WO2016112680A1 - Access point name processing method, device and system - Google Patents

Access point name processing method, device and system Download PDF

Info

Publication number
WO2016112680A1
WO2016112680A1 PCT/CN2015/086272 CN2015086272W WO2016112680A1 WO 2016112680 A1 WO2016112680 A1 WO 2016112680A1 CN 2015086272 W CN2015086272 W CN 2015086272W WO 2016112680 A1 WO2016112680 A1 WO 2016112680A1
Authority
WO
WIPO (PCT)
Prior art keywords
apn
epdg
indication information
aaa server
context
Prior art date
Application number
PCT/CN2015/086272
Other languages
French (fr)
Chinese (zh)
Inventor
汪钱纯
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2016112680A1 publication Critical patent/WO2016112680A1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/08Access restriction or access information delivery, e.g. discovery data delivery
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/16Discovering, processing access restriction or access information

Definitions

  • the present invention relates to the field of communications, and in particular, to a method, an apparatus, and a system for processing an access point name APN.
  • the 3rd Generation Partnership Project (3GPP) evolved Evolved Packet System is derived from the Evolved Universal Terrestrial Radio Access Network (Evolved Universal Terrestrial Radio Access Network).
  • E-UTRAN Evolved Universal Terrestrial Radio Access Network
  • MME Mobility Management Entity
  • S-GW Serving Gateway
  • P-GW Packet Data Network Gateway
  • HSS Home Subscriber Server
  • PCRF Policy and Charging Rules Function
  • FIG. 1 is a structural block diagram of an EPS system supporting interworking with a non-3GPP system in the related art.
  • the EPS system supports interworking with a non-3GPP system, and an anchor point between the 3GPP and the non-3GPP system is a P-GW.
  • Non-3GPP systems are classified into trusted non-3GPP IP access and untrusted non-3GPP IP access.
  • the trusted non-3GPP IP access can be directly connected to the P-GW through the S2a interface; the untrusted non-3GPP IP access needs to be connected to the PDN GW through an Evolved Packet Data Gateway (ePDG), ePDG and PDN
  • ePDG Evolved Packet Data Gateway
  • ePDG Evolved Packet Data Gateway
  • the MME mobility management unit is responsible for control planes such as mobility management, non-access stratum signaling processing, and user mobility management context management;
  • the S-GW is an access gateway device connected to the E-UTRAN. Forwarding data between E-UTRAN and P-GW, and responsible for buffering paging waiting data;
  • P-GW is a border gateway of EPS and Packet Data Network (PDN), responsible for PDN Accessing and forwarding data between the EPS and the PDN;
  • the PCRF is a policy and charging rule function entity, which is connected to the service network protocol (Internet Protocol, IP for short) service network through the receiving interface Rx to obtain service information. It is connected to the gateway device in the network through the Gx/Gxa/Gxc interface, and is responsible for initiating the establishment of the IP bearer, ensuring the quality of service (QoS) of the service data, and performing charging control.
  • QoS quality of service
  • the UE may sign one or more APN contexts in the HSS, and each subscribed APN context includes a packet.
  • Information such as Packet Data Network Type (PDN type) and APN.
  • PDN type Packet Data Network Type
  • APN APN
  • the APN selection adopted in the related art is implemented by the following method, and the method includes the following steps:
  • Step S102 The UE accesses the ePDG, carries the UE's IP address type, that is, the PDN type, carries the APN, or does not carry the APN;
  • Step S104 If the UE carries the APN to the ePDG, the ePDG notifies the 3GPP AAA server of the APN carried by the UE, otherwise the ePDG does not carry the APN to the 3GPP AAA server;
  • Step S106 After obtaining the subscription data of the UE from the HSS, the 3GPP AAA server determines that the default APN subscription context is brought to the ePDG if the ePDG does not carry the APN. Otherwise, the carried APN has the corresponding subscription APN context or the subscription APN. Then selecting the contracted APN context to bring to the ePDG;
  • Step S108 The ePDG determines that the PDN type carried by the UE is the same as the PDN type in the APN subscription context delivered by the 3GPP AAA server, and then allows the user to access, otherwise the user access is denied;
  • the UE does not carry the APN and the carried PDN type is inconsistent with the PDN type in the default APN context of the subscription, if the UE carries the PDN type as IPv4, the PDN type in the default APN context of the subscription is IPv6, and the ePDG only It can deny user access and affect the end user experience.
  • the ePDG can only reject the user access problem, and no effective solution has been proposed yet.
  • the main purpose of the embodiments of the present invention is to provide a method, an apparatus, and a system for processing an access point name APN, so as to at least solve the PDN in the default APN context in which the UE does not carry the APN, and carries the PDN type and the subscribed default APN context.
  • the type is inconsistent, ePDG can only reject the problem of user access.
  • a method for processing an access point name APN including: evolving packet data gateway ePDG is sent to an authentication, authorization, and accounting (Authentication, Authorization, Accounting for AAA) server.
  • the indication information indicating the type of the address of the user equipment; the ePDG receives the subscription APN context selected by the AAA server according to the indication information; and the ePDG performs the operation of the UE accessing the ePDG according to the selected subscription APN context.
  • a method for processing an access point name APN including: an authentication, authorization, and accounting AAA server receiving an address type sent by an evolved packet data gateway ePDG for indicating a user equipment
  • the AAA server selects a subscription APN context according to the indication information, where the subscription APN context is used to instruct the ePDG to perform an operation of the UE accessing the ePDG.
  • the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
  • the AAA server selects the subscription APN context according to the indication information, and the AAA server selects the subscription APN context from the user subscription data stored by the home subscriber server according to the indication information.
  • a processing apparatus for an access point name APN is provided, which is applied to an evolved packet data gateway ePDG side, and includes: a sending module, configured to send to an authentication, authorization, and accounting AAA server.
  • the indication information is used to indicate the type of the address of the user equipment;
  • the first receiving module is configured to receive the contracted APN context selected by the AAA server according to the indication information;
  • the first selection module is configured to: according to the selected subscription APN context Performing an operation of the UE accessing the ePDG.
  • the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
  • the sending module is further configured to send, to the AAA server, a request message of an extended authentication protocol Diameter-EAP-Request of an application verification, authorization, and accounting basic protocol, where the request message carries Indicate the indication information.
  • a processing apparatus for an access point name APN is provided, which is applied to an authentication, authorization, and accounting AAA server side, and includes: a second receiving module configured to receive an evolved packet data gateway. And the second selection module is configured to select the subscription APN context according to the indication information, where the subscription APN context is used to instruct the ePDG to perform the UE access location, where the ePDG sends the indication information of the address type of the user equipment. The operation of the ePDG.
  • the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
  • the second selection module is further configured to select the subscription APN context from the user subscription data stored by the home subscriber server according to the indication information.
  • a processing system for an access point name APN including: an evolved packet data gateway ePDG and an authentication, authorization, and accounting AAA server; and an evolved packet data gateway ePDG, configured to Sending, to the authentication, authorization, and accounting AAA server, indication information indicating an address type of the user equipment; the AAA server, configured to send, to the ePDG, a contracted APN context selected according to the indication information; the ePDG, further And being configured to perform an operation of the UE accessing the ePDG according to the selected subscription APN context.
  • the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
  • the evolved packet data gateway ePDG sends indication information indicating an address type of the user equipment to the AAA server by: sending, by the ePDG, the extended verification of the application verification, authorization, and accounting basic protocol to the AAA server.
  • the system further includes: a home subscriber server, where the home subscriber server is configured to store user subscription data, where the subscriber subscription data includes: the subscription APN context.
  • the AAA server after the AAA server receives the indication information indicating the address type of the user equipment that is sent by the ePDG, the AAA server selects the subscription APN context according to the indication information, and sends the subscription APN context to the ePDG.
  • the ePDG does not need to check whether the type of the address type and the APN subscription context are the same, and directly uses the subscription APN context to perform the operation of the UE to access the ePDG, and solves the related technology that the UE does not carry the APN and carries the PDN.
  • the ePDG can only reject the user access problem and improve the user experience.
  • FIG. 1 is a structural block diagram of an EPS system supporting interworking with a non-3GPP system in the related art
  • FIG. 2 is a flowchart 1 of a method for processing an access point name APN according to an embodiment of the present invention
  • FIG. 4 is a structural diagram 1 of a processing apparatus for an access point name APN according to an embodiment of the present invention
  • FIG. 5 is a second structural block diagram of a processing apparatus for an access point name APN according to an embodiment of the present invention.
  • FIG. 6 is a structural block diagram of a processing system of an access point name APN according to an embodiment of the present invention.
  • FIG. 7 is a block diagram showing an optional structure of a processing system of an access point name APN according to an embodiment of the present invention.
  • FIG. 9 is a flowchart of a method for a UE to implement UE access by using an APN according to an optional embodiment of the present invention.
  • FIG. 2 is a flowchart 1 of a method for processing an access point name APN according to an embodiment of the present invention. As shown in FIG. 2, the steps of the method include:
  • Step S202 The evolved packet data gateway ePDG sends indication information indicating an address type of the user equipment to the authentication, authorization, and accounting AAA server;
  • Step S204 The ePDG receives the subscribed APN context selected by the AAA server according to the indication information.
  • Step S206 The ePDG performs an operation of the UE accessing the ePDG according to the selected subscription APN context.
  • the AAA server selects the contracted APN context according to the indication information, and sends the contracted APN context to the ePDG.
  • the ePDG does not need to check whether the type of the address type and the APN subscription context are consistent, and directly uses the contracted APN context to perform the operation of the UE to access the ePDG, and solves the related art in which the UE does not carry the APN and carries the PDN type and When the PDN types in the default APN context of the contract are inconsistent, the ePDG can only reject the user access problem and improve the user experience.
  • AAA server involved in this embodiment is preferably a 3GPP AAA server.
  • AAA servers are also within the protection scope of the present invention.
  • the indication information involved in this embodiment may carry a packet data network type PDN type, or carry a PDN type and an APN.
  • the manner in which the evolved packet data gateway ePDG sends the indication information indicating the type of the address of the user equipment to the AAA server in the embodiment may be various, and in an optional implementation manner of this embodiment, the following may be adopted.
  • the method is implemented as follows: The ePDG sends a Diameter-EAP-Request to the AAA server, where the request message carries the indication information.
  • FIG. 3 is a second flowchart of a method for processing an access point name APN according to an embodiment of the present invention. As shown in FIG. 3, the steps of the method include:
  • Step S302 The authentication, authorization, and accounting AAA server receives the indication information sent by the evolved packet data gateway ePDG for indicating the type of the address of the user equipment.
  • Step S304 The AAA server selects the subscription APN context according to the indication information, where the subscription APN context is used to instruct the ePDG to perform the operation of the UE accessing the ePDG.
  • the indication information related to the embodiment may carry a packet data network type PDN type, or carry a PDN type and an APN.
  • the manner in which the AAA server selects the subscription APN context according to the indication information may be implemented by: the AAA server selecting the subscription APN context from the user subscription data stored by the home subscriber server according to the indication information. .
  • the processing device of the access point name APN is also provided in the embodiment, and the device is used to implement the foregoing embodiment and the optional implementation manner, and details are not described herein.
  • the term "module” may implement a combination of software and/or hardware of a predetermined function.
  • the apparatus described in the following embodiments is preferably implemented in software, hardware, or a combination of software and hardware, is also possible and contemplated.
  • FIG. 4 is a block diagram of a processing device of an access point name APN according to an embodiment of the present invention.
  • the device is applied to an ePDG side of an evolved packet data gateway.
  • the device includes: a sending module 42 configured to The authentication, authorization, and accounting AAA server sends the indication information indicating the type of the address of the user equipment;
  • the first receiving module 44 is coupled to the sending module 42 and configured to receive the contracted APN context selected by the AAA server according to the indication information;
  • the selection module 46 is coupled to the first receiving module 44 and configured to perform the operation of the UE accessing the ePDG according to the selected subscription APN context.
  • the indication information involved in the embodiment may carry the packet data network type PDN type, or the indication information carries the PDN type and the APN.
  • the sending module 42 is further configured to send a request message of an extended authentication protocol Diameter-EAP-Request of an application authentication, authorization, and accounting basic protocol to an AAA server.
  • the request message carries the indication information.
  • FIG. 5 is a block diagram of a processing device of an access point name APN according to an embodiment of the present invention.
  • the device is applied to an authentication, authorization, and accounting AAA server side.
  • the device includes: a second receiving module 52.
  • the second selection module 54 is coupled to the second selection module 54 and configured to select the contracted APN context according to the indication information, where the second selection module 54 is configured to receive the indication information of the address type of the user equipment.
  • the contracted APN context is used to instruct the ePDG to perform an operation of the UE accessing the ePDG.
  • the indication information carries the packet data network type PDN type, or the indication information carries the PDN type and the APN.
  • FIG. 6 is a structural block diagram of a processing system of an access point name APN according to an embodiment of the present invention. As shown in FIG. 6, the system includes an evolved packet data gateway ePDG 62 and an authentication, authorization, and accounting AAA server coupled to the ePDG 62. 64;
  • An evolved packet data gateway ePDG 62 configured to send indication information indicating an address type of the user equipment to the authentication, authorization, and accounting AAA server 64;
  • the AAA server 64 is configured to send the contracted APN context selected according to the indication information to the ePDG 62.
  • the ePDG 62 is further configured to perform an operation of the UE accessing the ePDG 62 according to the selected subscription APN context.
  • the indication information in this embodiment may carry a packet data network type PDN type, or carry a PDN type and an APN.
  • FIG. 7 is a block diagram showing an optional structure of a processing system for access point name APN according to an embodiment of the present invention. As shown in FIG. 7, the system further includes: a home subscriber server HSS 72 coupled to the AAA server 64;
  • the HSS 72 is configured to store user subscription data, where the user subscription data includes: a contracted APN context.
  • the present invention provides a method for APN access selection, which is applicable to a scenario in which an APN is selected when a UE connects to an EPS through an untrusted access system.
  • the steps of the method include:
  • Step S11 The ePDG notifies the 3GPP AAA server of the PDN type carried by the UE;
  • Step S21 The 3GPP AAA server selects a matching contracted APN context notification to the ePDG according to the PDN type carried by the ePDG and the optionally carried APN in the subscribed APN context.
  • Step S31 The ePDG directly uses the subscribed APN context brought by the 3GPP AAA server, and does not check whether the PDN type carried by the UE and the PDN type in the APN subscription context delivered by the 3GPP AAA server are consistent.
  • the limitation of the APN selection when the UE connects to the EPS through the untrusted access system is overcome in the related art, the user access success rate is improved, and the user experience is improved.
  • FIG. 8 is a flowchart of a method for a UE to implement UE access without an APN according to an optional embodiment of the present invention.
  • the UE connects to an EPS through an untrusted non-3GPP access system.
  • the UE and the UE In the process of creating an Internet Key Exchange Protocol (EDVG) tunnel, the ePDG carries the PDN type and does not carry the APN.
  • the ePDG notifies the 3GPP AAA server of the PDN type carried by the UE, and carries the 3GPP AAA server according to the ePDG.
  • the PDN type selects a matching contracted APN context notification to the ePDG in the subscribed APN context.
  • Step S801 an authentication and authorization process of the non-3GPP access system
  • the 3GPP AAA server may send the relevant policy information and subscription information of the operator to the access network;
  • Step S802 The UE and the ePDG exchange the first pair of messages IKE_SA_INIT to negotiate an encryption algorithm, perform exchange of random numbers, and the like;
  • Step S803 interaction of identity authentication information performed by the UE through the ePDG and the AAA server;
  • the UE carries the PDN type in the IKE_AUTH request message, and does not carry the APN.
  • the UE sends an Internet Key Exchange Authentication (IKE_AUTH) request message including an EAP message to the ePDG to the ePDG, and responds to the authentication challenge received during the identity authentication interaction process;
  • IKE_AUTH Internet Key Exchange Authentication
  • Step S805 The ePDG sends a Diameter-EAP-Request to the 3GPP AAA server, where the PDN type is included, and the APN is not included.
  • Step S806 The 3GPP AAA server acquires user subscription data from the home subscriber server.
  • Step S807 The 3GPP AAA-Server selects a matching contracted APN context in the subscribed APN context according to the PDN type carried by the ePDG.
  • Step S808 The 3GPP AAA-Server sends a Diameter-EAP-Answer to the ePDG, where the selected one of the selected contracted APN contexts is included;
  • Step S809 The ePDG directly uses the contracted APN context brought by the 3GPP AAA server;
  • the PDN type carried by the UE and the PDN type in the APN subscription context delivered by the 3GPP AAA server are not consistent.
  • Step S810 The ePDG returns an IKE_AUTH response message to the UE.
  • Step S811 The ePDG performs an IKE_AUTH interaction process with the UE, and authenticates the first and second IKE_SA_INIT message flows, and the IPSec tunnel is established.
  • FIG. 9 is a flowchart of a method for a UE to implement UE access by using an APN according to an optional embodiment of the present invention.
  • the UE is connected to an EPS through an untrusted non-3GPP access system.
  • the packet data gateway ePDG
  • IKEv2 Internet Key Exchange Protocol
  • the UE carries the PDN type and carries the APN.
  • the ePDG notifies the 3GPP AAA server of the PDN type and APN carried by the UE, and carries the 3GPP AAA server according to the ePDG.
  • the PDN type and the APN select a matching contracted APN context notification to the ePDG in the subscribed APN context.
  • the 3GPP AAA server may send the relevant policy information and subscription information of the operator to the access network;
  • Step S903 The UE performs the interaction of the identity authentication information by the ePDG and the AAA server, where the UE carries the PDN type in the IKE_AUTH request message, and carries the APN;
  • Step S904 The UE sends an IKE_AUTH request to the ePDG.
  • the UE sends an Internet Key Exchange Authentication (IKE_AUTH) request message including an EAP message to the ePDG to the ePDG, and responds to the authentication challenge received during the identity authentication interaction process;
  • IKE_AUTH Internet Key Exchange Authentication
  • Step S906 The 3GPP AAA server acquires user subscription data from the home subscriber server.
  • Step S907 The 3GPP AAA-Server selects a matching contracted APN context in the subscribed APN context according to the PDN type and the APN carried by the ePDG.
  • Step S908 The 3GPP AAA-Server sends a Diameter-EAP-Answer to the ePDG, where the selected one of the selected contracted APN contexts is included;
  • Step S909 The ePDG directly uses the contracted APN context brought by the 3GPP AAA server;
  • the PDN type carried by the UE and the PDN type in the APN subscription context delivered by the 3GPP AAA server are not consistent.
  • Step S910 The ePDG sends an IKE_AUTH response to the UE.
  • Step S911 The ePDG performs an IKE_AUTH interaction process with the UE, and authenticates the first and second IKE_SA_INIT message flows, and the IPSec tunnel is established.
  • the ePDG does not check whether the PDN type carried by the UE and the PDN type in the APN subscription context delivered by the 3GPP AAA server are consistent, and directly uses the contracted APN context brought by the 3GPP AAA server to solve the problem that the UE passes.
  • the trusted access system is connected to the EPC, the limitation of the APN selection improves the user experience.
  • a storage medium is further provided, wherein the software includes the above-mentioned software, including but not limited to: an optical disk, a floppy disk, a hard disk, an erasable memory, and the like.
  • the present invention solves the problem that the ePDG can only reject the user access when the PDN type of the host does not carry the APN and the carried PDN type is inconsistent with the signed default APN context.
  • the user experience As described above, the present invention solves the problem that the ePDG can only reject the user access when the PDN type of the host does not carry the APN and the carried PDN type is inconsistent with the signed default APN context. The user experience.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Provided are an access point name (APN) processing method, device and system, the method comprising: transmitting to, by an evolved packet data gateway (ePDG), an authentication, authorization and accounting (AAA) server the indication information for indicating an address type of a user equipment (UE); receiving, by the ePDG, the contracting APN context selected by the AAA server according to the indication information; and according to the selected contracting APN context, executing, by the ePDG, an operation of accessing the UE to the ePDG. The present invention addresses the problem in which the ePDG has to refuse the access of a user when the UE does not carry an APN and a carried PDN type is inconsistent with the PDN type in the contracting default APN context in the related techniques, thus improving user experiences.

Description

接入点名称APN的处理方法、装置及系统Method, device and system for processing access point name APN 技术领域Technical field
本发明涉及通信领域,具体而言,涉及一种接入点名称APN的处理方法、装置及系统。The present invention relates to the field of communications, and in particular, to a method, an apparatus, and a system for processing an access point name APN.
背景技术Background technique
第三代合作伙伴计划(3rd Generation Partnership Project,简称为3GPP)演进的分组系统(Evolved Packet System,简称为EPS)由演进的通用移动通信系统陆地无线接入网(Evolved Universal Terrestrial Radio Access Network,简称为E-UTRAN)、移动管理单元(Mobility Management Entity,简称为MME)、服务网关(Serving Gateway,S-GW)、分组数据网络网关(Packet Data Network Gateway,简称为P-GW或者PDN GW)、归属用户服务器(Home Subscriber Server,简称为HSS)、策略和计费规则功能(Policy and Charging Rules Function,简称为PCRF)实体及其他支撑节点组成。The 3rd Generation Partnership Project (3GPP) evolved Evolved Packet System (EPS) is derived from the Evolved Universal Terrestrial Radio Access Network (Evolved Universal Terrestrial Radio Access Network). E-UTRAN), Mobility Management Entity (MME), Serving Gateway (S-GW), Packet Data Network Gateway (P-GW or PDN GW), It is composed of a Home Subscriber Server (HSS), a Policy and Charging Rules Function (PCRF) entity, and other supporting nodes.
图1是相关技术中EPS系统支持与非3GPP系统的互通的结构框图,如图1所示,EPS系统支持与非3GPP系统的互通,3GPP与非3GPP系统间的锚点为P-GW。非3GPP系统被分为可信任非3GPP IP接入和不可信任非3GPP IP接入。可信任非3GPP IP接入可直接通过S2a接口与P-GW连接;不可信任非3GPP IP接入需经过演进的分组数据网关(Evolved Packet Data Gateway,简称为ePDG)与PDN GW相连,ePDG与PDN GW间的接口为S2b。1 is a structural block diagram of an EPS system supporting interworking with a non-3GPP system in the related art. As shown in FIG. 1, the EPS system supports interworking with a non-3GPP system, and an anchor point between the 3GPP and the non-3GPP system is a P-GW. Non-3GPP systems are classified into trusted non-3GPP IP access and untrusted non-3GPP IP access. The trusted non-3GPP IP access can be directly connected to the P-GW through the S2a interface; the untrusted non-3GPP IP access needs to be connected to the PDN GW through an Evolved Packet Data Gateway (ePDG), ePDG and PDN The interface between GWs is S2b.
在图1中,MME移动管理单元负责移动性管理、非接入层信令的处理和用户移动管理上下文的管理等控制面的相关工作;S-GW是与E-UTRAN相连的接入网关设备,在E-UTRAN和P-GW之间转发数据,并且负责对寻呼等待数据进行缓存;P-GW则是EPS与分组数据网络(Packet Data Network,简称为PDN)的边界网关,负责PDN的接入及在EPS与PDN间转发数据等功能;PCRF是策略和计费规则功能实体,它通过接收接口Rx和运营商网络协议(Internet Protocol,简称为IP)业务网络相连,获取业务信息,此外,它通过Gx/Gxa/Gxc接口与网络中的网关设备相连,负责发起IP承载的建立,保证业务数据的服务质量(Quality of Service,简称为QoS),并进行计费控制。In FIG. 1, the MME mobility management unit is responsible for control planes such as mobility management, non-access stratum signaling processing, and user mobility management context management; the S-GW is an access gateway device connected to the E-UTRAN. Forwarding data between E-UTRAN and P-GW, and responsible for buffering paging waiting data; P-GW is a border gateway of EPS and Packet Data Network (PDN), responsible for PDN Accessing and forwarding data between the EPS and the PDN; the PCRF is a policy and charging rule function entity, which is connected to the service network protocol (Internet Protocol, IP for short) service network through the receiving interface Rx to obtain service information. It is connected to the gateway device in the network through the Gx/Gxa/Gxc interface, and is responsible for initiating the establishment of the IP bearer, ensuring the quality of service (QoS) of the service data, and performing charging control.
UE在HSS可以签约一个或多个APN上下文,每个签约的APN上下文包括分组 数据网络类型(Packet Data Network type,简称为PDN type)和APN等信息。UE在通过不信任的接入系统连接到EPS,需要进行APN选择,获知被允许使用哪个签约的APN上下文。The UE may sign one or more APN contexts in the HSS, and each subscribed APN context includes a packet. Information such as Packet Data Network Type (PDN type) and APN. The UE is connected to the EPS through the untrusted access system, and needs to perform APN selection to know which contracted APN context is allowed to be used.
相关技术中采用的APN选择通过如下方式实现,该方法包括如下步骤:The APN selection adopted in the related art is implemented by the following method, and the method includes the following steps:
步骤S102:UE接入到ePDG,携带UE IP地址类型即PDN type,携带APN,或不携带APN;Step S102: The UE accesses the ePDG, carries the UE's IP address type, that is, the PDN type, carries the APN, or does not carry the APN;
步骤S104:如果UE携带APN给ePDG,ePDG将UE携带的APN通知3GPP AAA服务器,否则ePDG不携带APN给3GPP AAA服务器;Step S104: If the UE carries the APN to the ePDG, the ePDG notifies the 3GPP AAA server of the APN carried by the UE, otherwise the ePDG does not carry the APN to the 3GPP AAA server;
步骤S106:3GPP AAA服务器从HSS获取UE的签约数据后,判断如果ePDG没有携带APN,则选择默认APN签约上下文带给ePDG,否则判断携带的APN有对应的签约APN上下文或签约了通配APN,则选择该签约的APN上下文带给ePDG;Step S106: After obtaining the subscription data of the UE from the HSS, the 3GPP AAA server determines that the default APN subscription context is brought to the ePDG if the ePDG does not carry the APN. Otherwise, the carried APN has the corresponding subscription APN context or the subscription APN. Then selecting the contracted APN context to bring to the ePDG;
步骤S108:ePDG判断UE携带的PDN type和3GPP AAA服务器下发的APN签约上下文中的PDN type一致,则允许用户接入,否则拒绝用户接入;Step S108: The ePDG determines that the PDN type carried by the UE is the same as the PDN type in the APN subscription context delivered by the 3GPP AAA server, and then allows the user to access, otherwise the user access is denied;
由此可见,如果UE没有携带APN,且携带的PDN type与签约的默认APN上下文中的PDN type不一致时,如UE携带PDN type为IPv4,签约的默认APN上下文中的PDN type为IPv6,ePDG只能拒绝用户接入,影响终端用户的体验效果。It can be seen that if the UE does not carry the APN and the carried PDN type is inconsistent with the PDN type in the default APN context of the subscription, if the UE carries the PDN type as IPv4, the PDN type in the default APN context of the subscription is IPv6, and the ePDG only It can deny user access and affect the end user experience.
针对相关技术中在UE没有携带APN,且携带的PDN type与签约的默认APN上下文中的PDN type不一致时,ePDG只能拒绝用户接入的问题,目前尚未提出有效的解决方案。In the related art, when the UE does not carry the APN, and the PDN type carried by the UE is inconsistent with the PDN type in the default APN context of the subscription, the ePDG can only reject the user access problem, and no effective solution has been proposed yet.
发明内容Summary of the invention
本发明实施例的主要目的在于提供一种接入点名称APN的处理方法、装置及系统,以至少解决相关技术中在UE没有携带APN,且携带的PDN type与签约的默认APN上下文中的PDN type不一致时,ePDG只能拒绝用户接入的问题。The main purpose of the embodiments of the present invention is to provide a method, an apparatus, and a system for processing an access point name APN, so as to at least solve the PDN in the default APN context in which the UE does not carry the APN, and carries the PDN type and the subscribed default APN context. When the type is inconsistent, ePDG can only reject the problem of user access.
根据本发明实施例的一个方面,提供了一种接入点名称APN的处理方法,包括:演进的分组数据网关ePDG向验证、授权和记账(Authentication、Authorization、Accounting简称为AAA)服务器发送用于指示用户设备的地址类型的指示信息;所述ePDG接收所述AAA服务器依据所述指示信息选择的签约APN上下文;所述ePDG依据选择的所述签约APN上下文执行UE接入所述ePDG的操作。According to an aspect of the embodiments of the present invention, a method for processing an access point name APN is provided, including: evolving packet data gateway ePDG is sent to an authentication, authorization, and accounting (Authentication, Authorization, Accounting for AAA) server. The indication information indicating the type of the address of the user equipment; the ePDG receives the subscription APN context selected by the AAA server according to the indication information; and the ePDG performs the operation of the UE accessing the ePDG according to the selected subscription APN context. .
可选地,所述指示信息中携带有分组数据网络类型PDN type,或所述指示信息 中携带有所述PDN type和APN。Optionally, the indication information carries a packet data network type PDN type, or the indication information The PDN type and the APN are carried in the middle.
可选地,演进的分组数据网关ePDG向AAA服务器发送用于指示用户设备的地址类型的指示信息包括:所述ePDG向所述AAA服务器发送应用验证、授权和记账基础协议的扩展验证协议Diameter-EAP-Request的请求消息,其中,所述请求消息中携带有所述指示信息。Optionally, the evolved packet data gateway ePDG sends the indication information indicating the address type of the user equipment to the AAA server, where the ePDG sends an extended verification protocol Diameter of the application verification, authorization, and accounting basic protocol to the AAA server. a request message of the EAP-Request, wherein the request message carries the indication information.
根据本发明实施例的另一个方面,提供了一种接入点名称APN的处理方法,包括:验证、授权和记账AAA服务器接收演进的分组数据网关ePDG发送的用于指示用户设备的地址类型的指示信息;所述AAA服务器依据所述指示信息选择签约APN上下文,其中,所述签约APN上下文用于指示所述ePDG执行UE接入所述ePDG的操作。According to another aspect of the embodiments of the present invention, a method for processing an access point name APN is provided, including: an authentication, authorization, and accounting AAA server receiving an address type sent by an evolved packet data gateway ePDG for indicating a user equipment The AAA server selects a subscription APN context according to the indication information, where the subscription APN context is used to instruct the ePDG to perform an operation of the UE accessing the ePDG.
可选地,所述指示信息中携带有分组数据网络类型PDN type,或所述指示信息中携带有所述PDN type和APN。Optionally, the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
可选地,所述AAA服务器依据所述指示信息选择签约APN上下文包括:所述AAA服务器依据所述指示信息从归属用户服务器存储的用户签约数据中选择所述签约APN上下文。Optionally, the AAA server selects the subscription APN context according to the indication information, and the AAA server selects the subscription APN context from the user subscription data stored by the home subscriber server according to the indication information.
根据本发明实施例的再一个方面,提供了一种接入点名称APN的处理装置,应用于演进的分组数据网关ePDG侧,包括:发送模块,设置为向验证、授权和记账AAA服务器发送用于指示用户设备的地址类型的指示信息;第一接收模块,设置为接收所述AAA服务器依据所述指示信息选择的签约APN上下文;第一选择模块,设置为依据选择的所述签约APN上下文执行UE接入所述ePDG的操作。According to still another aspect of the embodiments of the present invention, a processing apparatus for an access point name APN is provided, which is applied to an evolved packet data gateway ePDG side, and includes: a sending module, configured to send to an authentication, authorization, and accounting AAA server. The indication information is used to indicate the type of the address of the user equipment; the first receiving module is configured to receive the contracted APN context selected by the AAA server according to the indication information; and the first selection module is configured to: according to the selected subscription APN context Performing an operation of the UE accessing the ePDG.
可选地,所述指示信息中携带有分组数据网络类型PDN type,或所述指示信息中携带有所述PDN type和APN。Optionally, the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
可选地,所述发送模块,还设置为向所述AAA服务器发送应用验证、授权和记账基础协议的扩展验证协议Diameter-EAP-Request的请求消息,其中,所述请求消息中携带有所述指示信息。Optionally, the sending module is further configured to send, to the AAA server, a request message of an extended authentication protocol Diameter-EAP-Request of an application verification, authorization, and accounting basic protocol, where the request message carries Indicate the indication information.
根据本发明实施例的再一个方面,提供了一种接入点名称APN的处理装置,应用于验证、授权和记账AAA服务器侧,包括:第二接收模块,设置为接收演进的分组数据网关ePDG发送的用于指示用户设备的地址类型的指示信息;第二选择模块,设置为依据所述指示信息选择签约APN上下文,其中,所述签约APN上下文用于指示所述ePDG执行UE接入所述ePDG的操作。 According to still another aspect of the embodiments of the present invention, a processing apparatus for an access point name APN is provided, which is applied to an authentication, authorization, and accounting AAA server side, and includes: a second receiving module configured to receive an evolved packet data gateway. And the second selection module is configured to select the subscription APN context according to the indication information, where the subscription APN context is used to instruct the ePDG to perform the UE access location, where the ePDG sends the indication information of the address type of the user equipment. The operation of the ePDG.
可选地,所述指示信息中携带有分组数据网络类型PDN type,或所述指示信息中携带有所述PDN type和APN。Optionally, the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
可选地,所述第二选择模块,还设置为依据所述指示信息从归属用户服务器存储的用户签约数据中选择所述签约APN上下文。Optionally, the second selection module is further configured to select the subscription APN context from the user subscription data stored by the home subscriber server according to the indication information.
根据本发明实施例的又一个方面,提供了一种接入点名称APN的处理系统,包括:演进的分组数据网关ePDG和验证、授权和记账AAA服务器;演进的分组数据网关ePDG,设置为向验证、授权和记账AAA服务器发送用于指示用户设备的地址类型的指示信息;所述AAA服务器,设置为向所述ePDG发送依据所述指示信息选择的签约APN上下文;所述ePDG,还设置为依据选择的所述签约APN上下文执行UE接入所述ePDG的操作。According to still another aspect of the embodiments of the present invention, a processing system for an access point name APN is provided, including: an evolved packet data gateway ePDG and an authentication, authorization, and accounting AAA server; and an evolved packet data gateway ePDG, configured to Sending, to the authentication, authorization, and accounting AAA server, indication information indicating an address type of the user equipment; the AAA server, configured to send, to the ePDG, a contracted APN context selected according to the indication information; the ePDG, further And being configured to perform an operation of the UE accessing the ePDG according to the selected subscription APN context.
可选地,所述指示信息中携带有分组数据网络类型PDN type,或所述指示信息中携带有所述PDN type和APN。Optionally, the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
可选地,演进的分组数据网关ePDG通过以下方式向AAA服务器发送用于指示用户设备的地址类型的指示信息:所述ePDG向所述AAA服务器发送应用验证、授权和记账基础协议的扩展验证协议Diameter-EAP-Request的请求消息,其中,所述请求消息中携带有所述指示信息。Optionally, the evolved packet data gateway ePDG sends indication information indicating an address type of the user equipment to the AAA server by: sending, by the ePDG, the extended verification of the application verification, authorization, and accounting basic protocol to the AAA server. The request message of the protocol Diameter-EAP-Request, wherein the request message carries the indication information.
可选地,所述系统还包括:归属用户服务器;所述归属用户服务器,设置为存储用户签约数据,其中,所述用户签约数据包括:所述签约APN上下文。Optionally, the system further includes: a home subscriber server, where the home subscriber server is configured to store user subscription data, where the subscriber subscription data includes: the subscription APN context.
在本发明实施例中,采用在AAA服务器接收到ePDG发送的用于指示用户设备的地址类型的指示信息后,该AAA服务器依据指示信息选择的签约APN上下文,并将该签约APN上下文发送给ePDG,该ePDG则不用再检查地址类型和APN签约上下文中的类型是否一致,直接使用该签约APN上下文执行UE接入ePDG的操作的方式,解决了相关技术中在UE没有携带APN,且携带的PDN type与签约的默认APN上下文中的PDN type不一致时,ePDG只能拒绝用户接入的问题,提高了用户的体验效果。In the embodiment of the present invention, after the AAA server receives the indication information indicating the address type of the user equipment that is sent by the ePDG, the AAA server selects the subscription APN context according to the indication information, and sends the subscription APN context to the ePDG. The ePDG does not need to check whether the type of the address type and the APN subscription context are the same, and directly uses the subscription APN context to perform the operation of the UE to access the ePDG, and solves the related technology that the UE does not carry the APN and carries the PDN. When the type is inconsistent with the PDN type in the default APN context of the subscription, the ePDG can only reject the user access problem and improve the user experience.
附图说明DRAWINGS
此处所说明的附图用来提供对本发明的进一步理解,构成本申请的一部分,本发明的示意性实施例及其说明用于解释本发明,并不构成对本发明的不当限定。在附图中:The drawings described herein are intended to provide a further understanding of the invention, and are intended to be a part of the invention. In the drawing:
图1是相关技术中EPS系统支持与非3GPP系统的互通的结构框图; 1 is a structural block diagram of an EPS system supporting interworking with a non-3GPP system in the related art;
图2是根据本发明实施例的接入点名称APN的处理方法的流程图一;2 is a flowchart 1 of a method for processing an access point name APN according to an embodiment of the present invention;
图3是根据本发明实施例的接入点名称APN的处理方法的流程图二;3 is a second flowchart of a method for processing an access point name APN according to an embodiment of the present invention;
图4是根据本发明实施例的接入点名称APN的处理装置结构图框一;4 is a structural diagram 1 of a processing apparatus for an access point name APN according to an embodiment of the present invention;
图5是根据本发明实施例的接入点名称APN的处理装置结构框图二;FIG. 5 is a second structural block diagram of a processing apparatus for an access point name APN according to an embodiment of the present invention; FIG.
图6是根据本发明实施例的接入点名称APN的处理系统结构框图;6 is a structural block diagram of a processing system of an access point name APN according to an embodiment of the present invention;
图7是根据本发明实施例的接入点名称APN的处理系统可选结构框图;7 is a block diagram showing an optional structure of a processing system of an access point name APN according to an embodiment of the present invention;
图8是根据本发明可选实施例的UE不带APN实现UE接入的方法流程图;FIG. 8 is a flowchart of a method for a UE to implement UE access without an APN according to an optional embodiment of the present invention; FIG.
图9是根据本发明可选实施例的UE带APN实现UE接入的方法流程图。FIG. 9 is a flowchart of a method for a UE to implement UE access by using an APN according to an optional embodiment of the present invention.
具体实施方式detailed description
需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互组合。下面将参考附图并结合实施例来详细说明本发明。It should be noted that the embodiments in the present application and the features in the embodiments may be combined with each other without conflict. The invention will be described in detail below with reference to the drawings in conjunction with the embodiments.
本实施例提供了一种接入点名称APN的处理方法,图2是根据本发明实施例的接入点名称APN的处理方法的流程图一,如图2所示,该方法的步骤包括:This embodiment provides a method for processing an access point name APN. FIG. 2 is a flowchart 1 of a method for processing an access point name APN according to an embodiment of the present invention. As shown in FIG. 2, the steps of the method include:
步骤S202:演进的分组数据网关ePDG向验证、授权和记账AAA服务器发送用于指示用户设备的地址类型的指示信息;Step S202: The evolved packet data gateway ePDG sends indication information indicating an address type of the user equipment to the authentication, authorization, and accounting AAA server;
步骤S204:ePDG接收AAA服务器依据指示信息选择的签约APN上下文;Step S204: The ePDG receives the subscribed APN context selected by the AAA server according to the indication information.
步骤S206:ePDG依据选择的签约APN上下文执行UE接入ePDG的操作。Step S206: The ePDG performs an operation of the UE accessing the ePDG according to the selected subscription APN context.
通过本实施例,采用在AAA服务器接收到ePDG发送的用于指示用户设备的地址类型的指示信息后,该AAA服务器依据指示信息选择的签约APN上下文,并将该签约APN上下文发送给ePDG,该ePDG则不用再检查地址类型和APN签约上下文中的类型是否一致,直接使用该签约APN上下文执行UE接入ePDG的操作的方式,解决了相关技术中在UE没有携带APN,且携带的PDN type与签约的默认APN上下文中的PDN type不一致时,ePDG只能拒绝用户接入的问题,提高了用户的体验效果。With the embodiment, after the AAA server receives the indication information indicating the address type of the user equipment that is sent by the ePDG, the AAA server selects the contracted APN context according to the indication information, and sends the contracted APN context to the ePDG. The ePDG does not need to check whether the type of the address type and the APN subscription context are consistent, and directly uses the contracted APN context to perform the operation of the UE to access the ePDG, and solves the related art in which the UE does not carry the APN and carries the PDN type and When the PDN types in the default APN context of the contract are inconsistent, the ePDG can only reject the user access problem and improve the user experience.
需要说明的是本实施例中涉及的AAA服务器优选地为3GPP AAA服务器,当然其他的类型的AAA服务器也是在本发明的保护范围之内。It should be noted that the AAA server involved in this embodiment is preferably a 3GPP AAA server. Of course, other types of AAA servers are also within the protection scope of the present invention.
对于在本实施例中涉及到的指示信息可以携带有分组数据网络类型PDN type,或携带有PDN type和APN。 The indication information involved in this embodiment may carry a packet data network type PDN type, or carry a PDN type and an APN.
此外,在本实施例中演进的分组数据网关ePDG向AAA服务器发送用于指示用户设备的地址类型的指示信息的方式可以有多种,而在本实施例的一个可选实施方式中可以通过如下方式来实现:ePDG向AAA服务器发送Diameter-EAP-Request,其中,请求消息中携带有指示信息。In addition, the manner in which the evolved packet data gateway ePDG sends the indication information indicating the type of the address of the user equipment to the AAA server in the embodiment may be various, and in an optional implementation manner of this embodiment, the following may be adopted. The method is implemented as follows: The ePDG sends a Diameter-EAP-Request to the AAA server, where the request message carries the indication information.
图3是根据本发明实施例的接入点名称APN的处理方法的流程图二,如图3所示,该方法的步骤包括:FIG. 3 is a second flowchart of a method for processing an access point name APN according to an embodiment of the present invention. As shown in FIG. 3, the steps of the method include:
步骤S302:验证、授权和记账AAA服务器接收演进的分组数据网关ePDG发送的用于指示用户设备的地址类型的指示信息;Step S302: The authentication, authorization, and accounting AAA server receives the indication information sent by the evolved packet data gateway ePDG for indicating the type of the address of the user equipment.
步骤S304:AAA服务器依据指示信息选择签约APN上下文,其中,签约APN上下文用于指示ePDG执行UE接入ePDG的操作。Step S304: The AAA server selects the subscription APN context according to the indication information, where the subscription APN context is used to instruct the ePDG to perform the operation of the UE accessing the ePDG.
可选地,对于本实施例涉及到的指示信息可以携带有分组数据网络类型PDN type,或携带有PDN type和APN。Optionally, the indication information related to the embodiment may carry a packet data network type PDN type, or carry a PDN type and an APN.
此外,在本实施例的一个可选实施方式中AAA服务器依据指示信息选择签约APN上下文的方式可以通过如下方式来实现:AAA服务器依据指示信息从归属用户服务器存储的用户签约数据中选择签约APN上下文。In addition, in an optional implementation manner of this embodiment, the manner in which the AAA server selects the subscription APN context according to the indication information may be implemented by: the AAA server selecting the subscription APN context from the user subscription data stored by the home subscriber server according to the indication information. .
在本实施例中还提供了一种接入点名称APN的处理装置,该装置用于实现上述实施例及可选实施方式,已经进行过说明的不再赘述。如以下所使用的,术语“模块”可以实现预定功能的软件和/或硬件的组合。尽管以下实施例所描述的装置较佳地以软件来实现,但是硬件,或者软件和硬件的组合的实现也是可能并被构想的。The processing device of the access point name APN is also provided in the embodiment, and the device is used to implement the foregoing embodiment and the optional implementation manner, and details are not described herein. As used below, the term "module" may implement a combination of software and/or hardware of a predetermined function. Although the apparatus described in the following embodiments is preferably implemented in software, hardware, or a combination of software and hardware, is also possible and contemplated.
图4是根据本发明实施例的接入点名称APN的处理装置结构框图一,该装置应用于演进的分组数据网关ePDG侧,如图4所示,该装置包括:发送模块42,设置为向验证、授权和记账AAA服务器发送用于指示用户设备的地址类型的指示信息;第一接收模块44,与发送模块42耦合连接,设置为接收AAA服务器依据指示信息选择的签约APN上下文;第一选择模块46,与第一接收模块44耦合连接,设置为依据选择的签约APN上下文执行UE接入ePDG的操作。4 is a block diagram of a processing device of an access point name APN according to an embodiment of the present invention. The device is applied to an ePDG side of an evolved packet data gateway. As shown in FIG. 4, the device includes: a sending module 42 configured to The authentication, authorization, and accounting AAA server sends the indication information indicating the type of the address of the user equipment; the first receiving module 44 is coupled to the sending module 42 and configured to receive the contracted APN context selected by the AAA server according to the indication information; The selection module 46 is coupled to the first receiving module 44 and configured to perform the operation of the UE accessing the ePDG according to the selected subscription APN context.
在本实施例中涉及到的指示信息可以携带有分组数据网络类型PDN type,或指示信息中携带有PDN type和APN。The indication information involved in the embodiment may carry the packet data network type PDN type, or the indication information carries the PDN type and the APN.
可选地,在本实施例的一个可选实施方式中,该发送模块42,还可以设置为向AAA服务器发送应用验证、授权和记账基础协议的扩展验证协议Diameter-EAP-Request的请求消息,其中,请求消息中携带有指示信息。 Optionally, in an optional implementation manner of this embodiment, the sending module 42 is further configured to send a request message of an extended authentication protocol Diameter-EAP-Request of an application authentication, authorization, and accounting basic protocol to an AAA server. Wherein the request message carries the indication information.
图5是根据本发明实施例的接入点名称APN的处理装置结构框图二,该装置应用于验证、授权和记账AAA服务器侧,如图5所示,该装置包括:第二接收模块52,设置为接收演进的分组数据网关ePDG发送的用于指示用户设备的地址类型的指示信息;第二选择模块54,与第二选择模块54耦合连接,设置为依据指示信息选择签约APN上下文,其中,签约APN上下文用于指示ePDG执行UE接入ePDG的操作。FIG. 5 is a block diagram of a processing device of an access point name APN according to an embodiment of the present invention. The device is applied to an authentication, authorization, and accounting AAA server side. As shown in FIG. 5, the device includes: a second receiving module 52. And the second selection module 54 is coupled to the second selection module 54 and configured to select the contracted APN context according to the indication information, where the second selection module 54 is configured to receive the indication information of the address type of the user equipment. The contracted APN context is used to instruct the ePDG to perform an operation of the UE accessing the ePDG.
可选地,指示信息中携带有分组数据网络类型PDN type,或指示信息中携带有PDN type和APN。Optionally, the indication information carries the packet data network type PDN type, or the indication information carries the PDN type and the APN.
此外,在本实施例的一个可选实施方式中,该第二选择模块54,还可以设置为依据指示信息从归属用户服务器存储的用户签约数据中选择签约APN上下文。In addition, in an optional implementation manner of this embodiment, the second selection module 54 may be further configured to select a subscription APN context from the user subscription data stored by the home subscriber server according to the indication information.
图6是根据本发明实施例的接入点名称APN的处理系统结构框图,如图6所示,该系统包括:演进的分组数据网关ePDG62以及与ePDG62耦合连接的验证、授权和记账AAA服务器64;6 is a structural block diagram of a processing system of an access point name APN according to an embodiment of the present invention. As shown in FIG. 6, the system includes an evolved packet data gateway ePDG 62 and an authentication, authorization, and accounting AAA server coupled to the ePDG 62. 64;
演进的分组数据网关ePDG62,设置为向验证、授权和记账AAA服务器64发送用于指示用户设备的地址类型的指示信息;An evolved packet data gateway ePDG 62, configured to send indication information indicating an address type of the user equipment to the authentication, authorization, and accounting AAA server 64;
AAA服务器64,设置为向ePDG62发送依据指示信息选择的签约APN上下文;The AAA server 64 is configured to send the contracted APN context selected according to the indication information to the ePDG 62.
ePDG62,还设置为依据选择的签约APN上下文执行UE接入ePDG62的操作。The ePDG 62 is further configured to perform an operation of the UE accessing the ePDG 62 according to the selected subscription APN context.
可选地,在本实施例中的指示信息可以携带有分组数据网络类型PDN type,或携带有PDN type和APN。Optionally, the indication information in this embodiment may carry a packet data network type PDN type, or carry a PDN type and an APN.
在本实施例的一个可选实施方式中演进的分组数据网关ePDG可以通过以下方式向AAA服务器发送用于指示用户设备的地址类型的指示信息,该方式为:ePDG向AAA服务器发送Diameter-EAP-Request的请求消息,其中,请求消息中携带有指示信息。In an optional implementation manner of this embodiment, the evolved packet data gateway ePDG may send indication information indicating an address type of the user equipment to the AAA server by: sending, by the ePDG, Diameter-EAP- to the AAA server. The request message of the Request, wherein the request message carries the indication information.
图7是根据本发明实施例的接入点名称APN的处理系统可选结构框图,如图7所示,该系统还包括:归属用户服务器HSS72与AAA服务器64耦合连接;FIG. 7 is a block diagram showing an optional structure of a processing system for access point name APN according to an embodiment of the present invention. As shown in FIG. 7, the system further includes: a home subscriber server HSS 72 coupled to the AAA server 64;
HSS72,设置为存储用户签约数据,其中,用户签约数据包括:签约APN上下文。The HSS 72 is configured to store user subscription data, where the user subscription data includes: a contracted APN context.
下面通过本发明可选实施例对本发明进行举例说明;The invention is exemplified by an alternative embodiment of the invention;
本可选实施例提供了一种APN接入选择的方法,该方法适用于UE通过不信任的接入系统连接到EPS时,进行APN选择的场景;该方法的步骤包括: The present invention provides a method for APN access selection, which is applicable to a scenario in which an APN is selected when a UE connects to an EPS through an untrusted access system. The steps of the method include:
步骤S11:ePDG将UE携带的PDN type通知给3GPP AAA服务器;Step S11: The ePDG notifies the 3GPP AAA server of the PDN type carried by the UE;
步骤S21:3GPP AAA服务器根据ePDG携带的PDN type,及可选携带的APN在签约的APN上下文中选择一个匹配的签约APN上下文通知给ePDG;Step S21: The 3GPP AAA server selects a matching contracted APN context notification to the ePDG according to the PDN type carried by the ePDG and the optionally carried APN in the subscribed APN context.
步骤S31:ePDG直接使用3GPP AAA服务器带过来的签约APN上下文,不再检查UE携带的PDN type和3GPP AAA服务器下发的APN签约上下文中的PDN type是否一致。Step S31: The ePDG directly uses the subscribed APN context brought by the 3GPP AAA server, and does not check whether the PDN type carried by the UE and the PDN type in the APN subscription context delivered by the 3GPP AAA server are consistent.
通过本可选实施例,克服了相关技术中UE通过不信任的接入系统连接到EPS时,APN选择的局限性,提高了用户接入成功率,以及提升了用户感受。With the optional embodiment, the limitation of the APN selection when the UE connects to the EPS through the untrusted access system is overcome in the related art, the user access success rate is improved, and the user experience is improved.
下面结合附图和本可选实施例的可选实施方式对本发明进行举例说明;The present invention will be exemplified below in conjunction with the accompanying drawings and alternative embodiments of the alternative embodiments;
可选实施方式一Alternative embodiment 1
图8是根据本发明可选实施例的UE不带APN实现UE接入的方法流程图,如图8所示,UE通过非信任的非3GPP接入系统连接到EPS,该流程中,UE和演进分组数据网关(ePDG)在创建因特网密钥交换协议(IKEv2)隧道过程中,UE携带PDN type,不携带APN,ePDG将UE携带的PDN type通知给3GPP AAA服务器,进行3GPP AAA服务器根据ePDG携带的PDN type在签约的APN上下文中选择一个匹配的签约APN上下文通知给ePDG。FIG. 8 is a flowchart of a method for a UE to implement UE access without an APN according to an optional embodiment of the present invention. As shown in FIG. 8, the UE connects to an EPS through an untrusted non-3GPP access system. In the process, the UE and the UE In the process of creating an Internet Key Exchange Protocol (EDVG) tunnel, the ePDG carries the PDN type and does not carry the APN. The ePDG notifies the 3GPP AAA server of the PDN type carried by the UE, and carries the 3GPP AAA server according to the ePDG. The PDN type selects a matching contracted APN context notification to the ePDG in the subscribed APN context.
步骤S801:非3GPP接入系统的认证授权流程;Step S801: an authentication and authorization process of the non-3GPP access system;
其中,在此过程中,3GPP AAA服务器可以将运营商的相关策略信息和签约信息发送给接入网络;In this process, the 3GPP AAA server may send the relevant policy information and subscription information of the operator to the access network;
步骤S802:UE和ePDG交换第一对消息IKE_SA_INIT协商加密算法,进行随机数的交换等;Step S802: The UE and the ePDG exchange the first pair of messages IKE_SA_INIT to negotiate an encryption algorithm, perform exchange of random numbers, and the like;
步骤S803:UE通过ePDG和AAA服务器进行的身份认证信息的交互;Step S803: interaction of identity authentication information performed by the UE through the ePDG and the AAA server;
其中,UE在IKE_AUTH请求消息携带PDN type,不携带APN;The UE carries the PDN type in the IKE_AUTH request message, and does not carry the APN.
步骤S804:UE向ePDG发送IKE_AUTH请求;Step S804: The UE sends an IKE_AUTH request to the ePDG.
其中,UE向ePDG发送包含EAP消息的因特网密钥交换认证(IKE_AUTH)请求消息到ePDG,响应身份认证交互过程中收到的认证挑战;The UE sends an Internet Key Exchange Authentication (IKE_AUTH) request message including an EAP message to the ePDG to the ePDG, and responds to the authentication challenge received during the identity authentication interaction process;
步骤S805:ePDG向3GPP AAA服务器发送Diameter-EAP-Request,其中包含PDN type,不包含APN; Step S805: The ePDG sends a Diameter-EAP-Request to the 3GPP AAA server, where the PDN type is included, and the APN is not included.
步骤S806:3GPP AAA服务器向归属用户服务器获取用户签约数据;Step S806: The 3GPP AAA server acquires user subscription data from the home subscriber server.
步骤S807:3GPP AAA-Server根据ePDG携带的PDN type在签约的APN上下文中选择一个匹配的签约APN上下文;Step S807: The 3GPP AAA-Server selects a matching contracted APN context in the subscribed APN context according to the PDN type carried by the ePDG.
步骤S808:3GPP AAA-Server向ePDG发送Diameter-EAP-Answer,其中包含选择的一个匹配的签约APN上下文;Step S808: The 3GPP AAA-Server sends a Diameter-EAP-Answer to the ePDG, where the selected one of the selected contracted APN contexts is included;
步骤S809:ePDG直接使用3GPP AAA服务器带过来的签约APN上下文;Step S809: The ePDG directly uses the contracted APN context brought by the 3GPP AAA server;
其中,不再检查UE携带的PDN type和3GPP AAA服务器下发的APN签约上下文中的PDN type是否一致。The PDN type carried by the UE and the PDN type in the APN subscription context delivered by the 3GPP AAA server are not consistent.
步骤S810:ePDG给UE回IKE_AUTH响应消息;Step S810: The ePDG returns an IKE_AUTH response message to the UE.
步骤S811:ePDG与UE进行IKE_AUTH交互流程,认证第一条和第二条IKE_SA_INIT消息流程,IPSec隧道建立完成。Step S811: The ePDG performs an IKE_AUTH interaction process with the UE, and authenticates the first and second IKE_SA_INIT message flows, and the IPSec tunnel is established.
可选实施方式二Optional implementation method 2
图9是根据本发明可选实施例的UE带APN实现UE接入的方法流程图,如图9所示,UE通过非信任的非3GPP接入系统连接到EPS,该流程中,UE和演进分组数据网关(ePDG)在创建因特网密钥交换协议(IKEv2)隧道过程中,UE携带PDN type,携带APN,ePDG将UE携带的PDN type和APN通知给3GPP AAA服务器,进行3GPP AAA服务器根据ePDG携带的PDN type和APN在签约的APN上下文中选择一个匹配的签约APN上下文通知给ePDG。9 is a flowchart of a method for a UE to implement UE access by using an APN according to an optional embodiment of the present invention. As shown in FIG. 9, the UE is connected to an EPS through an untrusted non-3GPP access system. In the process, the UE and the evolved. The packet data gateway (ePDG) is in the process of creating an Internet Key Exchange Protocol (IKEv2) tunnel. The UE carries the PDN type and carries the APN. The ePDG notifies the 3GPP AAA server of the PDN type and APN carried by the UE, and carries the 3GPP AAA server according to the ePDG. The PDN type and the APN select a matching contracted APN context notification to the ePDG in the subscribed APN context.
步骤S901:UE连接到非3GPP接入系统,进行非3GPP接入的认证授权;Step S901: The UE connects to the non-3GPP access system to perform authentication and authorization for non-3GPP access.
其中,在此过程中,3GPP AAA服务器可以将运营商的相关策略信息和签约信息发送给接入网络;In this process, the 3GPP AAA server may send the relevant policy information and subscription information of the operator to the access network;
步骤S902:UE和ePDG交换第一对消息IKE_SA_INIT协商加密算法,进行随机数的交换等;Step S902: The UE and the ePDG exchange the first pair of messages IKE_SA_INIT to negotiate an encryption algorithm, perform exchange of random numbers, and the like;
步骤S903:UE通过ePDG和AAA服务器进行的身份认证信息的交互,其中UE在IKE_AUTH请求消息携带PDN type,携带APN;Step S903: The UE performs the interaction of the identity authentication information by the ePDG and the AAA server, where the UE carries the PDN type in the IKE_AUTH request message, and carries the APN;
步骤S904:UE向ePDG发送IKE_AUTH请求;Step S904: The UE sends an IKE_AUTH request to the ePDG.
其中,UE向ePDG发送包含EAP消息的因特网密钥交换认证(IKE_AUTH)请求消息到ePDG,响应身份认证交互过程中收到的认证挑战; The UE sends an Internet Key Exchange Authentication (IKE_AUTH) request message including an EAP message to the ePDG to the ePDG, and responds to the authentication challenge received during the identity authentication interaction process;
步骤S905:ePDG向3GPP AAA服务器发送Diameter-EAP-Request,其中Diameter-EAP-Request包含PDN type和APN;Step S905: The ePDG sends a Diameter-EAP-Request to the 3GPP AAA server, where the Diameter-EAP-Request includes the PDN type and the APN.
步骤S906:3GPP AAA服务器向归属用户服务器获取用户签约数据;Step S906: The 3GPP AAA server acquires user subscription data from the home subscriber server.
步骤S907:3GPP AAA-Server根据ePDG携带的PDN type和APN在签约的APN上下文中选择一个匹配的签约APN上下文;Step S907: The 3GPP AAA-Server selects a matching contracted APN context in the subscribed APN context according to the PDN type and the APN carried by the ePDG.
步骤S908:3GPP AAA-Server向ePDG发送Diameter-EAP-Answer,其中包含选择的一个匹配的签约APN上下文;Step S908: The 3GPP AAA-Server sends a Diameter-EAP-Answer to the ePDG, where the selected one of the selected contracted APN contexts is included;
步骤S909:ePDG直接使用3GPP AAA服务器带过来的签约APN上下文;Step S909: The ePDG directly uses the contracted APN context brought by the 3GPP AAA server;
其中,不再检查UE携带的PDN type和3GPP AAA服务器下发的APN签约上下文中的PDN type是否一致。The PDN type carried by the UE and the PDN type in the APN subscription context delivered by the 3GPP AAA server are not consistent.
步骤S910:ePDG向UE发送IKE_AUTH响应;Step S910: The ePDG sends an IKE_AUTH response to the UE.
步骤S911:ePDG与UE进行IKE_AUTH交互流程,认证第一条和第二条IKE_SA_INIT消息流程,IPSec隧道建立完成。Step S911: The ePDG performs an IKE_AUTH interaction process with the UE, and authenticates the first and second IKE_SA_INIT message flows, and the IPSec tunnel is established.
通过本可选实施例,ePDG不再检查UE携带的PDN type和3GPP AAA服务器下发的APN签约上下文中的PDN type是否一致,直接使用3GPP AAA服务器带过来的签约APN上下文,解决了UE通过不信任的接入系统连接到EPC时,APN选择的局限性的问题,提高了用户的体验效果。With the optional embodiment, the ePDG does not check whether the PDN type carried by the UE and the PDN type in the APN subscription context delivered by the 3GPP AAA server are consistent, and directly uses the contracted APN context brought by the 3GPP AAA server to solve the problem that the UE passes. When the trusted access system is connected to the EPC, the limitation of the APN selection improves the user experience.
在另外一个实施例中,还提供了一种软件,该软件用于执行上述实施例及可选实施方式中描述的技术方案。In another embodiment, software is also provided for performing the technical solutions described in the above embodiments and alternative embodiments.
在另外一个实施例中,还提供了一种存储介质,该存储介质中存储有上述软件,该存储介质包括但不限于:光盘、软盘、硬盘、可擦写存储器等。In another embodiment, a storage medium is further provided, wherein the software includes the above-mentioned software, including but not limited to: an optical disk, a floppy disk, a hard disk, an erasable memory, and the like.
显然,本领域的技术人员应该明白,上述的本发明的各模块或各步骤可以用通用的计算装置来实现,它们可以集中在单个的计算装置上,或者分布在多个计算装置所组成的网络上,可选地,它们可以用计算装置可执行的程序代码来实现,从而,可以将它们存储在存储装置中由计算装置来执行,并且在某些情况下,可以以不同于此处的顺序执行所示出或描述的步骤,或者将它们分别制作成各个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。这样,本发明不限制于任何特定的硬件和软件结合。It will be apparent to those skilled in the art that the various modules or steps of the present invention described above can be implemented by a general-purpose computing device that can be centralized on a single computing device or distributed across a network of multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device such that they may be stored in the storage device by the computing device and, in some cases, may be different from the order herein. The steps shown or described are performed, or they are separately fabricated into individual integrated circuit modules, or a plurality of modules or steps thereof are fabricated as a single integrated circuit module. Thus, the invention is not limited to any specific combination of hardware and software.
上述仅为本发明的可选实施例而已,并不用于限制本发明,对于本领域的技术人 员来说,本发明可以有各种更改和变化。凡在本发明的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。The above is only an alternative embodiment of the present invention and is not intended to limit the present invention, and is for those skilled in the art. The invention is susceptible to various modifications and changes. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.
工业实用性Industrial applicability
如上所述,通过本发明实施例,解决了相关技术中在UE没有携带APN,且携带的PDN type与签约的默认APN上下文中的PDN type不一致时,ePDG只能拒绝用户接入的问题,提高了用户的体验效果。 As described above, the present invention solves the problem that the ePDG can only reject the user access when the PDN type of the host does not carry the APN and the carried PDN type is inconsistent with the signed default APN context. The user experience.

Claims (16)

  1. 一种接入点名称APN的处理方法,包括:A method for processing an access point name APN, including:
    演进的分组数据网关ePDG向验证、授权和记账AAA服务器发送用于指示用户设备的地址类型的指示信息;The evolved packet data gateway ePDG sends indication information indicating an address type of the user equipment to the authentication, authorization, and accounting AAA server;
    所述ePDG接收所述AAA服务器依据所述指示信息选择的签约APN上下文;Receiving, by the ePDG, the contracted APN context selected by the AAA server according to the indication information;
    所述ePDG依据选择的所述签约APN上下文执行UE接入所述ePDG的操作。The ePDG performs an operation of the UE accessing the ePDG according to the selected subscription APN context.
  2. 根据权利要求1所述的方法,其中,所述指示信息中携带有分组数据网络类型PDN type,或所述指示信息中携带有所述PDN type和APN。The method according to claim 1, wherein the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
  3. 根据权利要求1所述的方法,其特征在于,演进的分组数据网关ePDG向AAA服务器发送用于指示用户设备的地址类型的指示信息包括:The method according to claim 1, wherein the indication information that the evolved packet data gateway ePDG sends an address type indicating the user equipment to the AAA server includes:
    所述ePDG向所述AAA服务器发送应用验证、授权和记账基础协议的扩展验证协议Diameter-EAP-Request的请求消息,其中,所述请求消息中携带有所述指示信息。The ePDG sends a request message of an extended authentication protocol Diameter-EAP-Request of an application authentication, authorization, and accounting basic protocol to the AAA server, where the request message carries the indication information.
  4. 一种接入点名称APN的处理方法,包括:A method for processing an access point name APN, including:
    验证、授权和记账AAA服务器接收演进的分组数据网关ePDG发送的用于指示用户设备的地址类型的指示信息;The authentication, authorization, and accounting AAA server receives the indication information sent by the evolved packet data gateway ePDG for indicating the type of the address of the user equipment;
    所述AAA服务器依据所述指示信息选择签约APN上下文,其中,所述签约APN上下文用于指示所述ePDG执行UE接入所述ePDG的操作。The AAA server selects a subscription APN context according to the indication information, where the subscription APN context is used to instruct the ePDG to perform an operation of the UE accessing the ePDG.
  5. 根据权利要求4所述的方法,其中,所述指示信息中携带有分组数据网络类型PDN type,或所述指示信息中携带有所述PDN type和APN。The method according to claim 4, wherein the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
  6. 根据权利要求5所述的方法,其中,所述AAA服务器依据所述指示信息选择签约APN上下文包括:The method of claim 5, wherein the selecting, by the AAA server, the contracted APN context according to the indication information comprises:
    所述AAA服务器依据所述指示信息从归属用户服务器存储的用户签约数据中选择所述签约APN上下文。The AAA server selects the subscription APN context from the user subscription data stored by the home subscriber server according to the indication information.
  7. 一种接入点名称APN的处理装置,应用于演进的分组数据网关ePDG侧,包括:A processing device for the access point name APN is applied to the ePDG side of the evolved packet data gateway, and includes:
    发送模块,设置为向验证、授权和记账AAA服务器发送用于指示用户设备的地址类型的指示信息;a sending module, configured to send, to the authentication, authorization, and accounting AAA server, indication information indicating an address type of the user equipment;
    第一接收模块,设置为接收所述AAA服务器依据所述指示信息选择的签约 APN上下文;a first receiving module, configured to receive a subscription selected by the AAA server according to the indication information APN context;
    第一选择模块,设置为依据选择的所述签约APN上下文执行UE接入所述ePDG的操作。The first selection module is configured to perform an operation of the UE accessing the ePDG according to the selected subscription APN context.
  8. 根据权利要求7所述的装置,其中,所述指示信息中携带有分组数据网络类型PDN type,或所述指示信息中携带有所述PDN type和APN。The device according to claim 7, wherein the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
  9. 根据权利要求7所述的装置,其中,The apparatus according to claim 7, wherein
    所述发送模块,还设置为向所述AAA服务器发送应用验证、授权和记账基础协议的扩展验证协议Diameter-EAP-Request的请求消息,其中,所述请求消息中携带有所述指示信息。The sending module is further configured to send, to the AAA server, a request message of an extended authentication protocol Diameter-EAP-Request of an application authentication, authorization, and accounting basic protocol, where the request message carries the indication information.
  10. 一种接入点名称APN的处理装置,应用于验证、授权和记账AAA服务器侧,包括:A processing device for access point name APN, applied to the authentication, authorization, and accounting AAA server side, including:
    第二接收模块,设置为接收演进的分组数据网关ePDG发送的用于指示用户设备的地址类型的指示信息;a second receiving module, configured to receive indication information that is sent by the evolved packet data gateway ePDG to indicate an address type of the user equipment;
    第二选择模块,设置为依据所述指示信息选择签约APN上下文,其中,所述签约APN上下文用于指示所述ePDG执行UE接入所述ePDG的操作。And a second selection module, configured to select a subscription APN context according to the indication information, where the subscription APN context is used to instruct the ePDG to perform an operation of the UE accessing the ePDG.
  11. 根据权利要求10所述的装置,其中,所述指示信息中携带有分组数据网络类型PDN type,或所述指示信息中携带有所述PDN type和APN。The device according to claim 10, wherein the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
  12. 根据权利要求11所述的装置,其中,The apparatus according to claim 11, wherein
    所述第二选择模块,还设置为依据所述指示信息从归属用户服务器存储的用户签约数据中选择所述签约APN上下文。The second selection module is further configured to select the subscription APN context from the user subscription data stored by the home subscriber server according to the indication information.
  13. 一种接入点名称APN的处理系统,包括:演进的分组数据网关ePDG和验证、授权和记账AAA服务器;A processing system for an access point name APN, comprising: an evolved packet data gateway ePDG and a verification, authorization, and accounting AAA server;
    演进的分组数据网关ePDG,设置为向验证、授权和记账AAA服务器发送用于指示用户设备的地址类型的指示信息;An evolved packet data gateway ePDG, configured to send indication information indicating an address type of the user equipment to the authentication, authorization, and accounting AAA server;
    所述AAA服务器,设置为向所述ePDG发送依据所述指示信息选择的签约APN上下文;The AAA server is configured to send, to the ePDG, a contracted APN context selected according to the indication information;
    所述ePDG,还设置为依据选择的所述签约APN上下文执行UE接入所述ePDG的操作。 The ePDG is further configured to perform an operation of the UE accessing the ePDG according to the selected subscription APN context.
  14. 根据权利要求13所述的系统,其中,所述指示信息中携带有分组数据网络类型PDN type,或所述指示信息中携带有所述PDN type和APN。The system according to claim 13, wherein the indication information carries a packet data network type PDN type, or the indication information carries the PDN type and an APN.
  15. 根据权利要求14所述的系统,其中,演进的分组数据网关ePDG通过以下方式向AAA服务器发送用于指示用户设备的地址类型的指示信息:The system of claim 14, wherein the evolved packet data gateway ePDG transmits indication information indicating an address type of the user equipment to the AAA server in the following manner:
    所述ePDG向所述AAA服务器发送应用验证、授权和记账基础协议的扩展验证协议Diameter-EAP-Request的请求消息,其中,所述请求消息中携带有所述指示信息。The ePDG sends a request message of an extended authentication protocol Diameter-EAP-Request of an application authentication, authorization, and accounting basic protocol to the AAA server, where the request message carries the indication information.
  16. 根据权利要求14所述的系统,其中,所述系统还包括:归属用户服务器;The system of claim 14 wherein said system further comprises: a home subscriber server;
    所述归属用户服务器,设置为存储用户签约数据,其中,所述用户签约数据包括:所述签约APN上下文。 The home subscriber server is configured to store user subscription data, where the subscriber subscription data includes: the subscription APN context.
PCT/CN2015/086272 2015-01-15 2015-08-06 Access point name processing method, device and system WO2016112680A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510021670.6 2015-01-15
CN201510021670.6A CN105848249A (en) 2015-01-15 2015-01-15 Access point name (APN) processing method, device and system

Publications (1)

Publication Number Publication Date
WO2016112680A1 true WO2016112680A1 (en) 2016-07-21

Family

ID=56405200

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/086272 WO2016112680A1 (en) 2015-01-15 2015-08-06 Access point name processing method, device and system

Country Status (2)

Country Link
CN (1) CN105848249A (en)
WO (1) WO2016112680A1 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107889175A (en) * 2016-09-30 2018-04-06 中兴通讯股份有限公司 Method for switching network, apparatus and system, method for network access and device
CN106658501B (en) * 2016-12-19 2020-01-31 中国移动通信集团江苏有限公司 Method and equipment for establishing PDN (packet data network) connection based on verification
CN111901850A (en) * 2020-07-23 2020-11-06 北京长焜科技有限公司 Method for judging APN access limitation

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101651588A (en) * 2008-08-12 2010-02-17 华为技术有限公司 Method for selecting gateway, method for establishing connection, related device and communication system
CN103348734A (en) * 2010-12-28 2013-10-09 Lg电子株式会社 Method for transceiving IP data by performing handover between heterogeneous networks, and apparatus therefor
CN103369709A (en) * 2012-03-30 2013-10-23 电信科学技术研究院 A method and an apparatus for establishing PDN connectivity
CN103517378A (en) * 2012-06-30 2014-01-15 华为终端有限公司 Method for building packet data network connection and equipment
WO2014126363A1 (en) * 2013-02-14 2014-08-21 Lg Electronics Inc. Method and apparatus for routing data in wireless communication system

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
ATE375059T1 (en) * 2005-08-26 2007-10-15 Research In Motion Ltd METHOD AND DEVICE FOR MAINTAINING SUITABLE AUTHENTICATION DATA AND FOR PROVIDING CURRENT AUTHENTICATION DATA FOR A CORDLESS COMMUNICATIONS TERMINAL
CN101448252B (en) * 2008-06-20 2011-03-16 中兴通讯股份有限公司 Network switching implementation method, system thereof and mobile nodes
CN101674336B (en) * 2008-09-08 2012-12-05 电信科学技术研究院 Method for allocating IP addresses and communication system
US20130121322A1 (en) * 2011-11-10 2013-05-16 Motorola Mobility, Inc. Method for establishing data connectivity between a wireless communication device and a core network over an ip access network, wireless communication device and communicatin system
CN103796281A (en) * 2012-11-05 2014-05-14 中兴通讯股份有限公司 Management method, device and system for packet-data network type

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101651588A (en) * 2008-08-12 2010-02-17 华为技术有限公司 Method for selecting gateway, method for establishing connection, related device and communication system
CN103348734A (en) * 2010-12-28 2013-10-09 Lg电子株式会社 Method for transceiving IP data by performing handover between heterogeneous networks, and apparatus therefor
CN103369709A (en) * 2012-03-30 2013-10-23 电信科学技术研究院 A method and an apparatus for establishing PDN connectivity
CN103517378A (en) * 2012-06-30 2014-01-15 华为终端有限公司 Method for building packet data network connection and equipment
WO2014126363A1 (en) * 2013-02-14 2014-08-21 Lg Electronics Inc. Method and apparatus for routing data in wireless communication system

Also Published As

Publication number Publication date
CN105848249A (en) 2016-08-10

Similar Documents

Publication Publication Date Title
JP5922785B2 (en) Data security channel processing method and device
EP2950509B1 (en) Handling stray session requests in a network environment
US9113332B2 (en) Method and device for managing authentication of a user
US9973338B2 (en) Configuration of liveness check using internet key exchange messages
JP6628295B2 (en) Support of emergency services via WLAN access to 3GPP evolved packet core for unauthenticated users
US9226153B2 (en) Integrated IP tunnel and authentication protocol based on expanded proxy mobile IP
US9332435B2 (en) Device, system and method using EAP for external authentication
WO2013189217A1 (en) Method for updating identity information about packet gateway, aaa server and packet gateway
WO2009152676A1 (en) Aaa server, p-gw, pcrf, method and system for obtaining the ue's id
CN103517249A (en) Method, device and system of strategy control
JP6254601B2 (en) Session establishment method, apparatus and system
WO2016112680A1 (en) Access point name processing method, device and system
WO2014048197A1 (en) Method, system and device for user equipment to select visited public land mobile network
WO2008099254A2 (en) Authorizing n0n-3gpp ip access during tunnel establishment
WO2014048191A1 (en) Method and system for selecting vplmn and packet data network gateway
WO2014040464A1 (en) Resource release method, message processing method, twag and terminal
WO2013037273A1 (en) User equipment capability processing method and system
US9332015B1 (en) System and method for providing error handling in an untrusted network environment
WO2015158055A1 (en) Method for implementing device to device discovery service, terminal and storage medium
WO2017132906A1 (en) Method and device for acquiring and sending user equipment identifier
JP6151819B2 (en) Data security channel processing method and device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15877594

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15877594

Country of ref document: EP

Kind code of ref document: A1