧根据上述业务签约信息中的参数信息查找到与上述参数信 息对应的 MTC服务器, 并对上述 MTC服务器进行认证。 通过上述方法, 网络侧接收到 MTC设备发送的业务签约信息之后, 对 MTC服务 器进行认证, 解决了相关技术中 MTC设备无法向网络侧上报其新业务的业务签约信 息的问题, 从而使网络侧可以更改和 MTC设备相关的授权 MTC服务器列表, 使得网 络侧能够知道 MTC设备能够被哪些 MTC服务器触发, 提高了 MTC通信的性能。 在网络侧接收 MTC设备发送的业务签约信息之前, 网络侧接收 MTC设备发送的 请求信息, 其中, 该请求信息中包括 MTC设备的 TMSI, 网络侧根据该 TMSI对上述 MTC设备进行认证。在网络侧根据参数信息对 MTC服务器认证成功之后, MTC设备 与 MTC服务器建立关联。 具体过程前面已经进行了描述, 在此不再赘述。 下面将结合优选实施例和附图对上述实施例的实现过程进行详细说明。 实施例一 本实施例提供了 MTC设备向 3GPP网络上报其新签约 MTC服务器的方法流程, 如图 3所示, 该方法包括以下步骤 (步骤 S302-步骤 S308): 步骤 S302, MTC设备请求向 3GPP网络上报其新业务签约情况。该新业务签约情 况指的是 MTC设备和新的 MTC服务器签约的情况。 在步骤 302之前, MTC设备和 新的 MTC服务器之间应该已经进行了签约过程。 MTC设备和新的 MTC服务器签约 时, MTC服务器要给 MTC设备分配一个外部标识(即 ISSI), 并且将一些 MTC服务 器参数告知 MTC设备。上述外部标识 ISSI用于在 MTC服务器和 3GPP网络之间的外 部接口上标识 MTC设备。 外部标识 ISSI应该是全球唯一的。 MTC设备将上述 MTC 服务器参数发送给 3GPP网络,使 3GPP网络可以查找到与 MTC设备建立业务的 MTC 服务器, 从而认证该 MTC服务器。 步骤 S304, 3GPP网络和 MTC设备之间进行双向认证。 3GPP网络要认证 MTC 设备, 以确定请求上报新业务签约情况的 MTC设备是合法的 MTC设备, MTC设备 要认证 3GPP网络, 以防止攻击者冒充合法的 3GPP网络对 MTC设备发起攻击。 如果 3GPP网络和 MTC设备之间的双向认证成功后, 3GPP网络就允许 MTC服务器上报其 新业务签约的相关信息。 3GPP网络和 MTC设备之间进行双向认证后, 3GPP网络和 MTC设备之间要建立起安全连接, 使得 3GPP网络和 MTC设备之间的信令、 数据传 输要有加密保护和完整性保护。 步骤 S306, MTC设备向 3GPP网络上报其新业务签约情况以后, 3GPP网络要根 据 MTC设备上报的信息找寻到 MTC服务器, 并对该 MTC服务器进行认证, 以确定 该 MTC服务器是合法的。 步骤 S308, 如果 3GPP网络确定该 MTC服务器是合法的, 则 3GPP网络可以将 该 MTC服务器和 HSS/HLR中 MTC设备的签约信息相关联。 上述 MTC设备签约信 息是指 MTC设备的 3GPP签约信息, 如 IMSI等。 3GPP网络将 MTC服务器和 MTC 设备签约信息相关联的方式是:将 MTC服务器标识 MTC设备的外部标识 ISSI和 MTC 设备的 3GPP签约信息相关联。 上述 ISSI中包括服务提供商 ID, 能够标识上述 MTC 服务器是合法的。 该 MTC服务器是上述服务提供商的 MTC服务器。 实施例二 本实施例提供了未附着状态(即 MTC设备未与网络侧建立连接)下的 MTC设备 向 3GPP网络上报新签约 MTC服务器的方法流程, 如图 4所示, 该方法包括以下步骤 (步骤 S402-步骤 S422): 步骤 S402, MTC设备和 MTC服务器签约新的业务。 MTC设备和 MTC服务器签 约后, MTC服务器会为 MTC设备分配一个外部标识 ISSI, 用于在 MTC服务器和 MTC-IWF之间的接口上标识 MTC设备。 MTC服务器在新业务签约过程中将 ISSI和 MTC服务器参数通知给 MTC设备。上述 ISSI和 MTC服务器参数在签约保存在 MTC 设备上或 UICC卡上。 步骤 S404, MTC设备向 SGSN/MME发起上报新业务签约情况请求, 请求附着到 3GPP网络中并建立起安全连接, 以便安全地上报新业务签约报告。上报新业务签约情 况请求中应包含 MTC设备的 TMSI或 IMSI, 上报新业务签约情况请求可以附加在标 准的附着过程中。 步骤 S406, SGSN/MME在收到 MTC设备的 TMSI后, 通过 TMSI查询到 MTC 设备的 IMSI, 并且使用该 IMSI向 HSS/HLR发起认证数据请求, 请求认证向量。 步骤 S408, HSS/HLR在接收到认证数据请求后, 根据其中的 IMSI产生认证数据 向量, 并传输给 SGSN/MME。 步骤 S410, SGSN/MME在接收到认证向量后, 和 MTC设备进行标准的 AKA过 程。 在 AKA过程后,如果 MTC设备和 SGSN/MME之间的相互认证失败, SGSN/MME 将拒绝 MTC设备上报其新业务签约信息, 并断开与 MTC设备的连接, 如果 MTC设 备和 SGSN/MME之间的相互认证成功, SGSN/MME将同意 MTC设备上报其新业务 签约信息。 MTC设备和 SGSN/MME之间将建立起安全连接, MTC设备和 SGSN/MME 之间的传输的信令和数据将被当前安全上下文所保护。 步骤 S412, 如果 MTC设备和 SGSN/MME之间的安全连接成功建立, MTC设备 向 SGSN/MME发起新业务签约报告, 其中包括 MTC服务器分配的外部标识 ISSI、 MTC服务器参数。 步骤 S414, SGSN/MME对新业务签约报告解密和完整性验证后, 向 HSS/HLR转 发新业务签约报告。 步骤 S416, HSS/HLR将 MTC服务器参数传输给 MTC-IWF, 要求 MTC-IWF认 证 MTC服务器是否合法。 步骤 S418, MTC-IWF向 MTC服务器发起认证过程,该认证过程可以是 MTC-IWF 对 MTC服务器的单向认证, 也可以是 MTC-IWF和 MTC服务器的相互认证。 步骤 S420,如果 MTC-IWF和 MTC服务器之间认证成功, MTC-IWF向 HSS/HLR 发送一个认证报告, 告知 HSS/HLR上述 MTC服务器是合法的, 如果 MTC-IWF和 MTC服务器之间的认证失败, 则 MTC-IWF断开与 MTC服务器之间的连接。 步骤 S422, MTC-IWF向 HSS/HLR发送认证报告, 指示对 MTC服务器的认证是 成功或者失败。如果 HSS/HLR收到 MTC服务器是合法的认证报告, HSS/HLR将 ISSI 和 IMSI相关联, 如果 HSS/HLR收到 MTC服务器是非合法的认证报告, HSS/HLR不 进行任何动作。 实施例三 本实施例提供了附着状态 (即 MTC设备与网络侧建立连接) 下的 MTC设备向 3GPP网络上报新签约 MTC服务器的方法流程,如图 5所示,该方法包括以下步骤(步 骤 S502-步骤 S514): 步骤 S502, MTC设备和 MTC服务器签约新的业务。 MTC设备和 MTC服务器签 约后, MTC服务器会为 MTC设备分配一个外部标识 ISSI, 用于在 MTC服务器和 MTC-IWF之间的接口上标识 MTC设备。 MTC服务器在新业务签约过程中将 ISSI和 MTC服务器参数通知给 MTC设备。上述 ISSI和 MTC服务器参数在签约保存在 MTC 设备上或 UICC卡上。 步骤 S504, MTC设备向 SGSN/MME发起新业务签约报告。 因此上述 MTC设备 是处于附着状态的 MTC设备, 也就是 3GPP网络和 MTC设备之间已经进行了相互认 证并且 SGSN/MME和 MTC设备之间已经建立了安全连接, SGSN/MME和 MTC设备 之间传输的信令和数据受到了加密保护和完整性保护, 因此 3GPP网络能够确认接收 到的新业务签约报告是来自于合法的 MTC设备。 MTC设备要在新业务签约报告中上 报其 TMSI, 并且要上报其外部标识 ISSI和 MTC服务器的相关参数。 步骤 S506, SGSN/MME向 HSS/HLR转发新业务签约报告,上报 MTC设备的 IMSI、 外部标识 ISSI和 MTC服务器相关参数。 步骤 S508, HSS/HLR将 MTC服务器参数传输给 MTC-IWF, 要求 MTC-IWF认 证 MTC服务器是否合法。 步骤 S510, MTC-IWF向 MTC服务器发起认证过程,该认证过程可以是 MTC-IWF 对 MTC服务器的单向认证, 也可以是 MTC-IWF和 MTC服务器的相互认证。 步骤 S512,如果 MTC-IWF和 MTC服务器之间认证成功, MTC-IWF向 HSS/HLR 发送一个认证报告, 告知 HSS/HLR上述 MTC服务器是合法的; 如果 MTC-IWF和 MTC服务器之间的认证失败, 则 MTC-IWF断开与 MTC服务器之间的连接。 步骤 S514, MTC-IWF向 HSS/HLR发送认证报告, 指示对 MTC服务器的认证是 成功或者失败。如果 HSS/HLR收到 MTC服务器是合法的认证报告, HSS/HLR将 ISSI 和 IMSI相关联 HSS/HLR收到 MTC服务器是非合法的认证报告, HSS/HLR不进行任 何动作。 对应于上述 MTC设备侧的业务签约信息处理方法, 本实施例还提供了一种业务 签约信息处理装置, 该装置位于 MTC设备上, 图 6是根据本发明实施例的 MTC设备 侧的业务签约信息处理装置的结构框图, 如图 6 所示, 该装置包括连接建立模块 60 和业务签约信息发送模块 62, 下面对该结构进行详细说明。 连接建立模块 60, 设置为通过网络侧认证后, 与该网络侧建立连接; 业务签约信息发送模块 62, 设置为向上述网络侧发送业务签约信息, 其中, 该业 务签约信息中包括 MTC服务器的参数信息。 通过上述装置,连接建立模块 60与网络侧建立连接之后,业务签约信息发送模块 62向网络侧发送业务签约信息, 用于后续网络侧对 MTC服务器的认证, 解决了相关 技术中 MTC设备无法向网络侧上报其新业务的签约信息的问题, 从而使网络侧可以 更改和 MTC设备相关的授权 MTC服务器列表, 使得网络侧能够知道 MTC设备能够 被哪些 MTC服务器触发, 提高了 MTC通信的性能。 在连接建立模块 60与网络侧建立连接之前, 上述装置还可以包括: 接收模块, 设 置为接收 MTC服务器发送的 ISSI以及 MTC服务器的参数信息, 其中, 该 ISSI用于 标识上述 MTC设备。 ISSI中包含有服务提供商 ID, 从而使网络侧能够轻易地判断上 述 MTC服务器是否是能够与 MTC设备建立新业务的 MTC服务器。 在 MTC服务器将上述 ISSI和 MTC服务器参数通知给上述 MTC设备之后, MTC 设备还是处于未附着状态, 即 MTC设备还未与网络侧建立连接, 上述装置还可以包 括: 请求信息发送模块, 设置为在未与网络侧建立连接时, 向网络侧发送请求信息, 其中, 该请求信息中包括上述 MTC设备的 TMSI。 对应于上述网络侧的业务签约信息处理方法, 本实施例还提供了一种业务签约信 息处理装置, 该装置位于网络侧, 图 7是根据本发明的网络侧的业务签约信息处理装 置的结构框图, 如图 7所示, 该装置包括业务签约信息接收模块 70和第一认证模块 72, 下面对该结构进行详细说明。 业务签约信息接收模块 70, 设置为接收 MTC设备发送的业务签约信息, 其中, 该业务签约信息中包括 MTC服务器的参数信息; 第一认证模块 72, 设置为根据上述业务签约信息接收模块 70接收到的参数信息 对 MTC服务器进行认证。 通过上述装置, 业务签约信息接收模块 70接收到 MTC设备发送的业务签约信息 之后, 第一认证模块 72对 MTC服务器进行认证, 解决了相关技术中 MTC设备无法 向网络侧上报其新业务的签约信息的问题, 从而使网络侧可以更改和 MTC设备相关 的授权 MTC服务器列表, 使得网络侧能够知道 MTC设备能够被哪些 MTC服务器触 发, 提高了 MTC通信的性能。 在第一认证模块 72对 MTC服务器进行认证之前, 网络侧需要先对 MTC设备进 行认证, 因此, 上述装置还可以包括: 请求信息接收模块, 设置为接收 MTC设备发 送的请求信息, 其中, 该请求信息中包括上述 MTC设备的 TMSI; 第二认证模块, 设 置为根据上述请求信息接收模块接收到的上述 TMSI对上述 MTC设备进行认证。具体 的认证过程前面已经进行了描述, 在此不再赘述。 在第二认证模块对 MTC设备认证成功以及第一认证模块 72对 MTC服务器进行 认证成功之后, 上述装置还包括: 关联模块, 设置为将 MTC设备与 MTC服务器建立 关联。 从以上的描述中可以看出,本发明提供了一种 MTC用户向 3GPP网络上报其新业 务的业务签约信息的方法及装置,使得 MTC设备能够上报其与新的 MTC服务器签约 的信息, 使 3GPP网络能够将该新的 MTC服务器和 MTC设备的 3GPP签约信息相关 联, 使得该新签约的 MTC服务器能够触发该 MTC设备, 从而让 3GPP网络能够决定 是否更改和该 MTC设备相关的授权 MTC服务器列表, 提高了 MTC通信的性能。 显然, 本领域的技术人员应该明白, 上述的本发明的各模块或各步骤可以用通用 的计算装置来实现, 它们可以集中在单个的计算装置上, 或者分布在多个计算装置所 组成的网络上, 可选地, 它们可以用计算装置可执行的程序代码来实现, 从而, 可以 将它们存储在存储装置中由计算装置来执行, 并且在某些情况下, 可以以不同于此处 的顺序执行所示出或描述的步骤, 或者将它们分别制作成各个集成电路模块, 或者将 它们中的多个模块或步骤制作成单个集成电路模块来实现。 这样, 本发明不限制于任 何特定的硬件和软件结合。 以上所述仅为本发明的优选实施例而已, 并不用于限制本发明, 对于本领域的技 术人员来说, 本发明可以有各种更改和变化。 凡在本发明的精神和原则之内, 所作的 任何修改、 等同替换、 改进等, 均应包含在本发明的保护范围之内。 The MTC-IWF initiates an authentication process to the MTC server, and the authentication process may be a one-way authentication of the MTC server by the MTC-IWF, or a mutual authentication of the MTC-IWF and the MTC server. If the authentication between the MTC-IWF and the MTC server is successful, the MTC-IWF sends an authentication report to the HSS/HLR to inform the HSS/HLR that the above MTC server is legitimate. After receiving the legal authentication report of the MTC server, the HSS/HLR associates the ISSI of the MTC server with the IMSI of the MTC device. For the foregoing process, the embodiment provides a preferred implementation manner, that is, the MTC device sends the service subscription information to the network side, where the MTC device sends the service subscription information to the SGSN/MME, and the SGSN/MME forwards the service subscription information to the HSS/ After the MTC device sends the service subscription information to the network side, the HSS/HLR receives the parameter information carried in the service subscription information, and then sends the parameter information to the MTC-IWF, and the MTC-IWF and the MTC corresponding to the parameter information. The server is authenticated. In this way, the authentication process of the MTC server on the network side is completed, and the process is simple, effective, and easy to implement. Corresponding to the service contract information processing method on the MTC device side, the embodiment provides a service subscription information processing method, which can be implemented on the network side, and FIG. 2 is a flowchart of the network side service subscription information processing method, such as As shown in FIG. 2, the method includes the following steps (step S202 - step S204): Step S202: The network side receives the service subscription information sent by the MTC device, where the service subscription information includes parameter information of the MTC server; Step S204: The network side searches for the MTC server corresponding to the parameter information according to the parameter information in the service subscription information, and performs authentication on the MTC server. After the network side receives the service subscription information sent by the MTC device, the network side authenticates the MTC server, and solves the problem that the MTC device cannot report the service subscription information of the new service to the network side in the related technology, so that the network side can The list of authorized MTC servers related to the MTC device is changed, so that the network side can know which MTC servers can be triggered by the MTC device, improving the performance of the MTC communication. Before receiving the service subscription information sent by the MTC device, the network side receives the request information sent by the MTC device, where the request information includes the TMSI of the MTC device, and the network side authenticates the MTC device according to the TMSI. After the network side successfully authenticates the MTC server according to the parameter information, the MTC device establishes an association with the MTC server. The specific process has been described above and will not be described here. The implementation process of the above embodiment will be described in detail below in conjunction with the preferred embodiments and the accompanying drawings. Embodiment 1 This embodiment provides a method for reporting, by a MTC device, a newly subscribed MTC server to a 3GPP network. As shown in FIG. 3, the method includes the following steps (step S302-step S308): Step S302, the MTC device requests to 3GPP. The network reported its new business signing. The new business signing situation refers to the signing of the MTC device and the new MTC server. Prior to step 302, a contracting process should have taken place between the MTC device and the new MTC server. When the MTC device contracts with the new MTC server, the MTC server assigns an external identifier (ie ISSI) to the MTC device and informs the MTC device of some MTC server parameters. The external identifier ISSI is used to identify the MTC device on an external interface between the MTC server and the 3GPP network. The external identifier ISSI should be globally unique. The MTC device sends the foregoing MTC server parameters to the 3GPP network, so that the 3GPP network can find the MTC server that establishes a service with the MTC device, thereby authenticating the MTC server. Step S304, performing mutual authentication between the 3GPP network and the MTC device. The 3GPP network needs to authenticate the MTC device to determine that the MTC device requesting the new service subscription is a legitimate MTC device. The MTC device needs to authenticate the 3GPP network to prevent the attacker from impersonating the legitimate 3GPP network to attack the MTC device. If the two-way authentication between the 3GPP network and the MTC device is successful, the 3GPP network allows the MTC server to report information about its new service subscription. After the two-way authentication between the 3GPP network and the MTC device, a secure connection is established between the 3GPP network and the MTC device, so that the signaling and data transmission between the 3GPP network and the MTC device are protected by encryption and integrity. Step S306: After the MTC device reports the new service subscription status to the 3GPP network, the 3GPP network searches for the MTC server according to the information reported by the MTC device, and authenticates the MTC server to determine that the MTC server is legal. Step S308, if the 3GPP network determines that the MTC server is legal, the 3GPP network may associate the subscription information of the MTC server with the MTC device in the HSS/HLR. The above MTC device subscription information refers to 3GPP subscription information of the MTC device, such as IMSI. The 3GPP network associates the MTC server with the MTC device subscription information by associating the external identifier ISSI of the MTC server identifier MTC device with the 3GPP subscription information of the MTC device. The above ISSI includes a service provider ID, which can identify that the above MTC server is legitimate. The MTC server is the MTC server of the above service provider. Embodiment 2 This embodiment provides a method for reporting, by the MTC device in the unattached state (that is, the MTC device is not connected to the network side), to report the newly subscribed MTC server to the 3GPP network. As shown in FIG. 4, the method includes the following steps. Step S402-Step S422): Step S402, the MTC device and the MTC server sign a new service. After the MTC device is contracted with the MTC server, the MTC server allocates an external identifier ISSI to the MTC device for identifying the MTC device on the interface between the MTC server and the MTC-IWF. The MTC server notifies the MICS device of the ISSI and MTC server parameters during the new service contract. The above ISSI and MTC server parameters are signed on the MTC device or on the UICC card. Step S404: The MTC device initiates a request for reporting a new service subscription to the SGSN/MME, requests to attach to the 3GPP network, and establishes a secure connection, so as to securely report the new service subscription report. The request for reporting the new service contract shall include the TMSI or IMSI of the MTC device, and the request for reporting the new service contract may be attached to the standard attach process. Step S406: After receiving the TMSI of the MTC device, the SGSN/MME queries the IMSI of the MTC device through the TMSI, and uses the IMSI to initiate an authentication data request to the HSS/HLR to request an authentication vector. Step S408: After receiving the authentication data request, the HSS/HLR generates an authentication data vector according to the IMSI therein, and transmits the authentication data vector to the SGSN/MME. Step S410: After receiving the authentication vector, the SGSN/MME performs a standard AKA process with the MTC device. After the AKA process, if the mutual authentication between the MTC device and the SGSN/MME fails, the SGSN/MME will reject the MTC device to report its new service subscription information and disconnect the MTC device, if the MTC device and the SGSN/MME If the mutual authentication is successful, the SGSN/MME will agree to report the new service subscription information to the MTC device. A secure connection will be established between the MTC device and the SGSN/MME, and the signaling and data transmitted between the MTC device and the SGSN/MME will be protected by the current security context. Step S412: If the secure connection between the MTC device and the SGSN/MME is successfully established, the MTC device initiates a new service subscription report to the SGSN/MME, where the external identifier ISSI and MTC server parameters allocated by the MTC server are included. Step S414, the SGSN/MME forwards the new service subscription report to the HSS/HLR after decrypting and integrity verification of the new service subscription report. Step S416, the HSS/HLR transmits the MTC server parameters to the MTC-IWF, and requests the MTC-IWF to authenticate the MTC server. Step S418, the MTC-IWF initiates an authentication process to the MTC server, and the authentication process may be one-way authentication of the MTC-IWF to the MTC server, or may be mutual authentication of the MTC-IWF and the MTC server. Step S420, if the authentication between the MTC-IWF and the MTC server is successful, the MTC-IWF sends an authentication report to the HSS/HLR, informing the HSS/HLR that the MTC server is legal, if the authentication between the MTC-IWF and the MTC server fails. , then the MTC-IWF disconnects from the MTC server. Step S422, the MTC-IWF sends an authentication report to the HSS/HLR, indicating that the authentication to the MTC server is successful or failed. If the HSS/HLR receives a valid authentication report from the MTC server, the HSS/HLR associates the ISSI with the IMSI. If the HSS/HLR receives an authentication report that the MTC server is not legal, the HSS/HLR does nothing. Embodiment 3 This embodiment provides a method for reporting, by the MTC device in the attached state (that is, the connection between the MTC device and the network side), the MTC device to report the newly subscribed MTC server to the 3GPP network. As shown in FIG. 5, the method includes the following steps (step S502). - Step S514): Step S502, the MTC device and the MTC server sign a new service. After the MTC device is contracted with the MTC server, the MTC server allocates an external identifier ISSI to the MTC device for identifying the MTC device on the interface between the MTC server and the MTC-IWF. The MTC server will ISSI and the new business signing process The MTC server parameters are notified to the MTC device. The above ISSI and MTC server parameters are signed on the MTC device or on the UICC card. Step S504, the MTC device initiates a new service subscription report to the SGSN/MME. Therefore, the foregoing MTC device is an MTC device in an attached state, that is, a mutual authentication has been performed between the 3GPP network and the MTC device, and a secure connection has been established between the SGSN/MME and the MTC device, and the SGSN/MME and the MTC device are transmitted. The signaling and data are protected by encryption and integrity, so the 3GPP network can confirm that the new service subscription report received is from a legitimate MTC device. The MTC device shall report its TMSI in the new service contract report, and report the relevant parameters of its external identifier ISSI and MTC server. Step S506: The SGSN/MME forwards a new service subscription report to the HSS/HLR, and reports the IMSI, the external identifier ISSI, and the MTC server related parameters of the MTC device. Step S508, the HSS/HLR transmits the MTC server parameter to the MTC-IWF, and requests the MTC-IWF to authenticate the MTC server. Step S510: The MTC-IWF initiates an authentication process to the MTC server, where the authentication process may be one-way authentication of the MTC-IWF to the MTC server, or may be mutual authentication of the MTC-IWF and the MTC server. Step S512, if the authentication between the MTC-IWF and the MTC server is successful, the MTC-IWF sends an authentication report to the HSS/HLR, informing the HSS/HLR that the MTC server is legal; if the authentication between the MTC-IWF and the MTC server fails , then the MTC-IWF disconnects from the MTC server. Step S514, the MTC-IWF sends an authentication report to the HSS/HLR, indicating that the authentication to the MTC server is successful or failed. If the HSS/HLR receives a valid authentication report from the MTC server, the HSS/HLR associates the ISSI with the IMSI. The HSS/HLR receives an authentication report that the MTC server is not legal, and the HSS/HLR does not perform any action. Corresponding to the service contract information processing method on the MTC device side, the embodiment further provides a service subscription information processing device, the device is located on the MTC device, and FIG. 6 is the service subscription information on the MTC device side according to the embodiment of the present invention. The structural block diagram of the processing device, as shown in FIG. 6, includes a connection establishing module 60 and a service contract information transmitting module 62. The structure will be described in detail below. The connection establishing module 60 is configured to establish a connection with the network side after being authenticated by the network side. The service subscription information sending module 62 is configured to send the service subscription information to the network side, where the service subscription information includes parameters of the MTC server. information. After the connection establishment module 60 establishes a connection with the network side, the service subscription information sending module 62 sends the service subscription information to the network side for the subsequent network side authentication to the MTC server, and solves the problem that the MTC device cannot be connected to the network in the related art. The problem of the subscription information of the new service is reported on the side, so that the network side can change the list of authorized MTC servers related to the MTC device, so that the network side can know which MTC servers can be triggered by the MTC server, and improve the performance of the MTC communication. Before the connection establishment module 60 establishes a connection with the network side, the foregoing apparatus may further include: a receiving module, configured to receive the ISSI sent by the MTC server and the parameter information of the MTC server, where the ISSI is used to identify the MTC device. The ISSI includes a service provider ID, so that the network side can easily determine whether the MTC server is an MTC server capable of establishing a new service with the MTC device. After the MTC server notifies the above-mentioned ISSI and MTC server parameters to the MTC device, the MTC device is still in an unattached state, that is, the MTC device has not established a connection with the network side, and the device may further include: a request information sending module, configured to be When the connection is not established with the network side, the request information is sent to the network side, where the request information includes the TMSI of the foregoing MTC device. Corresponding to the service contract information processing method on the network side, the embodiment further provides a service subscription information processing device, which is located on the network side, and FIG. 7 is a structural block diagram of the service side information processing device on the network side according to the present invention. As shown in FIG. 7, the device includes a service subscription information receiving module 70 and a first authentication module 72. The structure will be described in detail below. The service subscription information receiving module 70 is configured to receive the service subscription information sent by the MTC device, where the service subscription information includes parameter information of the MTC server, and the first authentication module 72 is configured to receive according to the service subscription information receiving module 70. The parameter information authenticates the MTC server. After the service subscription information receiving module 70 receives the service subscription information sent by the MTC device, the first authentication module 72 authenticates the MTC server, and solves the contract information that the MTC device cannot report its new service to the network side in the related art. The problem is that the network side can change the list of authorized MTC servers associated with the MTC device, so that the network side can know which MTC servers can be triggered by the MTC server, improving the performance of the MTC communication. Before the first authentication module 72 authenticates the MTC server, the network side needs to authenticate the MTC device. Therefore, the device may further include: a request information receiving module, configured to receive request information sent by the MTC device, where the request The information includes the TMSI of the above MTC device; the second authentication module, And determining to authenticate the MTC device according to the TMSI received by the request information receiving module. The specific authentication process has been described above and will not be described here. After the second authentication module successfully authenticates the MTC device and the first authentication module 72 successfully authenticates the MTC server, the foregoing apparatus further includes: an association module, configured to associate the MTC device with the MTC server. As can be seen from the above description, the present invention provides a method and apparatus for an MTC user to report service subscription information of a new service to a 3GPP network, so that the MTC device can report information about its subscription with the new MTC server, so that 3GPP can be enabled. The network can associate the new MTC server with the 3GPP subscription information of the MTC device, so that the newly contracted MTC server can trigger the MTC device, thereby enabling the 3GPP network to decide whether to change the list of authorized MTC servers related to the MTC device, Improve the performance of MTC communication. Obviously, those skilled in the art should understand that the above modules or steps of the present invention can be implemented by a general-purpose computing device, which can be concentrated on a single computing device or distributed over a network composed of multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device, such that they may be stored in the storage device by the computing device and, in some cases, may be different from the order herein. The steps shown or described are performed, or they are separately fabricated into individual integrated circuit modules, or a plurality of modules or steps are fabricated as a single integrated circuit module. Thus, the invention is not limited to any specific combination of hardware and software. The above is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.

Claims

权 利 要 求 书 Claim
1. 一种业务签约信息处理方法, 包括: A method for processing business contract information, comprising:
机器类通信 MTC设备通过网络侧认证后, 与所述网络侧建立连接; 所述 MTC设备向所述网络侧发送业务签约信息, 其中, 所述业务签约信 息中包括 MTC服务器的参数信息。  After the MTC device is authenticated by the network side, the MTC device establishes a connection with the network side. The MTC device sends the service subscription information to the network side, where the service subscription information includes parameter information of the MTC server.
2. 根据权利要求 1所述的方法, 其中, 所述 MTC设备通过所述网络侧认证之前, 还包括: 2. The method according to claim 1, wherein before the authenticating by the network side, the MTC device further includes:
MTC设备向网络侧发送请求信息, 其中, 所述请求信息中包括所述 MTC 设备的临时识别码 TMSI;  The MTC device sends the request information to the network side, where the request information includes the temporary identification code TMSI of the MTC device;
所述网络侧根据所述 TMSI对所述 MTC设备进行认证。  The network side authenticates the MTC device according to the TMSI.
3. 根据权利要求 2所述的方法, 其中, 所述 MTC设备未与所述网络侧建立连接 之前, 还包括: The method according to claim 2, wherein before the establishing, by the MTC device, the connection with the network side, the method further includes:
MTC设备接收 MTC服务器发送的国际业务提供商签约标识 ISSI以及所述 参数信息, 其中, 所述 ISSI用于标识所述 MTC设备。  The MTC device receives the international service provider subscription identifier ISSI sent by the MTC server and the parameter information, where the ISSI is used to identify the MTC device.
4. 根据权利要求 1至 3任一项所述的方法, 其中, 所述网络侧包括下列至少之一 的网元: 通用分组无线业务 GPRS 的服务支持节点 SGSN/移动性管理实体 MME、 归属用户服务器 HSS/归属位置寄存器 HLR、机器类通信-互操作功能实 体 MTC-IWF。 The method according to any one of claims 1 to 3, wherein the network side comprises at least one of the following network elements: a service support node SGSN/mobility management entity MME of a general packet radio service GPRS, a home subscriber Server HSS/Home Location Register HLR, Machine Class Communication-Interoperability Function Entity MTC-IWF.
5. 根据权利要求 4所述的方法, 其中, 所述 MTC设备向所述网络侧发送所述请 求信息包括: The method of claim 4, wherein the sending, by the MTC device, the request information to the network side comprises:
所述 MTC设备向所述 SGSN/MME发送所述请求信息;  Sending, by the MTC device, the request information to the SGSN/MME;
所述 SGSN/MME接收到所述 TMSI之后,根据所述 TMSI查询与其对应的 所述 MTC设备的 IMSI;  After receiving the TMSI, the SGSN/MME queries the IMSI of the MTC device corresponding thereto according to the TMSI;
所述 SGSN/MME向所述 HSS/HLR发送认证请求,所述认证请求中携带所 述 SGSN/MME查询到的所述 IMSI。  The SGSN/MME sends an authentication request to the HSS/HLR, where the authentication request carries the IMSI queried by the SGSN/MME.
6. 根据权利要求 4所述的方法, 其中, 所述网络侧根据所述 TMSI对所述 MTC 设备进行认证包括: 所述 HSS/HLR根据接收到的所述 IMSI产生认证数据向量,所述 HSS/HLR 将所述认证数据向量发送给所述 SGSN/MME; The method according to claim 4, wherein the performing, by the network side, the authenticating the MTC device according to the TMSI comprises: The HSS/HLR generates an authentication data vector according to the received IMSI, and the HSS/HLR sends the authentication data vector to the SGSN/MME;
所述 SGSN/MME接收到所述认证数据向量之后,与所述 MTC设备进行认 证。  After receiving the authentication data vector, the SGSN/MME authenticates with the MTC device.
7. 根据权利要求 4所述的方法, 其中, 所述 MTC设备向所述网络侧发送所述业 务签约信息包括: The method according to claim 4, wherein the sending, by the MTC device, the service subscription information to the network side comprises:
所述 MTC 设备向所述 SGSN/MME 发送所述业务签约信息, 所述 SGSN/MME将所述业务签约信息转发给所述 HSS/HLR。  The MTC device sends the service subscription information to the SGSN/MME, and the SGSN/MME forwards the service subscription information to the HSS/HLR.
8. 根据权利要求 4所述的方法, 其中, 所述 MTC设备向所述网络侧发送业务签 约信息之后, 还包括: The method according to claim 4, wherein, after the MTC device sends the service subscription information to the network side, the method further includes:
所述 HSS/HLR接收到所述业务签约信息中携带的所述参数信息后, 将所 述参数信息发送给所述 MTC-IWF;  After receiving the parameter information carried in the service subscription information, the HSS/HLR sends the parameter information to the MTC-IWF;
所述 MTC-IWF与所述参数信息对应的所述 MTC服务器进行认证。  The MTC-IWF performs authentication with the MTC server corresponding to the parameter information.
9. 一种业务签约信息处理方法, 包括: 9. A method for processing business contract information, comprising:
网络侧接收机器类通信 MTC设备发送的业务签约信息, 其中, 所述业务 签约信息中包括 MTC服务器的参数信息;  The network side receiver class communicates the service subscription information sent by the MTC device, where the service subscription information includes parameter information of the MTC server;
所述网络侧根据所述业务签约信息中的参数信息查找到与所述参数信息对 应的 MTC服务器, 并对所述 MTC服务器进行认证。  The network side searches for an MTC server corresponding to the parameter information according to parameter information in the service subscription information, and performs authentication on the MTC server.
10. 根据权利要求 9所述的方法, 其中, 所述网络侧接收所述 MTC设备发送的所 述业务签约信息之前, 还包括: The method according to claim 9, wherein, before the receiving, by the network side, the service subscription information sent by the MTC device, the method further includes:
所述网络侧接收所述 MTC设备发送的请求信息, 其中, 所述请求信息中 包括所述 MTC设备的临时识别码 TMSI;  The network side receives the request information sent by the MTC device, where the request information includes a temporary identifier TMSI of the MTC device;
所述网络侧根据所述 TMSI对所述 MTC设备进行认证。  The network side authenticates the MTC device according to the TMSI.
11. 根据权利要求 9 所述的方法, 其中, 在所述网络侧根据所述参数信息对所述 MTC服务器认证成功之后, 还包括: 所述 MTC设备与所述 MTC服务器建立 关联。 The method according to claim 9, wherein after the network side successfully authenticates the MTC server according to the parameter information, the method further comprises: establishing, by the MTC device, the association with the MTC server.
12. 一种业务签约信息处理装置,所述业务签约信息处理装置位于机器类通信 MTC 设备上, 所述装置包括: 连接建立模块, 设置为通过网络侧认证后, 与所述网络侧建立连接; 业务签约信息发送模块, 设置为向所述网络侧发送业务签约信息, 其中, 所述业务签约信息中包括 MTC服务器的参数信息。 12. A service contract information processing device, the service contract information processing device being located on a machine type communication MTC device, the device comprising: a connection establishing module, configured to establish a connection with the network side after being authenticated by the network side; the service subscription information sending module is configured to send the service subscription information to the network side, where the service subscription information includes the MTC server Parameter information.
13. 根据权利要求 12所述的装置, 其中, 所述装置还包括: 请求信息发送模块, 设置为在未与网络侧建立连接时, 向所述网络侧发送 请求信息, 其中, 所述请求信息中包括所述 MTC设备的临时识别码 TMSI。 The device according to claim 12, wherein the device further comprises: a request information sending module, configured to send request information to the network side when the connection is not established with the network side, where the request information The temporary identification code TMSI of the MTC device is included.
14. 根据权利要求 12所述的装置, 其中, 所述装置还包括: The device according to claim 12, wherein the device further comprises:
接收模块, 设置为接收 MTC服务器发送的国际业务提供商签约标识 ISSI 以及所述 MTC服务器的参数信息, 其中, 所述 ISSI用于标识所述 MTC设备。  The receiving module is configured to receive an international service provider subscription identifier ISSI sent by the MTC server and parameter information of the MTC server, where the ISSI is used to identify the MTC device.
15. 一种业务签约信息处理装置, 所述业务签约信息处理装置位于网络侧, 所述装 置包括: A service contract information processing device, wherein the service contract information processing device is located on a network side, and the device comprises:
业务签约信息接收模块, 设置为接收双机通信 MTC设备发送的业务签约 信息, 其中, 所述业务签约信息中包括 MTC服务器的参数信息;  The service subscription information receiving module is configured to receive the service subscription information sent by the dual-machine communication MTC device, where the service subscription information includes parameter information of the MTC server;
第一认证模块, 设置为根据所述业务签约信息接收模块接收到的参数信息 查找到与所述参数信息对应的 MTC服务器, 并对所述 MTC服务器进行认证。  The first authentication module is configured to find an MTC server corresponding to the parameter information according to the parameter information received by the service subscription information receiving module, and perform authentication on the MTC server.
16. 根据权利要求 15所述的装置, 其中, 所述装置还包括: The device according to claim 15, wherein the device further comprises:
请求信息接收模块, 设置为接收所述 MTC设备发送的请求信息, 其中, 所述请求信息中包括所述 MTC设备的临时识别码 TMSI;  The request information receiving module is configured to receive the request information sent by the MTC device, where the request information includes a temporary identification code TMSI of the MTC device;
第二认证模块, 设置为根据所述请求信息接收模块接收到的所述 TMSI对 所述 MTC设备进行认证。  And a second authentication module, configured to authenticate the MTC device according to the TMSI received by the request information receiving module.
17. 根据权利要求 15所述的装置, 其中, 所述装置还包括: 关联模块, 设置为将所 述 MTC设备与所述 MTC服务器建立关联。 17. The apparatus of claim 15, wherein the apparatus further comprises: an association module configured to associate the MTC device with the MTC server.
PCT/CN2012/073068 2012-02-02 2012-03-26 Method and device for processing service subscription information WO2013113185A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201210023146.9A CN103249030B (en) 2012-02-02 2012-02-02 Service profile processing method and processing device
CN201210023146.9 2012-02-02

Publications (1)

Publication Number Publication Date
WO2013113185A1 true WO2013113185A1 (en) 2013-08-08

Family

ID=48904388

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2012/073068 WO2013113185A1 (en) 2012-02-02 2012-03-26 Method and device for processing service subscription information

Country Status (2)

Country Link
CN (1) CN103249030B (en)
WO (1) WO2013113185A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104936306B (en) * 2014-03-17 2020-01-14 中兴通讯股份有限公司 MTC device group small data secure transmission connection establishment method, HSS and system

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102202270A (en) * 2010-03-24 2011-09-28 中兴通讯股份有限公司 Machine type communication (MTC)-based message transmission method and interworking functional entity
CN102238534A (en) * 2011-07-15 2011-11-09 电信科学技术研究院 Terminal identifier notification and maintenance methods and equipment
CN102244855A (en) * 2010-05-10 2011-11-16 华为技术有限公司 Position-based machine to machine communicating method, system and device

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102196436B (en) * 2010-03-11 2014-12-17 华为技术有限公司 Security authentication method, device and system
CN102325004B (en) * 2011-07-15 2014-04-16 电信科学技术研究院 Signalling sending method and device
CN102340826B (en) * 2011-11-17 2016-05-25 电信科学技术研究院 A kind of method and apparatus of transfer of data

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102202270A (en) * 2010-03-24 2011-09-28 中兴通讯股份有限公司 Machine type communication (MTC)-based message transmission method and interworking functional entity
CN102244855A (en) * 2010-05-10 2011-11-16 华为技术有限公司 Position-based machine to machine communicating method, system and device
CN102238534A (en) * 2011-07-15 2011-11-09 电信科学技术研究院 Terminal identifier notification and maintenance methods and equipment

Also Published As

Publication number Publication date
CN103249030B (en) 2019-07-09
CN103249030A (en) 2013-08-14

Similar Documents

Publication Publication Date Title
US11825303B2 (en) Method for performing verification by using shared key, method for performing verification by using public key and private key, and apparatus
JP5392879B2 (en) Method and apparatus for authenticating a communication device
EP2676398B1 (en) Wireless device, registration server and method for provisioning of wireless devices
US11778458B2 (en) Network access authentication method and device
CN108683690B (en) Authentication method, user equipment, authentication device, authentication server and storage medium
WO2012174959A1 (en) Group authentication method, system and gateway in machine-to-machine communication
WO2011131052A1 (en) Method and system for group-based authentication in machine to machine communication systems
EP3614741B1 (en) Processing apparatus for terminal access to 3gpp network and communication system and corresponding system and computer program product
KR20190032435A (en) Operations related to user equipment using secret identifiers
WO2013127122A1 (en) Method and system for triggering mtc device
US11381973B2 (en) Data transmission method, related device, and related system
KR20150051568A (en) Security supporting method and system for proximity based service device to device discovery and communication in mobile telecommunication system environment
WO2014183535A1 (en) Method and system for secure transmission of small data of mtc device group
WO2013185709A1 (en) Call authentication method, device, and system
WO2013023566A1 (en) Method, system, and device for controlling mtc server permission validation
US8958792B2 (en) Method and system for selecting mobility management entity of terminal group
EP3284232A1 (en) Wireless communications
WO2011029296A1 (en) System and method for providing machine-to-machine equipment with machine communication identity module
KR101431214B1 (en) Mutual authentication method and system with network in machine type communication, key distribution method and system, and uicc and device pair authentication method and system in machine type communication
WO2013113185A1 (en) Method and device for processing service subscription information
WO2017000620A1 (en) Re-authentication and recognition method, and evolved packet data gateway and system
WO2011029297A1 (en) System and method for providing a machine communication identity module to a machine to machine equipment
US11576232B2 (en) Method for establishing a connection of a mobile terminal to a mobile radio communication network and communication network device
WO2017132906A1 (en) Method and device for acquiring and sending user equipment identifier
WO2018045841A1 (en) Network access authentication processing method and device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12867545

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 12867545

Country of ref document: EP

Kind code of ref document: A1